0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf0ffffff]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 1984.611775][ T5093] hierarchical_memory_limit 314572800
[ 1984.654638][ T5093] hierarchical_memsw_limit 9223372036854771712
[ 1984.660828][ T5093] total_cache 0
[ 1984.664293][ T5093] total_rss 0
[ 1984.678983][ T5093] total_rss_huge 0
[ 1984.682732][ T5093] total_shmem 0
[ 1984.700389][ T5093] total_mapped_file 0
11:30:46 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc010000]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 1984.710335][ T5093] total_dirty 0
[ 1984.718138][ T5093] total_writeback 0
[ 1984.727095][ T5093] total_workingset_refault_anon 8411
[ 1984.738428][ T5093] total_workingset_refault_file 0
[ 1984.749072][ T5093] total_swap 212992
[ 1984.759379][ T5093] total_swapcached 0
[ 1984.769759][ T5093] total_pgpgin 237996
[ 1984.779469][ T5093] total_pgpgout 237996
[ 1984.787848][ T5093] total_pgfault 562175
[ 1984.797665][ T5093] total_pgmajfault 8556
[ 1984.820603][ T5093] total_inactive_anon 0
[ 1984.844614][ T5093] total_active_anon 0
[ 1984.854284][ T5093] total_inactive_file 0
[ 1984.875193][ T5093] total_active_file 0
[ 1984.888392][ T5093] total_unevictable 0
11:30:46 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf2ff0000]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 1984.903753][ T5093] anon_cost 0
11:30:46 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x884, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x854, 0x2, [@TCA_FLOW_POLICE={0x850, 0xa, 0x0, 0x1, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x14000000]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x6, 0x0, 0x0, 0x0, 0x0, 0x101}}}]}]}}]}, 0x884}}, 0x0)

[ 1984.929155][ T5093] file_cost 0
[ 1984.932469][ T5093] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=15735,uid=0
[ 1984.980438][ T5093] Memory cgroup out of memory: Killed process 15735 (syz-executor.2) total-vm:54508kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:80kB oom_score_adj:1000
11:30:47 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x884, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x84c, 0x2, [@TCA_FLOW_POLICE={0x848, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x6, 0x0, 0x0, 0x0, 0x0, 0x101}}}]}]}}, @TCA_RATE={0x6, 0x5, {0x0, 0x6}}]}, 0x884}}, 0x0)

11:30:47 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x480, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}, @TCA_RATE={0x6}]}, 0x480}}, 0x0)

11:30:47 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000000]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

11:30:47 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffff7f]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

11:30:47 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x11000000]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

11:30:47 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffe4]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

11:30:47 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x14000000]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

11:30:47 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffff0]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

11:30:48 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x15000000]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

11:30:48 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 1986.391900][ T5093] syz-executor.2 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[ 1986.452798][ T5093] CPU: 0 PID: 5093 Comm: syz-executor.2 Not tainted 6.8.0-rc6-syzkaller-01699-g65f5dd4f02a8 #0
[ 1986.463171][ T5093] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024
[ 1986.473244][ T5093] Call Trace:
[ 1986.476545][ T5093]  <TASK>
[ 1986.479491][ T5093]  dump_stack_lvl+0x1e7/0x2e0
[ 1986.484201][ T5093]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1986.489435][ T5093]  ? __pfx__printk+0x10/0x10
[ 1986.494054][ T5093]  ? ___ratelimit+0x4c4/0x670
[ 1986.498763][ T5093]  ? __pfx____ratelimit+0x10/0x10
[ 1986.503832][ T5093]  dump_header+0xda/0x6a0
[ 1986.508195][ T5093]  oom_kill_process+0x3a7/0x930
[ 1986.513083][ T5093]  out_of_memory+0xf67/0x1320
[ 1986.517801][ T5093]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 1986.523458][ T5093]  ? __pfx___mutex_lock+0x10/0x10
[ 1986.528505][ T5093]  ? __pfx_out_of_memory+0x10/0x10
[ 1986.533648][ T5093]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 1986.539214][ T5093]  ? __pfx_lock_release+0x10/0x10
[ 1986.544267][ T5093]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 1986.550368][ T5093]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 1986.555592][ T5093]  ? mem_cgroup_iter+0x3e9/0x560
[ 1986.560557][ T5093]  try_charge_memcg+0xda2/0x18a0
[ 1986.565514][ T5093]  ? mark_lock+0x9a/0x350
[ 1986.569887][ T5093]  ? __pfx_try_charge_memcg+0x10/0x10
[ 1986.575302][ T5093]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 1986.581472][ T5093]  charge_memcg+0xa2/0x160
[ 1986.585908][ T5093]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 1986.591995][ T5093]  __read_swap_cache_async+0x480/0x8b0
[ 1986.597476][ T5093]  ? mark_lock+0x9a/0x350
[ 1986.601832][ T5093]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 1986.607846][ T5093]  swap_cluster_readahead+0x67c/0x810
[ 1986.613255][ T5093]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 1986.619176][ T5093]  ? __pfx_lock_release+0x10/0x10
[ 1986.624221][ T5093]  ? xas_descend+0x37e/0x470
[ 1986.628843][ T5093]  swapin_readahead+0x1ea/0x1070
[ 1986.633791][ T5093]  ? filemap_get_entry+0x127/0x4e0
[ 1986.638941][ T5093]  ? __pfx_swapin_readahead+0x10/0x10
[ 1986.644338][ T5093]  ? __filemap_get_folio+0x935/0xbc0
[ 1986.649653][ T5093]  ? swap_cache_get_folio+0x9f/0x570
[ 1986.654965][ T5093]  do_swap_page+0x791/0x3f40
[ 1986.659581][ T5093]  ? rcu_is_watching+0x15/0xb0
[ 1986.664381][ T5093]  ? do_swap_page+0x154/0x3f40
[ 1986.669163][ T5093]  ? __pfx_do_swap_page+0x10/0x10
[ 1986.674210][ T5093]  ? pte_offset_map_nolock+0x137/0x1f0
[ 1986.679699][ T5093]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 1986.685565][ T5093]  __handle_mm_fault+0x15e8/0x72d0
[ 1986.690733][ T5093]  ? reacquire_held_locks+0x3eb/0x690
[ 1986.696134][ T5093]  ? __pfx___handle_mm_fault+0x10/0x10
[ 1986.701629][ T5093]  ? __pfx_reacquire_held_locks+0x10/0x10
[ 1986.707387][ T5093]  ? mtree_range_walk+0x6fd/0x8e0
[ 1986.712441][ T5093]  ? lock_vma_under_rcu+0x18a/0x730
[ 1986.717664][ T5093]  ? __pfx_lock_release+0x10/0x10
[ 1986.722716][ T5093]  ? lock_vma_under_rcu+0x2f9/0x730
[ 1986.727967][ T5093]  ? lock_vma_under_rcu+0x18a/0x730
[ 1986.733199][ T5093]  ? __pfx_lock_vma_under_rcu+0x10/0x10
[ 1986.738792][ T5093]  handle_mm_fault+0x3c1/0x8a0
[ 1986.743590][ T5093]  exc_page_fault+0x456/0x870
[ 1986.748302][ T5093]  asm_exc_page_fault+0x26/0x30
[ 1986.753170][ T5093] RIP: 0033:0x7f28e72a91b8
[ 1986.757602][ T5093] Code: 3c 24 48 89 4c 24 18 e8 f6 b9 ff ff 4c 8b 54 24 18 48 8b 54 24 10 41 89 c0 8b 74 24 0c 8b 3c 24 b8 e6 00 00 00 0f 05 44 89 c7 <48> 89 04 24 e8 4f ba ff ff 48 8b 04 24 48 83 c4 28 f7 d8 c3 0f 1f
[ 1986.777227][ T5093] RSP: 002b:00007fff0ed97930 EFLAGS: 00010293
[ 1986.783403][ T5093] RAX: 0000000000000000 RBX: 0000000000005679 RCX: 00007f28e72a91b5
[ 1986.791389][ T5093] RDX: 00007fff0ed97970 RSI: 0000000000000000 RDI: 0000000000000000
[ 1986.799375][ T5093] RBP: 00007fff0ed979fc R08: 0000000000000000 R09: 00007fff0ed9e0b0
[ 1986.807359][ T5093] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000032
[ 1986.815343][ T5093] R13: 00000000001e4a43 R14: 00000000001e4a43 R15: 0000000000000000
[ 1986.823348][ T5093]  </TASK>
11:30:48 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38000000]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 1986.881687][ T5093] memory: usage 307200kB, limit 307200kB, failcnt 17843
[ 1986.888869][ T5093] memory+swap: usage 307408kB, limit 9007199254740988kB, failcnt 0
[ 1986.897527][ T5093] kmem: usage 307192kB, limit 9007199254740988kB, failcnt 0
[ 1986.909665][ T5093] Memory cgroup stats for /syz2:
[ 1986.909806][ T5093] cache 0
[ 1986.917885][ T5093] rss 0
[ 1986.920744][ T5093] rss_huge 0
[ 1986.940401][ T5093] shmem 0
[ 1986.944738][ T5093] mapped_file 0
[ 1986.953265][T15797] __nla_validate_parse: 53 callbacks suppressed
[ 1986.953282][T15797] netlink: 76 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 1986.956365][ T5093] dirty 0
[ 1986.976219][ T5093] writeback 0
[ 1986.979517][ T5093] workingset_refault_anon 8726
[ 1986.995654][ T5093] workingset_refault_file 0
[ 1987.000180][ T5093] swap 221184
[ 1987.003463][ T5093] swapcached 0
[ 1987.007197][ T5093] pgpgin 238324
[ 1987.010674][ T5093] pgpgout 238324
[ 1987.014233][ T5093] pgfault 562635
[ 1987.017876][ T5093] pgmajfault 8852
[ 1987.021523][ T5093] inactive_anon 0
[ 1987.025450][ T5093] active_anon 0
[ 1987.028930][ T5093] inactive_file 0
[ 1987.032569][ T5093] active_file 0
[ 1987.040849][ T5093] unevictable 0
11:30:49 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 1987.044336][ T5093] hierarchical_memory_limit 314572800
[ 1987.052084][ T5093] hierarchical_memsw_limit 9223372036854771712
[ 1987.063225][T15800] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 1987.073374][ T5093] total_cache 0
[ 1987.081608][ T5093] total_rss 0
[ 1987.085741][ T5093] total_rss_huge 0
[ 1987.089483][ T5093] total_shmem 0
[ 1987.092954][ T5093] total_mapped_file 0
[ 1987.102791][T15800] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 1987.113824][ T5093] total_dirty 0
[ 1987.124553][ T5093] total_writeback 0
[ 1987.128385][ T5093] total_workingset_refault_anon 8726
[ 1987.133680][ T5093] total_workingset_refault_file 0
[ 1987.154462][ T5093] total_swap 221184
[ 1987.158297][ T5093] total_swapcached 0
[ 1987.162390][ T5093] total_pgpgin 238324
[ 1987.203409][ T5093] total_pgpgout 238324
[ 1987.208659][T15802] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 1987.223413][ T5093] total_pgfault 562635
[ 1987.229602][T15803] netlink: 76 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 1987.239217][ T5093] total_pgmajfault 8852
[ 1987.243391][ T5093] total_inactive_anon 0
[ 1987.254531][ T5093] total_active_anon 0
[ 1987.258533][ T5093] total_inactive_file 0
[ 1987.262886][ T5093] total_active_file 0
[ 1987.274635][T15804] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 1987.288202][ T5093] total_unevictable 0
[ 1987.292216][ T5093] anon_cost 0
[ 1987.298615][ T5093] file_cost 0
11:30:49 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000000]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 1987.301933][ T5093] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=15762,uid=0
[ 1987.324156][ T5093] Memory cgroup out of memory: Killed process 15762 (syz-executor.2) total-vm:54508kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:80kB oom_score_adj:1000
11:30:49 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x884, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x84c, 0x2, [@TCA_FLOW_POLICE={0x848, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3000000]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x6, 0x0, 0x0, 0x0, 0x0, 0x101}}}]}]}}, @TCA_RATE={0x6, 0x5, {0x0, 0x6}}]}, 0x884}}, 0x0)

[ 1987.397402][T15802] netlink: 76 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 1987.430591][T15807] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'.
11:30:49 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 1987.459905][T15807] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 1987.614965][T15809] netlink: 76 bytes leftover after parsing attributes in process `syz-executor.1'.
11:30:49 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x44040000]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 1987.679355][T15808] syz-executor.2 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[ 1987.751455][T15808] CPU: 1 PID: 15808 Comm: syz-executor.2 Not tainted 6.8.0-rc6-syzkaller-01699-g65f5dd4f02a8 #0
[ 1987.761924][T15808] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024
[ 1987.771996][T15808] Call Trace:
[ 1987.775298][T15808]  <TASK>
[ 1987.778240][T15808]  dump_stack_lvl+0x1e7/0x2e0
[ 1987.782933][T15808]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1987.788146][T15808]  ? __pfx__printk+0x10/0x10
[ 1987.792761][T15808]  ? ___ratelimit+0x4c4/0x670
[ 1987.797468][T15808]  ? __pfx____ratelimit+0x10/0x10
[ 1987.802520][T15808]  dump_header+0xda/0x6a0
[ 1987.806884][T15808]  oom_kill_process+0x3a7/0x930
[ 1987.811770][T15808]  out_of_memory+0xf67/0x1320
[ 1987.816482][T15808]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 1987.822140][T15808]  ? __pfx___mutex_lock+0x10/0x10
[ 1987.827190][T15808]  ? __pfx_out_of_memory+0x10/0x10
[ 1987.832340][T15808]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 1987.837909][T15808]  ? __pfx_lock_release+0x10/0x10
[ 1987.842961][T15808]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 1987.849057][T15808]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 1987.854278][T15808]  ? mem_cgroup_iter+0x3e9/0x560
[ 1987.859247][T15808]  try_charge_memcg+0xda2/0x18a0
[ 1987.864203][T15808]  ? mark_lock+0x9a/0x350
[ 1987.868576][T15808]  ? __pfx_try_charge_memcg+0x10/0x10
[ 1987.874001][T15808]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 1987.880176][T15808]  charge_memcg+0xa2/0x160
[ 1987.884615][T15808]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 1987.890713][T15808]  __read_swap_cache_async+0x480/0x8b0
[ 1987.896199][T15808]  ? mark_lock+0x9a/0x350
[ 1987.900558][T15808]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 1987.906577][T15808]  swap_cluster_readahead+0x67c/0x810
[ 1987.912073][T15808]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 1987.917996][T15808]  ? __pfx_lock_release+0x10/0x10
[ 1987.923047][T15808]  ? xas_descend+0x37e/0x470
[ 1987.927679][T15808]  swapin_readahead+0x1ea/0x1070
[ 1987.932634][T15808]  ? filemap_get_entry+0x127/0x4e0
[ 1987.937794][T15808]  ? __pfx_swapin_readahead+0x10/0x10
[ 1987.943194][T15808]  ? __filemap_get_folio+0x935/0xbc0
[ 1987.948518][T15808]  ? swap_cache_get_folio+0x9f/0x570
[ 1987.953833][T15808]  do_swap_page+0x791/0x3f40
[ 1987.958450][T15808]  ? rcu_is_watching+0x15/0xb0
[ 1987.963252][T15808]  ? do_swap_page+0x154/0x3f40
[ 1987.968039][T15808]  ? __pfx_do_swap_page+0x10/0x10
[ 1987.973093][T15808]  ? pte_offset_map_nolock+0x137/0x1f0
[ 1987.978587][T15808]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 1987.984429][T15808]  __handle_mm_fault+0x15e8/0x72d0
[ 1987.989594][T15808]  ? reacquire_held_locks+0x3eb/0x690
[ 1987.994986][T15808]  ? __pfx___handle_mm_fault+0x10/0x10
[ 1988.000483][T15808]  ? __pfx_reacquire_held_locks+0x10/0x10
[ 1988.006238][T15808]  ? mtree_range_walk+0x6fd/0x8e0
[ 1988.011291][T15808]  ? lock_vma_under_rcu+0x18a/0x730
[ 1988.016515][T15808]  ? __pfx_lock_release+0x10/0x10
[ 1988.021563][T15808]  ? lock_vma_under_rcu+0x2f9/0x730
[ 1988.026808][T15808]  ? lock_vma_under_rcu+0x18a/0x730
[ 1988.032030][T15808]  ? __pfx_lock_vma_under_rcu+0x10/0x10
[ 1988.037600][T15808]  handle_mm_fault+0x3c1/0x8a0
[ 1988.042400][T15808]  exc_page_fault+0x456/0x870
[ 1988.047107][T15808]  asm_exc_page_fault+0x26/0x30
[ 1988.052064][T15808] RIP: 0033:0x7f28e72521b9
[ 1988.056498][T15808] Code: 45 28 8b bb d0 02 00 00 48 8b 70 08 48 8b 10 b8 cb 00 00 00 0f 05 3d 00 f0 ff ff 77 54 f6 45 08 02 75 26 31 c0 48 8b 54 24 68 <64> 48 2b 14 25 28 00 00 00 75 5c 48 83 c4 70 5b 5d 41 5c 41 5d 41
[ 1988.076124][T15808] RSP: 002b:00007fff0ed97590 EFLAGS: 00010246
[ 1988.082213][T15808] RAX: 0000000000000000 RBX: 00007f28e7f006c0 RCX: 00007f28e72a9b99
[ 1988.090201][T15808] RDX: c5450307af8ce800 RSI: 0000000000000058 RDI: 00007fff0ed975a0
[ 1988.098187][T15808] RBP: 00007fff0ed978d0 R08: 00007f28e7f006c0 R09: 00007fff0ed97687
[ 1988.106172][T15808] R10: 0000000000000008 R11: 0000000000000202 R12: 00007fff0ed97686
[ 1988.114159][T15808] R13: 0000000000000000 R14: 00007fff0ed97687 R15: 00007fff0ed97688
[ 1988.122165][T15808]  </TASK>
11:30:50 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

11:30:50 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x884, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x854, 0x2, [@TCA_FLOW_POLICE={0x850, 0xa, 0x0, 0x1, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x15000000]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x6, 0x0, 0x0, 0x0, 0x0, 0x101}}}]}]}}]}, 0x884}}, 0x0)

11:30:50 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x480, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}, @TCA_RATE={0x6}]}, 0x480}}, 0x0)

[ 1988.224212][T15808] memory: usage 307200kB, limit 307200kB, failcnt 18231
[ 1988.266625][T15808] memory+swap: usage 307400kB, limit 9007199254740988kB, failcnt 0
[ 1988.313417][T15808] kmem: usage 307192kB, limit 9007199254740988kB, failcnt 0
[ 1988.359510][T15808] Memory cgroup stats for /syz2:
[ 1988.359666][T15808] cache 0
[ 1988.405875][T15808] rss 8192
[ 1988.409019][T15808] rss_huge 0
[ 1988.413750][T15808] shmem 0
11:30:50 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81000000]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

11:30:50 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 1988.446648][T15808] mapped_file 0
[ 1988.460932][T15808] dirty 0
[ 1988.473623][T15808] writeback 0
[ 1988.564232][T15808] workingset_refault_anon 8884
[ 1988.606368][T15808] workingset_refault_file 0
[ 1988.630490][T15808] swap 204800
[ 1988.640015][T15808] swapcached 4096
[ 1988.649036][T15808] pgpgin 238493
[ 1988.652562][T15808] pgpgout 238491
[ 1988.670091][T15808] pgfault 562880
[ 1988.688602][T15808] pgmajfault 8998
[ 1988.711574][T15808] inactive_anon 4096
[ 1988.728755][T15808] active_anon 4096
11:30:50 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc1490aff]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 1988.768274][T15808] inactive_file 0
[ 1988.782279][T15808] active_file 0
[ 1988.807056][T15808] unevictable 0
[ 1988.821145][T15808] hierarchical_memory_limit 314572800
11:30:50 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 1988.850448][T15808] hierarchical_memsw_limit 9223372036854771712
[ 1988.889450][T15808] total_cache 0
[ 1988.892935][T15808] total_rss 8192
[ 1988.929320][T15808] total_rss_huge 0
[ 1988.947218][T15808] total_shmem 0
[ 1988.970903][T15808] total_mapped_file 0
11:30:51 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe4ffffff]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 1988.993698][T15808] total_dirty 0
[ 1989.012956][T15808] total_writeback 0
[ 1989.033333][T15808] total_workingset_refault_anon 8884
[ 1989.089828][T15808] total_workingset_refault_file 0
[ 1989.115571][T15808] total_swap 204800
[ 1989.119419][T15808] total_swapcached 4096
[ 1989.123586][T15808] total_pgpgin 238493
11:30:51 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 1989.179448][T15808] total_pgpgout 238491
[ 1989.216557][T15808] total_pgfault 562880
[ 1989.220668][T15808] total_pgmajfault 8998
[ 1989.253833][T15808] total_inactive_anon 4096
[ 1989.275799][T15808] total_active_anon 4096
[ 1989.296234][T15808] total_inactive_file 0
[ 1989.328608][T15808] total_active_file 0
[ 1989.345665][T15808] total_unevictable 0
[ 1989.361281][T15808] anon_cost 0
11:30:51 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf0ffffff]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 1989.380631][T15808] file_cost 0
[ 1989.395735][T15808] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=15808,uid=0
[ 1989.432544][T15808] Memory cgroup out of memory: Killed process 15808 (syz-executor.2) total-vm:54508kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:80kB oom_score_adj:1000
11:30:51 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x884, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x84c, 0x2, [@TCA_FLOW_POLICE={0x848, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x6, 0x0, 0x0, 0x0, 0x0, 0x101}}}]}]}}, @TCA_RATE={0x6, 0x5, {0x0, 0x6}}]}, 0x884}}, 0x0)

11:30:51 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

11:30:51 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf2ff0000]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 1989.700797][T15852] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1989.756280][T15852] CPU: 0 PID: 15852 Comm: syz-executor.2 Not tainted 6.8.0-rc6-syzkaller-01699-g65f5dd4f02a8 #0
[ 1989.766742][T15852] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024
[ 1989.776808][T15852] Call Trace:
[ 1989.780098][T15852]  <TASK>
[ 1989.783049][T15852]  dump_stack_lvl+0x1e7/0x2e0
[ 1989.787759][T15852]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1989.792984][T15852]  ? __pfx__printk+0x10/0x10
[ 1989.797600][T15852]  ? ___ratelimit+0x4c4/0x670
[ 1989.802294][T15852]  ? __pfx____ratelimit+0x10/0x10
[ 1989.807331][T15852]  dump_header+0xda/0x6a0
[ 1989.811664][T15852]  oom_kill_process+0x3a7/0x930
[ 1989.816516][T15852]  out_of_memory+0xf67/0x1320
[ 1989.821197][T15852]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 1989.826830][T15852]  ? __pfx___mutex_lock+0x10/0x10
[ 1989.831853][T15852]  ? __pfx_out_of_memory+0x10/0x10
[ 1989.836966][T15852]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 1989.842510][T15852]  ? __pfx_lock_release+0x10/0x10
[ 1989.847532][T15852]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 1989.853599][T15852]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 1989.858793][T15852]  ? mem_cgroup_iter+0x3e9/0x560
[ 1989.863730][T15852]  try_charge_memcg+0xda2/0x18a0
[ 1989.868678][T15852]  ? __pfx_try_charge_memcg+0x10/0x10
[ 1989.874050][T15852]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 1989.879764][T15852]  ? __pfx_lock_release+0x10/0x10
[ 1989.884790][T15852]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 1989.890770][T15852]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 1989.896484][T15852]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 1989.902286][T15852]  obj_cgroup_charge+0x389/0x630
[ 1989.907226][T15852]  ? obj_cgroup_charge+0x121/0x630
[ 1989.912333][T15852]  ? __pfx_obj_cgroup_charge+0x10/0x10
[ 1989.917877][T15852]  ? kmem_cache_alloc+0x4f/0x340
[ 1989.922807][T15852]  ? __pfx___might_resched+0x10/0x10
[ 1989.928081][T15852]  ? __local_bh_enable_ip+0x168/0x200
[ 1989.933450][T15852]  ? preempt_count_add+0x93/0x190
[ 1989.938472][T15852]  __memcg_slab_pre_alloc_hook+0x28d/0x2b0
[ 1989.944275][T15852]  ? alloc_pid+0xa0/0xc50
[ 1989.948597][T15852]  kmem_cache_alloc+0x202/0x340
[ 1989.953454][T15852]  alloc_pid+0xa0/0xc50
[ 1989.957611][T15852]  ? copy_thread+0x631/0x980
[ 1989.962202][T15852]  copy_process+0x2299/0x3fc0
[ 1989.966886][T15852]  ? copy_process+0x9c3/0x3fc0
[ 1989.971649][T15852]  ? __pfx_copy_process+0x10/0x10
[ 1989.976666][T15852]  ? __might_fault+0xc5/0x120
[ 1989.981341][T15852]  ? __asan_memset+0x23/0x50
[ 1989.985932][T15852]  kernel_clone+0x21d/0x8d0
[ 1989.990431][T15852]  ? __pfx_kernel_clone+0x10/0x10
[ 1989.995463][T15852]  __se_sys_clone3+0x2cb/0x350
[ 1990.000223][T15852]  ? __pfx___se_sys_clone3+0x10/0x10
[ 1990.005529][T15852]  ? do_syscall_64+0x108/0x240
[ 1990.010285][T15852]  ? do_syscall_64+0xb4/0x240
[ 1990.014956][T15852]  do_syscall_64+0xf9/0x240
[ 1990.019449][T15852]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 1990.025343][T15852] RIP: 0033:0x7f28e72a9b99
[ 1990.029751][T15852] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 1990.049350][T15852] RSP: 002b:00007fff0ed97558 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 1990.057759][T15852] RAX: ffffffffffffffda RBX: 00007f28e7252270 RCX: 00007f28e72a9b99
[ 1990.065724][T15852] RDX: 00007f28e7252270 RSI: 0000000000000058 RDI: 00007fff0ed975a0
[ 1990.073682][T15852] RBP: 00007f28e7f006c0 R08: 00007f28e7f006c0 R09: 00007fff0ed97687
[ 1990.081645][T15852] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 1990.089604][T15852] R13: 000000000000000b R14: 00007fff0ed975a0 R15: 00007fff0ed97688
[ 1990.097579][T15852]  </TASK>
11:30:52 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 1990.224561][T15852] memory: usage 307200kB, limit 307200kB, failcnt 18711
[ 1990.238113][T15852] memory+swap: usage 307396kB, limit 9007199254740988kB, failcnt 0
[ 1990.284989][T15852] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0
[ 1990.309079][T15852] Memory cgroup stats for /syz2:
[ 1990.309219][T15852] cache 0
[ 1990.329221][T15852] rss 12288
11:30:52 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff0a49c1]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 1990.332358][T15852] rss_huge 0
[ 1990.344695][T15852] shmem 0
[ 1990.350716][T15852] mapped_file 0
[ 1990.366825][T15852] dirty 0
[ 1990.382349][T15852] writeback 0
[ 1990.387372][T15852] workingset_refault_anon 9049
[ 1990.410005][T15852] workingset_refault_file 0
[ 1990.423507][T15852] swap 237568
11:30:52 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 1990.439940][T15852] swapcached 12288
[ 1990.449361][T15852] pgpgin 238671
[ 1990.461375][T15852] pgpgout 238668
[ 1990.468047][T15852] pgfault 563152
[ 1990.471757][T15852] pgmajfault 9158
[ 1990.486504][T15852] inactive_anon 0
[ 1990.492502][T15852] active_anon 12288
[ 1990.501474][T15852] inactive_file 0
[ 1990.508713][T15852] active_file 0
[ 1990.517161][T15852] unevictable 0
[ 1990.524208][T15852] hierarchical_memory_limit 314572800
[ 1990.539123][T15852] hierarchical_memsw_limit 9223372036854771712
[ 1990.546152][T15852] total_cache 0
[ 1990.557546][T15852] total_rss 12288
[ 1990.561427][T15852] total_rss_huge 0
[ 1990.580601][T15852] total_shmem 0
11:30:52 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffff7f]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 1990.590951][T15852] total_mapped_file 0
[ 1990.602019][T15852] total_dirty 0
[ 1990.610752][T15852] total_writeback 0
[ 1990.625814][T15852] total_workingset_refault_anon 9049
[ 1990.637158][T15852] total_workingset_refault_file 0
[ 1990.653869][T15852] total_swap 237568
[ 1990.666843][T15852] total_swapcached 12288
[ 1990.679521][T15852] total_pgpgin 238671
[ 1990.694587][T15852] total_pgpgout 238668
11:30:52 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 1990.712599][T15852] total_pgfault 563152
[ 1990.734851][T15852] total_pgmajfault 9158
[ 1990.752332][T15852] total_inactive_anon 0
[ 1990.765635][T15852] total_active_anon 12288
[ 1990.787540][T15852] total_inactive_file 0
[ 1990.791722][T15852] total_active_file 0
[ 1990.822143][T15852] total_unevictable 0
[ 1990.837983][T15852] anon_cost 0
[ 1990.841294][T15852] file_cost 0
[ 1990.864501][T15852] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=15852,uid=0
[ 1990.901767][T15852] Memory cgroup out of memory: Killed process 15852 (syz-executor.2) total-vm:54508kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:80kB oom_score_adj:1000
11:30:52 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffe4]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

11:30:53 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x884, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x84c, 0x2, [@TCA_FLOW_POLICE={0x848, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5000000]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x6, 0x0, 0x0, 0x0, 0x0, 0x101}}}]}]}}, @TCA_RATE={0x6, 0x5, {0x0, 0x6}}]}, 0x884}}, 0x0)

11:30:53 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

11:30:53 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x884, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x854, 0x2, [@TCA_FLOW_POLICE={0x850, 0xa, 0x0, 0x1, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38000000]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x6, 0x0, 0x0, 0x0, 0x0, 0x101}}}]}]}}]}, 0x884}}, 0x0)

11:30:53 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x480, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}, @TCA_RATE={0x6}]}, 0x480}}, 0x0)

11:30:53 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffff0]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 1991.411636][ T5093] syz-executor.2 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[ 1991.424608][ T5093] CPU: 1 PID: 5093 Comm: syz-executor.2 Not tainted 6.8.0-rc6-syzkaller-01699-g65f5dd4f02a8 #0
[ 1991.434969][ T5093] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024
[ 1991.445038][ T5093] Call Trace:
[ 1991.448335][ T5093]  <TASK>
[ 1991.451283][ T5093]  dump_stack_lvl+0x1e7/0x2e0
[ 1991.455982][ T5093]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1991.461205][ T5093]  ? __pfx__printk+0x10/0x10
[ 1991.465826][ T5093]  ? ___ratelimit+0x4c4/0x670
[ 1991.470542][ T5093]  ? __pfx____ratelimit+0x10/0x10
[ 1991.475600][ T5093]  dump_header+0xda/0x6a0
[ 1991.479969][ T5093]  oom_kill_process+0x3a7/0x930
[ 1991.484853][ T5093]  out_of_memory+0xf67/0x1320
[ 1991.489558][ T5093]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 1991.495210][ T5093]  ? __pfx___mutex_lock+0x10/0x10
[ 1991.500254][ T5093]  ? __pfx_out_of_memory+0x10/0x10
[ 1991.505404][ T5093]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 1991.510978][ T5093]  ? __pfx_lock_release+0x10/0x10
[ 1991.516031][ T5093]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 1991.522127][ T5093]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 1991.527349][ T5093]  ? mem_cgroup_iter+0x3e9/0x560
[ 1991.532315][ T5093]  try_charge_memcg+0xda2/0x18a0
[ 1991.537253][ T5093]  ? mark_lock+0x9a/0x350
[ 1991.541591][ T5093]  ? __pfx_try_charge_memcg+0x10/0x10
[ 1991.546978][ T5093]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 1991.553122][ T5093]  charge_memcg+0xa2/0x160
[ 1991.557531][ T5093]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 1991.563594][ T5093]  __read_swap_cache_async+0x480/0x8b0
[ 1991.569052][ T5093]  ? mark_lock+0x9a/0x350
[ 1991.573378][ T5093]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 1991.579378][ T5093]  ? blk_start_plug+0x6f/0x1b0
[ 1991.584146][ T5093]  swap_cluster_readahead+0x398/0x810
[ 1991.589524][ T5093]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 1991.595853][ T5093]  ? __pfx_lock_release+0x10/0x10
[ 1991.600877][ T5093]  ? xas_descend+0x37e/0x470
[ 1991.605473][ T5093]  swapin_readahead+0x1ea/0x1070
[ 1991.610402][ T5093]  ? filemap_get_entry+0x127/0x4e0
[ 1991.615522][ T5093]  ? __pfx_swapin_readahead+0x10/0x10
[ 1991.620889][ T5093]  ? __filemap_get_folio+0x935/0xbc0
[ 1991.626179][ T5093]  ? swap_cache_get_folio+0x9f/0x570
[ 1991.631466][ T5093]  do_swap_page+0x791/0x3f40
[ 1991.636053][ T5093]  ? rcu_is_watching+0x15/0xb0
[ 1991.640824][ T5093]  ? do_swap_page+0x154/0x3f40
[ 1991.645582][ T5093]  ? __pfx_do_swap_page+0x10/0x10
[ 1991.650600][ T5093]  ? pte_offset_map_nolock+0x137/0x1f0
[ 1991.656054][ T5093]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 1991.661852][ T5093]  ? __pfx_validate_chain+0x10/0x10
[ 1991.667064][ T5093]  __handle_mm_fault+0x15e8/0x72d0
[ 1991.672219][ T5093]  ? __pfx___handle_mm_fault+0x10/0x10
[ 1991.677701][ T5093]  ? mt_find+0x226/0x850
[ 1991.681966][ T5093]  ? __pfx_lock_release+0x10/0x10
[ 1991.687029][ T5093]  ? mt_find+0x62d/0x850
[ 1991.691295][ T5093]  ? mt_find+0x226/0x850
[ 1991.695587][ T5093]  ? find_vma+0x142/0x1c0
[ 1991.699932][ T5093]  ? __pfx_find_vma+0x10/0x10
[ 1991.704628][ T5093]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 1991.710632][ T5093]  handle_mm_fault+0x3c1/0x8a0
[ 1991.715424][ T5093]  exc_page_fault+0x2ad/0x870
[ 1991.720132][ T5093]  asm_exc_page_fault+0x26/0x30
[ 1991.724999][ T5093] RIP: 0010:__get_user_8+0x11/0x20
[ 1991.730124][ T5093] Code: ca c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 89 c2 48 c1 fa 3f 48 09 d0 0f 01 cb <48> 8b 10 31 c0 0f 01 ca c3 cc cc cc cc 66 90 90 90 90 90 90 90 90
[ 1991.749742][ T5093] RSP: 0018:ffffc900043dfd98 EFLAGS: 00050202
[ 1991.755823][ T5093] RAX: 0000555555eb1da8 RBX: ffff88802b166e78 RCX: ffffc900043dfc03
[ 1991.763805][ T5093] RDX: 0000000000000000 RSI: ffffffff8baac7e0 RDI: ffffffff8bfe7820
[ 1991.771788][ T5093] RBP: ffffc900043dfec8 R08: ffffffff8f85e9ef R09: 1ffffffff1f0bd3d
[ 1991.779771][ T5093] R10: dffffc0000000000 R11: fffffbfff1f0bd3e R12: ffffc900043dfda0
[ 1991.787754][ T5093] R13: ffffc900043dffd8 R14: dffffc0000000000 R15: ffff88802b165940
[ 1991.795762][ T5093]  __rseq_handle_notify_resume+0x158/0x1490
[ 1991.801689][ T5093]  ? __pfx___rseq_handle_notify_resume+0x10/0x10
[ 1991.808044][ T5093]  ? syscall_exit_to_user_mode+0xa2/0x360
[ 1991.813781][ T5093]  syscall_exit_to_user_mode+0x113/0x360
[ 1991.819421][ T5093]  do_syscall_64+0x108/0x240
[ 1991.824004][ T5093]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 1991.829890][ T5093] RIP: 0033:0x7f28e72a91b5
[ 1991.834299][ T5093] Code: 24 0c 89 3c 24 48 89 4c 24 18 e8 f6 b9 ff ff 4c 8b 54 24 18 48 8b 54 24 10 41 89 c0 8b 74 24 0c 8b 3c 24 b8 e6 00 00 00 0f 05 <44> 89 c7 48 89 04 24 e8 4f ba ff ff 48 8b 04 24 48 83 c4 28 f7 d8
[ 1991.853892][ T5093] RSP: 002b:00007fff0ed97930 EFLAGS: 00000293 ORIG_RAX: 00000000000000e6
[ 1991.862298][ T5093] RAX: 0000000000000000 RBX: 000000000000567e RCX: 00007f28e72a91b5
[ 1991.870277][ T5093] RDX: 00007fff0ed97970 RSI: 0000000000000000 RDI: 0000000000000000
[ 1991.878251][ T5093] RBP: 00007fff0ed979fc R08: 0000000000000000 R09: 00007fff0ed9e0b0
[ 1991.886219][ T5093] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000032
[ 1991.894184][ T5093] R13: 00000000001e61aa R14: 00000000001e61aa R15: 0000000000000000
[ 1991.902159][ T5093]  </TASK>
[ 1991.974494][T15888] __nla_validate_parse: 56 callbacks suppressed
[ 1991.974511][T15888] netlink: 76 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 1992.004957][ T5093] memory: usage 307192kB, limit 307200kB, failcnt 18990
[ 1992.012172][ T5093] memory+swap: usage 307400kB, limit 9007199254740988kB, failcnt 0
11:30:54 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x11]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 1992.021645][ T5093] kmem: usage 307184kB, limit 9007199254740988kB, failcnt 0
[ 1992.036655][T15895] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 1992.052463][T15896] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 1992.062913][ T5093] Memory cgroup stats for /syz2:
[ 1992.063043][ T5093] cache 0
[ 1992.073194][ T5093] rss 8192
[ 1992.097202][ T5093] rss_huge 0
[ 1992.104479][ T5093] shmem 0
[ 1992.110874][ T5093] mapped_file 0
[ 1992.120329][ T5093] dirty 0
[ 1992.126870][ T5093] writeback 0
[ 1992.133825][ T5093] workingset_refault_anon 9136
[ 1992.143721][ T5093] workingset_refault_file 0
[ 1992.152183][ T5093] swap 204800
[ 1992.157136][ T5093] swapcached 4096
[ 1992.168140][ T5093] pgpgin 238769
[ 1992.171843][ T5093] pgpgout 238767
[ 1992.176150][ T5093] pgfault 563299
[ 1992.180205][ T5093] pgmajfault 9229
[ 1992.184059][ T5093] inactive_anon 0
[ 1992.187990][ T5093] active_anon 8192
[ 1992.192105][ T5093] inactive_file 0
[ 1992.196551][ T5093] active_file 0
[ 1992.200231][ T5093] unevictable 0
[ 1992.203908][ T5093] hierarchical_memory_limit 314572800
[ 1992.209546][ T5093] hierarchical_memsw_limit 9223372036854771712
[ 1992.219548][ T5093] total_cache 0
[ 1992.223239][ T5093] total_rss 8192
[ 1992.227028][ T5093] total_rss_huge 0
[ 1992.230978][ T5093] total_shmem 0
[ 1992.235433][ T5093] total_mapped_file 0
[ 1992.239633][ T5093] total_dirty 0
[ 1992.261626][T15898] netlink: 76 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 1992.272554][ T5093] total_writeback 0
[ 1992.290279][T15902] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 1992.294522][ T5093] total_workingset_refault_anon 9136
11:30:54 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 1992.317938][ T5093] total_workingset_refault_file 0
[ 1992.323068][T15903] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 1992.344872][ T5093] total_swap 204800
[ 1992.348786][ T5093] total_swapcached 4096
[ 1992.353027][ T5093] total_pgpgin 238769
[ 1992.359025][ T5093] total_pgpgout 238767
[ 1992.366544][ T5093] total_pgfault 563299
[ 1992.376970][ T5093] total_pgmajfault 9229
[ 1992.385775][ T5093] total_inactive_anon 0
[ 1992.395725][ T5093] total_active_anon 8192
[ 1992.400901][ T5093] total_inactive_file 0
[ 1992.405854][ T5093] total_active_file 0
[ 1992.409978][ T5093] total_unevictable 0
[ 1992.414099][ T5093] anon_cost 0
[ 1992.418205][ T5093] file_cost 0
[ 1992.421686][ T5093] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=15884,uid=0
[ 1992.439177][ T5093] Memory cgroup out of memory: Killed process 15884 (syz-executor.2) total-vm:54508kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:80kB oom_score_adj:1000
[ 1992.456702][T15904] netlink: 76 bytes leftover after parsing attributes in process `syz-executor.4'.
11:30:54 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x14]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

11:30:54 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x884, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x84c, 0x2, [@TCA_FLOW_POLICE={0x848, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6000000]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x6, 0x0, 0x0, 0x0, 0x0, 0x101}}}]}]}}, @TCA_RATE={0x6, 0x5, {0x0, 0x6}}]}, 0x884}}, 0x0)

[ 1992.471512][T15907] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 1992.496946][T15908] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
11:30:54 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 1992.632657][T15907] netlink: 76 bytes leftover after parsing attributes in process `syz-executor.1'.
11:30:54 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x15]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 1992.967500][T15913] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1993.001132][T15913] CPU: 1 PID: 15913 Comm: syz-executor.2 Not tainted 6.8.0-rc6-syzkaller-01699-g65f5dd4f02a8 #0
11:30:55 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 1993.011591][T15913] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024
[ 1993.021665][T15913] Call Trace:
[ 1993.024957][T15913]  <TASK>
[ 1993.027905][T15913]  dump_stack_lvl+0x1e7/0x2e0
[ 1993.032609][T15913]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1993.037829][T15913]  ? __pfx__printk+0x10/0x10
[ 1993.042442][T15913]  ? ___ratelimit+0x4c4/0x670
[ 1993.047145][T15913]  ? __pfx____ratelimit+0x10/0x10
[ 1993.052192][T15913]  dump_header+0xda/0x6a0
[ 1993.056545][T15913]  oom_kill_process+0x3a7/0x930
[ 1993.061426][T15913]  out_of_memory+0xf67/0x1320
[ 1993.066137][T15913]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 1993.071797][T15913]  ? __pfx___mutex_lock+0x10/0x10
[ 1993.076849][T15913]  ? __pfx_out_of_memory+0x10/0x10
[ 1993.081994][T15913]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 1993.087563][T15913]  ? __pfx_lock_release+0x10/0x10
[ 1993.092612][T15913]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 1993.098706][T15913]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 1993.103927][T15913]  ? mem_cgroup_iter+0x3e9/0x560
[ 1993.108885][T15913]  try_charge_memcg+0xda2/0x18a0
[ 1993.113858][T15913]  ? __pfx_try_charge_memcg+0x10/0x10
[ 1993.119276][T15913]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 1993.125016][T15913]  ? __pfx_lock_release+0x10/0x10
[ 1993.130061][T15913]  ? memcg_account_kmem+0x1e7/0x210
[ 1993.135300][T15913]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 1993.141133][T15913]  __memcg_kmem_charge_page+0xe1/0x250
[ 1993.146621][T15913]  memcg_charge_kernel_stack+0x210/0x550
[ 1993.152284][T15913]  dup_task_struct+0x15d/0x7d0
[ 1993.157079][T15913]  copy_process+0x5d5/0x3fc0
[ 1993.161704][T15913]  ? __might_fault+0xa9/0x120
[ 1993.166405][T15913]  ? __pfx_lock_release+0x10/0x10
[ 1993.171459][T15913]  ? __pfx_copy_process+0x10/0x10
[ 1993.176503][T15913]  ? __might_fault+0xc5/0x120
[ 1993.181208][T15913]  ? __asan_memset+0x23/0x50
[ 1993.185829][T15913]  kernel_clone+0x21d/0x8d0
[ 1993.190357][T15913]  ? __pfx_kernel_clone+0x10/0x10
[ 1993.195423][T15913]  __se_sys_clone3+0x2cb/0x350
[ 1993.200206][T15913]  ? __pfx___se_sys_clone3+0x10/0x10
[ 1993.205518][T15913]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 1993.211536][T15913]  ? exc_page_fault+0x587/0x870
[ 1993.216414][T15913]  ? do_syscall_64+0xb4/0x240
[ 1993.221115][T15913]  do_syscall_64+0xf9/0x240
[ 1993.225645][T15913]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 1993.231556][T15913] RIP: 0033:0x7f28e72a9b99
[ 1993.235988][T15913] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 1993.255615][T15913] RSP: 002b:00007fff0ed97558 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 1993.264050][T15913] RAX: ffffffffffffffda RBX: 00007f28e7252270 RCX: 00007f28e72a9b99
[ 1993.272041][T15913] RDX: 00007f28e7252270 RSI: 0000000000000058 RDI: 00007fff0ed975a0
[ 1993.280028][T15913] RBP: 00007f28e7f006c0 R08: 00007f28e7f006c0 R09: 00007fff0ed97687
[ 1993.288016][T15913] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 1993.296004][T15913] R13: 000000000000000b R14: 00007fff0ed975a0 R15: 00007fff0ed97688
[ 1993.304011][T15913]  </TASK>
11:30:55 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 1993.345419][T15913] memory: usage 307184kB, limit 307200kB, failcnt 19178
[ 1993.365926][T15913] memory+swap: usage 307376kB, limit 9007199254740988kB, failcnt 0
[ 1993.374116][T15913] kmem: usage 307168kB, limit 9007199254740988kB, failcnt 0
11:30:55 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 1993.413558][T15913] Memory cgroup stats for /syz2:
[ 1993.462129][T15913] cache 0
[ 1993.480734][T15913] rss 12288
[ 1993.484009][T15913] rss_huge 0
[ 1993.491540][T15913] shmem 0
[ 1993.540183][T15913] mapped_file 0
[ 1993.560741][T15913] dirty 0
[ 1993.567242][T15913] writeback 0
[ 1993.580551][T15913] workingset_refault_anon 9218
[ 1993.588430][T15913] workingset_refault_file 0
[ 1993.593147][T15913] swap 200704
[ 1993.598518][T15913] swapcached 4096
[ 1993.605519][T15913] pgpgin 238863
11:30:55 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x300]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 1993.610110][T15913] pgpgout 238860
[ 1993.617326][T15913] pgfault 563450
[ 1993.636642][T15913] pgmajfault 9308
[ 1993.660188][T15913] inactive_anon 0
[ 1993.684246][T15913] active_anon 12288
[ 1993.694182][T15913] inactive_file 0
[ 1993.703813][T15913] active_file 0
[ 1993.712582][T15913] unevictable 0
[ 1993.722491][T15913] hierarchical_memory_limit 314572800
[ 1993.735874][T15913] hierarchical_memsw_limit 9223372036854771712
[ 1993.750108][T15913] total_cache 0
[ 1993.777066][T15913] total_rss 12288
[ 1993.780814][T15913] total_rss_huge 0
[ 1993.788074][T15913] total_shmem 0
[ 1993.804538][T15913] total_mapped_file 0
[ 1993.815959][T15913] total_dirty 0
[ 1993.819474][T15913] total_writeback 0
11:30:55 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 1993.823294][T15913] total_workingset_refault_anon 9218
[ 1993.830771][T15913] total_workingset_refault_file 0
[ 1993.839029][T15913] total_swap 200704
[ 1993.844124][T15913] total_swapcached 4096
[ 1993.878169][T15913] total_pgpgin 238863
[ 1993.884822][T15913] total_pgpgout 238860
[ 1993.897607][T15913] total_pgfault 563450
[ 1993.906208][T15913] total_pgmajfault 9308
[ 1993.916116][T15913] total_inactive_anon 0
[ 1993.928079][T15913] total_active_anon 12288
[ 1993.948651][T15913] total_inactive_file 0
[ 1993.958057][T15913] total_active_file 0
[ 1993.965261][T15913] total_unevictable 0
[ 1993.972785][T15913] anon_cost 0
[ 1993.979423][T15913] file_cost 0
11:30:56 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x444]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 1993.997745][T15913] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=15913,uid=0
[ 1994.026853][T15913] Memory cgroup out of memory: Killed process 15913 (syz-executor.2) total-vm:54508kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:80kB oom_score_adj:1000
11:30:56 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

11:30:56 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x884, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x84c, 0x2, [@TCA_FLOW_POLICE={0x848, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7000000]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x6, 0x0, 0x0, 0x0, 0x0, 0x101}}}]}]}}, @TCA_RATE={0x6, 0x5, {0x0, 0x6}}]}, 0x884}}, 0x0)

11:30:56 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x500]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

11:30:56 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x884, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x854, 0x2, [@TCA_FLOW_POLICE={0x850, 0xa, 0x0, 0x1, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000000]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x6, 0x0, 0x0, 0x0, 0x0, 0x101}}}]}]}}]}, 0x884}}, 0x0)

11:30:56 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x480, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}, @TCA_RATE={0x6}]}, 0x480}}, 0x0)

11:30:56 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 1994.629316][T15947] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1994.642232][T15947] CPU: 0 PID: 15947 Comm: syz-executor.2 Not tainted 6.8.0-rc6-syzkaller-01699-g65f5dd4f02a8 #0
[ 1994.652677][T15947] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024
[ 1994.662732][T15947] Call Trace:
[ 1994.666005][T15947]  <TASK>
[ 1994.668927][T15947]  dump_stack_lvl+0x1e7/0x2e0
[ 1994.673598][T15947]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1994.678798][T15947]  ? __pfx__printk+0x10/0x10
[ 1994.683403][T15947]  ? ___ratelimit+0x4c4/0x670
[ 1994.688089][T15947]  ? __pfx____ratelimit+0x10/0x10
[ 1994.693111][T15947]  dump_header+0xda/0x6a0
[ 1994.697445][T15947]  oom_kill_process+0x3a7/0x930
[ 1994.702291][T15947]  out_of_memory+0xf67/0x1320
[ 1994.706966][T15947]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 1994.712594][T15947]  ? __pfx___mutex_lock+0x10/0x10
[ 1994.717613][T15947]  ? __pfx_out_of_memory+0x10/0x10
[ 1994.722729][T15947]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 1994.728272][T15947]  ? __pfx_lock_release+0x10/0x10
[ 1994.733293][T15947]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 1994.739359][T15947]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 1994.744552][T15947]  ? mem_cgroup_iter+0x3e9/0x560
[ 1994.749486][T15947]  try_charge_memcg+0xda2/0x18a0
[ 1994.754447][T15947]  ? __pfx_try_charge_memcg+0x10/0x10
[ 1994.759831][T15947]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 1994.765544][T15947]  ? __pfx_lock_release+0x10/0x10
[ 1994.770564][T15947]  ? memcg_account_kmem+0x1e7/0x210
[ 1994.775770][T15947]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 1994.781572][T15947]  __memcg_kmem_charge_page+0xe1/0x250
[ 1994.787033][T15947]  memcg_charge_kernel_stack+0x37e/0x550
[ 1994.792663][T15947]  dup_task_struct+0x40d/0x7d0
[ 1994.797423][T15947]  copy_process+0x5d5/0x3fc0
[ 1994.802015][T15947]  ? __might_fault+0xa9/0x120
[ 1994.806688][T15947]  ? __pfx_lock_release+0x10/0x10
[ 1994.811714][T15947]  ? __pfx_copy_process+0x10/0x10
[ 1994.816729][T15947]  ? __might_fault+0xc5/0x120
[ 1994.821403][T15947]  ? __asan_memset+0x23/0x50
[ 1994.825992][T15947]  kernel_clone+0x21d/0x8d0
[ 1994.830493][T15947]  ? __pfx_kernel_clone+0x10/0x10
[ 1994.835537][T15947]  __se_sys_clone3+0x2cb/0x350
[ 1994.840316][T15947]  ? __pfx___se_sys_clone3+0x10/0x10
[ 1994.845623][T15947]  ? do_syscall_64+0x108/0x240
[ 1994.850384][T15947]  ? do_syscall_64+0xb4/0x240
[ 1994.855054][T15947]  do_syscall_64+0xf9/0x240
[ 1994.859551][T15947]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 1994.865433][T15947] RIP: 0033:0x7f28e72a9b99
[ 1994.869838][T15947] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 1994.889433][T15947] RSP: 002b:00007fff0ed97558 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 1994.897842][T15947] RAX: ffffffffffffffda RBX: 00007f28e7252270 RCX: 00007f28e72a9b99
[ 1994.905807][T15947] RDX: 00007f28e7252270 RSI: 0000000000000058 RDI: 00007fff0ed975a0
[ 1994.913767][T15947] RBP: 00007f28e7f006c0 R08: 00007f28e7f006c0 R09: 00007fff0ed97687
[ 1994.921726][T15947] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 1994.929686][T15947] R13: 000000000000000b R14: 00007fff0ed975a0 R15: 00007fff0ed97688
[ 1994.937666][T15947]  </TASK>
[ 1994.989689][T15947] memory: usage 307200kB, limit 307200kB, failcnt 19422
[ 1995.031574][T15947] memory+swap: usage 307424kB, limit 9007199254740988kB, failcnt 0
[ 1995.062652][T15947] kmem: usage 307180kB, limit 9007199254740988kB, failcnt 0
[ 1995.085993][T15947] Memory cgroup stats for /syz2:
[ 1995.086148][T15947] cache 4096
[ 1995.094316][T15947] rss 12288
[ 1995.119864][T15947] rss_huge 0
11:30:57 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x600]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 1995.141967][T15947] shmem 0
[ 1995.150979][T15947] mapped_file 0
[ 1995.167883][T15947] dirty 0
[ 1995.170844][T15947] writeback 0
[ 1995.174137][T15947] workingset_refault_anon 9293
[ 1995.201410][T15947] workingset_refault_file 0
[ 1995.217310][T15947] swap 233472
[ 1995.220621][T15947] swapcached 8192
11:30:57 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 1995.284644][T15947] pgpgin 238952
[ 1995.289895][T15947] pgpgout 238948
[ 1995.306983][T15947] pgfault 563585
[ 1995.317804][T15947] pgmajfault 9373
[ 1995.325994][T15947] inactive_anon 0
[ 1995.333089][T15947] active_anon 12288
[ 1995.343513][T15947] inactive_file 0
[ 1995.352598][T15947] active_file 4096
[ 1995.361046][T15947] unevictable 0
[ 1995.369258][T15947] hierarchical_memory_limit 314572800
[ 1995.386603][T15947] hierarchical_memsw_limit 9223372036854771712
[ 1995.407693][T15947] total_cache 4096
[ 1995.422228][T15947] total_rss 12288
[ 1995.436740][T15947] total_rss_huge 0
[ 1995.452624][T15947] total_shmem 0
[ 1995.471383][T15947] total_mapped_file 0
11:30:57 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x700]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 1995.497093][T15947] total_dirty 0
[ 1995.505449][T15947] total_writeback 0
[ 1995.512784][T15947] total_workingset_refault_anon 9293
[ 1995.525320][T15947] total_workingset_refault_file 0
[ 1995.542737][T15947] total_swap 233472
[ 1995.564034][T15947] total_swapcached 8192
[ 1995.584219][T15947] total_pgpgin 238952
11:30:57 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 1995.607827][T15947] total_pgpgout 238948
[ 1995.630156][T15947] total_pgfault 563585
[ 1995.639297][T15947] total_pgmajfault 9373
[ 1995.650697][T15947] total_inactive_anon 0
[ 1995.666922][T15947] total_active_anon 12288
[ 1995.673877][T15947] total_inactive_file 0
[ 1995.686255][T15947] total_active_file 4096
[ 1995.696864][T15947] total_unevictable 0
[ 1995.701258][T15947] anon_cost 0
[ 1995.708315][T15947] file_cost 0
[ 1995.711797][T15947] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=15947,uid=0
[ 1995.737602][T15947] Memory cgroup out of memory: Killed process 15947 (syz-executor.2) total-vm:54508kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:80kB oom_score_adj:1000
11:30:57 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x884, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x84c, 0x2, [@TCA_FLOW_POLICE={0x848, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000000]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x6, 0x0, 0x0, 0x0, 0x0, 0x101}}}]}]}}, @TCA_RATE={0x6, 0x5, {0x0, 0x6}}]}, 0x884}}, 0x0)

11:30:57 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x900]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

11:30:58 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

11:30:58 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa00]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 1996.265983][T15978] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1996.288730][T15978] CPU: 1 PID: 15978 Comm: syz-executor.2 Not tainted 6.8.0-rc6-syzkaller-01699-g65f5dd4f02a8 #0
[ 1996.299183][T15978] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024
[ 1996.309247][T15978] Call Trace:
[ 1996.312532][T15978]  <TASK>
[ 1996.315481][T15978]  dump_stack_lvl+0x1e7/0x2e0
[ 1996.320194][T15978]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1996.325413][T15978]  ? __pfx__printk+0x10/0x10
[ 1996.330022][T15978]  ? ___ratelimit+0x4c4/0x670
[ 1996.334729][T15978]  ? __pfx____ratelimit+0x10/0x10
[ 1996.339781][T15978]  dump_header+0xda/0x6a0
[ 1996.344145][T15978]  oom_kill_process+0x3a7/0x930
[ 1996.349032][T15978]  out_of_memory+0xf67/0x1320
[ 1996.353738][T15978]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 1996.359394][T15978]  ? __pfx___mutex_lock+0x10/0x10
[ 1996.364439][T15978]  ? __pfx_out_of_memory+0x10/0x10
[ 1996.369586][T15978]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 1996.375153][T15978]  ? __pfx_lock_release+0x10/0x10
[ 1996.380203][T15978]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 1996.386302][T15978]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 1996.391524][T15978]  ? mem_cgroup_iter+0x3e9/0x560
[ 1996.396496][T15978]  try_charge_memcg+0xda2/0x18a0
[ 1996.401472][T15978]  ? __pfx_try_charge_memcg+0x10/0x10
[ 1996.406840][T15978]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 1996.412553][T15978]  ? __pfx_lock_release+0x10/0x10
[ 1996.417571][T15978]  ? memcg_account_kmem+0x1e7/0x210
[ 1996.422771][T15978]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 1996.428573][T15978]  __memcg_kmem_charge_page+0xe1/0x250
[ 1996.434029][T15978]  memcg_charge_kernel_stack+0x304/0x550
[ 1996.439658][T15978]  dup_task_struct+0x40d/0x7d0
[ 1996.444428][T15978]  copy_process+0x5d5/0x3fc0
[ 1996.449033][T15978]  ? __might_fault+0xa9/0x120
[ 1996.453713][T15978]  ? __pfx_lock_release+0x10/0x10
[ 1996.458735][T15978]  ? __pfx_copy_process+0x10/0x10
[ 1996.463747][T15978]  ? __might_fault+0xc5/0x120
[ 1996.468420][T15978]  ? __asan_memset+0x23/0x50
[ 1996.473008][T15978]  kernel_clone+0x21d/0x8d0
[ 1996.477509][T15978]  ? __pfx_kernel_clone+0x10/0x10
[ 1996.482546][T15978]  __se_sys_clone3+0x2cb/0x350
[ 1996.487305][T15978]  ? __pfx___se_sys_clone3+0x10/0x10
[ 1996.492600][T15978]  ? do_syscall_64+0x108/0x240
[ 1996.497359][T15978]  ? do_syscall_64+0xb4/0x240
[ 1996.502032][T15978]  do_syscall_64+0xf9/0x240
[ 1996.506532][T15978]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 1996.512414][T15978] RIP: 0033:0x7f28e72a9b99
[ 1996.516820][T15978] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 1996.536419][T15978] RSP: 002b:00007fff0ed97558 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 1996.544827][T15978] RAX: ffffffffffffffda RBX: 00007f28e7252270 RCX: 00007f28e72a9b99
[ 1996.552788][T15978] RDX: 00007f28e7252270 RSI: 0000000000000058 RDI: 00007fff0ed975a0
[ 1996.560749][T15978] RBP: 00007f28e7f006c0 R08: 00007f28e7f006c0 R09: 00007fff0ed97687
[ 1996.568709][T15978] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 1996.576672][T15978] R13: 000000000000000b R14: 00007fff0ed975a0 R15: 00007fff0ed97688
[ 1996.584650][T15978]  </TASK>
11:30:58 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 1996.665266][T15978] memory: usage 307200kB, limit 307200kB, failcnt 19668
[ 1996.687310][T15978] memory+swap: usage 307436kB, limit 9007199254740988kB, failcnt 0
[ 1996.704796][T15978] kmem: usage 307180kB, limit 9007199254740988kB, failcnt 0
[ 1996.724193][T15978] Memory cgroup stats for /syz2:
[ 1996.724300][T15978] cache 8192
[ 1996.734828][T15978] rss 12288
[ 1996.742245][T15978] rss_huge 0
[ 1996.751156][T15978] shmem 0
[ 1996.754829][T15978] mapped_file 0
[ 1996.758449][T15978] dirty 0
[ 1996.761532][T15978] writeback 0
[ 1996.919989][T15978] workingset_refault_anon 9381
[ 1996.925528][T15978] workingset_refault_file 0
[ 1996.930752][T15978] swap 241664
[ 1996.934312][T15978] swapcached 8192
[ 1996.959086][T15978] pgpgin 239053
[ 1996.962743][T15978] pgpgout 239048
[ 1996.976471][T15978] pgfault 563748
[ 1996.980218][T15978] pgmajfault 9456
[ 1996.984018][T15978] inactive_anon 0
[ 1996.992809][T15978] active_anon 12288
[ 1996.999006][T15978] inactive_file 0
[ 1997.017216][T15978] active_file 8192
11:30:59 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb00]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 1997.025800][T15978] unevictable 0
[ 1997.038004][T15978] hierarchical_memory_limit 314572800
[ 1997.047053][T15978] hierarchical_memsw_limit 9223372036854771712
[ 1997.059240][T15978] total_cache 8192
[ 1997.063114][T15978] total_rss 12288
[ 1997.068680][T15978] total_rss_huge 0
[ 1997.087041][T15978] total_shmem 0
[ 1997.094144][T15978] total_mapped_file 0
[ 1997.107605][T15978] total_dirty 0
[ 1997.119473][T15978] total_writeback 0
[ 1997.129507][T15994] __nla_validate_parse: 59 callbacks suppressed
[ 1997.129523][T15994] netlink: 76 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 1997.156315][T15978] total_workingset_refault_anon 9381
[ 1997.177108][T15978] total_workingset_refault_file 0
[ 1997.182308][T15978] total_swap 241664
[ 1997.194658][T15978] total_swapcached 8192
[ 1997.201265][T15978] total_pgpgin 239053
[ 1997.211153][T15978] total_pgpgout 239048
[ 1997.222618][T15978] total_pgfault 563748
[ 1997.234573][T15978] total_pgmajfault 9456
11:30:59 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 1997.245750][T15978] total_inactive_anon 0
[ 1997.255906][T15978] total_active_anon 12288
[ 1997.260726][T15978] total_inactive_file 0
[ 1997.265634][T15978] total_active_file 8192
[ 1997.270160][T15978] total_unevictable 0
[ 1997.276704][T15998] netlink: 76 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 1997.321270][T15996] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 1997.338772][T15997] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 1997.350181][T15978] anon_cost 0
[ 1997.353691][T15978] file_cost 0
[ 1997.360971][T15978] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=15978,uid=0
[ 1997.385103][T15978] Memory cgroup out of memory: Killed process 15978 (syz-executor.2) total-vm:54508kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:80kB oom_score_adj:1000
11:30:59 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x884, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x84c, 0x2, [@TCA_FLOW_POLICE={0x848, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9000000]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x6, 0x0, 0x0, 0x0, 0x0, 0x101}}}]}]}}, @TCA_RATE={0x6, 0x5, {0x0, 0x6}}]}, 0x884}}, 0x0)

11:30:59 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x884, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x854, 0x2, [@TCA_FLOW_POLICE={0x850, 0xa, 0x0, 0x1, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50080000]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x6, 0x0, 0x0, 0x0, 0x0, 0x101}}}]}]}}]}, 0x884}}, 0x0)

11:30:59 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1100]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 1997.532322][T16000] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 1997.562480][T16001] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
11:30:59 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x480, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}, @TCA_RATE={0x6}]}, 0x480}}, 0x0)

[ 1997.703001][T16002] netlink: 76 bytes leftover after parsing attributes in process `syz-executor.1'.
11:30:59 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x11]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 1997.763445][T16007] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 1997.803008][T16009] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 1997.890170][T16005] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1997.919219][T16005] CPU: 1 PID: 16005 Comm: syz-executor.2 Not tainted 6.8.0-rc6-syzkaller-01699-g65f5dd4f02a8 #0
[ 1997.929671][T16005] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024
[ 1997.939749][T16005] Call Trace:
[ 1997.943047][T16005]  <TASK>
[ 1997.945999][T16005]  dump_stack_lvl+0x1e7/0x2e0
[ 1997.950702][T16005]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1997.955924][T16005]  ? __pfx__printk+0x10/0x10
[ 1997.960539][T16005]  ? ___ratelimit+0x4c4/0x670
[ 1997.965241][T16005]  ? __pfx____ratelimit+0x10/0x10
[ 1997.970293][T16005]  dump_header+0xda/0x6a0
[ 1997.974654][T16005]  oom_kill_process+0x3a7/0x930
[ 1997.979530][T16005]  out_of_memory+0xf67/0x1320
[ 1997.984230][T16005]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 1997.989878][T16005]  ? __pfx___mutex_lock+0x10/0x10
[ 1997.994928][T16005]  ? __pfx_out_of_memory+0x10/0x10
[ 1998.000069][T16005]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 1998.005638][T16005]  ? __pfx_lock_release+0x10/0x10
[ 1998.010687][T16005]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 1998.016785][T16005]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 1998.022011][T16005]  ? mem_cgroup_iter+0x3e9/0x560
[ 1998.026972][T16005]  try_charge_memcg+0xda2/0x18a0
[ 1998.031955][T16005]  ? __pfx_try_charge_memcg+0x10/0x10
[ 1998.037347][T16005]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 1998.043090][T16005]  ? __pfx_lock_release+0x10/0x10
[ 1998.048138][T16005]  ? memcg_account_kmem+0x1e7/0x210
[ 1998.050040][T16011] netlink: 76 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 1998.053353][T16005]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 1998.053388][T16005]  __memcg_kmem_charge_page+0xe1/0x250
[ 1998.073912][T16005]  memcg_charge_kernel_stack+0x3f8/0x550
[ 1998.079575][T16005]  dup_task_struct+0x15d/0x7d0
[ 1998.084369][T16005]  copy_process+0x5d5/0x3fc0
[ 1998.089002][T16005]  ? __might_fault+0xa9/0x120
[ 1998.093706][T16005]  ? __pfx_lock_release+0x10/0x10
[ 1998.098757][T16005]  ? __pfx_copy_process+0x10/0x10
[ 1998.103803][T16005]  ? __might_fault+0xc5/0x120
[ 1998.108503][T16005]  ? __asan_memset+0x23/0x50
[ 1998.113120][T16005]  kernel_clone+0x21d/0x8d0
[ 1998.117649][T16005]  ? __pfx_kernel_clone+0x10/0x10
[ 1998.122703][T16005]  __se_sys_clone3+0x2cb/0x350
[ 1998.127492][T16005]  ? __pfx___se_sys_clone3+0x10/0x10
[ 1998.132812][T16005]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 1998.138828][T16005]  ? exc_page_fault+0x587/0x870
[ 1998.143728][T16005]  ? do_syscall_64+0xb4/0x240
[ 1998.148430][T16005]  do_syscall_64+0xf9/0x240
[ 1998.152959][T16005]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 1998.158884][T16005] RIP: 0033:0x7f28e72a9b99
[ 1998.163318][T16005] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 1998.182947][T16005] RSP: 002b:00007fff0ed97558 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 1998.191382][T16005] RAX: ffffffffffffffda RBX: 00007f28e7252270 RCX: 00007f28e72a9b99
[ 1998.199372][T16005] RDX: 00007f28e7252270 RSI: 0000000000000058 RDI: 00007fff0ed975a0
[ 1998.207374][T16005] RBP: 00007f28e7f006c0 R08: 00007f28e7f006c0 R09: 00007fff0ed97687
[ 1998.215370][T16005] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 1998.223362][T16005] R13: 000000000000000b R14: 00007fff0ed975a0 R15: 00007fff0ed97688
[ 1998.231373][T16005]  </TASK>
[ 1998.261436][T16005] memory: usage 307200kB, limit 307200kB, failcnt 19905
11:31:00 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1400]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

11:31:00 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x14]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 1998.335900][T16005] memory+swap: usage 307396kB, limit 9007199254740988kB, failcnt 0
[ 1998.353728][T16005] kmem: usage 307184kB, limit 9007199254740988kB, failcnt 0
[ 1998.393104][T16005] Memory cgroup stats for /syz2:
[ 1998.399074][T16005] cache 4096
[ 1998.433269][T16005] rss 12288
[ 1998.441558][T16005] rss_huge 0
[ 1998.453611][T16005] shmem 0
[ 1998.462218][T16005] mapped_file 0
[ 1998.475021][T16005] dirty 4096
[ 1998.483574][T16005] writeback 0
[ 1998.496006][T16005] workingset_refault_anon 9465
[ 1998.508012][T16005] workingset_refault_file 0
[ 1998.532878][T16005] swap 241664
[ 1998.541688][T16005] swapcached 12288
[ 1998.554348][T16005] pgpgin 239148
[ 1998.564984][T16005] pgpgout 239144
[ 1998.568555][T16005] pgfault 563894
[ 1998.572112][T16005] pgmajfault 9533
[ 1998.589456][T16005] inactive_anon 0
[ 1998.593111][T16005] active_anon 12288
[ 1998.606951][T16005] inactive_file 0
[ 1998.610605][T16005] active_file 4096
[ 1998.615204][T16005] unevictable 0
[ 1998.619404][T16005] hierarchical_memory_limit 314572800
[ 1998.633119][T16005] hierarchical_memsw_limit 9223372036854771712
11:31:00 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x15]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 1998.653083][T16005] total_cache 4096
[ 1998.670448][T16005] total_rss 12288
[ 1998.674107][T16005] total_rss_huge 0
11:31:00 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1500]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 1998.733446][T16005] total_shmem 0
[ 1998.737365][T16005] total_mapped_file 0
[ 1998.741511][T16005] total_dirty 4096
[ 1998.747908][T16005] total_writeback 0
[ 1998.751864][T16005] total_workingset_refault_anon 9465
[ 1998.758510][T16005] total_workingset_refault_file 0
[ 1998.772066][T16005] total_swap 241664
[ 1998.781792][T16005] total_swapcached 12288
[ 1998.790881][T16005] total_pgpgin 239148
[ 1998.812965][T16005] total_pgpgout 239144
[ 1998.835648][T16005] total_pgfault 563894
[ 1998.839738][T16005] total_pgmajfault 9533
[ 1998.843905][T16005] total_inactive_anon 0
[ 1998.895394][T16005] total_active_anon 12288
[ 1998.907008][T16005] total_inactive_file 0
[ 1998.912507][T16005] total_active_file 4096
[ 1998.923231][T16005] total_unevictable 0
[ 1998.939679][T16005] anon_cost 0
11:31:00 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 1998.947569][T16005] file_cost 0
[ 1998.957739][T16005] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=16005,uid=0
[ 1999.014357][T16005] Memory cgroup out of memory: Killed process 16005 (syz-executor.2) total-vm:54508kB, anon-rss:464kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:80kB oom_score_adj:1000
11:31:01 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x884, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x84c, 0x2, [@TCA_FLOW_POLICE={0x848, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa000000]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x6, 0x0, 0x0, 0x0, 0x0, 0x101}}}]}]}}, @TCA_RATE={0x6, 0x5, {0x0, 0x6}}]}, 0x884}}, 0x0)

11:31:01 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3800]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

11:31:01 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x103]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

11:31:01 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3f00]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 1999.580083][T16041] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1999.621322][T16041] CPU: 0 PID: 16041 Comm: syz-executor.2 Not tainted 6.8.0-rc6-syzkaller-01699-g65f5dd4f02a8 #0
[ 1999.631785][T16041] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024
[ 1999.641869][T16041] Call Trace:
[ 1999.645167][T16041]  <TASK>
[ 1999.648118][T16041]  dump_stack_lvl+0x1e7/0x2e0
[ 1999.652828][T16041]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1999.658051][T16041]  ? __pfx__printk+0x10/0x10
[ 1999.662665][T16041]  ? ___ratelimit+0x4c4/0x670
[ 1999.667384][T16041]  ? __pfx____ratelimit+0x10/0x10
[ 1999.672481][T16041]  dump_header+0xda/0x6a0
[ 1999.676846][T16041]  oom_kill_process+0x3a7/0x930
[ 1999.681730][T16041]  out_of_memory+0xf67/0x1320
[ 1999.686438][T16041]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 1999.692096][T16041]  ? __pfx___mutex_lock+0x10/0x10
[ 1999.697144][T16041]  ? __pfx_out_of_memory+0x10/0x10
[ 1999.702297][T16041]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 1999.707866][T16041]  ? __pfx_lock_release+0x10/0x10
[ 1999.712919][T16041]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 1999.719014][T16041]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 1999.724236][T16041]  ? mem_cgroup_iter+0x3e9/0x560
[ 1999.729213][T16041]  try_charge_memcg+0xda2/0x18a0
[ 1999.734208][T16041]  ? __pfx_try_charge_memcg+0x10/0x10
[ 1999.739606][T16041]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 1999.745349][T16041]  ? __pfx_lock_release+0x10/0x10
[ 1999.750398][T16041]  ? memcg_account_kmem+0x1e7/0x210
[ 1999.755632][T16041]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 1999.761474][T16041]  __memcg_kmem_charge_page+0xe1/0x250
[ 1999.766967][T16041]  memcg_charge_kernel_stack+0x37e/0x550
[ 1999.772627][T16041]  dup_task_struct+0x40d/0x7d0
[ 1999.777416][T16041]  copy_process+0x5d5/0x3fc0
[ 1999.782045][T16041]  ? __might_fault+0xa9/0x120
[ 1999.786746][T16041]  ? __pfx_lock_release+0x10/0x10
[ 1999.791803][T16041]  ? __pfx_copy_process+0x10/0x10
[ 1999.796852][T16041]  ? __might_fault+0xc5/0x120
[ 1999.801559][T16041]  ? __asan_memset+0x23/0x50
[ 1999.806181][T16041]  kernel_clone+0x21d/0x8d0
[ 1999.810710][T16041]  ? __pfx_kernel_clone+0x10/0x10
[ 1999.815774][T16041]  __se_sys_clone3+0x2cb/0x350
[ 1999.820560][T16041]  ? __might_fault+0xa9/0x120
[ 1999.825268][T16041]  ? __pfx___se_sys_clone3+0x10/0x10
[ 1999.830602][T16041]  ? do_syscall_64+0x108/0x240
[ 1999.835389][T16041]  ? do_syscall_64+0xb4/0x240
[ 1999.840090][T16041]  do_syscall_64+0xf9/0x240
[ 1999.844618][T16041]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 1999.850533][T16041] RIP: 0033:0x7f28e72a9b99
[ 1999.854964][T16041] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 1999.874586][T16041] RSP: 002b:00007fff0ed97558 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 1999.883021][T16041] RAX: ffffffffffffffda RBX: 00007f28e7252270 RCX: 00007f28e72a9b99
[ 1999.891012][T16041] RDX: 00007f28e7252270 RSI: 0000000000000058 RDI: 00007fff0ed975a0
[ 1999.898998][T16041] RBP: 00007f28e7f006c0 R08: 00007f28e7f006c0 R09: 00007fff0ed97687
[ 1999.906984][T16041] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 1999.914969][T16041] R13: 000000000000000b R14: 00007fff0ed975a0 R15: 00007fff0ed97688
[ 1999.922976][T16041]  </TASK>
[ 1999.954218][T16041] memory: usage 307200kB, limit 307200kB, failcnt 20146
11:31:02 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x108]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 1999.997112][T16041] memory+swap: usage 307396kB, limit 9007199254740988kB, failcnt 0
[ 2000.011166][T16041] kmem: usage 307184kB, limit 9007199254740988kB, failcnt 0
[ 2000.019215][T16041] Memory cgroup stats for /syz2:
[ 2000.019360][T16041] cache 4096
[ 2000.033668][T16041] rss 12288
[ 2000.038761][T16041] rss_huge 0
[ 2000.042062][T16041] shmem 0
[ 2000.045623][T16041] mapped_file 0
[ 2000.049178][T16041] dirty 4096
[ 2000.052472][T16041] writeback 0
[ 2000.056493][T16041] workingset_refault_anon 9564
[ 2000.061353][T16041] workingset_refault_file 0
[ 2000.066787][T16041] swap 200704
[ 2000.070174][T16041] swapcached 8192
[ 2000.073873][T16041] pgpgin 239258
[ 2000.084600][T16041] pgpgout 239254
[ 2000.088168][T16041] pgfault 564066
[ 2000.091722][T16041] pgmajfault 9622
[ 2000.110885][T16041] inactive_anon 0
[ 2000.119689][T16041] active_anon 12288
[ 2000.132602][T16041] inactive_file 0
[ 2000.143379][T16041] active_file 4096
[ 2000.153160][T16041] unevictable 0
11:31:02 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2000.179371][T16041] hierarchical_memory_limit 314572800
[ 2000.204287][T16041] hierarchical_memsw_limit 9223372036854771712
[ 2000.232239][T16041] total_cache 4096
[ 2000.242300][T16041] total_rss 12288
[ 2000.259007][T16041] total_rss_huge 0
[ 2000.276522][T16041] total_shmem 0
[ 2000.280009][T16041] total_mapped_file 0
[ 2000.283997][T16041] total_dirty 4096
[ 2000.310297][T16041] total_writeback 0
[ 2000.314135][T16041] total_workingset_refault_anon 9564
[ 2000.340476][T16041] total_workingset_refault_file 0
11:31:02 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10c]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2000.357178][T16041] total_swap 200704
[ 2000.361014][T16041] total_swapcached 8192
[ 2000.395364][T16041] total_pgpgin 239258
[ 2000.399374][T16041] total_pgpgout 239254
[ 2000.403450][T16041] total_pgfault 564066
[ 2000.433437][T16041] total_pgmajfault 9622
[ 2000.446704][T16041] total_inactive_anon 0
[ 2000.452638][T16041] total_active_anon 12288
[ 2000.460384][T16041] total_inactive_file 0
[ 2000.477673][T16041] total_active_file 4096
[ 2000.481939][T16041] total_unevictable 0
11:31:02 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4404]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2000.507782][T16041] anon_cost 0
[ 2000.513387][T16041] file_cost 0
[ 2000.542285][T16041] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=16041,uid=0
11:31:02 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x884, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x854, 0x2, [@TCA_FLOW_POLICE={0x850, 0xa, 0x0, 0x1, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x78b4ccc3]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x6, 0x0, 0x0, 0x0, 0x0, 0x101}}}]}]}}]}, 0x884}}, 0x0)

[ 2000.600593][T16041] Memory cgroup out of memory: Killed process 16041 (syz-executor.2) total-vm:54508kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:80kB oom_score_adj:1000
11:31:02 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x884, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x84c, 0x2, [@TCA_FLOW_POLICE={0x848, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb000000]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x6, 0x0, 0x0, 0x0, 0x0, 0x101}}}]}]}}, @TCA_RATE={0x6, 0x5, {0x0, 0x6}}]}, 0x884}}, 0x0)

11:31:02 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x480, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}, @TCA_RATE={0x6}]}, 0x480}}, 0x0)

11:31:02 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x300]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

11:31:02 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8100]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

11:31:03 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x301]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2001.200445][T16071] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2001.223240][T16071] CPU: 0 PID: 16071 Comm: syz-executor.2 Not tainted 6.8.0-rc6-syzkaller-01699-g65f5dd4f02a8 #0
[ 2001.233692][T16071] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024
[ 2001.243764][T16071] Call Trace:
[ 2001.247056][T16071]  <TASK>
[ 2001.250002][T16071]  dump_stack_lvl+0x1e7/0x2e0
[ 2001.254706][T16071]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2001.259928][T16071]  ? __pfx__printk+0x10/0x10
[ 2001.264544][T16071]  ? ___ratelimit+0x4c4/0x670
[ 2001.269251][T16071]  ? __pfx____ratelimit+0x10/0x10
[ 2001.274313][T16071]  dump_header+0xda/0x6a0
[ 2001.278676][T16071]  oom_kill_process+0x3a7/0x930
[ 2001.283554][T16071]  out_of_memory+0xf67/0x1320
[ 2001.288261][T16071]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 2001.293918][T16071]  ? __pfx___mutex_lock+0x10/0x10
[ 2001.298966][T16071]  ? __pfx_out_of_memory+0x10/0x10
[ 2001.304117][T16071]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 2001.309688][T16071]  ? __pfx_lock_release+0x10/0x10
[ 2001.314715][T16071]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 2001.320782][T16071]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 2001.325976][T16071]  ? mem_cgroup_iter+0x3e9/0x560
[ 2001.330911][T16071]  try_charge_memcg+0xda2/0x18a0
[ 2001.335861][T16071]  ? __pfx_try_charge_memcg+0x10/0x10
[ 2001.341225][T16071]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 2001.346938][T16071]  ? __pfx_lock_release+0x10/0x10
[ 2001.351958][T16071]  ? memcg_account_kmem+0x1e7/0x210
[ 2001.357162][T16071]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 2001.362963][T16071]  __memcg_kmem_charge_page+0xe1/0x250
[ 2001.368422][T16071]  memcg_charge_kernel_stack+0x3f8/0x550
[ 2001.374049][T16071]  dup_task_struct+0x15d/0x7d0
[ 2001.378810][T16071]  copy_process+0x5d5/0x3fc0
[ 2001.383401][T16071]  ? __might_fault+0xa9/0x120
[ 2001.388072][T16071]  ? __pfx_lock_release+0x10/0x10
[ 2001.393094][T16071]  ? __pfx_copy_process+0x10/0x10
[ 2001.398110][T16071]  ? __might_fault+0xc5/0x120
[ 2001.402788][T16071]  ? __asan_memset+0x23/0x50
[ 2001.407376][T16071]  kernel_clone+0x21d/0x8d0
[ 2001.411873][T16071]  ? __pfx_kernel_clone+0x10/0x10
[ 2001.416901][T16071]  __se_sys_clone3+0x2cb/0x350
[ 2001.421659][T16071]  ? __pfx___se_sys_clone3+0x10/0x10
[ 2001.426948][T16071]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 2001.432932][T16071]  ? exc_page_fault+0x587/0x870
[ 2001.437779][T16071]  ? do_syscall_64+0xb4/0x240
[ 2001.442446][T16071]  do_syscall_64+0xf9/0x240
[ 2001.446941][T16071]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 2001.452822][T16071] RIP: 0033:0x7f28e72a9b99
[ 2001.457230][T16071] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 2001.476829][T16071] RSP: 002b:00007fff0ed97558 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 2001.485238][T16071] RAX: ffffffffffffffda RBX: 00007f28e7252270 RCX: 00007f28e72a9b99
[ 2001.493198][T16071] RDX: 00007f28e7252270 RSI: 0000000000000058 RDI: 00007fff0ed975a0
[ 2001.501162][T16071] RBP: 00007f28e7f006c0 R08: 00007f28e7f006c0 R09: 00007fff0ed97687
[ 2001.509126][T16071] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 2001.517089][T16071] R13: 000000000000000b R14: 00007fff0ed975a0 R15: 00007fff0ed97688
[ 2001.525065][T16071]  </TASK>
[ 2001.674629][T16071] memory: usage 307200kB, limit 307200kB, failcnt 20461
[ 2001.687770][T16071] memory+swap: usage 307396kB, limit 9007199254740988kB, failcnt 0
11:31:03 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf2ff]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2001.716722][T16071] kmem: usage 307184kB, limit 9007199254740988kB, failcnt 0
[ 2001.738477][T16071] Memory cgroup stats for /syz2:
[ 2001.738640][T16071] cache 4096
[ 2001.784698][T16071] rss 12288
[ 2001.793254][T16071] rss_huge 0
[ 2001.815791][T16071] shmem 0
[ 2001.818757][T16071] mapped_file 0
[ 2001.822222][T16071] dirty 4096
[ 2001.846995][T16071] writeback 0
[ 2001.851964][T16071] workingset_refault_anon 9688
[ 2001.866816][T16071] workingset_refault_file 0
11:31:04 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x444]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2001.987073][T16071] swap 200704
[ 2001.992782][T16071] swapcached 12288
[ 2001.999818][T16071] pgpgin 239393
[ 2002.003430][T16071] pgpgout 239389
[ 2002.012358][T16071] pgfault 564268
[ 2002.023466][T16071] pgmajfault 9728
[ 2002.032668][T16071] inactive_anon 0
[ 2002.068565][T16071] active_anon 12288
[ 2002.078700][T16071] inactive_file 0
[ 2002.105775][T16071] active_file 4096
11:31:04 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff2]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2002.125103][T16071] unevictable 0
[ 2002.137067][T16071] hierarchical_memory_limit 314572800
[ 2002.147597][T16071] hierarchical_memsw_limit 9223372036854771712
[ 2002.162550][T16093] __nla_validate_parse: 50 callbacks suppressed
[ 2002.162563][T16093] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 2002.176893][T16071] total_cache 4096
[ 2002.184879][T16071] total_rss 12288
[ 2002.206086][T16071] total_rss_huge 0
[ 2002.212542][T16071] total_shmem 0
[ 2002.222883][T16071] total_mapped_file 0
[ 2002.236172][T16071] total_dirty 4096
[ 2002.247161][T16096] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 2002.259689][T16071] total_writeback 0
[ 2002.274914][T16071] total_workingset_refault_anon 9688
[ 2002.282135][T16071] total_workingset_refault_file 0
[ 2002.292108][T16071] total_swap 200704
[ 2002.299323][T16071] total_swapcached 12288
[ 2002.300843][T16093] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 2002.303782][T16071] total_pgpgin 239393
[ 2002.326006][T16071] total_pgpgout 239389
[ 2002.330785][T16071] total_pgfault 564268
[ 2002.339997][T16071] total_pgmajfault 9728
[ 2002.347528][T16071] total_inactive_anon 0
[ 2002.351969][T16071] total_active_anon 12288
[ 2002.360848][T16071] total_inactive_file 0
[ 2002.368365][T16071] total_active_file 4096
[ 2002.376689][T16071] total_unevictable 0
[ 2002.380918][T16071] anon_cost 0
[ 2002.393230][T16071] file_cost 0
[ 2002.397537][T16071] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=16071,uid=0
[ 2002.429200][T16071] Memory cgroup out of memory: Killed process 16071 (syz-executor.2) total-vm:54508kB, anon-rss:368kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:80kB oom_score_adj:1000
[ 2002.469364][T16094] netlink: 76 bytes leftover after parsing attributes in process `syz-executor.1'.
11:31:04 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x884, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x84c, 0x2, [@TCA_FLOW_POLICE={0x848, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000000]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x6, 0x0, 0x0, 0x0, 0x0, 0x101}}}]}]}}, @TCA_RATE={0x6, 0x5, {0x0, 0x6}}]}, 0x884}}, 0x0)

11:31:04 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x500]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2002.490439][T16096] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'.
11:31:04 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x34000]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2002.653316][T16097] netlink: 76 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 2002.684364][T16103] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 2002.733951][T16103] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
11:31:04 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x600]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2002.880852][T16104] netlink: 76 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 2002.918877][T16107] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'.
11:31:05 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x90000]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

11:31:05 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x700]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2003.332925][ T5093] syz-executor.2 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[ 2003.433084][ T5093] CPU: 0 PID: 5093 Comm: syz-executor.2 Not tainted 6.8.0-rc6-syzkaller-01699-g65f5dd4f02a8 #0
[ 2003.443461][ T5093] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024
[ 2003.453533][ T5093] Call Trace:
[ 2003.456830][ T5093]  <TASK>
[ 2003.459779][ T5093]  dump_stack_lvl+0x1e7/0x2e0
[ 2003.464481][ T5093]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2003.469703][ T5093]  ? __pfx__printk+0x10/0x10
[ 2003.474312][ T5093]  ? ___ratelimit+0x4c4/0x670
[ 2003.479017][ T5093]  ? __pfx____ratelimit+0x10/0x10
[ 2003.484060][ T5093]  dump_header+0xda/0x6a0
[ 2003.488401][ T5093]  oom_kill_process+0x3a7/0x930
[ 2003.493274][ T5093]  out_of_memory+0xf67/0x1320
[ 2003.497986][ T5093]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 2003.503642][ T5093]  ? __pfx___mutex_lock+0x10/0x10
[ 2003.508694][ T5093]  ? __pfx_out_of_memory+0x10/0x10
[ 2003.513848][ T5093]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 2003.519418][ T5093]  ? __pfx_lock_release+0x10/0x10
[ 2003.524478][ T5093]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 2003.530578][ T5093]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 2003.535808][ T5093]  ? mem_cgroup_iter+0x3e9/0x560
[ 2003.540777][ T5093]  try_charge_memcg+0xda2/0x18a0
[ 2003.545737][ T5093]  ? mark_lock+0x9a/0x350
[ 2003.550113][ T5093]  ? __pfx_try_charge_memcg+0x10/0x10
[ 2003.555539][ T5093]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 2003.561715][ T5093]  charge_memcg+0xa2/0x160
[ 2003.566157][ T5093]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 2003.572250][ T5093]  __read_swap_cache_async+0x480/0x8b0
[ 2003.577740][ T5093]  ? mark_lock+0x9a/0x350
[ 2003.582103][ T5093]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 2003.588121][ T5093]  swap_cluster_readahead+0x67c/0x810
[ 2003.593530][ T5093]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 2003.599463][ T5093]  ? __pfx_lock_release+0x10/0x10
[ 2003.604518][ T5093]  ? xas_descend+0x37e/0x470
[ 2003.609153][ T5093]  swapin_readahead+0x1ea/0x1070
[ 2003.614108][ T5093]  ? filemap_get_entry+0x127/0x4e0
[ 2003.619260][ T5093]  ? __pfx_swapin_readahead+0x10/0x10
[ 2003.624664][ T5093]  ? __filemap_get_folio+0x935/0xbc0
[ 2003.629983][ T5093]  ? swap_cache_get_folio+0x9f/0x570
[ 2003.635302][ T5093]  do_swap_page+0x791/0x3f40
[ 2003.639921][ T5093]  ? rcu_is_watching+0x15/0xb0
[ 2003.644734][ T5093]  ? do_swap_page+0x154/0x3f40
[ 2003.649520][ T5093]  ? __pfx_do_swap_page+0x10/0x10
[ 2003.654569][ T5093]  ? pte_offset_map_nolock+0x137/0x1f0
[ 2003.660055][ T5093]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 2003.665898][ T5093]  __handle_mm_fault+0x15e8/0x72d0
[ 2003.671109][ T5093]  ? reacquire_held_locks+0x3eb/0x690
[ 2003.676491][ T5093]  ? __pfx___handle_mm_fault+0x10/0x10
11:31:05 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x884, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x854, 0x2, [@TCA_FLOW_POLICE={0x850, 0xa, 0x0, 0x1, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81000000]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x6, 0x0, 0x0, 0x0, 0x0, 0x101}}}]}]}}]}, 0x884}}, 0x0)

[ 2003.681994][ T5093]  ? __pfx_reacquire_held_locks+0x10/0x10
[ 2003.687756][ T5093]  ? mtree_range_walk+0x6fd/0x8e0
[ 2003.692806][ T5093]  ? lock_vma_under_rcu+0x18a/0x730
[ 2003.698029][ T5093]  ? __pfx_lock_release+0x10/0x10
[ 2003.703075][ T5093]  ? lock_vma_under_rcu+0x2f9/0x730
[ 2003.708322][ T5093]  ? lock_vma_under_rcu+0x18a/0x730
[ 2003.713542][ T5093]  ? __pfx_lock_vma_under_rcu+0x10/0x10
[ 2003.719109][ T5093]  handle_mm_fault+0x3c1/0x8a0
[ 2003.723912][ T5093]  exc_page_fault+0x456/0x870
[ 2003.728641][ T5093]  asm_exc_page_fault+0x26/0x30
[ 2003.733516][ T5093] RIP: 0033:0x7f28e72a4c15
[ 2003.737950][ T5093] Code: 00 00 f0 83 88 08 03 00 00 10 64 48 8b 3c 25 00 03 00 00 e8 1d 13 00 00 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 83 e7 02 74 0b <c3> 66 2e 0f 1f 84 00 00 00 00 00 64 48 8b 04 25 10 00 00 00 8b 90
[ 2003.757570][ T5093] RSP: 002b:00007fff0ed97968 EFLAGS: 00010297
[ 2003.763656][ T5093] RAX: 0000000000000002 RBX: 000000000000568a RCX: 0000000000000000
[ 2003.771646][ T5093] RDX: 0000000000000000 RSI: 00007fff0ed979fc RDI: 0000555555eb1788
[ 2003.779637][ T5093] RBP: 00007fff0ed979fc R08: 0000000000000000 R09: 00007fff0ed9e0b0
[ 2003.787626][ T5093] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000032
[ 2003.795616][ T5093] R13: 00000000001e8e72 R14: 00000000001e8e72 R15: 0000000000000000
[ 2003.803621][ T5093]  </TASK>
11:31:05 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x480, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}, @TCA_RATE={0x6}]}, 0x480}}, 0x0)

[ 2003.882903][ T5093] memory: usage 307200kB, limit 307200kB, failcnt 21283
[ 2003.897325][ T5093] memory+swap: usage 307404kB, limit 9007199254740988kB, failcnt 0
[ 2003.917338][ T5093] kmem: usage 307192kB, limit 9007199254740988kB, failcnt 0
[ 2003.925559][ T5093] Memory cgroup stats for /syz2:
11:31:05 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400300]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2003.925690][ T5093] cache 4096
[ 2003.945398][ T5093] rss 0
[ 2003.948188][ T5093] rss_huge 0
[ 2003.968906][ T5093] shmem 0
[ 2003.981419][ T5093] mapped_file 0
[ 2003.985201][ T5093] dirty 4096
[ 2003.991703][ T5093] writeback 0
[ 2003.995631][ T5093] workingset_refault_anon 9879
[ 2004.000492][ T5093] workingset_refault_file 0
[ 2004.005336][ T5093] swap 253952
[ 2004.008732][ T5093] swapcached 0
[ 2004.012204][ T5093] pgpgin 239597
[ 2004.015901][ T5093] pgpgout 239596
[ 2004.019545][ T5093] pgfault 564569
[ 2004.023199][ T5093] pgmajfault 9912
[ 2004.027315][ T5093] inactive_anon 0
[ 2004.031062][ T5093] active_anon 0
[ 2004.035701][ T5093] inactive_file 0
[ 2004.043075][ T5093] active_file 4096
[ 2004.047006][ T5093] unevictable 0
[ 2004.050573][ T5093] hierarchical_memory_limit 314572800
[ 2004.056262][ T5093] hierarchical_memsw_limit 9223372036854771712
[ 2004.062515][ T5093] total_cache 4096
[ 2004.066415][ T5093] total_rss 0
[ 2004.069808][ T5093] total_rss_huge 0
[ 2004.073620][ T5093] total_shmem 0
[ 2004.077464][ T5093] total_mapped_file 0
[ 2004.081535][ T5093] total_dirty 4096
[ 2004.085460][ T5093] total_writeback 0
[ 2004.090695][ T5093] total_workingset_refault_anon 9879
[ 2004.096161][ T5093] total_workingset_refault_file 0
[ 2004.101296][ T5093] total_swap 253952
[ 2004.109043][ T5093] total_swapcached 0
[ 2004.113131][ T5093] total_pgpgin 239597
[ 2004.118075][ T5093] total_pgpgout 239596
[ 2004.122364][ T5093] total_pgfault 564569
[ 2004.126802][ T5093] total_pgmajfault 9912
11:31:06 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x801]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2004.131160][ T5093] total_inactive_anon 0
[ 2004.137651][ T5093] total_active_anon 0
[ 2004.151920][ T5093] total_inactive_file 0
[ 2004.164815][ T5093] total_active_file 4096
[ 2004.179510][ T5093] total_unevictable 0
[ 2004.201128][ T5093] anon_cost 0
[ 2004.217370][ T5093] file_cost 0
[ 2004.227859][ T5093] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=16101,uid=0
11:31:06 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2004.283241][ T5093] Memory cgroup out of memory: Killed process 16101 (syz-executor.2) total-vm:54508kB, anon-rss:380kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:80kB oom_score_adj:1000
11:31:06 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x884, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x84c, 0x2, [@TCA_FLOW_POLICE={0x848, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x11000000]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x6, 0x0, 0x0, 0x0, 0x0, 0x101}}}]}]}}, @TCA_RATE={0x6, 0x5, {0x0, 0x6}}]}, 0x884}}, 0x0)

11:31:06 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x900]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2004.648092][T16138] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2004.675122][T16138] CPU: 1 PID: 16138 Comm: syz-executor.2 Not tainted 6.8.0-rc6-syzkaller-01699-g65f5dd4f02a8 #0
[ 2004.685574][T16138] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024
[ 2004.695646][T16138] Call Trace:
[ 2004.698935][T16138]  <TASK>
[ 2004.701877][T16138]  dump_stack_lvl+0x1e7/0x2e0
[ 2004.706583][T16138]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2004.711810][T16138]  ? __pfx__printk+0x10/0x10
[ 2004.716428][T16138]  ? ___ratelimit+0x4c4/0x670
[ 2004.721138][T16138]  ? __pfx____ratelimit+0x10/0x10
[ 2004.726193][T16138]  dump_header+0xda/0x6a0
[ 2004.730549][T16138]  oom_kill_process+0x3a7/0x930
[ 2004.735431][T16138]  out_of_memory+0xf67/0x1320
[ 2004.740135][T16138]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 2004.745784][T16138]  ? __pfx___mutex_lock+0x10/0x10
[ 2004.750825][T16138]  ? __pfx_out_of_memory+0x10/0x10
[ 2004.755961][T16138]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 2004.761530][T16138]  ? __pfx_lock_release+0x10/0x10
[ 2004.766580][T16138]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 2004.772678][T16138]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 2004.777898][T16138]  ? mem_cgroup_iter+0x3e9/0x560
[ 2004.782868][T16138]  try_charge_memcg+0xda2/0x18a0
[ 2004.787852][T16138]  ? __pfx_try_charge_memcg+0x10/0x10
[ 2004.793244][T16138]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 2004.798988][T16138]  ? __pfx_lock_release+0x10/0x10
[ 2004.804037][T16138]  ? memcg_account_kmem+0x1e7/0x210
[ 2004.809265][T16138]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 2004.815094][T16138]  __memcg_kmem_charge_page+0xe1/0x250
[ 2004.820589][T16138]  memcg_charge_kernel_stack+0x37e/0x550
[ 2004.826251][T16138]  dup_task_struct+0x40d/0x7d0
[ 2004.831044][T16138]  copy_process+0x5d5/0x3fc0
[ 2004.835665][T16138]  ? __might_fault+0xa9/0x120
[ 2004.840369][T16138]  ? __pfx_lock_release+0x10/0x10
[ 2004.845424][T16138]  ? __pfx_copy_process+0x10/0x10
[ 2004.850520][T16138]  ? __might_fault+0xc5/0x120
[ 2004.855225][T16138]  ? __asan_memset+0x23/0x50
[ 2004.859844][T16138]  kernel_clone+0x21d/0x8d0
[ 2004.864380][T16138]  ? __pfx_kernel_clone+0x10/0x10
[ 2004.869444][T16138]  __se_sys_clone3+0x2cb/0x350
[ 2004.874232][T16138]  ? __pfx___se_sys_clone3+0x10/0x10
[ 2004.879570][T16138]  ? do_syscall_64+0x108/0x240
[ 2004.884356][T16138]  ? do_syscall_64+0xb4/0x240
[ 2004.889059][T16138]  do_syscall_64+0xf9/0x240
[ 2004.893586][T16138]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 2004.899500][T16138] RIP: 0033:0x7f28e72a9b99
[ 2004.903928][T16138] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 2004.923547][T16138] RSP: 002b:00007fff0ed97558 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 2004.931975][T16138] RAX: ffffffffffffffda RBX: 00007f28e7252270 RCX: 00007f28e72a9b99
[ 2004.939953][T16138] RDX: 00007f28e7252270 RSI: 0000000000000058 RDI: 00007fff0ed975a0
[ 2004.947940][T16138] RBP: 00007f28e7f006c0 R08: 00007f28e7f006c0 R09: 00007fff0ed97687
[ 2004.955929][T16138] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 2004.963920][T16138] R13: 000000000000000b R14: 00007fff0ed975a0 R15: 00007fff0ed97688
[ 2004.971927][T16138]  </TASK>
11:31:07 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2005.054716][T16138] memory: usage 307200kB, limit 307200kB, failcnt 21452
[ 2005.109715][T16138] memory+swap: usage 307432kB, limit 9007199254740988kB, failcnt 0
[ 2005.149230][T16138] kmem: usage 307184kB, limit 9007199254740988kB, failcnt 0
[ 2005.157517][T16138] Memory cgroup stats for /syz2:
[ 2005.157651][T16138] cache 4096
[ 2005.166088][T16138] rss 12288
[ 2005.169349][T16138] rss_huge 0
[ 2005.172668][T16138] shmem 0
[ 2005.176073][T16138] mapped_file 0
[ 2005.179645][T16138] dirty 4096
[ 2005.182975][T16138] writeback 0
[ 2005.187867][T16138] workingset_refault_anon 9935
[ 2005.192782][T16138] workingset_refault_file 0
[ 2005.197753][T16138] swap 237568
[ 2005.202217][T16138] swapcached 12288
[ 2005.206505][T16138] pgpgin 239667
[ 2005.210109][T16138] pgpgout 239663
[ 2005.213799][T16138] pgfault 564698
[ 2005.217699][T16138] pgmajfault 9968
[ 2005.221478][T16138] inactive_anon 0
[ 2005.225242][T16138] active_anon 12288
[ 2005.229190][T16138] inactive_file 0
[ 2005.232965][T16138] active_file 4096
[ 2005.238569][T16138] unevictable 0
[ 2005.242235][T16138] hierarchical_memory_limit 314572800
[ 2005.248446][T16138] hierarchical_memsw_limit 9223372036854771712
[ 2005.255116][T16138] total_cache 4096
[ 2005.260490][T16138] total_rss 12288
[ 2005.264273][T16138] total_rss_huge 0
[ 2005.269404][T16138] total_shmem 0
[ 2005.273059][T16138] total_mapped_file 0
[ 2005.278188][T16138] total_dirty 4096
[ 2005.282141][T16138] total_writeback 0
[ 2005.286660][T16138] total_workingset_refault_anon 9935
[ 2005.292146][T16138] total_workingset_refault_file 0
[ 2005.298056][T16138] total_swap 237568
[ 2005.308095][T16138] total_swapcached 12288
[ 2005.319020][T16138] total_pgpgin 239667
[ 2005.326272][T16138] total_pgpgout 239663
[ 2005.330599][T16138] total_pgfault 564698
[ 2005.345006][T16138] total_pgmajfault 9968
[ 2005.353960][T16138] total_inactive_anon 0
11:31:07 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa00]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2005.369516][T16138] total_active_anon 12288
[ 2005.384836][T16138] total_inactive_file 0
[ 2005.400818][T16138] total_active_file 4096
[ 2005.415130][T16138] total_unevictable 0
[ 2005.435067][T16138] anon_cost 0
[ 2005.452009][T16138] file_cost 0
[ 2005.462852][T16138] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=16138,uid=0
[ 2005.490934][T16138] Memory cgroup out of memory: Killed process 16138 (syz-executor.2) total-vm:54508kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:80kB oom_score_adj:1000
11:31:07 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x884, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x84c, 0x2, [@TCA_FLOW_POLICE={0x848, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x115cc4b3]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x6, 0x0, 0x0, 0x0, 0x0, 0x101}}}]}]}}, @TCA_RATE={0x6, 0x5, {0x0, 0x6}}]}, 0x884}}, 0x0)

11:31:07 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3000000]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

11:31:07 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb00]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

11:31:07 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2006.073906][T16155] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2006.142829][T16155] CPU: 1 PID: 16155 Comm: syz-executor.2 Not tainted 6.8.0-rc6-syzkaller-01699-g65f5dd4f02a8 #0
[ 2006.153292][T16155] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024
[ 2006.163365][T16155] Call Trace:
[ 2006.166657][T16155]  <TASK>
[ 2006.169607][T16155]  dump_stack_lvl+0x1e7/0x2e0
[ 2006.174315][T16155]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2006.179539][T16155]  ? __pfx__printk+0x10/0x10
[ 2006.184154][T16155]  ? ___ratelimit+0x4c4/0x670
[ 2006.188861][T16155]  ? __pfx____ratelimit+0x10/0x10
[ 2006.193929][T16155]  dump_header+0xda/0x6a0
[ 2006.198292][T16155]  oom_kill_process+0x3a7/0x930
[ 2006.203173][T16155]  out_of_memory+0xf67/0x1320
[ 2006.207880][T16155]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 2006.213535][T16155]  ? __pfx___mutex_lock+0x10/0x10
[ 2006.218584][T16155]  ? __pfx_out_of_memory+0x10/0x10
[ 2006.223731][T16155]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 2006.229306][T16155]  ? __pfx_lock_release+0x10/0x10
[ 2006.234356][T16155]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 2006.240452][T16155]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 2006.245676][T16155]  ? mem_cgroup_iter+0x3e9/0x560
[ 2006.250643][T16155]  try_charge_memcg+0xda2/0x18a0
[ 2006.255627][T16155]  ? __pfx_try_charge_memcg+0x10/0x10
[ 2006.261025][T16155]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 2006.266774][T16155]  ? __pfx_lock_release+0x10/0x10
[ 2006.271836][T16155]  ? memcg_account_kmem+0x1e7/0x210
[ 2006.277072][T16155]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 2006.282903][T16155]  __memcg_kmem_charge_page+0xe1/0x250
[ 2006.288394][T16155]  memcg_charge_kernel_stack+0x304/0x550
[ 2006.294069][T16155]  dup_task_struct+0x15d/0x7d0
[ 2006.298848][T16155]  copy_process+0x5d5/0x3fc0
[ 2006.303443][T16155]  ? __might_fault+0xa9/0x120
[ 2006.308114][T16155]  ? __pfx_lock_release+0x10/0x10
[ 2006.313140][T16155]  ? __pfx_copy_process+0x10/0x10
[ 2006.318155][T16155]  ? __might_fault+0xc5/0x120
[ 2006.322830][T16155]  ? __asan_memset+0x23/0x50
[ 2006.327421][T16155]  kernel_clone+0x21d/0x8d0
[ 2006.331917][T16155]  ? __pfx_kernel_clone+0x10/0x10
[ 2006.336946][T16155]  __se_sys_clone3+0x2cb/0x350
[ 2006.341706][T16155]  ? __pfx___se_sys_clone3+0x10/0x10
[ 2006.346993][T16155]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 2006.352975][T16155]  ? exc_page_fault+0x587/0x870
[ 2006.357822][T16155]  ? do_syscall_64+0xb4/0x240
[ 2006.362488][T16155]  do_syscall_64+0xf9/0x240
[ 2006.366986][T16155]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 2006.372875][T16155] RIP: 0033:0x7f28e72a9b99
[ 2006.377279][T16155] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 2006.396885][T16155] RSP: 002b:00007fff0ed97558 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 2006.405318][T16155] RAX: ffffffffffffffda RBX: 00007f28e7252270 RCX: 00007f28e72a9b99
[ 2006.413300][T16155] RDX: 00007f28e7252270 RSI: 0000000000000058 RDI: 00007fff0ed975a0
[ 2006.421279][T16155] RBP: 00007f28e7f006c0 R08: 00007f28e7f006c0 R09: 00007fff0ed97687
[ 2006.429243][T16155] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 2006.437205][T16155] R13: 000000000000000b R14: 00007fff0ed975a0 R15: 00007fff0ed97688
[ 2006.445181][T16155]  </TASK>
[ 2006.483638][T16155] memory: usage 307200kB, limit 307200kB, failcnt 21798
[ 2006.491115][T16155] memory+swap: usage 307448kB, limit 9007199254740988kB, failcnt 0
[ 2006.505792][T16155] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0
[ 2006.524175][T16155] Memory cgroup stats for /syz2:
[ 2006.524309][T16155] cache 4096
[ 2006.542797][T16155] rss 0
[ 2006.548264][T16155] rss_huge 0
[ 2006.552055][T16155] shmem 0
[ 2006.561203][T16155] mapped_file 0
[ 2006.566574][T16155] dirty 4096
[ 2006.570009][T16155] writeback 0
[ 2006.573518][T16155] workingset_refault_anon 10065
[ 2006.585948][T16155] workingset_refault_file 0
[ 2006.590691][T16155] swap 253952
[ 2006.594212][T16155] swapcached 0
[ 2006.602361][T16155] pgpgin 239809
[ 2006.608840][T16155] pgpgout 239808
[ 2006.612976][T16155] pgfault 564912
[ 2006.620939][T16155] pgmajfault 10085
[ 2006.627674][T16155] inactive_anon 0
[ 2006.631600][T16155] active_anon 0
[ 2006.639366][T16155] inactive_file 4096
11:31:08 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc01]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2006.643541][T16155] active_file 0
[ 2006.650411][T16155] unevictable 0
[ 2006.657658][T16155] hierarchical_memory_limit 314572800
[ 2006.663325][T16155] hierarchical_memsw_limit 9223372036854771712
[ 2006.716368][T16155] total_cache 4096
[ 2006.720129][T16155] total_rss 0
[ 2006.723440][T16155] total_rss_huge 0
[ 2006.744141][T16155] total_shmem 0
[ 2006.752476][T16155] total_mapped_file 0
[ 2006.768687][T16155] total_dirty 4096
[ 2006.772431][T16155] total_writeback 0
[ 2006.779502][T16155] total_workingset_refault_anon 10065
[ 2006.803812][T16155] total_workingset_refault_file 0
[ 2006.809058][T16155] total_swap 253952
[ 2006.812952][T16155] total_swapcached 0
[ 2006.824623][T16155] total_pgpgin 239809
[ 2006.830167][T16155] total_pgpgout 239808
[ 2006.842065][T16155] total_pgfault 564912
[ 2006.850764][T16155] total_pgmajfault 10085
11:31:08 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x884, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x854, 0x2, [@TCA_FLOW_POLICE={0x850, 0xa, 0x0, 0x1, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xac020000]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x6, 0x0, 0x0, 0x0, 0x0, 0x101}}}]}]}}]}, 0x884}}, 0x0)

[ 2006.873231][T16155] total_inactive_anon 0
[ 2006.890284][T16155] total_active_anon 0
[ 2006.898870][T16155] total_inactive_file 4096
[ 2006.921891][T16155] total_active_file 0
[ 2006.940123][T16155] total_unevictable 0
[ 2006.944126][T16155] anon_cost 0
[ 2006.955632][T16155] file_cost 0
[ 2006.958944][T16155] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=16155,uid=0
[ 2007.137021][T16155] Memory cgroup out of memory: Killed process 16155 (syz-executor.2) total-vm:54508kB, anon-rss:380kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:80kB oom_score_adj:1000
11:31:09 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5000000]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2007.224046][T16170] __nla_validate_parse: 40 callbacks suppressed
[ 2007.224067][T16170] netlink: 76 bytes leftover after parsing attributes in process `syz-executor.1'.
11:31:09 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x884, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x84c, 0x2, [@TCA_FLOW_POLICE={0x848, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x14000000]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x6, 0x0, 0x0, 0x0, 0x0, 0x101}}}]}]}}, @TCA_RATE={0x6, 0x5, {0x0, 0x6}}]}, 0x884}}, 0x0)

11:31:09 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1100]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

11:31:09 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x480, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}, @TCA_RATE={0x6}]}, 0x480}}, 0x0)

[ 2007.397809][T16177] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 2007.424967][T16175] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 2007.538023][T16177] netlink: 76 bytes leftover after parsing attributes in process `syz-executor.4'.
11:31:09 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6000000]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2007.584828][T16179] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 2007.612920][T16182] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 2007.824879][T16185] netlink: 76 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 2007.919975][T16172] syz-executor.0 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[ 2007.960153][T16172] CPU: 1 PID: 16172 Comm: syz-executor.0 Not tainted 6.8.0-rc6-syzkaller-01699-g65f5dd4f02a8 #0
[ 2007.970610][T16172] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024
[ 2007.980678][T16172] Call Trace:
[ 2007.983971][T16172]  <TASK>
[ 2007.986921][T16172]  dump_stack_lvl+0x1e7/0x2e0
[ 2007.991627][T16172]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2007.996851][T16172]  ? __pfx__printk+0x10/0x10
[ 2008.001464][T16172]  ? ___ratelimit+0x4c4/0x670
[ 2008.006180][T16172]  ? __pfx____ratelimit+0x10/0x10
[ 2008.011236][T16172]  dump_header+0xda/0x6a0
[ 2008.015602][T16172]  oom_kill_process+0x3a7/0x930
[ 2008.020487][T16172]  out_of_memory+0xf67/0x1320
[ 2008.025197][T16172]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 2008.030861][T16172]  ? __pfx___mutex_lock+0x10/0x10
[ 2008.035914][T16172]  ? __pfx_out_of_memory+0x10/0x10
[ 2008.041064][T16172]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 2008.046641][T16172]  ? __pfx_lock_release+0x10/0x10
[ 2008.051693][T16172]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 2008.057794][T16172]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 2008.063015][T16172]  ? mem_cgroup_iter+0x3e9/0x560
[ 2008.067984][T16172]  try_charge_memcg+0xda2/0x18a0
[ 2008.072945][T16172]  ? mark_lock+0x9a/0x350
[ 2008.077302][T16172]  ? ioctl_send_request+0xb0/0x1b0
[ 2008.082537][T16172]  ? __pfx_try_charge_memcg+0x10/0x10
[ 2008.087962][T16172]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 2008.094149][T16172]  charge_memcg+0xa2/0x160
[ 2008.098591][T16172]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 2008.104684][T16172]  __read_swap_cache_async+0x480/0x8b0
[ 2008.110170][T16172]  ? mark_lock+0x9a/0x350
[ 2008.114529][T16172]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 2008.120541][T16172]  ? blk_start_plug+0x6f/0x1b0
[ 2008.125332][T16172]  swap_cluster_readahead+0x398/0x810
[ 2008.130735][T16172]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 2008.136657][T16172]  ? __pfx_lock_release+0x10/0x10
[ 2008.141707][T16172]  ? xas_descend+0x37e/0x470
[ 2008.146334][T16172]  swapin_readahead+0x1ea/0x1070
[ 2008.151287][T16172]  ? filemap_get_entry+0x127/0x4e0
[ 2008.156437][T16172]  ? __pfx_swapin_readahead+0x10/0x10
[ 2008.161842][T16172]  ? __filemap_get_folio+0x935/0xbc0
[ 2008.167170][T16172]  ? swap_cache_get_folio+0x9f/0x570
[ 2008.172489][T16172]  do_swap_page+0x791/0x3f40
[ 2008.177109][T16172]  ? rcu_is_watching+0x15/0xb0
[ 2008.181922][T16172]  ? do_swap_page+0x154/0x3f40
[ 2008.186709][T16172]  ? __pfx_do_swap_page+0x10/0x10
[ 2008.191755][T16172]  ? pte_offset_map_nolock+0x137/0x1f0
[ 2008.197241][T16172]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 2008.203084][T16172]  __handle_mm_fault+0x15e8/0x72d0
[ 2008.208253][T16172]  ? reacquire_held_locks+0x3eb/0x690
[ 2008.213650][T16172]  ? __pfx___handle_mm_fault+0x10/0x10
[ 2008.219153][T16172]  ? __pfx_reacquire_held_locks+0x10/0x10
[ 2008.224910][T16172]  ? mtree_range_walk+0x6fd/0x8e0
[ 2008.229960][T16172]  ? lock_vma_under_rcu+0x18a/0x730
[ 2008.235182][T16172]  ? __pfx_lock_release+0x10/0x10
[ 2008.240228][T16172]  ? lock_vma_under_rcu+0x2f9/0x730
[ 2008.245474][T16172]  ? lock_vma_under_rcu+0x18a/0x730
[ 2008.250701][T16172]  ? __pfx_lock_vma_under_rcu+0x10/0x10
[ 2008.256274][T16172]  handle_mm_fault+0x3c1/0x8a0
[ 2008.261074][T16172]  exc_page_fault+0x456/0x870
[ 2008.265791][T16172]  asm_exc_page_fault+0x26/0x30
[ 2008.270663][T16172] RIP: 0033:0x7f2719a39ac7
[ 2008.275097][T16172] Code: 25 ff 0f 00 00 09 c5 80 3d 06 bc c9 00 00 0f 85 6f ff ff ff 44 0f b6 6c 24 0f 44 8d 55 04 89 e8 41 89 c1 41 81 e1 ff 1f 00 00 <43> 8b 14 8e 39 d5 0f 84 5e ff ff ff 85 d2 0f 84 65 01 00 00 83 c0
[ 2008.294728][T16172] RSP: 002b:00007ffce4e7fa50 EFLAGS: 00010206
[ 2008.300813][T16172] RAX: 0000000081ccf3e4 RBX: 00007f2719bac018 RCX: 000000000000009b
[ 2008.308800][T16172] RDX: ffffffff81ccf569 RSI: 0000000080000000 RDI: 0000000000004f84
[ 2008.316788][T16172] RBP: 0000000081ccf3e4 R08: 0000001b31e20000 R09: 00000000000013e4
[ 2008.324773][T16172] R10: 0000000081ccf3e8 R11: 0000000000000246 R12: 000000000000009b
[ 2008.332760][T16172] R13: 0000000000000001 R14: 00007f2719ba0000 R15: ffffffff81ccf569
[ 2008.340748][T16172]  ? lru_add_fn+0x759/0x19f0
[ 2008.345376][T16172]  ? lru_add_fn+0x759/0x19f0
[ 2008.349997][T16172]  </TASK>
[ 2008.427467][T16172] memory: usage 307196kB, limit 307200kB, failcnt 22408
[ 2008.450152][T16172] memory+swap: usage 307408kB, limit 9007199254740988kB, failcnt 0
[ 2008.484736][T16172] kmem: usage 307192kB, limit 9007199254740988kB, failcnt 0
[ 2008.523588][T16172] Memory cgroup stats for /syz2:
[ 2008.523723][T16172] cache 4096
11:31:10 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1400]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2008.534669][T16188] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 2008.588409][T16189] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 2008.624612][T16172] rss 4096
[ 2008.627699][T16172] rss_huge 0
[ 2008.630900][T16172] shmem 0
[ 2008.633840][T16172] mapped_file 0
[ 2008.664200][T16172] dirty 4096
[ 2008.667518][T16172] writeback 0
[ 2008.670816][T16172] workingset_refault_anon 10192
[ 2008.684526][T16172] workingset_refault_file 0
[ 2008.689064][T16172] swap 212992
[ 2008.692362][T16172] swapcached 4096
[ 2008.705581][T16172] pgpgin 239947
[ 2008.709073][T16172] pgpgout 239945
[ 2008.712623][T16172] pgfault 565122
[ 2008.725564][T16172] pgmajfault 10197
[ 2008.729317][T16172] inactive_anon 0
[ 2008.732964][T16172] active_anon 4096
[ 2008.749759][T16172] inactive_file 0
[ 2008.753416][T16172] active_file 4096
[ 2008.769207][T16172] unevictable 0
[ 2008.772696][T16172] hierarchical_memory_limit 314572800
[ 2008.789572][T16172] hierarchical_memsw_limit 9223372036854771712
[ 2008.799585][T16172] total_cache 4096
[ 2008.803334][T16172] total_rss 4096
[ 2008.812218][T16190] netlink: 76 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 2008.817048][T16172] total_rss_huge 0
[ 2008.833466][T16172] total_shmem 0
[ 2008.856384][T16172] total_mapped_file 0
11:31:10 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7000000]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2008.866749][T16172] total_dirty 4096
[ 2008.877455][T16172] total_writeback 0
[ 2008.882600][T16172] total_workingset_refault_anon 10192
[ 2008.888568][T16172] total_workingset_refault_file 0
[ 2008.893739][T16172] total_swap 212992
[ 2008.909926][T16172] total_swapcached 4096
[ 2008.914105][T16172] total_pgpgin 239947
[ 2008.945565][T16172] total_pgpgout 239945
[ 2008.949669][T16172] total_pgfault 565122
[ 2008.953750][T16172] total_pgmajfault 10197
[ 2008.973101][T16172] total_inactive_anon 0
[ 2008.983986][T16172] total_active_anon 4096
11:31:11 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1500]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2009.004501][T16172] total_inactive_file 0
[ 2009.008737][T16172] total_active_file 4096
[ 2009.012989][T16172] total_unevictable 0
[ 2009.031415][T16172] anon_cost 0
[ 2009.040464][T16172] file_cost 0
[ 2009.043774][T16172] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=16183,uid=0
[ 2009.099488][T16172] Memory cgroup out of memory: Killed process 16183 (syz-executor.2) total-vm:54508kB, anon-rss:368kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:80kB oom_score_adj:1000
11:31:11 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x884, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x84c, 0x2, [@TCA_FLOW_POLICE={0x848, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x15000000]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x6, 0x0, 0x0, 0x0, 0x0, 0x101}}}]}]}}, @TCA_RATE={0x6, 0x5, {0x0, 0x6}}]}, 0x884}}, 0x0)

11:31:11 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000000]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

11:31:11 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3800]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

11:31:11 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9000000]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

11:31:11 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

11:31:11 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa000000]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

11:31:11 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4404]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2010.043565][ T5093] syz-executor.2 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[ 2010.113217][ T5093] CPU: 1 PID: 5093 Comm: syz-executor.2 Not tainted 6.8.0-rc6-syzkaller-01699-g65f5dd4f02a8 #0
[ 2010.123597][ T5093] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024
[ 2010.133669][ T5093] Call Trace:
[ 2010.136967][ T5093]  <TASK>
[ 2010.139917][ T5093]  dump_stack_lvl+0x1e7/0x2e0
[ 2010.144619][ T5093]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2010.149831][ T5093]  ? __pfx__printk+0x10/0x10
[ 2010.154447][ T5093]  ? ___ratelimit+0x4c4/0x670
[ 2010.159154][ T5093]  ? __pfx____ratelimit+0x10/0x10
[ 2010.164205][ T5093]  dump_header+0xda/0x6a0
[ 2010.168558][ T5093]  oom_kill_process+0x3a7/0x930
[ 2010.173437][ T5093]  out_of_memory+0xf67/0x1320
[ 2010.178139][ T5093]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 2010.183789][ T5093]  ? __pfx___mutex_lock+0x10/0x10
[ 2010.188836][ T5093]  ? __pfx_out_of_memory+0x10/0x10
[ 2010.193980][ T5093]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 2010.199548][ T5093]  ? __pfx_lock_release+0x10/0x10
[ 2010.204588][ T5093]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 2010.210681][ T5093]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 2010.215993][ T5093]  ? mem_cgroup_iter+0x3e9/0x560
[ 2010.220962][ T5093]  try_charge_memcg+0xda2/0x18a0
[ 2010.225919][ T5093]  ? mark_lock+0x9a/0x350
[ 2010.230289][ T5093]  ? __pfx_try_charge_memcg+0x10/0x10
[ 2010.235711][ T5093]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 2010.241886][ T5093]  charge_memcg+0xa2/0x160
[ 2010.246327][ T5093]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 2010.252423][ T5093]  __read_swap_cache_async+0x480/0x8b0
[ 2010.257909][ T5093]  ? mark_lock+0x9a/0x350
[ 2010.262287][ T5093]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 2010.268307][ T5093]  swap_cluster_readahead+0x67c/0x810
[ 2010.273716][ T5093]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 2010.279641][ T5093]  ? __pfx_lock_release+0x10/0x10
[ 2010.284693][ T5093]  ? xas_descend+0x37e/0x470
[ 2010.289320][ T5093]  swapin_readahead+0x1ea/0x1070
[ 2010.294274][ T5093]  ? filemap_get_entry+0x127/0x4e0
[ 2010.299423][ T5093]  ? __pfx_swapin_readahead+0x10/0x10
[ 2010.304824][ T5093]  ? __filemap_get_folio+0x935/0xbc0
[ 2010.310144][ T5093]  ? swap_cache_get_folio+0x9f/0x570
[ 2010.315461][ T5093]  do_swap_page+0x791/0x3f40
[ 2010.320080][ T5093]  ? rcu_is_watching+0x15/0xb0
[ 2010.324880][ T5093]  ? do_swap_page+0x154/0x3f40
[ 2010.329666][ T5093]  ? __pfx_do_swap_page+0x10/0x10
[ 2010.334714][ T5093]  ? pte_offset_map_nolock+0x137/0x1f0
[ 2010.340200][ T5093]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 2010.346045][ T5093]  __handle_mm_fault+0x15e8/0x72d0
[ 2010.351215][ T5093]  ? reacquire_held_locks+0x3eb/0x690
[ 2010.356612][ T5093]  ? __pfx___handle_mm_fault+0x10/0x10
[ 2010.362108][ T5093]  ? __pfx_reacquire_held_locks+0x10/0x10
[ 2010.367866][ T5093]  ? mtree_range_walk+0x6fd/0x8e0
[ 2010.372915][ T5093]  ? lock_vma_under_rcu+0x18a/0x730
[ 2010.378140][ T5093]  ? __pfx_lock_release+0x10/0x10
[ 2010.383190][ T5093]  ? lock_vma_under_rcu+0x2f9/0x730
[ 2010.388434][ T5093]  ? lock_vma_under_rcu+0x18a/0x730
[ 2010.393661][ T5093]  ? __pfx_lock_vma_under_rcu+0x10/0x10
[ 2010.399237][ T5093]  handle_mm_fault+0x3c1/0x8a0
[ 2010.404043][ T5093]  exc_page_fault+0x456/0x870
[ 2010.408764][ T5093]  asm_exc_page_fault+0x26/0x30
[ 2010.413635][ T5093] RIP: 0033:0x7f28e727dd3f
[ 2010.418070][ T5093] Code: 00 00 00 00 48 0f 45 d8 48 89 d8 5b c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 83 ec 28 31 f6 64 48 8b 04 25 28 00 00 00 <48> 89 44 24 18 31 c0 89 f8 48 69 c0 83 de 1b 43 48 c1 e8 32 89 c1
[ 2010.437691][ T5093] RSP: 002b:00007fff0ed97970 EFLAGS: 00010246
[ 2010.443779][ T5093] RAX: c5450307af8ce800 RBX: 0000000000005692 RCX: 0000000000000000
[ 2010.451768][ T5093] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00000000000003e8
11:31:12 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb000000]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2010.459756][ T5093] RBP: 00007fff0ed979fc R08: 0000000000000000 R09: 00007fff0ed9e0b0
[ 2010.467744][ T5093] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000032
[ 2010.475730][ T5093] R13: 00000000001ea879 R14: 00000000001ea879 R15: 0000000000000000
[ 2010.483744][ T5093]  </TASK>
11:31:12 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x884, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x854, 0x2, [@TCA_FLOW_POLICE={0x850, 0xa, 0x0, 0x1, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc3ccb478]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x6, 0x0, 0x0, 0x0, 0x0, 0x101}}}]}]}}]}, 0x884}}, 0x0)

11:31:12 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8100]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

11:31:12 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x480, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}, @TCA_RATE={0x6}]}, 0x480}}, 0x0)

[ 2010.528590][ T5093] memory: usage 307200kB, limit 307200kB, failcnt 23317
[ 2010.586662][ T5093] memory+swap: usage 307404kB, limit 9007199254740988kB, failcnt 0
[ 2010.624458][ T5093] kmem: usage 307192kB, limit 9007199254740988kB, failcnt 0
[ 2010.631775][ T5093] Memory cgroup stats for /syz2:
[ 2010.631907][ T5093] cache 4096
[ 2010.702425][ T5093] rss 0
[ 2010.725287][ T5093] rss_huge 0
[ 2010.728514][ T5093] shmem 0
[ 2010.731457][ T5093] mapped_file 0
[ 2010.751876][ T5093] dirty 4096
[ 2010.763682][ T5093] writeback 0
[ 2010.773586][ T5093] workingset_refault_anon 10370
[ 2010.787199][ T5093] workingset_refault_file 0
[ 2010.800833][ T5093] swap 208896
[ 2010.811610][ T5093] swapcached 4096
[ 2010.823566][ T5093] pgpgin 240136
[ 2010.833768][ T5093] pgpgout 240134
[ 2010.859582][ T5093] pgfault 565412
[ 2010.872696][ T5093] pgmajfault 10367
[ 2010.886631][ T5093] inactive_anon 0
[ 2010.897404][ T5093] active_anon 4096
[ 2010.909255][ T5093] inactive_file 4096
11:31:12 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000000]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2010.946551][ T5093] active_file 0
[ 2010.966329][ T5093] unevictable 0
[ 2010.982796][ T5093] hierarchical_memory_limit 314572800
11:31:13 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf2ff]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2011.034546][ T5093] hierarchical_memsw_limit 9223372036854771712
[ 2011.087502][ T5093] total_cache 4096
[ 2011.118533][ T5093] total_rss 0
[ 2011.140244][ T5093] total_rss_huge 0
[ 2011.160029][ T5093] total_shmem 0
[ 2011.177771][ T5093] total_mapped_file 0
[ 2011.186941][ T5093] total_dirty 4096
[ 2011.208646][ T5093] total_writeback 0
11:31:13 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x11000000]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2011.263286][ T5093] total_workingset_refault_anon 10370
[ 2011.299544][ T5093] total_workingset_refault_file 0
[ 2011.332130][ T5093] total_swap 208896
[ 2011.348079][ T5093] total_swapcached 4096
[ 2011.358956][ T5093] total_pgpgin 240136
11:31:13 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff2]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2011.383110][ T5093] total_pgpgout 240134
[ 2011.410250][ T5093] total_pgfault 565412
[ 2011.414345][ T5093] total_pgmajfault 10367
[ 2011.451636][ T5093] total_inactive_anon 0
[ 2011.463360][ T5093] total_active_anon 4096
[ 2011.506753][ T5093] total_inactive_file 4096
[ 2011.511200][ T5093] total_active_file 0
[ 2011.564952][ T5093] total_unevictable 0
[ 2011.568971][ T5093] anon_cost 0
[ 2011.572268][ T5093] file_cost 0
[ 2011.615113][ T5093] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=16206,uid=0
11:31:13 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x14000000]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2011.654575][ T5093] Memory cgroup out of memory: Killed process 16206 (syz-executor.2) total-vm:54640kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:80kB oom_score_adj:1000
11:31:13 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x34000]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

11:31:13 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x884, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x84c, 0x2, [@TCA_FLOW_POLICE={0x848, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48080000]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x6, 0x0, 0x0, 0x0, 0x0, 0x101}}}]}]}}, @TCA_RATE={0x6, 0x5, {0x0, 0x6}}]}, 0x884}}, 0x0)

11:31:13 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x15000000]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

11:31:14 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400300]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2012.231582][T16266] syz-executor.2 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[ 2012.295833][T16266] CPU: 0 PID: 16266 Comm: syz-executor.2 Not tainted 6.8.0-rc6-syzkaller-01699-g65f5dd4f02a8 #0
[ 2012.306292][T16266] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024
[ 2012.316357][T16266] Call Trace:
[ 2012.319648][T16266]  <TASK>
[ 2012.322587][T16266]  dump_stack_lvl+0x1e7/0x2e0
[ 2012.327290][T16266]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2012.332511][T16266]  ? __pfx__printk+0x10/0x10
[ 2012.337125][T16266]  ? ___ratelimit+0x4c4/0x670
[ 2012.341825][T16266]  ? __pfx____ratelimit+0x10/0x10
[ 2012.346866][T16266]  dump_header+0xda/0x6a0
[ 2012.351301][T16266]  oom_kill_process+0x3a7/0x930
[ 2012.356161][T16266]  out_of_memory+0xf67/0x1320
[ 2012.360843][T16266]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 2012.366475][T16266]  ? __pfx___mutex_lock+0x10/0x10
[ 2012.371494][T16266]  ? __pfx_out_of_memory+0x10/0x10
[ 2012.376606][T16266]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 2012.382147][T16266]  ? __pfx_lock_release+0x10/0x10
[ 2012.387170][T16266]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 2012.393235][T16266]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 2012.398426][T16266]  ? mem_cgroup_iter+0x3e9/0x560
[ 2012.403362][T16266]  try_charge_memcg+0xda2/0x18a0
[ 2012.408292][T16266]  ? mark_lock+0x9a/0x350
[ 2012.412632][T16266]  ? __pfx_try_charge_memcg+0x10/0x10
[ 2012.418016][T16266]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 2012.424161][T16266]  charge_memcg+0xa2/0x160
[ 2012.428571][T16266]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 2012.434633][T16266]  __read_swap_cache_async+0x480/0x8b0
[ 2012.440088][T16266]  ? mark_lock+0x9a/0x350
[ 2012.444424][T16266]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 2012.450416][T16266]  swap_cluster_readahead+0x67c/0x810
[ 2012.455789][T16266]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 2012.461683][T16266]  ? __pfx_lock_release+0x10/0x10
[ 2012.466718][T16266]  ? xas_descend+0x37e/0x470
[ 2012.471318][T16266]  swapin_readahead+0x1ea/0x1070
[ 2012.476251][T16266]  ? filemap_get_entry+0x127/0x4e0
[ 2012.481389][T16266]  ? __pfx_swapin_readahead+0x10/0x10
[ 2012.486772][T16266]  ? __filemap_get_folio+0x935/0xbc0
[ 2012.492062][T16266]  ? swap_cache_get_folio+0x9f/0x570
[ 2012.497347][T16266]  do_swap_page+0x791/0x3f40
[ 2012.501936][T16266]  ? rcu_is_watching+0x15/0xb0
[ 2012.506703][T16266]  ? do_swap_page+0x154/0x3f40
[ 2012.511456][T16266]  ? __pfx_do_swap_page+0x10/0x10
[ 2012.516475][T16266]  ? pte_offset_map_nolock+0x137/0x1f0
[ 2012.521932][T16266]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 2012.527739][T16266]  __handle_mm_fault+0x15e8/0x72d0
[ 2012.532864][T16266]  ? reacquire_held_locks+0x3eb/0x690
[ 2012.538230][T16266]  ? __pfx___handle_mm_fault+0x10/0x10
[ 2012.543690][T16266]  ? __pfx_reacquire_held_locks+0x10/0x10
[ 2012.549415][T16266]  ? mtree_range_walk+0x6fd/0x8e0
[ 2012.554441][T16266]  ? lock_vma_under_rcu+0x18a/0x730
[ 2012.559638][T16266]  ? __pfx_lock_release+0x10/0x10
[ 2012.564657][T16266]  ? lock_vma_under_rcu+0x2f9/0x730
[ 2012.569865][T16266]  ? lock_vma_under_rcu+0x18a/0x730
[ 2012.575061][T16266]  ? __pfx_lock_vma_under_rcu+0x10/0x10
[ 2012.580605][T16266]  handle_mm_fault+0x3c1/0x8a0
[ 2012.585371][T16266]  exc_page_fault+0x456/0x870
[ 2012.590047][T16266]  asm_exc_page_fault+0x26/0x30
[ 2012.594898][T16266] RIP: 0033:0x7f28e7234b70
[ 2012.599308][T16266] Code: 77 0b ca 00 01 e9 3f ff ff ff a8 10 74 0c c6 05 66 0b ca 00 01 e9 2f ff ff ff c6 05 5d 0b ca 00 01 e9 23 ff ff ff 0f 1f 40 00 <0f> b6 05 4e 0b ca 00 84 c0 74 0b 0f b6 05 32 0b ca 00 84 c0 74 0a
[ 2012.618911][T16266] RSP: 002b:00007f28e7f00178 EFLAGS: 00010246
[ 2012.624976][T16266] RAX: 00007f28e7f006c0 RBX: 00007f28e7f006c0 RCX: 00007f28e7252386
[ 2012.632937][T16266] RDX: 0000000000000000 RSI: 00007f28e7f00fb0 RDI: 00007f28e73abf80
[ 2012.640900][T16266] RBP: 00007f28e73abf80 R08: 0000000000000000 R09: 00007fff0ed97687
[ 2012.648862][T16266] R10: 0000000000000008 R11: 0000000000000246 R12: ffffffffffffffb0
[ 2012.656821][T16266] R13: 000000000000000b R14: 00007fff0ed975a0 R15: 00007fff0ed97688
[ 2012.664809][T16266]  </TASK>
[ 2012.778733][T16267] __nla_validate_parse: 53 callbacks suppressed
[ 2012.778752][T16267] netlink: 76 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 2012.849185][T16271] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
11:31:14 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38000000]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2012.896052][T16270] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 2012.916258][T16266] memory: usage 307200kB, limit 307200kB, failcnt 23880
[ 2012.923226][T16266] memory+swap: usage 307404kB, limit 9007199254740988kB, failcnt 0
[ 2012.984971][T16266] kmem: usage 307192kB, limit 9007199254740988kB, failcnt 0
[ 2013.003768][T16266] Memory cgroup stats for /syz2:
[ 2013.003903][T16266] cache 4096
[ 2013.016736][T16271] netlink: 76 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 2013.048399][T16266] rss 4096
[ 2013.054976][T16266] rss_huge 0
[ 2013.064314][T16266] shmem 0
11:31:15 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2013.122066][T16274] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 2013.154492][T16266] mapped_file 0
[ 2013.157991][T16266] dirty 4096
[ 2013.161200][T16266] writeback 0
[ 2013.181096][T16266] workingset_refault_anon 10518
[ 2013.197443][T16275] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 2013.198575][T16266] workingset_refault_file 0
[ 2013.218468][T16266] swap 208896
[ 2013.231554][T16266] swapcached 4096
[ 2013.264654][T16266] pgpgin 240300
[ 2013.273035][T16266] pgpgout 240298
[ 2013.284276][T16266] pgfault 565648
[ 2013.295607][T16266] pgmajfault 10498
[ 2013.303629][T16266] inactive_anon 4096
[ 2013.317297][T16266] active_anon 0
[ 2013.344561][T16266] inactive_file 4096
[ 2013.348481][T16266] active_file 0
[ 2013.351953][T16266] unevictable 0
[ 2013.358020][T16266] hierarchical_memory_limit 314572800
[ 2013.363413][T16266] hierarchical_memsw_limit 9223372036854771712
[ 2013.394616][T16266] total_cache 4096
[ 2013.402897][T16266] total_rss 4096
[ 2013.417139][T16277] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 2013.435137][T16274] netlink: 76 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 2013.458327][T16266] total_rss_huge 0
[ 2013.466567][T16278] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 2013.472750][T16266] total_shmem 0
[ 2013.494189][T16266] total_mapped_file 0
11:31:15 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3f000000]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2013.511781][T16266] total_dirty 4096
[ 2013.521167][T16266] total_writeback 0
[ 2013.539450][T16266] total_workingset_refault_anon 10518
[ 2013.553945][T16266] total_workingset_refault_file 0
[ 2013.568816][T16266] total_swap 208896
[ 2013.573263][T16266] total_swapcached 4096
[ 2013.580171][T16266] total_pgpgin 240300
[ 2013.588913][T16266] total_pgpgout 240298
[ 2013.596876][T16266] total_pgfault 565648
[ 2013.601112][T16280] netlink: 76 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 2013.619407][T16266] total_pgmajfault 10498
[ 2013.626852][T16266] total_inactive_anon 4096
[ 2013.634280][T16266] total_active_anon 0
[ 2013.648131][T16266] total_inactive_file 4096
[ 2013.653611][T16266] total_active_file 0
[ 2013.662714][T16266] total_unevictable 0
[ 2013.668362][T16266] anon_cost 0
11:31:15 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

11:31:15 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x480, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}, @TCA_RATE={0x6}]}, 0x480}}, 0x0)

11:31:15 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x884, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x854, 0x2, [@TCA_FLOW_POLICE={0x850, 0xa, 0x0, 0x1, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe4ffffff]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x6, 0x0, 0x0, 0x0, 0x0, 0x101}}}]}]}}]}, 0x884}}, 0x0)

[ 2013.691124][T16266] file_cost 0
[ 2013.714359][T16266] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=16261,uid=0
[ 2013.754566][T16266] Memory cgroup out of memory: Killed process 16261 (syz-executor.2) total-vm:54508kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:80kB oom_score_adj:1000
11:31:15 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x884, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x84c, 0x2, [@TCA_FLOW_POLICE={0x848, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81000000]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x6, 0x0, 0x0, 0x0, 0x0, 0x101}}}]}]}}, @TCA_RATE={0x6, 0x5, {0x0, 0x6}}]}, 0x884}}, 0x0)

11:31:15 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000000]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

11:31:16 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3000000]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

11:31:16 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3010000]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2014.188325][ T5093] syz-executor.2 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[ 2014.262094][ T5093] CPU: 1 PID: 5093 Comm: syz-executor.2 Not tainted 6.8.0-rc6-syzkaller-01699-g65f5dd4f02a8 #0
[ 2014.272473][ T5093] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024
[ 2014.282549][ T5093] Call Trace:
[ 2014.285842][ T5093]  <TASK>
[ 2014.288788][ T5093]  dump_stack_lvl+0x1e7/0x2e0
[ 2014.293494][ T5093]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2014.298718][ T5093]  ? __pfx__printk+0x10/0x10
[ 2014.303335][ T5093]  ? ___ratelimit+0x4c4/0x670
[ 2014.308044][ T5093]  ? __pfx____ratelimit+0x10/0x10
[ 2014.313101][ T5093]  dump_header+0xda/0x6a0
[ 2014.317462][ T5093]  oom_kill_process+0x3a7/0x930
[ 2014.322344][ T5093]  out_of_memory+0xf67/0x1320
[ 2014.327046][ T5093]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 2014.332682][ T5093]  ? __pfx___mutex_lock+0x10/0x10
[ 2014.337703][ T5093]  ? __pfx_out_of_memory+0x10/0x10
[ 2014.342817][ T5093]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 2014.348354][ T5093]  ? __pfx_lock_release+0x10/0x10
[ 2014.353372][ T5093]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 2014.359434][ T5093]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 2014.364633][ T5093]  ? mem_cgroup_iter+0x3e9/0x560
[ 2014.369584][ T5093]  try_charge_memcg+0xda2/0x18a0
[ 2014.374514][ T5093]  ? mark_lock+0x9a/0x350
[ 2014.378851][ T5093]  ? __pfx_try_charge_memcg+0x10/0x10
[ 2014.384234][ T5093]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 2014.390385][ T5093]  charge_memcg+0xa2/0x160
[ 2014.394792][ T5093]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 2014.400855][ T5093]  __read_swap_cache_async+0x480/0x8b0
[ 2014.406309][ T5093]  ? mark_lock+0x9a/0x350
[ 2014.410634][ T5093]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 2014.416621][ T5093]  swap_cluster_readahead+0x67c/0x810
[ 2014.422002][ T5093]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 2014.427892][ T5093]  ? __pfx_lock_release+0x10/0x10
[ 2014.432913][ T5093]  ? xas_descend+0x37e/0x470
[ 2014.437503][ T5093]  swapin_readahead+0x1ea/0x1070
[ 2014.442429][ T5093]  ? filemap_get_entry+0x127/0x4e0
[ 2014.447547][ T5093]  ? __pfx_swapin_readahead+0x10/0x10
[ 2014.452917][ T5093]  ? __filemap_get_folio+0x935/0xbc0
[ 2014.458203][ T5093]  ? swap_cache_get_folio+0x9f/0x570
[ 2014.463485][ T5093]  do_swap_page+0x791/0x3f40
[ 2014.468076][ T5093]  ? rcu_is_watching+0x15/0xb0
[ 2014.472846][ T5093]  ? do_swap_page+0x154/0x3f40
[ 2014.477600][ T5093]  ? __pfx_do_swap_page+0x10/0x10
[ 2014.482640][ T5093]  ? pte_offset_map_nolock+0x137/0x1f0
[ 2014.488095][ T5093]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 2014.493899][ T5093]  __handle_mm_fault+0x15e8/0x72d0
[ 2014.499025][ T5093]  ? reacquire_held_locks+0x3eb/0x690
[ 2014.504392][ T5093]  ? __pfx___handle_mm_fault+0x10/0x10
[ 2014.509855][ T5093]  ? __pfx_reacquire_held_locks+0x10/0x10
[ 2014.515589][ T5093]  ? mtree_range_walk+0x6fd/0x8e0
[ 2014.520636][ T5093]  ? lock_vma_under_rcu+0x18a/0x730
[ 2014.525843][ T5093]  ? __pfx_lock_release+0x10/0x10
[ 2014.530862][ T5093]  ? lock_vma_under_rcu+0x2f9/0x730
[ 2014.536069][ T5093]  ? lock_vma_under_rcu+0x18a/0x730
[ 2014.541260][ T5093]  ? __pfx_lock_vma_under_rcu+0x10/0x10
[ 2014.546801][ T5093]  handle_mm_fault+0x3c1/0x8a0
[ 2014.551564][ T5093]  exc_page_fault+0x456/0x870
[ 2014.556240][ T5093]  asm_exc_page_fault+0x26/0x30
[ 2014.561084][ T5093] RIP: 0033:0x7f28e727a780
[ 2014.565493][ T5093] Code: ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 31 c9 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 <80> 3d 71 57 10 00 00 49 89 ca 74 14 b8 3d 00 00 00 0f 05 48 3d 00
[ 2014.585090][ T5093] RSP: 002b:00007fff0ed97998 EFLAGS: 00010246
[ 2014.591155][ T5093] RAX: 00000000000000ea RBX: 0000000000005696 RCX: 0000000000000000
[ 2014.599126][ T5093] RDX: 0000000040000001 RSI: 00007fff0ed979fc RDI: 00000000ffffffff
[ 2014.607095][ T5093] RBP: 00007fff0ed979fc R08: 0000000000000010 R09: 00007fff0ed9e0b0
[ 2014.615065][ T5093] R10: 00007fff0ed9e080 R11: 000000000005f560 R12: 0000000000000032
[ 2014.623029][ T5093] R13: 00000000001ebaa8 R14: 00000000001ebaa8 R15: 0000000000000000
[ 2014.631004][ T5093]  </TASK>
11:31:17 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x44040000]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2015.148617][ T5093] memory: usage 307200kB, limit 307200kB, failcnt 24720
[ 2015.175522][ T5093] memory+swap: usage 307404kB, limit 9007199254740988kB, failcnt 0
[ 2015.226866][ T5093] kmem: usage 307192kB, limit 9007199254740988kB, failcnt 0
11:31:17 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2015.330234][ T5093] Memory cgroup stats for /syz2:
[ 2015.330379][ T5093] cache 4096
[ 2015.363746][ T5093] rss 4096
[ 2015.400056][ T5093] rss_huge 0
[ 2015.408889][ T5093] shmem 0
[ 2015.418696][ T5093] mapped_file 0
11:31:17 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81000000]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2015.455354][ T5093] dirty 4096
[ 2015.472760][ T5093] writeback 0
[ 2015.501630][ T5093] workingset_refault_anon 10681
[ 2015.526546][ T5093] workingset_refault_file 0
[ 2015.531084][ T5093] swap 208896
[ 2015.534377][ T5093] swapcached 4096
[ 2015.611444][ T5093] pgpgin 240474
[ 2015.635427][ T5093] pgpgout 240472
11:31:17 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5000000]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2015.657591][ T5093] pgfault 565899
[ 2015.685033][ T5093] pgmajfault 10646
[ 2015.688794][ T5093] inactive_anon 0
[ 2015.692438][ T5093] active_anon 4096
[ 2015.764836][ T5093] inactive_file 0
[ 2015.768512][ T5093] active_file 4096
[ 2015.795667][ T5093] unevictable 0
[ 2015.823107][ T5093] hierarchical_memory_limit 314572800
[ 2015.840529][ T5093] hierarchical_memsw_limit 9223372036854771712
[ 2015.895300][ T5093] total_cache 4096
[ 2015.906192][ T5093] total_rss 4096
[ 2015.918760][ T5093] total_rss_huge 0
11:31:17 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x85cc54a1]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2015.975154][ T5093] total_shmem 0
[ 2015.984277][ T5093] total_mapped_file 0
[ 2015.999915][ T5093] total_dirty 4096
[ 2016.008637][ T5093] total_writeback 0
[ 2016.017006][ T5093] total_workingset_refault_anon 10681
11:31:18 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6000000]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2016.080186][ T5093] total_workingset_refault_file 0
[ 2016.109635][ T5093] total_swap 208896
[ 2016.123597][ T5093] total_swapcached 4096
[ 2016.148466][ T5093] total_pgpgin 240474
[ 2016.169788][ T5093] total_pgpgout 240472
[ 2016.183023][ T5093] total_pgfault 565899
[ 2016.197965][ T5093] total_pgmajfault 10646
[ 2016.214231][ T5093] total_inactive_anon 0
[ 2016.243876][ T5093] total_active_anon 4096
11:31:18 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa154cc85]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2016.274982][ T5093] total_inactive_file 0
[ 2016.299583][ T5093] total_active_file 4096
[ 2016.331458][ T5093] total_unevictable 0
[ 2016.352914][ T5093] anon_cost 0
[ 2016.376474][ T5093] file_cost 0
[ 2016.379787][ T5093] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=16293,uid=0
11:31:18 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7000000]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2016.505543][ T5093] Memory cgroup out of memory: Killed process 16293 (syz-executor.2) total-vm:54508kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:80kB oom_score_adj:1000
11:31:18 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x884, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x84c, 0x2, [@TCA_FLOW_POLICE={0x848, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa6230000]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x6, 0x0, 0x0, 0x0, 0x0, 0x101}}}]}]}}, @TCA_RATE={0x6, 0x5, {0x0, 0x6}}]}, 0x884}}, 0x0)

11:31:18 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe4ffffff]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

11:31:18 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000000]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

11:31:18 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x884, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x854, 0x2, [@TCA_FLOW_POLICE={0x850, 0xa, 0x0, 0x1, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf0ffffff]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x6, 0x0, 0x0, 0x0, 0x0, 0x101}}}]}]}}]}, 0x884}}, 0x0)

11:31:18 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x480, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}, @TCA_RATE={0x6}]}, 0x480}}, 0x0)

11:31:19 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf0ffffff]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

11:31:19 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8010000]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

11:31:19 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf2ff0000]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

11:31:19 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9000000]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2017.795024][T16367] __nla_validate_parse: 53 callbacks suppressed
[ 2017.795042][T16367] netlink: 76 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 2017.835737][T16369] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 2017.869228][T16371] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
11:31:19 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffff7f]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2018.079959][T16369] netlink: 76 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 2018.130073][T16374] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'.
11:31:20 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa000000]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2018.171763][T16375] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 2018.340642][T16374] netlink: 76 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 2018.370652][ T5093] syz-executor.2 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[ 2018.384941][T16378] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 2018.424763][ T5093] CPU: 1 PID: 5093 Comm: syz-executor.2 Not tainted 6.8.0-rc6-syzkaller-01699-g65f5dd4f02a8 #0
[ 2018.435124][ T5093] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024
[ 2018.436788][T16380] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 2018.445175][ T5093] Call Trace:
[ 2018.445187][ T5093]  <TASK>
[ 2018.445196][ T5093]  dump_stack_lvl+0x1e7/0x2e0
[ 2018.445227][ T5093]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2018.470567][ T5093]  ? __pfx__printk+0x10/0x10
[ 2018.475181][ T5093]  ? ___ratelimit+0x4c4/0x670
[ 2018.479894][ T5093]  ? __pfx____ratelimit+0x10/0x10
[ 2018.484957][ T5093]  dump_header+0xda/0x6a0
[ 2018.489313][ T5093]  oom_kill_process+0x3a7/0x930
[ 2018.494182][ T5093]  out_of_memory+0xf67/0x1320
[ 2018.498892][ T5093]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 2018.504552][ T5093]  ? __pfx___mutex_lock+0x10/0x10
[ 2018.509601][ T5093]  ? __pfx_out_of_memory+0x10/0x10
[ 2018.514747][ T5093]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 2018.520317][ T5093]  ? __pfx_lock_release+0x10/0x10
[ 2018.525369][ T5093]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 2018.531465][ T5093]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 2018.536690][ T5093]  ? mem_cgroup_iter+0x3e9/0x560
[ 2018.541660][ T5093]  try_charge_memcg+0xda2/0x18a0
[ 2018.546611][ T5093]  ? mark_lock+0x9a/0x350
[ 2018.550953][ T5093]  ? __pfx_try_charge_memcg+0x10/0x10
[ 2018.556340][ T5093]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 2018.562487][ T5093]  charge_memcg+0xa2/0x160
[ 2018.566897][ T5093]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 2018.572957][ T5093]  __read_swap_cache_async+0x480/0x8b0
[ 2018.578410][ T5093]  ? mark_lock+0x9a/0x350
[ 2018.582740][ T5093]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 2018.588724][ T5093]  swap_cluster_readahead+0x67c/0x810
[ 2018.594113][ T5093]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 2018.600009][ T5093]  ? __pfx_lock_release+0x10/0x10
[ 2018.605035][ T5093]  ? xas_descend+0x37e/0x470
[ 2018.609630][ T5093]  swapin_readahead+0x1ea/0x1070
[ 2018.614559][ T5093]  ? filemap_get_entry+0x127/0x4e0
[ 2018.619856][ T5093]  ? __pfx_swapin_readahead+0x10/0x10
[ 2018.625227][ T5093]  ? __filemap_get_folio+0x935/0xbc0
[ 2018.630514][ T5093]  ? swap_cache_get_folio+0x9f/0x570
[ 2018.635804][ T5093]  do_swap_page+0x791/0x3f40
[ 2018.640391][ T5093]  ? __lock_acquire+0x1345/0x1fd0
[ 2018.645411][ T5093]  ? rcu_is_watching+0x15/0xb0
[ 2018.650177][ T5093]  ? do_swap_page+0x154/0x3f40
[ 2018.654931][ T5093]  ? __pfx_do_swap_page+0x10/0x10
[ 2018.659948][ T5093]  ? pte_offset_map_nolock+0x137/0x1f0
[ 2018.665406][ T5093]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 2018.671205][ T5093]  ? __pfx_validate_chain+0x10/0x10
[ 2018.676402][ T5093]  __handle_mm_fault+0x15e8/0x72d0
[ 2018.681531][ T5093]  ? __pfx___handle_mm_fault+0x10/0x10
[ 2018.686996][ T5093]  ? mt_find+0x226/0x850
[ 2018.691234][ T5093]  ? __pfx_lock_release+0x10/0x10
[ 2018.696266][ T5093]  ? mt_find+0x62d/0x850
[ 2018.700509][ T5093]  ? mt_find+0x226/0x850
[ 2018.704766][ T5093]  ? find_vma+0x142/0x1c0
[ 2018.709087][ T5093]  ? __pfx_find_vma+0x10/0x10
[ 2018.713754][ T5093]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 2018.719734][ T5093]  handle_mm_fault+0x3c1/0x8a0
[ 2018.724501][ T5093]  exc_page_fault+0x2ad/0x870
[ 2018.729176][ T5093]  asm_exc_page_fault+0x26/0x30
[ 2018.734015][ T5093] RIP: 0010:__get_user_8+0x11/0x20
[ 2018.739122][ T5093] Code: ca c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 89 c2 48 c1 fa 3f 48 09 d0 0f 01 cb <48> 8b 10 31 c0 0f 01 ca c3 cc cc cc cc 66 90 90 90 90 90 90 90 90
[ 2018.758715][ T5093] RSP: 0018:ffffc900043dfd78 EFLAGS: 00050202
[ 2018.764773][ T5093] RAX: 0000555555eb1da8 RBX: ffff88802b166e78 RCX: ffffc900043dfc03
[ 2018.772734][ T5093] RDX: 0000000000000000 RSI: ffffffff8baac7e0 RDI: ffffffff8bfe7820
[ 2018.780695][ T5093] RBP: ffffc900043dfec0 R08: ffffffff8f85e9ef R09: 1ffffffff1f0bd3d
[ 2018.788658][ T5093] R10: dffffc0000000000 R11: fffffbfff1f0bd3e R12: ffffc900043dfd80
[ 2018.796620][ T5093] R13: ffffc900043dffd8 R14: dffffc0000000000 R15: ffff88802b165940
[ 2018.804599][ T5093]  __rseq_handle_notify_resume+0x158/0x1490
[ 2018.810497][ T5093]  ? __pfx___rseq_handle_notify_resume+0x10/0x10
[ 2018.816823][ T5093]  ? irqentry_exit_to_user_mode+0x52/0x270
[ 2018.822631][ T5093]  irqentry_exit_to_user_mode+0xbb/0x270
[ 2018.828260][ T5093]  exc_page_fault+0x587/0x870
[ 2018.832935][ T5093]  asm_exc_page_fault+0x26/0x30
[ 2018.837780][ T5093] RIP: 0033:0x7f28e72a91b8
[ 2018.842187][ T5093] Code: 3c 24 48 89 4c 24 18 e8 f6 b9 ff ff 4c 8b 54 24 18 48 8b 54 24 10 41 89 c0 8b 74 24 0c 8b 3c 24 b8 e6 00 00 00 0f 05 44 89 c7 <48> 89 04 24 e8 4f ba ff ff 48 8b 04 24 48 83 c4 28 f7 d8 c3 0f 1f
[ 2018.861781][ T5093] RSP: 002b:00007fff0ed97930 EFLAGS: 00010293
[ 2018.867845][ T5093] RAX: 0000000000000000 RBX: 0000000000005698 RCX: 00007f28e72a91b5
[ 2018.875804][ T5093] RDX: 00007fff0ed97970 RSI: 0000000000000000 RDI: 0000000000000000
[ 2018.883764][ T5093] RBP: 00007fff0ed979fc R08: 0000000000000000 R09: 00007fff0ed9e0b0
[ 2018.891726][ T5093] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000032
[ 2018.899686][ T5093] R13: 00000000001ec577 R14: 00000000001ec577 R15: 0000000000000000
[ 2018.907659][ T5093]  </TASK>
11:31:21 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffe4]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2019.054737][T16378] netlink: 76 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 2019.069777][ T5093] memory: usage 307184kB, limit 307200kB, failcnt 26285
[ 2019.082766][ T5093] memory+swap: usage 307384kB, limit 9007199254740988kB, failcnt 0
[ 2019.118620][ T5093] kmem: usage 307172kB, limit 9007199254740988kB, failcnt 0
[ 2019.145487][ T5093] Memory cgroup stats for /syz2:
[ 2019.146215][ T5093] cache 4096
11:31:21 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb000000]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2019.193900][ T5093] rss 4096
[ 2019.203202][ T5093] rss_huge 0
[ 2019.235477][ T5093] shmem 0
[ 2019.238448][ T5093] mapped_file 0
[ 2019.241910][ T5093] dirty 4096
[ 2019.254098][ T5093] writeback 0
[ 2019.265639][ T5093] workingset_refault_anon 11089
[ 2019.279310][ T5093] workingset_refault_file 0
[ 2019.289016][ T5093] swap 208896
[ 2019.296519][ T5093] swapcached 4096
[ 2019.304092][ T5093] pgpgin 240904
[ 2019.312909][ T5093] pgpgout 240902
[ 2019.321070][ T5093] pgfault 566526
[ 2019.330671][ T5093] pgmajfault 11037
[ 2019.338941][ T5093] inactive_anon 4096
[ 2019.347709][ T5093] active_anon 0
[ 2019.355658][ T5093] inactive_file 4096
[ 2019.363702][ T5093] active_file 0
[ 2019.371176][ T5093] unevictable 0
[ 2019.378856][ T5093] hierarchical_memory_limit 314572800
[ 2019.391777][ T5093] hierarchical_memsw_limit 9223372036854771712
[ 2019.405668][ T5093] total_cache 4096
[ 2019.413205][ T5093] total_rss 4096
[ 2019.423198][ T5093] total_rss_huge 0
[ 2019.430922][ T5093] total_shmem 0
11:31:21 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffff0]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2019.450951][ T5093] total_mapped_file 0
[ 2019.463821][ T5093] total_dirty 4096
[ 2019.474739][ T5093] total_writeback 0
[ 2019.488136][ T5093] total_workingset_refault_anon 11089
[ 2019.505205][ T5093] total_workingset_refault_file 0
[ 2019.531563][ T5093] total_swap 208896
[ 2019.547171][ T5093] total_swapcached 4096
[ 2019.551359][ T5093] total_pgpgin 240904
[ 2019.575797][ T5093] total_pgpgout 240902
[ 2019.586609][ T5093] total_pgfault 566526
[ 2019.590702][ T5093] total_pgmajfault 11037
11:31:21 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc010000]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2019.617369][ T5093] total_inactive_anon 4096
[ 2019.627247][ T5093] total_active_anon 0
[ 2019.640360][ T5093] total_inactive_file 4096
[ 2019.645418][ T5093] total_active_file 0
[ 2019.650526][ T5093] total_unevictable 0
[ 2019.663089][ T5093] anon_cost 0
[ 2019.671109][ T5093] file_cost 0
[ 2019.686421][ T5093] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=16342,uid=0
11:31:21 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2019.730873][ T5093] Memory cgroup out of memory: Killed process 16342 (syz-executor.2) total-vm:54508kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:80kB oom_score_adj:1000
11:31:21 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x884, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x84c, 0x2, [@TCA_FLOW_POLICE={0x848, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb3c45c11]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x6, 0x0, 0x0, 0x0, 0x0, 0x101}}}]}]}}, @TCA_RATE={0x6, 0x5, {0x0, 0x6}}]}, 0x884}}, 0x0)

11:31:21 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x884, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x854, 0x2, [@TCA_FLOW_POLICE={0x850, 0xa, 0x0, 0x1, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf2ff0000]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x6, 0x0, 0x0, 0x0, 0x0, 0x101}}}]}]}}]}, 0x884}}, 0x0)

11:31:21 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000000]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

11:31:22 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x480, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x11]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}, @TCA_RATE={0x6}]}, 0x480}}, 0x0)

11:31:22 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

11:31:22 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x11000000]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

11:31:22 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2020.523763][T16400] syz-executor.2 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[ 2020.624569][T16400] CPU: 1 PID: 16400 Comm: syz-executor.2 Not tainted 6.8.0-rc6-syzkaller-01699-g65f5dd4f02a8 #0
[ 2020.635040][T16400] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024
[ 2020.645111][T16400] Call Trace:
[ 2020.648411][T16400]  <TASK>
[ 2020.651366][T16400]  dump_stack_lvl+0x1e7/0x2e0
[ 2020.656072][T16400]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2020.661294][T16400]  ? __pfx__printk+0x10/0x10
[ 2020.665915][T16400]  ? ___ratelimit+0x4c4/0x670
[ 2020.670626][T16400]  ? __pfx____ratelimit+0x10/0x10
[ 2020.675681][T16400]  dump_header+0xda/0x6a0
[ 2020.680043][T16400]  oom_kill_process+0x3a7/0x930
[ 2020.684926][T16400]  out_of_memory+0xf67/0x1320
[ 2020.689623][T16400]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 2020.695255][T16400]  ? __pfx___mutex_lock+0x10/0x10
[ 2020.700275][T16400]  ? __pfx_out_of_memory+0x10/0x10
[ 2020.705386][T16400]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 2020.710927][T16400]  ? __pfx_lock_release+0x10/0x10
[ 2020.715946][T16400]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 2020.722011][T16400]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 2020.727206][T16400]  ? mem_cgroup_iter+0x3e9/0x560
[ 2020.732146][T16400]  try_charge_memcg+0xda2/0x18a0
[ 2020.737082][T16400]  ? mark_lock+0x9a/0x350
[ 2020.741421][T16400]  ? __pfx_try_charge_memcg+0x10/0x10
[ 2020.746808][T16400]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 2020.752954][T16400]  charge_memcg+0xa2/0x160
[ 2020.757367][T16400]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 2020.763433][T16400]  __read_swap_cache_async+0x480/0x8b0
[ 2020.768888][T16400]  ? mark_lock+0x9a/0x350
[ 2020.773218][T16400]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 2020.779204][T16400]  swap_cluster_readahead+0x67c/0x810
[ 2020.784589][T16400]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 2020.790489][T16400]  ? __pfx_lock_release+0x10/0x10
[ 2020.795518][T16400]  ? xas_descend+0x37e/0x470
[ 2020.800112][T16400]  swapin_readahead+0x1ea/0x1070
[ 2020.805038][T16400]  ? filemap_get_entry+0x127/0x4e0
[ 2020.810155][T16400]  ? __pfx_swapin_readahead+0x10/0x10
[ 2020.815527][T16400]  ? __filemap_get_folio+0x935/0xbc0
[ 2020.820812][T16400]  ? swap_cache_get_folio+0x9f/0x570
[ 2020.826096][T16400]  do_swap_page+0x791/0x3f40
[ 2020.830681][T16400]  ? __lock_acquire+0x1345/0x1fd0
[ 2020.835703][T16400]  ? rcu_is_watching+0x15/0xb0
[ 2020.840473][T16400]  ? do_swap_page+0x154/0x3f40
[ 2020.845228][T16400]  ? __pfx_do_swap_page+0x10/0x10
[ 2020.850246][T16400]  ? pte_offset_map_nolock+0x137/0x1f0
[ 2020.855702][T16400]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 2020.861499][T16400]  ? __pfx_validate_chain+0x10/0x10
[ 2020.866693][T16400]  __handle_mm_fault+0x15e8/0x72d0
[ 2020.871819][T16400]  ? __pfx___handle_mm_fault+0x10/0x10
[ 2020.877278][T16400]  ? mt_find+0x226/0x850
[ 2020.881516][T16400]  ? __pfx_lock_release+0x10/0x10
[ 2020.886549][T16400]  ? mt_find+0x62d/0x850
[ 2020.890789][T16400]  ? mt_find+0x226/0x850
[ 2020.895045][T16400]  ? find_vma+0x142/0x1c0
[ 2020.899365][T16400]  ? __pfx_find_vma+0x10/0x10
[ 2020.904031][T16400]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 2020.910007][T16400]  handle_mm_fault+0x3c1/0x8a0
[ 2020.914771][T16400]  exc_page_fault+0x2ad/0x870
[ 2020.919448][T16400]  asm_exc_page_fault+0x26/0x30
[ 2020.924288][T16400] RIP: 0010:__get_user_8+0x11/0x20
[ 2020.929391][T16400] Code: ca c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 89 c2 48 c1 fa 3f 48 09 d0 0f 01 cb <48> 8b 10 31 c0 0f 01 ca c3 cc cc cc cc 66 90 90 90 90 90 90 90 90
[ 2020.948990][T16400] RSP: 0018:ffffc900031ffd78 EFLAGS: 00050202
[ 2020.955051][T16400] RAX: 0000555555eb1da8 RBX: ffff8880477a6e78 RCX: ffffc900031ffc03
[ 2020.963016][T16400] RDX: 0000000000000000 RSI: ffffffff8baac7e0 RDI: ffffffff8bfe7820
[ 2020.970976][T16400] RBP: ffffc900031ffec0 R08: ffffffff8f85e9ef R09: 1ffffffff1f0bd3d
[ 2020.978935][T16400] R10: dffffc0000000000 R11: fffffbfff1f0bd3e R12: ffffc900031ffd80
[ 2020.986896][T16400] R13: ffffc900031fffd8 R14: dffffc0000000000 R15: ffff8880477a5940
[ 2020.994875][T16400]  __rseq_handle_notify_resume+0x158/0x1490
[ 2021.000776][T16400]  ? __pfx___rseq_handle_notify_resume+0x10/0x10
[ 2021.007100][T16400]  ? irqentry_exit_to_user_mode+0x52/0x270
[ 2021.012905][T16400]  irqentry_exit_to_user_mode+0xbb/0x270
[ 2021.018534][T16400]  exc_page_fault+0x587/0x870
[ 2021.023210][T16400]  asm_exc_page_fault+0x26/0x30
[ 2021.028049][T16400] RIP: 0033:0x7f28e72527ca
[ 2021.032454][T16400] Code: 8b 0d 22 d8 12 00 4d 21 eb 0f 84 8b 0c 00 00 49 8b 44 24 10 f7 db 48 63 db 4c 8d 34 06 49 21 de 49 39 c6 73 4b bd 16 00 00 00 <80> 7c 24 43 00 74 0a 48 8d 7c 24 60 e8 85 f7 ff ff 48 8b 84 24 f8
[ 2021.052050][T16400] RSP: 002b:00007fff0ed97630 EFLAGS: 00010246
[ 2021.058108][T16400] RAX: 0000000000000000 RBX: 00007f28e7f006c0 RCX: 00007f28e7252c17
[ 2021.066071][T16400] RDX: 0000000000000000 RSI: 00007fff0ed97688 RDI: 0000000000000002
11:31:22 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x14000000]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2021.074030][T16400] RBP: 0000000000000000 R08: 0000000000000000 R09: 00007fff0ed97687
[ 2021.081988][T16400] R10: 0000000000000008 R11: 0000000000000246 R12: 00007fff0ed978d0
[ 2021.089964][T16400] R13: 00007f28e7ee0000 R14: 00007f28e7f006c0 R15: 00007fff0ed97688
[ 2021.097969][T16400]  </TASK>
[ 2021.134527][T16400] memory: usage 307200kB, limit 307200kB, failcnt 26743
[ 2021.143235][T16400] memory+swap: usage 307404kB, limit 9007199254740988kB, failcnt 0
[ 2021.194029][T16400] kmem: usage 307192kB, limit 9007199254740988kB, failcnt 0
[ 2021.203094][T16400] Memory cgroup stats for /syz2:
[ 2021.203233][T16400] cache 4096
[ 2021.222933][T16400] rss 4096
[ 2021.238369][T16400] rss_huge 0
[ 2021.266832][T16400] shmem 0
[ 2021.282995][T16400] mapped_file 0
[ 2021.299825][T16400] dirty 4096
[ 2021.320378][T16400] writeback 0
[ 2021.333689][T16400] workingset_refault_anon 11192
[ 2021.366131][T16400] workingset_refault_file 0
[ 2021.392320][T16400] swap 208896
[ 2021.415025][T16400] swapcached 4096
[ 2021.445230][T16400] pgpgin 241021
11:31:23 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2021.525497][T16400] pgpgout 241019
[ 2021.529083][T16400] pgfault 566707
[ 2021.532641][T16400] pgmajfault 11132
[ 2021.613304][T16400] inactive_anon 0
[ 2021.633180][T16400] active_anon 4096
[ 2021.653931][T16400] inactive_file 4096
[ 2021.672425][T16400] active_file 0
[ 2021.688120][T16400] unevictable 0
[ 2021.700322][T16400] hierarchical_memory_limit 314572800
11:31:23 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x15000000]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2021.726446][T16400] hierarchical_memsw_limit 9223372036854771712
[ 2021.773022][T16400] total_cache 4096
[ 2021.799169][T16400] total_rss 4096
[ 2021.821883][T16400] total_rss_huge 0
[ 2021.844881][T16400] total_shmem 0
11:31:23 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2021.865786][T16400] total_mapped_file 0
[ 2021.884866][T16400] total_dirty 4096
[ 2021.906803][T16400] total_writeback 0
[ 2021.910661][T16400] total_workingset_refault_anon 11192
[ 2021.938266][T16400] total_workingset_refault_file 0
[ 2021.943315][T16400] total_swap 208896
11:31:24 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38000000]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2021.990686][T16400] total_swapcached 4096
[ 2022.009796][T16400] total_pgpgin 241021
[ 2022.029617][T16400] total_pgpgout 241019
[ 2022.061352][T16400] total_pgfault 566707
[ 2022.085805][T16400] total_pgmajfault 11132
[ 2022.090312][T16400] total_inactive_anon 0
[ 2022.103911][T16400] total_active_anon 4096
[ 2022.108849][T16400] total_inactive_file 4096
[ 2022.113499][T16400] total_active_file 0
[ 2022.118455][T16400] total_unevictable 0
[ 2022.128118][T16400] anon_cost 0
[ 2022.134246][T16400] file_cost 0
[ 2022.145500][T16400] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=16400,uid=0
11:31:24 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2022.181561][T16400] Memory cgroup out of memory: Killed process 16400 (syz-executor.2) total-vm:54508kB, anon-rss:388kB, file-rss:8800kB, shmem-rss:0kB, UID:0 pgtables:80kB oom_score_adj:1000
11:31:24 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x884, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x84c, 0x2, [@TCA_FLOW_POLICE={0x848, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xcbdd6fff]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x6, 0x0, 0x0, 0x0, 0x0, 0x101}}}]}]}}, @TCA_RATE={0x6, 0x5, {0x0, 0x6}}]}, 0x884}}, 0x0)

11:31:24 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000000]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

11:31:24 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2022.850962][T16447] __nla_validate_parse: 44 callbacks suppressed
[ 2022.850981][T16447] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 2022.882856][T16448] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 2022.900254][T16448] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'.
11:31:25 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x884, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x854, 0x2, [@TCA_FLOW_POLICE={0x850, 0xa, 0x0, 0x1, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffff7f]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x6, 0x0, 0x0, 0x0, 0x0, 0x101}}}]}]}}]}, 0x884}}, 0x0)

[ 2023.122836][T16447] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
11:31:25 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x480, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x14]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}, @TCA_RATE={0x6}]}, 0x480}}, 0x0)

[ 2023.291375][T16450] netlink: 76 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 2023.310858][T16451] netlink: 76 bytes leftover after parsing attributes in process `syz-executor.1'.
11:31:25 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x44040000]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

11:31:25 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2023.486458][T16460] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 2023.508183][T16460] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 2023.532926][ T5093] syz-executor.2 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[ 2023.606129][ T5093] CPU: 0 PID: 5093 Comm: syz-executor.2 Not tainted 6.8.0-rc6-syzkaller-01699-g65f5dd4f02a8 #0
[ 2023.616502][ T5093] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024
[ 2023.626569][ T5093] Call Trace:
[ 2023.629862][ T5093]  <TASK>
[ 2023.632809][ T5093]  dump_stack_lvl+0x1e7/0x2e0
[ 2023.637508][ T5093]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2023.642728][ T5093]  ? __pfx__printk+0x10/0x10
[ 2023.647338][ T5093]  ? ___ratelimit+0x4c4/0x670
[ 2023.652045][ T5093]  ? __pfx____ratelimit+0x10/0x10
[ 2023.657096][ T5093]  dump_header+0xda/0x6a0
[ 2023.661456][ T5093]  oom_kill_process+0x3a7/0x930
[ 2023.666333][ T5093]  out_of_memory+0xf67/0x1320
[ 2023.671041][ T5093]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 2023.676700][ T5093]  ? __pfx___mutex_lock+0x10/0x10
[ 2023.681752][ T5093]  ? __pfx_out_of_memory+0x10/0x10
[ 2023.686901][ T5093]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 2023.692478][ T5093]  ? __pfx_lock_release+0x10/0x10
[ 2023.697534][ T5093]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 2023.703639][ T5093]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 2023.708864][ T5093]  ? mem_cgroup_iter+0x3e9/0x560
[ 2023.713844][ T5093]  try_charge_memcg+0xda2/0x18a0
[ 2023.718804][ T5093]  ? mark_lock+0x9a/0x350
[ 2023.723173][ T5093]  ? __pfx_try_charge_memcg+0x10/0x10
[ 2023.728598][ T5093]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 2023.734775][ T5093]  charge_memcg+0xa2/0x160
[ 2023.739218][ T5093]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 2023.745311][ T5093]  __read_swap_cache_async+0x480/0x8b0
[ 2023.750795][ T5093]  ? mark_lock+0x9a/0x350
[ 2023.755155][ T5093]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 2023.761171][ T5093]  swap_cluster_readahead+0x67c/0x810
[ 2023.766580][ T5093]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 2023.772503][ T5093]  ? __pfx_lock_release+0x10/0x10
[ 2023.777557][ T5093]  ? xas_descend+0x37e/0x470
[ 2023.782185][ T5093]  swapin_readahead+0x1ea/0x1070
[ 2023.787138][ T5093]  ? filemap_get_entry+0x127/0x4e0
[ 2023.792290][ T5093]  ? __pfx_swapin_readahead+0x10/0x10
[ 2023.797691][ T5093]  ? __filemap_get_folio+0x935/0xbc0
[ 2023.803009][ T5093]  ? swap_cache_get_folio+0x9f/0x570
[ 2023.808325][ T5093]  do_swap_page+0x791/0x3f40
[ 2023.812944][ T5093]  ? rcu_is_watching+0x15/0xb0
[ 2023.817749][ T5093]  ? do_swap_page+0x154/0x3f40
[ 2023.822534][ T5093]  ? __pfx_do_swap_page+0x10/0x10
[ 2023.827584][ T5093]  ? pte_offset_map_nolock+0x137/0x1f0
[ 2023.833070][ T5093]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 2023.838911][ T5093]  __handle_mm_fault+0x15e8/0x72d0
[ 2023.844079][ T5093]  ? reacquire_held_locks+0x3eb/0x690
[ 2023.849477][ T5093]  ? __pfx___handle_mm_fault+0x10/0x10
[ 2023.854974][ T5093]  ? __pfx_reacquire_held_locks+0x10/0x10
[ 2023.860736][ T5093]  ? mtree_range_walk+0x6fd/0x8e0
[ 2023.865791][ T5093]  ? lock_vma_under_rcu+0x18a/0x730
[ 2023.871016][ T5093]  ? __pfx_lock_release+0x10/0x10
[ 2023.876064][ T5093]  ? lock_vma_under_rcu+0x2f9/0x730
[ 2023.881314][ T5093]  ? lock_vma_under_rcu+0x18a/0x730
[ 2023.886539][ T5093]  ? __pfx_lock_vma_under_rcu+0x10/0x10
[ 2023.892116][ T5093]  handle_mm_fault+0x3c1/0x8a0
[ 2023.896940][ T5093]  exc_page_fault+0x456/0x870
[ 2023.901654][ T5093]  asm_exc_page_fault+0x26/0x30
[ 2023.906527][ T5093] RIP: 0033:0x7f28e727dd36
[ 2023.907117][T16459] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 2023.910943][ T5093] Code: fb e8 5e f6 01 00 85 c0 b8 00 00 00 00 48 0f 45 d8 48 89 d8 5b c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 83 ec 28 31 f6 <64> 48 8b 04 25 28 00 00 00 48 89 44 24 18 31 c0 89 f8 48 69 c0 83
[ 2023.910963][ T5093] RSP: 002b:00007fff0ed97970 EFLAGS: 00010246
[ 2023.910982][ T5093] RAX: 0000000000000000 RBX: 000000000000569c RCX: 0000000000000000
[ 2023.910996][ T5093] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00000000000003e8
[ 2023.961780][ T5093] RBP: 00007fff0ed979fc R08: 0000000000000000 R09: 00007fff0ed9e0b0
[ 2023.969772][ T5093] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000032
[ 2023.977761][ T5093] R13: 00000000001edbb4 R14: 00000000001edbb4 R15: 0000000000000000
[ 2023.985768][ T5093]  </TASK>
[ 2024.057581][T16459] netlink: 76 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 2024.144716][ T5093] memory: usage 307196kB, limit 307200kB, failcnt 27609
[ 2024.182973][ T5093] memory+swap: usage 307404kB, limit 9007199254740988kB, failcnt 0
[ 2024.237366][ T5093] kmem: usage 307192kB, limit 9007199254740988kB, failcnt 0
11:31:26 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81000000]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

11:31:26 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2024.297038][ T5093] Memory cgroup stats for /syz2:
[ 2024.297183][ T5093] cache 4096
[ 2024.324341][ T5093] rss 4096
[ 2024.331231][ T5093] rss_huge 0
[ 2024.338303][ T5093] shmem 0
[ 2024.366870][ T5093] mapped_file 0
[ 2024.387116][ T5093] dirty 4096
[ 2024.390340][ T5093] writeback 0
[ 2024.393631][ T5093] workingset_refault_anon 11370
[ 2024.431170][ T5093] workingset_refault_file 0
[ 2024.455739][ T5093] swap 208896
[ 2024.459051][ T5093] swapcached 0
[ 2024.462441][ T5093] pgpgin 241212
[ 2024.487378][ T5093] pgpgout 241210
[ 2024.495133][ T5093] pgfault 566989
[ 2024.503264][ T5093] pgmajfault 11294
[ 2024.514288][ T5093] inactive_anon 0
[ 2024.526345][ T5093] active_anon 4096
[ 2024.539205][ T5093] inactive_file 4096
[ 2024.543231][ T5093] active_file 0
[ 2024.559678][ T5093] unevictable 0
[ 2024.563164][ T5093] hierarchical_memory_limit 314572800
[ 2024.585710][ T5093] hierarchical_memsw_limit 9223372036854771712
[ 2024.601351][ T5093] total_cache 4096
[ 2024.613665][ T5093] total_rss 4096
[ 2024.624109][ T5093] total_rss_huge 0
[ 2024.636088][ T5093] total_shmem 0
[ 2024.646823][ T5093] total_mapped_file 0
[ 2024.650834][ T5093] total_dirty 4096
[ 2024.669478][ T5093] total_writeback 0
[ 2024.673312][ T5093] total_workingset_refault_anon 11370
[ 2024.689454][ T5093] total_workingset_refault_file 0
[ 2024.697167][ T5093] total_swap 208896
[ 2024.700997][ T5093] total_swapcached 0
[ 2024.718701][ T5093] total_pgpgin 241212
[ 2024.722731][ T5093] total_pgpgout 241210
[ 2024.730298][ T5093] total_pgfault 566989
[ 2024.743286][ T5093] total_pgmajfault 11294
[ 2024.751567][ T5093] total_inactive_anon 0
[ 2024.759578][ T5093] total_active_anon 4096
[ 2024.763839][ T5093] total_inactive_file 4096
11:31:26 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc1490aff]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

11:31:26 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2024.789395][ T5093] total_active_file 0
[ 2024.794091][ T5093] total_unevictable 0
[ 2024.799660][ T5093] anon_cost 0
[ 2024.806952][ T5093] file_cost 0
[ 2024.814162][ T5093] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=16443,uid=0
[ 2024.862314][ T5093] Memory cgroup out of memory: Killed process 16443 (syz-executor.2) total-vm:54508kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:80kB oom_score_adj:1000
11:31:26 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x884, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x84c, 0x2, [@TCA_FLOW_POLICE={0x848, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf0ffffff]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x6, 0x0, 0x0, 0x0, 0x0, 0x101}}}]}]}}, @TCA_RATE={0x6, 0x5, {0x0, 0x6}}]}, 0x884}}, 0x0)

11:31:27 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe4ffffff]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2025.130425][T16478] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2025.161637][T16478] CPU: 0 PID: 16478 Comm: syz-executor.2 Not tainted 6.8.0-rc6-syzkaller-01699-g65f5dd4f02a8 #0
[ 2025.172099][T16478] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024
[ 2025.182174][T16478] Call Trace:
[ 2025.185467][T16478]  <TASK>
[ 2025.188416][T16478]  dump_stack_lvl+0x1e7/0x2e0
[ 2025.193120][T16478]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2025.198342][T16478]  ? __pfx__printk+0x10/0x10
[ 2025.202956][T16478]  ? ___ratelimit+0x4c4/0x670
[ 2025.207662][T16478]  ? __pfx____ratelimit+0x10/0x10
[ 2025.212717][T16478]  dump_header+0xda/0x6a0
[ 2025.217074][T16478]  oom_kill_process+0x3a7/0x930
[ 2025.221955][T16478]  out_of_memory+0xf67/0x1320
[ 2025.226656][T16478]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 2025.232314][T16478]  ? __pfx___mutex_lock+0x10/0x10
[ 2025.237359][T16478]  ? __pfx_out_of_memory+0x10/0x10
[ 2025.242504][T16478]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 2025.248072][T16478]  ? __pfx_lock_release+0x10/0x10
[ 2025.253126][T16478]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 2025.259224][T16478]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 2025.264444][T16478]  ? mem_cgroup_iter+0x3e9/0x560
[ 2025.269413][T16478]  try_charge_memcg+0xda2/0x18a0
[ 2025.274400][T16478]  ? __pfx_try_charge_memcg+0x10/0x10
[ 2025.279797][T16478]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 2025.285540][T16478]  ? __pfx_lock_release+0x10/0x10
[ 2025.290597][T16478]  ? memcg_account_kmem+0x1e7/0x210
[ 2025.295834][T16478]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 2025.301667][T16478]  __memcg_kmem_charge_page+0xe1/0x250
[ 2025.307163][T16478]  memcg_charge_kernel_stack+0x3f8/0x550
[ 2025.312825][T16478]  dup_task_struct+0x40d/0x7d0
[ 2025.317616][T16478]  copy_process+0x5d5/0x3fc0
[ 2025.322233][T16478]  ? __might_fault+0xa9/0x120
[ 2025.326931][T16478]  ? __pfx_lock_release+0x10/0x10
[ 2025.331988][T16478]  ? __pfx_copy_process+0x10/0x10
[ 2025.337034][T16478]  ? __might_fault+0xc5/0x120
[ 2025.341739][T16478]  ? __asan_memset+0x23/0x50
[ 2025.346363][T16478]  kernel_clone+0x21d/0x8d0
[ 2025.350897][T16478]  ? __pfx_kernel_clone+0x10/0x10
[ 2025.355969][T16478]  __se_sys_clone3+0x2cb/0x350
[ 2025.360756][T16478]  ? __pfx___se_sys_clone3+0x10/0x10
[ 2025.366095][T16478]  ? do_syscall_64+0x108/0x240
[ 2025.370886][T16478]  ? do_syscall_64+0xb4/0x240
[ 2025.375586][T16478]  do_syscall_64+0xf9/0x240
[ 2025.380115][T16478]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 2025.386030][T16478] RIP: 0033:0x7f28e72a9b99
[ 2025.390463][T16478] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 2025.410087][T16478] RSP: 002b:00007fff0ed97558 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 2025.418522][T16478] RAX: ffffffffffffffda RBX: 00007f28e7252270 RCX: 00007f28e72a9b99
[ 2025.426513][T16478] RDX: 00007f28e7252270 RSI: 0000000000000058 RDI: 00007fff0ed975a0
[ 2025.434504][T16478] RBP: 00007f28e7f006c0 R08: 00007f28e7f006c0 R09: 00007fff0ed97687
[ 2025.442495][T16478] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 2025.450484][T16478] R13: 000000000000000b R14: 00007fff0ed975a0 R15: 00007fff0ed97688
[ 2025.458494][T16478]  </TASK>
11:31:27 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2025.700858][T16478] memory: usage 307200kB, limit 307200kB, failcnt 27816
[ 2025.728318][T16478] memory+swap: usage 307428kB, limit 9007199254740988kB, failcnt 0
[ 2025.745962][T16478] kmem: usage 307184kB, limit 9007199254740988kB, failcnt 0
[ 2025.761227][T16478] Memory cgroup stats for /syz2:
[ 2025.761367][T16478] cache 4096
[ 2025.776203][T16478] rss 0
[ 2025.783324][T16478] rss_huge 0
[ 2025.792346][T16478] shmem 0
[ 2025.799267][T16478] mapped_file 0
[ 2025.806450][T16478] dirty 4096
[ 2025.813176][T16478] writeback 0
[ 2025.834618][T16478] workingset_refault_anon 11405
[ 2025.839490][T16478] workingset_refault_file 0
[ 2025.843999][T16478] swap 245760
[ 2025.868832][T16478] swapcached 0
[ 2025.877504][T16478] pgpgin 241259
[ 2025.893322][T16478] pgpgout 241258
[ 2025.901548][T16478] pgfault 567068
[ 2025.914173][T16478] pgmajfault 11323
11:31:27 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2025.925086][T16478] inactive_anon 0
[ 2025.935761][T16478] active_anon 0
[ 2025.948011][T16478] inactive_file 0
[ 2025.959796][T16478] active_file 4096
11:31:27 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf0ffffff]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2025.976171][T16478] unevictable 0
[ 2025.984827][T16478] hierarchical_memory_limit 314572800
[ 2026.018170][T16478] hierarchical_memsw_limit 9223372036854771712
[ 2026.034505][T16478] total_cache 4096
[ 2026.051477][T16478] total_rss 0
[ 2026.063733][T16478] total_rss_huge 0
[ 2026.075431][T16478] total_shmem 0
[ 2026.085640][T16478] total_mapped_file 0
[ 2026.094140][T16478] total_dirty 4096
[ 2026.102319][T16478] total_writeback 0
[ 2026.112719][T16478] total_workingset_refault_anon 11405
11:31:28 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x884, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x854, 0x2, [@TCA_FLOW_POLICE={0x850, 0xa, 0x0, 0x1, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffe4]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x6, 0x0, 0x0, 0x0, 0x0, 0x101}}}]}]}}]}, 0x884}}, 0x0)

[ 2026.127626][T16478] total_workingset_refault_file 0
[ 2026.138939][T16478] total_swap 245760
[ 2026.150214][T16478] total_swapcached 0
[ 2026.155226][T16478] total_pgpgin 241259
[ 2026.163598][T16478] total_pgpgout 241258
[ 2026.174745][T16478] total_pgfault 567068
[ 2026.181241][T16478] total_pgmajfault 11323
[ 2026.192397][T16478] total_inactive_anon 0
[ 2026.226508][T16478] total_active_anon 0
[ 2026.235955][T16478] total_inactive_file 0
[ 2026.250889][T16478] total_active_file 4096
[ 2026.265998][T16478] total_unevictable 0
[ 2026.270183][T16478] anon_cost 0
[ 2026.273611][T16478] file_cost 0
11:31:28 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf2ff0000]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2026.300280][T16478] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=16478,uid=0
[ 2026.326710][T16478] Memory cgroup out of memory: Killed process 16478 (syz-executor.2) total-vm:54508kB, anon-rss:440kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:80kB oom_score_adj:1000
11:31:28 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x480, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x15]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}, @TCA_RATE={0x6}]}, 0x480}}, 0x0)

11:31:28 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x11]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

11:31:28 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x884, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x84c, 0x2, [@TCA_FLOW_POLICE={0x848, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff6fddcb]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x6, 0x0, 0x0, 0x0, 0x0, 0x101}}}]}]}}, @TCA_RATE={0x6, 0x5, {0x0, 0x6}}]}, 0x884}}, 0x0)

11:31:28 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff0a49c1]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

11:31:28 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x14]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

11:31:28 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffff7f]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

11:31:29 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x15]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2027.223834][ T5093] syz-executor.2 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[ 2027.265687][ T5093] CPU: 1 PID: 5093 Comm: syz-executor.2 Not tainted 6.8.0-rc6-syzkaller-01699-g65f5dd4f02a8 #0
[ 2027.276059][ T5093] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024
[ 2027.286131][ T5093] Call Trace:
[ 2027.289429][ T5093]  <TASK>
[ 2027.292376][ T5093]  dump_stack_lvl+0x1e7/0x2e0
[ 2027.297085][ T5093]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2027.302306][ T5093]  ? __pfx__printk+0x10/0x10
[ 2027.306917][ T5093]  ? ___ratelimit+0x4c4/0x670
[ 2027.311624][ T5093]  ? __pfx____ratelimit+0x10/0x10
[ 2027.316683][ T5093]  dump_header+0xda/0x6a0
[ 2027.321037][ T5093]  oom_kill_process+0x3a7/0x930
[ 2027.325912][ T5093]  out_of_memory+0xf67/0x1320
[ 2027.330618][ T5093]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 2027.336271][ T5093]  ? __pfx___mutex_lock+0x10/0x10
[ 2027.341324][ T5093]  ? __pfx_out_of_memory+0x10/0x10
[ 2027.346478][ T5093]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 2027.352050][ T5093]  ? __pfx_lock_release+0x10/0x10
[ 2027.357099][ T5093]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 2027.363199][ T5093]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 2027.368416][ T5093]  ? mem_cgroup_iter+0x3e9/0x560
[ 2027.373381][ T5093]  try_charge_memcg+0xda2/0x18a0
[ 2027.378335][ T5093]  ? mark_lock+0x9a/0x350
[ 2027.382706][ T5093]  ? __pfx_try_charge_memcg+0x10/0x10
[ 2027.388131][ T5093]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 2027.394307][ T5093]  charge_memcg+0xa2/0x160
[ 2027.398740][ T5093]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 2027.404827][ T5093]  __read_swap_cache_async+0x480/0x8b0
[ 2027.410309][ T5093]  ? mark_lock+0x9a/0x350
[ 2027.414672][ T5093]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 2027.420690][ T5093]  ? blk_start_plug+0x6f/0x1b0
[ 2027.425483][ T5093]  swap_cluster_readahead+0x398/0x810
[ 2027.430889][ T5093]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 2027.436809][ T5093]  ? __pfx_lock_release+0x10/0x10
[ 2027.441871][ T5093]  ? xas_descend+0x37e/0x470
[ 2027.446496][ T5093]  swapin_readahead+0x1ea/0x1070
[ 2027.451448][ T5093]  ? filemap_get_entry+0x127/0x4e0
[ 2027.456596][ T5093]  ? __pfx_swapin_readahead+0x10/0x10
[ 2027.462015][ T5093]  ? __filemap_get_folio+0x935/0xbc0
[ 2027.467331][ T5093]  ? swap_cache_get_folio+0x9f/0x570
[ 2027.472647][ T5093]  do_swap_page+0x791/0x3f40
[ 2027.477263][ T5093]  ? rcu_is_watching+0x15/0xb0
[ 2027.482064][ T5093]  ? do_swap_page+0x154/0x3f40
[ 2027.486842][ T5093]  ? __pfx_do_swap_page+0x10/0x10
[ 2027.491891][ T5093]  ? pte_offset_map_nolock+0x137/0x1f0
[ 2027.497373][ T5093]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 2027.503215][ T5093]  __handle_mm_fault+0x15e8/0x72d0
[ 2027.508388][ T5093]  ? reacquire_held_locks+0x3eb/0x690
[ 2027.513786][ T5093]  ? __pfx___handle_mm_fault+0x10/0x10
[ 2027.519283][ T5093]  ? __pfx_reacquire_held_locks+0x10/0x10
[ 2027.525040][ T5093]  ? mtree_range_walk+0x6fd/0x8e0
[ 2027.530086][ T5093]  ? lock_vma_under_rcu+0x18a/0x730
[ 2027.535302][ T5093]  ? __pfx_lock_release+0x10/0x10
[ 2027.540347][ T5093]  ? lock_vma_under_rcu+0x2f9/0x730
[ 2027.545591][ T5093]  ? lock_vma_under_rcu+0x18a/0x730
[ 2027.550820][ T5093]  ? __pfx_lock_vma_under_rcu+0x10/0x10
[ 2027.556391][ T5093]  handle_mm_fault+0x3c1/0x8a0
[ 2027.561182][ T5093]  exc_page_fault+0x456/0x870
[ 2027.565889][ T5093]  asm_exc_page_fault+0x26/0x30
[ 2027.570753][ T5093] RIP: 0033:0x7f28e727dd89
[ 2027.575180][ T5093] Code: 29 c7 48 69 ff e8 03 00 00 48 89 7c 24 08 48 89 e7 e8 2b cb ff ff 48 8b 54 24 18 64 48 2b 14 25 28 00 00 00 75 05 48 83 c4 28 <c3> e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2
[ 2027.594802][ T5093] RSP: 002b:00007fff0ed97998 EFLAGS: 00010202
[ 2027.600886][ T5093] RAX: 0000000000000000 RBX: 00000000000056a0 RCX: 0000000000000000
[ 2027.608876][ T5093] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000555555eb1788
[ 2027.616857][ T5093] RBP: 00007fff0ed979fc R08: 0000000000000000 R09: 00007fff0ed9e0b0
[ 2027.624843][ T5093] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000032
[ 2027.632827][ T5093] R13: 00000000001eec1e R14: 00000000001eec1e R15: 0000000000000000
[ 2027.640831][ T5093]  </TASK>
11:31:29 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffe4]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2027.786162][ T5093] memory: usage 307196kB, limit 307200kB, failcnt 28406
[ 2027.854697][ T5093] memory+swap: usage 307404kB, limit 9007199254740988kB, failcnt 0
[ 2027.903668][ T5093] kmem: usage 307192kB, limit 9007199254740988kB, failcnt 0
[ 2027.938431][ T5093] Memory cgroup stats for /syz2:
[ 2027.938569][ T5093] cache 4096
[ 2027.984504][ T5093] rss 0
[ 2027.987316][ T5093] rss_huge 0
[ 2027.990529][ T5093] shmem 0
[ 2027.993486][ T5093] mapped_file 0
[ 2028.003002][T16525] __nla_validate_parse: 44 callbacks suppressed
[ 2028.003018][T16525] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 2028.027371][ T5093] dirty 4096
[ 2028.034626][ T5093] writeback 0
[ 2028.042518][ T5093] workingset_refault_anon 11573
[ 2028.056426][ T5093] workingset_refault_file 0
[ 2028.066162][ T5093] swap 212992
[ 2028.073439][ T5093] swapcached 0
[ 2028.081936][ T5093] pgpgin 241439
[ 2028.090741][ T5093] pgpgout 241438
[ 2028.099333][ T5093] pgfault 567330
[ 2028.126521][ T5093] pgmajfault 11476
[ 2028.143789][ T5093] inactive_anon 0
[ 2028.156378][ T5093] active_anon 0
[ 2028.160002][T16526] netlink: 76 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 2028.174500][ T5093] inactive_file 0
[ 2028.180578][ T5093] active_file 4096
[ 2028.192721][ T5093] unevictable 0
[ 2028.200827][T16531] netlink: 76 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 2028.211637][ T5093] hierarchical_memory_limit 314572800
11:31:30 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

11:31:30 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffff0]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2028.230598][ T5093] hierarchical_memsw_limit 9223372036854771712
[ 2028.294576][ T5093] total_cache 4096
[ 2028.298335][ T5093] total_rss 0
[ 2028.301630][ T5093] total_rss_huge 0
[ 2028.335792][ T5093] total_shmem 0
[ 2028.339284][ T5093] total_mapped_file 0
[ 2028.343274][ T5093] total_dirty 4096
[ 2028.375852][ T5093] total_writeback 0
[ 2028.382073][ T5093] total_workingset_refault_anon 11573
[ 2028.395377][ T5093] total_workingset_refault_file 0
[ 2028.405386][ T5093] total_swap 212992
[ 2028.413608][ T5093] total_swapcached 0
[ 2028.420664][ T5093] total_pgpgin 241439
[ 2028.430870][T16536] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 2028.446770][ T5093] total_pgpgout 241438
[ 2028.461357][ T5093] total_pgfault 567330
[ 2028.471497][ T5093] total_pgmajfault 11476
[ 2028.480752][T16535] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 2028.495659][ T5093] total_inactive_anon 0
[ 2028.505130][T16536] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 2028.505405][ T5093] total_active_anon 0
[ 2028.534000][ T5093] total_inactive_file 0
[ 2028.546561][ T5093] total_active_file 4096
[ 2028.556402][ T5093] total_unevictable 0
[ 2028.568172][ T5093] anon_cost 0
[ 2028.577534][ T5093] file_cost 0
[ 2028.588269][ T5093] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=16507,uid=0
[ 2028.631111][ T5093] Memory cgroup out of memory: Killed process 16507 (syz-executor.2) total-vm:54508kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:80kB oom_score_adj:1000
11:31:30 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x884, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x84c, 0x2, [@TCA_FLOW_POLICE={0x848, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffff7f]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x6, 0x0, 0x0, 0x0, 0x0, 0x101}}}]}]}}, @TCA_RATE={0x6, 0x5, {0x0, 0x6}}]}, 0x884}}, 0x0)

[ 2028.750211][T16537] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 2028.903023][T16538] netlink: 76 bytes leftover after parsing attributes in process `syz-executor.1'.
11:31:31 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2028.950182][T16535] netlink: 76 bytes leftover after parsing attributes in process `syz-executor.4'.
11:31:31 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x300]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2029.185019][T16544] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'.
11:31:31 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x884, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x854, 0x2, [@TCA_FLOW_POLICE={0x850, 0xa, 0x0, 0x1, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffff0]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x6, 0x0, 0x0, 0x0, 0x0, 0x101}}}]}]}}]}, 0x884}}, 0x0)

[ 2029.443949][T16541] syz-executor.2 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[ 2029.488591][T16541] CPU: 0 PID: 16541 Comm: syz-executor.2 Not tainted 6.8.0-rc6-syzkaller-01699-g65f5dd4f02a8 #0
[ 2029.499049][T16541] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024
[ 2029.509119][T16541] Call Trace:
[ 2029.512413][T16541]  <TASK>
[ 2029.515361][T16541]  dump_stack_lvl+0x1e7/0x2e0
[ 2029.520064][T16541]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2029.525288][T16541]  ? __pfx__printk+0x10/0x10
[ 2029.529912][T16541]  ? ___ratelimit+0x4c4/0x670
[ 2029.534621][T16541]  ? __pfx____ratelimit+0x10/0x10
[ 2029.539681][T16541]  dump_header+0xda/0x6a0
[ 2029.544040][T16541]  oom_kill_process+0x3a7/0x930
[ 2029.548921][T16541]  out_of_memory+0xf67/0x1320
[ 2029.553627][T16541]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 2029.559283][T16541]  ? __pfx___mutex_lock+0x10/0x10
[ 2029.564331][T16541]  ? __pfx_out_of_memory+0x10/0x10
[ 2029.569477][T16541]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 2029.575051][T16541]  ? __pfx_lock_release+0x10/0x10
[ 2029.580099][T16541]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 2029.586187][T16541]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 2029.591384][T16541]  ? mem_cgroup_iter+0x3e9/0x560
[ 2029.596325][T16541]  try_charge_memcg+0xda2/0x18a0
[ 2029.601254][T16541]  ? mark_lock+0x9a/0x350
[ 2029.605593][T16541]  ? __pfx_try_charge_memcg+0x10/0x10
[ 2029.610984][T16541]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 2029.617134][T16541]  charge_memcg+0xa2/0x160
[ 2029.621549][T16541]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 2029.627615][T16541]  __read_swap_cache_async+0x480/0x8b0
[ 2029.633067][T16541]  ? mark_lock+0x9a/0x350
[ 2029.637398][T16541]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 2029.643383][T16541]  swap_cluster_readahead+0x67c/0x810
[ 2029.648760][T16541]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 2029.654653][T16541]  ? __pfx_lock_release+0x10/0x10
[ 2029.659674][T16541]  ? xas_descend+0x37e/0x470
[ 2029.664266][T16541]  swapin_readahead+0x1ea/0x1070
[ 2029.669195][T16541]  ? filemap_get_entry+0x127/0x4e0
[ 2029.674312][T16541]  ? __pfx_swapin_readahead+0x10/0x10
[ 2029.679684][T16541]  ? __filemap_get_folio+0x935/0xbc0
[ 2029.684982][T16541]  ? swap_cache_get_folio+0x9f/0x570
[ 2029.690277][T16541]  do_swap_page+0x791/0x3f40
[ 2029.694861][T16541]  ? __lock_acquire+0x1345/0x1fd0
[ 2029.699884][T16541]  ? rcu_is_watching+0x15/0xb0
[ 2029.704653][T16541]  ? do_swap_page+0x154/0x3f40
[ 2029.709409][T16541]  ? __pfx_do_swap_page+0x10/0x10
[ 2029.714433][T16541]  ? pte_offset_map_nolock+0x137/0x1f0
[ 2029.719900][T16541]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 2029.725707][T16541]  ? __pfx_validate_chain+0x10/0x10
[ 2029.730901][T16541]  __handle_mm_fault+0x15e8/0x72d0
[ 2029.736035][T16541]  ? __pfx___handle_mm_fault+0x10/0x10
[ 2029.741492][T16541]  ? mt_find+0x226/0x850
[ 2029.745733][T16541]  ? __pfx_lock_release+0x10/0x10
[ 2029.750764][T16541]  ? mt_find+0x62d/0x850
[ 2029.755005][T16541]  ? mt_find+0x226/0x850
[ 2029.759268][T16541]  ? find_vma+0x142/0x1c0
[ 2029.763592][T16541]  ? __pfx_find_vma+0x10/0x10
[ 2029.768276][T16541]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 2029.774263][T16541]  handle_mm_fault+0x3c1/0x8a0
[ 2029.779038][T16541]  exc_page_fault+0x2ad/0x870
[ 2029.783718][T16541]  asm_exc_page_fault+0x26/0x30
[ 2029.788568][T16541] RIP: 0010:__get_user_8+0x11/0x20
[ 2029.793673][T16541] Code: ca c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 89 c2 48 c1 fa 3f 48 09 d0 0f 01 cb <48> 8b 10 31 c0 0f 01 ca c3 cc cc cc cc 66 90 90 90 90 90 90 90 90
[ 2029.813274][T16541] RSP: 0000:ffffc900040dfd78 EFLAGS: 00050202
[ 2029.819335][T16541] RAX: 0000555555eb1da8 RBX: ffff888037eed0b8 RCX: ffffc900040dfc03
[ 2029.827298][T16541] RDX: 0000000000000000 RSI: ffffffff8baac7e0 RDI: ffffffff8bfe7820
[ 2029.835262][T16541] RBP: ffffc900040dfec0 R08: ffffffff8f85e9ef R09: 1ffffffff1f0bd3d
[ 2029.843222][T16541] R10: dffffc0000000000 R11: fffffbfff1f0bd3e R12: ffffc900040dfd80
[ 2029.851185][T16541] R13: ffffc900040dffd8 R14: dffffc0000000000 R15: ffff888037eebb80
[ 2029.859163][T16541]  __rseq_handle_notify_resume+0x158/0x1490
[ 2029.865061][T16541]  ? __pfx___rseq_handle_notify_resume+0x10/0x10
[ 2029.871383][T16541]  ? irqentry_exit_to_user_mode+0x52/0x270
[ 2029.877195][T16541]  irqentry_exit_to_user_mode+0xbb/0x270
[ 2029.882827][T16541]  exc_page_fault+0x587/0x870
[ 2029.887503][T16541]  asm_exc_page_fault+0x26/0x30
[ 2029.892343][T16541] RIP: 0033:0x7f28e72527fb
[ 2029.896754][T16541] Code: 48 8d 7c 24 60 e8 85 f7 ff ff 48 8b 84 24 f8 00 00 00 64 48 2b 04 25 28 00 00 00 0f 85 86 0c 00 00 48 81 c4 08 01 00 00 89 e8 <5b> 5d 41 5c 41 5d 41 5e 41 5f c3 66 2e 0f 1f 84 00 00 00 00 00 4d
[ 2029.916347][T16541] RSP: 002b:00007fff0ed97738 EFLAGS: 00010202
[ 2029.922404][T16541] RAX: 0000000000000000 RBX: 00007f28e7f006c0 RCX: 00007f28e7252c17
[ 2029.930363][T16541] RDX: 0000000000000000 RSI: 00007fff0ed97688 RDI: 0000000000000002
[ 2029.938321][T16541] RBP: 0000000000000000 R08: 0000000000000000 R09: 00007fff0ed97687
[ 2029.946281][T16541] R10: 0000000000000008 R11: 0000000000000246 R12: 00007fff0ed978d0
[ 2029.954241][T16541] R13: 00007f28e7ee0000 R14: 00007f28e7f006c0 R15: 00007fff0ed97688
[ 2029.962220][T16541]  </TASK>
11:31:32 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x480, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}, @TCA_RATE={0x6}]}, 0x480}}, 0x0)

11:31:32 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2030.001845][T16541] memory: usage 307200kB, limit 307200kB, failcnt 28753
11:31:32 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x444]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2030.154491][T16541] memory+swap: usage 307404kB, limit 9007199254740988kB, failcnt 0
[ 2030.171065][T16541] kmem: usage 307192kB, limit 9007199254740988kB, failcnt 0
[ 2030.204945][T16541] Memory cgroup stats for /syz2:
[ 2030.205083][T16541] cache 4096
[ 2030.225245][T16541] rss 4096
[ 2030.235405][T16541] rss_huge 0
[ 2030.247184][T16541] shmem 0
[ 2030.256915][T16541] mapped_file 0
[ 2030.268038][T16541] dirty 0
[ 2030.276018][T16541] writeback 0
[ 2030.288508][T16541] workingset_refault_anon 11644
[ 2030.312089][T16541] workingset_refault_file 0
[ 2030.325403][T16541] swap 208896
[ 2030.334243][T16541] swapcached 4096
[ 2030.351267][T16541] pgpgin 241552
[ 2030.362256][T16541] pgpgout 241550
[ 2030.373767][T16541] pgfault 567500
[ 2030.385537][T16541] pgmajfault 11574
[ 2030.396995][T16541] inactive_anon 0
[ 2030.410478][T16541] active_anon 4096
[ 2030.421012][T16541] inactive_file 4096
[ 2030.435494][T16541] active_file 0
[ 2030.448426][T16541] unevictable 0
[ 2030.460013][T16541] hierarchical_memory_limit 314572800
11:31:32 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

11:31:32 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x500]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2030.499702][T16541] hierarchical_memsw_limit 9223372036854771712
[ 2030.534659][T16541] total_cache 4096
[ 2030.538414][T16541] total_rss 4096
[ 2030.541970][T16541] total_rss_huge 0
[ 2030.578604][T16541] total_shmem 0
[ 2030.589074][T16541] total_mapped_file 0
[ 2030.606357][T16541] total_dirty 0
[ 2030.614648][T16541] total_writeback 0
[ 2030.618475][T16541] total_workingset_refault_anon 11644
[ 2030.623852][T16541] total_workingset_refault_file 0
[ 2030.687511][T16541] total_swap 208896
[ 2030.691359][T16541] total_swapcached 4096
[ 2030.712183][T16541] total_pgpgin 241552
[ 2030.723747][T16541] total_pgpgout 241550
[ 2030.740989][T16541] total_pgfault 567500
[ 2030.752013][T16541] total_pgmajfault 11574
[ 2030.775695][T16541] total_inactive_anon 0
[ 2030.786118][T16541] total_active_anon 4096
[ 2030.796177][T16541] total_inactive_file 4096
[ 2030.811313][T16541] total_active_file 0
11:31:32 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2030.846979][T16541] total_unevictable 0
[ 2030.850992][T16541] anon_cost 0
[ 2030.854286][T16541] file_cost 0
[ 2030.895678][T16541] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=16541,uid=0
[ 2030.946480][T16541] Memory cgroup out of memory: Killed process 16541 (syz-executor.2) total-vm:54508kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:80kB oom_score_adj:1000
11:31:33 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x600]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

11:31:33 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x884, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x84c, 0x2, [@TCA_FLOW_POLICE={0x848, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffff0]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x6, 0x0, 0x0, 0x0, 0x0, 0x101}}}]}]}}, @TCA_RATE={0x6, 0x5, {0x0, 0x6}}]}, 0x884}}, 0x0)

11:31:33 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

11:31:33 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x700]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

11:31:33 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

11:31:33 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x900]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2032.073117][T16579] syz-executor.2 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[ 2032.107904][T16579] CPU: 1 PID: 16579 Comm: syz-executor.2 Not tainted 6.8.0-rc6-syzkaller-01699-g65f5dd4f02a8 #0
[ 2032.118361][T16579] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024
[ 2032.128432][T16579] Call Trace:
[ 2032.131727][T16579]  <TASK>
[ 2032.134673][T16579]  dump_stack_lvl+0x1e7/0x2e0
[ 2032.139381][T16579]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2032.144601][T16579]  ? __pfx__printk+0x10/0x10
[ 2032.149215][T16579]  ? ___ratelimit+0x4c4/0x670
[ 2032.153924][T16579]  ? __pfx____ratelimit+0x10/0x10
[ 2032.158983][T16579]  dump_header+0xda/0x6a0
[ 2032.163345][T16579]  oom_kill_process+0x3a7/0x930
[ 2032.168226][T16579]  out_of_memory+0xf67/0x1320
[ 2032.172936][T16579]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 2032.178589][T16579]  ? __pfx___mutex_lock+0x10/0x10
[ 2032.183629][T16579]  ? __pfx_out_of_memory+0x10/0x10
[ 2032.188772][T16579]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 2032.194350][T16579]  ? __pfx_lock_release+0x10/0x10
[ 2032.199405][T16579]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 2032.205509][T16579]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 2032.210735][T16579]  ? mem_cgroup_iter+0x3e9/0x560
[ 2032.215708][T16579]  try_charge_memcg+0xda2/0x18a0
[ 2032.220673][T16579]  ? mark_lock+0x9a/0x350
[ 2032.225048][T16579]  ? __pfx_try_charge_memcg+0x10/0x10
[ 2032.230472][T16579]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 2032.236652][T16579]  charge_memcg+0xa2/0x160
[ 2032.241091][T16579]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 2032.247185][T16579]  __read_swap_cache_async+0x480/0x8b0
[ 2032.252671][T16579]  ? mark_lock+0x9a/0x350
[ 2032.257033][T16579]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 2032.263053][T16579]  swap_cluster_readahead+0x67c/0x810
[ 2032.268465][T16579]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 2032.274390][T16579]  ? __pfx_lock_release+0x10/0x10
[ 2032.279442][T16579]  ? xas_descend+0x37e/0x470
[ 2032.284069][T16579]  swapin_readahead+0x1ea/0x1070
[ 2032.289028][T16579]  ? filemap_get_entry+0x127/0x4e0
[ 2032.294183][T16579]  ? __pfx_swapin_readahead+0x10/0x10
[ 2032.299585][T16579]  ? __filemap_get_folio+0x935/0xbc0
[ 2032.304906][T16579]  ? swap_cache_get_folio+0x9f/0x570
[ 2032.310221][T16579]  do_swap_page+0x791/0x3f40
[ 2032.314838][T16579]  ? rcu_is_watching+0x15/0xb0
[ 2032.319639][T16579]  ? do_swap_page+0x154/0x3f40
[ 2032.324426][T16579]  ? __pfx_do_swap_page+0x10/0x10
[ 2032.329470][T16579]  ? pte_offset_map_nolock+0x137/0x1f0
[ 2032.334957][T16579]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 2032.340794][T16579]  ? __pfx_validate_chain+0x10/0x10
[ 2032.346014][T16579]  ? __folio_rmap_sanity_checks+0x130/0x5b0
[ 2032.351939][T16579]  __handle_mm_fault+0x15e8/0x72d0
[ 2032.357111][T16579]  ? __pfx___handle_mm_fault+0x10/0x10
[ 2032.362606][T16579]  ? mt_find+0x226/0x850
[ 2032.366875][T16579]  ? __pfx_lock_release+0x10/0x10
[ 2032.371943][T16579]  ? mt_find+0x62d/0x850
[ 2032.376216][T16579]  ? mt_find+0x226/0x850
[ 2032.380542][T16579]  ? find_vma+0x142/0x1c0
[ 2032.384903][T16579]  ? __pfx_find_vma+0x10/0x10
[ 2032.389600][T16579]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 2032.395607][T16579]  handle_mm_fault+0x3c1/0x8a0
[ 2032.400403][T16579]  exc_page_fault+0x2ad/0x870
[ 2032.405116][T16579]  asm_exc_page_fault+0x26/0x30
[ 2032.409986][T16579] RIP: 0010:__get_user_8+0x11/0x20
[ 2032.415122][T16579] Code: ca c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 89 c2 48 c1 fa 3f 48 09 d0 0f 01 cb <48> 8b 10 31 c0 0f 01 ca c3 cc cc cc cc 66 90 90 90 90 90 90 90 90
[ 2032.434745][T16579] RSP: 0018:ffffc900042afd78 EFLAGS: 00050202
[ 2032.440831][T16579] RAX: 0000555555eb1da8 RBX: ffff8880202bee78 RCX: ffffc900042afc03
[ 2032.448818][T16579] RDX: 0000000000000000 RSI: ffffffff8baac7e0 RDI: ffffffff8bfe7820
[ 2032.456805][T16579] RBP: ffffc900042afec0 R08: ffffffff8f85e9ef R09: 1ffffffff1f0bd3d
[ 2032.464795][T16579] R10: dffffc0000000000 R11: fffffbfff1f0bd3e R12: ffffc900042afd80
[ 2032.472782][T16579] R13: ffffc900042affd8 R14: dffffc0000000000 R15: ffff8880202bd940
[ 2032.480787][T16579]  __rseq_handle_notify_resume+0x158/0x1490
[ 2032.486716][T16579]  ? __pfx___rseq_handle_notify_resume+0x10/0x10
[ 2032.493078][T16579]  ? irqentry_exit_to_user_mode+0x52/0x270
[ 2032.498929][T16579]  irqentry_exit_to_user_mode+0xbb/0x270
[ 2032.504593][T16579]  exc_page_fault+0x587/0x870
[ 2032.509313][T16579]  asm_exc_page_fault+0x26/0x30
[ 2032.514208][T16579] RIP: 0033:0x7f28e7237543
[ 2032.518639][T16579] Code: 8b 4c 24 40 c6 40 20 01 89 48 24 8b 4c 24 4c 44 89 68 28 44 89 50 2c 89 48 78 40 88 7c 1a 04 8b 5c 24 44 4c 89 3d 2d 4a 17 00 <89> 98 80 00 00 00 0f 1f 80 00 00 00 00 48 8b 94 2c a0 01 00 00 48
[ 2032.538262][T16579] RSP: 002b:00007fff0ed97770 EFLAGS: 00010246
[ 2032.544349][T16579] RAX: 00007f28e73abf80 RBX: 0000000000000000 RCX: 0000000000000000
[ 2032.552338][T16579] RDX: 00007f28e73abff8 RSI: 00007f28e73abf88 RDI: 0000000000000000
[ 2032.560327][T16579] RBP: 0000000000000000 R08: 0000000000000000 R09: 00007f28e73abf8c
[ 2032.568313][T16579] R10: 0000000000000003 R11: 0000000000000246 R12: 00007f28e73abf80
[ 2032.576300][T16579] R13: 0000000000000fc1 R14: 0000000000000000 R15: 00007f28e73abf80
[ 2032.584307][T16579]  </TASK>
11:31:34 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x884, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x854, 0x2, [@TCA_FLOW_POLICE={0x850, 0xa, 0x0, 0x1, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x6, 0x0, 0x0, 0x0, 0x0, 0x101}}}]}]}}]}, 0x884}}, 0x0)

[ 2032.770832][T16579] memory: usage 307200kB, limit 307200kB, failcnt 29451
11:31:34 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2032.905369][T16579] memory+swap: usage 307408kB, limit 9007199254740988kB, failcnt 0
[ 2032.913320][T16579] kmem: usage 307192kB, limit 9007199254740988kB, failcnt 0
11:31:35 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa00]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2032.965330][T16579] Memory cgroup stats for /syz2:
[ 2032.965470][T16579] cache 4096
[ 2032.973631][T16579] rss 4096
[ 2033.029219][T16603] __nla_validate_parse: 35 callbacks suppressed
[ 2033.029243][T16603] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 2033.065123][T16579] rss_huge 0
[ 2033.068359][T16579] shmem 0
[ 2033.071313][T16579] mapped_file 0
11:31:35 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x480, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x60]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}, @TCA_RATE={0x6}]}, 0x480}}, 0x0)

[ 2033.094495][T16579] dirty 0
[ 2033.097470][T16579] writeback 0
[ 2033.101255][T16604] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 2033.124579][T16579] workingset_refault_anon 11829
[ 2033.129457][T16579] workingset_refault_file 0
[ 2033.133971][T16579] swap 212992
[ 2033.184502][T16579] swapcached 0
[ 2033.187907][T16579] pgpgin 241766
[ 2033.191377][T16579] pgpgout 241764
[ 2033.207140][T16579] pgfault 567815
[ 2033.210827][T16579] pgmajfault 11764
[ 2033.228446][T16579] inactive_anon 0
[ 2033.232107][T16579] active_anon 4096
[ 2033.289306][T16579] inactive_file 0
[ 2033.301870][T16579] active_file 4096
[ 2033.317998][T16579] unevictable 0
[ 2033.319750][T16603] netlink: 76 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 2033.321468][T16579] hierarchical_memory_limit 314572800
[ 2033.321480][T16579] hierarchical_memsw_limit 9223372036854771712
[ 2033.321490][T16579] total_cache 4096
[ 2033.321498][T16579] total_rss 4096
[ 2033.321507][T16579] total_rss_huge 0
[ 2033.321516][T16579] total_shmem 0
[ 2033.321524][T16579] total_mapped_file 0
[ 2033.321531][T16579] total_dirty 0
[ 2033.321540][T16579] total_writeback 0
11:31:35 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2033.388565][T16606] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 2033.429025][T16609] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 2033.467845][T16579] total_workingset_refault_anon 11829
[ 2033.489077][T16579] total_workingset_refault_file 0
[ 2033.506810][T16579] total_swap 212992
[ 2033.513065][T16579] total_swapcached 0
[ 2033.524863][T16579] total_pgpgin 241766
[ 2033.532308][T16579] total_pgpgout 241764
[ 2033.554348][T16579] total_pgfault 567815
[ 2033.564487][T16579] total_pgmajfault 11764
[ 2033.585124][T16579] total_inactive_anon 0
[ 2033.592077][T16579] total_active_anon 4096
[ 2033.606906][T16579] total_inactive_file 0
[ 2033.611843][T16611] netlink: 76 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 2033.616170][T16579] total_active_file 4096
[ 2033.637237][T16579] total_unevictable 0
[ 2033.645959][T16579] anon_cost 0
[ 2033.653893][T16579] file_cost 0
[ 2033.661163][T16579] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=16579,uid=0
[ 2033.679196][T16614] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 2033.705123][T16579] Memory cgroup out of memory: Killed process 16579 (syz-executor.2) total-vm:54508kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:80kB oom_score_adj:1000
11:31:35 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb00]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2033.740642][T16615] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
11:31:35 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x884, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x84c, 0x2, [@TCA_FLOW_POLICE={0x848, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x6, 0x0, 0x0, 0x0, 0x0, 0x101}}}]}]}}, @TCA_RATE={0x6, 0x5, {0x0, 0x6}}]}, 0x884}}, 0x0)

[ 2033.992572][T16616] netlink: 76 bytes leftover after parsing attributes in process `syz-executor.1'.
11:31:36 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2034.089000][T16618] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 2034.122840][T16619] syz-executor.2 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[ 2034.199975][T16619] CPU: 1 PID: 16619 Comm: syz-executor.2 Not tainted 6.8.0-rc6-syzkaller-01699-g65f5dd4f02a8 #0
[ 2034.210450][T16619] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024
[ 2034.220526][T16619] Call Trace:
[ 2034.223825][T16619]  <TASK>
[ 2034.226777][T16619]  dump_stack_lvl+0x1e7/0x2e0
[ 2034.231487][T16619]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2034.236709][T16619]  ? __pfx__printk+0x10/0x10
[ 2034.241324][T16619]  ? ___ratelimit+0x4c4/0x670
[ 2034.246035][T16619]  ? __pfx____ratelimit+0x10/0x10
[ 2034.251093][T16619]  dump_header+0xda/0x6a0
[ 2034.255459][T16619]  oom_kill_process+0x3a7/0x930
[ 2034.260329][T16619]  out_of_memory+0xf67/0x1320
[ 2034.265006][T16619]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 2034.270632][T16619]  ? __pfx___mutex_lock+0x10/0x10
[ 2034.275653][T16619]  ? __pfx_out_of_memory+0x10/0x10
[ 2034.280772][T16619]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 2034.286314][T16619]  ? __pfx_lock_release+0x10/0x10
[ 2034.291332][T16619]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 2034.297394][T16619]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 2034.302586][T16619]  ? mem_cgroup_iter+0x3e9/0x560
[ 2034.307524][T16619]  try_charge_memcg+0xda2/0x18a0
[ 2034.312457][T16619]  ? mark_lock+0x9a/0x350
[ 2034.316793][T16619]  ? __pfx_try_charge_memcg+0x10/0x10
[ 2034.322180][T16619]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 2034.328325][T16619]  charge_memcg+0xa2/0x160
[ 2034.332734][T16619]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 2034.338795][T16619]  __read_swap_cache_async+0x480/0x8b0
[ 2034.344250][T16619]  ? mark_lock+0x9a/0x350
[ 2034.348576][T16619]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 2034.354569][T16619]  swap_cluster_readahead+0x67c/0x810
[ 2034.359958][T16619]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 2034.365852][T16619]  ? __pfx_lock_release+0x10/0x10
[ 2034.370874][T16619]  ? xas_descend+0x37e/0x470
[ 2034.375466][T16619]  swapin_readahead+0x1ea/0x1070
[ 2034.380390][T16619]  ? filemap_get_entry+0x127/0x4e0
[ 2034.385511][T16619]  ? __pfx_swapin_readahead+0x10/0x10
[ 2034.390878][T16619]  ? __filemap_get_folio+0x935/0xbc0
[ 2034.396164][T16619]  ? swap_cache_get_folio+0x9f/0x570
[ 2034.401447][T16619]  do_swap_page+0x791/0x3f40
[ 2034.406034][T16619]  ? rcu_is_watching+0x15/0xb0
[ 2034.410805][T16619]  ? do_swap_page+0x154/0x3f40
[ 2034.415561][T16619]  ? __pfx_do_swap_page+0x10/0x10
[ 2034.420579][T16619]  ? pte_offset_map_nolock+0x137/0x1f0
[ 2034.426033][T16619]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 2034.431841][T16619]  __handle_mm_fault+0x15e8/0x72d0
[ 2034.436969][T16619]  ? reacquire_held_locks+0x3eb/0x690
[ 2034.442331][T16619]  ? __pfx___handle_mm_fault+0x10/0x10
[ 2034.447793][T16619]  ? __pfx_reacquire_held_locks+0x10/0x10
[ 2034.453513][T16619]  ? mtree_range_walk+0x6fd/0x8e0
[ 2034.458534][T16619]  ? lock_vma_under_rcu+0x18a/0x730
[ 2034.463729][T16619]  ? __pfx_lock_release+0x10/0x10
[ 2034.468750][T16619]  ? lock_vma_under_rcu+0x2f9/0x730
[ 2034.473960][T16619]  ? lock_vma_under_rcu+0x18a/0x730
[ 2034.479157][T16619]  ? __pfx_lock_vma_under_rcu+0x10/0x10
[ 2034.484709][T16619]  handle_mm_fault+0x3c1/0x8a0
[ 2034.489483][T16619]  exc_page_fault+0x456/0x870
[ 2034.494164][T16619]  asm_exc_page_fault+0x26/0x30
[ 2034.499006][T16619] RIP: 0033:0x7f28e72a9ba0
[ 2034.503417][T16619] Code: fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 48 85 c0 7c 18 74 01 <c3> 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 b8 3c 00 00 00 0f 05
[ 2034.523026][T16619] RSP: 002b:00007fff0ed97558 EFLAGS: 00010202
[ 2034.529094][T16619] RAX: 00000000000056a7 RBX: 00007f28e7252270 RCX: 00007f28e72a9b99
[ 2034.537062][T16619] RDX: 00007f28e7252270 RSI: 0000000000000058 RDI: 00007fff0ed975a0
[ 2034.545029][T16619] RBP: 00007f28e7f006c0 R08: 00007f28e7f006c0 R09: 00007fff0ed97687
[ 2034.552989][T16619] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 2034.560967][T16619] R13: 000000000000000b R14: 00007fff0ed975a0 R15: 00007fff0ed97688
[ 2034.568958][T16619]  </TASK>
[ 2034.603599][T16619] memory: usage 307200kB, limit 307200kB, failcnt 29682
[ 2034.615515][T16619] memory+swap: usage 307700kB, limit 9007199254740988kB, failcnt 0
[ 2034.623439][T16619] kmem: usage 307192kB, limit 9007199254740988kB, failcnt 0
[ 2034.635261][T16619] Memory cgroup stats for /syz2:
[ 2034.635398][T16619] cache 4096
[ 2034.650322][T16619] rss 0
[ 2034.653115][T16619] rss_huge 0
[ 2034.657516][T16619] shmem 0
[ 2034.660469][T16619] mapped_file 0
[ 2034.663933][T16619] dirty 0
[ 2034.671329][T16619] writeback 0
[ 2034.676000][T16619] workingset_refault_anon 11882
[ 2034.680875][T16619] workingset_refault_file 0
[ 2034.691515][T16619] swap 253952
[ 2034.696046][T16619] swapcached 0
[ 2034.699462][T16619] pgpgin 241837
[ 2034.702936][T16619] pgpgout 241836
[ 2034.706707][T16619] pgfault 567938
[ 2034.710263][T16619] pgmajfault 11822
[ 2034.713986][T16619] inactive_anon 0
[ 2034.722971][T16619] active_anon 0
[ 2034.861423][T16619] inactive_file 0
11:31:36 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1100]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2034.884030][T16619] active_file 4096
[ 2034.909300][T16619] unevictable 0
[ 2034.947041][T16619] hierarchical_memory_limit 314572800
[ 2034.952477][T16619] hierarchical_memsw_limit 9223372036854771712
[ 2034.985409][T16619] total_cache 4096
[ 2035.021260][T16619] total_rss 0
[ 2035.053262][T16619] total_rss_huge 0
[ 2035.058528][T16619] total_shmem 0
[ 2035.062103][T16619] total_mapped_file 0
[ 2035.096273][T16619] total_dirty 0
[ 2035.099876][T16619] total_writeback 0
[ 2035.103780][T16619] total_workingset_refault_anon 11882
[ 2035.112691][T16619] total_workingset_refault_file 0
[ 2035.142311][T16619] total_swap 253952
11:31:37 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2035.177993][T16619] total_swapcached 0
[ 2035.181934][T16619] total_pgpgin 241837
[ 2035.220085][T16619] total_pgpgout 241836
[ 2035.224199][T16619] total_pgfault 567938
11:31:37 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1400]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2035.281925][T16619] total_pgmajfault 11822
[ 2035.290886][T16619] total_inactive_anon 0
[ 2035.325487][T16619] total_active_anon 0
[ 2035.329524][T16619] total_inactive_file 0
[ 2035.384635][T16619] total_active_file 4096
[ 2035.388931][T16619] total_unevictable 0
[ 2035.392923][T16619] anon_cost 0
[ 2035.421245][T16619] file_cost 0
[ 2035.441466][T16619] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=16619,uid=0
11:31:37 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2035.548960][T16619] Memory cgroup out of memory: Killed process 16619 (syz-executor.2) total-vm:54508kB, anon-rss:388kB, file-rss:8848kB, shmem-rss:0kB, UID:0 pgtables:80kB oom_score_adj:1000
11:31:37 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1500]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

11:31:37 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x884, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x84c, 0x2, [@TCA_FLOW_POLICE={0x848, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x6, 0x0, 0x0, 0x0, 0x0, 0x101}}}]}]}}, @TCA_RATE={0x6, 0x5, {0x0, 0x6}}]}, 0x884}}, 0x0)

11:31:37 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

11:31:37 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x884, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x854, 0x2, [@TCA_FLOW_POLICE={0x850, 0xa, 0x0, 0x1, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x6, 0x0, 0x0, 0x0, 0x0, 0x101}}}]}]}}]}, 0x884}}, 0x0)

11:31:38 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3800]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2036.142002][T16645] syz-executor.2 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[ 2036.180528][T16645] CPU: 1 PID: 16645 Comm: syz-executor.2 Not tainted 6.8.0-rc6-syzkaller-01699-g65f5dd4f02a8 #0
[ 2036.191019][T16645] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024
[ 2036.201071][T16645] Call Trace:
[ 2036.204342][T16645]  <TASK>
[ 2036.207265][T16645]  dump_stack_lvl+0x1e7/0x2e0
[ 2036.211946][T16645]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2036.217143][T16645]  ? __pfx__printk+0x10/0x10
[ 2036.221729][T16645]  ? ___ratelimit+0x4c4/0x670
[ 2036.226408][T16645]  ? __pfx____ratelimit+0x10/0x10
[ 2036.231436][T16645]  dump_header+0xda/0x6a0
[ 2036.235776][T16645]  oom_kill_process+0x3a7/0x930
[ 2036.240633][T16645]  out_of_memory+0xf67/0x1320
[ 2036.245313][T16645]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 2036.250943][T16645]  ? __pfx___mutex_lock+0x10/0x10
[ 2036.255985][T16645]  ? __pfx_out_of_memory+0x10/0x10
[ 2036.261103][T16645]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 2036.266646][T16645]  ? __pfx_lock_release+0x10/0x10
[ 2036.271666][T16645]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 2036.277731][T16645]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 2036.282924][T16645]  ? mem_cgroup_iter+0x3e9/0x560
[ 2036.287864][T16645]  try_charge_memcg+0xda2/0x18a0
[ 2036.292798][T16645]  ? mark_lock+0x9a/0x350
[ 2036.297137][T16645]  ? __pfx_try_charge_memcg+0x10/0x10
[ 2036.302523][T16645]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 2036.308672][T16645]  charge_memcg+0xa2/0x160
[ 2036.313084][T16645]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 2036.319148][T16645]  __read_swap_cache_async+0x480/0x8b0
[ 2036.324605][T16645]  ? mark_lock+0x9a/0x350
[ 2036.328933][T16645]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 2036.334923][T16645]  swap_cluster_readahead+0x67c/0x810
[ 2036.340309][T16645]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 2036.346204][T16645]  ? __pfx_lock_release+0x10/0x10
[ 2036.351228][T16645]  ? xas_descend+0x37e/0x470
[ 2036.355823][T16645]  swapin_readahead+0x1ea/0x1070
[ 2036.360752][T16645]  ? filemap_get_entry+0x127/0x4e0
[ 2036.365874][T16645]  ? __pfx_swapin_readahead+0x10/0x10
[ 2036.371245][T16645]  ? __filemap_get_folio+0x935/0xbc0
[ 2036.376534][T16645]  ? swap_cache_get_folio+0x9f/0x570
[ 2036.381820][T16645]  do_swap_page+0x791/0x3f40
[ 2036.386410][T16645]  ? rcu_is_watching+0x15/0xb0
[ 2036.391180][T16645]  ? do_swap_page+0x154/0x3f40
[ 2036.395950][T16645]  ? __pfx_do_swap_page+0x10/0x10
[ 2036.400979][T16645]  ? pte_offset_map_nolock+0x137/0x1f0
[ 2036.406438][T16645]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 2036.412248][T16645]  __handle_mm_fault+0x15e8/0x72d0
[ 2036.417378][T16645]  ? reacquire_held_locks+0x3eb/0x690
[ 2036.422742][T16645]  ? __pfx___handle_mm_fault+0x10/0x10
[ 2036.428207][T16645]  ? __pfx_reacquire_held_locks+0x10/0x10
[ 2036.433930][T16645]  ? mtree_range_walk+0x6fd/0x8e0
[ 2036.438968][T16645]  ? lock_vma_under_rcu+0x18a/0x730
[ 2036.444170][T16645]  ? __pfx_lock_release+0x10/0x10
[ 2036.449191][T16645]  ? lock_vma_under_rcu+0x2f9/0x730
[ 2036.454404][T16645]  ? lock_vma_under_rcu+0x18a/0x730
[ 2036.459603][T16645]  ? __pfx_lock_vma_under_rcu+0x10/0x10
[ 2036.465162][T16645]  handle_mm_fault+0x3c1/0x8a0
[ 2036.469942][T16645]  exc_page_fault+0x456/0x870
[ 2036.474635][T16645]  asm_exc_page_fault+0x26/0x30
[ 2036.479483][T16645] RIP: 0033:0x7f28e72521c8
[ 2036.483896][T16645] Code: b8 cb 00 00 00 0f 05 3d 00 f0 ff ff 77 54 f6 45 08 02 75 26 31 c0 48 8b 54 24 68 64 48 2b 14 25 28 00 00 00 75 5c 48 83 c4 70 <5b> 5d 41 5c 41 5d 41 5e c3 0f 1f 80 00 00 00 00 41 80 3c 24 00 74
[ 2036.503508][T16645] RSP: 002b:00007fff0ed97600 EFLAGS: 00010206
[ 2036.509576][T16645] RAX: 0000000000000000 RBX: 00007f28e7f006c0 RCX: 00007f28e72a9b99
[ 2036.517544][T16645] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 00007fff0ed975a0
[ 2036.525517][T16645] RBP: 00007fff0ed978d0 R08: 00007f28e7f006c0 R09: 00007fff0ed97687
[ 2036.533484][T16645] R10: 0000000000000008 R11: 0000000000000202 R12: 00007fff0ed97686
[ 2036.541453][T16645] R13: 0000000000000000 R14: 00007fff0ed97687 R15: 00007fff0ed97688
[ 2036.549437][T16645]  </TASK>
[ 2036.586759][T16645] memory: usage 307196kB, limit 307200kB, failcnt 30121
[ 2036.593875][T16645] memory+swap: usage 307436kB, limit 9007199254740988kB, failcnt 0
11:31:38 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x480, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x300]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}, @TCA_RATE={0x6}]}, 0x480}}, 0x0)

[ 2036.627465][T16645] kmem: usage 307192kB, limit 9007199254740988kB, failcnt 0
[ 2036.637296][T16645] Memory cgroup stats for /syz2:
[ 2036.652021][T16645] cache 4096
[ 2036.665495][T16645] rss 4096
[ 2036.682318][T16645] rss_huge 0
[ 2036.699702][T16645] shmem 0
[ 2036.710602][T16645] mapped_file 0
[ 2036.723308][T16645] dirty 0
[ 2036.737084][T16645] writeback 0
[ 2036.766820][T16645] workingset_refault_anon 12014
11:31:38 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x11]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2036.790442][T16645] workingset_refault_file 0
11:31:38 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3f00]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2036.835167][T16645] swap 241664
[ 2036.838486][T16645] swapcached 4096
[ 2036.842133][T16645] pgpgin 241980
[ 2036.859758][T16645] pgpgout 241978
[ 2036.884440][T16645] pgfault 568157
[ 2036.888017][T16645] pgmajfault 11946
[ 2036.891747][T16645] inactive_anon 0
[ 2036.930346][T16645] active_anon 0
[ 2036.939492][T16645] inactive_file 0
[ 2036.943148][T16645] active_file 4096
[ 2036.967758][T16645] unevictable 0
[ 2036.971240][T16645] hierarchical_memory_limit 314572800
[ 2036.991562][T16645] hierarchical_memsw_limit 9223372036854771712
[ 2037.012641][T16645] total_cache 4096
[ 2037.024480][T16645] total_rss 4096
[ 2037.033974][T16645] total_rss_huge 0
[ 2037.047193][T16645] total_shmem 0
[ 2037.054977][T16645] total_mapped_file 0
[ 2037.086241][T16645] total_dirty 0
[ 2037.094494][T16645] total_writeback 0
[ 2037.098412][T16645] total_workingset_refault_anon 12014
[ 2037.109816][T16645] total_workingset_refault_file 0
[ 2037.125071][T16645] total_swap 241664
[ 2037.133566][T16645] total_swapcached 4096
11:31:39 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x14]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2037.148204][T16645] total_pgpgin 241980
[ 2037.156849][T16645] total_pgpgout 241978
[ 2037.166456][T16645] total_pgfault 568157
[ 2037.183009][T16645] total_pgmajfault 11946
[ 2037.194621][T16645] total_inactive_anon 0
[ 2037.204119][T16645] total_active_anon 0
[ 2037.217650][T16645] total_inactive_file 0
[ 2037.229810][T16645] total_active_file 4096
[ 2037.243790][T16645] total_unevictable 0
[ 2037.253543][T16645] anon_cost 0
[ 2037.267046][T16645] file_cost 0
[ 2037.276069][T16645] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=16645,uid=0
11:31:39 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2037.316317][T16645] Memory cgroup out of memory: Killed process 16645 (syz-executor.2) total-vm:54508kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:80kB oom_score_adj:1000
11:31:39 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x884, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x84c, 0x2, [@TCA_FLOW_POLICE={0x848, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x6, 0x0, 0x0, 0x0, 0x0, 0x101}}}]}]}}, @TCA_RATE={0x6, 0x5, {0x0, 0x6}}]}, 0x884}}, 0x0)

11:31:39 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x15]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

11:31:39 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4404]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2037.844061][ T1238] ieee802154 phy0 wpan0: encryption failed: -22
[ 2037.850599][ T1238] ieee802154 phy1 wpan1: encryption failed: -22
[ 2038.034822][T16685] __nla_validate_parse: 41 callbacks suppressed
[ 2038.034841][T16685] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'.
11:31:40 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2038.080247][T16686] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 2038.286020][T16687] netlink: 76 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 2038.319961][T16689] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'.
11:31:40 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8100]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2038.394693][T16690] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 2038.470829][ T5103] syz-executor.3 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[ 2038.559790][ T5103] CPU: 0 PID: 5103 Comm: syz-executor.3 Not tainted 6.8.0-rc6-syzkaller-01699-g65f5dd4f02a8 #0
[ 2038.570179][ T5103] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024
[ 2038.580249][ T5103] Call Trace:
[ 2038.583544][ T5103]  <TASK>
[ 2038.586489][ T5103]  dump_stack_lvl+0x1e7/0x2e0
[ 2038.591181][ T5103]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2038.596392][ T5103]  ? __pfx__printk+0x10/0x10
[ 2038.601004][ T5103]  ? ___ratelimit+0x4c4/0x670
[ 2038.605712][ T5103]  ? __pfx____ratelimit+0x10/0x10
[ 2038.610764][ T5103]  dump_header+0xda/0x6a0
[ 2038.615122][ T5103]  oom_kill_process+0x3a7/0x930
[ 2038.619990][ T5103]  out_of_memory+0xf67/0x1320
[ 2038.624688][ T5103]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 2038.630343][ T5103]  ? __pfx___mutex_lock+0x10/0x10
[ 2038.635389][ T5103]  ? __pfx_out_of_memory+0x10/0x10
[ 2038.640536][ T5103]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 2038.646103][ T5103]  ? __pfx_lock_release+0x10/0x10
[ 2038.651143][ T5103]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 2038.657232][ T5103]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 2038.662445][ T5103]  ? mem_cgroup_iter+0x422/0x560
[ 2038.667391][ T5103]  try_charge_memcg+0xda2/0x18a0
[ 2038.672322][ T5103]  ? mark_lock+0x9a/0x350
[ 2038.676663][ T5103]  ? __pfx_try_charge_memcg+0x10/0x10
[ 2038.682047][ T5103]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 2038.688198][ T5103]  charge_memcg+0xa2/0x160
[ 2038.692607][ T5103]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 2038.698669][ T5103]  __read_swap_cache_async+0x480/0x8b0
[ 2038.704126][ T5103]  ? mark_lock+0x9a/0x350
[ 2038.708456][ T5103]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 2038.714446][ T5103]  swap_cluster_readahead+0x67c/0x810
[ 2038.719826][ T5103]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 2038.725717][ T5103]  ? __pfx_lock_release+0x10/0x10
[ 2038.730737][ T5103]  ? xas_descend+0x37e/0x470
[ 2038.735331][ T5103]  swapin_readahead+0x1ea/0x1070
[ 2038.740257][ T5103]  ? filemap_get_entry+0x127/0x4e0
[ 2038.745377][ T5103]  ? __pfx_swapin_readahead+0x10/0x10
[ 2038.750743][ T5103]  ? __filemap_get_folio+0x935/0xbc0
[ 2038.756031][ T5103]  ? swap_cache_get_folio+0x9f/0x570
[ 2038.761317][ T5103]  do_swap_page+0x791/0x3f40
[ 2038.765904][ T5103]  ? rcu_is_watching+0x15/0xb0
[ 2038.770674][ T5103]  ? do_swap_page+0x154/0x3f40
[ 2038.775427][ T5103]  ? __pfx_do_swap_page+0x10/0x10
[ 2038.780445][ T5103]  ? pte_offset_map_nolock+0x137/0x1f0
[ 2038.785899][ T5103]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 2038.791705][ T5103]  __handle_mm_fault+0x15e8/0x72d0
[ 2038.796835][ T5103]  ? reacquire_held_locks+0x3eb/0x690
[ 2038.802199][ T5103]  ? __pfx___handle_mm_fault+0x10/0x10
[ 2038.807661][ T5103]  ? __pfx_reacquire_held_locks+0x10/0x10
[ 2038.813384][ T5103]  ? mtree_range_walk+0x6fd/0x8e0
[ 2038.818407][ T5103]  ? lock_vma_under_rcu+0x18a/0x730
[ 2038.823597][ T5103]  ? __pfx_lock_release+0x10/0x10
[ 2038.828615][ T5103]  ? lock_vma_under_rcu+0x2f9/0x730
[ 2038.833820][ T5103]  ? lock_vma_under_rcu+0x18a/0x730
[ 2038.839012][ T5103]  ? __pfx_lock_vma_under_rcu+0x10/0x10
[ 2038.844558][ T5103]  handle_mm_fault+0x3c1/0x8a0
[ 2038.849323][ T5103]  exc_page_fault+0x456/0x870
[ 2038.854000][ T5103]  asm_exc_page_fault+0x26/0x30
[ 2038.858841][ T5103] RIP: 0033:0x7f5c3e2a4b90
[ 2038.863245][ T5103] Code: 6e c7 89 13 48 8b 50 08 0f 16 40 50 0f 11 00 48 89 50 50 48 8b 50 10 48 89 78 10 48 89 50 40 48 89 d7 eb b2 66 0f 1f 44 00 00 <64> 48 8b 0c 25 10 00 00 00 8b 91 08 03 00 00 48 8d b9 08 03 00 00
[ 2038.882843][ T5103] RSP: 002b:00007ffe9e817d78 EFLAGS: 00010202
[ 2038.888902][ T5103] RAX: 00000000fffffffa RBX: 0000000000004f8d RCX: 0000000000000000
[ 2038.896863][ T5103] RDX: 00007ffe9e817dc0 RSI: 0000000000000000 RDI: 0000000000000000
[ 2038.904822][ T5103] RBP: 00007ffe9e817e4c R08: 0000000000000000 R09: 00007ffe9e89b0b0
[ 2038.912787][ T5103] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000032
[ 2038.920746][ T5103] R13: 00000000001f13c9 R14: 00000000001f13c9 R15: 0000000000000000
[ 2038.928724][ T5103]  </TASK>
[ 2039.001099][T16695] netlink: 76 bytes leftover after parsing attributes in process `syz-executor.4'.
11:31:41 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x884, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x854, 0x2, [@TCA_FLOW_POLICE={0x850, 0xa, 0x0, 0x1, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x6, 0x0, 0x0, 0x0, 0x0, 0x101}}}]}]}}]}, 0x884}}, 0x0)

[ 2039.101511][ T5103] memory: usage 307180kB, limit 307200kB, failcnt 62886
[ 2039.116634][T16691] netlink: 76 bytes leftover after parsing attributes in process `syz-executor.1'.
11:31:41 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x103]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2039.148955][T16693] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 2039.164558][ T5103] memory+swap: usage 307448kB, limit 9007199254740988kB, failcnt 0
[ 2039.172480][ T5103] kmem: usage 307164kB, limit 9007199254740988kB, failcnt 0
[ 2039.185511][T16694] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 2039.268132][ T5103] Memory cgroup stats for /syz3:
[ 2039.268281][ T5103] cache 4096
[ 2039.294456][ T5103] rss 32768
[ 2039.297597][ T5103] rss_huge 0
[ 2039.300804][ T5103] shmem 0
[ 2039.303748][ T5103] mapped_file 0
11:31:41 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf2ff]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2039.351229][T16698] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 2039.372872][ T5103] dirty 0
[ 2039.376865][ T5103] writeback 0
[ 2039.404933][ T5103] workingset_refault_anon 32372
[ 2039.409809][ T5103] workingset_refault_file 0
[ 2039.414318][ T5103] swap 253952
[ 2039.469860][ T5103] swapcached 32768
[ 2039.474044][ T5103] pgpgin 241371
[ 2039.481399][ T5103] pgpgout 241362
[ 2039.495577][ T5103] pgfault 551878
[ 2039.503424][ T5103] pgmajfault 31120
[ 2039.529251][ T5103] inactive_anon 0
11:31:41 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x108]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2039.559639][ T5103] active_anon 32768
[ 2039.563479][ T5103] inactive_file 0
[ 2039.607808][ T5103] active_file 4096
[ 2039.611821][ T5103] unevictable 0
[ 2039.620943][ T5103] hierarchical_memory_limit 314572800
[ 2039.660663][ T5103] hierarchical_memsw_limit 9223372036854771712
[ 2039.679382][ T5103] total_cache 4096
[ 2039.691013][ T5103] total_rss 32768
[ 2039.702186][ T5103] total_rss_huge 0
11:31:41 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff2]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2039.713461][ T5103] total_shmem 0
[ 2039.753431][ T5103] total_mapped_file 0
[ 2039.771587][ T5103] total_dirty 0
[ 2039.779194][ T5103] total_writeback 0
[ 2039.791028][ T5103] total_workingset_refault_anon 32372
11:31:41 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10c]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2039.810262][ T5103] total_workingset_refault_file 0
[ 2039.824328][ T5103] total_swap 253952
[ 2039.840449][ T5103] total_swapcached 32768
[ 2039.881408][ T5103] total_pgpgin 241371
[ 2039.904711][ T5103] total_pgpgout 241362
[ 2039.908806][ T5103] total_pgfault 551882
[ 2039.925222][ T5103] total_pgmajfault 31120
[ 2039.929484][ T5103] total_inactive_anon 0
[ 2039.933636][ T5103] total_active_anon 32768
[ 2039.964483][ T5103] total_inactive_file 0
[ 2039.968664][ T5103] total_active_file 4096
[ 2039.972921][ T5103] total_unevictable 0
[ 2040.000663][ T5103] anon_cost 0
[ 2040.003991][ T5103] file_cost 0
11:31:42 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x34000]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2040.033830][ T5103] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=16660,uid=0
11:31:42 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x300]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2040.073561][ T5103] Memory cgroup out of memory: Killed process 16660 (syz-executor.3) total-vm:54508kB, anon-rss:424kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 2040.144638][T16680] syz-executor.2 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[ 2040.167893][T16680] CPU: 0 PID: 16680 Comm: syz-executor.2 Not tainted 6.8.0-rc6-syzkaller-01699-g65f5dd4f02a8 #0
[ 2040.178345][T16680] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024
[ 2040.188419][T16680] Call Trace:
[ 2040.191704][T16680]  <TASK>
[ 2040.194637][T16680]  dump_stack_lvl+0x1e7/0x2e0
[ 2040.199320][T16680]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2040.204514][T16680]  ? __pfx__printk+0x10/0x10
[ 2040.209102][T16680]  ? ___ratelimit+0x4c4/0x670
[ 2040.213782][T16680]  ? __pfx____ratelimit+0x10/0x10
[ 2040.218808][T16680]  dump_header+0xda/0x6a0
[ 2040.223139][T16680]  oom_kill_process+0x3a7/0x930
[ 2040.227994][T16680]  out_of_memory+0xf67/0x1320
[ 2040.232672][T16680]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 2040.238305][T16680]  ? __pfx___mutex_lock+0x10/0x10
[ 2040.243344][T16680]  ? __pfx_out_of_memory+0x10/0x10
[ 2040.248476][T16680]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 2040.254024][T16680]  ? __pfx_lock_release+0x10/0x10
[ 2040.259048][T16680]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 2040.265117][T16680]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 2040.270316][T16680]  ? mem_cgroup_iter+0x3e9/0x560
[ 2040.275269][T16680]  try_charge_memcg+0xda2/0x18a0
[ 2040.280229][T16680]  ? mark_lock+0x9a/0x350
[ 2040.284579][T16680]  ? __pfx_try_charge_memcg+0x10/0x10
[ 2040.289974][T16680]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 2040.296124][T16680]  charge_memcg+0xa2/0x160
[ 2040.300538][T16680]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 2040.306608][T16680]  __read_swap_cache_async+0x480/0x8b0
[ 2040.312068][T16680]  ? mark_lock+0x9a/0x350
[ 2040.316401][T16680]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 2040.322390][T16680]  swap_cluster_readahead+0x67c/0x810
[ 2040.327774][T16680]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 2040.333671][T16680]  ? __pfx_lock_release+0x10/0x10
[ 2040.338708][T16680]  ? xas_descend+0x37e/0x470
[ 2040.343307][T16680]  swapin_readahead+0x1ea/0x1070
[ 2040.348239][T16680]  ? filemap_get_entry+0x127/0x4e0
[ 2040.353365][T16680]  ? __pfx_swapin_readahead+0x10/0x10
[ 2040.358743][T16680]  ? __filemap_get_folio+0x935/0xbc0
[ 2040.364036][T16680]  ? swap_cache_get_folio+0x9f/0x570
[ 2040.369324][T16680]  do_swap_page+0x791/0x3f40
[ 2040.373912][T16680]  ? __lock_acquire+0x1345/0x1fd0
[ 2040.378946][T16680]  ? rcu_is_watching+0x15/0xb0
[ 2040.383721][T16680]  ? do_swap_page+0x154/0x3f40
[ 2040.388481][T16680]  ? __pfx_do_swap_page+0x10/0x10
[ 2040.393500][T16680]  ? pte_offset_map_nolock+0x137/0x1f0
[ 2040.398960][T16680]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 2040.404774][T16680]  ? __pfx_validate_chain+0x10/0x10
[ 2040.409973][T16680]  __handle_mm_fault+0x15e8/0x72d0
[ 2040.415111][T16680]  ? __pfx___handle_mm_fault+0x10/0x10
[ 2040.420576][T16680]  ? mt_find+0x226/0x850
[ 2040.424821][T16680]  ? __pfx_lock_release+0x10/0x10
[ 2040.429858][T16680]  ? mt_find+0x62d/0x850
[ 2040.434103][T16680]  ? mt_find+0x226/0x850
[ 2040.438365][T16680]  ? find_vma+0x142/0x1c0
[ 2040.442699][T16680]  ? __pfx_find_vma+0x10/0x10
[ 2040.447371][T16680]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 2040.453352][T16680]  handle_mm_fault+0x3c1/0x8a0
[ 2040.458128][T16680]  exc_page_fault+0x2ad/0x870
[ 2040.462811][T16680]  asm_exc_page_fault+0x26/0x30
[ 2040.467659][T16680] RIP: 0010:__get_user_8+0x11/0x20
[ 2040.472771][T16680] Code: ca c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 89 c2 48 c1 fa 3f 48 09 d0 0f 01 cb <48> 8b 10 31 c0 0f 01 ca c3 cc cc cc cc 66 90 90 90 90 90 90 90 90
[ 2040.492368][T16680] RSP: 0000:ffffc90004fa7d78 EFLAGS: 00050206
[ 2040.498432][T16680] RAX: 00007f28e7f00fe8 RBX: ffff8880233432f8 RCX: ffffc90004fa7c03
[ 2040.506400][T16680] RDX: 0000000000000000 RSI: ffffffff8baac7e0 RDI: ffffffff8bfe7820
[ 2040.514363][T16680] RBP: ffffc90004fa7ec0 R08: ffffffff8f85e9ef R09: 1ffffffff1f0bd3d
[ 2040.522333][T16680] R10: dffffc0000000000 R11: fffffbfff1f0bd3e R12: ffffc90004fa7d80
[ 2040.530301][T16680] R13: ffffc90004fa7fd8 R14: dffffc0000000000 R15: ffff888023341dc0
[ 2040.538281][T16680]  __rseq_handle_notify_resume+0x158/0x1490
[ 2040.544187][T16680]  ? __pfx___rseq_handle_notify_resume+0x10/0x10
[ 2040.550515][T16680]  ? irqentry_exit_to_user_mode+0x52/0x270
[ 2040.556327][T16680]  irqentry_exit_to_user_mode+0xbb/0x270
[ 2040.561962][T16680]  exc_page_fault+0x587/0x870
[ 2040.566647][T16680]  asm_exc_page_fault+0x26/0x30
[ 2040.571494][T16680] RIP: 0033:0x7f28e722eb11
[ 2040.575904][T16680] Code: 48 83 c4 68 5b 5d 41 5c 41 5e c3 66 0f 1f 44 00 00 48 8b 44 24 18 48 8b 1c 24 48 8b 70 48 8b 78 08 48 8d 53 30 e8 5f d0 ff ff <48> 89 83 88 00 00 00 e9 4a fe ff ff 0f 1f 00 8b 7c 24 14 48 8d 74
[ 2040.595507][T16680] RSP: 002b:00007f28e7f000f0 EFLAGS: 00010206
[ 2040.601577][T16680] RAX: 0000000000000003 RBX: 00007f28e73abf80 RCX: 00007f28e72ca47a
[ 2040.609546][T16680] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000010
[ 2040.617522][T16680] RBP: 00007f28e72ca47a R08: 0000000000000000 R09: 0000000000000000
[ 2040.625501][T16680] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2040.633464][T16680] R13: 000000000000000b R14: 00007f28e73abf80 R15: 00007fff0ed97688
[ 2040.641441][T16680]  </TASK>
11:31:42 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x480, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x382]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}, @TCA_RATE={0x6}]}, 0x480}}, 0x0)

[ 2040.670512][T16680] memory: usage 307200kB, limit 307200kB, failcnt 31381
[ 2040.678396][T16680] memory+swap: usage 307420kB, limit 9007199254740988kB, failcnt 0
[ 2040.686584][T16680] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[ 2040.693892][T16680] Memory cgroup stats for /syz2:
[ 2040.694035][T16680] cache 0
[ 2040.717618][T16680] rss 0
[ 2040.724238][T16680] rss_huge 0
[ 2040.738435][T16680] shmem 0
[ 2040.749895][T16680] mapped_file 0
[ 2040.762470][T16680] dirty 0
[ 2040.769544][T16680] writeback 0
[ 2040.773928][T16680] workingset_refault_anon 12424
[ 2040.779713][T16680] workingset_refault_file 0
[ 2040.784380][T16680] swap 225280
[ 2040.788324][T16680] swapcached 0
[ 2040.791868][T16680] pgpgin 242405
[ 2040.804597][T16680] pgpgout 242405
[ 2040.810960][T16680] pgfault 568748
[ 2040.819314][T16680] pgmajfault 12330
[ 2040.830003][T16680] inactive_anon 0
[ 2040.838392][T16680] active_anon 0
[ 2040.852210][T16680] inactive_file 0
[ 2040.860507][T16680] active_file 0
[ 2040.870563][T16680] unevictable 0
[ 2040.886068][T16680] hierarchical_memory_limit 314572800
[ 2040.893808][T16680] hierarchical_memsw_limit 9223372036854771712
[ 2040.903789][T16680] total_cache 0
[ 2040.910267][T16680] total_rss 0
[ 2040.913765][T16680] total_rss_huge 0
11:31:42 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x301]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

11:31:42 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x90000]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2040.945228][T16680] total_shmem 0
[ 2040.953980][T16680] total_mapped_file 0
[ 2040.971949][T16680] total_dirty 0
[ 2040.981556][T16680] total_writeback 0
[ 2041.003670][T16680] total_workingset_refault_anon 12424
[ 2041.012645][T16680] total_workingset_refault_file 0
[ 2041.028106][T16680] total_swap 225280
[ 2041.040010][T16680] total_swapcached 0
[ 2041.067391][T16680] total_pgpgin 242405
[ 2041.079984][T16680] total_pgpgout 242405
[ 2041.094373][T16680] total_pgfault 568748
[ 2041.108156][T16680] total_pgmajfault 12330
[ 2041.120565][T16680] total_inactive_anon 0
[ 2041.133387][T16680] total_active_anon 0
[ 2041.148696][T16680] total_inactive_file 0
[ 2041.175192][T16680] total_active_file 0
[ 2041.179282][T16680] total_unevictable 0
[ 2041.185821][T16680] anon_cost 0
[ 2041.191438][T16680] file_cost 0
[ 2041.201034][T16680] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=16676,uid=0
11:31:43 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x444]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2041.236334][T16680] Memory cgroup out of memory: Killed process 16676 (syz-executor.2) total-vm:54640kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:80kB oom_score_adj:1000
[ 2041.401414][T16720] syz-executor.3 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[ 2041.428522][T16720] CPU: 0 PID: 16720 Comm: syz-executor.3 Not tainted 6.8.0-rc6-syzkaller-01699-g65f5dd4f02a8 #0
[ 2041.438973][T16720] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024
[ 2041.449048][T16720] Call Trace:
[ 2041.452342][T16720]  <TASK>
[ 2041.455283][T16720]  dump_stack_lvl+0x1e7/0x2e0
[ 2041.459982][T16720]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2041.465186][T16720]  ? __pfx__printk+0x10/0x10
[ 2041.469775][T16720]  ? ___ratelimit+0x4c4/0x670
[ 2041.474459][T16720]  ? __pfx____ratelimit+0x10/0x10
[ 2041.479502][T16720]  dump_header+0xda/0x6a0
[ 2041.483838][T16720]  oom_kill_process+0x3a7/0x930
[ 2041.488691][T16720]  out_of_memory+0xf67/0x1320
[ 2041.493366][T16720]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 2041.498993][T16720]  ? __pfx___mutex_lock+0x10/0x10
[ 2041.504013][T16720]  ? __pfx_out_of_memory+0x10/0x10
[ 2041.509127][T16720]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 2041.514672][T16720]  ? __pfx_lock_release+0x10/0x10
[ 2041.519706][T16720]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 2041.525786][T16720]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 2041.530983][T16720]  ? mem_cgroup_iter+0x422/0x560
[ 2041.535920][T16720]  try_charge_memcg+0xda2/0x18a0
[ 2041.540849][T16720]  ? mark_lock+0x9a/0x350
[ 2041.545186][T16720]  ? __pfx_try_charge_memcg+0x10/0x10
[ 2041.550576][T16720]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 2041.556732][T16720]  charge_memcg+0xa2/0x160
[ 2041.561171][T16720]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 2041.567254][T16720]  __read_swap_cache_async+0x480/0x8b0
[ 2041.572711][T16720]  ? mark_lock+0x9a/0x350
[ 2041.577040][T16720]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 2041.583039][T16720]  swap_cluster_readahead+0x67c/0x810
[ 2041.588427][T16720]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 2041.594333][T16720]  ? __pfx_lock_release+0x10/0x10
[ 2041.599377][T16720]  ? xas_descend+0x37e/0x470
[ 2041.603978][T16720]  swapin_readahead+0x1ea/0x1070
[ 2041.608914][T16720]  ? filemap_get_entry+0x127/0x4e0
[ 2041.614033][T16720]  ? __pfx_swapin_readahead+0x10/0x10
[ 2041.619407][T16720]  ? __filemap_get_folio+0x935/0xbc0
[ 2041.624693][T16720]  ? swap_cache_get_folio+0x9f/0x570
[ 2041.629978][T16720]  do_swap_page+0x791/0x3f40
[ 2041.634573][T16720]  ? rcu_is_watching+0x15/0xb0
[ 2041.639353][T16720]  ? do_swap_page+0x154/0x3f40
[ 2041.644112][T16720]  ? __pfx_do_swap_page+0x10/0x10
[ 2041.649142][T16720]  ? pte_offset_map_nolock+0x137/0x1f0
[ 2041.654610][T16720]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 2041.660418][T16720]  __handle_mm_fault+0x15e8/0x72d0
[ 2041.665548][T16720]  ? reacquire_held_locks+0x3eb/0x690
[ 2041.670930][T16720]  ? __pfx___handle_mm_fault+0x10/0x10
[ 2041.676834][T16720]  ? __pfx_reacquire_held_locks+0x10/0x10
[ 2041.682557][T16720]  ? mtree_range_walk+0x6fd/0x8e0
[ 2041.687587][T16720]  ? lock_vma_under_rcu+0x18a/0x730
[ 2041.692778][T16720]  ? __pfx_lock_release+0x10/0x10
[ 2041.697796][T16720]  ? lock_vma_under_rcu+0x2f9/0x730
[ 2041.703004][T16720]  ? lock_vma_under_rcu+0x18a/0x730
[ 2041.708196][T16720]  ? __pfx_lock_vma_under_rcu+0x10/0x10
[ 2041.713741][T16720]  handle_mm_fault+0x3c1/0x8a0
[ 2041.718510][T16720]  exc_page_fault+0x456/0x870
[ 2041.723188][T16720]  asm_exc_page_fault+0x26/0x30
[ 2041.728034][T16720] RIP: 0033:0x7f5c3e239a5c
[ 2041.732441][T16720] Code: 83 c4 01 44 3b 63 04 0f 83 c9 00 00 00 48 8b 34 24 44 89 e1 48 8b 53 28 4c 89 f8 48 03 14 ce 89 d5 49 89 d7 81 e5 00 f0 ff ff <80> 3d 55 e6 16 00 00 75 3f be 00 00 00 80 48 8d 3c 32 48 81 ff ff
[ 2041.752039][T16720] RSP: 002b:00007ffe9e817af0 EFLAGS: 00010286
[ 2041.758101][T16720] RAX: ffffffff8b5ef051 RBX: 00007f5c3e3ac018 RCX: 0000000000000003
[ 2041.766064][T16720] RDX: ffffffff8b5f0930 RSI: 00007f5c3dc00008 RDI: 000000008b5ef8c9
[ 2041.774027][T16720] RBP: 000000008b5f0000 R08: 0000001b31f20000 R09: 00000000000018c9
[ 2041.781989][T16720] R10: 000000008b5ef8cd R11: 0000000000000246 R12: 0000000000000003
[ 2041.789952][T16720] R13: 0000000000000001 R14: 00007f5c3e3a0000 R15: ffffffff8b5f0930
[ 2041.797916][T16720]  ? mas_start+0x20/0x5a0
[ 2041.802245][T16720]  ? mas_walk+0x21/0x280
[ 2041.806482][T16720]  ? mas_start+0x20/0x5a0
[ 2041.810810][T16720]  </TASK>
[ 2041.855311][T16720] memory: usage 307200kB, limit 307200kB, failcnt 64040
[ 2041.862368][T16720] memory+swap: usage 307448kB, limit 9007199254740988kB, failcnt 0
[ 2041.870437][T16720] kmem: usage 307184kB, limit 9007199254740988kB, failcnt 0
[ 2041.877930][T16720] Memory cgroup stats for /syz3:
[ 2041.878073][T16720] cache 4096
[ 2041.886293][T16720] rss 12288
[ 2041.889491][T16720] rss_huge 0
[ 2041.892704][T16720] shmem 0
[ 2041.895731][T16720] mapped_file 0
[ 2041.899199][T16720] dirty 0
[ 2041.902220][T16720] writeback 0
11:31:43 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400300]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

11:31:43 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x884, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x84c, 0x2, [@TCA_FLOW_POLICE={0x848, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x6, 0x0, 0x0, 0x0, 0x0, 0x101}}}]}]}}, @TCA_RATE={0x6, 0x5, {0x0, 0x6}}]}, 0x884}}, 0x0)

[ 2041.905891][T16720] workingset_refault_anon 33000
[ 2041.910758][T16720] workingset_refault_file 0
[ 2041.916005][T16720] swap 253952
[ 2041.919309][T16720] swapcached 8192
[ 2041.922931][T16720] pgpgin 242017
[ 2041.926525][T16720] pgpgout 242013
[ 2041.930085][T16720] pgfault 552682
[ 2041.933637][T16720] pgmajfault 31720
[ 2042.024992][T16720] inactive_anon 8192
[ 2042.029104][T16720] active_anon 4096
[ 2042.039881][T16720] inactive_file 0
[ 2042.056926][T16720] active_file 4096
[ 2042.071533][T16720] unevictable 0
11:31:44 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x500]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2042.087143][T16720] hierarchical_memory_limit 314572800
[ 2042.110165][T16720] hierarchical_memsw_limit 9223372036854771712
[ 2042.144819][T16720] total_cache 4096
[ 2042.154939][T16720] total_rss 12288
[ 2042.165394][T16720] total_rss_huge 0
[ 2042.176750][T16720] total_shmem 0
[ 2042.190031][T16720] total_mapped_file 0
[ 2042.204113][T16720] total_dirty 0
[ 2042.211117][T16720] total_writeback 0
[ 2042.218233][T16720] total_workingset_refault_anon 33000
[ 2042.223762][T16720] total_workingset_refault_file 0
[ 2042.228959][T16720] total_swap 253952
[ 2042.232904][T16720] total_swapcached 8192
11:31:44 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x884, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x854, 0x2, [@TCA_FLOW_POLICE={0x850, 0xa, 0x0, 0x1, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x6, 0x0, 0x0, 0x0, 0x0, 0x101}}}]}]}}]}, 0x884}}, 0x0)

[ 2042.256198][T16720] total_pgpgin 242017
[ 2042.271060][T16720] total_pgpgout 242013
[ 2042.281775][T16720] total_pgfault 552686
[ 2042.289805][T16720] total_pgmajfault 31720
[ 2042.300035][T16720] total_inactive_anon 8192
11:31:44 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2042.320888][T16720] total_active_anon 4096
[ 2042.339351][T16720] total_inactive_file 0
[ 2042.385274][T16720] total_active_file 4096
[ 2042.402113][T16720] total_unevictable 0
[ 2042.409551][T16720] anon_cost 0
[ 2042.413028][T16720] file_cost 0
[ 2042.419788][T16720] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=16720,uid=0
11:31:44 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x480, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3ee]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}, @TCA_RATE={0x6}]}, 0x480}}, 0x0)

[ 2042.440886][T16720] Memory cgroup out of memory: Killed process 16720 (syz-executor.3) total-vm:54508kB, anon-rss:368kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 2042.470608][T16738] syz-executor.2 invoked oom-killer: gfp_mask=0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), order=0, oom_score_adj=1000
[ 2042.524639][T16738] CPU: 0 PID: 16738 Comm: syz-executor.2 Not tainted 6.8.0-rc6-syzkaller-01699-g65f5dd4f02a8 #0
[ 2042.535086][T16738] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024
[ 2042.545147][T16738] Call Trace:
[ 2042.548433][T16738]  <TASK>
[ 2042.551380][T16738]  dump_stack_lvl+0x1e7/0x2e0
[ 2042.556081][T16738]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2042.561295][T16738]  ? __pfx__printk+0x10/0x10
[ 2042.565902][T16738]  ? ___ratelimit+0x4c4/0x670
11:31:44 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x600]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2042.570608][T16738]  ? __pfx____ratelimit+0x10/0x10
[ 2042.575670][T16738]  dump_header+0xda/0x6a0
[ 2042.580029][T16738]  oom_kill_process+0x3a7/0x930
[ 2042.584906][T16738]  out_of_memory+0xf67/0x1320
[ 2042.589607][T16738]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 2042.595263][T16738]  ? __pfx___mutex_lock+0x10/0x10
[ 2042.600306][T16738]  ? __pfx_out_of_memory+0x10/0x10
[ 2042.605441][T16738]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 2042.611014][T16738]  ? __pfx_lock_release+0x10/0x10
[ 2042.616058][T16738]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 2042.622152][T16738]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 2042.627377][T16738]  ? mem_cgroup_iter+0x3e9/0x560
[ 2042.632345][T16738]  try_charge_memcg+0xda2/0x18a0
[ 2042.637334][T16738]  ? __pfx_try_charge_memcg+0x10/0x10
[ 2042.642729][T16738]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 2042.648466][T16738]  ? __pfx_lock_release+0x10/0x10
[ 2042.653523][T16738]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 2042.659529][T16738]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 2042.665267][T16738]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 2042.671099][T16738]  obj_cgroup_charge+0x389/0x630
[ 2042.676065][T16738]  ? obj_cgroup_charge+0x121/0x630
[ 2042.681200][T16738]  ? __pfx_obj_cgroup_charge+0x10/0x10
[ 2042.686679][T16738]  ? kmalloc_trace+0x4e/0x360
[ 2042.691377][T16738]  ? __pfx___might_resched+0x10/0x10
[ 2042.696685][T16738]  __memcg_slab_pre_alloc_hook+0x28d/0x2b0
[ 2042.702513][T16738]  ? copy_semundo+0xb5/0x240
[ 2042.707121][T16738]  kmalloc_trace+0x216/0x360
[ 2042.711733][T16738]  ? __asan_memcpy+0x40/0x70
[ 2042.716349][T16738]  copy_semundo+0xb5/0x240
[ 2042.720787][T16738]  copy_process+0x1bc3/0x3fc0
[ 2042.725495][T16738]  ? copy_process+0x9c3/0x3fc0
[ 2042.730278][T16738]  ? __pfx_copy_process+0x10/0x10
[ 2042.735322][T16738]  ? __might_fault+0xc5/0x120
[ 2042.740018][T16738]  ? __asan_memset+0x23/0x50
[ 2042.744626][T16738]  kernel_clone+0x21d/0x8d0
[ 2042.749150][T16738]  ? __pfx_kernel_clone+0x10/0x10
[ 2042.754214][T16738]  __se_sys_clone3+0x2cb/0x350
[ 2042.758996][T16738]  ? __pfx___se_sys_clone3+0x10/0x10
[ 2042.764304][T16738]  ? do_syscall_64+0x108/0x240
[ 2042.769077][T16738]  ? do_syscall_64+0xb4/0x240
[ 2042.773773][T16738]  do_syscall_64+0xf9/0x240
[ 2042.778301][T16738]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 2042.784214][T16738] RIP: 0033:0x7f28e72a9b99
[ 2042.788642][T16738] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 2042.808264][T16738] RSP: 002b:00007fff0ed97558 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 2042.816704][T16738] RAX: ffffffffffffffda RBX: 00007f28e7252270 RCX: 00007f28e72a9b99
[ 2042.824693][T16738] RDX: 00007f28e7252270 RSI: 0000000000000058 RDI: 00007fff0ed975a0
[ 2042.832679][T16738] RBP: 00007f28e7f006c0 R08: 00007f28e7f006c0 R09: 00007fff0ed97687
[ 2042.840664][T16738] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 2042.848647][T16738] R13: 000000000000000b R14: 00007fff0ed975a0 R15: 00007fff0ed97688
[ 2042.856654][T16738]  </TASK>
[ 2042.982690][T16738] memory: usage 307200kB, limit 307200kB, failcnt 31650
[ 2042.994683][T16738] memory+swap: usage 307396kB, limit 9007199254740988kB, failcnt 0
[ 2043.005765][T16738] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0
11:31:45 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

11:31:45 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x700]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2043.033524][T16738] Memory cgroup stats for /syz2:
[ 2043.033653][T16738] cache 0
[ 2043.043801][T16738] rss 12288
[ 2043.047339][T16738] rss_huge 0
[ 2043.050636][T16738] shmem 0
[ 2043.053661][T16738] mapped_file 0
[ 2043.062548][T16738] dirty 0
[ 2043.068559][T16738] writeback 0
[ 2043.071949][T16738] workingset_refault_anon 12471
[ 2043.082767][T16738] workingset_refault_file 0
[ 2043.110483][T16738] swap 249856
[ 2043.113911][T16738] swapcached 8192
[ 2043.126616][T16738] pgpgin 242465
[ 2043.130607][T16738] pgpgout 242462
[ 2043.139198][T16756] __nla_validate_parse: 41 callbacks suppressed
[ 2043.139212][T16756] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 2043.163065][T16738] pgfault 568851
[ 2043.174699][T16738] pgmajfault 12375
[ 2043.180295][T16738] inactive_anon 0
[ 2043.184175][T16757] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 2043.196324][T16738] active_anon 12288
[ 2043.203925][T16738] inactive_file 0
[ 2043.208172][T16738] active_file 0
[ 2043.212142][T16738] unevictable 0
[ 2043.221818][T16738] hierarchical_memory_limit 314572800
[ 2043.227424][T16756] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 2043.244483][T16738] hierarchical_memsw_limit 9223372036854771712
[ 2043.264619][T16738] total_cache 0
[ 2043.274947][T16738] total_rss 12288
[ 2043.278679][T16738] total_rss_huge 0
[ 2043.287547][T16738] total_shmem 0
[ 2043.292217][T16738] total_mapped_file 0
[ 2043.305121][T16738] total_dirty 0
[ 2043.308675][T16738] total_writeback 0
[ 2043.312792][T16738] total_workingset_refault_anon 12471
[ 2043.334267][T16738] total_workingset_refault_file 0
[ 2043.344723][T16738] total_swap 249856
[ 2043.348626][T16738] total_swapcached 8192
[ 2043.367344][T16738] total_pgpgin 242465
[ 2043.376277][T16738] total_pgpgout 242462
[ 2043.380440][T16738] total_pgfault 568851
[ 2043.392184][T16738] total_pgmajfault 12375
[ 2043.394660][T16759] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 2043.403066][T16738] total_inactive_anon 0
[ 2043.414176][T16738] total_active_anon 12288
[ 2043.421540][T16738] total_inactive_file 0
[ 2043.429214][T16738] total_active_file 0
[ 2043.433285][T16738] total_unevictable 0
[ 2043.440305][T16738] anon_cost 0
[ 2043.443674][T16738] file_cost 0
[ 2043.450544][T16738] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=16738,uid=0
[ 2043.471042][T16738] Memory cgroup out of memory: Killed process 16738 (syz-executor.2) total-vm:54508kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:80kB oom_score_adj:1000
11:31:45 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x884, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x84c, 0x2, [@TCA_FLOW_POLICE={0x848, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x6, 0x0, 0x0, 0x0, 0x0, 0x101}}}]}]}}, @TCA_RATE={0x6, 0x5, {0x0, 0x6}}]}, 0x884}}, 0x0)

[ 2043.519209][T16758] netlink: 76 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 2043.545418][T16757] netlink: 76 bytes leftover after parsing attributes in process `syz-executor.4'.
11:31:45 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3000000]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

11:31:45 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x801]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2043.724181][T16767] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 2043.767553][ T5103] syz-executor.3 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[ 2043.790071][T16769] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 2043.814614][T16767] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 2043.829620][ T5103] CPU: 0 PID: 5103 Comm: syz-executor.3 Not tainted 6.8.0-rc6-syzkaller-01699-g65f5dd4f02a8 #0
[ 2043.839974][ T5103] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024
[ 2043.850041][ T5103] Call Trace:
[ 2043.853333][ T5103]  <TASK>
[ 2043.856280][ T5103]  dump_stack_lvl+0x1e7/0x2e0
[ 2043.860986][ T5103]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2043.866208][ T5103]  ? __pfx__printk+0x10/0x10
[ 2043.870823][ T5103]  ? ___ratelimit+0x4c4/0x670
[ 2043.875535][ T5103]  ? __pfx____ratelimit+0x10/0x10
[ 2043.880580][ T5103]  dump_header+0xda/0x6a0
[ 2043.884931][ T5103]  oom_kill_process+0x3a7/0x930
[ 2043.889812][ T5103]  out_of_memory+0xf67/0x1320
[ 2043.894518][ T5103]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 2043.900173][ T5103]  ? __pfx___mutex_lock+0x10/0x10
[ 2043.905221][ T5103]  ? __pfx_out_of_memory+0x10/0x10
[ 2043.910370][ T5103]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 2043.915941][ T5103]  ? __pfx_lock_release+0x10/0x10
[ 2043.920974][ T5103]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 2043.927051][ T5103]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 2043.932260][ T5103]  ? mem_cgroup_iter+0x422/0x560
[ 2043.937225][ T5103]  try_charge_memcg+0xda2/0x18a0
[ 2043.942182][ T5103]  ? mark_lock+0x9a/0x350
[ 2043.946551][ T5103]  ? __pfx_try_charge_memcg+0x10/0x10
[ 2043.951965][ T5103]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 2043.958129][ T5103]  charge_memcg+0xa2/0x160
[ 2043.962556][ T5103]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 2043.968647][ T5103]  __read_swap_cache_async+0x480/0x8b0
[ 2043.974120][ T5103]  ? mark_lock+0x9a/0x350
[ 2043.978457][ T5103]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 2043.984455][ T5103]  swap_cluster_readahead+0x67c/0x810
[ 2043.989842][ T5103]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 2043.995735][ T5103]  ? __pfx_lock_release+0x10/0x10
[ 2044.000755][ T5103]  ? xas_descend+0x37e/0x470
[ 2044.005346][ T5103]  swapin_readahead+0x1ea/0x1070
[ 2044.010275][ T5103]  ? filemap_get_entry+0x127/0x4e0
[ 2044.015406][ T5103]  ? __pfx_swapin_readahead+0x10/0x10
[ 2044.020789][ T5103]  ? __filemap_get_folio+0x935/0xbc0
[ 2044.026084][ T5103]  ? swap_cache_get_folio+0x9f/0x570
[ 2044.031386][ T5103]  do_swap_page+0x791/0x3f40
[ 2044.035978][ T5103]  ? __lock_acquire+0x1345/0x1fd0
[ 2044.041003][ T5103]  ? rcu_is_watching+0x15/0xb0
[ 2044.045772][ T5103]  ? do_swap_page+0x154/0x3f40
[ 2044.050531][ T5103]  ? __pfx_do_swap_page+0x10/0x10
[ 2044.055552][ T5103]  ? pte_offset_map_nolock+0x137/0x1f0
[ 2044.061007][ T5103]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 2044.066817][ T5103]  ? __pfx_validate_chain+0x10/0x10
[ 2044.072014][ T5103]  __handle_mm_fault+0x15e8/0x72d0
[ 2044.077148][ T5103]  ? __pfx___handle_mm_fault+0x10/0x10
[ 2044.082609][ T5103]  ? mt_find+0x226/0x850
[ 2044.086849][ T5103]  ? __pfx_lock_release+0x10/0x10
[ 2044.091884][ T5103]  ? mt_find+0x62d/0x850
[ 2044.096127][ T5103]  ? mt_find+0x226/0x850
[ 2044.100388][ T5103]  ? find_vma+0x142/0x1c0
[ 2044.104714][ T5103]  ? __pfx_find_vma+0x10/0x10
[ 2044.109385][ T5103]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 2044.115395][ T5103]  handle_mm_fault+0x3c1/0x8a0
[ 2044.120190][ T5103]  exc_page_fault+0x2ad/0x870
[ 2044.124889][ T5103]  asm_exc_page_fault+0x26/0x30
[ 2044.129734][ T5103] RIP: 0010:__get_user_8+0x11/0x20
[ 2044.134840][ T5103] Code: ca c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 89 c2 48 c1 fa 3f 48 09 d0 0f 01 cb <48> 8b 10 31 c0 0f 01 ca c3 cc cc cc cc 66 90 90 90 90 90 90 90 90
[ 2044.154446][ T5103] RSP: 0000:ffffc9000466fd78 EFLAGS: 00050202
[ 2044.160509][ T5103] RAX: 0000555556384da8 RBX: ffff88802f176e78 RCX: ffffc9000466fc03
[ 2044.168473][ T5103] RDX: 0000000000000000 RSI: ffffffff8baac7e0 RDI: ffffffff8bfe7820
[ 2044.176436][ T5103] RBP: ffffc9000466fec0 R08: ffffffff8f85e9ef R09: 1ffffffff1f0bd3d
[ 2044.184401][ T5103] R10: dffffc0000000000 R11: fffffbfff1f0bd3e R12: ffffc9000466fd80
[ 2044.192377][ T5103] R13: ffffc9000466ffd8 R14: dffffc0000000000 R15: ffff88802f175940
[ 2044.200355][ T5103]  __rseq_handle_notify_resume+0x158/0x1490
[ 2044.206256][ T5103]  ? __pfx___rseq_handle_notify_resume+0x10/0x10
[ 2044.212579][ T5103]  ? irqentry_exit_to_user_mode+0x52/0x270
[ 2044.218402][ T5103]  irqentry_exit_to_user_mode+0xbb/0x270
[ 2044.224056][ T5103]  exc_page_fault+0x587/0x870
[ 2044.228741][ T5103]  asm_exc_page_fault+0x26/0x30
[ 2044.233601][ T5103] RIP: 0033:0x7f5c3e2a91b8
[ 2044.238019][ T5103] Code: 3c 24 48 89 4c 24 18 e8 f6 b9 ff ff 4c 8b 54 24 18 48 8b 54 24 10 41 89 c0 8b 74 24 0c 8b 3c 24 b8 e6 00 00 00 0f 05 44 89 c7 <48> 89 04 24 e8 4f ba ff ff 48 8b 04 24 48 83 c4 28 f7 d8 c3 0f 1f
[ 2044.257627][ T5103] RSP: 002b:00007ffe9e817d80 EFLAGS: 00010293
[ 2044.263688][ T5103] RAX: 0000000000000000 RBX: 0000000000004f91 RCX: 00007f5c3e2a91b5
[ 2044.271651][ T5103] RDX: 00007ffe9e817dc0 RSI: 0000000000000000 RDI: 0000000000000000
[ 2044.279614][ T5103] RBP: 00007ffe9e817e4c R08: 0000000000000000 R09: 00007ffe9e89b0b0
[ 2044.287576][ T5103] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000032
[ 2044.295536][ T5103] R13: 00000000001f2a81 R14: 00000000001f2a81 R15: 0000000000000000
[ 2044.303510][ T5103]  </TASK>
[ 2044.337765][T16769] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 2044.350197][ T5103] memory: usage 307200kB, limit 307200kB, failcnt 64363
[ 2044.367723][ T5103] memory+swap: usage 307428kB, limit 9007199254740988kB, failcnt 0
[ 2044.408982][ T5103] kmem: usage 307184kB, limit 9007199254740988kB, failcnt 0
[ 2044.458013][ T5103] Memory cgroup stats for /syz3:
[ 2044.458153][ T5103] cache 4096
[ 2044.484553][ T5103] rss 12288
[ 2044.490261][ T5103] rss_huge 0
[ 2044.493735][ T5103] shmem 0
[ 2044.504260][ T5103] mapped_file 0
11:31:46 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

11:31:46 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x900]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2044.549144][ T5103] dirty 4096
[ 2044.572213][ T5103] writeback 0
[ 2044.593220][ T5103] workingset_refault_anon 33116
[ 2044.612481][ T5103] workingset_refault_file 0
[ 2044.622233][ T5103] swap 233472
[ 2044.637193][ T5103] swapcached 0
[ 2044.660466][ T5103] pgpgin 242144
[ 2044.676331][ T5103] pgpgout 242140
[ 2044.692358][ T5103] pgfault 552860
[ 2044.707430][ T5103] pgmajfault 31811
[ 2044.723497][ T5103] inactive_anon 4096
[ 2044.738915][ T5103] active_anon 8192
11:31:46 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5000000]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2044.763074][ T5103] inactive_file 4096
[ 2044.789707][ T5103] active_file 0
[ 2044.811042][ T5103] unevictable 0
[ 2044.826357][ T5103] hierarchical_memory_limit 314572800
[ 2044.851583][ T5103] hierarchical_memsw_limit 9223372036854771712
[ 2044.883415][ T5103] total_cache 4096
[ 2044.911570][ T5103] total_rss 12288
11:31:46 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa00]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2044.932664][ T5103] total_rss_huge 0
[ 2044.949392][ T5103] total_shmem 0
[ 2044.969962][ T5103] total_mapped_file 0
[ 2045.006248][ T5103] total_dirty 4096
[ 2045.023537][ T5103] total_writeback 0
[ 2045.038850][ T5103] total_workingset_refault_anon 33116
[ 2045.060701][ T5103] total_workingset_refault_file 0
[ 2045.078320][ T5103] total_swap 233472
11:31:47 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6000000]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2045.101553][ T5103] total_swapcached 0
[ 2045.150015][ T5103] total_pgpgin 242144
[ 2045.157884][ T5103] total_pgpgout 242140
[ 2045.170060][ T5103] total_pgfault 552864
[ 2045.178917][ T5103] total_pgmajfault 31811
[ 2045.183325][ T5103] total_inactive_anon 4096
[ 2045.191529][ T5103] total_active_anon 8192
[ 2045.211414][ T5103] total_inactive_file 4096
11:31:47 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb00]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2045.231881][ T5103] total_active_file 0
[ 2045.247448][ T5103] total_unevictable 0
[ 2045.260608][ T5103] anon_cost 0
11:31:47 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x884, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x854, 0x2, [@TCA_FLOW_POLICE={0x850, 0xa, 0x0, 0x1, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x6, 0x0, 0x0, 0x0, 0x0, 0x101}}}]}]}}]}, 0x884}}, 0x0)

[ 2045.288096][ T5103] file_cost 0
[ 2045.308214][ T5103] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=16748,uid=0
[ 2045.433952][ T5103] Memory cgroup out of memory: Killed process 16748 (syz-executor.3) total-vm:54508kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 2045.472043][T16765] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
11:31:47 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7000000]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2045.535022][T16765] CPU: 0 PID: 16765 Comm: syz-executor.2 Not tainted 6.8.0-rc6-syzkaller-01699-g65f5dd4f02a8 #0
[ 2045.545476][T16765] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024
[ 2045.555549][T16765] Call Trace:
[ 2045.558842][T16765]  <TASK>
[ 2045.561788][T16765]  dump_stack_lvl+0x1e7/0x2e0
[ 2045.566495][T16765]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2045.571724][T16765]  ? __pfx__printk+0x10/0x10
[ 2045.576336][T16765]  ? ___ratelimit+0x4c4/0x670
[ 2045.581044][T16765]  ? __pfx____ratelimit+0x10/0x10
[ 2045.586103][T16765]  dump_header+0xda/0x6a0
[ 2045.590463][T16765]  oom_kill_process+0x3a7/0x930
[ 2045.595345][T16765]  out_of_memory+0xf67/0x1320
[ 2045.600052][T16765]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 2045.605712][T16765]  ? __pfx___mutex_lock+0x10/0x10
[ 2045.610762][T16765]  ? __pfx_out_of_memory+0x10/0x10
[ 2045.615909][T16765]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 2045.621480][T16765]  ? __pfx_lock_release+0x10/0x10
[ 2045.626529][T16765]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 2045.632625][T16765]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 2045.638271][T16765]  ? mem_cgroup_iter+0x3e9/0x560
[ 2045.643249][T16765]  try_charge_memcg+0xda2/0x18a0
[ 2045.648236][T16765]  ? __pfx_try_charge_memcg+0x10/0x10
[ 2045.653644][T16765]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 2045.659386][T16765]  ? __pfx_lock_release+0x10/0x10
[ 2045.664435][T16765]  ? memcg_account_kmem+0x1e7/0x210
[ 2045.669672][T16765]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 2045.675502][T16765]  __memcg_kmem_charge_page+0xe1/0x250
[ 2045.681096][T16765]  memcg_charge_kernel_stack+0x3f8/0x550
[ 2045.686764][T16765]  dup_task_struct+0x40d/0x7d0
[ 2045.691556][T16765]  copy_process+0x5d5/0x3fc0
[ 2045.696187][T16765]  ? __might_fault+0xa9/0x120
[ 2045.700892][T16765]  ? __pfx_lock_release+0x10/0x10
[ 2045.705951][T16765]  ? __pfx_copy_process+0x10/0x10
[ 2045.710994][T16765]  ? __might_fault+0xc5/0x120
[ 2045.715697][T16765]  ? __asan_memset+0x23/0x50
[ 2045.720322][T16765]  kernel_clone+0x21d/0x8d0
[ 2045.724852][T16765]  ? __pfx_kernel_clone+0x10/0x10
[ 2045.729921][T16765]  __se_sys_clone3+0x2cb/0x350
[ 2045.734708][T16765]  ? __pfx___se_sys_clone3+0x10/0x10
[ 2045.740031][T16765]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 2045.746051][T16765]  ? exc_page_fault+0x587/0x870
[ 2045.750931][T16765]  ? do_syscall_64+0xb4/0x240
[ 2045.755628][T16765]  do_syscall_64+0xf9/0x240
[ 2045.760156][T16765]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 2045.766072][T16765] RIP: 0033:0x7f28e72a9b99
[ 2045.770508][T16765] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 2045.790128][T16765] RSP: 002b:00007fff0ed97558 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 2045.798564][T16765] RAX: ffffffffffffffda RBX: 00007f28e7252270 RCX: 00007f28e72a9b99
[ 2045.806556][T16765] RDX: 00007f28e7252270 RSI: 0000000000000058 RDI: 00007fff0ed975a0
[ 2045.814546][T16765] RBP: 00007f28e7f006c0 R08: 00007f28e7f006c0 R09: 00007fff0ed97687
[ 2045.822534][T16765] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 2045.830523][T16765] R13: 000000000000000b R14: 00007fff0ed975a0 R15: 00007fff0ed97688
[ 2045.838529][T16765]  </TASK>
[ 2045.851688][T16765] memory: usage 307184kB, limit 307200kB, failcnt 31803
[ 2045.871930][T16765] memory+swap: usage 307380kB, limit 9007199254740988kB, failcnt 0
11:31:47 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x480, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3fa]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}, @TCA_RATE={0x6}]}, 0x480}}, 0x0)

[ 2045.903708][T16765] kmem: usage 307168kB, limit 9007199254740988kB, failcnt 0
[ 2045.929044][T16765] Memory cgroup stats for /syz2:
[ 2045.929180][T16765] cache 4096
11:31:48 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc01]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2045.962514][T16765] rss 12288
[ 2045.977247][T16765] rss_huge 0
[ 2045.990944][T16765] shmem 0
[ 2046.007254][T16765] mapped_file 0
[ 2046.027182][T16765] dirty 4096
[ 2046.064866][T16765] writeback 0
[ 2046.072879][T16765] workingset_refault_anon 12517
[ 2046.083227][T16765] workingset_refault_file 1
[ 2046.161141][T16765] swap 200704
[ 2046.180825][T16765] swapcached 0
[ 2046.184246][T16765] pgpgin 242524
[ 2046.204527][T16765] pgpgout 242520
[ 2046.236927][T16765] pgfault 568943
11:31:48 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000000]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2046.257477][T16765] pgmajfault 12409
[ 2046.262975][T16765] inactive_anon 0
[ 2046.294553][T16765] active_anon 12288
[ 2046.298475][T16765] inactive_file 0
[ 2046.308966][T16765] active_file 4096
[ 2046.320971][T16765] unevictable 0
[ 2046.340587][T16765] hierarchical_memory_limit 314572800
[ 2046.358714][T16765] hierarchical_memsw_limit 9223372036854771712
[ 2046.375675][T16765] total_cache 4096
[ 2046.386277][T16765] total_rss 12288
[ 2046.398039][T16765] total_rss_huge 0
[ 2046.413063][T16765] total_shmem 0
[ 2046.426140][T16765] total_mapped_file 0
[ 2046.453192][T16765] total_dirty 4096
11:31:48 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1100]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2046.497379][T16765] total_writeback 0
[ 2046.501216][T16765] total_workingset_refault_anon 12517
[ 2046.526446][T16765] total_workingset_refault_file 1
[ 2046.548506][T16765] total_swap 200704
[ 2046.561174][T16765] total_swapcached 0
[ 2046.571250][T16765] total_pgpgin 242524
[ 2046.590760][T16765] total_pgpgout 242520
[ 2046.608745][T16765] total_pgfault 568943
[ 2046.624814][T16765] total_pgmajfault 12409
[ 2046.642830][T16765] total_inactive_anon 0
[ 2046.660038][T16765] total_active_anon 12288
[ 2046.681657][T16765] total_inactive_file 0
11:31:48 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9000000]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2046.704279][T16765] total_active_file 4096
[ 2046.716151][T16765] total_unevictable 0
[ 2046.720159][T16765] anon_cost 0
[ 2046.723454][T16765] file_cost 0
[ 2046.765915][T16765] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=16765,uid=0
[ 2046.804864][T16765] Memory cgroup out of memory: Killed process 16765 (syz-executor.2) total-vm:54508kB, anon-rss:132kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:80kB oom_score_adj:1000
11:31:48 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1400]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2046.888266][T16803] syz-executor.3 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[ 2046.959973][T16803] CPU: 0 PID: 16803 Comm: syz-executor.3 Not tainted 6.8.0-rc6-syzkaller-01699-g65f5dd4f02a8 #0
[ 2046.970443][T16803] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024
[ 2046.980517][T16803] Call Trace:
[ 2046.983810][T16803]  <TASK>
[ 2046.986760][T16803]  dump_stack_lvl+0x1e7/0x2e0
[ 2046.991464][T16803]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2046.996685][T16803]  ? __pfx__printk+0x10/0x10
[ 2047.001292][T16803]  ? ___ratelimit+0x4c4/0x670
[ 2047.005986][T16803]  ? __pfx____ratelimit+0x10/0x10
[ 2047.011034][T16803]  dump_header+0xda/0x6a0
[ 2047.015398][T16803]  oom_kill_process+0x3a7/0x930
[ 2047.020281][T16803]  out_of_memory+0xf67/0x1320
[ 2047.024985][T16803]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 2047.030638][T16803]  ? __pfx___mutex_lock+0x10/0x10
[ 2047.035682][T16803]  ? __pfx_out_of_memory+0x10/0x10
[ 2047.040828][T16803]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 2047.046394][T16803]  ? __pfx_lock_release+0x10/0x10
[ 2047.051444][T16803]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 2047.057541][T16803]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 2047.062761][T16803]  ? mem_cgroup_iter+0x422/0x560
[ 2047.067721][T16803]  try_charge_memcg+0xda2/0x18a0
[ 2047.072670][T16803]  ? mark_lock+0x9a/0x350
[ 2047.077065][T16803]  ? __pfx_try_charge_memcg+0x10/0x10
[ 2047.082490][T16803]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 2047.088665][T16803]  charge_memcg+0xa2/0x160
[ 2047.093110][T16803]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 2047.099208][T16803]  __read_swap_cache_async+0x480/0x8b0
[ 2047.104689][T16803]  ? mark_lock+0x9a/0x350
[ 2047.109051][T16803]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 2047.115066][T16803]  swap_cluster_readahead+0x67c/0x810
[ 2047.120488][T16803]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 2047.126414][T16803]  ? __pfx_lock_release+0x10/0x10
[ 2047.131458][T16803]  ? xas_descend+0x37e/0x470
[ 2047.136082][T16803]  swapin_readahead+0x1ea/0x1070
[ 2047.141038][T16803]  ? filemap_get_entry+0x127/0x4e0
[ 2047.146198][T16803]  ? __pfx_swapin_readahead+0x10/0x10
[ 2047.151600][T16803]  ? __filemap_get_folio+0x935/0xbc0
[ 2047.156912][T16803]  ? swap_cache_get_folio+0x9f/0x570
[ 2047.162212][T16803]  do_swap_page+0x791/0x3f40
[ 2047.166820][T16803]  ? __lock_acquire+0x1345/0x1fd0
[ 2047.171872][T16803]  ? rcu_is_watching+0x15/0xb0
[ 2047.176669][T16803]  ? do_swap_page+0x154/0x3f40
[ 2047.181455][T16803]  ? __pfx_do_swap_page+0x10/0x10
[ 2047.186499][T16803]  ? pte_offset_map_nolock+0x137/0x1f0
[ 2047.191988][T16803]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 2047.197815][T16803]  ? __pfx_validate_chain+0x10/0x10
[ 2047.203039][T16803]  __handle_mm_fault+0x15e8/0x72d0
[ 2047.208215][T16803]  ? __pfx___handle_mm_fault+0x10/0x10
[ 2047.213708][T16803]  ? mt_find+0x226/0x850
[ 2047.217977][T16803]  ? __pfx_lock_release+0x10/0x10
[ 2047.223046][T16803]  ? mt_find+0x62d/0x850
[ 2047.227316][T16803]  ? mt_find+0x226/0x850
[ 2047.231606][T16803]  ? find_vma+0x142/0x1c0
[ 2047.235958][T16803]  ? __pfx_find_vma+0x10/0x10
[ 2047.240656][T16803]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 2047.246667][T16803]  handle_mm_fault+0x3c1/0x8a0
[ 2047.251465][T16803]  exc_page_fault+0x2ad/0x870
[ 2047.256178][T16803]  asm_exc_page_fault+0x26/0x30
[ 2047.261047][T16803] RIP: 0010:__get_user_8+0x11/0x20
[ 2047.266182][T16803] Code: ca c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 89 c2 48 c1 fa 3f 48 09 d0 0f 01 cb <48> 8b 10 31 c0 0f 01 ca c3 cc cc cc cc 66 90 90 90 90 90 90 90 90
[ 2047.285805][T16803] RSP: 0018:ffffc90009637d78 EFLAGS: 00050202
[ 2047.291890][T16803] RAX: 0000555556384da8 RBX: ffff88804e51d0b8 RCX: ffffc90009637c03
[ 2047.299875][T16803] RDX: 0000000000000000 RSI: ffffffff8baac7e0 RDI: ffffffff8bfe7820
[ 2047.307864][T16803] RBP: ffffc90009637ec0 R08: ffffffff8f85e9ef R09: 1ffffffff1f0bd3d
[ 2047.315849][T16803] R10: dffffc0000000000 R11: fffffbfff1f0bd3e R12: ffffc90009637d80
[ 2047.323838][T16803] R13: ffffc90009637fd8 R14: dffffc0000000000 R15: ffff88804e51bb80
[ 2047.331850][T16803]  __rseq_handle_notify_resume+0x158/0x1490
[ 2047.337783][T16803]  ? __pfx___rseq_handle_notify_resume+0x10/0x10
[ 2047.344142][T16803]  ? irqentry_exit_to_user_mode+0x52/0x270
[ 2047.349987][T16803]  irqentry_exit_to_user_mode+0xbb/0x270
[ 2047.355648][T16803]  exc_page_fault+0x587/0x870
[ 2047.360360][T16803]  asm_exc_page_fault+0x26/0x30
[ 2047.365231][T16803] RIP: 0033:0x7f5c3e25b068
[ 2047.369665][T16803] Code: 00 0f b6 c0 48 85 c0 0f 85 cd 02 00 00 80 3d a6 f7 c7 00 00 0f 84 48 02 00 00 64 48 83 3c 25 b8 ff ff ff 00 0f 84 c8 02 00 00 <80> 3d 89 4e 12 00 00 0f 85 eb 00 00 00 48 c7 c0 c8 ff ff ff 64 4c
[ 2047.389284][T16803] RSP: 002b:00007ffe9e817a20 EFLAGS: 00010202
[ 2047.395373][T16803] RAX: 0000000000000000 RBX: 0000000000000110 RCX: 00007f5c3e27de67
[ 2047.403362][T16803] RDX: 0000000000000000 RSI: 0000000000000010 RDI: 0000000000000011
[ 2047.411347][T16803] RBP: 000000000000000f R08: 00000000ffffffff R09: 0000000000000000
[ 2047.419332][T16803] R10: 0000000000021000 R11: 0000000000000206 R12: 00007ffe9e817d20
[ 2047.427321][T16803] R13: ffffffffffffffc0 R14: 0000000000001000 R15: 0000000000000000
[ 2047.435327][T16803]  </TASK>
11:31:49 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x884, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x84c, 0x2, [@TCA_FLOW_POLICE={0x848, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x6, 0x0, 0x0, 0x0, 0x0, 0x101}}}]}]}}, @TCA_RATE={0x6, 0x5, {0x0, 0x6}}]}, 0x884}}, 0x0)

11:31:49 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa000000]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2047.734568][T16803] memory: usage 307180kB, limit 307200kB, failcnt 65288
[ 2047.793870][T16803] memory+swap: usage 307420kB, limit 9007199254740988kB, failcnt 0
11:31:49 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1500]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2047.836678][T16803] kmem: usage 307168kB, limit 9007199254740988kB, failcnt 0
[ 2047.884666][T16803] Memory cgroup stats for /syz3:
[ 2047.884805][T16803] cache 4096
[ 2047.892973][T16803] rss 8192
[ 2047.898822][T16803] rss_huge 0
[ 2047.902043][T16803] shmem 0
[ 2047.905054][T16803] mapped_file 0
[ 2047.908524][T16803] dirty 4096
[ 2047.911733][T16803] writeback 0
[ 2047.915138][T16803] workingset_refault_anon 33578
[ 2047.920002][T16803] workingset_refault_file 0
[ 2047.924599][T16803] swap 245760
[ 2047.927896][T16803] swapcached 0
[ 2047.931274][T16803] pgpgin 242631
[ 2047.934790][T16803] pgpgout 242628
[ 2047.938347][T16803] pgfault 553540
[ 2047.941902][T16803] pgmajfault 32205
[ 2047.945693][T16803] inactive_anon 4096
[ 2047.949591][T16803] active_anon 4096
[ 2047.953316][T16803] inactive_file 4096
11:31:50 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb000000]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2048.137176][T16803] active_file 0
[ 2048.142846][T16803] unevictable 0
[ 2048.146802][T16803] hierarchical_memory_limit 314572800
[ 2048.152180][T16803] hierarchical_memsw_limit 9223372036854771712
[ 2048.201946][T16832] __nla_validate_parse: 42 callbacks suppressed
[ 2048.201965][T16832] netlink: 76 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 2048.205909][T16803] total_cache 4096
[ 2048.244509][T16834] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 2048.263733][T16803] total_rss 8192
11:31:50 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3800]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2048.284802][T16803] total_rss_huge 0
[ 2048.294761][T16836] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 2048.322020][T16803] total_shmem 0
[ 2048.337763][T16803] total_mapped_file 0
[ 2048.341767][T16803] total_dirty 4096
[ 2048.357512][T16803] total_writeback 0
[ 2048.361345][T16803] total_workingset_refault_anon 33578
[ 2048.378659][T16803] total_workingset_refault_file 0
[ 2048.400081][T16803] total_swap 245760
[ 2048.403916][T16803] total_swapcached 0
11:31:50 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x884, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x854, 0x2, [@TCA_FLOW_POLICE={0x850, 0xa, 0x0, 0x1, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x6, 0x0, 0x0, 0x0, 0x0, 0x101}}}]}]}}]}, 0x884}}, 0x0)

[ 2048.446223][T16803] total_pgpgin 242631
[ 2048.450242][T16803] total_pgpgout 242628
[ 2048.467635][T16803] total_pgfault 553544
[ 2048.475170][T16803] total_pgmajfault 32205
[ 2048.486224][T16803] total_inactive_anon 4096
[ 2048.491657][T16834] netlink: 76 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 2048.499119][T16803] total_active_anon 4096
[ 2048.527291][T16838] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 2048.536765][T16803] total_inactive_file 4096
11:31:50 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000000]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2048.558869][T16842] netlink: 76 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 2048.561228][T16803] total_active_file 0
[ 2048.604510][T16803] total_unevictable 0
[ 2048.608631][T16803] anon_cost 0
[ 2048.619683][T16803] file_cost 0
[ 2048.622996][T16803] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=16803,uid=0
[ 2048.634380][T16840] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
11:31:50 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2048.727002][T16803] Memory cgroup out of memory: Killed process 16803 (syz-executor.3) total-vm:54640kB, anon-rss:116kB, file-rss:8720kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 2048.736136][T16845] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'.
11:31:50 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x480, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x444]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}, @TCA_RATE={0x6}]}, 0x480}}, 0x0)

[ 2048.786847][T16846] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 2048.806810][ T5093] syz-executor.2 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[ 2048.880432][ T5093] CPU: 1 PID: 5093 Comm: syz-executor.2 Not tainted 6.8.0-rc6-syzkaller-01699-g65f5dd4f02a8 #0
[ 2048.890791][ T5093] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024
[ 2048.900860][ T5093] Call Trace:
[ 2048.904155][ T5093]  <TASK>
[ 2048.907104][ T5093]  dump_stack_lvl+0x1e7/0x2e0
[ 2048.911813][ T5093]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2048.917034][ T5093]  ? __pfx__printk+0x10/0x10
[ 2048.921645][ T5093]  ? ___ratelimit+0x4c4/0x670
[ 2048.926354][ T5093]  ? __pfx____ratelimit+0x10/0x10
[ 2048.931411][ T5093]  dump_header+0xda/0x6a0
[ 2048.935772][ T5093]  oom_kill_process+0x3a7/0x930
[ 2048.940653][ T5093]  out_of_memory+0xf67/0x1320
[ 2048.945354][ T5093]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 2048.951007][ T5093]  ? __pfx___mutex_lock+0x10/0x10
[ 2048.956057][ T5093]  ? __pfx_out_of_memory+0x10/0x10
[ 2048.961205][ T5093]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 2048.966777][ T5093]  ? __pfx_lock_release+0x10/0x10
[ 2048.971829][ T5093]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 2048.977925][ T5093]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 2048.983147][ T5093]  ? mem_cgroup_iter+0x3e9/0x560
[ 2048.988115][ T5093]  try_charge_memcg+0xda2/0x18a0
[ 2048.993074][ T5093]  ? mark_lock+0x9a/0x350
[ 2048.997448][ T5093]  ? __pfx_try_charge_memcg+0x10/0x10
[ 2049.002875][ T5093]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 2049.009055][ T5093]  charge_memcg+0xa2/0x160
[ 2049.013490][ T5093]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 2049.019587][ T5093]  __read_swap_cache_async+0x480/0x8b0
[ 2049.025073][ T5093]  ? mark_lock+0x9a/0x350
[ 2049.029433][ T5093]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 2049.035449][ T5093]  swap_cluster_readahead+0x67c/0x810
[ 2049.040867][ T5093]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 2049.046792][ T5093]  ? __pfx_lock_release+0x10/0x10
[ 2049.051842][ T5093]  ? xas_descend+0x37e/0x470
[ 2049.056471][ T5093]  swapin_readahead+0x1ea/0x1070
[ 2049.061431][ T5093]  ? filemap_get_entry+0x127/0x4e0
[ 2049.066582][ T5093]  ? __pfx_swapin_readahead+0x10/0x10
[ 2049.071982][ T5093]  ? __filemap_get_folio+0x935/0xbc0
[ 2049.077302][ T5093]  ? swap_cache_get_folio+0x9f/0x570
[ 2049.082617][ T5093]  do_swap_page+0x791/0x3f40
[ 2049.087230][ T5093]  ? __lock_acquire+0x1345/0x1fd0
[ 2049.092282][ T5093]  ? rcu_is_watching+0x15/0xb0
[ 2049.097091][ T5093]  ? do_swap_page+0x154/0x3f40
[ 2049.101877][ T5093]  ? __pfx_do_swap_page+0x10/0x10
[ 2049.106927][ T5093]  ? pte_offset_map_nolock+0x137/0x1f0
[ 2049.112413][ T5093]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 2049.118243][ T5093]  ? __pfx_validate_chain+0x10/0x10
[ 2049.123470][ T5093]  __handle_mm_fault+0x15e8/0x72d0
[ 2049.128646][ T5093]  ? __pfx___handle_mm_fault+0x10/0x10
[ 2049.134140][ T5093]  ? mt_find+0x226/0x850
[ 2049.138407][ T5093]  ? __pfx_lock_release+0x10/0x10
[ 2049.143478][ T5093]  ? mt_find+0x62d/0x850
[ 2049.147753][ T5093]  ? mt_find+0x226/0x850
[ 2049.152045][ T5093]  ? find_vma+0x142/0x1c0
[ 2049.156393][ T5093]  ? __pfx_find_vma+0x10/0x10
[ 2049.161090][ T5093]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 2049.167101][ T5093]  handle_mm_fault+0x3c1/0x8a0
[ 2049.171901][ T5093]  exc_page_fault+0x2ad/0x870
[ 2049.176607][ T5093]  asm_exc_page_fault+0x26/0x30
[ 2049.181480][ T5093] RIP: 0010:__get_user_8+0x11/0x20
[ 2049.186618][ T5093] Code: ca c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 89 c2 48 c1 fa 3f 48 09 d0 0f 01 cb <48> 8b 10 31 c0 0f 01 ca c3 cc cc cc cc 66 90 90 90 90 90 90 90 90
[ 2049.206240][ T5093] RSP: 0018:ffffc900043dfd78 EFLAGS: 00050202
[ 2049.212326][ T5093] RAX: 0000555555eb1da8 RBX: ffff88802b166e78 RCX: ffffc900043dfc03
[ 2049.220318][ T5093] RDX: 0000000000000000 RSI: ffffffff8baac7e0 RDI: ffffffff8bfe7820
[ 2049.228304][ T5093] RBP: ffffc900043dfec0 R08: ffffffff8f85e9ef R09: 1ffffffff1f0bd3d
[ 2049.236294][ T5093] R10: dffffc0000000000 R11: fffffbfff1f0bd3e R12: ffffc900043dfd80
[ 2049.244291][ T5093] R13: ffffc900043dffd8 R14: dffffc0000000000 R15: ffff88802b165940
[ 2049.252298][ T5093]  __rseq_handle_notify_resume+0x158/0x1490
[ 2049.258228][ T5093]  ? __pfx___rseq_handle_notify_resume+0x10/0x10
[ 2049.264586][ T5093]  ? irqentry_exit_to_user_mode+0x52/0x270
[ 2049.270421][ T5093]  irqentry_exit_to_user_mode+0xbb/0x270
[ 2049.276085][ T5093]  exc_page_fault+0x587/0x870
[ 2049.280784][ T5093]  asm_exc_page_fault+0x26/0x30
[ 2049.285631][ T5093] RIP: 0033:0x7f28e72a91b8
[ 2049.290039][ T5093] Code: 3c 24 48 89 4c 24 18 e8 f6 b9 ff ff 4c 8b 54 24 18 48 8b 54 24 10 41 89 c0 8b 74 24 0c 8b 3c 24 b8 e6 00 00 00 0f 05 44 89 c7 <48> 89 04 24 e8 4f ba ff ff 48 8b 04 24 48 83 c4 28 f7 d8 c3 0f 1f
[ 2049.309635][ T5093] RSP: 002b:00007fff0ed97930 EFLAGS: 00010293
[ 2049.315693][ T5093] RAX: 0000000000000000 RBX: 00000000000056b0 RCX: 00007f28e72a91b5
[ 2049.323655][ T5093] RDX: 00007fff0ed97970 RSI: 0000000000000000 RDI: 0000000000000000
[ 2049.331618][ T5093] RBP: 00007fff0ed979fc R08: 0000000000000000 R09: 00007fff0ed9e0b0
[ 2049.339579][ T5093] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000032
[ 2049.347539][ T5093] R13: 00000000001f3e79 R14: 00000000001f3e79 R15: 0000000000000000
[ 2049.355514][ T5093]  </TASK>
[ 2049.420009][ T5093] memory: usage 307200kB, limit 307200kB, failcnt 32411
[ 2049.441805][ T5093] memory+swap: usage 307396kB, limit 9007199254740988kB, failcnt 0
[ 2049.460626][ T5093] kmem: usage 307172kB, limit 9007199254740988kB, failcnt 0
[ 2049.475950][T16847] netlink: 76 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 2049.488594][ T5093] Memory cgroup stats for /syz2:
[ 2049.488732][ T5093] cache 4096
[ 2049.503100][ T5093] rss 12288
[ 2049.507335][ T5093] rss_huge 0
[ 2049.514724][ T5093] shmem 0
[ 2049.517870][ T5093] mapped_file 0
[ 2049.521726][ T5093] dirty 4096
11:31:51 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x11000000]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

11:31:51 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4404]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2049.528098][ T5093] writeback 0
[ 2049.531614][ T5093] workingset_refault_anon 12674
[ 2049.548817][ T5093] workingset_refault_file 1
[ 2049.553348][ T5093] swap 200704
[ 2049.649232][ T5093] swapcached 4096
[ 2049.667125][ T5093] pgpgin 242693
[ 2049.684577][ T5093] pgpgout 242688
[ 2049.703990][ T5093] pgfault 569174
[ 2049.711169][ T5093] pgmajfault 12539
[ 2049.720719][ T5093] inactive_anon 0
[ 2049.730463][ T5093] active_anon 4096
[ 2049.740615][ T5093] inactive_file 0
[ 2049.752090][ T5093] active_file 4096
[ 2049.760933][ T5093] unevictable 0
[ 2049.779571][ T5093] hierarchical_memory_limit 314572800
[ 2049.803735][ T5093] hierarchical_memsw_limit 9223372036854771712
11:31:51 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x14000000]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2049.829229][ T5093] total_cache 4096
[ 2049.837787][ T5093] total_rss 12288
[ 2049.851080][ T5093] total_rss_huge 0
[ 2049.861626][ T5093] total_shmem 0
[ 2049.868897][ T5093] total_mapped_file 0
[ 2049.872951][ T5093] total_dirty 4096
[ 2049.899576][ T5093] total_writeback 0
[ 2049.903414][ T5093] total_workingset_refault_anon 12674
[ 2049.936890][ T5093] total_workingset_refault_file 1
[ 2049.941937][ T5093] total_swap 200704
11:31:51 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8100]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2049.967455][ T5093] total_swapcached 4096
[ 2049.972738][ T5093] total_pgpgin 242693
[ 2049.982157][ T5093] total_pgpgout 242688
[ 2049.992003][ T5093] total_pgfault 569174
[ 2050.000961][ T5093] total_pgmajfault 12539
[ 2050.010465][ T5093] total_inactive_anon 0
[ 2050.031517][ T5093] total_active_anon 4096
[ 2050.047388][ T5093] total_inactive_file 0
[ 2050.067929][ T5093] total_active_file 4096
[ 2050.072198][ T5093] total_unevictable 0
11:31:52 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x15000000]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2050.091566][ T5093] anon_cost 0
[ 2050.100605][ T5093] file_cost 0
[ 2050.103916][ T5093] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=16826,uid=0
11:31:52 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x884, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x84c, 0x2, [@TCA_FLOW_POLICE={0x848, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x6, 0x0, 0x0, 0x0, 0x0, 0x101}}}]}]}}, @TCA_RATE={0x6, 0x5, {0x0, 0x6}}]}, 0x884}}, 0x0)

[ 2050.135538][ T5093] Memory cgroup out of memory: Killed process 16826 (syz-executor.2) total-vm:54508kB, anon-rss:0kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:80kB oom_score_adj:1000
[ 2050.170616][T16851] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2050.206454][T16851] CPU: 0 PID: 16851 Comm: syz-executor.3 Not tainted 6.8.0-rc6-syzkaller-01699-g65f5dd4f02a8 #0
[ 2050.216895][T16851] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024
[ 2050.226962][T16851] Call Trace:
[ 2050.230241][T16851]  <TASK>
[ 2050.233167][T16851]  dump_stack_lvl+0x1e7/0x2e0
[ 2050.237845][T16851]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2050.243034][T16851]  ? __pfx__printk+0x10/0x10
[ 2050.247620][T16851]  ? ___ratelimit+0x4c4/0x670
[ 2050.252295][T16851]  ? __pfx____ratelimit+0x10/0x10
[ 2050.257318][T16851]  dump_header+0xda/0x6a0
[ 2050.261645][T16851]  oom_kill_process+0x3a7/0x930
[ 2050.266494][T16851]  out_of_memory+0xf67/0x1320
[ 2050.271169][T16851]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 2050.276797][T16851]  ? __pfx___mutex_lock+0x10/0x10
[ 2050.281822][T16851]  ? __pfx_out_of_memory+0x10/0x10
[ 2050.286940][T16851]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 2050.292486][T16851]  ? __pfx_lock_release+0x10/0x10
[ 2050.297507][T16851]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 2050.303574][T16851]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 2050.308765][T16851]  ? mem_cgroup_iter+0x422/0x560
[ 2050.313699][T16851]  try_charge_memcg+0xda2/0x18a0
[ 2050.318648][T16851]  ? __pfx_try_charge_memcg+0x10/0x10
[ 2050.324012][T16851]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 2050.329721][T16851]  ? __pfx_lock_release+0x10/0x10
[ 2050.334746][T16851]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 2050.340726][T16851]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 2050.346439][T16851]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 2050.352236][T16851]  obj_cgroup_charge+0x389/0x630
[ 2050.357170][T16851]  ? obj_cgroup_charge+0x121/0x630
[ 2050.362276][T16851]  ? __pfx_obj_cgroup_charge+0x10/0x10
[ 2050.367732][T16851]  ? kmem_cache_alloc+0x4f/0x340
[ 2050.372665][T16851]  ? __pfx___might_resched+0x10/0x10
[ 2050.377940][T16851]  ? __local_bh_enable_ip+0x168/0x200
[ 2050.383310][T16851]  ? preempt_count_add+0x93/0x190
[ 2050.388330][T16851]  __memcg_slab_pre_alloc_hook+0x28d/0x2b0
[ 2050.394131][T16851]  ? alloc_pid+0xa0/0xc50
[ 2050.398450][T16851]  kmem_cache_alloc+0x202/0x340
[ 2050.403296][T16851]  alloc_pid+0xa0/0xc50
[ 2050.407443][T16851]  ? copy_thread+0x631/0x980
[ 2050.412033][T16851]  copy_process+0x2299/0x3fc0
[ 2050.416711][T16851]  ? copy_process+0x9c3/0x3fc0
[ 2050.421473][T16851]  ? __pfx_copy_process+0x10/0x10
[ 2050.426488][T16851]  ? __might_fault+0xc5/0x120
[ 2050.431160][T16851]  ? __asan_memset+0x23/0x50
[ 2050.435752][T16851]  kernel_clone+0x21d/0x8d0
[ 2050.440251][T16851]  ? __pfx_kernel_clone+0x10/0x10
[ 2050.445280][T16851]  __se_sys_clone3+0x2cb/0x350
[ 2050.450037][T16851]  ? __pfx___se_sys_clone3+0x10/0x10
[ 2050.455334][T16851]  ? do_syscall_64+0x108/0x240
[ 2050.460087][T16851]  ? do_syscall_64+0xb4/0x240
[ 2050.464755][T16851]  do_syscall_64+0xf9/0x240
[ 2050.469251][T16851]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 2050.475133][T16851] RIP: 0033:0x7f5c3e2a9b99
[ 2050.479562][T16851] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 2050.499173][T16851] RSP: 002b:00007ffe9e8179a8 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 2050.507583][T16851] RAX: ffffffffffffffda RBX: 00007f5c3e252270 RCX: 00007f5c3e2a9b99
[ 2050.515557][T16851] RDX: 00007f5c3e252270 RSI: 0000000000000058 RDI: 00007ffe9e8179f0
[ 2050.523540][T16851] RBP: 00007f5c3f0766c0 R08: 00007f5c3f0766c0 R09: 00007ffe9e817ad7
[ 2050.531505][T16851] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 2050.539472][T16851] R13: 000000000000000b R14: 00007ffe9e8179f0 R15: 00007ffe9e817ad8
[ 2050.547449][T16851]  </TASK>
[ 2050.634711][T16851] memory: usage 307200kB, limit 307200kB, failcnt 65563
[ 2050.658438][T16851] memory+swap: usage 307424kB, limit 9007199254740988kB, failcnt 0
[ 2050.673696][T16851] kmem: usage 307184kB, limit 9007199254740988kB, failcnt 0
[ 2050.724575][T16851] Memory cgroup stats for /syz3:
[ 2050.724851][T16851] cache 4096
[ 2050.744812][T16851] rss 0
[ 2050.753385][T16851] rss_huge 0
[ 2050.765425][T16851] shmem 0
11:31:52 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf2ff]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2050.777320][T16851] mapped_file 0
[ 2050.789099][T16851] dirty 4096
[ 2050.801997][T16851] writeback 0
[ 2050.876054][T16851] workingset_refault_anon 33673
11:31:52 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38000000]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2050.900544][T16851] workingset_refault_file 0
[ 2050.918422][T16851] swap 241664
[ 2050.921732][T16851] swapcached 0
[ 2050.949483][T16851] pgpgin 242737
[ 2050.952976][T16851] pgpgout 242736
[ 2050.980606][T16851] pgfault 553714
[ 2050.987543][T16851] pgmajfault 32297
[ 2050.991283][T16851] inactive_anon 0
[ 2051.024717][T16851] active_anon 0
[ 2051.028205][T16851] inactive_file 0
[ 2051.031848][T16851] active_file 4096
[ 2051.046047][T16851] unevictable 0
[ 2051.049528][T16851] hierarchical_memory_limit 314572800
[ 2051.074459][T16851] hierarchical_memsw_limit 9223372036854771712
[ 2051.080648][T16851] total_cache 4096
[ 2051.084381][T16851] total_rss 0
[ 2051.117887][T16851] total_rss_huge 0
[ 2051.121615][T16851] total_shmem 0
[ 2051.130941][T16851] total_mapped_file 0
[ 2051.140081][T16851] total_dirty 4096
[ 2051.143822][T16851] total_writeback 0
[ 2051.178748][T16851] total_workingset_refault_anon 33673
[ 2051.184145][T16851] total_workingset_refault_file 0
[ 2051.217582][T16851] total_swap 241664
[ 2051.221414][T16851] total_swapcached 0
[ 2051.245980][T16851] total_pgpgin 242737
[ 2051.249984][T16851] total_pgpgout 242736
[ 2051.254072][T16851] total_pgfault 553718
11:31:53 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff2]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2051.290352][T16851] total_pgmajfault 32297
[ 2051.300891][T16851] total_inactive_anon 0
[ 2051.317781][T16851] total_active_anon 0
[ 2051.321786][T16851] total_inactive_file 0
[ 2051.338074][T16851] total_active_file 4096
[ 2051.342331][T16851] total_unevictable 0
[ 2051.359025][T16851] anon_cost 0
[ 2051.373078][T16851] file_cost 0
[ 2051.381767][T16851] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=16851,uid=0
11:31:53 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3f000000]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2051.449932][T16851] Memory cgroup out of memory: Killed process 16851 (syz-executor.3) total-vm:54508kB, anon-rss:0kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
11:31:53 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x884, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x854, 0x2, [@TCA_FLOW_POLICE={0x850, 0xa, 0x0, 0x1, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x6, 0x0, 0x0, 0x0, 0x0, 0x101}}}]}]}}]}, 0x884}}, 0x0)

[ 2051.536104][ T5093] syz-executor.2 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[ 2051.573935][ T5093] CPU: 0 PID: 5093 Comm: syz-executor.2 Not tainted 6.8.0-rc6-syzkaller-01699-g65f5dd4f02a8 #0
[ 2051.584291][ T5093] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024
[ 2051.594366][ T5093] Call Trace:
[ 2051.597663][ T5093]  <TASK>
[ 2051.600616][ T5093]  dump_stack_lvl+0x1e7/0x2e0
[ 2051.605323][ T5093]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2051.610557][ T5093]  ? __pfx__printk+0x10/0x10
[ 2051.615173][ T5093]  ? ___ratelimit+0x4c4/0x670
[ 2051.619887][ T5093]  ? __pfx____ratelimit+0x10/0x10
[ 2051.624948][ T5093]  dump_header+0xda/0x6a0
[ 2051.629311][ T5093]  oom_kill_process+0x3a7/0x930
11:31:53 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x480, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x500]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}, @TCA_RATE={0x6}]}, 0x480}}, 0x0)

[ 2051.634199][ T5093]  out_of_memory+0xf67/0x1320
[ 2051.638905][ T5093]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 2051.644548][ T5093]  ? __pfx___mutex_lock+0x10/0x10
[ 2051.649588][ T5093]  ? __pfx_out_of_memory+0x10/0x10
[ 2051.654736][ T5093]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 2051.660331][ T5093]  ? __pfx_lock_release+0x10/0x10
[ 2051.665384][ T5093]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 2051.671486][ T5093]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 2051.676710][ T5093]  ? mem_cgroup_iter+0x3e9/0x560
[ 2051.681674][ T5093]  try_charge_memcg+0xda2/0x18a0
[ 2051.686632][ T5093]  ? mark_lock+0x9a/0x350
[ 2051.691006][ T5093]  ? __pfx_try_charge_memcg+0x10/0x10
[ 2051.696431][ T5093]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 2051.702608][ T5093]  charge_memcg+0xa2/0x160
[ 2051.707048][ T5093]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 2051.713143][ T5093]  __read_swap_cache_async+0x480/0x8b0
[ 2051.718647][ T5093]  ? mark_lock+0x9a/0x350
[ 2051.723000][ T5093]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 2051.729011][ T5093]  ? blk_start_plug+0x6f/0x1b0
[ 2051.733803][ T5093]  swap_cluster_readahead+0x398/0x810
[ 2051.739211][ T5093]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 2051.745135][ T5093]  ? __pfx_lock_release+0x10/0x10
[ 2051.750188][ T5093]  ? xas_descend+0x37e/0x470
[ 2051.754824][ T5093]  swapin_readahead+0x1ea/0x1070
[ 2051.759776][ T5093]  ? filemap_get_entry+0x127/0x4e0
[ 2051.764929][ T5093]  ? __pfx_swapin_readahead+0x10/0x10
[ 2051.770336][ T5093]  ? __filemap_get_folio+0x935/0xbc0
[ 2051.775656][ T5093]  ? swap_cache_get_folio+0x9f/0x570
[ 2051.780975][ T5093]  do_swap_page+0x791/0x3f40
[ 2051.785594][ T5093]  ? rcu_is_watching+0x15/0xb0
[ 2051.790394][ T5093]  ? do_swap_page+0x154/0x3f40
[ 2051.795182][ T5093]  ? __pfx_do_swap_page+0x10/0x10
[ 2051.800227][ T5093]  ? pte_offset_map_nolock+0x137/0x1f0
[ 2051.805711][ T5093]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 2051.811553][ T5093]  __handle_mm_fault+0x15e8/0x72d0
[ 2051.816721][ T5093]  ? reacquire_held_locks+0x3eb/0x690
[ 2051.822115][ T5093]  ? __pfx___handle_mm_fault+0x10/0x10
[ 2051.827611][ T5093]  ? __pfx_reacquire_held_locks+0x10/0x10
[ 2051.833368][ T5093]  ? mtree_range_walk+0x6fd/0x8e0
[ 2051.838420][ T5093]  ? lock_vma_under_rcu+0x18a/0x730
[ 2051.843645][ T5093]  ? __pfx_lock_release+0x10/0x10
[ 2051.848694][ T5093]  ? lock_vma_under_rcu+0x2f9/0x730
[ 2051.853939][ T5093]  ? lock_vma_under_rcu+0x18a/0x730
[ 2051.859164][ T5093]  ? __pfx_lock_vma_under_rcu+0x10/0x10
[ 2051.864738][ T5093]  handle_mm_fault+0x3c1/0x8a0
[ 2051.869536][ T5093]  exc_page_fault+0x456/0x870
[ 2051.874246][ T5093]  asm_exc_page_fault+0x26/0x30
[ 2051.879119][ T5093] RIP: 0033:0x7f28e727dd7a
[ 2051.883555][ T5093] Code: c1 e8 32 89 c1 69 c0 40 42 0f 00 48 89 0c 24 29 c7 48 69 ff e8 03 00 00 48 89 7c 24 08 48 89 e7 e8 2b cb ff ff 48 8b 54 24 18 <64> 48 2b 14 25 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90
[ 2051.903175][ T5093] RSP: 002b:00007fff0ed97970 EFLAGS: 00010202
[ 2051.909262][ T5093] RAX: 0000000000000000 RBX: 00000000000056b2 RCX: 0000000000000000
[ 2051.917255][ T5093] RDX: c5450307af8ce800 RSI: 0000000000000000 RDI: 0000555555eb1788
[ 2051.925247][ T5093] RBP: 00007fff0ed979fc R08: 0000000000000000 R09: 00007fff0ed9e0b0
[ 2051.933236][ T5093] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000032
[ 2051.941222][ T5093] R13: 00000000001f49e4 R14: 00000000001f49e4 R15: 0000000000000000
[ 2051.949231][ T5093]  </TASK>
[ 2051.995434][ T5093] memory: usage 307200kB, limit 307200kB, failcnt 33534
[ 2052.002400][ T5093] memory+swap: usage 307408kB, limit 9007199254740988kB, failcnt 0
[ 2052.011158][ T5093] kmem: usage 307192kB, limit 9007199254740988kB, failcnt 0
11:31:54 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x34000]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

11:31:54 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000000]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2052.104041][ T5093] Memory cgroup stats for /syz2:
[ 2052.104180][ T5093] cache 4096
[ 2052.150058][ T5093] rss 4096
[ 2052.153122][ T5093] rss_huge 0
[ 2052.168632][ T5093] shmem 0
[ 2052.171735][ T5093] mapped_file 0
[ 2052.175585][ T5093] dirty 4096
[ 2052.178929][ T5093] writeback 0
[ 2052.182359][ T5093] workingset_refault_anon 12905
[ 2052.187672][ T5093] workingset_refault_file 1
[ 2052.192324][ T5093] swap 212992
[ 2052.196475][ T5093] swapcached 0
[ 2052.200018][ T5093] pgpgin 242937
[ 2052.204320][ T5093] pgpgout 242935
[ 2052.256534][ T5093] pgfault 569493
[ 2052.268739][ T5093] pgmajfault 12740
[ 2052.278812][ T5093] inactive_anon 0
[ 2052.290133][ T5093] active_anon 4096
[ 2052.300490][ T5093] inactive_file 0
[ 2052.308833][ T5093] active_file 4096
[ 2052.320628][ T5093] unevictable 0
[ 2052.335118][ T5093] hierarchical_memory_limit 314572800
[ 2052.350229][ T5093] hierarchical_memsw_limit 9223372036854771712
[ 2052.360652][ T5093] total_cache 4096
11:31:54 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400300]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

11:31:54 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x44040000]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2052.464441][ T5093] total_rss 4096
[ 2052.468029][ T5093] total_rss_huge 0
[ 2052.471760][ T5093] total_shmem 0
[ 2052.520312][ T5093] total_mapped_file 0
[ 2052.540662][ T5093] total_dirty 4096
[ 2052.552864][ T5093] total_writeback 0
[ 2052.568218][ T5093] total_workingset_refault_anon 12905
[ 2052.586245][ T5093] total_workingset_refault_file 1
[ 2052.622037][ T5093] total_swap 212992
11:31:54 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81000000]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2052.647791][ T5093] total_swapcached 0
[ 2052.651719][ T5093] total_pgpgin 242937
[ 2052.691252][ T5093] total_pgpgout 242935
[ 2052.710662][ T5093] total_pgfault 569493
[ 2052.725828][ T5093] total_pgmajfault 12740
11:31:54 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2052.737846][ T5093] total_inactive_anon 0
[ 2052.742147][ T5093] total_active_anon 4096
[ 2052.747440][ T5093] total_inactive_file 0
[ 2052.778468][ T5093] total_active_file 4096
[ 2052.816687][ T5093] total_unevictable 0
[ 2052.843394][ T5093] anon_cost 0
[ 2052.856214][ T5093] file_cost 0
[ 2052.866161][ T5093] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=16872,uid=0
11:31:54 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x85cc54a1]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2052.952870][ T5093] Memory cgroup out of memory: Killed process 16872 (syz-executor.2) total-vm:54508kB, anon-rss:0kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:80kB oom_score_adj:1000
11:31:55 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x884, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x84c, 0x2, [@TCA_FLOW_POLICE={0x848, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x6, 0x0, 0x0, 0x0, 0x0, 0x101}}}]}]}}, @TCA_RATE={0x6, 0x5, {0x0, 0x6}}]}, 0x884}}, 0x0)

11:31:55 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2053.273148][T16925] __nla_validate_parse: 48 callbacks suppressed
[ 2053.273165][T16925] netlink: 76 bytes leftover after parsing attributes in process `syz-executor.4'.
11:31:55 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa154cc85]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2053.367928][T16927] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 2053.384869][T16928] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 2053.640236][T16897] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2053.664553][T16927] netlink: 76 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 2053.688624][T16897] CPU: 0 PID: 16897 Comm: syz-executor.3 Not tainted 6.8.0-rc6-syzkaller-01699-g65f5dd4f02a8 #0
[ 2053.699077][T16897] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024
[ 2053.709155][T16897] Call Trace:
[ 2053.712451][T16897]  <TASK>
[ 2053.715397][T16897]  dump_stack_lvl+0x1e7/0x2e0
[ 2053.720103][T16897]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2053.725324][T16897]  ? __pfx__printk+0x10/0x10
[ 2053.729938][T16897]  ? ___ratelimit+0x4c4/0x670
[ 2053.734666][T16897]  ? __pfx____ratelimit+0x10/0x10
[ 2053.739723][T16897]  dump_header+0xda/0x6a0
[ 2053.744085][T16897]  oom_kill_process+0x3a7/0x930
[ 2053.748965][T16897]  out_of_memory+0xf67/0x1320
[ 2053.753679][T16897]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 2053.759342][T16897]  ? __pfx___mutex_lock+0x10/0x10
[ 2053.764395][T16897]  ? __pfx_out_of_memory+0x10/0x10
[ 2053.769540][T16897]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 2053.775108][T16897]  ? __pfx_lock_release+0x10/0x10
[ 2053.780156][T16897]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 2053.786254][T16897]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 2053.791477][T16897]  ? mem_cgroup_iter+0x422/0x560
[ 2053.796447][T16897]  try_charge_memcg+0xda2/0x18a0
[ 2053.801431][T16897]  ? __pfx_try_charge_memcg+0x10/0x10
[ 2053.806829][T16897]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 2053.812570][T16897]  ? __pfx_lock_release+0x10/0x10
[ 2053.817623][T16897]  ? memcg_account_kmem+0x1e7/0x210
[ 2053.822861][T16897]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 2053.828693][T16897]  __memcg_kmem_charge_page+0xe1/0x250
[ 2053.834182][T16897]  memcg_charge_kernel_stack+0x304/0x550
[ 2053.839845][T16897]  dup_task_struct+0x15d/0x7d0
[ 2053.844646][T16897]  copy_process+0x5d5/0x3fc0
[ 2053.849272][T16897]  ? __might_fault+0xa9/0x120
[ 2053.853973][T16897]  ? __pfx_lock_release+0x10/0x10
[ 2053.859032][T16897]  ? __pfx_copy_process+0x10/0x10
[ 2053.864077][T16897]  ? __might_fault+0xc5/0x120
[ 2053.868786][T16897]  ? __asan_memset+0x23/0x50
[ 2053.873407][T16897]  kernel_clone+0x21d/0x8d0
[ 2053.877937][T16897]  ? __pfx_kernel_clone+0x10/0x10
[ 2053.883005][T16897]  __se_sys_clone3+0x2cb/0x350
[ 2053.887798][T16897]  ? __pfx___se_sys_clone3+0x10/0x10
[ 2053.893139][T16897]  ? do_syscall_64+0x108/0x240
[ 2053.897926][T16897]  ? do_syscall_64+0xb4/0x240
[ 2053.902634][T16897]  do_syscall_64+0xf9/0x240
[ 2053.907162][T16897]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 2053.913075][T16897] RIP: 0033:0x7f5c3e2a9b99
[ 2053.917517][T16897] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 2053.937144][T16897] RSP: 002b:00007ffe9e8179a8 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 2053.945578][T16897] RAX: ffffffffffffffda RBX: 00007f5c3e252270 RCX: 00007f5c3e2a9b99
[ 2053.953578][T16897] RDX: 00007f5c3e252270 RSI: 0000000000000058 RDI: 00007ffe9e8179f0
[ 2053.961570][T16897] RBP: 00007f5c3f0556c0 R08: 00007f5c3f0556c0 R09: 00007ffe9e817ad7
[ 2053.969557][T16897] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 2053.977557][T16897] R13: 000000000000006e R14: 00007ffe9e8179f0 R15: 00007ffe9e817ad8
11:31:56 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3000000]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2053.982423][T16931] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 2053.985546][T16897]  </TASK>
[ 2054.010525][T16933] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 2054.020472][T16897] memory: usage 307200kB, limit 307200kB, failcnt 66793
[ 2054.051376][T16897] memory+swap: usage 307448kB, limit 9007199254740988kB, failcnt 0
[ 2054.060985][T16897] kmem: usage 307196kB, limit 9007199254740988kB, failcnt 0
[ 2054.075704][T16897] Memory cgroup stats for /syz3:
[ 2054.075837][T16897] cache 4096
[ 2054.084377][T16897] rss 0
[ 2054.092124][T16897] rss_huge 0
[ 2054.097126][T16897] shmem 0
[ 2054.100169][T16897] mapped_file 0
[ 2054.103725][T16897] dirty 4096
[ 2054.111516][T16897] writeback 0
[ 2054.117760][T16897] workingset_refault_anon 34123
[ 2054.122723][T16897] workingset_refault_file 0
[ 2054.134743][T16897] swap 253952
[ 2054.138129][T16897] swapcached 0
[ 2054.141825][T16897] pgpgin 243200
[ 2054.146069][T16897] pgpgout 243199
[ 2054.149719][T16897] pgfault 554328
[ 2054.153351][T16897] pgmajfault 32686
[ 2054.157731][T16897] inactive_anon 0
[ 2054.161457][T16897] active_anon 0
[ 2054.165565][T16897] inactive_file 0
[ 2054.169301][T16897] active_file 4096
[ 2054.173107][T16897] unevictable 0
[ 2054.177155][T16897] hierarchical_memory_limit 314572800
[ 2054.182633][T16897] hierarchical_memsw_limit 9223372036854771712
[ 2054.190657][T16897] total_cache 4096
[ 2054.195360][T16897] total_rss 0
[ 2054.198734][T16897] total_rss_huge 0
[ 2054.202548][T16897] total_shmem 0
[ 2054.208441][T16897] total_mapped_file 0
[ 2054.208754][T16934] netlink: 76 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 2054.212496][T16897] total_dirty 4096
[ 2054.233790][T16897] total_writeback 0
[ 2054.238237][T16897] total_workingset_refault_anon 34123
[ 2054.253242][T16937] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 2054.277471][T16897] total_workingset_refault_file 0
[ 2054.285082][T16938] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 2054.294549][T16897] total_swap 253952
11:31:56 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe4ffffff]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2054.300968][T16897] total_swapcached 0
[ 2054.305827][T16897] total_pgpgin 243200
[ 2054.310166][T16897] total_pgpgout 243199
[ 2054.316570][T16897] total_pgfault 554332
[ 2054.324103][T16897] total_pgmajfault 32686
[ 2054.332343][T16897] total_inactive_anon 0
[ 2054.344272][T16897] total_active_anon 0
[ 2054.354560][T16897] total_inactive_file 0
[ 2054.375881][T16897] total_active_file 4096
[ 2054.387864][T16897] total_unevictable 0
[ 2054.400908][T16897] anon_cost 0
[ 2054.413650][T16897] file_cost 0
[ 2054.422074][T16897] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=16897,uid=0
[ 2054.453657][T16939] netlink: 76 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 2054.453777][T16897] Memory cgroup out of memory: Killed process 16897 (syz-executor.3) total-vm:54640kB, anon-rss:0kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
11:31:56 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3010000]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

11:31:56 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x480, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x600]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}, @TCA_RATE={0x6}]}, 0x480}}, 0x0)

11:31:56 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x884, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x854, 0x2, [@TCA_FLOW_POLICE={0x850, 0xa, 0x0, 0x1, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x6, 0x0, 0x0, 0x0, 0x0, 0x101}}}]}]}}]}, 0x884}}, 0x0)

11:31:56 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf0ffffff]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

11:31:56 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

11:31:57 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf2ff0000]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

11:31:57 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5000000]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2055.350867][T16946] syz-executor.3 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[ 2055.383690][T16946] CPU: 0 PID: 16946 Comm: syz-executor.3 Not tainted 6.8.0-rc6-syzkaller-01699-g65f5dd4f02a8 #0
[ 2055.394150][T16946] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024
[ 2055.404220][T16946] Call Trace:
[ 2055.407521][T16946]  <TASK>
[ 2055.410471][T16946]  dump_stack_lvl+0x1e7/0x2e0
[ 2055.415178][T16946]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2055.420402][T16946]  ? __pfx__printk+0x10/0x10
[ 2055.425016][T16946]  ? ___ratelimit+0x4c4/0x670
[ 2055.429730][T16946]  ? __pfx____ratelimit+0x10/0x10
[ 2055.434789][T16946]  dump_header+0xda/0x6a0
[ 2055.439148][T16946]  oom_kill_process+0x3a7/0x930
[ 2055.444037][T16946]  out_of_memory+0xf67/0x1320
[ 2055.448753][T16946]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 2055.454410][T16946]  ? __pfx___mutex_lock+0x10/0x10
[ 2055.459463][T16946]  ? __pfx_out_of_memory+0x10/0x10
[ 2055.464610][T16946]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 2055.470179][T16946]  ? __pfx_lock_release+0x10/0x10
[ 2055.475239][T16946]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 2055.481343][T16946]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 2055.486569][T16946]  ? mem_cgroup_iter+0x422/0x560
[ 2055.491542][T16946]  try_charge_memcg+0xda2/0x18a0
[ 2055.496501][T16946]  ? mark_lock+0x9a/0x350
[ 2055.500878][T16946]  ? __pfx_try_charge_memcg+0x10/0x10
[ 2055.506303][T16946]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 2055.512477][T16946]  charge_memcg+0xa2/0x160
[ 2055.516923][T16946]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 2055.523015][T16946]  __read_swap_cache_async+0x480/0x8b0
[ 2055.528498][T16946]  ? mark_lock+0x9a/0x350
[ 2055.532862][T16946]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 2055.538879][T16946]  swap_cluster_readahead+0x67c/0x810
[ 2055.544287][T16946]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 2055.550213][T16946]  ? __pfx_lock_release+0x10/0x10
[ 2055.555267][T16946]  ? xas_descend+0x37e/0x470
[ 2055.559893][T16946]  swapin_readahead+0x1ea/0x1070
[ 2055.564845][T16946]  ? filemap_get_entry+0x127/0x4e0
[ 2055.569994][T16946]  ? __pfx_swapin_readahead+0x10/0x10
[ 2055.575399][T16946]  ? __filemap_get_folio+0x935/0xbc0
[ 2055.580719][T16946]  ? swap_cache_get_folio+0x9f/0x570
[ 2055.586028][T16946]  do_swap_page+0x791/0x3f40
[ 2055.590628][T16946]  ? rcu_is_watching+0x15/0xb0
[ 2055.595420][T16946]  ? do_swap_page+0x154/0x3f40
[ 2055.600214][T16946]  ? __pfx_do_swap_page+0x10/0x10
[ 2055.605254][T16946]  ? pte_offset_map_nolock+0x137/0x1f0
[ 2055.610728][T16946]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 2055.616573][T16946]  __handle_mm_fault+0x15e8/0x72d0
[ 2055.621742][T16946]  ? reacquire_held_locks+0x3eb/0x690
[ 2055.627134][T16946]  ? __pfx___handle_mm_fault+0x10/0x10
[ 2055.632629][T16946]  ? __pfx_reacquire_held_locks+0x10/0x10
[ 2055.638387][T16946]  ? mtree_range_walk+0x6fd/0x8e0
[ 2055.643436][T16946]  ? lock_vma_under_rcu+0x18a/0x730
[ 2055.648657][T16946]  ? __pfx_lock_release+0x10/0x10
[ 2055.653705][T16946]  ? lock_vma_under_rcu+0x2f9/0x730
[ 2055.658948][T16946]  ? lock_vma_under_rcu+0x18a/0x730
[ 2055.664176][T16946]  ? __pfx_lock_vma_under_rcu+0x10/0x10
[ 2055.669754][T16946]  handle_mm_fault+0x3c1/0x8a0
[ 2055.674553][T16946]  exc_page_fault+0x456/0x870
[ 2055.679265][T16946]  asm_exc_page_fault+0x26/0x30
[ 2055.684136][T16946] RIP: 0033:0x7f5c3e239ab1
[ 2055.688572][T16946] Code: f8 c1 e8 04 31 f8 69 c0 2d eb d4 27 89 c7 c1 ef 0f 31 f8 48 31 d0 25 ff 0f 00 00 09 c5 80 3d 06 bc c9 00 00 0f 85 6f ff ff ff <44> 0f b6 6c 24 0f 44 8d 55 04 89 e8 41 89 c1 41 81 e1 ff 1f 00 00
[ 2055.708195][T16946] RSP: 002b:00007ffe9e817af0 EFLAGS: 00010246
[ 2055.714287][T16946] RAX: 00000000000008c9 RBX: 00007f5c3e3ac018 RCX: 0000000000000002
[ 2055.722276][T16946] RDX: ffffffff8b5ef051 RSI: 0000000080000000 RDI: 000000000000e040
[ 2055.730265][T16946] RBP: 000000008b5ef8c9 R08: 0000001b31f20000 R09: 0000000000001004
[ 2055.738256][T16946] R10: 0000000081df7008 R11: 0000000000000246 R12: 0000000000000002
[ 2055.746248][T16946] R13: 0000000000000001 R14: 00007f5c3e3a0000 R15: ffffffff8b5ef051
[ 2055.754238][T16946]  ? mas_walk+0x21/0x280
[ 2055.758513][T16946]  ? mas_walk+0x21/0x280
[ 2055.762785][T16946]  </TASK>
11:31:57 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6000000]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2055.850109][T16946] memory: usage 307200kB, limit 307200kB, failcnt 67323
[ 2055.859149][T16946] memory+swap: usage 307444kB, limit 9007199254740988kB, failcnt 0
[ 2055.868042][T16946] kmem: usage 307184kB, limit 9007199254740988kB, failcnt 0
11:31:57 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffff7f]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2055.922767][T16946] Memory cgroup stats for /syz3:
[ 2055.922903][T16946] cache 4096
[ 2055.943875][T16946] rss 12288
[ 2055.966065][T16946] rss_huge 0
[ 2055.973064][T16946] shmem 0
[ 2055.986176][T16946] mapped_file 0
[ 2055.993767][T16946] dirty 4096
[ 2056.004569][T16946] writeback 0
[ 2056.010228][T16946] workingset_refault_anon 34300
[ 2056.022142][T16946] workingset_refault_file 0
[ 2056.030415][T16946] swap 249856
[ 2056.033835][T16946] swapcached 0
[ 2056.042179][T16946] pgpgin 243392
[ 2056.048736][T16946] pgpgout 243388
[ 2056.052433][T16946] pgfault 554612
[ 2056.060192][T16946] pgmajfault 32842
[ 2056.064069][T16946] inactive_anon 0
[ 2056.071404][T16946] active_anon 12288
[ 2056.076306][T16946] inactive_file 0
[ 2056.082313][T16946] active_file 4096
[ 2056.089500][T16946] unevictable 0
[ 2056.093111][T16946] hierarchical_memory_limit 314572800
[ 2056.104979][T16946] hierarchical_memsw_limit 9223372036854771712
[ 2056.120162][T16946] total_cache 4096
[ 2056.130324][T16946] total_rss 12288
[ 2056.134146][T16946] total_rss_huge 0
[ 2056.145091][T16946] total_shmem 0
[ 2056.148713][T16946] total_mapped_file 0
[ 2056.152875][T16946] total_dirty 4096
[ 2056.175011][T16946] total_writeback 0
[ 2056.181453][T16946] total_workingset_refault_anon 34300
[ 2056.190936][T16946] total_workingset_refault_file 0
[ 2056.207429][T16946] total_swap 249856
11:31:58 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7000000]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2056.232512][T16946] total_swapcached 0
[ 2056.243490][T16946] total_pgpgin 243392
[ 2056.248184][T16946] total_pgpgout 243388
[ 2056.253884][T16946] total_pgfault 554616
11:31:58 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffe4]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2056.283636][T16946] total_pgmajfault 32842
[ 2056.289474][T16946] total_inactive_anon 0
[ 2056.310781][T16946] total_active_anon 12288
[ 2056.319027][T16946] total_inactive_file 0
[ 2056.325325][T16946] total_active_file 4096
[ 2056.329715][T16946] total_unevictable 0
[ 2056.333837][T16946] anon_cost 0
[ 2056.341040][T16946] file_cost 0
[ 2056.344597][T16946] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=16946,uid=0
[ 2056.381541][T16946] Memory cgroup out of memory: Killed process 16946 (syz-executor.3) total-vm:54508kB, anon-rss:128kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 2056.406404][T16924] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2056.428473][T16924] CPU: 1 PID: 16924 Comm: syz-executor.2 Not tainted 6.8.0-rc6-syzkaller-01699-g65f5dd4f02a8 #0
[ 2056.438914][T16924] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024
[ 2056.448981][T16924] Call Trace:
[ 2056.452273][T16924]  <TASK>
[ 2056.455218][T16924]  dump_stack_lvl+0x1e7/0x2e0
[ 2056.459922][T16924]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2056.465141][T16924]  ? __pfx__printk+0x10/0x10
[ 2056.469754][T16924]  ? ___ratelimit+0x4c4/0x670
[ 2056.474471][T16924]  ? __pfx____ratelimit+0x10/0x10
[ 2056.479526][T16924]  dump_header+0xda/0x6a0
[ 2056.483888][T16924]  oom_kill_process+0x3a7/0x930
[ 2056.488770][T16924]  out_of_memory+0xf67/0x1320
[ 2056.493469][T16924]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 2056.499110][T16924]  ? __pfx___mutex_lock+0x10/0x10
[ 2056.504134][T16924]  ? __pfx_out_of_memory+0x10/0x10
[ 2056.509247][T16924]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 2056.514789][T16924]  ? __pfx_lock_release+0x10/0x10
[ 2056.519808][T16924]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 2056.525870][T16924]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 2056.531061][T16924]  ? mem_cgroup_iter+0x3e9/0x560
[ 2056.536001][T16924]  try_charge_memcg+0xda2/0x18a0
[ 2056.540952][T16924]  ? __pfx_try_charge_memcg+0x10/0x10
[ 2056.546316][T16924]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 2056.552024][T16924]  ? __pfx_lock_release+0x10/0x10
[ 2056.557042][T16924]  ? memcg_account_kmem+0x1e7/0x210
[ 2056.562241][T16924]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 2056.568041][T16924]  __memcg_kmem_charge_page+0xe1/0x250
[ 2056.573496][T16924]  memcg_charge_kernel_stack+0x28a/0x550
[ 2056.579124][T16924]  dup_task_struct+0x40d/0x7d0
[ 2056.583889][T16924]  copy_process+0x5d5/0x3fc0
[ 2056.588487][T16924]  ? __might_fault+0xa9/0x120
[ 2056.593159][T16924]  ? __pfx_lock_release+0x10/0x10
[ 2056.598187][T16924]  ? __pfx_copy_process+0x10/0x10
[ 2056.603207][T16924]  ? __might_fault+0xc5/0x120
[ 2056.607883][T16924]  ? __asan_memset+0x23/0x50
[ 2056.612475][T16924]  kernel_clone+0x21d/0x8d0
[ 2056.616976][T16924]  ? __pfx_kernel_clone+0x10/0x10
[ 2056.622005][T16924]  __se_sys_clone3+0x2cb/0x350
[ 2056.626763][T16924]  ? __pfx___se_sys_clone3+0x10/0x10
[ 2056.632052][T16924]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 2056.638038][T16924]  ? exc_page_fault+0x587/0x870
[ 2056.642890][T16924]  ? do_syscall_64+0xb4/0x240
[ 2056.647559][T16924]  do_syscall_64+0xf9/0x240
[ 2056.652055][T16924]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 2056.657940][T16924] RIP: 0033:0x7f28e72a9b99
[ 2056.662347][T16924] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 2056.681943][T16924] RSP: 002b:00007fff0ed97558 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 2056.690360][T16924] RAX: ffffffffffffffda RBX: 00007f28e7252270 RCX: 00007f28e72a9b99
[ 2056.698337][T16924] RDX: 00007f28e7252270 RSI: 0000000000000058 RDI: 00007fff0ed975a0
[ 2056.706304][T16924] RBP: 00007f28e65ff6c0 R08: 00007f28e65ff6c0 R09: 00007fff0ed97687
[ 2056.714267][T16924] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 2056.722230][T16924] R13: 000000000000006e R14: 00007fff0ed975a0 R15: 00007fff0ed97688
[ 2056.730206][T16924]  </TASK>
11:31:58 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x480, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x700]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}, @TCA_RATE={0x6}]}, 0x480}}, 0x0)

[ 2056.816055][T16924] memory: usage 307200kB, limit 307200kB, failcnt 35641
[ 2056.823237][T16924] memory+swap: usage 307420kB, limit 9007199254740988kB, failcnt 0
11:31:58 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000000]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2056.869640][T16924] kmem: usage 307196kB, limit 9007199254740988kB, failcnt 0
[ 2056.907736][T16924] Memory cgroup stats for /syz2:
[ 2056.907871][T16924] cache 4096
11:31:58 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffff0]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2056.968370][T16924] rss 0
[ 2056.971180][T16924] rss_huge 0
[ 2056.977049][T16924] shmem 0
[ 2056.981682][T16924] mapped_file 0
[ 2056.993980][T16924] dirty 4096
[ 2057.012615][T16924] writeback 0
[ 2057.026008][T16924] workingset_refault_anon 13615
[ 2057.044952][T16924] workingset_refault_file 1
[ 2057.056827][T16924] swap 225280
[ 2057.060135][T16924] swapcached 0
[ 2057.074931][T16924] pgpgin 243671
[ 2057.078415][T16924] pgpgout 243670
[ 2057.081981][T16924] pgfault 570464
[ 2057.090376][T16924] pgmajfault 13340
[ 2057.098616][T16924] inactive_anon 0
[ 2057.103657][T16924] active_anon 0
[ 2057.110905][T16924] inactive_file 0
[ 2057.117789][T16924] active_file 4096
[ 2057.126093][T16924] unevictable 0
[ 2057.137882][T16924] hierarchical_memory_limit 314572800
[ 2057.152829][T16924] hierarchical_memsw_limit 9223372036854771712
[ 2057.162077][T16924] total_cache 4096
[ 2057.168896][T16924] total_rss 0
[ 2057.172282][T16924] total_rss_huge 0
[ 2057.176125][T16924] total_shmem 0
[ 2057.179669][T16924] total_mapped_file 0
[ 2057.183812][T16924] total_dirty 4096
[ 2057.190098][T16924] total_writeback 0
[ 2057.194129][T16924] total_workingset_refault_anon 13615
[ 2057.200107][T16924] total_workingset_refault_file 1
[ 2057.205746][T16924] total_swap 225280
[ 2057.209774][T16924] total_swapcached 0
[ 2057.213857][T16924] total_pgpgin 243671
[ 2057.218827][T16924] total_pgpgout 243670
[ 2057.223081][T16924] total_pgfault 570464
11:31:59 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2057.230963][T16924] total_pgmajfault 13340
[ 2057.236014][T16924] total_inactive_anon 0
[ 2057.240356][T16924] total_active_anon 0
[ 2057.245040][T16924] total_inactive_file 0
[ 2057.249388][T16924] total_active_file 4096
[ 2057.264964][T16924] total_unevictable 0
[ 2057.270251][T16924] anon_cost 0
[ 2057.273635][T16924] file_cost 0
11:31:59 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8010000]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2057.279057][T16924] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=16924,uid=0
[ 2057.328958][T16924] Memory cgroup out of memory: Killed process 16924 (syz-executor.2) total-vm:54640kB, anon-rss:0kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:80kB oom_score_adj:1000
[ 2057.374539][T16948] syz-executor.0 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[ 2057.392254][T16948] CPU: 0 PID: 16948 Comm: syz-executor.0 Not tainted 6.8.0-rc6-syzkaller-01699-g65f5dd4f02a8 #0
[ 2057.402694][T16948] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024
[ 2057.412761][T16948] Call Trace:
[ 2057.416053][T16948]  <TASK>
[ 2057.418995][T16948]  dump_stack_lvl+0x1e7/0x2e0
[ 2057.423695][T16948]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2057.428913][T16948]  ? __pfx__printk+0x10/0x10
[ 2057.433526][T16948]  ? ___ratelimit+0x4c4/0x670
[ 2057.438230][T16948]  ? __pfx____ratelimit+0x10/0x10
[ 2057.443284][T16948]  dump_header+0xda/0x6a0
[ 2057.447642][T16948]  oom_kill_process+0x3a7/0x930
[ 2057.452524][T16948]  out_of_memory+0xf67/0x1320
[ 2057.457227][T16948]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 2057.462882][T16948]  ? __pfx___mutex_lock+0x10/0x10
[ 2057.467919][T16948]  ? __pfx_out_of_memory+0x10/0x10
[ 2057.473061][T16948]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 2057.478623][T16948]  ? __pfx_lock_release+0x10/0x10
[ 2057.483661][T16948]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 2057.489744][T16948]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 2057.494964][T16948]  ? mem_cgroup_iter+0x3e9/0x560
[ 2057.499920][T16948]  try_charge_memcg+0xda2/0x18a0
[ 2057.504868][T16948]  ? mark_lock+0x9a/0x350
[ 2057.509232][T16948]  ? __pfx_try_charge_memcg+0x10/0x10
[ 2057.514652][T16948]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 2057.520827][T16948]  charge_memcg+0xa2/0x160
[ 2057.525261][T16948]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 2057.531353][T16948]  __read_swap_cache_async+0x480/0x8b0
[ 2057.536839][T16948]  ? mark_lock+0x9a/0x350
[ 2057.541198][T16948]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 2057.547214][T16948]  ? blk_start_plug+0x6f/0x1b0
[ 2057.551996][T16948]  swap_cluster_readahead+0x398/0x810
[ 2057.557399][T16948]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 2057.563320][T16948]  ? __pfx_lock_release+0x10/0x10
[ 2057.568385][T16948]  ? xas_descend+0x37e/0x470
[ 2057.573011][T16948]  swapin_readahead+0x1ea/0x1070
[ 2057.577965][T16948]  ? filemap_get_entry+0x127/0x4e0
[ 2057.583121][T16948]  ? __pfx_swapin_readahead+0x10/0x10
[ 2057.588523][T16948]  ? __filemap_get_folio+0x935/0xbc0
[ 2057.593840][T16948]  ? swap_cache_get_folio+0x9f/0x570
[ 2057.599149][T16948]  do_swap_page+0x791/0x3f40
[ 2057.603749][T16948]  ? rcu_is_watching+0x15/0xb0
[ 2057.608533][T16948]  ? do_swap_page+0x154/0x3f40
[ 2057.613308][T16948]  ? __pfx_do_swap_page+0x10/0x10
[ 2057.618358][T16948]  ? pte_offset_map_nolock+0x137/0x1f0
[ 2057.623834][T16948]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 2057.629675][T16948]  __handle_mm_fault+0x15e8/0x72d0
[ 2057.634924][T16948]  ? reacquire_held_locks+0x3eb/0x690
[ 2057.640314][T16948]  ? __pfx___handle_mm_fault+0x10/0x10
[ 2057.645811][T16948]  ? __pfx_reacquire_held_locks+0x10/0x10
[ 2057.651608][T16948]  ? mtree_range_walk+0x6fd/0x8e0
[ 2057.656661][T16948]  ? lock_vma_under_rcu+0x18a/0x730
[ 2057.661884][T16948]  ? __pfx_lock_release+0x10/0x10
[ 2057.666932][T16948]  ? lock_vma_under_rcu+0x2f9/0x730
[ 2057.672172][T16948]  ? lock_vma_under_rcu+0x18a/0x730
[ 2057.677401][T16948]  ? __pfx_lock_vma_under_rcu+0x10/0x10
[ 2057.682978][T16948]  handle_mm_fault+0x3c1/0x8a0
[ 2057.687775][T16948]  exc_page_fault+0x456/0x870
[ 2057.692484][T16948]  asm_exc_page_fault+0x26/0x30
[ 2057.697357][T16948] RIP: 0033:0x7f2719a39ac7
[ 2057.701788][T16948] Code: 25 ff 0f 00 00 09 c5 80 3d 06 bc c9 00 00 0f 85 6f ff ff ff 44 0f b6 6c 24 0f 44 8d 55 04 89 e8 41 89 c1 41 81 e1 ff 1f 00 00 <43> 8b 14 8e 39 d5 0f 84 5e ff ff ff 85 d2 0f 84 65 01 00 00 83 c0
11:31:59 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2057.721412][T16948] RSP: 002b:00007ffce4e7fa50 EFLAGS: 00010202
[ 2057.727506][T16948] RAX: 0000000081406479 RBX: 00007f2719bac018 RCX: 000000000000021b
[ 2057.735492][T16948] RDX: ffffffff81406bd0 RSI: 0000000080000000 RDI: 000000000001ec82
[ 2057.743479][T16948] RBP: 0000000081406479 R08: 0000001b31e20000 R09: 0000000000000479
[ 2057.751470][T16948] R10: 000000008140647d R11: 0000000000000246 R12: 000000000000021b
[ 2057.759463][T16948] R13: 0000000000000001 R14: 00007f2719ba0000 R15: ffffffff81406bd0
[ 2057.767454][T16948]  ? unwind_next_frame+0x1e80/0x29e0
[ 2057.772776][T16948]  ? unwind_next_frame+0x1e80/0x29e0
[ 2057.778093][T16948]  </TASK>
11:31:59 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9000000]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2057.856360][T16948] memory: usage 307020kB, limit 307200kB, failcnt 35710
[ 2057.890065][T16948] memory+swap: usage 307232kB, limit 9007199254740988kB, failcnt 0
[ 2057.909300][T16948] kmem: usage 307012kB, limit 9007199254740988kB, failcnt 0
[ 2057.935840][T16948] Memory cgroup stats for /syz2:
[ 2057.936931][T16948] cache 4096
[ 2057.948353][T16948] rss 0
[ 2057.951149][T16948] rss_huge 0
[ 2057.954353][T16948] shmem 0
[ 2057.959385][T16948] mapped_file 0
[ 2057.966273][T16948] dirty 4096
[ 2057.976261][T16948] writeback 0
[ 2057.983930][T16948] workingset_refault_anon 13618
[ 2057.990026][T16948] workingset_refault_file 1
[ 2057.995369][T16948] swap 217088
[ 2057.998806][T16948] swapcached 4096
[ 2058.003155][T16948] pgpgin 243674
[ 2058.007541][T16948] pgpgout 243672
[ 2058.011228][T16948] pgfault 570467
[ 2058.016921][T16948] pgmajfault 13342
[ 2058.020914][T16948] inactive_anon 4096
[ 2058.025438][T16948] active_anon 0
[ 2058.029046][T16948] inactive_file 4096
[ 2058.033076][T16948] active_file 0
[ 2058.038034][T16948] unevictable 0
[ 2058.041616][T16948] hierarchical_memory_limit 314572800
[ 2058.048538][T16948] hierarchical_memsw_limit 9223372036854771712
[ 2058.059520][T16948] total_cache 4096
[ 2058.074360][T16948] total_rss 0
[ 2058.080759][T16948] total_rss_huge 0
[ 2058.089162][T16948] total_shmem 0
[ 2058.098424][T16948] total_mapped_file 0
[ 2058.106779][T16948] total_dirty 4096
11:32:00 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2058.113819][T16948] total_writeback 0
11:32:00 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa000000]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2058.137768][T16948] total_workingset_refault_anon 13618
[ 2058.180933][T16948] total_workingset_refault_file 1
[ 2058.191625][T16948] total_swap 217088
[ 2058.301151][T16948] total_swapcached 4096
[ 2058.309921][T16948] total_pgpgin 243674
[ 2058.319293][T16948] total_pgpgout 243672
[ 2058.328898][T16948] total_pgfault 570467
[ 2058.339440][T16948] total_pgmajfault 13342
[ 2058.339550][T17007] __nla_validate_parse: 47 callbacks suppressed
[ 2058.339564][T17007] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 2058.345419][T16948] total_inactive_anon 4096
[ 2058.379707][T17009] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 2058.392578][T16948] total_active_anon 0
[ 2058.403069][T16948] total_inactive_file 4096
[ 2058.409636][T16948] total_active_file 0
[ 2058.413768][T17007] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 2058.423212][T16948] total_unevictable 0
[ 2058.427886][T16948] anon_cost 0
[ 2058.435273][T16948] file_cost 0
11:32:00 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x884, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x854, 0x2, [@TCA_FLOW_POLICE={0x850, 0xa, 0x0, 0x1, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x6, 0x0, 0x0, 0x0, 0x0, 0x101}}}]}]}}]}, 0x884}}, 0x0)

[ 2058.442029][T16948] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=5093,uid=0
[ 2058.459635][T16948] Memory cgroup out of memory: Killed process 5093 (syz-executor.2) total-vm:50536kB, anon-rss:120kB, file-rss:8960kB, shmem-rss:0kB, UID:0 pgtables:76kB oom_score_adj:0
[ 2058.487927][T17010] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 2058.602842][T16981] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2058.618514][T16981] CPU: 1 PID: 16981 Comm: syz-executor.3 Not tainted 6.8.0-rc6-syzkaller-01699-g65f5dd4f02a8 #0
[ 2058.628960][T16981] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024
[ 2058.636146][T17011] netlink: 76 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 2058.639005][T16981] Call Trace:
[ 2058.639018][T16981]  <TASK>
[ 2058.639027][T16981]  dump_stack_lvl+0x1e7/0x2e0
[ 2058.639057][T16981]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2058.664420][T16981]  ? __pfx__printk+0x10/0x10
[ 2058.669034][T16981]  ? ___ratelimit+0x4c4/0x670
[ 2058.673738][T16981]  ? __pfx____ratelimit+0x10/0x10
[ 2058.678803][T16981]  dump_header+0xda/0x6a0
[ 2058.683163][T16981]  oom_kill_process+0x3a7/0x930
[ 2058.688050][T16981]  out_of_memory+0xf67/0x1320
[ 2058.692757][T16981]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 2058.698419][T16981]  ? __pfx___mutex_lock+0x10/0x10
[ 2058.703471][T16981]  ? __pfx_out_of_memory+0x10/0x10
[ 2058.708624][T16981]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 2058.714197][T16981]  ? __pfx_lock_release+0x10/0x10
[ 2058.719263][T16981]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 2058.725366][T16981]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 2058.730587][T16981]  ? mem_cgroup_iter+0x422/0x560
[ 2058.735554][T16981]  try_charge_memcg+0xda2/0x18a0
[ 2058.740540][T16981]  ? __pfx_try_charge_memcg+0x10/0x10
[ 2058.745936][T16981]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 2058.751676][T16981]  ? __pfx_lock_release+0x10/0x10
[ 2058.756729][T16981]  ? memcg_account_kmem+0x1e7/0x210
[ 2058.761967][T16981]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 2058.767801][T16981]  __memcg_kmem_charge_page+0xe1/0x250
[ 2058.773292][T16981]  memcg_charge_kernel_stack+0x304/0x550
[ 2058.778950][T16981]  dup_task_struct+0x40d/0x7d0
[ 2058.783738][T16981]  copy_process+0x5d5/0x3fc0
[ 2058.788378][T16981]  ? __might_fault+0xa9/0x120
[ 2058.793077][T16981]  ? __pfx_lock_release+0x10/0x10
[ 2058.798131][T16981]  ? __pfx_copy_process+0x10/0x10
[ 2058.803174][T16981]  ? __might_fault+0xc5/0x120
[ 2058.807882][T16981]  ? __asan_memset+0x23/0x50
[ 2058.812501][T16981]  kernel_clone+0x21d/0x8d0
[ 2058.817028][T16981]  ? __pfx_kernel_clone+0x10/0x10
[ 2058.822091][T16981]  __se_sys_clone3+0x2cb/0x350
[ 2058.826881][T16981]  ? __pfx___se_sys_clone3+0x10/0x10
[ 2058.832217][T16981]  ? do_syscall_64+0x108/0x240
[ 2058.837005][T16981]  ? do_syscall_64+0xb4/0x240
[ 2058.841704][T16981]  do_syscall_64+0xf9/0x240
[ 2058.846232][T16981]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 2058.852147][T16981] RIP: 0033:0x7f5c3e2a9b99
[ 2058.856579][T16981] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 2058.876199][T16981] RSP: 002b:00007ffe9e8179a8 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 2058.884632][T16981] RAX: ffffffffffffffda RBX: 00007f5c3e252270 RCX: 00007f5c3e2a9b99
[ 2058.892617][T16981] RDX: 00007f5c3e252270 RSI: 0000000000000058 RDI: 00007ffe9e8179f0
[ 2058.900607][T16981] RBP: 00007f5c3f0556c0 R08: 00007f5c3f0556c0 R09: 00007ffe9e817ad7
[ 2058.908595][T16981] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 2058.916585][T16981] R13: 000000000000006e R14: 00007ffe9e8179f0 R15: 00007ffe9e817ad8
[ 2058.924590][T16981]  </TASK>
[ 2058.938754][T17009] netlink: 76 bytes leftover after parsing attributes in process `syz-executor.1'.
11:32:00 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2058.940323][T16981] memory: usage 307200kB, limit 307200kB, failcnt 68492
[ 2058.956518][T16981] memory+swap: usage 307448kB, limit 9007199254740988kB, failcnt 0
11:32:01 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb000000]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2059.025016][T16981] kmem: usage 307196kB, limit 9007199254740988kB, failcnt 0
[ 2059.032337][T16981] Memory cgroup stats for /syz3:
[ 2059.032472][T16981] cache 4096
[ 2059.049523][ T5093] syz_tun (unregistering): left allmulticast mode
[ 2059.064572][T16981] rss 0
[ 2059.067464][ T5093] syz_tun (unregistering): left promiscuous mode
[ 2059.073894][T16981] rss_huge 0
[ 2059.078859][T16981] shmem 0
[ 2059.089962][T16981] mapped_file 0
[ 2059.102785][T16981] dirty 4096
[ 2059.110578][T16981] writeback 0
[ 2059.129470][T16981] workingset_refault_anon 34709
[ 2059.134345][T16981] workingset_refault_file 0
[ 2059.164599][T16981] swap 253952
[ 2059.168084][T16981] swapcached 0
[ 2059.174981][T16981] pgpgin 243814
[ 2059.181981][T16981] pgpgout 243813
[ 2059.187308][T16981] pgfault 555169
[ 2059.191013][T16981] pgmajfault 33179
[ 2059.201586][T16981] inactive_anon 0
[ 2059.209958][T16981] active_anon 0
[ 2059.213572][T16981] inactive_file 0
[ 2059.217738][T16981] active_file 4096
[ 2059.221579][T16981] unevictable 0
[ 2059.225282][T16981] hierarchical_memory_limit 314572800
[ 2059.230770][T16981] hierarchical_memsw_limit 9223372036854771712
[ 2059.237593][T16981] total_cache 4096
[ 2059.243698][T16981] total_rss 0
[ 2059.249249][T16981] total_rss_huge 0
[ 2059.256490][T16981] total_shmem 0
[ 2059.262770][T16981] total_mapped_file 0
[ 2059.277550][T16981] total_dirty 4096
[ 2059.283615][T16981] total_writeback 0
[ 2059.290382][T16981] total_workingset_refault_anon 34709
[ 2059.300697][T16981] total_workingset_refault_file 0
[ 2059.307716][T16981] total_swap 253952
[ 2059.308190][T17017] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 2059.311715][T16981] total_swapcached 0
11:32:01 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x884, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x84c, 0x2, [@TCA_FLOW_POLICE={0x848, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x6, 0x0, 0x0, 0x0, 0x0, 0x101}}}]}]}}, @TCA_RATE={0x6, 0x5, {0x0, 0x6}}]}, 0x884}}, 0x0)

[ 2059.338160][T17019] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 2059.349804][T16981] total_pgpgin 243814
[ 2059.354970][T16981] total_pgpgout 243813
[ 2059.359140][T16981] total_pgfault 555173
[ 2059.365575][T16981] total_pgmajfault 33179
[ 2059.371089][T16981] total_inactive_anon 0
[ 2059.377637][T16981] total_active_anon 0
[ 2059.384021][T16981] total_inactive_file 0
[ 2059.390201][T16981] total_active_file 4096
[ 2059.412693][T16981] total_unevictable 0
[ 2059.418275][T16981] anon_cost 0
[ 2059.424787][T16981] file_cost 0
[ 2059.430726][T16981] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=16981,uid=0
[ 2059.455675][T16981] Memory cgroup out of memory: Killed process 16981 (syz-executor.3) total-vm:54640kB, anon-rss:0kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 2059.497342][T17020] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 2059.513463][T17021] netlink: 76 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 2059.534018][ T5103] syz-executor.3 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[ 2059.557406][ T5103] CPU: 0 PID: 5103 Comm: syz-executor.3 Not tainted 6.8.0-rc6-syzkaller-01699-g65f5dd4f02a8 #0
[ 2059.567774][ T5103] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024
[ 2059.577843][ T5103] Call Trace:
[ 2059.581138][ T5103]  <TASK>
[ 2059.584087][ T5103]  dump_stack_lvl+0x1e7/0x2e0
[ 2059.588791][ T5103]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2059.594013][ T5103]  ? __pfx__printk+0x10/0x10
[ 2059.598627][ T5103]  ? ___ratelimit+0x4c4/0x670
[ 2059.603337][ T5103]  ? __pfx____ratelimit+0x10/0x10
[ 2059.608391][ T5103]  dump_header+0xda/0x6a0
[ 2059.612748][ T5103]  oom_kill_process+0x3a7/0x930
[ 2059.617622][ T5103]  out_of_memory+0xf67/0x1320
[ 2059.622328][ T5103]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 2059.627990][ T5103]  ? __pfx___mutex_lock+0x10/0x10
[ 2059.633039][ T5103]  ? __pfx_out_of_memory+0x10/0x10
[ 2059.638183][ T5103]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 2059.643753][ T5103]  ? __pfx_lock_release+0x10/0x10
[ 2059.648805][ T5103]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 2059.654905][ T5103]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 2059.660124][ T5103]  ? mem_cgroup_iter+0x422/0x560
[ 2059.665086][ T5103]  try_charge_memcg+0xda2/0x18a0
[ 2059.670042][ T5103]  ? mark_lock+0x9a/0x350
[ 2059.674412][ T5103]  ? __pfx_try_charge_memcg+0x10/0x10
[ 2059.679839][ T5103]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 2059.686016][ T5103]  charge_memcg+0xa2/0x160
[ 2059.690452][ T5103]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 2059.696542][ T5103]  __read_swap_cache_async+0x480/0x8b0
[ 2059.702025][ T5103]  ? mark_lock+0x9a/0x350
[ 2059.706382][ T5103]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 2059.712403][ T5103]  swap_cluster_readahead+0x67c/0x810
[ 2059.717816][ T5103]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 2059.723738][ T5103]  ? __pfx_lock_release+0x10/0x10
[ 2059.728797][ T5103]  ? xas_descend+0x37e/0x470
[ 2059.733420][ T5103]  swapin_readahead+0x1ea/0x1070
[ 2059.738377][ T5103]  ? filemap_get_entry+0x127/0x4e0
[ 2059.743530][ T5103]  ? __pfx_swapin_readahead+0x10/0x10
[ 2059.748928][ T5103]  ? __filemap_get_folio+0x935/0xbc0
[ 2059.754243][ T5103]  ? swap_cache_get_folio+0x9f/0x570
[ 2059.759558][ T5103]  do_swap_page+0x791/0x3f40
[ 2059.764168][ T5103]  ? rcu_is_watching+0x15/0xb0
[ 2059.768960][ T5103]  ? do_swap_page+0x154/0x3f40
[ 2059.773750][ T5103]  ? __pfx_do_swap_page+0x10/0x10
[ 2059.778798][ T5103]  ? pte_offset_map_nolock+0x137/0x1f0
[ 2059.784286][ T5103]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 2059.790111][ T5103]  ? __pfx_validate_chain+0x10/0x10
[ 2059.795324][ T5103]  __handle_mm_fault+0x15e8/0x72d0
[ 2059.800485][ T5103]  ? __pfx___handle_mm_fault+0x10/0x10
[ 2059.805975][ T5103]  ? mt_find+0x226/0x850
[ 2059.810241][ T5103]  ? __pfx_lock_release+0x10/0x10
[ 2059.815302][ T5103]  ? mt_find+0x62d/0x850
[ 2059.819561][ T5103]  ? mt_find+0x226/0x850
[ 2059.823830][ T5103]  ? find_vma+0x142/0x1c0
[ 2059.828162][ T5103]  ? __pfx_find_vma+0x10/0x10
[ 2059.832830][ T5103]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 2059.838809][ T5103]  handle_mm_fault+0x3c1/0x8a0
[ 2059.843579][ T5103]  exc_page_fault+0x2ad/0x870
[ 2059.848274][ T5103]  asm_exc_page_fault+0x26/0x30
[ 2059.853119][ T5103] RIP: 0010:__get_user_8+0x11/0x20
[ 2059.858230][ T5103] Code: ca c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 89 c2 48 c1 fa 3f 48 09 d0 0f 01 cb <48> 8b 10 31 c0 0f 01 ca c3 cc cc cc cc 66 90 90 90 90 90 90 90 90
[ 2059.877832][ T5103] RSP: 0018:ffffc9000466fd98 EFLAGS: 00050202
[ 2059.883893][ T5103] RAX: 0000555556384da8 RBX: ffff88802f176e78 RCX: ffffc9000466fc03
[ 2059.891857][ T5103] RDX: 0000000000000000 RSI: ffffffff8baac7e0 RDI: ffffffff8bfe7820
[ 2059.899822][ T5103] RBP: ffffc9000466fec8 R08: ffffffff8f85e9ef R09: 1ffffffff1f0bd3d
[ 2059.907787][ T5103] R10: dffffc0000000000 R11: fffffbfff1f0bd3e R12: ffffc9000466fda0
[ 2059.915752][ T5103] R13: ffffc9000466ffd8 R14: dffffc0000000000 R15: ffff88802f175940
[ 2059.923733][ T5103]  __rseq_handle_notify_resume+0x158/0x1490
[ 2059.929637][ T5103]  ? __pfx___rseq_handle_notify_resume+0x10/0x10
[ 2059.935959][ T5103]  ? syscall_exit_to_user_mode+0xa2/0x360
[ 2059.941674][ T5103]  syscall_exit_to_user_mode+0x113/0x360
[ 2059.947304][ T5103]  do_syscall_64+0x108/0x240
[ 2059.951888][ T5103]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 2059.957776][ T5103] RIP: 0033:0x7f5c3e2a91b5
[ 2059.962181][ T5103] Code: 24 0c 89 3c 24 48 89 4c 24 18 e8 f6 b9 ff ff 4c 8b 54 24 18 48 8b 54 24 10 41 89 c0 8b 74 24 0c 8b 3c 24 b8 e6 00 00 00 0f 05 <44> 89 c7 48 89 04 24 e8 4f ba ff ff 48 8b 04 24 48 83 c4 28 f7 d8
[ 2059.981777][ T5103] RSP: 002b:00007ffe9e817d80 EFLAGS: 00000293 ORIG_RAX: 00000000000000e6
[ 2059.990181][ T5103] RAX: 0000000000000000 RBX: 0000000000004f9b RCX: 00007f5c3e2a91b5
[ 2059.998144][ T5103] RDX: 00007ffe9e817dc0 RSI: 0000000000000000 RDI: 0000000000000000
[ 2060.006108][ T5103] RBP: 00007ffe9e817e4c R08: 0000000000000000 R09: 00007ffe9e89b0b0
[ 2060.014067][ T5103] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000032
[ 2060.022025][ T5103] R13: 00000000001f64ca R14: 00000000001f64ca R15: 0000000000000000
[ 2060.029998][ T5103]  </TASK>
11:32:02 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2060.084592][ T5103] memory: usage 307004kB, limit 307200kB, failcnt 68524
[ 2060.091894][ T5103] memory+swap: usage 307200kB, limit 9007199254740988kB, failcnt 0
[ 2060.123365][ T5103] kmem: usage 307000kB, limit 9007199254740988kB, failcnt 0
[ 2060.144528][ T5103] Memory cgroup stats for /syz3:
[ 2060.144767][ T5103] cache 4096
[ 2060.162381][ T5103] rss 0
[ 2060.166767][ T5103] rss_huge 0
[ 2060.171142][ T5103] shmem 0
[ 2060.174306][ T5103] mapped_file 0
[ 2060.178799][ T5103] dirty 4096
[ 2060.182007][ T5103] writeback 0
[ 2060.186324][ T5103] workingset_refault_anon 34711
11:32:02 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x884, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x84c, 0x2, [@TCA_FLOW_POLICE={0x848, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x6, 0x0, 0x0, 0x0, 0x0, 0x101}}}]}]}}, @TCA_RATE={0x6, 0x5, {0x0, 0x6}}]}, 0x884}}, 0x0)

[ 2060.191183][ T5103] workingset_refault_file 0
[ 2060.197874][ T5103] swap 200704
[ 2060.201498][ T5103] swapcached 0
[ 2060.205130][ T5103] pgpgin 243816
[ 2060.208798][ T5103] pgpgout 243815
[ 2060.212451][ T5103] pgfault 555172
[ 2060.216156][ T5103] pgmajfault 33181
[ 2060.219936][ T5103] inactive_anon 0
[ 2060.223798][ T5103] active_anon 0
[ 2060.227463][ T5103] inactive_file 4096
[ 2060.231665][ T5103] active_file 0
[ 2060.235544][ T5103] unevictable 0
[ 2060.239284][ T5103] hierarchical_memory_limit 314572800
[ 2060.245135][ T5103] hierarchical_memsw_limit 9223372036854771712
[ 2060.254617][ T5103] total_cache 4096
[ 2060.258529][ T5103] total_rss 0
[ 2060.261976][ T5103] total_rss_huge 0
[ 2060.273241][ T5103] total_shmem 0
[ 2060.277774][ T5103] total_mapped_file 0
[ 2060.281855][ T5103] total_dirty 4096
[ 2060.285824][ T5103] total_writeback 0
[ 2060.289776][ T5103] total_workingset_refault_anon 34711
[ 2060.297204][ T5103] total_workingset_refault_file 0
[ 2060.302389][ T5103] total_swap 200704
[ 2060.310121][ T5103] total_swapcached 0
[ 2060.324582][ T5103] total_pgpgin 243816
[ 2060.333536][ T5103] total_pgpgout 243815
11:32:02 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc010000]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2060.343957][ T5103] total_pgfault 555176
[ 2060.356026][ T5103] total_pgmajfault 33181
[ 2060.366478][ T5103] total_inactive_anon 0
[ 2060.377452][ T5103] total_active_anon 0
[ 2060.389034][ T5103] total_inactive_file 4096
[ 2060.416663][ T5103] total_active_file 0
[ 2060.420675][ T5103] total_unevictable 0
[ 2060.434174][ T5103] anon_cost 0
[ 2060.444007][ T5103] file_cost 0
[ 2060.474516][ T5103] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=5103,uid=0
[ 2060.507097][ T5103] Memory cgroup out of memory: Killed process 5103 (syz-executor.3) total-vm:50536kB, anon-rss:120kB, file-rss:8960kB, shmem-rss:0kB, UID:0 pgtables:76kB oom_score_adj:0
11:32:02 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

11:32:02 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x480, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x900]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}, @TCA_RATE={0x6}]}, 0x480}}, 0x0)

11:32:03 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000000]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

11:32:03 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

11:32:03 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x480, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa00]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}, @TCA_RATE={0x6}]}, 0x480}}, 0x0)

11:32:03 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x11000000]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

11:32:03 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x884, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x854, 0x2, [@TCA_FLOW_POLICE={0x850, 0xa, 0x0, 0x1, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x6, 0x0, 0x0, 0x0, 0x0, 0x101}}}]}]}}]}, 0x884}}, 0x0)

11:32:03 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

11:32:04 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x14000000]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

11:32:04 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

11:32:04 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x15000000]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

[ 2063.019304][ T1963] ¡: left allmulticast mode
[ 2063.024251][ T1963] team_slave_0: left allmulticast mode
[ 2063.042698][ T1963] team_slave_1: left allmulticast mode
[ 2063.055463][ T1963] ¡: left promiscuous mode
[ 2063.060003][ T1963] team_slave_0: left promiscuous mode
[ 2063.075125][ T1963] team_slave_1: left promiscuous mode
[ 2063.092875][ T1963] bridge0: port 3(¡) entered disabled state
[ 2063.125077][ T1963] bridge_slave_1: left allmulticast mode
[ 2063.130778][ T1963] bridge_slave_1: left promiscuous mode
[ 2063.140523][ T1963] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2063.169341][ T1963] bridge_slave_0: left allmulticast mode
[ 2063.180452][ T1963] bridge_slave_0: left promiscuous mode
[ 2063.189924][ T1963] bridge0: port 1(bridge_slave_0) entered disabled state
11:32:06 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

11:32:06 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38000000]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

11:32:06 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x884, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x854, 0x2, [@TCA_FLOW_POLICE={0x850, 0xa, 0x0, 0x1, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x6, 0x0, 0x0, 0x0, 0x0, 0x101}}}]}]}}]}, 0x884}}, 0x0)

[ 2065.967493][T17087] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 2065.977678][T17087] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 2065.985655][T17087] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 2065.994935][T17087] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 2066.002636][T17087] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[ 2066.010932][T17087] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 2066.307688][T17087] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 2066.317323][T17087] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 2066.326647][T17087] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 2066.337124][T17087] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 2066.345669][T17087] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[ 2066.352968][T17087] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
11:32:09 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x884, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x854, 0x2, [@TCA_FLOW_POLICE={0x850, 0xa, 0x0, 0x1, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x6, 0x0, 0x0, 0x0, 0x0, 0x101}}}]}]}}]}, 0x884}}, 0x0)

[ 2068.035007][ T5100] Bluetooth: hci1: command 0x0409 tx timeout
[ 2068.536965][ T5100] Bluetooth: hci3: command 0x0409 tx timeout
[ 2070.126528][ T5100] Bluetooth: hci1: command 0x041b tx timeout
[ 2070.595181][ T5100] Bluetooth: hci3: command 0x041b tx timeout
11:32:12 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x884, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x854, 0x2, [@TCA_FLOW_POLICE={0x850, 0xa, 0x0, 0x1, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x11]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x6, 0x0, 0x0, 0x0, 0x0, 0x101}}}]}]}}]}, 0x884}}, 0x0)

[ 2072.194578][ T5100] Bluetooth: hci1: command 0x040f tx timeout
[ 2072.684642][ T5100] Bluetooth: hci3: command 0x040f tx timeout
11:32:15 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x884, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x854, 0x2, [@TCA_FLOW_POLICE={0x850, 0xa, 0x0, 0x1, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x14]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x6, 0x0, 0x0, 0x0, 0x0, 0x101}}}]}]}}]}, 0x884}}, 0x0)

[ 2073.946359][ T5095] syz-executor.0 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[ 2073.966362][ T5095] CPU: 1 PID: 5095 Comm: syz-executor.0 Not tainted 6.8.0-rc6-syzkaller-01699-g65f5dd4f02a8 #0
[ 2073.976730][ T5095] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024
[ 2073.986793][ T5095] Call Trace:
[ 2073.990075][ T5095]  <TASK>
[ 2073.993013][ T5095]  dump_stack_lvl+0x1e7/0x2e0
[ 2073.997699][ T5095]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2074.002895][ T5095]  ? __pfx__printk+0x10/0x10
[ 2074.007489][ T5095]  ? ___ratelimit+0x4c4/0x670
[ 2074.012172][ T5095]  ? __pfx____ratelimit+0x10/0x10
[ 2074.017203][ T5095]  dump_header+0xda/0x6a0
[ 2074.021540][ T5095]  oom_kill_process+0x3a7/0x930
[ 2074.026401][ T5095]  out_of_memory+0xf67/0x1320
[ 2074.031088][ T5095]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 2074.036729][ T5095]  ? __pfx___mutex_lock+0x10/0x10
[ 2074.041755][ T5095]  ? __pfx_out_of_memory+0x10/0x10
[ 2074.046876][ T5095]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 2074.052424][ T5095]  ? __pfx_lock_release+0x10/0x10
[ 2074.057451][ T5095]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 2074.063522][ T5095]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 2074.068723][ T5095]  ? mem_cgroup_iter+0x422/0x560
[ 2074.073667][ T5095]  try_charge_memcg+0xda2/0x18a0
[ 2074.078608][ T5095]  ? mark_lock+0x9a/0x350
[ 2074.082955][ T5095]  ? __pfx_try_charge_memcg+0x10/0x10
[ 2074.088348][ T5095]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 2074.094501][ T5095]  charge_memcg+0xa2/0x160
[ 2074.098919][ T5095]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 2074.104987][ T5095]  __read_swap_cache_async+0x480/0x8b0
[ 2074.110459][ T5095]  ? mark_lock+0x9a/0x350
[ 2074.114801][ T5095]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 2074.120791][ T5095]  swap_cluster_readahead+0x67c/0x810
[ 2074.126188][ T5095]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 2074.132112][ T5095]  ? __pfx_lock_release+0x10/0x10
[ 2074.137142][ T5095]  ? xas_descend+0x37e/0x470
[ 2074.141741][ T5095]  swapin_readahead+0x1ea/0x1070
[ 2074.146677][ T5095]  ? filemap_get_entry+0x127/0x4e0
[ 2074.151802][ T5095]  ? __pfx_swapin_readahead+0x10/0x10
[ 2074.157179][ T5095]  ? __filemap_get_folio+0x935/0xbc0
[ 2074.162471][ T5095]  ? swap_cache_get_folio+0x9f/0x570
[ 2074.167766][ T5095]  do_swap_page+0x791/0x3f40
[ 2074.172360][ T5095]  ? rcu_is_watching+0x15/0xb0
[ 2074.177142][ T5095]  ? do_swap_page+0x154/0x3f40
[ 2074.181909][ T5095]  ? __pfx_do_swap_page+0x10/0x10
[ 2074.186935][ T5095]  ? pte_offset_map_nolock+0x137/0x1f0
[ 2074.192397][ T5095]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 2074.198206][ T5095]  ? __pfx_validate_chain+0x10/0x10
[ 2074.203416][ T5095]  __handle_mm_fault+0x15e8/0x72d0
[ 2074.208549][ T5095]  ? __pfx___handle_mm_fault+0x10/0x10
[ 2074.214019][ T5095]  ? mt_find+0x226/0x850
[ 2074.218268][ T5095]  ? __pfx_lock_release+0x10/0x10
[ 2074.223307][ T5095]  ? mt_find+0x62d/0x850
[ 2074.227567][ T5095]  ? mt_find+0x226/0x850
[ 2074.231844][ T5095]  ? find_vma+0x142/0x1c0
[ 2074.236178][ T5095]  ? __pfx_find_vma+0x10/0x10
[ 2074.240852][ T5095]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 2074.246837][ T5095]  handle_mm_fault+0x3c1/0x8a0
[ 2074.251610][ T5095]  exc_page_fault+0x2ad/0x870
[ 2074.256297][ T5095]  asm_exc_page_fault+0x26/0x30
[ 2074.261145][ T5095] RIP: 0010:__get_user_8+0x11/0x20
[ 2074.266256][ T5095] Code: ca c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 89 c2 48 c1 fa 3f 48 09 d0 0f 01 cb <48> 8b 10 31 c0 0f 01 ca c3 cc cc cc cc 66 90 90 90 90 90 90 90 90
[ 2074.274754][ T5100] Bluetooth: hci1: command 0x0419 tx timeout
[ 2074.285848][ T5095] RSP: 0018:ffffc900043efd98 EFLAGS: 00050202
[ 2074.285870][ T5095] RAX: 0000555556fd4da8 RBX: ffff88802b1632f8 RCX: ffffc900043efc03
[ 2074.285885][ T5095] RDX: 0000000000000000 RSI: ffffffff8baac7e0 RDI: ffffffff8bfe7820
[ 2074.313810][ T5095] RBP: ffffc900043efec8 R08: ffffffff8f85e9ef R09: 1ffffffff1f0bd3d
[ 2074.321784][ T5095] R10: dffffc0000000000 R11: fffffbfff1f0bd3e R12: ffffc900043efda0
[ 2074.329762][ T5095] R13: ffffc900043effd8 R14: dffffc0000000000 R15: ffff88802b161dc0
[ 2074.337746][ T5095]  __rseq_handle_notify_resume+0x158/0x1490
[ 2074.343649][ T5095]  ? __pfx___rseq_handle_notify_resume+0x10/0x10
[ 2074.349976][ T5095]  ? syscall_exit_to_user_mode+0xa2/0x360
[ 2074.355701][ T5095]  syscall_exit_to_user_mode+0x113/0x360
[ 2074.361337][ T5095]  do_syscall_64+0x108/0x240
[ 2074.365927][ T5095]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 2074.371816][ T5095] RIP: 0033:0x7f2719aa91b5
[ 2074.376231][ T5095] Code: 24 0c 89 3c 24 48 89 4c 24 18 e8 f6 b9 ff ff 4c 8b 54 24 18 48 8b 54 24 10 41 89 c0 8b 74 24 0c 8b 3c 24 b8 e6 00 00 00 0f 05 <44> 89 c7 48 89 04 24 e8 4f ba ff ff 48 8b 04 24 48 83 c4 28 f7 d8
[ 2074.395833][ T5095] RSP: 002b:00007ffce4e7fce0 EFLAGS: 00000293 ORIG_RAX: 00000000000000e6
[ 2074.404247][ T5095] RAX: 0000000000000000 RBX: 0000000000004eb3 RCX: 00007f2719aa91b5
[ 2074.412216][ T5095] RDX: 00007ffce4e7fd20 RSI: 0000000000000000 RDI: 0000000000000000
[ 2074.420180][ T5095] RBP: 00007ffce4e7fdac R08: 0000000000000000 R09: 00007ffce4f380b0
[ 2074.428152][ T5095] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000032
[ 2074.436118][ T5095] R13: 00000000001fa51e R14: 00000000001fa51e R15: 0000000000000000
[ 2074.444104][ T5095]  </TASK>
[ 2074.464311][ T5095] memory: usage 307184kB, limit 307200kB, failcnt 90181
[ 2074.471358][ T5095] memory+swap: usage 307448kB, limit 9007199254740988kB, failcnt 0
[ 2074.480777][ T5095] kmem: usage 307156kB, limit 9007199254740988kB, failcnt 0
[ 2074.488443][ T5095] Memory cgroup stats for /syz0:
[ 2074.488581][ T5095] cache 0
[ 2074.496844][ T5095] rss 40960
[ 2074.499959][ T5095] rss_huge 0
[ 2074.503147][ T5095] shmem 0
[ 2074.506775][ T5095] mapped_file 0
[ 2074.510247][ T5095] dirty 0
[ 2074.513188][ T5095] writeback 0
[ 2074.517411][ T5095] workingset_refault_anon 60892
[ 2074.522276][ T5095] workingset_refault_file 1
[ 2074.537351][ T5095] swap 286720
[ 2074.540655][ T5095] swapcached 0
[ 2074.544027][ T5095] pgpgin 267850
[ 2074.560643][ T5095] pgpgout 267840
[ 2074.564210][ T5095] pgfault 566499
[ 2074.575298][ T5095] pgmajfault 56947
[ 2074.579038][ T5095] inactive_anon 8192
[ 2074.582937][ T5095] active_anon 32768
[ 2074.600312][ T5095] inactive_file 0
[ 2074.603961][ T5095] active_file 0
[ 2074.614481][ T5095] unevictable 0
[ 2074.617957][ T5095] hierarchical_memory_limit 314572800
[ 2074.623330][ T5095] hierarchical_memsw_limit 9223372036854771712
[ 2074.646771][ T5095] total_cache 0
[ 2074.650255][ T5095] total_rss 40960
[ 2074.653894][ T5095] total_rss_huge 0
[ 2074.672280][ T5095] total_shmem 0
[ 2074.686815][ T5095] total_mapped_file 0
[ 2074.690815][ T5095] total_dirty 0
[ 2074.694278][ T5095] total_writeback 0
[ 2074.744477][ T5095] total_workingset_refault_anon 60892
[ 2074.749876][ T5095] total_workingset_refault_file 1
[ 2074.763629][ T5100] Bluetooth: hci3: command 0x0419 tx timeout
[ 2074.771098][ T5095] total_swap 286720
[ 2074.778264][ T5095] total_swapcached 0
[ 2074.782174][ T5095] total_pgpgin 267850
[ 2074.786666][ T5095] total_pgpgout 267840
[ 2074.790733][ T5095] total_pgfault 566499
[ 2074.797266][ T5095] total_pgmajfault 56947
[ 2074.801527][ T5095] total_inactive_anon 8192
[ 2074.806892][ T5095] total_active_anon 32768
[ 2074.811234][ T5095] total_inactive_file 0
[ 2074.816469][ T5095] total_active_file 0
[ 2074.820466][ T5095] total_unevictable 0
[ 2074.825345][ T5095] anon_cost 0
[ 2074.828650][ T5095] file_cost 0
[ 2074.831950][ T5095] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=17095,uid=0
[ 2074.856208][ T5095] Memory cgroup out of memory: Killed process 17095 (syz-executor.0) total-vm:54508kB, anon-rss:0kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:80kB oom_score_adj:1000
11:32:16 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x884, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x854, 0x2, [@TCA_FLOW_POLICE={0x850, 0xa, 0x0, 0x1, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x15]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x6, 0x0, 0x0, 0x0, 0x0, 0x101}}}]}]}}]}, 0x884}}, 0x0)

11:32:20 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x884, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x854, 0x2, [@TCA_FLOW_POLICE={0x850, 0xa, 0x0, 0x1, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x6, 0x0, 0x0, 0x0, 0x0, 0x101}}}]}]}}]}, 0x884}}, 0x0)

11:32:23 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x884, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x854, 0x2, [@TCA_FLOW_POLICE={0x850, 0xa, 0x0, 0x1, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2ac]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x6, 0x0, 0x0, 0x0, 0x0, 0x101}}}]}]}}]}, 0x884}}, 0x0)

11:32:26 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x884, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x854, 0x2, [@TCA_FLOW_POLICE={0x850, 0xa, 0x0, 0x1, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x300]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x6, 0x0, 0x0, 0x0, 0x0, 0x101}}}]}]}}]}, 0x884}}, 0x0)

11:32:29 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x884, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x854, 0x2, [@TCA_FLOW_POLICE={0x850, 0xa, 0x0, 0x1, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x500]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x6, 0x0, 0x0, 0x0, 0x0, 0x101}}}]}]}}]}, 0x884}}, 0x0)

11:32:32 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x884, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x854, 0x2, [@TCA_FLOW_POLICE={0x850, 0xa, 0x0, 0x1, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x600]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x6, 0x0, 0x0, 0x0, 0x0, 0x101}}}]}]}}]}, 0x884}}, 0x0)

11:32:35 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x884, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x854, 0x2, [@TCA_FLOW_POLICE={0x850, 0xa, 0x0, 0x1, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x700]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x6, 0x0, 0x0, 0x0, 0x0, 0x101}}}]}]}}]}, 0x884}}, 0x0)

11:32:36 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x900, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

11:32:36 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000000]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x478}}, 0x0)

11:32:38 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x884, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x854, 0x2, [@TCA_FLOW_POLICE={0x850, 0xa, 0x0, 0x1, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x850]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x6, 0x0, 0x0, 0x0, 0x0, 0x101}}}]}]}}]}, 0x884}}, 0x0)

[ 2096.501330][T17087] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[ 2096.517459][T17087] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[ 2096.534994][T17087] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[ 2096.545369][T17087] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[ 2096.553584][T17087] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[ 2096.565849][T17087] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[ 2096.881068][T17087] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[ 2096.890362][T17087] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[ 2096.907756][T17087] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[ 2096.929569][T17087] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[ 2096.938227][T17087] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3
[ 2096.947043][T17087] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[ 2098.597929][ T5100] Bluetooth: hci5: command 0x0409 tx timeout
[ 2098.994590][ T5100] Bluetooth: hci6: command 0x0409 tx timeout
[ 2099.235086][ T1238] ieee802154 phy0 wpan0: encryption failed: -22
[ 2099.241444][ T1238] ieee802154 phy1 wpan1: encryption failed: -22
11:32:41 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x884, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x854, 0x2, [@TCA_FLOW_POLICE={0x850, 0xa, 0x0, 0x1, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x900]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x6, 0x0, 0x0, 0x0, 0x0, 0x101}}}]}]}}]}, 0x884}}, 0x0)

[ 2100.674928][ T5100] Bluetooth: hci5: command 0x041b tx timeout
[ 2101.080201][ T5100] Bluetooth: hci6: command 0x041b tx timeout
11:32:44 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x884, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x854, 0x2, [@TCA_FLOW_POLICE={0x850, 0xa, 0x0, 0x1, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa00]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x6, 0x0, 0x0, 0x0, 0x0, 0x101}}}]}]}}]}, 0x884}}, 0x0)

[ 2102.755736][ T5100] Bluetooth: hci5: command 0x040f tx timeout
[ 2103.154876][ T5100] Bluetooth: hci6: command 0x040f tx timeout
[ 2104.834694][ T5100] Bluetooth: hci5: command 0x0419 tx timeout
[ 2105.235959][ T5100] Bluetooth: hci6: command 0x0419 tx timeout
11:32:47 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x884, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x854, 0x2, [@TCA_FLOW_POLICE={0x850, 0xa, 0x0, 0x1, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb00]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x6, 0x0, 0x0, 0x0, 0x0, 0x101}}}]}]}}]}, 0x884}}, 0x0)

11:32:50 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x884, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x854, 0x2, [@TCA_FLOW_POLICE={0x850, 0xa, 0x0, 0x1, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1100]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x6, 0x0, 0x0, 0x0, 0x0, 0x101}}}]}]}}]}, 0x884}}, 0x0)

11:32:53 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x884, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x854, 0x2, [@TCA_FLOW_POLICE={0x850, 0xa, 0x0, 0x1, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1400]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x6, 0x0, 0x0, 0x0, 0x0, 0x101}}}]}]}}]}, 0x884}}, 0x0)

11:32:56 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x884, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x854, 0x2, [@TCA_FLOW_POLICE={0x850, 0xa, 0x0, 0x1, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1500]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x6, 0x0, 0x0, 0x0, 0x0, 0x101}}}]}]}}]}, 0x884}}, 0x0)

11:32:59 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x884, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x854, 0x2, [@TCA_FLOW_POLICE={0x850, 0xa, 0x0, 0x1, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3800]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x6, 0x0, 0x0, 0x0, 0x0, 0x101}}}]}]}}]}, 0x884}}, 0x0)

11:33:03 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x884, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x854, 0x2, [@TCA_FLOW_POLICE={0x850, 0xa, 0x0, 0x1, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x6, 0x0, 0x0, 0x0, 0x0, 0x101}}}]}]}}]}, 0x884}}, 0x0)

11:33:06 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x884, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x854, 0x2, [@TCA_FLOW_POLICE={0x850, 0xa, 0x0, 0x1, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5008]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x6, 0x0, 0x0, 0x0, 0x0, 0x101}}}]}]}}]}, 0x884}}, 0x0)

[ 2124.579986][T17135] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2124.590377][T17135] CPU: 1 PID: 17135 Comm: syz-executor.0 Not tainted 6.8.0-rc6-syzkaller-01699-g65f5dd4f02a8 #0
[ 2124.600805][T17135] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024
[ 2124.610848][T17135] Call Trace:
[ 2124.614110][T17135]  <TASK>
[ 2124.617023][T17135]  dump_stack_lvl+0x1e7/0x2e0
[ 2124.621690][T17135]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2124.626866][T17135]  ? __pfx__printk+0x10/0x10
[ 2124.631441][T17135]  ? ___ratelimit+0x4c4/0x670
[ 2124.636103][T17135]  ? __pfx____ratelimit+0x10/0x10
[ 2124.641130][T17135]  dump_header+0xda/0x6a0
[ 2124.645482][T17135]  oom_kill_process+0x3a7/0x930
[ 2124.650358][T17135]  out_of_memory+0xf67/0x1320
[ 2124.655037][T17135]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 2124.660656][T17135]  ? __pfx___mutex_lock+0x10/0x10
[ 2124.665667][T17135]  ? __pfx_out_of_memory+0x10/0x10
[ 2124.670769][T17135]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 2124.676298][T17135]  ? __pfx_lock_release+0x10/0x10
[ 2124.681312][T17135]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 2124.687368][T17135]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 2124.692550][T17135]  ? mem_cgroup_iter+0x422/0x560
[ 2124.697496][T17135]  try_charge_memcg+0xda2/0x18a0
[ 2124.702478][T17135]  ? __pfx_try_charge_memcg+0x10/0x10
[ 2124.707857][T17135]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 2124.713560][T17135]  ? __pfx_lock_release+0x10/0x10
[ 2124.718571][T17135]  ? memcg_account_kmem+0x1e7/0x210
[ 2124.723759][T17135]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 2124.729548][T17135]  __memcg_kmem_charge_page+0xe1/0x250
[ 2124.734996][T17135]  memcg_charge_kernel_stack+0x3f8/0x550
[ 2124.740610][T17135]  dup_task_struct+0x15d/0x7d0
[ 2124.745376][T17135]  copy_process+0x5d5/0x3fc0
[ 2124.749980][T17135]  ? __might_fault+0xa9/0x120
[ 2124.754642][T17135]  ? __pfx_lock_release+0x10/0x10
[ 2124.759651][T17135]  ? __pfx_copy_process+0x10/0x10
[ 2124.764657][T17135]  ? __might_fault+0xc5/0x120
[ 2124.769318][T17135]  ? __asan_memset+0x23/0x50
[ 2124.773891][T17135]  kernel_clone+0x21d/0x8d0
[ 2124.778381][T17135]  ? __pfx_kernel_clone+0x10/0x10
[ 2124.783394][T17135]  __se_sys_clone3+0x2cb/0x350
[ 2124.788146][T17135]  ? __pfx___se_sys_clone3+0x10/0x10
[ 2124.793422][T17135]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 2124.799422][T17135]  ? exc_page_fault+0x587/0x870
[ 2124.804300][T17135]  ? do_syscall_64+0xb4/0x240
[ 2124.808999][T17135]  do_syscall_64+0xf9/0x240
[ 2124.813521][T17135]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 2124.819427][T17135] RIP: 0033:0x7f2719aa9b99
[ 2124.823856][T17135] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 2124.843475][T17135] RSP: 002b:00007ffce4e7f908 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 2124.851909][T17135] RAX: ffffffffffffffda RBX: 00007f2719a52270 RCX: 00007f2719aa9b99
[ 2124.859895][T17135] RDX: 00007f2719a52270 RSI: 0000000000000058 RDI: 00007ffce4e7f950
[ 2124.867874][T17135] RBP: 00007f271a78a6c0 R08: 00007f271a78a6c0 R09: 00007ffce4e7fa37
[ 2124.875830][T17135] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 2124.883779][T17135] R13: 000000000000000b R14: 00007ffce4e7f950 R15: 00007ffce4e7fa38
[ 2124.891742][T17135]  </TASK>
[ 2124.929299][T17135] memory: usage 307188kB, limit 307200kB, failcnt 170008
[ 2124.937276][T17135] memory+swap: usage 307456kB, limit 9007199254740988kB, failcnt 0
[ 2124.948004][T17135] kmem: usage 307152kB, limit 9007199254740988kB, failcnt 0
[ 2124.969030][T17135] Memory cgroup stats for /syz0:
[ 2124.969130][T17135] cache 0
[ 2124.977385][T17135] rss 28672
[ 2124.980494][T17135] rss_huge 0
[ 2124.983669][T17135] shmem 0
[ 2124.986786][T17135] mapped_file 0
[ 2124.990367][T17135] dirty 0
[ 2124.993285][T17135] writeback 0
[ 2124.996843][T17135] workingset_refault_anon 118651
[ 2125.001791][T17135] workingset_refault_file 1
[ 2125.006688][T17135] swap 245760
[ 2125.009983][T17135] swapcached 0
[ 2125.013354][T17135] pgpgin 325991
[ 2125.016997][T17135] pgpgout 325984
[ 2125.020546][T17135] pgfault 632849
[ 2125.024221][T17135] pgmajfault 106138
[ 2125.028552][T17135] inactive_anon 0
[ 2125.032196][T17135] active_anon 24576
[ 2125.036513][T17135] inactive_file 0
[ 2125.040155][T17135] active_file 0
[ 2125.043605][T17135] unevictable 0
[ 2125.047435][T17135] hierarchical_memory_limit 314572800
[ 2125.052790][T17135] hierarchical_memsw_limit 9223372036854771712
[ 2125.059378][T17135] total_cache 0
[ 2125.062835][T17135] total_rss 28672
[ 2125.067786][T17135] total_rss_huge 0
[ 2125.071529][T17135] total_shmem 0
[ 2125.077765][T17135] total_mapped_file 0
[ 2125.081754][T17135] total_dirty 0
[ 2125.085307][T17135] total_writeback 0
[ 2125.089111][T17135] total_workingset_refault_anon 118651
[ 2125.094641][T17135] total_workingset_refault_file 1
[ 2125.099660][T17135] total_swap 245760
[ 2125.103443][T17135] total_swapcached 0
[ 2125.107388][T17135] total_pgpgin 325991
[ 2125.111360][T17135] total_pgpgout 325984
[ 2125.115504][T17135] total_pgfault 632849
[ 2125.119565][T17135] total_pgmajfault 106138
[ 2125.123869][T17135] total_inactive_anon 0
[ 2125.128356][T17135] total_active_anon 24576
[ 2125.132701][T17135] total_inactive_file 0
[ 2125.137169][T17135] total_active_file 0
[ 2125.141153][T17135] total_unevictable 0
[ 2125.145180][T17135] anon_cost 0
[ 2125.148467][T17135] file_cost 0
[ 2125.151747][T17135] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=17135,uid=0
11:33:07 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x884, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x854, 0x2, [@TCA_FLOW_POLICE={0x850, 0xa, 0x0, 0x1, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8100]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x6, 0x0, 0x0, 0x0, 0x0, 0x101}}}]}]}}]}, 0x884}}, 0x0)

[ 2125.167312][T17135] Memory cgroup out of memory: Killed process 17135 (syz-executor.0) total-vm:54508kB, anon-rss:0kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:80kB oom_score_adj:1000
[ 2125.852982][ T5095] syz-executor.0 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[ 2125.864281][ T5095] CPU: 1 PID: 5095 Comm: syz-executor.0 Not tainted 6.8.0-rc6-syzkaller-01699-g65f5dd4f02a8 #0
[ 2125.874626][ T5095] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024
[ 2125.884676][ T5095] Call Trace:
[ 2125.887946][ T5095]  <TASK>
[ 2125.890867][ T5095]  dump_stack_lvl+0x1e7/0x2e0
[ 2125.895543][ T5095]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2125.900730][ T5095]  ? __pfx__printk+0x10/0x10
[ 2125.905313][ T5095]  ? ___ratelimit+0x4c4/0x670
[ 2125.909989][ T5095]  ? __pfx____ratelimit+0x10/0x10
[ 2125.915017][ T5095]  dump_header+0xda/0x6a0
[ 2125.919349][ T5095]  oom_kill_process+0x3a7/0x930
[ 2125.924201][ T5095]  out_of_memory+0xf67/0x1320
[ 2125.928876][ T5095]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 2125.934504][ T5095]  ? __pfx___mutex_lock+0x10/0x10
[ 2125.939524][ T5095]  ? __pfx_out_of_memory+0x10/0x10
[ 2125.944638][ T5095]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 2125.950174][ T5095]  ? __pfx_lock_release+0x10/0x10
[ 2125.955202][ T5095]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 2125.961265][ T5095]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 2125.966458][ T5095]  ? mem_cgroup_iter+0x422/0x560
[ 2125.971393][ T5095]  try_charge_memcg+0xda2/0x18a0
[ 2125.976321][ T5095]  ? mark_lock+0x9a/0x350
[ 2125.980657][ T5095]  ? __pfx_try_charge_memcg+0x10/0x10
[ 2125.986043][ T5095]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 2125.992190][ T5095]  charge_memcg+0xa2/0x160
[ 2125.996599][ T5095]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 2126.002660][ T5095]  __read_swap_cache_async+0x480/0x8b0
[ 2126.008114][ T5095]  ? mark_lock+0x9a/0x350
[ 2126.012441][ T5095]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 2126.018430][ T5095]  swap_cluster_readahead+0x67c/0x810
[ 2126.023804][ T5095]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 2126.029695][ T5095]  ? __pfx_lock_release+0x10/0x10
[ 2126.034713][ T5095]  ? xas_descend+0x37e/0x470
[ 2126.039305][ T5095]  swapin_readahead+0x1ea/0x1070
[ 2126.044280][ T5095]  ? filemap_get_entry+0x127/0x4e0
[ 2126.049414][ T5095]  ? __pfx_swapin_readahead+0x10/0x10
[ 2126.054797][ T5095]  ? __filemap_get_folio+0x935/0xbc0
[ 2126.060090][ T5095]  ? swap_cache_get_folio+0x9f/0x570
[ 2126.065386][ T5095]  do_swap_page+0x791/0x3f40
[ 2126.069979][ T5095]  ? rcu_is_watching+0x15/0xb0
[ 2126.074748][ T5095]  ? do_swap_page+0x154/0x3f40
[ 2126.079517][ T5095]  ? __pfx_do_swap_page+0x10/0x10
[ 2126.084543][ T5095]  ? pte_offset_map_nolock+0x137/0x1f0
[ 2126.089998][ T5095]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 2126.095799][ T5095]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 2126.102127][ T5095]  __handle_mm_fault+0x15e8/0x72d0
[ 2126.107259][ T5095]  ? reacquire_held_locks+0x3eb/0x690
[ 2126.112626][ T5095]  ? __pfx___handle_mm_fault+0x10/0x10
[ 2126.118091][ T5095]  ? __pfx_reacquire_held_locks+0x10/0x10
[ 2126.123817][ T5095]  ? mtree_range_walk+0x6fd/0x8e0
[ 2126.128837][ T5095]  ? lock_vma_under_rcu+0x18a/0x730
[ 2126.134032][ T5095]  ? __pfx_lock_release+0x10/0x10
[ 2126.139050][ T5095]  ? lock_vma_under_rcu+0x2f9/0x730
[ 2126.144348][ T5095]  ? lock_vma_under_rcu+0x18a/0x730
[ 2126.149544][ T5095]  ? __pfx_lock_vma_under_rcu+0x10/0x10
[ 2126.155089][ T5095]  handle_mm_fault+0x3c1/0x8a0
[ 2126.159858][ T5095]  exc_page_fault+0x456/0x870
[ 2126.164557][ T5095]  asm_exc_page_fault+0x26/0x30
[ 2126.169409][ T5095] RIP: 0033:0x7f2719a7a780
[ 2126.173816][ T5095] Code: ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 31 c9 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 <80> 3d 71 57 10 00 00 49 89 ca 74 14 b8 3d 00 00 00 0f 05 48 3d 00
[ 2126.193425][ T5095] RSP: 002b:00007ffce4e7fd48 EFLAGS: 00010246
[ 2126.199494][ T5095] RAX: 0000000000000275 RBX: 0000000000004ed7 RCX: 0000000000000000
[ 2126.207454][ T5095] RDX: 0000000040000001 RSI: 00007ffce4e7fdac RDI: 00000000ffffffff
[ 2126.215417][ T5095] RBP: 00007ffce4e7fdac R08: 0000000000000010 R09: 00007ffce4f380b0
[ 2126.223381][ T5095] R10: 00007ffce4f38080 R11: 00000000000647c6 R12: 0000000000000032
[ 2126.231346][ T5095] R13: 0000000000206d7e R14: 0000000000206d7e R15: 0000000000000000
[ 2126.239325][ T5095]  </TASK>
[ 2126.251689][ T5095] memory: usage 307200kB, limit 307200kB, failcnt 171497
[ 2126.276612][ T5095] memory+swap: usage 307436kB, limit 9007199254740988kB, failcnt 0
[ 2126.289043][ T5095] kmem: usage 307180kB, limit 9007199254740988kB, failcnt 0
[ 2126.304506][ T5095] Memory cgroup stats for /syz0:
[ 2126.304649][ T5095] cache 0
[ 2126.312539][ T5095] rss 20480
[ 2126.322797][ T5095] rss_huge 0
[ 2126.326091][ T5095] shmem 0
[ 2126.329038][ T5095] mapped_file 0
[ 2126.332510][ T5095] dirty 0
[ 2126.350372][ T5095] writeback 0
[ 2126.353681][ T5095] workingset_refault_anon 119504
[ 2126.369539][ T5095] workingset_refault_file 1
[ 2126.374068][ T5095] swap 241664
[ 2126.378572][ T5095] swapcached 0
[ 2126.381963][ T5095] pgpgin 326869
[ 2126.389856][ T5095] pgpgout 326864
[ 2126.393424][ T5095] pgfault 634012
[ 2126.405542][ T5095] pgmajfault 106843
[ 2126.409372][ T5095] inactive_anon 0
[ 2126.413014][ T5095] active_anon 20480
[ 2126.423260][ T5095] inactive_file 0
[ 2126.428305][ T5095] active_file 0
[ 2126.431786][ T5095] unevictable 0
[ 2126.449181][ T5095] hierarchical_memory_limit 314572800
[ 2126.455187][ T5095] hierarchical_memsw_limit 9223372036854771712
[ 2126.461357][ T5095] total_cache 0
[ 2126.465023][ T5095] total_rss 20480
[ 2126.468664][ T5095] total_rss_huge 0
[ 2126.472382][ T5095] total_shmem 0
[ 2126.477348][ T5095] total_mapped_file 0
[ 2126.481345][ T5095] total_dirty 0
[ 2126.484954][ T5095] total_writeback 0
[ 2126.488773][ T5095] total_workingset_refault_anon 119504
[ 2126.494242][ T5095] total_workingset_refault_file 1
[ 2126.508907][ T5095] total_swap 241664
[ 2126.512746][ T5095] total_swapcached 0
[ 2126.516798][ T5095] total_pgpgin 326869
[ 2126.520788][ T5095] total_pgpgout 326864
[ 2126.524994][ T5095] total_pgfault 634012
[ 2126.529282][ T5095] total_pgmajfault 106843
[ 2126.533622][ T5095] total_inactive_anon 0
[ 2126.537990][ T5095] total_active_anon 20480
[ 2126.542332][ T5095] total_inactive_file 0
[ 2126.546717][ T5095] total_active_file 0
[ 2126.550715][ T5095] total_unevictable 0
[ 2126.555020][ T5095] anon_cost 0
[ 2126.558320][ T5095] file_cost 0
[ 2126.561615][ T5095] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=17137,uid=0
11:33:08 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x884, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x854, 0x2, [@TCA_FLOW_POLICE={0x850, 0xa, 0x0, 0x1, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xac02]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x6, 0x0, 0x0, 0x0, 0x0, 0x101}}}]}]}}]}, 0x884}}, 0x0)

[ 2126.586467][ T5095] Memory cgroup out of memory: Killed process 17137 (syz-executor.0) total-vm:54508kB, anon-rss:0kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:80kB oom_score_adj:1000
[ 2126.850409][T17139] syz-executor.0 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[ 2126.870688][T17139] CPU: 0 PID: 17139 Comm: syz-executor.0 Not tainted 6.8.0-rc6-syzkaller-01699-g65f5dd4f02a8 #0
[ 2126.881144][T17139] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024
[ 2126.891214][T17139] Call Trace:
[ 2126.894509][T17139]  <TASK>
[ 2126.897451][T17139]  dump_stack_lvl+0x1e7/0x2e0
[ 2126.902157][T17139]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2126.907378][T17139]  ? __pfx__printk+0x10/0x10
[ 2126.911989][T17139]  ? ___ratelimit+0x4c4/0x670
[ 2126.916698][T17139]  ? __pfx____ratelimit+0x10/0x10
[ 2126.921757][T17139]  dump_header+0xda/0x6a0
[ 2126.926121][T17139]  oom_kill_process+0x3a7/0x930
[ 2126.931001][T17139]  out_of_memory+0xf67/0x1320
[ 2126.935706][T17139]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 2126.941362][T17139]  ? __pfx___mutex_lock+0x10/0x10
[ 2126.946422][T17139]  ? __pfx_out_of_memory+0x10/0x10
[ 2126.951567][T17139]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 2126.957136][T17139]  ? __pfx_lock_release+0x10/0x10
[ 2126.962185][T17139]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 2126.968279][T17139]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 2126.973497][T17139]  ? mem_cgroup_iter+0x422/0x560
[ 2126.978459][T17139]  try_charge_memcg+0xda2/0x18a0
[ 2126.983413][T17139]  ? mark_lock+0x9a/0x350
[ 2126.987783][T17139]  ? __pfx_try_charge_memcg+0x10/0x10
[ 2126.993210][T17139]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 2126.999383][T17139]  charge_memcg+0xa2/0x160
[ 2127.003821][T17139]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 2127.009910][T17139]  __read_swap_cache_async+0x480/0x8b0
[ 2127.015396][T17139]  ? mark_lock+0x9a/0x350
[ 2127.019753][T17139]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 2127.025769][T17139]  swap_cluster_readahead+0x67c/0x810
[ 2127.031178][T17139]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 2127.037103][T17139]  ? __pfx_lock_release+0x10/0x10
[ 2127.042150][T17139]  ? xas_descend+0x37e/0x470
[ 2127.046773][T17139]  swapin_readahead+0x1ea/0x1070
[ 2127.051725][T17139]  ? filemap_get_entry+0x127/0x4e0
[ 2127.056877][T17139]  ? __pfx_swapin_readahead+0x10/0x10
[ 2127.062275][T17139]  ? __filemap_get_folio+0x935/0xbc0
[ 2127.067641][T17139]  ? swap_cache_get_folio+0x9f/0x570
[ 2127.073025][T17139]  do_swap_page+0x791/0x3f40
[ 2127.077647][T17139]  ? rcu_is_watching+0x15/0xb0
[ 2127.082449][T17139]  ? do_swap_page+0x154/0x3f40
[ 2127.087232][T17139]  ? __pfx_do_swap_page+0x10/0x10
[ 2127.092279][T17139]  ? pte_offset_map_nolock+0x137/0x1f0
[ 2127.097765][T17139]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 2127.103602][T17139]  __handle_mm_fault+0x15e8/0x72d0
[ 2127.108767][T17139]  ? reacquire_held_locks+0x3eb/0x690
[ 2127.114159][T17139]  ? __pfx___handle_mm_fault+0x10/0x10
[ 2127.119650][T17139]  ? __pfx_reacquire_held_locks+0x10/0x10
[ 2127.125404][T17139]  ? mtree_range_walk+0x6fd/0x8e0
[ 2127.130450][T17139]  ? lock_vma_under_rcu+0x18a/0x730
[ 2127.135680][T17139]  ? __pfx_lock_release+0x10/0x10
[ 2127.140721][T17139]  ? lock_vma_under_rcu+0x2f9/0x730
[ 2127.145962][T17139]  ? lock_vma_under_rcu+0x18a/0x730
[ 2127.151185][T17139]  ? __pfx_lock_vma_under_rcu+0x10/0x10
[ 2127.156756][T17139]  handle_mm_fault+0x3c1/0x8a0
[ 2127.161551][T17139]  exc_page_fault+0x456/0x870
[ 2127.166264][T17139]  asm_exc_page_fault+0x26/0x30
[ 2127.171128][T17139] RIP: 0033:0x7f2719a37463
[ 2127.175561][T17139] Code: 00 4c 89 f1 4c 89 fa 48 89 de e8 88 b2 01 00 85 c0 75 c4 4c 8b 4c 24 50 48 89 df 4c 89 4c 24 58 e8 02 ab 01 00 4c 8b 4c 24 58 <41> 8b 01 85 c0 0f 84 dd fe ff ff 66 90 48 63 c5 4d 89 f7 4c 89 e3
[ 2127.195179][T17139] RSP: 002b:00007ffce4e7fb20 EFLAGS: 00010246
[ 2127.201266][T17139] RAX: 0000000000000000 RBX: 00007ffce4e7fc80 RCX: 00007f2719a52c17
[ 2127.209253][T17139] RDX: 0000000000000000 RSI: 00007ffce4e7fa38 RDI: 00007ffce4e7fc80
[ 2127.217240][T17139] RBP: 0000000000000000 R08: 0000000000000000 R09: 00007f2719babf8c
[ 2127.225224][T17139] R10: 0000000000000008 R11: 0000000000000246 R12: 00007f2719babf80
[ 2127.233207][T17139] R13: 0000000000000064 R14: 00007f2719babf80 R15: 00007f2719a34bb0
[ 2127.241194][T17139]  </TASK>
[ 2127.251692][T17139] memory: usage 307196kB, limit 307200kB, failcnt 173180
[ 2127.258842][T17139] memory+swap: usage 307396kB, limit 9007199254740988kB, failcnt 0
[ 2127.271386][T17139] kmem: usage 307176kB, limit 9007199254740988kB, failcnt 0
[ 2127.278935][T17139] Memory cgroup stats for /syz0:
[ 2127.279058][T17139] cache 0
[ 2127.287194][T17139] rss 0
[ 2127.289965][T17139] rss_huge 0
[ 2127.293155][T17139] shmem 0
[ 2127.296138][T17139] mapped_file 0
[ 2127.299598][T17139] dirty 0
[ 2127.302517][T17139] writeback 0
[ 2127.314236][T17139] workingset_refault_anon 120128
[ 2127.319984][T17139] workingset_refault_file 1
[ 2127.324526][T17139] swap 217088
[ 2127.327818][T17139] swapcached 0
[ 2127.331196][T17139] pgpgin 327503
[ 2127.334754][T17139] pgpgout 327503
[ 2127.338312][T17139] pgfault 634733
[ 2127.341859][T17139] pgmajfault 107262
[ 2127.346084][T17139] inactive_anon 0
[ 2127.349731][T17139] active_anon 0
[ 2127.353186][T17139] inactive_file 0
[ 2127.357196][T17139] active_file 0
[ 2127.360788][T17139] unevictable 0
[ 2127.364248][T17139] hierarchical_memory_limit 314572800
[ 2127.370079][T17139] hierarchical_memsw_limit 9223372036854771712
[ 2127.376499][T17139] total_cache 0
[ 2127.379964][T17139] total_rss 0
[ 2127.383251][T17139] total_rss_huge 0
[ 2127.387249][T17139] total_shmem 0
[ 2127.390719][T17139] total_mapped_file 0
[ 2127.395148][T17139] total_dirty 0
[ 2127.398619][T17139] total_writeback 0
[ 2127.402419][T17139] total_workingset_refault_anon 120128
[ 2127.410793][T17139] total_workingset_refault_file 1
[ 2127.416061][T17139] total_swap 217088
[ 2127.419880][T17139] total_swapcached 0
[ 2127.423768][T17139] total_pgpgin 327503
[ 2127.428055][T17139] total_pgpgout 327503
[ 2127.432124][T17139] total_pgfault 634733
[ 2127.436361][T17139] total_pgmajfault 107262
[ 2127.440687][T17139] total_inactive_anon 0
[ 2127.445090][T17139] total_active_anon 0
[ 2127.449180][T17139] total_inactive_file 0
11:33:09 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x884, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x854, 0x2, [@TCA_FLOW_POLICE={0x850, 0xa, 0x0, 0x1, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf2ff]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x6, 0x0, 0x0, 0x0, 0x0, 0x101}}}]}]}}]}, 0x884}}, 0x0)

[ 2127.453318][T17139] total_active_file 0
[ 2127.457573][T17139] total_unevictable 0
[ 2127.461567][T17139] anon_cost 0
[ 2127.466620][T17139] file_cost 0
[ 2127.469937][T17139] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=17139,uid=0
[ 2127.485789][T17139] Memory cgroup out of memory: Killed process 17139 (syz-executor.0) total-vm:54508kB, anon-rss:0kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:80kB oom_score_adj:1000
[ 2127.730124][T17142] syz-executor.0 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[ 2127.742491][T17142] CPU: 1 PID: 17142 Comm: syz-executor.0 Not tainted 6.8.0-rc6-syzkaller-01699-g65f5dd4f02a8 #0
[ 2127.752917][T17142] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024
[ 2127.762964][T17142] Call Trace:
[ 2127.766237][T17142]  <TASK>
[ 2127.769157][T17142]  dump_stack_lvl+0x1e7/0x2e0
[ 2127.773832][T17142]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2127.779025][T17142]  ? __pfx__printk+0x10/0x10
[ 2127.783608][T17142]  ? ___ratelimit+0x4c4/0x670
[ 2127.788286][T17142]  ? __pfx____ratelimit+0x10/0x10
[ 2127.793307][T17142]  dump_header+0xda/0x6a0
[ 2127.797637][T17142]  oom_kill_process+0x3a7/0x930
[ 2127.802488][T17142]  out_of_memory+0xf67/0x1320
[ 2127.807166][T17142]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 2127.812796][T17142]  ? __pfx___mutex_lock+0x10/0x10
[ 2127.817814][T17142]  ? __pfx_out_of_memory+0x10/0x10
[ 2127.822928][T17142]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 2127.828465][T17142]  ? __pfx_lock_release+0x10/0x10
[ 2127.833488][T17142]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 2127.839553][T17142]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 2127.844750][T17142]  ? mem_cgroup_iter+0x422/0x560
[ 2127.849690][T17142]  try_charge_memcg+0xda2/0x18a0
[ 2127.854621][T17142]  ? mark_lock+0x9a/0x350
[ 2127.858959][T17142]  ? __pfx_try_charge_memcg+0x10/0x10
[ 2127.864347][T17142]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 2127.870509][T17142]  charge_memcg+0xa2/0x160
[ 2127.874938][T17142]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 2127.881000][T17142]  __read_swap_cache_async+0x480/0x8b0
[ 2127.886456][T17142]  ? mark_lock+0x9a/0x350
[ 2127.890784][T17142]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 2127.896770][T17142]  swap_cluster_readahead+0x67c/0x810
[ 2127.902152][T17142]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 2127.908049][T17142]  ? __pfx_lock_release+0x10/0x10
[ 2127.913072][T17142]  ? xas_descend+0x37e/0x470
[ 2127.917667][T17142]  swapin_readahead+0x1ea/0x1070
[ 2127.922597][T17142]  ? filemap_get_entry+0x127/0x4e0
[ 2127.927716][T17142]  ? __pfx_swapin_readahead+0x10/0x10
[ 2127.933085][T17142]  ? __filemap_get_folio+0x935/0xbc0
[ 2127.938369][T17142]  ? swap_cache_get_folio+0x9f/0x570
[ 2127.943651][T17142]  do_swap_page+0x791/0x3f40
[ 2127.948235][T17142]  ? __lock_acquire+0x1345/0x1fd0
[ 2127.953255][T17142]  ? rcu_is_watching+0x15/0xb0
[ 2127.958030][T17142]  ? do_swap_page+0x154/0x3f40
[ 2127.962792][T17142]  ? __pfx_do_swap_page+0x10/0x10
[ 2127.967812][T17142]  ? pte_offset_map_nolock+0x137/0x1f0
[ 2127.973286][T17142]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 2127.979097][T17142]  ? __pfx_validate_chain+0x10/0x10
[ 2127.984293][T17142]  __handle_mm_fault+0x15e8/0x72d0
[ 2127.989424][T17142]  ? __pfx___handle_mm_fault+0x10/0x10
[ 2127.994884][T17142]  ? mt_find+0x226/0x850
[ 2127.999123][T17142]  ? __pfx_lock_release+0x10/0x10
[ 2128.004156][T17142]  ? mt_find+0x62d/0x850
[ 2128.008397][T17142]  ? mt_find+0x226/0x850
[ 2128.012652][T17142]  ? find_vma+0x142/0x1c0
[ 2128.016975][T17142]  ? __pfx_find_vma+0x10/0x10
[ 2128.021644][T17142]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 2128.027622][T17142]  handle_mm_fault+0x3c1/0x8a0
[ 2128.032403][T17142]  exc_page_fault+0x2ad/0x870
[ 2128.037090][T17142]  asm_exc_page_fault+0x26/0x30
[ 2128.041950][T17142] RIP: 0010:__get_user_8+0x11/0x20
[ 2128.047071][T17142] Code: ca c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 89 c2 48 c1 fa 3f 48 09 d0 0f 01 cb <48> 8b 10 31 c0 0f 01 ca c3 cc cc cc cc 66 90 90 90 90 90 90 90 90
[ 2128.066676][T17142] RSP: 0000:ffffc900033cfd78 EFLAGS: 00050206
[ 2128.072737][T17142] RAX: 00007f271a78afe8 RBX: ffff8880204f6e78 RCX: ffffc900033cfc03
[ 2128.080700][T17142] RDX: 0000000000000000 RSI: ffffffff8baac7e0 RDI: ffffffff8bfe7820
[ 2128.088661][T17142] RBP: ffffc900033cfec0 R08: ffffffff8f85e9ef R09: 1ffffffff1f0bd3d
[ 2128.096623][T17142] R10: dffffc0000000000 R11: fffffbfff1f0bd3e R12: ffffc900033cfd80
[ 2128.104588][T17142] R13: ffffc900033cffd8 R14: dffffc0000000000 R15: ffff8880204f5940
[ 2128.112569][T17142]  __rseq_handle_notify_resume+0x158/0x1490
[ 2128.118470][T17142]  ? __pfx___rseq_handle_notify_resume+0x10/0x10
[ 2128.124802][T17142]  ? irqentry_exit_to_user_mode+0x52/0x270
[ 2128.130607][T17142]  irqentry_exit_to_user_mode+0xbb/0x270
[ 2128.136328][T17142]  exc_page_fault+0x587/0x870
[ 2128.141007][T17142]  asm_exc_page_fault+0x26/0x30
[ 2128.145859][T17142] RIP: 0033:0x7f2719a34c30
[ 2128.150284][T17142] Code: 8b 45 0c 85 c0 75 39 b9 40 42 0f 00 ba 81 00 00 00 4c 89 e6 41 c7 04 24 01 00 00 00 bf ca 00 00 00 31 c0 e8 62 91 04 00 eb c1 <0f> b6 35 79 0a ca 00 8b bf 98 00 00 00 31 d2 e8 8c 6e ff ff eb 83
[ 2128.169887][T17142] RSP: 002b:00007f271a78a180 EFLAGS: 00010202
[ 2128.175950][T17142] RAX: 0000000000000001 RBX: 00007f271a78a6c0 RCX: 00007f2719a52386
[ 2128.183911][T17142] RDX: 0000000000000000 RSI: 00007f271a78afb0 RDI: 00007f2719babf80
[ 2128.191872][T17142] RBP: 00007f2719babf80 R08: 0000000000000000 R09: 00007ffce4e7fa37
[ 2128.199833][T17142] R10: 0000000000000008 R11: 0000000000000246 R12: ffffffffffffffb0
[ 2128.207791][T17142] R13: 000000000000000b R14: 00007ffce4e7f950 R15: 00007ffce4e7fa38
[ 2128.215779][T17142]  </TASK>
[ 2128.250446][T17142] memory: usage 307200kB, limit 307200kB, failcnt 173756
[ 2128.258130][T17142] memory+swap: usage 307408kB, limit 9007199254740988kB, failcnt 0
[ 2128.270915][T17142] kmem: usage 307196kB, limit 9007199254740988kB, failcnt 0
[ 2128.278407][T17142] Memory cgroup stats for /syz0:
[ 2128.278525][T17142] cache 0
[ 2128.292238][T17142] rss 0
[ 2128.295250][T17142] rss_huge 0
[ 2128.298470][T17142] shmem 0
[ 2128.301416][T17142] mapped_file 0
[ 2128.310746][T17142] dirty 0
[ 2128.313703][T17142] writeback 0
[ 2128.317273][T17142] workingset_refault_anon 120288
[ 2128.322251][T17142] workingset_refault_file 1
[ 2128.331344][T17142] swap 217088
[ 2128.334842][T17142] swapcached 0
[ 2128.338228][T17142] pgpgin 327673
[ 2128.341692][T17142] pgpgout 327673
[ 2128.351685][T17142] pgfault 634953
[ 2128.385345][T17142] pgmajfault 107385
[ 2128.389185][T17142] inactive_anon 0
[ 2128.392827][T17142] active_anon 0
[ 2128.401057][T17142] inactive_file 0
[ 2128.406071][T17142] active_file 0
[ 2128.409549][T17142] unevictable 0
[ 2128.413017][T17142] hierarchical_memory_limit 314572800
[ 2128.423169][T17142] hierarchical_memsw_limit 9223372036854771712
[ 2128.430647][T17142] total_cache 0
[ 2128.434125][T17142] total_rss 0
[ 2128.447063][T17142] total_rss_huge 0
[ 2128.450797][T17142] total_shmem 0
[ 2128.454254][T17142] total_mapped_file 0
[ 2128.461443][T17142] total_dirty 0
[ 2128.468416][T17142] total_writeback 0
[ 2128.472245][T17142] total_workingset_refault_anon 120288
[ 2128.480183][T17142] total_workingset_refault_file 1
[ 2128.488742][T17142] total_swap 217088
[ 2128.492576][T17142] total_swapcached 0
[ 2128.498971][T17142] total_pgpgin 327673
[ 2128.502978][T17142] total_pgpgout 327673
[ 2128.510231][T17142] total_pgfault 634953
[ 2128.514306][T17142] total_pgmajfault 107385
[ 2128.521237][T17142] total_inactive_anon 0
[ 2128.529000][T17142] total_active_anon 0
[ 2128.533001][T17142] total_inactive_file 0
[ 2128.539649][T17142] total_active_file 0
[ 2128.543702][T17142] total_unevictable 0
[ 2128.551266][T17142] anon_cost 0
[ 2128.556991][T17142] file_cost 0
[ 2128.560296][T17142] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=17141,uid=0
11:33:10 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x884, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x854, 0x2, [@TCA_FLOW_POLICE={0x850, 0xa, 0x0, 0x1, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff2]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x6, 0x0, 0x0, 0x0, 0x0, 0x101}}}]}]}}]}, 0x884}}, 0x0)

[ 2128.581514][T17142] Memory cgroup out of memory: Killed process 17141 (syz-executor.0) total-vm:54508kB, anon-rss:0kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:80kB oom_score_adj:1000
[ 2128.721515][T17143] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2128.732149][T17143] CPU: 1 PID: 17143 Comm: syz-executor.0 Not tainted 6.8.0-rc6-syzkaller-01699-g65f5dd4f02a8 #0
[ 2128.742580][T17143] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024
[ 2128.752640][T17143] Call Trace:
[ 2128.755917][T17143]  <TASK>
[ 2128.758851][T17143]  dump_stack_lvl+0x1e7/0x2e0
[ 2128.763514][T17143]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2128.768696][T17143]  ? __pfx__printk+0x10/0x10
[ 2128.773270][T17143]  ? ___ratelimit+0x4c4/0x670
[ 2128.777952][T17143]  ? __pfx____ratelimit+0x10/0x10
[ 2128.782993][T17143]  dump_header+0xda/0x6a0
[ 2128.787317][T17143]  oom_kill_process+0x3a7/0x930
[ 2128.792157][T17143]  out_of_memory+0xf67/0x1320
[ 2128.796834][T17143]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 2128.802470][T17143]  ? __pfx___mutex_lock+0x10/0x10
[ 2128.807485][T17143]  ? __pfx_out_of_memory+0x10/0x10
[ 2128.812591][T17143]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 2128.818122][T17143]  ? __pfx_lock_release+0x10/0x10
[ 2128.823134][T17143]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 2128.829191][T17143]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 2128.834374][T17143]  ? mem_cgroup_iter+0x422/0x560
[ 2128.839313][T17143]  try_charge_memcg+0xda2/0x18a0
[ 2128.844247][T17143]  ? __pfx_try_charge_memcg+0x10/0x10
[ 2128.849604][T17143]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 2128.855320][T17143]  ? __pfx_lock_release+0x10/0x10
[ 2128.860350][T17143]  ? memcg_account_kmem+0x1e7/0x210
[ 2128.865556][T17143]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 2128.871367][T17143]  __memcg_kmem_charge_page+0xe1/0x250
[ 2128.876830][T17143]  memcg_charge_kernel_stack+0x37e/0x550
[ 2128.882467][T17143]  dup_task_struct+0x15d/0x7d0
[ 2128.887232][T17143]  copy_process+0x5d5/0x3fc0
[ 2128.891833][T17143]  ? __might_fault+0xa9/0x120
[ 2128.896506][T17143]  ? __pfx_lock_release+0x10/0x10
[ 2128.901537][T17143]  ? __lock_acquire+0x1345/0x1fd0
[ 2128.906554][T17143]  ? __pfx_copy_process+0x10/0x10
[ 2128.911563][T17143]  ? __might_fault+0xc5/0x120
[ 2128.916238][T17143]  ? __asan_memset+0x23/0x50
[ 2128.920833][T17143]  kernel_clone+0x21d/0x8d0
[ 2128.925341][T17143]  ? __pfx_kernel_clone+0x10/0x10
[ 2128.930371][T17143]  ? __pfx_lock_release+0x10/0x10
[ 2128.935401][T17143]  __se_sys_clone3+0x2cb/0x350
[ 2128.940171][T17143]  ? __might_fault+0xa9/0x120
[ 2128.944846][T17143]  ? __pfx___se_sys_clone3+0x10/0x10
[ 2128.950134][T17143]  ? rcu_is_watching+0x15/0xb0
[ 2128.954909][T17143]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 2128.960900][T17143]  ? exc_page_fault+0x587/0x870
[ 2128.965752][T17143]  ? do_syscall_64+0xb4/0x240
[ 2128.970433][T17143]  do_syscall_64+0xf9/0x240
[ 2128.974937][T17143]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 2128.980830][T17143] RIP: 0033:0x7f2719aa9b99
[ 2128.985240][T17143] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 2129.004856][T17143] RSP: 002b:00007ffce4e7f908 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 2129.013274][T17143] RAX: ffffffffffffffda RBX: 00007f2719a52270 RCX: 00007f2719aa9b99
[ 2129.021230][T17143] RDX: 00007f2719a52270 RSI: 0000000000000058 RDI: 00007ffce4e7f950
[ 2129.029185][T17143] RBP: 00007f271a78a6c0 R08: 00007f271a78a6c0 R09: 00007ffce4e7fa37
[ 2129.037156][T17143] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 2129.045134][T17143] R13: 000000000000000b R14: 00007ffce4e7f950 R15: 00007ffce4e7fa38
[ 2129.053115][T17143]  </TASK>
[ 2129.058011][T17143] memory: usage 307200kB, limit 307200kB, failcnt 174373
[ 2129.065197][T17143] memory+swap: usage 307412kB, limit 9007199254740988kB, failcnt 0
[ 2129.073095][T17143] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0
[ 2129.080668][T17143] Memory cgroup stats for /syz0:
[ 2129.080792][T17143] cache 0
[ 2129.088745][T17143] rss 24576
[ 2129.091862][T17143] rss_huge 0
[ 2129.095151][T17143] shmem 0
[ 2129.098087][T17143] mapped_file 0
[ 2129.101601][T17143] dirty 0
[ 2129.104587][T17143] writeback 0
[ 2129.107874][T17143] workingset_refault_anon 120468
[ 2129.112804][T17143] workingset_refault_file 1
[ 2129.117383][T17143] swap 192512
[ 2129.120668][T17143] swapcached 0
[ 2129.124019][T17143] pgpgin 327871
[ 2129.127542][T17143] pgpgout 327865
[ 2129.131086][T17143] pgfault 635192
[ 2129.134765][T17143] pgmajfault 107516
[ 2129.138569][T17143] inactive_anon 16384
[ 2129.142525][T17143] active_anon 8192
[ 2129.146285][T17143] inactive_file 0
[ 2129.149921][T17143] active_file 0
[ 2129.153376][T17143] unevictable 0
[ 2129.156878][T17143] hierarchical_memory_limit 314572800
[ 2129.162243][T17143] hierarchical_memsw_limit 9223372036854771712
[ 2129.168631][T17143] total_cache 0
[ 2129.172091][T17143] total_rss 24576
[ 2129.175821][T17143] total_rss_huge 0
[ 2129.179535][T17143] total_shmem 0
[ 2129.182969][T17143] total_mapped_file 0
[ 2129.187041][T17143] total_dirty 0
[ 2129.190504][T17143] total_writeback 0
[ 2129.194321][T17143] total_workingset_refault_anon 120468
[ 2129.199871][T17143] total_workingset_refault_file 1
[ 2129.204978][T17143] total_swap 192512
[ 2129.208789][T17143] total_swapcached 0
[ 2129.212674][T17143] total_pgpgin 327871
[ 2129.216715][T17143] total_pgpgout 327865
[ 2129.220786][T17143] total_pgfault 635192
[ 2129.224897][T17143] total_pgmajfault 107516
[ 2129.229225][T17143] total_inactive_anon 16384
[ 2129.233724][T17143] total_active_anon 8192
[ 2129.239263][T17143] total_inactive_file 0
[ 2129.243433][T17143] total_active_file 0
[ 2129.247518][T17143] total_unevictable 0
[ 2129.251494][T17143] anon_cost 0
[ 2129.254921][T17143] file_cost 0
[ 2129.258212][T17143] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=17143,uid=0
11:33:11 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x884, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x854, 0x2, [@TCA_FLOW_POLICE={0x850, 0xa, 0x0, 0x1, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x34000]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x6, 0x0, 0x0, 0x0, 0x0, 0x101}}}]}]}}]}, 0x884}}, 0x0)

[ 2129.273809][T17143] Memory cgroup out of memory: Killed process 17143 (syz-executor.0) total-vm:54508kB, anon-rss:0kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:80kB oom_score_adj:1000
[ 2129.453128][ T5095] syz-executor.0 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[ 2129.464544][ T5095] CPU: 0 PID: 5095 Comm: syz-executor.0 Not tainted 6.8.0-rc6-syzkaller-01699-g65f5dd4f02a8 #0
[ 2129.474891][ T5095] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024
[ 2129.484937][ T5095] Call Trace:
[ 2129.488205][ T5095]  <TASK>
[ 2129.491125][ T5095]  dump_stack_lvl+0x1e7/0x2e0
[ 2129.495798][ T5095]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2129.500985][ T5095]  ? __pfx__printk+0x10/0x10
[ 2129.505571][ T5095]  ? ___ratelimit+0x4c4/0x670
[ 2129.510246][ T5095]  ? __pfx____ratelimit+0x10/0x10
[ 2129.515276][ T5095]  dump_header+0xda/0x6a0
[ 2129.519608][ T5095]  oom_kill_process+0x3a7/0x930
[ 2129.524466][ T5095]  out_of_memory+0xf67/0x1320
[ 2129.529154][ T5095]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 2129.534782][ T5095]  ? __pfx___mutex_lock+0x10/0x10
[ 2129.539799][ T5095]  ? __pfx_out_of_memory+0x10/0x10
[ 2129.544910][ T5095]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 2129.550449][ T5095]  ? __pfx_lock_release+0x10/0x10
[ 2129.555469][ T5095]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 2129.561532][ T5095]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 2129.566723][ T5095]  ? mem_cgroup_iter+0x422/0x560
[ 2129.571659][ T5095]  try_charge_memcg+0xda2/0x18a0
[ 2129.576590][ T5095]  ? mark_lock+0x9a/0x350
[ 2129.580926][ T5095]  ? __pfx_try_charge_memcg+0x10/0x10
[ 2129.586310][ T5095]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 2129.592455][ T5095]  charge_memcg+0xa2/0x160
[ 2129.596865][ T5095]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 2129.602928][ T5095]  __read_swap_cache_async+0x480/0x8b0
[ 2129.608383][ T5095]  ? mark_lock+0x9a/0x350
[ 2129.612711][ T5095]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 2129.618689][ T5095]  ? blk_start_plug+0x6f/0x1b0
[ 2129.623453][ T5095]  swap_cluster_readahead+0x398/0x810
[ 2129.628831][ T5095]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 2129.634737][ T5095]  ? __pfx_lock_release+0x10/0x10
[ 2129.639759][ T5095]  ? xas_descend+0x37e/0x470
[ 2129.644358][ T5095]  swapin_readahead+0x1ea/0x1070
[ 2129.649295][ T5095]  ? filemap_get_entry+0x127/0x4e0
[ 2129.654417][ T5095]  ? __pfx_swapin_readahead+0x10/0x10
[ 2129.659785][ T5095]  ? __filemap_get_folio+0x935/0xbc0
[ 2129.665068][ T5095]  ? swap_cache_get_folio+0x9f/0x570
[ 2129.670350][ T5095]  do_swap_page+0x791/0x3f40
[ 2129.674939][ T5095]  ? rcu_is_watching+0x15/0xb0
[ 2129.679711][ T5095]  ? do_swap_page+0x154/0x3f40
[ 2129.684466][ T5095]  ? __pfx_do_swap_page+0x10/0x10
[ 2129.689481][ T5095]  ? pte_offset_map_nolock+0x137/0x1f0
[ 2129.694937][ T5095]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 2129.700735][ T5095]  ? __pfx_validate_chain+0x10/0x10
[ 2129.705928][ T5095]  __handle_mm_fault+0x15e8/0x72d0
[ 2129.711059][ T5095]  ? __pfx___handle_mm_fault+0x10/0x10
[ 2129.716518][ T5095]  ? mt_find+0x226/0x850
[ 2129.720754][ T5095]  ? __pfx_lock_release+0x10/0x10
[ 2129.725787][ T5095]  ? mt_find+0x62d/0x850
[ 2129.730028][ T5095]  ? mt_find+0x226/0x850
[ 2129.734283][ T5095]  ? find_vma+0x142/0x1c0
[ 2129.738605][ T5095]  ? __pfx_find_vma+0x10/0x10
[ 2129.743269][ T5095]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 2129.749247][ T5095]  handle_mm_fault+0x3c1/0x8a0
[ 2129.754014][ T5095]  exc_page_fault+0x2ad/0x870
[ 2129.758690][ T5095]  asm_exc_page_fault+0x26/0x30
[ 2129.763530][ T5095] RIP: 0010:__get_user_8+0x11/0x20
[ 2129.768633][ T5095] Code: ca c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 89 c2 48 c1 fa 3f 48 09 d0 0f 01 cb <48> 8b 10 31 c0 0f 01 ca c3 cc cc cc cc 66 90 90 90 90 90 90 90 90
[ 2129.788226][ T5095] RSP: 0018:ffffc900043efd98 EFLAGS: 00050202
[ 2129.794286][ T5095] RAX: 0000555556fd4da8 RBX: ffff88802b1632f8 RCX: ffffc900043efc03
[ 2129.802247][ T5095] RDX: 0000000000000000 RSI: ffffffff8baac7e0 RDI: ffffffff8bfe7820
[ 2129.810215][ T5095] RBP: ffffc900043efec8 R08: ffffffff8f85e9ef R09: 1ffffffff1f0bd3d
[ 2129.818174][ T5095] R10: dffffc0000000000 R11: fffffbfff1f0bd3e R12: ffffc900043efda0
[ 2129.826137][ T5095] R13: ffffc900043effd8 R14: dffffc0000000000 R15: ffff88802b161dc0
[ 2129.834116][ T5095]  __rseq_handle_notify_resume+0x158/0x1490
[ 2129.840009][ T5095]  ? __pfx___rseq_handle_notify_resume+0x10/0x10
[ 2129.846333][ T5095]  ? syscall_exit_to_user_mode+0xa2/0x360
[ 2129.852054][ T5095]  syscall_exit_to_user_mode+0x113/0x360
[ 2129.857690][ T5095]  do_syscall_64+0x108/0x240
[ 2129.862273][ T5095]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 2129.868156][ T5095] RIP: 0033:0x7f2719aa91b5
[ 2129.872562][ T5095] Code: 24 0c 89 3c 24 48 89 4c 24 18 e8 f6 b9 ff ff 4c 8b 54 24 18 48 8b 54 24 10 41 89 c0 8b 74 24 0c 8b 3c 24 b8 e6 00 00 00 0f 05 <44> 89 c7 48 89 04 24 e8 4f ba ff ff 48 8b 04 24 48 83 c4 28 f7 d8
[ 2129.892168][ T5095] RSP: 002b:00007ffce4e7fce0 EFLAGS: 00000293 ORIG_RAX: 00000000000000e6
[ 2129.900600][ T5095] RAX: 0000000000000000 RBX: 0000000000004edf RCX: 00007f2719aa91b5
[ 2129.908585][ T5095] RDX: 00007ffce4e7fd20 RSI: 0000000000000000 RDI: 0000000000000000
[ 2129.916567][ T5095] RBP: 00007ffce4e7fdac R08: 0000000000000000 R09: 00007ffce4f380b0
[ 2129.924552][ T5095] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000032
[ 2129.932515][ T5095] R13: 0000000000207d8d R14: 0000000000207d8d R15: 0000000000000000
[ 2129.940487][ T5095]  </TASK>
[ 2129.991060][ T5095] memory: usage 307192kB, limit 307200kB, failcnt 174715
[ 2130.000386][ T5095] memory+swap: usage 307392kB, limit 9007199254740988kB, failcnt 0
[ 2130.008549][ T5095] kmem: usage 307180kB, limit 9007199254740988kB, failcnt 0
[ 2130.016146][ T5095] Memory cgroup stats for /syz0:
[ 2130.016278][ T5095] cache 0
[ 2130.024165][ T5095] rss 12288
[ 2130.027390][ T5095] rss_huge 0
[ 2130.030588][ T5095] shmem 0
[ 2130.033523][ T5095] mapped_file 0
[ 2130.037120][ T5095] dirty 0
[ 2130.040061][ T5095] writeback 0
[ 2130.043342][ T5095] workingset_refault_anon 120602
[ 2130.048508][ T5095] workingset_refault_file 1
[ 2130.053012][ T5095] swap 204800
[ 2130.056444][ T5095] swapcached 0
[ 2130.059823][ T5095] pgpgin 328018
[ 2130.063274][ T5095] pgpgout 328015
[ 2130.066916][ T5095] pgfault 635405
[ 2130.070473][ T5095] pgmajfault 107630
[ 2130.074301][ T5095] inactive_anon 0
[ 2130.078299][ T5095] active_anon 12288
[ 2130.082131][ T5095] inactive_file 0
[ 2130.085843][ T5095] active_file 0
[ 2130.089303][ T5095] unevictable 0
[ 2130.092739][ T5095] hierarchical_memory_limit 314572800
[ 2130.098225][ T5095] hierarchical_memsw_limit 9223372036854771712
[ 2130.104374][ T5095] total_cache 0
[ 2130.107888][ T5095] total_rss 12288
[ 2130.111521][ T5095] total_rss_huge 0
[ 2130.115491][ T5095] total_shmem 0
[ 2130.118953][ T5095] total_mapped_file 0
[ 2130.122929][ T5095] total_dirty 0
[ 2130.126462][ T5095] total_writeback 0
[ 2130.130264][ T5095] total_workingset_refault_anon 120602
[ 2130.135835][ T5095] total_workingset_refault_file 1
[ 2130.140855][ T5095] total_swap 204800
[ 2130.144694][ T5095] total_swapcached 0
[ 2130.148584][ T5095] total_pgpgin 328018
[ 2130.152538][ T5095] total_pgpgout 328015
[ 2130.156864][ T5095] total_pgfault 635405
[ 2130.160934][ T5095] total_pgmajfault 107630
[ 2130.165310][ T5095] total_inactive_anon 0
[ 2130.169478][ T5095] total_active_anon 12288
[ 2130.173806][ T5095] total_inactive_file 0
[ 2130.178242][ T5095] total_active_file 0
[ 2130.182225][ T5095] total_unevictable 0
[ 2130.186279][ T5095] anon_cost 0
11:33:12 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x884, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x854, 0x2, [@TCA_FLOW_POLICE={0x850, 0xa, 0x0, 0x1, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400300]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x6, 0x0, 0x0, 0x0, 0x0, 0x101}}}]}]}}]}, 0x884}}, 0x0)

[ 2130.189562][ T5095] file_cost 0
[ 2130.192825][ T5095] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=17145,uid=0
[ 2130.208913][ T5095] Memory cgroup out of memory: Killed process 17145 (syz-executor.0) total-vm:54508kB, anon-rss:0kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:80kB oom_score_adj:1000
[ 2130.470466][T17147] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2130.504760][T17147] CPU: 1 PID: 17147 Comm: syz-executor.0 Not tainted 6.8.0-rc6-syzkaller-01699-g65f5dd4f02a8 #0
[ 2130.515214][T17147] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024
[ 2130.525280][T17147] Call Trace:
[ 2130.528575][T17147]  <TASK>
[ 2130.531518][T17147]  dump_stack_lvl+0x1e7/0x2e0
[ 2130.536220][T17147]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2130.541432][T17147]  ? __pfx__printk+0x10/0x10
[ 2130.546035][T17147]  ? ___ratelimit+0x4c4/0x670
[ 2130.550740][T17147]  ? __pfx____ratelimit+0x10/0x10
[ 2130.555788][T17147]  dump_header+0xda/0x6a0
[ 2130.560137][T17147]  oom_kill_process+0x3a7/0x930
[ 2130.565012][T17147]  out_of_memory+0xf67/0x1320
[ 2130.569710][T17147]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 2130.575360][T17147]  ? __pfx___mutex_lock+0x10/0x10
[ 2130.580400][T17147]  ? __pfx_out_of_memory+0x10/0x10
[ 2130.585536][T17147]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 2130.591100][T17147]  ? __pfx_lock_release+0x10/0x10
[ 2130.596136][T17147]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 2130.602202][T17147]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 2130.607393][T17147]  ? mem_cgroup_iter+0x422/0x560
[ 2130.612328][T17147]  try_charge_memcg+0xda2/0x18a0
[ 2130.617276][T17147]  ? __pfx_try_charge_memcg+0x10/0x10
[ 2130.622643][T17147]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 2130.628355][T17147]  ? __pfx_lock_release+0x10/0x10
[ 2130.633374][T17147]  ? memcg_account_kmem+0x1e7/0x210
[ 2130.638573][T17147]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 2130.644372][T17147]  __memcg_kmem_charge_page+0xe1/0x250
[ 2130.649839][T17147]  memcg_charge_kernel_stack+0x28a/0x550
[ 2130.655469][T17147]  dup_task_struct+0x15d/0x7d0
[ 2130.660225][T17147]  copy_process+0x5d5/0x3fc0
[ 2130.664832][T17147]  ? __might_fault+0xa9/0x120
[ 2130.669514][T17147]  ? __pfx_lock_release+0x10/0x10
[ 2130.674540][T17147]  ? __pfx_copy_process+0x10/0x10
[ 2130.679555][T17147]  ? __might_fault+0xc5/0x120
[ 2130.684231][T17147]  ? __asan_memset+0x23/0x50
[ 2130.688835][T17147]  kernel_clone+0x21d/0x8d0
[ 2130.693356][T17147]  ? __pfx_kernel_clone+0x10/0x10
[ 2130.698388][T17147]  __se_sys_clone3+0x2cb/0x350
[ 2130.703145][T17147]  ? __pfx___se_sys_clone3+0x10/0x10
[ 2130.708431][T17147]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 2130.714423][T17147]  ? exc_page_fault+0x587/0x870
[ 2130.719277][T17147]  ? do_syscall_64+0xb4/0x240
[ 2130.723948][T17147]  do_syscall_64+0xf9/0x240
[ 2130.728452][T17147]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 2130.734340][T17147] RIP: 0033:0x7f2719aa9b99
[ 2130.738749][T17147] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 2130.758353][T17147] RSP: 002b:00007ffce4e7f908 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 2130.766762][T17147] RAX: ffffffffffffffda RBX: 00007f2719a52270 RCX: 00007f2719aa9b99
[ 2130.774729][T17147] RDX: 00007f2719a52270 RSI: 0000000000000058 RDI: 00007ffce4e7f950
[ 2130.782689][T17147] RBP: 00007f271a78a6c0 R08: 00007f271a78a6c0 R09: 00007ffce4e7fa37
[ 2130.790651][T17147] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 2130.798612][T17147] R13: 000000000000000b R14: 00007ffce4e7f950 R15: 00007ffce4e7fa38
[ 2130.806586][T17147]  </TASK>
[ 2130.819371][T17147] memory: usage 307200kB, limit 307200kB, failcnt 175068
[ 2130.827230][T17147] memory+swap: usage 307412kB, limit 9007199254740988kB, failcnt 0
[ 2130.849047][T17147] kmem: usage 307192kB, limit 9007199254740988kB, failcnt 0
[ 2130.861472][T17147] Memory cgroup stats for /syz0:
[ 2130.861600][T17147] cache 0
[ 2130.869591][T17147] rss 0
[ 2130.872362][T17147] rss_huge 0
[ 2130.875890][T17147] shmem 0
[ 2130.878835][T17147] mapped_file 0
[ 2130.882299][T17147] dirty 0
[ 2130.889977][T17147] writeback 0
[ 2130.893562][T17147] workingset_refault_anon 120747
[ 2130.899661][T17147] workingset_refault_file 1
[ 2130.904187][T17147] swap 217088
[ 2130.915630][T17147] swapcached 0
[ 2130.937276][T17147] pgpgin 328177
[ 2130.940752][T17147] pgpgout 328177
[ 2130.944298][T17147] pgfault 635631
[ 2130.964480][T17147] pgmajfault 107754
[ 2130.968340][T17147] inactive_anon 0
[ 2130.971974][T17147] active_anon 0
[ 2130.984948][T17147] inactive_file 0
[ 2130.988597][T17147] active_file 0
[ 2130.992052][T17147] unevictable 0
[ 2131.014494][T17147] hierarchical_memory_limit 314572800
[ 2131.019884][T17147] hierarchical_memsw_limit 9223372036854771712
[ 2131.035965][T17147] total_cache 0
[ 2131.039662][T17147] total_rss 0
[ 2131.043035][T17147] total_rss_huge 0
[ 2131.054861][T17147] total_shmem 0
[ 2131.058336][T17147] total_mapped_file 0
[ 2131.062317][T17147] total_dirty 0
[ 2131.075001][T17147] total_writeback 0
[ 2131.078838][T17147] total_workingset_refault_anon 120747
[ 2131.094874][T17147] total_workingset_refault_file 1
[ 2131.099914][T17147] total_swap 217088
[ 2131.103722][T17147] total_swapcached 0
[ 2131.114478][T17147] total_pgpgin 328177
[ 2131.118479][T17147] total_pgpgout 328177
[ 2131.122548][T17147] total_pgfault 635631
[ 2131.145606][T17147] total_pgmajfault 107754
[ 2131.149954][T17147] total_inactive_anon 0
[ 2131.154109][T17147] total_active_anon 0
[ 2131.174451][T17147] total_inactive_file 0
[ 2131.178625][T17147] total_active_file 0
[ 2131.182608][T17147] total_unevictable 0
[ 2131.204439][T17147] anon_cost 0
[ 2131.207745][T17147] file_cost 0
[ 2131.211035][T17147] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=17147,uid=0
11:33:13 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x884, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x854, 0x2, [@TCA_FLOW_POLICE={0x850, 0xa, 0x0, 0x1, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x6, 0x0, 0x0, 0x0, 0x0, 0x101}}}]}]}}]}, 0x884}}, 0x0)

[ 2131.242593][T17147] Memory cgroup out of memory: Killed process 17147 (syz-executor.0) total-vm:54508kB, anon-rss:0kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:80kB oom_score_adj:1000
[ 2131.372656][ T5095] syz-executor.0 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[ 2131.387232][ T5095] CPU: 1 PID: 5095 Comm: syz-executor.0 Not tainted 6.8.0-rc6-syzkaller-01699-g65f5dd4f02a8 #0
[ 2131.397590][ T5095] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024
[ 2131.407659][ T5095] Call Trace:
[ 2131.410955][ T5095]  <TASK>
[ 2131.413899][ T5095]  dump_stack_lvl+0x1e7/0x2e0
[ 2131.418603][ T5095]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2131.423820][ T5095]  ? __pfx__printk+0x10/0x10
[ 2131.428437][ T5095]  ? ___ratelimit+0x4c4/0x670
[ 2131.433187][ T5095]  ? __pfx____ratelimit+0x10/0x10
[ 2131.438255][ T5095]  dump_header+0xda/0x6a0
[ 2131.442613][ T5095]  oom_kill_process+0x3a7/0x930
[ 2131.447494][ T5095]  out_of_memory+0xf67/0x1320
[ 2131.452203][ T5095]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 2131.457863][ T5095]  ? __pfx___mutex_lock+0x10/0x10
[ 2131.462913][ T5095]  ? __pfx_out_of_memory+0x10/0x10
[ 2131.468061][ T5095]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 2131.473630][ T5095]  ? __pfx_lock_release+0x10/0x10
[ 2131.478682][ T5095]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 2131.484778][ T5095]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 2131.489998][ T5095]  ? mem_cgroup_iter+0x422/0x560
[ 2131.494964][ T5095]  try_charge_memcg+0xda2/0x18a0
[ 2131.499926][ T5095]  ? mark_lock+0x9a/0x350
[ 2131.504303][ T5095]  ? __pfx_try_charge_memcg+0x10/0x10
[ 2131.509736][ T5095]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 2131.515919][ T5095]  charge_memcg+0xa2/0x160
[ 2131.520357][ T5095]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 2131.526451][ T5095]  __read_swap_cache_async+0x480/0x8b0
[ 2131.531935][ T5095]  ? mark_lock+0x9a/0x350
[ 2131.536296][ T5095]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 2131.542302][ T5095]  ? blk_start_plug+0x6f/0x1b0
[ 2131.547088][ T5095]  swap_cluster_readahead+0x398/0x810
[ 2131.552496][ T5095]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 2131.558421][ T5095]  ? __pfx_lock_release+0x10/0x10
[ 2131.563475][ T5095]  ? xas_descend+0x37e/0x470
[ 2131.568100][ T5095]  swapin_readahead+0x1ea/0x1070
[ 2131.573056][ T5095]  ? filemap_get_entry+0x127/0x4e0
[ 2131.578207][ T5095]  ? __pfx_swapin_readahead+0x10/0x10
[ 2131.583604][ T5095]  ? __filemap_get_folio+0x935/0xbc0
[ 2131.588922][ T5095]  ? swap_cache_get_folio+0x9f/0x570
[ 2131.594236][ T5095]  do_swap_page+0x791/0x3f40
[ 2131.598859][ T5095]  ? rcu_is_watching+0x15/0xb0
[ 2131.603661][ T5095]  ? do_swap_page+0x154/0x3f40
[ 2131.608445][ T5095]  ? __pfx_do_swap_page+0x10/0x10
[ 2131.613490][ T5095]  ? pte_offset_map_nolock+0x137/0x1f0
[ 2131.618974][ T5095]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 2131.624818][ T5095]  __handle_mm_fault+0x15e8/0x72d0
[ 2131.629987][ T5095]  ? reacquire_held_locks+0x3eb/0x690
[ 2131.635381][ T5095]  ? __pfx___handle_mm_fault+0x10/0x10
[ 2131.640879][ T5095]  ? __pfx_reacquire_held_locks+0x10/0x10
[ 2131.646637][ T5095]  ? mtree_range_walk+0x6fd/0x8e0
[ 2131.651687][ T5095]  ? lock_vma_under_rcu+0x18a/0x730
[ 2131.656914][ T5095]  ? __pfx_lock_release+0x10/0x10
[ 2131.661959][ T5095]  ? lock_vma_under_rcu+0x2f9/0x730
[ 2131.667203][ T5095]  ? lock_vma_under_rcu+0x18a/0x730
[ 2131.672423][ T5095]  ? __pfx_lock_vma_under_rcu+0x10/0x10
[ 2131.677996][ T5095]  handle_mm_fault+0x3c1/0x8a0
[ 2131.682794][ T5095]  exc_page_fault+0x456/0x870
[ 2131.687502][ T5095]  asm_exc_page_fault+0x26/0x30
[ 2131.692379][ T5095] RIP: 0033:0x7f2719aa4c15
[ 2131.696817][ T5095] Code: 00 00 f0 83 88 08 03 00 00 10 64 48 8b 3c 25 00 03 00 00 e8 1d 13 00 00 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 83 e7 02 74 0b <c3> 66 2e 0f 1f 84 00 00 00 00 00 64 48 8b 04 25 10 00 00 00 8b 90
[ 2131.716438][ T5095] RSP: 002b:00007ffce4e7fcd8 EFLAGS: 00010297
[ 2131.722528][ T5095] RAX: 0000000000000002 RBX: 0000000000004ee3 RCX: 0000000000000000
[ 2131.730514][ T5095] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000555556fd4788
[ 2131.738503][ T5095] RBP: 00007ffce4e7fdac R08: 0000000000000000 R09: 00007ffce4f380b0
[ 2131.746492][ T5095] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000032
[ 2131.754475][ T5095] R13: 000000000020854c R14: 000000000020854c R15: 0000000000000000
[ 2131.762470][ T5095]  </TASK>
[ 2131.767698][ T5095] memory: usage 307200kB, limit 307200kB, failcnt 176030
[ 2131.775020][ T5095] memory+swap: usage 307408kB, limit 9007199254740988kB, failcnt 0
[ 2131.782915][ T5095] kmem: usage 307196kB, limit 9007199254740988kB, failcnt 0
[ 2131.808753][ T5095] Memory cgroup stats for /syz0:
[ 2131.808879][ T5095] cache 0
[ 2131.819108][ T5095] rss 0
[ 2131.821894][ T5095] rss_huge 0
[ 2131.828451][ T5095] shmem 0
[ 2131.831425][ T5095] mapped_file 0
[ 2131.837157][ T5095] dirty 0
[ 2131.840114][ T5095] writeback 0
[ 2131.843410][ T5095] workingset_refault_anon 121021
[ 2131.851509][ T5095] workingset_refault_file 1
[ 2131.857463][ T5095] swap 217088
[ 2131.860756][ T5095] swapcached 0
[ 2131.864141][ T5095] pgpgin 328464
[ 2131.870987][ T5095] pgpgout 328464
[ 2131.879970][ T5095] pgfault 635935
[ 2131.883541][ T5095] pgmajfault 107938
[ 2131.891146][ T5095] inactive_anon 0
[ 2131.897075][ T5095] active_anon 0
[ 2131.900607][ T5095] inactive_file 0
[ 2131.904250][ T5095] active_file 0
[ 2131.911093][ T5095] unevictable 0
[ 2131.918279][ T5095] hierarchical_memory_limit 314572800
[ 2131.923732][ T5095] hierarchical_memsw_limit 9223372036854771712
[ 2131.944606][ T5095] total_cache 0
[ 2131.954980][ T5095] total_rss 0
[ 2131.958285][ T5095] total_rss_huge 0
[ 2131.962012][ T5095] total_shmem 0
[ 2131.994685][ T5095] total_mapped_file 0
[ 2131.998687][ T5095] total_dirty 0
[ 2132.002155][ T5095] total_writeback 0
[ 2132.014897][ T5095] total_workingset_refault_anon 121021
[ 2132.020374][ T5095] total_workingset_refault_file 1
[ 2132.054709][ T5095] total_swap 217088
[ 2132.058547][ T5095] total_swapcached 0
[ 2132.062448][ T5095] total_pgpgin 328464
[ 2132.104457][ T5095] total_pgpgout 328464
[ 2132.108555][ T5095] total_pgfault 635935
[ 2132.112627][ T5095] total_pgmajfault 107938
[ 2132.136047][ T5095] total_inactive_anon 0
[ 2132.140230][ T5095] total_active_anon 0
[ 2132.144218][ T5095] total_inactive_file 0
[ 2132.174469][ T5095] total_active_file 0
[ 2132.178483][ T5095] total_unevictable 0
[ 2132.183171][ T5095] anon_cost 0
[ 2132.254512][ T5095] file_cost 0
[ 2132.257839][ T5095] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=17149,uid=0
[ 2132.324521][ T5095] Memory cgroup out of memory: Killed process 17149 (syz-executor.0) total-vm:54508kB, anon-rss:0kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:80kB oom_score_adj:1000
[ 2132.343016][T17087] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[ 2132.363399][T17087] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
11:33:14 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x884, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x854, 0x2, [@TCA_FLOW_POLICE={0x850, 0xa, 0x0, 0x1, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x6, 0x0, 0x0, 0x0, 0x0, 0x101}}}]}]}}]}, 0x884}}, 0x0)

[ 2132.374804][T17087] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[ 2132.394140][T17087] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[ 2132.405493][T17087] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3
[ 2132.412810][T17087] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[ 2132.687223][T17155] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2132.711422][T17155] CPU: 1 PID: 17155 Comm: syz-executor.0 Not tainted 6.8.0-rc6-syzkaller-01699-g65f5dd4f02a8 #0
[ 2132.721872][T17155] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024
[ 2132.731940][T17155] Call Trace:
[ 2132.735231][T17155]  <TASK>
[ 2132.738169][T17155]  dump_stack_lvl+0x1e7/0x2e0
[ 2132.742865][T17155]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2132.748079][T17155]  ? __pfx__printk+0x10/0x10
[ 2132.752688][T17155]  ? ___ratelimit+0x4c4/0x670
[ 2132.757394][T17155]  ? __pfx____ratelimit+0x10/0x10
[ 2132.762448][T17155]  dump_header+0xda/0x6a0
[ 2132.766805][T17155]  oom_kill_process+0x3a7/0x930
[ 2132.771677][T17155]  out_of_memory+0xf67/0x1320
[ 2132.776378][T17155]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 2132.782031][T17155]  ? __pfx___mutex_lock+0x10/0x10
[ 2132.787078][T17155]  ? __pfx_out_of_memory+0x10/0x10
[ 2132.792222][T17155]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 2132.797792][T17155]  ? __pfx_lock_release+0x10/0x10
[ 2132.802833][T17155]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 2132.808921][T17155]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 2132.814139][T17155]  ? mem_cgroup_iter+0x422/0x560
[ 2132.819102][T17155]  try_charge_memcg+0xda2/0x18a0
[ 2132.824085][T17155]  ? __pfx_try_charge_memcg+0x10/0x10
[ 2132.829473][T17155]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 2132.835212][T17155]  ? __pfx_lock_release+0x10/0x10
[ 2132.840257][T17155]  ? memcg_account_kmem+0x1e7/0x210
[ 2132.845487][T17155]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 2132.851317][T17155]  __memcg_kmem_charge_page+0xe1/0x250
[ 2132.856803][T17155]  memcg_charge_kernel_stack+0x37e/0x550
[ 2132.862459][T17155]  dup_task_struct+0x40d/0x7d0
[ 2132.867247][T17155]  copy_process+0x5d5/0x3fc0
[ 2132.871875][T17155]  ? __might_fault+0xa9/0x120
[ 2132.876575][T17155]  ? __pfx_lock_release+0x10/0x10
[ 2132.881639][T17155]  ? __pfx_copy_process+0x10/0x10
[ 2132.886684][T17155]  ? __might_fault+0xc5/0x120
[ 2132.891385][T17155]  ? __asan_memset+0x23/0x50
[ 2132.895999][T17155]  kernel_clone+0x21d/0x8d0
[ 2132.900525][T17155]  ? __pfx_kernel_clone+0x10/0x10
[ 2132.905580][T17155]  __se_sys_clone3+0x2cb/0x350
[ 2132.910365][T17155]  ? __pfx___se_sys_clone3+0x10/0x10
[ 2132.915686][T17155]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 2132.921697][T17155]  ? exc_page_fault+0x587/0x870
[ 2132.926575][T17155]  ? do_syscall_64+0xb4/0x240
[ 2132.931275][T17155]  do_syscall_64+0xf9/0x240
[ 2132.935800][T17155]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 2132.941708][T17155] RIP: 0033:0x7f2719aa9b99
[ 2132.946136][T17155] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 2132.965758][T17155] RSP: 002b:00007ffce4e7f908 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 2132.974187][T17155] RAX: ffffffffffffffda RBX: 00007f2719a52270 RCX: 00007f2719aa9b99
[ 2132.982171][T17155] RDX: 00007f2719a52270 RSI: 0000000000000058 RDI: 00007ffce4e7f950
[ 2132.990159][T17155] RBP: 00007f271a78a6c0 R08: 00007f271a78a6c0 R09: 00007ffce4e7fa37
[ 2132.998142][T17155] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 2133.006129][T17155] R13: 000000000000000b R14: 00007ffce4e7f950 R15: 00007ffce4e7fa38
[ 2133.014132][T17155]  </TASK>
[ 2133.036833][T17155] memory: usage 307200kB, limit 307200kB, failcnt 176651
[ 2133.049072][T17087] Bluetooth: hci8: unexpected cc 0x0c03 length: 249 > 1
[ 2133.059617][T17087] Bluetooth: hci8: unexpected cc 0x1003 length: 249 > 9
[ 2133.075077][T17087] Bluetooth: hci8: unexpected cc 0x1001 length: 249 > 9
[ 2133.083720][T17087] Bluetooth: hci8: unexpected cc 0x0c23 length: 249 > 4
[ 2133.091894][T17087] Bluetooth: hci8: unexpected cc 0x0c25 length: 249 > 3
[ 2133.099568][T17087] Bluetooth: hci8: unexpected cc 0x0c38 length: 249 > 2
[ 2133.126301][T17155] memory+swap: usage 307432kB, limit 9007199254740988kB, failcnt 0
[ 2133.134313][T17155] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0
[ 2133.145976][T17155] Memory cgroup stats for /syz0:
[ 2133.146126][T17155] cache 0
[ 2133.154096][T17155] rss 12288
[ 2133.158069][T17155] rss_huge 0
[ 2133.161358][T17155] shmem 0
[ 2133.164976][T17155] mapped_file 0
[ 2133.168533][T17155] dirty 0
[ 2133.171705][T17155] writeback 0
[ 2133.176552][T17155] workingset_refault_anon 121162
[ 2133.181660][T17155] workingset_refault_file 1
[ 2133.186691][T17155] swap 237568
[ 2133.190121][T17155] swapcached 0
[ 2133.193517][T17155] pgpgin 328644
[ 2133.199668][T17155] pgpgout 328641
[ 2133.203277][T17155] pgfault 636135
[ 2133.206887][T17155] pgmajfault 108046
[ 2133.210712][T17155] inactive_anon 8192
[ 2133.215399][T17155] active_anon 4096
[ 2133.219135][T17155] inactive_file 0
[ 2133.222762][T17155] active_file 0
[ 2133.226282][T17155] unevictable 0
[ 2133.229738][T17155] hierarchical_memory_limit 314572800
[ 2133.235141][T17155] hierarchical_memsw_limit 9223372036854771712
[ 2133.241288][T17155] total_cache 0
[ 2133.244827][T17155] total_rss 12288
[ 2133.248465][T17155] total_rss_huge 0
[ 2133.252180][T17155] total_shmem 0
[ 2133.256203][T17155] total_mapped_file 0
[ 2133.260248][T17155] total_dirty 0
[ 2133.263704][T17155] total_writeback 0
[ 2133.267987][T17155] total_workingset_refault_anon 121162
[ 2133.273542][T17155] total_workingset_refault_file 1
[ 2133.278867][T17155] total_swap 237568
[ 2133.282754][T17155] total_swapcached 0
[ 2133.286897][T17155] total_pgpgin 328644
[ 2133.290947][T17155] total_pgpgout 328641
[ 2133.295178][T17155] total_pgfault 636135
[ 2133.299326][T17155] total_pgmajfault 108046
[ 2133.303685][T17155] total_inactive_anon 8192
[ 2133.308149][T17155] total_active_anon 4096
[ 2133.312387][T17155] total_inactive_file 0
[ 2133.316945][T17155] total_active_file 0
[ 2133.320919][T17155] total_unevictable 0
[ 2133.324981][T17155] anon_cost 0
[ 2133.328270][T17155] file_cost 0
11:33:15 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x884, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x854, 0x2, [@TCA_FLOW_POLICE={0x850, 0xa, 0x0, 0x1, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3000000]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x6, 0x0, 0x0, 0x0, 0x0, 0x101}}}]}]}}]}, 0x884}}, 0x0)

[ 2133.331551][T17155] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=17155,uid=0
[ 2133.347051][T17155] Memory cgroup out of memory: Killed process 17155 (syz-executor.0) total-vm:54508kB, anon-rss:0kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:80kB oom_score_adj:1000
[ 2133.480658][ T5095] syz-executor.0 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[ 2133.497375][ T5095] CPU: 1 PID: 5095 Comm: syz-executor.0 Not tainted 6.8.0-rc6-syzkaller-01699-g65f5dd4f02a8 #0
[ 2133.507729][ T5095] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024
[ 2133.517799][ T5095] Call Trace:
[ 2133.521092][ T5095]  <TASK>
[ 2133.524037][ T5095]  dump_stack_lvl+0x1e7/0x2e0
[ 2133.528743][ T5095]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2133.533960][ T5095]  ? __pfx__printk+0x10/0x10
[ 2133.538573][ T5095]  ? ___ratelimit+0x4c4/0x670
[ 2133.543288][ T5095]  ? __pfx____ratelimit+0x10/0x10
[ 2133.548343][ T5095]  dump_header+0xda/0x6a0
[ 2133.552703][ T5095]  oom_kill_process+0x3a7/0x930
[ 2133.557587][ T5095]  out_of_memory+0xf67/0x1320
[ 2133.562296][ T5095]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 2133.567953][ T5095]  ? __pfx___mutex_lock+0x10/0x10
[ 2133.573001][ T5095]  ? __pfx_out_of_memory+0x10/0x10
[ 2133.578144][ T5095]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 2133.583712][ T5095]  ? __pfx_lock_release+0x10/0x10
[ 2133.588763][ T5095]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 2133.594861][ T5095]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 2133.600081][ T5095]  ? mem_cgroup_iter+0x422/0x560
[ 2133.605050][ T5095]  try_charge_memcg+0xda2/0x18a0
[ 2133.610008][ T5095]  ? mark_lock+0x9a/0x350
[ 2133.614382][ T5095]  ? __pfx_try_charge_memcg+0x10/0x10
[ 2133.619804][ T5095]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 2133.625977][ T5095]  charge_memcg+0xa2/0x160
[ 2133.630412][ T5095]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 2133.636505][ T5095]  __read_swap_cache_async+0x480/0x8b0
[ 2133.641988][ T5095]  ? mark_lock+0x9a/0x350
[ 2133.646347][ T5095]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 2133.652364][ T5095]  ? blk_start_plug+0x6f/0x1b0
[ 2133.657155][ T5095]  swap_cluster_readahead+0x398/0x810
[ 2133.662562][ T5095]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 2133.668492][ T5095]  ? __pfx_lock_release+0x10/0x10
[ 2133.673561][ T5095]  ? xas_descend+0x37e/0x470
[ 2133.678192][ T5095]  swapin_readahead+0x1ea/0x1070
[ 2133.683148][ T5095]  ? filemap_get_entry+0x127/0x4e0
[ 2133.688299][ T5095]  ? __pfx_swapin_readahead+0x10/0x10
[ 2133.693699][ T5095]  ? __filemap_get_folio+0x935/0xbc0
[ 2133.699023][ T5095]  ? swap_cache_get_folio+0x9f/0x570
[ 2133.704340][ T5095]  do_swap_page+0x791/0x3f40
[ 2133.708956][ T5095]  ? rcu_is_watching+0x15/0xb0
[ 2133.713765][ T5095]  ? do_swap_page+0x154/0x3f40
[ 2133.718551][ T5095]  ? __pfx_do_swap_page+0x10/0x10
[ 2133.723598][ T5095]  ? pte_offset_map_nolock+0x137/0x1f0
[ 2133.729084][ T5095]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 2133.734921][ T5095]  __handle_mm_fault+0x15e8/0x72d0
[ 2133.740086][ T5095]  ? reacquire_held_locks+0x3eb/0x690
[ 2133.745479][ T5095]  ? __pfx___handle_mm_fault+0x10/0x10
[ 2133.750976][ T5095]  ? __pfx_reacquire_held_locks+0x10/0x10
[ 2133.756739][ T5095]  ? mtree_range_walk+0x6fd/0x8e0
[ 2133.761790][ T5095]  ? lock_vma_under_rcu+0x18a/0x730
[ 2133.767008][ T5095]  ? __pfx_lock_release+0x10/0x10
[ 2133.772055][ T5095]  ? lock_vma_under_rcu+0x2f9/0x730
[ 2133.777296][ T5095]  ? lock_vma_under_rcu+0x18a/0x730
[ 2133.782514][ T5095]  ? __pfx_lock_vma_under_rcu+0x10/0x10
[ 2133.788083][ T5095]  handle_mm_fault+0x3c1/0x8a0
[ 2133.792878][ T5095]  exc_page_fault+0x456/0x870
[ 2133.797605][ T5095]  asm_exc_page_fault+0x26/0x30
[ 2133.802473][ T5095] RIP: 0033:0x7f2719aa91b8
[ 2133.806904][ T5095] Code: 3c 24 48 89 4c 24 18 e8 f6 b9 ff ff 4c 8b 54 24 18 48 8b 54 24 10 41 89 c0 8b 74 24 0c 8b 3c 24 b8 e6 00 00 00 0f 05 44 89 c7 <48> 89 04 24 e8 4f ba ff ff 48 8b 04 24 48 83 c4 28 f7 d8 c3 0f 1f
[ 2133.826528][ T5095] RSP: 002b:00007ffce4e7fce0 EFLAGS: 00010293
[ 2133.832617][ T5095] RAX: 0000000000000000 RBX: 0000000000004ee7 RCX: 00007f2719aa91b5
[ 2133.840605][ T5095] RDX: 00007ffce4e7fd20 RSI: 0000000000000000 RDI: 0000000000000000
[ 2133.848605][ T5095] RBP: 00007ffce4e7fdac R08: 0000000000000000 R09: 00007ffce4f380b0
[ 2133.856597][ T5095] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000032
[ 2133.864588][ T5095] R13: 0000000000208d9d R14: 0000000000208d9d R15: 0000000000000000
[ 2133.872599][ T5095]  </TASK>
[ 2133.897911][ T5095] memory: usage 307200kB, limit 307200kB, failcnt 177668
[ 2133.911672][ T5095] memory+swap: usage 307408kB, limit 9007199254740988kB, failcnt 0
[ 2133.921285][ T5095] kmem: usage 307196kB, limit 9007199254740988kB, failcnt 0
[ 2133.928857][ T5095] Memory cgroup stats for /syz0:
[ 2133.928984][ T5095] cache 0
[ 2133.937173][ T5095] rss 4096
[ 2133.940222][ T5095] rss_huge 0
[ 2133.943430][ T5095] shmem 0
[ 2133.946777][ T5095] mapped_file 0
[ 2133.950255][ T5095] dirty 0
[ 2133.953197][ T5095] writeback 0
[ 2133.957257][ T5095] workingset_refault_anon 121419
[ 2133.962305][ T5095] workingset_refault_file 1
[ 2133.967075][ T5095] swap 212992
[ 2133.970368][ T5095] swapcached 0
[ 2133.973737][ T5095] pgpgin 328923
[ 2133.977524][ T5095] pgpgout 328922
[ 2133.981078][ T5095] pgfault 636414
[ 2133.984913][ T5095] pgmajfault 108215
[ 2133.988732][ T5095] inactive_anon 4096
[ 2133.992639][ T5095] active_anon 0
[ 2133.996439][ T5095] inactive_file 0
[ 2134.000086][ T5095] active_file 0
[ 2134.003742][ T5095] unevictable 0
[ 2134.007544][ T5095] hierarchical_memory_limit 314572800
[ 2134.012926][ T5095] hierarchical_memsw_limit 9223372036854771712
[ 2134.019596][ T5095] total_cache 0
[ 2134.023069][ T5095] total_rss 4096
[ 2134.028175][ T5095] total_rss_huge 0
[ 2134.031913][ T5095] total_shmem 0
[ 2134.035926][ T5095] total_mapped_file 0
[ 2134.039922][ T5095] total_dirty 0
[ 2134.043391][ T5095] total_writeback 0
[ 2134.047807][ T5095] total_workingset_refault_anon 121419
[ 2134.053275][ T5095] total_workingset_refault_file 1
[ 2134.058865][ T5095] total_swap 212992
[ 2134.062689][ T5095] total_swapcached 0
[ 2134.067089][ T5095] total_pgpgin 328923
[ 2134.071087][ T5095] total_pgpgout 328922
[ 2134.075651][ T5095] total_pgfault 636414
[ 2134.079763][ T5095] total_pgmajfault 108215
[ 2134.084101][ T5095] total_inactive_anon 4096
[ 2134.089099][ T5095] total_active_anon 0
[ 2134.093089][ T5095] total_inactive_file 0
[ 2134.097720][ T5095] total_active_file 0
[ 2134.101719][ T5095] total_unevictable 0
11:33:16 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x884, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x854, 0x2, [@TCA_FLOW_POLICE={0x850, 0xa, 0x0, 0x1, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x6, 0x0, 0x0, 0x0, 0x0, 0x101}}}]}]}}]}, 0x884}}, 0x0)

[ 2134.106326][ T5095] anon_cost 0
[ 2134.109626][ T5095] file_cost 0
[ 2134.112918][ T5095] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=17159,uid=0
[ 2134.132445][ T5095] Memory cgroup out of memory: Killed process 17159 (syz-executor.0) total-vm:54508kB, anon-rss:0kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:80kB oom_score_adj:1000
[ 2134.327314][T17161] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2134.337565][T17161] CPU: 0 PID: 17161 Comm: syz-executor.0 Not tainted 6.8.0-rc6-syzkaller-01699-g65f5dd4f02a8 #0
[ 2134.347973][T17161] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024
[ 2134.358027][T17161] Call Trace:
[ 2134.361290][T17161]  <TASK>
[ 2134.364204][T17161]  dump_stack_lvl+0x1e7/0x2e0
[ 2134.368868][T17161]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2134.374047][T17161]  ? __pfx__printk+0x10/0x10
[ 2134.378620][T17161]  ? ___ratelimit+0x4c4/0x670
[ 2134.383280][T17161]  ? __pfx____ratelimit+0x10/0x10
[ 2134.388289][T17161]  dump_header+0xda/0x6a0
[ 2134.392607][T17161]  oom_kill_process+0x3a7/0x930
[ 2134.397453][T17161]  out_of_memory+0xf67/0x1320
[ 2134.402130][T17161]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 2134.407759][T17161]  ? __pfx___mutex_lock+0x10/0x10
[ 2134.412775][T17161]  ? __pfx_out_of_memory+0x10/0x10
[ 2134.417885][T17161]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 2134.423422][T17161]  ? __pfx_lock_release+0x10/0x10
[ 2134.428441][T17161]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 2134.434512][T17161]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 2134.439699][T17161]  ? mem_cgroup_iter+0x422/0x560
[ 2134.444661][T17161]  try_charge_memcg+0xda2/0x18a0
[ 2134.449631][T17161]  ? __pfx_try_charge_memcg+0x10/0x10
[ 2134.454998][T17161]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 2134.460728][T17161]  ? __pfx_lock_release+0x10/0x10
[ 2134.465755][T17161]  ? memcg_account_kmem+0x1e7/0x210
[ 2134.470958][T17161]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 2134.476775][T17161]  __memcg_kmem_charge_page+0xe1/0x250
[ 2134.482241][T17161]  memcg_charge_kernel_stack+0x28a/0x550
[ 2134.487872][T17161]  dup_task_struct+0x15d/0x7d0
[ 2134.492631][T17161]  copy_process+0x5d5/0x3fc0
[ 2134.497224][T17161]  ? __might_fault+0xa9/0x120
[ 2134.501894][T17161]  ? __pfx_lock_release+0x10/0x10
[ 2134.506929][T17161]  ? __pfx_copy_process+0x10/0x10
[ 2134.511950][T17161]  ? __might_fault+0xc5/0x120
[ 2134.516624][T17161]  ? __asan_memset+0x23/0x50
[ 2134.521212][T17161]  kernel_clone+0x21d/0x8d0
[ 2134.525712][T17161]  ? __pfx_kernel_clone+0x10/0x10
[ 2134.530743][T17161]  __se_sys_clone3+0x2cb/0x350
[ 2134.535507][T17161]  ? __pfx___se_sys_clone3+0x10/0x10
[ 2134.540809][T17161]  ? do_syscall_64+0x108/0x240
[ 2134.545573][T17161]  ? do_syscall_64+0xb4/0x240
[ 2134.550246][T17161]  do_syscall_64+0xf9/0x240
[ 2134.554745][T17161]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 2134.560632][T17161] RIP: 0033:0x7f2719aa9b99
[ 2134.565040][T17161] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 2134.584640][T17161] RSP: 002b:00007ffce4e7f908 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 2134.593054][T17161] RAX: ffffffffffffffda RBX: 00007f2719a52270 RCX: 00007f2719aa9b99
[ 2134.601023][T17161] RDX: 00007f2719a52270 RSI: 0000000000000058 RDI: 00007ffce4e7f950
[ 2134.608988][T17161] RBP: 00007f271a78a6c0 R08: 00007f271a78a6c0 R09: 00007ffce4e7fa37
[ 2134.616954][T17161] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 2134.624916][T17161] R13: 000000000000000b R14: 00007ffce4e7f950 R15: 00007ffce4e7fa38
[ 2134.632908][T17161]  </TASK>
[ 2134.642792][ T5100] Bluetooth: hci7: command 0x0409 tx timeout
[ 2134.651516][T17161] memory: usage 307200kB, limit 307200kB, failcnt 178300
[ 2134.659251][T17161] memory+swap: usage 307412kB, limit 9007199254740988kB, failcnt 0
[ 2134.667526][T17161] kmem: usage 307180kB, limit 9007199254740988kB, failcnt 0
[ 2134.675266][T17161] Memory cgroup stats for /syz0:
[ 2134.675400][T17161] cache 0
[ 2134.683241][T17161] rss 0
[ 2134.686135][T17161] rss_huge 0
[ 2134.689338][T17161] shmem 0
[ 2134.692255][T17161] mapped_file 0
[ 2134.696314][T17161] dirty 0
[ 2134.699275][T17161] writeback 0
[ 2134.702581][T17161] workingset_refault_anon 121632
[ 2134.707897][T17161] workingset_refault_file 1
[ 2134.712414][T17161] swap 217088
[ 2134.716314][T17161] swapcached 0
[ 2134.719686][T17161] pgpgin 329148
[ 2134.723121][T17161] pgpgout 329148
[ 2134.727340][T17161] pgfault 636694
[ 2134.730888][T17161] pgmajfault 108386
[ 2134.735113][T17161] inactive_anon 0
[ 2134.738731][T17161] active_anon 0
[ 2134.742167][T17161] inactive_file 0
[ 2134.746633][T17161] active_file 0
[ 2134.750097][T17161] unevictable 0
[ 2134.753532][T17161] hierarchical_memory_limit 314572800
[ 2134.759501][T17161] hierarchical_memsw_limit 9223372036854771712
[ 2134.766027][T17161] total_cache 0
[ 2134.769499][T17161] total_rss 0
[ 2134.772774][T17161] total_rss_huge 0
[ 2134.777190][T17161] total_shmem 0
[ 2134.780659][T17161] total_mapped_file 0
[ 2134.784964][T17161] total_dirty 0
[ 2134.788409][T17161] total_writeback 0
[ 2134.792189][T17161] total_workingset_refault_anon 121632
[ 2134.798085][T17161] total_workingset_refault_file 1
[ 2134.803096][T17161] total_swap 217088
[ 2134.807347][T17161] total_swapcached 0
[ 2134.811260][T17161] total_pgpgin 329148
[ 2134.815749][T17161] total_pgpgout 329148
[ 2134.819826][T17161] total_pgfault 636694
[ 2134.823879][T17161] total_pgmajfault 108386
[ 2134.828602][T17161] total_inactive_anon 0
[ 2134.832742][T17161] total_active_anon 0
[ 2134.837256][T17161] total_inactive_file 0
[ 2134.841413][T17161] total_active_file 0
[ 2134.845875][T17161] total_unevictable 0
[ 2134.849856][T17161] anon_cost 0
[ 2134.853118][T17161] file_cost 0
[ 2134.856726][T17161] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=17161,uid=0
11:33:16 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x884, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x854, 0x2, [@TCA_FLOW_POLICE={0x850, 0xa, 0x0, 0x1, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5000000]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x6, 0x0, 0x0, 0x0, 0x0, 0x101}}}]}]}}]}, 0x884}}, 0x0)

[ 2134.872677][T17161] Memory cgroup out of memory: Killed process 17161 (syz-executor.0) total-vm:54508kB, anon-rss:0kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:80kB oom_score_adj:1000
[ 2135.129566][T17163] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2135.140281][T17163] CPU: 0 PID: 17163 Comm: syz-executor.0 Not tainted 6.8.0-rc6-syzkaller-01699-g65f5dd4f02a8 #0
[ 2135.150708][T17163] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024
[ 2135.160755][T17163] Call Trace:
[ 2135.164025][T17163]  <TASK>
[ 2135.166948][T17163]  dump_stack_lvl+0x1e7/0x2e0
[ 2135.171627][T17163]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2135.176818][T17163]  ? __pfx__printk+0x10/0x10
[ 2135.181400][T17163]  ? ___ratelimit+0x4c4/0x670
[ 2135.186076][T17163]  ? __pfx____ratelimit+0x10/0x10
[ 2135.191100][T17163]  dump_header+0xda/0x6a0
[ 2135.195428][T17163]  oom_kill_process+0x3a7/0x930
[ 2135.200274][T17163]  out_of_memory+0xf67/0x1320
[ 2135.204951][T17163]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 2135.210577][T17163]  ? __pfx___mutex_lock+0x10/0x10
[ 2135.215597][T17163]  ? __pfx_out_of_memory+0x10/0x10
[ 2135.220706][T17163]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 2135.226245][T17163]  ? __pfx_lock_release+0x10/0x10
[ 2135.231266][T17163]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 2135.237333][T17163]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 2135.242523][T17163]  ? mem_cgroup_iter+0x422/0x560
[ 2135.247457][T17163]  try_charge_memcg+0xda2/0x18a0
[ 2135.252407][T17163]  ? __pfx_try_charge_memcg+0x10/0x10
[ 2135.257780][T17163]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 2135.263497][T17163]  ? __pfx_lock_release+0x10/0x10
[ 2135.268519][T17163]  ? memcg_account_kmem+0x1e7/0x210
[ 2135.273718][T17163]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 2135.279516][T17163]  __memcg_kmem_charge_page+0xe1/0x250
[ 2135.284972][T17163]  memcg_charge_kernel_stack+0x11c/0x550
[ 2135.290601][T17163]  dup_task_struct+0x15d/0x7d0
[ 2135.295357][T17163]  copy_process+0x5d5/0x3fc0
[ 2135.299951][T17163]  ? __might_fault+0xa9/0x120
[ 2135.304624][T17163]  ? __pfx_lock_release+0x10/0x10
[ 2135.309653][T17163]  ? __pfx_copy_process+0x10/0x10
[ 2135.314665][T17163]  ? __might_fault+0xc5/0x120
[ 2135.319336][T17163]  ? __asan_memset+0x23/0x50
[ 2135.323922][T17163]  kernel_clone+0x21d/0x8d0
[ 2135.328430][T17163]  ? __pfx_kernel_clone+0x10/0x10
[ 2135.333462][T17163]  __se_sys_clone3+0x2cb/0x350
[ 2135.338223][T17163]  ? __pfx___se_sys_clone3+0x10/0x10
[ 2135.343523][T17163]  ? do_syscall_64+0x108/0x240
[ 2135.348280][T17163]  ? do_syscall_64+0xb4/0x240
[ 2135.352949][T17163]  do_syscall_64+0xf9/0x240
[ 2135.357445][T17163]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 2135.363333][T17163] RIP: 0033:0x7f2719aa9b99
[ 2135.367742][T17163] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 2135.387336][T17163] RSP: 002b:00007ffce4e7f908 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 2135.395741][T17163] RAX: ffffffffffffffda RBX: 00007f2719a52270 RCX: 00007f2719aa9b99
[ 2135.403701][T17163] RDX: 00007f2719a52270 RSI: 0000000000000058 RDI: 00007ffce4e7f950
[ 2135.411661][T17163] RBP: 00007f271a78a6c0 R08: 00007f271a78a6c0 R09: 00007ffce4e7fa37
[ 2135.419621][T17163] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 2135.427580][T17163] R13: 000000000000000b R14: 00007ffce4e7f950 R15: 00007ffce4e7fa38
[ 2135.435553][T17163]  </TASK>
[ 2135.438679][ T5100] Bluetooth: hci8: command 0x0409 tx timeout
[ 2135.446519][T17163] memory: usage 307196kB, limit 307200kB, failcnt 178639
[ 2135.453559][T17163] memory+swap: usage 307436kB, limit 9007199254740988kB, failcnt 0
[ 2135.461546][T17163] kmem: usage 307168kB, limit 9007199254740988kB, failcnt 0
[ 2135.468941][T17163] Memory cgroup stats for /syz0:
[ 2135.469301][T17163] cache 0
[ 2135.477293][T17163] rss 8192
[ 2135.480323][T17163] rss_huge 0
[ 2135.483522][T17163] shmem 0
[ 2135.486552][T17163] mapped_file 0
[ 2135.490015][T17163] dirty 0
[ 2135.492956][T17163] writeback 0
[ 2135.496287][T17163] workingset_refault_anon 121773
[ 2135.501225][T17163] workingset_refault_file 1
[ 2135.505809][T17163] swap 245760
[ 2135.509101][T17163] swapcached 0
[ 2135.512469][T17163] pgpgin 329300
[ 2135.515989][T17163] pgpgout 329298
[ 2135.519533][T17163] pgfault 636895
[ 2135.523060][T17163] pgmajfault 108502
[ 2135.526952][T17163] inactive_anon 0
[ 2135.530584][T17163] active_anon 0
[ 2135.534026][T17163] inactive_file 0
[ 2135.537707][T17163] active_file 0
[ 2135.541172][T17163] unevictable 0
[ 2135.544703][T17163] hierarchical_memory_limit 314572800
[ 2135.550069][T17163] hierarchical_memsw_limit 9223372036854771712
[ 2135.556511][T17163] total_cache 0
[ 2135.559970][T17163] total_rss 8192
[ 2135.563498][T17163] total_rss_huge 0
[ 2135.567500][T17163] total_shmem 0
[ 2135.570963][T17163] total_mapped_file 0
[ 2135.574996][T17163] total_dirty 0
[ 2135.578453][T17163] total_writeback 0
[ 2135.582244][T17163] total_workingset_refault_anon 121773
[ 2135.587780][T17163] total_workingset_refault_file 1
[ 2135.592804][T17163] total_swap 245760
[ 2135.596709][T17163] total_swapcached 0
[ 2135.600599][T17163] total_pgpgin 329300
[ 2135.604639][T17163] total_pgpgout 329298
[ 2135.608713][T17163] total_pgfault 636895
[ 2135.612779][T17163] total_pgmajfault 108502
[ 2135.617165][T17163] total_inactive_anon 0
[ 2135.621321][T17163] total_active_anon 0
[ 2135.625387][T17163] total_inactive_file 0
11:33:17 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x884, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x854, 0x2, [@TCA_FLOW_POLICE={0x850, 0xa, 0x0, 0x1, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6000000]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x6, 0x0, 0x0, 0x0, 0x0, 0x101}}}]}]}}]}, 0x884}}, 0x0)

[ 2135.629549][T17163] total_active_file 0
[ 2135.633527][T17163] total_unevictable 0
[ 2135.637658][T17163] anon_cost 0
[ 2135.640942][T17163] file_cost 0
[ 2135.644210][T17163] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=17163,uid=0
[ 2135.659756][T17163] Memory cgroup out of memory: Killed process 17163 (syz-executor.0) total-vm:54508kB, anon-rss:0kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:80kB oom_score_adj:1000
[ 2135.854861][T17165] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2135.865152][T17165] CPU: 1 PID: 17165 Comm: syz-executor.0 Not tainted 6.8.0-rc6-syzkaller-01699-g65f5dd4f02a8 #0
[ 2135.875570][T17165] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024
[ 2135.885615][T17165] Call Trace:
[ 2135.888886][T17165]  <TASK>
[ 2135.891806][T17165]  dump_stack_lvl+0x1e7/0x2e0
[ 2135.896481][T17165]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2135.901667][T17165]  ? __pfx__printk+0x10/0x10
[ 2135.906248][T17165]  ? ___ratelimit+0x4c4/0x670
[ 2135.910924][T17165]  ? __pfx____ratelimit+0x10/0x10
[ 2135.915946][T17165]  dump_header+0xda/0x6a0
[ 2135.920272][T17165]  oom_kill_process+0x3a7/0x930
[ 2135.925123][T17165]  out_of_memory+0xf67/0x1320
[ 2135.929799][T17165]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 2135.935426][T17165]  ? __pfx___mutex_lock+0x10/0x10
[ 2135.940444][T17165]  ? __pfx_out_of_memory+0x10/0x10
[ 2135.945556][T17165]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 2135.951098][T17165]  ? __pfx_lock_release+0x10/0x10
[ 2135.956118][T17165]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 2135.962184][T17165]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 2135.967374][T17165]  ? mem_cgroup_iter+0x422/0x560
[ 2135.972306][T17165]  try_charge_memcg+0xda2/0x18a0
[ 2135.977255][T17165]  ? __pfx_try_charge_memcg+0x10/0x10
[ 2135.982620][T17165]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 2135.988332][T17165]  ? __pfx_lock_release+0x10/0x10
[ 2135.993364][T17165]  ? memcg_account_kmem+0x1e7/0x210
[ 2135.998562][T17165]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 2136.004361][T17165]  __memcg_kmem_charge_page+0xe1/0x250
[ 2136.009841][T17165]  memcg_charge_kernel_stack+0x28a/0x550
[ 2136.015482][T17165]  dup_task_struct+0x15d/0x7d0
[ 2136.020241][T17165]  copy_process+0x5d5/0x3fc0
[ 2136.024833][T17165]  ? __might_fault+0xa9/0x120
[ 2136.029510][T17165]  ? __pfx_lock_release+0x10/0x10
[ 2136.034535][T17165]  ? __pfx_copy_process+0x10/0x10
[ 2136.039556][T17165]  ? __might_fault+0xc5/0x120
[ 2136.044235][T17165]  ? __asan_memset+0x23/0x50
[ 2136.048828][T17165]  kernel_clone+0x21d/0x8d0
[ 2136.053332][T17165]  ? __pfx_kernel_clone+0x10/0x10
[ 2136.058372][T17165]  __se_sys_clone3+0x2cb/0x350
[ 2136.063134][T17165]  ? __pfx___se_sys_clone3+0x10/0x10
[ 2136.068435][T17165]  ? do_syscall_64+0x108/0x240
[ 2136.073208][T17165]  ? do_syscall_64+0xb4/0x240
[ 2136.077885][T17165]  do_syscall_64+0xf9/0x240
[ 2136.082388][T17165]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 2136.088274][T17165] RIP: 0033:0x7f2719aa9b99
[ 2136.092678][T17165] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 2136.112281][T17165] RSP: 002b:00007ffce4e7f908 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 2136.120691][T17165] RAX: ffffffffffffffda RBX: 00007f2719a52270 RCX: 00007f2719aa9b99
[ 2136.128658][T17165] RDX: 00007f2719a52270 RSI: 0000000000000058 RDI: 00007ffce4e7f950
[ 2136.136620][T17165] RBP: 00007f271a78a6c0 R08: 00007f271a78a6c0 R09: 00007ffce4e7fa37
[ 2136.144581][T17165] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 2136.152547][T17165] R13: 000000000000000b R14: 00007ffce4e7f950 R15: 00007ffce4e7fa38
[ 2136.160524][T17165]  </TASK>
[ 2136.171554][T17165] memory: usage 307200kB, limit 307200kB, failcnt 179061
[ 2136.178678][T17165] memory+swap: usage 307412kB, limit 9007199254740988kB, failcnt 0
[ 2136.187580][T17165] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[ 2136.199934][T17165] Memory cgroup stats for /syz0:
[ 2136.200067][T17165] cache 0
[ 2136.208285][T17165] rss 24576
[ 2136.211397][T17165] rss_huge 0
[ 2136.214678][T17165] shmem 0
[ 2136.217613][T17165] mapped_file 0
[ 2136.221049][T17165] dirty 0
[ 2136.223974][T17165] writeback 0
[ 2136.227326][T17165] workingset_refault_anon 121945
[ 2136.232265][T17165] workingset_refault_file 1
[ 2136.236859][T17165] swap 192512
[ 2136.240141][T17165] swapcached 0
[ 2136.243490][T17165] pgpgin 329485
[ 2136.246976][T17165] pgpgout 329479
[ 2136.250518][T17165] pgfault 637144
[ 2136.254039][T17165] pgmajfault 108639
[ 2136.257908][T17165] inactive_anon 0
[ 2136.261540][T17165] active_anon 24576
[ 2136.265470][T17165] inactive_file 0
[ 2136.269100][T17165] active_file 0
[ 2136.272536][T17165] unevictable 0
[ 2136.276249][T17165] hierarchical_memory_limit 314572800
[ 2136.281619][T17165] hierarchical_memsw_limit 9223372036854771712
[ 2136.287867][T17165] total_cache 0
[ 2136.291321][T17165] total_rss 24576
[ 2136.295402][T17165] total_rss_huge 0
[ 2136.299164][T17165] total_shmem 0
[ 2136.302625][T17165] total_mapped_file 0
[ 2136.306660][T17165] total_dirty 0
[ 2136.310120][T17165] total_writeback 0
[ 2136.313922][T17165] total_workingset_refault_anon 121945
[ 2136.319493][T17165] total_workingset_refault_file 1
[ 2136.324622][T17165] total_swap 192512
[ 2136.328435][T17165] total_swapcached 0
[ 2136.332317][T17165] total_pgpgin 329485
[ 2136.336382][T17165] total_pgpgout 329479
[ 2136.340445][T17165] total_pgfault 637144
[ 2136.344593][T17165] total_pgmajfault 108639
[ 2136.348917][T17165] total_inactive_anon 0
[ 2136.353047][T17165] total_active_anon 24576
[ 2136.357478][T17165] total_inactive_file 0
[ 2136.361636][T17165] total_active_file 0
[ 2136.365673][T17165] total_unevictable 0
[ 2136.369649][T17165] anon_cost 0
[ 2136.372913][T17165] file_cost 0
[ 2136.376273][T17165] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=17165,uid=0
11:33:18 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x884, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x854, 0x2, [@TCA_FLOW_POLICE={0x850, 0xa, 0x0, 0x1, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7000000]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x6, 0x0, 0x0, 0x0, 0x0, 0x101}}}]}]}}]}, 0x884}}, 0x0)

[ 2136.391923][T17165] Memory cgroup out of memory: Killed process 17165 (syz-executor.0) total-vm:54508kB, anon-rss:0kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:80kB oom_score_adj:1000
[ 2136.542743][T17167] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2136.553107][T17167] CPU: 0 PID: 17167 Comm: syz-executor.0 Not tainted 6.8.0-rc6-syzkaller-01699-g65f5dd4f02a8 #0
[ 2136.563519][T17167] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024
[ 2136.573581][T17167] Call Trace:
[ 2136.576861][T17167]  <TASK>
[ 2136.579792][T17167]  dump_stack_lvl+0x1e7/0x2e0
[ 2136.584472][T17167]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2136.589669][T17167]  ? __pfx__printk+0x10/0x10
[ 2136.594238][T17167]  ? ___ratelimit+0x4c4/0x670
[ 2136.598920][T17167]  ? __pfx____ratelimit+0x10/0x10
[ 2136.603955][T17167]  dump_header+0xda/0x6a0
[ 2136.608277][T17167]  oom_kill_process+0x3a7/0x930
[ 2136.613125][T17167]  out_of_memory+0xf67/0x1320
[ 2136.617807][T17167]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 2136.623446][T17167]  ? __pfx___mutex_lock+0x10/0x10
[ 2136.628457][T17167]  ? __pfx_out_of_memory+0x10/0x10
[ 2136.633557][T17167]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 2136.639106][T17167]  ? __pfx_lock_release+0x10/0x10
[ 2136.644138][T17167]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 2136.650193][T17167]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 2136.655394][T17167]  ? mem_cgroup_iter+0x422/0x560
[ 2136.660346][T17167]  try_charge_memcg+0xda2/0x18a0
[ 2136.665282][T17167]  ? __pfx_try_charge_memcg+0x10/0x10
[ 2136.670636][T17167]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 2136.676354][T17167]  ? __pfx_lock_release+0x10/0x10
[ 2136.681404][T17167]  ? memcg_account_kmem+0x1e7/0x210
[ 2136.686605][T17167]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 2136.692397][T17167]  __memcg_kmem_charge_page+0xe1/0x250
[ 2136.697860][T17167]  memcg_charge_kernel_stack+0x28a/0x550
[ 2136.703501][T17167]  dup_task_struct+0x15d/0x7d0
[ 2136.708254][T17167]  copy_process+0x5d5/0x3fc0
[ 2136.712835][T17167]  ? __might_fault+0xa9/0x120
[ 2136.717516][T17167]  ? __pfx_lock_release+0x10/0x10
[ 2136.722551][T17167]  ? __pfx_copy_process+0x10/0x10
[ 2136.727560][T17167]  ? __might_fault+0xc5/0x120
[ 2136.732227][T17167]  ? __asan_memset+0x23/0x50
[ 2136.736823][T17167]  kernel_clone+0x21d/0x8d0
[ 2136.741343][T17167]  ? __pfx_kernel_clone+0x10/0x10
[ 2136.746376][T17167]  __se_sys_clone3+0x2cb/0x350
[ 2136.751130][T17167]  ? __pfx___se_sys_clone3+0x10/0x10
[ 2136.756426][T17167]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 2136.762426][T17167]  ? exc_page_fault+0x587/0x870
[ 2136.767274][T17167]  ? do_syscall_64+0xb4/0x240
[ 2136.771948][T17167]  do_syscall_64+0xf9/0x240
[ 2136.776458][T17167]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 2136.782356][T17167] RIP: 0033:0x7f2719aa9b99
[ 2136.786755][T17167] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 2136.806351][T17167] RSP: 002b:00007ffce4e7f908 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 2136.814763][T17167] RAX: ffffffffffffffda RBX: 00007f2719a52270 RCX: 00007f2719aa9b99
[ 2136.822735][T17167] RDX: 00007f2719a52270 RSI: 0000000000000058 RDI: 00007ffce4e7f950
[ 2136.830692][T17167] RBP: 00007f271a78a6c0 R08: 00007f271a78a6c0 R09: 00007ffce4e7fa37
[ 2136.838656][T17167] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 2136.846629][T17167] R13: 000000000000000b R14: 00007ffce4e7f950 R15: 00007ffce4e7fa38
[ 2136.854613][T17167]  </TASK>
[ 2136.858314][ T5100] Bluetooth: hci7: command 0x041b tx timeout
[ 2136.868385][T17167] memory: usage 307200kB, limit 307200kB, failcnt 179383
[ 2136.875626][T17167] memory+swap: usage 307412kB, limit 9007199254740988kB, failcnt 0
[ 2136.883562][T17167] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[ 2136.891341][T17167] Memory cgroup stats for /syz0:
[ 2136.891440][T17167] cache 0
[ 2136.899489][T17167] rss 20480
[ 2136.902583][T17167] rss_huge 0
[ 2136.906319][T17167] shmem 0
[ 2136.909266][T17167] mapped_file 0
[ 2136.912699][T17167] dirty 0
[ 2136.917707][T17167] writeback 0
[ 2136.921060][T17167] workingset_refault_anon 122055
[ 2136.926474][T17167] workingset_refault_file 1
[ 2136.930980][T17167] swap 196608
[ 2136.934239][T17167] swapcached 0
[ 2136.938243][T17167] pgpgin 329610
[ 2136.941705][T17167] pgpgout 329605
[ 2136.945671][T17167] pgfault 637328
[ 2136.949216][T17167] pgmajfault 108738
[ 2136.952998][T17167] inactive_anon 0
[ 2136.957334][T17167] active_anon 20480
[ 2136.961158][T17167] inactive_file 0
[ 2136.967873][T17167] active_file 0
[ 2136.971444][T17167] unevictable 0
[ 2136.975368][T17167] hierarchical_memory_limit 314572800
[ 2136.980746][T17167] hierarchical_memsw_limit 9223372036854771712
[ 2136.987111][T17167] total_cache 0
[ 2136.990573][T17167] total_rss 20480
[ 2136.994184][T17167] total_rss_huge 0
[ 2136.998331][T17167] total_shmem 0
[ 2137.001810][T17167] total_mapped_file 0
[ 2137.005889][T17167] total_dirty 0
[ 2137.009351][T17167] total_writeback 0
[ 2137.013144][T17167] total_workingset_refault_anon 122055
[ 2137.018650][T17167] total_workingset_refault_file 1
[ 2137.023670][T17167] total_swap 196608
[ 2137.027541][T17167] total_swapcached 0
[ 2137.031428][T17167] total_pgpgin 329610
[ 2137.035446][T17167] total_pgpgout 329605
[ 2137.039517][T17167] total_pgfault 637328
[ 2137.043584][T17167] total_pgmajfault 108738
[ 2137.048134][T17167] total_inactive_anon 0
[ 2137.052287][T17167] total_active_anon 20480
[ 2137.056670][T17167] total_inactive_file 0
[ 2137.060823][T17167] total_active_file 0
[ 2137.064903][T17167] total_unevictable 0
[ 2137.068885][T17167] anon_cost 0
[ 2137.072163][T17167] file_cost 0
[ 2137.075727][T17167] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=17167,uid=0
11:33:19 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x884, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x854, 0x2, [@TCA_FLOW_POLICE={0x850, 0xa, 0x0, 0x1, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000000]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x6, 0x0, 0x0, 0x0, 0x0, 0x101}}}]}]}}]}, 0x884}}, 0x0)

[ 2137.092086][T17167] Memory cgroup out of memory: Killed process 17167 (syz-executor.0) total-vm:54508kB, anon-rss:0kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:80kB oom_score_adj:1000
[ 2137.294649][T17169] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2137.305113][T17169] CPU: 1 PID: 17169 Comm: syz-executor.0 Not tainted 6.8.0-rc6-syzkaller-01699-g65f5dd4f02a8 #0
[ 2137.315516][T17169] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024
[ 2137.325559][T17169] Call Trace:
[ 2137.328828][T17169]  <TASK>
[ 2137.331748][T17169]  dump_stack_lvl+0x1e7/0x2e0
[ 2137.336425][T17169]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2137.341613][T17169]  ? __pfx__printk+0x10/0x10
[ 2137.346194][T17169]  ? ___ratelimit+0x4c4/0x670
[ 2137.350870][T17169]  ? __pfx____ratelimit+0x10/0x10
[ 2137.355891][T17169]  dump_header+0xda/0x6a0
[ 2137.360216][T17169]  oom_kill_process+0x3a7/0x930
[ 2137.365068][T17169]  out_of_memory+0xf67/0x1320
[ 2137.369747][T17169]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 2137.375374][T17169]  ? __pfx___mutex_lock+0x10/0x10
[ 2137.380394][T17169]  ? __pfx_out_of_memory+0x10/0x10
[ 2137.385504][T17169]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 2137.391042][T17169]  ? __pfx_lock_release+0x10/0x10
[ 2137.396059][T17169]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 2137.402122][T17169]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 2137.407313][T17169]  ? mem_cgroup_iter+0x422/0x560
[ 2137.412249][T17169]  try_charge_memcg+0xda2/0x18a0
[ 2137.417199][T17169]  ? __pfx_try_charge_memcg+0x10/0x10
[ 2137.422562][T17169]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 2137.428278][T17169]  ? __pfx_lock_release+0x10/0x10
[ 2137.433298][T17169]  ? memcg_account_kmem+0x1e7/0x210
[ 2137.438497][T17169]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 2137.444295][T17169]  __memcg_kmem_charge_page+0xe1/0x250
[ 2137.449752][T17169]  memcg_charge_kernel_stack+0x28a/0x550
[ 2137.455381][T17169]  dup_task_struct+0x40d/0x7d0
[ 2137.460138][T17169]  copy_process+0x5d5/0x3fc0
[ 2137.464731][T17169]  ? __might_fault+0xa9/0x120
[ 2137.469403][T17169]  ? __pfx_lock_release+0x10/0x10
[ 2137.474430][T17169]  ? __pfx_copy_process+0x10/0x10
[ 2137.479443][T17169]  ? __might_fault+0xc5/0x120
[ 2137.484117][T17169]  ? __asan_memset+0x23/0x50
[ 2137.488707][T17169]  kernel_clone+0x21d/0x8d0
[ 2137.493209][T17169]  ? __pfx_kernel_clone+0x10/0x10
[ 2137.498238][T17169]  __se_sys_clone3+0x2cb/0x350
[ 2137.502994][T17169]  ? __pfx___se_sys_clone3+0x10/0x10
[ 2137.508307][T17169]  ? do_syscall_64+0x108/0x240
[ 2137.513062][T17169]  ? do_syscall_64+0xb4/0x240
[ 2137.517730][T17169]  do_syscall_64+0xf9/0x240
[ 2137.522226][T17169]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 2137.528108][T17169] RIP: 0033:0x7f2719aa9b99
[ 2137.532514][T17169] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 2137.552109][T17169] RSP: 002b:00007ffce4e7f908 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 2137.560511][T17169] RAX: ffffffffffffffda RBX: 00007f2719a52270 RCX: 00007f2719aa9b99
[ 2137.568476][T17169] RDX: 00007f2719a52270 RSI: 0000000000000058 RDI: 00007ffce4e7f950
[ 2137.576440][T17169] RBP: 00007f271a78a6c0 R08: 00007f271a78a6c0 R09: 00007ffce4e7fa37
[ 2137.584401][T17169] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 2137.592367][T17169] R13: 000000000000000b R14: 00007ffce4e7f950 R15: 00007ffce4e7fa38
[ 2137.600341][T17169]  </TASK>
[ 2137.605842][T17169] memory: usage 307200kB, limit 307200kB, failcnt 179800
[ 2137.612893][T17169] memory+swap: usage 307412kB, limit 9007199254740988kB, failcnt 0
[ 2137.620931][ T5100] Bluetooth: hci8: command 0x041b tx timeout
[ 2137.639471][T17169] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[ 2137.646878][T17169] Memory cgroup stats for /syz0:
[ 2137.647011][T17169] cache 0
[ 2137.654897][T17169] rss 24576
[ 2137.657999][T17169] rss_huge 0
[ 2137.661172][T17169] shmem 0
[ 2137.664082][T17169] mapped_file 0
[ 2137.667578][T17169] dirty 0
[ 2137.670513][T17169] writeback 0
[ 2137.673774][T17169] workingset_refault_anon 122210
[ 2137.678784][T17169] workingset_refault_file 1
[ 2137.683283][T17169] swap 192512
[ 2137.686632][T17169] swapcached 0
[ 2137.690107][T17169] pgpgin 329777
[ 2137.693542][T17169] pgpgout 329771
[ 2137.697112][T17169] pgfault 637562
[ 2137.700652][T17169] pgmajfault 108874
[ 2137.704762][T17169] inactive_anon 0
[ 2137.708400][T17169] active_anon 24576
[ 2137.712199][T17169] inactive_file 0
[ 2137.716515][T17169] active_file 0
[ 2137.719982][T17169] unevictable 0
[ 2137.723416][T17169] hierarchical_memory_limit 314572800
[ 2137.731493][T17169] hierarchical_memsw_limit 9223372036854771712
[ 2137.740124][T17169] total_cache 0
[ 2137.743603][T17169] total_rss 24576
[ 2137.747450][T17169] total_rss_huge 0
[ 2137.751172][T17169] total_shmem 0
[ 2137.754770][T17169] total_mapped_file 0
[ 2137.758751][T17169] total_dirty 0
[ 2137.762187][T17169] total_writeback 0
[ 2137.766054][T17169] total_workingset_refault_anon 122210
[ 2137.771505][T17169] total_workingset_refault_file 1
[ 2137.776595][T17169] total_swap 192512
[ 2137.780394][T17169] total_swapcached 0
[ 2137.784265][T17169] total_pgpgin 329777
[ 2137.788348][T17169] total_pgpgout 329771
[ 2137.792531][T17169] total_pgfault 637562
[ 2137.796632][T17169] total_pgmajfault 108874
[ 2137.800953][T17169] total_inactive_anon 0
[ 2137.805167][T17169] total_active_anon 24576
[ 2137.809490][T17169] total_inactive_file 0
[ 2137.813618][T17169] total_active_file 0
[ 2137.817809][T17169] total_unevictable 0
[ 2137.821789][T17169] anon_cost 0
[ 2137.826337][T17169] file_cost 0
[ 2137.829629][T17169] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=17169,uid=0
11:33:19 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x884, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x854, 0x2, [@TCA_FLOW_POLICE={0x850, 0xa, 0x0, 0x1, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9000000]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x6, 0x0, 0x0, 0x0, 0x0, 0x101}}}]}]}}]}, 0x884}}, 0x0)

[ 2137.845205][T17169] Memory cgroup out of memory: Killed process 17169 (syz-executor.0) total-vm:54508kB, anon-rss:0kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:80kB oom_score_adj:1000
[ 2138.002000][T17171] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2138.022762][T17171] CPU: 0 PID: 17171 Comm: syz-executor.0 Not tainted 6.8.0-rc6-syzkaller-01699-g65f5dd4f02a8 #0
[ 2138.033204][T17171] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024
[ 2138.043278][T17171] Call Trace:
[ 2138.046577][T17171]  <TASK>
[ 2138.049523][T17171]  dump_stack_lvl+0x1e7/0x2e0
[ 2138.054223][T17171]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2138.059446][T17171]  ? __pfx__printk+0x10/0x10
[ 2138.064059][T17171]  ? ___ratelimit+0x4c4/0x670
[ 2138.068771][T17171]  ? __pfx____ratelimit+0x10/0x10
[ 2138.073825][T17171]  dump_header+0xda/0x6a0
[ 2138.078182][T17171]  oom_kill_process+0x3a7/0x930
[ 2138.083064][T17171]  out_of_memory+0xf67/0x1320
[ 2138.087772][T17171]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 2138.093429][T17171]  ? __pfx___mutex_lock+0x10/0x10
[ 2138.098475][T17171]  ? __pfx_out_of_memory+0x10/0x10
[ 2138.103623][T17171]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 2138.109190][T17171]  ? __pfx_lock_release+0x10/0x10
[ 2138.114248][T17171]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 2138.120340][T17171]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 2138.125553][T17171]  ? mem_cgroup_iter+0x422/0x560
[ 2138.130505][T17171]  try_charge_memcg+0xda2/0x18a0
[ 2138.135493][T17171]  ? __pfx_try_charge_memcg+0x10/0x10
[ 2138.140886][T17171]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 2138.146626][T17171]  ? __pfx_lock_release+0x10/0x10
[ 2138.151662][T17171]  ? memcg_account_kmem+0x1e7/0x210
[ 2138.156878][T17171]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 2138.162710][T17171]  __memcg_kmem_charge_page+0xe1/0x250
[ 2138.168206][T17171]  memcg_charge_kernel_stack+0x210/0x550
[ 2138.173867][T17171]  dup_task_struct+0x15d/0x7d0
[ 2138.178655][T17171]  copy_process+0x5d5/0x3fc0
[ 2138.183283][T17171]  ? __might_fault+0xa9/0x120
[ 2138.187983][T17171]  ? __pfx_lock_release+0x10/0x10
[ 2138.193038][T17171]  ? __pfx_copy_process+0x10/0x10
[ 2138.198083][T17171]  ? __might_fault+0xc5/0x120
[ 2138.202785][T17171]  ? __asan_memset+0x23/0x50
[ 2138.207399][T17171]  kernel_clone+0x21d/0x8d0
[ 2138.211930][T17171]  ? __pfx_kernel_clone+0x10/0x10
[ 2138.216992][T17171]  __se_sys_clone3+0x2cb/0x350
[ 2138.221781][T17171]  ? __pfx___se_sys_clone3+0x10/0x10
[ 2138.227118][T17171]  ? do_syscall_64+0x108/0x240
[ 2138.231902][T17171]  ? do_syscall_64+0xb4/0x240
[ 2138.236597][T17171]  do_syscall_64+0xf9/0x240
[ 2138.241121][T17171]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 2138.247029][T17171] RIP: 0033:0x7f2719aa9b99
[ 2138.251458][T17171] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 2138.271078][T17171] RSP: 002b:00007ffce4e7f908 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 2138.279509][T17171] RAX: ffffffffffffffda RBX: 00007f2719a52270 RCX: 00007f2719aa9b99
[ 2138.287496][T17171] RDX: 00007f2719a52270 RSI: 0000000000000058 RDI: 00007ffce4e7f950
[ 2138.295482][T17171] RBP: 00007f271a78a6c0 R08: 00007f271a78a6c0 R09: 00007ffce4e7fa37
[ 2138.303470][T17171] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 2138.311459][T17171] R13: 000000000000000b R14: 00007ffce4e7f950 R15: 00007ffce4e7fa38
[ 2138.319463][T17171]  </TASK>
[ 2138.325186][T17171] memory: usage 307200kB, limit 307200kB, failcnt 180524
[ 2138.332247][T17171] memory+swap: usage 307408kB, limit 9007199254740988kB, failcnt 0
[ 2138.340273][T17171] kmem: usage 307196kB, limit 9007199254740988kB, failcnt 0
[ 2138.347646][T17171] Memory cgroup stats for /syz0:
[ 2138.347775][T17171] cache 0
[ 2138.355689][T17171] rss 0
[ 2138.358459][T17171] rss_huge 0
[ 2138.361663][T17171] shmem 0
[ 2138.364651][T17171] mapped_file 0
[ 2138.368120][T17171] dirty 0
[ 2138.371065][T17171] writeback 0
[ 2138.374355][T17171] workingset_refault_anon 122453
[ 2138.379378][T17171] workingset_refault_file 1
[ 2138.383886][T17171] swap 212992
[ 2138.387257][T17171] swapcached 4096
[ 2138.390898][T17171] pgpgin 330031
[ 2138.394364][T17171] pgpgout 330030
[ 2138.398006][T17171] pgfault 637854
[ 2138.401560][T17171] pgmajfault 109044
[ 2138.405610][T17171] inactive_anon 0
[ 2138.409256][T17171] active_anon 4096
[ 2138.412980][T17171] inactive_file 0
[ 2138.416666][T17171] active_file 0
[ 2138.420127][T17171] unevictable 0
[ 2138.423588][T17171] hierarchical_memory_limit 314572800
[ 2138.429308][T17171] hierarchical_memsw_limit 9223372036854771712
[ 2138.436702][T17171] total_cache 0
[ 2138.440173][T17171] total_rss 0
[ 2138.443460][T17171] total_rss_huge 0
[ 2138.447640][T17171] total_shmem 0
[ 2138.451121][T17171] total_mapped_file 0
[ 2138.455172][T17171] total_dirty 0
[ 2138.458642][T17171] total_writeback 0
[ 2138.462447][T17171] total_workingset_refault_anon 122453
[ 2138.467967][T17171] total_workingset_refault_file 1
[ 2138.472991][T17171] total_swap 212992
[ 2138.476849][T17171] total_swapcached 4096
[ 2138.481003][T17171] total_pgpgin 330031
[ 2138.485054][T17171] total_pgpgout 330030
[ 2138.489119][T17171] total_pgfault 637854
[ 2138.493173][T17171] total_pgmajfault 109044
[ 2138.497555][T17171] total_inactive_anon 0
[ 2138.501706][T17171] total_active_anon 4096
[ 2138.506006][T17171] total_inactive_file 0
[ 2138.510283][T17171] total_active_file 0
[ 2138.514250][T17171] total_unevictable 0
[ 2138.518260][T17171] anon_cost 0
[ 2138.521541][T17171] file_cost 0
[ 2138.524864][T17171] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=17171,uid=0
11:33:20 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x884, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x854, 0x2, [@TCA_FLOW_POLICE={0x850, 0xa, 0x0, 0x1, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa000000]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x6, 0x0, 0x0, 0x0, 0x0, 0x101}}}]}]}}]}, 0x884}}, 0x0)

[ 2138.540590][T17171] Memory cgroup out of memory: Killed process 17171 (syz-executor.0) total-vm:54508kB, anon-rss:0kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:80kB oom_score_adj:1000
[ 2138.758685][T17173] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2138.772222][T17173] CPU: 0 PID: 17173 Comm: syz-executor.0 Not tainted 6.8.0-rc6-syzkaller-01699-g65f5dd4f02a8 #0
[ 2138.782641][T17173] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024
[ 2138.792709][T17173] Call Trace:
[ 2138.795984][T17173]  <TASK>
[ 2138.798907][T17173]  dump_stack_lvl+0x1e7/0x2e0
[ 2138.803582][T17173]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2138.808769][T17173]  ? __pfx__printk+0x10/0x10
[ 2138.813351][T17173]  ? ___ratelimit+0x4c4/0x670
[ 2138.818028][T17173]  ? __pfx____ratelimit+0x10/0x10
[ 2138.823051][T17173]  dump_header+0xda/0x6a0
[ 2138.827398][T17173]  oom_kill_process+0x3a7/0x930
[ 2138.832257][T17173]  out_of_memory+0xf67/0x1320
[ 2138.836935][T17173]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 2138.842562][T17173]  ? __pfx___mutex_lock+0x10/0x10
[ 2138.847583][T17173]  ? __pfx_out_of_memory+0x10/0x10
[ 2138.852697][T17173]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 2138.858239][T17173]  ? __pfx_lock_release+0x10/0x10
[ 2138.863261][T17173]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 2138.869325][T17173]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 2138.874517][T17173]  ? mem_cgroup_iter+0x422/0x560
[ 2138.879451][T17173]  try_charge_memcg+0xda2/0x18a0
[ 2138.884404][T17173]  ? __pfx_try_charge_memcg+0x10/0x10
[ 2138.889795][T17173]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 2138.895516][T17173]  ? __pfx_lock_release+0x10/0x10
[ 2138.900540][T17173]  ? memcg_account_kmem+0x1e7/0x210
[ 2138.905743][T17173]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 2138.911544][T17173]  __memcg_kmem_charge_page+0xe1/0x250
[ 2138.917010][T17173]  memcg_charge_kernel_stack+0x28a/0x550
[ 2138.922640][T17173]  dup_task_struct+0x15d/0x7d0
[ 2138.927402][T17173]  copy_process+0x5d5/0x3fc0
[ 2138.931993][T17173]  ? __might_fault+0xa9/0x120
[ 2138.936665][T17173]  ? __pfx_lock_release+0x10/0x10
[ 2138.941686][T17173]  ? __lock_acquire+0x1345/0x1fd0
[ 2138.946707][T17173]  ? __pfx_copy_process+0x10/0x10
[ 2138.951726][T17173]  ? __might_fault+0xc5/0x120
[ 2138.956405][T17173]  ? __asan_memset+0x23/0x50
[ 2138.960994][T17173]  kernel_clone+0x21d/0x8d0
[ 2138.965493][T17173]  ? __pfx_kernel_clone+0x10/0x10
[ 2138.970519][T17173]  ? __pfx_lock_release+0x10/0x10
[ 2138.975546][T17173]  __se_sys_clone3+0x2cb/0x350
[ 2138.980300][T17173]  ? __might_fault+0xa9/0x120
[ 2138.984972][T17173]  ? __pfx___se_sys_clone3+0x10/0x10
[ 2138.990261][T17173]  ? rcu_is_watching+0x15/0xb0
[ 2138.995030][T17173]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 2139.001015][T17173]  ? exc_page_fault+0x587/0x870
[ 2139.005869][T17173]  ? do_syscall_64+0xb4/0x240
[ 2139.010538][T17173]  do_syscall_64+0xf9/0x240
[ 2139.015034][T17173]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 2139.020917][T17173] RIP: 0033:0x7f2719aa9b99
[ 2139.025323][T17173] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 2139.044922][T17173] RSP: 002b:00007ffce4e7f908 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 2139.053329][T17173] RAX: ffffffffffffffda RBX: 00007f2719a52270 RCX: 00007f2719aa9b99
[ 2139.061298][T17173] RDX: 00007f2719a52270 RSI: 0000000000000058 RDI: 00007ffce4e7f950
[ 2139.069260][T17173] RBP: 00007f271a78a6c0 R08: 00007f271a78a6c0 R09: 00007ffce4e7fa37
[ 2139.077222][T17173] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 2139.085186][T17173] R13: 000000000000000b R14: 00007ffce4e7f950 R15: 00007ffce4e7fa38
[ 2139.093165][T17173]  </TASK>
[ 2139.097207][ T5100] Bluetooth: hci7: command 0x040f tx timeout
[ 2139.105846][T17173] memory: usage 307200kB, limit 307200kB, failcnt 181094
[ 2139.112900][T17173] memory+swap: usage 307412kB, limit 9007199254740988kB, failcnt 0
[ 2139.120860][T17173] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[ 2139.128451][T17173] Memory cgroup stats for /syz0:
[ 2139.128582][T17173] cache 0
[ 2139.136489][T17173] rss 4096
[ 2139.139507][T17173] rss_huge 0
[ 2139.142680][T17173] shmem 0
[ 2139.145682][T17173] mapped_file 0
[ 2139.149141][T17173] dirty 0
[ 2139.152070][T17173] writeback 0
[ 2139.155875][T17173] workingset_refault_anon 122663
[ 2139.160818][T17173] workingset_refault_file 1
[ 2139.165386][T17173] swap 212992
[ 2139.168675][T17173] swapcached 0
[ 2139.172041][T17173] pgpgin 330252
[ 2139.175549][T17173] pgpgout 330251
[ 2139.179093][T17173] pgfault 638119
[ 2139.182629][T17173] pgmajfault 109191
[ 2139.186513][T17173] inactive_anon 0
[ 2139.190149][T17173] active_anon 4096
[ 2139.193843][T17173] inactive_file 0
[ 2139.197497][T17173] active_file 0
[ 2139.200952][T17173] unevictable 0
[ 2139.204438][T17173] hierarchical_memory_limit 314572800
[ 2139.209805][T17173] hierarchical_memsw_limit 9223372036854771712
[ 2139.217193][T17173] total_cache 0
[ 2139.220663][T17173] total_rss 4096
[ 2139.224192][T17173] total_rss_huge 0
[ 2139.234838][T17173] total_shmem 0
[ 2139.238316][T17173] total_mapped_file 0
[ 2139.242291][T17173] total_dirty 0
[ 2139.245973][T17173] total_writeback 0
[ 2139.249777][T17173] total_workingset_refault_anon 122663
[ 2139.255496][T17173] total_workingset_refault_file 1
[ 2139.260517][T17173] total_swap 212992
[ 2139.264298][T17173] total_swapcached 0
[ 2139.268473][T17173] total_pgpgin 330252
[ 2139.272463][T17173] total_pgpgout 330251
[ 2139.276819][T17173] total_pgfault 638119
[ 2139.280898][T17173] total_pgmajfault 109191
[ 2139.285409][T17173] total_inactive_anon 0
[ 2139.289561][T17173] total_active_anon 4096
[ 2139.293775][T17173] total_inactive_file 0
[ 2139.298261][T17173] total_active_file 0
[ 2139.302241][T17173] total_unevictable 0
[ 2139.306388][T17173] anon_cost 0
11:33:21 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x884, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x854, 0x2, [@TCA_FLOW_POLICE={0x850, 0xa, 0x0, 0x1, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb000000]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x6, 0x0, 0x0, 0x0, 0x0, 0x101}}}]}]}}]}, 0x884}}, 0x0)

[ 2139.309670][T17173] file_cost 0
[ 2139.312931][T17173] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=17173,uid=0
[ 2139.330214][T17173] Memory cgroup out of memory: Killed process 17173 (syz-executor.0) total-vm:54508kB, anon-rss:0kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:80kB oom_score_adj:1000
[ 2139.502387][T17175] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2139.512626][T17175] CPU: 1 PID: 17175 Comm: syz-executor.0 Not tainted 6.8.0-rc6-syzkaller-01699-g65f5dd4f02a8 #0
[ 2139.523023][T17175] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024
[ 2139.533063][T17175] Call Trace:
[ 2139.536327][T17175]  <TASK>
[ 2139.539241][T17175]  dump_stack_lvl+0x1e7/0x2e0
[ 2139.543908][T17175]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2139.549087][T17175]  ? __pfx__printk+0x10/0x10
[ 2139.553661][T17175]  ? ___ratelimit+0x4c4/0x670
[ 2139.558328][T17175]  ? __pfx____ratelimit+0x10/0x10
[ 2139.563337][T17175]  dump_header+0xda/0x6a0
[ 2139.567676][T17175]  oom_kill_process+0x3a7/0x930
[ 2139.572540][T17175]  out_of_memory+0xf67/0x1320
[ 2139.577208][T17175]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 2139.582822][T17175]  ? __pfx___mutex_lock+0x10/0x10
[ 2139.587832][T17175]  ? __pfx_out_of_memory+0x10/0x10
[ 2139.592938][T17175]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 2139.598467][T17175]  ? __pfx_lock_release+0x10/0x10
[ 2139.603474][T17175]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 2139.609526][T17175]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 2139.614720][T17175]  ? mem_cgroup_iter+0x422/0x560
[ 2139.619674][T17175]  try_charge_memcg+0xda2/0x18a0
[ 2139.624636][T17175]  ? __pfx_try_charge_memcg+0x10/0x10
[ 2139.630003][T17175]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 2139.635732][T17175]  ? __pfx_lock_release+0x10/0x10
[ 2139.640764][T17175]  ? memcg_account_kmem+0x1e7/0x210
[ 2139.645966][T17175]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 2139.651769][T17175]  __memcg_kmem_charge_page+0xe1/0x250
[ 2139.657227][T17175]  memcg_charge_kernel_stack+0x28a/0x550
[ 2139.662856][T17175]  dup_task_struct+0x40d/0x7d0
[ 2139.667622][T17175]  copy_process+0x5d5/0x3fc0
[ 2139.672219][T17175]  ? __might_fault+0xa9/0x120
[ 2139.676896][T17175]  ? __pfx_lock_release+0x10/0x10
[ 2139.681927][T17175]  ? __pfx_copy_process+0x10/0x10
[ 2139.686942][T17175]  ? __might_fault+0xc5/0x120
[ 2139.691630][T17175]  ? __asan_memset+0x23/0x50
[ 2139.696230][T17175]  kernel_clone+0x21d/0x8d0
[ 2139.700731][T17175]  ? __pfx_kernel_clone+0x10/0x10
[ 2139.705759][T17175]  __se_sys_clone3+0x2cb/0x350
[ 2139.710517][T17175]  ? __pfx___se_sys_clone3+0x10/0x10
[ 2139.715820][T17175]  ? do_syscall_64+0x108/0x240
[ 2139.720579][T17175]  ? do_syscall_64+0xb4/0x240
[ 2139.725245][T17175]  do_syscall_64+0xf9/0x240
[ 2139.729742][T17175]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 2139.735626][T17175] RIP: 0033:0x7f2719aa9b99
[ 2139.740033][T17175] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 2139.759631][T17175] RSP: 002b:00007ffce4e7f908 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 2139.768041][T17175] RAX: ffffffffffffffda RBX: 00007f2719a52270 RCX: 00007f2719aa9b99
[ 2139.776014][T17175] RDX: 00007f2719a52270 RSI: 0000000000000058 RDI: 00007ffce4e7f950
[ 2139.783974][T17175] RBP: 00007f271a78a6c0 R08: 00007f271a78a6c0 R09: 00007ffce4e7fa37
[ 2139.791939][T17175] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 2139.799901][T17175] R13: 000000000000000b R14: 00007ffce4e7f950 R15: 00007ffce4e7fa38
[ 2139.807877][T17175]  </TASK>
[ 2139.811976][ T5100] Bluetooth: hci8: command 0x040f tx timeout
[ 2139.824486][T17175] memory: usage 307200kB, limit 307200kB, failcnt 181477
[ 2139.831523][T17175] memory+swap: usage 307412kB, limit 9007199254740988kB, failcnt 0
[ 2139.843674][T17175] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[ 2139.851059][T17175] Memory cgroup stats for /syz0:
[ 2139.851189][T17175] cache 0
[ 2139.859306][T17175] rss 12288
[ 2139.862432][T17175] rss_huge 0
[ 2139.865762][T17175] shmem 0
[ 2139.868699][T17175] mapped_file 0
[ 2139.872146][T17175] dirty 0
[ 2139.875276][T17175] writeback 0
[ 2139.878562][T17175] workingset_refault_anon 122818
[ 2139.883473][T17175] workingset_refault_file 1
[ 2139.888123][T17175] swap 204800
[ 2139.891408][T17175] swapcached 0
[ 2139.894842][T17175] pgpgin 330422
[ 2139.898296][T17175] pgpgout 330419
[ 2139.901818][T17175] pgfault 638344
[ 2139.905484][T17175] pgmajfault 109320
[ 2139.909306][T17175] inactive_anon 12288
[ 2139.913289][T17175] active_anon 0
[ 2139.916827][T17175] inactive_file 0
[ 2139.920459][T17175] active_file 0
[ 2139.923893][T17175] unevictable 0
[ 2139.927616][T17175] hierarchical_memory_limit 314572800
[ 2139.932995][T17175] hierarchical_memsw_limit 9223372036854771712
[ 2139.939243][T17175] total_cache 0
[ 2139.942709][T17175] total_rss 12288
[ 2139.946433][T17175] total_rss_huge 0
[ 2139.950183][T17175] total_shmem 0
[ 2139.953649][T17175] total_mapped_file 0
[ 2139.957710][T17175] total_dirty 0
[ 2139.961178][T17175] total_writeback 0
[ 2139.965080][T17175] total_workingset_refault_anon 122818
[ 2139.970542][T17175] total_workingset_refault_file 1
[ 2139.975637][T17175] total_swap 204800
[ 2139.979438][T17175] total_swapcached 0
[ 2139.983313][T17175] total_pgpgin 330422
[ 2139.987400][T17175] total_pgpgout 330419
[ 2139.991463][T17175] total_pgfault 638344
[ 2139.995610][T17175] total_pgmajfault 109320
[ 2139.999933][T17175] total_inactive_anon 12288
[ 2140.004533][T17175] total_active_anon 0
[ 2140.008509][T17175] total_inactive_file 0
[ 2140.012638][T17175] total_active_file 0
[ 2140.016646][T17175] total_unevictable 0
[ 2140.020619][T17175] anon_cost 0
[ 2140.023887][T17175] file_cost 0
[ 2140.027282][T17175] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=17175,uid=0
11:33:22 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x884, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x854, 0x2, [@TCA_FLOW_POLICE={0x850, 0xa, 0x0, 0x1, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000000]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x6, 0x0, 0x0, 0x0, 0x0, 0x101}}}]}]}}]}, 0x884}}, 0x0)

[ 2140.042915][T17175] Memory cgroup out of memory: Killed process 17175 (syz-executor.0) total-vm:54508kB, anon-rss:128kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:80kB oom_score_adj:1000
[ 2140.104171][T17177] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=0
[ 2140.119500][T17177] CPU: 0 PID: 17177 Comm: syz-executor.0 Not tainted 6.8.0-rc6-syzkaller-01699-g65f5dd4f02a8 #0
[ 2140.129937][T17177] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024
[ 2140.140005][T17177] Call Trace:
[ 2140.143297][T17177]  <TASK>
[ 2140.146238][T17177]  dump_stack_lvl+0x1e7/0x2e0
[ 2140.150940][T17177]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2140.156159][T17177]  ? __pfx__printk+0x10/0x10
[ 2140.160776][T17177]  ? ___ratelimit+0x4c4/0x670
[ 2140.165486][T17177]  ? __pfx____ratelimit+0x10/0x10
[ 2140.170535][T17177]  dump_header+0xda/0x6a0
[ 2140.174881][T17177]  oom_kill_process+0x3a7/0x930
[ 2140.179734][T17177]  out_of_memory+0xf67/0x1320
[ 2140.184412][T17177]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 2140.190048][T17177]  ? __pfx___mutex_lock+0x10/0x10
[ 2140.195062][T17177]  ? __pfx_out_of_memory+0x10/0x10
[ 2140.200169][T17177]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 2140.205706][T17177]  ? __pfx_lock_release+0x10/0x10
[ 2140.210719][T17177]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 2140.216776][T17177]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 2140.221963][T17177]  ? mem_cgroup_iter+0x422/0x560
[ 2140.226891][T17177]  try_charge_memcg+0xda2/0x18a0
[ 2140.231829][T17177]  ? __pfx_try_charge_memcg+0x10/0x10
[ 2140.237190][T17177]  ? percpu_ref_tryget+0x14/0x180
[ 2140.242216][T17177]  charge_memcg+0xa2/0x160
[ 2140.246619][T17177]  __mem_cgroup_charge+0x27/0x80
[ 2140.251552][T17177]  folio_prealloc+0x52/0x170
[ 2140.256148][T17177]  do_wp_page+0x1222/0x4c90
[ 2140.260647][T17177]  ? page_ext_put+0x9c/0xc0
[ 2140.265146][T17177]  ? __pfx_do_wp_page+0x10/0x10
[ 2140.269985][T17177]  ? page_ext_get+0x20/0x2a0
[ 2140.274562][T17177]  ? page_ext_get+0x1d6/0x2a0
[ 2140.279234][T17177]  ? __page_table_check_ptes_set+0x220/0x280
[ 2140.285211][T17177]  ? folio_add_anon_rmap_ptes+0x10d3/0x1750
[ 2140.291094][T17177]  ? folio_unlock+0x126/0x2f0
[ 2140.295770][T17177]  do_swap_page+0x2099/0x3f40
[ 2140.300451][T17177]  ? do_swap_page+0x154/0x3f40
[ 2140.305204][T17177]  ? __pfx_do_swap_page+0x10/0x10
[ 2140.310213][T17177]  ? pte_offset_map_nolock+0x137/0x1f0
[ 2140.315661][T17177]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 2140.321465][T17177]  ? __pfx_validate_chain+0x10/0x10
[ 2140.326669][T17177]  __handle_mm_fault+0x15e8/0x72d0
[ 2140.331786][T17177]  ? __pfx___handle_mm_fault+0x10/0x10
[ 2140.337247][T17177]  ? mt_find+0x226/0x850
[ 2140.341492][T17177]  ? __pfx_lock_release+0x10/0x10
[ 2140.346525][T17177]  ? mt_find+0x62d/0x850
[ 2140.350759][T17177]  ? mt_find+0x226/0x850
[ 2140.355026][T17177]  ? find_vma+0x142/0x1c0
[ 2140.359371][T17177]  ? __pfx_find_vma+0x10/0x10
[ 2140.364070][T17177]  handle_mm_fault+0x3c1/0x8a0
[ 2140.368864][T17177]  exc_page_fault+0x2ad/0x870
[ 2140.373559][T17177]  asm_exc_page_fault+0x26/0x30
[ 2140.378427][T17177] RIP: 0010:__put_user_4+0x11/0x20
[ 2140.383547][T17177] Code: 1f 84 00 00 00 00 00 66 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 89 cb 48 c1 fb 3f 48 09 d9 0f 01 cb <89> 01 31 c9 0f 01 ca c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90
[ 2140.403140][T17177] RSP: 0000:ffffc900035dff00 EFLAGS: 00050206
[ 2140.409191][T17177] RAX: 0000000000004ef9 RBX: 0000000000000000 RCX: 0000555556fd4750
[ 2140.417150][T17177] RDX: 0000000000000000 RSI: ffffffff8baac7e0 RDI: ffffffff8bfe7820
[ 2140.425106][T17177] RBP: ffff88802266dfb0 R08: ffffffff8f85e9ef R09: 1ffffffff1f0bd3d
[ 2140.433063][T17177] R10: dffffc0000000000 R11: fffffbfff1f0bd3e R12: 0000000000000000
[ 2140.441029][T17177] R13: 0000000000000000 R14: 0000000000004ef9 R15: dffffc0000000000
[ 2140.449006][T17177]  schedule_tail+0x95/0xb0
[ 2140.453412][T17177]  ret_from_fork+0x24/0x80
[ 2140.457824][T17177]  ret_from_fork_asm+0x1b/0x30
[ 2140.462616][T17177]  </TASK>
[ 2140.490778][T17177] memory: usage 307184kB, limit 307200kB, failcnt 181566
[ 2140.498287][T17177] memory+swap: usage 307380kB, limit 9007199254740988kB, failcnt 0
[ 2140.506367][T17177] kmem: usage 307156kB, limit 9007199254740988kB, failcnt 0
[ 2140.514267][T17177] Memory cgroup stats for /syz0:
[ 2140.516350][T17177] cache 0
[ 2140.524231][T17177] rss 8192
[ 2140.528623][T17177] rss_huge 0
[ 2140.531828][T17177] shmem 0
[ 2140.535254][T17177] mapped_file 0
[ 2140.538716][T17177] dirty 0
[ 2140.541634][T17177] writeback 0
[ 2140.545015][T17177] workingset_refault_anon 122840
[ 2140.549959][T17177] workingset_refault_file 1
[ 2140.554526][T17177] swap 192512
[ 2140.557816][T17177] swapcached 16384
[ 2140.561531][T17177] pgpgin 330445
[ 2140.565217][T17177] pgpgout 330440
[ 2140.568906][T17177] pgfault 638371
[ 2140.572439][T17177] pgmajfault 109337
[ 2140.576310][T17177] inactive_anon 0
[ 2140.579938][T17177] active_anon 20480
[ 2140.583729][T17177] inactive_file 0
[ 2140.587464][T17177] active_file 0
[ 2140.590924][T17177] unevictable 0
[ 2140.594375][T17177] hierarchical_memory_limit 314572800
[ 2140.600116][T17177] hierarchical_memsw_limit 9223372036854771712
[ 2140.606350][T17177] total_cache 0
[ 2140.609816][T17177] total_rss 8192
[ 2140.613365][T17177] total_rss_huge 0
[ 2140.617144][T17177] total_shmem 0
[ 2140.620610][T17177] total_mapped_file 0
[ 2140.624795][T17177] total_dirty 0
[ 2140.628266][T17177] total_writeback 0
[ 2140.632073][T17177] total_workingset_refault_anon 122840
[ 2140.637796][T17177] total_workingset_refault_file 1
[ 2140.642820][T17177] total_swap 192512
[ 2140.646877][T17177] total_swapcached 16384
[ 2140.651135][T17177] total_pgpgin 330445
[ 2140.655466][T17177] total_pgpgout 330440
[ 2140.659541][T17177] total_pgfault 638371
[ 2140.663604][T17177] total_pgmajfault 109337
[ 2140.668042][T17177] total_inactive_anon 0
[ 2140.672198][T17177] total_active_anon 20480
[ 2140.676663][T17177] total_inactive_file 0
[ 2140.680817][T17177] total_active_file 0
[ 2140.684859][T17177] total_unevictable 0
[ 2140.688845][T17177] anon_cost 0
[ 2140.692144][T17177] file_cost 0
[ 2140.695590][T17177] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=5095,uid=0
[ 2140.711167][T17177] Memory cgroup out of memory: Killed process 5095 (syz-executor.0) total-vm:50536kB, anon-rss:120kB, file-rss:8960kB, shmem-rss:0kB, UID:0 pgtables:76kB oom_score_adj:0
[ 2141.164855][ T5100] Bluetooth: hci7: command 0x0419 tx timeout
[ 2141.874548][ T5100] Bluetooth: hci8: command 0x0419 tx timeout
[ 2160.665419][ T1238] ieee802154 phy0 wpan0: encryption failed: -22
[ 2160.671858][ T1238] ieee802154 phy1 wpan1: encryption failed: -22
[ 2162.411749][T17087] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 2162.420433][T17087] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 2162.428928][T17087] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 2162.437934][T17087] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 2162.445549][T17087] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[ 2162.453040][T17087] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 2162.813989][T17087] Bluetooth: hci9: unexpected cc 0x0c03 length: 249 > 1
[ 2162.821873][T17087] Bluetooth: hci9: unexpected cc 0x1003 length: 249 > 9
[ 2162.831171][T17087] Bluetooth: hci9: unexpected cc 0x1001 length: 249 > 9
[ 2162.845834][T17087] Bluetooth: hci9: unexpected cc 0x0c23 length: 249 > 4
[ 2162.857612][T17087] Bluetooth: hci9: unexpected cc 0x0c25 length: 249 > 3
[ 2162.871108][T17087] Bluetooth: hci9: unexpected cc 0x0c38 length: 249 > 2
[ 2164.514552][ T5100] Bluetooth: hci2: command 0x0409 tx timeout
[ 2164.914572][ T5100] Bluetooth: hci9: command 0x0409 tx timeout
11:33:47 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x884, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x854, 0x2, [@TCA_FLOW_POLICE={0x850, 0xa, 0x0, 0x1, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x11000000]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x6, 0x0, 0x0, 0x0, 0x0, 0x101}}}]}]}}]}, 0x884}}, 0x0)

[ 2166.594539][ T5100] Bluetooth: hci2: command 0x041b tx timeout
[ 2166.793773][T17087] Bluetooth: hci10: unexpected cc 0x0c03 length: 249 > 1
[ 2166.803564][T17087] Bluetooth: hci10: unexpected cc 0x1003 length: 249 > 9
[ 2166.812204][T17087] Bluetooth: hci10: unexpected cc 0x1001 length: 249 > 9
[ 2166.820934][T17087] Bluetooth: hci10: unexpected cc 0x0c23 length: 249 > 4
[ 2166.829227][T17087] Bluetooth: hci10: unexpected cc 0x0c25 length: 249 > 3
[ 2166.837472][T17087] Bluetooth: hci10: unexpected cc 0x0c38 length: 249 > 2
[ 2166.994924][T17087] Bluetooth: hci9: command 0x041b tx timeout
[ 2168.674521][T17087] Bluetooth: hci2: command 0x040f tx timeout
[ 2168.914750][T17087] Bluetooth: hci10: command 0x0409 tx timeout
[ 2169.084781][T17087] Bluetooth: hci9: command 0x040f tx timeout
[ 2170.754696][T17087] Bluetooth: hci2: command 0x0419 tx timeout
[ 2170.994535][T17087] Bluetooth: hci10: command 0x041b tx timeout
[ 2171.154806][T17087] Bluetooth: hci9: command 0x0419 tx timeout
[ 2173.074660][T17087] Bluetooth: hci10: command 0x040f tx timeout
[ 2175.155290][T17087] Bluetooth: hci10: command 0x0419 tx timeout
[ 2188.442752][ T5100] Bluetooth: hci1: command 0x0406 tx timeout
[ 2193.474507][T17193] Bluetooth: hci3: command 0x0406 tx timeout
[ 2198.353477][T17193] Bluetooth: hci11: unexpected cc 0x0c03 length: 249 > 1
[ 2198.364804][T17193] Bluetooth: hci11: unexpected cc 0x1003 length: 249 > 9
[ 2198.372111][T17193] Bluetooth: hci11: unexpected cc 0x1001 length: 249 > 9
[ 2198.381460][T17193] Bluetooth: hci11: unexpected cc 0x0c23 length: 249 > 4
[ 2198.389851][T17193] Bluetooth: hci11: unexpected cc 0x0c25 length: 249 > 3
[ 2198.397657][T17193] Bluetooth: hci11: unexpected cc 0x0c38 length: 249 > 2
[ 2198.783564][T17193] Bluetooth: hci12: unexpected cc 0x0c03 length: 249 > 1
[ 2198.792825][T17193] Bluetooth: hci12: unexpected cc 0x1003 length: 249 > 9
[ 2198.806866][T17193] Bluetooth: hci12: unexpected cc 0x1001 length: 249 > 9
[ 2198.819949][T17193] Bluetooth: hci12: unexpected cc 0x0c23 length: 249 > 4
[ 2198.827975][T17193] Bluetooth: hci12: unexpected cc 0x0c25 length: 249 > 3
[ 2198.837185][T17193] Bluetooth: hci12: unexpected cc 0x0c38 length: 249 > 2
[ 2200.434608][T17193] Bluetooth: hci11: command 0x0409 tx timeout
[ 2200.924865][T17193] Bluetooth: hci12: command 0x0409 tx timeout
[ 2202.514894][T17193] Bluetooth: hci11: command 0x041b tx timeout
[ 2202.995185][T17193] Bluetooth: hci12: command 0x041b tx timeout
[ 2204.604909][T17193] Bluetooth: hci11: command 0x040f tx timeout
[ 2205.084834][T17193] Bluetooth: hci12: command 0x040f tx timeout
[ 2206.710377][T17193] Bluetooth: hci11: command 0x0419 tx timeout
[ 2207.165078][T17193] Bluetooth: hci12: command 0x0419 tx timeout
[ 2218.994598][T17193] Bluetooth: hci5: command 0x0406 tx timeout
[ 2222.074009][ T1238] ieee802154 phy0 wpan0: encryption failed: -22
[ 2222.080418][ T1238] ieee802154 phy1 wpan1: encryption failed: -22
[ 2223.314519][   T29] INFO: task kworker/u4:1:12 blocked for more than 143 seconds.
[ 2223.322188][   T29]       Not tainted 6.8.0-rc6-syzkaller-01699-g65f5dd4f02a8 #0
[ 2223.331148][   T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 2223.340084][   T29] task:kworker/u4:1    state:D stack:20400 pid:12    tgid:12    ppid:2      flags:0x00004000
[ 2223.350464][   T29] Workqueue: ipv6_addrconf addrconf_dad_work
[ 2223.356760][   T29] Call Trace:
[ 2223.360050][   T29]  <TASK>
[ 2223.362968][   T29]  __schedule+0x17d1/0x49f0
[ 2223.367965][   T29]  ? __pfx___schedule+0x10/0x10
[ 2223.372819][   T29]  ? __pfx_lock_release+0x10/0x10
[ 2223.378162][   T29]  ? __mutex_trylock_common+0x91/0x2e0
[ 2223.383617][   T29]  ? kthread_data+0x52/0xd0
[ 2223.388583][   T29]  ? wq_worker_sleeping+0x66/0x240
[ 2223.393706][   T29]  ? schedule+0x8e/0x260
[ 2223.398371][   T29]  schedule+0x149/0x260
[ 2223.402525][   T29]  schedule_preempt_disabled+0x13/0x30
[ 2223.408495][   T29]  __mutex_lock+0x6a3/0xd70
[ 2223.413022][   T29]  ? mark_lock+0x9a/0x350
[ 2223.417859][   T29]  ? __mutex_lock+0x526/0xd70
[ 2223.422553][   T29]  ? addrconf_dad_work+0xd0/0x16f0
[ 2223.427977][   T29]  ? __pfx___mutex_lock+0x10/0x10
[ 2223.433003][   T29]  addrconf_dad_work+0xd0/0x16f0
[ 2223.440248][   T29]  ? __pfx_addrconf_dad_work+0x10/0x10
[ 2223.446183][   T29]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 2223.452533][   T29]  ? process_scheduled_works+0x825/0x1420
[ 2223.458569][   T29]  process_scheduled_works+0x913/0x1420
[ 2223.464126][   T29]  ? __pfx_process_scheduled_works+0x10/0x10
[ 2223.470450][   T29]  ? assign_work+0x364/0x3d0
[ 2223.475353][   T29]  worker_thread+0xa5f/0x1000
[ 2223.480071][   T29]  ? __pfx_worker_thread+0x10/0x10
[ 2223.485634][   T29]  kthread+0x2ef/0x390
[ 2223.489716][   T29]  ? __pfx_worker_thread+0x10/0x10
[ 2223.495164][   T29]  ? __pfx_kthread+0x10/0x10
[ 2223.499846][   T29]  ret_from_fork+0x4b/0x80
[ 2223.504251][   T29]  ? __pfx_kthread+0x10/0x10
[ 2223.509224][   T29]  ret_from_fork_asm+0x1b/0x30
[ 2223.514006][   T29]  </TASK>
[ 2223.517564][   T29] INFO: task kworker/0:8:5260 blocked for more than 143 seconds.
[ 2223.526013][   T29]       Not tainted 6.8.0-rc6-syzkaller-01699-g65f5dd4f02a8 #0
[ 2223.533559][   T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 2223.542347][   T29] task:kworker/0:8     state:D stack:22608 pid:5260  tgid:5260  ppid:2      flags:0x00004000
[ 2223.552788][   T29] Workqueue: events switchdev_deferred_process_work
[ 2223.559830][   T29] Call Trace:
[ 2223.563134][   T29]  <TASK>
[ 2223.566402][   T29]  __schedule+0x17d1/0x49f0
[ 2223.570921][   T29]  ? __pfx___schedule+0x10/0x10
[ 2223.576125][   T29]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 2223.582108][   T29]  ? __pfx_lock_release+0x10/0x10
[ 2223.587623][   T29]  ? _raw_spin_unlock_irq+0x23/0x50
[ 2223.592840][   T29]  ? lockdep_hardirqs_on+0x98/0x140
[ 2223.598326][   T29]  ? schedule+0x8e/0x260
[ 2223.602670][   T29]  schedule+0x149/0x260
[ 2223.607146][   T29]  schedule_preempt_disabled+0x13/0x30
[ 2223.612601][   T29]  __mutex_lock+0x6a3/0xd70
[ 2223.617562][   T29]  ? __mutex_lock+0x526/0xd70
[ 2223.622243][   T29]  ? switchdev_deferred_process_work+0xe/0x20
[ 2223.628645][   T29]  ? __pfx___mutex_lock+0x10/0x10
[ 2223.633669][   T29]  ? process_scheduled_works+0x825/0x1420
[ 2223.640388][   T29]  switchdev_deferred_process_work+0xe/0x20
[ 2223.646683][   T29]  process_scheduled_works+0x913/0x1420
[ 2223.652300][   T29]  ? __pfx_process_scheduled_works+0x10/0x10
[ 2223.658816][   T29]  ? assign_work+0x364/0x3d0
[ 2223.663441][   T29]  worker_thread+0xa5f/0x1000
[ 2223.668676][   T29]  ? __pfx_worker_thread+0x10/0x10
[ 2223.673825][   T29]  kthread+0x2ef/0x390
[ 2223.678219][   T29]  ? __pfx_worker_thread+0x10/0x10
[ 2223.683348][   T29]  ? __pfx_kthread+0x10/0x10
[ 2223.688044][   T29]  ret_from_fork+0x4b/0x80
[ 2223.692472][   T29]  ? __pfx_kthread+0x10/0x10
[ 2223.697136][   T29]  ret_from_fork_asm+0x1b/0x30
[ 2223.701919][   T29]  </TASK>
[ 2223.705043][   T29] INFO: task syz-executor.4:17074 blocked for more than 143 seconds.
[ 2223.713108][   T29]       Not tainted 6.8.0-rc6-syzkaller-01699-g65f5dd4f02a8 #0
[ 2223.720707][   T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 2223.729416][   T29] task:syz-executor.4  state:D stack:27184 pid:17074 tgid:17072 ppid:5105   flags:0x00004006
[ 2223.739643][   T29] Call Trace:
[ 2223.742910][   T29]  <TASK>
[ 2223.745894][   T29]  __schedule+0x17d1/0x49f0
[ 2223.750424][   T29]  ? __pfx___schedule+0x10/0x10
[ 2223.755380][   T29]  ? __pfx_lock_release+0x10/0x10
[ 2223.760418][   T29]  ? __mutex_trylock_common+0x91/0x2e0
[ 2223.765922][   T29]  ? schedule+0x8e/0x260
[ 2223.770175][   T29]  schedule+0x149/0x260
[ 2223.774318][   T29]  schedule_preempt_disabled+0x13/0x30
[ 2223.779901][   T29]  __mutex_lock+0x6a3/0xd70
[ 2223.784498][   T29]  ? __mutex_lock+0x526/0xd70
[ 2223.789198][   T29]  ? rtnetlink_rcv_msg+0x842/0x10d0
[ 2223.794788][   T29]  ? __pfx___mutex_lock+0x10/0x10
[ 2223.799843][   T29]  rtnetlink_rcv_msg+0x842/0x10d0
[ 2223.804973][   T29]  ? rtnetlink_rcv_msg+0x208/0x10d0
[ 2223.810202][   T29]  ? 0xffffffffa0000648
[ 2223.814363][   T29]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[ 2223.819919][   T29]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[ 2223.826136][   T29]  ? __pfx_validate_chain+0x10/0x10
[ 2223.831338][   T29]  ? __pfx_validate_chain+0x10/0x10
[ 2223.836617][   T29]  ? mark_lock+0x9a/0x350
[ 2223.840951][   T29]  ? __pfx_validate_chain+0x10/0x10
[ 2223.846205][   T29]  ? __lock_acquire+0x1345/0x1fd0
[ 2223.851249][   T29]  ? mark_lock+0x9a/0x350
[ 2223.855659][   T29]  ? __lock_acquire+0x1345/0x1fd0
[ 2223.860720][   T29]  netlink_rcv_skb+0x1e3/0x430
[ 2223.865560][   T29]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[ 2223.871027][   T29]  ? __pfx_netlink_rcv_skb+0x10/0x10
[ 2223.876461][   T29]  ? netlink_deliver_tap+0x2e/0x1b0
[ 2223.881692][   T29]  netlink_unicast+0x7ea/0x980
[ 2223.886520][   T29]  ? __pfx_netlink_unicast+0x10/0x10
[ 2223.891814][   T29]  ? __virt_addr_valid+0x44e/0x520
[ 2223.897193][   T29]  ? __phys_addr_symbol+0x2f/0x70
[ 2223.902242][   T29]  ? __check_object_size+0x4bb/0xa00
[ 2223.907740][   T29]  ? bpf_lsm_netlink_send+0x9/0x10
[ 2223.912867][   T29]  netlink_sendmsg+0x8e0/0xcb0
[ 2223.917749][   T29]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 2223.923050][   T29]  ? __fget_files+0x28/0x470
[ 2223.927705][   T29]  ? aa_sock_msg_perm+0x91/0x160
[ 2223.932667][   T29]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 2223.938062][   T29]  ? security_socket_sendmsg+0x87/0xb0
[ 2223.943537][   T29]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 2223.948880][   T29]  __sock_sendmsg+0x221/0x270
[ 2223.953573][   T29]  __sys_sendto+0x3a4/0x4f0
[ 2223.958395][   T29]  ? __pfx___sys_sendto+0x10/0x10
[ 2223.963464][   T29]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 2223.972858][   T29]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 2223.979246][   T29]  ? exc_page_fault+0x587/0x870
[ 2223.984100][   T29]  __x64_sys_sendto+0xde/0x100
[ 2223.989102][   T29]  do_syscall_64+0xf9/0x240
[ 2223.993630][   T29]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 2223.999552][   T29] RIP: 0033:0x7f6ade67fa9c
[ 2224.003952][   T29] RSP: 002b:00007f6adf4acf60 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[ 2224.013120][   T29] RAX: ffffffffffffffda RBX: 00007f6adf4ad050 RCX: 00007f6ade67fa9c
[ 2224.021412][   T29] RDX: 0000000000000024 RSI: 00007f6adf4ad0a0 RDI: 0000000000000006
[ 2224.032423][   T29] RBP: 0000000000000000 R08: 00007f6adf4acfb4 R09: 000000000000000c
[ 2224.040622][   T29] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000006
[ 2224.051621][   T29] R13: 00007f6adf4ad008 R14: 00007f6adf4ad0a0 R15: 0000000000000000
[ 2224.059740][   T29]  </TASK>
[ 2224.062849][   T29] INFO: task syz-executor.4:17076 blocked for more than 144 seconds.
[ 2224.070983][   T29]       Not tainted 6.8.0-rc6-syzkaller-01699-g65f5dd4f02a8 #0
[ 2224.078852][   T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 2224.087715][   T29] task:syz-executor.4  state:D stack:26768 pid:17076 tgid:17072 ppid:5105   flags:0x00004006
[ 2224.097921][   T29] Call Trace:
[ 2224.101182][   T29]  <TASK>
[ 2224.104099][   T29]  __schedule+0x17d1/0x49f0
[ 2224.108741][   T29]  ? __pfx___schedule+0x10/0x10
[ 2224.113713][   T29]  ? __pfx_lock_release+0x10/0x10
[ 2224.116251][T17193] Bluetooth: hci6: command 0x0406 tx timeout
[ 2224.120077][   T29]  ? __mutex_trylock_common+0x91/0x2e0
[ 2224.130213][   T29]  ? schedule+0x8e/0x260
[ 2224.134541][   T29]  schedule+0x149/0x260
[ 2224.138716][   T29]  schedule_preempt_disabled+0x13/0x30
[ 2224.144162][   T29]  __mutex_lock+0x6a3/0xd70
[ 2224.148716][   T29]  ? __mutex_lock+0x526/0xd70
[ 2224.153401][   T29]  ? rtnetlink_rcv_msg+0x842/0x10d0
[ 2224.158631][   T29]  ? __pfx___mutex_lock+0x10/0x10
[ 2224.163674][   T29]  rtnetlink_rcv_msg+0x842/0x10d0
[ 2224.169259][   T29]  ? rtnetlink_rcv_msg+0x208/0x10d0
[ 2224.174699][   T29]  ? 0xffffffffa0000648
[ 2224.178976][   T29]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[ 2224.184930][   T29]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[ 2224.191110][   T29]  ? __pfx_validate_chain+0x10/0x10
[ 2224.196839][   T29]  ? __pfx_validate_chain+0x10/0x10
[ 2224.202061][   T29]  ? mark_lock+0x9a/0x350
[ 2224.206636][   T29]  ? __pfx_validate_chain+0x10/0x10
[ 2224.211826][   T29]  ? __lock_acquire+0x1345/0x1fd0
[ 2224.217288][   T29]  ? mark_lock+0x9a/0x350
[ 2224.221629][   T29]  ? __lock_acquire+0x1345/0x1fd0
[ 2224.226773][   T29]  netlink_rcv_skb+0x1e3/0x430
[ 2224.231557][   T29]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[ 2224.237086][   T29]  ? __pfx_netlink_rcv_skb+0x10/0x10
[ 2224.242399][   T29]  ? netlink_deliver_tap+0x2e/0x1b0
[ 2224.247739][   T29]  netlink_unicast+0x7ea/0x980
[ 2224.252522][   T29]  ? __pfx_netlink_unicast+0x10/0x10
[ 2224.257936][   T29]  ? __virt_addr_valid+0x44e/0x520
[ 2224.263060][   T29]  ? __phys_addr_symbol+0x2f/0x70
[ 2224.268170][   T29]  ? __check_object_size+0x4bb/0xa00
[ 2224.273472][   T29]  ? bpf_lsm_netlink_send+0x9/0x10
[ 2224.278700][   T29]  netlink_sendmsg+0x8e0/0xcb0
[ 2224.283501][   T29]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 2224.288889][   T29]  ? __import_iovec+0x552/0x890
[ 2224.293758][   T29]  ? aa_sock_msg_perm+0x91/0x160
[ 2224.298824][   T29]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 2224.304122][   T29]  ? security_socket_sendmsg+0x87/0xb0
[ 2224.309642][   T29]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 2224.315050][   T29]  __sock_sendmsg+0x221/0x270
[ 2224.319744][   T29]  ____sys_sendmsg+0x525/0x7d0
[ 2224.324604][   T29]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 2224.329905][   T29]  __sys_sendmsg+0x2b0/0x3a0
[ 2224.334548][   T29]  ? __pfx___sys_sendmsg+0x10/0x10
[ 2224.339679][   T29]  ? restore_fpregs_from_fpstate+0x100/0x250
[ 2224.345748][   T29]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 2224.352089][   T29]  ? do_syscall_64+0x108/0x240
[ 2224.356964][   T29]  ? do_syscall_64+0xb4/0x240
[ 2224.361664][   T29]  do_syscall_64+0xf9/0x240
[ 2224.366382][   T29]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 2224.372289][   T29] RIP: 0033:0x7f6ade67dda9
[ 2224.376762][   T29] RSP: 002b:00007f6adf48d0c8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 2224.385257][   T29] RAX: ffffffffffffffda RBX: 00007f6ade7ac050 RCX: 00007f6ade67dda9
[ 2224.393231][   T29] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000005
[ 2224.401298][   T29] RBP: 00007f6ade6ca47a R08: 0000000000000000 R09: 0000000000000000
[ 2224.409354][   T29] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2224.417430][   T29] R13: 000000000000006e R14: 00007f6ade7ac050 R15: 00007ffd886efed8
[ 2224.425463][   T29]  </TASK>
[ 2224.428511][   T29] INFO: task syz-executor.4:17078 blocked for more than 144 seconds.
[ 2224.438236][   T29]       Not tainted 6.8.0-rc6-syzkaller-01699-g65f5dd4f02a8 #0
[ 2224.446163][   T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 2224.457028][   T29] task:syz-executor.4  state:D stack:26768 pid:17078 tgid:17072 ppid:5105   flags:0x00004006
[ 2224.467498][   T29] Call Trace:
[ 2224.470784][   T29]  <TASK>
[ 2224.473703][   T29]  __schedule+0x17d1/0x49f0
[ 2224.478519][   T29]  ? __pfx___schedule+0x10/0x10
[ 2224.483405][   T29]  ? __pfx_lock_release+0x10/0x10
[ 2224.488600][   T29]  ? __mutex_trylock_common+0x91/0x2e0
[ 2224.494087][   T29]  ? schedule+0x8e/0x260
[ 2224.498437][   T29]  schedule+0x149/0x260
[ 2224.502606][   T29]  schedule_preempt_disabled+0x13/0x30
[ 2224.508160][   T29]  __mutex_lock+0x6a3/0xd70
[ 2224.512675][   T29]  ? __mutex_lock+0x526/0xd70
[ 2224.517491][   T29]  ? rtnetlink_rcv_msg+0x842/0x10d0
[ 2224.522705][   T29]  ? __pfx___mutex_lock+0x10/0x10
[ 2224.527789][   T29]  rtnetlink_rcv_msg+0x842/0x10d0
[ 2224.532824][   T29]  ? rtnetlink_rcv_msg+0x208/0x10d0
[ 2224.538092][   T29]  ? 0xffffffffa0000648
[ 2224.542250][   T29]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[ 2224.547782][   T29]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[ 2224.553956][   T29]  ? __pfx_validate_chain+0x10/0x10
[ 2224.559269][   T29]  ? __pfx_validate_chain+0x10/0x10
[ 2224.564728][   T29]  ? mark_lock+0x9a/0x350
[ 2224.569145][   T29]  ? __pfx_validate_chain+0x10/0x10
[ 2224.574351][   T29]  ? __lock_acquire+0x1345/0x1fd0
[ 2224.579483][   T29]  ? mark_lock+0x9a/0x350
[ 2224.583832][   T29]  ? __lock_acquire+0x1345/0x1fd0
[ 2224.589128][   T29]  netlink_rcv_skb+0x1e3/0x430
[ 2224.593908][   T29]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[ 2224.599564][   T29]  ? __pfx_netlink_rcv_skb+0x10/0x10
[ 2224.604911][   T29]  ? netlink_deliver_tap+0x2e/0x1b0
[ 2224.610101][   T29]  netlink_unicast+0x7ea/0x980
[ 2224.614970][   T29]  ? __pfx_netlink_unicast+0x10/0x10
[ 2224.620264][   T29]  ? __virt_addr_valid+0x44e/0x520
[ 2224.625498][   T29]  ? __phys_addr_symbol+0x2f/0x70
[ 2224.630534][   T29]  ? __check_object_size+0x4bb/0xa00
[ 2224.635872][   T29]  ? bpf_lsm_netlink_send+0x9/0x10
[ 2224.640992][   T29]  netlink_sendmsg+0x8e0/0xcb0
[ 2224.645851][   T29]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 2224.651154][   T29]  ? __import_iovec+0x552/0x890
[ 2224.656075][   T29]  ? aa_sock_msg_perm+0x91/0x160
[ 2224.661021][   T29]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 2224.666378][   T29]  ? security_socket_sendmsg+0x87/0xb0
[ 2224.671849][   T29]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 2224.684231][   T29]  __sock_sendmsg+0x221/0x270
[ 2224.688973][   T29]  ____sys_sendmsg+0x525/0x7d0
[ 2224.693730][   T29]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 2224.699316][   T29]  __sys_sendmsg+0x2b0/0x3a0
[ 2224.703934][   T29]  ? __pfx___sys_sendmsg+0x10/0x10
[ 2224.709145][   T29]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[ 2224.715152][   T29]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 2224.721500][   T29]  ? do_syscall_64+0x108/0x240
[ 2224.726313][   T29]  ? do_syscall_64+0xb4/0x240
[ 2224.731003][   T29]  do_syscall_64+0xf9/0x240
[ 2224.735566][   T29]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 2224.741467][   T29] RIP: 0033:0x7f6ade67dda9
[ 2224.745976][   T29] RSP: 002b:00007f6adf46c0c8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 2224.754493][   T29] RAX: ffffffffffffffda RBX: 00007f6ade7ac120 RCX: 00007f6ade67dda9
[ 2224.762472][   T29] RDX: 0000000000000000 RSI: 0000000020000340 RDI: 0000000000000004
[ 2224.770539][   T29] RBP: 00007f6ade6ca47a R08: 0000000000000000 R09: 0000000000000000
[ 2224.778591][   T29] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2224.786639][   T29] R13: 000000000000006e R14: 00007f6ade7ac120 R15: 00007ffd886efed8
[ 2224.794727][   T29]  </TASK>
[ 2224.800900][   T29] INFO: task syz-executor.1:17075 blocked for more than 144 seconds.
[ 2224.809185][   T29]       Not tainted 6.8.0-rc6-syzkaller-01699-g65f5dd4f02a8 #0
[ 2224.816958][   T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 2224.825795][   T29] task:syz-executor.1  state:D stack:27184 pid:17075 tgid:17073 ppid:5092   flags:0x00004006
[ 2224.836537][   T29] Call Trace:
[ 2224.839826][   T29]  <TASK>
[ 2224.842764][   T29]  __schedule+0x17d1/0x49f0
[ 2224.847526][   T29]  ? __pfx___schedule+0x10/0x10
[ 2224.852401][   T29]  ? __pfx_lock_release+0x10/0x10
[ 2224.857710][   T29]  ? __mutex_trylock_common+0x91/0x2e0
[ 2224.863194][   T29]  ? schedule+0x8e/0x260
[ 2224.867698][   T29]  schedule+0x149/0x260
[ 2224.871872][   T29]  schedule_preempt_disabled+0x13/0x30
[ 2224.877369][   T29]  __mutex_lock+0x6a3/0xd70
[ 2224.881862][   T29]  ? __mutex_lock+0x526/0xd70
[ 2224.886639][   T29]  ? rtnetlink_rcv_msg+0x842/0x10d0
[ 2224.891850][   T29]  ? __pfx___mutex_lock+0x10/0x10
[ 2224.896976][   T29]  rtnetlink_rcv_msg+0x842/0x10d0
[ 2224.902015][   T29]  ? rtnetlink_rcv_msg+0x208/0x10d0
[ 2224.907248][   T29]  ? 0xffffffffa0000648
[ 2224.911403][   T29]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[ 2224.917133][   T29]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[ 2224.923306][   T29]  ? __pfx_validate_chain+0x10/0x10
[ 2224.928581][   T29]  ? __pfx_validate_chain+0x10/0x10
[ 2224.933798][   T29]  ? mark_lock+0x9a/0x350
[ 2224.938221][   T29]  ? __pfx_validate_chain+0x10/0x10
[ 2224.943427][   T29]  ? __lock_acquire+0x1345/0x1fd0
[ 2224.948583][   T29]  ? mark_lock+0x9a/0x350
[ 2224.952937][   T29]  ? __lock_acquire+0x1345/0x1fd0
[ 2224.958690][   T29]  netlink_rcv_skb+0x1e3/0x430
[ 2224.963485][   T29]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[ 2224.969198][   T29]  ? __pfx_netlink_rcv_skb+0x10/0x10
[ 2224.974570][   T29]  ? netlink_deliver_tap+0x2e/0x1b0
[ 2224.979768][   T29]  netlink_unicast+0x7ea/0x980
[ 2224.984640][   T29]  ? __pfx_netlink_unicast+0x10/0x10
[ 2224.989940][   T29]  ? __virt_addr_valid+0x44e/0x520
[ 2224.995126][   T29]  ? __phys_addr_symbol+0x2f/0x70
[ 2225.000159][   T29]  ? __check_object_size+0x4bb/0xa00
[ 2225.005502][   T29]  ? bpf_lsm_netlink_send+0x9/0x10
[ 2225.010625][   T29]  netlink_sendmsg+0x8e0/0xcb0
[ 2225.015766][   T29]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 2225.021075][   T29]  ? __fget_files+0x28/0x470
[ 2225.028290][   T29]  ? aa_sock_msg_perm+0x91/0x160
[ 2225.033227][   T29]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 2225.038628][   T29]  ? security_socket_sendmsg+0x87/0xb0
[ 2225.044083][   T29]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 2225.049775][   T29]  __sock_sendmsg+0x221/0x270
[ 2225.054683][   T29]  __sys_sendto+0x3a4/0x4f0
[ 2225.059209][   T29]  ? __pfx___sys_sendto+0x10/0x10
[ 2225.064234][   T29]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 2225.070266][   T29]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 2225.076766][   T29]  ? exc_page_fault+0x587/0x870
[ 2225.081768][   T29]  __x64_sys_sendto+0xde/0x100
[ 2225.086762][   T29]  do_syscall_64+0xf9/0x240
[ 2225.091274][   T29]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 2225.097279][   T29] RIP: 0033:0x7f583307fa9c
[ 2225.101707][   T29] RSP: 002b:00007f5833ed8f60 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[ 2225.110186][   T29] RAX: ffffffffffffffda RBX: 00007f5833ed9050 RCX: 00007f583307fa9c
[ 2225.118210][   T29] RDX: 0000000000000024 RSI: 00007f5833ed90a0 RDI: 0000000000000006
[ 2225.126456][   T29] RBP: 0000000000000000 R08: 00007f5833ed8fb4 R09: 000000000000000c
[ 2225.135650][   T29] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000006
[ 2225.143734][   T29] R13: 00007f5833ed9008 R14: 00007f5833ed90a0 R15: 0000000000000000
[ 2225.151820][   T29]  </TASK>
[ 2225.154967][   T29] INFO: task syz-executor.1:17077 blocked for more than 145 seconds.
[ 2225.163035][   T29]       Not tainted 6.8.0-rc6-syzkaller-01699-g65f5dd4f02a8 #0
[ 2225.170631][   T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 2225.179356][   T29] task:syz-executor.1  state:D stack:26768 pid:17077 tgid:17073 ppid:5092   flags:0x00004006
[ 2225.189820][   T29] Call Trace:
[ 2225.193110][   T29]  <TASK>
[ 2225.196307][   T29]  __schedule+0x17d1/0x49f0
[ 2225.200983][   T29]  ? __pfx___schedule+0x10/0x10
[ 2225.205894][   T29]  ? __pfx_lock_release+0x10/0x10
[ 2225.210907][   T29]  ? __mutex_trylock_common+0x91/0x2e0
[ 2225.216522][   T29]  ? schedule+0x8e/0x260
[ 2225.220785][   T29]  schedule+0x149/0x260
[ 2225.224993][   T29]  schedule_preempt_disabled+0x13/0x30
[ 2225.230472][   T29]  __mutex_lock+0x6a3/0xd70
[ 2225.235246][   T29]  ? __mutex_lock+0x526/0xd70
[ 2225.240092][   T29]  ? rtnetlink_rcv_msg+0x842/0x10d0
[ 2225.245708][   T29]  ? __pfx___mutex_lock+0x10/0x10
[ 2225.250762][   T29]  rtnetlink_rcv_msg+0x842/0x10d0
[ 2225.255956][   T29]  ? rtnetlink_rcv_msg+0x208/0x10d0
[ 2225.261145][   T29]  ? 0xffffffffa0000648
[ 2225.265688][   T29]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[ 2225.271176][   T29]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[ 2225.277489][   T29]  ? __pfx_validate_chain+0x10/0x10
[ 2225.282880][   T29]  ? __pfx_validate_chain+0x10/0x10
[ 2225.288450][   T29]  ? mark_lock+0x9a/0x350
[ 2225.292804][   T29]  ? __pfx_validate_chain+0x10/0x10
[ 2225.298150][   T29]  ? __lock_acquire+0x1345/0x1fd0
[ 2225.303224][   T29]  ? mark_lock+0x9a/0x350
[ 2225.307636][   T29]  ? __lock_acquire+0x1345/0x1fd0
[ 2225.312687][   T29]  netlink_rcv_skb+0x1e3/0x430
[ 2225.317612][   T29]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[ 2225.323095][   T29]  ? __pfx_netlink_rcv_skb+0x10/0x10
[ 2225.328483][   T29]  ? netlink_deliver_tap+0x2e/0x1b0
[ 2225.333705][   T29]  netlink_unicast+0x7ea/0x980
[ 2225.338607][   T29]  ? __pfx_netlink_unicast+0x10/0x10
[ 2225.343906][   T29]  ? __virt_addr_valid+0x44e/0x520
[ 2225.349118][   T29]  ? __phys_addr_symbol+0x2f/0x70
[ 2225.354167][   T29]  ? __check_object_size+0x4bb/0xa00
[ 2225.359764][   T29]  ? bpf_lsm_netlink_send+0x9/0x10
[ 2225.364990][   T29]  netlink_sendmsg+0x8e0/0xcb0
[ 2225.369781][   T29]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 2225.375222][   T29]  ? __import_iovec+0x552/0x890
[ 2225.380083][   T29]  ? aa_sock_msg_perm+0x91/0x160
[ 2225.385119][   T29]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 2225.390426][   T29]  ? security_socket_sendmsg+0x87/0xb0
[ 2225.396049][   T29]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 2225.401352][   T29]  __sock_sendmsg+0x221/0x270
[ 2225.406088][   T29]  ____sys_sendmsg+0x525/0x7d0
[ 2225.410863][   T29]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 2225.416286][   T29]  __sys_sendmsg+0x2b0/0x3a0
[ 2225.420885][   T29]  ? __pfx___sys_sendmsg+0x10/0x10
[ 2225.426075][   T29]  ? restore_fpregs_from_fpstate+0x100/0x250
[ 2225.432070][   T29]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 2225.438525][   T29]  ? do_syscall_64+0x108/0x240
[ 2225.443301][   T29]  ? do_syscall_64+0xb4/0x240
[ 2225.448034][   T29]  do_syscall_64+0xf9/0x240
[ 2225.452560][   T29]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 2225.458591][   T29] RIP: 0033:0x7f583307dda9
[ 2225.463021][   T29] RSP: 002b:00007f5833eb90c8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 2225.471694][   T29] RAX: ffffffffffffffda RBX: 00007f58331ac050 RCX: 00007f583307dda9
[ 2225.479773][   T29] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000005
[ 2225.487868][   T29] RBP: 00007f58330ca47a R08: 0000000000000000 R09: 0000000000000000
[ 2225.495920][   T29] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2225.503880][   T29] R13: 000000000000006e R14: 00007f58331ac050 R15: 00007fff705e9b48
[ 2225.511937][   T29]  </TASK>
[ 2225.515114][   T29] INFO: task syz-executor.1:17079 blocked for more than 145 seconds.
[ 2225.523181][   T29]       Not tainted 6.8.0-rc6-syzkaller-01699-g65f5dd4f02a8 #0
[ 2225.531162][   T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 2225.542954][   T29] task:syz-executor.1  state:D stack:26768 pid:17079 tgid:17073 ppid:5092   flags:0x00004006
[ 2225.553377][   T29] Call Trace:
[ 2225.557037][   T29]  <TASK>
[ 2225.559990][   T29]  __schedule+0x17d1/0x49f0
[ 2225.564767][   T29]  ? __pfx___schedule+0x10/0x10
[ 2225.569652][   T29]  ? __pfx_lock_release+0x10/0x10
[ 2225.575376][   T29]  ? __mutex_trylock_common+0x91/0x2e0
[ 2225.580861][   T29]  ? schedule+0x8e/0x260
[ 2225.585344][   T29]  schedule+0x149/0x260
[ 2225.589524][   T29]  schedule_preempt_disabled+0x13/0x30
[ 2225.596391][   T29]  __mutex_lock+0x6a3/0xd70
[ 2225.600927][   T29]  ? __mutex_lock+0x526/0xd70
[ 2225.605707][   T29]  ? rtnetlink_rcv_msg+0x842/0x10d0
[ 2225.610915][   T29]  ? __pfx___mutex_lock+0x10/0x10
[ 2225.616037][   T29]  rtnetlink_rcv_msg+0x842/0x10d0
[ 2225.621072][   T29]  ? rtnetlink_rcv_msg+0x208/0x10d0
[ 2225.626365][   T29]  ? 0xffffffffa0000648
[ 2225.630522][   T29]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[ 2225.636098][   T29]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[ 2225.642264][   T29]  ? __pfx_validate_chain+0x10/0x10
[ 2225.647538][   T29]  ? __pfx_validate_chain+0x10/0x10
[ 2225.652843][   T29]  ? mark_lock+0x9a/0x350
[ 2225.657245][   T29]  ? __pfx_validate_chain+0x10/0x10
[ 2225.662452][   T29]  ? __lock_acquire+0x1345/0x1fd0
[ 2225.667528][   T29]  ? mark_lock+0x9a/0x350
[ 2225.671861][   T29]  ? __lock_acquire+0x1345/0x1fd0
[ 2225.676961][   T29]  netlink_rcv_skb+0x1e3/0x430
[ 2225.681740][   T29]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[ 2225.687775][   T29]  ? __pfx_netlink_rcv_skb+0x10/0x10
[ 2225.693099][   T29]  ? netlink_deliver_tap+0x2e/0x1b0
[ 2225.698993][   T29]  netlink_unicast+0x7ea/0x980
[ 2225.703783][   T29]  ? __pfx_netlink_unicast+0x10/0x10
[ 2225.709372][   T29]  ? __virt_addr_valid+0x44e/0x520
[ 2225.721506][   T29]  ? __phys_addr_symbol+0x2f/0x70
[ 2225.726662][   T29]  ? __check_object_size+0x4bb/0xa00
[ 2225.731966][   T29]  ? bpf_lsm_netlink_send+0x9/0x10
[ 2225.737193][   T29]  netlink_sendmsg+0x8e0/0xcb0
[ 2225.741983][   T29]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 2225.747306][   T29]  ? __import_iovec+0x552/0x890
[ 2225.752160][   T29]  ? aa_sock_msg_perm+0x91/0x160
[ 2225.757234][   T29]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 2225.762532][   T29]  ? security_socket_sendmsg+0x87/0xb0
[ 2225.768055][   T29]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 2225.773350][   T29]  __sock_sendmsg+0x221/0x270
[ 2225.778134][   T29]  ____sys_sendmsg+0x525/0x7d0
[ 2225.782903][   T29]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 2225.788234][   T29]  __sys_sendmsg+0x2b0/0x3a0
[ 2225.792828][   T29]  ? __pfx___sys_sendmsg+0x10/0x10
[ 2225.798345][   T29]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[ 2225.804266][   T29]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 2225.810761][   T29]  ? do_syscall_64+0x108/0x240
[ 2225.815650][   T29]  ? do_syscall_64+0xb4/0x240
[ 2225.820339][   T29]  do_syscall_64+0xf9/0x240
[ 2225.825017][   T29]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 2225.830922][   T29] RIP: 0033:0x7f583307dda9
[ 2225.835480][   T29] RSP: 002b:00007f5833e980c8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 2225.843906][   T29] RAX: ffffffffffffffda RBX: 00007f58331ac120 RCX: 00007f583307dda9
[ 2225.851936][   T29] RDX: 0000000000000000 RSI: 0000000020000340 RDI: 0000000000000004
[ 2225.859994][   T29] RBP: 00007f58330ca47a R08: 0000000000000000 R09: 0000000000000000
[ 2225.868026][   T29] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2225.876140][   T29] R13: 000000000000006e R14: 00007f58331ac120 R15: 00007fff705e9b48
[ 2225.884130][   T29]  </TASK>
[ 2225.887301][   T29] INFO: task syz-executor.2:17086 blocked for more than 145 seconds.
[ 2225.897807][   T29]       Not tainted 6.8.0-rc6-syzkaller-01699-g65f5dd4f02a8 #0
[ 2225.905844][   T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 2225.916017][   T29] task:syz-executor.2  state:D stack:26512 pid:17086 tgid:17086 ppid:1      flags:0x00004006
[ 2225.926511][   T29] Call Trace:
[ 2225.929810][   T29]  <TASK>
[ 2225.932749][   T29]  __schedule+0x17d1/0x49f0
[ 2225.937333][   T29]  ? __pfx___schedule+0x10/0x10
[ 2225.942176][   T29]  ? __pfx_lock_release+0x10/0x10
[ 2225.947263][   T29]  ? __mutex_trylock_common+0x91/0x2e0
[ 2225.952735][   T29]  ? schedule+0x8e/0x260
[ 2225.957268][   T29]  schedule+0x149/0x260
[ 2225.961449][   T29]  schedule_preempt_disabled+0x13/0x30
[ 2225.966979][   T29]  __mutex_lock+0x6a3/0xd70
[ 2225.971492][   T29]  ? __mutex_lock+0x526/0xd70
[ 2225.976253][   T29]  ? rtnetlink_rcv_msg+0x842/0x10d0
[ 2225.981460][   T29]  ? __pfx___mutex_lock+0x10/0x10
[ 2225.986643][   T29]  rtnetlink_rcv_msg+0x842/0x10d0
[ 2225.991682][   T29]  ? rtnetlink_rcv_msg+0x208/0x10d0
[ 2225.996911][   T29]  ? 0xffffffffa0000648
[ 2226.001066][   T29]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[ 2226.006582][   T29]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[ 2226.012747][   T29]  ? __pfx_validate_chain+0x10/0x10
[ 2226.018134][   T29]  ? __pfx_validate_chain+0x10/0x10
[ 2226.023353][   T29]  ? mark_lock+0x9a/0x350
[ 2226.028058][   T29]  ? __pfx_validate_chain+0x10/0x10
[ 2226.033278][   T29]  ? __lock_acquire+0x1345/0x1fd0
[ 2226.038853][   T29]  ? mark_lock+0x9a/0x350
[ 2226.043214][   T29]  ? __lock_acquire+0x1345/0x1fd0
[ 2226.048499][   T29]  netlink_rcv_skb+0x1e3/0x430
[ 2226.053407][   T29]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[ 2226.059315][   T29]  ? __pfx_netlink_rcv_skb+0x10/0x10
[ 2226.064727][   T29]  ? netlink_deliver_tap+0x2e/0x1b0
[ 2226.069940][   T29]  netlink_unicast+0x7ea/0x980
[ 2226.074853][   T29]  ? __pfx_netlink_unicast+0x10/0x10
[ 2226.080149][   T29]  ? __virt_addr_valid+0x44e/0x520
[ 2226.085320][   T29]  ? __phys_addr_symbol+0x2f/0x70
[ 2226.090354][   T29]  ? __check_object_size+0x4bb/0xa00
[ 2226.095731][   T29]  ? bpf_lsm_netlink_send+0x9/0x10
[ 2226.100854][   T29]  netlink_sendmsg+0x8e0/0xcb0
[ 2226.105687][   T29]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 2226.110983][   T29]  ? aa_sock_msg_perm+0x91/0x160
[ 2226.116206][   T29]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 2226.121493][   T29]  ? security_socket_sendmsg+0x87/0xb0
[ 2226.127195][   T29]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 2226.132468][   T29]  __sock_sendmsg+0x221/0x270
[ 2226.138740][   T29]  __sys_sendto+0x3a4/0x4f0
[ 2226.143268][   T29]  ? __pfx___sys_sendto+0x10/0x10
[ 2226.148368][   T29]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 2226.154363][   T29]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 2226.160737][   T29]  ? exc_page_fault+0x587/0x870
[ 2226.165864][   T29]  __x64_sys_sendto+0xde/0x100
[ 2226.170661][   T29]  do_syscall_64+0xf9/0x240
[ 2226.175268][   T29]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 2226.181186][   T29] RIP: 0033:0x7fddee27fa9c
[ 2226.185727][   T29] RSP: 002b:00007ffc8b03b0e0 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[ 2226.194149][   T29] RAX: ffffffffffffffda RBX: 00007fddeeed4620 RCX: 00007fddee27fa9c
[ 2226.202183][   T29] RDX: 0000000000000028 RSI: 00007fddeeed4670 RDI: 0000000000000003
[ 2226.210216][   T29] RBP: 0000000000000000 R08: 00007ffc8b03b134 R09: 000000000000000c
[ 2226.218254][   T29] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003
[ 2226.226315][   T29] R13: 0000000000000000 R14: 00007fddeeed4670 R15: 0000000000000000
[ 2226.234282][   T29]  </TASK>
[ 2226.237402][   T29] INFO: task syz-executor.3:17089 blocked for more than 146 seconds.
[ 2226.246237][   T29]       Not tainted 6.8.0-rc6-syzkaller-01699-g65f5dd4f02a8 #0
[ 2226.253763][   T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 2226.262461][   T29] task:syz-executor.3  state:D stack:26064 pid:17089 tgid:17089 ppid:1      flags:0x00004006
[ 2226.272747][   T29] Call Trace:
[ 2226.276187][   T29]  <TASK>
[ 2226.279135][   T29]  __schedule+0x17d1/0x49f0
[ 2226.283693][   T29]  ? __pfx___schedule+0x10/0x10
[ 2226.288677][   T29]  ? __pfx_lock_release+0x10/0x10
[ 2226.293705][   T29]  ? __mutex_trylock_common+0x91/0x2e0
[ 2226.299228][   T29]  ? schedule+0x8e/0x260
[ 2226.303497][   T29]  schedule+0x149/0x260
[ 2226.307712][   T29]  schedule_preempt_disabled+0x13/0x30
[ 2226.313196][   T29]  __mutex_lock+0x6a3/0xd70
[ 2226.317820][   T29]  ? __mutex_lock+0x526/0xd70
[ 2226.322519][   T29]  ? rtnetlink_rcv_msg+0x842/0x10d0
[ 2226.327807][   T29]  ? __pfx___mutex_lock+0x10/0x10
[ 2226.332847][   T29]  rtnetlink_rcv_msg+0x842/0x10d0
[ 2226.337920][   T29]  ? rtnetlink_rcv_msg+0x208/0x10d0
[ 2226.343125][   T29]  ? 0xffffffffa0000648
[ 2226.347310][   T29]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[ 2226.352775][   T29]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[ 2226.360377][   T29]  ? __pfx_validate_chain+0x10/0x10
[ 2226.365632][   T29]  ? __pfx_validate_chain+0x10/0x10
[ 2226.370947][   T29]  ? mark_lock+0x9a/0x350
[ 2226.375404][   T29]  ? __pfx_validate_chain+0x10/0x10
[ 2226.380615][   T29]  ? __lock_acquire+0x1345/0x1fd0
[ 2226.385766][   T29]  ? mark_lock+0x9a/0x350
[ 2226.390099][   T29]  ? __lock_acquire+0x1345/0x1fd0
[ 2226.395216][   T29]  netlink_rcv_skb+0x1e3/0x430
[ 2226.400002][   T29]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[ 2226.405537][   T29]  ? __pfx_netlink_rcv_skb+0x10/0x10
[ 2226.410826][   T29]  ? netlink_deliver_tap+0x2e/0x1b0
[ 2226.416094][   T29]  netlink_unicast+0x7ea/0x980
[ 2226.420877][   T29]  ? __pfx_netlink_unicast+0x10/0x10
[ 2226.426231][   T29]  ? __virt_addr_valid+0x44e/0x520
[ 2226.431366][   T29]  ? __phys_addr_symbol+0x2f/0x70
[ 2226.436469][   T29]  ? __check_object_size+0x4bb/0xa00
[ 2226.441784][   T29]  ? bpf_lsm_netlink_send+0x9/0x10
[ 2226.446984][   T29]  netlink_sendmsg+0x8e0/0xcb0
[ 2226.451784][   T29]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 2226.457168][   T29]  ? aa_sock_msg_perm+0x91/0x160
[ 2226.462126][   T29]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 2226.467759][   T29]  ? security_socket_sendmsg+0x87/0xb0
[ 2226.473248][   T29]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 2226.478756][   T29]  __sock_sendmsg+0x221/0x270
[ 2226.483464][   T29]  __sys_sendto+0x3a4/0x4f0
[ 2226.488134][   T29]  ? __pfx___sys_sendto+0x10/0x10
[ 2226.493164][   T29]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 2226.499232][   T29]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 2226.505658][   T29]  ? exc_page_fault+0x587/0x870
[ 2226.510523][   T29]  __x64_sys_sendto+0xde/0x100
[ 2226.515364][   T29]  do_syscall_64+0xf9/0x240
[ 2226.519878][   T29]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 2226.525838][   T29] RIP: 0033:0x7fbc67a7fa9c
[ 2226.530265][   T29] RSP: 002b:00007fffe7964800 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[ 2226.538782][   T29] RAX: ffffffffffffffda RBX: 00007fbc686d4620 RCX: 00007fbc67a7fa9c
[ 2226.546792][   T29] RDX: 0000000000000028 RSI: 00007fbc686d4670 RDI: 0000000000000003
[ 2226.554882][   T29] RBP: 0000000000000000 R08: 00007fffe7964854 R09: 000000000000000c
[ 2226.563016][   T29] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003
[ 2226.571112][   T29] R13: 0000000000000000 R14: 00007fbc686d4670 R15: 0000000000000000
[ 2226.579178][   T29]  </TASK>
[ 2226.582209][   T29] Future hung task reports are suppressed, see sysctl kernel.hung_task_warnings
[ 2226.591316][   T29] 
[ 2226.591316][   T29] Showing all locks held in the system:
[ 2226.604593][   T29] 3 locks held by kworker/u4:1/12:
[ 2226.613464][   T29]  #0: ffff8880297b1d38 ((wq_completion)ipv6_addrconf){+.+.}-{0:0}, at: process_scheduled_works+0x825/0x1420
[ 2226.625182][   T29]  #1: ffffc90000117d20 ((work_completion)(&(&ifa->dad_work)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x825/0x1420
[ 2226.638997][   T29]  #2: ffffffff8f377f48 (rtnl_mutex){+.+.}-{3:3}, at: addrconf_dad_work+0xd0/0x16f0
[ 2226.648639][   T29] 1 lock held by khungtaskd/29:
[ 2226.653491][   T29]  #0: ffffffff8e130be0 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x55/0x2a0
[ 2226.663468][   T29] 2 locks held by getty/4818:
[ 2226.668204][   T29]  #0: ffff88802a1ae0a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70
[ 2226.678141][   T29]  #1: ffffc90002f062f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0x6b4/0x1e10
[ 2226.688327][   T29] 3 locks held by kworker/0:8/5260:
[ 2226.693507][   T29]  #0: ffff888014c78938 ((wq_completion)events){+.+.}-{0:0}, at: process_scheduled_works+0x825/0x1420
[ 2226.704855][   T29]  #1: ffffc90004f37d20 (deferred_process_work){+.+.}-{0:0}, at: process_scheduled_works+0x825/0x1420
[ 2226.715910][   T29]  #2: ffffffff8f377f48 (rtnl_mutex){+.+.}-{3:3}, at: switchdev_deferred_process_work+0xe/0x20
[ 2226.726431][   T29] 5 locks held by kworker/u4:22/1963:
[ 2226.731812][   T29]  #0: ffff888015ea4938 ((wq_completion)netns){+.+.}-{0:0}, at: process_scheduled_works+0x825/0x1420
[ 2226.742790][   T29]  #1: ffffc9001309fd20 (net_cleanup_work){+.+.}-{0:0}, at: process_scheduled_works+0x825/0x1420
[ 2226.753394][   T29]  #2: ffffffff8f36b8d0 (pernet_ops_rwsem){++++}-{3:3}, at: cleanup_net+0x16a/0xcc0
[ 2226.763190][   T29]  #3: ffffffff8f377f48 (rtnl_mutex){+.+.}-{3:3}, at: cleanup_net+0x6af/0xcc0
[ 2226.774430][   T29]  #4: ffffffff8e136440 (rcu_state.barrier_mutex){+.+.}-{3:3}, at: rcu_barrier+0x4c/0x550
[ 2226.784685][   T29] 1 lock held by syz-executor.4/17074:
[ 2226.790149][   T29]  #0: ffffffff8f377f48 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x842/0x10d0
[ 2226.799803][   T29] 1 lock held by syz-executor.4/17076:
[ 2226.806397][   T29]  #0: ffffffff8f377f48 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x842/0x10d0
[ 2226.816946][   T29] 1 lock held by syz-executor.4/17078:
[ 2226.822396][   T29]  #0: ffffffff8f377f48 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x842/0x10d0
[ 2226.832155][   T29] 1 lock held by syz-executor.1/17075:
[ 2226.838231][   T29]  #0: ffffffff8f377f48 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x842/0x10d0
[ 2226.848077][   T29] 1 lock held by syz-executor.1/17077:
[ 2226.853539][   T29]  #0: ffffffff8f377f48 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x842/0x10d0
[ 2226.863338][   T29] 1 lock held by syz-executor.1/17079:
[ 2226.869102][   T29]  #0: ffffffff8f377f48 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x842/0x10d0
[ 2226.878901][   T29] 1 lock held by syz-executor.2/17086:
[ 2226.884345][   T29]  #0: ffffffff8f377f48 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x842/0x10d0
[ 2226.894231][   T29] 1 lock held by syz-executor.3/17089:
[ 2226.899944][   T29]  #0: ffffffff8f377f48 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x842/0x10d0
[ 2226.909624][   T29] 1 lock held by syz-executor.1/17114:
[ 2226.915120][   T29]  #0: ffffffff8f377f48 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x842/0x10d0
[ 2226.924992][   T29] 1 lock held by syz-executor.4/17117:
[ 2226.930465][   T29]  #0: ffffffff8f377f48 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x842/0x10d0
[ 2226.940041][   T29] 1 lock held by syz-executor.2/17153:
[ 2226.945585][   T29]  #0: ffffffff8f377f48 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x842/0x10d0
[ 2226.955173][   T29] 1 lock held by syz-executor.3/17156:
[ 2226.960636][   T29]  #0: ffffffff8f377f48 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x842/0x10d0
[ 2226.970301][   T29] 1 lock held by syz-executor.0/17177:
[ 2226.975818][   T29]  #0: ffffffff8f377f48 (rtnl_mutex){+.+.}-{3:3}, at: tun_chr_close+0x3e/0x1b0
[ 2226.985054][   T29] 1 lock held by syz-executor.1/17185:
[ 2226.990513][   T29]  #0: ffffffff8f377f48 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x842/0x10d0
[ 2227.000209][   T29] 1 lock held by syz-executor.4/17188:
[ 2227.005761][   T29]  #0: ffffffff8f377f48 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x842/0x10d0
[ 2227.015392][   T29] 1 lock held by syz-executor.0/17191:
[ 2227.020847][   T29]  #0: ffffffff8f377f48 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x842/0x10d0
[ 2227.030428][   T29] 1 lock held by syz-executor.2/17195:
[ 2227.036019][   T29]  #0: ffffffff8f377f48 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x842/0x10d0
[ 2227.045645][   T29] 1 lock held by syz-executor.3/17198:
[ 2227.051104][   T29]  #0: ffffffff8f377f48 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x842/0x10d0
[ 2227.060689][   T29] 
[ 2227.063019][   T29] =============================================
[ 2227.063019][   T29] 
[ 2227.071601][   T29] NMI backtrace for cpu 1
[ 2227.075942][   T29] CPU: 1 PID: 29 Comm: khungtaskd Not tainted 6.8.0-rc6-syzkaller-01699-g65f5dd4f02a8 #0
[ 2227.085744][   T29] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024
[ 2227.095779][   T29] Call Trace:
[ 2227.099040][   T29]  <TASK>
[ 2227.101953][   T29]  dump_stack_lvl+0x1e7/0x2e0
[ 2227.106615][   T29]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2227.111790][   T29]  ? __pfx__printk+0x10/0x10
[ 2227.116359][   T29]  ? vprintk_emit+0x607/0x720
[ 2227.121017][   T29]  ? __pfx_vprintk_emit+0x10/0x10
[ 2227.126044][   T29]  nmi_cpu_backtrace+0x49c/0x4d0
[ 2227.130993][   T29]  ? __pfx_nmi_cpu_backtrace+0x10/0x10
[ 2227.136446][   T29]  ? _printk+0xd5/0x120
[ 2227.140597][   T29]  ? __pfx__printk+0x10/0x10
[ 2227.145180][   T29]  ? __wake_up_klogd+0xcc/0x110
[ 2227.150021][   T29]  ? __pfx__printk+0x10/0x10
[ 2227.154609][   T29]  ? __rcu_read_unlock+0xa0/0x110
[ 2227.159626][   T29]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[ 2227.165596][   T29]  nmi_trigger_cpumask_backtrace+0x198/0x320
[ 2227.171569][   T29]  watchdog+0xfaf/0xff0
[ 2227.175733][   T29]  ? watchdog+0x1e9/0xff0
[ 2227.180088][   T29]  ? __pfx_watchdog+0x10/0x10
[ 2227.184783][   T29]  kthread+0x2ef/0x390
[ 2227.188864][   T29]  ? __pfx_watchdog+0x10/0x10
[ 2227.193564][   T29]  ? __pfx_kthread+0x10/0x10
[ 2227.198168][   T29]  ret_from_fork+0x4b/0x80
[ 2227.202598][   T29]  ? __pfx_kthread+0x10/0x10
[ 2227.207205][   T29]  ret_from_fork_asm+0x1b/0x30
[ 2227.212002][   T29]  </TASK>
[ 2227.342268][   T29] Sending NMI from CPU 1 to CPUs 0:
[ 2227.352677][    C0] NMI backtrace for cpu 0
[ 2227.352688][    C0] CPU: 0 PID: 1966 Comm: kworker/u4:24 Not tainted 6.8.0-rc6-syzkaller-01699-g65f5dd4f02a8 #0
[ 2227.352707][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024
[ 2227.352717][    C0] Workqueue: bat_events batadv_nc_worker
[ 2227.352815][    C0] RIP: 0010:kasan_check_range+0x1b8/0x290
[ 2227.352836][    C0] Code: 4d 01 fb 48 8d 5d 07 48 85 ed 48 0f 49 dd 48 83 e3 f8 48 29 dd 74 12 41 80 3b 00 0f 85 a6 00 00 00 49 ff c3 48 ff cd 75 ee 5b <41> 5c 41 5e 41 5f 5d c3 cc cc cc cc 40 84 ed 75 5f f7 c5 00 ff 00
[ 2227.352849][    C0] RSP: 0018:ffffc900131bf908 EFLAGS: 00000056
[ 2227.352862][    C0] RAX: 0000000000000001 RBX: 00000000000006c8 RCX: ffffffff81712c38
[ 2227.352874][    C0] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffffffff92ca54f8
[ 2227.352885][    C0] RBP: 0000000000000000 R08: ffffffff92ca54ff R09: 1ffffffff2594a9f
[ 2227.352897][    C0] R10: dffffc0000000000 R11: fffffbfff2594aa0 R12: ffff888041853b80
[ 2227.352909][    C0] R13: ffff888041853b80 R14: dffffc0000000001 R15: fffffbfff2594aa0
[ 2227.352921][    C0] FS:  0000000000000000(0000) GS:ffff8880b9400000(0000) knlGS:0000000000000000
[ 2227.352936][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 2227.352948][    C0] CR2: 000000c00c0f9360 CR3: 000000000df32000 CR4: 00000000003506f0
[ 2227.352962][    C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 2227.352972][    C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 2227.352988][    C0] Call Trace:
[ 2227.352994][    C0]  <NMI>
[ 2227.353002][    C0]  ? nmi_cpu_backtrace+0x3c2/0x4d0
[ 2227.353021][    C0]  ? __pfx_lock_acquire+0x10/0x10
[ 2227.353044][    C0]  ? __pfx_nmi_cpu_backtrace+0x10/0x10
[ 2227.353070][    C0]  ? nmi_cpu_backtrace_handler+0xc/0x20
[ 2227.353089][    C0]  ? nmi_handle+0x14f/0x580
[ 2227.353109][    C0]  ? nmi_handle+0x2a/0x580
[ 2227.353125][    C0]  ? kasan_check_range+0x1b8/0x290
[ 2227.353141][    C0]  ? default_do_nmi+0x63/0x160
[ 2227.353159][    C0]  ? exc_nmi+0x123/0x1f0
[ 2227.353177][    C0]  ? end_repeat_nmi+0xf/0x60
[ 2227.353219][    C0]  ? __lock_acquire+0xf18/0x1fd0
[ 2227.353240][    C0]  ? kasan_check_range+0x1b8/0x290
[ 2227.353257][    C0]  ? kasan_check_range+0x1b8/0x290
[ 2227.353274][    C0]  ? kasan_check_range+0x1b8/0x290
[ 2227.353291][    C0]  </NMI>
[ 2227.353296][    C0]  <TASK>
[ 2227.353303][    C0]  __lock_acquire+0xf18/0x1fd0
[ 2227.353330][    C0]  lock_acquire+0x1e3/0x530
[ 2227.353350][    C0]  ? batadv_nc_worker+0xcb/0x610
[ 2227.353372][    C0]  ? __pfx_lock_acquire+0x10/0x10
[ 2227.353393][    C0]  ? batadv_nc_worker+0xcb/0x610
[ 2227.353412][    C0]  ? __pfx_lock_release+0x10/0x10
[ 2227.353434][    C0]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 2227.353458][    C0]  batadv_nc_worker+0xec/0x610
[ 2227.353476][    C0]  ? batadv_nc_worker+0xcb/0x610
[ 2227.353494][    C0]  ? batadv_nc_worker+0xcb/0x610
[ 2227.353513][    C0]  ? process_scheduled_works+0x825/0x1420
[ 2227.353535][    C0]  process_scheduled_works+0x913/0x1420
[ 2227.353567][    C0]  ? __pfx_process_scheduled_works+0x10/0x10
[ 2227.353592][    C0]  ? assign_work+0x364/0x3d0
[ 2227.353615][    C0]  worker_thread+0xa5f/0x1000
[ 2227.353644][    C0]  ? __pfx_worker_thread+0x10/0x10
[ 2227.353665][    C0]  kthread+0x2ef/0x390
[ 2227.353681][    C0]  ? __pfx_worker_thread+0x10/0x10
[ 2227.353701][    C0]  ? __pfx_kthread+0x10/0x10
[ 2227.353717][    C0]  ret_from_fork+0x4b/0x80
[ 2227.353737][    C0]  ? __pfx_kthread+0x10/0x10
[ 2227.353753][    C0]  ret_from_fork_asm+0x1b/0x30
[ 2227.353779][    C0]  </TASK>
[ 2227.701272][   T29] Kernel panic - not syncing: hung_task: blocked tasks
[ 2227.708150][   T29] CPU: 0 PID: 29 Comm: khungtaskd Not tainted 6.8.0-rc6-syzkaller-01699-g65f5dd4f02a8 #0
[ 2227.717969][   T29] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024
[ 2227.728030][   T29] Call Trace:
[ 2227.731300][   T29]  <TASK>
[ 2227.734224][   T29]  dump_stack_lvl+0x1e7/0x2e0
[ 2227.738905][   T29]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2227.744095][   T29]  ? __pfx__printk+0x10/0x10
[ 2227.748680][   T29]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 2227.754662][   T29]  ? vscnprintf+0x5d/0x90
[ 2227.758987][   T29]  panic+0x349/0x860
[ 2227.762885][   T29]  ? nmi_trigger_cpumask_backtrace+0x244/0x320
[ 2227.769064][   T29]  ? __pfx_panic+0x10/0x10
[ 2227.773494][   T29]  ? tick_nohz_tick_stopped+0x7b/0xc0
[ 2227.778863][   T29]  ? __irq_work_queue_local+0x137/0x3e0
[ 2227.784419][   T29]  ? preempt_schedule_thunk+0x1a/0x30
[ 2227.789794][   T29]  ? nmi_trigger_cpumask_backtrace+0x244/0x320
[ 2227.795948][   T29]  ? nmi_trigger_cpumask_backtrace+0x2d4/0x320
[ 2227.802102][   T29]  ? nmi_trigger_cpumask_backtrace+0x2d9/0x320
[ 2227.808252][   T29]  watchdog+0xfee/0xff0
[ 2227.812409][   T29]  ? watchdog+0x1e9/0xff0
[ 2227.816739][   T29]  ? __pfx_watchdog+0x10/0x10
[ 2227.821412][   T29]  kthread+0x2ef/0x390
[ 2227.825478][   T29]  ? __pfx_watchdog+0x10/0x10
[ 2227.830157][   T29]  ? __pfx_kthread+0x10/0x10
[ 2227.834749][   T29]  ret_from_fork+0x4b/0x80
[ 2227.839167][   T29]  ? __pfx_kthread+0x10/0x10
[ 2227.843746][   T29]  ret_from_fork_asm+0x1b/0x30
[ 2227.848518][   T29]  </TASK>
[ 2227.851730][   T29] Kernel Offset: disabled
[ 2227.856042][   T29] Rebooting in 86400 seconds..