96, 0x9d}], 0x1, 0x2)
listen(r3, 0xb60)
ioctl$int_out(r3, 0x5462, &(0x7f0000000540))
link(&(0x7f00000005c0)='./file0\x00', &(0x7f0000000600)='./file0\x00')
ioctl$TIOCGETD(0xffffffffffffffff, 0x5424, &(0x7f0000000140))
clock_gettime(0x2, &(0x7f0000000500))

[  892.674150] tmpfs: No value for mount option '†¤¼˜÷Ôºî—`a¹¦rµðeœòÒ·ÝÞnO™p7>¢³Î†ÀAp¦'
[  892.734467] tmpfs: No value for mount option '†¤¼˜÷Ôºî—`a¹¦rµðeœòÒ·ÝÞnO™p7>¢³Î†ÀAp¦'
00:14:54 executing program 5:
mkdir(&(0x7f0000000700)='./file1\x00', 0x0)
creat(&(0x7f0000000280)='./file1/file0\x00', 0x0)
ioctl$ASHMEM_SET_SIZE(0xffffffffffffffff, 0x40087703, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = getpid()
mkdir(&(0x7f00000002c0)='./file1\x00', 0x0)
sched_setscheduler(r0, 0x5, &(0x7f0000000040))
mkdir(&(0x7f00000003c0)='./file0\x00', 0x0)
mount$overlay(0x400000, &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0)='overlay\x00', 0x0, &(0x7f0000000d40)=ANY=[@ANYBLOB='upperdir=./file0,lowerdir=./file1,workdir=./file1'])
chdir(&(0x7f0000000380)='./file0\x00')
link(&(0x7f0000000140)='./file0\x00', &(0x7f00000001c0)='./file1\x00')
acct(&(0x7f00000000c0)='./file1\x00')

00:14:54 executing program 3:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x400001000008912, &(0x7f0000000100)="0adc1f123c123f319bd070")
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x0, 0x5c831, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, &(0x7f0000000240), 0xffffffffffffffff)

00:14:54 executing program 2:
perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syslog(0x9, 0x0, 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
perf_event_open(&(0x7f0000000180)={0xfffffffffffffffd, 0x70, 0x3, 0x0, 0x9, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_open_dev$admmidi(&(0x7f00000003c0)='/dev/admmidi#\x00', 0x401, 0x4000)
r1 = openat$proc_capi20ncci(0xffffffffffffff9c, &(0x7f0000000640)='/proc/capi/capi20ncci\x00', 0x8000, 0x0)
ioctl$sock_inet_tcp_SIOCATMARK(r1, 0x40247007, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
r2 = openat$fuse(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/fuse\x00', 0x2, 0x0)
mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000240)={{'fd', 0x3d, r2}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}})
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, 0x0, 0x4000000000000000, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = syz_open_procfs(0x0, &(0x7f0000000400)='mountinfo\x00')
ioctl$TIOCGETD(r3, 0x5424, &(0x7f0000000580))
set_thread_area(&(0x7f0000000340)={0x6, 0x20001800, 0x4000, 0x200, 0x10000000000ffff, 0x8000000000000001, 0x4000000080101, 0x2, 0xffffffff, 0x3})
rename(&(0x7f0000000480)='./file0/file0\x00', &(0x7f0000000680)='./file0\x00')
write$FUSE_NOTIFY_STORE(r2, &(0x7f0000000700)=ANY=[@ANYBLOB="2a0000000400000000000000000000000100000000000000be000000000000000200000000000000000079e3692ec17ce3fbe63eee81a9c931eed85389a7815765a8cee81896c6faef0d7b9d6253645abd742a960b436677d53504811b9b55404e1ea57b1daf37b5ce1ad87f5a3b3805863622de89e3c997ce96b0c1b396b96386a4bc98f7d4baee976061b97fa60772b5f0659c9df2d27fb7ddde6e4f990370373e03a2b3ce86c04170a6"], 0xab)
mount(&(0x7f0000000340)=ANY=[], 0x0, 0x0, 0x820c01, 0x0)
mount(&(0x7f00000008c0)=@md0='/dev/md0\x00', &(0x7f0000000880)='./file0\x00', &(0x7f00000004c0)='nfsd\x00', 0x2000023, &(0x7f00000006c0)='\x8auU{-\x154\x05-\xab\xc0\xcb\x1an\xd76*5\xec2c\x9f\xcf\xb8\xb6v\x9aA\x06K\x95\xd4dx#\xf8\x90\r\xf1S\xc4\xc2\a\b\x03^\xe6b\x03\xaal)eb,z4\xc9\xe8\x11Y\xacV')
mount(&(0x7f0000000940)=ANY=[@ANYBLOB="969957b52d30fea3a6945a209691fd3e214cb9dcc33db7762efad2628dcef5d3b6364e061019df973b2f53d859e769464fe2a2410d59da45d13169add1c5529ce3628e6153ceb2e151b4c4a2bdac535d60eb398d4d6952a19e3d52a29749828eb1caff4558ca709d9c13c28a2da129717e838eb618c9886828e09a944bc03f33827c69c3fbb70d4b5fba995326c48ced38769a4d61db50c0ec11260778f607660f2b85e3cd0d67bc0cccd8dfba547fe5e36524ef742126514000d7cf7126e2536307a8290af7f78189fa963bfaf8cf0dee8d84a76599366358414b18f32d01f7a3d0b4802a4d706109f9138e41508afeea"], 0x0, 0x0, 0x80010, 0x0)
mount(&(0x7f0000000a40)=ANY=[@ANYBLOB="3040abf7d58436d751c2210ce6c33f5cf63ee466a17a37b30eb2325bbc9556b9ba20d4df40a9cb69d15d3308712819f3d2f27695155ef2b723bc4fcb5d38c46f71f14089eea8a3bb9dfa1e774fccee35dc618d63aa608e8d3f0421aabde758c08399866dd6f0c9c72140b22101f2e98b2b85bb8df6694a00"/131], 0x0, 0x0, 0x80000, 0x0)
r4 = dup2(r3, r0)
ioctl$TCSBRKP(r3, 0x5425, 0x3)
write$FUSE_OPEN(r4, &(0x7f0000000380)={0x20, 0x0, 0x8, {0x0, 0x1}}, 0x20)
pivot_root(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)='./file0\x00')
mount(&(0x7f0000000500)=ANY=[], &(0x7f0000000440)='./file0\x00', &(0x7f0000000800)='devtmpfs\x00', 0x847, &(0x7f0000000780))
preadv(r2, &(0x7f0000001400)=[{&(0x7f0000004200)=""/4096, 0x9d}], 0x1, 0x2)
listen(r3, 0xb60)
ioctl$int_out(r3, 0x5462, &(0x7f0000000540))
link(&(0x7f00000005c0)='./file0\x00', &(0x7f0000000600)='./file0\x00')
ioctl$TIOCGETD(0xffffffffffffffff, 0x5424, &(0x7f0000000140))
clock_gettime(0x2, &(0x7f0000000500))

[  892.811045] tmpfs: No value for mount option '†¤¼˜÷Ôºî—`a¹¦rµðeœòÒ·ÝÞnO™p7>¢³Î†ÀAp¦'
[  892.867489] tmpfs: No value for mount option '†¤¼˜÷Ôºî—`a¹¦rµðeœòÒ·ÝÞnO™p7>¢³Î†ÀAp¦'
00:14:54 executing program 1:
perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syslog(0x9, 0x0, 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
perf_event_open(&(0x7f0000000180)={0xfffffffffffffffd, 0x70, 0x3, 0x0, 0x9, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_open_dev$admmidi(&(0x7f00000003c0)='/dev/admmidi#\x00', 0x401, 0x4000)
r1 = openat$proc_capi20ncci(0xffffffffffffff9c, &(0x7f0000000640)='/proc/capi/capi20ncci\x00', 0x8000, 0x0)
ioctl$sock_inet_tcp_SIOCATMARK(r1, 0x40247007, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
r2 = openat$fuse(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/fuse\x00', 0x2, 0x0)
mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000240)={{'fd', 0x3d, r2}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}})
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, 0x0, 0x4000000000000000, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = syz_open_procfs(0x0, &(0x7f0000000400)='mountinfo\x00')
ioctl$TIOCGETD(r3, 0x5424, &(0x7f0000000580))
set_thread_area(&(0x7f0000000340)={0x6, 0x20001800, 0x4000, 0x200, 0x10000000000ffff, 0x8000000000000001, 0x4000000080101, 0x2, 0xffffffff, 0x3})
rename(&(0x7f0000000480)='./file0/file0\x00', &(0x7f0000000680)='./file0\x00')
write$FUSE_NOTIFY_STORE(r2, &(0x7f0000000700)=ANY=[@ANYBLOB="2a0000000400000000000000000000000100000000000000be000000000000000200000000000000000079e3692ec17ce3fbe63eee81a9c931eed85389a7815765a8cee81896c6faef0d7b9d6253645abd742a960b436677d53504811b9b55404e1ea57b1daf37b5ce1ad87f5a3b3805863622de89e3c997ce96b0c1b396b96386a4bc98f7d4baee976061b97fa60772b5f0659c9df2d27fb7ddde6e4f990370373e03a2b3ce86c04170a6"], 0xab)
mount(&(0x7f0000000340)=ANY=[], 0x0, 0x0, 0x820c01, 0x0)
mount(&(0x7f00000008c0)=@md0='/dev/md0\x00', &(0x7f0000000880)='./file0\x00', &(0x7f00000004c0)='nfsd\x00', 0x2000023, &(0x7f00000006c0)='\x8auU{-\x154\x05-\xab\xc0\xcb\x1an\xd76*5\xec2c\x9f\xcf\xb8\xb6v\x9aA\x06K\x95\xd4dx#\xf8\x90\r\xf1S\xc4\xc2\a\b\x03^\xe6b\x03\xaal)eb,z4\xc9\xe8\x11Y\xacV')
mount(&(0x7f0000000940)=ANY=[@ANYBLOB="969957b52d30fea3a6945a209691fd3e214cb9dcc33db7762efad2628dcef5d3b6364e061019df973b2f53d859e769464fe2a2410d59da45d13169add1c5529ce3628e6153ceb2e151b4c4a2bdac535d60eb398d4d6952a19e3d52a29749828eb1caff4558ca709d9c13c28a2da129717e838eb618c9886828e09a944bc03f33827c69c3fbb70d4b5fba995326c48ced38769a4d61db50c0ec11260778f607660f2b85e3cd0d67bc0cccd8dfba547fe5e36524ef742126514000d7cf7126e2536307a8290af7f78189fa963bfaf8cf0dee8d84a76599366358414b18f32d01f7a3d0b4802a4d706109f9138e41508afeea"], 0x0, 0x0, 0x80010, 0x0)
mount(&(0x7f0000000a40)=ANY=[@ANYBLOB="3040abf7d58436d751c2210ce6c33f5cf63ee466a17a37b30eb2325bbc9556b9ba20d4df40a9cb69d15d3308712819f3d2f27695155ef2b723bc4fcb5d38c46f71f14089eea8a3bb9dfa1e774fccee35dc618d63aa608e8d3f0421aabde758c08399866dd6f0c9c72140b22101f2e98b2b85bb8df6694a00"/131], 0x0, 0x0, 0x80000, 0x0)
r4 = dup2(r3, r0)
ioctl$TCSBRKP(r3, 0x5425, 0x3)
write$FUSE_OPEN(r4, &(0x7f0000000380)={0x20, 0x0, 0x8, {0x0, 0x1}}, 0x20)
pivot_root(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)='./file0\x00')
mount(&(0x7f0000000500)=ANY=[], &(0x7f0000000440)='./file0\x00', &(0x7f0000000800)='devtmpfs\x00', 0x847, &(0x7f0000000780))
preadv(r2, &(0x7f0000001400)=[{&(0x7f0000004200)=""/4096, 0x9d}], 0x1, 0x2)
listen(r3, 0xb60)
ioctl$int_out(r3, 0x5462, &(0x7f0000000540))
link(&(0x7f00000005c0)='./file0\x00', &(0x7f0000000600)='./file0\x00')
ioctl$TIOCGETD(0xffffffffffffffff, 0x5424, &(0x7f0000000140))
clock_gettime(0x2, &(0x7f0000000500))

00:14:54 executing program 4:
perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syslog(0x9, 0x0, 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
perf_event_open(&(0x7f0000000180)={0xfffffffffffffffd, 0x70, 0x3, 0x0, 0x9, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_open_dev$admmidi(&(0x7f00000003c0)='/dev/admmidi#\x00', 0x401, 0x4000)
r1 = openat$proc_capi20ncci(0xffffffffffffff9c, &(0x7f0000000640)='/proc/capi/capi20ncci\x00', 0x8000, 0x0)
ioctl$sock_inet_tcp_SIOCATMARK(r1, 0x40247007, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
r2 = openat$fuse(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/fuse\x00', 0x2, 0x0)
mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000240)={{'fd', 0x3d, r2}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}})
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, 0x0, 0x4000000000000000, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = syz_open_procfs(0x0, &(0x7f0000000400)='mountinfo\x00')
ioctl$TIOCGETD(r3, 0x5424, &(0x7f0000000580))
set_thread_area(&(0x7f0000000340)={0x6, 0x20001800, 0x4000, 0x200, 0x10000000000ffff, 0x8000000000000001, 0x4000000080101, 0x2, 0xffffffff, 0x3})
rename(&(0x7f0000000480)='./file0/file0\x00', &(0x7f0000000680)='./file0\x00')
write$FUSE_NOTIFY_STORE(r2, &(0x7f0000000700)=ANY=[@ANYBLOB="2a0000000400000000000000000000000100000000000000be000000000000000200000000000000000079e3692ec17ce3fbe63eee81a9c931eed85389a7815765a8cee81896c6faef0d7b9d6253645abd742a960b436677d53504811b9b55404e1ea57b1daf37b5ce1ad87f5a3b3805863622de89e3c997ce96b0c1b396b96386a4bc98f7d4baee976061b97fa60772b5f0659c9df2d27fb7ddde6e4f990370373e03a2b3ce86c04170a6"], 0xab)
mount(&(0x7f0000000340)=ANY=[], 0x0, 0x0, 0x820c01, 0x0)
mount(&(0x7f00000008c0)=@md0='/dev/md0\x00', &(0x7f0000000880)='./file0\x00', &(0x7f00000004c0)='nfsd\x00', 0x2000023, &(0x7f00000006c0)='\x8auU{-\x154\x05-\xab\xc0\xcb\x1an\xd76*5\xec2c\x9f\xcf\xb8\xb6v\x9aA\x06K\x95\xd4dx#\xf8\x90\r\xf1S\xc4\xc2\a\b\x03^\xe6b\x03\xaal)eb,z4\xc9\xe8\x11Y\xacV')
mount(&(0x7f0000000940)=ANY=[@ANYBLOB="969957b52d30fea3a6945a209691fd3e214cb9dcc33db7762efad2628dcef5d3b6364e061019df973b2f53d859e769464fe2a2410d59da45d13169add1c5529ce3628e6153ceb2e151b4c4a2bdac535d60eb398d4d6952a19e3d52a29749828eb1caff4558ca709d9c13c28a2da129717e838eb618c9886828e09a944bc03f33827c69c3fbb70d4b5fba995326c48ced38769a4d61db50c0ec11260778f607660f2b85e3cd0d67bc0cccd8dfba547fe5e36524ef742126514000d7cf7126e2536307a8290af7f78189fa963bfaf8cf0dee8d84a76599366358414b18f32d01f7a3d0b4802a4d706109f9138e41508afeea"], 0x0, 0x0, 0x80010, 0x0)
mount(&(0x7f0000000a40)=ANY=[@ANYBLOB="3040abf7d58436d751c2210ce6c33f5cf63ee466a17a37b30eb2325bbc9556b9ba20d4df40a9cb69d15d3308712819f3d2f27695155ef2b723bc4fcb5d38c46f71f14089eea8a3bb9dfa1e774fccee35dc618d63aa608e8d3f0421aabde758c08399866dd6f0c9c72140b22101f2e98b2b85bb8df6694a00"/131], 0x0, 0x0, 0x80000, 0x0)
r4 = dup2(r3, r0)
ioctl$TCSBRKP(r3, 0x5425, 0x3)
write$FUSE_OPEN(r4, &(0x7f0000000380)={0x20, 0x0, 0x8, {0x0, 0x1}}, 0x20)
pivot_root(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)='./file0\x00')
mount(&(0x7f0000000500)=ANY=[], &(0x7f0000000440)='./file0\x00', &(0x7f0000000800)='devtmpfs\x00', 0x847, &(0x7f0000000780))
preadv(r2, &(0x7f0000001400)=[{&(0x7f0000004200)=""/4096, 0x9d}], 0x1, 0x2)
listen(r3, 0xb60)
ioctl$int_out(r3, 0x5462, &(0x7f0000000540))
link(&(0x7f00000005c0)='./file0\x00', &(0x7f0000000600)='./file0\x00')
ioctl$TIOCGETD(0xffffffffffffffff, 0x5424, &(0x7f0000000140))
clock_gettime(0x2, &(0x7f0000000500))

[  892.937035] tmpfs: No value for mount option '†¤¼˜÷Ôºî—`a¹¦rµðeœòÒ·ÝÞnO™p7>¢³Î†ÀAp¦'
00:14:54 executing program 3:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x400001000008912, &(0x7f0000000100)="0adc1f123c123f319bd070")
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x0, 0x5c831, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, &(0x7f0000000240), 0xffffffffffffffff)

00:14:54 executing program 0:
perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syslog(0x9, 0x0, 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
perf_event_open(&(0x7f0000000180)={0xfffffffffffffffd, 0x70, 0x3, 0x0, 0x9, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_open_dev$admmidi(&(0x7f00000003c0)='/dev/admmidi#\x00', 0x401, 0x4000)
r1 = openat$proc_capi20ncci(0xffffffffffffff9c, &(0x7f0000000640)='/proc/capi/capi20ncci\x00', 0x8000, 0x0)
ioctl$sock_inet_tcp_SIOCATMARK(r1, 0x40247007, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
r2 = openat$fuse(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/fuse\x00', 0x2, 0x0)
mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000240)={{'fd', 0x3d, r2}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}})
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, 0x0, 0x4000000000000000, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = syz_open_procfs(0x0, &(0x7f0000000400)='mountinfo\x00')
ioctl$TIOCGETD(r3, 0x5424, &(0x7f0000000580))
set_thread_area(&(0x7f0000000340)={0x6, 0x20001800, 0x4000, 0x200, 0x10000000000ffff, 0x8000000000000001, 0x4000000080101, 0x2, 0xffffffff, 0x3})
rename(&(0x7f0000000480)='./file0/file0\x00', &(0x7f0000000680)='./file0\x00')
write$FUSE_NOTIFY_STORE(r2, &(0x7f0000000700)=ANY=[@ANYBLOB="2a0000000400000000000000000000000100000000000000be000000000000000200000000000000000079e3692ec17ce3fbe63eee81a9c931eed85389a7815765a8cee81896c6faef0d7b9d6253645abd742a960b436677d53504811b9b55404e1ea57b1daf37b5ce1ad87f5a3b3805863622de89e3c997ce96b0c1b396b96386a4bc98f7d4baee976061b97fa60772b5f0659c9df2d27fb7ddde6e4f990370373e03a2b3ce86c04170a6"], 0xab)
mount(&(0x7f0000000340)=ANY=[], 0x0, 0x0, 0x820c01, 0x0)
mount(&(0x7f00000008c0)=@md0='/dev/md0\x00', &(0x7f0000000880)='./file0\x00', &(0x7f00000004c0)='nfsd\x00', 0x2000023, &(0x7f00000006c0)='\x8auU{-\x154\x05-\xab\xc0\xcb\x1an\xd76*5\xec2c\x9f\xcf\xb8\xb6v\x9aA\x06K\x95\xd4dx#\xf8\x90\r\xf1S\xc4\xc2\a\b\x03^\xe6b\x03\xaal)eb,z4\xc9\xe8\x11Y\xacV')
mount(&(0x7f0000000940)=ANY=[@ANYBLOB="969957b52d30fea3a6945a209691fd3e214cb9dcc33db7762efad2628dcef5d3b6364e061019df973b2f53d859e769464fe2a2410d59da45d13169add1c5529ce3628e6153ceb2e151b4c4a2bdac535d60eb398d4d6952a19e3d52a29749828eb1caff4558ca709d9c13c28a2da129717e838eb618c9886828e09a944bc03f33827c69c3fbb70d4b5fba995326c48ced38769a4d61db50c0ec11260778f607660f2b85e3cd0d67bc0cccd8dfba547fe5e36524ef742126514000d7cf7126e2536307a8290af7f78189fa963bfaf8cf0dee8d84a76599366358414b18f32d01f7a3d0b4802a4d706109f9138e41508afeea"], 0x0, 0x0, 0x80010, 0x0)
mount(&(0x7f0000000a40)=ANY=[@ANYBLOB="3040abf7d58436d751c2210ce6c33f5cf63ee466a17a37b30eb2325bbc9556b9ba20d4df40a9cb69d15d3308712819f3d2f27695155ef2b723bc4fcb5d38c46f71f14089eea8a3bb9dfa1e774fccee35dc618d63aa608e8d3f0421aabde758c08399866dd6f0c9c72140b22101f2e98b2b85bb8df6694a00"/131], 0x0, 0x0, 0x80000, 0x0)
r4 = dup2(r3, r0)
ioctl$TCSBRKP(r3, 0x5425, 0x3)
write$FUSE_OPEN(r4, &(0x7f0000000380)={0x20, 0x0, 0x8, {0x0, 0x1}}, 0x20)
pivot_root(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)='./file0\x00')
mount(&(0x7f0000000500)=ANY=[], &(0x7f0000000440)='./file0\x00', &(0x7f0000000800)='devtmpfs\x00', 0x847, &(0x7f0000000780))
preadv(r2, &(0x7f0000001400)=[{&(0x7f0000004200)=""/4096, 0x9d}], 0x1, 0x2)
listen(r3, 0xb60)
ioctl$int_out(r3, 0x5462, &(0x7f0000000540))
link(&(0x7f00000005c0)='./file0\x00', &(0x7f0000000600)='./file0\x00')
ioctl$TIOCGETD(0xffffffffffffffff, 0x5424, &(0x7f0000000140))
clock_gettime(0x2, &(0x7f0000000500))

[  893.079301] tmpfs: No value for mount option '†¤¼˜÷Ôºî—`a¹¦rµðeœòÒ·ÝÞnO™p7>¢³Î†ÀAp¦'
[  893.117304] tmpfs: No value for mount option '†¤¼˜÷Ôºî—`a¹¦rµðeœòÒ·ÝÞnO™p7>¢³Î†ÀAp¦'
[  893.149874] tmpfs: No value for mount option '†¤¼˜÷Ôºî—`a¹¦rµðeœòÒ·ÝÞnO™p7>¢³Î†ÀAp¦'
00:14:54 executing program 1:
perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syslog(0x9, 0x0, 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
perf_event_open(&(0x7f0000000180)={0xfffffffffffffffd, 0x70, 0x3, 0x0, 0x9, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_open_dev$admmidi(&(0x7f00000003c0)='/dev/admmidi#\x00', 0x401, 0x4000)
r1 = openat$proc_capi20ncci(0xffffffffffffff9c, &(0x7f0000000640)='/proc/capi/capi20ncci\x00', 0x8000, 0x0)
ioctl$sock_inet_tcp_SIOCATMARK(r1, 0x40247007, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
r2 = openat$fuse(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/fuse\x00', 0x2, 0x0)
mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000240)={{'fd', 0x3d, r2}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}})
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, 0x0, 0x4000000000000000, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = syz_open_procfs(0x0, &(0x7f0000000400)='mountinfo\x00')
ioctl$TIOCGETD(r3, 0x5424, &(0x7f0000000580))
set_thread_area(&(0x7f0000000340)={0x6, 0x20001800, 0x4000, 0x200, 0x10000000000ffff, 0x8000000000000001, 0x4000000080101, 0x2, 0xffffffff, 0x3})
rename(&(0x7f0000000480)='./file0/file0\x00', &(0x7f0000000680)='./file0\x00')
write$FUSE_NOTIFY_STORE(r2, &(0x7f0000000700)=ANY=[@ANYBLOB="2a0000000400000000000000000000000100000000000000be000000000000000200000000000000000079e3692ec17ce3fbe63eee81a9c931eed85389a7815765a8cee81896c6faef0d7b9d6253645abd742a960b436677d53504811b9b55404e1ea57b1daf37b5ce1ad87f5a3b3805863622de89e3c997ce96b0c1b396b96386a4bc98f7d4baee976061b97fa60772b5f0659c9df2d27fb7ddde6e4f990370373e03a2b3ce86c04170a6"], 0xab)
mount(&(0x7f0000000340)=ANY=[], 0x0, 0x0, 0x820c01, 0x0)
mount(&(0x7f00000008c0)=@md0='/dev/md0\x00', &(0x7f0000000880)='./file0\x00', &(0x7f00000004c0)='nfsd\x00', 0x2000023, &(0x7f00000006c0)='\x8auU{-\x154\x05-\xab\xc0\xcb\x1an\xd76*5\xec2c\x9f\xcf\xb8\xb6v\x9aA\x06K\x95\xd4dx#\xf8\x90\r\xf1S\xc4\xc2\a\b\x03^\xe6b\x03\xaal)eb,z4\xc9\xe8\x11Y\xacV')
mount(&(0x7f0000000940)=ANY=[@ANYBLOB="969957b52d30fea3a6945a209691fd3e214cb9dcc33db7762efad2628dcef5d3b6364e061019df973b2f53d859e769464fe2a2410d59da45d13169add1c5529ce3628e6153ceb2e151b4c4a2bdac535d60eb398d4d6952a19e3d52a29749828eb1caff4558ca709d9c13c28a2da129717e838eb618c9886828e09a944bc03f33827c69c3fbb70d4b5fba995326c48ced38769a4d61db50c0ec11260778f607660f2b85e3cd0d67bc0cccd8dfba547fe5e36524ef742126514000d7cf7126e2536307a8290af7f78189fa963bfaf8cf0dee8d84a76599366358414b18f32d01f7a3d0b4802a4d706109f9138e41508afeea"], 0x0, 0x0, 0x80010, 0x0)
mount(&(0x7f0000000a40)=ANY=[@ANYBLOB="3040abf7d58436d751c2210ce6c33f5cf63ee466a17a37b30eb2325bbc9556b9ba20d4df40a9cb69d15d3308712819f3d2f27695155ef2b723bc4fcb5d38c46f71f14089eea8a3bb9dfa1e774fccee35dc618d63aa608e8d3f0421aabde758c08399866dd6f0c9c72140b22101f2e98b2b85bb8df6694a00"/131], 0x0, 0x0, 0x80000, 0x0)
r4 = dup2(r3, r0)
ioctl$TCSBRKP(r3, 0x5425, 0x3)
write$FUSE_OPEN(r4, &(0x7f0000000380)={0x20, 0x0, 0x8, {0x0, 0x1}}, 0x20)
pivot_root(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)='./file0\x00')
mount(&(0x7f0000000500)=ANY=[], &(0x7f0000000440)='./file0\x00', &(0x7f0000000800)='devtmpfs\x00', 0x847, &(0x7f0000000780))
preadv(r2, &(0x7f0000001400)=[{&(0x7f0000004200)=""/4096, 0x9d}], 0x1, 0x2)
listen(r3, 0xb60)
ioctl$int_out(r3, 0x5462, &(0x7f0000000540))
link(&(0x7f00000005c0)='./file0\x00', &(0x7f0000000600)='./file0\x00')
ioctl$TIOCGETD(0xffffffffffffffff, 0x5424, &(0x7f0000000140))
clock_gettime(0x2, &(0x7f0000000500))

00:14:54 executing program 2:
perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syslog(0x9, 0x0, 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
perf_event_open(&(0x7f0000000180)={0xfffffffffffffffd, 0x70, 0x3, 0x0, 0x9, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_open_dev$admmidi(&(0x7f00000003c0)='/dev/admmidi#\x00', 0x401, 0x4000)
r1 = openat$proc_capi20ncci(0xffffffffffffff9c, &(0x7f0000000640)='/proc/capi/capi20ncci\x00', 0x8000, 0x0)
ioctl$sock_inet_tcp_SIOCATMARK(r1, 0x40247007, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
r2 = openat$fuse(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/fuse\x00', 0x2, 0x0)
mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000240)={{'fd', 0x3d, r2}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}})
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, 0x0, 0x4000000000000000, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = syz_open_procfs(0x0, &(0x7f0000000400)='mountinfo\x00')
ioctl$TIOCGETD(r3, 0x5424, &(0x7f0000000580))
set_thread_area(&(0x7f0000000340)={0x6, 0x20001800, 0x4000, 0x200, 0x10000000000ffff, 0x8000000000000001, 0x4000000080101, 0x2, 0xffffffff, 0x3})
rename(&(0x7f0000000480)='./file0/file0\x00', &(0x7f0000000680)='./file0\x00')
write$FUSE_NOTIFY_STORE(r2, &(0x7f0000000700)=ANY=[@ANYBLOB="2a0000000400000000000000000000000100000000000000be000000000000000200000000000000000079e3692ec17ce3fbe63eee81a9c931eed85389a7815765a8cee81896c6faef0d7b9d6253645abd742a960b436677d53504811b9b55404e1ea57b1daf37b5ce1ad87f5a3b3805863622de89e3c997ce96b0c1b396b96386a4bc98f7d4baee976061b97fa60772b5f0659c9df2d27fb7ddde6e4f990370373e03a2b3ce86c04170a6"], 0xab)
mount(&(0x7f0000000340)=ANY=[], 0x0, 0x0, 0x820c01, 0x0)
mount(&(0x7f00000008c0)=@md0='/dev/md0\x00', &(0x7f0000000880)='./file0\x00', &(0x7f00000004c0)='nfsd\x00', 0x2000023, &(0x7f00000006c0)='\x8auU{-\x154\x05-\xab\xc0\xcb\x1an\xd76*5\xec2c\x9f\xcf\xb8\xb6v\x9aA\x06K\x95\xd4dx#\xf8\x90\r\xf1S\xc4\xc2\a\b\x03^\xe6b\x03\xaal)eb,z4\xc9\xe8\x11Y\xacV')
mount(&(0x7f0000000940)=ANY=[@ANYBLOB="969957b52d30fea3a6945a209691fd3e214cb9dcc33db7762efad2628dcef5d3b6364e061019df973b2f53d859e769464fe2a2410d59da45d13169add1c5529ce3628e6153ceb2e151b4c4a2bdac535d60eb398d4d6952a19e3d52a29749828eb1caff4558ca709d9c13c28a2da129717e838eb618c9886828e09a944bc03f33827c69c3fbb70d4b5fba995326c48ced38769a4d61db50c0ec11260778f607660f2b85e3cd0d67bc0cccd8dfba547fe5e36524ef742126514000d7cf7126e2536307a8290af7f78189fa963bfaf8cf0dee8d84a76599366358414b18f32d01f7a3d0b4802a4d706109f9138e41508afeea"], 0x0, 0x0, 0x80010, 0x0)
mount(&(0x7f0000000a40)=ANY=[@ANYBLOB="3040abf7d58436d751c2210ce6c33f5cf63ee466a17a37b30eb2325bbc9556b9ba20d4df40a9cb69d15d3308712819f3d2f27695155ef2b723bc4fcb5d38c46f71f14089eea8a3bb9dfa1e774fccee35dc618d63aa608e8d3f0421aabde758c08399866dd6f0c9c72140b22101f2e98b2b85bb8df6694a00"/131], 0x0, 0x0, 0x80000, 0x0)
r4 = dup2(r3, r0)
ioctl$TCSBRKP(r3, 0x5425, 0x3)
write$FUSE_OPEN(r4, &(0x7f0000000380)={0x20, 0x0, 0x8, {0x0, 0x1}}, 0x20)
pivot_root(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)='./file0\x00')
mount(&(0x7f0000000500)=ANY=[], &(0x7f0000000440)='./file0\x00', &(0x7f0000000800)='devtmpfs\x00', 0x847, &(0x7f0000000780))
preadv(r2, &(0x7f0000001400)=[{&(0x7f0000004200)=""/4096, 0x9d}], 0x1, 0x2)
listen(r3, 0xb60)
ioctl$int_out(r3, 0x5462, &(0x7f0000000540))
link(&(0x7f00000005c0)='./file0\x00', &(0x7f0000000600)='./file0\x00')
ioctl$TIOCGETD(0xffffffffffffffff, 0x5424, &(0x7f0000000140))
clock_gettime(0x2, &(0x7f0000000500))

00:14:54 executing program 4:
perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syslog(0x9, 0x0, 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
perf_event_open(&(0x7f0000000180)={0xfffffffffffffffd, 0x70, 0x3, 0x0, 0x9, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_open_dev$admmidi(&(0x7f00000003c0)='/dev/admmidi#\x00', 0x401, 0x4000)
r1 = openat$proc_capi20ncci(0xffffffffffffff9c, &(0x7f0000000640)='/proc/capi/capi20ncci\x00', 0x8000, 0x0)
ioctl$sock_inet_tcp_SIOCATMARK(r1, 0x40247007, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
r2 = openat$fuse(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/fuse\x00', 0x2, 0x0)
mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000240)={{'fd', 0x3d, r2}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}})
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, 0x0, 0x4000000000000000, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = syz_open_procfs(0x0, &(0x7f0000000400)='mountinfo\x00')
ioctl$TIOCGETD(r3, 0x5424, &(0x7f0000000580))
set_thread_area(&(0x7f0000000340)={0x6, 0x20001800, 0x4000, 0x200, 0x10000000000ffff, 0x8000000000000001, 0x4000000080101, 0x2, 0xffffffff, 0x3})
rename(&(0x7f0000000480)='./file0/file0\x00', &(0x7f0000000680)='./file0\x00')
write$FUSE_NOTIFY_STORE(r2, &(0x7f0000000700)=ANY=[@ANYBLOB="2a0000000400000000000000000000000100000000000000be000000000000000200000000000000000079e3692ec17ce3fbe63eee81a9c931eed85389a7815765a8cee81896c6faef0d7b9d6253645abd742a960b436677d53504811b9b55404e1ea57b1daf37b5ce1ad87f5a3b3805863622de89e3c997ce96b0c1b396b96386a4bc98f7d4baee976061b97fa60772b5f0659c9df2d27fb7ddde6e4f990370373e03a2b3ce86c04170a6"], 0xab)
mount(&(0x7f0000000340)=ANY=[], 0x0, 0x0, 0x820c01, 0x0)
mount(&(0x7f00000008c0)=@md0='/dev/md0\x00', &(0x7f0000000880)='./file0\x00', &(0x7f00000004c0)='nfsd\x00', 0x2000023, &(0x7f00000006c0)='\x8auU{-\x154\x05-\xab\xc0\xcb\x1an\xd76*5\xec2c\x9f\xcf\xb8\xb6v\x9aA\x06K\x95\xd4dx#\xf8\x90\r\xf1S\xc4\xc2\a\b\x03^\xe6b\x03\xaal)eb,z4\xc9\xe8\x11Y\xacV')
mount(&(0x7f0000000940)=ANY=[@ANYBLOB="969957b52d30fea3a6945a209691fd3e214cb9dcc33db7762efad2628dcef5d3b6364e061019df973b2f53d859e769464fe2a2410d59da45d13169add1c5529ce3628e6153ceb2e151b4c4a2bdac535d60eb398d4d6952a19e3d52a29749828eb1caff4558ca709d9c13c28a2da129717e838eb618c9886828e09a944bc03f33827c69c3fbb70d4b5fba995326c48ced38769a4d61db50c0ec11260778f607660f2b85e3cd0d67bc0cccd8dfba547fe5e36524ef742126514000d7cf7126e2536307a8290af7f78189fa963bfaf8cf0dee8d84a76599366358414b18f32d01f7a3d0b4802a4d706109f9138e41508afeea"], 0x0, 0x0, 0x80010, 0x0)
mount(&(0x7f0000000a40)=ANY=[@ANYBLOB="3040abf7d58436d751c2210ce6c33f5cf63ee466a17a37b30eb2325bbc9556b9ba20d4df40a9cb69d15d3308712819f3d2f27695155ef2b723bc4fcb5d38c46f71f14089eea8a3bb9dfa1e774fccee35dc618d63aa608e8d3f0421aabde758c08399866dd6f0c9c72140b22101f2e98b2b85bb8df6694a00"/131], 0x0, 0x0, 0x80000, 0x0)
r4 = dup2(r3, r0)
ioctl$TCSBRKP(r3, 0x5425, 0x3)
write$FUSE_OPEN(r4, &(0x7f0000000380)={0x20, 0x0, 0x8, {0x0, 0x1}}, 0x20)
pivot_root(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)='./file0\x00')
mount(&(0x7f0000000500)=ANY=[], &(0x7f0000000440)='./file0\x00', &(0x7f0000000800)='devtmpfs\x00', 0x847, &(0x7f0000000780))
preadv(r2, &(0x7f0000001400)=[{&(0x7f0000004200)=""/4096, 0x9d}], 0x1, 0x2)
listen(r3, 0xb60)
ioctl$int_out(r3, 0x5462, &(0x7f0000000540))
link(&(0x7f00000005c0)='./file0\x00', &(0x7f0000000600)='./file0\x00')
ioctl$TIOCGETD(0xffffffffffffffff, 0x5424, &(0x7f0000000140))
clock_gettime(0x2, &(0x7f0000000500))

[  893.210163] tmpfs: No value for mount option '†¤¼˜÷Ôºî—`a¹¦rµðeœòÒ·ÝÞnO™p7>¢³Î†ÀAp¦'
00:14:54 executing program 3:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x400001000008912, &(0x7f0000000100)="0adc1f123c123f319bd070")
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x0, 0x5c831, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, &(0x7f0000000240), 0xffffffffffffffff)

00:14:54 executing program 0:
perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syslog(0x9, 0x0, 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
perf_event_open(&(0x7f0000000180)={0xfffffffffffffffd, 0x70, 0x3, 0x0, 0x9, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_open_dev$admmidi(&(0x7f00000003c0)='/dev/admmidi#\x00', 0x401, 0x4000)
r1 = openat$proc_capi20ncci(0xffffffffffffff9c, &(0x7f0000000640)='/proc/capi/capi20ncci\x00', 0x8000, 0x0)
ioctl$sock_inet_tcp_SIOCATMARK(r1, 0x40247007, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
r2 = openat$fuse(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/fuse\x00', 0x2, 0x0)
mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000240)={{'fd', 0x3d, r2}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}})
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, 0x0, 0x4000000000000000, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = syz_open_procfs(0x0, &(0x7f0000000400)='mountinfo\x00')
ioctl$TIOCGETD(r3, 0x5424, &(0x7f0000000580))
set_thread_area(&(0x7f0000000340)={0x6, 0x20001800, 0x4000, 0x200, 0x10000000000ffff, 0x8000000000000001, 0x4000000080101, 0x2, 0xffffffff, 0x3})
rename(&(0x7f0000000480)='./file0/file0\x00', &(0x7f0000000680)='./file0\x00')
write$FUSE_NOTIFY_STORE(r2, &(0x7f0000000700)=ANY=[@ANYBLOB="2a0000000400000000000000000000000100000000000000be000000000000000200000000000000000079e3692ec17ce3fbe63eee81a9c931eed85389a7815765a8cee81896c6faef0d7b9d6253645abd742a960b436677d53504811b9b55404e1ea57b1daf37b5ce1ad87f5a3b3805863622de89e3c997ce96b0c1b396b96386a4bc98f7d4baee976061b97fa60772b5f0659c9df2d27fb7ddde6e4f990370373e03a2b3ce86c04170a6"], 0xab)
mount(&(0x7f0000000340)=ANY=[], 0x0, 0x0, 0x820c01, 0x0)
mount(&(0x7f00000008c0)=@md0='/dev/md0\x00', &(0x7f0000000880)='./file0\x00', &(0x7f00000004c0)='nfsd\x00', 0x2000023, &(0x7f00000006c0)='\x8auU{-\x154\x05-\xab\xc0\xcb\x1an\xd76*5\xec2c\x9f\xcf\xb8\xb6v\x9aA\x06K\x95\xd4dx#\xf8\x90\r\xf1S\xc4\xc2\a\b\x03^\xe6b\x03\xaal)eb,z4\xc9\xe8\x11Y\xacV')
mount(&(0x7f0000000940)=ANY=[@ANYBLOB="969957b52d30fea3a6945a209691fd3e214cb9dcc33db7762efad2628dcef5d3b6364e061019df973b2f53d859e769464fe2a2410d59da45d13169add1c5529ce3628e6153ceb2e151b4c4a2bdac535d60eb398d4d6952a19e3d52a29749828eb1caff4558ca709d9c13c28a2da129717e838eb618c9886828e09a944bc03f33827c69c3fbb70d4b5fba995326c48ced38769a4d61db50c0ec11260778f607660f2b85e3cd0d67bc0cccd8dfba547fe5e36524ef742126514000d7cf7126e2536307a8290af7f78189fa963bfaf8cf0dee8d84a76599366358414b18f32d01f7a3d0b4802a4d706109f9138e41508afeea"], 0x0, 0x0, 0x80010, 0x0)
mount(&(0x7f0000000a40)=ANY=[@ANYBLOB="3040abf7d58436d751c2210ce6c33f5cf63ee466a17a37b30eb2325bbc9556b9ba20d4df40a9cb69d15d3308712819f3d2f27695155ef2b723bc4fcb5d38c46f71f14089eea8a3bb9dfa1e774fccee35dc618d63aa608e8d3f0421aabde758c08399866dd6f0c9c72140b22101f2e98b2b85bb8df6694a00"/131], 0x0, 0x0, 0x80000, 0x0)
r4 = dup2(r3, r0)
ioctl$TCSBRKP(r3, 0x5425, 0x3)
write$FUSE_OPEN(r4, &(0x7f0000000380)={0x20, 0x0, 0x8, {0x0, 0x1}}, 0x20)
pivot_root(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)='./file0\x00')
mount(&(0x7f0000000500)=ANY=[], &(0x7f0000000440)='./file0\x00', &(0x7f0000000800)='devtmpfs\x00', 0x847, &(0x7f0000000780))
preadv(r2, &(0x7f0000001400)=[{&(0x7f0000004200)=""/4096, 0x9d}], 0x1, 0x2)
listen(r3, 0xb60)
ioctl$int_out(r3, 0x5462, &(0x7f0000000540))
link(&(0x7f00000005c0)='./file0\x00', &(0x7f0000000600)='./file0\x00')
ioctl$TIOCGETD(0xffffffffffffffff, 0x5424, &(0x7f0000000140))
clock_gettime(0x2, &(0x7f0000000500))

[  893.375279] tmpfs: No value for mount option '†¤¼˜÷Ôºî—`a¹¦rµðeœòÒ·ÝÞnO™p7>¢³Î†ÀAp¦'
[  893.405823] tmpfs: No value for mount option '†¤¼˜÷Ôºî—`a¹¦rµðeœòÒ·ÝÞnO™p7>¢³Î†ÀAp¦'
00:14:55 executing program 2:
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
creat(&(0x7f0000000240)='./file0\x00', 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x802102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f0000000000)={0x5, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount(0x0, 0x0, 0x0, 0x0, 0x0)
socket$inet(0x2, 0x4000000000000001, 0x0)
sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_NMI(r0, 0xae9a)
pselect6(0x40, &(0x7f0000000140), 0x0, &(0x7f0000000380)={0x7f}, &(0x7f0000000400)={0x0, 0x1c9c380}, 0x0)

00:14:55 executing program 3:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x400001000008912, &(0x7f0000000100)="0adc1f123c123f319bd070")
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x0, 0x5c831, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, &(0x7f0000000240), 0xffffffffffffffff)

[  893.462978] tmpfs: No value for mount option '†¤¼˜÷Ôºî—`a¹¦rµðeœòÒ·ÝÞnO™p7>¢³Î†ÀAp¦'
00:14:55 executing program 1:
r0 = socket$kcm(0x11, 0xc000000000000003, 0x0)
sendmsg(r0, &(0x7f0000000000)={&(0x7f00000001c0)=@nfc={0x103, 0x14}, 0x80, &(0x7f0000000040)=[{&(0x7f0000000080)="e1a28ee691c115498dd6f5dc86dd", 0xe}], 0x1}, 0x0)

[  893.539889] tmpfs: No value for mount option '†¤¼˜÷Ôºî—`a¹¦rµðeœòÒ·ÝÞnO™p7>¢³Î†ÀAp¦'
00:14:55 executing program 5:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070")
r1 = msgget$private(0x0, 0x0)
msgctl$IPC_SET(r1, 0x1, &(0x7f0000000000)={{}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe})
msgsnd(r1, &(0x7f00000000c0)={0x1}, 0x2000, 0x0)
msgrcv(r1, &(0x7f00000001c0)=ANY=[], 0x0, 0x1, 0x1000)

00:14:55 executing program 4:
r0 = memfd_create(&(0x7f0000000140)='\x9e\xdez\x88Z\xe9^H\x00\x80\x00\x00\x00\x00\x00`O\x13\xee\xabe\xc029\x01\xdck\x00\x00\x00\x002\xf0\x1b\x7f\v\x01O\x9f\x91\xee\xb7\xc3|r@\xf4v\xc8\xd7S\x00\x00t\xdb\xcf\xa6\xb7M\x00', 0x0)
r1 = syz_open_dev$sndseq(&(0x7f0000027ff3)='/dev/snd/seq\x00', 0x0, 0x20005)
openat$vicodec0(0xffffffffffffff9c, &(0x7f0000000000)='/dev/video36\x00', 0x2, 0x0)
r2 = dup2(r1, r0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r2, 0xc08c5332, &(0x7f0000000240)={0x0, 0x0, 0x0, '\x9e\xdez\x88Z\xe9^H\x00\x80\x00\x00\x00\x00\x00`O\x13\xee\xabe\xc029\x01\xdck\x00\x00\x00\x002\xf0\x1b\x7f\v\x01O\x9f\x91\xee\xb7\xc3|r@\xf4v\xc8\xd7S\x00\x00t\xdb\xcf\xa6\xb7M\x00'})
write$binfmt_aout(r2, &(0x7f0000000300)=ANY=[@ANYBLOB="07010000000000007b03b9d700"/28], 0x1c)
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r0, 0x4040534e, &(0x7f0000000000)={0x3f})

00:14:55 executing program 5:
r0 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x8, 0x4, &(0x7f0000000040)=@framed={{0xffffffb4, 0x0, 0x0, 0x0, 0x0, 0x67}, [@ldst={0x3, 0x2, 0x3, 0x1c10a1, 0x0, 0x35}]}, &(0x7f0000000080)='G\x00', 0x5, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x1c0}, 0x48)
bpf$BPF_PROG_ATTACH(0x8, &(0x7f00000000c0)={0xffffffffffffffff, r0}, 0x10)

00:14:55 executing program 4:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000040)="2e00000018008100e00f80ecdb4cb9040e48ff0112000600d4120000000000000000da01000000a9060015000500", 0x2e}], 0x1}, 0x0)

00:14:55 executing program 1:
r0 = socket$kcm(0x11, 0xc000000000000003, 0x0)
sendmsg(r0, &(0x7f0000000000)={&(0x7f00000001c0)=@nfc={0x103, 0x14}, 0x80, &(0x7f0000000040)=[{&(0x7f0000000080)="e1a28ee691c115498dd6f5dc86dd", 0xe}], 0x1}, 0x0)

00:14:55 executing program 2:
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
creat(&(0x7f0000000240)='./file0\x00', 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x802102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f0000000000)={0x5, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount(0x0, 0x0, 0x0, 0x0, 0x0)
socket$inet(0x2, 0x4000000000000001, 0x0)
sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_NMI(r0, 0xae9a)
pselect6(0x40, &(0x7f0000000140), 0x0, &(0x7f0000000380)={0x7f}, &(0x7f0000000400)={0x0, 0x1c9c380}, 0x0)

00:14:55 executing program 3:
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
creat(&(0x7f0000000240)='./file0\x00', 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x802102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f0000000000)={0x5, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount(0x0, 0x0, 0x0, 0x0, 0x0)
socket$inet(0x2, 0x4000000000000001, 0x0)
sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_NMI(r0, 0xae9a)
pselect6(0x40, &(0x7f0000000140), 0x0, &(0x7f0000000380)={0x7f}, &(0x7f0000000400)={0x0, 0x1c9c380}, 0x0)

00:14:55 executing program 0:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070")
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000140)='./cgroup\x00', 0x200002, 0x0)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$inet6(r2, &(0x7f0000000000)={0xa, 0x0, 0x0, @remote}, 0x1c)
r3 = openat$cgroup_subtree(r1, &(0x7f0000000240)='cgroup.subtree_control\x00', 0x2, 0x0)
close(r3)
syz_open_procfs(0x0, &(0x7f0000000180)='net/udp6\x00')
recvmmsg(0xffffffffffffffff, &(0x7f0000001a00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f00000019c0)=""/61, 0x3d}}], 0x1, 0x0, 0x0)
readv(r3, &(0x7f00000002c0), 0x1000000000000385)

[  893.778848] netlink: 'syz-executor.4': attribute type 6 has an invalid length.
00:14:55 executing program 3:
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
creat(&(0x7f0000000240)='./file0\x00', 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x802102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f0000000000)={0x5, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount(0x0, 0x0, 0x0, 0x0, 0x0)
socket$inet(0x2, 0x4000000000000001, 0x0)
sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_NMI(r0, 0xae9a)
pselect6(0x40, &(0x7f0000000140), 0x0, &(0x7f0000000380)={0x7f}, &(0x7f0000000400)={0x0, 0x1c9c380}, 0x0)

00:14:55 executing program 0:
r0 = syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
ioctl$SCSI_IOCTL_SEND_COMMAND(r0, 0x1, &(0x7f0000000100)={0x0, 0x0, 0x37})

00:14:55 executing program 1:
r0 = socket$kcm(0x11, 0xc000000000000003, 0x0)
sendmsg(r0, &(0x7f0000000000)={&(0x7f00000001c0)=@nfc={0x103, 0x14}, 0x80, &(0x7f0000000040)=[{&(0x7f0000000080)="e1a28ee691c115498dd6f5dc86dd", 0xe}], 0x1}, 0x0)

00:14:55 executing program 4:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000040)="2e00000018008100e00f80ecdb4cb9040e48ff0112000600d4120000000000000000da01000000a9060015000500", 0x2e}], 0x1}, 0x0)

00:14:55 executing program 2:
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
creat(&(0x7f0000000240)='./file0\x00', 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x802102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f0000000000)={0x5, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount(0x0, 0x0, 0x0, 0x0, 0x0)
socket$inet(0x2, 0x4000000000000001, 0x0)
sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_NMI(r0, 0xae9a)
pselect6(0x40, &(0x7f0000000140), 0x0, &(0x7f0000000380)={0x7f}, &(0x7f0000000400)={0x0, 0x1c9c380}, 0x0)

00:14:55 executing program 3:
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
creat(&(0x7f0000000240)='./file0\x00', 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x802102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f0000000000)={0x5, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount(0x0, 0x0, 0x0, 0x0, 0x0)
socket$inet(0x2, 0x4000000000000001, 0x0)
sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_NMI(r0, 0xae9a)
pselect6(0x40, &(0x7f0000000140), 0x0, &(0x7f0000000380)={0x7f}, &(0x7f0000000400)={0x0, 0x1c9c380}, 0x0)

00:14:55 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
setsockopt$inet6_group_source_req(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0)
openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/sync_persist_mode\x00', 0x2, 0x0)
open(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0)
prctl$PR_MCE_KILL(0x21, 0x1, 0x1)
unshare(0x0)
ioctl$VIDIOC_SUBDEV_S_SELECTION(0xffffffffffffffff, 0xc040563e, &(0x7f0000000240)={0x0, 0x0, 0x3, 0x6, {0x200}})

00:14:55 executing program 2:
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
creat(&(0x7f0000000240)='./file0\x00', 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x802102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f0000000000)={0x5, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount(0x0, 0x0, 0x0, 0x0, 0x0)
socket$inet(0x2, 0x4000000000000001, 0x0)
sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_NMI(r0, 0xae9a)
pselect6(0x40, &(0x7f0000000140), 0x0, &(0x7f0000000380)={0x7f}, &(0x7f0000000400)={0x0, 0x1c9c380}, 0x0)

00:14:55 executing program 0:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070")
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
syz_open_dev$sndpcmc(&(0x7f0000000200)='/dev/snd/pcmC#D#c\x00', 0x4, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f00000000c0)={[], 0x0, 0x0, 0x0, 0xfffffffffffffffd})
openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000080)='/dev/cachefiles\x00', 0x0, 0x0)
ioctl$IMDELTIMER(0xffffffffffffffff, 0x80044941, 0x0)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[  893.997318] netlink: 'syz-executor.4': attribute type 6 has an invalid length.
00:14:55 executing program 1:
r0 = socket$kcm(0x11, 0xc000000000000003, 0x0)
sendmsg(r0, &(0x7f0000000000)={&(0x7f00000001c0)=@nfc={0x103, 0x14}, 0x80, &(0x7f0000000040)=[{&(0x7f0000000080)="e1a28ee691c115498dd6f5dc86dd", 0xe}], 0x1}, 0x0)

00:14:55 executing program 3:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070")
syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000004c0)='./file0\x00', 0xe000, 0x1, &(0x7f0000000040)=[{&(0x7f00000000c0)="eb3c906d6b66732e666174000204010002000270f7f8", 0x16}], 0x1, 0x0)
r1 = syz_open_dev$media(&(0x7f0000000100)='/dev/media#\x00', 0x9e, 0x0)
accept4$bt_l2cap(r1, &(0x7f0000000140), &(0x7f0000000180)=0xe, 0x800)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x100820, 0x0)
socket$unix(0x1, 0x5, 0x0)
fdatasync(0xffffffffffffff9c)
socket$inet6(0xa, 0x1000000000002, 0x0)
r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = syz_open_procfs(0x0, &(0x7f0000000200)='net\x00')
fcntl$setstatus(r2, 0x4, 0x4800)
r4 = socket$inet6(0xa, 0x6, 0x0)
bind$inet6(r4, &(0x7f0000000000)={0xa, 0x4e20}, 0x1c)
r5 = socket$inet_dccp(0x2, 0x6, 0x0)
listen(r4, 0x6)
ioctl$DRM_IOCTL_GET_STATS(r3, 0x80f86406, &(0x7f0000000140)=""/79)
setsockopt(r5, 0x10d, 0x800000000d, &(0x7f00001c9fff)="03", 0x1)
connect$inet(r5, &(0x7f0000e5c000)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x20}}, 0x10)
ioctl$LOOP_CHANGE_FD(0xffffffffffffffff, 0x4c06, 0xffffffffffffffff)
fcntl$setflags(r3, 0x2, 0x1)
r6 = accept(r4, 0x0, &(0x7f0000000080)=0xfe0f)
write$nbd(r3, &(0x7f0000000240)={0x67446698, 0x0, 0x0, 0x0, 0x3, "fb04b832f1224f5f5d58149cf40a8958f6e44626dc09e6e4b126f53fee98ccf3f8fa50cd92b5fe24dcf618757a4e586fc8a8da9e5584"}, 0x46)
setsockopt$inet6_tcp_TCP_ULP(0xffffffffffffffff, 0x6, 0x1f, &(0x7f0000000340)='tls\x00', 0x4)
sendmmsg(r5, &(0x7f0000005700)=[{{&(0x7f0000003900)=@pptp, 0x80, &(0x7f0000003b80), 0x3a5, &(0x7f0000003bc0)}}], 0x3a6, 0x0)
setsockopt$SO_BINDTODEVICE(r6, 0x1, 0x19, &(0x7f0000000100)='erspan0\x00', 0xfc)
sendmmsg(r5, &(0x7f000000a080)=[{{&(0x7f0000005440)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x2, {0xa, 0x0, 0x0, @ipv4={[], [], @local}}}}, 0x80, &(0x7f0000005640)=[{&(0x7f00000097c0)="bf", 0x1}], 0x1, 0x0, 0x0, 0x1}}], 0x1, 0x0)

00:14:55 executing program 4:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000040)="2e00000018008100e00f80ecdb4cb9040e48ff0112000600d4120000000000000000da01000000a9060015000500", 0x2e}], 0x1}, 0x0)

00:14:55 executing program 5:
mknod$loop(&(0x7f0000000080)='./file0\x00', 0x10020006004, 0x0)
mount(&(0x7f0000000100)=@filename='./file0\x00', &(0x7f0000000180)='./file0\x00', &(0x7f0000000000)='xfs\x00', 0x0, 0x0)

00:14:55 executing program 0:
close(0xffffffffffffffff)
r0 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000000)="2e00000014008104e00f80ecdb4cb92e0268022c14a00206040001008e7948f328995a017c7b5851060000000000", 0x2e}], 0x1, 0x0, 0x0, 0xa00}, 0x0)

[  894.158309] netlink: 'syz-executor.4': attribute type 6 has an invalid length.
00:14:55 executing program 2:
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_opts(r0, 0x29, 0x36, &(0x7f00000000c0)=@srh, 0x8)
setsockopt$inet6_opts(r0, 0x29, 0x36, 0x0, 0x0)

00:14:55 executing program 1:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070")
r1 = socket$inet(0x10, 0x3, 0xc)
sendmsg(r1, &(0x7f0000011fc8)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f0000000000)="24000000050107031dfffd946fa2830020200a0009000100001d85680c1baba20400ff7e28000000110affffba010000000009b356da5a80d18be34c8546c8243929db2406b20cd37ed01cc0", 0x4c}], 0x1}, 0x0)

[  894.246057] netlink: 'syz-executor.0': attribute type 1 has an invalid length.
00:14:55 executing program 4:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000040)="2e00000018008100e00f80ecdb4cb9040e48ff0112000600d4120000000000000000da01000000a9060015000500", 0x2e}], 0x1}, 0x0)

[  894.294222] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.1'.
[  894.308310] netlink: 'syz-executor.0': attribute type 1 has an invalid length.
00:14:56 executing program 2:
r0 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhost-net\x00', 0x2, 0x0)
ioctl$int_in(r0, 0x40000000af01, 0x0)
r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000080)='/dev/audio\x00', 0x0, 0x0)
close(r1)
socket$packet(0x11, 0x3, 0x300)
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000b04000)={0x0, 0x0, 0x0, &(0x7f0000034000)=""/95, 0x0})
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000100)=ANY=[])
ioctl$VHOST_NET_SET_BACKEND(r0, 0x4008af30, &(0x7f0000000000)={0x0, r1})
syz_genetlink_get_family_id$tipc2(&(0x7f00000002c0)='TIPCv2\x00')

[  894.352823] print_req_error: I/O error, dev loop10, sector 0
[  894.356859] netlink: 'syz-executor.4': attribute type 6 has an invalid length.
[  894.359646] XFS (loop10): SB validate failed with error -5.
00:14:56 executing program 0:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070")
syz_mount_image$bfs(&(0x7f00000000c0)='bfs\x00', &(0x7f0000000040)='./file0\x00', 0x80000004, 0x1, &(0x7f0000000080)=[{&(0x7f0000000000)="cefaad1b00dc000000dc", 0xa}], 0x0, 0x0)

00:14:56 executing program 1:
r0 = socket$rds(0x15, 0x5, 0x0)
setsockopt$RDS_GET_MR(r0, 0x114, 0x8, 0x0, 0x4)

00:14:56 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_TSS_ADDR(r1, 0xae45, 0x0)

00:14:56 executing program 1:
r0 = socket$rds(0x15, 0x5, 0x0)
setsockopt$RDS_GET_MR(r0, 0x114, 0x8, 0x0, 0x4)

[  894.509235] BFS-fs: bfs_fill_super(): loop0 is unclean, continuing
[  894.756863] BFS-fs: bfs_fill_super(): No BFS filesystem on loop0 (magic=00000578)
00:14:56 executing program 3:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070")
syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000004c0)='./file0\x00', 0xe000, 0x1, &(0x7f0000000040)=[{&(0x7f00000000c0)="eb3c906d6b66732e666174000204010002000270f7f8", 0x16}], 0x1, 0x0)
r1 = syz_open_dev$media(&(0x7f0000000100)='/dev/media#\x00', 0x9e, 0x0)
accept4$bt_l2cap(r1, &(0x7f0000000140), &(0x7f0000000180)=0xe, 0x800)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x100820, 0x0)
socket$unix(0x1, 0x5, 0x0)
fdatasync(0xffffffffffffff9c)
socket$inet6(0xa, 0x1000000000002, 0x0)
r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = syz_open_procfs(0x0, &(0x7f0000000200)='net\x00')
fcntl$setstatus(r2, 0x4, 0x4800)
r4 = socket$inet6(0xa, 0x6, 0x0)
bind$inet6(r4, &(0x7f0000000000)={0xa, 0x4e20}, 0x1c)
r5 = socket$inet_dccp(0x2, 0x6, 0x0)
listen(r4, 0x6)
ioctl$DRM_IOCTL_GET_STATS(r3, 0x80f86406, &(0x7f0000000140)=""/79)
setsockopt(r5, 0x10d, 0x800000000d, &(0x7f00001c9fff)="03", 0x1)
connect$inet(r5, &(0x7f0000e5c000)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x20}}, 0x10)
ioctl$LOOP_CHANGE_FD(0xffffffffffffffff, 0x4c06, 0xffffffffffffffff)
fcntl$setflags(r3, 0x2, 0x1)
r6 = accept(r4, 0x0, &(0x7f0000000080)=0xfe0f)
write$nbd(r3, &(0x7f0000000240)={0x67446698, 0x0, 0x0, 0x0, 0x3, "fb04b832f1224f5f5d58149cf40a8958f6e44626dc09e6e4b126f53fee98ccf3f8fa50cd92b5fe24dcf618757a4e586fc8a8da9e5584"}, 0x46)
setsockopt$inet6_tcp_TCP_ULP(0xffffffffffffffff, 0x6, 0x1f, &(0x7f0000000340)='tls\x00', 0x4)
sendmmsg(r5, &(0x7f0000005700)=[{{&(0x7f0000003900)=@pptp, 0x80, &(0x7f0000003b80), 0x3a5, &(0x7f0000003bc0)}}], 0x3a6, 0x0)
setsockopt$SO_BINDTODEVICE(r6, 0x1, 0x19, &(0x7f0000000100)='erspan0\x00', 0xfc)
sendmmsg(r5, &(0x7f000000a080)=[{{&(0x7f0000005440)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x2, {0xa, 0x0, 0x0, @ipv4={[], [], @local}}}}, 0x80, &(0x7f0000005640)=[{&(0x7f00000097c0)="bf", 0x1}], 0x1, 0x0, 0x0, 0x1}}], 0x1, 0x0)

00:14:56 executing program 2:
syz_open_dev$video(&(0x7f0000000140)='/dev/video#\x00', 0x102, 0x0)
ioctl$FS_IOC_FSGETXATTR(0xffffffffffffffff, 0x801c581f, 0x0)
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0)
fcntl$notify(r0, 0x402, 0x28)
r1 = syz_open_procfs(0x0, &(0x7f0000000000)='setgroups\x00\x14\x9d\xe7\x8b\xbbz\x98\x1e\xc8>i\x8f\x0f\xa5~\x88\xf4\xe9\xbc\xb0\xc0\xfd\xf7\x16_\x89\'V\x98\x05.\x80\xde0\xf1\xb6\xaaoz0\xf7m-J\x10+N\xd4\xf5\x12\xe2\x1b8\xf8\x9d\x12*\\\xad\xc6\xd2\xcc\xb3\x88j\xd9c\x0e\xac\xb9\xfb\x8a\x84\xb8\x0eVK\xf0\x12')
syz_open_dev$video(&(0x7f0000000340)='/dev/video#\x00', 0x3, 0x0)
r2 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x80000)
ioctl$SNDRV_CTL_IOCTL_PCM_NEXT_DEVICE(r2, 0x80045530, &(0x7f00000001c0))
r3 = socket$inet6(0xa, 0x2000000000000001, 0x8010000000000084)
bind$inet6(r3, &(0x7f00002aafe4)={0xa, 0x4e22, 0x0, @ipv4}, 0x1c)
r4 = socket$inet6_sctp(0xa, 0x8, 0x84)
ioctl$RTC_IRQP_SET(r1, 0x4008700c, 0xb4d)
connect$netlink(r2, &(0x7f0000000040)=@proc={0x10, 0x0, 0x0, 0x40}, 0xc)
sendto$inet6(r4, &(0x7f0000000100)='F', 0x1, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(0xffffffffffffffff, 0x84, 0x9, 0x0, 0x0)
r5 = socket$netlink(0x10, 0x3, 0xc)
bind$netlink(r5, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$RTC_IRQP_SET(r2, 0x4004700c, 0x345)
r6 = socket$inet6(0xa, 0x40000080806, 0x0)
bind$inet6(r6, &(0x7f000047b000)={0xa, 0x4e20}, 0x1c)
listen(r6, 0x20000003)
r7 = socket$inet6(0xa, 0x6, 0x0)
connect$inet6(r7, &(0x7f0000419000)={0xa, 0x4e20, 0x0, @ipv4={[], [], @local}}, 0x1c)
r8 = accept4(r6, &(0x7f0000000540)=@nl=@proc, &(0x7f0000047ffc)=0x80, 0x800)
write$binfmt_elf64(r8, &(0x7f0000002080)=ANY=[@ANYBLOB="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"], 0xb19)
setsockopt$inet6_opts(r8, 0x29, 0x37, &(0x7f0000000140)=ANY=[@ANYBLOB="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", @ANYRES16=r3, @ANYRES32=r8], 0x3)
ioctl$sock_bt_hidp_HIDPGETCONNLIST(r2, 0x800448d2, &(0x7f0000000a40)={0x1, &(0x7f0000000380)=[{}]})
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)

00:14:56 executing program 4:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$dri(&(0x7f0000000280)='/dev/dri/card#\x00', 0x1, 0x0)
ioctl(r0, 0xffffffffffffffb9, &(0x7f0000000080))

00:14:56 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$f2fs(&(0x7f0000000240)='f2fs\x00', &(0x7f0000000340)='./file0\x00', 0x300000000000000, 0x1, &(0x7f0000000200)=[{&(0x7f00000000c0)="1020f5f20100070009000000030000000c0000000900000001000000020000000000000000300000000000000e00000016000000020000000200000002000000020000000e000000000400000004000000080000000c00000010000000140000030000000100000002", 0x69, 0x1400}], 0x0, 0x0)

00:14:56 executing program 1:
r0 = socket$rds(0x15, 0x5, 0x0)
setsockopt$RDS_GET_MR(r0, 0x114, 0x8, 0x0, 0x4)

00:14:56 executing program 0:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070")
syz_mount_image$bfs(&(0x7f00000000c0)='bfs\x00', &(0x7f0000000040)='./file0\x00', 0x80000004, 0x1, &(0x7f0000000080)=[{&(0x7f0000000000)="cefaad1b00dc000000dc", 0xa}], 0x0, 0x0)

00:14:56 executing program 5:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070")
syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000004c0)='./file0\x00', 0xe000, 0x1, &(0x7f0000000040)=[{&(0x7f00000000c0)="eb3c906d6b66732e666174000204010002000270f7f8", 0x16}], 0x1, 0x0)
r1 = syz_open_dev$media(&(0x7f0000000100)='/dev/media#\x00', 0x9e, 0x0)
accept4$bt_l2cap(r1, &(0x7f0000000140), &(0x7f0000000180)=0xe, 0x800)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x100820, 0x0)
socket$unix(0x1, 0x5, 0x0)
fdatasync(0xffffffffffffff9c)
socket$inet6(0xa, 0x1000000000002, 0x0)
r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = syz_open_procfs(0x0, &(0x7f0000000200)='net\x00')
fcntl$setstatus(r2, 0x4, 0x4800)
r4 = socket$inet6(0xa, 0x6, 0x0)
bind$inet6(r4, &(0x7f0000000000)={0xa, 0x4e20}, 0x1c)
r5 = socket$inet_dccp(0x2, 0x6, 0x0)
listen(r4, 0x6)
ioctl$DRM_IOCTL_GET_STATS(r3, 0x80f86406, &(0x7f0000000140)=""/79)
setsockopt(r5, 0x10d, 0x800000000d, &(0x7f00001c9fff)="03", 0x1)
connect$inet(r5, &(0x7f0000e5c000)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x20}}, 0x10)
ioctl$LOOP_CHANGE_FD(0xffffffffffffffff, 0x4c06, 0xffffffffffffffff)
fcntl$setflags(r3, 0x2, 0x1)
r6 = accept(r4, 0x0, &(0x7f0000000080)=0xfe0f)
write$nbd(r3, &(0x7f0000000240)={0x67446698, 0x0, 0x0, 0x0, 0x3, "fb04b832f1224f5f5d58149cf40a8958f6e44626dc09e6e4b126f53fee98ccf3f8fa50cd92b5fe24dcf618757a4e586fc8a8da9e5584"}, 0x46)
setsockopt$inet6_tcp_TCP_ULP(0xffffffffffffffff, 0x6, 0x1f, &(0x7f0000000340)='tls\x00', 0x4)
sendmmsg(r5, &(0x7f0000005700)=[{{&(0x7f0000003900)=@pptp, 0x80, &(0x7f0000003b80), 0x3a5, &(0x7f0000003bc0)}}], 0x3a6, 0x0)
setsockopt$SO_BINDTODEVICE(r6, 0x1, 0x19, &(0x7f0000000100)='erspan0\x00', 0xfc)
sendmmsg(r5, &(0x7f000000a080)=[{{&(0x7f0000005440)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x2, {0xa, 0x0, 0x0, @ipv4={[], [], @local}}}}, 0x80, &(0x7f0000005640)=[{&(0x7f00000097c0)="bf", 0x1}], 0x1, 0x0, 0x0, 0x1}}], 0x1, 0x0)

00:14:56 executing program 4:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070")
syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000004c0)='./file0\x00', 0xe000, 0x1, &(0x7f0000000040)=[{&(0x7f00000000c0)="eb3c906d6b66732e666174000204010002000270f7f8", 0x16}], 0x1, 0x0)
r1 = syz_open_dev$media(&(0x7f0000000100)='/dev/media#\x00', 0x9e, 0x0)
accept4$bt_l2cap(r1, &(0x7f0000000140), &(0x7f0000000180)=0xe, 0x800)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x100820, 0x0)
socket$unix(0x1, 0x5, 0x0)
fdatasync(0xffffffffffffff9c)
socket$inet6(0xa, 0x1000000000002, 0x0)
r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = syz_open_procfs(0x0, &(0x7f0000000200)='net\x00')
fcntl$setstatus(r2, 0x4, 0x4800)
r4 = socket$inet6(0xa, 0x6, 0x0)
bind$inet6(r4, &(0x7f0000000000)={0xa, 0x4e20}, 0x1c)
r5 = socket$inet_dccp(0x2, 0x6, 0x0)
listen(r4, 0x6)
ioctl$DRM_IOCTL_GET_STATS(r3, 0x80f86406, &(0x7f0000000140)=""/79)
setsockopt(r5, 0x10d, 0x800000000d, &(0x7f00001c9fff)="03", 0x1)
connect$inet(r5, &(0x7f0000e5c000)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x20}}, 0x10)
ioctl$LOOP_CHANGE_FD(0xffffffffffffffff, 0x4c06, 0xffffffffffffffff)
fcntl$setflags(r3, 0x2, 0x1)
r6 = accept(r4, 0x0, &(0x7f0000000080)=0xfe0f)
write$nbd(r3, &(0x7f0000000240)={0x67446698, 0x0, 0x0, 0x0, 0x3, "fb04b832f1224f5f5d58149cf40a8958f6e44626dc09e6e4b126f53fee98ccf3f8fa50cd92b5fe24dcf618757a4e586fc8a8da9e5584"}, 0x46)
setsockopt$inet6_tcp_TCP_ULP(0xffffffffffffffff, 0x6, 0x1f, &(0x7f0000000340)='tls\x00', 0x4)
sendmmsg(r5, &(0x7f0000005700)=[{{&(0x7f0000003900)=@pptp, 0x80, &(0x7f0000003b80), 0x3a5, &(0x7f0000003bc0)}}], 0x3a6, 0x0)
setsockopt$SO_BINDTODEVICE(r6, 0x1, 0x19, &(0x7f0000000100)='erspan0\x00', 0xfc)
sendmmsg(r5, &(0x7f000000a080)=[{{&(0x7f0000005440)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x2, {0xa, 0x0, 0x0, @ipv4={[], [], @local}}}}, 0x80, &(0x7f0000005640)=[{&(0x7f00000097c0)="bf", 0x1}], 0x1, 0x0, 0x0, 0x1}}], 0x1, 0x0)

00:14:56 executing program 1:
r0 = socket$rds(0x15, 0x5, 0x0)
setsockopt$RDS_GET_MR(r0, 0x114, 0x8, 0x0, 0x4)

[  895.000644] BFS-fs: bfs_fill_super(): loop0 is unclean, continuing
00:14:56 executing program 3:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070")
syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000004c0)='./file0\x00', 0xe000, 0x1, &(0x7f0000000040)=[{&(0x7f00000000c0)="eb3c906d6b66732e666174000204010002000270f7f8", 0x16}], 0x1, 0x0)
r1 = syz_open_dev$media(&(0x7f0000000100)='/dev/media#\x00', 0x9e, 0x0)
accept4$bt_l2cap(r1, &(0x7f0000000140), &(0x7f0000000180)=0xe, 0x800)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x100820, 0x0)
socket$unix(0x1, 0x5, 0x0)
fdatasync(0xffffffffffffff9c)
socket$inet6(0xa, 0x1000000000002, 0x0)
r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = syz_open_procfs(0x0, &(0x7f0000000200)='net\x00')
fcntl$setstatus(r2, 0x4, 0x4800)
r4 = socket$inet6(0xa, 0x6, 0x0)
bind$inet6(r4, &(0x7f0000000000)={0xa, 0x4e20}, 0x1c)
r5 = socket$inet_dccp(0x2, 0x6, 0x0)
listen(r4, 0x6)
ioctl$DRM_IOCTL_GET_STATS(r3, 0x80f86406, &(0x7f0000000140)=""/79)
setsockopt(r5, 0x10d, 0x800000000d, &(0x7f00001c9fff)="03", 0x1)
connect$inet(r5, &(0x7f0000e5c000)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x20}}, 0x10)
ioctl$LOOP_CHANGE_FD(0xffffffffffffffff, 0x4c06, 0xffffffffffffffff)
fcntl$setflags(r3, 0x2, 0x1)
r6 = accept(r4, 0x0, &(0x7f0000000080)=0xfe0f)
write$nbd(r3, &(0x7f0000000240)={0x67446698, 0x0, 0x0, 0x0, 0x3, "fb04b832f1224f5f5d58149cf40a8958f6e44626dc09e6e4b126f53fee98ccf3f8fa50cd92b5fe24dcf618757a4e586fc8a8da9e5584"}, 0x46)
setsockopt$inet6_tcp_TCP_ULP(0xffffffffffffffff, 0x6, 0x1f, &(0x7f0000000340)='tls\x00', 0x4)
sendmmsg(r5, &(0x7f0000005700)=[{{&(0x7f0000003900)=@pptp, 0x80, &(0x7f0000003b80), 0x3a5, &(0x7f0000003bc0)}}], 0x3a6, 0x0)
setsockopt$SO_BINDTODEVICE(r6, 0x1, 0x19, &(0x7f0000000100)='erspan0\x00', 0xfc)
sendmmsg(r5, &(0x7f000000a080)=[{{&(0x7f0000005440)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x2, {0xa, 0x0, 0x0, @ipv4={[], [], @local}}}}, 0x80, &(0x7f0000005640)=[{&(0x7f00000097c0)="bf", 0x1}], 0x1, 0x0, 0x0, 0x1}}], 0x1, 0x0)

00:14:57 executing program 1:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070")
syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000004c0)='./file0\x00', 0xe000, 0x1, &(0x7f0000000040)=[{&(0x7f00000000c0)="eb3c906d6b66732e666174000204010002000270f7f8", 0x16}], 0x1, 0x0)
r1 = syz_open_dev$media(&(0x7f0000000100)='/dev/media#\x00', 0x9e, 0x0)
accept4$bt_l2cap(r1, &(0x7f0000000140), &(0x7f0000000180)=0xe, 0x800)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x100820, 0x0)
socket$unix(0x1, 0x5, 0x0)
fdatasync(0xffffffffffffff9c)
socket$inet6(0xa, 0x1000000000002, 0x0)
r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = syz_open_procfs(0x0, &(0x7f0000000200)='net\x00')
fcntl$setstatus(r2, 0x4, 0x4800)
r4 = socket$inet6(0xa, 0x6, 0x0)
bind$inet6(r4, &(0x7f0000000000)={0xa, 0x4e20}, 0x1c)
r5 = socket$inet_dccp(0x2, 0x6, 0x0)
listen(r4, 0x6)
ioctl$DRM_IOCTL_GET_STATS(r3, 0x80f86406, &(0x7f0000000140)=""/79)
setsockopt(r5, 0x10d, 0x800000000d, &(0x7f00001c9fff)="03", 0x1)
connect$inet(r5, &(0x7f0000e5c000)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x20}}, 0x10)
ioctl$LOOP_CHANGE_FD(0xffffffffffffffff, 0x4c06, 0xffffffffffffffff)
fcntl$setflags(r3, 0x2, 0x1)
r6 = accept(r4, 0x0, &(0x7f0000000080)=0xfe0f)
write$nbd(r3, &(0x7f0000000240)={0x67446698, 0x0, 0x0, 0x0, 0x3, "fb04b832f1224f5f5d58149cf40a8958f6e44626dc09e6e4b126f53fee98ccf3f8fa50cd92b5fe24dcf618757a4e586fc8a8da9e5584"}, 0x46)
setsockopt$inet6_tcp_TCP_ULP(0xffffffffffffffff, 0x6, 0x1f, &(0x7f0000000340)='tls\x00', 0x4)
sendmmsg(r5, &(0x7f0000005700)=[{{&(0x7f0000003900)=@pptp, 0x80, &(0x7f0000003b80), 0x3a5, &(0x7f0000003bc0)}}], 0x3a6, 0x0)
setsockopt$SO_BINDTODEVICE(r6, 0x1, 0x19, &(0x7f0000000100)='erspan0\x00', 0xfc)
sendmmsg(r5, &(0x7f000000a080)=[{{&(0x7f0000005440)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x2, {0xa, 0x0, 0x0, @ipv4={[], [], @local}}}}, 0x80, &(0x7f0000005640)=[{&(0x7f00000097c0)="bf", 0x1}], 0x1, 0x0, 0x0, 0x1}}], 0x1, 0x0)

00:14:57 executing program 2:
syz_open_dev$video(&(0x7f0000000140)='/dev/video#\x00', 0x102, 0x0)
ioctl$FS_IOC_FSGETXATTR(0xffffffffffffffff, 0x801c581f, 0x0)
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0)
fcntl$notify(r0, 0x402, 0x28)
r1 = syz_open_procfs(0x0, &(0x7f0000000000)='setgroups\x00\x14\x9d\xe7\x8b\xbbz\x98\x1e\xc8>i\x8f\x0f\xa5~\x88\xf4\xe9\xbc\xb0\xc0\xfd\xf7\x16_\x89\'V\x98\x05.\x80\xde0\xf1\xb6\xaaoz0\xf7m-J\x10+N\xd4\xf5\x12\xe2\x1b8\xf8\x9d\x12*\\\xad\xc6\xd2\xcc\xb3\x88j\xd9c\x0e\xac\xb9\xfb\x8a\x84\xb8\x0eVK\xf0\x12')
syz_open_dev$video(&(0x7f0000000340)='/dev/video#\x00', 0x3, 0x0)
r2 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x80000)
ioctl$SNDRV_CTL_IOCTL_PCM_NEXT_DEVICE(r2, 0x80045530, &(0x7f00000001c0))
r3 = socket$inet6(0xa, 0x2000000000000001, 0x8010000000000084)
bind$inet6(r3, &(0x7f00002aafe4)={0xa, 0x4e22, 0x0, @ipv4}, 0x1c)
r4 = socket$inet6_sctp(0xa, 0x8, 0x84)
ioctl$RTC_IRQP_SET(r1, 0x4008700c, 0xb4d)
connect$netlink(r2, &(0x7f0000000040)=@proc={0x10, 0x0, 0x0, 0x40}, 0xc)
sendto$inet6(r4, &(0x7f0000000100)='F', 0x1, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(0xffffffffffffffff, 0x84, 0x9, 0x0, 0x0)
r5 = socket$netlink(0x10, 0x3, 0xc)
bind$netlink(r5, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$RTC_IRQP_SET(r2, 0x4004700c, 0x345)
r6 = socket$inet6(0xa, 0x40000080806, 0x0)
bind$inet6(r6, &(0x7f000047b000)={0xa, 0x4e20}, 0x1c)
listen(r6, 0x20000003)
r7 = socket$inet6(0xa, 0x6, 0x0)
connect$inet6(r7, &(0x7f0000419000)={0xa, 0x4e20, 0x0, @ipv4={[], [], @local}}, 0x1c)
r8 = accept4(r6, &(0x7f0000000540)=@nl=@proc, &(0x7f0000047ffc)=0x80, 0x800)
write$binfmt_elf64(r8, &(0x7f0000002080)=ANY=[@ANYBLOB="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"], 0xb19)
setsockopt$inet6_opts(r8, 0x29, 0x37, &(0x7f0000000140)=ANY=[@ANYBLOB="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", @ANYRES16=r3, @ANYRES32=r8], 0x3)
ioctl$sock_bt_hidp_HIDPGETCONNLIST(r2, 0x800448d2, &(0x7f0000000a40)={0x1, &(0x7f0000000380)=[{}]})
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)

00:14:57 executing program 0:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070")
syz_mount_image$bfs(&(0x7f00000000c0)='bfs\x00', &(0x7f0000000040)='./file0\x00', 0x80000004, 0x1, &(0x7f0000000080)=[{&(0x7f0000000000)="cefaad1b00dc000000dc", 0xa}], 0x0, 0x0)

00:14:57 executing program 5:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070")
syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000004c0)='./file0\x00', 0xe000, 0x1, &(0x7f0000000040)=[{&(0x7f00000000c0)="eb3c906d6b66732e666174000204010002000270f7f8", 0x16}], 0x1, 0x0)
r1 = syz_open_dev$media(&(0x7f0000000100)='/dev/media#\x00', 0x9e, 0x0)
accept4$bt_l2cap(r1, &(0x7f0000000140), &(0x7f0000000180)=0xe, 0x800)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x100820, 0x0)
socket$unix(0x1, 0x5, 0x0)
fdatasync(0xffffffffffffff9c)
socket$inet6(0xa, 0x1000000000002, 0x0)
r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = syz_open_procfs(0x0, &(0x7f0000000200)='net\x00')
fcntl$setstatus(r2, 0x4, 0x4800)
r4 = socket$inet6(0xa, 0x6, 0x0)
bind$inet6(r4, &(0x7f0000000000)={0xa, 0x4e20}, 0x1c)
r5 = socket$inet_dccp(0x2, 0x6, 0x0)
listen(r4, 0x6)
ioctl$DRM_IOCTL_GET_STATS(r3, 0x80f86406, &(0x7f0000000140)=""/79)
setsockopt(r5, 0x10d, 0x800000000d, &(0x7f00001c9fff)="03", 0x1)
connect$inet(r5, &(0x7f0000e5c000)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x20}}, 0x10)
ioctl$LOOP_CHANGE_FD(0xffffffffffffffff, 0x4c06, 0xffffffffffffffff)
fcntl$setflags(r3, 0x2, 0x1)
r6 = accept(r4, 0x0, &(0x7f0000000080)=0xfe0f)
write$nbd(r3, &(0x7f0000000240)={0x67446698, 0x0, 0x0, 0x0, 0x3, "fb04b832f1224f5f5d58149cf40a8958f6e44626dc09e6e4b126f53fee98ccf3f8fa50cd92b5fe24dcf618757a4e586fc8a8da9e5584"}, 0x46)
setsockopt$inet6_tcp_TCP_ULP(0xffffffffffffffff, 0x6, 0x1f, &(0x7f0000000340)='tls\x00', 0x4)
sendmmsg(r5, &(0x7f0000005700)=[{{&(0x7f0000003900)=@pptp, 0x80, &(0x7f0000003b80), 0x3a5, &(0x7f0000003bc0)}}], 0x3a6, 0x0)
setsockopt$SO_BINDTODEVICE(r6, 0x1, 0x19, &(0x7f0000000100)='erspan0\x00', 0xfc)
sendmmsg(r5, &(0x7f000000a080)=[{{&(0x7f0000005440)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x2, {0xa, 0x0, 0x0, @ipv4={[], [], @local}}}}, 0x80, &(0x7f0000005640)=[{&(0x7f00000097c0)="bf", 0x1}], 0x1, 0x0, 0x0, 0x1}}], 0x1, 0x0)

00:14:57 executing program 4:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070")
syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000004c0)='./file0\x00', 0xe000, 0x1, &(0x7f0000000040)=[{&(0x7f00000000c0)="eb3c906d6b66732e666174000204010002000270f7f8", 0x16}], 0x1, 0x0)
r1 = syz_open_dev$media(&(0x7f0000000100)='/dev/media#\x00', 0x9e, 0x0)
accept4$bt_l2cap(r1, &(0x7f0000000140), &(0x7f0000000180)=0xe, 0x800)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x100820, 0x0)
socket$unix(0x1, 0x5, 0x0)
fdatasync(0xffffffffffffff9c)
socket$inet6(0xa, 0x1000000000002, 0x0)
r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = syz_open_procfs(0x0, &(0x7f0000000200)='net\x00')
fcntl$setstatus(r2, 0x4, 0x4800)
r4 = socket$inet6(0xa, 0x6, 0x0)
bind$inet6(r4, &(0x7f0000000000)={0xa, 0x4e20}, 0x1c)
r5 = socket$inet_dccp(0x2, 0x6, 0x0)
listen(r4, 0x6)
ioctl$DRM_IOCTL_GET_STATS(r3, 0x80f86406, &(0x7f0000000140)=""/79)
setsockopt(r5, 0x10d, 0x800000000d, &(0x7f00001c9fff)="03", 0x1)
connect$inet(r5, &(0x7f0000e5c000)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x20}}, 0x10)
ioctl$LOOP_CHANGE_FD(0xffffffffffffffff, 0x4c06, 0xffffffffffffffff)
fcntl$setflags(r3, 0x2, 0x1)
r6 = accept(r4, 0x0, &(0x7f0000000080)=0xfe0f)
write$nbd(r3, &(0x7f0000000240)={0x67446698, 0x0, 0x0, 0x0, 0x3, "fb04b832f1224f5f5d58149cf40a8958f6e44626dc09e6e4b126f53fee98ccf3f8fa50cd92b5fe24dcf618757a4e586fc8a8da9e5584"}, 0x46)
setsockopt$inet6_tcp_TCP_ULP(0xffffffffffffffff, 0x6, 0x1f, &(0x7f0000000340)='tls\x00', 0x4)
sendmmsg(r5, &(0x7f0000005700)=[{{&(0x7f0000003900)=@pptp, 0x80, &(0x7f0000003b80), 0x3a5, &(0x7f0000003bc0)}}], 0x3a6, 0x0)
setsockopt$SO_BINDTODEVICE(r6, 0x1, 0x19, &(0x7f0000000100)='erspan0\x00', 0xfc)
sendmmsg(r5, &(0x7f000000a080)=[{{&(0x7f0000005440)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x2, {0xa, 0x0, 0x0, @ipv4={[], [], @local}}}}, 0x80, &(0x7f0000005640)=[{&(0x7f00000097c0)="bf", 0x1}], 0x1, 0x0, 0x0, 0x1}}], 0x1, 0x0)

[  895.797990] BFS-fs: bfs_fill_super(): loop0 is unclean, continuing
00:14:57 executing program 2:
syz_open_dev$video(&(0x7f0000000140)='/dev/video#\x00', 0x102, 0x0)
ioctl$FS_IOC_FSGETXATTR(0xffffffffffffffff, 0x801c581f, 0x0)
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0)
fcntl$notify(r0, 0x402, 0x28)
r1 = syz_open_procfs(0x0, &(0x7f0000000000)='setgroups\x00\x14\x9d\xe7\x8b\xbbz\x98\x1e\xc8>i\x8f\x0f\xa5~\x88\xf4\xe9\xbc\xb0\xc0\xfd\xf7\x16_\x89\'V\x98\x05.\x80\xde0\xf1\xb6\xaaoz0\xf7m-J\x10+N\xd4\xf5\x12\xe2\x1b8\xf8\x9d\x12*\\\xad\xc6\xd2\xcc\xb3\x88j\xd9c\x0e\xac\xb9\xfb\x8a\x84\xb8\x0eVK\xf0\x12')
syz_open_dev$video(&(0x7f0000000340)='/dev/video#\x00', 0x3, 0x0)
r2 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x80000)
ioctl$SNDRV_CTL_IOCTL_PCM_NEXT_DEVICE(r2, 0x80045530, &(0x7f00000001c0))
r3 = socket$inet6(0xa, 0x2000000000000001, 0x8010000000000084)
bind$inet6(r3, &(0x7f00002aafe4)={0xa, 0x4e22, 0x0, @ipv4}, 0x1c)
r4 = socket$inet6_sctp(0xa, 0x8, 0x84)
ioctl$RTC_IRQP_SET(r1, 0x4008700c, 0xb4d)
connect$netlink(r2, &(0x7f0000000040)=@proc={0x10, 0x0, 0x0, 0x40}, 0xc)
sendto$inet6(r4, &(0x7f0000000100)='F', 0x1, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(0xffffffffffffffff, 0x84, 0x9, 0x0, 0x0)
r5 = socket$netlink(0x10, 0x3, 0xc)
bind$netlink(r5, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$RTC_IRQP_SET(r2, 0x4004700c, 0x345)
r6 = socket$inet6(0xa, 0x40000080806, 0x0)
bind$inet6(r6, &(0x7f000047b000)={0xa, 0x4e20}, 0x1c)
listen(r6, 0x20000003)
r7 = socket$inet6(0xa, 0x6, 0x0)
connect$inet6(r7, &(0x7f0000419000)={0xa, 0x4e20, 0x0, @ipv4={[], [], @local}}, 0x1c)
r8 = accept4(r6, &(0x7f0000000540)=@nl=@proc, &(0x7f0000047ffc)=0x80, 0x800)
write$binfmt_elf64(r8, &(0x7f0000002080)=ANY=[@ANYBLOB="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"], 0xb19)
setsockopt$inet6_opts(r8, 0x29, 0x37, &(0x7f0000000140)=ANY=[@ANYBLOB="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", @ANYRES16=r3, @ANYRES32=r8], 0x3)
ioctl$sock_bt_hidp_HIDPGETCONNLIST(r2, 0x800448d2, &(0x7f0000000a40)={0x1, &(0x7f0000000380)=[{}]})
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)

00:14:57 executing program 1:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070")
syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000004c0)='./file0\x00', 0xe000, 0x1, &(0x7f0000000040)=[{&(0x7f00000000c0)="eb3c906d6b66732e666174000204010002000270f7f8", 0x16}], 0x1, 0x0)
r1 = syz_open_dev$media(&(0x7f0000000100)='/dev/media#\x00', 0x9e, 0x0)
accept4$bt_l2cap(r1, &(0x7f0000000140), &(0x7f0000000180)=0xe, 0x800)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x100820, 0x0)
socket$unix(0x1, 0x5, 0x0)
fdatasync(0xffffffffffffff9c)
socket$inet6(0xa, 0x1000000000002, 0x0)
r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = syz_open_procfs(0x0, &(0x7f0000000200)='net\x00')
fcntl$setstatus(r2, 0x4, 0x4800)
r4 = socket$inet6(0xa, 0x6, 0x0)
bind$inet6(r4, &(0x7f0000000000)={0xa, 0x4e20}, 0x1c)
r5 = socket$inet_dccp(0x2, 0x6, 0x0)
listen(r4, 0x6)
ioctl$DRM_IOCTL_GET_STATS(r3, 0x80f86406, &(0x7f0000000140)=""/79)
setsockopt(r5, 0x10d, 0x800000000d, &(0x7f00001c9fff)="03", 0x1)
connect$inet(r5, &(0x7f0000e5c000)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x20}}, 0x10)
ioctl$LOOP_CHANGE_FD(0xffffffffffffffff, 0x4c06, 0xffffffffffffffff)
fcntl$setflags(r3, 0x2, 0x1)
r6 = accept(r4, 0x0, &(0x7f0000000080)=0xfe0f)
write$nbd(r3, &(0x7f0000000240)={0x67446698, 0x0, 0x0, 0x0, 0x3, "fb04b832f1224f5f5d58149cf40a8958f6e44626dc09e6e4b126f53fee98ccf3f8fa50cd92b5fe24dcf618757a4e586fc8a8da9e5584"}, 0x46)
setsockopt$inet6_tcp_TCP_ULP(0xffffffffffffffff, 0x6, 0x1f, &(0x7f0000000340)='tls\x00', 0x4)
sendmmsg(r5, &(0x7f0000005700)=[{{&(0x7f0000003900)=@pptp, 0x80, &(0x7f0000003b80), 0x3a5, &(0x7f0000003bc0)}}], 0x3a6, 0x0)
setsockopt$SO_BINDTODEVICE(r6, 0x1, 0x19, &(0x7f0000000100)='erspan0\x00', 0xfc)
sendmmsg(r5, &(0x7f000000a080)=[{{&(0x7f0000005440)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x2, {0xa, 0x0, 0x0, @ipv4={[], [], @local}}}}, 0x80, &(0x7f0000005640)=[{&(0x7f00000097c0)="bf", 0x1}], 0x1, 0x0, 0x0, 0x1}}], 0x1, 0x0)

00:14:57 executing program 0:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070")
syz_mount_image$bfs(&(0x7f00000000c0)='bfs\x00', &(0x7f0000000040)='./file0\x00', 0x80000004, 0x1, &(0x7f0000000080)=[{&(0x7f0000000000)="cefaad1b00dc000000dc", 0xa}], 0x0, 0x0)

00:14:57 executing program 4:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070")
syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000004c0)='./file0\x00', 0xe000, 0x1, &(0x7f0000000040)=[{&(0x7f00000000c0)="eb3c906d6b66732e666174000204010002000270f7f8", 0x16}], 0x1, 0x0)
r1 = syz_open_dev$media(&(0x7f0000000100)='/dev/media#\x00', 0x9e, 0x0)
accept4$bt_l2cap(r1, &(0x7f0000000140), &(0x7f0000000180)=0xe, 0x800)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x100820, 0x0)
socket$unix(0x1, 0x5, 0x0)
fdatasync(0xffffffffffffff9c)
socket$inet6(0xa, 0x1000000000002, 0x0)
r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = syz_open_procfs(0x0, &(0x7f0000000200)='net\x00')
fcntl$setstatus(r2, 0x4, 0x4800)
r4 = socket$inet6(0xa, 0x6, 0x0)
bind$inet6(r4, &(0x7f0000000000)={0xa, 0x4e20}, 0x1c)
r5 = socket$inet_dccp(0x2, 0x6, 0x0)
listen(r4, 0x6)
ioctl$DRM_IOCTL_GET_STATS(r3, 0x80f86406, &(0x7f0000000140)=""/79)
setsockopt(r5, 0x10d, 0x800000000d, &(0x7f00001c9fff)="03", 0x1)
connect$inet(r5, &(0x7f0000e5c000)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x20}}, 0x10)
ioctl$LOOP_CHANGE_FD(0xffffffffffffffff, 0x4c06, 0xffffffffffffffff)
fcntl$setflags(r3, 0x2, 0x1)
r6 = accept(r4, 0x0, &(0x7f0000000080)=0xfe0f)
write$nbd(r3, &(0x7f0000000240)={0x67446698, 0x0, 0x0, 0x0, 0x3, "fb04b832f1224f5f5d58149cf40a8958f6e44626dc09e6e4b126f53fee98ccf3f8fa50cd92b5fe24dcf618757a4e586fc8a8da9e5584"}, 0x46)
setsockopt$inet6_tcp_TCP_ULP(0xffffffffffffffff, 0x6, 0x1f, &(0x7f0000000340)='tls\x00', 0x4)
sendmmsg(r5, &(0x7f0000005700)=[{{&(0x7f0000003900)=@pptp, 0x80, &(0x7f0000003b80), 0x3a5, &(0x7f0000003bc0)}}], 0x3a6, 0x0)
setsockopt$SO_BINDTODEVICE(r6, 0x1, 0x19, &(0x7f0000000100)='erspan0\x00', 0xfc)
sendmmsg(r5, &(0x7f000000a080)=[{{&(0x7f0000005440)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x2, {0xa, 0x0, 0x0, @ipv4={[], [], @local}}}}, 0x80, &(0x7f0000005640)=[{&(0x7f00000097c0)="bf", 0x1}], 0x1, 0x0, 0x0, 0x1}}], 0x1, 0x0)

00:14:57 executing program 3:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070")
syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000004c0)='./file0\x00', 0xe000, 0x1, &(0x7f0000000040)=[{&(0x7f00000000c0)="eb3c906d6b66732e666174000204010002000270f7f8", 0x16}], 0x1, 0x0)
r1 = syz_open_dev$media(&(0x7f0000000100)='/dev/media#\x00', 0x9e, 0x0)
accept4$bt_l2cap(r1, &(0x7f0000000140), &(0x7f0000000180)=0xe, 0x800)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x100820, 0x0)
socket$unix(0x1, 0x5, 0x0)
fdatasync(0xffffffffffffff9c)
socket$inet6(0xa, 0x1000000000002, 0x0)
r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = syz_open_procfs(0x0, &(0x7f0000000200)='net\x00')
fcntl$setstatus(r2, 0x4, 0x4800)
r4 = socket$inet6(0xa, 0x6, 0x0)
bind$inet6(r4, &(0x7f0000000000)={0xa, 0x4e20}, 0x1c)
r5 = socket$inet_dccp(0x2, 0x6, 0x0)
listen(r4, 0x6)
ioctl$DRM_IOCTL_GET_STATS(r3, 0x80f86406, &(0x7f0000000140)=""/79)
setsockopt(r5, 0x10d, 0x800000000d, &(0x7f00001c9fff)="03", 0x1)
connect$inet(r5, &(0x7f0000e5c000)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x20}}, 0x10)
ioctl$LOOP_CHANGE_FD(0xffffffffffffffff, 0x4c06, 0xffffffffffffffff)
fcntl$setflags(r3, 0x2, 0x1)
r6 = accept(r4, 0x0, &(0x7f0000000080)=0xfe0f)
write$nbd(r3, &(0x7f0000000240)={0x67446698, 0x0, 0x0, 0x0, 0x3, "fb04b832f1224f5f5d58149cf40a8958f6e44626dc09e6e4b126f53fee98ccf3f8fa50cd92b5fe24dcf618757a4e586fc8a8da9e5584"}, 0x46)
setsockopt$inet6_tcp_TCP_ULP(0xffffffffffffffff, 0x6, 0x1f, &(0x7f0000000340)='tls\x00', 0x4)
sendmmsg(r5, &(0x7f0000005700)=[{{&(0x7f0000003900)=@pptp, 0x80, &(0x7f0000003b80), 0x3a5, &(0x7f0000003bc0)}}], 0x3a6, 0x0)
setsockopt$SO_BINDTODEVICE(r6, 0x1, 0x19, &(0x7f0000000100)='erspan0\x00', 0xfc)
sendmmsg(r5, &(0x7f000000a080)=[{{&(0x7f0000005440)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x2, {0xa, 0x0, 0x0, @ipv4={[], [], @local}}}}, 0x80, &(0x7f0000005640)=[{&(0x7f00000097c0)="bf", 0x1}], 0x1, 0x0, 0x0, 0x1}}], 0x1, 0x0)

00:14:57 executing program 5:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070")
syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000004c0)='./file0\x00', 0xe000, 0x1, &(0x7f0000000040)=[{&(0x7f00000000c0)="eb3c906d6b66732e666174000204010002000270f7f8", 0x16}], 0x1, 0x0)
r1 = syz_open_dev$media(&(0x7f0000000100)='/dev/media#\x00', 0x9e, 0x0)
accept4$bt_l2cap(r1, &(0x7f0000000140), &(0x7f0000000180)=0xe, 0x800)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x100820, 0x0)
socket$unix(0x1, 0x5, 0x0)
fdatasync(0xffffffffffffff9c)
socket$inet6(0xa, 0x1000000000002, 0x0)
r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = syz_open_procfs(0x0, &(0x7f0000000200)='net\x00')
fcntl$setstatus(r2, 0x4, 0x4800)
r4 = socket$inet6(0xa, 0x6, 0x0)
bind$inet6(r4, &(0x7f0000000000)={0xa, 0x4e20}, 0x1c)
r5 = socket$inet_dccp(0x2, 0x6, 0x0)
listen(r4, 0x6)
ioctl$DRM_IOCTL_GET_STATS(r3, 0x80f86406, &(0x7f0000000140)=""/79)
setsockopt(r5, 0x10d, 0x800000000d, &(0x7f00001c9fff)="03", 0x1)
connect$inet(r5, &(0x7f0000e5c000)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x20}}, 0x10)
ioctl$LOOP_CHANGE_FD(0xffffffffffffffff, 0x4c06, 0xffffffffffffffff)
fcntl$setflags(r3, 0x2, 0x1)
r6 = accept(r4, 0x0, &(0x7f0000000080)=0xfe0f)
write$nbd(r3, &(0x7f0000000240)={0x67446698, 0x0, 0x0, 0x0, 0x3, "fb04b832f1224f5f5d58149cf40a8958f6e44626dc09e6e4b126f53fee98ccf3f8fa50cd92b5fe24dcf618757a4e586fc8a8da9e5584"}, 0x46)
setsockopt$inet6_tcp_TCP_ULP(0xffffffffffffffff, 0x6, 0x1f, &(0x7f0000000340)='tls\x00', 0x4)
sendmmsg(r5, &(0x7f0000005700)=[{{&(0x7f0000003900)=@pptp, 0x80, &(0x7f0000003b80), 0x3a5, &(0x7f0000003bc0)}}], 0x3a6, 0x0)
setsockopt$SO_BINDTODEVICE(r6, 0x1, 0x19, &(0x7f0000000100)='erspan0\x00', 0xfc)
sendmmsg(r5, &(0x7f000000a080)=[{{&(0x7f0000005440)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x2, {0xa, 0x0, 0x0, @ipv4={[], [], @local}}}}, 0x80, &(0x7f0000005640)=[{&(0x7f00000097c0)="bf", 0x1}], 0x1, 0x0, 0x0, 0x1}}], 0x1, 0x0)

[  896.209676] BFS-fs: bfs_fill_super(): loop0 is unclean, continuing
00:14:57 executing program 1:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070")
syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000004c0)='./file0\x00', 0xe000, 0x1, &(0x7f0000000040)=[{&(0x7f00000000c0)="eb3c906d6b66732e666174000204010002000270f7f8", 0x16}], 0x1, 0x0)
r1 = syz_open_dev$media(&(0x7f0000000100)='/dev/media#\x00', 0x9e, 0x0)
accept4$bt_l2cap(r1, &(0x7f0000000140), &(0x7f0000000180)=0xe, 0x800)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x100820, 0x0)
socket$unix(0x1, 0x5, 0x0)
fdatasync(0xffffffffffffff9c)
socket$inet6(0xa, 0x1000000000002, 0x0)
r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = syz_open_procfs(0x0, &(0x7f0000000200)='net\x00')
fcntl$setstatus(r2, 0x4, 0x4800)
r4 = socket$inet6(0xa, 0x6, 0x0)
bind$inet6(r4, &(0x7f0000000000)={0xa, 0x4e20}, 0x1c)
r5 = socket$inet_dccp(0x2, 0x6, 0x0)
listen(r4, 0x6)
ioctl$DRM_IOCTL_GET_STATS(r3, 0x80f86406, &(0x7f0000000140)=""/79)
setsockopt(r5, 0x10d, 0x800000000d, &(0x7f00001c9fff)="03", 0x1)
connect$inet(r5, &(0x7f0000e5c000)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x20}}, 0x10)
ioctl$LOOP_CHANGE_FD(0xffffffffffffffff, 0x4c06, 0xffffffffffffffff)
fcntl$setflags(r3, 0x2, 0x1)
r6 = accept(r4, 0x0, &(0x7f0000000080)=0xfe0f)
write$nbd(r3, &(0x7f0000000240)={0x67446698, 0x0, 0x0, 0x0, 0x3, "fb04b832f1224f5f5d58149cf40a8958f6e44626dc09e6e4b126f53fee98ccf3f8fa50cd92b5fe24dcf618757a4e586fc8a8da9e5584"}, 0x46)
setsockopt$inet6_tcp_TCP_ULP(0xffffffffffffffff, 0x6, 0x1f, &(0x7f0000000340)='tls\x00', 0x4)
sendmmsg(r5, &(0x7f0000005700)=[{{&(0x7f0000003900)=@pptp, 0x80, &(0x7f0000003b80), 0x3a5, &(0x7f0000003bc0)}}], 0x3a6, 0x0)
setsockopt$SO_BINDTODEVICE(r6, 0x1, 0x19, &(0x7f0000000100)='erspan0\x00', 0xfc)
sendmmsg(r5, &(0x7f000000a080)=[{{&(0x7f0000005440)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x2, {0xa, 0x0, 0x0, @ipv4={[], [], @local}}}}, 0x80, &(0x7f0000005640)=[{&(0x7f00000097c0)="bf", 0x1}], 0x1, 0x0, 0x0, 0x1}}], 0x1, 0x0)

00:14:58 executing program 2:
syz_open_dev$video(&(0x7f0000000140)='/dev/video#\x00', 0x102, 0x0)
ioctl$FS_IOC_FSGETXATTR(0xffffffffffffffff, 0x801c581f, 0x0)
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0)
fcntl$notify(r0, 0x402, 0x28)
r1 = syz_open_procfs(0x0, &(0x7f0000000000)='setgroups\x00\x14\x9d\xe7\x8b\xbbz\x98\x1e\xc8>i\x8f\x0f\xa5~\x88\xf4\xe9\xbc\xb0\xc0\xfd\xf7\x16_\x89\'V\x98\x05.\x80\xde0\xf1\xb6\xaaoz0\xf7m-J\x10+N\xd4\xf5\x12\xe2\x1b8\xf8\x9d\x12*\\\xad\xc6\xd2\xcc\xb3\x88j\xd9c\x0e\xac\xb9\xfb\x8a\x84\xb8\x0eVK\xf0\x12')
syz_open_dev$video(&(0x7f0000000340)='/dev/video#\x00', 0x3, 0x0)
r2 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x80000)
ioctl$SNDRV_CTL_IOCTL_PCM_NEXT_DEVICE(r2, 0x80045530, &(0x7f00000001c0))
r3 = socket$inet6(0xa, 0x2000000000000001, 0x8010000000000084)
bind$inet6(r3, &(0x7f00002aafe4)={0xa, 0x4e22, 0x0, @ipv4}, 0x1c)
r4 = socket$inet6_sctp(0xa, 0x8, 0x84)
ioctl$RTC_IRQP_SET(r1, 0x4008700c, 0xb4d)
connect$netlink(r2, &(0x7f0000000040)=@proc={0x10, 0x0, 0x0, 0x40}, 0xc)
sendto$inet6(r4, &(0x7f0000000100)='F', 0x1, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(0xffffffffffffffff, 0x84, 0x9, 0x0, 0x0)
r5 = socket$netlink(0x10, 0x3, 0xc)
bind$netlink(r5, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$RTC_IRQP_SET(r2, 0x4004700c, 0x345)
r6 = socket$inet6(0xa, 0x40000080806, 0x0)
bind$inet6(r6, &(0x7f000047b000)={0xa, 0x4e20}, 0x1c)
listen(r6, 0x20000003)
r7 = socket$inet6(0xa, 0x6, 0x0)
connect$inet6(r7, &(0x7f0000419000)={0xa, 0x4e20, 0x0, @ipv4={[], [], @local}}, 0x1c)
r8 = accept4(r6, &(0x7f0000000540)=@nl=@proc, &(0x7f0000047ffc)=0x80, 0x800)
write$binfmt_elf64(r8, &(0x7f0000002080)=ANY=[@ANYBLOB="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"], 0xb19)
setsockopt$inet6_opts(r8, 0x29, 0x37, &(0x7f0000000140)=ANY=[@ANYBLOB="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", @ANYRES16=r3, @ANYRES32=r8], 0x3)
ioctl$sock_bt_hidp_HIDPGETCONNLIST(r2, 0x800448d2, &(0x7f0000000a40)={0x1, &(0x7f0000000380)=[{}]})
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)

[  896.333162] net_ratelimit: 40 callbacks suppressed
[  896.333224] protocol 88fb is buggy, dev hsr_slave_0
[  896.344237] protocol 88fb is buggy, dev hsr_slave_1
[  896.409232] dccp_check_seqno: Step 6 failed for RESET packet, (LSWL(109028155375627) <= P.seqno(0) <= S.SWH(109028155375701)) and (P.ackno exists or LAWL(60573103208389) <= P.ackno(60573103208390) <= S.AWH(60573103208390), sending SYNC...
[  896.493554] protocol 88fb is buggy, dev hsr_slave_0
[  896.498691] protocol 88fb is buggy, dev hsr_slave_1
[  896.503903] protocol 88fb is buggy, dev hsr_slave_0
[  896.508992] protocol 88fb is buggy, dev hsr_slave_1
[  896.632450] dccp_check_seqno: Step 6 failed for RESET packet, (LSWL(176491884847958) <= P.seqno(0) <= S.SWH(176491884848032)) and (P.ackno exists or LAWL(196458733437087) <= P.ackno(196458733437088) <= S.AWH(196458733437088), sending SYNC...
00:14:58 executing program 0:
syz_open_dev$video(&(0x7f0000000140)='/dev/video#\x00', 0x102, 0x0)
ioctl$FS_IOC_FSGETXATTR(0xffffffffffffffff, 0x801c581f, 0x0)
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0)
fcntl$notify(r0, 0x402, 0x28)
r1 = syz_open_procfs(0x0, &(0x7f0000000000)='setgroups\x00\x14\x9d\xe7\x8b\xbbz\x98\x1e\xc8>i\x8f\x0f\xa5~\x88\xf4\xe9\xbc\xb0\xc0\xfd\xf7\x16_\x89\'V\x98\x05.\x80\xde0\xf1\xb6\xaaoz0\xf7m-J\x10+N\xd4\xf5\x12\xe2\x1b8\xf8\x9d\x12*\\\xad\xc6\xd2\xcc\xb3\x88j\xd9c\x0e\xac\xb9\xfb\x8a\x84\xb8\x0eVK\xf0\x12')
syz_open_dev$video(&(0x7f0000000340)='/dev/video#\x00', 0x3, 0x0)
r2 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x80000)
ioctl$SNDRV_CTL_IOCTL_PCM_NEXT_DEVICE(r2, 0x80045530, &(0x7f00000001c0))
r3 = socket$inet6(0xa, 0x2000000000000001, 0x8010000000000084)
bind$inet6(r3, &(0x7f00002aafe4)={0xa, 0x4e22, 0x0, @ipv4}, 0x1c)
r4 = socket$inet6_sctp(0xa, 0x8, 0x84)
ioctl$RTC_IRQP_SET(r1, 0x4008700c, 0xb4d)
connect$netlink(r2, &(0x7f0000000040)=@proc={0x10, 0x0, 0x0, 0x40}, 0xc)
sendto$inet6(r4, &(0x7f0000000100)='F', 0x1, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(0xffffffffffffffff, 0x84, 0x9, 0x0, 0x0)
r5 = socket$netlink(0x10, 0x3, 0xc)
bind$netlink(r5, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$RTC_IRQP_SET(r2, 0x4004700c, 0x345)
r6 = socket$inet6(0xa, 0x40000080806, 0x0)
bind$inet6(r6, &(0x7f000047b000)={0xa, 0x4e20}, 0x1c)
listen(r6, 0x20000003)
r7 = socket$inet6(0xa, 0x6, 0x0)
connect$inet6(r7, &(0x7f0000419000)={0xa, 0x4e20, 0x0, @ipv4={[], [], @local}}, 0x1c)
r8 = accept4(r6, &(0x7f0000000540)=@nl=@proc, &(0x7f0000047ffc)=0x80, 0x800)
write$binfmt_elf64(r8, &(0x7f0000002080)=ANY=[@ANYBLOB="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"], 0xb19)
setsockopt$inet6_opts(r8, 0x29, 0x37, &(0x7f0000000140)=ANY=[@ANYBLOB="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", @ANYRES16=r3, @ANYRES32=r8], 0x3)
ioctl$sock_bt_hidp_HIDPGETCONNLIST(r2, 0x800448d2, &(0x7f0000000a40)={0x1, &(0x7f0000000380)=[{}]})
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)

[  896.696949] dccp_close: ABORT with 1061 bytes unread
[  896.702917] dccp_check_seqno: Step 6 failed for RESET packet, (LSWL(151523845369875) <= P.seqno(0) <= S.SWH(151523845369949)) and (P.ackno exists or LAWL(104456507714143) <= P.ackno(104456507714144) <= S.AWH(104456507714144), sending SYNC...
00:14:58 executing program 3:
syz_open_dev$video(&(0x7f0000000140)='/dev/video#\x00', 0x102, 0x0)
ioctl$FS_IOC_FSGETXATTR(0xffffffffffffffff, 0x801c581f, 0x0)
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0)
fcntl$notify(r0, 0x402, 0x28)
r1 = syz_open_procfs(0x0, &(0x7f0000000000)='setgroups\x00\x14\x9d\xe7\x8b\xbbz\x98\x1e\xc8>i\x8f\x0f\xa5~\x88\xf4\xe9\xbc\xb0\xc0\xfd\xf7\x16_\x89\'V\x98\x05.\x80\xde0\xf1\xb6\xaaoz0\xf7m-J\x10+N\xd4\xf5\x12\xe2\x1b8\xf8\x9d\x12*\\\xad\xc6\xd2\xcc\xb3\x88j\xd9c\x0e\xac\xb9\xfb\x8a\x84\xb8\x0eVK\xf0\x12')
syz_open_dev$video(&(0x7f0000000340)='/dev/video#\x00', 0x3, 0x0)
r2 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x80000)
ioctl$SNDRV_CTL_IOCTL_PCM_NEXT_DEVICE(r2, 0x80045530, &(0x7f00000001c0))
r3 = socket$inet6(0xa, 0x2000000000000001, 0x8010000000000084)
bind$inet6(r3, &(0x7f00002aafe4)={0xa, 0x4e22, 0x0, @ipv4}, 0x1c)
r4 = socket$inet6_sctp(0xa, 0x8, 0x84)
ioctl$RTC_IRQP_SET(r1, 0x4008700c, 0xb4d)
connect$netlink(r2, &(0x7f0000000040)=@proc={0x10, 0x0, 0x0, 0x40}, 0xc)
sendto$inet6(r4, &(0x7f0000000100)='F', 0x1, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(0xffffffffffffffff, 0x84, 0x9, 0x0, 0x0)
r5 = socket$netlink(0x10, 0x3, 0xc)
bind$netlink(r5, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$RTC_IRQP_SET(r2, 0x4004700c, 0x345)
r6 = socket$inet6(0xa, 0x40000080806, 0x0)
bind$inet6(r6, &(0x7f000047b000)={0xa, 0x4e20}, 0x1c)
listen(r6, 0x20000003)
r7 = socket$inet6(0xa, 0x6, 0x0)
connect$inet6(r7, &(0x7f0000419000)={0xa, 0x4e20, 0x0, @ipv4={[], [], @local}}, 0x1c)
r8 = accept4(r6, &(0x7f0000000540)=@nl=@proc, &(0x7f0000047ffc)=0x80, 0x800)
write$binfmt_elf64(r8, &(0x7f0000002080)=ANY=[@ANYBLOB="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"], 0xb19)
setsockopt$inet6_opts(r8, 0x29, 0x37, &(0x7f0000000140)=ANY=[@ANYBLOB="c195c2b0a447819d1dbde13c47f1bfbbe6ad6d05e814af606088140c95e52b5ee5ed681cbb45404e340247460f0c78bce9bb73414a2f9b9d4bbe281bfd54e387f1625780df599cd9431764a44a8e1e420228745d07b735115a194568f7f5a62be1529f948b6b246f56f5892a93a7fc8594a1e679fc242105a66370070dd50fcc524918f39dd745e2fc32b82af8d84d58ba05a954f2c40da19a7bda81a71fdc036a296004ee21d284412ddc97e26b7d636f0b4cac04a2f6595bb8fcfbff0950f699e7545c271d6b804080fc36b7d3c46cff80093e71898f8b9d154349144a7d8caddf74495436d2493096dead72e51f747f56c5f39c22668c82decc7fc1c90237b272ec2f876dd8cd5a9dfc236aef047e57e5cb14cf355f6435d99a71d73f45a5aed47351835e406ac8673a10a4a1ba218f2c8c26e7f2255866853facb746d3016eecc664", @ANYRES16=r3, @ANYRES32=r8], 0x3)
ioctl$sock_bt_hidp_HIDPGETCONNLIST(r2, 0x800448d2, &(0x7f0000000a40)={0x1, &(0x7f0000000380)=[{}]})
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)

00:14:58 executing program 4:
r0 = socket$inet6(0xa, 0x3, 0x3c)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x22, &(0x7f000001bc78)=@raw={'\x05\x00\x00\x00\x02\x00\x02\x00\x00\x00\x00\x00\x00\x00\x00\x00\x18\x00\x00\x00\x03\x03\x00', 0x9, 0x3, 0xffffffffffffff22, 0x0, 0xffffffff, 0xffffffff, 0x120, 0xffffffff, 0x258, 0xffffffff, 0xffffffff, 0x258, 0xffffffff, 0x3, &(0x7f000002cfd0), {[{{@uncond, 0x0, 0xa8, 0x52}, @common=@unspec=@NFQUEUE2={0x28, 'NFQUEUE\x00'}}, {{@uncond, 0x0, 0xa8, 0x110}, @unspec=@CT2={0x4, 'CT\x00', 0x2, {0x0, 0x0, 0x0, 0x0, 'snmp\x00', 'syz1\x00'}}}], {{[], 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x2e)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x22, &(0x7f0000039d18)=@raw={'\x05\x00\x00\x00\x02\x00\x02\x00\x00\x00\x00\x00\x00\x00\x00\x00\x18\x00\x00\x00\x03\x03\x00', 0x9, 0x3, 0xfffffffa, 0x0, 0xffffffff, 0xffffffff, 0xd0, 0xffffffff, 0x1b8, 0xffffffff, 0xffffffff, 0x1b8, 0xffffffff, 0x3, &(0x7f0000025000), {[{{@uncond=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf000000], 0x0, 0xa8, 0x52}, @common=@unspec=@NFQUEUE2={0x28, 'NFQUEUE\x00'}}, {{@uncond, 0x0, 0xa8, 0x110}, @common=@inet=@LOG={0x0, 'LOG\x00', 0x0, {0x0, 0x0, "50345fc21378bc8f6da6263e3715f555f23e413a61787ecaea02755a391d"}}}], {{[], 0x0, 0x252, 0xd0}, {0x29f}}}}, 0x2c)

00:14:58 executing program 2:
r0 = open(0x0, 0x400000, 0xc)
ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2288, &(0x7f0000000080))
setsockopt$packet_drop_memb(r0, 0x107, 0x2, 0x0, 0x0)
r1 = socket(0x0, 0x80002, 0x0)
r2 = creat(0x0, 0x20)
openat$null(0xffffffffffffff9c, 0x0, 0x0, 0x0)
unshare(0x400)
shutdown(0xffffffffffffffff, 0x0)
get_mempolicy(&(0x7f00000000c0), &(0x7f0000000100), 0x0, &(0x7f0000ffb000/0x2000)=nil, 0x0)
getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, &(0x7f0000000b80)={{{@in=@loopback}}, {{@in6=@remote}, 0x0, @in=@remote}}, 0x0)
fchown(0xffffffffffffffff, 0x0, 0x0)
socket$inet6_dccp(0xa, 0x6, 0x0)
ioctl$TUNSETPERSIST(r2, 0x400454cb, 0x0)
fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000009c0)='/dev/loop-control\x00', 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x0)
ioctl$LOOP_CTL_ADD(r3, 0x4c80, 0x0)
ioctl$EXT4_IOC_SWAP_BOOT(0xffffffffffffffff, 0x6611)
ioctl$TIOCGPTPEER(0xffffffffffffffff, 0x5441, 0x0)
getpgrp(0xffffffffffffffff)
bind$inet(r1, 0x0, 0x0)
ustat(0x0, 0x0)

00:14:58 executing program 5:
r0 = syz_open_dev$sndpcmc(&(0x7f00000002c0)='/dev/snd/pcmC#D#c\x00', 0x0, 0x0)
ioctl(r0, 0x4122, 0x0)

00:14:58 executing program 4:
r0 = socket$inet6(0xa, 0x3, 0x3c)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x22, &(0x7f000001bc78)=@raw={'\x05\x00\x00\x00\x02\x00\x02\x00\x00\x00\x00\x00\x00\x00\x00\x00\x18\x00\x00\x00\x03\x03\x00', 0x9, 0x3, 0xffffffffffffff22, 0x0, 0xffffffff, 0xffffffff, 0x120, 0xffffffff, 0x258, 0xffffffff, 0xffffffff, 0x258, 0xffffffff, 0x3, &(0x7f000002cfd0), {[{{@uncond, 0x0, 0xa8, 0x52}, @common=@unspec=@NFQUEUE2={0x28, 'NFQUEUE\x00'}}, {{@uncond, 0x0, 0xa8, 0x110}, @unspec=@CT2={0x4, 'CT\x00', 0x2, {0x0, 0x0, 0x0, 0x0, 'snmp\x00', 'syz1\x00'}}}], {{[], 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x2e)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x22, &(0x7f0000039d18)=@raw={'\x05\x00\x00\x00\x02\x00\x02\x00\x00\x00\x00\x00\x00\x00\x00\x00\x18\x00\x00\x00\x03\x03\x00', 0x9, 0x3, 0xfffffffa, 0x0, 0xffffffff, 0xffffffff, 0xd0, 0xffffffff, 0x1b8, 0xffffffff, 0xffffffff, 0x1b8, 0xffffffff, 0x3, &(0x7f0000025000), {[{{@uncond=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf000000], 0x0, 0xa8, 0x52}, @common=@unspec=@NFQUEUE2={0x28, 'NFQUEUE\x00'}}, {{@uncond, 0x0, 0xa8, 0x110}, @common=@inet=@LOG={0x0, 'LOG\x00', 0x0, {0x0, 0x0, "50345fc21378bc8f6da6263e3715f555f23e413a61787ecaea02755a391d"}}}], {{[], 0x0, 0x252, 0xd0}, {0x29f}}}}, 0x2c)

00:14:58 executing program 5:
r0 = socket$inet6(0xa, 0x3, 0x3c)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x22, &(0x7f000001bc78)=@raw={'\x05\x00\x00\x00\x02\x00\x02\x00\x00\x00\x00\x00\x00\x00\x00\x00\x18\x00\x00\x00\x03\x03\x00', 0x9, 0x3, 0xffffffffffffff22, 0x0, 0xffffffff, 0xffffffff, 0x120, 0xffffffff, 0x258, 0xffffffff, 0xffffffff, 0x258, 0xffffffff, 0x3, &(0x7f000002cfd0), {[{{@uncond, 0x0, 0xa8, 0x52}, @common=@unspec=@NFQUEUE2={0x28, 'NFQUEUE\x00'}}, {{@uncond, 0x0, 0xa8, 0x110}, @unspec=@CT2={0x4, 'CT\x00', 0x2, {0x0, 0x0, 0x0, 0x0, 'snmp\x00', 'syz1\x00'}}}], {{[], 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x2e)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x22, &(0x7f0000039d18)=@raw={'\x05\x00\x00\x00\x02\x00\x02\x00\x00\x00\x00\x00\x00\x00\x00\x00\x18\x00\x00\x00\x03\x03\x00', 0x9, 0x3, 0xfffffffa, 0x0, 0xffffffff, 0xffffffff, 0xd0, 0xffffffff, 0x1b8, 0xffffffff, 0xffffffff, 0x1b8, 0xffffffff, 0x3, &(0x7f0000025000), {[{{@uncond=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf000000], 0x0, 0xa8, 0x52}, @common=@unspec=@NFQUEUE2={0x28, 'NFQUEUE\x00'}}, {{@uncond, 0x0, 0xa8, 0x110}, @common=@inet=@LOG={0x0, 'LOG\x00', 0x0, {0x0, 0x0, "50345fc21378bc8f6da6263e3715f555f23e413a61787ecaea02755a391d"}}}], {{[], 0x0, 0x252, 0xd0}, {0x29f}}}}, 0x2c)

00:14:58 executing program 1:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070")
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
getsockopt$bt_hci(r1, 0x0, 0x3, 0x0, &(0x7f0000000180)=0xfffffffffffffeac)

00:14:58 executing program 3:
syz_open_dev$video(&(0x7f0000000140)='/dev/video#\x00', 0x102, 0x0)
ioctl$FS_IOC_FSGETXATTR(0xffffffffffffffff, 0x801c581f, 0x0)
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0)
fcntl$notify(r0, 0x402, 0x28)
r1 = syz_open_procfs(0x0, &(0x7f0000000000)='setgroups\x00\x14\x9d\xe7\x8b\xbbz\x98\x1e\xc8>i\x8f\x0f\xa5~\x88\xf4\xe9\xbc\xb0\xc0\xfd\xf7\x16_\x89\'V\x98\x05.\x80\xde0\xf1\xb6\xaaoz0\xf7m-J\x10+N\xd4\xf5\x12\xe2\x1b8\xf8\x9d\x12*\\\xad\xc6\xd2\xcc\xb3\x88j\xd9c\x0e\xac\xb9\xfb\x8a\x84\xb8\x0eVK\xf0\x12')
syz_open_dev$video(&(0x7f0000000340)='/dev/video#\x00', 0x3, 0x0)
r2 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x80000)
ioctl$SNDRV_CTL_IOCTL_PCM_NEXT_DEVICE(r2, 0x80045530, &(0x7f00000001c0))
r3 = socket$inet6(0xa, 0x2000000000000001, 0x8010000000000084)
bind$inet6(r3, &(0x7f00002aafe4)={0xa, 0x4e22, 0x0, @ipv4}, 0x1c)
r4 = socket$inet6_sctp(0xa, 0x8, 0x84)
ioctl$RTC_IRQP_SET(r1, 0x4008700c, 0xb4d)
connect$netlink(r2, &(0x7f0000000040)=@proc={0x10, 0x0, 0x0, 0x40}, 0xc)
sendto$inet6(r4, &(0x7f0000000100)='F', 0x1, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(0xffffffffffffffff, 0x84, 0x9, 0x0, 0x0)
r5 = socket$netlink(0x10, 0x3, 0xc)
bind$netlink(r5, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$RTC_IRQP_SET(r2, 0x4004700c, 0x345)
r6 = socket$inet6(0xa, 0x40000080806, 0x0)
bind$inet6(r6, &(0x7f000047b000)={0xa, 0x4e20}, 0x1c)
listen(r6, 0x20000003)
r7 = socket$inet6(0xa, 0x6, 0x0)
connect$inet6(r7, &(0x7f0000419000)={0xa, 0x4e20, 0x0, @ipv4={[], [], @local}}, 0x1c)
r8 = accept4(r6, &(0x7f0000000540)=@nl=@proc, &(0x7f0000047ffc)=0x80, 0x800)
write$binfmt_elf64(r8, &(0x7f0000002080)=ANY=[@ANYBLOB="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"], 0xb19)
setsockopt$inet6_opts(r8, 0x29, 0x37, &(0x7f0000000140)=ANY=[@ANYBLOB="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", @ANYRES16=r3, @ANYRES32=r8], 0x3)
ioctl$sock_bt_hidp_HIDPGETCONNLIST(r2, 0x800448d2, &(0x7f0000000a40)={0x1, &(0x7f0000000380)=[{}]})
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)

00:14:58 executing program 4:
r0 = socket$inet6(0xa, 0x3, 0x3c)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x22, &(0x7f000001bc78)=@raw={'\x05\x00\x00\x00\x02\x00\x02\x00\x00\x00\x00\x00\x00\x00\x00\x00\x18\x00\x00\x00\x03\x03\x00', 0x9, 0x3, 0xffffffffffffff22, 0x0, 0xffffffff, 0xffffffff, 0x120, 0xffffffff, 0x258, 0xffffffff, 0xffffffff, 0x258, 0xffffffff, 0x3, &(0x7f000002cfd0), {[{{@uncond, 0x0, 0xa8, 0x52}, @common=@unspec=@NFQUEUE2={0x28, 'NFQUEUE\x00'}}, {{@uncond, 0x0, 0xa8, 0x110}, @unspec=@CT2={0x4, 'CT\x00', 0x2, {0x0, 0x0, 0x0, 0x0, 'snmp\x00', 'syz1\x00'}}}], {{[], 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x2e)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x22, &(0x7f0000039d18)=@raw={'\x05\x00\x00\x00\x02\x00\x02\x00\x00\x00\x00\x00\x00\x00\x00\x00\x18\x00\x00\x00\x03\x03\x00', 0x9, 0x3, 0xfffffffa, 0x0, 0xffffffff, 0xffffffff, 0xd0, 0xffffffff, 0x1b8, 0xffffffff, 0xffffffff, 0x1b8, 0xffffffff, 0x3, &(0x7f0000025000), {[{{@uncond=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf000000], 0x0, 0xa8, 0x52}, @common=@unspec=@NFQUEUE2={0x28, 'NFQUEUE\x00'}}, {{@uncond, 0x0, 0xa8, 0x110}, @common=@inet=@LOG={0x0, 'LOG\x00', 0x0, {0x0, 0x0, "50345fc21378bc8f6da6263e3715f555f23e413a61787ecaea02755a391d"}}}], {{[], 0x0, 0x252, 0xd0}, {0x29f}}}}, 0x2c)

00:14:58 executing program 5:
r0 = socket$inet6(0xa, 0x3, 0x3c)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x22, &(0x7f000001bc78)=@raw={'\x05\x00\x00\x00\x02\x00\x02\x00\x00\x00\x00\x00\x00\x00\x00\x00\x18\x00\x00\x00\x03\x03\x00', 0x9, 0x3, 0xffffffffffffff22, 0x0, 0xffffffff, 0xffffffff, 0x120, 0xffffffff, 0x258, 0xffffffff, 0xffffffff, 0x258, 0xffffffff, 0x3, &(0x7f000002cfd0), {[{{@uncond, 0x0, 0xa8, 0x52}, @common=@unspec=@NFQUEUE2={0x28, 'NFQUEUE\x00'}}, {{@uncond, 0x0, 0xa8, 0x110}, @unspec=@CT2={0x4, 'CT\x00', 0x2, {0x0, 0x0, 0x0, 0x0, 'snmp\x00', 'syz1\x00'}}}], {{[], 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x2e)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x22, &(0x7f0000039d18)=@raw={'\x05\x00\x00\x00\x02\x00\x02\x00\x00\x00\x00\x00\x00\x00\x00\x00\x18\x00\x00\x00\x03\x03\x00', 0x9, 0x3, 0xfffffffa, 0x0, 0xffffffff, 0xffffffff, 0xd0, 0xffffffff, 0x1b8, 0xffffffff, 0xffffffff, 0x1b8, 0xffffffff, 0x3, &(0x7f0000025000), {[{{@uncond=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf000000], 0x0, 0xa8, 0x52}, @common=@unspec=@NFQUEUE2={0x28, 'NFQUEUE\x00'}}, {{@uncond, 0x0, 0xa8, 0x110}, @common=@inet=@LOG={0x0, 'LOG\x00', 0x0, {0x0, 0x0, "50345fc21378bc8f6da6263e3715f555f23e413a61787ecaea02755a391d"}}}], {{[], 0x0, 0x252, 0xd0}, {0x29f}}}}, 0x2c)

00:14:58 executing program 1:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070")
r1 = socket$inet(0x10, 0x2, 0x10)
sendmsg(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000140)="24000000190007041dfffd946f6105001d000000fe0200000000080008000a000400ff7e280000001100ffffba16a0aa1c0900000000000012000000000000eff24d8238cfa47e23f7efbf54", 0x4c}], 0x1}, 0x0)

00:14:59 executing program 0:
syz_open_dev$video(&(0x7f0000000140)='/dev/video#\x00', 0x102, 0x0)
ioctl$FS_IOC_FSGETXATTR(0xffffffffffffffff, 0x801c581f, 0x0)
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0)
fcntl$notify(r0, 0x402, 0x28)
r1 = syz_open_procfs(0x0, &(0x7f0000000000)='setgroups\x00\x14\x9d\xe7\x8b\xbbz\x98\x1e\xc8>i\x8f\x0f\xa5~\x88\xf4\xe9\xbc\xb0\xc0\xfd\xf7\x16_\x89\'V\x98\x05.\x80\xde0\xf1\xb6\xaaoz0\xf7m-J\x10+N\xd4\xf5\x12\xe2\x1b8\xf8\x9d\x12*\\\xad\xc6\xd2\xcc\xb3\x88j\xd9c\x0e\xac\xb9\xfb\x8a\x84\xb8\x0eVK\xf0\x12')
syz_open_dev$video(&(0x7f0000000340)='/dev/video#\x00', 0x3, 0x0)
r2 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x80000)
ioctl$SNDRV_CTL_IOCTL_PCM_NEXT_DEVICE(r2, 0x80045530, &(0x7f00000001c0))
r3 = socket$inet6(0xa, 0x2000000000000001, 0x8010000000000084)
bind$inet6(r3, &(0x7f00002aafe4)={0xa, 0x4e22, 0x0, @ipv4}, 0x1c)
r4 = socket$inet6_sctp(0xa, 0x8, 0x84)
ioctl$RTC_IRQP_SET(r1, 0x4008700c, 0xb4d)
connect$netlink(r2, &(0x7f0000000040)=@proc={0x10, 0x0, 0x0, 0x40}, 0xc)
sendto$inet6(r4, &(0x7f0000000100)='F', 0x1, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(0xffffffffffffffff, 0x84, 0x9, 0x0, 0x0)
r5 = socket$netlink(0x10, 0x3, 0xc)
bind$netlink(r5, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$RTC_IRQP_SET(r2, 0x4004700c, 0x345)
r6 = socket$inet6(0xa, 0x40000080806, 0x0)
bind$inet6(r6, &(0x7f000047b000)={0xa, 0x4e20}, 0x1c)
listen(r6, 0x20000003)
r7 = socket$inet6(0xa, 0x6, 0x0)
connect$inet6(r7, &(0x7f0000419000)={0xa, 0x4e20, 0x0, @ipv4={[], [], @local}}, 0x1c)
r8 = accept4(r6, &(0x7f0000000540)=@nl=@proc, &(0x7f0000047ffc)=0x80, 0x800)
write$binfmt_elf64(r8, &(0x7f0000002080)=ANY=[@ANYBLOB="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"], 0xb19)
setsockopt$inet6_opts(r8, 0x29, 0x37, &(0x7f0000000140)=ANY=[@ANYBLOB="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", @ANYRES16=r3, @ANYRES32=r8], 0x3)
ioctl$sock_bt_hidp_HIDPGETCONNLIST(r2, 0x800448d2, &(0x7f0000000a40)={0x1, &(0x7f0000000380)=[{}]})
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)

00:14:59 executing program 4:
r0 = socket$inet6(0xa, 0x3, 0x3c)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x22, &(0x7f000001bc78)=@raw={'\x05\x00\x00\x00\x02\x00\x02\x00\x00\x00\x00\x00\x00\x00\x00\x00\x18\x00\x00\x00\x03\x03\x00', 0x9, 0x3, 0xffffffffffffff22, 0x0, 0xffffffff, 0xffffffff, 0x120, 0xffffffff, 0x258, 0xffffffff, 0xffffffff, 0x258, 0xffffffff, 0x3, &(0x7f000002cfd0), {[{{@uncond, 0x0, 0xa8, 0x52}, @common=@unspec=@NFQUEUE2={0x28, 'NFQUEUE\x00'}}, {{@uncond, 0x0, 0xa8, 0x110}, @unspec=@CT2={0x4, 'CT\x00', 0x2, {0x0, 0x0, 0x0, 0x0, 'snmp\x00', 'syz1\x00'}}}], {{[], 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x2e)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x22, &(0x7f0000039d18)=@raw={'\x05\x00\x00\x00\x02\x00\x02\x00\x00\x00\x00\x00\x00\x00\x00\x00\x18\x00\x00\x00\x03\x03\x00', 0x9, 0x3, 0xfffffffa, 0x0, 0xffffffff, 0xffffffff, 0xd0, 0xffffffff, 0x1b8, 0xffffffff, 0xffffffff, 0x1b8, 0xffffffff, 0x3, &(0x7f0000025000), {[{{@uncond=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf000000], 0x0, 0xa8, 0x52}, @common=@unspec=@NFQUEUE2={0x28, 'NFQUEUE\x00'}}, {{@uncond, 0x0, 0xa8, 0x110}, @common=@inet=@LOG={0x0, 'LOG\x00', 0x0, {0x0, 0x0, "50345fc21378bc8f6da6263e3715f555f23e413a61787ecaea02755a391d"}}}], {{[], 0x0, 0x252, 0xd0}, {0x29f}}}}, 0x2c)

00:14:59 executing program 5:
r0 = socket$inet6(0xa, 0x3, 0x3c)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x22, &(0x7f000001bc78)=@raw={'\x05\x00\x00\x00\x02\x00\x02\x00\x00\x00\x00\x00\x00\x00\x00\x00\x18\x00\x00\x00\x03\x03\x00', 0x9, 0x3, 0xffffffffffffff22, 0x0, 0xffffffff, 0xffffffff, 0x120, 0xffffffff, 0x258, 0xffffffff, 0xffffffff, 0x258, 0xffffffff, 0x3, &(0x7f000002cfd0), {[{{@uncond, 0x0, 0xa8, 0x52}, @common=@unspec=@NFQUEUE2={0x28, 'NFQUEUE\x00'}}, {{@uncond, 0x0, 0xa8, 0x110}, @unspec=@CT2={0x4, 'CT\x00', 0x2, {0x0, 0x0, 0x0, 0x0, 'snmp\x00', 'syz1\x00'}}}], {{[], 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x2e)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x22, &(0x7f0000039d18)=@raw={'\x05\x00\x00\x00\x02\x00\x02\x00\x00\x00\x00\x00\x00\x00\x00\x00\x18\x00\x00\x00\x03\x03\x00', 0x9, 0x3, 0xfffffffa, 0x0, 0xffffffff, 0xffffffff, 0xd0, 0xffffffff, 0x1b8, 0xffffffff, 0xffffffff, 0x1b8, 0xffffffff, 0x3, &(0x7f0000025000), {[{{@uncond=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf000000], 0x0, 0xa8, 0x52}, @common=@unspec=@NFQUEUE2={0x28, 'NFQUEUE\x00'}}, {{@uncond, 0x0, 0xa8, 0x110}, @common=@inet=@LOG={0x0, 'LOG\x00', 0x0, {0x0, 0x0, "50345fc21378bc8f6da6263e3715f555f23e413a61787ecaea02755a391d"}}}], {{[], 0x0, 0x252, 0xd0}, {0x29f}}}}, 0x2c)

00:14:59 executing program 3:
syz_open_dev$video(&(0x7f0000000140)='/dev/video#\x00', 0x102, 0x0)
ioctl$FS_IOC_FSGETXATTR(0xffffffffffffffff, 0x801c581f, 0x0)
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0)
fcntl$notify(r0, 0x402, 0x28)
r1 = syz_open_procfs(0x0, &(0x7f0000000000)='setgroups\x00\x14\x9d\xe7\x8b\xbbz\x98\x1e\xc8>i\x8f\x0f\xa5~\x88\xf4\xe9\xbc\xb0\xc0\xfd\xf7\x16_\x89\'V\x98\x05.\x80\xde0\xf1\xb6\xaaoz0\xf7m-J\x10+N\xd4\xf5\x12\xe2\x1b8\xf8\x9d\x12*\\\xad\xc6\xd2\xcc\xb3\x88j\xd9c\x0e\xac\xb9\xfb\x8a\x84\xb8\x0eVK\xf0\x12')
syz_open_dev$video(&(0x7f0000000340)='/dev/video#\x00', 0x3, 0x0)
r2 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x80000)
ioctl$SNDRV_CTL_IOCTL_PCM_NEXT_DEVICE(r2, 0x80045530, &(0x7f00000001c0))
r3 = socket$inet6(0xa, 0x2000000000000001, 0x8010000000000084)
bind$inet6(r3, &(0x7f00002aafe4)={0xa, 0x4e22, 0x0, @ipv4}, 0x1c)
r4 = socket$inet6_sctp(0xa, 0x8, 0x84)
ioctl$RTC_IRQP_SET(r1, 0x4008700c, 0xb4d)
connect$netlink(r2, &(0x7f0000000040)=@proc={0x10, 0x0, 0x0, 0x40}, 0xc)
sendto$inet6(r4, &(0x7f0000000100)='F', 0x1, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(0xffffffffffffffff, 0x84, 0x9, 0x0, 0x0)
r5 = socket$netlink(0x10, 0x3, 0xc)
bind$netlink(r5, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$RTC_IRQP_SET(r2, 0x4004700c, 0x345)
r6 = socket$inet6(0xa, 0x40000080806, 0x0)
bind$inet6(r6, &(0x7f000047b000)={0xa, 0x4e20}, 0x1c)
listen(r6, 0x20000003)
r7 = socket$inet6(0xa, 0x6, 0x0)
connect$inet6(r7, &(0x7f0000419000)={0xa, 0x4e20, 0x0, @ipv4={[], [], @local}}, 0x1c)
r8 = accept4(r6, &(0x7f0000000540)=@nl=@proc, &(0x7f0000047ffc)=0x80, 0x800)
write$binfmt_elf64(r8, &(0x7f0000002080)=ANY=[@ANYBLOB="7f454c460904050907000000000000000300070007000000f8010000000000004000000000000000a303000000000000880000000500380001007f00010401000000000001000080030000000200000000000000ff7f000000000000010000000000001386ecd4ffffffffff0000000004000000aa0900000000000000000000000000000000000000000000090000000000000004000000000000000000000000050800b2b8e7c0207f8c15435c5f65b824f9482fce5a469e19cefe3db700dc0aba3b189fc1cba86b252746cf2a9f000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000200000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001a000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000065de00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000fffffffffffffff4000000000000000000000000000000000000000000000000ff7f000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000090000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e4177202ebb80a00080000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000090ea000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f0ffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000004e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000060000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000043ee40e966c62f82e4fcdc96ed2d4f95616dc23050816251768870c4636f0fcdff6ffd8c3ceb70a69cb9f89a571a082ee88906646933aa7141d2527e536bf171b66a21206d2b413aa235b9d9ac4d4cd4489895ba945ef0ec4fa739ec46991a1cf4a433fab8d212c2a9f6cb8329fa4a5a0501640101114bb0675e44fcf6c1b99e503410cc4412932daf477d4ee629eae0ae0258f291979586f632ec335f48caada21fae1e97bc808b88a3b3858167e9cf21c575ea195fbc9b072bb9e808f7d137ec002b901bbe88241ec358b37a9e1ce1a1ff8a3df8f04c4fdea5ebf762a8ca7b84e2442df5dc8b333440a2e651250b87474852804317172cf25cd73cc18a47b0b47fc59c0258f222a5230a875d38c6b2401b10a2f9449e87155bec06bd8c7b72db2d7e440f6e4b4cf8511e1c0a83e549b0d2cb6d36e6c7eeed408c5832f464f9aacbad3c112b33ebeb3477c941aee9f3d911563c5ceb0b9325c8d3c63ecedc5e4c059a8eee4a9f11687789212d613fd15559017b85c6cd2f901cc8308ec6b2714e2c35445069c9f2bb64f15ec369c8d02b3c8080abecff11ac62c7e1294dabb1a07614af762e0de24bddb3f60c48ef50554590727ee8be9bf206cf3cdff6a7bd8e5cf4a27d58fac46bc044d87295643c9b755c3d4675814565a849cdd3964408024e9b2151947c756f166615fb875993c129a6d164947bad5e370ecc4b8efe5305bcd04b698a0e1f49bc94c8b9a5788ea725dc8d8419c5df0101000000000000f5c4c9977d584fe2f4ff28fbf3cfc3bd238f93ac089e1af931a36a52426cebbcfa063bd3636ab5f134042dab64abd9de4f4c6726eea204fcab79c9bb4a23c0855b80e76d3a0ea95f19ee478572aadc9595005b04c27955111068496aa818563f94cb7e42b0a7525871ed5d1c3396d3a44aa2568c7c0b5007f8ac5a33dc35f2c8140357af6d3e8300ed983114965fa243c5c609e177bf517dabe3e630fb31da2a9258e1a8e6b67298c293379413338f5f717cf442842496c629b3178d827136a4709ef2ad73aa2bf87f7254c52f000000000000000000000000000000008c72ae0bacea0e3f7466eb984e60a501cc9a46fc0d438273337501f56b37efb91eb4b543730970c5a8f560c7f56e46a1df2f5c6295808ad3468e329046c0150d43d4efab9f5e313dea7f08fe030a059cb7e5f22d47d3bc199eba9e925cd08743b7dd586d8f4aa66d4e73e083c068e07162c75f5260e0d3f89af62d51c1"], 0xb19)
setsockopt$inet6_opts(r8, 0x29, 0x37, &(0x7f0000000140)=ANY=[@ANYBLOB="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", @ANYRES16=r3, @ANYRES32=r8], 0x3)
ioctl$sock_bt_hidp_HIDPGETCONNLIST(r2, 0x800448d2, &(0x7f0000000a40)={0x1, &(0x7f0000000380)=[{}]})
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)

00:14:59 executing program 2:
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0)
mknod$loop(&(0x7f0000000200)='./file0/file0\x00', 0x207c, 0x1)
mount$overlay(0x400000, &(0x7f0000000140)='./file0\x00', &(0x7f0000000000)='overlay\x00', 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB=',lowerdir=.:file0'])
chdir(&(0x7f0000000180)='./file0\x00')
creat(&(0x7f0000000240)='./file0/file0\x00', 0x0)

00:14:59 executing program 1:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070")
r1 = socket$inet(0x10, 0x2, 0x10)
sendmsg(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000140)="24000000190007041dfffd946f6105001d000000fe0200000000080008000a000400ff7e280000001100ffffba16a0aa1c0900000000000012000000000000eff24d8238cfa47e23f7efbf54", 0x4c}], 0x1}, 0x0)

00:14:59 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$fou(&(0x7f0000000240)='fou\x00')
sendmsg$FOU_CMD_DEL(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)={0x18, r1, 0x103, 0x0, 0x0, {0x3}, [@FOU_ATTR_REMCSUM_NOPARTIAL={0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x1000000000}, 0x400000002)

00:14:59 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000000)='illinois\x00', 0xfb5c)
getsockopt$inet_tcp_buf(r0, 0x6, 0x1a, 0x0, &(0x7f0000000040))

00:14:59 executing program 5:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000074, 0x25d)
bind$inet(r0, &(0x7f0000000180)={0x2, 0x4e23, @multicast1}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000b86000)={0x1, &(0x7f0000f40ff8)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
write(r0, &(0x7f0000001bc0)="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", 0x1ed)
sendto$inet(r0, &(0x7f00000011c0)="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", 0x744, 0x81, 0x0, 0x0)

00:14:59 executing program 1:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070")
r1 = socket$inet(0x10, 0x2, 0x10)
sendmsg(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000140)="24000000190007041dfffd946f6105001d000000fe0200000000080008000a000400ff7e280000001100ffffba16a0aa1c0900000000000012000000000000eff24d8238cfa47e23f7efbf54", 0x4c}], 0x1}, 0x0)

00:14:59 executing program 3:
r0 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x5, 0x0, 0x0, 0x0, 0x0, 0x1, 0x40003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x11, r1, 0x0)
ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, r1)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe7000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)

00:14:59 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000000)='illinois\x00', 0xfb5c)
getsockopt$inet_tcp_buf(r0, 0x6, 0x1a, 0x0, &(0x7f0000000040))

00:15:00 executing program 0:
syz_open_dev$video(&(0x7f0000000140)='/dev/video#\x00', 0x102, 0x0)
ioctl$FS_IOC_FSGETXATTR(0xffffffffffffffff, 0x801c581f, 0x0)
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0)
fcntl$notify(r0, 0x402, 0x28)
r1 = syz_open_procfs(0x0, &(0x7f0000000000)='setgroups\x00\x14\x9d\xe7\x8b\xbbz\x98\x1e\xc8>i\x8f\x0f\xa5~\x88\xf4\xe9\xbc\xb0\xc0\xfd\xf7\x16_\x89\'V\x98\x05.\x80\xde0\xf1\xb6\xaaoz0\xf7m-J\x10+N\xd4\xf5\x12\xe2\x1b8\xf8\x9d\x12*\\\xad\xc6\xd2\xcc\xb3\x88j\xd9c\x0e\xac\xb9\xfb\x8a\x84\xb8\x0eVK\xf0\x12')
syz_open_dev$video(&(0x7f0000000340)='/dev/video#\x00', 0x3, 0x0)
r2 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x80000)
ioctl$SNDRV_CTL_IOCTL_PCM_NEXT_DEVICE(r2, 0x80045530, &(0x7f00000001c0))
r3 = socket$inet6(0xa, 0x2000000000000001, 0x8010000000000084)
bind$inet6(r3, &(0x7f00002aafe4)={0xa, 0x4e22, 0x0, @ipv4}, 0x1c)
r4 = socket$inet6_sctp(0xa, 0x8, 0x84)
ioctl$RTC_IRQP_SET(r1, 0x4008700c, 0xb4d)
connect$netlink(r2, &(0x7f0000000040)=@proc={0x10, 0x0, 0x0, 0x40}, 0xc)
sendto$inet6(r4, &(0x7f0000000100)='F', 0x1, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(0xffffffffffffffff, 0x84, 0x9, 0x0, 0x0)
r5 = socket$netlink(0x10, 0x3, 0xc)
bind$netlink(r5, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$RTC_IRQP_SET(r2, 0x4004700c, 0x345)
r6 = socket$inet6(0xa, 0x40000080806, 0x0)
bind$inet6(r6, &(0x7f000047b000)={0xa, 0x4e20}, 0x1c)
listen(r6, 0x20000003)
r7 = socket$inet6(0xa, 0x6, 0x0)
connect$inet6(r7, &(0x7f0000419000)={0xa, 0x4e20, 0x0, @ipv4={[], [], @local}}, 0x1c)
r8 = accept4(r6, &(0x7f0000000540)=@nl=@proc, &(0x7f0000047ffc)=0x80, 0x800)
write$binfmt_elf64(r8, &(0x7f0000002080)=ANY=[@ANYBLOB="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"], 0xb19)
setsockopt$inet6_opts(r8, 0x29, 0x37, &(0x7f0000000140)=ANY=[@ANYBLOB="c195c2b0a447819d1dbde13c47f1bfbbe6ad6d05e814af606088140c95e52b5ee5ed681cbb45404e340247460f0c78bce9bb73414a2f9b9d4bbe281bfd54e387f1625780df599cd9431764a44a8e1e420228745d07b735115a194568f7f5a62be1529f948b6b246f56f5892a93a7fc8594a1e679fc242105a66370070dd50fcc524918f39dd745e2fc32b82af8d84d58ba05a954f2c40da19a7bda81a71fdc036a296004ee21d284412ddc97e26b7d636f0b4cac04a2f6595bb8fcfbff0950f699e7545c271d6b804080fc36b7d3c46cff80093e71898f8b9d154349144a7d8caddf74495436d2493096dead72e51f747f56c5f39c22668c82decc7fc1c90237b272ec2f876dd8cd5a9dfc236aef047e57e5cb14cf355f6435d99a71d73f45a5aed47351835e406ac8673a10a4a1ba218f2c8c26e7f2255866853facb746d3016eecc664", @ANYRES16=r3, @ANYRES32=r8], 0x3)
ioctl$sock_bt_hidp_HIDPGETCONNLIST(r2, 0x800448d2, &(0x7f0000000a40)={0x1, &(0x7f0000000380)=[{}]})
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)

00:15:00 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$fou(&(0x7f0000000240)='fou\x00')
sendmsg$FOU_CMD_DEL(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)={0x18, r1, 0x103, 0x0, 0x0, {0x3}, [@FOU_ATTR_REMCSUM_NOPARTIAL={0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x1000000000}, 0x400000002)

00:15:00 executing program 1:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070")
r1 = socket$inet(0x10, 0x2, 0x10)
sendmsg(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000140)="24000000190007041dfffd946f6105001d000000fe0200000000080008000a000400ff7e280000001100ffffba16a0aa1c0900000000000012000000000000eff24d8238cfa47e23f7efbf54", 0x4c}], 0x1}, 0x0)

00:15:00 executing program 3:
r0 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x5, 0x0, 0x0, 0x0, 0x0, 0x1, 0x40003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x11, r1, 0x0)
ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, r1)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe7000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)

00:15:00 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000000)='illinois\x00', 0xfb5c)
getsockopt$inet_tcp_buf(r0, 0x6, 0x1a, 0x0, &(0x7f0000000040))

00:15:00 executing program 1:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bc070")
r1 = socket$inet6(0xa, 0x80805, 0x0)
connect$inet6(r1, &(0x7f0000000080)={0xa, 0x0, 0x0, @remote, 0x6}, 0x1c)
setsockopt$sock_linger(r1, 0x1, 0xd, &(0x7f0000001280)={0x1}, 0x8)
close(r1)

00:15:00 executing program 3:
r0 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x5, 0x0, 0x0, 0x0, 0x0, 0x1, 0x40003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x11, r1, 0x0)
ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, r1)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe7000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)

00:15:00 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000000)='illinois\x00', 0xfb5c)
getsockopt$inet_tcp_buf(r0, 0x6, 0x1a, 0x0, &(0x7f0000000040))

00:15:00 executing program 5:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
bind$bt_l2cap(r0, &(0x7f0000000000), 0xe)

00:15:00 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$fou(&(0x7f0000000240)='fou\x00')
sendmsg$FOU_CMD_DEL(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)={0x18, r1, 0x103, 0x0, 0x0, {0x3}, [@FOU_ATTR_REMCSUM_NOPARTIAL={0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x1000000000}, 0x400000002)

00:15:00 executing program 4:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000040)={0xf, 0x4, 0x4, 0x2d, 0x0, 0xffffffffffffffff, 0x0, [], 0x0, 0xffffffffffffffff, 0x0, 0x7}, 0x3c)

00:15:00 executing program 3:
r0 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x5, 0x0, 0x0, 0x0, 0x0, 0x1, 0x40003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x11, r1, 0x0)
ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, r1)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe7000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)

00:15:00 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, &(0x7f0000000180)="0f20e06635000002000f22e00f9350f20f232e0f47f5baf80c66b8c8a2558a66efbafc0c66ed0f35b85c000f00d0baf80c66b8fe65f68066efbafc0ced66b9870a000066b8d95f902966baf1a568110f300f231b"}], 0xaaaaaaaaaaaad03, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4cb]})
ioctl$KVM_SET_CPUID(r2, 0x4008ae8a, &(0x7f0000000380)=ANY=[@ANYBLOB="010000000000000001"])
ioctl$KVM_RUN(r2, 0xae80, 0x0)
r3 = dup(r2)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

00:15:00 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$fou(&(0x7f0000000240)='fou\x00')
sendmsg$FOU_CMD_DEL(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)={0x18, r1, 0x103, 0x0, 0x0, {0x3}, [@FOU_ATTR_REMCSUM_NOPARTIAL={0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x1000000000}, 0x400000002)

00:15:00 executing program 1:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bc070")
r1 = socket$inet6(0xa, 0x80805, 0x0)
connect$inet6(r1, &(0x7f0000000080)={0xa, 0x0, 0x0, @remote, 0x6}, 0x1c)
setsockopt$sock_linger(r1, 0x1, 0xd, &(0x7f0000001280)={0x1}, 0x8)
close(r1)

00:15:00 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='coredump_filter\x00')
read(r0, 0x0, 0x0)

00:15:00 executing program 3:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='net/sctp\x00')
fstat(r0, &(0x7f0000000040))

00:15:00 executing program 4:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000040)={0xf, 0x4, 0x4, 0x2d, 0x0, 0xffffffffffffffff, 0x0, [], 0x0, 0xffffffffffffffff, 0x0, 0x7}, 0x3c)

00:15:01 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r0, 0x0, 0x482, &(0x7f0000000040)={0x6, @local, 0x0, 0x0, 'sh\x00'}, 0x2c)
setsockopt$IP_VS_SO_SET_FLUSH(r0, 0x0, 0x485, 0x0, 0x0)

00:15:01 executing program 1:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bc070")
r1 = socket$inet6(0xa, 0x80805, 0x0)
connect$inet6(r1, &(0x7f0000000080)={0xa, 0x0, 0x0, @remote, 0x6}, 0x1c)
setsockopt$sock_linger(r1, 0x1, 0xd, &(0x7f0000001280)={0x1}, 0x8)
close(r1)

00:15:01 executing program 5:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070")
r1 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r1, &(0x7f00000000c0)=[{&(0x7f0000000300)="580000001400192340834b80040d8c560a067fbc45ff810500000000000058000b480400945f64009400050038925a01000000000000008000f0fffeffe809000000fff5dd0000001000010002081000418e00000004fcff", 0x58}], 0x1)

00:15:01 executing program 2:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
r1 = socket$l2tp(0x18, 0x1, 0x1)
connect$l2tp(r1, &(0x7f0000000040)=@pppol2tpv3={0x18, 0x1, {0x0, r0, {0x2, 0x0, @multicast2}, 0x4}}, 0x2e)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @empty}, 0x1c)
r2 = socket$l2tp(0x18, 0x1, 0x1)
connect$l2tp(r2, &(0x7f0000000340)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @loopback}, 0x4, 0x4}}, 0x26)

00:15:01 executing program 0:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
socket(0x2, 0xa, 0x0)
setsockopt$packet_tx_ring(r0, 0x107, 0xd, &(0x7f0000000040)=@req3={0x10000, 0x100000001, 0x10000, 0x1}, 0x1c)
mmap(&(0x7f0000ff0000/0x10000)=nil, 0x10000, 0x3, 0x13012, r0, 0x0)

00:15:01 executing program 4:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000040)={0xf, 0x4, 0x4, 0x2d, 0x0, 0xffffffffffffffff, 0x0, [], 0x0, 0xffffffffffffffff, 0x0, 0x7}, 0x3c)

00:15:01 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r0, 0x0, 0x482, &(0x7f0000000040)={0x6, @local, 0x0, 0x0, 'sh\x00'}, 0x2c)
setsockopt$IP_VS_SO_SET_FLUSH(r0, 0x0, 0x485, 0x0, 0x0)

00:15:01 executing program 1:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bc070")
r1 = socket$inet6(0xa, 0x80805, 0x0)
connect$inet6(r1, &(0x7f0000000080)={0xa, 0x0, 0x0, @remote, 0x6}, 0x1c)
setsockopt$sock_linger(r1, 0x1, 0xd, &(0x7f0000001280)={0x1}, 0x8)
close(r1)

00:15:01 executing program 2:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r0, 0x0, 0x482, &(0x7f0000000040)={0x6, @local, 0x0, 0x0, 'sh\x00'}, 0x2c)
setsockopt$IP_VS_SO_SET_FLUSH(r0, 0x0, 0x485, 0x0, 0x0)

00:15:01 executing program 5:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070")
r1 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r1, &(0x7f00000000c0)=[{&(0x7f0000000300)="580000001400192340834b80040d8c560a067fbc45ff810500000000000058000b480400945f64009400050038925a01000000000000008000f0fffeffe809000000fff5dd0000001000010002081000418e00000004fcff", 0x58}], 0x1)

00:15:01 executing program 4:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000040)={0xf, 0x4, 0x4, 0x2d, 0x0, 0xffffffffffffffff, 0x0, [], 0x0, 0xffffffffffffffff, 0x0, 0x7}, 0x3c)

00:15:01 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r0, 0x0, 0x482, &(0x7f0000000040)={0x6, @local, 0x0, 0x0, 'sh\x00'}, 0x2c)
setsockopt$IP_VS_SO_SET_FLUSH(r0, 0x0, 0x485, 0x0, 0x0)

00:15:01 executing program 2:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r0, 0x0, 0x482, &(0x7f0000000040)={0x6, @local, 0x0, 0x0, 'sh\x00'}, 0x2c)
setsockopt$IP_VS_SO_SET_FLUSH(r0, 0x0, 0x485, 0x0, 0x0)

00:15:01 executing program 5:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070")
r1 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r1, &(0x7f00000000c0)=[{&(0x7f0000000300)="580000001400192340834b80040d8c560a067fbc45ff810500000000000058000b480400945f64009400050038925a01000000000000008000f0fffeffe809000000fff5dd0000001000010002081000418e00000004fcff", 0x58}], 0x1)

00:15:01 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r0, 0x0, 0x482, &(0x7f0000000040)={0x6, @local, 0x0, 0x0, 'sh\x00'}, 0x2c)
setsockopt$IP_VS_SO_SET_FLUSH(r0, 0x0, 0x485, 0x0, 0x0)

00:15:01 executing program 1:
r0 = socket(0x2, 0x80805, 0x0)
r1 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000080))
epoll_pwait(r1, &(0x7f0000000040)=[{}], 0x1, 0x80000000, 0x0, 0x0)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x0, 0x32, 0xffffffffffffffff, 0x0)
shutdown(r0, 0x1)
shutdown(r0, 0x0)

00:15:01 executing program 0:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
socket(0x2, 0xa, 0x0)
setsockopt$packet_tx_ring(r0, 0x107, 0xd, &(0x7f0000000040)=@req3={0x10000, 0x100000001, 0x10000, 0x1}, 0x1c)
mmap(&(0x7f0000ff0000/0x10000)=nil, 0x10000, 0x3, 0x13012, r0, 0x0)

00:15:01 executing program 4:
socket$inet6_tcp(0xa, 0x1, 0x0)
r0 = syz_open_dev$media(&(0x7f00000004c0)='/dev/media#\x00', 0x0, 0x4000)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$SNDRV_TIMER_IOCTL_PAUSE(0xffffffffffffffff, 0x54a3)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(0xffffffffffffffff, 0x0, 0x0)
write$P9_RSYMLINK(r0, 0x0, 0x0)
fsetxattr$security_evm(0xffffffffffffffff, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB], 0x1, 0x0)
fcntl$lock(0xffffffffffffffff, 0x6, 0x0)
clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r2 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000040)='/dev/rtc\x00', 0x0, 0x0)
ioctl$RTC_AIE_ON(r2, 0x7001)
write$P9_RREADDIR(0xffffffffffffffff, &(0x7f0000000480)={0xb, 0x29, 0x0, {0x5}}, 0xb)
ioctl$RTC_AIE_OFF(r2, 0x7002)
setsockopt$IPT_SO_SET_REPLACE(r1, 0x0, 0x40, 0x0, 0x0)
syz_mount_image$xfs(&(0x7f00000000c0)='xfs\x00', &(0x7f0000000180)='./file0\x00', 0x7f, 0x1, &(0x7f0000000340)=[{&(0x7f0000000280)}], 0x800, 0x0)
r3 = socket$inet(0x2, 0x2, 0x0)
setsockopt$inet_opts(r3, 0x0, 0x4, &(0x7f0000000940)="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", 0x167)

00:15:01 executing program 2:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r0, 0x0, 0x482, &(0x7f0000000040)={0x6, @local, 0x0, 0x0, 'sh\x00'}, 0x2c)
setsockopt$IP_VS_SO_SET_FLUSH(r0, 0x0, 0x485, 0x0, 0x0)

00:15:01 executing program 5:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070")
r1 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r1, &(0x7f00000000c0)=[{&(0x7f0000000300)="580000001400192340834b80040d8c560a067fbc45ff810500000000000058000b480400945f64009400050038925a01000000000000008000f0fffeffe809000000fff5dd0000001000010002081000418e00000004fcff", 0x58}], 0x1)

00:15:01 executing program 3:
creat(0x0, 0x0)
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6(0xa, 0x401000000801, 0x0)
close(r0)
r1 = socket$inet6(0xa, 0x3, 0x3a)
connect$inet6(r1, &(0x7f0000000180)={0xa, 0x0, 0x0, @dev, 0x3}, 0x1c)
r2 = open(&(0x7f0000000400)='./bus\x00', 0x1141042, 0x0)
ftruncate(r2, 0x2007fff)
sendfile(r0, r2, 0x0, 0x8000fffffffe)
r3 = memfd_create(&(0x7f0000000300)='proc}GPLeth0^wlan0#:\x00', 0x0)
openat$selinux_user(0xffffffffffffff9c, &(0x7f0000000200)='/selinux/user\x00', 0x2, 0x0)
prctl$PR_CAPBSET_DROP(0x18, 0x0)
execveat(r3, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x400001000)
r4 = openat$selinux_commit_pending_bools(0xffffffffffffff9c, &(0x7f0000000040)='/selinux/commit_pending_bools\x00', 0x1, 0x0)
ioctl$sock_x25_SIOCADDRT(r4, 0x890b, &(0x7f0000000080)={@remote={[], 0x0}, 0x6, 'lapb0\x00'})

00:15:01 executing program 4:
perf_event_open(&(0x7f0000000040)={0x1, 0x43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mmap(&(0x7f00009fd000/0x600000)=nil, 0x600000, 0x2000007, 0x6031, 0xffffffffffffffff, 0x0)
mremap(&(0x7f0000a94000/0x2000)=nil, 0x2000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil)
r0 = memfd_create(&(0x7f00000001c0)='/dy\xbdv/autofs\x00', 0x0)
mmap(&(0x7f0000000000/0xaa2000)=nil, 0xaa2000, 0x0, 0x11, r0, 0x0)

00:15:01 executing program 1:
r0 = socket(0x2, 0x80805, 0x0)
r1 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000080))
epoll_pwait(r1, &(0x7f0000000040)=[{}], 0x1, 0x80000000, 0x0, 0x0)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x0, 0x32, 0xffffffffffffffff, 0x0)
shutdown(r0, 0x1)
shutdown(r0, 0x0)

00:15:01 executing program 2:
r0 = perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='cpuacct.usage_sys\x00\xc7\xec\xac\xd9&{\x0f\x96\xad\xd1\x8fl![\x8f\xb9\f\xca\x1d\xc2{\xee\xb7\x03K\x0f\xa6\xaa;\xf6\x89\xf7b^\xa5\xafI\r\xc4\x9f\v\xf2\x1c\xdc\xddp2\xb7\xbb\x1b\xfev\xea\xed\xe0\xaa\xe8\xceR`\xbb\xf2\xed;pC\x19\xbfn\x16\xaa\x199\xfe.Q\xebvB\xd2\x19&l?\x87\x17H\x1f.\xdbA\x1b\xafz\xe3\xdc};*\xec\xfe\xfa\xfb/\x18g\x80y\xfe\x89', 0x26e1, 0x0)
close(r0)
close(r1)
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000040))
recvmsg(r0, &(0x7f0000000140)={0x0, 0x1d, &(0x7f0000000000)=[{&(0x7f00000000c0)=""/110, 0x2000012e}], 0x1}, 0x0)
close(r1)

00:15:01 executing program 0:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
socket(0x2, 0xa, 0x0)
setsockopt$packet_tx_ring(r0, 0x107, 0xd, &(0x7f0000000040)=@req3={0x10000, 0x100000001, 0x10000, 0x1}, 0x1c)
mmap(&(0x7f0000ff0000/0x10000)=nil, 0x10000, 0x3, 0x13012, r0, 0x0)

00:15:01 executing program 5:
mkdir(&(0x7f00000000c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0)
r0 = open(&(0x7f0000000140)='./file0\x00', 0x0, 0x0)
open_by_handle_at(r0, &(0x7f0000000000)=ANY=[@ANYBLOB="080000000100000007be"], 0x0)

00:15:01 executing program 2:
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)={0x11, 0x4, 0x0, 0x4, 0x0, 0x1}, 0x3c)

00:15:01 executing program 1:
r0 = socket(0x2, 0x80805, 0x0)
r1 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000080))
epoll_pwait(r1, &(0x7f0000000040)=[{}], 0x1, 0x80000000, 0x0, 0x0)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x0, 0x32, 0xffffffffffffffff, 0x0)
shutdown(r0, 0x1)
shutdown(r0, 0x0)

00:15:02 executing program 5:
mkdir(&(0x7f00000000c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0)
r0 = open(&(0x7f0000000140)='./file0\x00', 0x0, 0x0)
open_by_handle_at(r0, &(0x7f0000000000)=ANY=[@ANYBLOB="080000000100000007be"], 0x0)

00:15:02 executing program 0:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
socket(0x2, 0xa, 0x0)
setsockopt$packet_tx_ring(r0, 0x107, 0xd, &(0x7f0000000040)=@req3={0x10000, 0x100000001, 0x10000, 0x1}, 0x1c)
mmap(&(0x7f0000ff0000/0x10000)=nil, 0x10000, 0x3, 0x13012, r0, 0x0)

00:15:02 executing program 2:
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)={0x11, 0x4, 0x0, 0x4, 0x0, 0x1}, 0x3c)

00:15:02 executing program 1:
r0 = socket(0x2, 0x80805, 0x0)
r1 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000080))
epoll_pwait(r1, &(0x7f0000000040)=[{}], 0x1, 0x80000000, 0x0, 0x0)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x0, 0x32, 0xffffffffffffffff, 0x0)
shutdown(r0, 0x1)
shutdown(r0, 0x0)

00:15:02 executing program 3:
creat(0x0, 0x0)
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6(0xa, 0x401000000801, 0x0)
close(r0)
r1 = socket$inet6(0xa, 0x3, 0x3a)
connect$inet6(r1, &(0x7f0000000180)={0xa, 0x0, 0x0, @dev, 0x3}, 0x1c)
r2 = open(&(0x7f0000000400)='./bus\x00', 0x1141042, 0x0)
ftruncate(r2, 0x2007fff)
sendfile(r0, r2, 0x0, 0x8000fffffffe)
r3 = memfd_create(&(0x7f0000000300)='proc}GPLeth0^wlan0#:\x00', 0x0)
openat$selinux_user(0xffffffffffffff9c, &(0x7f0000000200)='/selinux/user\x00', 0x2, 0x0)
prctl$PR_CAPBSET_DROP(0x18, 0x0)
execveat(r3, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x400001000)
r4 = openat$selinux_commit_pending_bools(0xffffffffffffff9c, &(0x7f0000000040)='/selinux/commit_pending_bools\x00', 0x1, 0x0)
ioctl$sock_x25_SIOCADDRT(r4, 0x890b, &(0x7f0000000080)={@remote={[], 0x0}, 0x6, 'lapb0\x00'})

[  900.623161] audit: type=1800 audit(902.264:538): pid=28138 uid=0 auid=4294967295 ses=4294967295 subj=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 op=collect_data cause=failed comm="syz-executor.3" name="bus" dev="sda1" ino=17118 res=0
00:15:02 executing program 4:
perf_event_open(&(0x7f0000000040)={0x1, 0x43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mmap(&(0x7f00009fd000/0x600000)=nil, 0x600000, 0x2000007, 0x6031, 0xffffffffffffffff, 0x0)
mremap(&(0x7f0000a94000/0x2000)=nil, 0x2000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil)
r0 = memfd_create(&(0x7f00000001c0)='/dy\xbdv/autofs\x00', 0x0)
mmap(&(0x7f0000000000/0xaa2000)=nil, 0xaa2000, 0x0, 0x11, r0, 0x0)

00:15:02 executing program 2:
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)={0x11, 0x4, 0x0, 0x4, 0x0, 0x1}, 0x3c)

00:15:02 executing program 5:
mkdir(&(0x7f00000000c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0)
r0 = open(&(0x7f0000000140)='./file0\x00', 0x0, 0x0)
open_by_handle_at(r0, &(0x7f0000000000)=ANY=[@ANYBLOB="080000000100000007be"], 0x0)

00:15:02 executing program 0:
creat(0x0, 0x0)
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6(0xa, 0x401000000801, 0x0)
close(r0)
r1 = socket$inet6(0xa, 0x3, 0x3a)
connect$inet6(r1, &(0x7f0000000180)={0xa, 0x0, 0x0, @dev, 0x3}, 0x1c)
r2 = open(&(0x7f0000000400)='./bus\x00', 0x1141042, 0x0)
ftruncate(r2, 0x2007fff)
sendfile(r0, r2, 0x0, 0x8000fffffffe)
r3 = memfd_create(&(0x7f0000000300)='proc}GPLeth0^wlan0#:\x00', 0x0)
openat$selinux_user(0xffffffffffffff9c, &(0x7f0000000200)='/selinux/user\x00', 0x2, 0x0)
prctl$PR_CAPBSET_DROP(0x18, 0x0)
execveat(r3, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x400001000)
r4 = openat$selinux_commit_pending_bools(0xffffffffffffff9c, &(0x7f0000000040)='/selinux/commit_pending_bools\x00', 0x1, 0x0)
ioctl$sock_x25_SIOCADDRT(r4, 0x890b, &(0x7f0000000080)={@remote={[], 0x0}, 0x6, 'lapb0\x00'})

00:15:02 executing program 1:
creat(0x0, 0x0)
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6(0xa, 0x401000000801, 0x0)
close(r0)
r1 = socket$inet6(0xa, 0x3, 0x3a)
connect$inet6(r1, &(0x7f0000000180)={0xa, 0x0, 0x0, @dev, 0x3}, 0x1c)
r2 = open(&(0x7f0000000400)='./bus\x00', 0x1141042, 0x0)
ftruncate(r2, 0x2007fff)
sendfile(r0, r2, 0x0, 0x8000fffffffe)
r3 = memfd_create(&(0x7f0000000300)='proc}GPLeth0^wlan0#:\x00', 0x0)
openat$selinux_user(0xffffffffffffff9c, &(0x7f0000000200)='/selinux/user\x00', 0x2, 0x0)
prctl$PR_CAPBSET_DROP(0x18, 0x0)
execveat(r3, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x400001000)
r4 = openat$selinux_commit_pending_bools(0xffffffffffffff9c, &(0x7f0000000040)='/selinux/commit_pending_bools\x00', 0x1, 0x0)
ioctl$sock_x25_SIOCADDRT(r4, 0x890b, &(0x7f0000000080)={@remote={[], 0x0}, 0x6, 'lapb0\x00'})

00:15:02 executing program 3:
creat(0x0, 0x0)
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6(0xa, 0x401000000801, 0x0)
close(r0)
r1 = socket$inet6(0xa, 0x3, 0x3a)
connect$inet6(r1, &(0x7f0000000180)={0xa, 0x0, 0x0, @dev, 0x3}, 0x1c)
r2 = open(&(0x7f0000000400)='./bus\x00', 0x1141042, 0x0)
ftruncate(r2, 0x2007fff)
sendfile(r0, r2, 0x0, 0x8000fffffffe)
r3 = memfd_create(&(0x7f0000000300)='proc}GPLeth0^wlan0#:\x00', 0x0)
openat$selinux_user(0xffffffffffffff9c, &(0x7f0000000200)='/selinux/user\x00', 0x2, 0x0)
prctl$PR_CAPBSET_DROP(0x18, 0x0)
execveat(r3, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x400001000)
r4 = openat$selinux_commit_pending_bools(0xffffffffffffff9c, &(0x7f0000000040)='/selinux/commit_pending_bools\x00', 0x1, 0x0)
ioctl$sock_x25_SIOCADDRT(r4, 0x890b, &(0x7f0000000080)={@remote={[], 0x0}, 0x6, 'lapb0\x00'})

00:15:02 executing program 2:
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)={0x11, 0x4, 0x0, 0x4, 0x0, 0x1}, 0x3c)

00:15:02 executing program 5:
mkdir(&(0x7f00000000c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0)
r0 = open(&(0x7f0000000140)='./file0\x00', 0x0, 0x0)
open_by_handle_at(r0, &(0x7f0000000000)=ANY=[@ANYBLOB="080000000100000007be"], 0x0)

00:15:03 executing program 2:
creat(0x0, 0x0)
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6(0xa, 0x401000000801, 0x0)
close(r0)
r1 = socket$inet6(0xa, 0x3, 0x3a)
connect$inet6(r1, &(0x7f0000000180)={0xa, 0x0, 0x0, @dev, 0x3}, 0x1c)
r2 = open(&(0x7f0000000400)='./bus\x00', 0x1141042, 0x0)
ftruncate(r2, 0x2007fff)
sendfile(r0, r2, 0x0, 0x8000fffffffe)
r3 = memfd_create(&(0x7f0000000300)='proc}GPLeth0^wlan0#:\x00', 0x0)
openat$selinux_user(0xffffffffffffff9c, &(0x7f0000000200)='/selinux/user\x00', 0x2, 0x0)
prctl$PR_CAPBSET_DROP(0x18, 0x0)
execveat(r3, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x400001000)
r4 = openat$selinux_commit_pending_bools(0xffffffffffffff9c, &(0x7f0000000040)='/selinux/commit_pending_bools\x00', 0x1, 0x0)
ioctl$sock_x25_SIOCADDRT(r4, 0x890b, &(0x7f0000000080)={@remote={[], 0x0}, 0x6, 'lapb0\x00'})

00:15:03 executing program 0:
creat(0x0, 0x0)
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6(0xa, 0x401000000801, 0x0)
close(r0)
r1 = socket$inet6(0xa, 0x3, 0x3a)
connect$inet6(r1, &(0x7f0000000180)={0xa, 0x0, 0x0, @dev, 0x3}, 0x1c)
r2 = open(&(0x7f0000000400)='./bus\x00', 0x1141042, 0x0)
ftruncate(r2, 0x2007fff)
sendfile(r0, r2, 0x0, 0x8000fffffffe)
r3 = memfd_create(&(0x7f0000000300)='proc}GPLeth0^wlan0#:\x00', 0x0)
openat$selinux_user(0xffffffffffffff9c, &(0x7f0000000200)='/selinux/user\x00', 0x2, 0x0)
prctl$PR_CAPBSET_DROP(0x18, 0x0)
execveat(r3, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x400001000)
r4 = openat$selinux_commit_pending_bools(0xffffffffffffff9c, &(0x7f0000000040)='/selinux/commit_pending_bools\x00', 0x1, 0x0)
ioctl$sock_x25_SIOCADDRT(r4, 0x890b, &(0x7f0000000080)={@remote={[], 0x0}, 0x6, 'lapb0\x00'})

00:15:03 executing program 1:
creat(0x0, 0x0)
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6(0xa, 0x401000000801, 0x0)
close(r0)
r1 = socket$inet6(0xa, 0x3, 0x3a)
connect$inet6(r1, &(0x7f0000000180)={0xa, 0x0, 0x0, @dev, 0x3}, 0x1c)
r2 = open(&(0x7f0000000400)='./bus\x00', 0x1141042, 0x0)
ftruncate(r2, 0x2007fff)
sendfile(r0, r2, 0x0, 0x8000fffffffe)
r3 = memfd_create(&(0x7f0000000300)='proc}GPLeth0^wlan0#:\x00', 0x0)
openat$selinux_user(0xffffffffffffff9c, &(0x7f0000000200)='/selinux/user\x00', 0x2, 0x0)
prctl$PR_CAPBSET_DROP(0x18, 0x0)
execveat(r3, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x400001000)
r4 = openat$selinux_commit_pending_bools(0xffffffffffffff9c, &(0x7f0000000040)='/selinux/commit_pending_bools\x00', 0x1, 0x0)
ioctl$sock_x25_SIOCADDRT(r4, 0x890b, &(0x7f0000000080)={@remote={[], 0x0}, 0x6, 'lapb0\x00'})

00:15:03 executing program 5:
creat(0x0, 0x0)
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6(0xa, 0x401000000801, 0x0)
close(r0)
r1 = socket$inet6(0xa, 0x3, 0x3a)
connect$inet6(r1, &(0x7f0000000180)={0xa, 0x0, 0x0, @dev, 0x3}, 0x1c)
r2 = open(&(0x7f0000000400)='./bus\x00', 0x1141042, 0x0)
ftruncate(r2, 0x2007fff)
sendfile(r0, r2, 0x0, 0x8000fffffffe)
r3 = memfd_create(&(0x7f0000000300)='proc}GPLeth0^wlan0#:\x00', 0x0)
openat$selinux_user(0xffffffffffffff9c, &(0x7f0000000200)='/selinux/user\x00', 0x2, 0x0)
prctl$PR_CAPBSET_DROP(0x18, 0x0)
execveat(r3, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x400001000)
r4 = openat$selinux_commit_pending_bools(0xffffffffffffff9c, &(0x7f0000000040)='/selinux/commit_pending_bools\x00', 0x1, 0x0)
ioctl$sock_x25_SIOCADDRT(r4, 0x890b, &(0x7f0000000080)={@remote={[], 0x0}, 0x6, 'lapb0\x00'})

[  901.932261] net_ratelimit: 22 callbacks suppressed
[  901.932270] protocol 88fb is buggy, dev hsr_slave_0
[  901.932295] protocol 88fb is buggy, dev hsr_slave_0
[  901.937403] protocol 88fb is buggy, dev hsr_slave_1
[  901.942432] protocol 88fb is buggy, dev hsr_slave_1
00:15:03 executing program 4:
perf_event_open(&(0x7f0000000040)={0x1, 0x43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mmap(&(0x7f00009fd000/0x600000)=nil, 0x600000, 0x2000007, 0x6031, 0xffffffffffffffff, 0x0)
mremap(&(0x7f0000a94000/0x2000)=nil, 0x2000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil)
r0 = memfd_create(&(0x7f00000001c0)='/dy\xbdv/autofs\x00', 0x0)
mmap(&(0x7f0000000000/0xaa2000)=nil, 0xaa2000, 0x0, 0x11, r0, 0x0)

00:15:03 executing program 3:
creat(0x0, 0x0)
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6(0xa, 0x401000000801, 0x0)
close(r0)
r1 = socket$inet6(0xa, 0x3, 0x3a)
connect$inet6(r1, &(0x7f0000000180)={0xa, 0x0, 0x0, @dev, 0x3}, 0x1c)
r2 = open(&(0x7f0000000400)='./bus\x00', 0x1141042, 0x0)
ftruncate(r2, 0x2007fff)
sendfile(r0, r2, 0x0, 0x8000fffffffe)
r3 = memfd_create(&(0x7f0000000300)='proc}GPLeth0^wlan0#:\x00', 0x0)
openat$selinux_user(0xffffffffffffff9c, &(0x7f0000000200)='/selinux/user\x00', 0x2, 0x0)
prctl$PR_CAPBSET_DROP(0x18, 0x0)
execveat(r3, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x400001000)
r4 = openat$selinux_commit_pending_bools(0xffffffffffffff9c, &(0x7f0000000040)='/selinux/commit_pending_bools\x00', 0x1, 0x0)
ioctl$sock_x25_SIOCADDRT(r4, 0x890b, &(0x7f0000000080)={@remote={[], 0x0}, 0x6, 'lapb0\x00'})

00:15:03 executing program 2:
creat(0x0, 0x0)
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6(0xa, 0x401000000801, 0x0)
close(r0)
r1 = socket$inet6(0xa, 0x3, 0x3a)
connect$inet6(r1, &(0x7f0000000180)={0xa, 0x0, 0x0, @dev, 0x3}, 0x1c)
r2 = open(&(0x7f0000000400)='./bus\x00', 0x1141042, 0x0)
ftruncate(r2, 0x2007fff)
sendfile(r0, r2, 0x0, 0x8000fffffffe)
r3 = memfd_create(&(0x7f0000000300)='proc}GPLeth0^wlan0#:\x00', 0x0)
openat$selinux_user(0xffffffffffffff9c, &(0x7f0000000200)='/selinux/user\x00', 0x2, 0x0)
prctl$PR_CAPBSET_DROP(0x18, 0x0)
execveat(r3, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x400001000)
r4 = openat$selinux_commit_pending_bools(0xffffffffffffff9c, &(0x7f0000000040)='/selinux/commit_pending_bools\x00', 0x1, 0x0)
ioctl$sock_x25_SIOCADDRT(r4, 0x890b, &(0x7f0000000080)={@remote={[], 0x0}, 0x6, 'lapb0\x00'})

00:15:03 executing program 0:
creat(0x0, 0x0)
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6(0xa, 0x401000000801, 0x0)
close(r0)
r1 = socket$inet6(0xa, 0x3, 0x3a)
connect$inet6(r1, &(0x7f0000000180)={0xa, 0x0, 0x0, @dev, 0x3}, 0x1c)
r2 = open(&(0x7f0000000400)='./bus\x00', 0x1141042, 0x0)
ftruncate(r2, 0x2007fff)
sendfile(r0, r2, 0x0, 0x8000fffffffe)
r3 = memfd_create(&(0x7f0000000300)='proc}GPLeth0^wlan0#:\x00', 0x0)
openat$selinux_user(0xffffffffffffff9c, &(0x7f0000000200)='/selinux/user\x00', 0x2, 0x0)
prctl$PR_CAPBSET_DROP(0x18, 0x0)
execveat(r3, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x400001000)
r4 = openat$selinux_commit_pending_bools(0xffffffffffffff9c, &(0x7f0000000040)='/selinux/commit_pending_bools\x00', 0x1, 0x0)
ioctl$sock_x25_SIOCADDRT(r4, 0x890b, &(0x7f0000000080)={@remote={[], 0x0}, 0x6, 'lapb0\x00'})

00:15:03 executing program 1:
creat(0x0, 0x0)
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6(0xa, 0x401000000801, 0x0)
close(r0)
r1 = socket$inet6(0xa, 0x3, 0x3a)
connect$inet6(r1, &(0x7f0000000180)={0xa, 0x0, 0x0, @dev, 0x3}, 0x1c)
r2 = open(&(0x7f0000000400)='./bus\x00', 0x1141042, 0x0)
ftruncate(r2, 0x2007fff)
sendfile(r0, r2, 0x0, 0x8000fffffffe)
r3 = memfd_create(&(0x7f0000000300)='proc}GPLeth0^wlan0#:\x00', 0x0)
openat$selinux_user(0xffffffffffffff9c, &(0x7f0000000200)='/selinux/user\x00', 0x2, 0x0)
prctl$PR_CAPBSET_DROP(0x18, 0x0)
execveat(r3, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x400001000)
r4 = openat$selinux_commit_pending_bools(0xffffffffffffff9c, &(0x7f0000000040)='/selinux/commit_pending_bools\x00', 0x1, 0x0)
ioctl$sock_x25_SIOCADDRT(r4, 0x890b, &(0x7f0000000080)={@remote={[], 0x0}, 0x6, 'lapb0\x00'})

00:15:03 executing program 5:
creat(0x0, 0x0)
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6(0xa, 0x401000000801, 0x0)
close(r0)
r1 = socket$inet6(0xa, 0x3, 0x3a)
connect$inet6(r1, &(0x7f0000000180)={0xa, 0x0, 0x0, @dev, 0x3}, 0x1c)
r2 = open(&(0x7f0000000400)='./bus\x00', 0x1141042, 0x0)
ftruncate(r2, 0x2007fff)
sendfile(r0, r2, 0x0, 0x8000fffffffe)
r3 = memfd_create(&(0x7f0000000300)='proc}GPLeth0^wlan0#:\x00', 0x0)
openat$selinux_user(0xffffffffffffff9c, &(0x7f0000000200)='/selinux/user\x00', 0x2, 0x0)
prctl$PR_CAPBSET_DROP(0x18, 0x0)
execveat(r3, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x400001000)
r4 = openat$selinux_commit_pending_bools(0xffffffffffffff9c, &(0x7f0000000040)='/selinux/commit_pending_bools\x00', 0x1, 0x0)
ioctl$sock_x25_SIOCADDRT(r4, 0x890b, &(0x7f0000000080)={@remote={[], 0x0}, 0x6, 'lapb0\x00'})

00:15:04 executing program 0:
creat(0x0, 0x0)
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6(0xa, 0x401000000801, 0x0)
close(r0)
r1 = socket$inet6(0xa, 0x3, 0x3a)
connect$inet6(r1, &(0x7f0000000180)={0xa, 0x0, 0x0, @dev, 0x3}, 0x1c)
r2 = open(&(0x7f0000000400)='./bus\x00', 0x1141042, 0x0)
ftruncate(r2, 0x2007fff)
sendfile(r0, r2, 0x0, 0x8000fffffffe)
r3 = memfd_create(&(0x7f0000000300)='proc}GPLeth0^wlan0#:\x00', 0x0)
openat$selinux_user(0xffffffffffffff9c, &(0x7f0000000200)='/selinux/user\x00', 0x2, 0x0)
prctl$PR_CAPBSET_DROP(0x18, 0x0)
execveat(r3, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x400001000)
r4 = openat$selinux_commit_pending_bools(0xffffffffffffff9c, &(0x7f0000000040)='/selinux/commit_pending_bools\x00', 0x1, 0x0)
ioctl$sock_x25_SIOCADDRT(r4, 0x890b, &(0x7f0000000080)={@remote={[], 0x0}, 0x6, 'lapb0\x00'})

00:15:04 executing program 5:
creat(0x0, 0x0)
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6(0xa, 0x401000000801, 0x0)
close(r0)
r1 = socket$inet6(0xa, 0x3, 0x3a)
connect$inet6(r1, &(0x7f0000000180)={0xa, 0x0, 0x0, @dev, 0x3}, 0x1c)
r2 = open(&(0x7f0000000400)='./bus\x00', 0x1141042, 0x0)
ftruncate(r2, 0x2007fff)
sendfile(r0, r2, 0x0, 0x8000fffffffe)
r3 = memfd_create(&(0x7f0000000300)='proc}GPLeth0^wlan0#:\x00', 0x0)
openat$selinux_user(0xffffffffffffff9c, &(0x7f0000000200)='/selinux/user\x00', 0x2, 0x0)
prctl$PR_CAPBSET_DROP(0x18, 0x0)
execveat(r3, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x400001000)
r4 = openat$selinux_commit_pending_bools(0xffffffffffffff9c, &(0x7f0000000040)='/selinux/commit_pending_bools\x00', 0x1, 0x0)
ioctl$sock_x25_SIOCADDRT(r4, 0x890b, &(0x7f0000000080)={@remote={[], 0x0}, 0x6, 'lapb0\x00'})

[  902.572247] protocol 88fb is buggy, dev hsr_slave_0
[  902.577478] protocol 88fb is buggy, dev hsr_slave_1
00:15:04 executing program 2:
creat(0x0, 0x0)
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6(0xa, 0x401000000801, 0x0)
close(r0)
r1 = socket$inet6(0xa, 0x3, 0x3a)
connect$inet6(r1, &(0x7f0000000180)={0xa, 0x0, 0x0, @dev, 0x3}, 0x1c)
r2 = open(&(0x7f0000000400)='./bus\x00', 0x1141042, 0x0)
ftruncate(r2, 0x2007fff)
sendfile(r0, r2, 0x0, 0x8000fffffffe)
r3 = memfd_create(&(0x7f0000000300)='proc}GPLeth0^wlan0#:\x00', 0x0)
openat$selinux_user(0xffffffffffffff9c, &(0x7f0000000200)='/selinux/user\x00', 0x2, 0x0)
prctl$PR_CAPBSET_DROP(0x18, 0x0)
execveat(r3, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x400001000)
r4 = openat$selinux_commit_pending_bools(0xffffffffffffff9c, &(0x7f0000000040)='/selinux/commit_pending_bools\x00', 0x1, 0x0)
ioctl$sock_x25_SIOCADDRT(r4, 0x890b, &(0x7f0000000080)={@remote={[], 0x0}, 0x6, 'lapb0\x00'})

[  902.732827] protocol 88fb is buggy, dev hsr_slave_0
[  902.738856] protocol 88fb is buggy, dev hsr_slave_1
[  902.744617] protocol 88fb is buggy, dev hsr_slave_0
[  902.750350] protocol 88fb is buggy, dev hsr_slave_1
00:15:04 executing program 1:
socket$inet6_tcp(0xa, 0x1, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_execute_func(&(0x7f0000000000)="c421797fe3a84a2ae91c420f05bf03000000c4a37bf0c55c41e2e966400f1320660fde978fe97c80d1e3e30b110fb884014e4e0b5b5b016d7d14dee509c421045f4607c498ad50e3c4e10bf8c45b70c4c4c4a3bd4877f81ec483397fd300f7dcdc0fbcaf4c10f138f653afaf6766f2ab440fec3facacc4c3214cb9a5604b19c201b00b000000f08171a30b8a826e670f542c3d271c0000a80dd4d40fb0d5e8628f680864360fe25800218de3c0f52641802d08000000fac4c151ec2af6a1dd7dbbbfdd5c450f918fffefffffbedcdca1c9fb110f66474f383ae34ba29fb7e2")

00:15:04 executing program 3:
r0 = syz_init_net_socket$rose(0xb, 0x5, 0x0)
setsockopt$rose(r0, 0x104, 0x0, 0x0, 0x3d7)

00:15:04 executing program 0:
creat(0x0, 0x0)
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6(0xa, 0x401000000801, 0x0)
close(r0)
r1 = socket$inet6(0xa, 0x3, 0x3a)
connect$inet6(r1, &(0x7f0000000180)={0xa, 0x0, 0x0, @dev, 0x3}, 0x1c)
r2 = open(&(0x7f0000000400)='./bus\x00', 0x1141042, 0x0)
ftruncate(r2, 0x2007fff)
sendfile(r0, r2, 0x0, 0x8000fffffffe)
r3 = memfd_create(&(0x7f0000000300)='proc}GPLeth0^wlan0#:\x00', 0x0)
openat$selinux_user(0xffffffffffffff9c, &(0x7f0000000200)='/selinux/user\x00', 0x2, 0x0)
prctl$PR_CAPBSET_DROP(0x18, 0x0)
execveat(r3, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x400001000)
r4 = openat$selinux_commit_pending_bools(0xffffffffffffff9c, &(0x7f0000000040)='/selinux/commit_pending_bools\x00', 0x1, 0x0)
ioctl$sock_x25_SIOCADDRT(r4, 0x890b, &(0x7f0000000080)={@remote={[], 0x0}, 0x6, 'lapb0\x00'})

00:15:05 executing program 4:
perf_event_open(&(0x7f0000000040)={0x1, 0x43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mmap(&(0x7f00009fd000/0x600000)=nil, 0x600000, 0x2000007, 0x6031, 0xffffffffffffffff, 0x0)
mremap(&(0x7f0000a94000/0x2000)=nil, 0x2000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil)
r0 = memfd_create(&(0x7f00000001c0)='/dy\xbdv/autofs\x00', 0x0)
mmap(&(0x7f0000000000/0xaa2000)=nil, 0xaa2000, 0x0, 0x11, r0, 0x0)

00:15:05 executing program 3:
perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x403e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_emit_ethernet(0x36, &(0x7f0000000040)={@local, @dev, [], {@ipv4={0x800, {{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x82f, 0x0, @dev, @remote}, @icmp=@timestamp_reply}}}}, 0x0)

00:15:05 executing program 5:
openat$selinux_enforce(0xffffffffffffff9c, &(0x7f0000000480)='/selinux/enforce\x00', 0x2, 0x0)
syz_execute_func(&(0x7f0000000000)="994a2ae92c06964c0f05bf03000000c4a37bf0c50141e2e9c422e9aabb3c0000004a0fc7a4ea70db000000000f383a9e02000000110f4e5bc4a265aa104b26660f38091e2fa2631bc421045f4607c421dd589fc4e10bf8e426f2f045f619640f0f6f43a038fd52262e2e66450f7d64c60865f2ad0383397fd3ff3a0065f20f7cd8efa1a12ad764d38f53efaf6766f2ab440fec3f67ddea660f79cec462b1f72ec3c4899294d800000000000fc4634148f70000c2a0c10b00cca27a0e0fc442cd376d000f9f3c6436b2aa66450fc4650000c4e39978c104d9a1e8719e70ddcdcda2660f38346800c4e3295d4c3dc8a3c4c1045ccc7d75c4426507af0f0000000f5fd25cf3460f2ad0f30f5ea5a9a50000ffff660f79ca553131b83a00a2f1fbfb766208cf")

00:15:05 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x7f, &(0x7f00000001c0)={&(0x7f0000000040)=@newlink={0x3c, 0x10, 0x7ffffff9, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x1c, 0x12, @gretap={{0xc, 0x1, 'gretap\x00'}, {0xc, 0x2, [@gre_common_policy=[@IFLA_GRE_IFLAGS={0x8, 0x11}]]}}}]}, 0x3c}}, 0x0)

00:15:05 executing program 0:
creat(0x0, 0x0)
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6(0xa, 0x401000000801, 0x0)
close(r0)
r1 = socket$inet6(0xa, 0x3, 0x3a)
connect$inet6(r1, &(0x7f0000000180)={0xa, 0x0, 0x0, @dev, 0x3}, 0x1c)
r2 = open(&(0x7f0000000400)='./bus\x00', 0x1141042, 0x0)
ftruncate(r2, 0x2007fff)
sendfile(r0, r2, 0x0, 0x8000fffffffe)
r3 = memfd_create(&(0x7f0000000300)='proc}GPLeth0^wlan0#:\x00', 0x0)
openat$selinux_user(0xffffffffffffff9c, &(0x7f0000000200)='/selinux/user\x00', 0x2, 0x0)
prctl$PR_CAPBSET_DROP(0x18, 0x0)
execveat(r3, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x400001000)
r4 = openat$selinux_commit_pending_bools(0xffffffffffffff9c, &(0x7f0000000040)='/selinux/commit_pending_bools\x00', 0x1, 0x0)
ioctl$sock_x25_SIOCADDRT(r4, 0x890b, &(0x7f0000000080)={@remote={[], 0x0}, 0x6, 'lapb0\x00'})

00:15:05 executing program 1:
r0 = syz_open_dev$radio(&(0x7f0000000080)='/dev/radio#\x00', 0xffffffffffffffff, 0x2)
preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x300}], 0x1, 0x0)
preadv(r0, &(0x7f0000000440)=[{&(0x7f00000013c0)=""/4096}], 0x229, 0x0)

[  903.714098] netlink: 'syz-executor.2': attribute type 17 has an invalid length.
00:15:05 executing program 5:
r0 = openat$dsp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp\x00', 0x400bd, 0x0)
ioctl$int_in(r0, 0x80000040045010, &(0x7f0000000040))

00:15:05 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x7f, &(0x7f00000001c0)={&(0x7f0000000040)=@newlink={0x3c, 0x10, 0x7ffffff9, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x1c, 0x12, @gretap={{0xc, 0x1, 'gretap\x00'}, {0xc, 0x2, [@gre_common_policy=[@IFLA_GRE_IFLAGS={0x8, 0x11}]]}}}]}, 0x3c}}, 0x0)

00:15:05 executing program 3:
perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x403e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_emit_ethernet(0x36, &(0x7f0000000040)={@local, @dev, [], {@ipv4={0x800, {{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x82f, 0x0, @dev, @remote}, @icmp=@timestamp_reply}}}}, 0x0)

00:15:05 executing program 1:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000deb000)={0x2, 0x0, @dev}, 0x10)
r1 = socket$inet6(0xa, 0x2, 0x0)
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f00000002c0))
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
add_key(&(0x7f0000000080)='big_key\x00', &(0x7f00000000c0), &(0x7f0000000340)="46ac5128da090e4899c38028efeb85968ead969e21e33725a7edc030260cdb3ca79964a6e93ce51185f005b7dac052cb797af438c32c29b736fb12c63dd0e504445044a1ae9c10fd8171232ed7dcb08e9acaf4c569c4c16c5c47994118fc35ff7f03407dc7093fa7d3", 0x69, 0xfffffffffffffffd)
r2 = socket$inet(0x2, 0x4000000000000001, 0x0)
perf_event_open(&(0x7f0000000180)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
setsockopt$IP_VS_SO_SET_STARTDAEMON(r2, 0x0, 0x48b, &(0x7f0000000000)={0x2, 'bond0\x00'}, 0x18)
ioctl$FS_IOC_GETFLAGS(r1, 0x80046601, &(0x7f0000000300))
r3 = openat$cgroup_int(0xffffffffffffffff, &(0x7f0000000240)='memory.swap.max\x00', 0x2, 0x0)
times(&(0x7f0000000200))
setsockopt$IP_VS_SO_SET_EDIT(r2, 0x0, 0x483, &(0x7f0000000180)={0x0, @broadcast, 0x0, 0x0, 'ovf\x00', 0x0, 0x0, 0x61}, 0x2c)
r4 = socket(0x1e, 0x4, 0x0)
sync()
recvmmsg(r4, &(0x7f0000007680)=[{{&(0x7f00000006c0)=@xdp, 0x80, &(0x7f00000019c0)=[{&(0x7f0000001780)=""/65, 0x41}], 0x1}}], 0x1, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000001e000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, &(0x7f0000000040)="660f3a177c564b0f019a27dbbaa000ec66b9800000c00f326635000400000f30360f01dfba6100b81bffef66b9910300000f3236876a0066b9800000c00f326635002000000f30f226260f01df", 0x4d}], 0x1, 0x0, &(0x7f0000000300), 0x0)
sendfile(r3, r3, &(0x7f0000000540), 0x8)
clone(0x102001ffc, 0x0, 0xfffffffffffffffe, &(0x7f0000000280), 0xffffffffffffffff)
r5 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r5, 0x0, 0x80, &(0x7f00000001c0)=@broute={'broute\x00', 0x20, 0x1, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000540], 0x0, 0x0, &(0x7f0000000540)=ANY=[]}, 0x78)
semctl$IPC_RMID(0x0, 0x0, 0x10)

[  903.982766] netlink: 'syz-executor.2': attribute type 17 has an invalid length.
00:15:05 executing program 0:
r0 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r0, &(0x7f000070ffe3)={0xa, 0x4e20, 0x0, @ipv4={[], [], @multicast2}}, 0x1c)
setsockopt$sock_int(r0, 0x1, 0xf, &(0x7f0000f59ffc)=0x5, 0x4)
r1 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000d1c000)=0x2c, 0x4)
bind$inet6(r1, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @ipv4={[], [], @multicast2}}, 0x1c)

00:15:05 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x7f, &(0x7f00000001c0)={&(0x7f0000000040)=@newlink={0x3c, 0x10, 0x7ffffff9, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x1c, 0x12, @gretap={{0xc, 0x1, 'gretap\x00'}, {0xc, 0x2, [@gre_common_policy=[@IFLA_GRE_IFLAGS={0x8, 0x11}]]}}}]}, 0x3c}}, 0x0)

[  904.134743] IPVS: set_ctl: invalid protocol: 0 255.255.255.255:0
[  904.161920] netlink: 'syz-executor.2': attribute type 17 has an invalid length.
00:15:06 executing program 3:
perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x403e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_emit_ethernet(0x36, &(0x7f0000000040)={@local, @dev, [], {@ipv4={0x800, {{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x82f, 0x0, @dev, @remote}, @icmp=@timestamp_reply}}}}, 0x0)

00:15:06 executing program 5:
r0 = fanotify_init(0x0, 0x0)
fanotify_mark(r0, 0x5, 0x20, 0xffffffffffffffff, &(0x7f0000000300)='./file1\x00')

00:15:06 executing program 0:
r0 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r0, &(0x7f000070ffe3)={0xa, 0x4e20, 0x0, @ipv4={[], [], @multicast2}}, 0x1c)
setsockopt$sock_int(r0, 0x1, 0xf, &(0x7f0000f59ffc)=0x5, 0x4)
r1 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000d1c000)=0x2c, 0x4)
bind$inet6(r1, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @ipv4={[], [], @multicast2}}, 0x1c)

00:15:06 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x7f, &(0x7f00000001c0)={&(0x7f0000000040)=@newlink={0x3c, 0x10, 0x7ffffff9, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x1c, 0x12, @gretap={{0xc, 0x1, 'gretap\x00'}, {0xc, 0x2, [@gre_common_policy=[@IFLA_GRE_IFLAGS={0x8, 0x11}]]}}}]}, 0x3c}}, 0x0)

00:15:06 executing program 4:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f319bd070")
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r1, 0x6, 0x10000000013, &(0x7f0000d06000)=0x1, 0x4)
setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000000)='veth1\x00', 0x10)
connect$inet(r1, &(0x7f00000000c0)={0x2, 0x0, @loopback}, 0x10)
setsockopt$inet_tcp_int(r1, 0x6, 0x4000000000013, &(0x7f0000000180), 0x4)
setsockopt$sock_int(r1, 0x1, 0x3c, &(0x7f0000000240)=0x1, 0x4)
sendto$inet(r1, &(0x7f0000000080)=';', 0x1, 0x4000000, 0x0, 0x0)
sendto$unix(r1, &(0x7f0000000040), 0xfffffffffffffe75, 0x40047fd, 0x0, 0x0)

[  904.648164] netlink: 'syz-executor.2': attribute type 17 has an invalid length.
00:15:06 executing program 0:
r0 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r0, &(0x7f000070ffe3)={0xa, 0x4e20, 0x0, @ipv4={[], [], @multicast2}}, 0x1c)
setsockopt$sock_int(r0, 0x1, 0xf, &(0x7f0000f59ffc)=0x5, 0x4)
r1 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000d1c000)=0x2c, 0x4)
bind$inet6(r1, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @ipv4={[], [], @multicast2}}, 0x1c)

00:15:06 executing program 5:
r0 = fanotify_init(0x0, 0x0)
fanotify_mark(r0, 0x5, 0x20, 0xffffffffffffffff, &(0x7f0000000300)='./file1\x00')

00:15:06 executing program 4:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f319bd070")
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r1, 0x6, 0x10000000013, &(0x7f0000d06000)=0x1, 0x4)
setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000000)='veth1\x00', 0x10)
connect$inet(r1, &(0x7f00000000c0)={0x2, 0x0, @loopback}, 0x10)
setsockopt$inet_tcp_int(r1, 0x6, 0x4000000000013, &(0x7f0000000180), 0x4)
setsockopt$sock_int(r1, 0x1, 0x3c, &(0x7f0000000240)=0x1, 0x4)
sendto$inet(r1, &(0x7f0000000080)=';', 0x1, 0x4000000, 0x0, 0x0)
sendto$unix(r1, &(0x7f0000000040), 0xfffffffffffffe75, 0x40047fd, 0x0, 0x0)

00:15:06 executing program 2:
r0 = socket$nl_crypto(0x10, 0x3, 0x15)
getsockopt$netlink(r0, 0x10e, 0x5, 0x0, &(0x7f00000000c0))

00:15:06 executing program 3:
perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x403e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_emit_ethernet(0x36, &(0x7f0000000040)={@local, @dev, [], {@ipv4={0x800, {{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x82f, 0x0, @dev, @remote}, @icmp=@timestamp_reply}}}}, 0x0)

00:15:06 executing program 5:
r0 = fanotify_init(0x0, 0x0)
fanotify_mark(r0, 0x5, 0x20, 0xffffffffffffffff, &(0x7f0000000300)='./file1\x00')

00:15:06 executing program 0:
r0 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r0, &(0x7f000070ffe3)={0xa, 0x4e20, 0x0, @ipv4={[], [], @multicast2}}, 0x1c)
setsockopt$sock_int(r0, 0x1, 0xf, &(0x7f0000f59ffc)=0x5, 0x4)
r1 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000d1c000)=0x2c, 0x4)
bind$inet6(r1, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @ipv4={[], [], @multicast2}}, 0x1c)

00:15:06 executing program 1:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000deb000)={0x2, 0x0, @dev}, 0x10)
r1 = socket$inet6(0xa, 0x2, 0x0)
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f00000002c0))
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
add_key(&(0x7f0000000080)='big_key\x00', &(0x7f00000000c0), &(0x7f0000000340)="46ac5128da090e4899c38028efeb85968ead969e21e33725a7edc030260cdb3ca79964a6e93ce51185f005b7dac052cb797af438c32c29b736fb12c63dd0e504445044a1ae9c10fd8171232ed7dcb08e9acaf4c569c4c16c5c47994118fc35ff7f03407dc7093fa7d3", 0x69, 0xfffffffffffffffd)
r2 = socket$inet(0x2, 0x4000000000000001, 0x0)
perf_event_open(&(0x7f0000000180)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
setsockopt$IP_VS_SO_SET_STARTDAEMON(r2, 0x0, 0x48b, &(0x7f0000000000)={0x2, 'bond0\x00'}, 0x18)
ioctl$FS_IOC_GETFLAGS(r1, 0x80046601, &(0x7f0000000300))
r3 = openat$cgroup_int(0xffffffffffffffff, &(0x7f0000000240)='memory.swap.max\x00', 0x2, 0x0)
times(&(0x7f0000000200))
setsockopt$IP_VS_SO_SET_EDIT(r2, 0x0, 0x483, &(0x7f0000000180)={0x0, @broadcast, 0x0, 0x0, 'ovf\x00', 0x0, 0x0, 0x61}, 0x2c)
r4 = socket(0x1e, 0x4, 0x0)
sync()
recvmmsg(r4, &(0x7f0000007680)=[{{&(0x7f00000006c0)=@xdp, 0x80, &(0x7f00000019c0)=[{&(0x7f0000001780)=""/65, 0x41}], 0x1}}], 0x1, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000001e000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, &(0x7f0000000040)="660f3a177c564b0f019a27dbbaa000ec66b9800000c00f326635000400000f30360f01dfba6100b81bffef66b9910300000f3236876a0066b9800000c00f326635002000000f30f226260f01df", 0x4d}], 0x1, 0x0, &(0x7f0000000300), 0x0)
sendfile(r3, r3, &(0x7f0000000540), 0x8)
clone(0x102001ffc, 0x0, 0xfffffffffffffffe, &(0x7f0000000280), 0xffffffffffffffff)
r5 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r5, 0x0, 0x80, &(0x7f00000001c0)=@broute={'broute\x00', 0x20, 0x1, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000540], 0x0, 0x0, &(0x7f0000000540)=ANY=[]}, 0x78)
semctl$IPC_RMID(0x0, 0x0, 0x10)

[  904.858004] IPVS: set_ctl: invalid protocol: 0 255.255.255.255:0
00:15:06 executing program 4:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f319bd070")
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r1, 0x6, 0x10000000013, &(0x7f0000d06000)=0x1, 0x4)
setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000000)='veth1\x00', 0x10)
connect$inet(r1, &(0x7f00000000c0)={0x2, 0x0, @loopback}, 0x10)
setsockopt$inet_tcp_int(r1, 0x6, 0x4000000000013, &(0x7f0000000180), 0x4)
setsockopt$sock_int(r1, 0x1, 0x3c, &(0x7f0000000240)=0x1, 0x4)
sendto$inet(r1, &(0x7f0000000080)=';', 0x1, 0x4000000, 0x0, 0x0)
sendto$unix(r1, &(0x7f0000000040), 0xfffffffffffffe75, 0x40047fd, 0x0, 0x0)

[  904.933948] audit: type=1400 audit(906.574:539): avc:  denied  { create } for  pid=28359 comm="syz-executor.2" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_crypto_socket permissive=1
00:15:06 executing program 5:
r0 = fanotify_init(0x0, 0x0)
fanotify_mark(r0, 0x5, 0x20, 0xffffffffffffffff, &(0x7f0000000300)='./file1\x00')

00:15:06 executing program 2:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000deb000)={0x2, 0x0, @dev}, 0x10)
r1 = socket$inet6(0xa, 0x2, 0x0)
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f00000002c0))
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
add_key(&(0x7f0000000080)='big_key\x00', &(0x7f00000000c0), &(0x7f0000000340)="46ac5128da090e4899c38028efeb85968ead969e21e33725a7edc030260cdb3ca79964a6e93ce51185f005b7dac052cb797af438c32c29b736fb12c63dd0e504445044a1ae9c10fd8171232ed7dcb08e9acaf4c569c4c16c5c47994118fc35ff7f03407dc7093fa7d3", 0x69, 0xfffffffffffffffd)
r2 = socket$inet(0x2, 0x4000000000000001, 0x0)
perf_event_open(&(0x7f0000000180)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
setsockopt$IP_VS_SO_SET_STARTDAEMON(r2, 0x0, 0x48b, &(0x7f0000000000)={0x2, 'bond0\x00'}, 0x18)
ioctl$FS_IOC_GETFLAGS(r1, 0x80046601, &(0x7f0000000300))
r3 = openat$cgroup_int(0xffffffffffffffff, &(0x7f0000000240)='memory.swap.max\x00', 0x2, 0x0)
times(&(0x7f0000000200))
setsockopt$IP_VS_SO_SET_EDIT(r2, 0x0, 0x483, &(0x7f0000000180)={0x0, @broadcast, 0x0, 0x0, 'ovf\x00', 0x0, 0x0, 0x61}, 0x2c)
r4 = socket(0x1e, 0x4, 0x0)
sync()
recvmmsg(r4, &(0x7f0000007680)=[{{&(0x7f00000006c0)=@xdp, 0x80, &(0x7f00000019c0)=[{&(0x7f0000001780)=""/65, 0x41}], 0x1}}], 0x1, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000001e000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, &(0x7f0000000040)="660f3a177c564b0f019a27dbbaa000ec66b9800000c00f326635000400000f30360f01dfba6100b81bffef66b9910300000f3236876a0066b9800000c00f326635002000000f30f226260f01df", 0x4d}], 0x1, 0x0, &(0x7f0000000300), 0x0)
sendfile(r3, r3, &(0x7f0000000540), 0x8)
clone(0x102001ffc, 0x0, 0xfffffffffffffffe, &(0x7f0000000280), 0xffffffffffffffff)
r5 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r5, 0x0, 0x80, &(0x7f00000001c0)=@broute={'broute\x00', 0x20, 0x1, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000540], 0x0, 0x0, &(0x7f0000000540)=ANY=[]}, 0x78)
semctl$IPC_RMID(0x0, 0x0, 0x10)

00:15:06 executing program 0:
socket$inet6(0xa, 0x3, 0xd)
syz_open_dev$sg(0x0, 0x0, 0x0)
syz_open_dev$sg(0x0, 0x0, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x5, &(0x7f00000001c0))
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000080)="baa100b000eef36cba2100ec66b9800000c00f326635001000000f30bad104ecc80080d267d9f8f30f1bb429000f20c06635200000000f22c067f3af", 0x3c}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_GET_MSR_INDEX_LIST(r1, 0xc004ae02, &(0x7f00000002c0)=ANY=[@ANYBLOB="0699"])
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
perf_event_open(&(0x7f0000000040)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
add_key$keyring(&(0x7f0000000000)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffb)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f000})
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[  904.991729] audit: type=1400 audit(906.574:540): avc:  denied  { getopt } for  pid=28359 comm="syz-executor.2" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_crypto_socket permissive=1
00:15:06 executing program 3:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
bind$bt_l2cap(r0, &(0x7f00000000c0), 0xe)
listen(r0, 0x0)
shutdown(r0, 0x0)

00:15:06 executing program 4:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f319bd070")
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r1, 0x6, 0x10000000013, &(0x7f0000d06000)=0x1, 0x4)
setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000000)='veth1\x00', 0x10)
connect$inet(r1, &(0x7f00000000c0)={0x2, 0x0, @loopback}, 0x10)
setsockopt$inet_tcp_int(r1, 0x6, 0x4000000000013, &(0x7f0000000180), 0x4)
setsockopt$sock_int(r1, 0x1, 0x3c, &(0x7f0000000240)=0x1, 0x4)
sendto$inet(r1, &(0x7f0000000080)=';', 0x1, 0x4000000, 0x0, 0x0)
sendto$unix(r1, &(0x7f0000000040), 0xfffffffffffffe75, 0x40047fd, 0x0, 0x0)

00:15:06 executing program 5:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$sock_SIOCETHTOOL(r0, 0x8922, &(0x7f0000000040)={'veth1_to_bridge\x00', &(0x7f0000000000)=@ethtool_regs})

[  905.112941] IPVS: set_ctl: invalid protocol: 0 255.255.255.255:0
00:15:06 executing program 0:
r0 = accept4$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x0, @multicast1}, &(0x7f00000000c0)=0x10, 0x80000)
setsockopt$inet_tcp_int(r0, 0x6, 0x11, &(0x7f0000000180)=0x6, 0x4)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCPKT(r1, 0x5420, &(0x7f0000000140)=0x3)
accept4$unix(0xffffffffffffff9c, &(0x7f0000000080)=@abs, &(0x7f0000000000)=0x6e, 0x800)
r2 = dup3(0xffffffffffffff9c, 0xffffffffffffff9c, 0x80000)
ioctl$TIOCGDEV(r2, 0x80045432, &(0x7f00000000c0))
r3 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070")
r4 = socket$inet6(0xa, 0x2000000080803, 0x1)
r5 = socket$nl_xfrm(0x10, 0x3, 0x6)
bind$netlink(r5, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc)
setsockopt$inet6_IPV6_XFRM_POLICY(r4, 0x29, 0x23, &(0x7f0000000100)={{{@in6=@local, @in=@multicast1, 0x0, 0x0, 0x0, 0x0, 0x2}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1, 0x4d2, 0x32}, 0x0, @in6, 0x0, 0x0, 0x0, 0x8464}}, 0xe8)
connect$inet6(r4, &(0x7f0000000040)={0xa, 0x0, 0x0, @ipv4={[], [], @local}}, 0x1c)
connect$inet6(r4, &(0x7f0000000000)={0xa, 0x4e21, 0x2, @empty, 0x7ff}, 0x1c)

[  905.175613] IPVS: sync thread started: state = BACKUP, mcast_ifn = bond0, syncid = 0, id = 0
[  905.189268] IPVS: set_ctl: invalid protocol: 0 255.255.255.255:0
00:15:06 executing program 3:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_emit_ethernet(0x36, &(0x7f0000000040)={@local, @dev, [], {@ipv4={0x800, {{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0xffffdd86, 0x0, 0x0, 0x0, @dev, @remote}, @icmp=@timestamp_reply}}}}, 0x0)

00:15:06 executing program 5:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$sock_SIOCETHTOOL(r0, 0x8922, &(0x7f0000000040)={'veth1_to_bridge\x00', &(0x7f0000000000)=@ethtool_regs})

00:15:06 executing program 4:
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
rt_sigprocmask(0x0, 0x0, 0x0, 0x0)
ioctl$SNDRV_RAWMIDI_IOCTL_PVERSION(0xffffffffffffffff, 0x80045700, 0x0)
r0 = open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0)
write$tun(r0, &(0x7f0000000500)=ANY=[@ANYRESDEC], 0x1)

00:15:07 executing program 1:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000deb000)={0x2, 0x0, @dev}, 0x10)
r1 = socket$inet6(0xa, 0x2, 0x0)
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f00000002c0))
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
add_key(&(0x7f0000000080)='big_key\x00', &(0x7f00000000c0), &(0x7f0000000340)="46ac5128da090e4899c38028efeb85968ead969e21e33725a7edc030260cdb3ca79964a6e93ce51185f005b7dac052cb797af438c32c29b736fb12c63dd0e504445044a1ae9c10fd8171232ed7dcb08e9acaf4c569c4c16c5c47994118fc35ff7f03407dc7093fa7d3", 0x69, 0xfffffffffffffffd)
r2 = socket$inet(0x2, 0x4000000000000001, 0x0)
perf_event_open(&(0x7f0000000180)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
setsockopt$IP_VS_SO_SET_STARTDAEMON(r2, 0x0, 0x48b, &(0x7f0000000000)={0x2, 'bond0\x00'}, 0x18)
ioctl$FS_IOC_GETFLAGS(r1, 0x80046601, &(0x7f0000000300))
r3 = openat$cgroup_int(0xffffffffffffffff, &(0x7f0000000240)='memory.swap.max\x00', 0x2, 0x0)
times(&(0x7f0000000200))
setsockopt$IP_VS_SO_SET_EDIT(r2, 0x0, 0x483, &(0x7f0000000180)={0x0, @broadcast, 0x0, 0x0, 'ovf\x00', 0x0, 0x0, 0x61}, 0x2c)
r4 = socket(0x1e, 0x4, 0x0)
sync()
recvmmsg(r4, &(0x7f0000007680)=[{{&(0x7f00000006c0)=@xdp, 0x80, &(0x7f00000019c0)=[{&(0x7f0000001780)=""/65, 0x41}], 0x1}}], 0x1, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000001e000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, &(0x7f0000000040)="660f3a177c564b0f019a27dbbaa000ec66b9800000c00f326635000400000f30360f01dfba6100b81bffef66b9910300000f3236876a0066b9800000c00f326635002000000f30f226260f01df", 0x4d}], 0x1, 0x0, &(0x7f0000000300), 0x0)
sendfile(r3, r3, &(0x7f0000000540), 0x8)
clone(0x102001ffc, 0x0, 0xfffffffffffffffe, &(0x7f0000000280), 0xffffffffffffffff)
r5 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r5, 0x0, 0x80, &(0x7f00000001c0)=@broute={'broute\x00', 0x20, 0x1, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000540], 0x0, 0x0, &(0x7f0000000540)=ANY=[]}, 0x78)
semctl$IPC_RMID(0x0, 0x0, 0x10)

00:15:07 executing program 3:
r0 = syz_open_dev$evdev(&(0x7f00000000c0)='/dev/input/event#\x00', 0x0, 0x0)
ioctl$EVIOCRMFF(r0, 0x400445a0, 0x0)

00:15:07 executing program 0:
r0 = accept4$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x0, @multicast1}, &(0x7f00000000c0)=0x10, 0x80000)
setsockopt$inet_tcp_int(r0, 0x6, 0x11, &(0x7f0000000180)=0x6, 0x4)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCPKT(r1, 0x5420, &(0x7f0000000140)=0x3)
accept4$unix(0xffffffffffffff9c, &(0x7f0000000080)=@abs, &(0x7f0000000000)=0x6e, 0x800)
r2 = dup3(0xffffffffffffff9c, 0xffffffffffffff9c, 0x80000)
ioctl$TIOCGDEV(r2, 0x80045432, &(0x7f00000000c0))
r3 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070")
r4 = socket$inet6(0xa, 0x2000000080803, 0x1)
r5 = socket$nl_xfrm(0x10, 0x3, 0x6)
bind$netlink(r5, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc)
setsockopt$inet6_IPV6_XFRM_POLICY(r4, 0x29, 0x23, &(0x7f0000000100)={{{@in6=@local, @in=@multicast1, 0x0, 0x0, 0x0, 0x0, 0x2}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1, 0x4d2, 0x32}, 0x0, @in6, 0x0, 0x0, 0x0, 0x8464}}, 0xe8)
connect$inet6(r4, &(0x7f0000000040)={0xa, 0x0, 0x0, @ipv4={[], [], @local}}, 0x1c)
connect$inet6(r4, &(0x7f0000000000)={0xa, 0x4e21, 0x2, @empty, 0x7ff}, 0x1c)

[  905.858637] IPVS: set_ctl: invalid protocol: 0 255.255.255.255:0
00:15:07 executing program 2:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000deb000)={0x2, 0x0, @dev}, 0x10)
r1 = socket$inet6(0xa, 0x2, 0x0)
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f00000002c0))
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
add_key(&(0x7f0000000080)='big_key\x00', &(0x7f00000000c0), &(0x7f0000000340)="46ac5128da090e4899c38028efeb85968ead969e21e33725a7edc030260cdb3ca79964a6e93ce51185f005b7dac052cb797af438c32c29b736fb12c63dd0e504445044a1ae9c10fd8171232ed7dcb08e9acaf4c569c4c16c5c47994118fc35ff7f03407dc7093fa7d3", 0x69, 0xfffffffffffffffd)
r2 = socket$inet(0x2, 0x4000000000000001, 0x0)
perf_event_open(&(0x7f0000000180)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
setsockopt$IP_VS_SO_SET_STARTDAEMON(r2, 0x0, 0x48b, &(0x7f0000000000)={0x2, 'bond0\x00'}, 0x18)
ioctl$FS_IOC_GETFLAGS(r1, 0x80046601, &(0x7f0000000300))
r3 = openat$cgroup_int(0xffffffffffffffff, &(0x7f0000000240)='memory.swap.max\x00', 0x2, 0x0)
times(&(0x7f0000000200))
setsockopt$IP_VS_SO_SET_EDIT(r2, 0x0, 0x483, &(0x7f0000000180)={0x0, @broadcast, 0x0, 0x0, 'ovf\x00', 0x0, 0x0, 0x61}, 0x2c)
r4 = socket(0x1e, 0x4, 0x0)
sync()
recvmmsg(r4, &(0x7f0000007680)=[{{&(0x7f00000006c0)=@xdp, 0x80, &(0x7f00000019c0)=[{&(0x7f0000001780)=""/65, 0x41}], 0x1}}], 0x1, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000001e000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, &(0x7f0000000040)="660f3a177c564b0f019a27dbbaa000ec66b9800000c00f326635000400000f30360f01dfba6100b81bffef66b9910300000f3236876a0066b9800000c00f326635002000000f30f226260f01df", 0x4d}], 0x1, 0x0, &(0x7f0000000300), 0x0)
sendfile(r3, r3, &(0x7f0000000540), 0x8)
clone(0x102001ffc, 0x0, 0xfffffffffffffffe, &(0x7f0000000280), 0xffffffffffffffff)
r5 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r5, 0x0, 0x80, &(0x7f00000001c0)=@broute={'broute\x00', 0x20, 0x1, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000540], 0x0, 0x0, &(0x7f0000000540)=ANY=[]}, 0x78)
semctl$IPC_RMID(0x0, 0x0, 0x10)

00:15:07 executing program 5:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$sock_SIOCETHTOOL(r0, 0x8922, &(0x7f0000000040)={'veth1_to_bridge\x00', &(0x7f0000000000)=@ethtool_regs})

00:15:07 executing program 4:
r0 = accept4$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x0, @multicast1}, &(0x7f00000000c0)=0x10, 0x80000)
setsockopt$inet_tcp_int(r0, 0x6, 0x11, &(0x7f0000000180)=0x6, 0x4)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCPKT(r1, 0x5420, &(0x7f0000000140)=0x3)
accept4$unix(0xffffffffffffff9c, &(0x7f0000000080)=@abs, &(0x7f0000000000)=0x6e, 0x800)
r2 = dup3(0xffffffffffffff9c, 0xffffffffffffff9c, 0x80000)
ioctl$TIOCGDEV(r2, 0x80045432, &(0x7f00000000c0))
r3 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070")
r4 = socket$inet6(0xa, 0x2000000080803, 0x1)
r5 = socket$nl_xfrm(0x10, 0x3, 0x6)
bind$netlink(r5, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc)
setsockopt$inet6_IPV6_XFRM_POLICY(r4, 0x29, 0x23, &(0x7f0000000100)={{{@in6=@local, @in=@multicast1, 0x0, 0x0, 0x0, 0x0, 0x2}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1, 0x4d2, 0x32}, 0x0, @in6, 0x0, 0x0, 0x0, 0x8464}}, 0xe8)
connect$inet6(r4, &(0x7f0000000040)={0xa, 0x0, 0x0, @ipv4={[], [], @local}}, 0x1c)
connect$inet6(r4, &(0x7f0000000000)={0xa, 0x4e21, 0x2, @empty, 0x7ff}, 0x1c)

00:15:07 executing program 3:
r0 = socket(0x1e, 0x4, 0x0)
ppoll(&(0x7f0000000000)=[{r0, 0x7}], 0x1, 0x0, 0x0, 0x0)

00:15:07 executing program 0:
r0 = accept4$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x0, @multicast1}, &(0x7f00000000c0)=0x10, 0x80000)
setsockopt$inet_tcp_int(r0, 0x6, 0x11, &(0x7f0000000180)=0x6, 0x4)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCPKT(r1, 0x5420, &(0x7f0000000140)=0x3)
accept4$unix(0xffffffffffffff9c, &(0x7f0000000080)=@abs, &(0x7f0000000000)=0x6e, 0x800)
r2 = dup3(0xffffffffffffff9c, 0xffffffffffffff9c, 0x80000)
ioctl$TIOCGDEV(r2, 0x80045432, &(0x7f00000000c0))
r3 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070")
r4 = socket$inet6(0xa, 0x2000000080803, 0x1)
r5 = socket$nl_xfrm(0x10, 0x3, 0x6)
bind$netlink(r5, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc)
setsockopt$inet6_IPV6_XFRM_POLICY(r4, 0x29, 0x23, &(0x7f0000000100)={{{@in6=@local, @in=@multicast1, 0x0, 0x0, 0x0, 0x0, 0x2}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1, 0x4d2, 0x32}, 0x0, @in6, 0x0, 0x0, 0x0, 0x8464}}, 0xe8)
connect$inet6(r4, &(0x7f0000000040)={0xa, 0x0, 0x0, @ipv4={[], [], @local}}, 0x1c)
connect$inet6(r4, &(0x7f0000000000)={0xa, 0x4e21, 0x2, @empty, 0x7ff}, 0x1c)

00:15:07 executing program 4:
r0 = accept4$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x0, @multicast1}, &(0x7f00000000c0)=0x10, 0x80000)
setsockopt$inet_tcp_int(r0, 0x6, 0x11, &(0x7f0000000180)=0x6, 0x4)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCPKT(r1, 0x5420, &(0x7f0000000140)=0x3)
accept4$unix(0xffffffffffffff9c, &(0x7f0000000080)=@abs, &(0x7f0000000000)=0x6e, 0x800)
r2 = dup3(0xffffffffffffff9c, 0xffffffffffffff9c, 0x80000)
ioctl$TIOCGDEV(r2, 0x80045432, &(0x7f00000000c0))
r3 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070")
r4 = socket$inet6(0xa, 0x2000000080803, 0x1)
r5 = socket$nl_xfrm(0x10, 0x3, 0x6)
bind$netlink(r5, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc)
setsockopt$inet6_IPV6_XFRM_POLICY(r4, 0x29, 0x23, &(0x7f0000000100)={{{@in6=@local, @in=@multicast1, 0x0, 0x0, 0x0, 0x0, 0x2}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1, 0x4d2, 0x32}, 0x0, @in6, 0x0, 0x0, 0x0, 0x8464}}, 0xe8)
connect$inet6(r4, &(0x7f0000000040)={0xa, 0x0, 0x0, @ipv4={[], [], @local}}, 0x1c)
connect$inet6(r4, &(0x7f0000000000)={0xa, 0x4e21, 0x2, @empty, 0x7ff}, 0x1c)

00:15:07 executing program 3:
r0 = socket(0x1e, 0x4, 0x0)
ppoll(&(0x7f0000000000)=[{r0, 0x7}], 0x1, 0x0, 0x0, 0x0)

00:15:07 executing program 5:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$sock_SIOCETHTOOL(r0, 0x8922, &(0x7f0000000040)={'veth1_to_bridge\x00', &(0x7f0000000000)=@ethtool_regs})

00:15:07 executing program 0:
r0 = accept4$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x0, @multicast1}, &(0x7f00000000c0)=0x10, 0x80000)
setsockopt$inet_tcp_int(r0, 0x6, 0x11, &(0x7f0000000180)=0x6, 0x4)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCPKT(r1, 0x5420, &(0x7f0000000140)=0x3)
accept4$unix(0xffffffffffffff9c, &(0x7f0000000080)=@abs, &(0x7f0000000000)=0x6e, 0x800)
r2 = dup3(0xffffffffffffff9c, 0xffffffffffffff9c, 0x80000)
ioctl$TIOCGDEV(r2, 0x80045432, &(0x7f00000000c0))
r3 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070")
r4 = socket$inet6(0xa, 0x2000000080803, 0x1)
r5 = socket$nl_xfrm(0x10, 0x3, 0x6)
bind$netlink(r5, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc)
setsockopt$inet6_IPV6_XFRM_POLICY(r4, 0x29, 0x23, &(0x7f0000000100)={{{@in6=@local, @in=@multicast1, 0x0, 0x0, 0x0, 0x0, 0x2}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1, 0x4d2, 0x32}, 0x0, @in6, 0x0, 0x0, 0x0, 0x8464}}, 0xe8)
connect$inet6(r4, &(0x7f0000000040)={0xa, 0x0, 0x0, @ipv4={[], [], @local}}, 0x1c)
connect$inet6(r4, &(0x7f0000000000)={0xa, 0x4e21, 0x2, @empty, 0x7ff}, 0x1c)

[  906.007564] IPVS: set_ctl: invalid protocol: 0 255.255.255.255:0
00:15:08 executing program 1:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000deb000)={0x2, 0x0, @dev}, 0x10)
r1 = socket$inet6(0xa, 0x2, 0x0)
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f00000002c0))
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
add_key(&(0x7f0000000080)='big_key\x00', &(0x7f00000000c0), &(0x7f0000000340)="46ac5128da090e4899c38028efeb85968ead969e21e33725a7edc030260cdb3ca79964a6e93ce51185f005b7dac052cb797af438c32c29b736fb12c63dd0e504445044a1ae9c10fd8171232ed7dcb08e9acaf4c569c4c16c5c47994118fc35ff7f03407dc7093fa7d3", 0x69, 0xfffffffffffffffd)
r2 = socket$inet(0x2, 0x4000000000000001, 0x0)
perf_event_open(&(0x7f0000000180)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
setsockopt$IP_VS_SO_SET_STARTDAEMON(r2, 0x0, 0x48b, &(0x7f0000000000)={0x2, 'bond0\x00'}, 0x18)
ioctl$FS_IOC_GETFLAGS(r1, 0x80046601, &(0x7f0000000300))
r3 = openat$cgroup_int(0xffffffffffffffff, &(0x7f0000000240)='memory.swap.max\x00', 0x2, 0x0)
times(&(0x7f0000000200))
setsockopt$IP_VS_SO_SET_EDIT(r2, 0x0, 0x483, &(0x7f0000000180)={0x0, @broadcast, 0x0, 0x0, 'ovf\x00', 0x0, 0x0, 0x61}, 0x2c)
r4 = socket(0x1e, 0x4, 0x0)
sync()
recvmmsg(r4, &(0x7f0000007680)=[{{&(0x7f00000006c0)=@xdp, 0x80, &(0x7f00000019c0)=[{&(0x7f0000001780)=""/65, 0x41}], 0x1}}], 0x1, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000001e000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, &(0x7f0000000040)="660f3a177c564b0f019a27dbbaa000ec66b9800000c00f326635000400000f30360f01dfba6100b81bffef66b9910300000f3236876a0066b9800000c00f326635002000000f30f226260f01df", 0x4d}], 0x1, 0x0, &(0x7f0000000300), 0x0)
sendfile(r3, r3, &(0x7f0000000540), 0x8)
clone(0x102001ffc, 0x0, 0xfffffffffffffffe, &(0x7f0000000280), 0xffffffffffffffff)
r5 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r5, 0x0, 0x80, &(0x7f00000001c0)=@broute={'broute\x00', 0x20, 0x1, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000540], 0x0, 0x0, &(0x7f0000000540)=ANY=[]}, 0x78)
semctl$IPC_RMID(0x0, 0x0, 0x10)

00:15:08 executing program 3:
r0 = socket(0x1e, 0x4, 0x0)
ppoll(&(0x7f0000000000)=[{r0, 0x7}], 0x1, 0x0, 0x0, 0x0)

00:15:08 executing program 4:
r0 = accept4$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x0, @multicast1}, &(0x7f00000000c0)=0x10, 0x80000)
setsockopt$inet_tcp_int(r0, 0x6, 0x11, &(0x7f0000000180)=0x6, 0x4)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCPKT(r1, 0x5420, &(0x7f0000000140)=0x3)
accept4$unix(0xffffffffffffff9c, &(0x7f0000000080)=@abs, &(0x7f0000000000)=0x6e, 0x800)
r2 = dup3(0xffffffffffffff9c, 0xffffffffffffff9c, 0x80000)
ioctl$TIOCGDEV(r2, 0x80045432, &(0x7f00000000c0))
r3 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070")
r4 = socket$inet6(0xa, 0x2000000080803, 0x1)
r5 = socket$nl_xfrm(0x10, 0x3, 0x6)
bind$netlink(r5, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc)
setsockopt$inet6_IPV6_XFRM_POLICY(r4, 0x29, 0x23, &(0x7f0000000100)={{{@in6=@local, @in=@multicast1, 0x0, 0x0, 0x0, 0x0, 0x2}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1, 0x4d2, 0x32}, 0x0, @in6, 0x0, 0x0, 0x0, 0x8464}}, 0xe8)
connect$inet6(r4, &(0x7f0000000040)={0xa, 0x0, 0x0, @ipv4={[], [], @local}}, 0x1c)
connect$inet6(r4, &(0x7f0000000000)={0xa, 0x4e21, 0x2, @empty, 0x7ff}, 0x1c)

00:15:08 executing program 2:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000deb000)={0x2, 0x0, @dev}, 0x10)
r1 = socket$inet6(0xa, 0x2, 0x0)
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f00000002c0))
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
add_key(&(0x7f0000000080)='big_key\x00', &(0x7f00000000c0), &(0x7f0000000340)="46ac5128da090e4899c38028efeb85968ead969e21e33725a7edc030260cdb3ca79964a6e93ce51185f005b7dac052cb797af438c32c29b736fb12c63dd0e504445044a1ae9c10fd8171232ed7dcb08e9acaf4c569c4c16c5c47994118fc35ff7f03407dc7093fa7d3", 0x69, 0xfffffffffffffffd)
r2 = socket$inet(0x2, 0x4000000000000001, 0x0)
perf_event_open(&(0x7f0000000180)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
setsockopt$IP_VS_SO_SET_STARTDAEMON(r2, 0x0, 0x48b, &(0x7f0000000000)={0x2, 'bond0\x00'}, 0x18)
ioctl$FS_IOC_GETFLAGS(r1, 0x80046601, &(0x7f0000000300))
r3 = openat$cgroup_int(0xffffffffffffffff, &(0x7f0000000240)='memory.swap.max\x00', 0x2, 0x0)
times(&(0x7f0000000200))
setsockopt$IP_VS_SO_SET_EDIT(r2, 0x0, 0x483, &(0x7f0000000180)={0x0, @broadcast, 0x0, 0x0, 'ovf\x00', 0x0, 0x0, 0x61}, 0x2c)
r4 = socket(0x1e, 0x4, 0x0)
sync()
recvmmsg(r4, &(0x7f0000007680)=[{{&(0x7f00000006c0)=@xdp, 0x80, &(0x7f00000019c0)=[{&(0x7f0000001780)=""/65, 0x41}], 0x1}}], 0x1, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000001e000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, &(0x7f0000000040)="660f3a177c564b0f019a27dbbaa000ec66b9800000c00f326635000400000f30360f01dfba6100b81bffef66b9910300000f3236876a0066b9800000c00f326635002000000f30f226260f01df", 0x4d}], 0x1, 0x0, &(0x7f0000000300), 0x0)
sendfile(r3, r3, &(0x7f0000000540), 0x8)
clone(0x102001ffc, 0x0, 0xfffffffffffffffe, &(0x7f0000000280), 0xffffffffffffffff)
r5 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r5, 0x0, 0x80, &(0x7f00000001c0)=@broute={'broute\x00', 0x20, 0x1, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000540], 0x0, 0x0, &(0x7f0000000540)=ANY=[]}, 0x78)
semctl$IPC_RMID(0x0, 0x0, 0x10)

00:15:08 executing program 5:
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000340)=@newsa={0x138, 0x10, 0x1, 0x0, 0x0, {{@in6=@remote, @in6=@local}, {@in=@broadcast, 0x0, 0x3c}, @in6=@mcast2, {}, {}, {}, 0x0, 0x0, 0x2}, [@algo_comp={0x48, 0x3, {{'deflate\x00'}}}]}, 0x138}}, 0x0)

00:15:08 executing program 0:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070")
r1 = socket$kcm(0xa, 0x3, 0x11)
setsockopt$sock_attach_bpf(r1, 0x29, 0x24, &(0x7f00000000c0), 0x4)
sendmsg$kcm(r1, &(0x7f0000000140)={&(0x7f0000000040)=@nl=@unspec={0x0, 0x0, 0x0, 0x80fe}, 0x80, &(0x7f0000003800)=[{&(0x7f0000000000)="f4001100002b2c25e994efd18498d66205baa68754a3000000000200000000000000000000ffffff8400000000000000", 0x30}], 0x1}, 0x0)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000040)={0xffffffffffffffff, 0x0, 0x0, 0x9}, 0x20)
r2 = socket$kcm(0xa, 0x922000000003, 0x11)
setsockopt$sock_attach_bpf(r2, 0x29, 0x24, &(0x7f00000000c0), 0x4)
sendmsg$kcm(r2, &(0x7f0000000140)={&(0x7f0000000040)=@nl=@unspec={0x0, 0x0, 0x0, 0x80fe}, 0x80, &(0x7f0000003800)=[{&(0x7f00000018c0)="f4001100002b2c25e994efd18498d66205baa68754a3000000000200000000000000000000ffffff8400000000000000c00195c1e2d4f32ebdbed8280238dd308252644135333a847bbaeb4e914b976c5b7e34", 0x53}], 0x1}, 0x0)

00:15:08 executing program 3:
r0 = socket(0x1e, 0x4, 0x0)
ppoll(&(0x7f0000000000)=[{r0, 0x7}], 0x1, 0x0, 0x0, 0x0)

00:15:08 executing program 4:
r0 = socket$kcm(0x10, 0x100000000000002, 0x0)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000100)="2300000052008152915a655067d7aee4050c0000136017edcaa30000000000008b1832", 0x23}], 0x1}, 0x0)
recvmmsg(r0, &(0x7f0000002900)=[{{0x0, 0x0, 0x0}}], 0x5a4, 0xc00e, 0x0)

[  906.724697] IPVS: set_ctl: invalid protocol: 0 255.255.255.255:0
00:15:08 executing program 5:
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000340)=@newsa={0x138, 0x10, 0x1, 0x0, 0x0, {{@in6=@remote, @in6=@local}, {@in=@broadcast, 0x0, 0x3c}, @in6=@mcast2, {}, {}, {}, 0x0, 0x0, 0x2}, [@algo_comp={0x48, 0x3, {{'deflate\x00'}}}]}, 0x138}}, 0x0)

00:15:08 executing program 3:
r0 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ubi_ctrl\x00', 0x0, 0x0)
ioctl$TIOCSTI(r0, 0x40186f40, 0x400000)

00:15:08 executing program 0:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070")
r1 = socket$kcm(0xa, 0x3, 0x11)
setsockopt$sock_attach_bpf(r1, 0x29, 0x24, &(0x7f00000000c0), 0x4)
sendmsg$kcm(r1, &(0x7f0000000140)={&(0x7f0000000040)=@nl=@unspec={0x0, 0x0, 0x0, 0x80fe}, 0x80, &(0x7f0000003800)=[{&(0x7f0000000000)="f4001100002b2c25e994efd18498d66205baa68754a3000000000200000000000000000000ffffff8400000000000000", 0x30}], 0x1}, 0x0)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000040)={0xffffffffffffffff, 0x0, 0x0, 0x9}, 0x20)
r2 = socket$kcm(0xa, 0x922000000003, 0x11)
setsockopt$sock_attach_bpf(r2, 0x29, 0x24, &(0x7f00000000c0), 0x4)
sendmsg$kcm(r2, &(0x7f0000000140)={&(0x7f0000000040)=@nl=@unspec={0x0, 0x0, 0x0, 0x80fe}, 0x80, &(0x7f0000003800)=[{&(0x7f00000018c0)="f4001100002b2c25e994efd18498d66205baa68754a3000000000200000000000000000000ffffff8400000000000000c00195c1e2d4f32ebdbed8280238dd308252644135333a847bbaeb4e914b976c5b7e34", 0x53}], 0x1}, 0x0)

[  906.873482] IPVS: set_ctl: invalid protocol: 0 255.255.255.255:0
00:15:08 executing program 5:
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000340)=@newsa={0x138, 0x10, 0x1, 0x0, 0x0, {{@in6=@remote, @in6=@local}, {@in=@broadcast, 0x0, 0x3c}, @in6=@mcast2, {}, {}, {}, 0x0, 0x0, 0x2}, [@algo_comp={0x48, 0x3, {{'deflate\x00'}}}]}, 0x138}}, 0x0)

00:15:09 executing program 3:
syz_open_dev$usbmon(0x0, 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$loop(&(0x7f00000001c0)='/dev/loop#\x00', 0x0, 0x0)
ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0)

00:15:09 executing program 4:
r0 = socket$kcm(0x10, 0x100000000000002, 0x0)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000100)="2300000052008152915a655067d7aee4050c0000136017edcaa30000000000008b1832", 0x23}], 0x1}, 0x0)
recvmmsg(r0, &(0x7f0000002900)=[{{0x0, 0x0, 0x0}}], 0x5a4, 0xc00e, 0x0)

00:15:09 executing program 0:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070")
r1 = socket$kcm(0xa, 0x3, 0x11)
setsockopt$sock_attach_bpf(r1, 0x29, 0x24, &(0x7f00000000c0), 0x4)
sendmsg$kcm(r1, &(0x7f0000000140)={&(0x7f0000000040)=@nl=@unspec={0x0, 0x0, 0x0, 0x80fe}, 0x80, &(0x7f0000003800)=[{&(0x7f0000000000)="f4001100002b2c25e994efd18498d66205baa68754a3000000000200000000000000000000ffffff8400000000000000", 0x30}], 0x1}, 0x0)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000040)={0xffffffffffffffff, 0x0, 0x0, 0x9}, 0x20)
r2 = socket$kcm(0xa, 0x922000000003, 0x11)
setsockopt$sock_attach_bpf(r2, 0x29, 0x24, &(0x7f00000000c0), 0x4)
sendmsg$kcm(r2, &(0x7f0000000140)={&(0x7f0000000040)=@nl=@unspec={0x0, 0x0, 0x0, 0x80fe}, 0x80, &(0x7f0000003800)=[{&(0x7f00000018c0)="f4001100002b2c25e994efd18498d66205baa68754a3000000000200000000000000000000ffffff8400000000000000c00195c1e2d4f32ebdbed8280238dd308252644135333a847bbaeb4e914b976c5b7e34", 0x53}], 0x1}, 0x0)

00:15:09 executing program 4:
r0 = socket$kcm(0x10, 0x100000000000002, 0x0)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000100)="2300000052008152915a655067d7aee4050c0000136017edcaa30000000000008b1832", 0x23}], 0x1}, 0x0)
recvmmsg(r0, &(0x7f0000002900)=[{{0x0, 0x0, 0x0}}], 0x5a4, 0xc00e, 0x0)

00:15:09 executing program 3:
syz_emit_ethernet(0x7a, &(0x7f0000000180)={@broadcast, @dev, [], {@ipv6={0x86dd, {0x0, 0x6, "c7e5e0", 0x44, 0x0, 0x0, @loopback, @loopback, {[], @gre}}}}}, 0x0)

00:15:09 executing program 5:
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000340)=@newsa={0x138, 0x10, 0x1, 0x0, 0x0, {{@in6=@remote, @in6=@local}, {@in=@broadcast, 0x0, 0x3c}, @in6=@mcast2, {}, {}, {}, 0x0, 0x0, 0x2}, [@algo_comp={0x48, 0x3, {{'deflate\x00'}}}]}, 0x138}}, 0x0)

00:15:09 executing program 2:
syz_execute_func(&(0x7f0000000000)="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")
mmap(&(0x7f0000000000/0xa000)=nil, 0xa000, 0x0, 0x2172, 0xffffffffffffffff, 0x0)

00:15:09 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000340)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000240)=0x7)
ioctl$VT_ACTIVATE(r0, 0x8924, 0x0)

00:15:09 executing program 0:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070")
r1 = socket$kcm(0xa, 0x3, 0x11)
setsockopt$sock_attach_bpf(r1, 0x29, 0x24, &(0x7f00000000c0), 0x4)
sendmsg$kcm(r1, &(0x7f0000000140)={&(0x7f0000000040)=@nl=@unspec={0x0, 0x0, 0x0, 0x80fe}, 0x80, &(0x7f0000003800)=[{&(0x7f0000000000)="f4001100002b2c25e994efd18498d66205baa68754a3000000000200000000000000000000ffffff8400000000000000", 0x30}], 0x1}, 0x0)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000040)={0xffffffffffffffff, 0x0, 0x0, 0x9}, 0x20)
r2 = socket$kcm(0xa, 0x922000000003, 0x11)
setsockopt$sock_attach_bpf(r2, 0x29, 0x24, &(0x7f00000000c0), 0x4)
sendmsg$kcm(r2, &(0x7f0000000140)={&(0x7f0000000040)=@nl=@unspec={0x0, 0x0, 0x0, 0x80fe}, 0x80, &(0x7f0000003800)=[{&(0x7f00000018c0)="f4001100002b2c25e994efd18498d66205baa68754a3000000000200000000000000000000ffffff8400000000000000c00195c1e2d4f32ebdbed8280238dd308252644135333a847bbaeb4e914b976c5b7e34", 0x53}], 0x1}, 0x0)

00:15:09 executing program 3:
syz_emit_ethernet(0x7a, &(0x7f0000000180)={@broadcast, @dev, [], {@ipv6={0x86dd, {0x0, 0x6, "c7e5e0", 0x44, 0x0, 0x0, @loopback, @loopback, {[], @gre}}}}}, 0x0)

00:15:09 executing program 1:
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
mount(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f000000c000)='ramfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000140)='./file0\x00')
mkdir(&(0x7f0000000340)='./control\x00', 0x0)
creat(&(0x7f0000000040)='./control/file0\x00', 0x0)
r0 = open(&(0x7f0000000380)='./control\x00', 0x0, 0x0)
unlinkat(r0, &(0x7f0000000080)='./file0\x00', 0x0)
mkdir(&(0x7f0000fd5ff8)='./file0\x00', 0x0)
rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000240)='./control\x00')

00:15:09 executing program 5:
r0 = socket$alg(0x26, 0x5, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r1, 0x1000008912, &(0x7f0000000080)="0adc1f123c123f319bd070")
bind$alg(r0, &(0x7f0000001100)={0x26, 'skcipher\x00', 0x0, 0x0, 'cfb(twofish)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10)
r2 = accept$alg(r0, 0x0, 0x0)
write$binfmt_script(r2, &(0x7f0000000600)=ANY=[], 0xfec8)
recvmmsg(r2, &(0x7f0000007e00)=[{{0x0, 0x0, &(0x7f0000004700)=[{&(0x7f0000003580)=""/4096, 0x13e8}], 0x1}}], 0x1c, 0x0, 0x0)

00:15:09 executing program 2:
getsockopt$inet_sctp_SCTP_ADAPTATION_LAYER(0xffffffffffffffff, 0x84, 0x7, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mkdir(&(0x7f0000000040)='./file0\x00', 0x0)
mount$bpf(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000140)='bpf\x00', 0x0, 0x0)
mkdir(&(0x7f00000000c0)='./file0/file0\x00', 0x0)
mount$bpf(0x0, &(0x7f00000002c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bpf(0x0, &(0x7f00000003c0)='./file0/file0\x00', 0x0, 0x80000, 0x0)
mount$bpf(0x20000000, &(0x7f0000000300)='./file0/file0\x00', 0x0, 0x5004, 0x0)
mount$bpf(0x20000000, &(0x7f00000004c0)='./file0/file0\x00', 0x0, 0x588e, 0x0)
mount$bpf(0x0, &(0x7f00000005c0)='./file0/file0\x00', &(0x7f0000000a40)='bpf\x00', 0x0, 0x0)
umount2(&(0x7f0000000800)='./file0\x00', 0x0)
openat$vicodec0(0xffffffffffffff9c, &(0x7f0000000580)='/dev/video36\x00', 0x2, 0x0)
r0 = syz_open_dev$media(&(0x7f0000000040)='/dev/media#\x00', 0x0, 0x0)
close(0xffffffffffffffff)
ioctl$PPPIOCSFLAGS1(r0, 0x40047459, &(0x7f0000000000)=0x2000000)
ioctl$DRM_IOCTL_DMA(r0, 0xc0406429, &(0x7f0000000280)={0x0, 0x4, &(0x7f0000000180)=[0x0, 0x0, 0x4227, 0x7f], &(0x7f00000001c0)=[0x0, 0xd8], 0x0, 0x0, 0x73, 0x0, 0x0})
ioctl$TCSETAF(0xffffffffffffffff, 0x5408, 0x0)

00:15:09 executing program 3:
syz_emit_ethernet(0x7a, &(0x7f0000000180)={@broadcast, @dev, [], {@ipv6={0x86dd, {0x0, 0x6, "c7e5e0", 0x44, 0x0, 0x0, @loopback, @loopback, {[], @gre}}}}}, 0x0)

00:15:09 executing program 4:
r0 = socket$kcm(0x10, 0x100000000000002, 0x0)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000100)="2300000052008152915a655067d7aee4050c0000136017edcaa30000000000008b1832", 0x23}], 0x1}, 0x0)
recvmmsg(r0, &(0x7f0000002900)=[{{0x0, 0x0, 0x0}}], 0x5a4, 0xc00e, 0x0)

00:15:09 executing program 0:
r0 = openat$zero(0xffffffffffffff9c, 0x0, 0x0, 0x0)
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
getsockopt$inet_buf(r0, 0x0, 0x0, &(0x7f0000000200)=""/153, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sysfs$2(0x2, 0x0, 0x0)
sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0)
ioctl$VIDIOC_G_PRIORITY(0xffffffffffffffff, 0x80045643, 0x0)
unshare(0x40000000)

00:15:09 executing program 1:
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
mount(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f000000c000)='ramfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000140)='./file0\x00')
mkdir(&(0x7f0000000340)='./control\x00', 0x0)
creat(&(0x7f0000000040)='./control/file0\x00', 0x0)
r0 = open(&(0x7f0000000380)='./control\x00', 0x0, 0x0)
unlinkat(r0, &(0x7f0000000080)='./file0\x00', 0x0)
mkdir(&(0x7f0000fd5ff8)='./file0\x00', 0x0)
rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000240)='./control\x00')

[  908.010042] IPVS: ftp: loaded support on port[0] = 21
00:15:09 executing program 5:
r0 = socket$alg(0x26, 0x5, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r1, 0x1000008912, &(0x7f0000000080)="0adc1f123c123f319bd070")
bind$alg(r0, &(0x7f0000001100)={0x26, 'skcipher\x00', 0x0, 0x0, 'cfb(twofish)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10)
r2 = accept$alg(r0, 0x0, 0x0)
write$binfmt_script(r2, &(0x7f0000000600)=ANY=[], 0xfec8)
recvmmsg(r2, &(0x7f0000007e00)=[{{0x0, 0x0, &(0x7f0000004700)=[{&(0x7f0000003580)=""/4096, 0x13e8}], 0x1}}], 0x1c, 0x0, 0x0)

00:15:09 executing program 3:
syz_emit_ethernet(0x7a, &(0x7f0000000180)={@broadcast, @dev, [], {@ipv6={0x86dd, {0x0, 0x6, "c7e5e0", 0x44, 0x0, 0x0, @loopback, @loopback, {[], @gre}}}}}, 0x0)

00:15:09 executing program 4:
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
mount(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f000000c000)='ramfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000140)='./file0\x00')
mkdir(&(0x7f0000000340)='./control\x00', 0x0)
creat(&(0x7f0000000040)='./control/file0\x00', 0x0)
r0 = open(&(0x7f0000000380)='./control\x00', 0x0, 0x0)
unlinkat(r0, &(0x7f0000000080)='./file0\x00', 0x0)
mkdir(&(0x7f0000fd5ff8)='./file0\x00', 0x0)
rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000240)='./control\x00')

[  908.172222] net_ratelimit: 24 callbacks suppressed
[  908.172231] protocol 88fb is buggy, dev hsr_slave_0
[  908.172263] protocol 88fb is buggy, dev hsr_slave_0
[  908.177275] protocol 88fb is buggy, dev hsr_slave_1
[  908.182353] protocol 88fb is buggy, dev hsr_slave_1
00:15:09 executing program 2:
getsockopt$inet_sctp_SCTP_ADAPTATION_LAYER(0xffffffffffffffff, 0x84, 0x7, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mkdir(&(0x7f0000000040)='./file0\x00', 0x0)
mount$bpf(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000140)='bpf\x00', 0x0, 0x0)
mkdir(&(0x7f00000000c0)='./file0/file0\x00', 0x0)
mount$bpf(0x0, &(0x7f00000002c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bpf(0x0, &(0x7f00000003c0)='./file0/file0\x00', 0x0, 0x80000, 0x0)
mount$bpf(0x20000000, &(0x7f0000000300)='./file0/file0\x00', 0x0, 0x5004, 0x0)
mount$bpf(0x20000000, &(0x7f00000004c0)='./file0/file0\x00', 0x0, 0x588e, 0x0)
mount$bpf(0x0, &(0x7f00000005c0)='./file0/file0\x00', &(0x7f0000000a40)='bpf\x00', 0x0, 0x0)
umount2(&(0x7f0000000800)='./file0\x00', 0x0)
openat$vicodec0(0xffffffffffffff9c, &(0x7f0000000580)='/dev/video36\x00', 0x2, 0x0)
r0 = syz_open_dev$media(&(0x7f0000000040)='/dev/media#\x00', 0x0, 0x0)
close(0xffffffffffffffff)
ioctl$PPPIOCSFLAGS1(r0, 0x40047459, &(0x7f0000000000)=0x2000000)
ioctl$DRM_IOCTL_DMA(r0, 0xc0406429, &(0x7f0000000280)={0x0, 0x4, &(0x7f0000000180)=[0x0, 0x0, 0x4227, 0x7f], &(0x7f00000001c0)=[0x0, 0xd8], 0x0, 0x0, 0x73, 0x0, 0x0})
ioctl$TCSETAF(0xffffffffffffffff, 0x5408, 0x0)

00:15:09 executing program 3:
getsockopt$inet_sctp_SCTP_ADAPTATION_LAYER(0xffffffffffffffff, 0x84, 0x7, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mkdir(&(0x7f0000000040)='./file0\x00', 0x0)
mount$bpf(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000140)='bpf\x00', 0x0, 0x0)
mkdir(&(0x7f00000000c0)='./file0/file0\x00', 0x0)
mount$bpf(0x0, &(0x7f00000002c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bpf(0x0, &(0x7f00000003c0)='./file0/file0\x00', 0x0, 0x80000, 0x0)
mount$bpf(0x20000000, &(0x7f0000000300)='./file0/file0\x00', 0x0, 0x5004, 0x0)
mount$bpf(0x20000000, &(0x7f00000004c0)='./file0/file0\x00', 0x0, 0x588e, 0x0)
mount$bpf(0x0, &(0x7f00000005c0)='./file0/file0\x00', &(0x7f0000000a40)='bpf\x00', 0x0, 0x0)
umount2(&(0x7f0000000800)='./file0\x00', 0x0)
openat$vicodec0(0xffffffffffffff9c, &(0x7f0000000580)='/dev/video36\x00', 0x2, 0x0)
r0 = syz_open_dev$media(&(0x7f0000000040)='/dev/media#\x00', 0x0, 0x0)
close(0xffffffffffffffff)
ioctl$PPPIOCSFLAGS1(r0, 0x40047459, &(0x7f0000000000)=0x2000000)
ioctl$DRM_IOCTL_DMA(r0, 0xc0406429, &(0x7f0000000280)={0x0, 0x4, &(0x7f0000000180)=[0x0, 0x0, 0x4227, 0x7f], &(0x7f00000001c0)=[0x0, 0xd8], 0x0, 0x0, 0x73, 0x0, 0x0})
ioctl$TCSETAF(0xffffffffffffffff, 0x5408, 0x0)

00:15:09 executing program 1:
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
mount(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f000000c000)='ramfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000140)='./file0\x00')
mkdir(&(0x7f0000000340)='./control\x00', 0x0)
creat(&(0x7f0000000040)='./control/file0\x00', 0x0)
r0 = open(&(0x7f0000000380)='./control\x00', 0x0, 0x0)
unlinkat(r0, &(0x7f0000000080)='./file0\x00', 0x0)
mkdir(&(0x7f0000fd5ff8)='./file0\x00', 0x0)
rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000240)='./control\x00')

00:15:10 executing program 5:
r0 = socket$alg(0x26, 0x5, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r1, 0x1000008912, &(0x7f0000000080)="0adc1f123c123f319bd070")
bind$alg(r0, &(0x7f0000001100)={0x26, 'skcipher\x00', 0x0, 0x0, 'cfb(twofish)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10)
r2 = accept$alg(r0, 0x0, 0x0)
write$binfmt_script(r2, &(0x7f0000000600)=ANY=[], 0xfec8)
recvmmsg(r2, &(0x7f0000007e00)=[{{0x0, 0x0, &(0x7f0000004700)=[{&(0x7f0000003580)=""/4096, 0x13e8}], 0x1}}], 0x1c, 0x0, 0x0)

00:15:10 executing program 4:
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
mount(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f000000c000)='ramfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000140)='./file0\x00')
mkdir(&(0x7f0000000340)='./control\x00', 0x0)
creat(&(0x7f0000000040)='./control/file0\x00', 0x0)
r0 = open(&(0x7f0000000380)='./control\x00', 0x0, 0x0)
unlinkat(r0, &(0x7f0000000080)='./file0\x00', 0x0)
mkdir(&(0x7f0000fd5ff8)='./file0\x00', 0x0)
rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000240)='./control\x00')

[  908.450755] IPVS: ftp: loaded support on port[0] = 21
00:15:10 executing program 5:
r0 = socket$alg(0x26, 0x5, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r1, 0x1000008912, &(0x7f0000000080)="0adc1f123c123f319bd070")
bind$alg(r0, &(0x7f0000001100)={0x26, 'skcipher\x00', 0x0, 0x0, 'cfb(twofish)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10)
r2 = accept$alg(r0, 0x0, 0x0)
write$binfmt_script(r2, &(0x7f0000000600)=ANY=[], 0xfec8)
recvmmsg(r2, &(0x7f0000007e00)=[{{0x0, 0x0, &(0x7f0000004700)=[{&(0x7f0000003580)=""/4096, 0x13e8}], 0x1}}], 0x1c, 0x0, 0x0)

00:15:10 executing program 0:
r0 = openat$zero(0xffffffffffffff9c, 0x0, 0x0, 0x0)
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
getsockopt$inet_buf(r0, 0x0, 0x0, &(0x7f0000000200)=""/153, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sysfs$2(0x2, 0x0, 0x0)
sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0)
ioctl$VIDIOC_G_PRIORITY(0xffffffffffffffff, 0x80045643, 0x0)
unshare(0x40000000)

[  908.658099] IPVS: ftp: loaded support on port[0] = 21
00:15:10 executing program 4:
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
mount(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f000000c000)='ramfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000140)='./file0\x00')
mkdir(&(0x7f0000000340)='./control\x00', 0x0)
creat(&(0x7f0000000040)='./control/file0\x00', 0x0)
r0 = open(&(0x7f0000000380)='./control\x00', 0x0, 0x0)
unlinkat(r0, &(0x7f0000000080)='./file0\x00', 0x0)
mkdir(&(0x7f0000fd5ff8)='./file0\x00', 0x0)
rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000240)='./control\x00')

00:15:10 executing program 1:
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
mount(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f000000c000)='ramfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000140)='./file0\x00')
mkdir(&(0x7f0000000340)='./control\x00', 0x0)
creat(&(0x7f0000000040)='./control/file0\x00', 0x0)
r0 = open(&(0x7f0000000380)='./control\x00', 0x0, 0x0)
unlinkat(r0, &(0x7f0000000080)='./file0\x00', 0x0)
mkdir(&(0x7f0000fd5ff8)='./file0\x00', 0x0)
rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000240)='./control\x00')

00:15:10 executing program 3:
getsockopt$inet_sctp_SCTP_ADAPTATION_LAYER(0xffffffffffffffff, 0x84, 0x7, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mkdir(&(0x7f0000000040)='./file0\x00', 0x0)
mount$bpf(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000140)='bpf\x00', 0x0, 0x0)
mkdir(&(0x7f00000000c0)='./file0/file0\x00', 0x0)
mount$bpf(0x0, &(0x7f00000002c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bpf(0x0, &(0x7f00000003c0)='./file0/file0\x00', 0x0, 0x80000, 0x0)
mount$bpf(0x20000000, &(0x7f0000000300)='./file0/file0\x00', 0x0, 0x5004, 0x0)
mount$bpf(0x20000000, &(0x7f00000004c0)='./file0/file0\x00', 0x0, 0x588e, 0x0)
mount$bpf(0x0, &(0x7f00000005c0)='./file0/file0\x00', &(0x7f0000000a40)='bpf\x00', 0x0, 0x0)
umount2(&(0x7f0000000800)='./file0\x00', 0x0)
openat$vicodec0(0xffffffffffffff9c, &(0x7f0000000580)='/dev/video36\x00', 0x2, 0x0)
r0 = syz_open_dev$media(&(0x7f0000000040)='/dev/media#\x00', 0x0, 0x0)
close(0xffffffffffffffff)
ioctl$PPPIOCSFLAGS1(r0, 0x40047459, &(0x7f0000000000)=0x2000000)
ioctl$DRM_IOCTL_DMA(r0, 0xc0406429, &(0x7f0000000280)={0x0, 0x4, &(0x7f0000000180)=[0x0, 0x0, 0x4227, 0x7f], &(0x7f00000001c0)=[0x0, 0xd8], 0x0, 0x0, 0x73, 0x0, 0x0})
ioctl$TCSETAF(0xffffffffffffffff, 0x5408, 0x0)

00:15:10 executing program 4:
getsockopt$inet_sctp_SCTP_ADAPTATION_LAYER(0xffffffffffffffff, 0x84, 0x7, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mkdir(&(0x7f0000000040)='./file0\x00', 0x0)
mount$bpf(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000140)='bpf\x00', 0x0, 0x0)
mkdir(&(0x7f00000000c0)='./file0/file0\x00', 0x0)
mount$bpf(0x0, &(0x7f00000002c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bpf(0x0, &(0x7f00000003c0)='./file0/file0\x00', 0x0, 0x80000, 0x0)
mount$bpf(0x20000000, &(0x7f0000000300)='./file0/file0\x00', 0x0, 0x5004, 0x0)
mount$bpf(0x20000000, &(0x7f00000004c0)='./file0/file0\x00', 0x0, 0x588e, 0x0)
mount$bpf(0x0, &(0x7f00000005c0)='./file0/file0\x00', &(0x7f0000000a40)='bpf\x00', 0x0, 0x0)
umount2(&(0x7f0000000800)='./file0\x00', 0x0)
openat$vicodec0(0xffffffffffffff9c, &(0x7f0000000580)='/dev/video36\x00', 0x2, 0x0)
r0 = syz_open_dev$media(&(0x7f0000000040)='/dev/media#\x00', 0x0, 0x0)
close(0xffffffffffffffff)
ioctl$PPPIOCSFLAGS1(r0, 0x40047459, &(0x7f0000000000)=0x2000000)
ioctl$DRM_IOCTL_DMA(r0, 0xc0406429, &(0x7f0000000280)={0x0, 0x4, &(0x7f0000000180)=[0x0, 0x0, 0x4227, 0x7f], &(0x7f00000001c0)=[0x0, 0xd8], 0x0, 0x0, 0x73, 0x0, 0x0})
ioctl$TCSETAF(0xffffffffffffffff, 0x5408, 0x0)

00:15:10 executing program 2:
getsockopt$inet_sctp_SCTP_ADAPTATION_LAYER(0xffffffffffffffff, 0x84, 0x7, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mkdir(&(0x7f0000000040)='./file0\x00', 0x0)
mount$bpf(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000140)='bpf\x00', 0x0, 0x0)
mkdir(&(0x7f00000000c0)='./file0/file0\x00', 0x0)
mount$bpf(0x0, &(0x7f00000002c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bpf(0x0, &(0x7f00000003c0)='./file0/file0\x00', 0x0, 0x80000, 0x0)
mount$bpf(0x20000000, &(0x7f0000000300)='./file0/file0\x00', 0x0, 0x5004, 0x0)
mount$bpf(0x20000000, &(0x7f00000004c0)='./file0/file0\x00', 0x0, 0x588e, 0x0)
mount$bpf(0x0, &(0x7f00000005c0)='./file0/file0\x00', &(0x7f0000000a40)='bpf\x00', 0x0, 0x0)
umount2(&(0x7f0000000800)='./file0\x00', 0x0)
openat$vicodec0(0xffffffffffffff9c, &(0x7f0000000580)='/dev/video36\x00', 0x2, 0x0)
r0 = syz_open_dev$media(&(0x7f0000000040)='/dev/media#\x00', 0x0, 0x0)
close(0xffffffffffffffff)
ioctl$PPPIOCSFLAGS1(r0, 0x40047459, &(0x7f0000000000)=0x2000000)
ioctl$DRM_IOCTL_DMA(r0, 0xc0406429, &(0x7f0000000280)={0x0, 0x4, &(0x7f0000000180)=[0x0, 0x0, 0x4227, 0x7f], &(0x7f00000001c0)=[0x0, 0xd8], 0x0, 0x0, 0x73, 0x0, 0x0})
ioctl$TCSETAF(0xffffffffffffffff, 0x5408, 0x0)

[  908.972197] protocol 88fb is buggy, dev hsr_slave_0
[  908.977385] protocol 88fb is buggy, dev hsr_slave_1
[  908.982744] protocol 88fb is buggy, dev hsr_slave_0
[  908.988019] protocol 88fb is buggy, dev hsr_slave_1
00:15:10 executing program 1:
getsockopt$inet_sctp_SCTP_ADAPTATION_LAYER(0xffffffffffffffff, 0x84, 0x7, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mkdir(&(0x7f0000000040)='./file0\x00', 0x0)
mount$bpf(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000140)='bpf\x00', 0x0, 0x0)
mkdir(&(0x7f00000000c0)='./file0/file0\x00', 0x0)
mount$bpf(0x0, &(0x7f00000002c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bpf(0x0, &(0x7f00000003c0)='./file0/file0\x00', 0x0, 0x80000, 0x0)
mount$bpf(0x20000000, &(0x7f0000000300)='./file0/file0\x00', 0x0, 0x5004, 0x0)
mount$bpf(0x20000000, &(0x7f00000004c0)='./file0/file0\x00', 0x0, 0x588e, 0x0)
mount$bpf(0x0, &(0x7f00000005c0)='./file0/file0\x00', &(0x7f0000000a40)='bpf\x00', 0x0, 0x0)
umount2(&(0x7f0000000800)='./file0\x00', 0x0)
openat$vicodec0(0xffffffffffffff9c, &(0x7f0000000580)='/dev/video36\x00', 0x2, 0x0)
r0 = syz_open_dev$media(&(0x7f0000000040)='/dev/media#\x00', 0x0, 0x0)
close(0xffffffffffffffff)
ioctl$PPPIOCSFLAGS1(r0, 0x40047459, &(0x7f0000000000)=0x2000000)
ioctl$DRM_IOCTL_DMA(r0, 0xc0406429, &(0x7f0000000280)={0x0, 0x4, &(0x7f0000000180)=[0x0, 0x0, 0x4227, 0x7f], &(0x7f00000001c0)=[0x0, 0xd8], 0x0, 0x0, 0x73, 0x0, 0x0})
ioctl$TCSETAF(0xffffffffffffffff, 0x5408, 0x0)

00:15:10 executing program 5:
getsockopt$inet_sctp_SCTP_ADAPTATION_LAYER(0xffffffffffffffff, 0x84, 0x7, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mkdir(&(0x7f0000000040)='./file0\x00', 0x0)
mount$bpf(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000140)='bpf\x00', 0x0, 0x0)
mkdir(&(0x7f00000000c0)='./file0/file0\x00', 0x0)
mount$bpf(0x0, &(0x7f00000002c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bpf(0x0, &(0x7f00000003c0)='./file0/file0\x00', 0x0, 0x80000, 0x0)
mount$bpf(0x20000000, &(0x7f0000000300)='./file0/file0\x00', 0x0, 0x5004, 0x0)
mount$bpf(0x20000000, &(0x7f00000004c0)='./file0/file0\x00', 0x0, 0x588e, 0x0)
mount$bpf(0x0, &(0x7f00000005c0)='./file0/file0\x00', &(0x7f0000000a40)='bpf\x00', 0x0, 0x0)
umount2(&(0x7f0000000800)='./file0\x00', 0x0)
openat$vicodec0(0xffffffffffffff9c, &(0x7f0000000580)='/dev/video36\x00', 0x2, 0x0)
r0 = syz_open_dev$media(&(0x7f0000000040)='/dev/media#\x00', 0x0, 0x0)
close(0xffffffffffffffff)
ioctl$PPPIOCSFLAGS1(r0, 0x40047459, &(0x7f0000000000)=0x2000000)
ioctl$DRM_IOCTL_DMA(r0, 0xc0406429, &(0x7f0000000280)={0x0, 0x4, &(0x7f0000000180)=[0x0, 0x0, 0x4227, 0x7f], &(0x7f00000001c0)=[0x0, 0xd8], 0x0, 0x0, 0x73, 0x0, 0x0})
ioctl$TCSETAF(0xffffffffffffffff, 0x5408, 0x0)

00:15:10 executing program 0:
r0 = openat$zero(0xffffffffffffff9c, 0x0, 0x0, 0x0)
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
getsockopt$inet_buf(r0, 0x0, 0x0, &(0x7f0000000200)=""/153, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sysfs$2(0x2, 0x0, 0x0)
sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0)
ioctl$VIDIOC_G_PRIORITY(0xffffffffffffffff, 0x80045643, 0x0)
unshare(0x40000000)

[  909.133485] protocol 88fb is buggy, dev hsr_slave_0
[  909.138711] protocol 88fb is buggy, dev hsr_slave_1
[  909.297988] IPVS: ftp: loaded support on port[0] = 21
00:15:11 executing program 5:
getsockopt$inet_sctp_SCTP_ADAPTATION_LAYER(0xffffffffffffffff, 0x84, 0x7, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mkdir(&(0x7f0000000040)='./file0\x00', 0x0)
mount$bpf(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000140)='bpf\x00', 0x0, 0x0)
mkdir(&(0x7f00000000c0)='./file0/file0\x00', 0x0)
mount$bpf(0x0, &(0x7f00000002c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bpf(0x0, &(0x7f00000003c0)='./file0/file0\x00', 0x0, 0x80000, 0x0)
mount$bpf(0x20000000, &(0x7f0000000300)='./file0/file0\x00', 0x0, 0x5004, 0x0)
mount$bpf(0x20000000, &(0x7f00000004c0)='./file0/file0\x00', 0x0, 0x588e, 0x0)
mount$bpf(0x0, &(0x7f00000005c0)='./file0/file0\x00', &(0x7f0000000a40)='bpf\x00', 0x0, 0x0)
umount2(&(0x7f0000000800)='./file0\x00', 0x0)
openat$vicodec0(0xffffffffffffff9c, &(0x7f0000000580)='/dev/video36\x00', 0x2, 0x0)
r0 = syz_open_dev$media(&(0x7f0000000040)='/dev/media#\x00', 0x0, 0x0)
close(0xffffffffffffffff)
ioctl$PPPIOCSFLAGS1(r0, 0x40047459, &(0x7f0000000000)=0x2000000)
ioctl$DRM_IOCTL_DMA(r0, 0xc0406429, &(0x7f0000000280)={0x0, 0x4, &(0x7f0000000180)=[0x0, 0x0, 0x4227, 0x7f], &(0x7f00000001c0)=[0x0, 0xd8], 0x0, 0x0, 0x73, 0x0, 0x0})
ioctl$TCSETAF(0xffffffffffffffff, 0x5408, 0x0)

00:15:11 executing program 1:
getsockopt$inet_sctp_SCTP_ADAPTATION_LAYER(0xffffffffffffffff, 0x84, 0x7, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mkdir(&(0x7f0000000040)='./file0\x00', 0x0)
mount$bpf(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000140)='bpf\x00', 0x0, 0x0)
mkdir(&(0x7f00000000c0)='./file0/file0\x00', 0x0)
mount$bpf(0x0, &(0x7f00000002c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bpf(0x0, &(0x7f00000003c0)='./file0/file0\x00', 0x0, 0x80000, 0x0)
mount$bpf(0x20000000, &(0x7f0000000300)='./file0/file0\x00', 0x0, 0x5004, 0x0)
mount$bpf(0x20000000, &(0x7f00000004c0)='./file0/file0\x00', 0x0, 0x588e, 0x0)
mount$bpf(0x0, &(0x7f00000005c0)='./file0/file0\x00', &(0x7f0000000a40)='bpf\x00', 0x0, 0x0)
umount2(&(0x7f0000000800)='./file0\x00', 0x0)
openat$vicodec0(0xffffffffffffff9c, &(0x7f0000000580)='/dev/video36\x00', 0x2, 0x0)
r0 = syz_open_dev$media(&(0x7f0000000040)='/dev/media#\x00', 0x0, 0x0)
close(0xffffffffffffffff)
ioctl$PPPIOCSFLAGS1(r0, 0x40047459, &(0x7f0000000000)=0x2000000)
ioctl$DRM_IOCTL_DMA(r0, 0xc0406429, &(0x7f0000000280)={0x0, 0x4, &(0x7f0000000180)=[0x0, 0x0, 0x4227, 0x7f], &(0x7f00000001c0)=[0x0, 0xd8], 0x0, 0x0, 0x73, 0x0, 0x0})
ioctl$TCSETAF(0xffffffffffffffff, 0x5408, 0x0)

00:15:11 executing program 4:
getsockopt$inet_sctp_SCTP_ADAPTATION_LAYER(0xffffffffffffffff, 0x84, 0x7, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mkdir(&(0x7f0000000040)='./file0\x00', 0x0)
mount$bpf(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000140)='bpf\x00', 0x0, 0x0)
mkdir(&(0x7f00000000c0)='./file0/file0\x00', 0x0)
mount$bpf(0x0, &(0x7f00000002c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bpf(0x0, &(0x7f00000003c0)='./file0/file0\x00', 0x0, 0x80000, 0x0)
mount$bpf(0x20000000, &(0x7f0000000300)='./file0/file0\x00', 0x0, 0x5004, 0x0)
mount$bpf(0x20000000, &(0x7f00000004c0)='./file0/file0\x00', 0x0, 0x588e, 0x0)
mount$bpf(0x0, &(0x7f00000005c0)='./file0/file0\x00', &(0x7f0000000a40)='bpf\x00', 0x0, 0x0)
umount2(&(0x7f0000000800)='./file0\x00', 0x0)
openat$vicodec0(0xffffffffffffff9c, &(0x7f0000000580)='/dev/video36\x00', 0x2, 0x0)
r0 = syz_open_dev$media(&(0x7f0000000040)='/dev/media#\x00', 0x0, 0x0)
close(0xffffffffffffffff)
ioctl$PPPIOCSFLAGS1(r0, 0x40047459, &(0x7f0000000000)=0x2000000)
ioctl$DRM_IOCTL_DMA(r0, 0xc0406429, &(0x7f0000000280)={0x0, 0x4, &(0x7f0000000180)=[0x0, 0x0, 0x4227, 0x7f], &(0x7f00000001c0)=[0x0, 0xd8], 0x0, 0x0, 0x73, 0x0, 0x0})
ioctl$TCSETAF(0xffffffffffffffff, 0x5408, 0x0)

00:15:11 executing program 3:
getsockopt$inet_sctp_SCTP_ADAPTATION_LAYER(0xffffffffffffffff, 0x84, 0x7, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mkdir(&(0x7f0000000040)='./file0\x00', 0x0)
mount$bpf(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000140)='bpf\x00', 0x0, 0x0)
mkdir(&(0x7f00000000c0)='./file0/file0\x00', 0x0)
mount$bpf(0x0, &(0x7f00000002c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bpf(0x0, &(0x7f00000003c0)='./file0/file0\x00', 0x0, 0x80000, 0x0)
mount$bpf(0x20000000, &(0x7f0000000300)='./file0/file0\x00', 0x0, 0x5004, 0x0)
mount$bpf(0x20000000, &(0x7f00000004c0)='./file0/file0\x00', 0x0, 0x588e, 0x0)
mount$bpf(0x0, &(0x7f00000005c0)='./file0/file0\x00', &(0x7f0000000a40)='bpf\x00', 0x0, 0x0)
umount2(&(0x7f0000000800)='./file0\x00', 0x0)
openat$vicodec0(0xffffffffffffff9c, &(0x7f0000000580)='/dev/video36\x00', 0x2, 0x0)
r0 = syz_open_dev$media(&(0x7f0000000040)='/dev/media#\x00', 0x0, 0x0)
close(0xffffffffffffffff)
ioctl$PPPIOCSFLAGS1(r0, 0x40047459, &(0x7f0000000000)=0x2000000)
ioctl$DRM_IOCTL_DMA(r0, 0xc0406429, &(0x7f0000000280)={0x0, 0x4, &(0x7f0000000180)=[0x0, 0x0, 0x4227, 0x7f], &(0x7f00000001c0)=[0x0, 0xd8], 0x0, 0x0, 0x73, 0x0, 0x0})
ioctl$TCSETAF(0xffffffffffffffff, 0x5408, 0x0)

00:15:11 executing program 0:
r0 = openat$zero(0xffffffffffffff9c, 0x0, 0x0, 0x0)
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
getsockopt$inet_buf(r0, 0x0, 0x0, &(0x7f0000000200)=""/153, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sysfs$2(0x2, 0x0, 0x0)
sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0)
ioctl$VIDIOC_G_PRIORITY(0xffffffffffffffff, 0x80045643, 0x0)
unshare(0x40000000)

[  909.923345] IPVS: ftp: loaded support on port[0] = 21
00:15:11 executing program 4:
getsockopt$inet_sctp_SCTP_ADAPTATION_LAYER(0xffffffffffffffff, 0x84, 0x7, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mkdir(&(0x7f0000000040)='./file0\x00', 0x0)
mount$bpf(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000140)='bpf\x00', 0x0, 0x0)
mkdir(&(0x7f00000000c0)='./file0/file0\x00', 0x0)
mount$bpf(0x0, &(0x7f00000002c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bpf(0x0, &(0x7f00000003c0)='./file0/file0\x00', 0x0, 0x80000, 0x0)
mount$bpf(0x20000000, &(0x7f0000000300)='./file0/file0\x00', 0x0, 0x5004, 0x0)
mount$bpf(0x20000000, &(0x7f00000004c0)='./file0/file0\x00', 0x0, 0x588e, 0x0)
mount$bpf(0x0, &(0x7f00000005c0)='./file0/file0\x00', &(0x7f0000000a40)='bpf\x00', 0x0, 0x0)
umount2(&(0x7f0000000800)='./file0\x00', 0x0)
openat$vicodec0(0xffffffffffffff9c, &(0x7f0000000580)='/dev/video36\x00', 0x2, 0x0)
r0 = syz_open_dev$media(&(0x7f0000000040)='/dev/media#\x00', 0x0, 0x0)
close(0xffffffffffffffff)
ioctl$PPPIOCSFLAGS1(r0, 0x40047459, &(0x7f0000000000)=0x2000000)
ioctl$DRM_IOCTL_DMA(r0, 0xc0406429, &(0x7f0000000280)={0x0, 0x4, &(0x7f0000000180)=[0x0, 0x0, 0x4227, 0x7f], &(0x7f00000001c0)=[0x0, 0xd8], 0x0, 0x0, 0x73, 0x0, 0x0})
ioctl$TCSETAF(0xffffffffffffffff, 0x5408, 0x0)

00:15:11 executing program 2:
getsockopt$inet_sctp_SCTP_ADAPTATION_LAYER(0xffffffffffffffff, 0x84, 0x7, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mkdir(&(0x7f0000000040)='./file0\x00', 0x0)
mount$bpf(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000140)='bpf\x00', 0x0, 0x0)
mkdir(&(0x7f00000000c0)='./file0/file0\x00', 0x0)
mount$bpf(0x0, &(0x7f00000002c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bpf(0x0, &(0x7f00000003c0)='./file0/file0\x00', 0x0, 0x80000, 0x0)
mount$bpf(0x20000000, &(0x7f0000000300)='./file0/file0\x00', 0x0, 0x5004, 0x0)
mount$bpf(0x20000000, &(0x7f00000004c0)='./file0/file0\x00', 0x0, 0x588e, 0x0)
mount$bpf(0x0, &(0x7f00000005c0)='./file0/file0\x00', &(0x7f0000000a40)='bpf\x00', 0x0, 0x0)
umount2(&(0x7f0000000800)='./file0\x00', 0x0)
openat$vicodec0(0xffffffffffffff9c, &(0x7f0000000580)='/dev/video36\x00', 0x2, 0x0)
r0 = syz_open_dev$media(&(0x7f0000000040)='/dev/media#\x00', 0x0, 0x0)
close(0xffffffffffffffff)
ioctl$PPPIOCSFLAGS1(r0, 0x40047459, &(0x7f0000000000)=0x2000000)
ioctl$DRM_IOCTL_DMA(r0, 0xc0406429, &(0x7f0000000280)={0x0, 0x4, &(0x7f0000000180)=[0x0, 0x0, 0x4227, 0x7f], &(0x7f00000001c0)=[0x0, 0xd8], 0x0, 0x0, 0x73, 0x0, 0x0})
ioctl$TCSETAF(0xffffffffffffffff, 0x5408, 0x0)

00:15:11 executing program 1:
getsockopt$inet_sctp_SCTP_ADAPTATION_LAYER(0xffffffffffffffff, 0x84, 0x7, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mkdir(&(0x7f0000000040)='./file0\x00', 0x0)
mount$bpf(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000140)='bpf\x00', 0x0, 0x0)
mkdir(&(0x7f00000000c0)='./file0/file0\x00', 0x0)
mount$bpf(0x0, &(0x7f00000002c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bpf(0x0, &(0x7f00000003c0)='./file0/file0\x00', 0x0, 0x80000, 0x0)
mount$bpf(0x20000000, &(0x7f0000000300)='./file0/file0\x00', 0x0, 0x5004, 0x0)
mount$bpf(0x20000000, &(0x7f00000004c0)='./file0/file0\x00', 0x0, 0x588e, 0x0)
mount$bpf(0x0, &(0x7f00000005c0)='./file0/file0\x00', &(0x7f0000000a40)='bpf\x00', 0x0, 0x0)
umount2(&(0x7f0000000800)='./file0\x00', 0x0)
openat$vicodec0(0xffffffffffffff9c, &(0x7f0000000580)='/dev/video36\x00', 0x2, 0x0)
r0 = syz_open_dev$media(&(0x7f0000000040)='/dev/media#\x00', 0x0, 0x0)
close(0xffffffffffffffff)
ioctl$PPPIOCSFLAGS1(r0, 0x40047459, &(0x7f0000000000)=0x2000000)
ioctl$DRM_IOCTL_DMA(r0, 0xc0406429, &(0x7f0000000280)={0x0, 0x4, &(0x7f0000000180)=[0x0, 0x0, 0x4227, 0x7f], &(0x7f00000001c0)=[0x0, 0xd8], 0x0, 0x0, 0x73, 0x0, 0x0})
ioctl$TCSETAF(0xffffffffffffffff, 0x5408, 0x0)

00:15:11 executing program 5:
getsockopt$inet_sctp_SCTP_ADAPTATION_LAYER(0xffffffffffffffff, 0x84, 0x7, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mkdir(&(0x7f0000000040)='./file0\x00', 0x0)
mount$bpf(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000140)='bpf\x00', 0x0, 0x0)
mkdir(&(0x7f00000000c0)='./file0/file0\x00', 0x0)
mount$bpf(0x0, &(0x7f00000002c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bpf(0x0, &(0x7f00000003c0)='./file0/file0\x00', 0x0, 0x80000, 0x0)
mount$bpf(0x20000000, &(0x7f0000000300)='./file0/file0\x00', 0x0, 0x5004, 0x0)
mount$bpf(0x20000000, &(0x7f00000004c0)='./file0/file0\x00', 0x0, 0x588e, 0x0)
mount$bpf(0x0, &(0x7f00000005c0)='./file0/file0\x00', &(0x7f0000000a40)='bpf\x00', 0x0, 0x0)
umount2(&(0x7f0000000800)='./file0\x00', 0x0)
openat$vicodec0(0xffffffffffffff9c, &(0x7f0000000580)='/dev/video36\x00', 0x2, 0x0)
r0 = syz_open_dev$media(&(0x7f0000000040)='/dev/media#\x00', 0x0, 0x0)
close(0xffffffffffffffff)
ioctl$PPPIOCSFLAGS1(r0, 0x40047459, &(0x7f0000000000)=0x2000000)
ioctl$DRM_IOCTL_DMA(r0, 0xc0406429, &(0x7f0000000280)={0x0, 0x4, &(0x7f0000000180)=[0x0, 0x0, 0x4227, 0x7f], &(0x7f00000001c0)=[0x0, 0xd8], 0x0, 0x0, 0x73, 0x0, 0x0})
ioctl$TCSETAF(0xffffffffffffffff, 0x5408, 0x0)

00:15:12 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000600))
r1 = syz_open_pts(r0, 0x0)
read(r1, &(0x7f00000001c0)=""/241, 0xf1)
ioctl$TCSETSF(r1, 0x5404, &(0x7f0000000080)={0x0, 0x0, 0x0, 0xfffffffffffffff7})
ioctl$TCSETSF(r1, 0x5412, &(0x7f0000000040))

00:15:12 executing program 2:
getrandom(&(0x7f0000000100)=""/198, 0xfffffc2a, 0x2)

00:15:12 executing program 1:
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu\x00', 0x200002, 0x0)
r1 = openat$cgroup_procs(r0, &(0x7f0000000040)='tasks\x00E\xb4\xb9\x06\xef', 0x2, 0x0)
sendfile(r1, r1, &(0x7f0000000480)=0x1fffffc, 0x100000010a000201)

00:15:12 executing program 1:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f319bd070")
r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000140)='attr/sockcreate\x00&\xa0\xd1\xf2\x10\xf9\x16E\vv\x0e\x02z\xb6/%\xbdQe(\xe7\xe6\xce\xd0n\x83\x8d\xee\x00\x8cF\xdf\x84|vA\xc8\xe6\r:\\\x1d.\xdb\x1e\x1am\xd4]\b\v0\xd4\f')
write$selinux_context(r1, &(0x7f00000000c0)='system_u:object_r:semanage_trans_lock_t:s0\n', 0x2b)
socket$unix(0x1, 0x1, 0x0)

00:15:12 executing program 0:
r0 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000940)='/dev/uhid\x00', 0x802, 0x0)
r1 = open(&(0x7f00000001c0)='./bus\x00', 0x141042, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000080)={0xb, 'syz1\x00', 'syz1\x00', 'syz1\x00', 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, '?'}, 0x119)
writev(r1, &(0x7f0000000000)=[{&(0x7f0000000980)="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", 0xda1}], 0x1)
write$P9_RWRITE(r1, &(0x7f00000002c0)={0xfffffffffffffe5d}, 0x14a)
sendfile(r0, r1, &(0x7f0000d83ff8), 0x8000fffffffe)

00:15:12 executing program 4:
r0 = socket(0x40000000015, 0x5, 0x0)
setsockopt$SO_RDS_TRANSPORT(r0, 0x114, 0x8, &(0x7f00000008c0), 0x4)
bind$inet(r0, &(0x7f0000000340)={0x2, 0x0, @loopback}, 0x10)

00:15:12 executing program 3:
r0 = syz_open_dev$video(&(0x7f0000000080)='/dev/video#\x00', 0x9f, 0x0)
ioctl$VIDIOC_G_FMT(r0, 0xc0d05604, &(0x7f0000000180)={0x1, @pix_mp})

00:15:12 executing program 2:
preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000240)=""/148, 0x94}], 0x1, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='net/icmp6\x00')
preadv(r0, &(0x7f0000000480), 0x1000000000000237, 0xa300)

00:15:12 executing program 5:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070")
mmap(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x3, 0x1b071, 0xffffffffffffffff, 0x0)
remap_file_pages(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x0, 0x31, 0xffffffffffffffff, 0x0)

00:15:12 executing program 4:
openat$selinux_checkreqprot(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/checkreqprot\x00', 0x0, 0x0)
syz_execute_func(&(0x7f0000000340)="9877774a2ae92cb81c0c0f05bf03000000c4a37bf0c55d41e2e9c422e9aabb3c000000c4c16d608590a00000660f383a9e02000000110f33b8c4014e4e4e5b7f4b4b26660f38091e14dee509c421045f4607c421dd5831c4e10bf8c45b64660f3838520ac4c4a3bd4877f88ac483397fd3fb0000d0c4efa1a12ad764d3cf53afaf6766f2ab440fec3f67ddea660f79cec462b1f72ec3c4e2899294d80000000019c2c2b0c10b0b0000c4414e53d2c4816016f7a80db8d4d466450fc4650000ebeb628f8f89709b6500a25800218de3c02cf52626802d08000000fa49c45c450f91f3ffefffffbedc4e61c9fb110f66474eb83aa2f1fbfbe2")
mmap(&(0x7f0000000000/0xfda000)=nil, 0xfda000, 0x0, 0x31, 0xffffffffffffffff, 0x0)

00:15:12 executing program 0:
r0 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000940)='/dev/uhid\x00', 0x802, 0x0)
r1 = open(&(0x7f00000001c0)='./bus\x00', 0x141042, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000080)={0xb, 'syz1\x00', 'syz1\x00', 'syz1\x00', 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, '?'}, 0x119)
writev(r1, &(0x7f0000000000)=[{&(0x7f0000000980)="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", 0xda1}], 0x1)
write$P9_RWRITE(r1, &(0x7f00000002c0)={0xfffffffffffffe5d}, 0x14a)
sendfile(r0, r1, &(0x7f0000d83ff8), 0x8000fffffffe)

00:15:12 executing program 2:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070")
r1 = socket$inet(0x2, 0x200000001, 0x0)
bind$inet(r1, &(0x7f0000deb000)={0x2, 0x4e23, @dev}, 0x10)
sendto$inet(r1, 0x0, 0x2fb, 0x20000003, &(0x7f0000000100)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10)
setsockopt$inet_mtu(r1, 0x0, 0xa, &(0x7f00000000c0)=0x3, 0x4)
setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000000)='ip6gre0\x00', 0x10)
sendto$inet(r1, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x0)

00:15:12 executing program 3:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070")
r1 = syz_init_net_socket$rose(0xb, 0x5, 0x0)
ioctl$SIOCRSSL2CALL(r1, 0x89e2, &(0x7f0000000640)=@default)

00:15:12 executing program 1:
r0 = syz_open_dev$video(&(0x7f0000000300)='/dev/video#\x00', 0x6, 0x0)
ioctl$VIDIOC_SUBDEV_S_DV_TIMINGS(r0, 0xc0845657, &(0x7f0000000000))

00:15:12 executing program 5:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070")
mmap(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x3, 0x1b071, 0xffffffffffffffff, 0x0)
remap_file_pages(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x0, 0x31, 0xffffffffffffffff, 0x0)

00:15:12 executing program 1:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070")
mmap(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x3, 0x1b071, 0xffffffffffffffff, 0x0)
remap_file_pages(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x0, 0x31, 0xffffffffffffffff, 0x0)

00:15:12 executing program 4:
r0 = add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000080)={'syz'}, 0x0, 0x0, 0xfffffffffffffffc)
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
keyctl$restrict_keyring(0x4, r0, &(0x7f00000000c0)='ceph\x00', 0x0)
syz_open_dev$swradio(0x0, 0x1, 0x2)

00:15:12 executing program 3:
r0 = add_key$keyring(&(0x7f0000000080)='keyring\x00', &(0x7f00000000c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffb)
keyctl$search(0xa, r0, &(0x7f0000000100)='keyring\x00', &(0x7f0000000140)={'syz'}, 0x0)

00:15:12 executing program 2:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070")
r1 = socket$inet(0x2, 0x200000001, 0x0)
bind$inet(r1, &(0x7f0000deb000)={0x2, 0x4e23, @dev}, 0x10)
sendto$inet(r1, 0x0, 0x2fb, 0x20000003, &(0x7f0000000100)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10)
setsockopt$inet_mtu(r1, 0x0, 0xa, &(0x7f00000000c0)=0x3, 0x4)
setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000000)='ip6gre0\x00', 0x10)
sendto$inet(r1, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x0)

00:15:12 executing program 0:
r0 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000940)='/dev/uhid\x00', 0x802, 0x0)
r1 = open(&(0x7f00000001c0)='./bus\x00', 0x141042, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000080)={0xb, 'syz1\x00', 'syz1\x00', 'syz1\x00', 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, '?'}, 0x119)
writev(r1, &(0x7f0000000000)=[{&(0x7f0000000980)="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", 0xda1}], 0x1)
write$P9_RWRITE(r1, &(0x7f00000002c0)={0xfffffffffffffe5d}, 0x14a)
sendfile(r0, r1, &(0x7f0000d83ff8), 0x8000fffffffe)

00:15:12 executing program 5:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070")
mmap(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x3, 0x1b071, 0xffffffffffffffff, 0x0)
remap_file_pages(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x0, 0x31, 0xffffffffffffffff, 0x0)

00:15:12 executing program 1:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070")
mmap(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x3, 0x1b071, 0xffffffffffffffff, 0x0)
remap_file_pages(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x0, 0x31, 0xffffffffffffffff, 0x0)

00:15:12 executing program 3:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070")
r1 = socket$inet(0x2, 0x200000001, 0x0)
bind$inet(r1, &(0x7f0000deb000)={0x2, 0x4e23, @dev}, 0x10)
sendto$inet(r1, 0x0, 0x2fb, 0x20000003, &(0x7f0000000100)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10)
setsockopt$inet_mtu(r1, 0x0, 0xa, &(0x7f00000000c0)=0x3, 0x4)
setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000000)='ip6gre0\x00', 0x10)
sendto$inet(r1, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x0)

00:15:12 executing program 4:
flock(0xffffffffffffffff, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x7a05, 0x1700)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$cgroup_subtree(r0, &(0x7f0000000000)={[{0x0, 'memory'}]}, 0x3ff800)
gettid()

00:15:12 executing program 2:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070")
r1 = socket$inet(0x2, 0x200000001, 0x0)
bind$inet(r1, &(0x7f0000deb000)={0x2, 0x4e23, @dev}, 0x10)
sendto$inet(r1, 0x0, 0x2fb, 0x20000003, &(0x7f0000000100)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10)
setsockopt$inet_mtu(r1, 0x0, 0xa, &(0x7f00000000c0)=0x3, 0x4)
setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000000)='ip6gre0\x00', 0x10)
sendto$inet(r1, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x0)

00:15:12 executing program 0:
r0 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000940)='/dev/uhid\x00', 0x802, 0x0)
r1 = open(&(0x7f00000001c0)='./bus\x00', 0x141042, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000080)={0xb, 'syz1\x00', 'syz1\x00', 'syz1\x00', 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, '?'}, 0x119)
writev(r1, &(0x7f0000000000)=[{&(0x7f0000000980)="4acc582d79a664b845dfb8ee626a97eafc2a28e15d983cb110e823411f632d7041ff470738a9b7a5ea70f60278245a3464dd847146c05aad7d4ec68f4956390fe89703784898e641efc2a86854554b757ca0efe403f110e46481994ab09dbfadaa4cbe0079bc83eef7e47f40fd0f4f5af7d304968c963a19e20803b92b9cff7ded7f9cbc463e43c9a26b3d59e40ca26693f3310de13ac814276b90b9c7a4cb7613bdfafedcabc1a9595d4fe0928fdee85621275bc35fd9d2c2a4e6e63e63d4ead6ec198c7a68a59d76e528f8371024090186e540956371c7a429797c324068134d2230c98d93173ae680ab3b6416e2dc511c58c850d42cf2e115b44c9ba4b131067fe28e5ea9957ce4e58be93dc5038f264cbe37a739c6db8b5dd5812e31e95f95f210d10a56741fc91c6e6552d02e070d09e220cd89e68b53a3a76470d0f6e0d43217b824f386b8a6d13198f55afcc51c8b23e4ac891f99ae7fdb341c08938f87346f86cd6b66ef82638b1e1ff361562b430d744359dd5dd6d5ee30c8b2d1357cd67f126b9eaf369877c0006c4c5e81a5c914f0cf028b1343d4b325b49c35e6c87f8ea7c9b8a1aad96ef2a7da871410824c8210637d75eca7156d4e955d19d3e45631414afcd62668b940e433ffa02b0269d42ebc3ddb803545a797be5471e0192b43c0b99899fa5d070f1c995721a00ecfc4507e0b8d518db888337eec3438a68dc4c44426f08d79115d5c63176bd8949569653913450f9e4d3b00ce4cf4a9d5bf8bfb94487225ae8369ef84001bcc38b7c455753f5790ec6aa5f8d3837a11b2c98e57e1b2cfd6cdeeb17de093bc41d8671c1af67525f1445effb54ef997469174b99c8b10416579666d3e9eb4f390baaf15cc1f0a1c77d7a5a5aa824c63a256724b451dfbffc7ceccd8665423e635130147c5d3c64b2c855f060a56a55b4619a8415d88b5447ad6ec3d077bff12b186b8639198d99d052b73b8a2449934be5c404cfbcce76b6cd127556a5de5b810a6e9edbdd78415b92f6c726b81337c8eab9e261a6cff077eec729f8ba460bb05d44b3825fa81adc066eec0d7c165ce345e09cea1fc40b5e7aedd991ac25dd58a59cee888231ef9b3325ff89bc0370142c4ae22e3cddeb0bcf5c7457311f255f62fbbff205e0510164f27ff9c30ec1369ef698152e88d7a3d1098a6090fb560cb2e0b92df2b0ea5b0ec813b4d2291c4c3c1baf57bc38cf20ad7cf473d7b5188be9350ac61d651eccdc34fe89b7088138982ca802022932ae594460af77bb05471ac389318cf046d536a753048364b03bb682aba6cb9597ff2fdb7f7fc64526a77d23c8deee6a84ff2f9b2215a100f8f99e5f53e31fcffc81f69b791d896a5f0600269b48f55aa454242bf581e1d2e1b35e725fb595c86bbae30ef6cdeb7dfb42257bf8ef51cf7134b53a0985328da46838562f202dd9b2c862e59959a5fd5755080e019321e712c5dfc1b2b2f78db30bae08a0f3384fa44616c72442b9a606303ab98dcde21a95fe5029d5f04c783d26f21737bb9b9f8006e1e5f4498f3518d2238b3baff5e76de08f699cc25f643ed0759f2cfd7061c9c1fc249de9f648e6959592a202f8e099b915713d015896ffa5d7d1e4c40a948779a502d3e6c9c8c544c404720f6607a241650393fde7bf5c2063a3a9075cb9fdb3a421cf310dcf38ddc228444b0e2de4bc350fd6c45f6fc99fcec8bd919fe280ec85867f0bf0f049f4a49fbc25e3c1977a0c40e621424fa4846d24dafd28a5471130e1a25ad4103642e362febce1fa7b3410d36fac3841326ce61981d17ab6072e93890a813533a2ef56eb8f38adb7aa157f9e7fcda349493d291cddce6198adefe845186891431ecd7a3cd48e6b89ab373cedfddc55e17ee0ea2d2b349de29274b58a12803648288a7ba5a98763a66b8675ddf3605fdc286ec2b0754b73f135d8ce590b48e82cbce47d5427bf3f5ffd0ce7fbbe49ed766d02e077b0eed0e3fc691589d86e208df6529187d3faa46ba5fc6c24fc96f58aff544b6c2990983dab835aff7434f94dbc1f012cd19bb847050c7bb7d6916a2a0b64e971700083cd5e82392983ae8977fba2c4d98ecaf6aebf6d11840036148238d2214c91be4f167ff0be7cf06ddc5786bf57e66667ed6f7a8dc883f635cf845becc59f09ba4289e99b1f805335f15ef8bf90b588704bffa536c9b59ebb822e3d471c37b1bf089a49a0a0f8bbf928024f4953c455c31905fcc20bddd70a4b83066d3fd9e27a56d7348e3633abe95a5133945ce31c7d041f1747aebf0f551deab060e09ad5c761266ede6c0f27a96da731206cc443973296c715aa811bf2c6ab385afd2e575ffed39613c40c3e67ffe3a6a7cc7e35a2f966d24c82eb7a24e65da4e879c9436f8a247287d2506e8bdc0e6d12ef771c1f87f61e2afce7b1c3a9382e21ae3e2a420d820901210991dcea40cf91078b7468e12d866403663adc35891dd374b99d996f7e28546ff56ad9fed9d6fce6934bf7b5f167d4f4526ae81d3877fa52f0edb311db232eaf97c503f4f8622e1519ea17e827362eaae654b295bafec7784e471852d04c3abd38c19fabcc12d1d6c85d9580a00445e1871a0e48cc86ac6e3eb18e7860272db3be38ab2a71c5e9d02e86d464c20b4561a5dfd42a8cce104deeb487330b3dbad0b9304488b697843f7fd3737f0b3bee7cdbccdae2a6e45a4d3a92b53fe076af5ab2e9ad45d578a297d1bcb2d9aa1ad2f1c1e894597ed490c4e7a2d3859beb97d6a57bb06d1ee8109e2350a705f5baf855c5c0be57f47d2fc354c28010bddedc83f820a9f0661c9b85c5fd5991fa8ee0fcdf537f434743a008b87a555cdd86abfdebd45b5a2bebbf6b48a44205057a84796c8c6054fe3e12690033d4356174b2d478975425ddd78917349ca60a26d79ed686292f2e006d4baf951a7de536b96f582e94de2a815dc39107194db71239fdbecd7ee611d4ae441e6886acabf090c2c2e1f4f655df7bde92d4969efdf2edefa1b9e3f83f766e9b88d9e8c95e5e6d2ac5c4dbd133234c5ec5c65f0086e84207706f74c262b5fdb3cbe13eec1db8bbdce738d4f4dd21e0381e930dbbbb2cb2728d21cd25304c42b87c7a4c039a1e2841069dab32e58d133173d164a6f2acd38a56e5fa899b2d8fc8bb63eab1cd74d416f78d6f3e658924d9f416fbf526e7c3795d9ffaf75528c109b9dd25ec3d380e52fd2b475362f9ff001e4e5b73bc2f2a19876800caa90f145588aeb83e76878d4ce4d7e8687ec2012d89752fbbda438c61aa863c308c540ae5c741769a38032808a87853136fed9164d7240dfb9b7baabcd5830aca574854d27d2ea078cbdf66a9e329977dcfe8d184e76a603c9e13c595152dca122ecdc9dedf8097b86a11119d8776bdd8f091a473a562f1d0f0847d08012a77618c21eac49d1ceeb1dd6312ff40420f109e8597c47c1976bf8c220ead6401371db163de5e76c021862be25a7620b399f6e671d5cfb39d5110386897b23057b443972a834032b1bf488ee769ccf96340f2c46841d549e3621486dc3be59d972e3c474d40dccddb58db66900f86480af024d5cf90c2378ab3f7c121e10f97c700cf03286dd9912fa278d955be34217fe302b596405cebe1d4825c053079b9201069db203c96a8ff80bbb49b0894c6f424d7fbf7965aa39daa2d41795ad922179898a9de64f642f7b02b1170a57e3663d0067f99fc6c0e0b4a851b4ea5ae12c6aa0dbc81ffeb6656e1037c2691df41bff813a095ebd95ded4418cfd0e717a9f3c52695f8a1f2e9e57bcbb65aa5c40760d1ccbf2810f53cc9a63cf2b622a01cf4d18f58f78ced2d4261230d6f1f7909d20c2014be0c5e1591cefccfccad0f32c0395ec2b7a4f90c0263277f38ff7ff437c813b8699d493de67d90776b052278d64a79c7b94573b581f205223297689810145ff97c7d9d1f7647d3177a2a1dbe99119dc008b51de568fe955c78148de3221de6c98cc39b6969eb16638b23330838676061e3fbc971c5d5fb7e412c284d228da054c2855567a2a96dd1a0d8309319e1402f5f5a9049b3bbf888c53589f34baf00996487741aa8706ed35fe72d0b7358b7fed808ce7d2b94cfa4d718e93a84712049ed1e53e65c2e227a166e95074a587066c3f5d97ab2b47816cb7c52b266c94831605fea47bc62aa7c2f16852aa1440b642cf809d6c1a110ad3f443675a219ff596b265ab70c21e1bab5d9209a975972ddedae9e02994721eea0bd318c3ac153d63443d6e3c0af700631066292f3781a12d8f812d10262871726e73731163a5ba0e56aa94213f8c226a86e79b30e40da3cd12373c3325d4b21c83fcf815890080fa5c868bb4689270de43a54d59775b5114cccf64d18a26a0dcd482ca6492b3bc8b3c945ace3ea6cc7ba36c9bf7b6ec4fda5af4330b08e100de127204b933eb71fb021921b0dbb7d1a69c4cd41040aa239074e1893cd2159b49184089cee861e4e3f34f4a051ade0c4e550c2194aee4c507683b7437707d2cd82ab25892c2254680d2ea96724e005e161949e6a5b0f7326966692e207ec412f52440b1c73c7c3a56098f6151146bc5f42dd670d1fafc68159568cb1a81f9e184c951ad092bb0a08c9c6fc7b56a20702c5b867254161674c88372dcc6f9c55dabbf50dc374c0373233ce34dc874f653d49c6f42c02a593433dc297fba33706213621684bbf2e5588393f3915922f2d07cec7728fbaa752cfa49ed46b2e6e08600d642e8cadbb2e1eae960aecbab929d502ffc0f2f0c2f2e50e278ec7aee90caf5f12ced9c3db68416b32cec97883958a280ee5c95d210ebfc4de070b09a307f53ee7a7ff6eeac43efc92a7727ee384e4d7d48c31045ef7f24a08b6ba864d2c31f10d9df496eb431ed5dbeb59ece4e973a5c34e4f7a7c41a3c29d786d1", 0xda1}], 0x1)
write$P9_RWRITE(r1, &(0x7f00000002c0)={0xfffffffffffffe5d}, 0x14a)
sendfile(r0, r1, &(0x7f0000d83ff8), 0x8000fffffffe)

00:15:13 executing program 1:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070")
mmap(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x3, 0x1b071, 0xffffffffffffffff, 0x0)
remap_file_pages(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x0, 0x31, 0xffffffffffffffff, 0x0)

00:15:13 executing program 5:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070")
mmap(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x3, 0x1b071, 0xffffffffffffffff, 0x0)
remap_file_pages(&(0x7f0000004000/0x1000)=nil, 0x1000, 0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x0, 0x31, 0xffffffffffffffff, 0x0)

00:15:13 executing program 3:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070")
r1 = socket$inet(0x2, 0x200000001, 0x0)
bind$inet(r1, &(0x7f0000deb000)={0x2, 0x4e23, @dev}, 0x10)
sendto$inet(r1, 0x0, 0x2fb, 0x20000003, &(0x7f0000000100)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10)
setsockopt$inet_mtu(r1, 0x0, 0xa, &(0x7f00000000c0)=0x3, 0x4)
setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000000)='ip6gre0\x00', 0x10)
sendto$inet(r1, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x0)

00:15:13 executing program 2:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070")
r1 = socket$inet(0x2, 0x200000001, 0x0)
bind$inet(r1, &(0x7f0000deb000)={0x2, 0x4e23, @dev}, 0x10)
sendto$inet(r1, 0x0, 0x2fb, 0x20000003, &(0x7f0000000100)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10)
setsockopt$inet_mtu(r1, 0x0, 0xa, &(0x7f00000000c0)=0x3, 0x4)
setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000000)='ip6gre0\x00', 0x10)
sendto$inet(r1, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x0)

00:15:13 executing program 3:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070")
r1 = socket$inet(0x2, 0x200000001, 0x0)
bind$inet(r1, &(0x7f0000deb000)={0x2, 0x4e23, @dev}, 0x10)
sendto$inet(r1, 0x0, 0x2fb, 0x20000003, &(0x7f0000000100)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10)
setsockopt$inet_mtu(r1, 0x0, 0xa, &(0x7f00000000c0)=0x3, 0x4)
setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000000)='ip6gre0\x00', 0x10)
sendto$inet(r1, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x0)

00:15:13 executing program 4:
flock(0xffffffffffffffff, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x7a05, 0x1700)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$cgroup_subtree(r0, &(0x7f0000000000)={[{0x0, 'memory'}]}, 0x3ff800)
gettid()

00:15:13 executing program 0:
recvmmsg(0xffffffffffffffff, &(0x7f0000003840)=[{{0x0, 0x0, &(0x7f0000002b80)=[{&(0x7f0000000280)=""/190, 0xbe}], 0x100000000000021c, 0x0, 0xfffffffffffffe51}}], 0x1, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='net/mcfilter\x00')
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
preadv(r0, &(0x7f00000017c0), 0x1d0, 0x1f000000)

00:15:13 executing program 1:
r0 = socket$can_bcm(0x1d, 0x2, 0x2)
recvmmsg(r0, &(0x7f0000005f80)=[{{0x0, 0xfffffffffffffede, 0x0}}], 0x867, 0x3, 0x0)
connect$can_bcm(r0, &(0x7f0000000180), 0x10)
sendmsg$can_bcm(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000040)={0x5, 0x0, 0x0, {0x0, 0x2710}, {0x77359400}, {}, 0x1, @can={{}, 0x0, 0x0, 0x0, 0x0, "3ce93489ca47e9a5"}}, 0x48}}, 0x0)
sendmsg$can_bcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000002f00)={&(0x7f0000002e80)=ANY=[@ANYBLOB="00000000010000000000000b0000000058a5bd49977432a5"], 0x1}}, 0x0)

00:15:13 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
ioctl$SNDRV_CTL_IOCTL_POWER_STATE(0xffffffffffffffff, 0x800455d1, 0x0)
getsockopt$IP_VS_SO_GET_DAEMON(r0, 0x0, 0x487, &(0x7f0000000000), &(0x7f0000000080)=0x30)

00:15:13 executing program 2:
open_by_handle_at(0xffffffffffffff9c, &(0x7f0000000000)={0x5}, 0x0)

00:15:13 executing program 0:
creat(&(0x7f0000000000)='./file0\x00', 0x0)
syz_execute_func(&(0x7f0000000300)="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")
setsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(0xffffffffffffffff, 0x84, 0x9, &(0x7f0000000280)={0x0, @in={{0x2, 0x0, @empty}}}, 0x98)

00:15:13 executing program 3:
r0 = socket(0x1e, 0x1, 0x0)
getsockopt(r0, 0x800000010f, 0x20081000000084, 0x0, &(0x7f0000000000)=0xfe57)

00:15:13 executing program 2:
open_by_handle_at(0xffffffffffffff9c, &(0x7f0000000000)={0x5}, 0x0)

00:15:13 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
ioctl$SNDRV_CTL_IOCTL_POWER_STATE(0xffffffffffffffff, 0x800455d1, 0x0)
getsockopt$IP_VS_SO_GET_DAEMON(r0, 0x0, 0x487, &(0x7f0000000000), &(0x7f0000000080)=0x30)

00:15:13 executing program 3:
r0 = socket(0x1e, 0x1, 0x0)
getsockopt(r0, 0x800000010f, 0x20081000000084, 0x0, &(0x7f0000000000)=0xfe57)

00:15:13 executing program 4:
flock(0xffffffffffffffff, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x7a05, 0x1700)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$cgroup_subtree(r0, &(0x7f0000000000)={[{0x0, 'memory'}]}, 0x3ff800)
gettid()

00:15:13 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
ioctl$SNDRV_CTL_IOCTL_POWER_STATE(0xffffffffffffffff, 0x800455d1, 0x0)
getsockopt$IP_VS_SO_GET_DAEMON(r0, 0x0, 0x487, &(0x7f0000000000), &(0x7f0000000080)=0x30)

00:15:13 executing program 0:
creat(&(0x7f0000000000)='./file0\x00', 0x0)
syz_execute_func(&(0x7f0000000300)="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")
setsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(0xffffffffffffffff, 0x84, 0x9, &(0x7f0000000280)={0x0, @in={{0x2, 0x0, @empty}}}, 0x98)

00:15:13 executing program 2:
open_by_handle_at(0xffffffffffffff9c, &(0x7f0000000000)={0x5}, 0x0)

00:15:14 executing program 1:
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$pppoe(0x18, 0x1, 0x0)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r1, 0x0, 0x80, &(0x7f0000000240)=@filter={'filter\x00', 0xe, 0x1, 0x130, [0x0, 0x20000100, 0x20000130, 0x20000160], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"]}, 0x1a8)
connect$pppoe(r0, &(0x7f0000000000)={0x18, 0x0, {0x5, @local, 'bridge0\x00'}}, 0x1e)
sendmmsg(r0, &(0x7f000000d180), 0x4000000000000eb, 0x0)

00:15:14 executing program 3:
r0 = socket(0x1e, 0x1, 0x0)
getsockopt(r0, 0x800000010f, 0x20081000000084, 0x0, &(0x7f0000000000)=0xfe57)

00:15:14 executing program 2:
open_by_handle_at(0xffffffffffffff9c, &(0x7f0000000000)={0x5}, 0x0)

00:15:14 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
ioctl$SNDRV_CTL_IOCTL_POWER_STATE(0xffffffffffffffff, 0x800455d1, 0x0)
getsockopt$IP_VS_SO_GET_DAEMON(r0, 0x0, 0x487, &(0x7f0000000000), &(0x7f0000000080)=0x30)

00:15:14 executing program 4:
flock(0xffffffffffffffff, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x7a05, 0x1700)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$cgroup_subtree(r0, &(0x7f0000000000)={[{0x0, 'memory'}]}, 0x3ff800)
gettid()

00:15:14 executing program 0:
creat(&(0x7f0000000000)='./file0\x00', 0x0)
syz_execute_func(&(0x7f0000000300)="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")
setsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(0xffffffffffffffff, 0x84, 0x9, &(0x7f0000000280)={0x0, @in={{0x2, 0x0, @empty}}}, 0x98)

00:15:14 executing program 5:
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout_data(r0, 0x107, 0x13, 0x0, 0x0)

00:15:14 executing program 2:
syz_mount_image$ntfs(&(0x7f0000000280)='ntfs\x00', &(0x7f00000003c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000005c0)={[{@gid={'gid'}}]})

00:15:14 executing program 3:
r0 = socket(0x1e, 0x1, 0x0)
getsockopt(r0, 0x800000010f, 0x20081000000084, 0x0, &(0x7f0000000000)=0xfe57)

[  913.294159] net_ratelimit: 18 callbacks suppressed
[  913.294174] protocol 88fb is buggy, dev hsr_slave_0
[  913.306359] protocol 88fb is buggy, dev hsr_slave_1
00:15:15 executing program 0:
creat(&(0x7f0000000000)='./file0\x00', 0x0)
syz_execute_func(&(0x7f0000000300)="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")
setsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(0xffffffffffffffff, 0x84, 0x9, &(0x7f0000000280)={0x0, @in={{0x2, 0x0, @empty}}}, 0x98)

00:15:15 executing program 5:
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout_data(r0, 0x107, 0x13, 0x0, 0x0)

00:15:15 executing program 2:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070")
syz_execute_func(&(0x7f0000000440)="b1c491cd80596969ef69dc02d9d9fe3c13c44139fd5bf91cc1c7c6e4c653fb0fc4014c656567f240ab68f4a95fc44149f2168f4808eebce00000802000c421fc51c1ea01efc48192558dc3c366450f186746f3400faee4749826261f696926400fe618c4c461f5ea15feefffffc4a1ff11560ef665dfa78f4978d7b87e000000430fefb300000000c4e10f7d4cdce5f33b181254111d54111d00")

00:15:15 executing program 5:
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout_data(r0, 0x107, 0x13, 0x0, 0x0)

00:15:15 executing program 3:
shmctl$SHM_INFO(0x0, 0xe, &(0x7f0000000080)=""/234)

00:15:15 executing program 1:
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$pppoe(0x18, 0x1, 0x0)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r1, 0x0, 0x80, &(0x7f0000000240)=@filter={'filter\x00', 0xe, 0x1, 0x130, [0x0, 0x20000100, 0x20000130, 0x20000160], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"]}, 0x1a8)
connect$pppoe(r0, &(0x7f0000000000)={0x18, 0x0, {0x5, @local, 'bridge0\x00'}}, 0x1e)
sendmmsg(r0, &(0x7f000000d180), 0x4000000000000eb, 0x0)

00:15:15 executing program 5:
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout_data(r0, 0x107, 0x13, 0x0, 0x0)

00:15:15 executing program 2:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070")
syz_execute_func(&(0x7f0000000440)="b1c491cd80596969ef69dc02d9d9fe3c13c44139fd5bf91cc1c7c6e4c653fb0fc4014c656567f240ab68f4a95fc44149f2168f4808eebce00000802000c421fc51c1ea01efc48192558dc3c366450f186746f3400faee4749826261f696926400fe618c4c461f5ea15feefffffc4a1ff11560ef665dfa78f4978d7b87e000000430fefb300000000c4e10f7d4cdce5f33b181254111d54111d00")

00:15:15 executing program 3:
r0 = syz_init_net_socket$ax25(0x3, 0x5, 0x0)
bind$ax25(r0, &(0x7f0000000200)={{0x3, @netrom, 0x1}, [@null, @netrom, @bcast, @null, @bcast, @rose, @null, @default]}, 0x48)
connect$ax25(r0, &(0x7f0000000000)={{}, [@remote, @default, @remote, @netrom, @default, @null]}, 0x48)

00:15:15 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000001c0))
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x100000024)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000000)=@generic={0x0, "39e2973127f5e3a1a5bfbb1ecaa5a46d4b5826bf3e29477aa83b930341931a1f25ab76245a960d63ad1c467c83c9e842abeb59bd851ff437263884dd641efc7cddeb22ac78ffe364d71d64ba2419fa41dcfd4ecc737cbc4d7712913083867f23221c0d0caea62d07f72e8ec980a45d10c57b55425bc426b453d4038d7526"}, 0x80, 0x0}, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

00:15:15 executing program 0:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070")
setresgid(0x0, 0xee00, 0x0)
setgroups(0x0, 0x0)
setresuid(0x0, 0xfffe, 0xffffffffffffffff)
shmget$private(0x0, 0x4000, 0x800, &(0x7f0000ffb000/0x4000)=nil)

00:15:15 executing program 5:
recvmmsg(0xffffffffffffffff, &(0x7f0000000040)=[{{0x0, 0x0, &(0x7f0000002700)=[{&(0x7f0000001240)=""/75, 0x4b}], 0x1}}], 0x1, 0x0, 0x0)
r0 = openat$ashmem(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ashmem\x00', 0x0, 0x0)
ioctl$ASHMEM_SET_SIZE(r0, 0x40087703, 0xfdfffffb)
mmap(&(0x7f00006fc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000300)='fdinfo/3\x00')
preadv(r1, &(0x7f0000000480), 0x1000000000000237, 0x0)

00:15:15 executing program 4:
r0 = syz_open_dev$sg(&(0x7f0000000540)='/dev/sg#\x00', 0x0, 0x0)
ioctl$SG_IO(r0, 0x2285, &(0x7f0000000500)={0x53, 0x0, 0x0, 0x0, @scatter={0x0, 0x0, 0x0}, 0x0, 0x0, 0x9, 0x3, 0x2, &(0x7f00000004c0)})

00:15:15 executing program 3:
r0 = memfd_create(&(0x7f0000000000)='\xac\x00\x00', 0x4)
ftruncate(r0, 0x1000000)
lseek(r0, 0x0, 0x4)

00:15:15 executing program 2:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070")
syz_execute_func(&(0x7f0000000440)="b1c491cd80596969ef69dc02d9d9fe3c13c44139fd5bf91cc1c7c6e4c653fb0fc4014c656567f240ab68f4a95fc44149f2168f4808eebce00000802000c421fc51c1ea01efc48192558dc3c366450f186746f3400faee4749826261f696926400fe618c4c461f5ea15feefffffc4a1ff11560ef665dfa78f4978d7b87e000000430fefb300000000c4e10f7d4cdce5f33b181254111d54111d00")

00:15:15 executing program 4:
rt_sigtimedwait(&(0x7f0000000000), 0x0, 0x0, 0x8)
syz_execute_func(&(0x7f00000001c0)="3666440f50f564ff0941c3c4e1a5f97300660f3a8e16649c675100617b12e5c441dfd04b00c442019dccd211d46f")
syz_open_procfs(0x0, 0x0)
syz_execute_func(&(0x7f0000000340)="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")

[  914.053735] hugetlbfs: syz-executor.0 (28743): Using mlock ulimits for SHM_HUGETLB is deprecated
00:15:15 executing program 5:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070")
mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x0, 0x32, 0xffffffffffffffff, 0x0)
r1 = userfaultfd(0x0)
ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000000040))
ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000001fe2)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1})
ioctl$UFFDIO_COPY(r1, 0xc028aa03, &(0x7f0000000180)={&(0x7f0000012000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, 0x2000})

00:15:15 executing program 1:
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$pppoe(0x18, 0x1, 0x0)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r1, 0x0, 0x80, &(0x7f0000000240)=@filter={'filter\x00', 0xe, 0x1, 0x130, [0x0, 0x20000100, 0x20000130, 0x20000160], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"]}, 0x1a8)
connect$pppoe(r0, &(0x7f0000000000)={0x18, 0x0, {0x5, @local, 'bridge0\x00'}}, 0x1e)
sendmmsg(r0, &(0x7f000000d180), 0x4000000000000eb, 0x0)

00:15:15 executing program 3:
r0 = syz_open_dev$vbi(&(0x7f0000000140)='/dev/vbi#\x00', 0x3, 0x2)
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000180)={0x0, 0x6, 0x1, {0x5, @raw_data="efaa91e861aa9431ed1253263499a0b1b370c43f9fe8f2927337a7d398c6845cb38171589b15e8d8b61dc2e54209994fec0662ed54b2baa44404f48509356f73689ffee8d5b5900744889c501420724ea72c482a9e0dd0fa701629106ab573c94c82fa974e2cc0b74e5eb5d3df1eda89581c045ae28a41b014d328db1ec69773717d52c347e1ab293032682811cc8c1a943e4ff99d6413e857409534cbeb3d5c2cef8143ea24613061aca7b83d6a2dbb623aa0cb7093e6818c917710012a3be504412cf3dc2dc008"}})
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x1e, 0x2013, r0, 0x0)
pkey_mprotect(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff)

00:15:15 executing program 0:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070")
setresgid(0x0, 0xee00, 0x0)
setgroups(0x0, 0x0)
setresuid(0x0, 0xfffe, 0xffffffffffffffff)
shmget$private(0x0, 0x4000, 0x800, &(0x7f0000ffb000/0x4000)=nil)

00:15:15 executing program 2:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070")
syz_execute_func(&(0x7f0000000440)="b1c491cd80596969ef69dc02d9d9fe3c13c44139fd5bf91cc1c7c6e4c653fb0fc4014c656567f240ab68f4a95fc44149f2168f4808eebce00000802000c421fc51c1ea01efc48192558dc3c366450f186746f3400faee4749826261f696926400fe618c4c461f5ea15feefffffc4a1ff11560ef665dfa78f4978d7b87e000000430fefb300000000c4e10f7d4cdce5f33b181254111d54111d00")

00:15:15 executing program 5:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070")
mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x0, 0x32, 0xffffffffffffffff, 0x0)
r1 = userfaultfd(0x0)
ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000000040))
ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000001fe2)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1})
ioctl$UFFDIO_COPY(r1, 0xc028aa03, &(0x7f0000000180)={&(0x7f0000012000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, 0x2000})

00:15:16 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0)
ioctl$KVM_GET_MSR_INDEX_LIST(r0, 0xc004ae02, 0x0)

00:15:16 executing program 0:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070")
setresgid(0x0, 0xee00, 0x0)
setgroups(0x0, 0x0)
setresuid(0x0, 0xfffe, 0xffffffffffffffff)
shmget$private(0x0, 0x4000, 0x800, &(0x7f0000ffb000/0x4000)=nil)

00:15:16 executing program 3:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f123c123f319bd070")
syz_execute_func(&(0x7f0000000140)="0c6bb5b598cd801b6969ef69dc00d9d9d0c44139fd5bfb1cc18fe9589b26c7e4c753fbc4e101f6fe58c4427d135200c4413bf2168f4808eebce00000802000c421fc8fe9509b9b9b000000c1ea01eff265dc5f00c366450f186746f3400faee42c24a1a1460f569f0000000026400f0d18c401fe5ff6e3df646736676666430fefb300000000c4e3f17a5482020b666645c4c2359e2b14111d54111d00")

[  914.412236] protocol 88fb is buggy, dev hsr_slave_0
[  914.412782] protocol 88fb is buggy, dev hsr_slave_0
[  914.417409] protocol 88fb is buggy, dev hsr_slave_1
[  914.422601] protocol 88fb is buggy, dev hsr_slave_1
00:15:16 executing program 5:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070")
mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x0, 0x32, 0xffffffffffffffff, 0x0)
r1 = userfaultfd(0x0)
ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000000040))
ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000001fe2)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1})
ioctl$UFFDIO_COPY(r1, 0xc028aa03, &(0x7f0000000180)={&(0x7f0000012000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, 0x2000})

00:15:16 executing program 0:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070")
setresgid(0x0, 0xee00, 0x0)
setgroups(0x0, 0x0)
setresuid(0x0, 0xfffe, 0xffffffffffffffff)
shmget$private(0x0, 0x4000, 0x800, &(0x7f0000ffb000/0x4000)=nil)

00:15:16 executing program 3:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f123c123f319bd070")
madvise(&(0x7f0000003000/0x4000)=nil, 0x4000, 0x1)

00:15:16 executing program 2:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070")
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f0000001240)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb(arc4)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000080)="ab", 0x1)

00:15:16 executing program 0:
r0 = socket$inet(0x10, 0x3, 0xc)
sendmsg(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000000)="24000000010207031dfffd946fa2830020200a0009000140001d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0)

00:15:16 executing program 5:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070")
mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x0, 0x32, 0xffffffffffffffff, 0x0)
r1 = userfaultfd(0x0)
ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000000040))
ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000001fe2)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1})
ioctl$UFFDIO_COPY(r1, 0xc028aa03, &(0x7f0000000180)={&(0x7f0000012000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, 0x2000})

00:15:16 executing program 4:
rt_sigtimedwait(&(0x7f0000000000), 0x0, 0x0, 0x8)
syz_execute_func(&(0x7f00000001c0)="3666440f50f564ff0941c3c4e1a5f97300660f3a8e16649c675100617b12e5c441dfd04b00c442019dccd211d46f")
syz_open_procfs(0x0, 0x0)
syz_execute_func(&(0x7f0000000340)="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")

00:15:16 executing program 1:
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$pppoe(0x18, 0x1, 0x0)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r1, 0x0, 0x80, &(0x7f0000000240)=@filter={'filter\x00', 0xe, 0x1, 0x130, [0x0, 0x20000100, 0x20000130, 0x20000160], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"]}, 0x1a8)
connect$pppoe(r0, &(0x7f0000000000)={0x18, 0x0, {0x5, @local, 'bridge0\x00'}}, 0x1e)
sendmmsg(r0, &(0x7f000000d180), 0x4000000000000eb, 0x0)

[  915.054014] netlink: 5 bytes leftover after parsing attributes in process `syz-executor.0'.
00:15:16 executing program 5:
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000240)={0x80000000012, 0x5, 0x400000004, 0x6}, 0x3c)
bpf$MAP_GET_NEXT_KEY(0x3, &(0x7f00000000c0)={r0, &(0x7f0000000000), 0x0}, 0x18)

00:15:16 executing program 3:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f00000000c0)="0adc1f123c123f319bd070")
r1 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, r1, 0x0)
ioctl$PERF_EVENT_IOC_DISABLE(r2, 0x2401, 0x8967)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x2400, 0x1)

00:15:16 executing program 2:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070")
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f0000001240)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb(arc4)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000080)="ab", 0x1)

00:15:16 executing program 0:
unshare(0x20400)
syz_emit_ethernet(0x0, 0x0, 0x0)

[  915.212175] protocol 88fb is buggy, dev hsr_slave_0
[  915.217326] protocol 88fb is buggy, dev hsr_slave_1
[  915.222506] protocol 88fb is buggy, dev hsr_slave_0
[  915.227593] protocol 88fb is buggy, dev hsr_slave_1
00:15:16 executing program 5:
clone(0x802102001ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
syz_execute_func(&(0x7f0000000400)="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")

00:15:16 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000280)={0x7a, 0x0, [0x9e], [0xc1]})

00:15:17 executing program 2:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070")
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f0000001240)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb(arc4)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000080)="ab", 0x1)

00:15:17 executing program 5:
clone(0x802102001ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
syz_execute_func(&(0x7f0000000400)="994a2ae92c13964c0f05bf02000000c4a37bf0c50441e2e9c422e9aabb3c0000004a0fc7a4ea70db00000000c4215debb6bdff0000110f4e5bc4a265aa104b26660f38091e2fa2631bc421045f4607c421dd589fc4e10bf8e426f2f045f619640f0f6f43a038fdf30f7f8551de5901c0262e2e66450f7d64c60865f2ad0383397fd3ff3a0065f20f7cd8efa1a12ad764d38f53efaf6766f2ab440fec3f67ddea660f79cec462b1f72ec3c4899294d800000000000fc4634148f70000c2a0c10b00cca27a0e0fc442cd376d000f9f3c6436b2aa66450fc4650000c4e39978c104d9a1e8719e70ddcdcda2660f38346800c4e3295d4c49c8a03e3ec1045ccc7d75c4426507af0f0000000f5fd25cf3460f2ad0f30f5ea5a9a50000660f79ca553131b83a00a2f1fbfb766208cf")

00:15:17 executing program 0:
unshare(0x20400)
syz_emit_ethernet(0x0, 0x0, 0x0)

00:15:17 executing program 3:
bpf$MAP_CREATE(0x0, &(0x7f0000000040)={0xb, 0x0, 0x0, 0x5}, 0x2c)

00:15:17 executing program 4:
rt_sigtimedwait(&(0x7f0000000000), 0x0, 0x0, 0x8)
syz_execute_func(&(0x7f00000001c0)="3666440f50f564ff0941c3c4e1a5f97300660f3a8e16649c675100617b12e5c441dfd04b00c442019dccd211d46f")
syz_open_procfs(0x0, 0x0)
syz_execute_func(&(0x7f0000000340)="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")

00:15:17 executing program 2:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070")
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f0000001240)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb(arc4)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000080)="ab", 0x1)

00:15:17 executing program 0:
unshare(0x20400)
syz_emit_ethernet(0x0, 0x0, 0x0)

00:15:17 executing program 5:
clone(0x802102001ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
syz_execute_func(&(0x7f0000000400)="994a2ae92c13964c0f05bf02000000c4a37bf0c50441e2e9c422e9aabb3c0000004a0fc7a4ea70db00000000c4215debb6bdff0000110f4e5bc4a265aa104b26660f38091e2fa2631bc421045f4607c421dd589fc4e10bf8e426f2f045f619640f0f6f43a038fdf30f7f8551de5901c0262e2e66450f7d64c60865f2ad0383397fd3ff3a0065f20f7cd8efa1a12ad764d38f53efaf6766f2ab440fec3f67ddea660f79cec462b1f72ec3c4899294d800000000000fc4634148f70000c2a0c10b00cca27a0e0fc442cd376d000f9f3c6436b2aa66450fc4650000c4e39978c104d9a1e8719e70ddcdcda2660f38346800c4e3295d4c49c8a03e3ec1045ccc7d75c4426507af0f0000000f5fd25cf3460f2ad0f30f5ea5a9a50000660f79ca553131b83a00a2f1fbfb766208cf")

00:15:17 executing program 3:
mknod(&(0x7f0000000180)='./file0\x00', 0x8001420, 0x0)
r0 = open(&(0x7f0000000200)='./file0\x00', 0x2, 0x0)
vmsplice(r0, &(0x7f0000000100)=[{&(0x7f0000000340)="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", 0xcc1}], 0x1, 0x0)
ioctl$sock_TIOCINQ(r0, 0x541b, &(0x7f0000000140))

00:15:17 executing program 1:
mmap(&(0x7f0000001000/0x3000)=nil, 0x3000, 0x0, 0x100000000031, 0xffffffffffffffff, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000140)='net\x00\xab\xd4\xf0\xdd\xa4\xf5\x7f\xd0\x97\xe1\x9e\xaf\xfb\xf8\xac\xc5D?$p\x819P\xed\xb1\x01T\xb7s\x1a\xba\xacfK\xed\xa4\x01bG\xc5q\xaa\xfa\xe8\r\x00\tu\xbc\x8em!\xdau\xf1;\xd7\x8a\x9a\xbfJ$ 0\x17\x9a\v\xc6\xf3m\x9d\xfa\xc9\xcalo\xa6')
getdents(r0, &(0x7f0000000080)=""/183, 0x452)
getdents(r0, &(0x7f0000000ea9)=""/407, 0x197)

00:15:17 executing program 2:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000240)="0adc1f521a123f319bd070")
r1 = syz_open_dev$evdev(&(0x7f0000000100)='/dev/input/event#\x00', 0x0, 0x0)
ioctl$EVIOCGMASK(r1, 0x80104592, &(0x7f0000000080)={0x0, 0x5b, 0x0})

00:15:17 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x5, &(0x7f00000001c0))
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000080)="baa100b000eef36cba2100ec66b9800000c00f326635001000000f30bad104ecc80080d267d9f8f30f1bb429000f20c06635200000000f22c067f3af", 0x3c}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_GET_MSR_INDEX_LIST(r1, 0xc004ae02, &(0x7f0000000300)=ANY=[@ANYBLOB="006ee8f2"])
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
perf_event_open(&(0x7f0000000040)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
add_key$keyring(&(0x7f0000000000)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffb)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f000})
ioctl$KVM_RUN(r3, 0xae80, 0x0)
sendmsg$rds(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000000)={0x2, 0x0, @local}, 0x10, 0x0}, 0x0)

00:15:17 executing program 3:
mknod(&(0x7f0000000180)='./file0\x00', 0x8001420, 0x0)
r0 = open(&(0x7f0000000200)='./file0\x00', 0x2, 0x0)
vmsplice(r0, &(0x7f0000000100)=[{&(0x7f0000000340)="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", 0xcc1}], 0x1, 0x0)
ioctl$sock_TIOCINQ(r0, 0x541b, &(0x7f0000000140))

00:15:17 executing program 0:
unshare(0x20400)
syz_emit_ethernet(0x0, 0x0, 0x0)

00:15:17 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00003e0000)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
r1 = syz_open_pts(r0, 0x0)
ioctl$FIONREAD(r1, 0x540d, 0x0)

00:15:17 executing program 3:
mknod(&(0x7f0000000180)='./file0\x00', 0x8001420, 0x0)
r0 = open(&(0x7f0000000200)='./file0\x00', 0x2, 0x0)
vmsplice(r0, &(0x7f0000000100)=[{&(0x7f0000000340)="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", 0xcc1}], 0x1, 0x0)
ioctl$sock_TIOCINQ(r0, 0x541b, &(0x7f0000000140))

00:15:18 executing program 4:
rt_sigtimedwait(&(0x7f0000000000), 0x0, 0x0, 0x8)
syz_execute_func(&(0x7f00000001c0)="3666440f50f564ff0941c3c4e1a5f97300660f3a8e16649c675100617b12e5c441dfd04b00c442019dccd211d46f")
syz_open_procfs(0x0, 0x0)
syz_execute_func(&(0x7f0000000340)="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")

00:15:18 executing program 1:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f00000001c0)=ANY=[@ANYBLOB="020d0000100000000000000000000000030006000000000002000000e000000100000000200000000800120002000200000000000000000040000000020300000000000f00000000020000000000000092ab000000000001020014bb000000000000000000000000030005000002000002000000e00000010000000002000000"], 0x80}}, 0x0)

00:15:18 executing program 0:
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x4, 0x31, 0xffffffffffffffff, 0x0)
futex(&(0x7f0000000040), 0x84, 0x0, 0x0, 0x0, 0x0)

00:15:18 executing program 5:
clone(0x802102001ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
syz_execute_func(&(0x7f0000000400)="994a2ae92c13964c0f05bf02000000c4a37bf0c50441e2e9c422e9aabb3c0000004a0fc7a4ea70db00000000c4215debb6bdff0000110f4e5bc4a265aa104b26660f38091e2fa2631bc421045f4607c421dd589fc4e10bf8e426f2f045f619640f0f6f43a038fdf30f7f8551de5901c0262e2e66450f7d64c60865f2ad0383397fd3ff3a0065f20f7cd8efa1a12ad764d38f53efaf6766f2ab440fec3f67ddea660f79cec462b1f72ec3c4899294d800000000000fc4634148f70000c2a0c10b00cca27a0e0fc442cd376d000f9f3c6436b2aa66450fc4650000c4e39978c104d9a1e8719e70ddcdcda2660f38346800c4e3295d4c49c8a03e3ec1045ccc7d75c4426507af0f0000000f5fd25cf3460f2ad0f30f5ea5a9a50000660f79ca553131b83a00a2f1fbfb766208cf")

00:15:18 executing program 2:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000000)="0ad41f123c123f319bd070")
mkdir(&(0x7f0000000100)='./file0\x00', 0x0)
mount(0x0, &(0x7f000002c000)='./file0\x00', &(0x7f0000000140)='ramfs\x00', 0x4040, 0x0)
r1 = creat(&(0x7f0000002500)='./file0/bus\x00', 0xcebb6064bb566d03)
write$P9_RLERRORu(r1, &(0x7f0000000080)={0x13, 0x7, 0x0, {{0x6, 'ramfs\x00'}}}, 0x13)
fcntl$lock(r1, 0x6, &(0x7f00000000c0)={0x1})
truncate(&(0x7f00000001c0)='./file0/bus\x00', 0x0)

00:15:18 executing program 3:
mknod(&(0x7f0000000180)='./file0\x00', 0x8001420, 0x0)
r0 = open(&(0x7f0000000200)='./file0\x00', 0x2, 0x0)
vmsplice(r0, &(0x7f0000000100)=[{&(0x7f0000000340)="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", 0xcc1}], 0x1, 0x0)
ioctl$sock_TIOCINQ(r0, 0x541b, &(0x7f0000000140))

00:15:18 executing program 0:
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x4, 0x31, 0xffffffffffffffff, 0x0)
futex(&(0x7f0000000040), 0x84, 0x0, 0x0, 0x0, 0x0)

00:15:18 executing program 1:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f00000001c0)=ANY=[@ANYBLOB="020d0000100000000000000000000000030006000000000002000000e000000100000000200000000800120002000200000000000000000040000000020300000000000f00000000020000000000000092ab000000000001020014bb000000000000000000000000030005000002000002000000e00000010000000002000000"], 0x80}}, 0x0)

00:15:18 executing program 0:
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x4, 0x31, 0xffffffffffffffff, 0x0)
futex(&(0x7f0000000040), 0x84, 0x0, 0x0, 0x0, 0x0)

00:15:18 executing program 2:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000000)="0ad41f123c123f319bd070")
mkdir(&(0x7f0000000100)='./file0\x00', 0x0)
mount(0x0, &(0x7f000002c000)='./file0\x00', &(0x7f0000000140)='ramfs\x00', 0x4040, 0x0)
r1 = creat(&(0x7f0000002500)='./file0/bus\x00', 0xcebb6064bb566d03)
write$P9_RLERRORu(r1, &(0x7f0000000080)={0x13, 0x7, 0x0, {{0x6, 'ramfs\x00'}}}, 0x13)
fcntl$lock(r1, 0x6, &(0x7f00000000c0)={0x1})
truncate(&(0x7f00000001c0)='./file0/bus\x00', 0x0)

00:15:18 executing program 3:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070")
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r1, 0x6, 0x200000000000013, &(0x7f0000000280)=0x400100000001, 0x4)
connect$inet6(r1, &(0x7f0000000080), 0x1c)
r2 = dup2(r1, r1)
setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r2, 0x6, 0x16, &(0x7f0000000440), 0x131f64)
setsockopt$inet6_opts(r2, 0x29, 0x37, &(0x7f0000000100)=@dstopts, 0x8)
clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
getsockopt$inet6_opts(r2, 0x29, 0x39, 0x0, &(0x7f00000002c0)=0x75e7bbccb046a12e)
write$UHID_INPUT(r2, 0x0, 0x0)

00:15:18 executing program 5:
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @remote, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0x2b, 0x0, @local={0xfe, 0x8a00, [0x0, 0x0, 0x3, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x634]}, @local, {[], @tcp={{0x0, 0x253, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

00:15:19 executing program 5:
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @remote, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0x2b, 0x0, @local={0xfe, 0x8a00, [0x0, 0x0, 0x3, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x634]}, @local, {[], @tcp={{0x0, 0x253, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

00:15:19 executing program 1:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f00000001c0)=ANY=[@ANYBLOB="020d0000100000000000000000000000030006000000000002000000e000000100000000200000000800120002000200000000000000000040000000020300000000000f00000000020000000000000092ab000000000001020014bb000000000000000000000000030005000002000002000000e00000010000000002000000"], 0x80}}, 0x0)

00:15:19 executing program 0:
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x4, 0x31, 0xffffffffffffffff, 0x0)
futex(&(0x7f0000000040), 0x84, 0x0, 0x0, 0x0, 0x0)

00:15:19 executing program 2:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000000)="0ad41f123c123f319bd070")
mkdir(&(0x7f0000000100)='./file0\x00', 0x0)
mount(0x0, &(0x7f000002c000)='./file0\x00', &(0x7f0000000140)='ramfs\x00', 0x4040, 0x0)
r1 = creat(&(0x7f0000002500)='./file0/bus\x00', 0xcebb6064bb566d03)
write$P9_RLERRORu(r1, &(0x7f0000000080)={0x13, 0x7, 0x0, {{0x6, 'ramfs\x00'}}}, 0x13)
fcntl$lock(r1, 0x6, &(0x7f00000000c0)={0x1})
truncate(&(0x7f00000001c0)='./file0/bus\x00', 0x0)

00:15:19 executing program 4:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000180)='./cgroup\x00', 0x200002, 0x0)
fchdir(r1)
syz_open_dev$media(0x0, 0x9, 0x400)
ioctl$SNDRV_CTL_IOCTL_ELEM_LOCK(0xffffffffffffffff, 0x40405514, &(0x7f0000000140)={0x0, 0x2, 0x4, 0x89, 'syz1\x00', 0x7ff})
openat$pfkey(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/self/net/pfkey\x00', 0x0, 0x0)
ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0x4008af12, 0x0)
bind$inet6(0xffffffffffffffff, 0x0, 0x0)
write$FUSE_WRITE(0xffffffffffffffff, &(0x7f0000000240)={0x18, 0x0, 0x0, {0x5}}, 0x18)
perf_event_open(&(0x7f00000001c0)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff, 0x7, 0x8, 0x5, 0x161, 0x0, 0x0, 0x3, 0x8, 0x0, 0xda4, 0x0, 0x3f, 0x0, 0x9, 0x3f, 0x10000, 0x0, 0xc291, 0x9, 0x0, 0x5, 0x0, 0x7, 0x4, 0x6, 0x0, 0x0, 0x0, 0x800, 0x0, @perf_bp={0x0, 0x6}, 0x40, 0x100000001, 0x0, 0xf, 0x1, 0xfffffffffffffffa}, 0xffffffffffffffff, 0xb, r0, 0x3)
syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000004c0)='./file0\x00', 0xe000, 0x1, &(0x7f0000000040)=[{&(0x7f0000000100)="eb3c906d6b66732e666174000204006902000270f7f8", 0x16}], 0x0, 0x0)
umount2(&(0x7f0000000280)='./file0\x00', 0x4)

00:15:19 executing program 0:
recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @local}}}, 0x80, 0x0}}], 0x1, 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ptrace$setopts(0xffffffffffffffff, 0x0, 0x0, 0x0)
socket$inet(0x2, 0x4000000000000001, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000001300)='maps\x00')
preadv(r0, &(0x7f00000017c0), 0x199, 0x0)

00:15:19 executing program 2:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000000)="0ad41f123c123f319bd070")
mkdir(&(0x7f0000000100)='./file0\x00', 0x0)
mount(0x0, &(0x7f000002c000)='./file0\x00', &(0x7f0000000140)='ramfs\x00', 0x4040, 0x0)
r1 = creat(&(0x7f0000002500)='./file0/bus\x00', 0xcebb6064bb566d03)
write$P9_RLERRORu(r1, &(0x7f0000000080)={0x13, 0x7, 0x0, {{0x6, 'ramfs\x00'}}}, 0x13)
fcntl$lock(r1, 0x6, &(0x7f00000000c0)={0x1})
truncate(&(0x7f00000001c0)='./file0/bus\x00', 0x0)

00:15:19 executing program 1:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f00000001c0)=ANY=[@ANYBLOB="020d0000100000000000000000000000030006000000000002000000e000000100000000200000000800120002000200000000000000000040000000020300000000000f00000000020000000000000092ab000000000001020014bb000000000000000000000000030005000002000002000000e00000010000000002000000"], 0x80}}, 0x0)

00:15:19 executing program 5:
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @remote, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0x2b, 0x0, @local={0xfe, 0x8a00, [0x0, 0x0, 0x3, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x634]}, @local, {[], @tcp={{0x0, 0x253, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

00:15:19 executing program 4:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000180)='./cgroup\x00', 0x200002, 0x0)
fchdir(r1)
syz_open_dev$media(0x0, 0x9, 0x400)
ioctl$SNDRV_CTL_IOCTL_ELEM_LOCK(0xffffffffffffffff, 0x40405514, &(0x7f0000000140)={0x0, 0x2, 0x4, 0x89, 'syz1\x00', 0x7ff})
openat$pfkey(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/self/net/pfkey\x00', 0x0, 0x0)
ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0x4008af12, 0x0)
bind$inet6(0xffffffffffffffff, 0x0, 0x0)
write$FUSE_WRITE(0xffffffffffffffff, &(0x7f0000000240)={0x18, 0x0, 0x0, {0x5}}, 0x18)
perf_event_open(&(0x7f00000001c0)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff, 0x7, 0x8, 0x5, 0x161, 0x0, 0x0, 0x3, 0x8, 0x0, 0xda4, 0x0, 0x3f, 0x0, 0x9, 0x3f, 0x10000, 0x0, 0xc291, 0x9, 0x0, 0x5, 0x0, 0x7, 0x4, 0x6, 0x0, 0x0, 0x0, 0x800, 0x0, @perf_bp={0x0, 0x6}, 0x40, 0x100000001, 0x0, 0xf, 0x1, 0xfffffffffffffffa}, 0xffffffffffffffff, 0xb, r0, 0x3)
syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000004c0)='./file0\x00', 0xe000, 0x1, &(0x7f0000000040)=[{&(0x7f0000000100)="eb3c906d6b66732e666174000204006902000270f7f8", 0x16}], 0x0, 0x0)
umount2(&(0x7f0000000280)='./file0\x00', 0x4)

00:15:19 executing program 3:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070")
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r1, 0x6, 0x200000000000013, &(0x7f0000000280)=0x400100000001, 0x4)
connect$inet6(r1, &(0x7f0000000080), 0x1c)
r2 = dup2(r1, r1)
setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r2, 0x6, 0x16, &(0x7f0000000440), 0x131f64)
setsockopt$inet6_opts(r2, 0x29, 0x37, &(0x7f0000000100)=@dstopts, 0x8)
clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
getsockopt$inet6_opts(r2, 0x29, 0x39, 0x0, &(0x7f00000002c0)=0x75e7bbccb046a12e)
write$UHID_INPUT(r2, 0x0, 0x0)

00:15:19 executing program 0:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000180)='./cgroup\x00', 0x200002, 0x0)
fchdir(r1)
syz_open_dev$media(0x0, 0x9, 0x400)
ioctl$SNDRV_CTL_IOCTL_ELEM_LOCK(0xffffffffffffffff, 0x40405514, &(0x7f0000000140)={0x0, 0x2, 0x4, 0x89, 'syz1\x00', 0x7ff})
openat$pfkey(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/self/net/pfkey\x00', 0x0, 0x0)
ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0x4008af12, 0x0)
bind$inet6(0xffffffffffffffff, 0x0, 0x0)
write$FUSE_WRITE(0xffffffffffffffff, &(0x7f0000000240)={0x18, 0x0, 0x0, {0x5}}, 0x18)
perf_event_open(&(0x7f00000001c0)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff, 0x7, 0x8, 0x5, 0x161, 0x0, 0x0, 0x3, 0x8, 0x0, 0xda4, 0x0, 0x3f, 0x0, 0x9, 0x3f, 0x10000, 0x0, 0xc291, 0x9, 0x0, 0x5, 0x0, 0x7, 0x4, 0x6, 0x0, 0x0, 0x0, 0x800, 0x0, @perf_bp={0x0, 0x6}, 0x40, 0x100000001, 0x0, 0xf, 0x1, 0xfffffffffffffffa}, 0xffffffffffffffff, 0xb, r0, 0x3)
syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000004c0)='./file0\x00', 0xe000, 0x1, &(0x7f0000000040)=[{&(0x7f0000000100)="eb3c906d6b66732e666174000204006902000270f7f8", 0x16}], 0x0, 0x0)
umount2(&(0x7f0000000280)='./file0\x00', 0x4)

00:15:19 executing program 1:
syz_open_dev$binder(&(0x7f0000d59ff3)='/dev/binder#\x00', 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$binder(0x0, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000001000/0x3000)=nil, 0x3000, 0x0, 0x20011, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f00000000c0)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x101, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
preadv(0xffffffffffffffff, &(0x7f0000000040), 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000040)={0x0, 0x500000000000000, 0x0, 0x1, 0x0, &(0x7f0000000140)="06"})
dup3(r0, 0xffffffffffffffff, 0x0)

00:15:19 executing program 4:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000180)='./cgroup\x00', 0x200002, 0x0)
fchdir(r1)
syz_open_dev$media(0x0, 0x9, 0x400)
ioctl$SNDRV_CTL_IOCTL_ELEM_LOCK(0xffffffffffffffff, 0x40405514, &(0x7f0000000140)={0x0, 0x2, 0x4, 0x89, 'syz1\x00', 0x7ff})
openat$pfkey(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/self/net/pfkey\x00', 0x0, 0x0)
ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0x4008af12, 0x0)
bind$inet6(0xffffffffffffffff, 0x0, 0x0)
write$FUSE_WRITE(0xffffffffffffffff, &(0x7f0000000240)={0x18, 0x0, 0x0, {0x5}}, 0x18)
perf_event_open(&(0x7f00000001c0)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff, 0x7, 0x8, 0x5, 0x161, 0x0, 0x0, 0x3, 0x8, 0x0, 0xda4, 0x0, 0x3f, 0x0, 0x9, 0x3f, 0x10000, 0x0, 0xc291, 0x9, 0x0, 0x5, 0x0, 0x7, 0x4, 0x6, 0x0, 0x0, 0x0, 0x800, 0x0, @perf_bp={0x0, 0x6}, 0x40, 0x100000001, 0x0, 0xf, 0x1, 0xfffffffffffffffa}, 0xffffffffffffffff, 0xb, r0, 0x3)
syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000004c0)='./file0\x00', 0xe000, 0x1, &(0x7f0000000040)=[{&(0x7f0000000100)="eb3c906d6b66732e666174000204006902000270f7f8", 0x16}], 0x0, 0x0)
umount2(&(0x7f0000000280)='./file0\x00', 0x4)

00:15:19 executing program 2:
r0 = creat(&(0x7f00000000c0)='./file0\x00', 0x0)
getsockopt$IP_VS_SO_GET_DESTS(r0, 0x0, 0x484, &(0x7f0000000400)=""/68, &(0x7f0000000540)=0x44)
write$cgroup_int(r0, &(0x7f0000000140)=0x81, 0x12)
ioctl$IOC_PR_PREEMPT(r0, 0x401870cb, &(0x7f00000001c0)={0x1f, 0x0, 0xfffffffffffffffb, 0x3})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
getpgid(0x0)
epoll_create(0x78c)
clone(0x802102001ffc, 0x0, 0xfffffffffffffffe, &(0x7f0000000040), 0xffffffffffffffff)
perf_event_open(&(0x7f0000000000)={0x5, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x200000000, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$VIDIOC_DQEVENT(0xffffffffffffffff, 0x80885659, &(0x7f0000000480)={0x0, @frame_sync})
ioctl$SG_GET_SCSI_ID(0xffffffffffffffff, 0x2276, 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000380)='nfs\x00\xef\xf1a\x17\x12\x9e\xd0Y\x8a\xa8\xd4', 0x0, &(0x7f0000000000))
getsockopt$inet_sctp_SCTP_I_WANT_MAPPED_V4_ADDR(r0, 0x84, 0xc, &(0x7f0000000080), &(0x7f0000000100)=0x4)
write$eventfd(r0, &(0x7f0000000340)=0x80000000, 0x8)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)

00:15:19 executing program 5:
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @remote, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0x2b, 0x0, @local={0xfe, 0x8a00, [0x0, 0x0, 0x3, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x634]}, @local, {[], @tcp={{0x0, 0x253, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

00:15:20 executing program 1:
syz_open_dev$binder(&(0x7f0000d59ff3)='/dev/binder#\x00', 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$binder(0x0, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000001000/0x3000)=nil, 0x3000, 0x0, 0x20011, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f00000000c0)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x101, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
preadv(0xffffffffffffffff, &(0x7f0000000040), 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000040)={0x0, 0x500000000000000, 0x0, 0x1, 0x0, &(0x7f0000000140)="06"})
dup3(r0, 0xffffffffffffffff, 0x0)

00:15:20 executing program 4:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000180)='./cgroup\x00', 0x200002, 0x0)
fchdir(r1)
syz_open_dev$media(0x0, 0x9, 0x400)
ioctl$SNDRV_CTL_IOCTL_ELEM_LOCK(0xffffffffffffffff, 0x40405514, &(0x7f0000000140)={0x0, 0x2, 0x4, 0x89, 'syz1\x00', 0x7ff})
openat$pfkey(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/self/net/pfkey\x00', 0x0, 0x0)
ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0x4008af12, 0x0)
bind$inet6(0xffffffffffffffff, 0x0, 0x0)
write$FUSE_WRITE(0xffffffffffffffff, &(0x7f0000000240)={0x18, 0x0, 0x0, {0x5}}, 0x18)
perf_event_open(&(0x7f00000001c0)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff, 0x7, 0x8, 0x5, 0x161, 0x0, 0x0, 0x3, 0x8, 0x0, 0xda4, 0x0, 0x3f, 0x0, 0x9, 0x3f, 0x10000, 0x0, 0xc291, 0x9, 0x0, 0x5, 0x0, 0x7, 0x4, 0x6, 0x0, 0x0, 0x0, 0x800, 0x0, @perf_bp={0x0, 0x6}, 0x40, 0x100000001, 0x0, 0xf, 0x1, 0xfffffffffffffffa}, 0xffffffffffffffff, 0xb, r0, 0x3)
syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000004c0)='./file0\x00', 0xe000, 0x1, &(0x7f0000000040)=[{&(0x7f0000000100)="eb3c906d6b66732e666174000204006902000270f7f8", 0x16}], 0x0, 0x0)
umount2(&(0x7f0000000280)='./file0\x00', 0x4)

[  918.467649] FAT-fs (loop0): Directory bread(block 26880) failed
[  918.484898] FAT-fs (loop0): Directory bread(block 26881) failed
00:15:20 executing program 5:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070")
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r1, 0x6, 0x200000000000013, &(0x7f0000000280)=0x400100000001, 0x4)
connect$inet6(r1, &(0x7f0000000080), 0x1c)
r2 = dup2(r1, r1)
setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r2, 0x6, 0x16, &(0x7f0000000440), 0x131f64)
setsockopt$inet6_opts(r2, 0x29, 0x37, &(0x7f0000000100)=@dstopts, 0x8)
clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
getsockopt$inet6_opts(r2, 0x29, 0x39, 0x0, &(0x7f00000002c0)=0x75e7bbccb046a12e)
write$UHID_INPUT(r2, 0x0, 0x0)

00:15:20 executing program 2:
r0 = creat(&(0x7f00000000c0)='./file0\x00', 0x0)
getsockopt$IP_VS_SO_GET_DESTS(r0, 0x0, 0x484, &(0x7f0000000400)=""/68, &(0x7f0000000540)=0x44)
write$cgroup_int(r0, &(0x7f0000000140)=0x81, 0x12)
ioctl$IOC_PR_PREEMPT(r0, 0x401870cb, &(0x7f00000001c0)={0x1f, 0x0, 0xfffffffffffffffb, 0x3})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
getpgid(0x0)
epoll_create(0x78c)
clone(0x802102001ffc, 0x0, 0xfffffffffffffffe, &(0x7f0000000040), 0xffffffffffffffff)
perf_event_open(&(0x7f0000000000)={0x5, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x200000000, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$VIDIOC_DQEVENT(0xffffffffffffffff, 0x80885659, &(0x7f0000000480)={0x0, @frame_sync})
ioctl$SG_GET_SCSI_ID(0xffffffffffffffff, 0x2276, 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000380)='nfs\x00\xef\xf1a\x17\x12\x9e\xd0Y\x8a\xa8\xd4', 0x0, &(0x7f0000000000))
getsockopt$inet_sctp_SCTP_I_WANT_MAPPED_V4_ADDR(r0, 0x84, 0xc, &(0x7f0000000080), &(0x7f0000000100)=0x4)
write$eventfd(r0, &(0x7f0000000340)=0x80000000, 0x8)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)

[  918.514779] FAT-fs (loop0): Directory bread(block 26882) failed
[  918.532494] FAT-fs (loop0): Directory bread(block 26883) failed
[  918.552875] FAT-fs (loop0): Directory bread(block 26884) failed
00:15:20 executing program 1:
syz_open_dev$binder(&(0x7f0000d59ff3)='/dev/binder#\x00', 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$binder(0x0, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000001000/0x3000)=nil, 0x3000, 0x0, 0x20011, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f00000000c0)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x101, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
preadv(0xffffffffffffffff, &(0x7f0000000040), 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000040)={0x0, 0x500000000000000, 0x0, 0x1, 0x0, &(0x7f0000000140)="06"})
dup3(r0, 0xffffffffffffffff, 0x0)

[  918.572146] net_ratelimit: 12 callbacks suppressed
[  918.572155] protocol 88fb is buggy, dev hsr_slave_0
[  918.572183] protocol 88fb is buggy, dev hsr_slave_1
[  918.577229] protocol 88fb is buggy, dev hsr_slave_1
[  918.600626] FAT-fs (loop0): Directory bread(block 26885) failed
[  918.621429] FAT-fs (loop0): Directory bread(block 26886) failed
[  918.642361] FAT-fs (loop0): Directory bread(block 26887) failed
[  918.674301] FAT-fs (loop0): Directory bread(block 26888) failed
[  918.702907] FAT-fs (loop0): Directory bread(block 26889) failed
00:15:20 executing program 4:
r0 = creat(&(0x7f00000000c0)='./file0\x00', 0x0)
getsockopt$IP_VS_SO_GET_DESTS(r0, 0x0, 0x484, &(0x7f0000000400)=""/68, &(0x7f0000000540)=0x44)
write$cgroup_int(r0, &(0x7f0000000140)=0x81, 0x12)
ioctl$IOC_PR_PREEMPT(r0, 0x401870cb, &(0x7f00000001c0)={0x1f, 0x0, 0xfffffffffffffffb, 0x3})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
getpgid(0x0)
epoll_create(0x78c)
clone(0x802102001ffc, 0x0, 0xfffffffffffffffe, &(0x7f0000000040), 0xffffffffffffffff)
perf_event_open(&(0x7f0000000000)={0x5, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x200000000, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$VIDIOC_DQEVENT(0xffffffffffffffff, 0x80885659, &(0x7f0000000480)={0x0, @frame_sync})
ioctl$SG_GET_SCSI_ID(0xffffffffffffffff, 0x2276, 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000380)='nfs\x00\xef\xf1a\x17\x12\x9e\xd0Y\x8a\xa8\xd4', 0x0, &(0x7f0000000000))
getsockopt$inet_sctp_SCTP_I_WANT_MAPPED_V4_ADDR(r0, 0x84, 0xc, &(0x7f0000000080), &(0x7f0000000100)=0x4)
write$eventfd(r0, &(0x7f0000000340)=0x80000000, 0x8)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)

00:15:20 executing program 3:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070")
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r1, 0x6, 0x200000000000013, &(0x7f0000000280)=0x400100000001, 0x4)
connect$inet6(r1, &(0x7f0000000080), 0x1c)
r2 = dup2(r1, r1)
setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r2, 0x6, 0x16, &(0x7f0000000440), 0x131f64)
setsockopt$inet6_opts(r2, 0x29, 0x37, &(0x7f0000000100)=@dstopts, 0x8)
clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
getsockopt$inet6_opts(r2, 0x29, 0x39, 0x0, &(0x7f00000002c0)=0x75e7bbccb046a12e)
write$UHID_INPUT(r2, 0x0, 0x0)

00:15:20 executing program 1:
syz_open_dev$binder(&(0x7f0000d59ff3)='/dev/binder#\x00', 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$binder(0x0, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000001000/0x3000)=nil, 0x3000, 0x0, 0x20011, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f00000000c0)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x101, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
preadv(0xffffffffffffffff, &(0x7f0000000040), 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000040)={0x0, 0x500000000000000, 0x0, 0x1, 0x0, &(0x7f0000000140)="06"})
dup3(r0, 0xffffffffffffffff, 0x0)

00:15:20 executing program 2:
r0 = creat(&(0x7f00000000c0)='./file0\x00', 0x0)
getsockopt$IP_VS_SO_GET_DESTS(r0, 0x0, 0x484, &(0x7f0000000400)=""/68, &(0x7f0000000540)=0x44)
write$cgroup_int(r0, &(0x7f0000000140)=0x81, 0x12)
ioctl$IOC_PR_PREEMPT(r0, 0x401870cb, &(0x7f00000001c0)={0x1f, 0x0, 0xfffffffffffffffb, 0x3})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
getpgid(0x0)
epoll_create(0x78c)
clone(0x802102001ffc, 0x0, 0xfffffffffffffffe, &(0x7f0000000040), 0xffffffffffffffff)
perf_event_open(&(0x7f0000000000)={0x5, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x200000000, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$VIDIOC_DQEVENT(0xffffffffffffffff, 0x80885659, &(0x7f0000000480)={0x0, @frame_sync})
ioctl$SG_GET_SCSI_ID(0xffffffffffffffff, 0x2276, 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000380)='nfs\x00\xef\xf1a\x17\x12\x9e\xd0Y\x8a\xa8\xd4', 0x0, &(0x7f0000000000))
getsockopt$inet_sctp_SCTP_I_WANT_MAPPED_V4_ADDR(r0, 0x84, 0xc, &(0x7f0000000080), &(0x7f0000000100)=0x4)
write$eventfd(r0, &(0x7f0000000340)=0x80000000, 0x8)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)

00:15:20 executing program 4:
r0 = creat(&(0x7f00000000c0)='./file0\x00', 0x0)
getsockopt$IP_VS_SO_GET_DESTS(r0, 0x0, 0x484, &(0x7f0000000400)=""/68, &(0x7f0000000540)=0x44)
write$cgroup_int(r0, &(0x7f0000000140)=0x81, 0x12)
ioctl$IOC_PR_PREEMPT(r0, 0x401870cb, &(0x7f00000001c0)={0x1f, 0x0, 0xfffffffffffffffb, 0x3})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
getpgid(0x0)
epoll_create(0x78c)
clone(0x802102001ffc, 0x0, 0xfffffffffffffffe, &(0x7f0000000040), 0xffffffffffffffff)
perf_event_open(&(0x7f0000000000)={0x5, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x200000000, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$VIDIOC_DQEVENT(0xffffffffffffffff, 0x80885659, &(0x7f0000000480)={0x0, @frame_sync})
ioctl$SG_GET_SCSI_ID(0xffffffffffffffff, 0x2276, 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000380)='nfs\x00\xef\xf1a\x17\x12\x9e\xd0Y\x8a\xa8\xd4', 0x0, &(0x7f0000000000))
getsockopt$inet_sctp_SCTP_I_WANT_MAPPED_V4_ADDR(r0, 0x84, 0xc, &(0x7f0000000080), &(0x7f0000000100)=0x4)
write$eventfd(r0, &(0x7f0000000340)=0x80000000, 0x8)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)

00:15:20 executing program 0:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000180)='./cgroup\x00', 0x200002, 0x0)
fchdir(r1)
syz_open_dev$media(0x0, 0x9, 0x400)
ioctl$SNDRV_CTL_IOCTL_ELEM_LOCK(0xffffffffffffffff, 0x40405514, &(0x7f0000000140)={0x0, 0x2, 0x4, 0x89, 'syz1\x00', 0x7ff})
openat$pfkey(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/self/net/pfkey\x00', 0x0, 0x0)
ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0x4008af12, 0x0)
bind$inet6(0xffffffffffffffff, 0x0, 0x0)
write$FUSE_WRITE(0xffffffffffffffff, &(0x7f0000000240)={0x18, 0x0, 0x0, {0x5}}, 0x18)
perf_event_open(&(0x7f00000001c0)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff, 0x7, 0x8, 0x5, 0x161, 0x0, 0x0, 0x3, 0x8, 0x0, 0xda4, 0x0, 0x3f, 0x0, 0x9, 0x3f, 0x10000, 0x0, 0xc291, 0x9, 0x0, 0x5, 0x0, 0x7, 0x4, 0x6, 0x0, 0x0, 0x0, 0x800, 0x0, @perf_bp={0x0, 0x6}, 0x40, 0x100000001, 0x0, 0xf, 0x1, 0xfffffffffffffffa}, 0xffffffffffffffff, 0xb, r0, 0x3)
syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000004c0)='./file0\x00', 0xe000, 0x1, &(0x7f0000000040)=[{&(0x7f0000000100)="eb3c906d6b66732e666174000204006902000270f7f8", 0x16}], 0x0, 0x0)
umount2(&(0x7f0000000280)='./file0\x00', 0x4)

00:15:20 executing program 4:
r0 = creat(&(0x7f00000000c0)='./file0\x00', 0x0)
getsockopt$IP_VS_SO_GET_DESTS(r0, 0x0, 0x484, &(0x7f0000000400)=""/68, &(0x7f0000000540)=0x44)
write$cgroup_int(r0, &(0x7f0000000140)=0x81, 0x12)
ioctl$IOC_PR_PREEMPT(r0, 0x401870cb, &(0x7f00000001c0)={0x1f, 0x0, 0xfffffffffffffffb, 0x3})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
getpgid(0x0)
epoll_create(0x78c)
clone(0x802102001ffc, 0x0, 0xfffffffffffffffe, &(0x7f0000000040), 0xffffffffffffffff)
perf_event_open(&(0x7f0000000000)={0x5, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x200000000, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$VIDIOC_DQEVENT(0xffffffffffffffff, 0x80885659, &(0x7f0000000480)={0x0, @frame_sync})
ioctl$SG_GET_SCSI_ID(0xffffffffffffffff, 0x2276, 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000380)='nfs\x00\xef\xf1a\x17\x12\x9e\xd0Y\x8a\xa8\xd4', 0x0, &(0x7f0000000000))
getsockopt$inet_sctp_SCTP_I_WANT_MAPPED_V4_ADDR(r0, 0x84, 0xc, &(0x7f0000000080), &(0x7f0000000100)=0x4)
write$eventfd(r0, &(0x7f0000000340)=0x80000000, 0x8)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)

00:15:20 executing program 1:
r0 = creat(&(0x7f00000000c0)='./file0\x00', 0x0)
getsockopt$IP_VS_SO_GET_DESTS(r0, 0x0, 0x484, &(0x7f0000000400)=""/68, &(0x7f0000000540)=0x44)
write$cgroup_int(r0, &(0x7f0000000140)=0x81, 0x12)
ioctl$IOC_PR_PREEMPT(r0, 0x401870cb, &(0x7f00000001c0)={0x1f, 0x0, 0xfffffffffffffffb, 0x3})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
getpgid(0x0)
epoll_create(0x78c)
clone(0x802102001ffc, 0x0, 0xfffffffffffffffe, &(0x7f0000000040), 0xffffffffffffffff)
perf_event_open(&(0x7f0000000000)={0x5, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x200000000, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$VIDIOC_DQEVENT(0xffffffffffffffff, 0x80885659, &(0x7f0000000480)={0x0, @frame_sync})
ioctl$SG_GET_SCSI_ID(0xffffffffffffffff, 0x2276, 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000380)='nfs\x00\xef\xf1a\x17\x12\x9e\xd0Y\x8a\xa8\xd4', 0x0, &(0x7f0000000000))
getsockopt$inet_sctp_SCTP_I_WANT_MAPPED_V4_ADDR(r0, 0x84, 0xc, &(0x7f0000000080), &(0x7f0000000100)=0x4)
write$eventfd(r0, &(0x7f0000000340)=0x80000000, 0x8)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)

[  919.372089] protocol 88fb is buggy, dev hsr_slave_0
[  919.377266] protocol 88fb is buggy, dev hsr_slave_1
[  919.382568] protocol 88fb is buggy, dev hsr_slave_0
[  919.387664] protocol 88fb is buggy, dev hsr_slave_1
[  919.425647] FAT-fs (loop0): Directory bread(block 26880) failed
[  919.477786] FAT-fs (loop0): Directory bread(block 26881) failed
[  919.518199] FAT-fs (loop0): Directory bread(block 26882) failed
[  919.532096] protocol 88fb is buggy, dev hsr_slave_0
[  919.532851] FAT-fs (loop0): Directory bread(block 26883) failed
[  919.537405] protocol 88fb is buggy, dev hsr_slave_1
[  919.572730] FAT-fs (loop0): Directory bread(block 26884) failed
00:15:21 executing program 2:
r0 = creat(&(0x7f00000000c0)='./file0\x00', 0x0)
getsockopt$IP_VS_SO_GET_DESTS(r0, 0x0, 0x484, &(0x7f0000000400)=""/68, &(0x7f0000000540)=0x44)
write$cgroup_int(r0, &(0x7f0000000140)=0x81, 0x12)
ioctl$IOC_PR_PREEMPT(r0, 0x401870cb, &(0x7f00000001c0)={0x1f, 0x0, 0xfffffffffffffffb, 0x3})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
getpgid(0x0)
epoll_create(0x78c)
clone(0x802102001ffc, 0x0, 0xfffffffffffffffe, &(0x7f0000000040), 0xffffffffffffffff)
perf_event_open(&(0x7f0000000000)={0x5, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x200000000, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$VIDIOC_DQEVENT(0xffffffffffffffff, 0x80885659, &(0x7f0000000480)={0x0, @frame_sync})
ioctl$SG_GET_SCSI_ID(0xffffffffffffffff, 0x2276, 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000380)='nfs\x00\xef\xf1a\x17\x12\x9e\xd0Y\x8a\xa8\xd4', 0x0, &(0x7f0000000000))
getsockopt$inet_sctp_SCTP_I_WANT_MAPPED_V4_ADDR(r0, 0x84, 0xc, &(0x7f0000000080), &(0x7f0000000100)=0x4)
write$eventfd(r0, &(0x7f0000000340)=0x80000000, 0x8)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)

[  919.632211] FAT-fs (loop0): Directory bread(block 26885) failed
[  919.654888] FAT-fs (loop0): Directory bread(block 26886) failed
[  919.698976] FAT-fs (loop0): Directory bread(block 26887) failed
[  919.734373] FAT-fs (loop0): Directory bread(block 26888) failed
[  919.768175] FAT-fs (loop0): Directory bread(block 26889) failed
00:15:21 executing program 5:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070")
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r1, 0x6, 0x200000000000013, &(0x7f0000000280)=0x400100000001, 0x4)
connect$inet6(r1, &(0x7f0000000080), 0x1c)
r2 = dup2(r1, r1)
setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r2, 0x6, 0x16, &(0x7f0000000440), 0x131f64)
setsockopt$inet6_opts(r2, 0x29, 0x37, &(0x7f0000000100)=@dstopts, 0x8)
clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
getsockopt$inet6_opts(r2, 0x29, 0x39, 0x0, &(0x7f00000002c0)=0x75e7bbccb046a12e)
write$UHID_INPUT(r2, 0x0, 0x0)

00:15:21 executing program 1:
r0 = creat(&(0x7f00000000c0)='./file0\x00', 0x0)
getsockopt$IP_VS_SO_GET_DESTS(r0, 0x0, 0x484, &(0x7f0000000400)=""/68, &(0x7f0000000540)=0x44)
write$cgroup_int(r0, &(0x7f0000000140)=0x81, 0x12)
ioctl$IOC_PR_PREEMPT(r0, 0x401870cb, &(0x7f00000001c0)={0x1f, 0x0, 0xfffffffffffffffb, 0x3})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
getpgid(0x0)
epoll_create(0x78c)
clone(0x802102001ffc, 0x0, 0xfffffffffffffffe, &(0x7f0000000040), 0xffffffffffffffff)
perf_event_open(&(0x7f0000000000)={0x5, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x200000000, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$VIDIOC_DQEVENT(0xffffffffffffffff, 0x80885659, &(0x7f0000000480)={0x0, @frame_sync})
ioctl$SG_GET_SCSI_ID(0xffffffffffffffff, 0x2276, 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000380)='nfs\x00\xef\xf1a\x17\x12\x9e\xd0Y\x8a\xa8\xd4', 0x0, &(0x7f0000000000))
getsockopt$inet_sctp_SCTP_I_WANT_MAPPED_V4_ADDR(r0, 0x84, 0xc, &(0x7f0000000080), &(0x7f0000000100)=0x4)
write$eventfd(r0, &(0x7f0000000340)=0x80000000, 0x8)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)

00:15:21 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f0000000040)='/dev/snd/controlC#\x00', 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_INFO(r0, 0x81785501, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, [], [], [], 0x0, 0x0, 0x0, 0x0, "c8d989727578bda7d81210d1cc3198c3"})

00:15:21 executing program 2:
socket$alg(0x26, 0x5, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000080))
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x40, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000023c0)={[{0x9}]})
ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f0000000000))

00:15:21 executing program 3:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070")
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r1, 0x6, 0x200000000000013, &(0x7f0000000280)=0x400100000001, 0x4)
connect$inet6(r1, &(0x7f0000000080), 0x1c)
r2 = dup2(r1, r1)
setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r2, 0x6, 0x16, &(0x7f0000000440), 0x131f64)
setsockopt$inet6_opts(r2, 0x29, 0x37, &(0x7f0000000100)=@dstopts, 0x8)
clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
getsockopt$inet6_opts(r2, 0x29, 0x39, 0x0, &(0x7f00000002c0)=0x75e7bbccb046a12e)
write$UHID_INPUT(r2, 0x0, 0x0)

00:15:21 executing program 4:
mount(0x0, &(0x7f0000000140)='./file0\x00', 0x0, 0x0, 0x0)
mount(0x0, 0x0, 0x0, 0x0, 0x0)
mount(0x0, 0x0, 0x0, 0x0, 0x0)
mount(&(0x7f0000000200)=ANY=[@ANYBLOB], 0x0, 0x0, 0x5010, 0x0)
mount(&(0x7f0000000440)=ANY=[@ANYBLOB="9558da36e2412ca90c3a354b3cf5f39218be11a160b767e745ce33f9a1e33adad4e2b9b53c036eb6"], 0x0, 0x0, 0x0, 0x0)
syz_open_procfs(0x0, &(0x7f0000000100)='mountinfo\x00')
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
getsockopt$IP6T_SO_GET_ENTRIES(0xffffffffffffffff, 0x29, 0x41, &(0x7f00000004c0)=ANY=[@ANYBLOB="6d616e676c6500000000000000000000000000000000000000007fae9ecb7cefa1b83e2d1394fb744539000000000000b6b200000093b205011fd58adef4fe3f34b7b27f92efed217d279da8ef8b111ba55aa3233a30e02b9aaadd97557c59fc663505f6be84539cb9dff968cc77e580831e1a45fbe1a1ee9a2889e47dc1fa70298c1e996161b35ea4c46c788e32124a173db3bb5ac2b28824922df73f6a6f3c016525af4b9c1cf29de386a95de4c91838621185abc52d3948eb841a42b9f355a895e9240292e7f3e077f54847f03c988001aaa1e235facd4ebaf42eb9d4effaf290cc4c9420c1c5db7fb5f676e3"], 0x0)
msync(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1)
r0 = socket$inet6(0xa, 0x803, 0x3)
ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8914, &(0x7f0000000040)={'bridge0\x00\x00\x01\x00'})
ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8914, &(0x7f0000000000)={'bridge0\x00\xff\xff\xfd\xfd\x00', 0xffffffffffffffdb})

00:15:21 executing program 0:
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000180)='./cgroup\x00', 0x200002, 0x0)
fchdir(r1)
syz_open_dev$media(0x0, 0x9, 0x400)
ioctl$SNDRV_CTL_IOCTL_ELEM_LOCK(0xffffffffffffffff, 0x40405514, &(0x7f0000000140)={0x0, 0x2, 0x4, 0x89, 'syz1\x00', 0x7ff})
openat$pfkey(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/self/net/pfkey\x00', 0x0, 0x0)
ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0x4008af12, 0x0)
bind$inet6(0xffffffffffffffff, 0x0, 0x0)
write$FUSE_WRITE(0xffffffffffffffff, &(0x7f0000000240)={0x18, 0x0, 0x0, {0x5}}, 0x18)
perf_event_open(&(0x7f00000001c0)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff, 0x7, 0x8, 0x5, 0x161, 0x0, 0x0, 0x3, 0x8, 0x0, 0xda4, 0x0, 0x3f, 0x0, 0x9, 0x3f, 0x10000, 0x0, 0xc291, 0x9, 0x0, 0x5, 0x0, 0x7, 0x4, 0x6, 0x0, 0x0, 0x0, 0x800, 0x0, @perf_bp={0x0, 0x6}, 0x40, 0x100000001, 0x0, 0xf, 0x1, 0xfffffffffffffffa}, 0xffffffffffffffff, 0xb, r0, 0x3)
syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000004c0)='./file0\x00', 0xe000, 0x1, &(0x7f0000000040)=[{&(0x7f0000000100)="eb3c906d6b66732e666174000204006902000270f7f8", 0x16}], 0x0, 0x0)
umount2(&(0x7f0000000280)='./file0\x00', 0x4)

00:15:21 executing program 2:
r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ppp\x00', 0x0, 0x0)
ioctl$PPPIOCNEWUNIT(r0, 0xc004743e, &(0x7f0000000140))
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
readv(r0, &(0x7f00000000c0)=[{&(0x7f0000000180)=""/122, 0x7a}], 0x1)

00:15:21 executing program 2:
r0 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ashmem\x00', 0x0, 0x0)
ioctl$ASHMEM_SET_NAME(r0, 0x41007701, &(0x7f0000000300)='/dev/inxut/even\x8dG\xf8\x15a ,x`+t#\x00')
ioctl$ASHMEM_GET_NAME(r0, 0x81007702, &(0x7f0000000040)=""/44)

[  920.294172] bridge0: port 2(bridge_slave_1) entered disabled state
[  920.304474] bridge0: port 1(bridge_slave_0) entered disabled state
[  920.452000] FAT-fs (loop0): Directory bread(block 26880) failed
[  920.467325] FAT-fs (loop0): Directory bread(block 26881) failed
[  920.477169] FAT-fs (loop0): Directory bread(block 26882) failed
[  920.495867] FAT-fs (loop0): Directory bread(block 26883) failed
[  920.507724] FAT-fs (loop0): Directory bread(block 26884) failed
[  920.517623] FAT-fs (loop0): Directory bread(block 26885) failed
[  920.529876] FAT-fs (loop0): Directory bread(block 26886) failed
[  920.539633] FAT-fs (loop0): Directory bread(block 26887) failed
00:15:22 executing program 2:
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000040))
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070")
syz_execute_func(&(0x7f0000000080)="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")

[  920.553440] FAT-fs (loop0): Directory bread(block 26888) failed
[  920.559999] FAT-fs (loop0): Directory bread(block 26889) failed
00:15:22 executing program 1:
r0 = creat(&(0x7f00000000c0)='./file0\x00', 0x0)
getsockopt$IP_VS_SO_GET_DESTS(r0, 0x0, 0x484, &(0x7f0000000400)=""/68, &(0x7f0000000540)=0x44)
write$cgroup_int(r0, &(0x7f0000000140)=0x81, 0x12)
ioctl$IOC_PR_PREEMPT(r0, 0x401870cb, &(0x7f00000001c0)={0x1f, 0x0, 0xfffffffffffffffb, 0x3})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
getpgid(0x0)
epoll_create(0x78c)
clone(0x802102001ffc, 0x0, 0xfffffffffffffffe, &(0x7f0000000040), 0xffffffffffffffff)
perf_event_open(&(0x7f0000000000)={0x5, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x200000000, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$VIDIOC_DQEVENT(0xffffffffffffffff, 0x80885659, &(0x7f0000000480)={0x0, @frame_sync})
ioctl$SG_GET_SCSI_ID(0xffffffffffffffff, 0x2276, 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000380)='nfs\x00\xef\xf1a\x17\x12\x9e\xd0Y\x8a\xa8\xd4', 0x0, &(0x7f0000000000))
getsockopt$inet_sctp_SCTP_I_WANT_MAPPED_V4_ADDR(r0, 0x84, 0xc, &(0x7f0000000080), &(0x7f0000000100)=0x4)
write$eventfd(r0, &(0x7f0000000340)=0x80000000, 0x8)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)

[  920.652168] protocol 88fb is buggy, dev hsr_slave_0
00:15:22 executing program 1:
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
connect$inet(r0, &(0x7f00000000c0)={0x2, 0x0, @local={0xac, 0x14, 0xffffffffffffffff}}, 0x10)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
connect$inet(r1, &(0x7f0000000040)={0x2, 0x0, @dev}, 0x79)
r2 = socket$netlink(0x10, 0x3, 0x400000000000004)
writev(r2, &(0x7f0000000080)=[{&(0x7f0000000100)="480000001400190d09004beafd0d8c560284ed7a80ffe00600000000000000a2bc5603ca00000f7f89000000200000000101ff0000000309ff5bffff00c7e5ed4e00000000000000", 0x48}], 0x1)
recvmmsg(r2, &(0x7f0000001680)=[{{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000180)=""/157, 0x9d}, {&(0x7f0000000500)=""/4096, 0x1000}, {&(0x7f0000001580)=""/220, 0xdc}], 0x3}}], 0x1, 0x0, 0x0)

00:15:22 executing program 5:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070")
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r1, 0x6, 0x200000000000013, &(0x7f0000000280)=0x400100000001, 0x4)
connect$inet6(r1, &(0x7f0000000080), 0x1c)
r2 = dup2(r1, r1)
setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r2, 0x6, 0x16, &(0x7f0000000440), 0x131f64)
setsockopt$inet6_opts(r2, 0x29, 0x37, &(0x7f0000000100)=@dstopts, 0x8)
clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
getsockopt$inet6_opts(r2, 0x29, 0x39, 0x0, &(0x7f00000002c0)=0x75e7bbccb046a12e)
write$UHID_INPUT(r2, 0x0, 0x0)

00:15:22 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
write(r0, &(0x7f0000000100)="2400000052001f0014000000000000000200071008000100ffffff1f4a8a268925ff0800", 0x24)

00:15:23 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x800000000000}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$bfs(&(0x7f00000000c0)='bfs\x00', &(0x7f0000000040)='./file0\x00', 0x80000004, 0x1, &(0x7f0000000080)=[{&(0x7f0000000140)="cefaad1bb83c000014dc", 0xa}], 0x0, 0x13)
open(&(0x7f0000000300)='./file0\x00', 0x40, 0x20)

[  921.606599] bridge0: port 2(bridge_slave_1) entered blocking state
[  921.613117] bridge0: port 2(bridge_slave_1) entered forwarding state
[  921.619858] bridge0: port 1(bridge_slave_0) entered blocking state
[  921.626369] bridge0: port 1(bridge_slave_0) entered forwarding state
00:15:23 executing program 1:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070")
r1 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r1, &(0x7f00000001c0)={0xa, 0x0, 0x0, @local, 0x2}, 0x1c)
connect$inet6(r1, &(0x7f0000000180)={0xa, 0x4e20, 0x0, @ipv4={[], [], @loopback}}, 0x1c)
sendmmsg(r1, &(0x7f0000000440), 0x400000000000211, 0x810)

00:15:23 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x800000000000}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$bfs(&(0x7f00000000c0)='bfs\x00', &(0x7f0000000040)='./file0\x00', 0x80000004, 0x1, &(0x7f0000000080)=[{&(0x7f0000000140)="cefaad1bb83c000014dc", 0xa}], 0x0, 0x13)
open(&(0x7f0000000300)='./file0\x00', 0x40, 0x20)

[  921.773488] device bridge0 entered promiscuous mode
[  921.779415] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready
[  921.811290] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'.
00:15:23 executing program 4:
mount(0x0, &(0x7f0000000140)='./file0\x00', 0x0, 0x0, 0x0)
mount(0x0, 0x0, 0x0, 0x0, 0x0)
mount(0x0, 0x0, 0x0, 0x0, 0x0)
mount(&(0x7f0000000200)=ANY=[@ANYBLOB], 0x0, 0x0, 0x5010, 0x0)
mount(&(0x7f0000000440)=ANY=[@ANYBLOB="9558da36e2412ca90c3a354b3cf5f39218be11a160b767e745ce33f9a1e33adad4e2b9b53c036eb6"], 0x0, 0x0, 0x0, 0x0)
syz_open_procfs(0x0, &(0x7f0000000100)='mountinfo\x00')
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
getsockopt$IP6T_SO_GET_ENTRIES(0xffffffffffffffff, 0x29, 0x41, &(0x7f00000004c0)=ANY=[@ANYBLOB="6d616e676c6500000000000000000000000000000000000000007fae9ecb7cefa1b83e2d1394fb744539000000000000b6b200000093b205011fd58adef4fe3f34b7b27f92efed217d279da8ef8b111ba55aa3233a30e02b9aaadd97557c59fc663505f6be84539cb9dff968cc77e580831e1a45fbe1a1ee9a2889e47dc1fa70298c1e996161b35ea4c46c788e32124a173db3bb5ac2b28824922df73f6a6f3c016525af4b9c1cf29de386a95de4c91838621185abc52d3948eb841a42b9f355a895e9240292e7f3e077f54847f03c988001aaa1e235facd4ebaf42eb9d4effaf290cc4c9420c1c5db7fb5f676e3"], 0x0)
msync(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1)
r0 = socket$inet6(0xa, 0x803, 0x3)
ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8914, &(0x7f0000000040)={'bridge0\x00\x00\x01\x00'})
ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8914, &(0x7f0000000000)={'bridge0\x00\xff\xff\xfd\xfd\x00', 0xffffffffffffffdb})

00:15:23 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
write(r0, &(0x7f0000000100)="2400000052001f0014000000000000000200071008000100ffffff1f4a8a268925ff0800", 0x24)

00:15:23 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x800000000000}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$bfs(&(0x7f00000000c0)='bfs\x00', &(0x7f0000000040)='./file0\x00', 0x80000004, 0x1, &(0x7f0000000080)=[{&(0x7f0000000140)="cefaad1bb83c000014dc", 0xa}], 0x0, 0x13)
open(&(0x7f0000000300)='./file0\x00', 0x40, 0x20)

[  922.002567] bridge0: port 2(bridge_slave_1) entered disabled state
[  922.011759] bridge0: port 1(bridge_slave_0) entered disabled state
[  922.050249] device bridge0 left promiscuous mode
00:15:23 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x800000000000}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$bfs(&(0x7f00000000c0)='bfs\x00', &(0x7f0000000040)='./file0\x00', 0x80000004, 0x1, &(0x7f0000000080)=[{&(0x7f0000000140)="cefaad1bb83c000014dc", 0xa}], 0x0, 0x13)
open(&(0x7f0000000300)='./file0\x00', 0x40, 0x20)

[  923.127741] bridge0: port 2(bridge_slave_1) entered blocking state
[  923.134235] bridge0: port 2(bridge_slave_1) entered forwarding state
[  923.140973] bridge0: port 1(bridge_slave_0) entered blocking state
[  923.147427] bridge0: port 1(bridge_slave_0) entered forwarding state
[  923.179302] device bridge0 entered promiscuous mode
[  923.192598] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready
[  923.210068] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'.
[  923.224655] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  923.692062] net_ratelimit: 17 callbacks suppressed
[  923.692071] protocol 88fb is buggy, dev hsr_slave_0
[  923.702313] protocol 88fb is buggy, dev hsr_slave_1
00:15:25 executing program 3:
ioctl$TCSETS(0xffffffffffffffff, 0x40045431, &(0x7f0000000080))
ioctl$TIOCPKT(0xffffffffffffffff, 0x5420, 0x0)
socket$inet_dccp(0x2, 0x6, 0x0)
setsockopt$IP_VS_SO_SET_ADDDEST(0xffffffffffffffff, 0x0, 0x487, 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$vbi(&(0x7f0000000480)='/dev/vbi#\x00', 0x1, 0x2)
r1 = memfd_create(&(0x7f0000000000)='\xac\x01\x00', 0x0)
syz_genetlink_get_family_id$ipvs(&(0x7f0000000180)='IPVS\x00')
ftruncate(r1, 0x1000000)
pwritev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f00000002c0)}], 0x1, 0x12)
fcntl$setflags(0xffffffffffffffff, 0x2, 0x0)
sendfile(r0, r1, &(0x7f00000000c0)=0xf10001, 0xeffffdef)

00:15:25 executing program 5:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f123c123f319bd070")
openat$vfio(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vfio/vfio\x00', 0x80, 0x0)
r1 = socket$inet6(0xa, 0x400000000001, 0x0)
r2 = dup(r1)
setsockopt$inet6_tcp_int(r2, 0x6, 0xa, &(0x7f00007b1000)=0x81, 0x4)
bind$inet6(r1, &(0x7f00000000c0)={0xa, 0x4e20}, 0x1c)
setsockopt$inet6_tcp_TCP_CONGESTION(r2, 0x6, 0xd, &(0x7f0000000080)='dctcp\x00', 0x6)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
socket$unix(0x1, 0x5, 0x0)
getresgid(&(0x7f0000000000), &(0x7f0000000100), &(0x7f00000001c0))
socket$inet6_dccp(0xa, 0x6, 0x0)
socket$inet_tcp(0x2, 0x1, 0x0)
prctl$PR_SET_PTRACER(0x59616d61, 0x0)
getpriority(0x0, 0x0)
ioprio_set$pid(0x0, 0x0, 0x0)
getsockopt$inet_int(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
sendto$inet6(r1, 0x0, 0x0, 0x20000008, &(0x7f00008d4fe4)={0xa, 0x4e20, 0x0, @loopback}, 0x1c)
getsockopt$inet6_dccp_int(0xffffffffffffffff, 0x21, 0x0, 0x0, 0x0)
setsockopt$EBT_SO_SET_COUNTERS(0xffffffffffffffff, 0x0, 0x81, 0x0, 0x0)
setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0)
getsockopt$inet6_tcp_TCP_REPAIR_WINDOW(r2, 0x6, 0x1d, &(0x7f0000000140), &(0x7f0000000180)=0x14)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r3 = getpgid(0x0)
ptrace$cont(0x3f, r3, 0x40000007a42, 0x7)
r4 = open(&(0x7f0000000040)='./bus\x00', 0x141042, 0x0)
getsockopt$inet6_tcp_int(r2, 0x6, 0x6, 0x0, 0x0)
ftruncate(r4, 0x7fff)
sendfile(r2, r4, 0x0, 0x8000fffffffe)

00:15:25 executing program 2:
open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0)
open(&(0x7f00000001c0)='./bus\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xed}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6(0xa, 0xffffffffffffffff, 0x1)
r1 = fcntl$getown(r0, 0x9)
rmdir(&(0x7f0000000580)='./bus\x00')
write$binfmt_elf64(0xffffffffffffffff, &(0x7f00000007c0)=ANY=[], 0x0)
mkdir(&(0x7f0000000100)='./bus\x00', 0x0)
ioctl$PIO_UNISCRNMAP(0xffffffffffffffff, 0x4b6a, &(0x7f0000000fc0))
r2 = socket$inet6(0xa, 0x3, 0x6)
sendmsg$TIPC_NL_BEARER_ENABLE(0xffffffffffffffff, &(0x7f0000000540)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000480)={&(0x7f0000000bc0)=ANY=[@ANYBLOB="020029bd7000fedbdf2503000000cc0004004c00070008000300ffffffff0800030000000000080003000200000008000200ff0f00000800040002000000418e0300d9edffff0700010018000000080001001400000008000400080000000c00010073797a300000000044000700080001000900000008000100040000000800030000080000080002000000000008000200ff070000080001000d000000080004001301000008000300080000000c00010073797a31000000000c00010073797a31000000001400010062726f6164636173742d6c696e6b008066b5b5fb44fc99cace02c13bd679946a5b16246e5bab3b5135c9db327928252dea538a035ab811563dc238150974ed87ff861c515f5b0d3a13e2491bd35190a3b649f54b3f8c36f9a059c1317fc95166f34f81d6a80a2db5125e78737e3400ca06d66fe01566a0bb5fc0f9d8831348e6f22ffc387bea9cd0a8783ba2c9d6e333852295d3ebe9dbb2d9c51b5599ddfe3b05dce905dd453c3e2d12f53fba688c05b11adc2f224f3e5d67d51a3a2c0424ac0416236f3b6024cf7732f2e2b9455fd10ccf80283fe6a94863454767709b345fbb2449fda409c51426956185874ebc90d099a4f7d8ecd59d3db9b26a35c07dae47ff3145538e4d44fd2bc1a8f676000596b8fb8bd4b9"], 0x1}, 0x1, 0x0, 0x0, 0x10}, 0x801)
setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0xcf, 0x0, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r2, 0x29, 0x20, &(0x7f0000000880)={@remote={0xfe, 0x80, [0x2]}, 0x800, 0x0, 0x3, 0x1}, 0x21)
fcntl$setownex(0xffffffffffffffff, 0xf, &(0x7f0000000180)={0x2, r1})
fsetxattr$trusted_overlay_redirect(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r2, 0x29, 0x20, &(0x7f0000000000)={@local, 0x0, 0x0, 0xfe, 0x3}, 0x20)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r2, 0x29, 0x20, &(0x7f0000000040)={@loopback, 0x0, 0x0, 0x1}, 0x20)
socket$inet6(0xa, 0xa, 0x3ff)
r3 = syz_open_procfs(0x0, &(0x7f0000000340)='net/ip6_flowlabel\x00n\xc01\x14\x894X\xed\xc1\xc9\xd8\xdcK\r\x8d\xae\x98&@\xd0\xe6\xbbQ\xd7\xffYn\x1c\x92\xde\x0e\xaa1\x91\x98\xe9\x1f\nMCi|+\xcdw\xf0\x176Z\xf1`\xac\xf3;\xd6d2\xeb\xe5\f\x0e\x8b\xda\xf7\xfc9\xfe\xff4\xef\'\xa19q\x93\"\x7fG3\xc1E\xe6e6\xc6\xc2u\x11% \xe7+0\x97\x84;\\\xda\xc4\x80\xc3\xb18N\xbfY%\x05\xf8\x85\x89\xfc\xd2\xd7')
sendfile(r2, r3, &(0x7f00000000c0)=0x202, 0x8)

00:15:25 executing program 1:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070")
r1 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r1, &(0x7f00000001c0)={0xa, 0x0, 0x0, @local, 0x2}, 0x1c)
connect$inet6(r1, &(0x7f0000000180)={0xa, 0x4e20, 0x0, @ipv4={[], [], @loopback}}, 0x1c)
sendmmsg(r1, &(0x7f0000000440), 0x400000000000211, 0x810)

00:15:25 executing program 4:
mount(0x0, &(0x7f0000000140)='./file0\x00', 0x0, 0x0, 0x0)
mount(0x0, 0x0, 0x0, 0x0, 0x0)
mount(0x0, 0x0, 0x0, 0x0, 0x0)
mount(&(0x7f0000000200)=ANY=[@ANYBLOB], 0x0, 0x0, 0x5010, 0x0)
mount(&(0x7f0000000440)=ANY=[@ANYBLOB="9558da36e2412ca90c3a354b3cf5f39218be11a160b767e745ce33f9a1e33adad4e2b9b53c036eb6"], 0x0, 0x0, 0x0, 0x0)
syz_open_procfs(0x0, &(0x7f0000000100)='mountinfo\x00')
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
getsockopt$IP6T_SO_GET_ENTRIES(0xffffffffffffffff, 0x29, 0x41, &(0x7f00000004c0)=ANY=[@ANYBLOB="6d616e676c6500000000000000000000000000000000000000007fae9ecb7cefa1b83e2d1394fb744539000000000000b6b200000093b205011fd58adef4fe3f34b7b27f92efed217d279da8ef8b111ba55aa3233a30e02b9aaadd97557c59fc663505f6be84539cb9dff968cc77e580831e1a45fbe1a1ee9a2889e47dc1fa70298c1e996161b35ea4c46c788e32124a173db3bb5ac2b28824922df73f6a6f3c016525af4b9c1cf29de386a95de4c91838621185abc52d3948eb841a42b9f355a895e9240292e7f3e077f54847f03c988001aaa1e235facd4ebaf42eb9d4effaf290cc4c9420c1c5db7fb5f676e3"], 0x0)
msync(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1)
r0 = socket$inet6(0xa, 0x803, 0x3)
ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8914, &(0x7f0000000040)={'bridge0\x00\x00\x01\x00'})
ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8914, &(0x7f0000000000)={'bridge0\x00\xff\xff\xfd\xfd\x00', 0xffffffffffffffdb})

00:15:25 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
write(r0, &(0x7f0000000100)="2400000052001f0014000000000000000200071008000100ffffff1f4a8a268925ff0800", 0x24)

[  924.305474] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'.
[  924.383409] bridge0: port 2(bridge_slave_1) entered disabled state
[  924.392149] bridge0: port 1(bridge_slave_0) entered disabled state
00:15:26 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
write(r0, &(0x7f0000000100)="2400000052001f0014000000000000000200071008000100ffffff1f4a8a268925ff0800", 0x24)

00:15:26 executing program 3:
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
setsockopt$ARPT_SO_SET_ADD_COUNTERS(0xffffffffffffffff, 0x0, 0x61, &(0x7f0000000180)={'filter\x00', 0x4}, 0x68)
syz_open_procfs$namespace(0x0, 0x0)
ioctl$EXT4_IOC_MOVE_EXT(0xffffffffffffffff, 0xc028660f, 0x0)
r0 = gettid()
exit_group(0x0)
ptrace(0x4206, r0)
openat$autofs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/autofs\x00', 0x0, 0x0)
write$P9_RSTAT(0xffffffffffffffff, 0x0, 0x0)

[  924.518556] device bridge0 left promiscuous mode
00:15:26 executing program 1:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070")
r1 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r1, &(0x7f00000001c0)={0xa, 0x0, 0x0, @local, 0x2}, 0x1c)
connect$inet6(r1, &(0x7f0000000180)={0xa, 0x4e20, 0x0, @ipv4={[], [], @loopback}}, 0x1c)
sendmmsg(r1, &(0x7f0000000440), 0x400000000000211, 0x810)

00:15:26 executing program 3:
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
setsockopt$ARPT_SO_SET_ADD_COUNTERS(0xffffffffffffffff, 0x0, 0x61, &(0x7f0000000180)={'filter\x00', 0x4}, 0x68)
syz_open_procfs$namespace(0x0, 0x0)
ioctl$EXT4_IOC_MOVE_EXT(0xffffffffffffffff, 0xc028660f, 0x0)
r0 = gettid()
exit_group(0x0)
ptrace(0x4206, r0)
openat$autofs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/autofs\x00', 0x0, 0x0)
write$P9_RSTAT(0xffffffffffffffff, 0x0, 0x0)

[  924.812148] protocol 88fb is buggy, dev hsr_slave_0
[  924.813107] protocol 88fb is buggy, dev hsr_slave_0
[  924.817572] protocol 88fb is buggy, dev hsr_slave_1
[  924.823679] protocol 88fb is buggy, dev hsr_slave_1
00:15:26 executing program 3:
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
setsockopt$ARPT_SO_SET_ADD_COUNTERS(0xffffffffffffffff, 0x0, 0x61, &(0x7f0000000180)={'filter\x00', 0x4}, 0x68)
syz_open_procfs$namespace(0x0, 0x0)
ioctl$EXT4_IOC_MOVE_EXT(0xffffffffffffffff, 0xc028660f, 0x0)
r0 = gettid()
exit_group(0x0)
ptrace(0x4206, r0)
openat$autofs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/autofs\x00', 0x0, 0x0)
write$P9_RSTAT(0xffffffffffffffff, 0x0, 0x0)

00:15:26 executing program 3:
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
setsockopt$ARPT_SO_SET_ADD_COUNTERS(0xffffffffffffffff, 0x0, 0x61, &(0x7f0000000180)={'filter\x00', 0x4}, 0x68)
syz_open_procfs$namespace(0x0, 0x0)
ioctl$EXT4_IOC_MOVE_EXT(0xffffffffffffffff, 0xc028660f, 0x0)
r0 = gettid()
exit_group(0x0)
ptrace(0x4206, r0)
openat$autofs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/autofs\x00', 0x0, 0x0)
write$P9_RSTAT(0xffffffffffffffff, 0x0, 0x0)

00:15:27 executing program 3:
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
setsockopt$ARPT_SO_SET_ADD_COUNTERS(0xffffffffffffffff, 0x0, 0x61, &(0x7f0000000180)={'filter\x00', 0x4}, 0x68)
syz_open_procfs$namespace(0x0, 0x0)
ioctl$EXT4_IOC_MOVE_EXT(0xffffffffffffffff, 0xc028660f, 0x0)
r0 = gettid()
exit_group(0x0)
ptrace(0x4206, r0)
openat$autofs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/autofs\x00', 0x0, 0x0)
write$P9_RSTAT(0xffffffffffffffff, 0x0, 0x0)

[  925.612077] protocol 88fb is buggy, dev hsr_slave_0
[  925.617790] protocol 88fb is buggy, dev hsr_slave_1
[  925.623267] protocol 88fb is buggy, dev hsr_slave_0
[  925.628676] protocol 88fb is buggy, dev hsr_slave_1
[  925.702213] bridge0: port 2(bridge_slave_1) entered blocking state
[  925.710315] bridge0: port 2(bridge_slave_1) entered forwarding state
[  925.717568] bridge0: port 1(bridge_slave_0) entered blocking state
[  925.724567] bridge0: port 1(bridge_slave_0) entered forwarding state
[  925.762555] device bridge0 entered promiscuous mode
[  925.768963] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready
[  925.791418] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'.
00:15:27 executing program 5:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f123c123f319bd070")
openat$vfio(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vfio/vfio\x00', 0x80, 0x0)
r1 = socket$inet6(0xa, 0x400000000001, 0x0)
r2 = dup(r1)
setsockopt$inet6_tcp_int(r2, 0x6, 0xa, &(0x7f00007b1000)=0x81, 0x4)
bind$inet6(r1, &(0x7f00000000c0)={0xa, 0x4e20}, 0x1c)
setsockopt$inet6_tcp_TCP_CONGESTION(r2, 0x6, 0xd, &(0x7f0000000080)='dctcp\x00', 0x6)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
socket$unix(0x1, 0x5, 0x0)
getresgid(&(0x7f0000000000), &(0x7f0000000100), &(0x7f00000001c0))
socket$inet6_dccp(0xa, 0x6, 0x0)
socket$inet_tcp(0x2, 0x1, 0x0)
prctl$PR_SET_PTRACER(0x59616d61, 0x0)
getpriority(0x0, 0x0)
ioprio_set$pid(0x0, 0x0, 0x0)
getsockopt$inet_int(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
sendto$inet6(r1, 0x0, 0x0, 0x20000008, &(0x7f00008d4fe4)={0xa, 0x4e20, 0x0, @loopback}, 0x1c)
getsockopt$inet6_dccp_int(0xffffffffffffffff, 0x21, 0x0, 0x0, 0x0)
setsockopt$EBT_SO_SET_COUNTERS(0xffffffffffffffff, 0x0, 0x81, 0x0, 0x0)
setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0)
getsockopt$inet6_tcp_TCP_REPAIR_WINDOW(r2, 0x6, 0x1d, &(0x7f0000000140), &(0x7f0000000180)=0x14)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r3 = getpgid(0x0)
ptrace$cont(0x3f, r3, 0x40000007a42, 0x7)
r4 = open(&(0x7f0000000040)='./bus\x00', 0x141042, 0x0)
getsockopt$inet6_tcp_int(r2, 0x6, 0x6, 0x0, 0x0)
ftruncate(r4, 0x7fff)
sendfile(r2, r4, 0x0, 0x8000fffffffe)

[  926.732110] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  928.972046] net_ratelimit: 11 callbacks suppressed
[  928.972055] protocol 88fb is buggy, dev hsr_slave_0
[  928.972091] protocol 88fb is buggy, dev hsr_slave_1
[  928.977105] protocol 88fb is buggy, dev hsr_slave_1
[  929.772019] protocol 88fb is buggy, dev hsr_slave_0
[  929.777553] protocol 88fb is buggy, dev hsr_slave_1
[  929.783002] protocol 88fb is buggy, dev hsr_slave_0
[  929.788366] protocol 88fb is buggy, dev hsr_slave_1
[  929.932008] protocol 88fb is buggy, dev hsr_slave_0
[  929.937858] protocol 88fb is buggy, dev hsr_slave_1
[  931.052040] protocol 88fb is buggy, dev hsr_slave_0
[  933.679560] syz-executor.2 invoked oom-killer: gfp_mask=0x7080c0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), nodemask=(null), order=0, oom_score_adj=0
00:15:35 executing program 2:
r0 = socket$inet6(0x10, 0x3, 0x0)
sendmsg(r0, &(0x7f0000002fc8)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000000)="5500000018007f1412fe01b2a4a280930a06000000a84306910500000b000f0035020000060000001900154006000001d40000dc1338d54400009b84136ef75afb83de44110016000d0002000000060cec4faba7d4", 0x55}], 0x1}, 0x0)

00:15:35 executing program 3:
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
setsockopt$ARPT_SO_SET_ADD_COUNTERS(0xffffffffffffffff, 0x0, 0x61, &(0x7f0000000180)={'filter\x00', 0x4}, 0x68)
syz_open_procfs$namespace(0x0, 0x0)
ioctl$EXT4_IOC_MOVE_EXT(0xffffffffffffffff, 0xc028660f, 0x0)
r0 = gettid()
exit_group(0x0)
ptrace(0x4206, r0)
openat$autofs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/autofs\x00', 0x0, 0x0)
write$P9_RSTAT(0xffffffffffffffff, 0x0, 0x0)

00:15:35 executing program 4:
mount(0x0, &(0x7f0000000140)='./file0\x00', 0x0, 0x0, 0x0)
mount(0x0, 0x0, 0x0, 0x0, 0x0)
mount(0x0, 0x0, 0x0, 0x0, 0x0)
mount(&(0x7f0000000200)=ANY=[@ANYBLOB], 0x0, 0x0, 0x5010, 0x0)
mount(&(0x7f0000000440)=ANY=[@ANYBLOB="9558da36e2412ca90c3a354b3cf5f39218be11a160b767e745ce33f9a1e33adad4e2b9b53c036eb6"], 0x0, 0x0, 0x0, 0x0)
syz_open_procfs(0x0, &(0x7f0000000100)='mountinfo\x00')
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
getsockopt$IP6T_SO_GET_ENTRIES(0xffffffffffffffff, 0x29, 0x41, &(0x7f00000004c0)=ANY=[@ANYBLOB="6d616e676c6500000000000000000000000000000000000000007fae9ecb7cefa1b83e2d1394fb744539000000000000b6b200000093b205011fd58adef4fe3f34b7b27f92efed217d279da8ef8b111ba55aa3233a30e02b9aaadd97557c59fc663505f6be84539cb9dff968cc77e580831e1a45fbe1a1ee9a2889e47dc1fa70298c1e996161b35ea4c46c788e32124a173db3bb5ac2b28824922df73f6a6f3c016525af4b9c1cf29de386a95de4c91838621185abc52d3948eb841a42b9f355a895e9240292e7f3e077f54847f03c988001aaa1e235facd4ebaf42eb9d4effaf290cc4c9420c1c5db7fb5f676e3"], 0x0)
msync(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1)
r0 = socket$inet6(0xa, 0x803, 0x3)
ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8914, &(0x7f0000000040)={'bridge0\x00\x00\x01\x00'})
ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8914, &(0x7f0000000000)={'bridge0\x00\xff\xff\xfd\xfd\x00', 0xffffffffffffffdb})

00:15:35 executing program 1:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070")
r1 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r1, &(0x7f00000001c0)={0xa, 0x0, 0x0, @local, 0x2}, 0x1c)
connect$inet6(r1, &(0x7f0000000180)={0xa, 0x4e20, 0x0, @ipv4={[], [], @loopback}}, 0x1c)
sendmmsg(r1, &(0x7f0000000440), 0x400000000000211, 0x810)

00:15:35 executing program 0:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f123c123f319bd070")
openat$vfio(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vfio/vfio\x00', 0x80, 0x0)
r1 = socket$inet6(0xa, 0x400000000001, 0x0)
r2 = dup(r1)
setsockopt$inet6_tcp_int(r2, 0x6, 0xa, &(0x7f00007b1000)=0x81, 0x4)
bind$inet6(r1, &(0x7f00000000c0)={0xa, 0x4e20}, 0x1c)
setsockopt$inet6_tcp_TCP_CONGESTION(r2, 0x6, 0xd, &(0x7f0000000080)='dctcp\x00', 0x6)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
socket$unix(0x1, 0x5, 0x0)
getresgid(&(0x7f0000000000), &(0x7f0000000100), &(0x7f00000001c0))
socket$inet6_dccp(0xa, 0x6, 0x0)
socket$inet_tcp(0x2, 0x1, 0x0)
prctl$PR_SET_PTRACER(0x59616d61, 0x0)
getpriority(0x0, 0x0)
ioprio_set$pid(0x0, 0x0, 0x0)
getsockopt$inet_int(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
sendto$inet6(r1, 0x0, 0x0, 0x20000008, &(0x7f00008d4fe4)={0xa, 0x4e20, 0x0, @loopback}, 0x1c)
getsockopt$inet6_dccp_int(0xffffffffffffffff, 0x21, 0x0, 0x0, 0x0)
setsockopt$EBT_SO_SET_COUNTERS(0xffffffffffffffff, 0x0, 0x81, 0x0, 0x0)
setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0)
getsockopt$inet6_tcp_TCP_REPAIR_WINDOW(r2, 0x6, 0x1d, &(0x7f0000000140), &(0x7f0000000180)=0x14)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r3 = getpgid(0x0)
ptrace$cont(0x3f, r3, 0x40000007a42, 0x7)
r4 = open(&(0x7f0000000040)='./bus\x00', 0x141042, 0x0)
getsockopt$inet6_tcp_int(r2, 0x6, 0x6, 0x0, 0x0)
ftruncate(r4, 0x7fff)
sendfile(r2, r4, 0x0, 0x8000fffffffe)

00:15:35 executing program 5:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f123c123f319bd070")
openat$vfio(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vfio/vfio\x00', 0x80, 0x0)
r1 = socket$inet6(0xa, 0x400000000001, 0x0)
r2 = dup(r1)
setsockopt$inet6_tcp_int(r2, 0x6, 0xa, &(0x7f00007b1000)=0x81, 0x4)
bind$inet6(r1, &(0x7f00000000c0)={0xa, 0x4e20}, 0x1c)
setsockopt$inet6_tcp_TCP_CONGESTION(r2, 0x6, 0xd, &(0x7f0000000080)='dctcp\x00', 0x6)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
socket$unix(0x1, 0x5, 0x0)
getresgid(&(0x7f0000000000), &(0x7f0000000100), &(0x7f00000001c0))
socket$inet6_dccp(0xa, 0x6, 0x0)
socket$inet_tcp(0x2, 0x1, 0x0)
prctl$PR_SET_PTRACER(0x59616d61, 0x0)
getpriority(0x0, 0x0)
ioprio_set$pid(0x0, 0x0, 0x0)
getsockopt$inet_int(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
sendto$inet6(r1, 0x0, 0x0, 0x20000008, &(0x7f00008d4fe4)={0xa, 0x4e20, 0x0, @loopback}, 0x1c)
getsockopt$inet6_dccp_int(0xffffffffffffffff, 0x21, 0x0, 0x0, 0x0)
setsockopt$EBT_SO_SET_COUNTERS(0xffffffffffffffff, 0x0, 0x81, 0x0, 0x0)
setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0)
getsockopt$inet6_tcp_TCP_REPAIR_WINDOW(r2, 0x6, 0x1d, &(0x7f0000000140), &(0x7f0000000180)=0x14)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r3 = getpgid(0x0)
ptrace$cont(0x3f, r3, 0x40000007a42, 0x7)
r4 = open(&(0x7f0000000040)='./bus\x00', 0x141042, 0x0)
getsockopt$inet6_tcp_int(r2, 0x6, 0x6, 0x0, 0x0)
ftruncate(r4, 0x7fff)
sendfile(r2, r4, 0x0, 0x8000fffffffe)

[  933.993345] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[  933.999486] CPU: 0 PID: 29279 Comm: syz-executor.2 Not tainted 4.19.37 #5
[  934.006424] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  934.015890] Call Trace:
[  934.018502]  dump_stack+0x172/0x1f0
[  934.022221]  dump_header+0x15e/0x929
[  934.025984]  ? _raw_spin_unlock_irqrestore+0xbd/0xe0
[  934.029271] bridge0: port 2(bridge_slave_1) entered disabled state
[  934.031135]  ? ___ratelimit+0x60/0x595
[  934.039879] bridge0: port 1(bridge_slave_0) entered disabled state
[  934.041430]  ? do_raw_spin_unlock+0x57/0x270
[  934.041455]  oom_kill_process.cold+0x10/0x6f5
[  934.056176] device bridge0 left promiscuous mode
[  934.056672]  ? task_will_free_mem+0x139/0x6e0
[  934.056691]  ? find_held_lock+0x35/0x130
[  934.056715]  out_of_memory+0x936/0x12d0
[  934.056735]  ? lock_downgrade+0x810/0x810
[  934.056755]  ? oom_killer_disable+0x280/0x280
[  934.056770]  ? find_held_lock+0x35/0x130
[  934.056851]  mem_cgroup_out_of_memory+0x1d2/0x240
[  934.091985]  ? memcg_event_wake+0x230/0x230
[  934.096347]  ? do_raw_spin_unlock+0x57/0x270
[  934.100780]  ? _raw_spin_unlock+0x2d/0x50
[  934.105020]  try_charge+0x1028/0x15b0
[  934.108872]  ? find_held_lock+0x35/0x130
[  934.112962]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[  934.117824]  ? get_mem_cgroup_from_mm+0x10b/0x2b0
[  934.122693]  ? find_held_lock+0x35/0x130
[  934.126775]  ? get_mem_cgroup_from_mm+0x10b/0x2b0
[  934.131648]  memcg_kmem_charge_memcg+0x7c/0x130
[  934.136343]  ? memcg_kmem_put_cache+0xb0/0xb0
[  934.140860]  ? get_mem_cgroup_from_mm+0x128/0x2b0
[  934.145725]  memcg_kmem_charge+0x136/0x300
[  934.149982]  __alloc_pages_nodemask+0x3c6/0x760
[  934.154683]  ? mark_held_locks+0xb1/0x100
[  934.158886]  ? __alloc_pages_slowpath+0x2870/0x2870
[  934.164010]  ? lockdep_hardirqs_on+0x415/0x5d0
[  934.168619]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[  934.173752]  ? __sanitizer_cov_trace_const_cmp2+0x18/0x20
[  934.179319]  alloc_pages_current+0x107/0x210
[  934.183824]  pte_alloc_one+0x1b/0x1a0
[  934.187648]  __pte_alloc+0x2a/0x360
[  934.191314]  copy_page_range+0x151f/0x1f90
[  934.195632]  ? wake_up_q+0xaa/0x100
[  934.199358]  ? rwsem_wake+0x1f6/0x2f0
[  934.203186]  ? vma_compute_subtree_gap+0x158/0x230
[  934.208148]  ? vma_gap_callbacks_rotate+0x62/0x80
[  934.213016]  ? pmd_alloc+0x180/0x180
[  934.216753]  ? __vma_link_rb+0x279/0x370
[  934.220917]  copy_process.part.0+0x5434/0x7970
[  934.225564]  ? __cleanup_sighand+0x70/0x70
[  934.229832]  ? kasan_check_read+0x11/0x20
[  934.234041]  _do_fork+0x257/0xfe0
[  934.237538]  ? fork_idle+0x1d0/0x1d0
[  934.241283]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  934.246060]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  934.250830]  ? do_syscall_64+0x26/0x610
[  934.254821]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  934.260201]  ? do_syscall_64+0x26/0x610
[  934.264215]  __x64_sys_clone+0xbf/0x150
[  934.268233]  do_syscall_64+0x103/0x610
[  934.272147]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  934.277372] RIP: 0033:0x2000008a
[  934.280800] Code: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 98 4a 2a e9 2c 18 96 4c 0f 05 <bf> 03 00 00 00 c4 a3 7b f0 c5 1d 41 e2 e9 c4 22 e9 aa bb 3c 00 00
[  934.299805] RSP: 002b:00000000000004f0 EFLAGS: 00000287 ORIG_RAX: 0000000000000038
[  934.307543] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 000000002000008a
[  934.314832] RDX: 9c3755da22921eda RSI: 00000000000004f0 RDI: 0000000000000003
[  934.322124] RBP: 00000000000000f8 R08: 0000000000000005 R09: 0000000000000006
[  934.329422] R10: 0000000000000007 R11: 0000000000000287 R12: 000000000000000b
[  934.336718] R13: 000000000000000c R14: 000000000000000d R15: 00000000ffffffff
00:15:36 executing program 3:
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
setsockopt$ARPT_SO_SET_ADD_COUNTERS(0xffffffffffffffff, 0x0, 0x61, &(0x7f0000000180)={'filter\x00', 0x4}, 0x68)
syz_open_procfs$namespace(0x0, 0x0)
ioctl$EXT4_IOC_MOVE_EXT(0xffffffffffffffff, 0xc028660f, 0x0)
r0 = gettid()
exit_group(0x0)
ptrace(0x4206, r0)
openat$autofs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/autofs\x00', 0x0, 0x0)
write$P9_RSTAT(0xffffffffffffffff, 0x0, 0x0)

[  934.344470] net_ratelimit: 17 callbacks suppressed
[  934.344483] protocol 88fb is buggy, dev hsr_slave_0
[  934.354603] protocol 88fb is buggy, dev hsr_slave_1
00:15:36 executing program 3:
r0 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r0, &(0x7f0000000180), 0x10)
sendmsg$can_bcm(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000040)={0x5, 0x0, 0x0, {0x0, 0x2710}, {0x77359400}, {}, 0x1, @can={{}, 0x0, 0x0, 0x0, 0x0, "3ce93489ca47e9a5"}}, 0x48}}, 0x0)
sendmsg$can_bcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000002f00)={&(0x7f0000002e80)={0x5, 0x0, 0x0, {0x0, 0x7530}, {0x77359400}, {0x0, 0xffffffffffffffff}, 0x1, @can={{}, 0x0, 0x0, 0x0, 0x0, "58a5bd49977432a5"}}, 0x48}}, 0x0)
sendmsg$can_bcm(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)={0x6, 0x0, 0x0, {0x0, 0x7530}, {}, {}, 0x1, @can={{}, 0x0, 0x0, 0x0, 0x0, "42c989848d1d6aa1"}}, 0x48}}, 0x0)

00:15:36 executing program 1:
r0 = memfd_create(&(0x7f0000000b80)='\x88])+\x00', 0x0)
write(r0, &(0x7f0000000080)="a8", 0x1)
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r0, 0x0)
ftruncate(r0, 0x10011)
sendfile(r0, r0, &(0x7f0000000040), 0xff8)
acct(&(0x7f0000000000)='./file1\x00')

[  934.556008] Task in /syz2 killed as a result of limit of /syz2
[  934.569266] memory: usage 307200kB, limit 307200kB, failcnt 10626
[  934.595182] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  934.620767] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  934.644509] Memory cgroup stats for /syz2: cache:92KB rss:91540KB rss_huge:86016KB shmem:0KB mapped_file:0KB dirty:132KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:91532KB inactive_file:0KB active_file:0KB unevictable:0KB
00:15:36 executing program 1:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r1, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f319bd070")
sendto$inet6(r0, 0x0, 0x0, 0x20000004, &(0x7f000031e000), 0x1c)
shutdown(r0, 0x0)

00:15:36 executing program 0:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f123c123f319bd070")
openat$vfio(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vfio/vfio\x00', 0x80, 0x0)
r1 = socket$inet6(0xa, 0x400000000001, 0x0)
r2 = dup(r1)
setsockopt$inet6_tcp_int(r2, 0x6, 0xa, &(0x7f00007b1000)=0x81, 0x4)
bind$inet6(r1, &(0x7f00000000c0)={0xa, 0x4e20}, 0x1c)
setsockopt$inet6_tcp_TCP_CONGESTION(r2, 0x6, 0xd, &(0x7f0000000080)='dctcp\x00', 0x6)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
socket$unix(0x1, 0x5, 0x0)
getresgid(&(0x7f0000000000), &(0x7f0000000100), &(0x7f00000001c0))
socket$inet6_dccp(0xa, 0x6, 0x0)
socket$inet_tcp(0x2, 0x1, 0x0)
prctl$PR_SET_PTRACER(0x59616d61, 0x0)
getpriority(0x0, 0x0)
ioprio_set$pid(0x0, 0x0, 0x0)
getsockopt$inet_int(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
sendto$inet6(r1, 0x0, 0x0, 0x20000008, &(0x7f00008d4fe4)={0xa, 0x4e20, 0x0, @loopback}, 0x1c)
getsockopt$inet6_dccp_int(0xffffffffffffffff, 0x21, 0x0, 0x0, 0x0)
setsockopt$EBT_SO_SET_COUNTERS(0xffffffffffffffff, 0x0, 0x81, 0x0, 0x0)
setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0)
getsockopt$inet6_tcp_TCP_REPAIR_WINDOW(r2, 0x6, 0x1d, &(0x7f0000000140), &(0x7f0000000180)=0x14)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r3 = getpgid(0x0)
ptrace$cont(0x3f, r3, 0x40000007a42, 0x7)
r4 = open(&(0x7f0000000040)='./bus\x00', 0x141042, 0x0)
getsockopt$inet6_tcp_int(r2, 0x6, 0x6, 0x0, 0x0)
ftruncate(r4, 0x7fff)
sendfile(r2, r4, 0x0, 0x8000fffffffe)

[  934.752958] Memory cgroup out of memory: Kill process 21284 (syz-executor.2) score 1113 or sacrifice child
[  934.802817] Killed process 21284 (syz-executor.2) total-vm:72584kB, anon-rss:2216kB, file-rss:35820kB, shmem-rss:0kB
[  934.827433] oom_reaper: reaped process 21284 (syz-executor.2), now anon-rss:0kB, file-rss:34860kB, shmem-rss:0kB
[  935.089938] bridge0: port 2(bridge_slave_1) entered blocking state
[  935.096446] bridge0: port 2(bridge_slave_1) entered forwarding state
[  935.101746] syz-executor.2 invoked oom-killer: gfp_mask=0x6040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null), order=0, oom_score_adj=0
[  935.103221] bridge0: port 1(bridge_slave_0) entered blocking state
[  935.121972] bridge0: port 1(bridge_slave_0) entered forwarding state
[  935.152082] device bridge0 entered promiscuous mode
00:15:36 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0x0)
writev(r0, &(0x7f0000000040)=[{&(0x7f0000000080)="39000000130009006900000000000000ab00804802000000460001070000001419000a0010000000f00003f5000000000000ef38bf461e59d7", 0x39}], 0x1)

[  935.211956] protocol 88fb is buggy, dev hsr_slave_0
[  935.211993] protocol 88fb is buggy, dev hsr_slave_1
[  935.217109] protocol 88fb is buggy, dev hsr_slave_1
[  935.306371] netlink: 'syz-executor.1': attribute type 10 has an invalid length.
[  935.316482] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[  935.325741] CPU: 0 PID: 29500 Comm: syz-executor.2 Not tainted 4.19.37 #5
[  935.325761] team0: Device tunl0 is of different type
[  935.332705] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  935.332711] Call Trace:
[  935.332734]  dump_stack+0x172/0x1f0
[  935.332756]  dump_header+0x15e/0x929
[  935.332776]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[  935.332793]  ? ___ratelimit+0x60/0x595
[  935.332806]  ? do_raw_spin_unlock+0x57/0x270
[  935.332827]  oom_kill_process.cold+0x10/0x6f5
[  935.332848]  ? task_will_free_mem+0x139/0x6e0
[  935.332871]  out_of_memory+0x936/0x12d0
[  935.332896]  ? oom_killer_disable+0x280/0x280
[  935.332916]  ? find_held_lock+0x35/0x130
[  935.393902]  mem_cgroup_out_of_memory+0x1d2/0x240
[  935.398768]  ? memcg_event_wake+0x230/0x230
[  935.403116]  ? do_raw_spin_unlock+0x57/0x270
[  935.407540]  ? _raw_spin_unlock+0x2d/0x50
[  935.411729]  try_charge+0xd25/0x15b0
[  935.415466]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[  935.420338]  ? rcu_read_lock_sched_held+0x110/0x130
[  935.425371]  ? __alloc_pages_nodemask+0x63e/0x760
[  935.430246]  ? perf_trace_lock_acquire+0xf5/0x580
[  935.435120]  memcg_kmem_charge_memcg+0x7c/0x130
[  935.439804]  ? memcg_kmem_put_cache+0xb0/0xb0
[  935.444337]  ? cache_grow_begin+0x59a/0x8c0
[  935.448709]  ? lockdep_hardirqs_on+0x415/0x5d0
[  935.455473]  ? trace_hardirqs_on+0x67/0x230
[  935.459901]  cache_grow_begin+0x25f/0x8c0
[  935.464275]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  935.469912]  ? __cpuset_node_allowed+0x136/0x540
[  935.474704]  fallback_alloc+0x1fd/0x2d0
[  935.478701]  ____cache_alloc_node+0x1be/0x1e0
[  935.483214]  kmem_cache_alloc+0x1f3/0x700
[  935.487466]  ? anon_vma_clone+0x320/0x480
[  935.491636]  anon_vma_fork+0xfc/0x4a0
[  935.495451]  ? dup_userfaultfd+0x15e/0x6c0
[  935.499692]  ? memcpy+0x46/0x50
[  935.502993]  copy_process.part.0+0x34dc/0x7970
[  935.507619]  ? __cleanup_sighand+0x70/0x70
[  935.511903]  ? kasan_check_read+0x11/0x20
[  935.516072]  _do_fork+0x257/0xfe0
[  935.519579]  ? fork_idle+0x1d0/0x1d0
[  935.523324]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  935.528112]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  935.532901]  ? do_syscall_64+0x26/0x610
[  935.536894]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  935.542271]  ? do_syscall_64+0x26/0x610
[  935.546279]  __x64_sys_clone+0xbf/0x150
[  935.550360]  do_syscall_64+0x103/0x610
[  935.554276]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  935.559484] RIP: 0033:0x2000008a
[  935.562862] Code: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 98 4a 2a e9 2c 18 96 4c 0f 05 <bf> 03 00 00 00 c4 a3 7b f0 c5 1d 41 e2 e9 c4 22 e9 aa bb 3c 00 00
[  935.582770] RSP: 002b:00000000000004f0 EFLAGS: 00000287 ORIG_RAX: 0000000000000038
[  935.590495] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 000000002000008a
[  935.597776] RDX: 9c3755da22921eda RSI: 00000000000004f0 RDI: 0000000000000003
[  935.605072] RBP: 00000000000000f8 R08: 0000000000000005 R09: 0000000000000006
[  935.612356] R10: 0000000000000007 R11: 0000000000000287 R12: 000000000000000b
[  935.619632] R13: 000000000000000c R14: 000000000000000d R15: 00000000ffffffff
[  935.650245] Task in /syz2 killed as a result of limit of /syz2
[  935.663915] memory: usage 307200kB, limit 307200kB, failcnt 10767
[  935.670268] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  935.677545] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  935.684152] Memory cgroup stats for /syz2: cache:92KB rss:89416KB rss_huge:83968KB shmem:0KB mapped_file:0KB dirty:132KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:89372KB inactive_file:0KB active_file:0KB unevictable:0KB
[  935.706195] Memory cgroup out of memory: Kill process 21344 (syz-executor.2) score 1113 or sacrifice child
[  935.718338] Killed process 21344 (syz-executor.2) total-vm:72584kB, anon-rss:2216kB, file-rss:35820kB, shmem-rss:0kB
[  935.753092] syz-executor.2 invoked oom-killer: gfp_mask=0x6040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null), order=0, oom_score_adj=0
[  935.786477] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[  935.837327] CPU: 0 PID: 29470 Comm: syz-executor.2 Not tainted 4.19.37 #5
[  935.844286] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  935.853656] Call Trace:
[  935.856264]  dump_stack+0x172/0x1f0
[  935.860000]  dump_header+0x15e/0x929
[  935.863729]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[  935.868845]  ? ___ratelimit+0x60/0x595
[  935.872741]  ? do_raw_spin_unlock+0x57/0x270
[  935.877165]  oom_kill_process.cold+0x10/0x6f5
[  935.881679]  ? task_will_free_mem+0x139/0x6e0
[  935.886195]  out_of_memory+0x936/0x12d0
[  935.890201]  ? oom_killer_disable+0x280/0x280
[  935.894715]  ? find_held_lock+0x35/0x130
[  935.898801]  mem_cgroup_out_of_memory+0x1d2/0x240
[  935.903661]  ? memcg_event_wake+0x230/0x230
[  935.908000]  ? do_raw_spin_unlock+0x57/0x270
[  935.912431]  ? _raw_spin_unlock+0x2d/0x50
[  935.916594]  try_charge+0xd25/0x15b0
[  935.920334]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[  935.925202]  ? rcu_read_lock_sched_held+0x110/0x130
[  935.930249]  ? __alloc_pages_nodemask+0x63e/0x760
[  935.935107]  ? perf_trace_lock_acquire+0xf5/0x580
[  935.939971]  memcg_kmem_charge_memcg+0x7c/0x130
[  935.944657]  ? memcg_kmem_put_cache+0xb0/0xb0
[  935.949159]  ? cache_grow_begin+0x59a/0x8c0
[  935.953495]  ? lockdep_hardirqs_on+0x415/0x5d0
[  935.958095]  ? trace_hardirqs_on+0x67/0x230
[  935.962432]  cache_grow_begin+0x25f/0x8c0
[  935.966593]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  935.972146]  ? __cpuset_node_allowed+0x136/0x540
[  935.976920]  fallback_alloc+0x1fd/0x2d0
[  935.980916]  ____cache_alloc_node+0x1be/0x1e0
[  935.985430]  kmem_cache_alloc+0x1f3/0x700
[  935.989593]  ? call_rwsem_wake+0x1b/0x30
[  935.993674]  anon_vma_clone+0x238/0x480
[  935.997667]  anon_vma_fork+0x8f/0x4a0
[  936.001484]  ? dup_userfaultfd+0x15e/0x6c0
[  936.005925]  ? memcpy+0x46/0x50
[  936.009222]  copy_process.part.0+0x34dc/0x7970
[  936.014038]  ? __cleanup_sighand+0x70/0x70
[  936.018296]  ? kasan_check_read+0x11/0x20
[  936.022476]  _do_fork+0x257/0xfe0
[  936.025948]  ? fork_idle+0x1d0/0x1d0
[  936.029689]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  936.034456]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  936.039414]  ? do_syscall_64+0x26/0x610
[  936.043412]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  936.048787]  ? do_syscall_64+0x26/0x610
[  936.052782]  __x64_sys_clone+0xbf/0x150
[  936.056782]  do_syscall_64+0x103/0x610
[  936.060697]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  936.065894] RIP: 0033:0x2000008a
[  936.069270] Code: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 98 4a 2a e9 2c 18 96 4c 0f 05 <bf> 03 00 00 00 c4 a3 7b f0 c5 1d 41 e2 e9 c4 22 e9 aa bb 3c 00 00
[  936.088190] RSP: 002b:00000000000004f0 EFLAGS: 00000287 ORIG_RAX: 0000000000000038
[  936.096029] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 000000002000008a
[  936.103312] RDX: 9c3755da22921eda RSI: 00000000000004f0 RDI: 0000000000000003
[  936.110596] RBP: 00000000000000f8 R08: 0000000000000005 R09: 0000000000000006
[  936.117880] R10: 0000000000000007 R11: 0000000000000287 R12: 000000000000000b
[  936.125155] R13: 000000000000000c R14: 000000000000000d R15: 00000000ffffffff
[  936.142079] protocol 88fb is buggy, dev hsr_slave_0
[  936.147191] protocol 88fb is buggy, dev hsr_slave_1
[  936.152381] protocol 88fb is buggy, dev hsr_slave_0
[  936.157448] protocol 88fb is buggy, dev hsr_slave_1
[  936.191366] Task in /syz2 killed as a result of limit of /syz2
[  936.204753] memory: usage 307200kB, limit 307200kB, failcnt 10918
[  936.211018] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  936.225335] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  936.231501] Memory cgroup stats for /syz2: cache:92KB rss:87256KB rss_huge:81920KB shmem:0KB mapped_file:0KB dirty:132KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:87212KB inactive_file:0KB active_file:0KB unevictable:0KB
[  936.259680] Memory cgroup out of memory: Kill process 21387 (syz-executor.2) score 1113 or sacrifice child
[  936.269940] Killed process 21387 (syz-executor.2) total-vm:72584kB, anon-rss:2216kB, file-rss:35816kB, shmem-rss:0kB
[  936.317212] syz-executor.2 invoked oom-killer: gfp_mask=0x6040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null), order=0, oom_score_adj=0
[  936.364164] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[  936.369622] CPU: 0 PID: 29459 Comm: syz-executor.2 Not tainted 4.19.37 #5
[  936.376555] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  936.385917] Call Trace:
[  936.388525]  dump_stack+0x172/0x1f0
[  936.392175]  dump_header+0x15e/0x929
[  936.395905]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[  936.401024]  ? ___ratelimit+0x60/0x595
[  936.404928]  ? do_raw_spin_unlock+0x57/0x270
[  936.409358]  oom_kill_process.cold+0x10/0x6f5
[  936.413877]  ? task_will_free_mem+0x139/0x6e0
[  936.418398]  out_of_memory+0x936/0x12d0
[  936.422400]  ? oom_killer_disable+0x280/0x280
[  936.426906]  ? find_held_lock+0x35/0x130
[  936.430994]  mem_cgroup_out_of_memory+0x1d2/0x240
[  936.435883]  ? memcg_event_wake+0x230/0x230
[  936.440234]  ? do_raw_spin_unlock+0x57/0x270
[  936.444662]  ? _raw_spin_unlock+0x2d/0x50
[  936.448832]  try_charge+0xd25/0x15b0
[  936.452573]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[  936.457444]  ? rcu_read_lock_sched_held+0x110/0x130
[  936.462477]  ? __alloc_pages_nodemask+0x63e/0x760
[  936.467345]  ? perf_trace_lock_acquire+0xf5/0x580
[  936.472212]  memcg_kmem_charge_memcg+0x7c/0x130
[  936.476906]  ? memcg_kmem_put_cache+0xb0/0xb0
[  936.481417]  ? cache_grow_begin+0x59a/0x8c0
[  936.487055]  ? lockdep_hardirqs_on+0x415/0x5d0
[  936.491683]  ? trace_hardirqs_on+0x67/0x230
[  936.496025]  cache_grow_begin+0x25f/0x8c0
[  936.500193]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  936.505760]  ? __cpuset_node_allowed+0x136/0x540
[  936.510534]  fallback_alloc+0x1fd/0x2d0
[  936.514528]  ____cache_alloc_node+0x1be/0x1e0
[  936.519039]  kmem_cache_alloc+0x1f3/0x700
[  936.523289]  ? call_rwsem_wake+0x1b/0x30
[  936.527379]  anon_vma_clone+0x238/0x480
[  936.531406]  anon_vma_fork+0x8f/0x4a0
[  936.535312]  ? dup_userfaultfd+0x15e/0x6c0
[  936.539557]  ? memcpy+0x46/0x50
[  936.542860]  copy_process.part.0+0x34dc/0x7970
[  936.547500]  ? __cleanup_sighand+0x70/0x70
[  936.552034]  ? kasan_check_read+0x11/0x20
[  936.556206]  _do_fork+0x257/0xfe0
[  936.559684]  ? fork_idle+0x1d0/0x1d0
[  936.563423]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  936.568191]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  936.572966]  ? do_syscall_64+0x26/0x610
[  936.576957]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  936.582331]  ? do_syscall_64+0x26/0x610
[  936.586332]  __x64_sys_clone+0xbf/0x150
[  936.590328]  do_syscall_64+0x103/0x610
[  936.594258]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  936.599509] RIP: 0033:0x2000008a
[  936.602885] Code: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 98 4a 2a e9 2c 18 96 4c 0f 05 <bf> 03 00 00 00 c4 a3 7b f0 c5 1d 41 e2 e9 c4 22 e9 aa bb 3c 00 00
[  936.621803] RSP: 002b:00000000000004f0 EFLAGS: 00000287 ORIG_RAX: 0000000000000038
[  936.629538] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 000000002000008a
[  936.636817] RDX: 9c3755da22921eda RSI: 00000000000004f0 RDI: 0000000000000003
[  936.644100] RBP: 00000000000000f8 R08: 0000000000000005 R09: 0000000000000006
[  936.651380] R10: 0000000000000007 R11: 0000000000000287 R12: 000000000000000b
[  936.658661] R13: 000000000000000c R14: 000000000000000d R15: 00000000ffffffff
[  936.666536] protocol 88fb is buggy, dev hsr_slave_0
[  936.675043] Task in /syz2 killed as a result of limit of /syz2
[  936.682853] memory: usage 305452kB, limit 307200kB, failcnt 10918
[  936.689181] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  936.731945] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  936.738166] Memory cgroup stats for /syz2: cache:92KB rss:85084KB rss_huge:79872KB shmem:0KB mapped_file:0KB dirty:132KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:85040KB inactive_file:0KB active_file:0KB unevictable:0KB
[  936.805635] Memory cgroup out of memory: Kill process 21214 (syz-executor.2) score 1113 or sacrifice child
[  936.816036] Killed process 21214 (syz-executor.2) total-vm:72584kB, anon-rss:2216kB, file-rss:35796kB, shmem-rss:0kB
[  936.849286] syz-executor.2 invoked oom-killer: gfp_mask=0x6040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null), order=0, oom_score_adj=0
[  936.881780] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[  936.887699] CPU: 0 PID: 29313 Comm: syz-executor.2 Not tainted 4.19.37 #5
[  936.894723] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  936.904081] Call Trace:
[  936.906686]  dump_stack+0x172/0x1f0
[  936.910339]  dump_header+0x15e/0x929
[  936.914170]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[  936.919286]  ? ___ratelimit+0x60/0x595
[  936.923188]  ? do_raw_spin_unlock+0x57/0x270
[  936.927629]  oom_kill_process.cold+0x10/0x6f5
[  936.932148]  ? task_will_free_mem+0x139/0x6e0
[  936.936663]  out_of_memory+0x936/0x12d0
[  936.940660]  ? oom_killer_disable+0x280/0x280
[  936.945169]  ? find_held_lock+0x35/0x130
[  936.949265]  mem_cgroup_out_of_memory+0x1d2/0x240
[  936.954162]  ? memcg_event_wake+0x230/0x230
[  936.958525]  ? do_raw_spin_unlock+0x57/0x270
[  936.962949]  ? _raw_spin_unlock+0x2d/0x50
[  936.967116]  try_charge+0xd25/0x15b0
[  936.970854]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[  936.975722]  ? rcu_read_lock_sched_held+0x110/0x130
[  936.980758]  ? __alloc_pages_nodemask+0x63e/0x760
[  936.985617]  ? perf_trace_lock_acquire+0xf5/0x580
[  936.990500]  memcg_kmem_charge_memcg+0x7c/0x130
[  936.995184]  ? memcg_kmem_put_cache+0xb0/0xb0
[  936.999686]  ? cache_grow_begin+0x59a/0x8c0
[  937.004021]  ? lockdep_hardirqs_on+0x415/0x5d0
[  937.008616]  ? trace_hardirqs_on+0x67/0x230
[  937.012953]  cache_grow_begin+0x25f/0x8c0
[  937.017126]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  937.022675]  ? __cpuset_node_allowed+0x136/0x540
[  937.027450]  fallback_alloc+0x1fd/0x2d0
[  937.031446]  ____cache_alloc_node+0x1be/0x1e0
[  937.035961]  kmem_cache_alloc+0x1f3/0x700
[  937.040122]  ? call_rwsem_wake+0x1b/0x30
[  937.044202]  anon_vma_clone+0x238/0x480
[  937.048206]  anon_vma_fork+0x8f/0x4a0
[  937.052027]  ? dup_userfaultfd+0x15e/0x6c0
[  937.056300]  ? memcpy+0x46/0x50
[  937.059615]  copy_process.part.0+0x34dc/0x7970
[  937.064256]  ? __cleanup_sighand+0x70/0x70
[  937.068516]  ? kasan_check_read+0x11/0x20
[  937.072688]  _do_fork+0x257/0xfe0
[  937.076168]  ? fork_idle+0x1d0/0x1d0
[  937.079915]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  937.084680]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  937.089469]  ? do_syscall_64+0x26/0x610
[  937.093457]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  937.098828]  ? do_syscall_64+0x26/0x610
[  937.102830]  __x64_sys_clone+0xbf/0x150
[  937.106916]  do_syscall_64+0x103/0x610
[  937.110825]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  937.116030] RIP: 0033:0x2000008a
[  937.119418] Code: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 98 4a 2a e9 2c 18 96 4c 0f 05 <bf> 03 00 00 00 c4 a3 7b f0 c5 1d 41 e2 e9 c4 22 e9 aa bb 3c 00 00
[  937.138357] RSP: 002b:00000000000004f0 EFLAGS: 00000287 ORIG_RAX: 0000000000000038
[  937.146090] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 000000002000008a
[  937.153383] RDX: 9c3755da22921eda RSI: 00000000000004f0 RDI: 0000000000000003
[  937.160667] RBP: 00000000000000f8 R08: 0000000000000005 R09: 0000000000000006
[  937.167956] R10: 0000000000000007 R11: 0000000000000287 R12: 000000000000000b
[  937.175248] R13: 000000000000000c R14: 000000000000000d R15: 00000000ffffffff
[  937.283031] Task in /syz2 killed as a result of limit of /syz2
[  937.289095] memory: usage 307200kB, limit 307200kB, failcnt 11220
[  937.296176] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  937.303426] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  937.309584] Memory cgroup stats for /syz2: cache:92KB rss:82912KB rss_huge:77824KB shmem:0KB mapped_file:0KB dirty:132KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:82868KB inactive_file:0KB active_file:0KB unevictable:0KB
[  937.331041] Memory cgroup out of memory: Kill process 18386 (syz-executor.2) score 1113 or sacrifice child
[  937.341323] Killed process 18386 (syz-executor.2) total-vm:72716kB, anon-rss:2224kB, file-rss:35808kB, shmem-rss:0kB
[  937.377684] syz-executor.2 invoked oom-killer: gfp_mask=0x6040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null), order=0, oom_score_adj=0
[  937.430476] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[  937.504236] CPU: 0 PID: 29461 Comm: syz-executor.2 Not tainted 4.19.37 #5
[  937.511217] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  937.520682] Call Trace:
[  937.523285]  dump_stack+0x172/0x1f0
[  937.526937]  dump_header+0x15e/0x929
[  937.530662]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[  937.535787]  ? ___ratelimit+0x60/0x595
[  937.539690]  ? do_raw_spin_unlock+0x57/0x270
[  937.544116]  oom_kill_process.cold+0x10/0x6f5
[  937.548626]  ? task_will_free_mem+0x139/0x6e0
[  937.553145]  out_of_memory+0x936/0x12d0
[  937.557138]  ? oom_killer_disable+0x280/0x280
[  937.561639]  ? find_held_lock+0x35/0x130
[  937.565722]  mem_cgroup_out_of_memory+0x1d2/0x240
[  937.570574]  ? memcg_event_wake+0x230/0x230
[  937.575002]  ? do_raw_spin_unlock+0x57/0x270
[  937.579432]  ? _raw_spin_unlock+0x2d/0x50
[  937.583598]  try_charge+0xd25/0x15b0
[  937.587339]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[  937.592310]  ? rcu_read_lock_sched_held+0x110/0x130
[  937.597345]  ? __alloc_pages_nodemask+0x63e/0x760
[  937.602315]  ? perf_trace_lock_acquire+0xf5/0x580
[  937.607179]  memcg_kmem_charge_memcg+0x7c/0x130
[  937.611865]  ? memcg_kmem_put_cache+0xb0/0xb0
[  937.616401]  ? cache_grow_begin+0x59a/0x8c0
[  937.620740]  ? lockdep_hardirqs_on+0x415/0x5d0
[  937.625340]  ? trace_hardirqs_on+0x67/0x230
[  937.629766]  cache_grow_begin+0x25f/0x8c0
[  937.633930]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  937.639479]  ? __cpuset_node_allowed+0x136/0x540
[  937.644266]  fallback_alloc+0x1fd/0x2d0
[  937.648269]  ____cache_alloc_node+0x1be/0x1e0
[  937.652784]  kmem_cache_alloc+0x1f3/0x700
[  937.656949]  ? call_rwsem_wake+0x1b/0x30
[  937.661029]  anon_vma_clone+0x238/0x480
[  937.665020]  anon_vma_fork+0x8f/0x4a0
[  937.668838]  ? dup_userfaultfd+0x15e/0x6c0
[  937.673081]  ? memcpy+0x46/0x50
[  937.676382]  copy_process.part.0+0x34dc/0x7970
[  937.681012]  ? __cleanup_sighand+0x70/0x70
[  937.685282]  ? kasan_check_read+0x11/0x20
[  937.689464]  _do_fork+0x257/0xfe0
[  937.692934]  ? fork_idle+0x1d0/0x1d0
[  937.696671]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  937.701435]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  937.706224]  ? do_syscall_64+0x26/0x610
[  937.710223]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  937.715611]  ? do_syscall_64+0x26/0x610
[  937.719601]  __x64_sys_clone+0xbf/0x150
[  937.723594]  do_syscall_64+0x103/0x610
[  937.727499]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  937.732694] RIP: 0033:0x2000008a
[  937.736068] Code: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 98 4a 2a e9 2c 18 96 4c 0f 05 <bf> 03 00 00 00 c4 a3 7b f0 c5 1d 41 e2 e9 c4 22 e9 aa bb 3c 00 00
[  937.754983] RSP: 002b:00000000000004f0 EFLAGS: 00000287 ORIG_RAX: 0000000000000038
[  937.762706] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 000000002000008a
[  937.769982] RDX: 9c3755da22921eda RSI: 00000000000004f0 RDI: 0000000000000003
[  937.777261] RBP: 00000000000000f8 R08: 0000000000000005 R09: 0000000000000006
[  937.784536] R10: 0000000000000007 R11: 0000000000000287 R12: 000000000000000b
[  937.791824] R13: 000000000000000c R14: 000000000000000d R15: 00000000ffffffff
[  937.847708] Task in /syz2 killed as a result of limit of /syz2
[  937.855380] memory: usage 307200kB, limit 307200kB, failcnt 11329
[  937.861630] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  937.876650] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  937.884302] Memory cgroup stats for /syz2: cache:92KB rss:80736KB rss_huge:75776KB shmem:0KB mapped_file:0KB dirty:132KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:80684KB inactive_file:0KB active_file:0KB unevictable:0KB
[  937.912071] Memory cgroup out of memory: Kill process 20087 (syz-executor.2) score 1113 or sacrifice child
[  937.928660] Killed process 20087 (syz-executor.2) total-vm:72584kB, anon-rss:2216kB, file-rss:35816kB, shmem-rss:0kB
[  937.989258] syz-executor.2 invoked oom-killer: gfp_mask=0x6040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null), order=0, oom_score_adj=0
[  938.011944] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[  938.017380] CPU: 1 PID: 29608 Comm: syz-executor.2 Not tainted 4.19.37 #5
[  938.024491] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  938.033856] Call Trace:
[  938.036457]  dump_stack+0x172/0x1f0
[  938.040121]  dump_header+0x15e/0x929
[  938.043847]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[  938.048965]  ? ___ratelimit+0x60/0x595
[  938.052859]  ? do_raw_spin_unlock+0x57/0x270
[  938.057358]  oom_kill_process.cold+0x10/0x6f5
[  938.061865]  ? task_will_free_mem+0x139/0x6e0
[  938.066382]  out_of_memory+0x936/0x12d0
[  938.070374]  ? oom_killer_disable+0x280/0x280
[  938.074882]  ? find_held_lock+0x35/0x130
[  938.078963]  mem_cgroup_out_of_memory+0x1d2/0x240
[  938.083817]  ? memcg_event_wake+0x230/0x230
[  938.088178]  ? do_raw_spin_unlock+0x57/0x270
[  938.093035]  ? _raw_spin_unlock+0x2d/0x50
[  938.097204]  try_charge+0xd25/0x15b0
[  938.100946]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[  938.105809]  ? rcu_read_lock_sched_held+0x110/0x130
[  938.110832]  ? __alloc_pages_nodemask+0x63e/0x760
[  938.115680]  ? perf_trace_lock_acquire+0xf5/0x580
[  938.120557]  memcg_kmem_charge_memcg+0x7c/0x130
[  938.125240]  ? memcg_kmem_put_cache+0xb0/0xb0
[  938.129749]  ? cache_grow_begin+0x59a/0x8c0
[  938.134080]  ? lockdep_hardirqs_on+0x415/0x5d0
[  938.138672]  ? trace_hardirqs_on+0x67/0x230
[  938.143006]  cache_grow_begin+0x25f/0x8c0
[  938.147162]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  938.152704]  ? __cpuset_node_allowed+0x136/0x540
[  938.157466]  fallback_alloc+0x1fd/0x2d0
[  938.161470]  ____cache_alloc_node+0x1be/0x1e0
[  938.165995]  kmem_cache_alloc+0x1f3/0x700
[  938.170154]  ? call_rwsem_wake+0x1b/0x30
[  938.174258]  anon_vma_clone+0x238/0x480
[  938.178332]  anon_vma_fork+0x8f/0x4a0
[  938.182144]  ? dup_userfaultfd+0x15e/0x6c0
[  938.186573]  ? memcpy+0x46/0x50
[  938.189869]  copy_process.part.0+0x34dc/0x7970
[  938.194504]  ? __cleanup_sighand+0x70/0x70
[  938.198855]  ? kasan_check_read+0x11/0x20
[  938.203026]  _do_fork+0x257/0xfe0
[  938.206490]  ? fork_idle+0x1d0/0x1d0
[  938.210220]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  938.215001]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  938.219764]  ? do_syscall_64+0x26/0x610
[  938.223756]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  938.229138]  ? do_syscall_64+0x26/0x610
[  938.233127]  __x64_sys_clone+0xbf/0x150
[  938.237111]  do_syscall_64+0x103/0x610
[  938.241015]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  938.246210] RIP: 0033:0x2000008a
[  938.249586] Code: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 98 4a 2a e9 2c 18 96 4c 0f 05 <bf> 03 00 00 00 c4 a3 7b f0 c5 1d 41 e2 e9 c4 22 e9 aa bb 3c 00 00
[  938.268505] RSP: 002b:00000000000004f0 EFLAGS: 00000287 ORIG_RAX: 0000000000000038
[  938.276519] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 000000002000008a
[  938.283795] RDX: 9c3755da22921eda RSI: 00000000000004f0 RDI: 0000000000000003
[  938.291073] RBP: 00000000000000f8 R08: 0000000000000005 R09: 0000000000000006
[  938.298348] R10: 0000000000000007 R11: 0000000000000287 R12: 000000000000000b
[  938.305685] R13: 000000000000000c R14: 000000000000000d R15: 00000000ffffffff
[  938.380058] Task in /syz2 killed as a result of limit of /syz2
[  938.386694] memory: usage 307200kB, limit 307200kB, failcnt 11460
[  938.403131] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  938.409922] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  938.424011] Memory cgroup stats for /syz2: cache:92KB rss:78568KB rss_huge:73728KB shmem:0KB mapped_file:0KB dirty:132KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:78524KB inactive_file:0KB active_file:0KB unevictable:0KB
[  938.455743] Memory cgroup out of memory: Kill process 20127 (syz-executor.2) score 1113 or sacrifice child
[  938.473848] Killed process 20127 (syz-executor.2) total-vm:72584kB, anon-rss:2216kB, file-rss:35816kB, shmem-rss:0kB
[  938.498148] oom_reaper: reaped process 20127 (syz-executor.2), now anon-rss:0kB, file-rss:34856kB, shmem-rss:0kB
[  938.528862] syz-executor.2 invoked oom-killer: gfp_mask=0x7080c0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), nodemask=(null), order=0, oom_score_adj=0
[  938.686593] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[  938.712653] CPU: 1 PID: 29715 Comm: syz-executor.2 Not tainted 4.19.37 #5
[  938.719644] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  938.729004] Call Trace:
[  938.731615]  dump_stack+0x172/0x1f0
[  938.735267]  dump_header+0x15e/0x929
[  938.739005]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[  938.744128]  ? ___ratelimit+0x60/0x595
[  938.748029]  ? do_raw_spin_unlock+0x57/0x270
[  938.752459]  oom_kill_process.cold+0x10/0x6f5
[  938.756983]  ? task_will_free_mem+0x139/0x6e0
[  938.761611]  out_of_memory+0x936/0x12d0
[  938.765656]  ? oom_killer_disable+0x280/0x280
[  938.770163]  ? find_held_lock+0x35/0x130
[  938.774262]  mem_cgroup_out_of_memory+0x1d2/0x240
[  938.779119]  ? memcg_event_wake+0x230/0x230
[  938.783486]  ? do_raw_spin_unlock+0x57/0x270
[  938.787911]  ? _raw_spin_unlock+0x2d/0x50
[  938.792081]  try_charge+0xd25/0x15b0
[  938.795823]  ? find_held_lock+0x35/0x130
[  938.799928]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[  938.804783]  ? get_mem_cgroup_from_mm+0x10b/0x2b0
[  938.809662]  ? find_held_lock+0x35/0x130
[  938.813831]  ? get_mem_cgroup_from_mm+0x10b/0x2b0
[  938.818704]  memcg_kmem_charge_memcg+0x7c/0x130
[  938.823504]  ? memcg_kmem_put_cache+0xb0/0xb0
[  938.828015]  ? get_mem_cgroup_from_mm+0x128/0x2b0
[  938.832875]  memcg_kmem_charge+0x136/0x300
[  938.837217]  __alloc_pages_nodemask+0x3c6/0x760
[  938.842087]  ? debug_smp_processor_id+0x1c/0x20
[  938.846770]  ? __alloc_pages_slowpath+0x2870/0x2870
[  938.851833]  ? find_held_lock+0x35/0x130
[  938.855929]  ? copy_page_range+0x124f/0x1f90
[  938.860355]  ? __sanitizer_cov_trace_const_cmp2+0x18/0x20
[  938.865918]  alloc_pages_current+0x107/0x210
[  938.870349]  pte_alloc_one+0x1b/0x1a0
[  938.874162]  __pte_alloc+0x2a/0x360
[  938.877817]  copy_page_range+0x151f/0x1f90
[  938.882078]  ? debug_smp_processor_id+0x1c/0x20
[  938.886875]  ? pmd_alloc+0x180/0x180
[  938.890606]  ? __vma_link_rb+0x279/0x370
[  938.894693]  copy_process.part.0+0x5434/0x7970
[  938.899327]  ? __cleanup_sighand+0x70/0x70
[  938.903595]  ? kasan_check_read+0x11/0x20
[  938.907768]  _do_fork+0x257/0xfe0
[  938.911259]  ? fork_idle+0x1d0/0x1d0
[  938.915004]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  938.919773]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  938.924563]  ? do_syscall_64+0x26/0x610
[  938.928550]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  938.934017]  ? do_syscall_64+0x26/0x610
[  938.938011]  __x64_sys_clone+0xbf/0x150
[  938.941998]  do_syscall_64+0x103/0x610
[  938.945905]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  938.951106] RIP: 0033:0x2000008a
[  938.954481] Code: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 98 4a 2a e9 2c 18 96 4c 0f 05 <bf> 03 00 00 00 c4 a3 7b f0 c5 1d 41 e2 e9 c4 22 e9 aa bb 3c 00 00
[  938.973422] RSP: 002b:00000000000004f0 EFLAGS: 00000287 ORIG_RAX: 0000000000000038
[  938.981168] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 000000002000008a
[  938.988538] RDX: 9c3755da22921eda RSI: 00000000000004f0 RDI: 0000000000000003
[  938.995852] RBP: 00000000000000f8 R08: 0000000000000005 R09: 0000000000000006
[  939.003143] R10: 0000000000000007 R11: 0000000000000287 R12: 000000000000000b
[  939.010417] R13: 000000000000000c R14: 000000000000000d R15: 00000000ffffffff
[  939.021953] Task in /syz2 killed as a result of limit of /syz2
[  939.028025] memory: usage 307200kB, limit 307200kB, failcnt 11635
[  939.044437] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  939.051241] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  939.064848] Memory cgroup stats for /syz2: cache:92KB rss:76400KB rss_huge:71680KB shmem:0KB mapped_file:0KB dirty:132KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:76364KB inactive_file:0KB active_file:0KB unevictable:0KB
[  939.095528] Memory cgroup out of memory: Kill process 21511 (syz-executor.2) score 1113 or sacrifice child
[  939.113416] Killed process 21511 (syz-executor.2) total-vm:72452kB, anon-rss:2208kB, file-rss:35824kB, shmem-rss:0kB
[  939.299557] syz-executor.2 invoked oom-killer: gfp_mask=0x7080c0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), nodemask=(null), order=0, oom_score_adj=0
[  939.346371] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[  939.359572] CPU: 0 PID: 29960 Comm: syz-executor.2 Not tainted 4.19.37 #5
[  939.366542] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  939.375912] Call Trace:
[  939.378527]  dump_stack+0x172/0x1f0
[  939.382186]  dump_header+0x15e/0x929
[  939.385921]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[  939.391046]  ? ___ratelimit+0x60/0x595
[  939.394973]  ? do_raw_spin_unlock+0x57/0x270
[  939.399847]  oom_kill_process.cold+0x10/0x6f5
[  939.404399]  ? task_will_free_mem+0x139/0x6e0
[  939.414797]  out_of_memory+0x936/0x12d0
[  939.418793]  ? lock_downgrade+0x810/0x810
[  939.422960]  ? oom_killer_disable+0x280/0x280
[  939.427468]  ? find_held_lock+0x35/0x130
[  939.431561]  mem_cgroup_out_of_memory+0x1d2/0x240
[  939.436418]  ? memcg_event_wake+0x230/0x230
[  939.440759]  ? do_raw_spin_unlock+0x57/0x270
[  939.445187]  ? _raw_spin_unlock+0x2d/0x50
[  939.449361]  try_charge+0xd25/0x15b0
[  939.453087]  ? find_held_lock+0x35/0x130
[  939.457175]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[  939.462061]  ? get_mem_cgroup_from_mm+0x10b/0x2b0
[  939.466925]  ? find_held_lock+0x35/0x130
[  939.471008]  ? get_mem_cgroup_from_mm+0x10b/0x2b0
[  939.475879]  memcg_kmem_charge_memcg+0x7c/0x130
[  939.480564]  ? memcg_kmem_put_cache+0xb0/0xb0
[  939.485092]  ? get_mem_cgroup_from_mm+0x128/0x2b0
[  939.489964]  memcg_kmem_charge+0x136/0x300
[  939.494218]  __alloc_pages_nodemask+0x3c6/0x760
[  939.498916]  ? __alloc_pages_slowpath+0x2870/0x2870
[  939.503949]  ? kasan_slab_alloc+0xf/0x20
[  939.508020]  ? kmem_cache_alloc+0x12e/0x700
[  939.512373]  ? anon_vma_fork+0x1ea/0x4a0
[  939.516451]  ? __lock_acquire+0x6eb/0x48f0
[  939.520721]  ? __sanitizer_cov_trace_const_cmp2+0x18/0x20
[  939.526279]  alloc_pages_current+0x107/0x210
[  939.530822]  get_zeroed_page+0x14/0x50
[  939.534722]  __pud_alloc+0x3b/0x250
[  939.538369]  pud_alloc+0xde/0x150
[  939.541839]  copy_page_range+0x37a/0x1f90
[  939.546004]  ? anon_vma_fork+0x371/0x4a0
[  939.550090]  ? find_held_lock+0x35/0x130
[  939.554166]  ? anon_vma_fork+0x371/0x4a0
[  939.558259]  ? vma_compute_subtree_gap+0x158/0x230
[  939.563208]  ? vma_gap_callbacks_rotate+0x62/0x80
[  939.568078]  ? pmd_alloc+0x180/0x180
[  939.571805]  ? __vma_link_rb+0x279/0x370
[  939.575983]  copy_process.part.0+0x5434/0x7970
[  939.580613]  ? __cleanup_sighand+0x70/0x70
[  939.584880]  ? kasan_check_read+0x11/0x20
[  939.589059]  _do_fork+0x257/0xfe0
[  939.592621]  ? fork_idle+0x1d0/0x1d0
[  939.596364]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  939.601156]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  939.606046]  ? do_syscall_64+0x26/0x610
[  939.610034]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  939.615407]  ? do_syscall_64+0x26/0x610
[  939.619401]  __x64_sys_clone+0xbf/0x150
[  939.623394]  do_syscall_64+0x103/0x610
[  939.627313]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  939.632600] RIP: 0033:0x2000008a
[  939.635977] Code: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 98 4a 2a e9 2c 18 96 4c 0f 05 <bf> 03 00 00 00 c4 a3 7b f0 c5 1d 41 e2 e9 c4 22 e9 aa bb 3c 00 00
[  939.654893] RSP: 002b:00000000000004f0 EFLAGS: 00000287 ORIG_RAX: 0000000000000038
[  939.662621] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 000000002000008a
[  939.669931] RDX: 9c3755da22921eda RSI: 00000000000004f0 RDI: 0000000000000003
[  939.677211] RBP: 00000000000000f8 R08: 0000000000000005 R09: 0000000000000006
[  939.685259] R10: 0000000000000007 R11: 0000000000000287 R12: 000000000000000b
[  939.692542] R13: 000000000000000c R14: 000000000000000d R15: 00000000ffffffff
[  939.700080] net_ratelimit: 11 callbacks suppressed
[  939.700089] protocol 88fb is buggy, dev hsr_slave_0
[  939.701970] protocol 88fb is buggy, dev hsr_slave_0
[  939.705156] protocol 88fb is buggy, dev hsr_slave_1
[  939.710164] protocol 88fb is buggy, dev hsr_slave_1
[  940.191849] Task in /syz2 killed as a result of limit of /syz2
[  940.197919] memory: usage 307200kB, limit 307200kB, failcnt 11742
[  940.231856] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  940.238837] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  940.271853] Memory cgroup stats for /syz2: cache:92KB rss:74228KB rss_huge:69632KB shmem:0KB mapped_file:0KB dirty:132KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:74196KB inactive_file:0KB active_file:0KB unevictable:0KB
[  940.331914] protocol 88fb is buggy, dev hsr_slave_0
[  940.337038] protocol 88fb is buggy, dev hsr_slave_1
[  940.342318] protocol 88fb is buggy, dev hsr_slave_0
[  940.347417] protocol 88fb is buggy, dev hsr_slave_1
[  940.360524] Memory cgroup out of memory: Kill process 20524 (syz-executor.2) score 1113 or sacrifice child
[  940.419077] Killed process 20524 (syz-executor.2) total-vm:72584kB, anon-rss:2216kB, file-rss:35808kB, shmem-rss:0kB
[  940.467714] syz-executor.2 invoked oom-killer: gfp_mask=0x6040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null), order=0, oom_score_adj=0
[  940.548599] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[  940.609039] CPU: 1 PID: 29116 Comm: syz-executor.2 Not tainted 4.19.37 #5
[  940.616033] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  940.625393] Call Trace:
[  940.627998]  dump_stack+0x172/0x1f0
[  940.631642]  dump_header+0x15e/0x929
[  940.635402]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[  940.640539]  ? ___ratelimit+0x60/0x595
[  940.644521]  ? do_raw_spin_unlock+0x57/0x270
[  940.648945]  oom_kill_process.cold+0x10/0x6f5
[  940.653457]  ? task_will_free_mem+0x139/0x6e0
[  940.658000]  out_of_memory+0x936/0x12d0
[  940.662152]  ? oom_killer_disable+0x280/0x280
[  940.666663]  ? find_held_lock+0x35/0x130
[  940.670750]  mem_cgroup_out_of_memory+0x1d2/0x240
[  940.675628]  ? memcg_event_wake+0x230/0x230
[  940.679966]  ? do_raw_spin_unlock+0x57/0x270
[  940.684388]  ? _raw_spin_unlock+0x2d/0x50
[  940.688641]  try_charge+0xd25/0x15b0
[  940.692378]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[  940.697265]  ? rcu_read_lock_sched_held+0x110/0x130
[  940.702295]  ? __alloc_pages_nodemask+0x63e/0x760
[  940.707153]  ? perf_trace_lock_acquire+0xf5/0x580
[  940.712039]  memcg_kmem_charge_memcg+0x7c/0x130
[  940.716729]  ? memcg_kmem_put_cache+0xb0/0xb0
[  940.721294]  ? cache_grow_begin+0x59a/0x8c0
[  940.725634]  ? lockdep_hardirqs_on+0x415/0x5d0
[  940.730341]  ? trace_hardirqs_on+0x67/0x230
[  940.734688]  cache_grow_begin+0x25f/0x8c0
[  940.738860]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  940.744447]  ? __cpuset_node_allowed+0x136/0x540
[  940.749221]  fallback_alloc+0x1fd/0x2d0
[  940.753237]  ____cache_alloc_node+0x1be/0x1e0
[  940.757764]  kmem_cache_alloc+0x1f3/0x700
[  940.762069]  ? __lock_is_held+0xb6/0x140
[  940.766157]  anon_vma_clone+0x238/0x480
[  940.770385]  anon_vma_fork+0x8f/0x4a0
[  940.774200]  ? dup_userfaultfd+0x15e/0x6c0
[  940.778683]  ? memcpy+0x46/0x50
[  940.781985]  copy_process.part.0+0x34dc/0x7970
[  940.786682]  ? __cleanup_sighand+0x70/0x70
[  940.790964]  ? kasan_check_read+0x11/0x20
[  940.795135]  _do_fork+0x257/0xfe0
[  940.798631]  ? fork_idle+0x1d0/0x1d0
[  940.802600]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  940.807473]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  940.811939] protocol 88fb is buggy, dev hsr_slave_0
[  940.812325]  ? do_syscall_64+0x26/0x610
[  940.812346]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  940.817508] protocol 88fb is buggy, dev hsr_slave_1
[  940.821427]  ? do_syscall_64+0x26/0x610
[  940.835777]  __x64_sys_clone+0xbf/0x150
[  940.839816]  do_syscall_64+0x103/0x610
[  940.843729]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  940.848934] RIP: 0033:0x2000008a
[  940.852396] Code: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 98 4a 2a e9 2c 18 96 4c 0f 05 <bf> 03 00 00 00 c4 a3 7b f0 c5 1d 41 e2 e9 c4 22 e9 aa bb 3c 00 00
[  940.871310] RSP: 002b:00000000000004f0 EFLAGS: 00000287 ORIG_RAX: 0000000000000038
[  940.879150] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 000000002000008a
[  940.886523] RDX: 9c3755da22921eda RSI: 00000000000004f0 RDI: 0000000000000003
[  940.893802] RBP: 00000000000000f8 R08: 0000000000000005 R09: 0000000000000006
[  940.901090] R10: 0000000000000007 R11: 0000000000000287 R12: 000000000000000b
[  940.908392] R13: 000000000000000c R14: 000000000000000d R15: 00000000ffffffff
[  940.986679] Task in /syz2 killed as a result of limit of /syz2
[  941.001936] memory: usage 307200kB, limit 307200kB, failcnt 11893
[  941.008196] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  941.041901] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  941.048107] Memory cgroup stats for /syz2: cache:92KB rss:72068KB rss_huge:67584KB shmem:0KB mapped_file:0KB dirty:132KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:72032KB inactive_file:0KB active_file:0KB unevictable:0KB
[  941.111853] Memory cgroup out of memory: Kill process 27167 (syz-executor.2) score 1113 or sacrifice child
[  941.121773] Killed process 27167 (syz-executor.2) total-vm:72452kB, anon-rss:2200kB, file-rss:35824kB, shmem-rss:0kB
[  941.183897] oom_reaper: reaped process 27167 (syz-executor.2), now anon-rss:0kB, file-rss:34864kB, shmem-rss:0kB
[  941.257722] syz-executor.2 invoked oom-killer: gfp_mask=0x6040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null), order=0, oom_score_adj=0
[  941.419125] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[  941.459184] CPU: 0 PID: 29084 Comm: syz-executor.2 Not tainted 4.19.37 #5
[  941.466174] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  941.475720] Call Trace:
[  941.478338]  dump_stack+0x172/0x1f0
[  941.481988]  dump_header+0x15e/0x929
[  941.485720]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[  941.490845]  ? ___ratelimit+0x60/0x595
[  941.494747]  ? do_raw_spin_unlock+0x57/0x270
[  941.499181]  oom_kill_process.cold+0x10/0x6f5
[  941.503702]  ? task_will_free_mem+0x139/0x6e0
[  941.508236]  out_of_memory+0x936/0x12d0
[  941.512251]  ? oom_killer_disable+0x280/0x280
[  941.516769]  ? find_held_lock+0x35/0x130
[  941.520855]  mem_cgroup_out_of_memory+0x1d2/0x240
[  941.525712]  ? memcg_event_wake+0x230/0x230
[  941.530077]  ? do_raw_spin_unlock+0x57/0x270
[  941.534503]  ? _raw_spin_unlock+0x2d/0x50
[  941.538683]  try_charge+0xd25/0x15b0
[  941.542423]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[  941.547290]  ? rcu_read_lock_sched_held+0x110/0x130
[  941.552331]  ? __alloc_pages_nodemask+0x63e/0x760
[  941.557187]  ? perf_trace_lock_acquire+0xf5/0x580
[  941.562054]  memcg_kmem_charge_memcg+0x7c/0x130
[  941.566769]  ? memcg_kmem_put_cache+0xb0/0xb0
[  941.571283]  ? cache_grow_begin+0x59a/0x8c0
[  941.575634]  ? lockdep_hardirqs_on+0x415/0x5d0
[  941.580242]  ? trace_hardirqs_on+0x67/0x230
[  941.584582]  cache_grow_begin+0x25f/0x8c0
[  941.588748]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  941.594573]  ? __cpuset_node_allowed+0x136/0x540
[  941.599404]  fallback_alloc+0x1fd/0x2d0
[  941.603401]  ____cache_alloc_node+0x1be/0x1e0
[  941.607916]  kmem_cache_alloc+0x1f3/0x700
[  941.612079]  ? call_rwsem_wake+0x1b/0x30
[  941.616170]  anon_vma_clone+0x238/0x480
[  941.620170]  anon_vma_fork+0x8f/0x4a0
[  941.623988]  ? dup_userfaultfd+0x15e/0x6c0
[  941.628329]  ? memcpy+0x46/0x50
[  941.631630]  copy_process.part.0+0x34dc/0x7970
[  941.636266]  ? __cleanup_sighand+0x70/0x70
[  941.640556]  ? kasan_check_read+0x11/0x20
[  941.644725]  _do_fork+0x257/0xfe0
[  941.648197]  ? fork_idle+0x1d0/0x1d0
[  941.651947]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  941.656737]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  941.661514]  ? do_syscall_64+0x26/0x610
[  941.665512]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  941.670892]  ? do_syscall_64+0x26/0x610
[  941.674900]  __x64_sys_clone+0xbf/0x150
[  941.678898]  do_syscall_64+0x103/0x610
[  941.682898]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  941.688103] RIP: 0033:0x2000008a
[  941.691481] Code: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 98 4a 2a e9 2c 18 96 4c 0f 05 <bf> 03 00 00 00 c4 a3 7b f0 c5 1d 41 e2 e9 c4 22 e9 aa bb 3c 00 00
[  941.710400] RSP: 002b:00000000000004f0 EFLAGS: 00000287 ORIG_RAX: 0000000000000038
[  941.718136] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 000000002000008a
[  941.725426] RDX: 9c3755da22921eda RSI: 00000000000004f0 RDI: 0000000000000003
[  941.732710] RBP: 00000000000000f8 R08: 0000000000000005 R09: 0000000000000006
[  941.739995] R10: 0000000000000007 R11: 0000000000000287 R12: 000000000000000b
[  941.747281] R13: 000000000000000c R14: 000000000000000d R15: 00000000ffffffff
[  941.775224] Task in /syz2 killed as a result of limit of /syz2
[  941.781304] memory: usage 307200kB, limit 307200kB, failcnt 12062
[  941.801848] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  941.812420] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  941.818599] Memory cgroup stats for /syz2: cache:92KB rss:69904KB rss_huge:65536KB shmem:0KB mapped_file:0KB dirty:132KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:69876KB inactive_file:0KB active_file:0KB unevictable:0KB
[  941.871898] Memory cgroup out of memory: Kill process 27174 (syz-executor.2) score 1113 or sacrifice child
[  941.892939] Killed process 27174 (syz-executor.2) total-vm:72452kB, anon-rss:2200kB, file-rss:35824kB, shmem-rss:0kB
[  941.923333] oom_reaper: reaped process 27174 (syz-executor.2), now anon-rss:0kB, file-rss:34864kB, shmem-rss:0kB
[  941.939870] syz-executor.2 invoked oom-killer: gfp_mask=0x6040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null), order=0, oom_score_adj=0
[  942.091964] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[  942.097418] CPU: 0 PID: 29656 Comm: syz-executor.2 Not tainted 4.19.37 #5
[  942.104376] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  942.113742] Call Trace:
[  942.116353]  dump_stack+0x172/0x1f0
[  942.120006]  dump_header+0x15e/0x929
[  942.123739]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[  942.128859]  ? ___ratelimit+0x60/0x595
[  942.132760]  ? do_raw_spin_unlock+0x57/0x270
[  942.137198]  oom_kill_process.cold+0x10/0x6f5
[  942.141723]  ? task_will_free_mem+0x139/0x6e0
[  942.146250]  out_of_memory+0x936/0x12d0
[  942.150261]  ? oom_killer_disable+0x280/0x280
[  942.154771]  ? find_held_lock+0x35/0x130
[  942.158860]  mem_cgroup_out_of_memory+0x1d2/0x240
[  942.163720]  ? memcg_event_wake+0x230/0x230
[  942.168086]  ? do_raw_spin_unlock+0x57/0x270
[  942.172889]  ? _raw_spin_unlock+0x2d/0x50
[  942.177077]  try_charge+0xd25/0x15b0
[  942.180823]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[  942.185725]  ? rcu_read_lock_sched_held+0x110/0x130
[  942.190763]  ? __alloc_pages_nodemask+0x63e/0x760
[  942.195632]  ? perf_trace_lock_acquire+0xf5/0x580
[  942.200509]  memcg_kmem_charge_memcg+0x7c/0x130
[  942.205206]  ? memcg_kmem_put_cache+0xb0/0xb0
[  942.209752]  ? cache_grow_begin+0x59a/0x8c0
[  942.214200]  ? lockdep_hardirqs_on+0x415/0x5d0
[  942.218808]  ? trace_hardirqs_on+0x67/0x230
[  942.223150]  cache_grow_begin+0x25f/0x8c0
[  942.227331]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  942.232891]  ? __cpuset_node_allowed+0x136/0x540
[  942.237673]  fallback_alloc+0x1fd/0x2d0
[  942.241667]  ____cache_alloc_node+0x1be/0x1e0
[  942.246188]  kmem_cache_alloc+0x1f3/0x700
[  942.250355]  ? anon_vma_clone+0x320/0x480
[  942.254616]  anon_vma_fork+0xfc/0x4a0
[  942.258458]  ? dup_userfaultfd+0x15e/0x6c0
[  942.262707]  ? memcpy+0x46/0x50
[  942.266013]  copy_process.part.0+0x34dc/0x7970
[  942.270733]  ? __cleanup_sighand+0x70/0x70
[  942.274996]  ? kasan_check_read+0x11/0x20
[  942.279170]  _do_fork+0x257/0xfe0
[  942.282650]  ? fork_idle+0x1d0/0x1d0
[  942.286390]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  942.291160]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  942.295944]  ? do_syscall_64+0x26/0x610
[  942.299933]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  942.305317]  ? do_syscall_64+0x26/0x610
[  942.309320]  __x64_sys_clone+0xbf/0x150
[  942.313325]  do_syscall_64+0x103/0x610
[  942.317246]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  942.322447] RIP: 0033:0x2000008a
[  942.325822] Code: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 98 4a 2a e9 2c 18 96 4c 0f 05 <bf> 03 00 00 00 c4 a3 7b f0 c5 1d 41 e2 e9 c4 22 e9 aa bb 3c 00 00
[  942.344741] RSP: 002b:00000000000004f0 EFLAGS: 00000287 ORIG_RAX: 0000000000000038
[  942.352476] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 000000002000008a
[  942.359771] RDX: 9c3755da22921eda RSI: 00000000000004f0 RDI: 0000000000000003
[  942.367062] RBP: 00000000000000f8 R08: 0000000000000005 R09: 0000000000000006
[  942.374356] R10: 0000000000000007 R11: 0000000000000287 R12: 000000000000000b
[  942.381648] R13: 000000000000000c R14: 000000000000000d R15: 00000000ffffffff
[  942.456133] Task in /syz2 killed as a result of limit of /syz2
[  942.462735] memory: usage 307200kB, limit 307200kB, failcnt 12219
[  942.469089] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  942.476473] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  942.485024] Memory cgroup stats for /syz2: cache:92KB rss:67748KB rss_huge:63488KB shmem:0KB mapped_file:0KB dirty:132KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:67720KB inactive_file:0KB active_file:0KB unevictable:0KB
[  942.506448] Memory cgroup out of memory: Kill process 27280 (syz-executor.2) score 1113 or sacrifice child
[  942.518444] Killed process 27280 (syz-executor.2) total-vm:72452kB, anon-rss:2200kB, file-rss:35824kB, shmem-rss:0kB
[  942.546095] syz-executor.2 invoked oom-killer: gfp_mask=0x6040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null), order=0, oom_score_adj=0
[  942.591866] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[  942.597327] CPU: 0 PID: 29666 Comm: syz-executor.2 Not tainted 4.19.37 #5
[  942.604273] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  942.613652] Call Trace:
[  942.616272]  dump_stack+0x172/0x1f0
[  942.619931]  dump_header+0x15e/0x929
[  942.623683]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[  942.628818]  ? ___ratelimit+0x60/0x595
[  942.632730]  ? do_raw_spin_unlock+0x57/0x270
[  942.637169]  oom_kill_process.cold+0x10/0x6f5
[  942.641697]  ? task_will_free_mem+0x139/0x6e0
[  942.646237]  out_of_memory+0x936/0x12d0
[  942.650255]  ? oom_killer_disable+0x280/0x280
[  942.654775]  ? find_held_lock+0x35/0x130
[  942.658876]  mem_cgroup_out_of_memory+0x1d2/0x240
[  942.663743]  ? memcg_event_wake+0x230/0x230
[  942.668112]  ? do_raw_spin_unlock+0x57/0x270
[  942.672569]  ? _raw_spin_unlock+0x2d/0x50
[  942.676764]  try_charge+0xd25/0x15b0
[  942.680507]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[  942.685370]  ? rcu_read_lock_sched_held+0x110/0x130
[  942.690503]  ? __alloc_pages_nodemask+0x63e/0x760
[  942.695368]  ? perf_trace_lock_acquire+0xf5/0x580
[  942.700242]  memcg_kmem_charge_memcg+0x7c/0x130
[  942.704931]  ? memcg_kmem_put_cache+0xb0/0xb0
[  942.709456]  ? cache_grow_begin+0x59a/0x8c0
[  942.713881]  ? lockdep_hardirqs_on+0x415/0x5d0
[  942.718486]  ? trace_hardirqs_on+0x67/0x230
[  942.722826]  cache_grow_begin+0x25f/0x8c0
[  942.727002]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  942.732560]  ? __cpuset_node_allowed+0x136/0x540
[  942.737342]  fallback_alloc+0x1fd/0x2d0
[  942.741347]  ____cache_alloc_node+0x1be/0x1e0
[  942.745880]  kmem_cache_alloc+0x1f3/0x700
[  942.750039]  ? anon_vma_clone+0x320/0x480
[  942.754210]  anon_vma_fork+0xfc/0x4a0
[  942.758037]  ? dup_userfaultfd+0x15e/0x6c0
[  942.762291]  ? memcpy+0x46/0x50
[  942.765604]  copy_process.part.0+0x34dc/0x7970
[  942.770254]  ? __cleanup_sighand+0x70/0x70
[  942.774525]  ? kasan_check_read+0x11/0x20
[  942.778711]  _do_fork+0x257/0xfe0
[  942.782191]  ? fork_idle+0x1d0/0x1d0
[  942.786135]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  942.790908]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  942.795683]  ? do_syscall_64+0x26/0x610
[  942.799680]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  942.805063]  ? do_syscall_64+0x26/0x610
[  942.809060]  __x64_sys_clone+0xbf/0x150
[  942.813065]  do_syscall_64+0x103/0x610
[  942.816978]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  942.822183] RIP: 0033:0x2000008a
[  942.825564] Code: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 98 4a 2a e9 2c 18 96 4c 0f 05 <bf> 03 00 00 00 c4 a3 7b f0 c5 1d 41 e2 e9 c4 22 e9 aa bb 3c 00 00
[  942.844483] RSP: 002b:00000000000004f0 EFLAGS: 00000287 ORIG_RAX: 0000000000000038
[  942.852218] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 000000002000008a
[  942.859521] RDX: 9c3755da22921eda RSI: 00000000000004f0 RDI: 0000000000000003
[  942.866811] RBP: 00000000000000f8 R08: 0000000000000005 R09: 0000000000000006
[  942.874123] R10: 0000000000000007 R11: 0000000000000287 R12: 000000000000000b
[  942.881414] R13: 000000000000000c R14: 000000000000000d R15: 00000000ffffffff
[  942.896640] Task in /syz2 killed as a result of limit of /syz2
[  942.903495] memory: usage 306924kB, limit 307200kB, failcnt 12362
[  942.909834] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  942.917090] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  942.923747] Memory cgroup stats for /syz2: cache:92KB rss:65592KB rss_huge:61440KB shmem:0KB mapped_file:0KB dirty:132KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:65564KB inactive_file:0KB active_file:0KB unevictable:0KB
[  942.945760] Memory cgroup out of memory: Kill process 27391 (syz-executor.2) score 1113 or sacrifice child
[  942.956314] Killed process 27391 (syz-executor.2) total-vm:72452kB, anon-rss:2200kB, file-rss:35824kB, shmem-rss:0kB
[  942.990023] syz-executor.2 invoked oom-killer: gfp_mask=0x6040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null), order=0, oom_score_adj=0
[  943.023040] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[  943.052089] CPU: 0 PID: 29655 Comm: syz-executor.2 Not tainted 4.19.37 #5
[  943.059190] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  943.068592] Call Trace:
[  943.071198]  dump_stack+0x172/0x1f0
[  943.074860]  dump_header+0x15e/0x929
[  943.078599]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[  943.083747]  ? ___ratelimit+0x60/0x595
[  943.087649]  ? do_raw_spin_unlock+0x57/0x270
[  943.092080]  oom_kill_process.cold+0x10/0x6f5
[  943.096604]  ? task_will_free_mem+0x139/0x6e0
[  943.101126]  out_of_memory+0x936/0x12d0
[  943.105131]  ? oom_killer_disable+0x280/0x280
[  943.109638]  ? find_held_lock+0x35/0x130
[  943.113733]  mem_cgroup_out_of_memory+0x1d2/0x240
[  943.118597]  ? memcg_event_wake+0x230/0x230
[  943.122943]  ? do_raw_spin_unlock+0x57/0x270
[  943.127369]  ? _raw_spin_unlock+0x2d/0x50
[  943.131622]  try_charge+0xd25/0x15b0
[  943.135421]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[  943.140313]  ? rcu_read_lock_sched_held+0x110/0x130
[  943.145350]  ? __alloc_pages_nodemask+0x63e/0x760
[  943.151296]  ? perf_trace_lock_acquire+0xf5/0x580
[  943.156182]  memcg_kmem_charge_memcg+0x7c/0x130
[  943.160884]  ? memcg_kmem_put_cache+0xb0/0xb0
[  943.165397]  ? cache_grow_begin+0x59a/0x8c0
[  943.169737]  ? lockdep_hardirqs_on+0x415/0x5d0
[  943.174345]  ? trace_hardirqs_on+0x67/0x230
[  943.178717]  cache_grow_begin+0x25f/0x8c0
[  943.183155]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  943.189080]  ? __cpuset_node_allowed+0x136/0x540
[  943.193869]  fallback_alloc+0x1fd/0x2d0
[  943.197881]  ____cache_alloc_node+0x1be/0x1e0
[  943.202407]  kmem_cache_alloc+0x1f3/0x700
[  943.206585]  ? __lock_is_held+0xb6/0x140
[  943.210677]  anon_vma_clone+0x238/0x480
[  943.214688]  anon_vma_fork+0x8f/0x4a0
[  943.218509]  ? dup_userfaultfd+0x15e/0x6c0
[  943.222763]  ? memcpy+0x46/0x50
[  943.226068]  copy_process.part.0+0x34dc/0x7970
[  943.230728]  ? __cleanup_sighand+0x70/0x70
[  943.234998]  ? kasan_check_read+0x11/0x20
[  943.239174]  _do_fork+0x257/0xfe0
[  943.242659]  ? fork_idle+0x1d0/0x1d0
[  943.246500]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  943.251279]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  943.256057]  ? do_syscall_64+0x26/0x610
[  943.260048]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  943.265428]  ? do_syscall_64+0x26/0x610
[  943.269427]  __x64_sys_clone+0xbf/0x150
[  943.273423]  do_syscall_64+0x103/0x610
[  943.277340]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  943.282548] RIP: 0033:0x2000008a
[  943.285952] Code: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 98 4a 2a e9 2c 18 96 4c 0f 05 <bf> 03 00 00 00 c4 a3 7b f0 c5 1d 41 e2 e9 c4 22 e9 aa bb 3c 00 00
[  943.304868] RSP: 002b:00000000000004f0 EFLAGS: 00000287 ORIG_RAX: 0000000000000038
[  943.312603] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 000000002000008a
[  943.319896] RDX: 9c3755da22921eda RSI: 00000000000004f0 RDI: 0000000000000003
[  943.327179] RBP: 00000000000000f8 R08: 0000000000000005 R09: 0000000000000006
[  943.334459] R10: 0000000000000007 R11: 0000000000000287 R12: 000000000000000b
[  943.341746] R13: 000000000000000c R14: 000000000000000d R15: 00000000ffffffff
[  943.399668] Task in /syz2 killed as a result of limit of /syz2
[  943.418895] memory: usage 307200kB, limit 307200kB, failcnt 12506
[  943.425647] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  943.433273] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  943.439823] Memory cgroup stats for /syz2: cache:92KB rss:63436KB rss_huge:59392KB shmem:0KB mapped_file:0KB dirty:132KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:63408KB inactive_file:0KB active_file:0KB unevictable:0KB
[  943.461921] Memory cgroup out of memory: Kill process 27395 (syz-executor.2) score 1113 or sacrifice child
[  943.472301] Killed process 27395 (syz-executor.2) total-vm:72452kB, anon-rss:2200kB, file-rss:35824kB, shmem-rss:0kB
[  943.507765] syz-executor.2 invoked oom-killer: gfp_mask=0x6040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null), order=0, oom_score_adj=0
[  943.545704] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[  943.551265] CPU: 0 PID: 29206 Comm: syz-executor.2 Not tainted 4.19.37 #5
[  943.563854] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  943.573225] Call Trace:
[  943.575844]  dump_stack+0x172/0x1f0
[  943.579499]  dump_header+0x15e/0x929
[  943.583410]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[  943.588532]  ? ___ratelimit+0x60/0x595
[  943.592436]  ? do_raw_spin_unlock+0x57/0x270
[  943.596868]  oom_kill_process.cold+0x10/0x6f5
[  943.601391]  ? task_will_free_mem+0x139/0x6e0
[  943.605909]  out_of_memory+0x936/0x12d0
[  943.609915]  ? oom_killer_disable+0x280/0x280
[  943.614427]  ? find_held_lock+0x35/0x130
[  943.618532]  mem_cgroup_out_of_memory+0x1d2/0x240
[  943.623393]  ? memcg_event_wake+0x230/0x230
[  943.627736]  ? do_raw_spin_unlock+0x57/0x270
[  943.632166]  ? _raw_spin_unlock+0x2d/0x50
[  943.636349]  try_charge+0xd25/0x15b0
[  943.640094]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[  943.644965]  ? rcu_read_lock_sched_held+0x110/0x130
[  943.649996]  ? __alloc_pages_nodemask+0x63e/0x760
[  943.654858]  ? perf_trace_lock_acquire+0xf5/0x580
[  943.659749]  memcg_kmem_charge_memcg+0x7c/0x130
[  943.664524]  ? memcg_kmem_put_cache+0xb0/0xb0
[  943.669036]  ? cache_grow_begin+0x59a/0x8c0
[  943.673387]  ? lockdep_hardirqs_on+0x415/0x5d0
[  943.677996]  ? trace_hardirqs_on+0x67/0x230
[  943.682350]  cache_grow_begin+0x25f/0x8c0
[  943.686521]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  943.692084]  ? __cpuset_node_allowed+0x136/0x540
[  943.696856]  fallback_alloc+0x1fd/0x2d0
[  943.700868]  ____cache_alloc_node+0x1be/0x1e0
[  943.705392]  kmem_cache_alloc+0x1f3/0x700
[  943.709644]  ? call_rwsem_wake+0x1b/0x30
[  943.713817]  anon_vma_clone+0x238/0x480
[  943.717917]  anon_vma_fork+0x8f/0x4a0
[  943.721736]  ? dup_userfaultfd+0x15e/0x6c0
[  943.725979]  ? memcpy+0x46/0x50
[  943.729281]  copy_process.part.0+0x34dc/0x7970
[  943.733919]  ? __cleanup_sighand+0x70/0x70
[  943.738183]  ? kasan_check_read+0x11/0x20
[  943.742357]  _do_fork+0x257/0xfe0
[  943.745832]  ? fork_idle+0x1d0/0x1d0
[  943.749568]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  943.754346]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  943.759118]  ? do_syscall_64+0x26/0x610
[  943.763108]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  943.768486]  ? do_syscall_64+0x26/0x610
[  943.772480]  __x64_sys_clone+0xbf/0x150
[  943.776478]  do_syscall_64+0x103/0x610
[  943.780392]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  943.785592] RIP: 0033:0x2000008a
[  943.788969] Code: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 98 4a 2a e9 2c 18 96 4c 0f 05 <bf> 03 00 00 00 c4 a3 7b f0 c5 1d 41 e2 e9 c4 22 e9 aa bb 3c 00 00
[  943.807885] RSP: 002b:00000000000004f0 EFLAGS: 00000287 ORIG_RAX: 0000000000000038
[  943.815618] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 000000002000008a
[  943.822901] RDX: 9c3755da22921eda RSI: 00000000000004f0 RDI: 0000000000000003
[  943.830183] RBP: 00000000000000f8 R08: 0000000000000005 R09: 0000000000000006
[  943.837477] R10: 0000000000000007 R11: 0000000000000287 R12: 000000000000000b
[  943.844759] R13: 000000000000000c R14: 000000000000000d R15: 00000000ffffffff
[  943.869752] Task in /syz2 killed as a result of limit of /syz2
[  943.879656] memory: usage 307200kB, limit 307200kB, failcnt 12645
[  943.887259] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  943.894501] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  943.900658] Memory cgroup stats for /syz2: cache:92KB rss:61280KB rss_huge:57344KB shmem:0KB mapped_file:0KB dirty:132KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:61252KB inactive_file:0KB active_file:0KB unevictable:0KB
[  943.922139] Memory cgroup out of memory: Kill process 27406 (syz-executor.2) score 1113 or sacrifice child
[  943.932464] Killed process 27406 (syz-executor.2) total-vm:72452kB, anon-rss:2200kB, file-rss:35824kB, shmem-rss:0kB
[  943.949500] oom_reaper: reaped process 27406 (syz-executor.2), now anon-rss:0kB, file-rss:34864kB, shmem-rss:0kB
[  943.968609] syz-executor.2 invoked oom-killer: gfp_mask=0x6040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null), order=0, oom_score_adj=0
[  944.058422] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[  944.106079] CPU: 0 PID: 29126 Comm: syz-executor.2 Not tainted 4.19.37 #5
[  944.113059] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  944.122436] Call Trace:
[  944.125043]  dump_stack+0x172/0x1f0
[  944.128714]  dump_header+0x15e/0x929
[  944.132447]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[  944.137570]  ? ___ratelimit+0x60/0x595
[  944.141664]  ? do_raw_spin_unlock+0x57/0x270
[  944.146099]  oom_kill_process.cold+0x10/0x6f5
[  944.150618]  ? task_will_free_mem+0x139/0x6e0
[  944.155136]  out_of_memory+0x936/0x12d0
[  944.159135]  ? oom_killer_disable+0x280/0x280
[  944.163672]  ? find_held_lock+0x35/0x130
[  944.167763]  mem_cgroup_out_of_memory+0x1d2/0x240
[  944.172638]  ? memcg_event_wake+0x230/0x230
[  944.176985]  ? do_raw_spin_unlock+0x57/0x270
[  944.181411]  ? _raw_spin_unlock+0x2d/0x50
[  944.185587]  try_charge+0xd25/0x15b0
[  944.189351]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[  944.194219]  ? rcu_read_lock_sched_held+0x110/0x130
[  944.199348]  ? __alloc_pages_nodemask+0x63e/0x760
[  944.204208]  ? perf_trace_lock_acquire+0xf5/0x580
[  944.209098]  memcg_kmem_charge_memcg+0x7c/0x130
[  944.213785]  ? memcg_kmem_put_cache+0xb0/0xb0
[  944.218319]  ? cache_grow_begin+0x59a/0x8c0
[  944.222657]  ? lockdep_hardirqs_on+0x415/0x5d0
[  944.227262]  ? trace_hardirqs_on+0x67/0x230
[  944.231605]  cache_grow_begin+0x25f/0x8c0
[  944.235767]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  944.241325]  ? __cpuset_node_allowed+0x136/0x540
[  944.246097]  fallback_alloc+0x1fd/0x2d0
[  944.250091]  ____cache_alloc_node+0x1be/0x1e0
[  944.254638]  kmem_cache_alloc+0x1f3/0x700
[  944.258796]  ? call_rwsem_wake+0x1b/0x30
[  944.262907]  anon_vma_clone+0x238/0x480
[  944.266900]  anon_vma_fork+0x8f/0x4a0
[  944.270717]  ? dup_userfaultfd+0x15e/0x6c0
[  944.274965]  ? memcpy+0x46/0x50
[  944.278276]  copy_process.part.0+0x34dc/0x7970
[  944.283170]  ? __cleanup_sighand+0x70/0x70
[  944.287514]  ? kasan_check_read+0x11/0x20
[  944.291686]  _do_fork+0x257/0xfe0
[  944.295159]  ? fork_idle+0x1d0/0x1d0
[  944.298901]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  944.303683]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  944.308559]  ? do_syscall_64+0x26/0x610
[  944.312570]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  944.317942]  ? do_syscall_64+0x26/0x610
[  944.321942]  __x64_sys_clone+0xbf/0x150
[  944.325936]  do_syscall_64+0x103/0x610
[  944.329842]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  944.335183] RIP: 0033:0x2000008a
[  944.338560] Code: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 98 4a 2a e9 2c 18 96 4c 0f 05 <bf> 03 00 00 00 c4 a3 7b f0 c5 1d 41 e2 e9 c4 22 e9 aa bb 3c 00 00
[  944.357478] RSP: 002b:00000000000004f0 EFLAGS: 00000287 ORIG_RAX: 0000000000000038
[  944.365216] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 000000002000008a
[  944.372519] RDX: 9c3755da22921eda RSI: 00000000000004f0 RDI: 0000000000000003
[  944.379823] RBP: 00000000000000f8 R08: 0000000000000005 R09: 0000000000000006
[  944.388676] R10: 0000000000000007 R11: 0000000000000287 R12: 000000000000000b
[  944.395964] R13: 000000000000000c R14: 000000000000000d R15: 00000000ffffffff
[  944.411676] Task in /syz2 killed as a result of limit of /syz2
[  944.418651] memory: usage 307200kB, limit 307200kB, failcnt 12887
[  944.425496] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  944.432633] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  944.438793] Memory cgroup stats for /syz2: cache:92KB rss:59124KB rss_huge:55296KB shmem:0KB mapped_file:0KB dirty:132KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:59096KB inactive_file:0KB active_file:0KB unevictable:0KB
[  944.460527] Memory cgroup out of memory: Kill process 20121 (syz-executor.2) score 1113 or sacrifice child
[  944.471123] Killed process 20121 (syz-executor.2) total-vm:72452kB, anon-rss:2208kB, file-rss:35804kB, shmem-rss:0kB
[  944.486779] oom_reaper: reaped process 20121 (syz-executor.2), now anon-rss:0kB, file-rss:34844kB, shmem-rss:0kB
[  944.548407] syz-executor.2 invoked oom-killer: gfp_mask=0x6040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null), order=0, oom_score_adj=0
[  944.761807] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[  944.767271] CPU: 1 PID: 29421 Comm: syz-executor.2 Not tainted 4.19.37 #5
[  944.774209] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  944.783599] Call Trace:
[  944.786208]  dump_stack+0x172/0x1f0
[  944.789949]  dump_header+0x15e/0x929
[  944.793677]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[  944.798792]  ? ___ratelimit+0x60/0x595
[  944.802695]  ? do_raw_spin_unlock+0x57/0x270
[  944.807125]  oom_kill_process.cold+0x10/0x6f5
[  944.811638]  ? task_will_free_mem+0x139/0x6e0
[  944.816173]  out_of_memory+0x936/0x12d0
[  944.820171]  ? oom_killer_disable+0x280/0x280
[  944.824681]  ? find_held_lock+0x35/0x130
[  944.828767]  mem_cgroup_out_of_memory+0x1d2/0x240
[  944.833640]  ? memcg_event_wake+0x230/0x230
[  944.837979]  ? do_raw_spin_unlock+0x57/0x270
[  944.842423]  ? _raw_spin_unlock+0x2d/0x50
[  944.846589]  try_charge+0xd25/0x15b0
[  944.850328]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[  944.855290]  ? rcu_read_lock_sched_held+0x110/0x130
[  944.860318]  ? __alloc_pages_nodemask+0x63e/0x760
[  944.865191]  ? perf_trace_lock_acquire+0xf5/0x580
[  944.870075]  memcg_kmem_charge_memcg+0x7c/0x130
[  944.874758]  ? memcg_kmem_put_cache+0xb0/0xb0
[  944.879273]  ? cache_grow_begin+0x59a/0x8c0
[  944.883632]  ? lockdep_hardirqs_on+0x415/0x5d0
[  944.888238]  ? trace_hardirqs_on+0x67/0x230
[  944.892574]  cache_grow_begin+0x25f/0x8c0
[  944.896753]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  944.902304]  ? __cpuset_node_allowed+0x136/0x540
[  944.907077]  fallback_alloc+0x1fd/0x2d0
[  944.911070]  ____cache_alloc_node+0x1be/0x1e0
[  944.915586]  kmem_cache_alloc+0x1f3/0x700
[  944.919781]  ? call_rwsem_wake+0x1b/0x30
[  944.923878]  anon_vma_clone+0x238/0x480
[  944.927871]  anon_vma_fork+0x8f/0x4a0
[  944.931683]  ? dup_userfaultfd+0x15e/0x6c0
[  944.935926]  ? memcpy+0x46/0x50
[  944.939225]  copy_process.part.0+0x34dc/0x7970
[  944.943951]  ? __cleanup_sighand+0x70/0x70
[  944.948217]  ? kasan_check_read+0x11/0x20
[  944.952393]  _do_fork+0x257/0xfe0
[  944.955860]  ? fork_idle+0x1d0/0x1d0
[  944.959633]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  944.964496]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  944.969269]  ? do_syscall_64+0x26/0x610
[  944.971892] net_ratelimit: 16 callbacks suppressed
[  944.971901] protocol 88fb is buggy, dev hsr_slave_0
[  944.973264]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  944.978256] protocol 88fb is buggy, dev hsr_slave_1
[  944.983221]  ? do_syscall_64+0x26/0x610
[  944.983253]  __x64_sys_clone+0xbf/0x150
[  944.983271]  do_syscall_64+0x103/0x610
[  944.983291]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  944.983302] RIP: 0033:0x2000008a
[  944.983325] Code: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 98 4a 2a e9 2c 18 96 4c 0f 05 <bf> 03 00 00 00 c4 a3 7b f0 c5 1d 41 e2 e9 c4 22 e9 aa bb 3c 00 00
[  945.033189] RSP: 002b:00000000000004f0 EFLAGS: 00000287 ORIG_RAX: 0000000000000038
[  945.040929] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 000000002000008a
[  945.048238] RDX: 9c3755da22921eda RSI: 00000000000004f0 RDI: 0000000000000003
[  945.055538] RBP: 00000000000000f8 R08: 0000000000000005 R09: 0000000000000006
[  945.062824] R10: 0000000000000007 R11: 0000000000000287 R12: 000000000000000b
[  945.070103] R13: 000000000000000c R14: 000000000000000d R15: 00000000ffffffff
[  945.132053] Task in /syz2 killed as a result of limit of /syz2
[  945.138116] memory: usage 307036kB, limit 307200kB, failcnt 13059
[  945.151804] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  945.158610] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  945.181850] Memory cgroup stats for /syz2: cache:92KB rss:56964KB rss_huge:53248KB shmem:0KB mapped_file:0KB dirty:132KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:56936KB inactive_file:0KB active_file:0KB unevictable:0KB
[  945.338540] Memory cgroup out of memory: Kill process 27050 (syz-executor.2) score 1113 or sacrifice child
[  945.360133] Killed process 27050 (syz-executor.2) total-vm:72716kB, anon-rss:2216kB, file-rss:35796kB, shmem-rss:0kB
[  945.411384] oom_reaper: reaped process 27050 (syz-executor.2), now anon-rss:0kB, file-rss:34836kB, shmem-rss:0kB
[  945.433927] syz-executor.2 invoked oom-killer: gfp_mask=0x6040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null), order=0, oom_score_adj=0
[  945.552957] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[  945.558586] CPU: 0 PID: 29554 Comm: syz-executor.2 Not tainted 4.19.37 #5
[  945.565521] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  945.574910] Call Trace:
[  945.577523]  dump_stack+0x172/0x1f0
[  945.581170]  dump_header+0x15e/0x929
[  945.584921]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[  945.590068]  ? ___ratelimit+0x60/0x595
[  945.593966]  ? do_raw_spin_unlock+0x57/0x270
[  945.598479]  oom_kill_process.cold+0x10/0x6f5
[  945.603090]  ? task_will_free_mem+0x139/0x6e0
[  945.607617]  out_of_memory+0x936/0x12d0
[  945.611615]  ? oom_killer_disable+0x280/0x280
[  945.616132]  ? find_held_lock+0x35/0x130
[  945.620226]  mem_cgroup_out_of_memory+0x1d2/0x240
[  945.625093]  ? memcg_event_wake+0x230/0x230
[  945.629436]  ? do_raw_spin_unlock+0x57/0x270
[  945.633862]  ? _raw_spin_unlock+0x2d/0x50
[  945.638025]  try_charge+0xd25/0x15b0
[  945.641756]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[  945.646734]  ? rcu_read_lock_sched_held+0x110/0x130
[  945.651768]  ? __alloc_pages_nodemask+0x63e/0x760
[  945.656626]  ? perf_trace_lock_acquire+0xf5/0x580
[  945.661487]  memcg_kmem_charge_memcg+0x7c/0x130
[  945.666190]  ? memcg_kmem_put_cache+0xb0/0xb0
[  945.670697]  ? cache_grow_begin+0x59a/0x8c0
[  945.675035]  ? lockdep_hardirqs_on+0x415/0x5d0
[  945.679631]  ? trace_hardirqs_on+0x67/0x230
[  945.683980]  cache_grow_begin+0x25f/0x8c0
[  945.688151]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  945.693699]  ? __cpuset_node_allowed+0x136/0x540
[  945.698469]  fallback_alloc+0x1fd/0x2d0
[  945.702459]  ____cache_alloc_node+0x1be/0x1e0
[  945.706972]  kmem_cache_alloc+0x1f3/0x700
[  945.711141]  anon_vma_clone+0x238/0x480
[  945.715137]  anon_vma_fork+0x8f/0x4a0
[  945.718953]  ? dup_userfaultfd+0x15e/0x6c0
[  945.723196]  ? memcpy+0x46/0x50
[  945.726517]  copy_process.part.0+0x34dc/0x7970
[  945.731150]  ? __cleanup_sighand+0x70/0x70
[  945.735425]  ? kasan_check_read+0x11/0x20
[  945.739997]  _do_fork+0x257/0xfe0
[  945.743471]  ? fork_idle+0x1d0/0x1d0
[  945.747208]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  945.751990]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  945.756756]  ? do_syscall_64+0x26/0x610
[  945.760742]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  945.766118]  ? do_syscall_64+0x26/0x610
[  945.770119]  __x64_sys_clone+0xbf/0x150
[  945.774114]  do_syscall_64+0x103/0x610
[  945.778017]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  945.783315] RIP: 0033:0x2000008a
[  945.786693] Code: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 98 4a 2a e9 2c 18 96 4c 0f 05 <bf> 03 00 00 00 c4 a3 7b f0 c5 1d 41 e2 e9 c4 22 e9 aa bb 3c 00 00
[  945.805696] RSP: 002b:00000000000004f0 EFLAGS: 00000287 ORIG_RAX: 0000000000000038
[  945.813426] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 000000002000008a
[  945.820730] RDX: 9c3755da22921eda RSI: 00000000000004f0 RDI: 0000000000000003
[  945.828016] RBP: 00000000000000f8 R08: 0000000000000005 R09: 0000000000000006
[  945.835994] R10: 0000000000000007 R11: 0000000000000287 R12: 000000000000000b
[  945.843457] R13: 000000000000000c R14: 000000000000000d R15: 00000000ffffffff
[  945.931862] protocol 88fb is buggy, dev hsr_slave_0
[  945.931902] protocol 88fb is buggy, dev hsr_slave_1
[  945.937069] protocol 88fb is buggy, dev hsr_slave_1
[  945.988994] Task in /syz2 killed as a result of limit of /syz2
[  945.995724] memory: usage 307200kB, limit 307200kB, failcnt 13234
[  946.009536] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  946.016736] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  946.031321] Memory cgroup stats for /syz2: cache:92KB rss:54804KB rss_huge:51200KB shmem:0KB mapped_file:0KB dirty:132KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:54760KB inactive_file:0KB active_file:0KB unevictable:0KB
[  946.060002] Memory cgroup out of memory: Kill process 16841 (syz-executor.2) score 1113 or sacrifice child
[  946.101885] Killed process 16841 (syz-executor.2) total-vm:72452kB, anon-rss:2208kB, file-rss:35796kB, shmem-rss:0kB
[  946.165495] syz-executor.2 invoked oom-killer: gfp_mask=0x6040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null), order=0, oom_score_adj=0
[  946.289585] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[  946.354883] CPU: 1 PID: 29155 Comm: syz-executor.2 Not tainted 4.19.37 #5
[  946.361858] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  946.371343] Call Trace:
[  946.374139]  dump_stack+0x172/0x1f0
[  946.377792]  dump_header+0x15e/0x929
[  946.381537]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[  946.387019]  ? ___ratelimit+0x60/0x595
[  946.391057]  ? do_raw_spin_unlock+0x57/0x270
[  946.395691]  oom_kill_process.cold+0x10/0x6f5
[  946.400207]  ? task_will_free_mem+0x139/0x6e0
[  946.404741]  out_of_memory+0x936/0x12d0
[  946.408741]  ? oom_killer_disable+0x280/0x280
[  946.413345]  ? find_held_lock+0x35/0x130
[  946.417449]  mem_cgroup_out_of_memory+0x1d2/0x240
[  946.422830]  ? memcg_event_wake+0x230/0x230
[  946.427682]  ? do_raw_spin_unlock+0x57/0x270
[  946.432544]  ? _raw_spin_unlock+0x2d/0x50
[  946.437488]  try_charge+0xd25/0x15b0
[  946.441619]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[  946.446483]  ? rcu_read_lock_sched_held+0x110/0x130
[  946.451515]  ? __alloc_pages_nodemask+0x63e/0x760
[  946.456825]  ? perf_trace_lock_acquire+0xf5/0x580
[  946.461693]  memcg_kmem_charge_memcg+0x7c/0x130
[  946.466381]  ? memcg_kmem_put_cache+0xb0/0xb0
[  946.470975]  ? cache_grow_begin+0x59a/0x8c0
[  946.475787]  ? lockdep_hardirqs_on+0x415/0x5d0
[  946.480729]  ? trace_hardirqs_on+0x67/0x230
[  946.486383]  cache_grow_begin+0x25f/0x8c0
[  946.490785]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  946.496349]  ? __cpuset_node_allowed+0x136/0x540
[  946.501127]  fallback_alloc+0x1fd/0x2d0
[  946.505129]  ____cache_alloc_node+0x1be/0x1e0
[  946.509644]  kmem_cache_alloc+0x1f3/0x700
[  946.513818]  ? anon_vma_clone+0x320/0x480
[  946.518072]  anon_vma_fork+0xfc/0x4a0
[  946.521883]  ? dup_userfaultfd+0x15e/0x6c0
[  946.526126]  ? memcpy+0x46/0x50
[  946.529423]  copy_process.part.0+0x34dc/0x7970
[  946.534060]  ? __cleanup_sighand+0x70/0x70
[  946.538322]  ? kasan_check_read+0x11/0x20
[  946.542674]  _do_fork+0x257/0xfe0
[  946.546146]  ? fork_idle+0x1d0/0x1d0
[  946.549884]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  946.554653]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  946.559418]  ? do_syscall_64+0x26/0x610
[  946.563409]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  946.568785]  ? do_syscall_64+0x26/0x610
[  946.572784]  __x64_sys_clone+0xbf/0x150
[  946.576798]  do_syscall_64+0x103/0x610
[  946.580705]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  946.585903] RIP: 0033:0x2000008a
[  946.589282] Code: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 98 4a 2a e9 2c 18 96 4c 0f 05 <bf> 03 00 00 00 c4 a3 7b f0 c5 1d 41 e2 e9 c4 22 e9 aa bb 3c 00 00
[  946.608549] RSP: 002b:00000000000004f0 EFLAGS: 00000287 ORIG_RAX: 0000000000000038
[  946.616289] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 000000002000008a
[  946.623652] RDX: 9c3755da22921eda RSI: 00000000000004f0 RDI: 0000000000000003
[  946.630935] RBP: 00000000000000f8 R08: 0000000000000005 R09: 0000000000000006
[  946.638216] R10: 0000000000000007 R11: 0000000000000287 R12: 000000000000000b
[  946.645563] R13: 000000000000000c R14: 000000000000000d R15: 00000000ffffffff
[  946.653455] protocol 88fb is buggy, dev hsr_slave_0
[  946.658564] protocol 88fb is buggy, dev hsr_slave_1
[  946.663763] protocol 88fb is buggy, dev hsr_slave_0
[  946.668865] protocol 88fb is buggy, dev hsr_slave_1
[  946.678386] Task in /syz2 killed as a result of limit of /syz2
[  946.685961] memory: usage 307196kB, limit 307200kB, failcnt 13375
[  946.698735] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  946.707097] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  946.726220] Memory cgroup stats for /syz2: cache:92KB rss:52636KB rss_huge:49152KB shmem:0KB mapped_file:0KB dirty:132KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:52600KB inactive_file:0KB active_file:0KB unevictable:0KB
[  946.755262] Memory cgroup out of memory: Kill process 16857 (syz-executor.2) score 1113 or sacrifice child
[  946.788536] Killed process 16857 (syz-executor.2) total-vm:72452kB, anon-rss:2208kB, file-rss:35796kB, shmem-rss:0kB
[  946.878363] syz-executor.2 invoked oom-killer: gfp_mask=0x6040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null), order=0, oom_score_adj=0
[  946.938552] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[  946.978694] CPU: 0 PID: 29552 Comm: syz-executor.2 Not tainted 4.19.37 #5
[  946.985756] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  946.995122] Call Trace:
[  946.997730]  dump_stack+0x172/0x1f0
[  947.001390]  dump_header+0x15e/0x929
[  947.005136]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[  947.010284]  ? ___ratelimit+0x60/0x595
[  947.014287]  ? do_raw_spin_unlock+0x57/0x270
[  947.018723]  oom_kill_process.cold+0x10/0x6f5
[  947.023255]  ? task_will_free_mem+0x139/0x6e0
[  947.027780]  out_of_memory+0x936/0x12d0
[  947.031780]  ? oom_killer_disable+0x280/0x280
[  947.036292]  ? find_held_lock+0x35/0x130
[  947.040411]  mem_cgroup_out_of_memory+0x1d2/0x240
[  947.046506]  ? memcg_event_wake+0x230/0x230
[  947.050995]  ? do_raw_spin_unlock+0x57/0x270
[  947.055423]  ? _raw_spin_unlock+0x2d/0x50
[  947.059602]  try_charge+0xd25/0x15b0
[  947.063348]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[  947.068211]  ? rcu_read_lock_sched_held+0x110/0x130
[  947.073261]  ? __alloc_pages_nodemask+0x63e/0x760
[  947.078123]  ? perf_trace_lock_acquire+0xf5/0x580
[  947.083081]  memcg_kmem_charge_memcg+0x7c/0x130
[  947.087792]  ? memcg_kmem_put_cache+0xb0/0xb0
[  947.092296]  ? cache_grow_begin+0x59a/0x8c0
[  947.096637]  ? lockdep_hardirqs_on+0x415/0x5d0
[  947.101242]  ? trace_hardirqs_on+0x67/0x230
[  947.105588]  cache_grow_begin+0x25f/0x8c0
[  947.109758]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  947.115321]  ? __cpuset_node_allowed+0x136/0x540
[  947.120093]  fallback_alloc+0x1fd/0x2d0
[  947.124143]  ____cache_alloc_node+0x1be/0x1e0
[  947.128657]  kmem_cache_alloc+0x1f3/0x700
[  947.132820]  ? __lock_is_held+0xb6/0x140
[  947.136902]  anon_vma_clone+0x238/0x480
[  947.140892]  anon_vma_fork+0x8f/0x4a0
[  947.144712]  ? dup_userfaultfd+0x15e/0x6c0
[  947.148957]  ? memcpy+0x46/0x50
[  947.152269]  copy_process.part.0+0x34dc/0x7970
[  947.156914]  ? __cleanup_sighand+0x70/0x70
[  947.161191]  ? kasan_check_read+0x11/0x20
[  947.165364]  _do_fork+0x257/0xfe0
[  947.168836]  ? fork_idle+0x1d0/0x1d0
[  947.172572]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  947.177357]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  947.182222]  ? do_syscall_64+0x26/0x610
[  947.186226]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  947.191621]  ? do_syscall_64+0x26/0x610
[  947.195626]  __x64_sys_clone+0xbf/0x150
[  947.199624]  do_syscall_64+0x103/0x610
[  947.203620]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  947.208821] RIP: 0033:0x2000008a
[  947.212285] Code: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 98 4a 2a e9 2c 18 96 4c 0f 05 <bf> 03 00 00 00 c4 a3 7b f0 c5 1d 41 e2 e9 c4 22 e9 aa bb 3c 00 00
[  947.231301] RSP: 002b:00000000000004f0 EFLAGS: 00000287 ORIG_RAX: 0000000000000038
[  947.239109] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 000000002000008a
[  947.246397] RDX: 9c3755da22921eda RSI: 00000000000004f0 RDI: 0000000000000003
[  947.253745] RBP: 00000000000000f8 R08: 0000000000000005 R09: 0000000000000006
[  947.261114] R10: 0000000000000007 R11: 0000000000000287 R12: 000000000000000b
[  947.268573] R13: 000000000000000c R14: 000000000000000d R15: 00000000ffffffff
[  947.276483] protocol 88fb is buggy, dev hsr_slave_0
[  947.337810] Task in /syz2 killed as a result of limit of /syz2
[  947.344606] memory: usage 307200kB, limit 307200kB, failcnt 13489
[  947.352848] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  947.359630] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  947.366414] Memory cgroup stats for /syz2: cache:92KB rss:50452KB rss_huge:47104KB shmem:0KB mapped_file:0KB dirty:132KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:50432KB inactive_file:0KB active_file:0KB unevictable:0KB
[  947.387998] Memory cgroup out of memory: Kill process 18805 (syz-executor.2) score 1113 or sacrifice child
[  947.399035] Killed process 18805 (syz-executor.2) total-vm:72452kB, anon-rss:2208kB, file-rss:35796kB, shmem-rss:0kB
[  947.412380] oom_reaper: reaped process 18805 (syz-executor.2), now anon-rss:0kB, file-rss:34836kB, shmem-rss:0kB
[  947.436294] syz-executor.2 invoked oom-killer: gfp_mask=0x6040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null), order=0, oom_score_adj=0
[  947.578621] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[  947.644191] CPU: 0 PID: 29452 Comm: syz-executor.2 Not tainted 4.19.37 #5
[  947.651174] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  947.660552] Call Trace:
[  947.663159]  dump_stack+0x172/0x1f0
[  947.666812]  dump_header+0x15e/0x929
[  947.670544]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[  947.675671]  ? ___ratelimit+0x60/0x595
[  947.679576]  ? do_raw_spin_unlock+0x57/0x270
[  947.684003]  oom_kill_process.cold+0x10/0x6f5
[  947.688519]  ? task_will_free_mem+0x139/0x6e0
[  947.693268]  out_of_memory+0x936/0x12d0
[  947.697278]  ? oom_killer_disable+0x280/0x280
[  947.701791]  ? find_held_lock+0x35/0x130
[  947.705878]  mem_cgroup_out_of_memory+0x1d2/0x240
[  947.710738]  ? memcg_event_wake+0x230/0x230
[  947.715086]  ? do_raw_spin_unlock+0x57/0x270
[  947.719529]  ? _raw_spin_unlock+0x2d/0x50
[  947.723879]  try_charge+0xd25/0x15b0
[  947.727620]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[  947.732579]  ? rcu_read_lock_sched_held+0x110/0x130
[  947.737606]  ? __alloc_pages_nodemask+0x63e/0x760
[  947.742474]  ? perf_trace_lock_acquire+0xf5/0x580
[  947.747350]  memcg_kmem_charge_memcg+0x7c/0x130
[  947.752038]  ? memcg_kmem_put_cache+0xb0/0xb0
[  947.756543]  ? cache_grow_begin+0x59a/0x8c0
[  947.760880]  ? lockdep_hardirqs_on+0x415/0x5d0
[  947.765483]  ? trace_hardirqs_on+0x67/0x230
[  947.769825]  cache_grow_begin+0x25f/0x8c0
[  947.773989]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  947.779543]  ? __cpuset_node_allowed+0x136/0x540
[  947.784320]  fallback_alloc+0x1fd/0x2d0
[  947.788342]  ____cache_alloc_node+0x1be/0x1e0
[  947.792857]  kmem_cache_alloc+0x1f3/0x700
[  947.797105]  ? __lock_is_held+0xb6/0x140
[  947.801191]  anon_vma_clone+0x238/0x480
[  947.805186]  anon_vma_fork+0x8f/0x4a0
[  947.809000]  ? dup_userfaultfd+0x15e/0x6c0
[  947.813258]  ? memcpy+0x46/0x50
[  947.816561]  copy_process.part.0+0x34dc/0x7970
[  947.821293]  ? __cleanup_sighand+0x70/0x70
[  947.825566]  ? kasan_check_read+0x11/0x20
[  947.829756]  _do_fork+0x257/0xfe0
[  947.833242]  ? fork_idle+0x1d0/0x1d0
[  947.836984]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  947.841750]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  947.846520]  ? do_syscall_64+0x26/0x610
[  947.850506]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  947.855882]  ? do_syscall_64+0x26/0x610
[  947.859873]  __x64_sys_clone+0xbf/0x150
[  947.863864]  do_syscall_64+0x103/0x610
[  947.867769]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  947.872973] RIP: 0033:0x2000008a
[  947.876353] Code: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 98 4a 2a e9 2c 18 96 4c 0f 05 <bf> 03 00 00 00 c4 a3 7b f0 c5 1d 41 e2 e9 c4 22 e9 aa bb 3c 00 00
[  947.895280] RSP: 002b:00000000000004f0 EFLAGS: 00000287 ORIG_RAX: 0000000000000038
[  947.903015] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 000000002000008a
[  947.910299] RDX: 9c3755da22921eda RSI: 00000000000004f0 RDI: 0000000000000003
[  947.917583] RBP: 00000000000000f8 R08: 0000000000000005 R09: 0000000000000006
[  947.924868] R10: 0000000000000007 R11: 0000000000000287 R12: 000000000000000b
[  947.932171] R13: 000000000000000c R14: 000000000000000d R15: 00000000ffffffff
[  947.977642] Task in /syz2 killed as a result of limit of /syz2
[  947.990836] memory: usage 307112kB, limit 307200kB, failcnt 13639
[  947.997684] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  948.012478] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  948.018665] Memory cgroup stats for /syz2: cache:92KB rss:48292KB rss_huge:45056KB shmem:0KB mapped_file:0KB dirty:132KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:48272KB inactive_file:0KB active_file:0KB unevictable:0KB
[  948.046861] Memory cgroup out of memory: Kill process 25431 (syz-executor.2) score 1113 or sacrifice child
[  948.058553] Killed process 25431 (syz-executor.2) total-vm:72584kB, anon-rss:2216kB, file-rss:35788kB, shmem-rss:0kB
[  948.107567] syz-executor.2 invoked oom-killer: gfp_mask=0x6040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null), order=0, oom_score_adj=0
[  948.151777] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[  948.157225] CPU: 1 PID: 29534 Comm: syz-executor.2 Not tainted 4.19.37 #5
[  948.164172] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  948.173537] Call Trace:
[  948.176145]  dump_stack+0x172/0x1f0
[  948.179796]  dump_header+0x15e/0x929
[  948.183534]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[  948.188658]  ? ___ratelimit+0x60/0x595
[  948.192565]  ? do_raw_spin_unlock+0x57/0x270
[  948.197000]  oom_kill_process.cold+0x10/0x6f5
[  948.201518]  ? task_will_free_mem+0x139/0x6e0
[  948.206072]  out_of_memory+0x936/0x12d0
[  948.210097]  ? oom_killer_disable+0x280/0x280
[  948.215477]  ? find_held_lock+0x35/0x130
[  948.219564]  mem_cgroup_out_of_memory+0x1d2/0x240
[  948.224434]  ? memcg_event_wake+0x230/0x230
[  948.228809]  ? do_raw_spin_unlock+0x57/0x270
[  948.233253]  ? _raw_spin_unlock+0x2d/0x50
[  948.237424]  try_charge+0xd25/0x15b0
[  948.241163]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[  948.246040]  ? rcu_read_lock_sched_held+0x110/0x130
[  948.251080]  ? __alloc_pages_nodemask+0x63e/0x760
[  948.255940]  ? perf_trace_lock_acquire+0xf5/0x580
[  948.260810]  memcg_kmem_charge_memcg+0x7c/0x130
[  948.265496]  ? memcg_kmem_put_cache+0xb0/0xb0
[  948.270002]  ? cache_grow_begin+0x59a/0x8c0
[  948.274348]  ? lockdep_hardirqs_on+0x415/0x5d0
[  948.278956]  ? trace_hardirqs_on+0x67/0x230
[  948.283295]  cache_grow_begin+0x25f/0x8c0
[  948.287470]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  948.293024]  ? __cpuset_node_allowed+0x136/0x540
[  948.297799]  fallback_alloc+0x1fd/0x2d0
[  948.301799]  ____cache_alloc_node+0x1be/0x1e0
[  948.306319]  kmem_cache_alloc+0x1f3/0x700
[  948.310482]  ? __lock_is_held+0xb6/0x140
[  948.314565]  anon_vma_clone+0x238/0x480
[  948.318562]  anon_vma_fork+0x8f/0x4a0
[  948.322372]  ? dup_userfaultfd+0x15e/0x6c0
[  948.326616]  ? memcpy+0x46/0x50
[  948.329917]  copy_process.part.0+0x34dc/0x7970
[  948.334555]  ? __cleanup_sighand+0x70/0x70
[  948.338830]  ? kasan_check_read+0x11/0x20
[  948.343004]  _do_fork+0x257/0xfe0
[  948.346485]  ? fork_idle+0x1d0/0x1d0
[  948.350221]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  948.355001]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  948.359779]  ? do_syscall_64+0x26/0x610
[  948.363776]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  948.369165]  ? do_syscall_64+0x26/0x610
[  948.373168]  __x64_sys_clone+0xbf/0x150
[  948.377161]  do_syscall_64+0x103/0x610
[  948.381077]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  948.386277] RIP: 0033:0x2000008a
[  948.389664] Code: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 98 4a 2a e9 2c 18 96 4c 0f 05 <bf> 03 00 00 00 c4 a3 7b f0 c5 1d 41 e2 e9 c4 22 e9 aa bb 3c 00 00
[  948.408592] RSP: 002b:00000000000004f0 EFLAGS: 00000287 ORIG_RAX: 0000000000000038
[  948.416320] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 000000002000008a
[  948.423605] RDX: 9c3755da22921eda RSI: 00000000000004f0 RDI: 0000000000000003
[  948.430892] RBP: 00000000000000f8 R08: 0000000000000005 R09: 0000000000000006
[  948.438216] R10: 0000000000000007 R11: 0000000000000287 R12: 000000000000000b
[  948.445508] R13: 000000000000000c R14: 000000000000000d R15: 00000000ffffffff
[  948.459733] Task in /syz2 killed as a result of limit of /syz2
[  948.466150] memory: usage 307120kB, limit 307200kB, failcnt 13770
[  948.472799] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  948.479579] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  948.487597] Memory cgroup stats for /syz2: cache:92KB rss:46140KB rss_huge:43008KB shmem:0KB mapped_file:0KB dirty:132KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:46112KB inactive_file:0KB active_file:0KB unevictable:0KB
[  948.508992] Memory cgroup out of memory: Kill process 25459 (syz-executor.2) score 1113 or sacrifice child
[  948.519258] Killed process 25459 (syz-executor.2) total-vm:72452kB, anon-rss:2208kB, file-rss:35796kB, shmem-rss:0kB
[  948.553904] syz-executor.2 invoked oom-killer: gfp_mask=0x6040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null), order=0, oom_score_adj=0
[  948.593082] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[  948.598530] CPU: 1 PID: 29629 Comm: syz-executor.2 Not tainted 4.19.37 #5
[  948.605595] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  948.615141] Call Trace:
[  948.617761]  dump_stack+0x172/0x1f0
[  948.621410]  dump_header+0x15e/0x929
[  948.625145]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[  948.630274]  ? ___ratelimit+0x60/0x595
[  948.634203]  ? do_raw_spin_unlock+0x57/0x270
[  948.638637]  oom_kill_process.cold+0x10/0x6f5
[  948.643157]  ? task_will_free_mem+0x139/0x6e0
[  948.647855]  out_of_memory+0x936/0x12d0
[  948.651853]  ? oom_killer_disable+0x280/0x280
[  948.656369]  ? find_held_lock+0x35/0x130
[  948.660461]  mem_cgroup_out_of_memory+0x1d2/0x240
[  948.665319]  ? memcg_event_wake+0x230/0x230
[  948.669667]  ? do_raw_spin_unlock+0x57/0x270
[  948.674098]  ? _raw_spin_unlock+0x2d/0x50
[  948.678276]  try_charge+0xd25/0x15b0
[  948.682055]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[  948.686921]  ? rcu_read_lock_sched_held+0x110/0x130
[  948.691947]  ? __alloc_pages_nodemask+0x63e/0x760
[  948.696802]  ? perf_trace_lock_acquire+0xf5/0x580
[  948.701684]  memcg_kmem_charge_memcg+0x7c/0x130
[  948.706376]  ? memcg_kmem_put_cache+0xb0/0xb0
[  948.710880]  ? cache_grow_begin+0x59a/0x8c0
[  948.715221]  ? lockdep_hardirqs_on+0x415/0x5d0
[  948.719839]  ? trace_hardirqs_on+0x67/0x230
[  948.724183]  cache_grow_begin+0x25f/0x8c0
[  948.728355]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  948.733905]  ? __cpuset_node_allowed+0x136/0x540
[  948.738679]  fallback_alloc+0x1fd/0x2d0
[  948.742673]  ____cache_alloc_node+0x1be/0x1e0
[  948.747183]  kmem_cache_alloc+0x1f3/0x700
[  948.751352]  ? __lock_is_held+0xb6/0x140
[  948.755454]  anon_vma_clone+0x238/0x480
[  948.759465]  anon_vma_fork+0x8f/0x4a0
[  948.763281]  ? dup_userfaultfd+0x15e/0x6c0
[  948.767524]  ? memcpy+0x46/0x50
[  948.770827]  copy_process.part.0+0x34dc/0x7970
[  948.775466]  ? __cleanup_sighand+0x70/0x70
[  948.779758]  ? kasan_check_read+0x11/0x20
[  948.783937]  _do_fork+0x257/0xfe0
[  948.787550]  ? fork_idle+0x1d0/0x1d0
[  948.791289]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  948.796083]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  948.800858]  ? do_syscall_64+0x26/0x610
[  948.805021]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  948.810398]  ? do_syscall_64+0x26/0x610
[  948.814404]  __x64_sys_clone+0xbf/0x150
[  948.818410]  do_syscall_64+0x103/0x610
[  948.822328]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  948.827538] RIP: 0033:0x2000008a
[  948.830913] Code: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 98 4a 2a e9 2c 18 96 4c 0f 05 <bf> 03 00 00 00 c4 a3 7b f0 c5 1d 41 e2 e9 c4 22 e9 aa bb 3c 00 00
[  948.849842] RSP: 002b:00000000000004f0 EFLAGS: 00000287 ORIG_RAX: 0000000000000038
[  948.857570] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 000000002000008a
[  948.864858] RDX: 9c3755da22921eda RSI: 00000000000004f0 RDI: 0000000000000003
[  948.872174] RBP: 00000000000000f8 R08: 0000000000000005 R09: 0000000000000006
[  948.879453] R10: 0000000000000007 R11: 0000000000000287 R12: 000000000000000b
[  948.886735] R13: 000000000000000c R14: 000000000000000d R15: 00000000ffffffff
[  949.014087] Task in /syz2 killed as a result of limit of /syz2
[  949.020150] memory: usage 307200kB, limit 307200kB, failcnt 13931
[  949.028307] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  949.035598] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  949.049285] Memory cgroup stats for /syz2: cache:92KB rss:43992KB rss_huge:40960KB shmem:0KB mapped_file:0KB dirty:132KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:43964KB inactive_file:0KB active_file:0KB unevictable:0KB
[  949.077611] Memory cgroup out of memory: Kill process 10594 (syz-executor.2) score 1113 or sacrifice child
[  949.087968] Killed process 10594 (syz-executor.2) total-vm:72452kB, anon-rss:2208kB, file-rss:35792kB, shmem-rss:0kB
[  949.140106] syz-executor.2 invoked oom-killer: gfp_mask=0x6040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null), order=0, oom_score_adj=0
[  949.186753] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[  949.241783] CPU: 0 PID: 29089 Comm: syz-executor.2 Not tainted 4.19.37 #5
[  949.248779] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  949.258153] Call Trace:
[  949.260765]  dump_stack+0x172/0x1f0
[  949.264421]  dump_header+0x15e/0x929
[  949.268155]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[  949.273287]  ? ___ratelimit+0x60/0x595
[  949.277193]  ? do_raw_spin_unlock+0x57/0x270
[  949.281627]  oom_kill_process.cold+0x10/0x6f5
[  949.286251]  ? task_will_free_mem+0x139/0x6e0
[  949.290776]  out_of_memory+0x936/0x12d0
[  949.294784]  ? oom_killer_disable+0x280/0x280
[  949.299289]  ? find_held_lock+0x35/0x130
[  949.303382]  mem_cgroup_out_of_memory+0x1d2/0x240
[  949.308270]  ? memcg_event_wake+0x230/0x230
[  949.312624]  ? do_raw_spin_unlock+0x57/0x270
[  949.317060]  ? _raw_spin_unlock+0x2d/0x50
[  949.321229]  try_charge+0xd25/0x15b0
[  949.324982]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[  949.330030]  ? rcu_read_lock_sched_held+0x110/0x130
[  949.335066]  ? __alloc_pages_nodemask+0x63e/0x760
[  949.340016]  ? perf_trace_lock_acquire+0xf5/0x580
[  949.344895]  memcg_kmem_charge_memcg+0x7c/0x130
[  949.349588]  ? memcg_kmem_put_cache+0xb0/0xb0
[  949.356613]  ? cache_grow_begin+0x59a/0x8c0
[  949.360956]  ? lockdep_hardirqs_on+0x415/0x5d0
[  949.365568]  ? trace_hardirqs_on+0x67/0x230
[  949.369913]  cache_grow_begin+0x25f/0x8c0
[  949.374110]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  949.379666]  ? __cpuset_node_allowed+0x136/0x540
[  949.384447]  fallback_alloc+0x1fd/0x2d0
[  949.388446]  ____cache_alloc_node+0x1be/0x1e0
[  949.392960]  kmem_cache_alloc+0x1f3/0x700
[  949.397148]  ? anon_vma_clone+0x320/0x480
[  949.401326]  anon_vma_fork+0xfc/0x4a0
[  949.405144]  ? dup_userfaultfd+0x15e/0x6c0
[  949.409388]  ? memcpy+0x46/0x50
[  949.412692]  copy_process.part.0+0x34dc/0x7970
[  949.417329]  ? __cleanup_sighand+0x70/0x70
[  949.421589]  ? kasan_check_read+0x11/0x20
[  949.425760]  _do_fork+0x257/0xfe0
[  949.429242]  ? fork_idle+0x1d0/0x1d0
[  949.433010]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  949.437778]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  949.442545]  ? do_syscall_64+0x26/0x610
[  949.446621]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  949.460348]  ? do_syscall_64+0x26/0x610
[  949.464353]  __x64_sys_clone+0xbf/0x150
[  949.468355]  do_syscall_64+0x103/0x610
[  949.472280]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  949.477485] RIP: 0033:0x2000008a
[  949.481037] Code: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 98 4a 2a e9 2c 18 96 4c 0f 05 <bf> 03 00 00 00 c4 a3 7b f0 c5 1d 41 e2 e9 c4 22 e9 aa bb 3c 00 00
[  949.499956] RSP: 002b:00000000000004f0 EFLAGS: 00000287 ORIG_RAX: 0000000000000038
[  949.507711] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 000000002000008a
[  949.514996] RDX: 9c3755da22921eda RSI: 00000000000004f0 RDI: 0000000000000003
[  949.522321] RBP: 00000000000000f8 R08: 0000000000000005 R09: 0000000000000006
[  949.529612] R10: 0000000000000007 R11: 0000000000000287 R12: 000000000000000b
[  949.537075] R13: 000000000000000c R14: 000000000000000d R15: 00000000ffffffff
[  949.640164] Task in /syz2 killed as a result of limit of /syz2
[  949.649079] memory: usage 307200kB, limit 307200kB, failcnt 14063
[  949.660198] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  949.669708] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  949.680756] Memory cgroup stats for /syz2: cache:92KB rss:41836KB rss_huge:38912KB shmem:0KB mapped_file:0KB dirty:132KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:41816KB inactive_file:0KB active_file:0KB unevictable:0KB
[  949.708841] Memory cgroup out of memory: Kill process 10607 (syz-executor.2) score 1113 or sacrifice child
[  949.719138] Killed process 10607 (syz-executor.2) total-vm:72452kB, anon-rss:2208kB, file-rss:35792kB, shmem-rss:0kB
[  949.768471] syz-executor.2 invoked oom-killer: gfp_mask=0x6040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null), order=0, oom_score_adj=0
[  949.851847] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[  949.857304] CPU: 1 PID: 29304 Comm: syz-executor.2 Not tainted 4.19.37 #5
[  949.864256] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  949.873647] Call Trace:
[  949.876258]  dump_stack+0x172/0x1f0
[  949.879914]  dump_header+0x15e/0x929
[  949.883650]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[  949.888772]  ? ___ratelimit+0x60/0x595
[  949.892775]  ? do_raw_spin_unlock+0x57/0x270
[  949.897204]  oom_kill_process.cold+0x10/0x6f5
[  949.901732]  ? task_will_free_mem+0x139/0x6e0
[  949.906264]  out_of_memory+0x936/0x12d0
[  949.910271]  ? oom_killer_disable+0x280/0x280
[  949.914781]  ? find_held_lock+0x35/0x130
[  949.918877]  mem_cgroup_out_of_memory+0x1d2/0x240
[  949.923742]  ? memcg_event_wake+0x230/0x230
[  949.928089]  ? do_raw_spin_unlock+0x57/0x270
[  949.932604]  ? _raw_spin_unlock+0x2d/0x50
[  949.936774]  try_charge+0xd25/0x15b0
[  949.940512]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[  949.945394]  ? rcu_read_lock_sched_held+0x110/0x130
[  949.950418]  ? __alloc_pages_nodemask+0x63e/0x760
[  949.955456]  ? perf_trace_lock_acquire+0xf5/0x580
[  949.960448]  memcg_kmem_charge_memcg+0x7c/0x130
[  949.965141]  ? memcg_kmem_put_cache+0xb0/0xb0
[  949.969999]  ? cache_grow_begin+0x59a/0x8c0
[  949.974351]  ? lockdep_hardirqs_on+0x415/0x5d0
[  949.978962]  ? trace_hardirqs_on+0x67/0x230
[  949.983305]  cache_grow_begin+0x25f/0x8c0
[  949.987478]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  949.993034]  ? __cpuset_node_allowed+0x136/0x540
[  949.997805]  fallback_alloc+0x1fd/0x2d0
[  950.001913]  ____cache_alloc_node+0x1be/0x1e0
[  950.006437]  kmem_cache_alloc+0x1f3/0x700
[  950.010606]  ? call_rwsem_wake+0x1b/0x30
[  950.014800]  anon_vma_clone+0x238/0x480
[  950.018909]  anon_vma_fork+0x8f/0x4a0
[  950.022725]  ? dup_userfaultfd+0x15e/0x6c0
[  950.026975]  ? memcpy+0x46/0x50
[  950.030286]  copy_process.part.0+0x34dc/0x7970
[  950.034930]  ? __cleanup_sighand+0x70/0x70
[  950.039192]  ? kasan_check_read+0x11/0x20
[  950.043371]  _do_fork+0x257/0xfe0
[  950.046892]  ? fork_idle+0x1d0/0x1d0
[  950.050980]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  950.055759]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  950.060526]  ? do_syscall_64+0x26/0x610
[  950.064536]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  950.069910]  ? do_syscall_64+0x26/0x610
[  950.073991]  __x64_sys_clone+0xbf/0x150
[  950.077983]  do_syscall_64+0x103/0x610
[  950.081905]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  950.087101] RIP: 0033:0x2000008a
[  950.090474] Code: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 98 4a 2a e9 2c 18 96 4c 0f 05 <bf> 03 00 00 00 c4 a3 7b f0 c5 1d 41 e2 e9 c4 22 e9 aa bb 3c 00 00
[  950.091822] net_ratelimit: 11 callbacks suppressed
[  950.091830] protocol 88fb is buggy, dev hsr_slave_0
[  950.109660] RSP: 002b:00000000000004f0 EFLAGS: 00000287 ORIG_RAX: 0000000000000038
[  950.109677] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 000000002000008a
[  950.109685] RDX: 9c3755da22921eda RSI: 00000000000004f0 RDI: 0000000000000003
[  950.109692] RBP: 00000000000000f8 R08: 0000000000000005 R09: 0000000000000006
[  950.109700] R10: 0000000000000007 R11: 0000000000000287 R12: 000000000000000b
[  950.109707] R13: 000000000000000c R14: 000000000000000d R15: 00000000ffffffff
[  950.109998] protocol 88fb is buggy, dev hsr_slave_0
[  950.114801] protocol 88fb is buggy, dev hsr_slave_1
[  950.119855] protocol 88fb is buggy, dev hsr_slave_1
[  950.180548] Task in /syz2 killed as a result of limit of /syz2
[  950.186667] memory: usage 307200kB, limit 307200kB, failcnt 14188
[  950.193045] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  950.199853] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  950.206107] Memory cgroup stats for /syz2: cache:92KB rss:39676KB rss_huge:36864KB shmem:0KB mapped_file:0KB dirty:132KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:39656KB inactive_file:0KB active_file:0KB unevictable:0KB
[  950.227043] Memory cgroup out of memory: Kill process 25453 (syz-executor.2) score 1113 or sacrifice child
[  950.236992] Killed process 25453 (syz-executor.2) total-vm:72452kB, anon-rss:2208kB, file-rss:35792kB, shmem-rss:0kB
[  950.271119] syz-executor.2 invoked oom-killer: gfp_mask=0x6040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null), order=0, oom_score_adj=0
[  950.393736] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[  950.399207] CPU: 1 PID: 29553 Comm: syz-executor.2 Not tainted 4.19.37 #5
[  950.406157] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  950.415527] Call Trace:
[  950.418136]  dump_stack+0x172/0x1f0
[  950.421877]  dump_header+0x15e/0x929
[  950.425612]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[  950.430737]  ? ___ratelimit+0x60/0x595
[  950.434643]  ? do_raw_spin_unlock+0x57/0x270
[  950.439072]  oom_kill_process.cold+0x10/0x6f5
[  950.443598]  ? task_will_free_mem+0x139/0x6e0
[  950.448380]  out_of_memory+0x936/0x12d0
[  950.452375]  ? oom_killer_disable+0x280/0x280
[  950.456885]  ? find_held_lock+0x35/0x130
[  950.460974]  mem_cgroup_out_of_memory+0x1d2/0x240
[  950.465842]  ? memcg_event_wake+0x230/0x230
[  950.470190]  ? do_raw_spin_unlock+0x57/0x270
[  950.474615]  ? _raw_spin_unlock+0x2d/0x50
[  950.478785]  try_charge+0xd25/0x15b0
[  950.483167]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[  950.488037]  ? rcu_read_lock_sched_held+0x110/0x130
[  950.493075]  ? __alloc_pages_nodemask+0x63e/0x760
[  950.497934]  ? perf_trace_lock_acquire+0xf5/0x580
[  950.502806]  memcg_kmem_charge_memcg+0x7c/0x130
[  950.507496]  ? memcg_kmem_put_cache+0xb0/0xb0
[  950.512001]  ? cache_grow_begin+0x59a/0x8c0
[  950.516339]  ? lockdep_hardirqs_on+0x415/0x5d0
[  950.520936]  ? trace_hardirqs_on+0x67/0x230
[  950.525287]  cache_grow_begin+0x25f/0x8c0
[  950.529453]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  950.535003]  ? __cpuset_node_allowed+0x136/0x540
[  950.539781]  fallback_alloc+0x1fd/0x2d0
[  950.543809]  ____cache_alloc_node+0x1be/0x1e0
[  950.548567]  kmem_cache_alloc+0x1f3/0x700
[  950.552729]  ? anon_vma_clone+0x320/0x480
[  950.556897]  anon_vma_fork+0xfc/0x4a0
[  950.560720]  ? dup_userfaultfd+0x15e/0x6c0
[  950.564966]  ? memcpy+0x46/0x50
[  950.568281]  copy_process.part.0+0x34dc/0x7970
[  950.572908]  ? __cleanup_sighand+0x70/0x70
[  950.577171]  ? kasan_check_read+0x11/0x20
[  950.581337]  _do_fork+0x257/0xfe0
[  950.584812]  ? fork_idle+0x1d0/0x1d0
[  950.588555]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  950.593327]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  950.598108]  ? do_syscall_64+0x26/0x610
[  950.602100]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  950.607475]  ? do_syscall_64+0x26/0x610
[  950.611466]  __x64_sys_clone+0xbf/0x150
[  950.615463]  do_syscall_64+0x103/0x610
[  950.619493]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  950.624690] RIP: 0033:0x2000008a
[  950.628067] Code: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 98 4a 2a e9 2c 18 96 4c 0f 05 <bf> 03 00 00 00 c4 a3 7b f0 c5 1d 41 e2 e9 c4 22 e9 aa bb 3c 00 00
[  950.646993] RSP: 002b:00000000000004f0 EFLAGS: 00000287 ORIG_RAX: 0000000000000038
[  950.654725] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 000000002000008a
[  950.662119] RDX: 9c3755da22921eda RSI: 00000000000004f0 RDI: 0000000000000003
[  950.669399] RBP: 00000000000000f8 R08: 0000000000000005 R09: 0000000000000006
[  950.676682] R10: 0000000000000007 R11: 0000000000000287 R12: 000000000000000b
[  950.683966] R13: 000000000000000c R14: 000000000000000d R15: 00000000ffffffff
[  950.716057] Task in /syz2 killed as a result of limit of /syz2
[  950.728065] memory: usage 307188kB, limit 307200kB, failcnt 14345
[  950.735658] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  950.748443] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  950.755975] Memory cgroup stats for /syz2: cache:92KB rss:37504KB rss_huge:34816KB shmem:0KB mapped_file:0KB dirty:132KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:37476KB inactive_file:0KB active_file:0KB unevictable:0KB
[  950.783861] Memory cgroup out of memory: Kill process 11979 (syz-executor.2) score 1113 or sacrifice child
[  950.798518] Killed process 11979 (syz-executor.2) total-vm:72584kB, anon-rss:2192kB, file-rss:35804kB, shmem-rss:0kB
[  950.818557] oom_reaper: reaped process 11979 (syz-executor.2), now anon-rss:0kB, file-rss:34844kB, shmem-rss:0kB
[  950.848687] syz-executor.2 invoked oom-killer: gfp_mask=0x6040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null), order=0, oom_score_adj=0
[  950.953993] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[  950.959434] CPU: 0 PID: 29038 Comm: syz-executor.2 Not tainted 4.19.37 #5
[  950.966365] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  950.975903] Call Trace:
[  950.978523]  dump_stack+0x172/0x1f0
[  950.982176]  dump_header+0x15e/0x929
[  950.985912]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[  950.991030]  ? ___ratelimit+0x60/0x595
[  950.994928]  ? do_raw_spin_unlock+0x57/0x270
[  950.999372]  oom_kill_process.cold+0x10/0x6f5
[  951.003883]  ? task_will_free_mem+0x139/0x6e0
[  951.008405]  out_of_memory+0x936/0x12d0
[  951.012400]  ? oom_killer_disable+0x280/0x280
[  951.016924]  ? find_held_lock+0x35/0x130
[  951.021005]  mem_cgroup_out_of_memory+0x1d2/0x240
[  951.025943]  ? memcg_event_wake+0x230/0x230
[  951.030467]  ? do_raw_spin_unlock+0x57/0x270
[  951.034891]  ? _raw_spin_unlock+0x2d/0x50
[  951.039057]  try_charge+0xd25/0x15b0
[  951.042880]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[  951.047773]  ? rcu_read_lock_sched_held+0x110/0x130
[  951.052808]  ? __alloc_pages_nodemask+0x63e/0x760
[  951.057673]  ? perf_trace_lock_acquire+0xf5/0x580
[  951.062541]  memcg_kmem_charge_memcg+0x7c/0x130
[  951.067229]  ? memcg_kmem_put_cache+0xb0/0xb0
[  951.071737]  ? cache_grow_begin+0x59a/0x8c0
[  951.076078]  ? lockdep_hardirqs_on+0x415/0x5d0
[  951.080680]  ? trace_hardirqs_on+0x67/0x230
[  951.085025]  cache_grow_begin+0x25f/0x8c0
[  951.089192]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  951.094746]  ? __cpuset_node_allowed+0x136/0x540
[  951.099522]  fallback_alloc+0x1fd/0x2d0
[  951.103525]  ____cache_alloc_node+0x1be/0x1e0
[  951.108071]  kmem_cache_alloc+0x1f3/0x700
[  951.112245]  ? __lock_is_held+0xb6/0x140
[  951.116357]  anon_vma_clone+0x238/0x480
[  951.120363]  anon_vma_fork+0x8f/0x4a0
[  951.124181]  ? dup_userfaultfd+0x15e/0x6c0
[  951.128537]  ? memcpy+0x46/0x50
[  951.131842]  copy_process.part.0+0x34dc/0x7970
[  951.136473]  ? __cleanup_sighand+0x70/0x70
[  951.140737]  ? kasan_check_read+0x11/0x20
[  951.144908]  _do_fork+0x257/0xfe0
[  951.148378]  ? fork_idle+0x1d0/0x1d0
[  951.152117]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  951.156885]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  951.161656]  ? do_syscall_64+0x26/0x610
[  951.165646]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  951.171020]  ? do_syscall_64+0x26/0x610
[  951.175040]  __x64_sys_clone+0xbf/0x150
[  951.179035]  do_syscall_64+0x103/0x610
[  951.183203]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  951.188410] RIP: 0033:0x2000008a
[  951.191793] Code: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 98 4a 2a e9 2c 18 96 4c 0f 05 <bf> 03 00 00 00 c4 a3 7b f0 c5 1d 41 e2 e9 c4 22 e9 aa bb 3c 00 00
[  951.210807] RSP: 002b:00000000000004f0 EFLAGS: 00000287 ORIG_RAX: 0000000000000038
[  951.218574] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 000000002000008a
[  951.225858] RDX: 9c3755da22921eda RSI: 00000000000004f0 RDI: 0000000000000003
[  951.233144] RBP: 00000000000000f8 R08: 0000000000000005 R09: 0000000000000006
[  951.240426] R10: 0000000000000007 R11: 0000000000000287 R12: 000000000000000b
[  951.247711] R13: 000000000000000c R14: 000000000000000d R15: 00000000ffffffff
[  951.259814] Task in /syz2 killed as a result of limit of /syz2
[  951.261830] protocol 88fb is buggy, dev hsr_slave_0
[  951.266278] memory: usage 307200kB, limit 307200kB, failcnt 14551
[  951.270953] protocol 88fb is buggy, dev hsr_slave_1
[  951.277605] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  951.282449] protocol 88fb is buggy, dev hsr_slave_0
[  951.289253] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  951.294227] protocol 88fb is buggy, dev hsr_slave_1
[  951.318106] Memory cgroup stats for /syz2: cache:92KB rss:35340KB rss_huge:32768KB shmem:0KB mapped_file:0KB dirty:132KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:35304KB inactive_file:0KB active_file:0KB unevictable:0KB
[  951.350683] Memory cgroup out of memory: Kill process 7983 (syz-executor.2) score 1113 or sacrifice child
[  951.369304] Killed process 7984 (syz-executor.2) total-vm:72456kB, anon-rss:2144kB, file-rss:34816kB, shmem-rss:0kB
[  951.419343] syz-executor.2 invoked oom-killer: gfp_mask=0x6040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null), order=0, oom_score_adj=0
[  951.459681] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[  951.506053] CPU: 1 PID: 29319 Comm: syz-executor.2 Not tainted 4.19.37 #5
[  951.513040] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  951.522404] Call Trace:
[  951.525010]  dump_stack+0x172/0x1f0
[  951.528837]  dump_header+0x15e/0x929
[  951.532577]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[  951.537810]  ? ___ratelimit+0x60/0x595
[  951.541812]  ? do_raw_spin_unlock+0x57/0x270
[  951.546532]  oom_kill_process.cold+0x10/0x6f5
[  951.551136]  ? task_will_free_mem+0x139/0x6e0
[  951.555655]  out_of_memory+0x936/0x12d0
[  951.559843]  ? oom_killer_disable+0x280/0x280
[  951.564375]  ? find_held_lock+0x35/0x130
[  951.568469]  mem_cgroup_out_of_memory+0x1d2/0x240
[  951.573345]  ? memcg_event_wake+0x230/0x230
[  951.577698]  ? do_raw_spin_unlock+0x57/0x270
[  951.582128]  ? _raw_spin_unlock+0x2d/0x50
[  951.586297]  try_charge+0xd25/0x15b0
[  951.590060]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[  951.594932]  ? rcu_read_lock_sched_held+0x110/0x130
[  951.599994]  ? __alloc_pages_nodemask+0x63e/0x760
[  951.604866]  ? perf_trace_lock_acquire+0xf5/0x580
[  951.609733]  memcg_kmem_charge_memcg+0x7c/0x130
[  951.611926] protocol 88fb is buggy, dev hsr_slave_0
[  951.614513]  ? memcg_kmem_put_cache+0xb0/0xb0
[  951.619604] protocol 88fb is buggy, dev hsr_slave_1
[  951.624119]  ? cache_grow_begin+0x59a/0x8c0
[  951.624138]  ? lockdep_hardirqs_on+0x415/0x5d0
[  951.624154]  ? trace_hardirqs_on+0x67/0x230
[  951.624170]  cache_grow_begin+0x25f/0x8c0
[  951.624189]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  951.624206]  ? __cpuset_node_allowed+0x136/0x540
[  951.624223]  fallback_alloc+0x1fd/0x2d0
[  951.660925]  ____cache_alloc_node+0x1be/0x1e0
[  951.665439]  kmem_cache_alloc+0x1f3/0x700
[  951.669714]  ? call_rwsem_wake+0x1b/0x30
[  951.673916]  anon_vma_clone+0x238/0x480
[  951.677931]  anon_vma_fork+0x8f/0x4a0
[  951.681948]  ? dup_userfaultfd+0x15e/0x6c0
[  951.686282]  ? memcpy+0x46/0x50
[  951.689588]  copy_process.part.0+0x34dc/0x7970
[  951.694222]  ? __cleanup_sighand+0x70/0x70
[  951.698492]  ? kasan_check_read+0x11/0x20
[  951.702687]  _do_fork+0x257/0xfe0
[  951.706167]  ? fork_idle+0x1d0/0x1d0
[  951.710026]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  951.714896]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  951.719665]  ? do_syscall_64+0x26/0x610
[  951.723755]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  951.729246]  ? do_syscall_64+0x26/0x610
[  951.733256]  __x64_sys_clone+0xbf/0x150
[  951.737255]  do_syscall_64+0x103/0x610
[  951.741186]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  951.746387] RIP: 0033:0x2000008a
[  951.749772] Code: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 98 4a 2a e9 2c 18 96 4c 0f 05 <bf> 03 00 00 00 c4 a3 7b f0 c5 1d 41 e2 e9 c4 22 e9 aa bb 3c 00 00
[  951.768796] RSP: 002b:00000000000004f0 EFLAGS: 00000287 ORIG_RAX: 0000000000000038
[  951.776533] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 000000002000008a
[  951.783864] RDX: 9c3755da22921eda RSI: 00000000000004f0 RDI: 0000000000000003
[  951.791147] RBP: 00000000000000f8 R08: 0000000000000005 R09: 0000000000000006
[  951.798433] R10: 0000000000000007 R11: 0000000000000287 R12: 000000000000000b
[  951.805805] R13: 000000000000000c R14: 000000000000000d R15: 00000000ffffffff
[  951.841181] Task in /syz2 killed as a result of limit of /syz2
[  951.847697] memory: usage 307200kB, limit 307200kB, failcnt 14628
[  951.854430] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  951.861473] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  951.868262] Memory cgroup stats for /syz2: cache:92KB rss:33232KB rss_huge:30720KB shmem:0KB mapped_file:0KB dirty:132KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:33220KB inactive_file:0KB active_file:0KB unevictable:0KB
[  951.889685] Memory cgroup out of memory: Kill process 7983 (syz-executor.2) score 1113 or sacrifice child
[  951.900247] Killed process 7983 (syz-executor.2) total-vm:72588kB, anon-rss:2184kB, file-rss:35792kB, shmem-rss:0kB
[  951.913349] oom_reaper: reaped process 7983 (syz-executor.2), now anon-rss:0kB, file-rss:34832kB, shmem-rss:0kB
[  951.930783] syz-executor.2 invoked oom-killer: gfp_mask=0x6040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null), order=0, oom_score_adj=0
[  951.946011] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[  951.951524] CPU: 1 PID: 29549 Comm: syz-executor.2 Not tainted 4.19.37 #5
[  951.958470] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  951.967927] Call Trace:
[  951.970544]  dump_stack+0x172/0x1f0
[  951.974381]  dump_header+0x15e/0x929
[  951.978136]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[  951.983445]  ? ___ratelimit+0x60/0x595
[  951.987357]  ? do_raw_spin_unlock+0x57/0x270
[  951.991802]  oom_kill_process.cold+0x10/0x6f5
[  951.996420]  ? task_will_free_mem+0x139/0x6e0
[  952.000944]  out_of_memory+0x936/0x12d0
[  952.004944]  ? oom_killer_disable+0x280/0x280
[  952.009460]  ? find_held_lock+0x35/0x130
[  952.013551]  mem_cgroup_out_of_memory+0x1d2/0x240
[  952.018407]  ? memcg_event_wake+0x230/0x230
[  952.022750]  ? do_raw_spin_unlock+0x57/0x270
[  952.027358]  ? _raw_spin_unlock+0x2d/0x50
[  952.031529]  try_charge+0xd25/0x15b0
[  952.035281]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[  952.040152]  ? rcu_read_lock_sched_held+0x110/0x130
[  952.045207]  ? __alloc_pages_nodemask+0x63e/0x760
[  952.050164]  ? perf_trace_lock_acquire+0xf5/0x580
[  952.055049]  memcg_kmem_charge_memcg+0x7c/0x130
[  952.059753]  ? memcg_kmem_put_cache+0xb0/0xb0
[  952.064282]  ? cache_grow_begin+0x59a/0x8c0
[  952.068634]  ? lockdep_hardirqs_on+0x415/0x5d0
[  952.073246]  ? trace_hardirqs_on+0x67/0x230
[  952.077647]  cache_grow_begin+0x25f/0x8c0
[  952.081843]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  952.087403]  ? __cpuset_node_allowed+0x136/0x540
[  952.092185]  fallback_alloc+0x1fd/0x2d0
[  952.096183]  ____cache_alloc_node+0x1be/0x1e0
[  952.100700]  kmem_cache_alloc+0x1f3/0x700
[  952.104862]  ? anon_vma_clone+0x320/0x480
[  952.109051]  anon_vma_fork+0xfc/0x4a0
[  952.112870]  ? dup_userfaultfd+0x15e/0x6c0
[  952.117115]  ? memcpy+0x46/0x50
[  952.120416]  copy_process.part.0+0x34dc/0x7970
[  952.125049]  ? __cleanup_sighand+0x70/0x70
[  952.129312]  ? kasan_check_read+0x11/0x20
[  952.133497]  _do_fork+0x257/0xfe0
[  952.136973]  ? fork_idle+0x1d0/0x1d0
[  952.140710]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  952.145485]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  952.150322]  ? do_syscall_64+0x26/0x610
[  952.154317]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  952.159695]  ? do_syscall_64+0x26/0x610
[  952.163731]  __x64_sys_clone+0xbf/0x150
[  952.168077]  do_syscall_64+0x103/0x610
[  952.171984]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  952.177422] RIP: 0033:0x2000008a
[  952.180830] Code: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 98 4a 2a e9 2c 18 96 4c 0f 05 <bf> 03 00 00 00 c4 a3 7b f0 c5 1d 41 e2 e9 c4 22 e9 aa bb 3c 00 00
[  952.199968] RSP: 002b:00000000000004f0 EFLAGS: 00000287 ORIG_RAX: 0000000000000038
[  952.207790] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 000000002000008a
[  952.215219] RDX: 9c3755da22921eda RSI: 00000000000004f0 RDI: 0000000000000003
[  952.222533] RBP: 00000000000000f8 R08: 0000000000000005 R09: 0000000000000006
[  952.229841] R10: 0000000000000007 R11: 0000000000000287 R12: 000000000000000b
[  952.237323] R13: 000000000000000c R14: 000000000000000d R15: 00000000ffffffff
[  952.247881] Task in /syz2 killed as a result of limit of /syz2
[  952.254570] memory: usage 307040kB, limit 307200kB, failcnt 14685
[  952.260909] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  952.268413] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  952.275134] Memory cgroup stats for /syz2: cache:92KB rss:33232KB rss_huge:30720KB shmem:0KB mapped_file:0KB dirty:132KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:33204KB inactive_file:0KB active_file:0KB unevictable:0KB
[  952.296544] Memory cgroup out of memory: Kill process 13166 (syz-executor.2) score 1113 or sacrifice child
[  952.306882] Killed process 13166 (syz-executor.2) total-vm:72452kB, anon-rss:2184kB, file-rss:35784kB, shmem-rss:0kB
[  952.348324] syz-executor.2 invoked oom-killer: gfp_mask=0x6040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null), order=0, oom_score_adj=0
[  952.401742] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[  952.407200] CPU: 1 PID: 29154 Comm: syz-executor.2 Not tainted 4.19.37 #5
[  952.414147] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  952.423554] Call Trace:
[  952.426163]  dump_stack+0x172/0x1f0
[  952.429990]  dump_header+0x15e/0x929
[  952.433764]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[  952.438895]  ? ___ratelimit+0x60/0x595
[  952.442829]  ? do_raw_spin_unlock+0x57/0x270
[  952.447351]  oom_kill_process.cold+0x10/0x6f5
[  952.451874]  ? task_will_free_mem+0x139/0x6e0
[  952.456398]  out_of_memory+0x936/0x12d0
[  952.460397]  ? oom_killer_disable+0x280/0x280
[  952.464908]  ? find_held_lock+0x35/0x130
[  952.469002]  mem_cgroup_out_of_memory+0x1d2/0x240
[  952.473866]  ? memcg_event_wake+0x230/0x230
[  952.478562]  ? do_raw_spin_unlock+0x57/0x270
[  952.485404]  ? _raw_spin_unlock+0x2d/0x50
[  952.489593]  try_charge+0xd25/0x15b0
[  952.493350]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[  952.498226]  ? rcu_read_lock_sched_held+0x110/0x130
[  952.503276]  ? __alloc_pages_nodemask+0x63e/0x760
[  952.508141]  ? perf_trace_lock_acquire+0xf5/0x580
[  952.513036]  memcg_kmem_charge_memcg+0x7c/0x130
[  952.517719]  ? memcg_kmem_put_cache+0xb0/0xb0
[  952.522228]  ? cache_grow_begin+0x59a/0x8c0
[  952.526578]  ? lockdep_hardirqs_on+0x415/0x5d0
[  952.531179]  ? trace_hardirqs_on+0x67/0x230
[  952.535518]  cache_grow_begin+0x25f/0x8c0
[  952.539768]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  952.545320]  ? __cpuset_node_allowed+0x136/0x540
[  952.550096]  fallback_alloc+0x1fd/0x2d0
[  952.554094]  ____cache_alloc_node+0x1be/0x1e0
[  952.558612]  kmem_cache_alloc+0x1f3/0x700
[  952.562775]  ? call_rwsem_wake+0x1b/0x30
[  952.566890]  anon_vma_clone+0x238/0x480
[  952.570980]  anon_vma_fork+0x8f/0x4a0
[  952.574891]  ? dup_userfaultfd+0x15e/0x6c0
[  952.579221]  ? memcpy+0x46/0x50
[  952.582528]  copy_process.part.0+0x34dc/0x7970
[  952.587157]  ? __cleanup_sighand+0x70/0x70
[  952.591507]  ? kasan_check_read+0x11/0x20
[  952.595683]  _do_fork+0x257/0xfe0
[  952.599153]  ? fork_idle+0x1d0/0x1d0
[  952.602903]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  952.607672]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  952.612468]  ? do_syscall_64+0x26/0x610
[  952.616456]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  952.621844]  ? do_syscall_64+0x26/0x610
[  952.625849]  __x64_sys_clone+0xbf/0x150
[  952.629858]  do_syscall_64+0x103/0x610
[  952.633763]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  952.638968] RIP: 0033:0x2000008a
[  952.642396] Code: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 98 4a 2a e9 2c 18 96 4c 0f 05 <bf> 03 00 00 00 c4 a3 7b f0 c5 1d 41 e2 e9 c4 22 e9 aa bb 3c 00 00
[  952.661677] RSP: 002b:00000000000004f0 EFLAGS: 00000287 ORIG_RAX: 0000000000000038
[  952.669433] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 000000002000008a
[  952.676718] RDX: 9c3755da22921eda RSI: 00000000000004f0 RDI: 0000000000000003
[  952.683998] RBP: 00000000000000f8 R08: 0000000000000005 R09: 0000000000000006
[  952.691292] R10: 0000000000000007 R11: 0000000000000287 R12: 000000000000000b
[  952.698576] R13: 000000000000000c R14: 000000000000000d R15: 00000000ffffffff
[  952.794592] Task in /syz2 killed as a result of limit of /syz2
[  952.801195] memory: usage 307200kB, limit 307200kB, failcnt 14833
[  952.809997] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  952.817749] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  952.824311] Memory cgroup stats for /syz2: cache:92KB rss:31048KB rss_huge:28672KB shmem:0KB mapped_file:0KB dirty:132KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:31044KB inactive_file:0KB active_file:0KB unevictable:0KB
[  952.848000] Memory cgroup out of memory: Kill process 20500 (syz-executor.2) score 1110 or sacrifice child
[  952.858222] Killed process 20500 (syz-executor.2) total-vm:72452kB, anon-rss:2208kB, file-rss:34816kB, shmem-rss:0kB
[  952.877187] syz-executor.2 invoked oom-killer: gfp_mask=0x6040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null), order=0, oom_score_adj=0
[  952.932389] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[  952.937844] CPU: 0 PID: 29101 Comm: syz-executor.2 Not tainted 4.19.37 #5
[  952.944783] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  952.954153] Call Trace:
[  952.956766]  dump_stack+0x172/0x1f0
[  952.960424]  dump_header+0x15e/0x929
[  952.964165]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[  952.969297]  ? ___ratelimit+0x60/0x595
[  952.973214]  ? do_raw_spin_unlock+0x57/0x270
[  952.977669]  oom_kill_process.cold+0x10/0x6f5
[  952.982200]  ? task_will_free_mem+0x139/0x6e0
[  952.986749]  out_of_memory+0x936/0x12d0
[  952.990767]  ? oom_killer_disable+0x280/0x280
[  952.995302]  ? find_held_lock+0x35/0x130
[  952.999416]  mem_cgroup_out_of_memory+0x1d2/0x240
[  953.004297]  ? memcg_event_wake+0x230/0x230
[  953.008648]  ? do_raw_spin_unlock+0x57/0x270
[  953.013084]  ? _raw_spin_unlock+0x2d/0x50
[  953.017267]  try_charge+0xd25/0x15b0
[  953.021014]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[  953.025883]  ? rcu_read_lock_sched_held+0x110/0x130
[  953.030910]  ? __alloc_pages_nodemask+0x63e/0x760
[  953.035770]  ? perf_trace_lock_acquire+0xf5/0x580
[  953.040643]  memcg_kmem_charge_memcg+0x7c/0x130
[  953.045333]  ? memcg_kmem_put_cache+0xb0/0xb0
[  953.049857]  ? cache_grow_begin+0x59a/0x8c0
[  953.054200]  ? lockdep_hardirqs_on+0x415/0x5d0
[  953.058815]  ? trace_hardirqs_on+0x67/0x230
[  953.063160]  cache_grow_begin+0x25f/0x8c0
[  953.067336]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  953.072924]  ? __cpuset_node_allowed+0x136/0x540
[  953.077715]  fallback_alloc+0x1fd/0x2d0
[  953.081719]  ____cache_alloc_node+0x1be/0x1e0
[  953.086259]  kmem_cache_alloc+0x1f3/0x700
[  953.090436]  ? call_rwsem_wake+0x1b/0x30
[  953.094530]  anon_vma_clone+0x238/0x480
[  953.098552]  anon_vma_fork+0x8f/0x4a0
[  953.102376]  ? dup_userfaultfd+0x15e/0x6c0
[  953.106641]  ? memcpy+0x46/0x50
[  953.109976]  copy_process.part.0+0x34dc/0x7970
[  953.114616]  ? __cleanup_sighand+0x70/0x70
[  953.118885]  ? kasan_check_read+0x11/0x20
[  953.123066]  _do_fork+0x257/0xfe0
[  953.126538]  ? fork_idle+0x1d0/0x1d0
[  953.130290]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  953.135072]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  953.139841]  ? do_syscall_64+0x26/0x610
[  953.143831]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  953.149215]  ? do_syscall_64+0x26/0x610
[  953.153216]  __x64_sys_clone+0xbf/0x150
[  953.157219]  do_syscall_64+0x103/0x610
[  953.161145]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  953.166351] RIP: 0033:0x2000008a
[  953.169734] Code: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 98 4a 2a e9 2c 18 96 4c 0f 05 <bf> 03 00 00 00 c4 a3 7b f0 c5 1d 41 e2 e9 c4 22 e9 aa bb 3c 00 00
[  953.188655] RSP: 002b:00000000000004f0 EFLAGS: 00000287 ORIG_RAX: 0000000000000038
[  953.196389] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 000000002000008a
[  953.203681] RDX: 9c3755da22921eda RSI: 00000000000004f0 RDI: 0000000000000003
[  953.211145] RBP: 00000000000000f8 R08: 0000000000000005 R09: 0000000000000006
[  953.218440] R10: 0000000000000007 R11: 0000000000000287 R12: 000000000000000b
[  953.225725] R13: 000000000000000c R14: 000000000000000d R15: 00000000ffffffff
[  953.233333] Task in /syz2 killed as a result of limit of /syz2
[  953.239412] memory: usage 307160kB, limit 307200kB, failcnt 14953
[  953.246143] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  953.253425] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  953.259591] Memory cgroup stats for /syz2: cache:92KB rss:28900KB rss_huge:26624KB shmem:0KB mapped_file:0KB dirty:132KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:28880KB inactive_file:0KB active_file:0KB unevictable:0KB
[  953.281384] Memory cgroup out of memory: Kill process 20561 (syz-executor.2) score 1110 or sacrifice child
[  953.291819] Killed process 20561 (syz-executor.2) total-vm:72452kB, anon-rss:2208kB, file-rss:34816kB, shmem-rss:0kB
[  953.326436] syz-executor.2 invoked oom-killer: gfp_mask=0x6040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null), order=0, oom_score_adj=0
[  953.391756] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[  953.397211] CPU: 0 PID: 29081 Comm: syz-executor.2 Not tainted 4.19.37 #5
[  953.404176] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  953.413548] Call Trace:
[  953.416153]  dump_stack+0x172/0x1f0
[  953.419806]  dump_header+0x15e/0x929
[  953.423538]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[  953.428657]  ? ___ratelimit+0x60/0x595
[  953.432564]  ? do_raw_spin_unlock+0x57/0x270
[  953.436991]  oom_kill_process.cold+0x10/0x6f5
[  953.441509]  ? task_will_free_mem+0x139/0x6e0
[  953.446033]  out_of_memory+0x936/0x12d0
[  953.450058]  ? oom_killer_disable+0x280/0x280
[  953.454566]  ? find_held_lock+0x35/0x130
[  953.458653]  mem_cgroup_out_of_memory+0x1d2/0x240
[  953.463518]  ? memcg_event_wake+0x230/0x230
[  953.467861]  ? do_raw_spin_unlock+0x57/0x270
[  953.472290]  ? _raw_spin_unlock+0x2d/0x50
[  953.476464]  try_charge+0xd25/0x15b0
[  953.480246]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[  953.485123]  ? rcu_read_lock_sched_held+0x110/0x130
[  953.490155]  ? __alloc_pages_nodemask+0x63e/0x760
[  953.495039]  ? perf_trace_lock_acquire+0xf5/0x580
[  953.499906]  memcg_kmem_charge_memcg+0x7c/0x130
[  953.504597]  ? memcg_kmem_put_cache+0xb0/0xb0
[  953.509109]  ? cache_grow_begin+0x59a/0x8c0
[  953.513452]  ? lockdep_hardirqs_on+0x415/0x5d0
[  953.518068]  ? trace_hardirqs_on+0x67/0x230
[  953.522409]  cache_grow_begin+0x25f/0x8c0
[  953.526574]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  953.532128]  ? __cpuset_node_allowed+0x136/0x540
[  953.536901]  fallback_alloc+0x1fd/0x2d0
[  953.540895]  ____cache_alloc_node+0x1be/0x1e0
[  953.545409]  kmem_cache_alloc+0x1f3/0x700
[  953.549598]  ? __lock_is_held+0xb6/0x140
[  953.553682]  anon_vma_clone+0x238/0x480
[  953.557678]  anon_vma_fork+0x8f/0x4a0
[  953.561503]  ? dup_userfaultfd+0x15e/0x6c0
[  953.565749]  ? memcpy+0x46/0x50
[  953.569058]  copy_process.part.0+0x34dc/0x7970
[  953.573701]  ? __cleanup_sighand+0x70/0x70
[  953.577971]  ? kasan_check_read+0x11/0x20
[  953.582152]  _do_fork+0x257/0xfe0
[  953.585631]  ? fork_idle+0x1d0/0x1d0
[  953.589373]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  953.594146]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  953.598919]  ? do_syscall_64+0x26/0x610
[  953.602907]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  953.608291]  ? do_syscall_64+0x26/0x610
[  953.612294]  __x64_sys_clone+0xbf/0x150
[  953.616467]  do_syscall_64+0x103/0x610
[  953.620374]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  953.625570] RIP: 0033:0x2000008a
[  953.628950] Code: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 98 4a 2a e9 2c 18 96 4c 0f 05 <bf> 03 00 00 00 c4 a3 7b f0 c5 1d 41 e2 e9 c4 22 e9 aa bb 3c 00 00
[  953.647866] RSP: 002b:00000000000004f0 EFLAGS: 00000287 ORIG_RAX: 0000000000000038
[  953.655619] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 000000002000008a
[  953.662904] RDX: 9c3755da22921eda RSI: 00000000000004f0 RDI: 0000000000000003
[  953.670184] RBP: 00000000000000f8 R08: 0000000000000005 R09: 0000000000000006
[  953.677552] R10: 0000000000000007 R11: 0000000000000287 R12: 000000000000000b
[  953.685274] R13: 000000000000000c R14: 000000000000000d R15: 00000000ffffffff
[  953.757081] Task in /syz2 killed as a result of limit of /syz2
[  953.763627] memory: usage 307200kB, limit 307200kB, failcnt 15093
[  953.769883] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  953.777304] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  953.783932] Memory cgroup stats for /syz2: cache:92KB rss:26732KB rss_huge:24576KB shmem:0KB mapped_file:0KB dirty:132KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:26712KB inactive_file:0KB active_file:0KB unevictable:0KB
[  953.805492] Memory cgroup out of memory: Kill process 28185 (syz-executor.2) score 1110 or sacrifice child
[  953.815831] Killed process 28185 (syz-executor.2) total-vm:72452kB, anon-rss:2200kB, file-rss:34816kB, shmem-rss:0kB
[  953.850182] syz-executor.2 invoked oom-killer: gfp_mask=0x6040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null), order=0, oom_score_adj=0
[  953.901834] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[  953.907288] CPU: 0 PID: 29158 Comm: syz-executor.2 Not tainted 4.19.37 #5
[  953.914262] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  953.923629] Call Trace:
[  953.926253]  dump_stack+0x172/0x1f0
[  953.929906]  dump_header+0x15e/0x929
[  953.933649]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[  953.938769]  ? ___ratelimit+0x60/0x595
[  953.942784]  ? do_raw_spin_unlock+0x57/0x270
[  953.947215]  oom_kill_process.cold+0x10/0x6f5
[  953.951803]  ? task_will_free_mem+0x139/0x6e0
[  953.956335]  out_of_memory+0x936/0x12d0
[  953.960337]  ? oom_killer_disable+0x280/0x280
[  953.964863]  ? find_held_lock+0x35/0x130
[  953.968952]  mem_cgroup_out_of_memory+0x1d2/0x240
[  953.973810]  ? memcg_event_wake+0x230/0x230
[  953.978155]  ? do_raw_spin_unlock+0x57/0x270
[  953.982760]  ? _raw_spin_unlock+0x2d/0x50
[  953.987016]  try_charge+0xd25/0x15b0
[  953.990767]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[  953.995633]  ? rcu_read_lock_sched_held+0x110/0x130
[  954.000669]  ? __alloc_pages_nodemask+0x63e/0x760
[  954.005533]  ? perf_trace_lock_acquire+0xf5/0x580
[  954.010410]  memcg_kmem_charge_memcg+0x7c/0x130
[  954.015099]  ? memcg_kmem_put_cache+0xb0/0xb0
[  954.019610]  ? cache_grow_begin+0x59a/0x8c0
[  954.023957]  ? lockdep_hardirqs_on+0x415/0x5d0
[  954.028556]  ? trace_hardirqs_on+0x67/0x230
[  954.032897]  cache_grow_begin+0x25f/0x8c0
[  954.037072]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  954.042622]  ? __cpuset_node_allowed+0x136/0x540
[  954.047481]  fallback_alloc+0x1fd/0x2d0
[  954.051472]  ____cache_alloc_node+0x1be/0x1e0
[  954.055987]  kmem_cache_alloc+0x1f3/0x700
[  954.060145]  ? __lock_is_held+0xb6/0x140
[  954.064228]  anon_vma_clone+0x238/0x480
[  954.068259]  anon_vma_fork+0x8f/0x4a0
[  954.072084]  ? dup_userfaultfd+0x15e/0x6c0
[  954.076334]  ? memcpy+0x46/0x50
[  954.079636]  copy_process.part.0+0x34dc/0x7970
[  954.084271]  ? __cleanup_sighand+0x70/0x70
[  954.088534]  ? kasan_check_read+0x11/0x20
[  954.092713]  _do_fork+0x257/0xfe0
[  954.096191]  ? fork_idle+0x1d0/0x1d0
[  954.099928]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  954.104707]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  954.109485]  ? do_syscall_64+0x26/0x610
[  954.113644]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  954.119027]  ? do_syscall_64+0x26/0x610
[  954.123023]  __x64_sys_clone+0xbf/0x150
[  954.127016]  do_syscall_64+0x103/0x610
[  954.130929]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  954.136128] RIP: 0033:0x2000008a
[  954.139525] Code: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 98 4a 2a e9 2c 18 96 4c 0f 05 <bf> 03 00 00 00 c4 a3 7b f0 c5 1d 41 e2 e9 c4 22 e9 aa bb 3c 00 00
[  954.158530] RSP: 002b:00000000000004f0 EFLAGS: 00000287 ORIG_RAX: 0000000000000038
[  954.166285] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 000000002000008a
[  954.173581] RDX: 9c3755da22921eda RSI: 00000000000004f0 RDI: 0000000000000003
[  954.180863] RBP: 00000000000000f8 R08: 0000000000000005 R09: 0000000000000006
[  954.188169] R10: 0000000000000007 R11: 0000000000000287 R12: 000000000000000b
[  954.195461] R13: 000000000000000c R14: 000000000000000d R15: 00000000ffffffff
[  954.318163] Task in /syz2 killed as a result of limit of /syz2
[  954.328129] memory: usage 307200kB, limit 307200kB, failcnt 15244
[  954.337949] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  954.356031] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  954.366157] Memory cgroup stats for /syz2: cache:92KB rss:24584KB rss_huge:22528KB shmem:0KB mapped_file:0KB dirty:132KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:24564KB inactive_file:0KB active_file:0KB unevictable:0KB
[  954.396036] Memory cgroup out of memory: Kill process 28330 (syz-executor.2) score 1110 or sacrifice child
[  954.417260] Killed process 28330 (syz-executor.2) total-vm:72452kB, anon-rss:2200kB, file-rss:34816kB, shmem-rss:0kB
[  954.460749] syz-executor.2 invoked oom-killer: gfp_mask=0x6040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null), order=0, oom_score_adj=0
[  954.525733] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[  954.531185] CPU: 1 PID: 29299 Comm: syz-executor.2 Not tainted 4.19.37 #5
[  954.538472] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  954.547854] Call Trace:
[  954.550457]  dump_stack+0x172/0x1f0
[  954.554108]  dump_header+0x15e/0x929
[  954.558047]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[  954.563164]  ? ___ratelimit+0x60/0x595
[  954.567063]  ? do_raw_spin_unlock+0x57/0x270
[  954.571488]  oom_kill_process.cold+0x10/0x6f5
[  954.576001]  ? task_will_free_mem+0x139/0x6e0
[  954.580519]  out_of_memory+0x936/0x12d0
[  954.584515]  ? oom_killer_disable+0x280/0x280
[  954.589024]  ? find_held_lock+0x35/0x130
[  954.593119]  mem_cgroup_out_of_memory+0x1d2/0x240
[  954.597973]  ? memcg_event_wake+0x230/0x230
[  954.602314]  ? do_raw_spin_unlock+0x57/0x270
[  954.606740]  ? _raw_spin_unlock+0x2d/0x50
[  954.610906]  try_charge+0xd25/0x15b0
[  954.614737]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[  954.619605]  ? rcu_read_lock_sched_held+0x110/0x130
[  954.624635]  ? __alloc_pages_nodemask+0x63e/0x760
[  954.629497]  ? perf_trace_lock_acquire+0xf5/0x580
[  954.634364]  memcg_kmem_charge_memcg+0x7c/0x130
[  954.639190]  ? memcg_kmem_put_cache+0xb0/0xb0
[  954.643793]  ? cache_grow_begin+0x59a/0x8c0
[  954.648147]  ? lockdep_hardirqs_on+0x415/0x5d0
[  954.652744]  ? trace_hardirqs_on+0x67/0x230
[  954.657372]  cache_grow_begin+0x25f/0x8c0
[  954.661535]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  954.667104]  ? __cpuset_node_allowed+0x136/0x540
[  954.671916]  fallback_alloc+0x1fd/0x2d0
[  954.675914]  ____cache_alloc_node+0x1be/0x1e0
[  954.680432]  kmem_cache_alloc+0x1f3/0x700
[  954.684599]  ? call_rwsem_wake+0x1b/0x30
[  954.688705]  anon_vma_clone+0x238/0x480
[  954.692700]  anon_vma_fork+0x8f/0x4a0
[  954.696511]  ? dup_userfaultfd+0x15e/0x6c0
[  954.700761]  ? memcpy+0x46/0x50
[  954.704058]  copy_process.part.0+0x34dc/0x7970
[  954.708779]  ? __cleanup_sighand+0x70/0x70
[  954.713048]  ? kasan_check_read+0x11/0x20
[  954.717216]  _do_fork+0x257/0xfe0
[  954.720698]  ? fork_idle+0x1d0/0x1d0
[  954.724437]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  954.729205]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  954.734072]  ? do_syscall_64+0x26/0x610
[  954.738083]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  954.743456]  ? do_syscall_64+0x26/0x610
[  954.747448]  __x64_sys_clone+0xbf/0x150
[  954.751436]  do_syscall_64+0x103/0x610
[  954.755341]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  954.760562] RIP: 0033:0x2000008a
[  954.763940] Code: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 98 4a 2a e9 2c 18 96 4c 0f 05 <bf> 03 00 00 00 c4 a3 7b f0 c5 1d 41 e2 e9 c4 22 e9 aa bb 3c 00 00
[  954.782859] RSP: 002b:00000000000004f0 EFLAGS: 00000287 ORIG_RAX: 0000000000000038
[  954.790587] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 000000002000008a
[  954.797865] RDX: 9c3755da22921eda RSI: 00000000000004f0 RDI: 0000000000000003
[  954.805151] RBP: 00000000000000f8 R08: 0000000000000005 R09: 0000000000000006
[  954.812431] R10: 0000000000000007 R11: 0000000000000287 R12: 000000000000000b
[  954.819707] R13: 000000000000000c R14: 000000000000000d R15: 00000000ffffffff
[  954.946191] Task in /syz2 killed as a result of limit of /syz2
[  954.956263] memory: usage 307200kB, limit 307200kB, failcnt 15347
[  954.967454] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  954.979167] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  954.990542] Memory cgroup stats for /syz2: cache:92KB rss:22436KB rss_huge:20480KB shmem:0KB mapped_file:0KB dirty:132KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:22416KB inactive_file:0KB active_file:0KB unevictable:0KB
[  955.019676] Memory cgroup out of memory: Kill process 28462 (syz-executor.2) score 1110 or sacrifice child
[  955.030148] Killed process 28462 (syz-executor.2) total-vm:72452kB, anon-rss:2200kB, file-rss:34816kB, shmem-rss:0kB
[  955.049421] oom_reaper: reaped process 28462 (syz-executor.2), now anon-rss:0kB, file-rss:34816kB, shmem-rss:0kB
[  955.099038] syz-executor.2 invoked oom-killer: gfp_mask=0x6040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null), order=0, oom_score_adj=0
[  955.169511] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[  955.205467] CPU: 1 PID: 29177 Comm: syz-executor.2 Not tainted 4.19.37 #5
[  955.212446] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  955.221811] Call Trace:
[  955.224421]  dump_stack+0x172/0x1f0
[  955.228074]  dump_header+0x15e/0x929
[  955.231804]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[  955.237019]  ? ___ratelimit+0x60/0x595
[  955.240919]  ? do_raw_spin_unlock+0x57/0x270
[  955.245358]  oom_kill_process.cold+0x10/0x6f5
[  955.249878]  ? task_will_free_mem+0x139/0x6e0
[  955.254400]  out_of_memory+0x936/0x12d0
[  955.258397]  ? oom_killer_disable+0x280/0x280
[  955.262908]  ? find_held_lock+0x35/0x130
[  955.267020]  mem_cgroup_out_of_memory+0x1d2/0x240
[  955.271962]  ? memcg_event_wake+0x230/0x230
[  955.276308]  ? do_raw_spin_unlock+0x57/0x270
[  955.280732]  ? _raw_spin_unlock+0x2d/0x50
[  955.284897]  try_charge+0xd25/0x15b0
[  955.288638]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[  955.293508]  ? rcu_read_lock_sched_held+0x110/0x130
[  955.298536]  ? __alloc_pages_nodemask+0x63e/0x760
[  955.303396]  ? perf_trace_lock_acquire+0xf5/0x580
[  955.308278]  memcg_kmem_charge_memcg+0x7c/0x130
[  955.312969]  ? memcg_kmem_put_cache+0xb0/0xb0
[  955.317479]  ? cache_grow_begin+0x59a/0x8c0
[  955.321824]  ? lockdep_hardirqs_on+0x415/0x5d0
[  955.326430]  ? trace_hardirqs_on+0x67/0x230
[  955.330767]  cache_grow_begin+0x25f/0x8c0
[  955.334942]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  955.340590]  ? __cpuset_node_allowed+0x136/0x540
[  955.345365]  fallback_alloc+0x1fd/0x2d0
[  955.349488]  ____cache_alloc_node+0x1be/0x1e0
[  955.356336]  kmem_cache_alloc+0x1f3/0x700
[  955.360507]  ? __lock_is_held+0xb6/0x140
[  955.364593]  anon_vma_clone+0x238/0x480
[  955.368588]  anon_vma_fork+0x8f/0x4a0
[  955.372433]  ? dup_userfaultfd+0x15e/0x6c0
[  955.384269]  ? memcpy+0x46/0x50
[  955.388745]  copy_process.part.0+0x34dc/0x7970
[  955.394462]  ? __cleanup_sighand+0x70/0x70
[  955.398734]  ? kasan_check_read+0x11/0x20
[  955.402920]  _do_fork+0x257/0xfe0
[  955.406509]  ? fork_idle+0x1d0/0x1d0
[  955.410258]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  955.415029]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  955.419908]  ? do_syscall_64+0x26/0x610
[  955.423895]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  955.429282]  ? do_syscall_64+0x26/0x610
[  955.433314]  __x64_sys_clone+0xbf/0x150
[  955.437336]  do_syscall_64+0x103/0x610
[  955.441253]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  955.446457] RIP: 0033:0x2000008a
[  955.449840] Code: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 98 4a 2a e9 2c 18 96 4c 0f 05 <bf> 03 00 00 00 c4 a3 7b f0 c5 1d 41 e2 e9 c4 22 e9 aa bb 3c 00 00
[  955.468886] RSP: 002b:00000000000004f0 EFLAGS: 00000287 ORIG_RAX: 0000000000000038
[  955.476623] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 000000002000008a
[  955.484785] RDX: 9c3755da22921eda RSI: 00000000000004f0 RDI: 0000000000000003
[  955.492080] RBP: 00000000000000f8 R08: 0000000000000005 R09: 0000000000000006
[  955.499455] R10: 0000000000000007 R11: 0000000000000287 R12: 000000000000000b
[  955.506741] R13: 000000000000000c R14: 000000000000000d R15: 00000000ffffffff
[  955.514408] net_ratelimit: 14 callbacks suppressed
[  955.514417] protocol 88fb is buggy, dev hsr_slave_0
[  955.524501] protocol 88fb is buggy, dev hsr_slave_1
[  955.529776] protocol 88fb is buggy, dev hsr_slave_0
[  955.534931] protocol 88fb is buggy, dev hsr_slave_1
[  955.567752] Task in /syz2 killed as a result of limit of /syz2
[  955.577850] memory: usage 307200kB, limit 307200kB, failcnt 15499
[  955.587941] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  955.598771] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  955.608754] Memory cgroup stats for /syz2: cache:92KB rss:20264KB rss_huge:18432KB shmem:0KB mapped_file:0KB dirty:132KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:20236KB inactive_file:0KB active_file:0KB unevictable:0KB
[  955.641608] Memory cgroup out of memory: Kill process 7997 (syz-executor.2) score 1110 or sacrifice child
[  955.659874] Killed process 7997 (syz-executor.2) total-vm:72588kB, anon-rss:2184kB, file-rss:34816kB, shmem-rss:0kB
[  955.709372] syz-executor.2 invoked oom-killer: gfp_mask=0x6040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null), order=0, oom_score_adj=0
[  955.751579] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[  955.771835] protocol 88fb is buggy, dev hsr_slave_0
[  955.776966] protocol 88fb is buggy, dev hsr_slave_1
[  955.801762] CPU: 1 PID: 29274 Comm: syz-executor.2 Not tainted 4.19.37 #5
[  955.808736] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  955.818192] Call Trace:
[  955.820809]  dump_stack+0x172/0x1f0
[  955.824481]  dump_header+0x15e/0x929
[  955.828306]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[  955.833422]  ? ___ratelimit+0x60/0x595
[  955.837324]  ? do_raw_spin_unlock+0x57/0x270
[  955.841751]  oom_kill_process.cold+0x10/0x6f5
[  955.846275]  ? task_will_free_mem+0x139/0x6e0
[  955.850796]  out_of_memory+0x936/0x12d0
[  955.854803]  ? oom_killer_disable+0x280/0x280
[  955.859322]  ? find_held_lock+0x35/0x130
[  955.863419]  mem_cgroup_out_of_memory+0x1d2/0x240
[  955.868289]  ? memcg_event_wake+0x230/0x230
[  955.872641]  ? do_raw_spin_unlock+0x57/0x270
[  955.877064]  ? _raw_spin_unlock+0x2d/0x50
[  955.881229]  try_charge+0xd25/0x15b0
[  955.884977]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[  955.889855]  ? rcu_read_lock_sched_held+0x110/0x130
[  955.895076]  ? __alloc_pages_nodemask+0x63e/0x760
[  955.899942]  ? perf_trace_lock_acquire+0xf5/0x580
[  955.904895]  memcg_kmem_charge_memcg+0x7c/0x130
[  955.909667]  ? memcg_kmem_put_cache+0xb0/0xb0
[  955.914182]  ? cache_grow_begin+0x59a/0x8c0
[  955.918522]  ? lockdep_hardirqs_on+0x415/0x5d0
[  955.923479]  ? trace_hardirqs_on+0x67/0x230
[  955.927828]  cache_grow_begin+0x25f/0x8c0
[  955.932085]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  955.937648]  ? __cpuset_node_allowed+0x136/0x540
[  955.942430]  fallback_alloc+0x1fd/0x2d0
[  955.946532]  ____cache_alloc_node+0x1be/0x1e0
[  955.951043]  kmem_cache_alloc+0x1f3/0x700
[  955.955300]  ? call_rwsem_wake+0x1b/0x30
[  955.959392]  anon_vma_clone+0x238/0x480
[  955.963396]  anon_vma_fork+0x8f/0x4a0
[  955.967212]  ? dup_userfaultfd+0x15e/0x6c0
[  955.971558]  ? memcpy+0x46/0x50
[  955.974873]  copy_process.part.0+0x34dc/0x7970
[  955.979504]  ? __cleanup_sighand+0x70/0x70
[  955.983770]  ? kasan_check_read+0x11/0x20
[  955.987941]  _do_fork+0x257/0xfe0
[  955.991413]  ? fork_idle+0x1d0/0x1d0
[  955.995149]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  956.000018]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  956.004873]  ? do_syscall_64+0x26/0x610
[  956.008858]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  956.014229]  ? do_syscall_64+0x26/0x610
[  956.018250]  __x64_sys_clone+0xbf/0x150
[  956.022261]  do_syscall_64+0x103/0x610
[  956.026173]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  956.031366] RIP: 0033:0x2000008a
[  956.034744] Code: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 98 4a 2a e9 2c 18 96 4c 0f 05 <bf> 03 00 00 00 c4 a3 7b f0 c5 1d 41 e2 e9 c4 22 e9 aa bb 3c 00 00
[  956.053659] RSP: 002b:00000000000004f0 EFLAGS: 00000287 ORIG_RAX: 0000000000000038
[  956.061386] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 000000002000008a
[  956.068664] RDX: 9c3755da22921eda RSI: 00000000000004f0 RDI: 0000000000000003
[  956.075945] RBP: 00000000000000f8 R08: 0000000000000005 R09: 0000000000000006
[  956.083228] R10: 0000000000000007 R11: 0000000000000287 R12: 000000000000000b
[  956.090520] R13: 000000000000000c R14: 000000000000000d R15: 00000000ffffffff
[  956.120072] Task in /syz2 killed as a result of limit of /syz2
[  956.132398] memory: usage 307200kB, limit 307200kB, failcnt 15628
[  956.138843] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  956.152996] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  956.159180] Memory cgroup stats for /syz2: cache:92KB rss:18076KB rss_huge:16384KB shmem:0KB mapped_file:0KB dirty:132KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:18072KB inactive_file:0KB active_file:0KB unevictable:0KB
[  956.188402] Memory cgroup out of memory: Kill process 7744 (syz-executor.2) score 1103 or sacrifice child
[  956.199958] Killed process 7744 (syz-executor.2) total-vm:72584kB, anon-rss:168kB, file-rss:34816kB, shmem-rss:0kB
[  956.226009] syz-executor.2 invoked oom-killer: gfp_mask=0x6040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null), order=0, oom_score_adj=0
[  956.278040] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[  956.287587] CPU: 1 PID: 29163 Comm: syz-executor.2 Not tainted 4.19.37 #5
[  956.294575] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  956.303944] Call Trace:
[  956.306548]  dump_stack+0x172/0x1f0
[  956.310202]  dump_header+0x15e/0x929
[  956.313952]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[  956.319337]  ? ___ratelimit+0x60/0x595
[  956.323254]  ? do_raw_spin_unlock+0x57/0x270
[  956.327715]  oom_kill_process.cold+0x10/0x6f5
[  956.331780] protocol 88fb is buggy, dev hsr_slave_0
[  956.332229]  ? task_will_free_mem+0x139/0x6e0
[  956.337327] protocol 88fb is buggy, dev hsr_slave_1
[  956.341770]  out_of_memory+0x936/0x12d0
[  956.341792]  ? oom_killer_disable+0x280/0x280
[  956.341807]  ? find_held_lock+0x35/0x130
[  956.341842]  mem_cgroup_out_of_memory+0x1d2/0x240
[  956.341860]  ? memcg_event_wake+0x230/0x230
[  956.368608]  ? do_raw_spin_unlock+0x57/0x270
[  956.373038]  ? _raw_spin_unlock+0x2d/0x50
[  956.377211]  try_charge+0xd25/0x15b0
[  956.380957]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[  956.385832]  ? rcu_read_lock_sched_held+0x110/0x130
[  956.390871]  ? __alloc_pages_nodemask+0x63e/0x760
[  956.395733]  ? perf_trace_lock_acquire+0xf5/0x580
[  956.400607]  memcg_kmem_charge_memcg+0x7c/0x130
[  956.405405]  ? memcg_kmem_put_cache+0xb0/0xb0
[  956.410015]  ? cache_grow_begin+0x59a/0x8c0
[  956.414368]  ? lockdep_hardirqs_on+0x415/0x5d0
[  956.418977]  ? trace_hardirqs_on+0x67/0x230
[  956.423328]  cache_grow_begin+0x25f/0x8c0
[  956.427678]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  956.433259]  ? __cpuset_node_allowed+0x136/0x540
[  956.438043]  fallback_alloc+0x1fd/0x2d0
[  956.442054]  ____cache_alloc_node+0x1be/0x1e0
[  956.446623]  kmem_cache_alloc+0x1f3/0x700
[  956.450795]  ? call_rwsem_wake+0x1b/0x30
[  956.454891]  anon_vma_clone+0x238/0x480
[  956.458894]  anon_vma_fork+0x8f/0x4a0
[  956.462719]  ? dup_userfaultfd+0x15e/0x6c0
[  956.466970]  ? memcpy+0x46/0x50
[  956.470286]  copy_process.part.0+0x34dc/0x7970
[  956.474929]  ? __cleanup_sighand+0x70/0x70
[  956.479224]  ? kasan_check_read+0x11/0x20
[  956.483867]  _do_fork+0x257/0xfe0
[  956.487345]  ? fork_idle+0x1d0/0x1d0
[  956.491173]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  956.495948]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  956.500811]  ? do_syscall_64+0x26/0x610
[  956.504838]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  956.510226]  ? do_syscall_64+0x26/0x610
[  956.514247]  __x64_sys_clone+0xbf/0x150
[  956.518277]  do_syscall_64+0x103/0x610
[  956.522188]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  956.527389] RIP: 0033:0x2000008a
[  956.530773] Code: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 98 4a 2a e9 2c 18 96 4c 0f 05 <bf> 03 00 00 00 c4 a3 7b f0 c5 1d 41 e2 e9 c4 22 e9 aa bb 3c 00 00
[  956.549715] RSP: 002b:00000000000004f0 EFLAGS: 00000287 ORIG_RAX: 0000000000000038
[  956.557446] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 000000002000008a
[  956.564730] RDX: 9c3755da22921eda RSI: 00000000000004f0 RDI: 0000000000000003
[  956.572029] RBP: 00000000000000f8 R08: 0000000000000005 R09: 0000000000000006
[  956.579352] R10: 0000000000000007 R11: 0000000000000287 R12: 000000000000000b
[  956.587001] R13: 000000000000000c R14: 000000000000000d R15: 00000000ffffffff
[  956.594641] protocol 88fb is buggy, dev hsr_slave_0
[  956.599751] protocol 88fb is buggy, dev hsr_slave_1
[  956.629563] Task in /syz2 killed as a result of limit of /syz2
[  956.640696] memory: usage 307044kB, limit 307200kB, failcnt 15659
[  956.649629] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  956.664617] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  956.670807] Memory cgroup stats for /syz2: cache:92KB rss:18076KB rss_huge:16384KB shmem:0KB mapped_file:0KB dirty:132KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:17976KB inactive_file:0KB active_file:0KB unevictable:0KB
[  956.699568] Memory cgroup out of memory: Kill process 7734 (syz-executor.2) score 1103 or sacrifice child
[  956.709977] Killed process 7734 (syz-executor.2) total-vm:72452kB, anon-rss:160kB, file-rss:34816kB, shmem-rss:0kB
[  956.759144] syz-executor.2 invoked oom-killer: gfp_mask=0x6040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null), order=0, oom_score_adj=0
[  956.771784] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[  956.777213] CPU: 0 PID: 29306 Comm: syz-executor.2 Not tainted 4.19.37 #5
[  956.784275] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  956.793646] Call Trace:
[  956.796264]  dump_stack+0x172/0x1f0
[  956.799912]  dump_header+0x15e/0x929
[  956.803646]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[  956.808778]  ? ___ratelimit+0x60/0x595
[  956.812683]  ? do_raw_spin_unlock+0x57/0x270
[  956.817126]  oom_kill_process.cold+0x10/0x6f5
[  956.821677]  ? task_will_free_mem+0x139/0x6e0
[  956.826213]  out_of_memory+0x936/0x12d0
[  956.830229]  ? oom_killer_disable+0x280/0x280
[  956.834910]  ? find_held_lock+0x35/0x130
[  956.839586]  mem_cgroup_out_of_memory+0x1d2/0x240
[  956.844446]  ? memcg_event_wake+0x230/0x230
[  956.848795]  ? do_raw_spin_unlock+0x57/0x270
[  956.853225]  ? _raw_spin_unlock+0x2d/0x50
[  956.857406]  try_charge+0xd25/0x15b0
[  956.861150]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[  956.866636]  ? rcu_read_lock_sched_held+0x110/0x130
[  956.871665]  ? __alloc_pages_nodemask+0x63e/0x760
[  956.876704]  ? perf_trace_lock_acquire+0xf5/0x580
[  956.881584]  memcg_kmem_charge_memcg+0x7c/0x130
[  956.886287]  ? memcg_kmem_put_cache+0xb0/0xb0
[  956.890824]  ? cache_grow_begin+0x59a/0x8c0
[  956.895169]  ? lockdep_hardirqs_on+0x415/0x5d0
[  956.899769]  ? trace_hardirqs_on+0x67/0x230
[  956.904117]  cache_grow_begin+0x25f/0x8c0
[  956.908289]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  956.913859]  ? __cpuset_node_allowed+0x136/0x540
[  956.918638]  fallback_alloc+0x1fd/0x2d0
[  956.922659]  ____cache_alloc_node+0x1be/0x1e0
[  956.927176]  kmem_cache_alloc+0x1f3/0x700
[  956.931355]  ? call_rwsem_wake+0x1b/0x30
[  956.935466]  anon_vma_clone+0x238/0x480
[  956.939639]  anon_vma_fork+0x8f/0x4a0
[  956.943476]  ? dup_userfaultfd+0x15e/0x6c0
[  956.947752]  ? memcpy+0x46/0x50
[  956.951054]  copy_process.part.0+0x34dc/0x7970
[  956.955697]  ? __cleanup_sighand+0x70/0x70
[  956.959964]  ? kasan_check_read+0x11/0x20
[  956.964145]  _do_fork+0x257/0xfe0
[  956.967805]  ? fork_idle+0x1d0/0x1d0
[  956.972276]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  956.977055]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  956.981832]  ? do_syscall_64+0x26/0x610
[  956.985830]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  956.991219]  ? do_syscall_64+0x26/0x610
[  956.995255]  __x64_sys_clone+0xbf/0x150
[  956.999269]  do_syscall_64+0x103/0x610
[  957.003188]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  957.008394] RIP: 0033:0x2000008a
[  957.011774] Code: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 98 4a 2a e9 2c 18 96 4c 0f 05 <bf> 03 00 00 00 c4 a3 7b f0 c5 1d 41 e2 e9 c4 22 e9 aa bb 3c 00 00
[  957.030698] RSP: 002b:00000000000004f0 EFLAGS: 00000287 ORIG_RAX: 0000000000000038
[  957.038433] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 000000002000008a
[  957.045725] RDX: 9c3755da22921eda RSI: 00000000000004f0 RDI: 0000000000000003
[  957.053013] RBP: 00000000000000f8 R08: 0000000000000005 R09: 0000000000000006
[  957.060298] R10: 0000000000000007 R11: 0000000000000287 R12: 000000000000000b
[  957.067679] R13: 000000000000000c R14: 000000000000000d R15: 00000000ffffffff
[  957.077676] Task in /syz2 killed as a result of limit of /syz2
[  957.084195] memory: usage 307200kB, limit 307200kB, failcnt 15726
[  957.090457] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  957.097808] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  957.104382] Memory cgroup stats for /syz2: cache:92KB rss:18076KB rss_huge:16384KB shmem:0KB mapped_file:0KB dirty:132KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:17876KB inactive_file:0KB active_file:0KB unevictable:0KB
[  957.126006] Memory cgroup out of memory: Kill process 7772 (syz-executor.2) score 1103 or sacrifice child
[  957.136192] Killed process 7772 (syz-executor.2) total-vm:72452kB, anon-rss:160kB, file-rss:34816kB, shmem-rss:0kB
[  957.148331] oom_reaper: reaped process 7772 (syz-executor.2), now anon-rss:0kB, file-rss:34816kB, shmem-rss:0kB
[  957.201038] syz-executor.2 invoked oom-killer: gfp_mask=0x6040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null), order=0, oom_score_adj=0
[  957.213340] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[  957.218772] CPU: 0 PID: 29263 Comm: syz-executor.2 Not tainted 4.19.37 #5
[  957.225713] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  957.235081] Call Trace:
[  957.237715]  dump_stack+0x172/0x1f0
[  957.241373]  dump_header+0x15e/0x929
[  957.245202]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[  957.250348]  ? ___ratelimit+0x60/0x595
[  957.254276]  ? do_raw_spin_unlock+0x57/0x270
[  957.258752]  oom_kill_process.cold+0x10/0x6f5
[  957.263289]  ? task_will_free_mem+0x139/0x6e0
[  957.267826]  out_of_memory+0x936/0x12d0
[  957.271832]  ? oom_killer_disable+0x280/0x280
[  957.276357]  ? find_held_lock+0x35/0x130
[  957.280456]  mem_cgroup_out_of_memory+0x1d2/0x240
[  957.285332]  ? memcg_event_wake+0x230/0x230
[  957.289678]  ? do_raw_spin_unlock+0x57/0x270
[  957.294106]  ? _raw_spin_unlock+0x2d/0x50
[  957.298412]  try_charge+0xd25/0x15b0
[  957.302183]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[  957.307160]  ? rcu_read_lock_sched_held+0x110/0x130
[  957.312197]  ? __alloc_pages_nodemask+0x63e/0x760
[  957.317060]  ? perf_trace_lock_acquire+0xf5/0x580
[  957.321944]  memcg_kmem_charge_memcg+0x7c/0x130
[  957.326636]  ? memcg_kmem_put_cache+0xb0/0xb0
[  957.331496]  ? cache_grow_begin+0x59a/0x8c0
[  957.335863]  ? lockdep_hardirqs_on+0x415/0x5d0
[  957.340467]  ? trace_hardirqs_on+0x67/0x230
[  957.344812]  cache_grow_begin+0x25f/0x8c0
[  957.348983]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  957.357072]  ? __cpuset_node_allowed+0x136/0x540
[  957.361858]  fallback_alloc+0x1fd/0x2d0
[  957.366011]  ____cache_alloc_node+0x1be/0x1e0
[  957.370551]  kmem_cache_alloc+0x1f3/0x700
[  957.374722]  ? call_rwsem_wake+0x1b/0x30
[  957.378815]  anon_vma_clone+0x238/0x480
[  957.382815]  anon_vma_fork+0x8f/0x4a0
[  957.386631]  ? dup_userfaultfd+0x15e/0x6c0
[  957.390880]  ? memcpy+0x46/0x50
[  957.394193]  copy_process.part.0+0x34dc/0x7970
[  957.401358]  ? __cleanup_sighand+0x70/0x70
[  957.407471]  ? kasan_check_read+0x11/0x20
[  957.412232]  _do_fork+0x257/0xfe0
[  957.436594]  ? fork_idle+0x1d0/0x1d0
[  957.440351]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  957.445312]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  957.450108]  ? do_syscall_64+0x26/0x610
[  957.454105]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  957.459492]  ? do_syscall_64+0x26/0x610
[  957.463499]  __x64_sys_clone+0xbf/0x150
[  957.467503]  do_syscall_64+0x103/0x610
[  957.471424]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  957.476686] RIP: 0033:0x2000008a
[  957.480073] Code: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 98 4a 2a e9 2c 18 96 4c 0f 05 <bf> 03 00 00 00 c4 a3 7b f0 c5 1d 41 e2 e9 c4 22 e9 aa bb 3c 00 00
[  957.499114] RSP: 002b:00000000000004f0 EFLAGS: 00000287 ORIG_RAX: 0000000000000038
[  957.506853] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 000000002000008a
[  957.514169] RDX: 9c3755da22921eda RSI: 00000000000004f0 RDI: 0000000000000003
[  957.521455] RBP: 00000000000000f8 R08: 0000000000000005 R09: 0000000000000006
[  957.528745] R10: 0000000000000007 R11: 0000000000000287 R12: 000000000000000b
[  957.536148] R13: 000000000000000c R14: 000000000000000d R15: 00000000ffffffff
[  957.545817] Task in /syz2 killed as a result of limit of /syz2
[  957.556231] memory: usage 307044kB, limit 307200kB, failcnt 15831
[  957.563115] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  957.570008] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  957.576668] Memory cgroup stats for /syz2: cache:92KB rss:17940KB rss_huge:16384KB shmem:0KB mapped_file:0KB dirty:132KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:17776KB inactive_file:0KB active_file:0KB unevictable:0KB
[  957.598139] Memory cgroup out of memory: Kill process 7815 (syz-executor.2) score 1103 or sacrifice child
[  957.608444] Killed process 7815 (syz-executor.2) total-vm:72452kB, anon-rss:160kB, file-rss:34816kB, shmem-rss:0kB
[  957.663127] syz-executor.2 invoked oom-killer: gfp_mask=0x6040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null), order=0, oom_score_adj=0
[  957.675349] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[  957.680771] CPU: 0 PID: 29265 Comm: syz-executor.2 Not tainted 4.19.37 #5
[  957.687707] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  957.697076] Call Trace:
[  957.699693]  dump_stack+0x172/0x1f0
[  957.703373]  dump_header+0x15e/0x929
[  957.707113]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[  957.712255]  ? ___ratelimit+0x60/0x595
[  957.716158]  ? do_raw_spin_unlock+0x57/0x270
[  957.720595]  oom_kill_process.cold+0x10/0x6f5
[  957.725110]  ? task_will_free_mem+0x139/0x6e0
[  957.729637]  out_of_memory+0x936/0x12d0
[  957.733639]  ? oom_killer_disable+0x280/0x280
[  957.738156]  ? find_held_lock+0x35/0x130
[  957.742261]  mem_cgroup_out_of_memory+0x1d2/0x240
[  957.747120]  ? memcg_event_wake+0x230/0x230
[  957.751464]  ? do_raw_spin_unlock+0x57/0x270
[  957.755893]  ? _raw_spin_unlock+0x2d/0x50
[  957.760068]  try_charge+0xd25/0x15b0
[  957.763904]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[  957.768777]  ? rcu_read_lock_sched_held+0x110/0x130
[  957.773822]  ? __alloc_pages_nodemask+0x63e/0x760
[  957.778689]  ? perf_trace_lock_acquire+0xf5/0x580
[  957.783570]  memcg_kmem_charge_memcg+0x7c/0x130
[  957.788293]  ? memcg_kmem_put_cache+0xb0/0xb0
[  957.792809]  ? cache_grow_begin+0x59a/0x8c0
[  957.797151]  ? lockdep_hardirqs_on+0x415/0x5d0
[  957.801758]  ? trace_hardirqs_on+0x67/0x230
[  957.806102]  cache_grow_begin+0x25f/0x8c0
[  957.810281]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  957.815844]  ? __cpuset_node_allowed+0x136/0x540
[  957.820621]  fallback_alloc+0x1fd/0x2d0
[  957.824616]  ____cache_alloc_node+0x1be/0x1e0
[  957.829132]  kmem_cache_alloc+0x1f3/0x700
[  957.833298]  ? call_rwsem_wake+0x1b/0x30
[  957.837386]  anon_vma_clone+0x238/0x480
[  957.841386]  anon_vma_fork+0x8f/0x4a0
[  957.845230]  ? dup_userfaultfd+0x15e/0x6c0
[  957.849491]  ? memcpy+0x46/0x50
[  957.852798]  copy_process.part.0+0x34dc/0x7970
[  957.857438]  ? __cleanup_sighand+0x70/0x70
[  957.861703]  ? kasan_check_read+0x11/0x20
[  957.865881]  _do_fork+0x257/0xfe0
[  957.869362]  ? fork_idle+0x1d0/0x1d0
[  957.873105]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  957.877874]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  957.882665]  ? do_syscall_64+0x26/0x610
[  957.886655]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  957.892034]  ? do_syscall_64+0x26/0x610
[  957.896049]  __x64_sys_clone+0xbf/0x150
[  957.900042]  do_syscall_64+0x103/0x610
[  957.903953]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  957.909162] RIP: 0033:0x2000008a
[  957.912542] Code: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 98 4a 2a e9 2c 18 96 4c 0f 05 <bf> 03 00 00 00 c4 a3 7b f0 c5 1d 41 e2 e9 c4 22 e9 aa bb 3c 00 00
[  957.931468] RSP: 002b:00000000000004f0 EFLAGS: 00000287 ORIG_RAX: 0000000000000038
[  957.939234] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 000000002000008a
[  957.946562] RDX: 9c3755da22921eda RSI: 00000000000004f0 RDI: 0000000000000003
[  957.953855] RBP: 00000000000000f8 R08: 0000000000000005 R09: 0000000000000006
[  957.961155] R10: 0000000000000007 R11: 0000000000000287 R12: 000000000000000b
[  957.968448] R13: 000000000000000c R14: 000000000000000d R15: 00000000ffffffff
[  957.978497] Task in /syz2 killed as a result of limit of /syz2
[  957.985098] memory: usage 307200kB, limit 307200kB, failcnt 15876
[  957.991360] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  957.998728] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  958.005357] Memory cgroup stats for /syz2: cache:92KB rss:17804KB rss_huge:16384KB shmem:0KB mapped_file:0KB dirty:132KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:17676KB inactive_file:0KB active_file:0KB unevictable:0KB
[  958.026858] Memory cgroup out of memory: Kill process 7966 (syz-executor.2) score 1103 or sacrifice child
[  958.037066] Killed process 7966 (syz-executor.2) total-vm:72452kB, anon-rss:160kB, file-rss:34816kB, shmem-rss:0kB
[  958.049170] oom_reaper: reaped process 7966 (syz-executor.2), now anon-rss:0kB, file-rss:34816kB, shmem-rss:0kB
[  958.081286] syz-executor.2 invoked oom-killer: gfp_mask=0x6040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null), order=1, oom_score_adj=0
[  958.095067] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[  958.101107] CPU: 0 PID: 30243 Comm: syz-executor.2 Not tainted 4.19.37 #5
[  958.108047] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  958.117415] Call Trace:
[  958.120113]  dump_stack+0x172/0x1f0
[  958.123766]  dump_header+0x15e/0x929
[  958.127500]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[  958.132622]  ? ___ratelimit+0x60/0x595
[  958.136520]  ? do_raw_spin_unlock+0x57/0x270
[  958.140963]  oom_kill_process.cold+0x10/0x6f5
[  958.145573]  ? task_will_free_mem+0x139/0x6e0
[  958.150122]  ? find_held_lock+0x35/0x130
[  958.154236]  out_of_memory+0x936/0x12d0
[  958.158340]  ? lock_downgrade+0x810/0x810
[  958.162515]  ? oom_killer_disable+0x280/0x280
[  958.167025]  ? find_held_lock+0x35/0x130
[  958.171117]  mem_cgroup_out_of_memory+0x1d2/0x240
[  958.176065]  ? memcg_event_wake+0x230/0x230
[  958.180415]  ? do_raw_spin_unlock+0x57/0x270
[  958.184867]  ? _raw_spin_unlock+0x2d/0x50
[  958.189039]  try_charge+0xd25/0x15b0
[  958.192791]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[  958.197663]  ? rcu_read_lock_sched_held+0x110/0x130
[  958.202696]  ? __alloc_pages_nodemask+0x63e/0x760
[  958.207585]  ? perf_trace_lock_acquire+0xf5/0x580
[  958.212456]  memcg_kmem_charge_memcg+0x7c/0x130
[  958.217152]  ? memcg_kmem_put_cache+0xb0/0xb0
[  958.221660]  ? cache_grow_begin+0x59a/0x8c0
[  958.226001]  ? lockdep_hardirqs_on+0x415/0x5d0
[  958.230604]  ? trace_hardirqs_on+0x67/0x230
[  958.234951]  cache_grow_begin+0x25f/0x8c0
[  958.239120]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  958.244684]  ? __cpuset_node_allowed+0x136/0x540
[  958.249475]  fallback_alloc+0x1fd/0x2d0
[  958.253500]  ____cache_alloc_node+0x1be/0x1e0
[  958.258019]  kmem_cache_alloc_node+0xe3/0x710
[  958.262530]  ? lockdep_hardirqs_on+0x415/0x5d0
[  958.267133]  ? trace_hardirqs_on+0x67/0x230
[  958.271482]  copy_process.part.0+0x1cd5/0x7970
[  958.276086]  ? __do_page_fault+0x484/0xe90
[  958.280356]  ? mark_held_locks+0x100/0x100
[  958.284615]  ? debug_smp_processor_id+0x1c/0x20
[  958.289301]  ? perf_trace_lock_acquire+0xf5/0x580
[  958.294163]  ? perf_trace_lock_acquire+0xf5/0x580
[  958.299041]  ? __cleanup_sighand+0x70/0x70
[  958.303305]  ? kasan_check_read+0x11/0x20
[  958.307487]  _do_fork+0x257/0xfe0
[  958.310960]  ? fork_idle+0x1d0/0x1d0
[  958.314823]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  958.319592]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  958.324363]  ? do_syscall_64+0x26/0x610
[  958.328367]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  958.333743]  ? do_syscall_64+0x26/0x610
[  958.337741]  __x64_sys_clone+0xbf/0x150
[  958.341735]  do_syscall_64+0x103/0x610
[  958.345643]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  958.351265] RIP: 0033:0x2000008a
[  958.354746] Code: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 98 4a 2a e9 2c 18 96 4c 0f 05 <bf> 03 00 00 00 c4 a3 7b f0 c5 1d 41 e2 e9 c4 22 e9 aa bb 3c 00 00
[  958.373692] RSP: 002b:00000000000004f0 EFLAGS: 00000287 ORIG_RAX: 0000000000000038
[  958.381427] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 000000002000008a
[  958.388715] RDX: 9c3755da22921eda RSI: 00000000000004f0 RDI: 0000000000000003
[  958.396004] RBP: 00000000000000f8 R08: 0000000000000005 R09: 0000000000000006
[  958.403308] R10: 0000000000000007 R11: 0000000000000287 R12: 000000000000000b
[  958.410605] R13: 000000000000000c R14: 000000000000000d R15: 00000000ffffffff
[  958.420384] Task in /syz2 killed as a result of limit of /syz2
[  958.426949] memory: usage 307044kB, limit 307200kB, failcnt 15940
[  958.433837] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  958.440619] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  958.447292] Memory cgroup stats for /syz2: cache:92KB rss:17660KB rss_huge:16384KB shmem:0KB mapped_file:0KB dirty:132KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:17536KB inactive_file:0KB active_file:0KB unevictable:0KB
[  958.469062] Memory cgroup out of memory: Kill process 28982 (syz-executor.2) score 124 or sacrifice child
[  958.481108] Killed process 28987 (syz-executor.2) total-vm:72452kB, anon-rss:2208kB, file-rss:34816kB, shmem-rss:0kB
[  958.518834] syz-executor.2 invoked oom-killer: gfp_mask=0x6040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null), order=0, oom_score_adj=0
[  958.547998] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[  958.556368] CPU: 0 PID: 29714 Comm: syz-executor.2 Not tainted 4.19.37 #5
[  958.563329] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  958.572701] Call Trace:
[  958.575312]  dump_stack+0x172/0x1f0
[  958.579067]  dump_header+0x15e/0x929
[  958.582803]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[  958.588027]  ? ___ratelimit+0x60/0x595
[  958.591930]  ? do_raw_spin_unlock+0x57/0x270
[  958.596373]  oom_kill_process.cold+0x10/0x6f5
[  958.600981]  ? task_will_free_mem+0x139/0x6e0
[  958.605498]  out_of_memory+0x936/0x12d0
[  958.609495]  ? oom_killer_disable+0x280/0x280
[  958.614028]  ? find_held_lock+0x35/0x130
[  958.618122]  mem_cgroup_out_of_memory+0x1d2/0x240
[  958.622981]  ? memcg_event_wake+0x230/0x230
[  958.627350]  ? do_raw_spin_unlock+0x57/0x270
[  958.631777]  ? _raw_spin_unlock+0x2d/0x50
[  958.635951]  try_charge+0xd25/0x15b0
[  958.639691]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[  958.644559]  ? rcu_read_lock_sched_held+0x110/0x130
[  958.649594]  ? __alloc_pages_nodemask+0x63e/0x760
[  958.654542]  ? perf_trace_lock_acquire+0xf5/0x580
[  958.659413]  memcg_kmem_charge_memcg+0x7c/0x130
[  958.664105]  ? memcg_kmem_put_cache+0xb0/0xb0
[  958.668623]  ? cache_grow_begin+0x59a/0x8c0
[  958.672971]  ? lockdep_hardirqs_on+0x415/0x5d0
[  958.677569]  ? trace_hardirqs_on+0x67/0x230
[  958.681906]  cache_grow_begin+0x25f/0x8c0
[  958.686070]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  958.691621]  ? __cpuset_node_allowed+0x136/0x540
[  958.696394]  fallback_alloc+0x1fd/0x2d0
[  958.700392]  ____cache_alloc_node+0x1be/0x1e0
[  958.704905]  kmem_cache_alloc+0x1f3/0x700
[  958.709069]  ? call_rwsem_wake+0x1b/0x30
[  958.713150]  anon_vma_clone+0x238/0x480
[  958.717156]  anon_vma_fork+0x8f/0x4a0
[  958.720970]  ? dup_userfaultfd+0x15e/0x6c0
[  958.725219]  ? memcpy+0x46/0x50
[  958.728532]  copy_process.part.0+0x34dc/0x7970
[  958.733169]  ? __cleanup_sighand+0x70/0x70
[  958.737432]  ? kasan_check_read+0x11/0x20
[  958.741609]  _do_fork+0x257/0xfe0
[  958.745091]  ? fork_idle+0x1d0/0x1d0
[  958.748836]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  958.753610]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  958.758381]  ? do_syscall_64+0x26/0x610
[  958.762375]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  958.767759]  ? do_syscall_64+0x26/0x610
[  958.771759]  __x64_sys_clone+0xbf/0x150
[  958.775760]  do_syscall_64+0x103/0x610
[  958.779671]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  958.784874] RIP: 0033:0x2000008a
[  958.788266] Code: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 98 4a 2a e9 2c 18 96 4c 0f 05 <bf> 03 00 00 00 c4 a3 7b f0 c5 1d 41 e2 e9 c4 22 e9 aa bb 3c 00 00
[  958.807188] RSP: 002b:00000000000004f0 EFLAGS: 00000287 ORIG_RAX: 0000000000000038
[  958.814933] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 000000002000008a
[  958.822222] RDX: 9c3755da22921eda RSI: 00000000000004f0 RDI: 0000000000000003
[  958.829515] RBP: 00000000000000f8 R08: 0000000000000005 R09: 0000000000000006
[  958.836802] R10: 0000000000000007 R11: 0000000000000287 R12: 000000000000000b
[  958.844086] R13: 000000000000000c R14: 000000000000000d R15: 00000000ffffffff
[  958.854836] Task in /syz2 killed as a result of limit of /syz2
[  958.860958] memory: usage 307172kB, limit 307200kB, failcnt 15990
[  958.867692] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  958.874952] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  958.881122] Memory cgroup stats for /syz2: cache:92KB rss:17660KB rss_huge:16384KB shmem:0KB mapped_file:0KB dirty:132KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:17468KB inactive_file:0KB active_file:0KB unevictable:0KB
[  958.902850] Memory cgroup out of memory: Kill process 28982 (syz-executor.2) score 124 or sacrifice child
[  958.913013] Killed process 28982 (syz-executor.2) total-vm:72452kB, anon-rss:2208kB, file-rss:35840kB, shmem-rss:0kB
[  958.948170] syz-executor.2 invoked oom-killer: gfp_mask=0x6040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null), order=0, oom_score_adj=0
[  958.980841] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[  959.025600] CPU: 0 PID: 29181 Comm: syz-executor.2 Not tainted 4.19.37 #5
[  959.032580] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  959.041949] Call Trace:
[  959.044555]  dump_stack+0x172/0x1f0
[  959.048205]  dump_header+0x15e/0x929
[  959.051948]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[  959.057078]  ? ___ratelimit+0x60/0x595
[  959.061008]  ? do_raw_spin_unlock+0x57/0x270
[  959.065437]  oom_kill_process.cold+0x10/0x6f5
[  959.069953]  ? task_will_free_mem+0x139/0x6e0
[  959.074475]  out_of_memory+0x936/0x12d0
[  959.078475]  ? oom_killer_disable+0x280/0x280
[  959.082984]  ? find_held_lock+0x35/0x130
[  959.087071]  mem_cgroup_out_of_memory+0x1d2/0x240
[  959.091926]  ? memcg_event_wake+0x230/0x230
[  959.096279]  ? do_raw_spin_unlock+0x57/0x270
[  959.100703]  ? _raw_spin_unlock+0x2d/0x50
[  959.104875]  try_charge+0xd25/0x15b0
[  959.108614]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[  959.113479]  ? rcu_read_lock_sched_held+0x110/0x130
[  959.118512]  ? __alloc_pages_nodemask+0x63e/0x760
[  959.123371]  ? perf_trace_lock_acquire+0xf5/0x580
[  959.128250]  memcg_kmem_charge_memcg+0x7c/0x130
[  959.132941]  ? memcg_kmem_put_cache+0xb0/0xb0
[  959.137451]  ? cache_grow_begin+0x59a/0x8c0
[  959.141798]  ? lockdep_hardirqs_on+0x415/0x5d0
[  959.146400]  ? trace_hardirqs_on+0x67/0x230
[  959.150737]  cache_grow_begin+0x25f/0x8c0
[  959.154907]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  959.160460]  ? __cpuset_node_allowed+0x136/0x540
[  959.165297]  fallback_alloc+0x1fd/0x2d0
[  959.169302]  ____cache_alloc_node+0x1be/0x1e0
[  959.173846]  kmem_cache_alloc+0x1f3/0x700
[  959.178010]  ? call_rwsem_wake+0x1b/0x30
[  959.182125]  anon_vma_clone+0x238/0x480
[  959.186120]  anon_vma_fork+0x8f/0x4a0
[  959.189932]  ? dup_userfaultfd+0x15e/0x6c0
[  959.194176]  ? memcpy+0x46/0x50
[  959.197475]  copy_process.part.0+0x34dc/0x7970
[  959.202135]  ? __cleanup_sighand+0x70/0x70
[  959.206401]  ? kasan_check_read+0x11/0x20
[  959.210580]  _do_fork+0x257/0xfe0
[  959.214075]  ? fork_idle+0x1d0/0x1d0
[  959.217844]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  959.222622]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  959.227401]  ? do_syscall_64+0x26/0x610
[  959.231397]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  959.236806]  ? do_syscall_64+0x26/0x610
[  959.240807]  __x64_sys_clone+0xbf/0x150
[  959.244805]  do_syscall_64+0x103/0x610
[  959.248716]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  959.254013] RIP: 0033:0x2000008a
[  959.257481] Code: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 98 4a 2a e9 2c 18 96 4c 0f 05 <bf> 03 00 00 00 c4 a3 7b f0 c5 1d 41 e2 e9 c4 22 e9 aa bb 3c 00 00
[  959.276534] RSP: 002b:00000000000004f0 EFLAGS: 00000287 ORIG_RAX: 0000000000000038
[  959.284367] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 000000002000008a
[  959.291696] RDX: 9c3755da22921eda RSI: 00000000000004f0 RDI: 0000000000000003
[  959.298988] RBP: 00000000000000f8 R08: 0000000000000005 R09: 0000000000000006
[  959.306281] R10: 0000000000000007 R11: 0000000000000287 R12: 000000000000000b
[  959.313575] R13: 000000000000000c R14: 000000000000000d R15: 00000000ffffffff
[  959.376498] Task in /syz2 killed as a result of limit of /syz2
[  959.383134] memory: usage 307200kB, limit 307200kB, failcnt 16123
[  959.389415] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  959.397095] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  959.404036] Memory cgroup stats for /syz2: cache:92KB rss:15404KB rss_huge:14336KB shmem:0KB mapped_file:0KB dirty:132KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:15320KB inactive_file:0KB active_file:0KB unevictable:0KB
[  959.425393] Memory cgroup out of memory: Kill process 27808 (syz-executor.2) score 124 or sacrifice child
[  959.435564] Killed process 27808 (syz-executor.2) total-vm:72452kB, anon-rss:2216kB, file-rss:35828kB, shmem-rss:0kB
[  959.470617] syz-executor.2 invoked oom-killer: gfp_mask=0x6040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null), order=0, oom_score_adj=0
[  959.542180] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[  959.606185] CPU: 0 PID: 29363 Comm: syz-executor.2 Not tainted 4.19.37 #5
[  959.613173] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  959.622630] Call Trace:
[  959.625249]  dump_stack+0x172/0x1f0
[  959.628901]  dump_header+0x15e/0x929
[  959.632635]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[  959.637782]  ? ___ratelimit+0x60/0x595
[  959.641685]  ? do_raw_spin_unlock+0x57/0x270
[  959.646120]  oom_kill_process.cold+0x10/0x6f5
[  959.650641]  ? task_will_free_mem+0x139/0x6e0
[  959.655161]  out_of_memory+0x936/0x12d0
[  959.659163]  ? oom_killer_disable+0x280/0x280
[  959.663689]  ? find_held_lock+0x35/0x130
[  959.668040]  mem_cgroup_out_of_memory+0x1d2/0x240
[  959.672907]  ? memcg_event_wake+0x230/0x230
[  959.677285]  ? do_raw_spin_unlock+0x57/0x270
[  959.681724]  ? _raw_spin_unlock+0x2d/0x50
[  959.685894]  try_charge+0xd25/0x15b0
[  959.689641]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[  959.694514]  ? rcu_read_lock_sched_held+0x110/0x130
[  959.699555]  ? __alloc_pages_nodemask+0x63e/0x760
[  959.704422]  ? perf_trace_lock_acquire+0xf5/0x580
[  959.709303]  memcg_kmem_charge_memcg+0x7c/0x130
[  959.714001]  ? memcg_kmem_put_cache+0xb0/0xb0
[  959.718625]  ? cache_grow_begin+0x59a/0x8c0
[  959.722969]  ? lockdep_hardirqs_on+0x415/0x5d0
[  959.727573]  ? trace_hardirqs_on+0x67/0x230
[  959.731929]  cache_grow_begin+0x25f/0x8c0
[  959.736109]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  959.741695]  ? __cpuset_node_allowed+0x136/0x540
[  959.746483]  fallback_alloc+0x1fd/0x2d0
[  959.750494]  ____cache_alloc_node+0x1be/0x1e0
[  959.755016]  kmem_cache_alloc+0x1f3/0x700
[  959.759189]  ? call_rwsem_wake+0x1b/0x30
[  959.763288]  anon_vma_clone+0x238/0x480
[  959.767298]  anon_vma_fork+0x8f/0x4a0
[  959.771127]  ? dup_userfaultfd+0x15e/0x6c0
[  959.775423]  ? memcpy+0x46/0x50
[  959.778740]  copy_process.part.0+0x34dc/0x7970
[  959.783391]  ? __cleanup_sighand+0x70/0x70
[  959.787667]  ? kasan_check_read+0x11/0x20
[  959.791847]  _do_fork+0x257/0xfe0
[  959.795341]  ? fork_idle+0x1d0/0x1d0
[  959.799108]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  959.803972]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  959.808753]  ? do_syscall_64+0x26/0x610
[  959.812748]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  959.818218]  ? do_syscall_64+0x26/0x610
[  959.822229]  __x64_sys_clone+0xbf/0x150
[  959.826256]  do_syscall_64+0x103/0x610
[  959.830174]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  959.835382] RIP: 0033:0x2000008a
[  959.838772] Code: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 98 4a 2a e9 2c 18 96 4c 0f 05 <bf> 03 00 00 00 c4 a3 7b f0 c5 1d 41 e2 e9 c4 22 e9 aa bb 3c 00 00
[  959.857787] RSP: 002b:00000000000004f0 EFLAGS: 00000287 ORIG_RAX: 0000000000000038
[  959.865613] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 000000002000008a
[  959.872938] RDX: 9c3755da22921eda RSI: 00000000000004f0 RDI: 0000000000000003
[  959.880234] RBP: 00000000000000f8 R08: 0000000000000005 R09: 0000000000000006
[  959.887537] R10: 0000000000000007 R11: 0000000000000287 R12: 000000000000000b
[  959.894840] R13: 000000000000000c R14: 000000000000000d R15: 00000000ffffffff
[  959.904782] Task in /syz2 killed as a result of limit of /syz2
[  959.910931] memory: usage 307200kB, limit 307200kB, failcnt 16243
[  959.917696] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  959.924979] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  959.931149] Memory cgroup stats for /syz2: cache:92KB rss:13256KB rss_huge:12288KB shmem:0KB mapped_file:0KB dirty:132KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:13164KB inactive_file:0KB active_file:0KB unevictable:0KB
[  959.952561] Memory cgroup out of memory: Kill process 28940 (syz-executor.2) score 124 or sacrifice child
[  959.962770] Killed process 28944 (syz-executor.2) total-vm:72452kB, anon-rss:2208kB, file-rss:34816kB, shmem-rss:0kB
[  959.997289] Memory cgroup out of memory: Kill process 28940 (syz-executor.2) score 124 or sacrifice child
[  960.022258] Killed process 28940 (syz-executor.2) total-vm:72452kB, anon-rss:2208kB, file-rss:35836kB, shmem-rss:0kB
[  960.089177] Memory cgroup out of memory: Kill process 27824 (syz-executor.2) score 124 or sacrifice child
[  960.188810] Killed process 27824 (syz-executor.2) total-vm:72452kB, anon-rss:2216kB, file-rss:35824kB, shmem-rss:0kB
[  960.236598] oom_kill_process: 2 callbacks suppressed
[  960.236618] syz-executor.2 invoked oom-killer: gfp_mask=0x6040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null), order=0, oom_score_adj=0
[  960.440653] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[  960.453952] CPU: 0 PID: 29287 Comm: syz-executor.2 Not tainted 4.19.37 #5
[  960.460965] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  960.470347] Call Trace:
[  960.472963]  dump_stack+0x172/0x1f0
[  960.476622]  dump_header+0x15e/0x929
[  960.480378]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[  960.487329]  ? ___ratelimit+0x60/0x595
[  960.491261]  oom_kill_process.cold+0x10/0x6f5
[  960.495793]  ? task_will_free_mem+0x139/0x6e0
[  960.500329]  out_of_memory+0x936/0x12d0
[  960.504344]  ? oom_killer_disable+0x280/0x280
[  960.508862]  ? find_held_lock+0x35/0x130
[  960.512968]  mem_cgroup_out_of_memory+0x1d2/0x240
[  960.517844]  ? memcg_event_wake+0x230/0x230
[  960.522201]  ? do_raw_spin_unlock+0x57/0x270
[  960.526634]  ? _raw_spin_unlock+0x2d/0x50
[  960.530829]  try_charge+0xd25/0x15b0
[  960.534581]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[  960.539455]  ? rcu_read_lock_sched_held+0x110/0x130
[  960.544490]  ? __alloc_pages_nodemask+0x63e/0x760
[  960.549359]  ? perf_trace_lock_acquire+0xf5/0x580
[  960.554237]  memcg_kmem_charge_memcg+0x7c/0x130
[  960.558938]  ? memcg_kmem_put_cache+0xb0/0xb0
[  960.563445]  ? cache_grow_begin+0x59a/0x8c0
[  960.567809]  ? lockdep_hardirqs_on+0x415/0x5d0
[  960.572413]  ? trace_hardirqs_on+0x67/0x230
[  960.576778]  cache_grow_begin+0x25f/0x8c0
[  960.580951]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  960.586507]  ? __cpuset_node_allowed+0x136/0x540
[  960.591291]  fallback_alloc+0x1fd/0x2d0
[  960.595303]  ____cache_alloc_node+0x1be/0x1e0
[  960.599913]  kmem_cache_alloc+0x1f3/0x700
[  960.604080]  ? __lock_is_held+0xb6/0x140
[  960.608277]  anon_vma_clone+0x238/0x480
[  960.612301]  anon_vma_fork+0x8f/0x4a0
[  960.616130]  ? dup_userfaultfd+0x15e/0x6c0
[  960.620380]  ? memcpy+0x46/0x50
[  960.623776]  copy_process.part.0+0x34dc/0x7970
[  960.628418]  ? __cleanup_sighand+0x70/0x70
[  960.632695]  ? kasan_check_read+0x11/0x20
[  960.637092]  _do_fork+0x257/0xfe0
[  960.640602]  ? fork_idle+0x1d0/0x1d0
[  960.644369]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  960.649143]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  960.653920]  ? do_syscall_64+0x26/0x610
[  960.657916]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  960.663302]  ? do_syscall_64+0x26/0x610
[  960.667304]  __x64_sys_clone+0xbf/0x150
[  960.671389]  do_syscall_64+0x103/0x610
[  960.675296]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  960.680512] RIP: 0033:0x2000008a
[  960.683890] Code: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 98 4a 2a e9 2c 18 96 4c 0f 05 <bf> 03 00 00 00 c4 a3 7b f0 c5 1d 41 e2 e9 c4 22 e9 aa bb 3c 00 00
[  960.703623] RSP: 002b:00000000000004f0 EFLAGS: 00000287 ORIG_RAX: 0000000000000038
[  960.711442] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 000000002000008a
[  960.718731] RDX: 9c3755da22921eda RSI: 00000000000004f0 RDI: 0000000000000003
[  960.726016] RBP: 00000000000000f8 R08: 0000000000000005 R09: 0000000000000006
[  960.733388] R10: 0000000000000007 R11: 0000000000000287 R12: 000000000000000b
[  960.740674] R13: 000000000000000c R14: 000000000000000d R15: 00000000ffffffff
[  960.748452] net_ratelimit: 16 callbacks suppressed
[  960.748462] protocol 88fb is buggy, dev hsr_slave_0
[  960.758587] protocol 88fb is buggy, dev hsr_slave_1
[  960.772901] Task in /syz2 killed as a result of limit of /syz2
[  960.778951] memory: usage 307200kB, limit 307200kB, failcnt 16594
[  960.792274] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  960.799074] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  960.811562] Memory cgroup stats for /syz2: cache:92KB rss:8796KB rss_huge:8192KB shmem:0KB mapped_file:0KB dirty:132KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:8760KB inactive_file:0KB active_file:0KB unevictable:0KB
[  960.840660] Memory cgroup out of memory: Kill process 28926 (syz-executor.2) score 124 or sacrifice child
[  960.850940] Killed process 28926 (syz-executor.2) total-vm:72716kB, anon-rss:2224kB, file-rss:35812kB, shmem-rss:0kB
[  960.891719] protocol 88fb is buggy, dev hsr_slave_0
[  960.896858] protocol 88fb is buggy, dev hsr_slave_1
[  960.899346] syz-executor.2 invoked oom-killer: gfp_mask=0x6040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null), order=0, oom_score_adj=0
[  960.942410] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[  960.947876] CPU: 0 PID: 29464 Comm: syz-executor.2 Not tainted 4.19.37 #5
[  960.954910] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  960.964294] Call Trace:
[  960.966912]  dump_stack+0x172/0x1f0
[  960.970563]  dump_header+0x15e/0x929
[  960.974299]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[  960.979429]  ? ___ratelimit+0x60/0x595
[  960.983340]  ? do_raw_spin_unlock+0x57/0x270
[  960.987783]  oom_kill_process.cold+0x10/0x6f5
[  960.992393]  ? task_will_free_mem+0x139/0x6e0
[  960.996939]  out_of_memory+0x936/0x12d0
[  961.000937]  ? oom_killer_disable+0x280/0x280
[  961.005447]  ? find_held_lock+0x35/0x130
[  961.009537]  mem_cgroup_out_of_memory+0x1d2/0x240
[  961.014406]  ? memcg_event_wake+0x230/0x230
[  961.018752]  ? do_raw_spin_unlock+0x57/0x270
[  961.023193]  ? _raw_spin_unlock+0x2d/0x50
[  961.027454]  try_charge+0xd25/0x15b0
[  961.031208]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[  961.036086]  ? rcu_read_lock_sched_held+0x110/0x130
[  961.041112]  ? __alloc_pages_nodemask+0x63e/0x760
[  961.045966]  ? perf_trace_lock_acquire+0xf5/0x580
[  961.050835]  memcg_kmem_charge_memcg+0x7c/0x130
[  961.055526]  ? memcg_kmem_put_cache+0xb0/0xb0
[  961.060037]  ? cache_grow_begin+0x59a/0x8c0
[  961.064377]  ? lockdep_hardirqs_on+0x415/0x5d0
[  961.069416]  ? trace_hardirqs_on+0x67/0x230
[  961.073758]  cache_grow_begin+0x25f/0x8c0
[  961.078010]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  961.083568]  ? __cpuset_node_allowed+0x136/0x540
[  961.088346]  fallback_alloc+0x1fd/0x2d0
[  961.092344]  ____cache_alloc_node+0x1be/0x1e0
[  961.096880]  kmem_cache_alloc+0x1f3/0x700
[  961.101047]  ? __lock_is_held+0xb6/0x140
[  961.105132]  anon_vma_clone+0x238/0x480
[  961.109128]  anon_vma_fork+0x8f/0x4a0
[  961.112943]  ? dup_userfaultfd+0x15e/0x6c0
[  961.117189]  ? memcpy+0x46/0x50
[  961.120489]  copy_process.part.0+0x34dc/0x7970
[  961.125126]  ? __cleanup_sighand+0x70/0x70
[  961.129391]  ? kasan_check_read+0x11/0x20
[  961.133561]  _do_fork+0x257/0xfe0
[  961.137044]  ? fork_idle+0x1d0/0x1d0
[  961.140877]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  961.145649]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  961.150420]  ? do_syscall_64+0x26/0x610
[  961.154412]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  961.159793]  ? do_syscall_64+0x26/0x610
[  961.163793]  __x64_sys_clone+0xbf/0x150
[  961.167975]  do_syscall_64+0x103/0x610
[  961.171892]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  961.177120] RIP: 0033:0x2000008a
[  961.180499] Code: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 98 4a 2a e9 2c 18 96 4c 0f 05 <bf> 03 00 00 00 c4 a3 7b f0 c5 1d 41 e2 e9 c4 22 e9 aa bb 3c 00 00
[  961.199511] RSP: 002b:00000000000004f0 EFLAGS: 00000287 ORIG_RAX: 0000000000000038
[  961.207542] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 000000002000008a
[  961.214840] RDX: 9c3755da22921eda RSI: 00000000000004f0 RDI: 0000000000000003
[  961.222301] RBP: 00000000000000f8 R08: 0000000000000005 R09: 0000000000000006
[  961.229597] R10: 0000000000000007 R11: 0000000000000287 R12: 000000000000000b
[  961.236883] R13: 000000000000000c R14: 000000000000000d R15: 00000000ffffffff
[  961.276045] Task in /syz2 killed as a result of limit of /syz2
[  961.288259] memory: usage 307196kB, limit 307200kB, failcnt 16719
[  961.296453] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  961.309264] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  961.317136] Memory cgroup stats for /syz2: cache:92KB rss:6656KB rss_huge:6144KB shmem:0KB mapped_file:0KB dirty:132KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:6608KB inactive_file:0KB active_file:0KB unevictable:0KB
[  961.353784] Memory cgroup out of memory: Kill process 28974 (syz-executor.2) score 120 or sacrifice child
[  961.369859] Killed process 28974 (syz-executor.2) total-vm:72584kB, anon-rss:2216kB, file-rss:34816kB, shmem-rss:0kB
[  961.419193] syz-executor.2 invoked oom-killer: gfp_mask=0x6040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null), order=0, oom_score_adj=0
[  961.491680] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[  961.497124] CPU: 1 PID: 29315 Comm: syz-executor.2 Not tainted 4.19.37 #5
[  961.504061] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  961.513438] Call Trace:
[  961.516047]  dump_stack+0x172/0x1f0
[  961.519697]  dump_header+0x15e/0x929
[  961.523462]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[  961.528583]  ? ___ratelimit+0x60/0x595
[  961.532484]  ? do_raw_spin_unlock+0x57/0x270
[  961.536916]  oom_kill_process.cold+0x10/0x6f5
[  961.541436]  ? task_will_free_mem+0x139/0x6e0
[  961.545957]  out_of_memory+0x936/0x12d0
[  961.550047]  ? oom_killer_disable+0x280/0x280
[  961.554655]  ? find_held_lock+0x35/0x130
[  961.558751]  mem_cgroup_out_of_memory+0x1d2/0x240
[  961.563609]  ? memcg_event_wake+0x230/0x230
[  961.567950]  ? do_raw_spin_unlock+0x57/0x270
[  961.572384]  ? _raw_spin_unlock+0x2d/0x50
[  961.576655]  try_charge+0xd25/0x15b0
[  961.580398]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[  961.585408]  ? rcu_read_lock_sched_held+0x110/0x130
[  961.590438]  ? __alloc_pages_nodemask+0x63e/0x760
[  961.595299]  ? perf_trace_lock_acquire+0xf5/0x580
[  961.600265]  memcg_kmem_charge_memcg+0x7c/0x130
[  961.604984]  ? memcg_kmem_put_cache+0xb0/0xb0
[  961.609496]  ? cache_grow_begin+0x59a/0x8c0
[  961.613851]  ? lockdep_hardirqs_on+0x415/0x5d0
[  961.618639]  ? trace_hardirqs_on+0x67/0x230
[  961.623003]  cache_grow_begin+0x25f/0x8c0
[  961.627173]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  961.632730]  ? __cpuset_node_allowed+0x136/0x540
[  961.637510]  fallback_alloc+0x1fd/0x2d0
[  961.641516]  ____cache_alloc_node+0x1be/0x1e0
[  961.646043]  kmem_cache_alloc+0x1f3/0x700
[  961.650214]  ? call_rwsem_wake+0x1b/0x30
[  961.654323]  anon_vma_clone+0x238/0x480
[  961.658329]  anon_vma_fork+0x8f/0x4a0
[  961.662153]  ? dup_userfaultfd+0x15e/0x6c0
[  961.666404]  ? memcpy+0x46/0x50
[  961.669777]  copy_process.part.0+0x34dc/0x7970
[  961.674435]  ? __cleanup_sighand+0x70/0x70
[  961.678711]  ? kasan_check_read+0x11/0x20
[  961.682892]  _do_fork+0x257/0xfe0
[  961.686377]  ? fork_idle+0x1d0/0x1d0
[  961.690121]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  961.694994]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  961.699772]  ? do_syscall_64+0x26/0x610
[  961.703765]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  961.709143]  ? do_syscall_64+0x26/0x610
[  961.713143]  __x64_sys_clone+0xbf/0x150
[  961.717136]  do_syscall_64+0x103/0x610
[  961.721043]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  961.726240] RIP: 0033:0x2000008a
[  961.729624] Code: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 98 4a 2a e9 2c 18 96 4c 0f 05 <bf> 03 00 00 00 c4 a3 7b f0 c5 1d 41 e2 e9 c4 22 e9 aa bb 3c 00 00
[  961.749155] RSP: 002b:00000000000004f0 EFLAGS: 00000287 ORIG_RAX: 0000000000000038
[  961.756892] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 000000002000008a
[  961.764172] RDX: 9c3755da22921eda RSI: 00000000000004f0 RDI: 0000000000000003
[  961.771455] RBP: 00000000000000f8 R08: 0000000000000005 R09: 0000000000000006
[  961.779426] R10: 0000000000000007 R11: 0000000000000287 R12: 000000000000000b
[  961.786721] R13: 000000000000000c R14: 000000000000000d R15: 00000000ffffffff
[  961.817446] Task in /syz2 killed as a result of limit of /syz2
[  961.831811] memory: usage 307200kB, limit 307200kB, failcnt 16895
[  961.838396] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  961.851982] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  961.858161] Memory cgroup stats for /syz2: cache:92KB rss:4492KB rss_huge:4096KB shmem:0KB mapped_file:0KB dirty:132KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:4448KB inactive_file:0KB active_file:0KB unevictable:0KB
[  961.886071] Memory cgroup out of memory: Kill process 29026 (syz-executor.2) score 120 or sacrifice child
[  961.897729] Killed process 29029 (syz-executor.2) total-vm:72584kB, anon-rss:2216kB, file-rss:34816kB, shmem-rss:0kB
[  961.931724] protocol 88fb is buggy, dev hsr_slave_0
[  961.936881] protocol 88fb is buggy, dev hsr_slave_1
[  961.942107] protocol 88fb is buggy, dev hsr_slave_0
[  961.947198] protocol 88fb is buggy, dev hsr_slave_1
[  961.987284] syz-executor.2 invoked oom-killer: gfp_mask=0x6040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null), order=0, oom_score_adj=0
[  962.031787] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[  962.037263] CPU: 0 PID: 29701 Comm: syz-executor.2 Not tainted 4.19.37 #5
[  962.044207] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  962.053581] Call Trace:
[  962.056191]  dump_stack+0x172/0x1f0
[  962.059837]  dump_header+0x15e/0x929
[  962.063572]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[  962.068787]  ? ___ratelimit+0x60/0x595
[  962.072686]  ? do_raw_spin_unlock+0x57/0x270
[  962.077113]  oom_kill_process.cold+0x10/0x6f5
[  962.081624]  ? task_will_free_mem+0x139/0x6e0
[  962.086147]  out_of_memory+0x936/0x12d0
[  962.090154]  ? oom_killer_disable+0x280/0x280
[  962.094665]  ? find_held_lock+0x35/0x130
[  962.098778]  mem_cgroup_out_of_memory+0x1d2/0x240
[  962.103637]  ? memcg_event_wake+0x230/0x230
[  962.107987]  ? do_raw_spin_unlock+0x57/0x270
[  962.112680]  ? _raw_spin_unlock+0x2d/0x50
[  962.116854]  try_charge+0xd25/0x15b0
[  962.120600]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[  962.125647]  ? rcu_read_lock_sched_held+0x110/0x130
[  962.130703]  ? __alloc_pages_nodemask+0x63e/0x760
[  962.135566]  ? perf_trace_lock_acquire+0xf5/0x580
[  962.140439]  memcg_kmem_charge_memcg+0x7c/0x130
[  962.145131]  ? memcg_kmem_put_cache+0xb0/0xb0
[  962.149643]  ? cache_grow_begin+0x59a/0x8c0
[  962.153986]  ? lockdep_hardirqs_on+0x415/0x5d0
[  962.158590]  ? trace_hardirqs_on+0x67/0x230
[  962.162939]  cache_grow_begin+0x25f/0x8c0
[  962.167112]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  962.173023]  ? __cpuset_node_allowed+0x136/0x540
[  962.177817]  fallback_alloc+0x1fd/0x2d0
[  962.181814]  ____cache_alloc_node+0x1be/0x1e0
[  962.186351]  kmem_cache_alloc+0x1f3/0x700
[  962.190683]  ? anon_vma_clone+0x320/0x480
[  962.195026]  anon_vma_fork+0xfc/0x4a0
[  962.198846]  ? dup_userfaultfd+0x15e/0x6c0
[  962.203091]  ? memcpy+0x46/0x50
[  962.206388]  copy_process.part.0+0x34dc/0x7970
[  962.211025]  ? __cleanup_sighand+0x70/0x70
[  962.215300]  ? kasan_check_read+0x11/0x20
[  962.219475]  _do_fork+0x257/0xfe0
[  962.222948]  ? fork_idle+0x1d0/0x1d0
[  962.226683]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  962.231450]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  962.236215]  ? do_syscall_64+0x26/0x610
[  962.240219]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  962.246119]  ? do_syscall_64+0x26/0x610
[  962.250114]  __x64_sys_clone+0xbf/0x150
[  962.254114]  do_syscall_64+0x103/0x610
[  962.258019]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  962.263217] RIP: 0033:0x2000008a
[  962.266604] Code: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 98 4a 2a e9 2c 18 96 4c 0f 05 <bf> 03 00 00 00 c4 a3 7b f0 c5 1d 41 e2 e9 c4 22 e9 aa bb 3c 00 00
[  962.285523] RSP: 002b:00000000000004f0 EFLAGS: 00000287 ORIG_RAX: 0000000000000038
[  962.293260] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 000000002000008a
[  962.300547] RDX: 9c3755da22921eda RSI: 00000000000004f0 RDI: 0000000000000003
[  962.307849] RBP: 00000000000000f8 R08: 0000000000000005 R09: 0000000000000006
[  962.315143] R10: 0000000000000007 R11: 0000000000000287 R12: 000000000000000b
[  962.322427] R13: 000000000000000c R14: 000000000000000d R15: 00000000ffffffff
[  962.330080] protocol 88fb is buggy, dev hsr_slave_0
[  962.335483] protocol 88fb is buggy, dev hsr_slave_1
[  962.340803] Task in /syz2 killed as a result of limit of /syz2
[  962.347026] memory: usage 307200kB, limit 307200kB, failcnt 16932
[  962.353382] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  962.360150] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  962.366908] Memory cgroup stats for /syz2: cache:92KB rss:4492KB rss_huge:4096KB shmem:0KB mapped_file:0KB dirty:132KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:4448KB inactive_file:0KB active_file:0KB unevictable:0KB
[  962.388029] Memory cgroup out of memory: Kill process 29026 (syz-executor.2) score 120 or sacrifice child
[  962.398261] Killed process 29035 (syz-executor.2) total-vm:72584kB, anon-rss:2216kB, file-rss:34816kB, shmem-rss:0kB
[  962.425120] syz-executor.2 invoked oom-killer: gfp_mask=0x7080c0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), nodemask=(null), order=0, oom_score_adj=0
[  962.437874] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[  962.443915] CPU: 0 PID: 29701 Comm: syz-executor.2 Not tainted 4.19.37 #5
[  962.450951] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  962.460345] Call Trace:
[  962.462956]  dump_stack+0x172/0x1f0
[  962.466611]  dump_header+0x15e/0x929
[  962.470347]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[  962.475476]  ? ___ratelimit+0x60/0x595
[  962.479381]  ? do_raw_spin_unlock+0x57/0x270
[  962.485199]  oom_kill_process.cold+0x10/0x6f5
[  962.489813]  ? task_will_free_mem+0x139/0x6e0
[  962.494335]  ? find_held_lock+0x35/0x130
[  962.498419]  out_of_memory+0x936/0x12d0
[  962.502447]  ? lock_downgrade+0x810/0x810
[  962.506616]  ? oom_killer_disable+0x280/0x280
[  962.511126]  ? find_held_lock+0x35/0x130
[  962.515227]  mem_cgroup_out_of_memory+0x1d2/0x240
[  962.520109]  ? memcg_event_wake+0x230/0x230
[  962.524459]  ? do_raw_spin_unlock+0x57/0x270
[  962.528888]  ? _raw_spin_unlock+0x2d/0x50
[  962.533055]  try_charge+0xd25/0x15b0
[  962.536783]  ? find_held_lock+0x35/0x130
[  962.540869]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[  962.545731]  ? get_mem_cgroup_from_mm+0x10b/0x2b0
[  962.550593]  ? find_held_lock+0x35/0x130
[  962.554711]  ? get_mem_cgroup_from_mm+0x10b/0x2b0
[  962.559582]  memcg_kmem_charge_memcg+0x7c/0x130
[  962.564272]  ? memcg_kmem_put_cache+0xb0/0xb0
[  962.568785]  ? get_mem_cgroup_from_mm+0x128/0x2b0
[  962.573731]  memcg_kmem_charge+0x136/0x300
[  962.577987]  __alloc_pages_nodemask+0x3c6/0x760
[  962.582680]  ? debug_smp_processor_id+0x1c/0x20
[  962.587367]  ? __alloc_pages_slowpath+0x2870/0x2870
[  962.592405]  ? find_held_lock+0x35/0x130
[  962.596482]  ? copy_page_range+0x124f/0x1f90
[  962.600903]  ? __sanitizer_cov_trace_const_cmp2+0x18/0x20
[  962.606460]  alloc_pages_current+0x107/0x210
[  962.610888]  pte_alloc_one+0x1b/0x1a0
[  962.614737]  __pte_alloc+0x2a/0x360
[  962.618382]  copy_page_range+0x151f/0x1f90
[  962.622635]  ? debug_smp_processor_id+0x1c/0x20
[  962.627357]  ? pmd_alloc+0x180/0x180
[  962.631089]  ? __vma_link_rb+0x279/0x370
[  962.635177]  copy_process.part.0+0x5434/0x7970
[  962.639805]  ? __cleanup_sighand+0x70/0x70
[  962.644090]  ? kasan_check_read+0x11/0x20
[  962.648274]  _do_fork+0x257/0xfe0
[  962.651749]  ? fork_idle+0x1d0/0x1d0
[  962.655563]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  962.660336]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  962.665109]  ? do_syscall_64+0x26/0x610
[  962.669096]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  962.674472]  ? do_syscall_64+0x26/0x610
[  962.678474]  __x64_sys_clone+0xbf/0x150
[  962.682471]  do_syscall_64+0x103/0x610
[  962.686383]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  962.691585] RIP: 0033:0x2000008a
[  962.694961] Code: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 98 4a 2a e9 2c 18 96 4c 0f 05 <bf> 03 00 00 00 c4 a3 7b f0 c5 1d 41 e2 e9 c4 22 e9 aa bb 3c 00 00
[  962.713972] RSP: 002b:00000000000004f0 EFLAGS: 00000287 ORIG_RAX: 0000000000000038
[  962.721700] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 000000002000008a
[  962.729000] RDX: 9c3755da22921eda RSI: 00000000000004f0 RDI: 0000000000000003
[  962.736368] RBP: 00000000000000f8 R08: 0000000000000005 R09: 0000000000000006
[  962.743667] R10: 0000000000000007 R11: 0000000000000287 R12: 000000000000000b
[  962.750952] R13: 000000000000000c R14: 000000000000000d R15: 00000000ffffffff
[  962.760599] Task in /syz2 killed as a result of limit of /syz2
[  962.767046] memory: usage 307028kB, limit 307200kB, failcnt 16962
[  962.773751] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  962.780542] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  962.787132] Memory cgroup stats for /syz2: cache:92KB rss:4492KB rss_huge:4096KB shmem:0KB mapped_file:0KB dirty:132KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:4448KB inactive_file:0KB active_file:0KB unevictable:0KB
[  962.808465] Memory cgroup out of memory: Kill process 29026 (syz-executor.2) score 120 or sacrifice child
[  962.819111] Killed process 29043 (syz-executor.2) total-vm:72584kB, anon-rss:2216kB, file-rss:34816kB, shmem-rss:0kB
[  962.867112] syz-executor.2 invoked oom-killer: gfp_mask=0x6040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null), order=0, oom_score_adj=0
[  962.886524] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[  962.892654] CPU: 0 PID: 29410 Comm: syz-executor.2 Not tainted 4.19.37 #5
[  962.899597] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  962.908964] Call Trace:
[  962.911573]  dump_stack+0x172/0x1f0
[  962.915219]  dump_header+0x15e/0x929
[  962.918960]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[  962.924086]  ? ___ratelimit+0x60/0x595
[  962.927989]  ? do_raw_spin_unlock+0x57/0x270
[  962.932421]  oom_kill_process.cold+0x10/0x6f5
[  962.936941]  ? task_will_free_mem+0x139/0x6e0
[  962.941457]  out_of_memory+0x936/0x12d0
[  962.945456]  ? oom_killer_disable+0x280/0x280
[  962.949965]  ? find_held_lock+0x35/0x130
[  962.954055]  mem_cgroup_out_of_memory+0x1d2/0x240
[  962.958910]  ? memcg_event_wake+0x230/0x230
[  962.963263]  ? do_raw_spin_unlock+0x57/0x270
[  962.967689]  ? _raw_spin_unlock+0x2d/0x50
[  962.971864]  try_charge+0xd25/0x15b0
[  962.975607]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[  962.980475]  ? rcu_read_lock_sched_held+0x110/0x130
[  962.985504]  ? __alloc_pages_nodemask+0x63e/0x760
[  962.990368]  ? perf_trace_lock_acquire+0xf5/0x580
[  962.995262]  memcg_kmem_charge_memcg+0x7c/0x130
[  962.999950]  ? memcg_kmem_put_cache+0xb0/0xb0
[  963.004455]  ? cache_grow_begin+0x59a/0x8c0
[  963.008821]  ? lockdep_hardirqs_on+0x415/0x5d0
[  963.013419]  ? trace_hardirqs_on+0x67/0x230
[  963.017932]  cache_grow_begin+0x25f/0x8c0
[  963.022097]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  963.027645]  ? __cpuset_node_allowed+0x136/0x540
[  963.032415]  fallback_alloc+0x1fd/0x2d0
[  963.036407]  ____cache_alloc_node+0x1be/0x1e0
[  963.040920]  kmem_cache_alloc+0x1f3/0x700
[  963.045272]  ? call_rwsem_wake+0x1b/0x30
[  963.049358]  anon_vma_clone+0x238/0x480
[  963.053363]  anon_vma_fork+0x8f/0x4a0
[  963.057212]  ? dup_userfaultfd+0x15e/0x6c0
[  963.061820]  ? memcpy+0x46/0x50
[  963.065123]  copy_process.part.0+0x34dc/0x7970
[  963.069757]  ? __cleanup_sighand+0x70/0x70
[  963.074023]  ? kasan_check_read+0x11/0x20
[  963.078200]  _do_fork+0x257/0xfe0
[  963.081674]  ? fork_idle+0x1d0/0x1d0
[  963.085415]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  963.090185]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  963.094957]  ? do_syscall_64+0x26/0x610
[  963.098945]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  963.104327]  ? do_syscall_64+0x26/0x610
[  963.108497]  __x64_sys_clone+0xbf/0x150
[  963.112489]  do_syscall_64+0x103/0x610
[  963.116398]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  963.121683] RIP: 0033:0x2000008a
[  963.125064] Code: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 98 4a 2a e9 2c 18 96 4c 0f 05 <bf> 03 00 00 00 c4 a3 7b f0 c5 1d 41 e2 e9 c4 22 e9 aa bb 3c 00 00
[  963.144068] RSP: 002b:00000000000004f0 EFLAGS: 00000287 ORIG_RAX: 0000000000000038
[  963.151800] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 000000002000008a
[  963.159086] RDX: 9c3755da22921eda RSI: 00000000000004f0 RDI: 0000000000000003
[  963.166373] RBP: 00000000000000f8 R08: 0000000000000005 R09: 0000000000000006
[  963.173657] R10: 0000000000000007 R11: 0000000000000287 R12: 000000000000000b
[  963.180940] R13: 000000000000000c R14: 000000000000000d R15: 00000000ffffffff
[  963.190419] Task in /syz2 killed as a result of limit of /syz2
[  963.196811] memory: usage 307200kB, limit 307200kB, failcnt 17017
[  963.203581] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  963.210356] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  963.217032] Memory cgroup stats for /syz2: cache:92KB rss:4492KB rss_huge:4096KB shmem:0KB mapped_file:0KB dirty:132KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:4448KB inactive_file:0KB active_file:0KB unevictable:0KB
[  963.238086] Memory cgroup out of memory: Kill process 29026 (syz-executor.2) score 120 or sacrifice child
[  963.248319] Killed process 29044 (syz-executor.2) total-vm:72584kB, anon-rss:2216kB, file-rss:34816kB, shmem-rss:0kB
[  963.260375] oom_reaper: reaped process 29044 (syz-executor.2), now anon-rss:0kB, file-rss:34816kB, shmem-rss:0kB
[  963.300869] syz-executor.2 invoked oom-killer: gfp_mask=0x6040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null), order=0, oom_score_adj=0
[  963.321798] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[  963.327232] CPU: 0 PID: 29410 Comm: syz-executor.2 Not tainted 4.19.37 #5
[  963.334185] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  963.343558] Call Trace:
[  963.346166]  dump_stack+0x172/0x1f0
[  963.349819]  dump_header+0x15e/0x929
[  963.355119]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[  963.360269]  ? ___ratelimit+0x60/0x595
[  963.364174]  ? do_raw_spin_unlock+0x57/0x270
[  963.368608]  oom_kill_process.cold+0x10/0x6f5
[  963.373125]  ? task_will_free_mem+0x139/0x6e0
[  963.377639]  ? find_held_lock+0x35/0x130
[  963.381724]  out_of_memory+0x936/0x12d0
[  963.385720]  ? lock_downgrade+0x810/0x810
[  963.389886]  ? oom_killer_disable+0x280/0x280
[  963.394484]  ? find_held_lock+0x35/0x130
[  963.400074]  mem_cgroup_out_of_memory+0x1d2/0x240
[  963.407198]  ? memcg_event_wake+0x230/0x230
[  963.413295]  ? do_raw_spin_unlock+0x57/0x270
[  963.417912]  ? _raw_spin_unlock+0x2d/0x50
[  963.422173]  try_charge+0xd25/0x15b0
[  963.425909]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[  963.430775]  ? rcu_read_lock_sched_held+0x110/0x130
[  963.435805]  ? __alloc_pages_nodemask+0x63e/0x760
[  963.440664]  ? perf_trace_lock_acquire+0xf5/0x580
[  963.445532]  memcg_kmem_charge_memcg+0x7c/0x130
[  963.451201]  ? memcg_kmem_put_cache+0xb0/0xb0
[  963.457706]  ? cache_grow_begin+0x59a/0x8c0
[  963.462048]  ? lockdep_hardirqs_on+0x415/0x5d0
[  963.466649]  ? trace_hardirqs_on+0x67/0x230
[  963.471075]  cache_grow_begin+0x25f/0x8c0
[  963.475264]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  963.480822]  ? __cpuset_node_allowed+0x136/0x540
[  963.485596]  fallback_alloc+0x1fd/0x2d0
[  963.489598]  ____cache_alloc_node+0x1be/0x1e0
[  963.494311]  kmem_cache_alloc+0x1f3/0x700
[  963.498475]  ? call_rwsem_wake+0x1b/0x30
[  963.502558]  anon_vma_clone+0x238/0x480
[  963.506561]  anon_vma_fork+0x8f/0x4a0
[  963.510469]  ? dup_userfaultfd+0x15e/0x6c0
[  963.514732]  ? memcpy+0x46/0x50
[  963.518033]  copy_process.part.0+0x34dc/0x7970
[  963.522663]  ? __cleanup_sighand+0x70/0x70
[  963.526925]  ? kasan_check_read+0x11/0x20
[  963.531100]  _do_fork+0x257/0xfe0
[  963.534595]  ? fork_idle+0x1d0/0x1d0
[  963.538339]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  963.543105]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  963.547874]  ? do_syscall_64+0x26/0x610
[  963.551862]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  963.557236]  ? do_syscall_64+0x26/0x610
[  963.561239]  __x64_sys_clone+0xbf/0x150
[  963.565264]  do_syscall_64+0x103/0x610
[  963.569171]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  963.574380] RIP: 0033:0x2000008a
[  963.577757] Code: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 98 4a 2a e9 2c 18 96 4c 0f 05 <bf> 03 00 00 00 c4 a3 7b f0 c5 1d 41 e2 e9 c4 22 e9 aa bb 3c 00 00
[  963.596701] RSP: 002b:00000000000004f0 EFLAGS: 00000287 ORIG_RAX: 0000000000000038
[  963.604428] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 000000002000008a
[  963.611714] RDX: 9c3755da22921eda RSI: 00000000000004f0 RDI: 0000000000000003
[  963.618996] RBP: 00000000000000f8 R08: 0000000000000005 R09: 0000000000000006
[  963.626286] R10: 0000000000000007 R11: 0000000000000287 R12: 000000000000000b
[  963.633573] R13: 000000000000000c R14: 000000000000000d R15: 00000000ffffffff
[  963.673466] Task in /syz2 killed as a result of limit of /syz2
[  963.679533] memory: usage 306892kB, limit 307200kB, failcnt 17120
[  963.686261] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  963.693495] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  963.699653] Memory cgroup stats for /syz2: cache:92KB rss:4492KB rss_huge:4096KB shmem:0KB mapped_file:0KB dirty:132KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:4448KB inactive_file:0KB active_file:0KB unevictable:0KB
[  963.720791] Memory cgroup out of memory: Kill process 29026 (syz-executor.2) score 120 or sacrifice child
[  963.731028] Killed process 29060 (syz-executor.2) total-vm:72584kB, anon-rss:2216kB, file-rss:34816kB, shmem-rss:0kB
[  963.743198] oom_reaper: reaped process 29060 (syz-executor.2), now anon-rss:0kB, file-rss:34816kB, shmem-rss:0kB
[  963.770025] syz-executor.2 invoked oom-killer: gfp_mask=0x6040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null), order=0, oom_score_adj=0
[  963.802649] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[  963.808744] CPU: 1 PID: 29523 Comm: syz-executor.2 Not tainted 4.19.37 #5
[  963.816497] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  963.826257] Call Trace:
[  963.829364]  dump_stack+0x172/0x1f0
[  963.833372]  dump_header+0x15e/0x929
[  963.837345]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[  963.842898]  ? ___ratelimit+0x60/0x595
[  963.846801]  ? do_raw_spin_unlock+0x57/0x270
[  963.851242]  oom_kill_process.cold+0x10/0x6f5
[  963.855772]  ? task_will_free_mem+0x139/0x6e0
[  963.860835]  out_of_memory+0x936/0x12d0
[  963.864844]  ? oom_killer_disable+0x280/0x280
[  963.869550]  ? find_held_lock+0x35/0x130
[  963.873637]  mem_cgroup_out_of_memory+0x1d2/0x240
[  963.878497]  ? memcg_event_wake+0x230/0x230
[  963.882924]  ? do_raw_spin_unlock+0x57/0x270
[  963.887350]  ? _raw_spin_unlock+0x2d/0x50
[  963.891531]  try_charge+0xd25/0x15b0
[  963.895303]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[  963.900169]  ? rcu_read_lock_sched_held+0x110/0x130
[  963.905201]  ? __alloc_pages_nodemask+0x63e/0x760
[  963.910068]  ? perf_trace_lock_acquire+0xf5/0x580
[  963.914940]  memcg_kmem_charge_memcg+0x7c/0x130
[  963.919622]  ? memcg_kmem_put_cache+0xb0/0xb0
[  963.924126]  ? cache_grow_begin+0x59a/0x8c0
[  963.928464]  ? lockdep_hardirqs_on+0x415/0x5d0
[  963.933065]  ? trace_hardirqs_on+0x67/0x230
[  963.937437]  cache_grow_begin+0x25f/0x8c0
[  963.941600]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  963.947153]  ? __cpuset_node_allowed+0x136/0x540
[  963.951923]  fallback_alloc+0x1fd/0x2d0
[  963.955923]  ____cache_alloc_node+0x1be/0x1e0
[  963.960437]  kmem_cache_alloc+0x1f3/0x700
[  963.964713]  ? call_rwsem_wake+0x1b/0x30
[  963.968798]  anon_vma_clone+0x238/0x480
[  963.972798]  anon_vma_fork+0x8f/0x4a0
[  963.976617]  ? dup_userfaultfd+0x15e/0x6c0
[  963.981038]  ? memcpy+0x46/0x50
[  963.984343]  copy_process.part.0+0x34dc/0x7970
[  963.988974]  ? __cleanup_sighand+0x70/0x70
[  963.993334]  ? kasan_check_read+0x11/0x20
[  963.997509]  _do_fork+0x257/0xfe0
[  964.001045]  ? fork_idle+0x1d0/0x1d0
[  964.004802]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  964.009590]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  964.014444]  ? do_syscall_64+0x26/0x610
[  964.018539]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  964.024000]  ? do_syscall_64+0x26/0x610
[  964.027990]  __x64_sys_clone+0xbf/0x150
[  964.031984]  do_syscall_64+0x103/0x610
[  964.035988]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  964.041186] RIP: 0033:0x2000008a
[  964.044560] Code: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 98 4a 2a e9 2c 18 96 4c 0f 05 <bf> 03 00 00 00 c4 a3 7b f0 c5 1d 41 e2 e9 c4 22 e9 aa bb 3c 00 00
[  964.063474] RSP: 002b:00000000000004f0 EFLAGS: 00000287 ORIG_RAX: 0000000000000038
[  964.071201] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 000000002000008a
[  964.078477] RDX: 9c3755da22921eda RSI: 00000000000004f0 RDI: 0000000000000003
[  964.085760] RBP: 00000000000000f8 R08: 0000000000000005 R09: 0000000000000006
[  964.093049] R10: 0000000000000007 R11: 0000000000000287 R12: 000000000000000b
[  964.100331] R13: 000000000000000c R14: 000000000000000d R15: 00000000ffffffff
[  964.118748] Task in /syz2 killed as a result of limit of /syz2
[  964.126536] memory: usage 307048kB, limit 307200kB, failcnt 17181
[  964.139731] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  964.148256] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  964.161045] Memory cgroup stats for /syz2: cache:92KB rss:4492KB rss_huge:4096KB shmem:0KB mapped_file:0KB dirty:132KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:4448KB inactive_file:0KB active_file:0KB unevictable:0KB
[  964.188863] Memory cgroup out of memory: Kill process 29026 (syz-executor.2) score 120 or sacrifice child
[  964.199272] Killed process 29107 (syz-executor.2) total-vm:72584kB, anon-rss:2216kB, file-rss:34816kB, shmem-rss:0kB
[  964.225794] syz-executor.2 invoked oom-killer: gfp_mask=0x6040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null), order=0, oom_score_adj=0
[  964.258089] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[  964.279563] CPU: 0 PID: 29300 Comm: syz-executor.2 Not tainted 4.19.37 #5
[  964.286523] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  964.295907] Call Trace:
[  964.298510]  dump_stack+0x172/0x1f0
[  964.302259]  dump_header+0x15e/0x929
[  964.305988]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[  964.311118]  ? ___ratelimit+0x60/0x595
[  964.315022]  ? do_raw_spin_unlock+0x57/0x270
[  964.319453]  oom_kill_process.cold+0x10/0x6f5
[  964.323968]  ? task_will_free_mem+0x139/0x6e0
[  964.328493]  out_of_memory+0x936/0x12d0
[  964.332498]  ? oom_killer_disable+0x280/0x280
[  964.337010]  ? find_held_lock+0x35/0x130
[  964.341094]  mem_cgroup_out_of_memory+0x1d2/0x240
[  964.345955]  ? memcg_event_wake+0x230/0x230
[  964.350298]  ? do_raw_spin_unlock+0x57/0x270
[  964.354729]  ? _raw_spin_unlock+0x2d/0x50
[  964.358906]  try_charge+0xd25/0x15b0
[  964.362651]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[  964.367513]  ? rcu_read_lock_sched_held+0x110/0x130
[  964.372542]  ? __alloc_pages_nodemask+0x63e/0x760
[  964.377396]  ? perf_trace_lock_acquire+0xf5/0x580
[  964.382273]  memcg_kmem_charge_memcg+0x7c/0x130
[  964.386956]  ? memcg_kmem_put_cache+0xb0/0xb0
[  964.391484]  ? cache_grow_begin+0x59a/0x8c0
[  964.395820]  ? lockdep_hardirqs_on+0x415/0x5d0
[  964.400420]  ? trace_hardirqs_on+0x67/0x230
[  964.404760]  cache_grow_begin+0x25f/0x8c0
[  964.408928]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  964.414480]  ? __cpuset_node_allowed+0x136/0x540
[  964.419281]  fallback_alloc+0x1fd/0x2d0
[  964.423291]  ____cache_alloc_node+0x1be/0x1e0
[  964.427827]  kmem_cache_alloc+0x1f3/0x700
[  964.431984]  ? anon_vma_clone+0x320/0x480
[  964.436160]  anon_vma_fork+0xfc/0x4a0
[  964.439971]  ? dup_userfaultfd+0x15e/0x6c0
[  964.444224]  ? memcpy+0x46/0x50
[  964.447531]  copy_process.part.0+0x34dc/0x7970
[  964.452986]  ? __cleanup_sighand+0x70/0x70
[  964.457278]  ? kasan_check_read+0x11/0x20
[  964.461449]  _do_fork+0x257/0xfe0
[  964.464949]  ? fork_idle+0x1d0/0x1d0
[  964.468709]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  964.473529]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  964.478306]  ? do_syscall_64+0x26/0x610
[  964.482299]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  964.489110]  ? do_syscall_64+0x26/0x610
[  964.493111]  __x64_sys_clone+0xbf/0x150
[  964.497112]  do_syscall_64+0x103/0x610
[  964.501029]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  964.506258] RIP: 0033:0x2000008a
[  964.509637] Code: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 98 4a 2a e9 2c 18 96 4c 0f 05 <bf> 03 00 00 00 c4 a3 7b f0 c5 1d 41 e2 e9 c4 22 e9 aa bb 3c 00 00
[  964.528577] RSP: 002b:00000000000004f0 EFLAGS: 00000287 ORIG_RAX: 0000000000000038
[  964.536306] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 000000002000008a
[  964.543611] RDX: 9c3755da22921eda RSI: 00000000000004f0 RDI: 0000000000000003
[  964.550891] RBP: 00000000000000f8 R08: 0000000000000005 R09: 0000000000000006
[  964.558190] R10: 0000000000000007 R11: 0000000000000287 R12: 000000000000000b
[  964.565471] R13: 000000000000000c R14: 000000000000000d R15: 00000000ffffffff
[  964.581467] Task in /syz2 killed as a result of limit of /syz2
[  964.601149] memory: usage 307156kB, limit 307200kB, failcnt 17221
[  964.607964] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  964.631706] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  964.652207] Memory cgroup stats for /syz2: cache:92KB rss:4492KB rss_huge:4096KB shmem:0KB mapped_file:0KB dirty:132KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:4448KB inactive_file:0KB active_file:0KB unevictable:0KB
[  964.678999] Memory cgroup out of memory: Kill process 29026 (syz-executor.2) score 120 or sacrifice child
[  964.689688] Killed process 29184 (syz-executor.2) total-vm:72584kB, anon-rss:2216kB, file-rss:34816kB, shmem-rss:0kB
[  964.708613] oom_reaper: reaped process 29184 (syz-executor.2), now anon-rss:0kB, file-rss:34816kB, shmem-rss:0kB
[  964.755124] syz-executor.2 invoked oom-killer: gfp_mask=0x7080c0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), nodemask=(null), order=0, oom_score_adj=0
[  964.778820] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[  964.788480] CPU: 0 PID: 29300 Comm: syz-executor.2 Not tainted 4.19.37 #5
[  964.795451] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  964.804812] Call Trace:
[  964.807417]  dump_stack+0x172/0x1f0
[  964.811230]  dump_header+0x15e/0x929
[  964.814970]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[  964.820097]  ? ___ratelimit+0x60/0x595
[  964.823999]  ? do_raw_spin_unlock+0x57/0x270
[  964.828427]  oom_kill_process.cold+0x10/0x6f5
[  964.832946]  ? task_will_free_mem+0x139/0x6e0
[  964.837459]  ? find_held_lock+0x35/0x130
[  964.841547]  out_of_memory+0x936/0x12d0
[  964.845566]  ? lock_downgrade+0x810/0x810
[  964.849730]  ? oom_killer_disable+0x280/0x280
[  964.854332]  ? find_held_lock+0x35/0x130
[  964.858423]  mem_cgroup_out_of_memory+0x1d2/0x240
[  964.863289]  ? memcg_event_wake+0x230/0x230
[  964.867635]  ? do_raw_spin_unlock+0x57/0x270
[  964.872065]  ? _raw_spin_unlock+0x2d/0x50
[  964.876254]  try_charge+0xd25/0x15b0
[  964.879985]  ? find_held_lock+0x35/0x130
[  964.884069]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[  964.889013]  ? get_mem_cgroup_from_mm+0x10b/0x2b0
[  964.893875]  ? find_held_lock+0x35/0x130
[  964.897961]  ? get_mem_cgroup_from_mm+0x10b/0x2b0
[  964.902837]  memcg_kmem_charge_memcg+0x7c/0x130
[  964.907522]  ? memcg_kmem_put_cache+0xb0/0xb0
[  964.912033]  ? get_mem_cgroup_from_mm+0x128/0x2b0
[  964.916894]  memcg_kmem_charge+0x136/0x300
[  964.921166]  __alloc_pages_nodemask+0x3c6/0x760
[  964.925858]  ? debug_smp_processor_id+0x1c/0x20
[  964.930551]  ? __alloc_pages_slowpath+0x2870/0x2870
[  964.935585]  ? find_held_lock+0x35/0x130
[  964.939665]  ? copy_page_range+0x124f/0x1f90
[  964.944123]  ? __sanitizer_cov_trace_const_cmp2+0x18/0x20
[  964.949701]  alloc_pages_current+0x107/0x210
[  964.954214]  pte_alloc_one+0x1b/0x1a0
[  964.958063]  __pte_alloc+0x2a/0x360
[  964.961707]  copy_page_range+0x151f/0x1f90
[  964.965979]  ? anon_vma_fork+0x371/0x4a0
[  964.970088]  ? pmd_alloc+0x180/0x180
[  964.973819]  ? __vma_link_rb+0x279/0x370
[  964.977902]  copy_process.part.0+0x5434/0x7970
[  964.982535]  ? __cleanup_sighand+0x70/0x70
[  964.986809]  ? kasan_check_read+0x11/0x20
[  964.990988]  _do_fork+0x257/0xfe0
[  964.994464]  ? fork_idle+0x1d0/0x1d0
[  964.998223]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  965.003023]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  965.007796]  ? do_syscall_64+0x26/0x610
[  965.011810]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  965.017193]  ? do_syscall_64+0x26/0x610
[  965.021193]  __x64_sys_clone+0xbf/0x150
[  965.025287]  do_syscall_64+0x103/0x610
[  965.029294]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  965.034497] RIP: 0033:0x2000008a
[  965.037969] Code: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 98 4a 2a e9 2c 18 96 4c 0f 05 <bf> 03 00 00 00 c4 a3 7b f0 c5 1d 41 e2 e9 c4 22 e9 aa bb 3c 00 00
[  965.056982] RSP: 002b:00000000000004f0 EFLAGS: 00000287 ORIG_RAX: 0000000000000038
[  965.064971] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 000000002000008a
[  965.072261] RDX: 9c3755da22921eda RSI: 00000000000004f0 RDI: 0000000000000003
[  965.079566] RBP: 00000000000000f8 R08: 0000000000000005 R09: 0000000000000006
[  965.086868] R10: 0000000000000007 R11: 0000000000000287 R12: 000000000000000b
[  965.094149] R13: 000000000000000c R14: 000000000000000d R15: 00000000ffffffff
[  965.112825] Task in /syz2 killed as a result of limit of /syz2
[  965.118970] memory: usage 307048kB, limit 307200kB, failcnt 17252
[  965.139698] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  965.146995] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  965.160362] Memory cgroup stats for /syz2: cache:92KB rss:4492KB rss_huge:4096KB shmem:0KB mapped_file:0KB dirty:132KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:4448KB inactive_file:0KB active_file:0KB unevictable:0KB
[  965.188151] Memory cgroup out of memory: Kill process 29026 (syz-executor.2) score 120 or sacrifice child
[  965.198869] Killed process 29366 (syz-executor.2) total-vm:72584kB, anon-rss:2216kB, file-rss:34816kB, shmem-rss:0kB
[  965.218747] oom_reaper: reaped process 29366 (syz-executor.2), now anon-rss:0kB, file-rss:34816kB, shmem-rss:0kB
[  965.245110] syz-executor.2 invoked oom-killer: gfp_mask=0x6040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null), order=0, oom_score_adj=0
[  965.284281] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[  965.289727] CPU: 1 PID: 29198 Comm: syz-executor.2 Not tainted 4.19.37 #5
[  965.296658] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  965.306023] Call Trace:
[  965.308629]  dump_stack+0x172/0x1f0
[  965.312304]  dump_header+0x15e/0x929
[  965.323082]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[  965.328208]  ? ___ratelimit+0x60/0x595
[  965.332121]  ? do_raw_spin_unlock+0x57/0x270
[  965.336635]  oom_kill_process.cold+0x10/0x6f5
[  965.341152]  ? task_will_free_mem+0x139/0x6e0
[  965.345771]  out_of_memory+0x936/0x12d0
[  965.349776]  ? oom_killer_disable+0x280/0x280
[  965.355629]  ? find_held_lock+0x35/0x130
[  965.359729]  mem_cgroup_out_of_memory+0x1d2/0x240
[  965.364610]  ? memcg_event_wake+0x230/0x230
[  965.368954]  ? do_raw_spin_unlock+0x57/0x270
[  965.373386]  ? _raw_spin_unlock+0x2d/0x50
[  965.377669]  try_charge+0xd25/0x15b0
[  965.381406]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[  965.386279]  ? rcu_read_lock_sched_held+0x110/0x130
[  965.391411]  ? __alloc_pages_nodemask+0x63e/0x760
[  965.396275]  ? perf_trace_lock_acquire+0xf5/0x580
[  965.401143]  memcg_kmem_charge_memcg+0x7c/0x130
[  965.405836]  ? memcg_kmem_put_cache+0xb0/0xb0
[  965.410343]  ? cache_grow_begin+0x59a/0x8c0
[  965.414682]  ? lockdep_hardirqs_on+0x415/0x5d0
[  965.419367]  ? trace_hardirqs_on+0x67/0x230
[  965.423732]  cache_grow_begin+0x25f/0x8c0
[  965.427896]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  965.433446]  ? __cpuset_node_allowed+0x136/0x540
[  965.438219]  fallback_alloc+0x1fd/0x2d0
[  965.442219]  ____cache_alloc_node+0x1be/0x1e0
[  965.446900]  kmem_cache_alloc+0x1f3/0x700
[  965.451062]  ? call_rwsem_wake+0x1b/0x30
[  965.455508]  anon_vma_clone+0x238/0x480
[  965.459528]  anon_vma_fork+0x8f/0x4a0
[  965.463429]  ? dup_userfaultfd+0x15e/0x6c0
[  965.467673]  ? memcpy+0x46/0x50
[  965.470977]  copy_process.part.0+0x34dc/0x7970
[  965.475661]  ? __cleanup_sighand+0x70/0x70
[  965.479943]  ? kasan_check_read+0x11/0x20
[  965.484109]  _do_fork+0x257/0xfe0
[  965.487583]  ? fork_idle+0x1d0/0x1d0
[  965.491320]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  965.496098]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  965.500871]  ? do_syscall_64+0x26/0x610
[  965.504880]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  965.510265]  ? do_syscall_64+0x26/0x610
[  965.514354]  __x64_sys_clone+0xbf/0x150
[  965.518343]  do_syscall_64+0x103/0x610
[  965.522261]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  965.527466] RIP: 0033:0x2000008a
[  965.530865] Code: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 98 4a 2a e9 2c 18 96 4c 0f 05 <bf> 03 00 00 00 c4 a3 7b f0 c5 1d 41 e2 e9 c4 22 e9 aa bb 3c 00 00
[  965.550119] RSP: 002b:00000000000004f0 EFLAGS: 00000287 ORIG_RAX: 0000000000000038
[  965.557852] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 000000002000008a
[  965.565143] RDX: 9c3755da22921eda RSI: 00000000000004f0 RDI: 0000000000000003
[  965.572511] RBP: 00000000000000f8 R08: 0000000000000005 R09: 0000000000000006
[  965.579791] R10: 0000000000000007 R11: 0000000000000287 R12: 000000000000000b
[  965.587487] R13: 000000000000000c R14: 000000000000000d R15: 00000000ffffffff
[  965.604142] Task in /syz2 killed as a result of limit of /syz2
[  965.610205] memory: usage 306780kB, limit 307200kB, failcnt 17266
[  965.623897] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  965.630707] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  965.643980] Memory cgroup stats for /syz2: cache:92KB rss:4492KB rss_huge:4096KB shmem:0KB mapped_file:0KB dirty:132KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:4448KB inactive_file:0KB active_file:0KB unevictable:0KB
[  965.672149] Memory cgroup out of memory: Kill process 29026 (syz-executor.2) score 120 or sacrifice child
[  965.687843] Killed process 29512 (syz-executor.2) total-vm:72584kB, anon-rss:2216kB, file-rss:34816kB, shmem-rss:0kB
[  965.762194] syz-executor.2 invoked oom-killer: gfp_mask=0x6040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null), order=0, oom_score_adj=0
[  965.811704] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[  965.817185] CPU: 0 PID: 29078 Comm: syz-executor.2 Not tainted 4.19.37 #5
[  965.824131] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  965.833492] Call Trace:
[  965.836104]  dump_stack+0x172/0x1f0
[  965.839751]  dump_header+0x15e/0x929
[  965.843488]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[  965.848603]  ? ___ratelimit+0x60/0x595
[  965.852509]  ? do_raw_spin_unlock+0x57/0x270
[  965.857047]  oom_kill_process.cold+0x10/0x6f5
[  965.861582]  ? task_will_free_mem+0x139/0x6e0
[  965.866110]  out_of_memory+0x936/0x12d0
[  965.870126]  ? oom_killer_disable+0x280/0x280
[  965.874639]  ? find_held_lock+0x35/0x130
[  965.878725]  mem_cgroup_out_of_memory+0x1d2/0x240
[  965.883583]  ? memcg_event_wake+0x230/0x230
[  965.887924]  ? do_raw_spin_unlock+0x57/0x270
[  965.892354]  ? _raw_spin_unlock+0x2d/0x50
[  965.896566]  try_charge+0xd25/0x15b0
[  965.900305]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[  965.905277]  ? rcu_read_lock_sched_held+0x110/0x130
[  965.910331]  ? __alloc_pages_nodemask+0x63e/0x760
[  965.915191]  ? perf_trace_lock_acquire+0xf5/0x580
[  965.920082]  memcg_kmem_charge_memcg+0x7c/0x130
[  965.924765]  ? memcg_kmem_put_cache+0xb0/0xb0
[  965.929289]  ? cache_grow_begin+0x59a/0x8c0
[  965.933629]  ? lockdep_hardirqs_on+0x415/0x5d0
[  965.938234]  ? trace_hardirqs_on+0x67/0x230
[  965.942586]  cache_grow_begin+0x25f/0x8c0
[  965.946759]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  965.952308]  ? __cpuset_node_allowed+0x136/0x540
[  965.957085]  fallback_alloc+0x1fd/0x2d0
[  965.961087]  ____cache_alloc_node+0x1be/0x1e0
[  965.965603]  kmem_cache_alloc+0x1f3/0x700
[  965.969766]  ? call_rwsem_wake+0x1b/0x30
[  965.973850]  anon_vma_clone+0x238/0x480
[  965.977849]  anon_vma_fork+0x8f/0x4a0
[  965.981685]  ? dup_userfaultfd+0x15e/0x6c0
[  965.985931]  ? memcpy+0x46/0x50
[  965.989232]  copy_process.part.0+0x34dc/0x7970
[  965.993870]  ? __cleanup_sighand+0x70/0x70
[  965.998159]  ? kasan_check_read+0x11/0x20
[  966.002341]  _do_fork+0x257/0xfe0
[  966.005812]  ? fork_idle+0x1d0/0x1d0
[  966.009551]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  966.014321]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  966.019099]  ? do_syscall_64+0x26/0x610
[  966.023093]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  966.028468]  ? do_syscall_64+0x26/0x610
[  966.032462]  __x64_sys_clone+0xbf/0x150
[  966.036457]  do_syscall_64+0x103/0x610
[  966.040455]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  966.045653] RIP: 0033:0x2000008a
[  966.049031] Code: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 98 4a 2a e9 2c 18 96 4c 0f 05 <bf> 03 00 00 00 c4 a3 7b f0 c5 1d 41 e2 e9 c4 22 e9 aa bb 3c 00 00
[  966.067953] RSP: 002b:00000000000004f0 EFLAGS: 00000287 ORIG_RAX: 0000000000000038
[  966.075682] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 000000002000008a
[  966.082962] RDX: 9c3755da22921eda RSI: 00000000000004f0 RDI: 0000000000000003
[  966.090272] RBP: 00000000000000f8 R08: 0000000000000005 R09: 0000000000000006
[  966.097640] R10: 0000000000000007 R11: 0000000000000287 R12: 000000000000000b
[  966.104942] R13: 000000000000000c R14: 000000000000000d R15: 00000000ffffffff
[  966.115425] Task in /syz2 killed as a result of limit of /syz2
[  966.121501] memory: usage 307200kB, limit 307200kB, failcnt 17302
[  966.128164] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  966.135392] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  966.141895] Memory cgroup stats for /syz2: cache:92KB rss:4492KB rss_huge:4096KB shmem:0KB mapped_file:0KB dirty:132KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:4448KB inactive_file:0KB active_file:0KB unevictable:0KB
[  966.162968] Memory cgroup out of memory: Kill process 29026 (syz-executor.2) score 120 or sacrifice child
[  966.173262] Killed process 29787 (syz-executor.2) total-vm:72584kB, anon-rss:2216kB, file-rss:34816kB, shmem-rss:0kB
[  966.181690] net_ratelimit: 14 callbacks suppressed
[  966.181698] protocol 88fb is buggy, dev hsr_slave_0
[  966.194042] protocol 88fb is buggy, dev hsr_slave_1
[  966.199182] protocol 88fb is buggy, dev hsr_slave_0
[  966.204331] protocol 88fb is buggy, dev hsr_slave_1
[  966.218719] syz-executor.2 invoked oom-killer: gfp_mask=0x6040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null), order=0, oom_score_adj=0
[  966.240698] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[  966.246794] CPU: 1 PID: 29303 Comm: syz-executor.2 Not tainted 4.19.37 #5
[  966.253767] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  966.263133] Call Trace:
[  966.265741]  dump_stack+0x172/0x1f0
[  966.269388]  dump_header+0x15e/0x929
[  966.273151]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[  966.278279]  ? ___ratelimit+0x60/0x595
[  966.282283]  ? do_raw_spin_unlock+0x57/0x270
[  966.286712]  oom_kill_process.cold+0x10/0x6f5
[  966.291243]  ? task_will_free_mem+0x139/0x6e0
[  966.295773]  out_of_memory+0x936/0x12d0
[  966.299770]  ? oom_killer_disable+0x280/0x280
[  966.304288]  ? find_held_lock+0x35/0x130
[  966.308380]  mem_cgroup_out_of_memory+0x1d2/0x240
[  966.313433]  ? memcg_event_wake+0x230/0x230
[  966.317775]  ? do_raw_spin_unlock+0x57/0x270
[  966.333328]  ? _raw_spin_unlock+0x2d/0x50
[  966.337506]  try_charge+0xd25/0x15b0
[  966.341258]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[  966.346131]  ? rcu_read_lock_sched_held+0x110/0x130
[  966.351163]  ? __alloc_pages_nodemask+0x63e/0x760
[  966.356022]  ? perf_trace_lock_acquire+0xf5/0x580
[  966.360897]  memcg_kmem_charge_memcg+0x7c/0x130
[  966.365596]  ? memcg_kmem_put_cache+0xb0/0xb0
[  966.370107]  ? cache_grow_begin+0x59a/0x8c0
[  966.374455]  ? lockdep_hardirqs_on+0x415/0x5d0
[  966.379052]  ? trace_hardirqs_on+0x67/0x230
[  966.383391]  cache_grow_begin+0x25f/0x8c0
[  966.387558]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  966.393116]  ? __cpuset_node_allowed+0x136/0x540
[  966.397890]  fallback_alloc+0x1fd/0x2d0
[  966.401895]  ____cache_alloc_node+0x1be/0x1e0
[  966.406513]  kmem_cache_alloc+0x1f3/0x700
[  966.410771]  ? call_rwsem_wake+0x1b/0x30
[  966.414859]  anon_vma_clone+0x238/0x480
[  966.418863]  anon_vma_fork+0x8f/0x4a0
[  966.422682]  ? dup_userfaultfd+0x15e/0x6c0
[  966.426930]  ? memcpy+0x46/0x50
[  966.430234]  copy_process.part.0+0x34dc/0x7970
[  966.434884]  ? __cleanup_sighand+0x70/0x70
[  966.439267]  ? kasan_check_read+0x11/0x20
[  966.443456]  _do_fork+0x257/0xfe0
[  966.446936]  ? fork_idle+0x1d0/0x1d0
[  966.450678]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  966.455453]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  966.460267]  ? do_syscall_64+0x26/0x610
[  966.464272]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  966.469659]  ? do_syscall_64+0x26/0x610
[  966.473656]  __x64_sys_clone+0xbf/0x150
[  966.477651]  do_syscall_64+0x103/0x610
[  966.481557]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  966.488339] RIP: 0033:0x2000008a
[  966.491740] Code: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 98 4a 2a e9 2c 18 96 4c 0f 05 <bf> 03 00 00 00 c4 a3 7b f0 c5 1d 41 e2 e9 c4 22 e9 aa bb 3c 00 00
[  966.510685] RSP: 002b:00000000000004f0 EFLAGS: 00000287 ORIG_RAX: 0000000000000038
[  966.518417] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 000000002000008a
[  966.525699] RDX: 9c3755da22921eda RSI: 00000000000004f0 RDI: 0000000000000003
[  966.533034] RBP: 00000000000000f8 R08: 0000000000000005 R09: 0000000000000006
[  966.540350] R10: 0000000000000007 R11: 0000000000000287 R12: 000000000000000b
[  966.547641] R13: 000000000000000c R14: 000000000000000d R15: 00000000ffffffff
[  966.570383] Task in /syz2 killed as a result of limit of /syz2
[  966.581323] memory: usage 307192kB, limit 307200kB, failcnt 17334
[  966.595536] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  966.605173] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  966.611356] Memory cgroup stats for /syz2: cache:92KB rss:4492KB rss_huge:4096KB shmem:0KB mapped_file:0KB dirty:132KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:4448KB inactive_file:0KB active_file:0KB unevictable:0KB
[  966.645796] Memory cgroup out of memory: Kill process 29026 (syz-executor.2) score 120 or sacrifice child
[  966.651737] protocol 88fb is buggy, dev hsr_slave_0
[  966.658617] Killed process 29026 (syz-executor.2) total-vm:72584kB, anon-rss:2216kB, file-rss:34816kB, shmem-rss:0kB
[  966.660815] protocol 88fb is buggy, dev hsr_slave_1
[  966.715125] syz-executor.2 invoked oom-killer: gfp_mask=0x6040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null), order=0, oom_score_adj=0
[  966.750313] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[  966.759659] CPU: 1 PID: 29193 Comm: syz-executor.2 Not tainted 4.19.37 #5
[  966.766610] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  966.776120] Call Trace:
[  966.778712]  dump_stack+0x172/0x1f0
[  966.782365]  dump_header+0x15e/0x929
[  966.786095]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[  966.791225]  ? ___ratelimit+0x60/0x595
[  966.795344]  ? do_raw_spin_unlock+0x57/0x270
[  966.799801]  oom_kill_process.cold+0x10/0x6f5
[  966.804324]  ? task_will_free_mem+0x139/0x6e0
[  966.808853]  out_of_memory+0x936/0x12d0
[  966.812854]  ? oom_killer_disable+0x280/0x280
[  966.817371]  ? find_held_lock+0x35/0x130
[  966.821459]  mem_cgroup_out_of_memory+0x1d2/0x240
[  966.826312]  ? memcg_event_wake+0x230/0x230
[  966.830651]  ? do_raw_spin_unlock+0x57/0x270
[  966.835181]  ? _raw_spin_unlock+0x2d/0x50
[  966.839347]  try_charge+0xd25/0x15b0
[  966.843092]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[  966.847967]  ? rcu_read_lock_sched_held+0x110/0x130
[  966.852993]  ? __alloc_pages_nodemask+0x63e/0x760
[  966.857856]  ? perf_trace_lock_acquire+0xf5/0x580
[  966.862728]  memcg_kmem_charge_memcg+0x7c/0x130
[  966.867591]  ? memcg_kmem_put_cache+0xb0/0xb0
[  966.872095]  ? cache_grow_begin+0x59a/0x8c0
[  966.876432]  ? lockdep_hardirqs_on+0x415/0x5d0
[  966.881030]  ? trace_hardirqs_on+0x67/0x230
[  966.885382]  cache_grow_begin+0x25f/0x8c0
[  966.889552]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  966.895103]  ? __cpuset_node_allowed+0x136/0x540
[  966.899875]  fallback_alloc+0x1fd/0x2d0
[  966.903871]  ____cache_alloc_node+0x1be/0x1e0
[  966.908382]  kmem_cache_alloc+0x1f3/0x700
[  966.912539]  ? anon_vma_clone+0x320/0x480
[  966.916709]  anon_vma_fork+0xfc/0x4a0
[  966.920522]  ? dup_userfaultfd+0x15e/0x6c0
[  966.924769]  ? memcpy+0x46/0x50
[  966.928067]  copy_process.part.0+0x34dc/0x7970
[  966.932703]  ? __cleanup_sighand+0x70/0x70
[  966.936971]  ? kasan_check_read+0x11/0x20
[  966.941229]  _do_fork+0x257/0xfe0
[  966.944834]  ? fork_idle+0x1d0/0x1d0
[  966.948660]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  966.953426]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  966.958374]  ? do_syscall_64+0x26/0x610
[  966.962455]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  966.967840]  ? do_syscall_64+0x26/0x610
[  966.972009]  __x64_sys_clone+0xbf/0x150
[  966.976002]  do_syscall_64+0x103/0x610
[  966.979915]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  966.985114] RIP: 0033:0x2000008a
[  966.993890] Code: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 98 4a 2a e9 2c 18 96 4c 0f 05 <bf> 03 00 00 00 c4 a3 7b f0 c5 1d 41 e2 e9 c4 22 e9 aa bb 3c 00 00
[  967.012814] RSP: 002b:00000000000004f0 EFLAGS: 00000287 ORIG_RAX: 0000000000000038
[  967.020545] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 000000002000008a
[  967.027821] RDX: 9c3755da22921eda RSI: 00000000000004f0 RDI: 0000000000000003
[  967.035406] RBP: 00000000000000f8 R08: 0000000000000005 R09: 0000000000000006
[  967.042773] R10: 0000000000000007 R11: 0000000000000287 R12: 000000000000000b
[  967.050053] R13: 000000000000000c R14: 000000000000000d R15: 00000000ffffffff
[  967.073748] Task in /syz2 killed as a result of limit of /syz2
[  967.079910] memory: usage 307184kB, limit 307200kB, failcnt 17358
[  967.094282] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  967.101061] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  967.111093] Memory cgroup stats for /syz2: cache:92KB rss:4492KB rss_huge:4096KB shmem:0KB mapped_file:0KB dirty:132KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:4448KB inactive_file:0KB active_file:0KB unevictable:0KB
[  967.132000] protocol 88fb is buggy, dev hsr_slave_0
[  967.132056] protocol 88fb is buggy, dev hsr_slave_1
[  967.149345] Memory cgroup out of memory: Kill process 29028 (syz-executor.2) score 120 or sacrifice child
[  967.159614] Killed process 29034 (syz-executor.2) total-vm:72584kB, anon-rss:2216kB, file-rss:34816kB, shmem-rss:0kB
[  967.229935] syz-executor.2 invoked oom-killer: gfp_mask=0x6040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null), order=0, oom_score_adj=0
[  967.274332] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[  967.279769] CPU: 1 PID: 29589 Comm: syz-executor.2 Not tainted 4.19.37 #5
[  967.286703] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  967.296064] Call Trace:
[  967.298665]  dump_stack+0x172/0x1f0
[  967.302314]  dump_header+0x15e/0x929
[  967.306045]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[  967.311186]  ? ___ratelimit+0x60/0x595
[  967.315439]  ? do_raw_spin_unlock+0x57/0x270
[  967.319960]  oom_kill_process.cold+0x10/0x6f5
[  967.324490]  ? task_will_free_mem+0x139/0x6e0
[  967.329095]  out_of_memory+0x936/0x12d0
[  967.333356]  ? oom_killer_disable+0x280/0x280
[  967.337872]  ? find_held_lock+0x35/0x130
[  967.342272]  mem_cgroup_out_of_memory+0x1d2/0x240
[  967.347149]  ? memcg_event_wake+0x230/0x230
[  967.353015]  ? do_raw_spin_unlock+0x57/0x270
[  967.357452]  ? _raw_spin_unlock+0x2d/0x50
[  967.361712]  try_charge+0xd25/0x15b0
[  967.365575]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[  967.370458]  ? rcu_read_lock_sched_held+0x110/0x130
[  967.375488]  ? __alloc_pages_nodemask+0x63e/0x760
[  967.380345]  ? perf_trace_lock_acquire+0xf5/0x580
[  967.385233]  memcg_kmem_charge_memcg+0x7c/0x130
[  967.389927]  ? memcg_kmem_put_cache+0xb0/0xb0
[  967.394809]  ? cache_grow_begin+0x59a/0x8c0
[  967.404814]  ? lockdep_hardirqs_on+0x415/0x5d0
[  967.409508]  ? trace_hardirqs_on+0x67/0x230
[  967.413853]  cache_grow_begin+0x25f/0x8c0
[  967.418019]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  967.423575]  ? __cpuset_node_allowed+0x136/0x540
[  967.428351]  fallback_alloc+0x1fd/0x2d0
[  967.432344]  ____cache_alloc_node+0x1be/0x1e0
[  967.436863]  kmem_cache_alloc+0x1f3/0x700
[  967.441031]  ? call_rwsem_wake+0x1b/0x30
[  967.445200]  anon_vma_clone+0x238/0x480
[  967.449259]  anon_vma_fork+0x8f/0x4a0
[  967.453424]  ? dup_userfaultfd+0x15e/0x6c0
[  967.457767]  ? memcpy+0x46/0x50
[  967.461332]  copy_process.part.0+0x34dc/0x7970
[  967.466578]  ? __cleanup_sighand+0x70/0x70
[  967.471079]  ? kasan_check_read+0x11/0x20
[  967.475344]  _do_fork+0x257/0xfe0
[  967.479199]  ? fork_idle+0x1d0/0x1d0
[  967.483803]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  967.488606]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  967.493436]  ? do_syscall_64+0x26/0x610
[  967.497429]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  967.502815]  ? do_syscall_64+0x26/0x610
[  967.506859]  __x64_sys_clone+0xbf/0x150
[  967.510860]  do_syscall_64+0x103/0x610
[  967.514807]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  967.520027] RIP: 0033:0x2000008a
[  967.523405] Code: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 98 4a 2a e9 2c 18 96 4c 0f 05 <bf> 03 00 00 00 c4 a3 7b f0 c5 1d 41 e2 e9 c4 22 e9 aa bb 3c 00 00
[  967.542501] RSP: 002b:00000000000004f0 EFLAGS: 00000287 ORIG_RAX: 0000000000000038
[  967.550315] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 000000002000008a
[  967.557660] RDX: 9c3755da22921eda RSI: 00000000000004f0 RDI: 0000000000000003
[  967.564947] RBP: 00000000000000f8 R08: 0000000000000005 R09: 0000000000000006
[  967.572232] R10: 0000000000000007 R11: 0000000000000287 R12: 000000000000000b
[  967.579551] R13: 000000000000000c R14: 000000000000000d R15: 00000000ffffffff
[  967.587322] protocol 88fb is buggy, dev hsr_slave_0
[  967.592488] protocol 88fb is buggy, dev hsr_slave_1
[  967.616744] Task in /syz2 killed as a result of limit of /syz2
[  967.627802] memory: usage 307200kB, limit 307200kB, failcnt 17408
[  967.636841] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  967.648821] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  967.657654] Memory cgroup stats for /syz2: cache:92KB rss:4492KB rss_huge:4096KB shmem:0KB mapped_file:0KB dirty:132KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:4448KB inactive_file:0KB active_file:0KB unevictable:0KB
[  967.685582] Memory cgroup out of memory: Kill process 29028 (syz-executor.2) score 120 or sacrifice child
[  967.698142] Killed process 29052 (syz-executor.2) total-vm:72584kB, anon-rss:2216kB, file-rss:34816kB, shmem-rss:0kB
[  967.751227] syz-executor.2 invoked oom-killer: gfp_mask=0x6040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null), order=0, oom_score_adj=0
[  967.810763] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[  967.817603] CPU: 1 PID: 29083 Comm: syz-executor.2 Not tainted 4.19.37 #5
[  967.824548] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  967.833995] Call Trace:
[  967.836600]  dump_stack+0x172/0x1f0
[  967.840263]  dump_header+0x15e/0x929
[  967.843994]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[  967.849119]  ? ___ratelimit+0x60/0x595
[  967.853109]  ? do_raw_spin_unlock+0x57/0x270
[  967.857547]  oom_kill_process.cold+0x10/0x6f5
[  967.862168]  ? task_will_free_mem+0x139/0x6e0
[  967.866689]  out_of_memory+0x936/0x12d0
[  967.870785]  ? oom_killer_disable+0x280/0x280
[  967.875300]  ? find_held_lock+0x35/0x130
[  967.879413]  mem_cgroup_out_of_memory+0x1d2/0x240
[  967.884283]  ? memcg_event_wake+0x230/0x230
[  967.888626]  ? do_raw_spin_unlock+0x57/0x270
[  967.893078]  ? _raw_spin_unlock+0x2d/0x50
[  967.897278]  try_charge+0xd25/0x15b0
[  967.901017]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[  967.905887]  ? rcu_read_lock_sched_held+0x110/0x130
[  967.911002]  ? __alloc_pages_nodemask+0x63e/0x760
[  967.915861]  ? perf_trace_lock_acquire+0xf5/0x580
[  967.920751]  memcg_kmem_charge_memcg+0x7c/0x130
[  967.925435]  ? memcg_kmem_put_cache+0xb0/0xb0
[  967.929943]  ? cache_grow_begin+0x59a/0x8c0
[  967.934291]  ? lockdep_hardirqs_on+0x415/0x5d0
[  967.938981]  ? trace_hardirqs_on+0x67/0x230
[  967.943321]  cache_grow_begin+0x25f/0x8c0
[  967.947490]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  967.953054]  ? __cpuset_node_allowed+0x136/0x540
[  967.957841]  fallback_alloc+0x1fd/0x2d0
[  967.961844]  ____cache_alloc_node+0x1be/0x1e0
[  967.966373]  kmem_cache_alloc+0x1f3/0x700
[  967.970534]  ? call_rwsem_wake+0x1b/0x30
[  967.974647]  anon_vma_clone+0x238/0x480
[  967.978649]  anon_vma_fork+0x8f/0x4a0
[  967.982466]  ? dup_userfaultfd+0x15e/0x6c0
[  967.986709]  ? memcpy+0x46/0x50
[  967.990006]  copy_process.part.0+0x34dc/0x7970
[  967.994722]  ? __cleanup_sighand+0x70/0x70
[  967.998984]  ? kasan_check_read+0x11/0x20
[  968.003169]  _do_fork+0x257/0xfe0
[  968.006651]  ? fork_idle+0x1d0/0x1d0
[  968.010416]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  968.015191]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  968.019962]  ? do_syscall_64+0x26/0x610
[  968.023955]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  968.029357]  ? do_syscall_64+0x26/0x610
[  968.033353]  __x64_sys_clone+0xbf/0x150
[  968.037346]  do_syscall_64+0x103/0x610
[  968.041260]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  968.046464] RIP: 0033:0x2000008a
[  968.049846] Code: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 98 4a 2a e9 2c 18 96 4c 0f 05 <bf> 03 00 00 00 c4 a3 7b f0 c5 1d 41 e2 e9 c4 22 e9 aa bb 3c 00 00
[  968.068769] RSP: 002b:00000000000004f0 EFLAGS: 00000287 ORIG_RAX: 0000000000000038
[  968.076499] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 000000002000008a
[  968.083785] RDX: 9c3755da22921eda RSI: 00000000000004f0 RDI: 0000000000000003
[  968.091156] RBP: 00000000000000f8 R08: 0000000000000005 R09: 0000000000000006
[  968.098525] R10: 0000000000000007 R11: 0000000000000287 R12: 000000000000000b
[  968.105808] R13: 000000000000000c R14: 000000000000000d R15: 00000000ffffffff
[  968.123660] Task in /syz2 killed as a result of limit of /syz2
[  968.129728] memory: usage 307200kB, limit 307200kB, failcnt 17436
[  968.145166] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  968.154668] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  968.160916] Memory cgroup stats for /syz2: cache:92KB rss:4492KB rss_huge:4096KB shmem:0KB mapped_file:0KB dirty:132KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:4448KB inactive_file:0KB active_file:0KB unevictable:0KB
[  968.188837] Memory cgroup out of memory: Kill process 29028 (syz-executor.2) score 120 or sacrifice child
[  968.199101] Killed process 29092 (syz-executor.2) total-vm:72584kB, anon-rss:2216kB, file-rss:34816kB, shmem-rss:0kB
[  968.230563] syz-executor.2 invoked oom-killer: gfp_mask=0x7080c0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), nodemask=(null), order=0, oom_score_adj=0
[  968.256533] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[  968.276741] CPU: 1 PID: 29083 Comm: syz-executor.2 Not tainted 4.19.37 #5
[  968.283703] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  968.293063] Call Trace:
[  968.295692]  dump_stack+0x172/0x1f0
[  968.299337]  dump_header+0x15e/0x929
[  968.303070]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[  968.308190]  ? ___ratelimit+0x60/0x595
[  968.312273]  ? do_raw_spin_unlock+0x57/0x270
[  968.316701]  oom_kill_process.cold+0x10/0x6f5
[  968.321240]  ? task_will_free_mem+0x139/0x6e0
[  968.325766]  ? find_held_lock+0x35/0x130
[  968.329857]  out_of_memory+0x936/0x12d0
[  968.333874]  ? lock_downgrade+0x810/0x810
[  968.338040]  ? oom_killer_disable+0x280/0x280
[  968.342546]  ? find_held_lock+0x35/0x130
[  968.346643]  mem_cgroup_out_of_memory+0x1d2/0x240
[  968.351500]  ? memcg_event_wake+0x230/0x230
[  968.355844]  ? do_raw_spin_unlock+0x57/0x270
[  968.360275]  ? _raw_spin_unlock+0x2d/0x50
[  968.364441]  try_charge+0xd25/0x15b0
[  968.368168]  ? find_held_lock+0x35/0x130
[  968.372262]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[  968.377122]  ? get_mem_cgroup_from_mm+0x10b/0x2b0
[  968.381979]  ? find_held_lock+0x35/0x130
[  968.386057]  ? get_mem_cgroup_from_mm+0x10b/0x2b0
[  968.390985]  memcg_kmem_charge_memcg+0x7c/0x130
[  968.395668]  ? memcg_kmem_put_cache+0xb0/0xb0
[  968.400182]  ? get_mem_cgroup_from_mm+0x128/0x2b0
[  968.405127]  memcg_kmem_charge+0x136/0x300
[  968.409380]  __alloc_pages_nodemask+0x3c6/0x760
[  968.414066]  ? debug_smp_processor_id+0x1c/0x20
[  968.418754]  ? __alloc_pages_slowpath+0x2870/0x2870
[  968.423794]  ? find_held_lock+0x35/0x130
[  968.427876]  ? copy_page_range+0x124f/0x1f90
[  968.432310]  ? __sanitizer_cov_trace_const_cmp2+0x18/0x20
[  968.437870]  alloc_pages_current+0x107/0x210
[  968.442296]  pte_alloc_one+0x1b/0x1a0
[  968.446115]  __pte_alloc+0x2a/0x360
[  968.449761]  copy_page_range+0x151f/0x1f90
[  968.454013]  ? debug_smp_processor_id+0x1c/0x20
[  968.458722]  ? pmd_alloc+0x180/0x180
[  968.462453]  ? __vma_link_rb+0x279/0x370
[  968.466544]  copy_process.part.0+0x5434/0x7970
[  968.471175]  ? __cleanup_sighand+0x70/0x70
[  968.475439]  ? kasan_check_read+0x11/0x20
[  968.479618]  _do_fork+0x257/0xfe0
[  968.485630]  ? fork_idle+0x1d0/0x1d0
[  968.489503]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  968.494283]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  968.499056]  ? do_syscall_64+0x26/0x610
[  968.503076]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  968.508459]  ? do_syscall_64+0x26/0x610
[  968.512453]  __x64_sys_clone+0xbf/0x150
[  968.516452]  do_syscall_64+0x103/0x610
[  968.520359]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  968.525564] RIP: 0033:0x2000008a
[  968.528945] Code: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 98 4a 2a e9 2c 18 96 4c 0f 05 <bf> 03 00 00 00 c4 a3 7b f0 c5 1d 41 e2 e9 c4 22 e9 aa bb 3c 00 00
[  968.547868] RSP: 002b:00000000000004f0 EFLAGS: 00000287 ORIG_RAX: 0000000000000038
[  968.555595] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 000000002000008a
[  968.562877] RDX: 9c3755da22921eda RSI: 00000000000004f0 RDI: 0000000000000003
[  968.570157] RBP: 00000000000000f8 R08: 0000000000000005 R09: 0000000000000006
[  968.577440] R10: 0000000000000007 R11: 0000000000000287 R12: 000000000000000b
[  968.584985] R13: 000000000000000c R14: 000000000000000d R15: 00000000ffffffff
[  968.602411] Task in /syz2 killed as a result of limit of /syz2
[  968.608461] memory: usage 307036kB, limit 307200kB, failcnt 17456
[  968.621576] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  968.628369] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  968.640566] Memory cgroup stats for /syz2: cache:92KB rss:4492KB rss_huge:4096KB shmem:0KB mapped_file:0KB dirty:132KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:4448KB inactive_file:0KB active_file:0KB unevictable:0KB
[  968.671666] Memory cgroup out of memory: Kill process 29028 (syz-executor.2) score 120 or sacrifice child
[  968.681674] Killed process 29119 (syz-executor.2) total-vm:72584kB, anon-rss:2216kB, file-rss:34816kB, shmem-rss:0kB
[  968.699312] oom_reaper: reaped process 29119 (syz-executor.2), now anon-rss:0kB, file-rss:34816kB, shmem-rss:0kB
[  968.744059] syz-executor.2 invoked oom-killer: gfp_mask=0x6040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null), order=0, oom_score_adj=0
[  968.779514] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[  968.788146] CPU: 1 PID: 29224 Comm: syz-executor.2 Not tainted 4.19.37 #5
[  968.795104] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  968.804496] Call Trace:
[  968.807108]  dump_stack+0x172/0x1f0
[  968.810855]  dump_header+0x15e/0x929
[  968.814593]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[  968.819718]  ? ___ratelimit+0x60/0x595
[  968.823623]  ? do_raw_spin_unlock+0x57/0x270
[  968.828051]  oom_kill_process.cold+0x10/0x6f5
[  968.832568]  ? task_will_free_mem+0x139/0x6e0
[  968.837090]  out_of_memory+0x936/0x12d0
[  968.841089]  ? oom_killer_disable+0x280/0x280
[  968.845602]  ? find_held_lock+0x35/0x130
[  968.849700]  mem_cgroup_out_of_memory+0x1d2/0x240
[  968.854598]  ? memcg_event_wake+0x230/0x230
[  968.858949]  ? do_raw_spin_unlock+0x57/0x270
[  968.863558]  ? _raw_spin_unlock+0x2d/0x50
[  968.867752]  try_charge+0xd25/0x15b0
[  968.871502]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[  968.876374]  ? rcu_read_lock_sched_held+0x110/0x130
[  968.881408]  ? __alloc_pages_nodemask+0x63e/0x760
[  968.886296]  ? perf_trace_lock_acquire+0xf5/0x580
[  968.891191]  memcg_kmem_charge_memcg+0x7c/0x130
[  968.895899]  ? memcg_kmem_put_cache+0xb0/0xb0
[  968.900407]  ? cache_grow_begin+0x59a/0x8c0
[  968.904748]  ? lockdep_hardirqs_on+0x415/0x5d0
[  968.909387]  ? trace_hardirqs_on+0x67/0x230
[  968.913778]  cache_grow_begin+0x25f/0x8c0
[  968.918051]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  968.923623]  ? __cpuset_node_allowed+0x136/0x540
[  968.928395]  fallback_alloc+0x1fd/0x2d0
[  968.932394]  ____cache_alloc_node+0x1be/0x1e0
[  968.936914]  kmem_cache_alloc+0x1f3/0x700
[  968.941080]  ? call_rwsem_wake+0x1b/0x30
[  968.945162]  anon_vma_clone+0x238/0x480
[  968.949256]  anon_vma_fork+0x8f/0x4a0
[  968.953072]  ? dup_userfaultfd+0x15e/0x6c0
[  968.957317]  ? memcpy+0x46/0x50
[  968.960622]  copy_process.part.0+0x34dc/0x7970
[  968.965270]  ? __cleanup_sighand+0x70/0x70
[  968.969539]  ? kasan_check_read+0x11/0x20
[  968.973733]  _do_fork+0x257/0xfe0
[  968.977210]  ? fork_idle+0x1d0/0x1d0
[  968.981047]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  968.985921]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  968.990691]  ? do_syscall_64+0x26/0x610
[  968.994684]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  969.000061]  ? do_syscall_64+0x26/0x610
[  969.004053]  __x64_sys_clone+0xbf/0x150
[  969.008045]  do_syscall_64+0x103/0x610
[  969.011973]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  969.017197] RIP: 0033:0x2000008a
[  969.020606] Code: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 98 4a 2a e9 2c 18 96 4c 0f 05 <bf> 03 00 00 00 c4 a3 7b f0 c5 1d 41 e2 e9 c4 22 e9 aa bb 3c 00 00
[  969.039640] RSP: 002b:00000000000004f0 EFLAGS: 00000287 ORIG_RAX: 0000000000000038
[  969.047456] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 000000002000008a
[  969.054847] RDX: 9c3755da22921eda RSI: 00000000000004f0 RDI: 0000000000000003
[  969.062229] RBP: 00000000000000f8 R08: 0000000000000005 R09: 0000000000000006
[  969.069538] R10: 0000000000000007 R11: 0000000000000287 R12: 000000000000000b
[  969.077174] R13: 000000000000000c R14: 000000000000000d R15: 00000000ffffffff
[  969.095302] Task in /syz2 killed as a result of limit of /syz2
[  969.101359] memory: usage 307200kB, limit 307200kB, failcnt 17507
[  969.114984] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  969.125644] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  969.135687] Memory cgroup stats for /syz2: cache:92KB rss:4492KB rss_huge:4096KB shmem:0KB mapped_file:0KB dirty:132KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:4448KB inactive_file:0KB active_file:0KB unevictable:0KB
[  969.163557] Memory cgroup out of memory: Kill process 29028 (syz-executor.2) score 120 or sacrifice child
[  969.178229] Killed process 29359 (syz-executor.2) total-vm:72584kB, anon-rss:2216kB, file-rss:34816kB, shmem-rss:0kB
[  969.220739] syz-executor.2 invoked oom-killer: gfp_mask=0x6040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null), order=0, oom_score_adj=0
[  969.249819] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[  969.261629] CPU: 0 PID: 29129 Comm: syz-executor.2 Not tainted 4.19.37 #5
[  969.268584] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  969.277948] Call Trace:
[  969.280556]  dump_stack+0x172/0x1f0
[  969.284210]  dump_header+0x15e/0x929
[  969.287958]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[  969.293100]  ? ___ratelimit+0x60/0x595
[  969.297002]  ? do_raw_spin_unlock+0x57/0x270
[  969.301441]  oom_kill_process.cold+0x10/0x6f5
[  969.305957]  ? task_will_free_mem+0x139/0x6e0
[  969.310475]  out_of_memory+0x936/0x12d0
[  969.314484]  ? oom_killer_disable+0x280/0x280
[  969.319015]  ? find_held_lock+0x35/0x130
[  969.323102]  mem_cgroup_out_of_memory+0x1d2/0x240
[  969.327957]  ? memcg_event_wake+0x230/0x230
[  969.332310]  ? do_raw_spin_unlock+0x57/0x270
[  969.336791]  ? _raw_spin_unlock+0x2d/0x50
[  969.340962]  try_charge+0xd25/0x15b0
[  969.344700]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[  969.349577]  ? rcu_read_lock_sched_held+0x110/0x130
[  969.356138]  ? __alloc_pages_nodemask+0x63e/0x760
[  969.360997]  ? perf_trace_lock_acquire+0xf5/0x580
[  969.365865]  memcg_kmem_charge_memcg+0x7c/0x130
[  969.370562]  ? memcg_kmem_put_cache+0xb0/0xb0
[  969.375210]  ? cache_grow_begin+0x59a/0x8c0
[  969.379560]  ? lockdep_hardirqs_on+0x415/0x5d0
[  969.384163]  ? trace_hardirqs_on+0x67/0x230
[  969.388755]  cache_grow_begin+0x25f/0x8c0
[  969.392944]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  969.399654]  ? __cpuset_node_allowed+0x136/0x540
[  969.404631]  fallback_alloc+0x1fd/0x2d0
[  969.409095]  ____cache_alloc_node+0x1be/0x1e0
[  969.413620]  kmem_cache_alloc+0x1f3/0x700
[  969.417785]  ? call_rwsem_wake+0x1b/0x30
[  969.422045]  anon_vma_clone+0x238/0x480
[  969.426041]  anon_vma_fork+0x8f/0x4a0
[  969.429857]  ? dup_userfaultfd+0x15e/0x6c0
[  969.434284]  ? memcpy+0x46/0x50
[  969.437609]  copy_process.part.0+0x34dc/0x7970
[  969.442325]  ? __cleanup_sighand+0x70/0x70
[  969.446604]  ? kasan_check_read+0x11/0x20
[  969.450779]  _do_fork+0x257/0xfe0
[  969.454267]  ? fork_idle+0x1d0/0x1d0
[  969.458104]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  969.463310]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  969.468091]  ? do_syscall_64+0x26/0x610
[  969.472085]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  969.477477]  ? do_syscall_64+0x26/0x610
[  969.481506]  __x64_sys_clone+0xbf/0x150
[  969.485511]  do_syscall_64+0x103/0x610
[  969.489430]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  969.494643] RIP: 0033:0x2000008a
[  969.498047] Code: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 98 4a 2a e9 2c 18 96 4c 0f 05 <bf> 03 00 00 00 c4 a3 7b f0 c5 1d 41 e2 e9 c4 22 e9 aa bb 3c 00 00
[  969.517084] RSP: 002b:00000000000004f0 EFLAGS: 00000287 ORIG_RAX: 0000000000000038
[  969.524818] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 000000002000008a
[  969.532374] RDX: 9c3755da22921eda RSI: 00000000000004f0 RDI: 0000000000000003
[  969.539678] RBP: 00000000000000f8 R08: 0000000000000005 R09: 0000000000000006
[  969.547087] R10: 0000000000000007 R11: 0000000000000287 R12: 000000000000000b
[  969.554382] R13: 000000000000000c R14: 000000000000000d R15: 00000000ffffffff
[  969.565068] Task in /syz2 killed as a result of limit of /syz2
[  969.583682] memory: usage 307184kB, limit 307200kB, failcnt 17532
[  969.590048] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  969.597324] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  969.604005] Memory cgroup stats for /syz2: cache:92KB rss:4492KB rss_huge:4096KB shmem:0KB mapped_file:0KB dirty:132KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:4448KB inactive_file:0KB active_file:0KB unevictable:0KB
[  969.627505] Memory cgroup out of memory: Kill process 29028 (syz-executor.2) score 120 or sacrifice child
[  969.637908] Killed process 29419 (syz-executor.2) total-vm:72584kB, anon-rss:2216kB, file-rss:34816kB, shmem-rss:0kB
[  969.688401] syz-executor.2 invoked oom-killer: gfp_mask=0x6040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null), order=0, oom_score_adj=0
[  969.700604] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[  969.712665] CPU: 1 PID: 29332 Comm: syz-executor.2 Not tainted 4.19.37 #5
[  969.719651] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  969.729331] Call Trace:
[  969.731941]  dump_stack+0x172/0x1f0
[  969.735668]  dump_header+0x15e/0x929
[  969.739407]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[  969.744536]  ? ___ratelimit+0x60/0x595
[  969.748439]  ? do_raw_spin_unlock+0x57/0x270
[  969.752873]  oom_kill_process.cold+0x10/0x6f5
[  969.757585]  ? task_will_free_mem+0x139/0x6e0
[  969.762194]  out_of_memory+0x936/0x12d0
[  969.766225]  ? oom_killer_disable+0x280/0x280
[  969.770852]  ? find_held_lock+0x35/0x130
[  969.774975]  mem_cgroup_out_of_memory+0x1d2/0x240
[  969.779856]  ? memcg_event_wake+0x230/0x230
[  969.784578]  ? do_raw_spin_unlock+0x57/0x270
[  969.789023]  ? _raw_spin_unlock+0x2d/0x50
[  969.793259]  try_charge+0xd25/0x15b0
[  969.797011]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[  969.801895]  ? rcu_read_lock_sched_held+0x110/0x130
[  969.807041]  ? __alloc_pages_nodemask+0x63e/0x760
[  969.812292]  ? perf_trace_lock_acquire+0xf5/0x580
[  969.817170]  memcg_kmem_charge_memcg+0x7c/0x130
[  969.821866]  ? memcg_kmem_put_cache+0xb0/0xb0
[  969.826379]  ? cache_grow_begin+0x59a/0x8c0
[  969.830716]  ? lockdep_hardirqs_on+0x415/0x5d0
[  969.835340]  ? trace_hardirqs_on+0x67/0x230
[  969.839686]  cache_grow_begin+0x25f/0x8c0
[  969.843878]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  969.849438]  ? __cpuset_node_allowed+0x136/0x540
[  969.854212]  fallback_alloc+0x1fd/0x2d0
[  969.858301]  ____cache_alloc_node+0x1be/0x1e0
[  969.862826]  kmem_cache_alloc+0x1f3/0x700
[  969.866996]  ? call_rwsem_wake+0x1b/0x30
[  969.871103]  anon_vma_clone+0x238/0x480
[  969.875211]  anon_vma_fork+0x8f/0x4a0
[  969.879059]  ? dup_userfaultfd+0x15e/0x6c0
[  969.883576]  ? memcpy+0x46/0x50
[  969.886885]  copy_process.part.0+0x34dc/0x7970
[  969.891530]  ? __cleanup_sighand+0x70/0x70
[  969.895825]  ? kasan_check_read+0x11/0x20
[  969.900107]  _do_fork+0x257/0xfe0
[  969.903582]  ? fork_idle+0x1d0/0x1d0
[  969.907347]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  969.912295]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  969.917068]  ? do_syscall_64+0x26/0x610
[  969.921068]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  969.926539]  ? do_syscall_64+0x26/0x610
[  969.930619]  __x64_sys_clone+0xbf/0x150
[  969.934614]  do_syscall_64+0x103/0x610
[  969.938535]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  969.943781] RIP: 0033:0x2000008a
[  969.947160] Code: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 98 4a 2a e9 2c 18 96 4c 0f 05 <bf> 03 00 00 00 c4 a3 7b f0 c5 1d 41 e2 e9 c4 22 e9 aa bb 3c 00 00
[  969.966358] RSP: 002b:00000000000004f0 EFLAGS: 00000287 ORIG_RAX: 0000000000000038
[  969.974094] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 000000002000008a
[  969.981380] RDX: 9c3755da22921eda RSI: 00000000000004f0 RDI: 0000000000000003
[  969.988789] RBP: 00000000000000f8 R08: 0000000000000005 R09: 0000000000000006
[  969.996075] R10: 0000000000000007 R11: 0000000000000287 R12: 000000000000000b
[  970.003391] R13: 000000000000000c R14: 000000000000000d R15: 00000000ffffffff
[  970.019102] Task in /syz2 killed as a result of limit of /syz2
[  970.025686] memory: usage 307200kB, limit 307200kB, failcnt 17574
[  970.039099] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  970.046452] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  970.059680] Memory cgroup stats for /syz2: cache:92KB rss:4492KB rss_huge:4096KB shmem:0KB mapped_file:0KB dirty:132KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:4448KB inactive_file:0KB active_file:0KB unevictable:0KB
[  970.087875] Memory cgroup out of memory: Kill process 29028 (syz-executor.2) score 120 or sacrifice child
[  970.098599] Killed process 29028 (syz-executor.2) total-vm:72584kB, anon-rss:2216kB, file-rss:34816kB, shmem-rss:0kB
[  970.162783] Memory cgroup out of memory: Kill process 29033 (syz-executor.2) score 120 or sacrifice child
[  970.191724] Killed process 29047 (syz-executor.2) total-vm:72584kB, anon-rss:2216kB, file-rss:34816kB, shmem-rss:0kB
[  970.239556] Memory cgroup out of memory: Kill process 29033 (syz-executor.2) score 120 or sacrifice child
[  970.262929] Killed process 29061 (syz-executor.2) total-vm:72584kB, anon-rss:2216kB, file-rss:34816kB, shmem-rss:0kB
[  970.327434] oom_kill_process: 2 callbacks suppressed
[  970.327455] syz-executor.2 invoked oom-killer: gfp_mask=0x7080c0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), nodemask=(null), order=3, oom_score_adj=0
[  970.363530] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[  970.369107] CPU: 0 PID: 29367 Comm: syz-executor.2 Not tainted 4.19.37 #5
[  970.376052] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  970.385687] Call Trace:
[  970.388305]  dump_stack+0x172/0x1f0
[  970.392140]  dump_header+0x15e/0x929
[  970.395885]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[  970.401015]  ? ___ratelimit+0x60/0x595
[  970.405020]  oom_kill_process.cold+0x10/0x6f5
[  970.409546]  ? task_will_free_mem+0x139/0x6e0
[  970.414092]  out_of_memory+0x936/0x12d0
[  970.418114]  ? oom_killer_disable+0x280/0x280
[  970.422627]  ? find_held_lock+0x35/0x130
[  970.426723]  mem_cgroup_out_of_memory+0x1d2/0x240
[  970.431592]  ? memcg_event_wake+0x230/0x230
[  970.435957]  ? do_raw_spin_unlock+0x57/0x270
[  970.440391]  ? _raw_spin_unlock+0x2d/0x50
[  970.444564]  try_charge+0xd25/0x15b0
[  970.448334]  ? find_held_lock+0x35/0x130
[  970.452450]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[  970.457318]  ? get_mem_cgroup_from_mm+0x10b/0x2b0
[  970.462287]  ? find_held_lock+0x35/0x130
[  970.466812]  ? get_mem_cgroup_from_mm+0x10b/0x2b0
[  970.471690]  memcg_kmem_charge_memcg+0x7c/0x130
[  970.476388]  ? memcg_kmem_put_cache+0xb0/0xb0
[  970.480928]  ? get_mem_cgroup_from_mm+0x128/0x2b0
[  970.488243]  memcg_kmem_charge+0x136/0x300
[  970.492530]  __alloc_pages_nodemask+0x3c6/0x760
[  970.497322]  ? __alloc_pages_slowpath+0x2870/0x2870
[  970.502668]  ? lockdep_hardirqs_on+0x415/0x5d0
[  970.507372]  ? trace_hardirqs_on+0x67/0x230
[  970.511717]  ? kasan_check_read+0x11/0x20
[  970.515890]  copy_process.part.0+0x3e0/0x7970
[  970.520405]  ? __do_page_fault+0x484/0xe90
[  970.524671]  ? mark_held_locks+0x100/0x100
[  970.528932]  ? debug_smp_processor_id+0x1c/0x20
[  970.533618]  ? perf_trace_lock_acquire+0xf5/0x580
[  970.538597]  ? perf_trace_lock_acquire+0xf5/0x580
[  970.543506]  ? __cleanup_sighand+0x70/0x70
[  970.548041]  ? kasan_check_read+0x11/0x20
[  970.552246]  _do_fork+0x257/0xfe0
[  970.555738]  ? fork_idle+0x1d0/0x1d0
[  970.559485]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  970.564273]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  970.569064]  ? do_syscall_64+0x26/0x610
[  970.573055]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  970.578439]  ? do_syscall_64+0x26/0x610
[  970.582437]  __x64_sys_clone+0xbf/0x150
[  970.586441]  do_syscall_64+0x103/0x610
[  970.590444]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  970.595739] RIP: 0033:0x2000008a
[  970.599122] Code: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 98 4a 2a e9 2c 18 96 4c 0f 05 <bf> 03 00 00 00 c4 a3 7b f0 c5 1d 41 e2 e9 c4 22 e9 aa bb 3c 00 00
[  970.618307] RSP: 002b:00000000000004f0 EFLAGS: 00000287 ORIG_RAX: 0000000000000038
[  970.626316] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 000000002000008a
[  970.633618] RDX: 9c3755da22921eda RSI: 00000000000004f0 RDI: 0000000000000003
[  970.640997] RBP: 00000000000000f8 R08: 0000000000000005 R09: 0000000000000006
[  970.648395] R10: 0000000000000007 R11: 0000000000000287 R12: 000000000000000b
[  970.655946] R13: 000000000000000c R14: 000000000000000d R15: 00000000ffffffff
[  970.665263] Task in /syz2 killed as a result of limit of /syz2
[  970.671309] memory: usage 307200kB, limit 307200kB, failcnt 17666
[  970.691007] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  970.700607] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  970.714365] Memory cgroup stats for /syz2: cache:92KB rss:4492KB rss_huge:4096KB shmem:0KB mapped_file:0KB dirty:132KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:4448KB inactive_file:0KB active_file:0KB unevictable:0KB
[  970.741811] Memory cgroup out of memory: Kill process 29033 (syz-executor.2) score 120 or sacrifice child
[  970.759376] Killed process 29115 (syz-executor.2) total-vm:72584kB, anon-rss:2216kB, file-rss:34816kB, shmem-rss:0kB
[  970.827669] syz-executor.2 invoked oom-killer: gfp_mask=0x7080c0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), nodemask=(null), order=3, oom_score_adj=0
[  970.875310] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[  970.880759] CPU: 1 PID: 29367 Comm: syz-executor.2 Not tainted 4.19.37 #5
[  970.887691] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  970.897054] Call Trace:
[  970.899658]  dump_stack+0x172/0x1f0
[  970.903306]  dump_header+0x15e/0x929
[  970.907044]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[  970.912164]  ? ___ratelimit+0x60/0x595
[  970.916149]  ? do_raw_spin_unlock+0x57/0x270
[  970.920578]  oom_kill_process.cold+0x10/0x6f5
[  970.925096]  ? task_will_free_mem+0x139/0x6e0
[  970.929611]  ? find_held_lock+0x35/0x130
[  970.933693]  out_of_memory+0x936/0x12d0
[  970.937695]  ? lock_downgrade+0x810/0x810
[  970.941877]  ? oom_killer_disable+0x280/0x280
[  970.946415]  ? find_held_lock+0x35/0x130
[  970.950506]  mem_cgroup_out_of_memory+0x1d2/0x240
[  970.955364]  ? memcg_event_wake+0x230/0x230
[  970.959707]  ? do_raw_spin_unlock+0x57/0x270
[  970.964160]  ? _raw_spin_unlock+0x2d/0x50
[  970.968517]  try_charge+0xd25/0x15b0
[  970.972269]  ? find_held_lock+0x35/0x130
[  970.976453]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[  970.981317]  ? get_mem_cgroup_from_mm+0x10b/0x2b0
[  970.986284]  ? find_held_lock+0x35/0x130
[  970.990367]  ? get_mem_cgroup_from_mm+0x10b/0x2b0
[  970.995275]  memcg_kmem_charge_memcg+0x7c/0x130
[  970.999976]  ? memcg_kmem_put_cache+0xb0/0xb0
[  971.004495]  ? get_mem_cgroup_from_mm+0x128/0x2b0
[  971.009364]  memcg_kmem_charge+0x136/0x300
[  971.013658]  __alloc_pages_nodemask+0x3c6/0x760
[  971.018351]  ? __alloc_pages_slowpath+0x2870/0x2870
[  971.023429]  ? lockdep_hardirqs_on+0x415/0x5d0
[  971.028039]  ? trace_hardirqs_on+0x67/0x230
[  971.032383]  ? kasan_check_read+0x11/0x20
[  971.036654]  copy_process.part.0+0x3e0/0x7970
[  971.041169]  ? __do_page_fault+0x484/0xe90
[  971.045446]  ? mark_held_locks+0x100/0x100
[  971.049715]  ? debug_smp_processor_id+0x1c/0x20
[  971.054460]  ? perf_trace_lock_acquire+0xf5/0x580
[  971.059406]  ? perf_trace_lock_acquire+0xf5/0x580
[  971.064290]  ? __cleanup_sighand+0x70/0x70
[  971.068650]  ? kasan_check_read+0x11/0x20
[  971.072926]  _do_fork+0x257/0xfe0
[  971.076403]  ? fork_idle+0x1d0/0x1d0
[  971.080141]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  971.084911]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  971.089681]  ? do_syscall_64+0x26/0x610
[  971.093669]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  971.099073]  ? do_syscall_64+0x26/0x610
[  971.103070]  __x64_sys_clone+0xbf/0x150
[  971.107065]  do_syscall_64+0x103/0x610
[  971.110972]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  971.116186] RIP: 0033:0x2000008a
[  971.119576] Code: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 98 4a 2a e9 2c 18 96 4c 0f 05 <bf> 03 00 00 00 c4 a3 7b f0 c5 1d 41 e2 e9 c4 22 e9 aa bb 3c 00 00
[  971.138587] RSP: 002b:00000000000004f0 EFLAGS: 00000287 ORIG_RAX: 0000000000000038
[  971.146322] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 000000002000008a
[  971.153629] RDX: 9c3755da22921eda RSI: 00000000000004f0 RDI: 0000000000000003
[  971.160940] RBP: 00000000000000f8 R08: 0000000000000005 R09: 0000000000000006
[  971.168258] R10: 0000000000000007 R11: 0000000000000287 R12: 000000000000000b
[  971.175547] R13: 000000000000000c R14: 000000000000000d R15: 00000000ffffffff
[  971.192681] Task in /syz2 killed as a result of limit of /syz2
[  971.198732] memory: usage 307200kB, limit 307200kB, failcnt 17755
[  971.212172] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  971.218963] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  971.231396] Memory cgroup stats for /syz2: cache:92KB rss:4492KB rss_huge:4096KB shmem:0KB mapped_file:0KB dirty:132KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:4448KB inactive_file:0KB active_file:0KB unevictable:0KB
[  971.260555] Memory cgroup out of memory: Kill process 29033 (syz-executor.2) score 120 or sacrifice child
[  971.270921] Killed process 29180 (syz-executor.2) total-vm:72584kB, anon-rss:2216kB, file-rss:34816kB, shmem-rss:0kB
[  971.291623] net_ratelimit: 16 callbacks suppressed
[  971.291632] protocol 88fb is buggy, dev hsr_slave_0
[  971.301838] protocol 88fb is buggy, dev hsr_slave_1
[  971.325601] syz-executor.2 invoked oom-killer: gfp_mask=0x6040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null), order=1, oom_score_adj=0
[  971.352259] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[  971.357682] CPU: 1 PID: 29472 Comm: syz-executor.2 Not tainted 4.19.37 #5
[  971.364879] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  971.374335] Call Trace:
[  971.376946]  dump_stack+0x172/0x1f0
[  971.380598]  dump_header+0x15e/0x929
[  971.384332]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[  971.389472]  ? ___ratelimit+0x60/0x595
[  971.393379]  ? do_raw_spin_unlock+0x57/0x270
[  971.398158]  oom_kill_process.cold+0x10/0x6f5
[  971.406078]  ? task_will_free_mem+0x139/0x6e0
[  971.410608]  out_of_memory+0x936/0x12d0
[  971.414700]  ? oom_killer_disable+0x280/0x280
[  971.419220]  ? find_held_lock+0x35/0x130
[  971.423328]  mem_cgroup_out_of_memory+0x1d2/0x240
[  971.428188]  ? memcg_event_wake+0x230/0x230
[  971.432616]  ? do_raw_spin_unlock+0x57/0x270
[  971.437042]  ? _raw_spin_unlock+0x2d/0x50
[  971.441208]  try_charge+0xd25/0x15b0
[  971.444949]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[  971.449843]  ? rcu_read_lock_sched_held+0x110/0x130
[  971.454904]  ? __alloc_pages_nodemask+0x63e/0x760
[  971.459765]  ? perf_trace_lock_acquire+0xf5/0x580
[  971.464634]  memcg_kmem_charge_memcg+0x7c/0x130
[  971.469320]  ? memcg_kmem_put_cache+0xb0/0xb0
[  971.473840]  ? cache_grow_begin+0x59a/0x8c0
[  971.478203]  ? lockdep_hardirqs_on+0x415/0x5d0
[  971.483341]  ? trace_hardirqs_on+0x67/0x230
[  971.487704]  cache_grow_begin+0x25f/0x8c0
[  971.491880]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  971.497439]  ? __cpuset_node_allowed+0x136/0x540
[  971.502219]  fallback_alloc+0x1fd/0x2d0
[  971.506233]  ____cache_alloc_node+0x1be/0x1e0
[  971.510855]  kmem_cache_alloc_node+0xe3/0x710
[  971.515481]  ? lockdep_hardirqs_on+0x415/0x5d0
[  971.520081]  ? trace_hardirqs_on+0x67/0x230
[  971.524427]  copy_process.part.0+0x1cd5/0x7970
[  971.529024]  ? __do_page_fault+0x484/0xe90
[  971.533294]  ? mark_held_locks+0x100/0x100
[  971.537548]  ? debug_smp_processor_id+0x1c/0x20
[  971.542234]  ? perf_trace_lock_acquire+0xf5/0x580
[  971.547109]  ? perf_trace_lock_acquire+0xf5/0x580
[  971.551979]  ? __cleanup_sighand+0x70/0x70
[  971.556247]  ? kasan_check_read+0x11/0x20
[  971.560433]  _do_fork+0x257/0xfe0
[  971.563910]  ? fork_idle+0x1d0/0x1d0
[  971.567675]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  971.572449]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  971.577233]  ? do_syscall_64+0x26/0x610
[  971.581236]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  971.586712]  ? do_syscall_64+0x26/0x610
[  971.590706]  __x64_sys_clone+0xbf/0x150
[  971.594706]  do_syscall_64+0x103/0x610
[  971.598614]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  971.603817] RIP: 0033:0x2000008a
[  971.607207] Code: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 98 4a 2a e9 2c 18 96 4c 0f 05 <bf> 03 00 00 00 c4 a3 7b f0 c5 1d 41 e2 e9 c4 22 e9 aa bb 3c 00 00
[  971.626139] RSP: 002b:00000000000004f0 EFLAGS: 00000287 ORIG_RAX: 0000000000000038
[  971.633874] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 000000002000008a
[  971.641154] RDX: 9c3755da22921eda RSI: 00000000000004f0 RDI: 0000000000000003
[  971.648454] RBP: 00000000000000f8 R08: 0000000000000005 R09: 0000000000000006
[  971.655767] R10: 0000000000000007 R11: 0000000000000287 R12: 000000000000000b
[  971.663057] R13: 000000000000000c R14: 000000000000000d R15: 00000000ffffffff
[  971.681168] Task in /syz2 killed as a result of limit of /syz2
[  971.687725] memory: usage 307136kB, limit 307200kB, failcnt 17781
[  971.694301] protocol 88fb is buggy, dev hsr_slave_0
[  971.694374] protocol 88fb is buggy, dev hsr_slave_1
[  971.705157] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  971.712354] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  971.718513] Memory cgroup stats for /syz2: cache:92KB rss:4492KB rss_huge:4096KB shmem:0KB mapped_file:0KB dirty:132KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:4448KB inactive_file:0KB active_file:0KB unevictable:0KB
[  971.739687] Memory cgroup out of memory: Kill process 29033 (syz-executor.2) score 120 or sacrifice child
[  971.750014] Killed process 29380 (syz-executor.2) total-vm:72584kB, anon-rss:2216kB, file-rss:34816kB, shmem-rss:0kB
[  971.813007] syz-executor.2 invoked oom-killer: gfp_mask=0x7080c0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), nodemask=(null), order=3, oom_score_adj=0
[  971.832667] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[  971.838116] CPU: 0 PID: 29456 Comm: syz-executor.2 Not tainted 4.19.37 #5
[  971.845222] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  971.854602] Call Trace:
[  971.857214]  dump_stack+0x172/0x1f0
[  971.860875]  dump_header+0x15e/0x929
[  971.864704]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[  971.869835]  ? ___ratelimit+0x60/0x595
[  971.873745]  ? do_raw_spin_unlock+0x57/0x270
[  971.878183]  oom_kill_process.cold+0x10/0x6f5
[  971.882699]  ? task_will_free_mem+0x139/0x6e0
[  971.887222]  out_of_memory+0x936/0x12d0
[  971.891231]  ? oom_killer_disable+0x280/0x280
[  971.895754]  ? find_held_lock+0x35/0x130
[  971.899933]  mem_cgroup_out_of_memory+0x1d2/0x240
[  971.904878]  ? memcg_event_wake+0x230/0x230
[  971.909228]  ? do_raw_spin_unlock+0x57/0x270
[  971.913667]  ? _raw_spin_unlock+0x2d/0x50
[  971.917843]  try_charge+0xd25/0x15b0
[  971.921575]  ? find_held_lock+0x35/0x130
[  971.925661]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[  971.930542]  ? get_mem_cgroup_from_mm+0x10b/0x2b0
[  971.935403]  ? find_held_lock+0x35/0x130
[  971.939483]  ? get_mem_cgroup_from_mm+0x10b/0x2b0
[  971.944361]  memcg_kmem_charge_memcg+0x7c/0x130
[  971.949070]  ? memcg_kmem_put_cache+0xb0/0xb0
[  971.953672]  ? get_mem_cgroup_from_mm+0x128/0x2b0
[  971.958537]  memcg_kmem_charge+0x136/0x300
[  971.962795]  __alloc_pages_nodemask+0x3c6/0x760
[  971.967597]  ? __alloc_pages_slowpath+0x2870/0x2870
[  971.972643]  ? lockdep_hardirqs_on+0x415/0x5d0
[  971.977246]  ? trace_hardirqs_on+0x67/0x230
[  971.981593]  ? kasan_check_read+0x11/0x20
[  971.985862]  copy_process.part.0+0x3e0/0x7970
[  971.990373]  ? __do_page_fault+0x484/0xe90
[  971.994636]  ? mark_held_locks+0x100/0x100
[  971.998893]  ? debug_smp_processor_id+0x1c/0x20
[  972.003582]  ? perf_trace_lock_acquire+0xf5/0x580
[  972.008452]  ? perf_trace_lock_acquire+0xf5/0x580
[  972.013337]  ? __cleanup_sighand+0x70/0x70
[  972.017602]  ? kasan_check_read+0x11/0x20
[  972.021773]  _do_fork+0x257/0xfe0
[  972.025247]  ? fork_idle+0x1d0/0x1d0
[  972.029001]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  972.033775]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  972.038546]  ? do_syscall_64+0x26/0x610
[  972.042536]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  972.048003]  ? do_syscall_64+0x26/0x610
[  972.052007]  __x64_sys_clone+0xbf/0x150
[  972.056090]  do_syscall_64+0x103/0x610
[  972.060191]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  972.065401] RIP: 0033:0x2000008a
[  972.068782] Code: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 98 4a 2a e9 2c 18 96 4c 0f 05 <bf> 03 00 00 00 c4 a3 7b f0 c5 1d 41 e2 e9 c4 22 e9 aa bb 3c 00 00
[  972.087928] RSP: 002b:00000000000004f0 EFLAGS: 00000287 ORIG_RAX: 0000000000000038
[  972.095668] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 000000002000008a
[  972.102993] RDX: 9c3755da22921eda RSI: 00000000000004f0 RDI: 0000000000000003
[  972.110293] RBP: 00000000000000f8 R08: 0000000000000005 R09: 0000000000000006
[  972.117698] R10: 0000000000000007 R11: 0000000000000287 R12: 000000000000000b
[  972.124989] R13: 000000000000000c R14: 000000000000000d R15: 00000000ffffffff
[  972.141881] Task in /syz2 killed as a result of limit of /syz2
[  972.147978] memory: usage 307200kB, limit 307200kB, failcnt 17833
[  972.167652] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  972.175059] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  972.181236] Memory cgroup stats for /syz2: cache:92KB rss:4492KB rss_huge:4096KB shmem:0KB mapped_file:0KB dirty:132KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:4448KB inactive_file:0KB active_file:0KB unevictable:0KB
[  972.209123] Memory cgroup out of memory: Kill process 29033 (syz-executor.2) score 120 or sacrifice child
[  972.219995] Killed process 29407 (syz-executor.2) total-vm:72584kB, anon-rss:2216kB, file-rss:34816kB, shmem-rss:0kB
[  972.271070] syz-executor.2 invoked oom-killer: gfp_mask=0x6040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null), order=0, oom_score_adj=0
[  972.284134] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[  972.289689] CPU: 1 PID: 29317 Comm: syz-executor.2 Not tainted 4.19.37 #5
[  972.296627] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  972.306004] Call Trace:
[  972.308644]  dump_stack+0x172/0x1f0
[  972.312310]  dump_header+0x15e/0x929
[  972.316049]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[  972.321350]  ? ___ratelimit+0x60/0x595
[  972.325264]  ? do_raw_spin_unlock+0x57/0x270
[  972.329726]  oom_kill_process.cold+0x10/0x6f5
[  972.334344]  ? task_will_free_mem+0x139/0x6e0
[  972.338869]  out_of_memory+0x936/0x12d0
[  972.342875]  ? oom_killer_disable+0x280/0x280
[  972.347419]  ? find_held_lock+0x35/0x130
[  972.351527]  mem_cgroup_out_of_memory+0x1d2/0x240
[  972.356413]  ? memcg_event_wake+0x230/0x230
[  972.360796]  ? do_raw_spin_unlock+0x57/0x270
[  972.365235]  ? _raw_spin_unlock+0x2d/0x50
[  972.369426]  try_charge+0xd25/0x15b0
[  972.373174]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[  972.378070]  ? rcu_read_lock_sched_held+0x110/0x130
[  972.383131]  ? __alloc_pages_nodemask+0x63e/0x760
[  972.387996]  ? perf_trace_lock_acquire+0xf5/0x580
[  972.392877]  memcg_kmem_charge_memcg+0x7c/0x130
[  972.397596]  ? memcg_kmem_put_cache+0xb0/0xb0
[  972.402120]  ? cache_grow_begin+0x59a/0x8c0
[  972.406511]  ? lockdep_hardirqs_on+0x415/0x5d0
[  972.411117]  ? trace_hardirqs_on+0x67/0x230
[  972.415462]  cache_grow_begin+0x25f/0x8c0
[  972.419634]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  972.425195]  ? __cpuset_node_allowed+0x136/0x540
[  972.429992]  fallback_alloc+0x1fd/0x2d0
[  972.433992]  ____cache_alloc_node+0x1be/0x1e0
[  972.439817]  kmem_cache_alloc+0x1f3/0x700
[  972.443992]  ? call_rwsem_wake+0x1b/0x30
[  972.448091]  anon_vma_clone+0x238/0x480
[  972.452130]  anon_vma_fork+0x8f/0x4a0
[  972.455957]  ? dup_userfaultfd+0x15e/0x6c0
[  972.460238]  ? memcpy+0x46/0x50
[  972.463559]  copy_process.part.0+0x34dc/0x7970
[  972.468222]  ? __cleanup_sighand+0x70/0x70
[  972.472499]  ? kasan_check_read+0x11/0x20
[  972.476680]  _do_fork+0x257/0xfe0
[  972.480157]  ? fork_idle+0x1d0/0x1d0
[  972.483906]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  972.488678]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  972.493457]  ? do_syscall_64+0x26/0x610
[  972.497546]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  972.502930]  ? do_syscall_64+0x26/0x610
[  972.507040]  __x64_sys_clone+0xbf/0x150
[  972.511043]  do_syscall_64+0x103/0x610
[  972.514959]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  972.520279] RIP: 0033:0x2000008a
[  972.523670] Code: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 98 4a 2a e9 2c 18 96 4c 0f 05 <bf> 03 00 00 00 c4 a3 7b f0 c5 1d 41 e2 e9 c4 22 e9 aa bb 3c 00 00
[  972.542799] RSP: 002b:00000000000004f0 EFLAGS: 00000287 ORIG_RAX: 0000000000000038
[  972.550708] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 000000002000008a
[  972.558126] RDX: 9c3755da22921eda RSI: 00000000000004f0 RDI: 0000000000000003
[  972.565413] RBP: 00000000000000f8 R08: 0000000000000005 R09: 0000000000000006
[  972.572875] R10: 0000000000000007 R11: 0000000000000287 R12: 000000000000000b
[  972.580188] R13: 000000000000000c R14: 000000000000000d R15: 00000000ffffffff
[  972.587800] protocol 88fb is buggy, dev hsr_slave_0
[  972.592977] protocol 88fb is buggy, dev hsr_slave_1
[  972.598164] protocol 88fb is buggy, dev hsr_slave_0
[  972.603300] protocol 88fb is buggy, dev hsr_slave_1
[  972.611242] Task in /syz2 killed as a result of limit of /syz2
[  972.617391] memory: usage 307196kB, limit 307200kB, failcnt 17874
[  972.630501] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  972.637366] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  972.650670] Memory cgroup stats for /syz2: cache:92KB rss:4492KB rss_huge:4096KB shmem:0KB mapped_file:0KB dirty:132KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:4448KB inactive_file:0KB active_file:0KB unevictable:0KB
[  972.678905] Memory cgroup out of memory: Kill process 29033 (syz-executor.2) score 120 or sacrifice child
[  972.689018] Killed process 29815 (syz-executor.2) total-vm:72584kB, anon-rss:2216kB, file-rss:34816kB, shmem-rss:0kB
[  972.747645] syz-executor.2 invoked oom-killer: gfp_mask=0x6040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null), order=0, oom_score_adj=0
[  972.769862] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[  972.776842] CPU: 1 PID: 29278 Comm: syz-executor.2 Not tainted 4.19.37 #5
[  972.784056] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  972.793764] Call Trace:
[  972.796391]  dump_stack+0x172/0x1f0
[  972.800129]  dump_header+0x15e/0x929
[  972.804012]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[  972.809394]  ? ___ratelimit+0x60/0x595
[  972.813512]  ? do_raw_spin_unlock+0x57/0x270
[  972.817945]  oom_kill_process.cold+0x10/0x6f5
[  972.822468]  ? task_will_free_mem+0x139/0x6e0
[  972.827140]  out_of_memory+0x936/0x12d0
[  972.831228]  ? oom_killer_disable+0x280/0x280
[  972.835765]  ? find_held_lock+0x35/0x130
[  972.839865]  mem_cgroup_out_of_memory+0x1d2/0x240
[  972.844722]  ? memcg_event_wake+0x230/0x230
[  972.849154]  ? do_raw_spin_unlock+0x57/0x270
[  972.853701]  ? _raw_spin_unlock+0x2d/0x50
[  972.857872]  try_charge+0xd25/0x15b0
[  972.861609]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[  972.866690]  ? rcu_read_lock_sched_held+0x110/0x130
[  972.871834]  ? __alloc_pages_nodemask+0x63e/0x760
[  972.876783]  ? perf_trace_lock_acquire+0xf5/0x580
[  972.881668]  memcg_kmem_charge_memcg+0x7c/0x130
[  972.886357]  ? memcg_kmem_put_cache+0xb0/0xb0
[  972.890867]  ? cache_grow_begin+0x59a/0x8c0
[  972.891659] protocol 88fb is buggy, dev hsr_slave_0
[  972.895229]  ? lockdep_hardirqs_on+0x415/0x5d0
[  972.900315] protocol 88fb is buggy, dev hsr_slave_1
[  972.905184]  ? trace_hardirqs_on+0x67/0x230
[  972.905202]  cache_grow_begin+0x25f/0x8c0
[  972.905220]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  972.905235]  ? __cpuset_node_allowed+0x136/0x540
[  972.905262]  fallback_alloc+0x1fd/0x2d0
[  972.905284]  ____cache_alloc_node+0x1be/0x1e0
[  972.937676]  kmem_cache_alloc+0x1f3/0x700
[  972.942021]  ? call_rwsem_wake+0x1b/0x30
[  972.946114]  anon_vma_clone+0x238/0x480
[  972.950110]  anon_vma_fork+0x8f/0x4a0
[  972.953928]  ? dup_userfaultfd+0x15e/0x6c0
[  972.958275]  ? memcpy+0x46/0x50
[  972.961580]  copy_process.part.0+0x34dc/0x7970
[  972.966209]  ? __cleanup_sighand+0x70/0x70
[  972.970471]  ? kasan_check_read+0x11/0x20
[  972.974845]  _do_fork+0x257/0xfe0
[  972.978325]  ? fork_idle+0x1d0/0x1d0
[  972.982090]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  972.986867]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  972.991641]  ? do_syscall_64+0x26/0x610
[  972.995634]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  973.001017]  ? do_syscall_64+0x26/0x610
[  973.005016]  __x64_sys_clone+0xbf/0x150
[  973.009033]  do_syscall_64+0x103/0x610
[  973.012940]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  973.018148] RIP: 0033:0x2000008a
[  973.021521] Code: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 98 4a 2a e9 2c 18 96 4c 0f 05 <bf> 03 00 00 00 c4 a3 7b f0 c5 1d 41 e2 e9 c4 22 e9 aa bb 3c 00 00
[  973.040522] RSP: 002b:00000000000004f0 EFLAGS: 00000287 ORIG_RAX: 0000000000000038
[  973.048273] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 000000002000008a
[  973.055657] RDX: 9c3755da22921eda RSI: 00000000000004f0 RDI: 0000000000000003
[  973.062954] RBP: 00000000000000f8 R08: 0000000000000005 R09: 0000000000000006
[  973.070331] R10: 0000000000000007 R11: 0000000000000287 R12: 000000000000000b
[  973.077706] R13: 000000000000000c R14: 000000000000000d R15: 00000000ffffffff
[  973.096745] Task in /syz2 killed as a result of limit of /syz2
[  973.105291] memory: usage 307196kB, limit 307200kB, failcnt 17900
[  973.116058] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  973.125337] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  973.136180] Memory cgroup stats for /syz2: cache:92KB rss:4492KB rss_huge:4096KB shmem:0KB mapped_file:0KB dirty:132KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:4448KB inactive_file:0KB active_file:0KB unevictable:0KB
[  973.163890] Memory cgroup out of memory: Kill process 29033 (syz-executor.2) score 120 or sacrifice child
[  973.178442] Killed process 29033 (syz-executor.2) total-vm:72584kB, anon-rss:2216kB, file-rss:34816kB, shmem-rss:0kB
[  973.198413] oom_reaper: reaped process 29033 (syz-executor.2), now anon-rss:0kB, file-rss:34816kB, shmem-rss:0kB
[  973.229284] syz-executor.2 invoked oom-killer: gfp_mask=0x6040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null), order=1, oom_score_adj=0
[  973.288450] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[  973.294400] CPU: 0 PID: 29765 Comm: syz-executor.2 Not tainted 4.19.37 #5
[  973.301347] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  973.310713] Call Trace:
[  973.313335]  dump_stack+0x172/0x1f0
[  973.317019]  dump_header+0x15e/0x929
[  973.320901]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[  973.326148]  ? ___ratelimit+0x60/0x595
[  973.330068]  ? do_raw_spin_unlock+0x57/0x270
[  973.334687]  oom_kill_process.cold+0x10/0x6f5
[  973.339223]  ? task_will_free_mem+0x139/0x6e0
[  973.343764]  out_of_memory+0x936/0x12d0
[  973.347767]  ? oom_killer_disable+0x280/0x280
[  973.354826]  ? find_held_lock+0x35/0x130
[  973.358923]  mem_cgroup_out_of_memory+0x1d2/0x240
[  973.363801]  ? memcg_event_wake+0x230/0x230
[  973.368159]  ? do_raw_spin_unlock+0x57/0x270
[  973.372593]  ? _raw_spin_unlock+0x2d/0x50
[  973.376795]  try_charge+0xd25/0x15b0
[  973.380587]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[  973.385540]  ? rcu_read_lock_sched_held+0x110/0x130
[  973.390572]  ? __alloc_pages_nodemask+0x63e/0x760
[  973.396405]  ? perf_trace_lock_acquire+0xf5/0x580
[  973.404886]  memcg_kmem_charge_memcg+0x7c/0x130
[  973.417575]  ? memcg_kmem_put_cache+0xb0/0xb0
[  973.422085]  ? cache_grow_begin+0x59a/0x8c0
[  973.426427]  ? lockdep_hardirqs_on+0x415/0x5d0
[  973.431046]  ? trace_hardirqs_on+0x67/0x230
[  973.435483]  cache_grow_begin+0x25f/0x8c0
[  973.439651]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  973.445203]  ? __cpuset_node_allowed+0x136/0x540
[  973.449972]  fallback_alloc+0x1fd/0x2d0
[  973.453968]  ____cache_alloc_node+0x1be/0x1e0
[  973.458487]  kmem_cache_alloc_node+0xe3/0x710
[  973.463042]  ? lockdep_hardirqs_on+0x415/0x5d0
[  973.467733]  ? trace_hardirqs_on+0x67/0x230
[  973.472084]  copy_process.part.0+0x1cd5/0x7970
[  973.477033]  ? __do_page_fault+0x484/0xe90
[  973.481308]  ? mark_held_locks+0x100/0x100
[  973.485655]  ? debug_smp_processor_id+0x1c/0x20
[  973.490356]  ? perf_trace_lock_acquire+0xf5/0x580
[  973.495230]  ? perf_trace_lock_acquire+0xf5/0x580
[  973.500223]  ? __cleanup_sighand+0x70/0x70
[  973.504499]  ? kasan_check_read+0x11/0x20
[  973.508686]  _do_fork+0x257/0xfe0
[  973.512158]  ? fork_idle+0x1d0/0x1d0
[  973.515895]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  973.520667]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  973.525436]  ? do_syscall_64+0x26/0x610
[  973.529427]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  973.534852]  ? do_syscall_64+0x26/0x610
[  973.538845]  __x64_sys_clone+0xbf/0x150
[  973.542836]  do_syscall_64+0x103/0x610
[  973.546740]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  973.552289] RIP: 0033:0x2000008a
[  973.555674] Code: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 98 4a 2a e9 2c 18 96 4c 0f 05 <bf> 03 00 00 00 c4 a3 7b f0 c5 1d 41 e2 e9 c4 22 e9 aa bb 3c 00 00
[  973.574591] RSP: 002b:00000000000004f0 EFLAGS: 00000287 ORIG_RAX: 0000000000000038
[  973.582591] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 000000002000008a
[  973.590145] RDX: 9c3755da22921eda RSI: 00000000000004f0 RDI: 0000000000000003
[  973.597524] RBP: 00000000000000f8 R08: 0000000000000005 R09: 0000000000000006
[  973.604815] R10: 0000000000000007 R11: 0000000000000287 R12: 000000000000000b
[  973.612107] R13: 000000000000000c R14: 000000000000000d R15: 00000000ffffffff
[  973.623227] Task in /syz2 killed as a result of limit of /syz2
[  973.629289] memory: usage 307008kB, limit 307200kB, failcnt 18043
[  973.636030] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  973.643173] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  973.649346] Memory cgroup stats for /syz2: cache:92KB rss:4492KB rss_huge:4096KB shmem:0KB mapped_file:0KB dirty:132KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:4448KB inactive_file:0KB active_file:0KB unevictable:0KB
[  973.670614] Memory cgroup out of memory: Kill process 29037 (syz-executor.2) score 120 or sacrifice child
[  973.680841] Killed process 29038 (syz-executor.2) total-vm:72584kB, anon-rss:2216kB, file-rss:34816kB, shmem-rss:0kB
[  973.718958] syz-executor.2 invoked oom-killer: gfp_mask=0x7080c0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), nodemask=(null), order=0, oom_score_adj=0
[  973.752604] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[  973.758043] CPU: 1 PID: 29368 Comm: syz-executor.2 Not tainted 4.19.37 #5
[  973.764973] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  973.774362] Call Trace:
[  973.776972]  dump_stack+0x172/0x1f0
[  973.780800]  dump_header+0x15e/0x929
[  973.784620]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[  973.789745]  ? ___ratelimit+0x60/0x595
[  973.793643]  ? do_raw_spin_unlock+0x57/0x270
[  973.798079]  oom_kill_process.cold+0x10/0x6f5
[  973.802599]  ? task_will_free_mem+0x139/0x6e0
[  973.807305]  out_of_memory+0x936/0x12d0
[  973.811309]  ? oom_killer_disable+0x280/0x280
[  973.815994]  ? find_held_lock+0x35/0x130
[  973.820269]  mem_cgroup_out_of_memory+0x1d2/0x240
[  973.825131]  ? memcg_event_wake+0x230/0x230
[  973.829478]  ? do_raw_spin_unlock+0x57/0x270
[  973.833907]  ? _raw_spin_unlock+0x2d/0x50
[  973.838077]  try_charge+0xd25/0x15b0
[  973.841800]  ? find_held_lock+0x35/0x130
[  973.845893]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[  973.850755]  ? get_mem_cgroup_from_mm+0x10b/0x2b0
[  973.855614]  ? find_held_lock+0x35/0x130
[  973.859690]  ? get_mem_cgroup_from_mm+0x10b/0x2b0
[  973.864565]  memcg_kmem_charge_memcg+0x7c/0x130
[  973.869284]  ? memcg_kmem_put_cache+0xb0/0xb0
[  973.873803]  ? get_mem_cgroup_from_mm+0x128/0x2b0
[  973.878675]  memcg_kmem_charge+0x136/0x300
[  973.882930]  __alloc_pages_nodemask+0x3c6/0x760
[  973.887614]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  973.892394]  ? __alloc_pages_slowpath+0x2870/0x2870
[  973.897441]  ? find_held_lock+0x35/0x130
[  973.901520]  ? copy_page_range+0x124f/0x1f90
[  973.906121]  ? __sanitizer_cov_trace_const_cmp2+0x18/0x20
[  973.911679]  alloc_pages_current+0x107/0x210
[  973.916130]  pte_alloc_one+0x1b/0x1a0
[  973.919948]  __pte_alloc+0x2a/0x360
[  973.923770]  copy_page_range+0x151f/0x1f90
[  973.928025]  ? debug_smp_processor_id+0x1c/0x20
[  973.932940]  ? pmd_alloc+0x180/0x180
[  973.936767]  ? __vma_link_rb+0x279/0x370
[  973.940850]  copy_process.part.0+0x5434/0x7970
[  973.945575]  ? __cleanup_sighand+0x70/0x70
[  973.949865]  ? kasan_check_read+0x11/0x20
[  973.954121]  _do_fork+0x257/0xfe0
[  973.957591]  ? fork_idle+0x1d0/0x1d0
[  973.961426]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  973.966196]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  973.971171]  ? do_syscall_64+0x26/0x610
[  973.975165]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  973.980546]  ? do_syscall_64+0x26/0x610
[  973.984551]  __x64_sys_clone+0xbf/0x150
[  973.988549]  do_syscall_64+0x103/0x610
[  973.992463]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  973.997670] RIP: 0033:0x2000008a
[  974.001050] Code: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 98 4a 2a e9 2c 18 96 4c 0f 05 <bf> 03 00 00 00 c4 a3 7b f0 c5 1d 41 e2 e9 c4 22 e9 aa bb 3c 00 00
[  974.020002] RSP: 002b:00000000000004f0 EFLAGS: 00000287 ORIG_RAX: 0000000000000038
[  974.027755] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 000000002000008a
[  974.035055] RDX: 9c3755da22921eda RSI: 00000000000004f0 RDI: 0000000000000003
[  974.042341] RBP: 00000000000000f8 R08: 0000000000000005 R09: 0000000000000006
[  974.049629] R10: 0000000000000007 R11: 0000000000000287 R12: 000000000000000b
[  974.056937] R13: 000000000000000c R14: 000000000000000d R15: 00000000ffffffff
[  974.078750] Task in /syz2 killed as a result of limit of /syz2
[  974.089824] memory: usage 307200kB, limit 307200kB, failcnt 18079
[  974.106717] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  974.115121] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  974.121290] Memory cgroup stats for /syz2: cache:92KB rss:4492KB rss_huge:4096KB shmem:0KB mapped_file:0KB dirty:132KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:4448KB inactive_file:0KB active_file:0KB unevictable:0KB
[  974.149408] Memory cgroup out of memory: Kill process 29037 (syz-executor.2) score 120 or sacrifice child
[  974.159731] Killed process 29054 (syz-executor.2) total-vm:72584kB, anon-rss:2216kB, file-rss:34816kB, shmem-rss:0kB
[  974.186928] syz-executor.2 invoked oom-killer: gfp_mask=0x6040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null), order=0, oom_score_adj=0
[  974.218286] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[  974.224417] CPU: 1 PID: 29140 Comm: syz-executor.2 Not tainted 4.19.37 #5
[  974.231377] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  974.240752] Call Trace:
[  974.243368]  dump_stack+0x172/0x1f0
[  974.247025]  dump_header+0x15e/0x929
[  974.250759]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[  974.255891]  ? ___ratelimit+0x60/0x595
[  974.259813]  ? do_raw_spin_unlock+0x57/0x270
[  974.264259]  oom_kill_process.cold+0x10/0x6f5
[  974.268780]  ? task_will_free_mem+0x139/0x6e0
[  974.273309]  out_of_memory+0x936/0x12d0
[  974.277398]  ? oom_killer_disable+0x280/0x280
[  974.281921]  ? find_held_lock+0x35/0x130
[  974.286019]  mem_cgroup_out_of_memory+0x1d2/0x240
[  974.290878]  ? memcg_event_wake+0x230/0x230
[  974.295229]  ? do_raw_spin_unlock+0x57/0x270
[  974.299662]  ? _raw_spin_unlock+0x2d/0x50
[  974.303838]  try_charge+0xd25/0x15b0
[  974.307575]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[  974.312444]  ? rcu_read_lock_sched_held+0x110/0x130
[  974.317592]  ? __alloc_pages_nodemask+0x63e/0x760
[  974.322454]  ? perf_trace_lock_acquire+0xf5/0x580
[  974.327330]  memcg_kmem_charge_memcg+0x7c/0x130
[  974.332018]  ? memcg_kmem_put_cache+0xb0/0xb0
[  974.336529]  ? cache_grow_begin+0x59a/0x8c0
[  974.340871]  ? lockdep_hardirqs_on+0x415/0x5d0
[  974.345467]  ? trace_hardirqs_on+0x67/0x230
[  974.349825]  cache_grow_begin+0x25f/0x8c0
[  974.354113]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  974.359764]  ? __cpuset_node_allowed+0x136/0x540
[  974.364658]  fallback_alloc+0x1fd/0x2d0
[  974.368660]  ____cache_alloc_node+0x1be/0x1e0
[  974.373179]  kmem_cache_alloc+0x1f3/0x700
[  974.377371]  ? call_rwsem_wake+0x1b/0x30
[  974.381466]  anon_vma_clone+0x238/0x480
[  974.385470]  anon_vma_fork+0x8f/0x4a0
[  974.389292]  ? dup_userfaultfd+0x15e/0x6c0
[  974.393541]  ? memcpy+0x46/0x50
[  974.396848]  copy_process.part.0+0x34dc/0x7970
[  974.401580]  ? __cleanup_sighand+0x70/0x70
[  974.405859]  ? kasan_check_read+0x11/0x20
[  974.410063]  _do_fork+0x257/0xfe0
[  974.413538]  ? fork_idle+0x1d0/0x1d0
[  974.417294]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  974.422090]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  974.426865]  ? do_syscall_64+0x26/0x610
[  974.430857]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  974.436235]  ? do_syscall_64+0x26/0x610
[  974.440249]  __x64_sys_clone+0xbf/0x150
[  974.444262]  do_syscall_64+0x103/0x610
[  974.448283]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  974.453492] RIP: 0033:0x2000008a
[  974.456886] Code: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 98 4a 2a e9 2c 18 96 4c 0f 05 <bf> 03 00 00 00 c4 a3 7b f0 c5 1d 41 e2 e9 c4 22 e9 aa bb 3c 00 00
[  974.475807] RSP: 002b:00000000000004f0 EFLAGS: 00000287 ORIG_RAX: 0000000000000038
[  974.485060] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 000000002000008a
[  974.492353] RDX: 9c3755da22921eda RSI: 00000000000004f0 RDI: 0000000000000003
[  974.499665] RBP: 00000000000000f8 R08: 0000000000000005 R09: 0000000000000006
[  974.506956] R10: 0000000000000007 R11: 0000000000000287 R12: 000000000000000b
[  974.514262] R13: 000000000000000c R14: 000000000000000d R15: 00000000ffffffff
[  974.531952] Task in /syz2 killed as a result of limit of /syz2
[  974.538040] memory: usage 307200kB, limit 307200kB, failcnt 18098
[  974.551758] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  974.558679] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  974.573065] Memory cgroup stats for /syz2: cache:92KB rss:4492KB rss_huge:4096KB shmem:0KB mapped_file:0KB dirty:132KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:4448KB inactive_file:0KB active_file:0KB unevictable:0KB
[  974.600794] Memory cgroup out of memory: Kill process 29037 (syz-executor.2) score 120 or sacrifice child
[  974.611397] Killed process 29093 (syz-executor.2) total-vm:72584kB, anon-rss:2216kB, file-rss:34816kB, shmem-rss:0kB
[  974.670561] syz-executor.2 invoked oom-killer: gfp_mask=0x6040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null), order=0, oom_score_adj=0
[  974.710595] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[  974.717551] CPU: 1 PID: 29169 Comm: syz-executor.2 Not tainted 4.19.37 #5
[  974.724505] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  974.733872] Call Trace:
[  974.736509]  dump_stack+0x172/0x1f0
[  974.740160]  dump_header+0x15e/0x929
[  974.743894]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[  974.749014]  ? ___ratelimit+0x60/0x595
[  974.752914]  ? do_raw_spin_unlock+0x57/0x270
[  974.757365]  oom_kill_process.cold+0x10/0x6f5
[  974.761999]  ? task_will_free_mem+0x139/0x6e0
[  974.766521]  out_of_memory+0x936/0x12d0
[  974.770543]  ? oom_killer_disable+0x280/0x280
[  974.775073]  ? find_held_lock+0x35/0x130
[  974.779182]  mem_cgroup_out_of_memory+0x1d2/0x240
[  974.784052]  ? memcg_event_wake+0x230/0x230
[  974.788507]  ? do_raw_spin_unlock+0x57/0x270
[  974.792935]  ? _raw_spin_unlock+0x2d/0x50
[  974.797101]  try_charge+0xd25/0x15b0
[  974.800888]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[  974.805762]  ? rcu_read_lock_sched_held+0x110/0x130
[  974.810915]  ? __alloc_pages_nodemask+0x63e/0x760
[  974.815776]  ? perf_trace_lock_acquire+0xf5/0x580
[  974.820656]  memcg_kmem_charge_memcg+0x7c/0x130
[  974.825342]  ? memcg_kmem_put_cache+0xb0/0xb0
[  974.829856]  ? cache_grow_begin+0x59a/0x8c0
[  974.834200]  ? lockdep_hardirqs_on+0x415/0x5d0
[  974.838802]  ? trace_hardirqs_on+0x67/0x230
[  974.843150]  cache_grow_begin+0x25f/0x8c0
[  974.847317]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  974.852874]  ? __cpuset_node_allowed+0x136/0x540
[  974.857651]  fallback_alloc+0x1fd/0x2d0
[  974.861647]  ____cache_alloc_node+0x1be/0x1e0
[  974.866160]  kmem_cache_alloc+0x1f3/0x700
[  974.870324]  ? call_rwsem_wake+0x1b/0x30
[  974.874408]  anon_vma_clone+0x238/0x480
[  974.878524]  anon_vma_fork+0x8f/0x4a0
[  974.882361]  ? dup_userfaultfd+0x15e/0x6c0
[  974.886627]  ? memcpy+0x46/0x50
[  974.889929]  copy_process.part.0+0x34dc/0x7970
[  974.894584]  ? __cleanup_sighand+0x70/0x70
[  974.898852]  ? kasan_check_read+0x11/0x20
[  974.903140]  _do_fork+0x257/0xfe0
[  974.906682]  ? fork_idle+0x1d0/0x1d0
[  974.910426]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  974.915294]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  974.920070]  ? do_syscall_64+0x26/0x610
[  974.924064]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  974.929445]  ? do_syscall_64+0x26/0x610
[  974.933443]  __x64_sys_clone+0xbf/0x150
[  974.937442]  do_syscall_64+0x103/0x610
[  974.941569]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  974.946772] RIP: 0033:0x2000008a
[  974.950176] Code: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 98 4a 2a e9 2c 18 96 4c 0f 05 <bf> 03 00 00 00 c4 a3 7b f0 c5 1d 41 e2 e9 c4 22 e9 aa bb 3c 00 00
[  974.971181] RSP: 002b:00000000000004f0 EFLAGS: 00000287 ORIG_RAX: 0000000000000038
[  974.978923] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 000000002000008a
[  974.986210] RDX: 9c3755da22921eda RSI: 00000000000004f0 RDI: 0000000000000003
[  974.993502] RBP: 00000000000000f8 R08: 0000000000000005 R09: 0000000000000006
[  975.000798] R10: 0000000000000007 R11: 0000000000000287 R12: 000000000000000b
[  975.008087] R13: 000000000000000c R14: 000000000000000d R15: 00000000ffffffff
[  975.018658] Task in /syz2 killed as a result of limit of /syz2
[  975.025081] memory: usage 307200kB, limit 307200kB, failcnt 18121
[  975.031336] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  975.038715] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  975.045208] Memory cgroup stats for /syz2: cache:92KB rss:4492KB rss_huge:4096KB shmem:0KB mapped_file:0KB dirty:132KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:4448KB inactive_file:0KB active_file:0KB unevictable:0KB
[  975.066391] Memory cgroup out of memory: Kill process 29037 (syz-executor.2) score 120 or sacrifice child
[  975.076629] Killed process 29139 (syz-executor.2) total-vm:72584kB, anon-rss:2216kB, file-rss:34816kB, shmem-rss:0kB
[  975.117268] Memory cgroup out of memory: Kill process 29037 (syz-executor.2) score 120 or sacrifice child
[  975.127849] Killed process 29209 (syz-executor.2) total-vm:72584kB, anon-rss:2216kB, file-rss:34816kB, shmem-rss:0kB
[  975.163621] Memory cgroup out of memory: Kill process 29037 (syz-executor.2) score 120 or sacrifice child
[  975.180229] Killed process 29399 (syz-executor.2) total-vm:72584kB, anon-rss:2216kB, file-rss:34816kB, shmem-rss:0kB
[  975.192501] oom_reaper: reaped process 29399 (syz-executor.2), now anon-rss:0kB, file-rss:34816kB, shmem-rss:0kB
[  975.215865] Memory cgroup out of memory: Kill process 29037 (syz-executor.2) score 120 or sacrifice child
[  975.235009] Killed process 29442 (syz-executor.2) total-vm:72584kB, anon-rss:2216kB, file-rss:34816kB, shmem-rss:0kB
[  975.293925] Memory cgroup out of memory: Kill process 29037 (syz-executor.2) score 120 or sacrifice child
[  975.308099] Killed process 29824 (syz-executor.2) total-vm:72584kB, anon-rss:2216kB, file-rss:34816kB, shmem-rss:0kB
[  975.379274] oom_kill_process: 4 callbacks suppressed
[  975.379294] syz-executor.2 invoked oom-killer: gfp_mask=0x6040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null), order=0, oom_score_adj=0
[  975.402438] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[  975.407964] CPU: 1 PID: 29215 Comm: syz-executor.2 Not tainted 4.19.37 #5
[  975.414904] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  975.424365] Call Trace:
[  975.426970]  dump_stack+0x172/0x1f0
[  975.430631]  dump_header+0x15e/0x929
[  975.434371]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[  975.439497]  ? ___ratelimit+0x60/0x595
[  975.443442]  oom_kill_process.cold+0x10/0x6f5
[  975.447954]  ? task_will_free_mem+0x139/0x6e0
[  975.452473]  out_of_memory+0x936/0x12d0
[  975.456472]  ? oom_killer_disable+0x280/0x280
[  975.460982]  ? find_held_lock+0x35/0x130
[  975.465072]  mem_cgroup_out_of_memory+0x1d2/0x240
[  975.469929]  ? memcg_event_wake+0x230/0x230
[  975.474284]  ? do_raw_spin_unlock+0x57/0x270
[  975.478708]  ? _raw_spin_unlock+0x2d/0x50
[  975.482893]  try_charge+0xd25/0x15b0
[  975.486631]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[  975.491493]  ? rcu_read_lock_sched_held+0x110/0x130
[  975.496522]  ? __alloc_pages_nodemask+0x63e/0x760
[  975.501378]  ? perf_trace_lock_acquire+0xf5/0x580
[  975.506247]  memcg_kmem_charge_memcg+0x7c/0x130
[  975.510968]  ? memcg_kmem_put_cache+0xb0/0xb0
[  975.515477]  ? cache_grow_begin+0x59a/0x8c0
[  975.519815]  ? lockdep_hardirqs_on+0x415/0x5d0
[  975.524418]  ? trace_hardirqs_on+0x67/0x230
[  975.528755]  cache_grow_begin+0x25f/0x8c0
[  975.532940]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  975.538496]  ? __cpuset_node_allowed+0x136/0x540
[  975.543279]  fallback_alloc+0x1fd/0x2d0
[  975.547290]  ____cache_alloc_node+0x1be/0x1e0
[  975.551806]  kmem_cache_alloc+0x1f3/0x700
[  975.555976]  ? call_rwsem_wake+0x1b/0x30
[  975.560087]  anon_vma_clone+0x238/0x480
[  975.564089]  anon_vma_fork+0x8f/0x4a0
[  975.567900]  ? dup_userfaultfd+0x15e/0x6c0
[  975.572145]  ? memcpy+0x46/0x50
[  975.575530]  copy_process.part.0+0x34dc/0x7970
[  975.580164]  ? __cleanup_sighand+0x70/0x70
[  975.584433]  ? kasan_check_read+0x11/0x20
[  975.588623]  _do_fork+0x257/0xfe0
[  975.592096]  ? fork_idle+0x1d0/0x1d0
[  975.595839]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  975.600610]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  975.605382]  ? do_syscall_64+0x26/0x610
[  975.609366]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  975.614748]  ? do_syscall_64+0x26/0x610
[  975.618777]  __x64_sys_clone+0xbf/0x150
[  975.622773]  do_syscall_64+0x103/0x610
[  975.626683]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  975.631882] RIP: 0033:0x2000008a
[  975.635276] Code: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 98 4a 2a e9 2c 18 96 4c 0f 05 <bf> 03 00 00 00 c4 a3 7b f0 c5 1d 41 e2 e9 c4 22 e9 aa bb 3c 00 00
[  975.654201] RSP: 002b:00000000000004f0 EFLAGS: 00000287 ORIG_RAX: 0000000000000038
[  975.661949] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 000000002000008a
[  975.669236] RDX: 9c3755da22921eda RSI: 00000000000004f0 RDI: 0000000000000003
[  975.676528] RBP: 00000000000000f8 R08: 0000000000000005 R09: 0000000000000006
[  975.683810] R10: 0000000000000007 R11: 0000000000000287 R12: 000000000000000b
[  975.691096] R13: 000000000000000c R14: 000000000000000d R15: 00000000ffffffff
[  975.701420] Task in /syz2 killed as a result of limit of /syz2
[  975.707545] memory: usage 307196kB, limit 307200kB, failcnt 18225
[  975.714291] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  975.721063] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  975.727655] Memory cgroup stats for /syz2: cache:92KB rss:4492KB rss_huge:4096KB shmem:0KB mapped_file:0KB dirty:132KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:4448KB inactive_file:0KB active_file:0KB unevictable:0KB
[  975.748848] Memory cgroup out of memory: Kill process 29037 (syz-executor.2) score 120 or sacrifice child
[  975.759119] Killed process 29037 (syz-executor.2) total-vm:72584kB, anon-rss:2216kB, file-rss:34816kB, shmem-rss:0kB
[  975.794170] syz-executor.2 invoked oom-killer: gfp_mask=0x6040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null), order=0, oom_score_adj=0
[  975.818789] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[  975.828056] CPU: 0 PID: 29606 Comm: syz-executor.2 Not tainted 4.19.37 #5
[  975.835044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  975.844412] Call Trace:
[  975.847022]  dump_stack+0x172/0x1f0
[  975.850676]  dump_header+0x15e/0x929
[  975.854429]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[  975.859555]  ? ___ratelimit+0x60/0x595
[  975.863460]  ? do_raw_spin_unlock+0x57/0x270
[  975.867893]  oom_kill_process.cold+0x10/0x6f5
[  975.872414]  ? task_will_free_mem+0x139/0x6e0
[  975.876941]  out_of_memory+0x936/0x12d0
[  975.880949]  ? oom_killer_disable+0x280/0x280
[  975.885575]  ? find_held_lock+0x35/0x130
[  975.889673]  mem_cgroup_out_of_memory+0x1d2/0x240
[  975.894545]  ? memcg_event_wake+0x230/0x230
[  975.898898]  ? do_raw_spin_unlock+0x57/0x270
[  975.903416]  ? _raw_spin_unlock+0x2d/0x50
[  975.907599]  try_charge+0xd25/0x15b0
[  975.911354]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[  975.916230]  ? rcu_read_lock_sched_held+0x110/0x130
[  975.921281]  ? __alloc_pages_nodemask+0x63e/0x760
[  975.926144]  ? perf_trace_lock_acquire+0xf5/0x580
[  975.931043]  memcg_kmem_charge_memcg+0x7c/0x130
[  975.935736]  ? memcg_kmem_put_cache+0xb0/0xb0
[  975.940267]  ? cache_grow_begin+0x59a/0x8c0
[  975.944608]  ? lockdep_hardirqs_on+0x415/0x5d0
[  975.949209]  ? trace_hardirqs_on+0x67/0x230
[  975.953553]  cache_grow_begin+0x25f/0x8c0
[  975.957723]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  975.963287]  ? __cpuset_node_allowed+0x136/0x540
[  975.968098]  fallback_alloc+0x1fd/0x2d0
[  975.972111]  ____cache_alloc_node+0x1be/0x1e0
[  975.976629]  kmem_cache_alloc+0x1f3/0x700
[  975.980794]  ? call_rwsem_wake+0x1b/0x30
[  975.984884]  anon_vma_clone+0x238/0x480
[  975.988912]  anon_vma_fork+0x8f/0x4a0
[  975.993176]  ? dup_userfaultfd+0x15e/0x6c0
[  975.997426]  ? memcpy+0x46/0x50
[  976.000817]  copy_process.part.0+0x34dc/0x7970
[  976.005454]  ? __cleanup_sighand+0x70/0x70
[  976.009727]  ? kasan_check_read+0x11/0x20
[  976.013902]  _do_fork+0x257/0xfe0
[  976.017406]  ? fork_idle+0x1d0/0x1d0
[  976.021147]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  976.025920]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  976.030694]  ? do_syscall_64+0x26/0x610
[  976.034688]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  976.040069]  ? do_syscall_64+0x26/0x610
[  976.044072]  __x64_sys_clone+0xbf/0x150
[  976.048109]  do_syscall_64+0x103/0x610
[  976.052022]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  976.057225] RIP: 0033:0x2000008a
[  976.060616] Code: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 98 4a 2a e9 2c 18 96 4c 0f 05 <bf> 03 00 00 00 c4 a3 7b f0 c5 1d 41 e2 e9 c4 22 e9 aa bb 3c 00 00
[  976.079538] RSP: 002b:00000000000004f0 EFLAGS: 00000287 ORIG_RAX: 0000000000000038
[  976.087282] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 000000002000008a
[  976.094576] RDX: 9c3755da22921eda RSI: 00000000000004f0 RDI: 0000000000000003
[  976.101874] RBP: 00000000000000f8 R08: 0000000000000005 R09: 0000000000000006
[  976.109168] R10: 0000000000000007 R11: 0000000000000287 R12: 000000000000000b
[  976.116458] R13: 000000000000000c R14: 000000000000000d R15: 00000000ffffffff
[  976.132596] Task in /syz2 killed as a result of limit of /syz2
[  976.138682] memory: usage 307200kB, limit 307200kB, failcnt 18256
[  976.151974] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  976.158790] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  976.171050] Memory cgroup stats for /syz2: cache:92KB rss:4492KB rss_huge:4096KB shmem:0KB mapped_file:0KB dirty:132KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:4448KB inactive_file:0KB active_file:0KB unevictable:0KB
[  976.201918] Memory cgroup out of memory: Kill process 29045 (syz-executor.2) score 120 or sacrifice child
[  976.218021] Killed process 29084 (syz-executor.2) total-vm:72584kB, anon-rss:2216kB, file-rss:34816kB, shmem-rss:0kB
[  976.266451] syz-executor.2 invoked oom-killer: gfp_mask=0x6040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null), order=0, oom_score_adj=0
[  976.296412] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[  976.306950] CPU: 0 PID: 29567 Comm: syz-executor.2 Not tainted 4.19.37 #5
[  976.313909] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  976.323548] Call Trace:
[  976.326592]  dump_stack+0x172/0x1f0
[  976.336940]  dump_header+0x15e/0x929
[  976.341199]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[  976.346449]  ? ___ratelimit+0x60/0x595
[  976.350365]  ? do_raw_spin_unlock+0x57/0x270
[  976.354797]  oom_kill_process.cold+0x10/0x6f5
[  976.359497]  ? task_will_free_mem+0x139/0x6e0
[  976.364020]  out_of_memory+0x936/0x12d0
[  976.368116]  ? oom_killer_disable+0x280/0x280
[  976.372629]  ? find_held_lock+0x35/0x130
[  976.376718]  mem_cgroup_out_of_memory+0x1d2/0x240
[  976.381575]  ? memcg_event_wake+0x230/0x230
[  976.385951]  ? do_raw_spin_unlock+0x57/0x270
[  976.390408]  ? _raw_spin_unlock+0x2d/0x50
[  976.394609]  try_charge+0xd25/0x15b0
[  976.398359]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[  976.403226]  ? rcu_read_lock_sched_held+0x110/0x130
[  976.408276]  ? __alloc_pages_nodemask+0x63e/0x760
[  976.413140]  ? perf_trace_lock_acquire+0xf5/0x580
[  976.418020]  memcg_kmem_charge_memcg+0x7c/0x130
[  976.422745]  ? memcg_kmem_put_cache+0xb0/0xb0
[  976.427261]  ? cache_grow_begin+0x59a/0x8c0
[  976.431599]  ? lockdep_hardirqs_on+0x415/0x5d0
[  976.436295]  ? trace_hardirqs_on+0x67/0x230
[  976.440648]  cache_grow_begin+0x25f/0x8c0
[  976.444839]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  976.450401]  ? __cpuset_node_allowed+0x136/0x540
[  976.455850]  fallback_alloc+0x1fd/0x2d0
[  976.459849]  ____cache_alloc_node+0x1be/0x1e0
[  976.464372]  kmem_cache_alloc+0x1f3/0x700
[  976.468621]  ? call_rwsem_wake+0x1b/0x30
[  976.472704]  anon_vma_clone+0x238/0x480
[  976.476705]  anon_vma_fork+0x8f/0x4a0
[  976.480526]  ? dup_userfaultfd+0x15e/0x6c0
[  976.486495]  ? memcpy+0x46/0x50
[  976.489802]  copy_process.part.0+0x34dc/0x7970
[  976.494441]  ? __cleanup_sighand+0x70/0x70
[  976.498712]  ? kasan_check_read+0x11/0x20
[  976.502886]  _do_fork+0x257/0xfe0
[  976.506391]  ? fork_idle+0x1d0/0x1d0
[  976.510134]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  976.514913]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  976.519690]  ? do_syscall_64+0x26/0x610
[  976.523687]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  976.529079]  ? do_syscall_64+0x26/0x610
[  976.533101]  __x64_sys_clone+0xbf/0x150
[  976.537103]  do_syscall_64+0x103/0x610
[  976.541016]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  976.546225] RIP: 0033:0x2000008a
[  976.549616] Code: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 98 4a 2a e9 2c 18 96 4c 0f 05 <bf> 03 00 00 00 c4 a3 7b f0 c5 1d 41 e2 e9 c4 22 e9 aa bb 3c 00 00
[  976.568813] RSP: 002b:00000000000004f0 EFLAGS: 00000287 ORIG_RAX: 0000000000000038
[  976.576551] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 000000002000008a
[  976.583841] RDX: 9c3755da22921eda RSI: 00000000000004f0 RDI: 0000000000000003
[  976.591130] RBP: 00000000000000f8 R08: 0000000000000005 R09: 0000000000000006
[  976.598419] R10: 0000000000000007 R11: 0000000000000287 R12: 000000000000000b
[  976.605735] R13: 000000000000000c R14: 000000000000000d R15: 00000000ffffffff
[  976.624381] Task in /syz2 killed as a result of limit of /syz2
[  976.630438] memory: usage 307192kB, limit 307200kB, failcnt 18281
[  976.644020] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  976.650808] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  976.661299] Memory cgroup stats for /syz2: cache:92KB rss:4492KB rss_huge:4096KB shmem:0KB mapped_file:0KB dirty:132KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:4448KB inactive_file:0KB active_file:0KB unevictable:0KB
[  976.693077] Memory cgroup out of memory: Kill process 29045 (syz-executor.2) score 120 or sacrifice child
[  976.707846] Killed process 29136 (syz-executor.2) total-vm:72584kB, anon-rss:2216kB, file-rss:34816kB, shmem-rss:0kB
[  976.731667] net_ratelimit: 14 callbacks suppressed
[  976.731677] protocol 88fb is buggy, dev hsr_slave_0
[  976.739287] syz-executor.2 invoked oom-killer: gfp_mask=0x6040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null), order=1, oom_score_adj=0
[  976.741788] protocol 88fb is buggy, dev hsr_slave_1
[  976.741897] protocol 88fb is buggy, dev hsr_slave_0
[  976.763347] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[  976.763914] protocol 88fb is buggy, dev hsr_slave_1
[  976.769187] CPU: 0 PID: 29413 Comm: syz-executor.2 Not tainted 4.19.37 #5
[  976.781116] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  976.790679] Call Trace:
[  976.793301]  dump_stack+0x172/0x1f0
[  976.796954]  dump_header+0x15e/0x929
[  976.800683]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[  976.805803]  ? ___ratelimit+0x60/0x595
[  976.809703]  ? do_raw_spin_unlock+0x57/0x270
[  976.814137]  oom_kill_process.cold+0x10/0x6f5
[  976.818656]  ? task_will_free_mem+0x139/0x6e0
[  976.823187]  out_of_memory+0x936/0x12d0
[  976.827186]  ? oom_killer_disable+0x280/0x280
[  976.831696]  ? find_held_lock+0x35/0x130
[  976.835786]  mem_cgroup_out_of_memory+0x1d2/0x240
[  976.840646]  ? memcg_event_wake+0x230/0x230
[  976.845073]  ? do_raw_spin_unlock+0x57/0x270
[  976.849502]  ? _raw_spin_unlock+0x2d/0x50
[  976.853673]  try_charge+0xd25/0x15b0
[  976.857412]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[  976.862289]  ? rcu_read_lock_sched_held+0x110/0x130
[  976.867317]  ? __alloc_pages_nodemask+0x63e/0x760
[  976.872179]  ? perf_trace_lock_acquire+0xf5/0x580
[  976.877046]  memcg_kmem_charge_memcg+0x7c/0x130
[  976.881732]  ? memcg_kmem_put_cache+0xb0/0xb0
[  976.886241]  ? cache_grow_begin+0x59a/0x8c0
[  976.890592]  ? lockdep_hardirqs_on+0x415/0x5d0
[  976.895288]  ? trace_hardirqs_on+0x67/0x230
[  976.899648]  cache_grow_begin+0x25f/0x8c0
[  976.903815]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  976.909377]  ? __cpuset_node_allowed+0x136/0x540
[  976.914152]  fallback_alloc+0x1fd/0x2d0
[  976.918147]  ____cache_alloc_node+0x1be/0x1e0
[  976.922664]  kmem_cache_alloc_node+0xe3/0x710
[  976.927177]  ? lockdep_hardirqs_on+0x415/0x5d0
[  976.931786]  ? trace_hardirqs_on+0x67/0x230
[  976.936136]  copy_process.part.0+0x1cd5/0x7970
[  976.940739]  ? __do_page_fault+0x484/0xe90
[  976.945003]  ? mark_held_locks+0x100/0x100
[  976.949270]  ? debug_smp_processor_id+0x1c/0x20
[  976.953957]  ? perf_trace_lock_acquire+0xf5/0x580
[  976.958837]  ? perf_trace_lock_acquire+0xf5/0x580
[  976.963712]  ? __cleanup_sighand+0x70/0x70
[  976.967979]  ? kasan_check_read+0x11/0x20
[  976.972152]  _do_fork+0x257/0xfe0
[  976.975630]  ? fork_idle+0x1d0/0x1d0
[  976.979375]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  976.984148]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  976.988922]  ? do_syscall_64+0x26/0x610
[  976.992910]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  976.998298]  ? do_syscall_64+0x26/0x610
[  977.002304]  __x64_sys_clone+0xbf/0x150
[  977.006304]  do_syscall_64+0x103/0x610
[  977.010303]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  977.015513] RIP: 0033:0x2000008a
[  977.018891] Code: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 98 4a 2a e9 2c 18 96 4c 0f 05 <bf> 03 00 00 00 c4 a3 7b f0 c5 1d 41 e2 e9 c4 22 e9 aa bb 3c 00 00
[  977.037811] RSP: 002b:00000000000004f0 EFLAGS: 00000287 ORIG_RAX: 0000000000000038
[  977.045547] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 000000002000008a
[  977.052835] RDX: 9c3755da22921eda RSI: 00000000000004f0 RDI: 0000000000000003
[  977.060125] RBP: 00000000000000f8 R08: 0000000000000005 R09: 0000000000000006
[  977.067413] R10: 0000000000000007 R11: 0000000000000287 R12: 000000000000000b
[  977.074709] R13: 000000000000000c R14: 000000000000000d R15: 00000000ffffffff
[  977.082445] protocol 88fb is buggy, dev hsr_slave_0
[  977.087559] protocol 88fb is buggy, dev hsr_slave_1
[  977.094789] Task in /syz2 killed as a result of limit of /syz2
[  977.100985] memory: usage 307048kB, limit 307200kB, failcnt 18293
[  977.107815] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  977.115201] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  977.121384] Memory cgroup stats for /syz2: cache:92KB rss:4492KB rss_huge:4096KB shmem:0KB mapped_file:0KB dirty:132KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:4448KB inactive_file:0KB active_file:0KB unevictable:0KB
[  977.142916] Memory cgroup out of memory: Kill process 29045 (syz-executor.2) score 120 or sacrifice child
[  977.153178] Killed process 29204 (syz-executor.2) total-vm:72584kB, anon-rss:2216kB, file-rss:34816kB, shmem-rss:0kB
[  977.187977] syz-executor.2 invoked oom-killer: gfp_mask=0x6040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null), order=0, oom_score_adj=0
[  977.206924] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[  977.222617] CPU: 1 PID: 29338 Comm: syz-executor.2 Not tainted 4.19.37 #5
[  977.229593] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  977.238985] Call Trace:
[  977.241623]  dump_stack+0x172/0x1f0
[  977.245299]  dump_header+0x15e/0x929
[  977.249579]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[  977.254711]  ? ___ratelimit+0x60/0x595
[  977.258624]  ? do_raw_spin_unlock+0x57/0x270
[  977.263055]  oom_kill_process.cold+0x10/0x6f5
[  977.267576]  ? task_will_free_mem+0x139/0x6e0
[  977.272103]  out_of_memory+0x936/0x12d0
[  977.276100]  ? oom_killer_disable+0x280/0x280
[  977.280643]  ? find_held_lock+0x35/0x130
[  977.284739]  mem_cgroup_out_of_memory+0x1d2/0x240
[  977.289599]  ? memcg_event_wake+0x230/0x230
[  977.293943]  ? do_raw_spin_unlock+0x57/0x270
[  977.298374]  ? _raw_spin_unlock+0x2d/0x50
[  977.302554]  try_charge+0xd25/0x15b0
[  977.306304]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[  977.311182]  ? rcu_read_lock_sched_held+0x110/0x130
[  977.316214]  ? __alloc_pages_nodemask+0x63e/0x760
[  977.321181]  ? perf_trace_lock_acquire+0xf5/0x580
[  977.326051]  memcg_kmem_charge_memcg+0x7c/0x130
[  977.330754]  ? memcg_kmem_put_cache+0xb0/0xb0
[  977.335273]  ? cache_grow_begin+0x59a/0x8c0
[  977.339611]  ? lockdep_hardirqs_on+0x415/0x5d0
[  977.344215]  ? trace_hardirqs_on+0x67/0x230
[  977.348565]  cache_grow_begin+0x25f/0x8c0
[  977.352736]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  977.358303]  ? __cpuset_node_allowed+0x136/0x540
[  977.363088]  fallback_alloc+0x1fd/0x2d0
[  977.367185]  ____cache_alloc_node+0x1be/0x1e0
[  977.371792]  kmem_cache_alloc+0x1f3/0x700
[  977.375974]  ? call_rwsem_wake+0x1b/0x30
[  977.380058]  anon_vma_clone+0x238/0x480
[  977.384084]  anon_vma_fork+0x8f/0x4a0
[  977.387899]  ? dup_userfaultfd+0x15e/0x6c0
[  977.392143]  ? memcpy+0x46/0x50
[  977.395466]  copy_process.part.0+0x34dc/0x7970
[  977.400098]  ? __cleanup_sighand+0x70/0x70
[  977.404364]  ? kasan_check_read+0x11/0x20
[  977.408559]  _do_fork+0x257/0xfe0
[  977.412034]  ? fork_idle+0x1d0/0x1d0
[  977.415775]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  977.420547]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  977.425320]  ? do_syscall_64+0x26/0x610
[  977.429307]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  977.434700]  ? do_syscall_64+0x26/0x610
[  977.438695]  __x64_sys_clone+0xbf/0x150
[  977.442698]  do_syscall_64+0x103/0x610
[  977.446606]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  977.451852] RIP: 0033:0x2000008a
[  977.455328] Code: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 98 4a 2a e9 2c 18 96 4c 0f 05 <bf> 03 00 00 00 c4 a3 7b f0 c5 1d 41 e2 e9 c4 22 e9 aa bb 3c 00 00
[  977.474592] RSP: 002b:00000000000004f0 EFLAGS: 00000287 ORIG_RAX: 0000000000000038
[  977.482326] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 000000002000008a
[  977.489628] RDX: 9c3755da22921eda RSI: 00000000000004f0 RDI: 0000000000000003
[  977.497693] RBP: 00000000000000f8 R08: 0000000000000005 R09: 0000000000000006
[  977.504977] R10: 0000000000000007 R11: 0000000000000287 R12: 000000000000000b
[  977.512369] R13: 000000000000000c R14: 000000000000000d R15: 00000000ffffffff
[  977.533422] Task in /syz2 killed as a result of limit of /syz2
[  977.539477] memory: usage 307200kB, limit 307200kB, failcnt 18337
[  977.550548] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  977.559861] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  977.570802] Memory cgroup stats for /syz2: cache:92KB rss:4492KB rss_huge:4096KB shmem:0KB mapped_file:0KB dirty:132KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:4448KB inactive_file:0KB active_file:0KB unevictable:0KB
[  977.599353] Memory cgroup out of memory: Kill process 29045 (syz-executor.2) score 120 or sacrifice child
[  977.609712] Killed process 29222 (syz-executor.2) total-vm:72584kB, anon-rss:2216kB, file-rss:34816kB, shmem-rss:0kB
[  977.676986] syz-executor.2 invoked oom-killer: gfp_mask=0x6040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null), order=1, oom_score_adj=0
[  977.702474] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[  977.707916] CPU: 1 PID: 29499 Comm: syz-executor.2 Not tainted 4.19.37 #5
[  977.714904] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  977.724360] Call Trace:
[  977.726966]  dump_stack+0x172/0x1f0
[  977.730611]  dump_header+0x15e/0x929
[  977.734343]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[  977.739466]  ? ___ratelimit+0x60/0x595
[  977.743544]  ? do_raw_spin_unlock+0x57/0x270
[  977.748333]  oom_kill_process.cold+0x10/0x6f5
[  977.752862]  ? task_will_free_mem+0x139/0x6e0
[  977.757827]  out_of_memory+0x936/0x12d0
[  977.761838]  ? oom_killer_disable+0x280/0x280
[  977.766347]  ? find_held_lock+0x35/0x130
[  977.770434]  mem_cgroup_out_of_memory+0x1d2/0x240
[  977.771565] protocol 88fb is buggy, dev hsr_slave_0
[  977.775320]  ? memcg_event_wake+0x230/0x230
[  977.780412] protocol 88fb is buggy, dev hsr_slave_1
[  977.785250]  ? do_raw_spin_unlock+0x57/0x270
[  977.794422]  ? _raw_spin_unlock+0x2d/0x50
[  977.798589]  try_charge+0xd25/0x15b0
[  977.802330]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[  977.807196]  ? rcu_read_lock_sched_held+0x110/0x130
[  977.812224]  ? __alloc_pages_nodemask+0x63e/0x760
[  977.817116]  ? perf_trace_lock_acquire+0xf5/0x580
[  977.821987]  memcg_kmem_charge_memcg+0x7c/0x130
[  977.827357]  ? memcg_kmem_put_cache+0xb0/0xb0
[  977.831885]  ? cache_grow_begin+0x59a/0x8c0
[  977.836238]  ? lockdep_hardirqs_on+0x415/0x5d0
[  977.840850]  ? trace_hardirqs_on+0x67/0x230
[  977.845190]  cache_grow_begin+0x25f/0x8c0
[  977.849373]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  977.854926]  ? __cpuset_node_allowed+0x136/0x540
[  977.859725]  fallback_alloc+0x1fd/0x2d0
[  977.863727]  ____cache_alloc_node+0x1be/0x1e0
[  977.868270]  kmem_cache_alloc_node+0xe3/0x710
[  977.872784]  ? lockdep_hardirqs_on+0x415/0x5d0
[  977.877473]  ? trace_hardirqs_on+0x67/0x230
[  977.881818]  copy_process.part.0+0x1cd5/0x7970
[  977.886423]  ? __do_page_fault+0x484/0xe90
[  977.890682]  ? mark_held_locks+0x100/0x100
[  977.894934]  ? debug_smp_processor_id+0x1c/0x20
[  977.899619]  ? perf_trace_lock_acquire+0xf5/0x580
[  977.904473]  ? perf_trace_lock_acquire+0xf5/0x580
[  977.909364]  ? __cleanup_sighand+0x70/0x70
[  977.913628]  ? kasan_check_read+0x11/0x20
[  977.917810]  _do_fork+0x257/0xfe0
[  977.921293]  ? fork_idle+0x1d0/0x1d0
[  977.925048]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  977.929818]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  977.934600]  ? do_syscall_64+0x26/0x610
[  977.939631]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  977.945009]  ? do_syscall_64+0x26/0x610
[  977.949021]  __x64_sys_clone+0xbf/0x150
[  977.953010]  do_syscall_64+0x103/0x610
[  977.956922]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  977.962118] RIP: 0033:0x2000008a
[  977.965493] Code: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 98 4a 2a e9 2c 18 96 4c 0f 05 <bf> 03 00 00 00 c4 a3 7b f0 c5 1d 41 e2 e9 c4 22 e9 aa bb 3c 00 00
[  977.984411] RSP: 002b:00000000000004f0 EFLAGS: 00000287 ORIG_RAX: 0000000000000038
[  977.992145] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 000000002000008a
[  977.999425] RDX: 9c3755da22921eda RSI: 00000000000004f0 RDI: 0000000000000003
[  978.006799] RBP: 00000000000000f8 R08: 0000000000000005 R09: 0000000000000006
[  978.014270] R10: 0000000000000007 R11: 0000000000000287 R12: 000000000000000b
[  978.021554] R13: 000000000000000c R14: 000000000000000d R15: 00000000ffffffff
[  978.039855] Task in /syz2 killed as a result of limit of /syz2
[  978.046421] memory: usage 307184kB, limit 307200kB, failcnt 18373
[  978.059937] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  978.067165] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  978.080394] Memory cgroup stats for /syz2: cache:92KB rss:4492KB rss_huge:4096KB shmem:0KB mapped_file:0KB dirty:132KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:4448KB inactive_file:0KB active_file:0KB unevictable:0KB
[  978.108429] Memory cgroup out of memory: Kill process 29045 (syz-executor.2) score 120 or sacrifice child
[  978.118808] Killed process 29316 (syz-executor.2) total-vm:72584kB, anon-rss:2216kB, file-rss:34816kB, shmem-rss:0kB
[  978.168029] syz-executor.2 invoked oom-killer: gfp_mask=0x6040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null), order=1, oom_score_adj=0
[  978.180115] protocol 88fb is buggy, dev hsr_slave_0
[  978.180188] protocol 88fb is buggy, dev hsr_slave_1
[  978.208402] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[  978.221109] CPU: 1 PID: 29393 Comm: syz-executor.2 Not tainted 4.19.37 #5
[  978.228165] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  978.237530] Call Trace:
[  978.240137]  dump_stack+0x172/0x1f0
[  978.243786]  dump_header+0x15e/0x929
[  978.247516]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[  978.252639]  ? ___ratelimit+0x60/0x595
[  978.256546]  ? do_raw_spin_unlock+0x57/0x270
[  978.260975]  oom_kill_process.cold+0x10/0x6f5
[  978.265489]  ? task_will_free_mem+0x139/0x6e0
[  978.270009]  out_of_memory+0x936/0x12d0
[  978.274005]  ? oom_killer_disable+0x280/0x280
[  978.278515]  ? find_held_lock+0x35/0x130
[  978.282605]  mem_cgroup_out_of_memory+0x1d2/0x240
[  978.287460]  ? memcg_event_wake+0x230/0x230
[  978.291808]  ? do_raw_spin_unlock+0x57/0x270
[  978.296240]  ? _raw_spin_unlock+0x2d/0x50
[  978.300418]  try_charge+0xd25/0x15b0
[  978.304155]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[  978.309027]  ? rcu_read_lock_sched_held+0x110/0x130
[  978.314057]  ? __alloc_pages_nodemask+0x63e/0x760
[  978.319094]  ? perf_trace_lock_acquire+0xf5/0x580
[  978.323960]  memcg_kmem_charge_memcg+0x7c/0x130
[  978.328646]  ? memcg_kmem_put_cache+0xb0/0xb0
[  978.333151]  ? cache_grow_begin+0x59a/0x8c0
[  978.337496]  ? lockdep_hardirqs_on+0x415/0x5d0
[  978.342101]  ? trace_hardirqs_on+0x67/0x230
[  978.346441]  cache_grow_begin+0x25f/0x8c0
[  978.350610]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  978.356171]  ? __cpuset_node_allowed+0x136/0x540
[  978.360953]  fallback_alloc+0x1fd/0x2d0
[  978.365077]  ____cache_alloc_node+0x1be/0x1e0
[  978.369590]  kmem_cache_alloc_node+0xe3/0x710
[  978.374121]  ? lockdep_hardirqs_on+0x415/0x5d0
[  978.378722]  ? trace_hardirqs_on+0x67/0x230
[  978.383069]  copy_process.part.0+0x1cd5/0x7970
[  978.387660]  ? __do_page_fault+0x484/0xe90
[  978.391933]  ? mark_held_locks+0x100/0x100
[  978.396187]  ? debug_smp_processor_id+0x1c/0x20
[  978.400870]  ? perf_trace_lock_acquire+0xf5/0x580
[  978.405724]  ? perf_trace_lock_acquire+0xf5/0x580
[  978.410594]  ? __cleanup_sighand+0x70/0x70
[  978.414862]  ? kasan_check_read+0x11/0x20
[  978.419033]  _do_fork+0x257/0xfe0
[  978.422505]  ? fork_idle+0x1d0/0x1d0
[  978.426264]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  978.431036]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  978.435948]  ? do_syscall_64+0x26/0x610
[  978.439934]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  978.445320]  ? do_syscall_64+0x26/0x610
[  978.449315]  __x64_sys_clone+0xbf/0x150
[  978.453312]  do_syscall_64+0x103/0x610
[  978.457220]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  978.462442] RIP: 0033:0x2000008a
[  978.465829] Code: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 98 4a 2a e9 2c 18 96 4c 0f 05 <bf> 03 00 00 00 c4 a3 7b f0 c5 1d 41 e2 e9 c4 22 e9 aa bb 3c 00 00
[  978.487266] RSP: 002b:00000000000004f0 EFLAGS: 00000287 ORIG_RAX: 0000000000000038
[  978.494998] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 000000002000008a
[  978.502290] RDX: 9c3755da22921eda RSI: 00000000000004f0 RDI: 0000000000000003
[  978.509580] RBP: 00000000000000f8 R08: 0000000000000005 R09: 0000000000000006
[  978.516948] R10: 0000000000000007 R11: 0000000000000287 R12: 000000000000000b
[  978.524242] R13: 000000000000000c R14: 000000000000000d R15: 00000000ffffffff
[  978.543664] Task in /syz2 killed as a result of limit of /syz2
[  978.561503] memory: usage 307200kB, limit 307200kB, failcnt 18405
[  978.567778] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  978.582432] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  978.588614] Memory cgroup stats for /syz2: cache:92KB rss:4492KB rss_huge:4096KB shmem:0KB mapped_file:0KB dirty:132KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:4448KB inactive_file:0KB active_file:0KB unevictable:0KB
[  978.616523] Memory cgroup out of memory: Kill process 29045 (syz-executor.2) score 120 or sacrifice child
[  978.628065] Killed process 29668 (syz-executor.2) total-vm:72584kB, anon-rss:2216kB, file-rss:34816kB, shmem-rss:0kB
[  978.655753] syz-executor.2 invoked oom-killer: gfp_mask=0x6040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null), order=0, oom_score_adj=0
[  978.695958] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[  978.701399] CPU: 1 PID: 29739 Comm: syz-executor.2 Not tainted 4.19.37 #5
[  978.708338] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  978.717700] Call Trace:
[  978.720393]  dump_stack+0x172/0x1f0
[  978.724043]  dump_header+0x15e/0x929
[  978.727774]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[  978.732894]  ? ___ratelimit+0x60/0x595
[  978.736793]  ? do_raw_spin_unlock+0x57/0x270
[  978.741225]  oom_kill_process.cold+0x10/0x6f5
[  978.745753]  ? task_will_free_mem+0x139/0x6e0
[  978.750284]  out_of_memory+0x936/0x12d0
[  978.754292]  ? oom_killer_disable+0x280/0x280
[  978.758830]  ? find_held_lock+0x35/0x130
[  978.762931]  mem_cgroup_out_of_memory+0x1d2/0x240
[  978.767790]  ? memcg_event_wake+0x230/0x230
[  978.772157]  ? do_raw_spin_unlock+0x57/0x270
[  978.776587]  ? _raw_spin_unlock+0x2d/0x50
[  978.780763]  try_charge+0xd25/0x15b0
[  978.784508]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[  978.789377]  ? rcu_read_lock_sched_held+0x110/0x130
[  978.794418]  ? __alloc_pages_nodemask+0x63e/0x760
[  978.799300]  ? perf_trace_lock_acquire+0xf5/0x580
[  978.804204]  memcg_kmem_charge_memcg+0x7c/0x130
[  978.808905]  ? memcg_kmem_put_cache+0xb0/0xb0
[  978.813679]  ? cache_grow_begin+0x59a/0x8c0
[  978.818022]  ? lockdep_hardirqs_on+0x415/0x5d0
[  978.822629]  ? trace_hardirqs_on+0x67/0x230
[  978.826965]  cache_grow_begin+0x25f/0x8c0
[  978.831131]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  978.836690]  ? __cpuset_node_allowed+0x136/0x540
[  978.841484]  fallback_alloc+0x1fd/0x2d0
[  978.845583]  ____cache_alloc_node+0x1be/0x1e0
[  978.850098]  kmem_cache_alloc+0x1f3/0x700
[  978.854279]  ? call_rwsem_wake+0x1b/0x30
[  978.858363]  anon_vma_clone+0x238/0x480
[  978.862360]  anon_vma_fork+0x8f/0x4a0
[  978.866178]  ? dup_userfaultfd+0x15e/0x6c0
[  978.870422]  ? memcpy+0x46/0x50
[  978.873723]  copy_process.part.0+0x34dc/0x7970
[  978.878570]  ? __cleanup_sighand+0x70/0x70
[  978.882844]  ? kasan_check_read+0x11/0x20
[  978.887013]  _do_fork+0x257/0xfe0
[  978.890484]  ? fork_idle+0x1d0/0x1d0
[  978.894222]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  978.899000]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  978.903773]  ? do_syscall_64+0x26/0x610
[  978.907764]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  978.913405]  ? do_syscall_64+0x26/0x610
[  978.917486]  __x64_sys_clone+0xbf/0x150
[  978.921475]  do_syscall_64+0x103/0x610
[  978.925480]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  978.930684] RIP: 0033:0x2000008a
[  978.934164] Code: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 98 4a 2a e9 2c 18 96 4c 0f 05 <bf> 03 00 00 00 c4 a3 7b f0 c5 1d 41 e2 e9 c4 22 e9 aa bb 3c 00 00
[  978.953084] RSP: 002b:00000000000004f0 EFLAGS: 00000287 ORIG_RAX: 0000000000000038
[  978.961302] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 000000002000008a
[  978.969000] RDX: 9c3755da22921eda RSI: 00000000000004f0 RDI: 0000000000000003
[  978.976593] RBP: 00000000000000f8 R08: 0000000000000005 R09: 0000000000000006
[  978.984162] R10: 0000000000000007 R11: 0000000000000287 R12: 000000000000000b
[  978.991890] R13: 000000000000000c R14: 000000000000000d R15: 00000000ffffffff
[  979.012915] Task in /syz2 killed as a result of limit of /syz2
[  979.019101] memory: usage 307200kB, limit 307200kB, failcnt 18442
[  979.031824] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  979.038634] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  979.050960] Memory cgroup stats for /syz2: cache:92KB rss:4492KB rss_huge:4096KB shmem:0KB mapped_file:0KB dirty:132KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:4448KB inactive_file:0KB active_file:0KB unevictable:0KB
[  979.078825] Memory cgroup out of memory: Kill process 29045 (syz-executor.2) score 120 or sacrifice child
[  979.089355] Killed process 30322 (syz-executor.2) total-vm:72584kB, anon-rss:2216kB, file-rss:34816kB, shmem-rss:0kB
[  979.108121] oom_reaper: reaped process 30322 (syz-executor.2), now anon-rss:0kB, file-rss:34816kB, shmem-rss:0kB
[  979.140665] syz-executor.2 invoked oom-killer: gfp_mask=0x6040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null), order=0, oom_score_adj=0
[  979.166392] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[  979.179168] CPU: 1 PID: 29636 Comm: syz-executor.2 Not tainted 4.19.37 #5
[  979.186140] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  979.195506] Call Trace:
[  979.198382]  dump_stack+0x172/0x1f0
[  979.202120]  dump_header+0x15e/0x929
[  979.205938]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[  979.211068]  ? ___ratelimit+0x60/0x595
[  979.214973]  ? do_raw_spin_unlock+0x57/0x270
[  979.219407]  oom_kill_process.cold+0x10/0x6f5
[  979.223929]  ? task_will_free_mem+0x139/0x6e0
[  979.228449]  out_of_memory+0x936/0x12d0
[  979.232455]  ? oom_killer_disable+0x280/0x280
[  979.236964]  ? find_held_lock+0x35/0x130
[  979.241051]  mem_cgroup_out_of_memory+0x1d2/0x240
[  979.245922]  ? memcg_event_wake+0x230/0x230
[  979.250278]  ? do_raw_spin_unlock+0x57/0x270
[  979.254704]  ? _raw_spin_unlock+0x2d/0x50
[  979.258873]  try_charge+0xd25/0x15b0
[  979.262619]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[  979.267582]  ? rcu_read_lock_sched_held+0x110/0x130
[  979.272632]  ? __alloc_pages_nodemask+0x63e/0x760
[  979.277488]  ? perf_trace_lock_acquire+0xf5/0x580
[  979.282376]  memcg_kmem_charge_memcg+0x7c/0x130
[  979.287059]  ? memcg_kmem_put_cache+0xb0/0xb0
[  979.291569]  ? cache_grow_begin+0x59a/0x8c0
[  979.295996]  ? lockdep_hardirqs_on+0x415/0x5d0
[  979.300606]  ? trace_hardirqs_on+0x67/0x230
[  979.304946]  cache_grow_begin+0x25f/0x8c0
[  979.309220]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  979.314783]  ? __cpuset_node_allowed+0x136/0x540
[  979.319556]  fallback_alloc+0x1fd/0x2d0
[  979.323558]  ____cache_alloc_node+0x1be/0x1e0
[  979.328072]  kmem_cache_alloc+0x1f3/0x700
[  979.332276]  ? call_rwsem_wake+0x1b/0x30
[  979.336362]  anon_vma_clone+0x238/0x480
[  979.340354]  anon_vma_fork+0x8f/0x4a0
[  979.344169]  ? dup_userfaultfd+0x15e/0x6c0
[  979.348420]  ? memcpy+0x46/0x50
[  979.353844]  copy_process.part.0+0x34dc/0x7970
[  979.358479]  ? __cleanup_sighand+0x70/0x70
[  979.362746]  ? kasan_check_read+0x11/0x20
[  979.366921]  _do_fork+0x257/0xfe0
[  979.371777]  ? fork_idle+0x1d0/0x1d0
[  979.376589]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  979.381364]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  979.386136]  ? do_syscall_64+0x26/0x610
[  979.390125]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  979.395507]  ? do_syscall_64+0x26/0x610
[  979.399509]  __x64_sys_clone+0xbf/0x150
[  979.403510]  do_syscall_64+0x103/0x610
[  979.407419]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  979.412616] RIP: 0033:0x2000008a
[  979.415993] Code: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 98 4a 2a e9 2c 18 96 4c 0f 05 <bf> 03 00 00 00 c4 a3 7b f0 c5 1d 41 e2 e9 c4 22 e9 aa bb 3c 00 00
[  979.434934] RSP: 002b:00000000000004f0 EFLAGS: 00000287 ORIG_RAX: 0000000000000038
[  979.442730] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 000000002000008a
[  979.450015] RDX: 9c3755da22921eda RSI: 00000000000004f0 RDI: 0000000000000003
[  979.457428] RBP: 00000000000000f8 R08: 0000000000000005 R09: 0000000000000006
[  979.464711] R10: 0000000000000007 R11: 0000000000000287 R12: 000000000000000b
[  979.472010] R13: 000000000000000c R14: 000000000000000d R15: 00000000ffffffff
[  979.489893] Task in /syz2 killed as a result of limit of /syz2
[  979.496477] memory: usage 307048kB, limit 307200kB, failcnt 18494
[  979.509842] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  979.517988] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  979.532574] Memory cgroup stats for /syz2: cache:92KB rss:4492KB rss_huge:4096KB shmem:0KB mapped_file:0KB dirty:132KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:4448KB inactive_file:0KB active_file:0KB unevictable:0KB
[  979.560587] Memory cgroup out of memory: Kill process 29045 (syz-executor.2) score 120 or sacrifice child
[  979.570759] Killed process 29045 (syz-executor.2) total-vm:72584kB, anon-rss:2216kB, file-rss:34816kB, shmem-rss:0kB
[  979.626489] syz-executor.2 invoked oom-killer: gfp_mask=0x6040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null), order=0, oom_score_adj=0
[  979.670787] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[  979.676690] CPU: 1 PID: 29576 Comm: syz-executor.2 Not tainted 4.19.37 #5
[  979.683721] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  979.693107] Call Trace:
[  979.695717]  dump_stack+0x172/0x1f0
[  979.699366]  dump_header+0x15e/0x929
[  979.703104]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[  979.708312]  ? ___ratelimit+0x60/0x595
[  979.712253]  ? do_raw_spin_unlock+0x57/0x270
[  979.716722]  oom_kill_process.cold+0x10/0x6f5
[  979.721240]  ? task_will_free_mem+0x139/0x6e0
[  979.725791]  out_of_memory+0x936/0x12d0
[  979.729793]  ? oom_killer_disable+0x280/0x280
[  979.734305]  ? find_held_lock+0x35/0x130
[  979.738420]  mem_cgroup_out_of_memory+0x1d2/0x240
[  979.743291]  ? memcg_event_wake+0x230/0x230
[  979.747654]  ? do_raw_spin_unlock+0x57/0x270
[  979.752109]  ? _raw_spin_unlock+0x2d/0x50
[  979.756283]  try_charge+0xd25/0x15b0
[  979.760025]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[  979.764907]  ? rcu_read_lock_sched_held+0x110/0x130
[  979.769940]  ? __alloc_pages_nodemask+0x63e/0x760
[  979.774812]  ? perf_trace_lock_acquire+0xf5/0x580
[  979.779691]  memcg_kmem_charge_memcg+0x7c/0x130
[  979.784380]  ? memcg_kmem_put_cache+0xb0/0xb0
[  979.788881]  ? cache_grow_begin+0x59a/0x8c0
[  979.793217]  ? lockdep_hardirqs_on+0x415/0x5d0
[  979.797824]  ? trace_hardirqs_on+0x67/0x230
[  979.802170]  cache_grow_begin+0x25f/0x8c0
[  979.806337]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  979.811913]  ? __cpuset_node_allowed+0x136/0x540
[  979.816687]  fallback_alloc+0x1fd/0x2d0
[  979.820688]  ____cache_alloc_node+0x1be/0x1e0
[  979.825311]  kmem_cache_alloc+0x1f3/0x700
[  979.829569]  ? call_rwsem_wake+0x1b/0x30
[  979.833650]  anon_vma_clone+0x238/0x480
[  979.837732]  anon_vma_fork+0x8f/0x4a0
[  979.841571]  ? dup_userfaultfd+0x15e/0x6c0
[  979.845821]  ? memcpy+0x46/0x50
[  979.849129]  copy_process.part.0+0x34dc/0x7970
[  979.853757]  ? __cleanup_sighand+0x70/0x70
[  979.858121]  ? kasan_check_read+0x11/0x20
[  979.862303]  _do_fork+0x257/0xfe0
[  979.865773]  ? fork_idle+0x1d0/0x1d0
[  979.869597]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  979.874366]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  979.879137]  ? do_syscall_64+0x26/0x610
[  979.883126]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  979.888523]  ? do_syscall_64+0x26/0x610
[  979.892522]  __x64_sys_clone+0xbf/0x150
[  979.896516]  do_syscall_64+0x103/0x610
[  979.900421]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  979.905648] RIP: 0033:0x2000008a
[  979.909026] Code: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 98 4a 2a e9 2c 18 96 4c 0f 05 <bf> 03 00 00 00 c4 a3 7b f0 c5 1d 41 e2 e9 c4 22 e9 aa bb 3c 00 00
[  979.928049] RSP: 002b:00000000000004f0 EFLAGS: 00000287 ORIG_RAX: 0000000000000038
[  979.935872] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 000000002000008a
[  979.943169] RDX: 9c3755da22921eda RSI: 00000000000004f0 RDI: 0000000000000003
[  979.950455] RBP: 00000000000000f8 R08: 0000000000000005 R09: 0000000000000006
[  979.957829] R10: 0000000000000007 R11: 0000000000000287 R12: 000000000000000b
[  979.965124] R13: 000000000000000c R14: 000000000000000d R15: 00000000ffffffff
[  979.983605] Task in /syz2 killed as a result of limit of /syz2
[  979.989766] memory: usage 307200kB, limit 307200kB, failcnt 18523
[  980.004847] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  980.014418] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  980.020589] Memory cgroup stats for /syz2: cache:92KB rss:4492KB rss_huge:4096KB shmem:0KB mapped_file:0KB dirty:132KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:4448KB inactive_file:0KB active_file:0KB unevictable:0KB
[  980.049234] Memory cgroup out of memory: Kill process 29046 (syz-executor.2) score 120 or sacrifice child
[  980.059637] Killed process 29064 (syz-executor.2) total-vm:72584kB, anon-rss:2216kB, file-rss:34816kB, shmem-rss:0kB
[  980.089929] Memory cgroup out of memory: Kill process 29046 (syz-executor.2) score 120 or sacrifice child
[  980.107102] Killed process 29106 (syz-executor.2) total-vm:72584kB, anon-rss:2216kB, file-rss:34816kB, shmem-rss:0kB
[  980.169596] Memory cgroup out of memory: Kill process 29046 (syz-executor.2) score 120 or sacrifice child
[  980.194877] Killed process 29137 (syz-executor.2) total-vm:72584kB, anon-rss:2216kB, file-rss:34816kB, shmem-rss:0kB
[  980.239593] Memory cgroup out of memory: Kill process 29046 (syz-executor.2) score 120 or sacrifice child
[  980.260681] Killed process 29199 (syz-executor.2) total-vm:72584kB, anon-rss:2216kB, file-rss:34816kB, shmem-rss:0kB
[  980.276028] oom_reaper: reaped process 29199 (syz-executor.2), now anon-rss:0kB, file-rss:34816kB, shmem-rss:0kB
[  980.320687] Memory cgroup out of memory: Kill process 29046 (syz-executor.2) score 120 or sacrifice child
[  980.348586] Killed process 29255 (syz-executor.2) total-vm:72584kB, anon-rss:2216kB, file-rss:34816kB, shmem-rss:0kB
[  980.400507] oom_kill_process: 4 callbacks suppressed
[  980.400527] syz-executor.2 invoked oom-killer: gfp_mask=0x6040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null), order=0, oom_score_adj=0
[  980.455397] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[  980.460849] CPU: 0 PID: 29644 Comm: syz-executor.2 Not tainted 4.19.37 #5
[  980.467876] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  980.477248] Call Trace:
[  980.479875]  dump_stack+0x172/0x1f0
[  980.483535]  dump_header+0x15e/0x929
[  980.487282]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[  980.492495]  ? ___ratelimit+0x60/0x595
[  980.496503]  oom_kill_process.cold+0x10/0x6f5
[  980.501022]  ? task_will_free_mem+0x139/0x6e0
[  980.505549]  out_of_memory+0x936/0x12d0
[  980.509576]  ? oom_killer_disable+0x280/0x280
[  980.514085]  ? find_held_lock+0x35/0x130
[  980.518183]  mem_cgroup_out_of_memory+0x1d2/0x240
[  980.523043]  ? memcg_event_wake+0x230/0x230
[  980.527389]  ? do_raw_spin_unlock+0x57/0x270
[  980.531820]  ? _raw_spin_unlock+0x2d/0x50
[  980.536000]  try_charge+0xd25/0x15b0
[  980.539741]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[  980.544621]  ? rcu_read_lock_sched_held+0x110/0x130
[  980.549661]  ? __alloc_pages_nodemask+0x63e/0x760
[  980.554529]  ? perf_trace_lock_acquire+0xf5/0x580
[  980.559406]  memcg_kmem_charge_memcg+0x7c/0x130
[  980.564097]  ? memcg_kmem_put_cache+0xb0/0xb0
[  980.568608]  ? cache_grow_begin+0x59a/0x8c0
[  980.573043]  ? lockdep_hardirqs_on+0x415/0x5d0
[  980.577659]  ? trace_hardirqs_on+0x67/0x230
[  980.582042]  cache_grow_begin+0x25f/0x8c0
[  980.586318]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  980.591891]  ? __cpuset_node_allowed+0x136/0x540
[  980.596672]  fallback_alloc+0x1fd/0x2d0
[  980.600675]  ____cache_alloc_node+0x1be/0x1e0
[  980.605192]  kmem_cache_alloc+0x1f3/0x700
[  980.609366]  ? call_rwsem_wake+0x1b/0x30
[  980.613473]  anon_vma_clone+0x238/0x480
[  980.617479]  anon_vma_fork+0x8f/0x4a0
[  980.621309]  ? dup_userfaultfd+0x15e/0x6c0
[  980.625565]  ? memcpy+0x46/0x50
[  980.628891]  copy_process.part.0+0x34dc/0x7970
[  980.633551]  ? __cleanup_sighand+0x70/0x70
[  980.637819]  ? kasan_check_read+0x11/0x20
[  980.641992]  _do_fork+0x257/0xfe0
[  980.645479]  ? fork_idle+0x1d0/0x1d0
[  980.649222]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  980.654020]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  980.658795]  ? do_syscall_64+0x26/0x610
[  980.662816]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  980.668194]  ? do_syscall_64+0x26/0x610
[  980.672193]  __x64_sys_clone+0xbf/0x150
[  980.676213]  do_syscall_64+0x103/0x610
[  980.680126]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  980.685341] RIP: 0033:0x2000008a
[  980.688718] Code: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 98 4a 2a e9 2c 18 96 4c 0f 05 <bf> 03 00 00 00 c4 a3 7b f0 c5 1d 41 e2 e9 c4 22 e9 aa bb 3c 00 00
[  980.707640] RSP: 002b:00000000000004f0 EFLAGS: 00000287 ORIG_RAX: 0000000000000038
[  980.715385] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 000000002000008a
[  980.722698] RDX: 9c3755da22921eda RSI: 00000000000004f0 RDI: 0000000000000003
[  980.730349] RBP: 00000000000000f8 R08: 0000000000000005 R09: 0000000000000006
[  980.737641] R10: 0000000000000007 R11: 0000000000000287 R12: 000000000000000b
[  980.744939] R13: 000000000000000c R14: 000000000000000d R15: 00000000ffffffff
[  980.761962] Task in /syz2 killed as a result of limit of /syz2
[  980.768065] memory: usage 307200kB, limit 307200kB, failcnt 18701
[  980.774957] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  980.782236] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  980.788506] Memory cgroup stats for /syz2: cache:92KB rss:4492KB rss_huge:4096KB shmem:0KB mapped_file:0KB dirty:132KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:4448KB inactive_file:0KB active_file:0KB unevictable:0KB
[  980.809633] Memory cgroup out of memory: Kill process 29046 (syz-executor.2) score 120 or sacrifice child
[  980.820398] Killed process 29466 (syz-executor.2) total-vm:72584kB, anon-rss:2216kB, file-rss:34816kB, shmem-rss:0kB
[  980.839908] syz-executor.2 invoked oom-killer: gfp_mask=0x6040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null), order=0, oom_score_adj=0
[  980.879047] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[  980.884975] CPU: 1 PID: 29165 Comm: syz-executor.2 Not tainted 4.19.37 #5
[  980.891918] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  980.901289] Call Trace:
[  980.903894]  dump_stack+0x172/0x1f0
[  980.907539]  dump_header+0x15e/0x929
[  980.911277]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[  980.916400]  ? ___ratelimit+0x60/0x595
[  980.920303]  ? do_raw_spin_unlock+0x57/0x270
[  980.924784]  oom_kill_process.cold+0x10/0x6f5
[  980.929305]  ? task_will_free_mem+0x139/0x6e0
[  980.933915]  out_of_memory+0x936/0x12d0
[  980.937922]  ? oom_killer_disable+0x280/0x280
[  980.942454]  ? find_held_lock+0x35/0x130
[  980.946632]  mem_cgroup_out_of_memory+0x1d2/0x240
[  980.951496]  ? memcg_event_wake+0x230/0x230
[  980.955845]  ? do_raw_spin_unlock+0x57/0x270
[  980.960277]  ? _raw_spin_unlock+0x2d/0x50
[  980.964450]  try_charge+0xd25/0x15b0
[  980.968197]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[  980.973071]  ? rcu_read_lock_sched_held+0x110/0x130
[  980.978129]  ? __alloc_pages_nodemask+0x63e/0x760
[  980.983006]  ? perf_trace_lock_acquire+0xf5/0x580
[  980.987883]  memcg_kmem_charge_memcg+0x7c/0x130
[  980.992580]  ? memcg_kmem_put_cache+0xb0/0xb0
[  980.997093]  ? cache_grow_begin+0x59a/0x8c0
[  981.001435]  ? lockdep_hardirqs_on+0x415/0x5d0
[  981.006037]  ? trace_hardirqs_on+0x67/0x230
[  981.010387]  cache_grow_begin+0x25f/0x8c0
[  981.014560]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  981.020126]  ? __cpuset_node_allowed+0x136/0x540
[  981.024903]  fallback_alloc+0x1fd/0x2d0
[  981.028900]  ____cache_alloc_node+0x1be/0x1e0
[  981.033424]  kmem_cache_alloc+0x1f3/0x700
[  981.037782]  ? anon_vma_clone+0x320/0x480
[  981.041979]  anon_vma_fork+0xfc/0x4a0
[  981.045888]  ? dup_userfaultfd+0x15e/0x6c0
[  981.050131]  ? memcpy+0x46/0x50
[  981.053444]  copy_process.part.0+0x34dc/0x7970
[  981.058080]  ? __cleanup_sighand+0x70/0x70
[  981.062350]  ? kasan_check_read+0x11/0x20
[  981.066523]  _do_fork+0x257/0xfe0
[  981.070119]  ? fork_idle+0x1d0/0x1d0
[  981.073880]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  981.078668]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  981.083445]  ? do_syscall_64+0x26/0x610
[  981.087438]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  981.092826]  ? do_syscall_64+0x26/0x610
[  981.096825]  __x64_sys_clone+0xbf/0x150
[  981.100829]  do_syscall_64+0x103/0x610
[  981.104772]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  981.109981] RIP: 0033:0x2000008a
[  981.113371] Code: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 98 4a 2a e9 2c 18 96 4c 0f 05 <bf> 03 00 00 00 c4 a3 7b f0 c5 1d 41 e2 e9 c4 22 e9 aa bb 3c 00 00
[  981.132403] RSP: 002b:00000000000004f0 EFLAGS: 00000287 ORIG_RAX: 0000000000000038
[  981.140131] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 000000002000008a
[  981.147416] RDX: 9c3755da22921eda RSI: 00000000000004f0 RDI: 0000000000000003
[  981.154693] RBP: 00000000000000f8 R08: 0000000000000005 R09: 0000000000000006
[  981.161983] R10: 0000000000000007 R11: 0000000000000287 R12: 000000000000000b
[  981.169274] R13: 000000000000000c R14: 000000000000000d R15: 00000000ffffffff
[  981.187529] Task in /syz2 killed as a result of limit of /syz2
[  981.196429] memory: usage 307048kB, limit 307200kB, failcnt 18724
[  981.207597] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  981.217336] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  981.228472] Memory cgroup stats for /syz2: cache:92KB rss:4492KB rss_huge:4096KB shmem:0KB mapped_file:0KB dirty:132KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:4448KB inactive_file:0KB active_file:0KB unevictable:0KB
[  981.256193] Memory cgroup out of memory: Kill process 29046 (syz-executor.2) score 120 or sacrifice child
[  981.267474] Killed process 29577 (syz-executor.2) total-vm:72584kB, anon-rss:2216kB, file-rss:34816kB, shmem-rss:0kB
[  981.319500] syz-executor.2 invoked oom-killer: gfp_mask=0x6040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null), order=0, oom_score_adj=0
[  981.355409] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[  981.360867] CPU: 1 PID: 29591 Comm: syz-executor.2 Not tainted 4.19.37 #5
[  981.367813] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  981.380699] Call Trace:
[  981.383448]  dump_stack+0x172/0x1f0
[  981.387572]  dump_header+0x15e/0x929
[  981.391309]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[  981.396436]  ? ___ratelimit+0x60/0x595
[  981.400334]  ? do_raw_spin_unlock+0x57/0x270
[  981.404767]  oom_kill_process.cold+0x10/0x6f5
[  981.409290]  ? task_will_free_mem+0x139/0x6e0
[  981.413808]  out_of_memory+0x936/0x12d0
[  981.417808]  ? oom_killer_disable+0x280/0x280
[  981.422326]  ? find_held_lock+0x35/0x130
[  981.426421]  mem_cgroup_out_of_memory+0x1d2/0x240
[  981.431301]  ? memcg_event_wake+0x230/0x230
[  981.435646]  ? do_raw_spin_unlock+0x57/0x270
[  981.440076]  ? _raw_spin_unlock+0x2d/0x50
[  981.444246]  try_charge+0xd25/0x15b0
[  981.447995]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[  981.452894]  ? rcu_read_lock_sched_held+0x110/0x130
[  981.457938]  ? __alloc_pages_nodemask+0x63e/0x760
[  981.462894]  ? perf_trace_lock_acquire+0xf5/0x580
[  981.467763]  memcg_kmem_charge_memcg+0x7c/0x130
[  981.472451]  ? memcg_kmem_put_cache+0xb0/0xb0
[  981.476978]  ? cache_grow_begin+0x59a/0x8c0
[  981.481401]  ? lockdep_hardirqs_on+0x415/0x5d0
[  981.486039]  ? trace_hardirqs_on+0x67/0x230
[  981.490388]  cache_grow_begin+0x25f/0x8c0
[  981.494730]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  981.500368]  ? __cpuset_node_allowed+0x136/0x540
[  981.505146]  fallback_alloc+0x1fd/0x2d0
[  981.509141]  ____cache_alloc_node+0x1be/0x1e0
[  981.513655]  kmem_cache_alloc+0x1f3/0x700
[  981.517826]  ? anon_vma_clone+0x320/0x480
[  981.522021]  anon_vma_fork+0xfc/0x4a0
[  981.525833]  ? dup_userfaultfd+0x15e/0x6c0
[  981.530509]  ? memcpy+0x46/0x50
[  981.533820]  copy_process.part.0+0x34dc/0x7970
[  981.538457]  ? __cleanup_sighand+0x70/0x70
[  981.542721]  ? kasan_check_read+0x11/0x20
[  981.546896]  _do_fork+0x257/0xfe0
[  981.550387]  ? fork_idle+0x1d0/0x1d0
[  981.554129]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  981.558896]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  981.563675]  ? do_syscall_64+0x26/0x610
[  981.567671]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  981.573051]  ? do_syscall_64+0x26/0x610
[  981.577043]  __x64_sys_clone+0xbf/0x150
[  981.581037]  do_syscall_64+0x103/0x610
[  981.584947]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  981.590148] RIP: 0033:0x2000008a
[  981.593525] Code: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 98 4a 2a e9 2c 18 96 4c 0f 05 <bf> 03 00 00 00 c4 a3 7b f0 c5 1d 41 e2 e9 c4 22 e9 aa bb 3c 00 00
[  981.612446] RSP: 002b:00000000000004f0 EFLAGS: 00000287 ORIG_RAX: 0000000000000038
[  981.620277] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 000000002000008a
[  981.627658] RDX: 9c3755da22921eda RSI: 00000000000004f0 RDI: 0000000000000003
[  981.635024] RBP: 00000000000000f8 R08: 0000000000000005 R09: 0000000000000006
[  981.642306] R10: 0000000000000007 R11: 0000000000000287 R12: 000000000000000b
[  981.649595] R13: 000000000000000c R14: 000000000000000d R15: 00000000ffffffff
[  981.666200] Task in /syz2 killed as a result of limit of /syz2
[  981.675889] memory: usage 307200kB, limit 307200kB, failcnt 18775
[  981.685849] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  981.696235] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  981.705963] Memory cgroup stats for /syz2: cache:92KB rss:4492KB rss_huge:4096KB shmem:0KB mapped_file:0KB dirty:132KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:4448KB inactive_file:0KB active_file:0KB unevictable:0KB
[  981.733703] Memory cgroup out of memory: Kill process 29046 (syz-executor.2) score 120 or sacrifice child
[  981.748274] Killed process 29046 (syz-executor.2) total-vm:72584kB, anon-rss:2216kB, file-rss:34816kB, shmem-rss:0kB
[  981.812802] syz-executor.2 invoked oom-killer: gfp_mask=0x6040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null), order=0, oom_score_adj=0
[  981.837675] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[  981.849321] CPU: 1 PID: 29565 Comm: syz-executor.2 Not tainted 4.19.37 #5
[  981.856300] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  981.865667] Call Trace:
[  981.868282]  dump_stack+0x172/0x1f0
[  981.871934]  dump_header+0x15e/0x929
[  981.875674]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[  981.880800]  ? ___ratelimit+0x60/0x595
[  981.884710]  ? do_raw_spin_unlock+0x57/0x270
[  981.889149]  oom_kill_process.cold+0x10/0x6f5
[  981.893671]  ? task_will_free_mem+0x139/0x6e0
[  981.898285]  out_of_memory+0x936/0x12d0
[  981.902297]  ? oom_killer_disable+0x280/0x280
[  981.906809]  ? find_held_lock+0x35/0x130
[  981.910908]  mem_cgroup_out_of_memory+0x1d2/0x240
[  981.915903]  ? memcg_event_wake+0x230/0x230
[  981.920248]  ? do_raw_spin_unlock+0x57/0x270
[  981.924694]  ? _raw_spin_unlock+0x2d/0x50
[  981.929000]  try_charge+0xd25/0x15b0
[  981.931553] net_ratelimit: 16 callbacks suppressed
[  981.931562] protocol 88fb is buggy, dev hsr_slave_0
[  981.932745]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[  981.937740] protocol 88fb is buggy, dev hsr_slave_1
[  981.942696]  ? rcu_read_lock_sched_held+0x110/0x130
[  981.942710]  ? __alloc_pages_nodemask+0x63e/0x760
[  981.942725]  ? perf_trace_lock_acquire+0xf5/0x580
[  981.942748]  memcg_kmem_charge_memcg+0x7c/0x130
[  981.942764]  ? memcg_kmem_put_cache+0xb0/0xb0
[  981.942777]  ? cache_grow_begin+0x59a/0x8c0
[  981.942796]  ? lockdep_hardirqs_on+0x415/0x5d0
[  981.985676]  ? trace_hardirqs_on+0x67/0x230
[  981.990117]  cache_grow_begin+0x25f/0x8c0
[  981.994316]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  981.999872]  ? __cpuset_node_allowed+0x136/0x540
[  982.004652]  fallback_alloc+0x1fd/0x2d0
[  982.008645]  ____cache_alloc_node+0x1be/0x1e0
[  982.013255]  kmem_cache_alloc+0x1f3/0x700
[  982.017430]  ? call_rwsem_wake+0x1b/0x30
[  982.021514]  anon_vma_clone+0x238/0x480
[  982.025516]  anon_vma_fork+0x8f/0x4a0
[  982.029340]  ? dup_userfaultfd+0x15e/0x6c0
[  982.033590]  ? memcpy+0x46/0x50
[  982.036896]  copy_process.part.0+0x34dc/0x7970
[  982.041830]  ? __cleanup_sighand+0x70/0x70
[  982.046192]  ? kasan_check_read+0x11/0x20
[  982.050736]  _do_fork+0x257/0xfe0
[  982.054310]  ? fork_idle+0x1d0/0x1d0
[  982.058049]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  982.062820]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  982.067594]  ? do_syscall_64+0x26/0x610
[  982.071699]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  982.077160]  ? do_syscall_64+0x26/0x610
[  982.081152]  __x64_sys_clone+0xbf/0x150
[  982.085272]  do_syscall_64+0x103/0x610
[  982.089202]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  982.094665] RIP: 0033:0x2000008a
[  982.098043] Code: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 98 4a 2a e9 2c 18 96 4c 0f 05 <bf> 03 00 00 00 c4 a3 7b f0 c5 1d 41 e2 e9 c4 22 e9 aa bb 3c 00 00
[  982.117476] RSP: 002b:00000000000004f0 EFLAGS: 00000287 ORIG_RAX: 0000000000000038
[  982.125817] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 000000002000008a
[  982.133103] RDX: 9c3755da22921eda RSI: 00000000000004f0 RDI: 0000000000000003
[  982.140403] RBP: 00000000000000f8 R08: 0000000000000005 R09: 0000000000000006
[  982.147691] R10: 0000000000000007 R11: 0000000000000287 R12: 000000000000000b
[  982.154971] R13: 000000000000000c R14: 000000000000000d R15: 00000000ffffffff
[  982.177405] Task in /syz2 killed as a result of limit of /syz2
[  982.186242] memory: usage 307200kB, limit 307200kB, failcnt 18804
[  982.197419] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  982.206934] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  982.217997] Memory cgroup stats for /syz2: cache:92KB rss:4492KB rss_huge:4096KB shmem:0KB mapped_file:0KB dirty:132KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:4448KB inactive_file:0KB active_file:0KB unevictable:0KB
[  982.245961] Memory cgroup out of memory: Kill process 29048 (syz-executor.2) score 120 or sacrifice child
[  982.260553] Killed process 29071 (syz-executor.2) total-vm:72584kB, anon-rss:2216kB, file-rss:34816kB, shmem-rss:0kB
[  982.310587] syz-executor.2 invoked oom-killer: gfp_mask=0x6040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null), order=0, oom_score_adj=0
[  982.331536] protocol 88fb is buggy, dev hsr_slave_0
[  982.336673] protocol 88fb is buggy, dev hsr_slave_1
[  982.356581] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[  982.369307] CPU: 1 PID: 29437 Comm: syz-executor.2 Not tainted 4.19.37 #5
[  982.379769] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  982.389139] Call Trace:
[  982.391750]  dump_stack+0x172/0x1f0
[  982.395406]  dump_header+0x15e/0x929
[  982.399137]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[  982.404269]  ? ___ratelimit+0x60/0x595
[  982.408173]  ? do_raw_spin_unlock+0x57/0x270
[  982.412604]  oom_kill_process.cold+0x10/0x6f5
[  982.417280]  ? task_will_free_mem+0x139/0x6e0
[  982.421807]  out_of_memory+0x936/0x12d0
[  982.425895]  ? oom_killer_disable+0x280/0x280
[  982.430399]  ? find_held_lock+0x35/0x130
[  982.434492]  mem_cgroup_out_of_memory+0x1d2/0x240
[  982.439345]  ? memcg_event_wake+0x230/0x230
[  982.443695]  ? do_raw_spin_unlock+0x57/0x270
[  982.448121]  ? _raw_spin_unlock+0x2d/0x50
[  982.452293]  try_charge+0xd25/0x15b0
[  982.456034]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[  982.460903]  ? rcu_read_lock_sched_held+0x110/0x130
[  982.465952]  ? __alloc_pages_nodemask+0x63e/0x760
[  982.470807]  ? perf_trace_lock_acquire+0xf5/0x580
[  982.475679]  memcg_kmem_charge_memcg+0x7c/0x130
[  982.480359]  ? memcg_kmem_put_cache+0xb0/0xb0
[  982.484868]  ? cache_grow_begin+0x59a/0x8c0
[  982.489302]  ? lockdep_hardirqs_on+0x415/0x5d0
[  982.494108]  ? trace_hardirqs_on+0x67/0x230
[  982.498541]  cache_grow_begin+0x25f/0x8c0
[  982.502704]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  982.508290]  ? __cpuset_node_allowed+0x136/0x540
[  982.513153]  fallback_alloc+0x1fd/0x2d0
[  982.517235]  ____cache_alloc_node+0x1be/0x1e0
[  982.521760]  kmem_cache_alloc+0x1f3/0x700
[  982.525925]  ? call_rwsem_wake+0x1b/0x30
[  982.530005]  anon_vma_clone+0x238/0x480
[  982.534111]  anon_vma_fork+0x8f/0x4a0
[  982.537930]  ? dup_userfaultfd+0x15e/0x6c0
[  982.542175]  ? memcpy+0x46/0x50
[  982.545481]  copy_process.part.0+0x34dc/0x7970
[  982.550120]  ? __cleanup_sighand+0x70/0x70
[  982.554418]  ? kasan_check_read+0x11/0x20
[  982.558593]  _do_fork+0x257/0xfe0
[  982.562073]  ? fork_idle+0x1d0/0x1d0
[  982.565854]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  982.570626]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  982.575398]  ? do_syscall_64+0x26/0x610
[  982.579394]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  982.584794]  ? do_syscall_64+0x26/0x610
[  982.588786]  __x64_sys_clone+0xbf/0x150
[  982.592778]  do_syscall_64+0x103/0x610
[  982.596706]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  982.601907] RIP: 0033:0x2000008a
[  982.605458] Code: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 98 4a 2a e9 2c 18 96 4c 0f 05 <bf> 03 00 00 00 c4 a3 7b f0 c5 1d 41 e2 e9 c4 22 e9 aa bb 3c 00 00
[  982.624373] RSP: 002b:00000000000004f0 EFLAGS: 00000287 ORIG_RAX: 0000000000000038
[  982.632099] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 000000002000008a
[  982.639381] RDX: 9c3755da22921eda RSI: 00000000000004f0 RDI: 0000000000000003
[  982.646666] RBP: 00000000000000f8 R08: 0000000000000005 R09: 0000000000000006
[  982.653941] R10: 0000000000000007 R11: 0000000000000287 R12: 000000000000000b
[  982.661221] R13: 000000000000000c R14: 000000000000000d R15: 00000000ffffffff
[  982.682704] Task in /syz2 killed as a result of limit of /syz2
[  982.688758] memory: usage 307156kB, limit 307200kB, failcnt 18828
[  982.704156] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  982.710959] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  982.721005] Memory cgroup stats for /syz2: cache:92KB rss:4492KB rss_huge:4096KB shmem:0KB mapped_file:0KB dirty:132KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:4448KB inactive_file:0KB active_file:0KB unevictable:0KB
[  982.748972] Memory cgroup out of memory: Kill process 29048 (syz-executor.2) score 120 or sacrifice child
[  982.759174] Killed process 29121 (syz-executor.2) total-vm:72584kB, anon-rss:2216kB, file-rss:34816kB, shmem-rss:0kB
[  982.829176] syz-executor.2 invoked oom-killer: gfp_mask=0x6040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null), order=0, oom_score_adj=0
[  982.870686] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[  982.876657] CPU: 1 PID: 29631 Comm: syz-executor.2 Not tainted 4.19.37 #5
[  982.883613] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  982.893063] Call Trace:
[  982.895668]  dump_stack+0x172/0x1f0
[  982.899318]  dump_header+0x15e/0x929
[  982.903050]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[  982.908167]  ? ___ratelimit+0x60/0x595
[  982.912069]  ? do_raw_spin_unlock+0x57/0x270
[  982.916533]  oom_kill_process.cold+0x10/0x6f5
[  982.921046]  ? task_will_free_mem+0x139/0x6e0
[  982.925564]  out_of_memory+0x936/0x12d0
[  982.929651]  ? oom_killer_disable+0x280/0x280
[  982.934163]  ? find_held_lock+0x35/0x130
[  982.938255]  mem_cgroup_out_of_memory+0x1d2/0x240
[  982.943123]  ? memcg_event_wake+0x230/0x230
[  982.947469]  ? do_raw_spin_unlock+0x57/0x270
[  982.951891]  ? _raw_spin_unlock+0x2d/0x50
[  982.956059]  try_charge+0xd25/0x15b0
[  982.959801]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[  982.964674]  ? rcu_read_lock_sched_held+0x110/0x130
[  982.969700]  ? __alloc_pages_nodemask+0x63e/0x760
[  982.974561]  ? perf_trace_lock_acquire+0xf5/0x580
[  982.979426]  memcg_kmem_charge_memcg+0x7c/0x130
[  982.984109]  ? memcg_kmem_put_cache+0xb0/0xb0
[  982.988618]  ? cache_grow_begin+0x59a/0x8c0
[  982.992957]  ? lockdep_hardirqs_on+0x415/0x5d0
[  982.997555]  ? trace_hardirqs_on+0x67/0x230
[  983.001895]  cache_grow_begin+0x25f/0x8c0
[  983.006093]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  983.011644]  ? __cpuset_node_allowed+0x136/0x540
[  983.016419]  fallback_alloc+0x1fd/0x2d0
[  983.020413]  ____cache_alloc_node+0x1be/0x1e0
[  983.024926]  kmem_cache_alloc+0x1f3/0x700
[  983.029086]  ? call_rwsem_wake+0x1b/0x30
[  983.033166]  anon_vma_clone+0x238/0x480
[  983.037171]  anon_vma_fork+0x8f/0x4a0
[  983.040987]  ? dup_userfaultfd+0x15e/0x6c0
[  983.045231]  ? memcpy+0x46/0x50
[  983.048542]  copy_process.part.0+0x34dc/0x7970
[  983.053172]  ? __cleanup_sighand+0x70/0x70
[  983.057435]  ? kasan_check_read+0x11/0x20
[  983.061613]  _do_fork+0x257/0xfe0
[  983.065091]  ? fork_idle+0x1d0/0x1d0
[  983.068828]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  983.073599]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  983.078377]  ? do_syscall_64+0x26/0x610
[  983.082362]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  983.087748]  ? do_syscall_64+0x26/0x610
[  983.091759]  __x64_sys_clone+0xbf/0x150
[  983.095750]  do_syscall_64+0x103/0x610
[  983.099741]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  983.104942] RIP: 0033:0x2000008a
[  983.108319] Code: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 98 4a 2a e9 2c 18 96 4c 0f 05 <bf> 03 00 00 00 c4 a3 7b f0 c5 1d 41 e2 e9 c4 22 e9 aa bb 3c 00 00
[  983.127522] RSP: 002b:00000000000004f0 EFLAGS: 00000287 ORIG_RAX: 0000000000000038
[  983.135267] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 000000002000008a
[  983.142550] RDX: 9c3755da22921eda RSI: 00000000000004f0 RDI: 0000000000000003
[  983.149834] RBP: 00000000000000f8 R08: 0000000000000005 R09: 0000000000000006
[  983.157138] R10: 0000000000000007 R11: 0000000000000287 R12: 000000000000000b
[  983.164435] R13: 000000000000000c R14: 000000000000000d R15: 00000000ffffffff
[  983.182138] Task in /syz2 killed as a result of limit of /syz2
[  983.188213] memory: usage 307200kB, limit 307200kB, failcnt 18880
[  983.201661] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  983.208447] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  983.214905] protocol 88fb is buggy, dev hsr_slave_0
[  983.214980] protocol 88fb is buggy, dev hsr_slave_1
[  983.215098] protocol 88fb is buggy, dev hsr_slave_0
[  983.215157] protocol 88fb is buggy, dev hsr_slave_1
[  983.246279] Memory cgroup stats for /syz2: cache:92KB rss:4492KB rss_huge:4096KB shmem:0KB mapped_file:0KB dirty:132KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:4448KB inactive_file:0KB active_file:0KB unevictable:0KB
[  983.271485] Memory cgroup out of memory: Kill process 29048 (syz-executor.2) score 120 or sacrifice child
[  983.281374] Killed process 29172 (syz-executor.2) total-vm:72584kB, anon-rss:2216kB, file-rss:34816kB, shmem-rss:0kB
[  983.292318] protocol 88fb is buggy, dev hsr_slave_0
[  983.292397] protocol 88fb is buggy, dev hsr_slave_1
[  983.304668] oom_reaper: reaped process 29172 (syz-executor.2), now anon-rss:0kB, file-rss:34816kB, shmem-rss:0kB
[  983.349412] syz-executor.2 invoked oom-killer: gfp_mask=0x6040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null), order=0, oom_score_adj=0
[  983.378367] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[  983.390008] CPU: 0 PID: 29578 Comm: syz-executor.2 Not tainted 4.19.37 #5
[  983.397221] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  983.406598] Call Trace:
[  983.409207]  dump_stack+0x172/0x1f0
[  983.412860]  dump_header+0x15e/0x929
[  983.416676]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[  983.421797]  ? ___ratelimit+0x60/0x595
[  983.425699]  ? do_raw_spin_unlock+0x57/0x270
[  983.430131]  oom_kill_process.cold+0x10/0x6f5
[  983.434647]  ? task_will_free_mem+0x139/0x6e0
[  983.439168]  out_of_memory+0x936/0x12d0
[  983.443288]  ? oom_killer_disable+0x280/0x280
[  983.447795]  ? find_held_lock+0x35/0x130
[  983.451883]  mem_cgroup_out_of_memory+0x1d2/0x240
[  983.457418]  ? memcg_event_wake+0x230/0x230
[  983.461764]  ? do_raw_spin_unlock+0x57/0x270
[  983.466191]  ? _raw_spin_unlock+0x2d/0x50
[  983.470369]  try_charge+0xd25/0x15b0
[  983.474111]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[  983.478978]  ? rcu_read_lock_sched_held+0x110/0x130
[  983.484006]  ? __alloc_pages_nodemask+0x63e/0x760
[  983.488863]  ? perf_trace_lock_acquire+0xf5/0x580
[  983.493838]  memcg_kmem_charge_memcg+0x7c/0x130
[  983.498526]  ? memcg_kmem_put_cache+0xb0/0xb0
[  983.503029]  ? cache_grow_begin+0x59a/0x8c0
[  983.507370]  ? lockdep_hardirqs_on+0x415/0x5d0
[  983.511970]  ? trace_hardirqs_on+0x67/0x230
[  983.516308]  cache_grow_begin+0x25f/0x8c0
[  983.520477]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  983.526029]  ? __cpuset_node_allowed+0x136/0x540
[  983.530804]  fallback_alloc+0x1fd/0x2d0
[  983.534798]  ____cache_alloc_node+0x1be/0x1e0
[  983.539309]  kmem_cache_alloc+0x1f3/0x700
[  983.543476]  ? call_rwsem_wake+0x1b/0x30
[  983.547556]  anon_vma_clone+0x238/0x480
[  983.551548]  anon_vma_fork+0x8f/0x4a0
[  983.555371]  ? dup_userfaultfd+0x15e/0x6c0
[  983.559614]  ? memcpy+0x46/0x50
[  983.562916]  copy_process.part.0+0x34dc/0x7970
[  983.567547]  ? __cleanup_sighand+0x70/0x70
[  983.571810]  ? kasan_check_read+0x11/0x20
[  983.575981]  _do_fork+0x257/0xfe0
[  983.579454]  ? fork_idle+0x1d0/0x1d0
[  983.583227]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  983.588011]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  983.592780]  ? do_syscall_64+0x26/0x610
[  983.596852]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  983.602227]  ? do_syscall_64+0x26/0x610
[  983.606227]  __x64_sys_clone+0xbf/0x150
[  983.610225]  do_syscall_64+0x103/0x610
[  983.614141]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  983.619348] RIP: 0033:0x2000008a
[  983.622726] Code: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 98 4a 2a e9 2c 18 96 4c 0f 05 <bf> 03 00 00 00 c4 a3 7b f0 c5 1d 41 e2 e9 c4 22 e9 aa bb 3c 00 00
[  983.641640] RSP: 002b:00000000000004f0 EFLAGS: 00000287 ORIG_RAX: 0000000000000038
[  983.649373] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 000000002000008a
[  983.656660] RDX: 9c3755da22921eda RSI: 00000000000004f0 RDI: 0000000000000003
[  983.663945] RBP: 00000000000000f8 R08: 0000000000000005 R09: 0000000000000006
[  983.671230] R10: 0000000000000007 R11: 0000000000000287 R12: 000000000000000b
[  983.678523] R13: 000000000000000c R14: 000000000000000d R15: 00000000ffffffff
[  983.688769] Task in /syz2 killed as a result of limit of /syz2
[  983.695192] memory: usage 307048kB, limit 307200kB, failcnt 18988
[  983.701837] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  983.708605] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  983.715136] Memory cgroup stats for /syz2: cache:92KB rss:4492KB rss_huge:4096KB shmem:0KB mapped_file:0KB dirty:132KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:4448KB inactive_file:0KB active_file:0KB unevictable:0KB
[  983.736191] Memory cgroup out of memory: Kill process 29048 (syz-executor.2) score 120 or sacrifice child
[  983.746382] Killed process 29371 (syz-executor.2) total-vm:72584kB, anon-rss:2216kB, file-rss:34816kB, shmem-rss:0kB
[  983.758409] oom_reaper: reaped process 29371 (syz-executor.2), now anon-rss:0kB, file-rss:34816kB, shmem-rss:0kB
[  983.781129] syz-executor.2 invoked oom-killer: gfp_mask=0x7080c0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), nodemask=(null), order=0, oom_score_adj=0
[  983.834962] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[  983.840403] CPU: 0 PID: 29409 Comm: syz-executor.2 Not tainted 4.19.37 #5
[  983.847426] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  983.856818] Call Trace:
[  983.859426]  dump_stack+0x172/0x1f0
[  983.863080]  dump_header+0x15e/0x929
[  983.866811]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[  983.871930]  ? ___ratelimit+0x60/0x595
[  983.875830]  ? do_raw_spin_unlock+0x57/0x270
[  983.880267]  oom_kill_process.cold+0x10/0x6f5
[  983.884786]  ? task_will_free_mem+0x139/0x6e0
[  983.889306]  out_of_memory+0x936/0x12d0
[  983.893311]  ? oom_killer_disable+0x280/0x280
[  983.897827]  ? find_held_lock+0x35/0x130
[  983.901924]  mem_cgroup_out_of_memory+0x1d2/0x240
[  983.906780]  ? memcg_event_wake+0x230/0x230
[  983.911119]  ? do_raw_spin_unlock+0x57/0x270
[  983.915630]  ? _raw_spin_unlock+0x2d/0x50
[  983.919798]  try_charge+0xd25/0x15b0
[  983.923533]  ? find_held_lock+0x35/0x130
[  983.927795]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[  983.932652]  ? get_mem_cgroup_from_mm+0x10b/0x2b0
[  983.937518]  ? find_held_lock+0x35/0x130
[  983.941594]  ? get_mem_cgroup_from_mm+0x10b/0x2b0
[  983.946489]  memcg_kmem_charge_memcg+0x7c/0x130
[  983.951436]  ? memcg_kmem_put_cache+0xb0/0xb0
[  983.955949]  ? get_mem_cgroup_from_mm+0x128/0x2b0
[  983.960823]  memcg_kmem_charge+0x136/0x300
[  983.965102]  __alloc_pages_nodemask+0x3c6/0x760
[  983.969860]  ? debug_smp_processor_id+0x1c/0x20
[  983.974570]  ? __alloc_pages_slowpath+0x2870/0x2870
[  983.979715]  ? find_held_lock+0x35/0x130
[  983.983801]  ? copy_page_range+0x124f/0x1f90
[  983.988325]  ? __sanitizer_cov_trace_const_cmp2+0x18/0x20
[  983.993977]  alloc_pages_current+0x107/0x210
[  983.998407]  pte_alloc_one+0x1b/0x1a0
[  984.002225]  __pte_alloc+0x2a/0x360
[  984.005877]  copy_page_range+0x151f/0x1f90
[  984.010124]  ? _raw_spin_unlock_irqrestore+0x6b/0xe0
[  984.015287]  ? pmd_alloc+0x180/0x180
[  984.019017]  ? __vma_link_rb+0x279/0x370
[  984.023102]  copy_process.part.0+0x5434/0x7970
[  984.027730]  ? __cleanup_sighand+0x70/0x70
[  984.031993]  ? kasan_check_read+0x11/0x20
[  984.036159]  _do_fork+0x257/0xfe0
[  984.039635]  ? fork_idle+0x1d0/0x1d0
[  984.043378]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  984.048151]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  984.052928]  ? do_syscall_64+0x26/0x610
[  984.056918]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  984.062305]  ? do_syscall_64+0x26/0x610
[  984.066309]  __x64_sys_clone+0xbf/0x150
[  984.070318]  do_syscall_64+0x103/0x610
[  984.074228]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  984.079530] RIP: 0033:0x2000008a
[  984.083007] Code: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 98 4a 2a e9 2c 18 96 4c 0f 05 <bf> 03 00 00 00 c4 a3 7b f0 c5 1d 41 e2 e9 c4 22 e9 aa bb 3c 00 00
[  984.101926] RSP: 002b:00000000000004f0 EFLAGS: 00000287 ORIG_RAX: 0000000000000038
[  984.109748] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 000000002000008a
[  984.117852] RDX: 9c3755da22921eda RSI: 00000000000004f0 RDI: 0000000000000003
[  984.125145] RBP: 00000000000000f8 R08: 0000000000000005 R09: 0000000000000006
[  984.132429] R10: 0000000000000007 R11: 0000000000000287 R12: 000000000000000b
[  984.139712] R13: 000000000000000c R14: 000000000000000d R15: 00000000ffffffff
[  984.149761] Task in /syz2 killed as a result of limit of /syz2
[  984.156229] memory: usage 307200kB, limit 307200kB, failcnt 19062
[  984.162970] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  984.169751] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  984.176385] Memory cgroup stats for /syz2: cache:92KB rss:4492KB rss_huge:4096KB shmem:0KB mapped_file:0KB dirty:132KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:4448KB inactive_file:0KB active_file:0KB unevictable:0KB
[  984.197504] Memory cgroup out of memory: Kill process 29048 (syz-executor.2) score 120 or sacrifice child
[  984.207760] Killed process 29414 (syz-executor.2) total-vm:72584kB, anon-rss:2216kB, file-rss:34816kB, shmem-rss:0kB
[  984.243702] syz-executor.2 invoked oom-killer: gfp_mask=0x6040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null), order=0, oom_score_adj=0
[  984.266320] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[  984.272453] CPU: 0 PID: 29135 Comm: syz-executor.2 Not tainted 4.19.37 #5
[  984.279513] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  984.288876] Call Trace:
[  984.291484]  dump_stack+0x172/0x1f0
[  984.295140]  dump_header+0x15e/0x929
[  984.298872]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[  984.303997]  ? ___ratelimit+0x60/0x595
[  984.307898]  ? do_raw_spin_unlock+0x57/0x270
[  984.312359]  oom_kill_process.cold+0x10/0x6f5
[  984.317096]  ? task_will_free_mem+0x139/0x6e0
[  984.321615]  out_of_memory+0x936/0x12d0
[  984.325642]  ? oom_killer_disable+0x280/0x280
[  984.330152]  ? find_held_lock+0x35/0x130
[  984.334253]  mem_cgroup_out_of_memory+0x1d2/0x240
[  984.339122]  ? memcg_event_wake+0x230/0x230
[  984.343662]  ? do_raw_spin_unlock+0x57/0x270
[  984.348717]  ? _raw_spin_unlock+0x2d/0x50
[  984.353421]  try_charge+0xd25/0x15b0
[  984.357179]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[  984.362056]  ? rcu_read_lock_sched_held+0x110/0x130
[  984.367087]  ? __alloc_pages_nodemask+0x63e/0x760
[  984.373694]  ? perf_trace_lock_acquire+0xf5/0x580
[  984.382145]  memcg_kmem_charge_memcg+0x7c/0x130
[  984.386837]  ? memcg_kmem_put_cache+0xb0/0xb0
[  984.391376]  ? cache_grow_begin+0x59a/0x8c0
[  984.395723]  ? lockdep_hardirqs_on+0x415/0x5d0
[  984.400343]  ? trace_hardirqs_on+0x67/0x230
[  984.404694]  cache_grow_begin+0x25f/0x8c0
[  984.408879]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  984.414449]  ? __cpuset_node_allowed+0x136/0x540
[  984.419238]  fallback_alloc+0x1fd/0x2d0
[  984.423253]  ____cache_alloc_node+0x1be/0x1e0
[  984.427785]  kmem_cache_alloc+0x1f3/0x700
[  984.431952]  ? call_rwsem_wake+0x1b/0x30
[  984.436038]  anon_vma_clone+0x238/0x480
[  984.440039]  anon_vma_fork+0x8f/0x4a0
[  984.443857]  ? dup_userfaultfd+0x15e/0x6c0
[  984.448112]  ? memcpy+0x46/0x50
[  984.451551]  copy_process.part.0+0x34dc/0x7970
[  984.456186]  ? __cleanup_sighand+0x70/0x70
[  984.460452]  ? kasan_check_read+0x11/0x20
[  984.464686]  _do_fork+0x257/0xfe0
[  984.468164]  ? fork_idle+0x1d0/0x1d0
[  984.471904]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  984.476680]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  984.481454]  ? do_syscall_64+0x26/0x610
[  984.486578]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  984.491964]  ? do_syscall_64+0x26/0x610
[  984.495982]  __x64_sys_clone+0xbf/0x150
[  984.499977]  do_syscall_64+0x103/0x610
[  984.503893]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  984.509095] RIP: 0033:0x2000008a
[  984.512495] Code: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 98 4a 2a e9 2c 18 96 4c 0f 05 <bf> 03 00 00 00 c4 a3 7b f0 c5 1d 41 e2 e9 c4 22 e9 aa bb 3c 00 00
[  984.531413] RSP: 002b:00000000000004f0 EFLAGS: 00000287 ORIG_RAX: 0000000000000038
[  984.539157] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 000000002000008a
[  984.546447] RDX: 9c3755da22921eda RSI: 00000000000004f0 RDI: 0000000000000003
[  984.553740] RBP: 00000000000000f8 R08: 0000000000000005 R09: 0000000000000006
[  984.561130] R10: 0000000000000007 R11: 0000000000000287 R12: 000000000000000b
[  984.568679] R13: 000000000000000c R14: 000000000000000d R15: 00000000ffffffff
[  984.579114] Task in /syz2 killed as a result of limit of /syz2
[  984.602091] memory: usage 307200kB, limit 307200kB, failcnt 19086
[  984.608479] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  984.615787] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  984.622606] Memory cgroup stats for /syz2: cache:92KB rss:4492KB rss_huge:4096KB shmem:0KB mapped_file:0KB dirty:132KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:4448KB inactive_file:0KB active_file:0KB unevictable:0KB
[  984.643792] Memory cgroup out of memory: Kill process 29048 (syz-executor.2) score 120 or sacrifice child
[  984.654161] Killed process 29048 (syz-executor.2) total-vm:72584kB, anon-rss:2216kB, file-rss:34816kB, shmem-rss:0kB
[  984.700013] syz-executor.2 invoked oom-killer: gfp_mask=0x6040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null), order=0, oom_score_adj=0
[  984.730660] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[  984.740605] CPU: 0 PID: 29653 Comm: syz-executor.2 Not tainted 4.19.37 #5
[  984.747560] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  984.756952] Call Trace:
[  984.759559]  dump_stack+0x172/0x1f0
[  984.763214]  dump_header+0x15e/0x929
[  984.766947]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[  984.772068]  ? ___ratelimit+0x60/0x595
[  984.775973]  ? do_raw_spin_unlock+0x57/0x270
[  984.780662]  oom_kill_process.cold+0x10/0x6f5
[  984.785182]  ? task_will_free_mem+0x139/0x6e0
[  984.789791]  out_of_memory+0x936/0x12d0
[  984.793793]  ? oom_killer_disable+0x280/0x280
[  984.798307]  ? find_held_lock+0x35/0x130
[  984.802403]  mem_cgroup_out_of_memory+0x1d2/0x240
[  984.807367]  ? memcg_event_wake+0x230/0x230
[  984.811717]  ? do_raw_spin_unlock+0x57/0x270
[  984.816578]  ? _raw_spin_unlock+0x2d/0x50
[  984.820838]  try_charge+0xd25/0x15b0
[  984.824577]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[  984.829711]  ? rcu_read_lock_sched_held+0x110/0x130
[  984.834746]  ? __alloc_pages_nodemask+0x63e/0x760
[  984.839866]  ? perf_trace_lock_acquire+0xf5/0x580
[  984.844732]  memcg_kmem_charge_memcg+0x7c/0x130
[  984.849418]  ? memcg_kmem_put_cache+0xb0/0xb0
[  984.853922]  ? cache_grow_begin+0x59a/0x8c0
[  984.858269]  ? lockdep_hardirqs_on+0x415/0x5d0
[  984.862871]  ? trace_hardirqs_on+0x67/0x230
[  984.867220]  cache_grow_begin+0x25f/0x8c0
[  984.871411]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  984.876973]  ? __cpuset_node_allowed+0x136/0x540
[  984.881756]  fallback_alloc+0x1fd/0x2d0
[  984.885758]  ____cache_alloc_node+0x1be/0x1e0
[  984.890290]  kmem_cache_alloc+0x1f3/0x700
[  984.894462]  ? call_rwsem_wake+0x1b/0x30
[  984.898562]  anon_vma_clone+0x238/0x480
[  984.902568]  anon_vma_fork+0x8f/0x4a0
[  984.906387]  ? dup_userfaultfd+0x15e/0x6c0
[  984.910660]  ? memcpy+0x46/0x50
[  984.913988]  copy_process.part.0+0x34dc/0x7970
[  984.918646]  ? __cleanup_sighand+0x70/0x70
[  984.922914]  ? kasan_check_read+0x11/0x20
[  984.927104]  _do_fork+0x257/0xfe0
[  984.930577]  ? fork_idle+0x1d0/0x1d0
[  984.934346]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  984.939132]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  984.943992]  ? do_syscall_64+0x26/0x610
[  984.947981]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  984.953364]  ? do_syscall_64+0x26/0x610
[  984.957366]  __x64_sys_clone+0xbf/0x150
[  984.961363]  do_syscall_64+0x103/0x610
[  984.965285]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  984.970578] RIP: 0033:0x2000008a
[  984.973988] Code: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 98 4a 2a e9 2c 18 96 4c 0f 05 <bf> 03 00 00 00 c4 a3 7b f0 c5 1d 41 e2 e9 c4 22 e9 aa bb 3c 00 00
[  984.992909] RSP: 002b:00000000000004f0 EFLAGS: 00000287 ORIG_RAX: 0000000000000038
[  985.000658] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 000000002000008a
[  985.007970] RDX: 9c3755da22921eda RSI: 00000000000004f0 RDI: 0000000000000003
[  985.015289] RBP: 00000000000000f8 R08: 0000000000000005 R09: 0000000000000006
[  985.023010] R10: 0000000000000007 R11: 0000000000000287 R12: 000000000000000b
[  985.030321] R13: 000000000000000c R14: 000000000000000d R15: 00000000ffffffff
[  985.042241] Task in /syz2 killed as a result of limit of /syz2
[  985.048300] memory: usage 307196kB, limit 307200kB, failcnt 19136
[  985.055144] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  985.062254] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  985.068422] Memory cgroup stats for /syz2: cache:92KB rss:4492KB rss_huge:4096KB shmem:0KB mapped_file:0KB dirty:132KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:4448KB inactive_file:0KB active_file:0KB unevictable:0KB
[  985.089802] Memory cgroup out of memory: Kill process 29050 (syz-executor.2) score 120 or sacrifice child
[  985.100285] Killed process 29070 (syz-executor.2) total-vm:72584kB, anon-rss:2216kB, file-rss:34816kB, shmem-rss:0kB
[  985.120015] Memory cgroup out of memory: Kill process 29050 (syz-executor.2) score 120 or sacrifice child
[  985.159536] Killed process 29127 (syz-executor.2) total-vm:72584kB, anon-rss:2216kB, file-rss:34816kB, shmem-rss:0kB
[  985.230120] Memory cgroup out of memory: Kill process 29050 (syz-executor.2) score 120 or sacrifice child
[  985.281054] Killed process 29383 (syz-executor.2) total-vm:72584kB, anon-rss:2216kB, file-rss:34816kB, shmem-rss:0kB
[  985.356965] Memory cgroup out of memory: Kill process 29050 (syz-executor.2) score 120 or sacrifice child
[  985.385912] Killed process 29490 (syz-executor.2) total-vm:72584kB, anon-rss:2216kB, file-rss:34816kB, shmem-rss:0kB
[  985.437932] oom_kill_process: 3 callbacks suppressed
[  985.437953] syz-executor.2 invoked oom-killer: gfp_mask=0x7080c0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), nodemask=(null), order=3, oom_score_adj=0
[  985.480888] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[  985.489867] CPU: 1 PID: 29189 Comm: syz-executor.2 Not tainted 4.19.37 #5
[  985.496827] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  985.506203] Call Trace:
[  985.508813]  dump_stack+0x172/0x1f0
[  985.512467]  dump_header+0x15e/0x929
[  985.516202]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[  985.521332]  ? ___ratelimit+0x60/0x595
[  985.525240]  oom_kill_process.cold+0x10/0x6f5
[  985.529784]  ? task_will_free_mem+0x139/0x6e0
[  985.534313]  out_of_memory+0x936/0x12d0
[  985.538324]  ? oom_killer_disable+0x280/0x280
[  985.542830]  ? find_held_lock+0x35/0x130
[  985.546924]  mem_cgroup_out_of_memory+0x1d2/0x240
[  985.551784]  ? memcg_event_wake+0x230/0x230
[  985.556127]  ? do_raw_spin_unlock+0x57/0x270
[  985.560554]  ? _raw_spin_unlock+0x2d/0x50
[  985.564723]  try_charge+0xd25/0x15b0
[  985.568448]  ? find_held_lock+0x35/0x130
[  985.572534]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[  985.577389]  ? get_mem_cgroup_from_mm+0x10b/0x2b0
[  985.582257]  ? find_held_lock+0x35/0x130
[  985.586345]  ? get_mem_cgroup_from_mm+0x10b/0x2b0
[  985.591222]  memcg_kmem_charge_memcg+0x7c/0x130
[  985.596011]  ? memcg_kmem_put_cache+0xb0/0xb0
[  985.600531]  ? get_mem_cgroup_from_mm+0x128/0x2b0
[  985.605397]  memcg_kmem_charge+0x136/0x300
[  985.609649]  __alloc_pages_nodemask+0x3c6/0x760
[  985.614356]  ? __alloc_pages_slowpath+0x2870/0x2870
[  985.619407]  ? lockdep_hardirqs_on+0x415/0x5d0
[  985.624007]  ? trace_hardirqs_on+0x67/0x230
[  985.628342]  ? kasan_check_read+0x11/0x20
[  985.632510]  copy_process.part.0+0x3e0/0x7970
[  985.637015]  ? __do_page_fault+0x484/0xe90
[  985.641291]  ? mark_held_locks+0x100/0x100
[  985.645568]  ? debug_smp_processor_id+0x1c/0x20
[  985.650253]  ? perf_trace_lock_acquire+0xf5/0x580
[  985.655120]  ? perf_trace_lock_acquire+0xf5/0x580
[  985.659990]  ? __cleanup_sighand+0x70/0x70
[  985.664251]  ? kasan_check_read+0x11/0x20
[  985.668432]  _do_fork+0x257/0xfe0
[  985.671907]  ? fork_idle+0x1d0/0x1d0
[  985.675647]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  985.680413]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  985.685180]  ? do_syscall_64+0x26/0x610
[  985.689177]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  985.694557]  ? do_syscall_64+0x26/0x610
[  985.698553]  __x64_sys_clone+0xbf/0x150
[  985.702543]  do_syscall_64+0x103/0x610
[  985.706452]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  985.711672] RIP: 0033:0x2000008a
[  985.715046] Code: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 98 4a 2a e9 2c 18 96 4c 0f 05 <bf> 03 00 00 00 c4 a3 7b f0 c5 1d 41 e2 e9 c4 22 e9 aa bb 3c 00 00
[  985.733969] RSP: 002b:00000000000004f0 EFLAGS: 00000287 ORIG_RAX: 0000000000000038
[  985.741712] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 000000002000008a
[  985.749025] RDX: 9c3755da22921eda RSI: 00000000000004f0 RDI: 0000000000000003
[  985.756324] RBP: 00000000000000f8 R08: 0000000000000005 R09: 0000000000000006
[  985.763646] R10: 0000000000000007 R11: 0000000000000287 R12: 000000000000000b
[  985.770974] R13: 000000000000000c R14: 000000000000000d R15: 00000000ffffffff
[  985.790289] Task in /syz2 killed as a result of limit of /syz2
[  985.797973] memory: usage 307184kB, limit 307200kB, failcnt 19266
[  985.810318] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  985.818658] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  985.830812] Memory cgroup stats for /syz2: cache:92KB rss:4492KB rss_huge:4096KB shmem:0KB mapped_file:0KB dirty:132KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:4448KB inactive_file:0KB active_file:0KB unevictable:0KB
[  985.858607] Memory cgroup out of memory: Kill process 29050 (syz-executor.2) score 120 or sacrifice child
[  985.868781] Killed process 29050 (syz-executor.2) total-vm:72584kB, anon-rss:2216kB, file-rss:34816kB, shmem-rss:0kB
[  985.926064] syz-executor.2 invoked oom-killer: gfp_mask=0x6040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null), order=1, oom_score_adj=0
[  985.948656] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[  985.954646] CPU: 1 PID: 29067 Comm: syz-executor.2 Not tainted 4.19.37 #5
[  985.961595] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  985.970967] Call Trace:
[  985.973574]  dump_stack+0x172/0x1f0
[  985.977222]  dump_header+0x15e/0x929
[  985.980965]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[  985.986088]  ? ___ratelimit+0x60/0x595
[  985.989989]  ? do_raw_spin_unlock+0x57/0x270
[  985.994423]  oom_kill_process.cold+0x10/0x6f5
[  985.998935]  ? task_will_free_mem+0x139/0x6e0
[  986.003454]  out_of_memory+0x936/0x12d0
[  986.007451]  ? oom_killer_disable+0x280/0x280
[  986.012060]  ? find_held_lock+0x35/0x130
[  986.016155]  mem_cgroup_out_of_memory+0x1d2/0x240
[  986.021019]  ? memcg_event_wake+0x230/0x230
[  986.025366]  ? do_raw_spin_unlock+0x57/0x270
[  986.029792]  ? _raw_spin_unlock+0x2d/0x50
[  986.033961]  try_charge+0xd25/0x15b0
[  986.037710]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[  986.042575]  ? rcu_read_lock_sched_held+0x110/0x130
[  986.047612]  ? __alloc_pages_nodemask+0x63e/0x760
[  986.052468]  ? perf_trace_lock_acquire+0xf5/0x580
[  986.057339]  memcg_kmem_charge_memcg+0x7c/0x130
[  986.062027]  ? memcg_kmem_put_cache+0xb0/0xb0
[  986.066536]  ? cache_grow_begin+0x59a/0x8c0
[  986.070878]  ? lockdep_hardirqs_on+0x415/0x5d0
[  986.075488]  ? trace_hardirqs_on+0x67/0x230
[  986.079826]  cache_grow_begin+0x25f/0x8c0
[  986.084006]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  986.089554]  ? __cpuset_node_allowed+0x136/0x540
[  986.094329]  fallback_alloc+0x1fd/0x2d0
[  986.098323]  ____cache_alloc_node+0x1be/0x1e0
[  986.102835]  kmem_cache_alloc_node+0xe3/0x710
[  986.107350]  ? lockdep_hardirqs_on+0x415/0x5d0
[  986.111952]  ? trace_hardirqs_on+0x67/0x230
[  986.116303]  copy_process.part.0+0x1cd5/0x7970
[  986.120918]  ? __do_page_fault+0x484/0xe90
[  986.125279]  ? mark_held_locks+0x100/0x100
[  986.129532]  ? debug_smp_processor_id+0x1c/0x20
[  986.134214]  ? perf_trace_lock_acquire+0xf5/0x580
[  986.139064]  ? perf_trace_lock_acquire+0xf5/0x580
[  986.143937]  ? __cleanup_sighand+0x70/0x70
[  986.148194]  ? kasan_check_read+0x11/0x20
[  986.152362]  _do_fork+0x257/0xfe0
[  986.155834]  ? fork_idle+0x1d0/0x1d0
[  986.159600]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  986.164386]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  986.169157]  ? do_syscall_64+0x26/0x610
[  986.173147]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  986.178526]  ? do_syscall_64+0x26/0x610
[  986.182518]  __x64_sys_clone+0xbf/0x150
[  986.186519]  do_syscall_64+0x103/0x610
[  986.190444]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  986.195646] RIP: 0033:0x2000008a
[  986.199113] Code: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 98 4a 2a e9 2c 18 96 4c 0f 05 <bf> 03 00 00 00 c4 a3 7b f0 c5 1d 41 e2 e9 c4 22 e9 aa bb 3c 00 00
[  986.218050] RSP: 002b:00000000000004f0 EFLAGS: 00000287 ORIG_RAX: 0000000000000038
[  986.225780] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 000000002000008a
[  986.233057] RDX: 9c3755da22921eda RSI: 00000000000004f0 RDI: 0000000000000003
[  986.240331] RBP: 00000000000000f8 R08: 0000000000000005 R09: 0000000000000006
[  986.247610] R10: 0000000000000007 R11: 0000000000000287 R12: 000000000000000b
[  986.254892] R13: 000000000000000c R14: 000000000000000d R15: 00000000ffffffff
[  986.272568] Task in /syz2 killed as a result of limit of /syz2
[  986.278617] memory: usage 307200kB, limit 307200kB, failcnt 19307
[  986.293655] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  986.300438] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  986.311597] Memory cgroup stats for /syz2: cache:92KB rss:4492KB rss_huge:4096KB shmem:0KB mapped_file:0KB dirty:132KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:4448KB inactive_file:0KB active_file:0KB unevictable:0KB
[  986.359519] Memory cgroup out of memory: Kill process 29053 (syz-executor.2) score 120 or sacrifice child
[  986.372104] Killed process 29077 (syz-executor.2) total-vm:72584kB, anon-rss:2216kB, file-rss:34816kB, shmem-rss:0kB
[  986.445646] syz-executor.2 invoked oom-killer: gfp_mask=0x7080c0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), nodemask=(null), order=3, oom_score_adj=0
[  986.469315] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[  986.475398] CPU: 1 PID: 29404 Comm: syz-executor.2 Not tainted 4.19.37 #5
[  986.483909] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  986.493281] Call Trace:
[  986.495887]  dump_stack+0x172/0x1f0
[  986.499544]  dump_header+0x15e/0x929
[  986.503299]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[  986.508432]  ? ___ratelimit+0x60/0x595
[  986.512513]  ? do_raw_spin_unlock+0x57/0x270
[  986.517052]  oom_kill_process.cold+0x10/0x6f5
[  986.521569]  ? task_will_free_mem+0x139/0x6e0
[  986.526088]  out_of_memory+0x936/0x12d0
[  986.530087]  ? oom_killer_disable+0x280/0x280
[  986.534599]  ? find_held_lock+0x35/0x130
[  986.538687]  mem_cgroup_out_of_memory+0x1d2/0x240
[  986.543543]  ? memcg_event_wake+0x230/0x230
[  986.547889]  ? do_raw_spin_unlock+0x57/0x270
[  986.552318]  ? _raw_spin_unlock+0x2d/0x50
[  986.556485]  try_charge+0xd25/0x15b0
[  986.560210]  ? find_held_lock+0x35/0x130
[  986.564303]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[  986.569161]  ? get_mem_cgroup_from_mm+0x10b/0x2b0
[  986.574018]  ? find_held_lock+0x35/0x130
[  986.578104]  ? get_mem_cgroup_from_mm+0x10b/0x2b0
[  986.582982]  memcg_kmem_charge_memcg+0x7c/0x130
[  986.587847]  ? memcg_kmem_put_cache+0xb0/0xb0
[  986.592368]  ? get_mem_cgroup_from_mm+0x128/0x2b0
[  986.597322]  memcg_kmem_charge+0x136/0x300
[  986.601574]  __alloc_pages_nodemask+0x3c6/0x760
[  986.606271]  ? __alloc_pages_slowpath+0x2870/0x2870
[  986.611315]  ? lockdep_hardirqs_on+0x415/0x5d0
[  986.615927]  ? trace_hardirqs_on+0x67/0x230
[  986.620271]  ? kasan_check_read+0x11/0x20
[  986.624452]  copy_process.part.0+0x3e0/0x7970
[  986.629046]  ? __do_page_fault+0x484/0xe90
[  986.633310]  ? mark_held_locks+0x100/0x100
[  986.637562]  ? debug_smp_processor_id+0x1c/0x20
[  986.642246]  ? perf_trace_lock_acquire+0xf5/0x580
[  986.647109]  ? perf_trace_lock_acquire+0xf5/0x580
[  986.651979]  ? __cleanup_sighand+0x70/0x70
[  986.656245]  ? kasan_check_read+0x11/0x20
[  986.660422]  _do_fork+0x257/0xfe0
[  986.663920]  ? fork_idle+0x1d0/0x1d0
[  986.667747]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  986.672607]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  986.677578]  ? do_syscall_64+0x26/0x610
[  986.681568]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  986.686972]  ? do_syscall_64+0x26/0x610
[  986.690968]  __x64_sys_clone+0xbf/0x150
[  986.694957]  do_syscall_64+0x103/0x610
[  986.698870]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  986.704069] RIP: 0033:0x2000008a
[  986.707446] Code: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 98 4a 2a e9 2c 18 96 4c 0f 05 <bf> 03 00 00 00 c4 a3 7b f0 c5 1d 41 e2 e9 c4 22 e9 aa bb 3c 00 00
[  986.726458] RSP: 002b:00000000000004f0 EFLAGS: 00000287 ORIG_RAX: 0000000000000038
[  986.734200] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 000000002000008a
[  986.741500] RDX: 9c3755da22921eda RSI: 00000000000004f0 RDI: 0000000000000003
[  986.748778] RBP: 00000000000000f8 R08: 0000000000000005 R09: 0000000000000006
[  986.756058] R10: 0000000000000007 R11: 0000000000000287 R12: 000000000000000b
[  986.763357] R13: 000000000000000c R14: 000000000000000d R15: 00000000ffffffff
[  986.782699] Task in /syz2 killed as a result of limit of /syz2
[  986.788752] memory: usage 307156kB, limit 307200kB, failcnt 19347
[  986.801616] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  986.809350] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  986.821989] Memory cgroup stats for /syz2: cache:92KB rss:4492KB rss_huge:4096KB shmem:0KB mapped_file:0KB dirty:132KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:4448KB inactive_file:0KB active_file:0KB unevictable:0KB
[  986.850066] Memory cgroup out of memory: Kill process 29053 (syz-executor.2) score 120 or sacrifice child
[  986.860257] Killed process 29149 (syz-executor.2) total-vm:72584kB, anon-rss:2216kB, file-rss:34816kB, shmem-rss:0kB
[  986.908456] syz-executor.2 invoked oom-killer: gfp_mask=0x6040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null), order=1, oom_score_adj=0
[  986.923715] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[  986.929255] CPU: 0 PID: 29186 Comm: syz-executor.2 Not tainted 4.19.37 #5
[  986.936202] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  986.945566] Call Trace:
[  986.948177]  dump_stack+0x172/0x1f0
[  986.951831]  dump_header+0x15e/0x929
[  986.955564]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[  986.960685]  ? ___ratelimit+0x60/0x595
[  986.964614]  ? do_raw_spin_unlock+0x57/0x270
[  986.969043]  oom_kill_process.cold+0x10/0x6f5
[  986.973584]  ? task_will_free_mem+0x139/0x6e0
[  986.978110]  out_of_memory+0x936/0x12d0
[  986.982107]  ? oom_killer_disable+0x280/0x280
[  986.986622]  ? find_held_lock+0x35/0x130
[  986.990714]  mem_cgroup_out_of_memory+0x1d2/0x240
[  986.995572]  ? memcg_event_wake+0x230/0x230
[  986.999916]  ? do_raw_spin_unlock+0x57/0x270
[  987.004350]  ? _raw_spin_unlock+0x2d/0x50
[  987.008518]  try_charge+0xd25/0x15b0
[  987.012273]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[  987.017146]  ? rcu_read_lock_sched_held+0x110/0x130
[  987.022176]  ? __alloc_pages_nodemask+0x63e/0x760
[  987.027124]  ? perf_trace_lock_acquire+0xf5/0x580
[  987.031990]  memcg_kmem_charge_memcg+0x7c/0x130
[  987.036677]  ? memcg_kmem_put_cache+0xb0/0xb0
[  987.041185]  ? cache_grow_begin+0x59a/0x8c0
[  987.045524]  ? lockdep_hardirqs_on+0x415/0x5d0
[  987.050131]  ? trace_hardirqs_on+0x67/0x230
[  987.054497]  cache_grow_begin+0x25f/0x8c0
[  987.058672]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  987.064232]  ? __cpuset_node_allowed+0x136/0x540
[  987.069021]  fallback_alloc+0x1fd/0x2d0
[  987.073036]  ____cache_alloc_node+0x1be/0x1e0
[  987.077557]  kmem_cache_alloc_node+0xe3/0x710
[  987.082066]  ? lockdep_hardirqs_on+0x415/0x5d0
[  987.086679]  ? trace_hardirqs_on+0x67/0x230
[  987.091023]  copy_process.part.0+0x1cd5/0x7970
[  987.095698]  ? __do_page_fault+0x484/0xe90
[  987.100477]  ? mark_held_locks+0x100/0x100
[  987.104728]  ? debug_smp_processor_id+0x1c/0x20
[  987.109410]  ? perf_trace_lock_acquire+0xf5/0x580
[  987.114390]  ? perf_trace_lock_acquire+0xf5/0x580
[  987.119279]  ? __cleanup_sighand+0x70/0x70
[  987.123549]  ? kasan_check_read+0x11/0x20
[  987.127736]  _do_fork+0x257/0xfe0
[  987.131229]  ? fork_idle+0x1d0/0x1d0
[  987.134976]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  987.139765]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  987.144534]  ? do_syscall_64+0x26/0x610
[  987.148529]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  987.153911]  ? do_syscall_64+0x26/0x610
[  987.157914]  __x64_sys_clone+0xbf/0x150
[  987.161908]  do_syscall_64+0x103/0x610
[  987.165817]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  987.171021] RIP: 0033:0x2000008a
[  987.174405] Code: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 98 4a 2a e9 2c 18 96 4c 0f 05 <bf> 03 00 00 00 c4 a3 7b f0 c5 1d 41 e2 e9 c4 22 e9 aa bb 3c 00 00
[  987.193333] RSP: 002b:00000000000004f0 EFLAGS: 00000287 ORIG_RAX: 0000000000000038
[  987.201075] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 000000002000008a
[  987.208453] RDX: 9c3755da22921eda RSI: 00000000000004f0 RDI: 0000000000000003
[  987.215738] RBP: 00000000000000f8 R08: 0000000000000005 R09: 0000000000000006
[  987.223023] R10: 0000000000000007 R11: 0000000000000287 R12: 000000000000000b
[  987.230307] R13: 000000000000000c R14: 000000000000000d R15: 00000000ffffffff
[  987.239569] Task in /syz2 killed as a result of limit of /syz2
[  987.246039] memory: usage 307188kB, limit 307200kB, failcnt 19370
[  987.252722] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  987.259497] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  987.266203] Memory cgroup stats for /syz2: cache:92KB rss:4492KB rss_huge:4096KB shmem:0KB mapped_file:0KB dirty:132KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:4448KB inactive_file:0KB active_file:0KB unevictable:0KB
[  987.287291] Memory cgroup out of memory: Kill process 29053 (syz-executor.2) score 120 or sacrifice child
[  987.297709] Killed process 29382 (syz-executor.2) total-vm:72584kB, anon-rss:2216kB, file-rss:34816kB, shmem-rss:0kB
[  987.338405] syz-executor.2 invoked oom-killer: gfp_mask=0x6040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null), order=1, oom_score_adj=0
[  987.354542] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[  987.359981] CPU: 0 PID: 29117 Comm: syz-executor.2 Not tainted 4.19.37 #5
[  987.366922] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  987.376379] Call Trace:
[  987.378994]  dump_stack+0x172/0x1f0
[  987.382647]  dump_header+0x15e/0x929
[  987.386389]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[  987.391690]  ? ___ratelimit+0x60/0x595
[  987.395602]  ? do_raw_spin_unlock+0x57/0x270
[  987.400067]  oom_kill_process.cold+0x10/0x6f5
[  987.404596]  ? task_will_free_mem+0x139/0x6e0
[  987.409127]  out_of_memory+0x936/0x12d0
[  987.413162]  ? oom_killer_disable+0x280/0x280
[  987.417705]  ? find_held_lock+0x35/0x130
[  987.421796]  mem_cgroup_out_of_memory+0x1d2/0x240
[  987.426663]  ? memcg_event_wake+0x230/0x230
[  987.431100]  ? do_raw_spin_unlock+0x57/0x270
[  987.435532]  ? _raw_spin_unlock+0x2d/0x50
[  987.439715]  try_charge+0xd25/0x15b0
[  987.443463]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[  987.448337]  ? rcu_read_lock_sched_held+0x110/0x130
[  987.453387]  ? __alloc_pages_nodemask+0x63e/0x760
[  987.458250]  ? perf_trace_lock_acquire+0xf5/0x580
[  987.463134]  memcg_kmem_charge_memcg+0x7c/0x130
[  987.467825]  ? memcg_kmem_put_cache+0xb0/0xb0
[  987.472346]  ? cache_grow_begin+0x59a/0x8c0
[  987.476795]  ? lockdep_hardirqs_on+0x415/0x5d0
[  987.481397]  ? trace_hardirqs_on+0x67/0x230
[  987.485743]  cache_grow_begin+0x25f/0x8c0
[  987.489911]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  987.495464]  ? __cpuset_node_allowed+0x136/0x540
[  987.500244]  fallback_alloc+0x1fd/0x2d0
[  987.504270]  ____cache_alloc_node+0x1be/0x1e0
[  987.508793]  kmem_cache_alloc_node+0xe3/0x710
[  987.513309]  ? lockdep_hardirqs_on+0x415/0x5d0
[  987.517922]  ? trace_hardirqs_on+0x67/0x230
[  987.522281]  copy_process.part.0+0x1cd5/0x7970
[  987.526880]  ? __do_page_fault+0x484/0xe90
[  987.531150]  ? mark_held_locks+0x100/0x100
[  987.535402]  ? debug_smp_processor_id+0x1c/0x20
[  987.540088]  ? perf_trace_lock_acquire+0xf5/0x580
[  987.544942]  ? perf_trace_lock_acquire+0xf5/0x580
[  987.549810]  ? __cleanup_sighand+0x70/0x70
[  987.554196]  ? kasan_check_read+0x11/0x20
[  987.558376]  _do_fork+0x257/0xfe0
[  987.561880]  ? fork_idle+0x1d0/0x1d0
[  987.565622]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  987.570406]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  987.575204]  ? do_syscall_64+0x26/0x610
[  987.579202]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  987.584578]  ? do_syscall_64+0x26/0x610
[  987.588572]  __x64_sys_clone+0xbf/0x150
[  987.592565]  do_syscall_64+0x103/0x610
[  987.596498]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  987.601701] RIP: 0033:0x2000008a
[  987.605078] Code: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 98 4a 2a e9 2c 18 96 4c 0f 05 <bf> 03 00 00 00 c4 a3 7b f0 c5 1d 41 e2 e9 c4 22 e9 aa bb 3c 00 00
[  987.624017] RSP: 002b:00000000000004f0 EFLAGS: 00000287 ORIG_RAX: 0000000000000038
[  987.631755] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 000000002000008a
[  987.639089] RDX: 9c3755da22921eda RSI: 00000000000004f0 RDI: 0000000000000003
[  987.646377] RBP: 00000000000000f8 R08: 0000000000000005 R09: 0000000000000006
[  987.653660] R10: 0000000000000007 R11: 0000000000000287 R12: 000000000000000b
[  987.660945] R13: 000000000000000c R14: 000000000000000d R15: 00000000ffffffff
[  987.668554] net_ratelimit: 14 callbacks suppressed
[  987.668563] protocol 88fb is buggy, dev hsr_slave_0
[  987.671517] protocol 88fb is buggy, dev hsr_slave_0
[  987.673633] protocol 88fb is buggy, dev hsr_slave_1
[  987.678605] protocol 88fb is buggy, dev hsr_slave_1
[  987.693906] protocol 88fb is buggy, dev hsr_slave_0
[  987.696750] Task in 
[  987.699027] protocol 88fb is buggy, dev hsr_slave_1
[  987.699057] /syz2 killed as a result of limit of /syz2
[  987.712732] memory: usage 307200kB, limit 307200kB, failcnt 19388
[  987.718985] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  987.726231] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  987.732845] Memory cgroup stats for /syz2: cache:92KB rss:4492KB rss_huge:4096KB shmem:0KB mapped_file:0KB dirty:132KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:4448KB inactive_file:0KB active_file:0KB unevictable:0KB
[  987.753863] Memory cgroup out of memory: Kill process 29053 (syz-executor.2) score 120 or sacrifice child
[  987.764187] Killed process 29412 (syz-executor.2) total-vm:72584kB, anon-rss:2216kB, file-rss:34816kB, shmem-rss:0kB
[  987.776334] oom_reaper: reaped process 29412 (syz-executor.2), now anon-rss:0kB, file-rss:34816kB, shmem-rss:0kB
[  987.799482] syz-executor.2 invoked oom-killer: gfp_mask=0x7080c0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), nodemask=(null), order=0, oom_score_adj=0
[  987.838669] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[  987.869783] CPU: 1 PID: 29429 Comm: syz-executor.2 Not tainted 4.19.37 #5
[  987.876774] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  987.886152] Call Trace:
[  987.888759]  dump_stack+0x172/0x1f0
[  987.892412]  dump_header+0x15e/0x929
[  987.896142]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[  987.901270]  ? ___ratelimit+0x60/0x595
[  987.905175]  ? do_raw_spin_unlock+0x57/0x270
[  987.909692]  oom_kill_process.cold+0x10/0x6f5
[  987.914205]  ? task_will_free_mem+0x139/0x6e0
[  987.918723]  out_of_memory+0x936/0x12d0
[  987.922718]  ? oom_killer_disable+0x280/0x280
[  987.927225]  ? find_held_lock+0x35/0x130
[  987.931318]  mem_cgroup_out_of_memory+0x1d2/0x240
[  987.936174]  ? memcg_event_wake+0x230/0x230
[  987.940521]  ? do_raw_spin_unlock+0x57/0x270
[  987.944978]  ? _raw_spin_unlock+0x2d/0x50
[  987.949145]  try_charge+0xd25/0x15b0
[  987.952875]  ? find_held_lock+0x35/0x130
[  987.956973]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[  987.961850]  ? get_mem_cgroup_from_mm+0x10b/0x2b0
[  987.966729]  ? find_held_lock+0x35/0x130
[  987.971173]  ? get_mem_cgroup_from_mm+0x10b/0x2b0
[  987.976159]  memcg_kmem_charge_memcg+0x7c/0x130
[  987.980872]  ? memcg_kmem_put_cache+0xb0/0xb0
[  987.985396]  ? get_mem_cgroup_from_mm+0x128/0x2b0
[  987.990302]  memcg_kmem_charge+0x136/0x300
[  987.994565]  __alloc_pages_nodemask+0x3c6/0x760
[  987.999267]  ? debug_smp_processor_id+0x1c/0x20
[  988.003961]  ? __alloc_pages_slowpath+0x2870/0x2870
[  988.009001]  ? find_held_lock+0x35/0x130
[  988.013081]  ? copy_page_range+0x124f/0x1f90
[  988.017505]  ? __sanitizer_cov_trace_const_cmp2+0x18/0x20
[  988.023061]  alloc_pages_current+0x107/0x210
[  988.027488]  pte_alloc_one+0x1b/0x1a0
[  988.031303]  __pte_alloc+0x2a/0x360
[  988.034971]  copy_page_range+0x151f/0x1f90
[  988.039219]  ? debug_smp_processor_id+0x1c/0x20
[  988.043960]  ? pmd_alloc+0x180/0x180
[  988.047704]  ? __vma_link_rb+0x279/0x370
[  988.051802]  copy_process.part.0+0x5434/0x7970
[  988.056438]  ? __cleanup_sighand+0x70/0x70
[  988.060703]  ? kasan_check_read+0x11/0x20
[  988.064893]  _do_fork+0x257/0xfe0
[  988.068366]  ? fork_idle+0x1d0/0x1d0
[  988.072115]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  988.076897]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  988.081680]  ? do_syscall_64+0x26/0x610
[  988.085680]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  988.091065]  ? do_syscall_64+0x26/0x610
[  988.095152]  __x64_sys_clone+0xbf/0x150
[  988.099150]  do_syscall_64+0x103/0x610
[  988.103156]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  988.108524] RIP: 0033:0x2000008a
[  988.111906] Code: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 98 4a 2a e9 2c 18 96 4c 0f 05 <bf> 03 00 00 00 c4 a3 7b f0 c5 1d 41 e2 e9 c4 22 e9 aa bb 3c 00 00
[  988.130917] RSP: 002b:00000000000004f0 EFLAGS: 00000287 ORIG_RAX: 0000000000000038
[  988.138646] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 000000002000008a
[  988.145931] RDX: 9c3755da22921eda RSI: 00000000000004f0 RDI: 0000000000000003
[  988.153215] RBP: 00000000000000f8 R08: 0000000000000005 R09: 0000000000000006
[  988.160500] R10: 0000000000000007 R11: 0000000000000287 R12: 000000000000000b
[  988.167788] R13: 000000000000000c R14: 000000000000000d R15: 00000000ffffffff
[  988.186017] Task in /syz2 killed as a result of limit of /syz2
[  988.196782] memory: usage 307200kB, limit 307200kB, failcnt 19468
[  988.205504] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  988.216936] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  988.225525] Memory cgroup stats for /syz2: cache:92KB rss:4492KB rss_huge:4096KB shmem:0KB mapped_file:0KB dirty:132KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:4448KB inactive_file:0KB active_file:0KB unevictable:0KB
[  988.251481] protocol 88fb is buggy, dev hsr_slave_0
[  988.253008] Memory cgroup out of memory: Kill process 29053 (syz-executor.2) score 120 or sacrifice child
[  988.256589] protocol 88fb is buggy, dev hsr_slave_1
[  988.270882] Killed process 29717 (syz-executor.2) total-vm:72584kB, anon-rss:2216kB, file-rss:34816kB, shmem-rss:0kB
[  988.320726] syz-executor.2 invoked oom-killer: gfp_mask=0x6040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null), order=0, oom_score_adj=0
[  988.361885] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[  988.367337] CPU: 1 PID: 29611 Comm: syz-executor.2 Not tainted 4.19.37 #5
[  988.374305] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  988.383761] Call Trace:
[  988.386383]  dump_stack+0x172/0x1f0
[  988.390056]  dump_header+0x15e/0x929
[  988.393793]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[  988.398916]  ? ___ratelimit+0x60/0x595
[  988.402813]  ? do_raw_spin_unlock+0x57/0x270
[  988.407253]  oom_kill_process.cold+0x10/0x6f5
[  988.411786]  ? task_will_free_mem+0x139/0x6e0
[  988.416312]  out_of_memory+0x936/0x12d0
[  988.420405]  ? oom_killer_disable+0x280/0x280
[  988.424913]  ? find_held_lock+0x35/0x130
[  988.429003]  mem_cgroup_out_of_memory+0x1d2/0x240
[  988.433865]  ? memcg_event_wake+0x230/0x230
[  988.438213]  ? do_raw_spin_unlock+0x57/0x270
[  988.442655]  ? _raw_spin_unlock+0x2d/0x50
[  988.446823]  try_charge+0xd25/0x15b0
[  988.450564]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[  988.455466]  ? rcu_read_lock_sched_held+0x110/0x130
[  988.460547]  ? __alloc_pages_nodemask+0x63e/0x760
[  988.465409]  ? perf_trace_lock_acquire+0xf5/0x580
[  988.470293]  memcg_kmem_charge_memcg+0x7c/0x130
[  988.474977]  ? memcg_kmem_put_cache+0xb0/0xb0
[  988.479491]  ? cache_grow_begin+0x59a/0x8c0
[  988.485348]  ? lockdep_hardirqs_on+0x415/0x5d0
[  988.489957]  ? trace_hardirqs_on+0x67/0x230
[  988.494309]  cache_grow_begin+0x25f/0x8c0
[  988.498479]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  988.504406]  ? __cpuset_node_allowed+0x136/0x540
[  988.509186]  fallback_alloc+0x1fd/0x2d0
[  988.513181]  ____cache_alloc_node+0x1be/0x1e0
[  988.517693]  kmem_cache_alloc+0x1f3/0x700
[  988.521861]  ? call_rwsem_wake+0x1b/0x30
[  988.525947]  anon_vma_clone+0x238/0x480
[  988.529940]  anon_vma_fork+0x8f/0x4a0
[  988.533755]  ? dup_userfaultfd+0x15e/0x6c0
[  988.538008]  ? memcpy+0x46/0x50
[  988.541318]  copy_process.part.0+0x34dc/0x7970
[  988.545946]  ? __cleanup_sighand+0x70/0x70
[  988.550221]  ? kasan_check_read+0x11/0x20
[  988.554426]  _do_fork+0x257/0xfe0
[  988.557906]  ? fork_idle+0x1d0/0x1d0
[  988.561669]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  988.566443]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  988.571214]  ? do_syscall_64+0x26/0x610
[  988.575202]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  988.580578]  ? do_syscall_64+0x26/0x610
[  988.584572]  __x64_sys_clone+0xbf/0x150
[  988.588567]  do_syscall_64+0x103/0x610
[  988.592474]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  988.597675] RIP: 0033:0x2000008a
[  988.601049] Code: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 98 4a 2a e9 2c 18 96 4c 0f 05 <bf> 03 00 00 00 c4 a3 7b f0 c5 1d 41 e2 e9 c4 22 e9 aa bb 3c 00 00
[  988.620065] RSP: 002b:00000000000004f0 EFLAGS: 00000287 ORIG_RAX: 0000000000000038
[  988.627838] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 000000002000008a
[  988.635131] RDX: 9c3755da22921eda RSI: 00000000000004f0 RDI: 0000000000000003
[  988.642417] RBP: 00000000000000f8 R08: 0000000000000005 R09: 0000000000000006
[  988.649712] R10: 0000000000000007 R11: 0000000000000287 R12: 000000000000000b
[  988.657088] R13: 000000000000000c R14: 000000000000000d R15: 00000000ffffffff
[  988.675252] Task in /syz2 killed as a result of limit of /syz2
[  988.683918] memory: usage 307200kB, limit 307200kB, failcnt 19497
[  988.690179] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  988.704186] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  988.710374] Memory cgroup stats for /syz2: cache:92KB rss:4492KB rss_huge:4096KB shmem:0KB mapped_file:0KB dirty:132KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:4448KB inactive_file:0KB active_file:0KB unevictable:0KB
[  988.741468] Memory cgroup out of memory: Kill process 29053 (syz-executor.2) score 120 or sacrifice child
[  988.751462] Killed process 29053 (syz-executor.2) total-vm:72584kB, anon-rss:2216kB, file-rss:34816kB, shmem-rss:0kB
[  988.801108] syz-executor.2 invoked oom-killer: gfp_mask=0x6040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null), order=0, oom_score_adj=0
[  988.821589] protocol 88fb is buggy, dev hsr_slave_0
[  988.826711] protocol 88fb is buggy, dev hsr_slave_1
[  988.839634] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[  988.845644] CPU: 1 PID: 29611 Comm: syz-executor.2 Not tainted 4.19.37 #5
[  988.852860] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  988.862501] Call Trace:
[  988.865145]  dump_stack+0x172/0x1f0
[  988.868809]  dump_header+0x15e/0x929
[  988.872559]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[  988.877711]  ? ___ratelimit+0x60/0x595
[  988.881923]  ? do_raw_spin_unlock+0x57/0x270
[  988.886371]  oom_kill_process.cold+0x10/0x6f5
[  988.890989]  ? task_will_free_mem+0x139/0x6e0
[  988.895513]  ? find_held_lock+0x35/0x130
[  988.899739]  out_of_memory+0x936/0x12d0
[  988.903978]  ? lock_downgrade+0x810/0x810
[  988.908246]  ? oom_killer_disable+0x280/0x280
[  988.912792]  ? find_held_lock+0x35/0x130
[  988.916904]  mem_cgroup_out_of_memory+0x1d2/0x240
[  988.922016]  ? memcg_event_wake+0x230/0x230
[  988.926582]  ? do_raw_spin_unlock+0x57/0x270
[  988.931151]  ? _raw_spin_unlock+0x2d/0x50
[  988.935598]  try_charge+0xd25/0x15b0
[  988.939474]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[  988.944434]  ? rcu_read_lock_sched_held+0x110/0x130
[  988.949568]  ? __alloc_pages_nodemask+0x63e/0x760
[  988.954712]  ? perf_trace_lock_acquire+0xf5/0x580
[  988.959700]  memcg_kmem_charge_memcg+0x7c/0x130
[  988.964726]  ? memcg_kmem_put_cache+0xb0/0xb0
[  988.969407]  ? cache_grow_begin+0x59a/0x8c0
[  988.974015]  ? lockdep_hardirqs_on+0x415/0x5d0
[  988.978644]  ? trace_hardirqs_on+0x67/0x230
[  988.983090]  cache_grow_begin+0x25f/0x8c0
[  988.987304]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  988.993180]  ? __cpuset_node_allowed+0x136/0x540
[  988.998208]  fallback_alloc+0x1fd/0x2d0
[  989.002341]  ____cache_alloc_node+0x1be/0x1e0
[  989.006993]  kmem_cache_alloc+0x1f3/0x700
[  989.013092]  ? call_rwsem_wake+0x1b/0x30
[  989.017601]  anon_vma_clone+0x238/0x480
[  989.022030]  anon_vma_fork+0x8f/0x4a0
[  989.026355]  ? dup_userfaultfd+0x15e/0x6c0
[  989.031060]  ? memcpy+0x46/0x50
[  989.034572]  copy_process.part.0+0x34dc/0x7970
[  989.039601]  ? __cleanup_sighand+0x70/0x70
[  989.043964]  ? kasan_check_read+0x11/0x20
[  989.048292]  _do_fork+0x257/0xfe0
[  989.052251]  ? fork_idle+0x1d0/0x1d0
[  989.056359]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  989.061331]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  989.066342]  ? do_syscall_64+0x26/0x610
[  989.070355]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  989.075925]  ? do_syscall_64+0x26/0x610
[  989.079937]  __x64_sys_clone+0xbf/0x150
[  989.084139]  do_syscall_64+0x103/0x610
[  989.088069]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  989.093460] RIP: 0033:0x2000008a
[  989.096859] Code: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 98 4a 2a e9 2c 18 96 4c 0f 05 <bf> 03 00 00 00 c4 a3 7b f0 c5 1d 41 e2 e9 c4 22 e9 aa bb 3c 00 00
[  989.116615] RSP: 002b:00000000000004f0 EFLAGS: 00000287 ORIG_RAX: 0000000000000038
[  989.124581] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 000000002000008a
[  989.132373] RDX: 9c3755da22921eda RSI: 00000000000004f0 RDI: 0000000000000003
[  989.140169] RBP: 00000000000000f8 R08: 0000000000000005 R09: 0000000000000006
[  989.147580] R10: 0000000000000007 R11: 0000000000000287 R12: 000000000000000b
[  989.155223] R13: 000000000000000c R14: 000000000000000d R15: 00000000ffffffff
[  989.163410] Task in /syz2 killed as a result of limit of /syz2
[  989.169900] memory: usage 307072kB, limit 307200kB, failcnt 19514
[  989.176856] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  989.184071] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  989.191006] Memory cgroup stats for /syz2: cache:92KB rss:4492KB rss_huge:4096KB shmem:0KB mapped_file:0KB dirty:132KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:4448KB inactive_file:0KB active_file:0KB unevictable:0KB
[  989.213456] Memory cgroup out of memory: Kill process 29057 (syz-executor.2) score 120 or sacrifice child
[  989.224555] Killed process 29112 (syz-executor.2) total-vm:72584kB, anon-rss:2216kB, file-rss:34816kB, shmem-rss:0kB
[  989.271514] syz-executor.2 invoked oom-killer: gfp_mask=0x6040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null), order=0, oom_score_adj=0
[  989.284078] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[  989.290002] CPU: 0 PID: 29696 Comm: syz-executor.2 Not tainted 4.19.37 #5
[  989.297807] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  989.307465] Call Trace:
[  989.310093]  dump_stack+0x172/0x1f0
[  989.313765]  dump_header+0x15e/0x929
[  989.317960]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[  989.323111]  ? ___ratelimit+0x60/0x595
[  989.327228]  ? do_raw_spin_unlock+0x57/0x270
[  989.331794]  oom_kill_process.cold+0x10/0x6f5
[  989.337029]  ? task_will_free_mem+0x139/0x6e0
[  989.342180]  out_of_memory+0x936/0x12d0
[  989.346494]  ? oom_killer_disable+0x280/0x280
[  989.353892]  ? find_held_lock+0x35/0x130
[  989.358123]  mem_cgroup_out_of_memory+0x1d2/0x240
[  989.363023]  ? memcg_event_wake+0x230/0x230
[  989.367677]  ? do_raw_spin_unlock+0x57/0x270
[  989.375631]  ? _raw_spin_unlock+0x2d/0x50
[  989.380717]  try_charge+0xd25/0x15b0
[  989.384655]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[  989.389541]  ? rcu_read_lock_sched_held+0x110/0x130
[  989.394692]  ? __alloc_pages_nodemask+0x63e/0x760
[  989.399920]  ? perf_trace_lock_acquire+0xf5/0x580
[  989.406149]  memcg_kmem_charge_memcg+0x7c/0x130
[  989.413398]  ? memcg_kmem_put_cache+0xb0/0xb0
[  989.418223]  ? cache_grow_begin+0x59a/0x8c0
[  989.423000]  ? lockdep_hardirqs_on+0x415/0x5d0
[  989.428886]  ? trace_hardirqs_on+0x67/0x230
[  989.433476]  cache_grow_begin+0x25f/0x8c0
[  989.437664]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  989.443401]  ? __cpuset_node_allowed+0x136/0x540
[  989.448310]  fallback_alloc+0x1fd/0x2d0
[  989.452763]  ____cache_alloc_node+0x1be/0x1e0
[  989.457655]  kmem_cache_alloc+0x1f3/0x700
[  989.461929]  ? call_rwsem_wake+0x1b/0x30
[  989.466162]  anon_vma_clone+0x238/0x480
[  989.470294]  anon_vma_fork+0x8f/0x4a0
[  989.474491]  ? dup_userfaultfd+0x15e/0x6c0
[  989.479087]  ? memcpy+0x46/0x50
[  989.482784]  copy_process.part.0+0x34dc/0x7970
[  989.487654]  ? __cleanup_sighand+0x70/0x70
[  989.492071]  ? kasan_check_read+0x11/0x20
[  989.496462]  _do_fork+0x257/0xfe0
[  989.500301]  ? fork_idle+0x1d0/0x1d0
[  989.504460]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  989.509552]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  989.514521]  ? do_syscall_64+0x26/0x610
[  989.518618]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  989.524405]  ? do_syscall_64+0x26/0x610
[  989.528419]  __x64_sys_clone+0xbf/0x150
[  989.532728]  do_syscall_64+0x103/0x610
[  989.537023]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  989.542714] RIP: 0033:0x2000008a
[  989.546113] Code: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 98 4a 2a e9 2c 18 96 4c 0f 05 <bf> 03 00 00 00 c4 a3 7b f0 c5 1d 41 e2 e9 c4 22 e9 aa bb 3c 00 00
[  989.565471] RSP: 002b:00000000000004f0 EFLAGS: 00000287 ORIG_RAX: 0000000000000038
[  989.573503] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 000000002000008a
[  989.581486] RDX: 9c3755da22921eda RSI: 00000000000004f0 RDI: 0000000000000003
[  989.589099] RBP: 00000000000000f8 R08: 0000000000000005 R09: 0000000000000006
[  989.596855] R10: 0000000000000007 R11: 0000000000000287 R12: 000000000000000b
[  989.604426] R13: 000000000000000c R14: 000000000000000d R15: 00000000ffffffff
[  989.617175] Task in /syz2 killed as a result of limit of /syz2
[  989.625105] memory: usage 307044kB, limit 307200kB, failcnt 19561
[  989.632131] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  989.639036] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  989.645662] Memory cgroup stats for /syz2: cache:92KB rss:4492KB rss_huge:4096KB shmem:0KB mapped_file:0KB dirty:132KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:4448KB inactive_file:0KB active_file:0KB unevictable:0KB
[  989.668437] Memory cgroup out of memory: Kill process 29057 (syz-executor.2) score 120 or sacrifice child
[  989.678700] Killed process 29182 (syz-executor.2) total-vm:72584kB, anon-rss:2216kB, file-rss:34816kB, shmem-rss:0kB
[  989.691153] oom_reaper: reaped process 29182 (syz-executor.2), now anon-rss:0kB, file-rss:34816kB, shmem-rss:0kB
[  989.719102] syz-executor.2 invoked oom-killer: gfp_mask=0x7080c0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), nodemask=(null), order=3, oom_score_adj=0
[  989.768452] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[  989.775013] CPU: 0 PID: 29152 Comm: syz-executor.2 Not tainted 4.19.37 #5
[  989.782437] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  989.791938] Call Trace:
[  989.794774]  dump_stack+0x172/0x1f0
[  989.798642]  dump_header+0x15e/0x929
[  989.802451]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[  989.807761]  ? ___ratelimit+0x60/0x595
[  989.811683]  ? do_raw_spin_unlock+0x57/0x270
[  989.816440]  oom_kill_process.cold+0x10/0x6f5
[  989.821063]  ? task_will_free_mem+0x139/0x6e0
[  989.825781]  ? find_held_lock+0x35/0x130
[  989.829988]  out_of_memory+0x936/0x12d0
[  989.834236]  ? lock_downgrade+0x810/0x810
[  989.838842]  ? oom_killer_disable+0x280/0x280
[  989.843534]  ? find_held_lock+0x35/0x130
[  989.848248]  mem_cgroup_out_of_memory+0x1d2/0x240
[  989.853482]  ? memcg_event_wake+0x230/0x230
[  989.857953]  ? do_raw_spin_unlock+0x57/0x270
[  989.862497]  ? _raw_spin_unlock+0x2d/0x50
[  989.866685]  try_charge+0xd25/0x15b0
[  989.870648]  ? find_held_lock+0x35/0x130
[  989.875020]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[  989.880422]  ? get_mem_cgroup_from_mm+0x10b/0x2b0
[  989.885476]  ? find_held_lock+0x35/0x130
[  989.889669]  ? get_mem_cgroup_from_mm+0x10b/0x2b0
[  989.894966]  memcg_kmem_charge_memcg+0x7c/0x130
[  989.900153]  ? memcg_kmem_put_cache+0xb0/0xb0
[  989.904799]  ? get_mem_cgroup_from_mm+0x128/0x2b0
[  989.909978]  memcg_kmem_charge+0x136/0x300
[  989.914622]  __alloc_pages_nodemask+0x3c6/0x760
[  989.919825]  ? __alloc_pages_slowpath+0x2870/0x2870
[  989.925255]  ? lockdep_hardirqs_on+0x415/0x5d0
[  989.930042]  ? trace_hardirqs_on+0x67/0x230
[  989.934519]  copy_process.part.0+0x3e0/0x7970
[  989.939508]  ? __do_page_fault+0x484/0xe90
[  989.943979]  ? mark_held_locks+0x100/0x100
[  989.948355]  ? debug_smp_processor_id+0x1c/0x20
[  989.953177]  ? perf_trace_lock_acquire+0xf5/0x580
[  989.958643]  ? perf_trace_lock_acquire+0xf5/0x580
[  989.963586]  ? __cleanup_sighand+0x70/0x70
[  989.968188]  ? kasan_check_read+0x11/0x20
[  989.972483]  _do_fork+0x257/0xfe0
[  989.976114]  ? fork_idle+0x1d0/0x1d0
[  989.979985]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  989.984971]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  989.989940]  ? do_syscall_64+0x26/0x610
[  989.994082]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  989.999654]  ? do_syscall_64+0x26/0x610
[  990.004370]  __x64_sys_clone+0xbf/0x150
[  990.008643]  do_syscall_64+0x103/0x610
[  990.013251]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  990.019149] RIP: 0033:0x2000008a
[  990.022636] Code: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 98 4a 2a e9 2c 18 96 4c 0f 05 <bf> 03 00 00 00 c4 a3 7b f0 c5 1d 41 e2 e9 c4 22 e9 aa bb 3c 00 00
[  990.042770] RSP: 002b:00000000000004f0 EFLAGS: 00000287 ORIG_RAX: 0000000000000038
[  990.050934] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 000000002000008a
[  990.058815] RDX: 9c3755da22921eda RSI: 00000000000004f0 RDI: 0000000000000003
[  990.066568] RBP: 00000000000000f8 R08: 0000000000000005 R09: 0000000000000006
[  990.074234] R10: 0000000000000007 R11: 0000000000000287 R12: 000000000000000b
[  990.082664] R13: 000000000000000c R14: 000000000000000d R15: 00000000ffffffff
[  990.093327] Task in /syz2 killed as a result of limit of /syz2
[  990.099769] memory: usage 307048kB, limit 307200kB, failcnt 19640
[  990.106450] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  990.114083] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  990.121970] Memory cgroup stats for /syz2: cache:92KB rss:4492KB rss_huge:4096KB shmem:0KB mapped_file:0KB dirty:132KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:4448KB inactive_file:0KB active_file:0KB unevictable:0KB
[  990.143546] Memory cgroup out of memory: Kill process 29057 (syz-executor.2) score 120 or sacrifice child
[  990.154434] Killed process 29392 (syz-executor.2) total-vm:72584kB, anon-rss:2216kB, file-rss:34816kB, shmem-rss:0kB
[  990.207179] Memory cgroup out of memory: Kill process 29057 (syz-executor.2) score 120 or sacrifice child
[  990.246780] Killed process 29411 (syz-executor.2) total-vm:72584kB, anon-rss:2216kB, file-rss:34816kB, shmem-rss:0kB
[  990.314718] Memory cgroup out of memory: Kill process 29057 (syz-executor.2) score 120 or sacrifice child
[  990.346546] Killed process 29847 (syz-executor.2) total-vm:72584kB, anon-rss:2216kB, file-rss:34816kB, shmem-rss:0kB
[  990.415497] Memory cgroup out of memory: Kill process 29057 (syz-executor.2) score 120 or sacrifice child
[  990.433413] Killed process 29057 (syz-executor.2) total-vm:72584kB, anon-rss:2216kB, file-rss:34816kB, shmem-rss:0kB
[  990.493585] oom_kill_process: 3 callbacks suppressed
[  990.493605] syz-executor.2 invoked oom-killer: gfp_mask=0x7080c0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), nodemask=(null), order=3, oom_score_adj=0
[  990.529079] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[  990.541668] CPU: 1 PID: 29391 Comm: syz-executor.2 Not tainted 4.19.37 #5
[  990.548918] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  990.558825] Call Trace:
[  990.561693]  dump_stack+0x172/0x1f0
[  990.565444]  dump_header+0x15e/0x929
[  990.569313]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[  990.574545]  ? ___ratelimit+0x60/0x595
[  990.578740]  oom_kill_process.cold+0x10/0x6f5
[  990.583583]  ? task_will_free_mem+0x139/0x6e0
[  990.588232]  out_of_memory+0x936/0x12d0
[  990.592373]  ? oom_killer_disable+0x280/0x280
[  990.597001]  ? find_held_lock+0x35/0x130
[  990.601259]  mem_cgroup_out_of_memory+0x1d2/0x240
[  990.606611]  ? memcg_event_wake+0x230/0x230
[  990.611092]  ? do_raw_spin_unlock+0x57/0x270
[  990.616343]  ? _raw_spin_unlock+0x2d/0x50
[  990.621181]  try_charge+0xd25/0x15b0
[  990.625112]  ? find_held_lock+0x35/0x130
[  990.629527]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[  990.634751]  ? get_mem_cgroup_from_mm+0x10b/0x2b0
[  990.639719]  ? find_held_lock+0x35/0x130
[  990.644085]  ? get_mem_cgroup_from_mm+0x10b/0x2b0
[  990.649257]  memcg_kmem_charge_memcg+0x7c/0x130
[  990.655044]  ? memcg_kmem_put_cache+0xb0/0xb0
[  990.659853]  ? get_mem_cgroup_from_mm+0x128/0x2b0
[  990.664855]  memcg_kmem_charge+0x136/0x300
[  990.669440]  __alloc_pages_nodemask+0x3c6/0x760
[  990.674312]  ? __alloc_pages_slowpath+0x2870/0x2870
[  990.679460]  ? lockdep_hardirqs_on+0x415/0x5d0
[  990.684253]  ? trace_hardirqs_on+0x67/0x230
[  990.689203]  ? kasan_check_read+0x11/0x20
[  990.693433]  copy_process.part.0+0x3e0/0x7970
[  990.698253]  ? __do_page_fault+0x484/0xe90
[  990.702752]  ? mark_held_locks+0x100/0x100
[  990.707217]  ? debug_smp_processor_id+0x1c/0x20
[  990.712327]  ? perf_trace_lock_acquire+0xf5/0x580
[  990.717740]  ? perf_trace_lock_acquire+0xf5/0x580
[  990.722802]  ? __cleanup_sighand+0x70/0x70
[  990.727512]  ? kasan_check_read+0x11/0x20
[  990.732361]  _do_fork+0x257/0xfe0
[  990.735962]  ? fork_idle+0x1d0/0x1d0
[  990.740133]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  990.745304]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  990.750182]  ? do_syscall_64+0x26/0x610
[  990.754362]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  990.759764]  ? do_syscall_64+0x26/0x610
[  990.763872]  __x64_sys_clone+0xbf/0x150
[  990.768405]  do_syscall_64+0x103/0x610
[  990.772767]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  990.778349] RIP: 0033:0x2000008a
[  990.781969] Code: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 98 4a 2a e9 2c 18 96 4c 0f 05 <bf> 03 00 00 00 c4 a3 7b f0 c5 1d 41 e2 e9 c4 22 e9 aa bb 3c 00 00
[  990.801863] RSP: 002b:00000000000004f0 EFLAGS: 00000287 ORIG_RAX: 0000000000000038
[  990.809975] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 000000002000008a
[  990.817583] RDX: 9c3755da22921eda RSI: 00000000000004f0 RDI: 0000000000000003
[  990.825344] RBP: 00000000000000f8 R08: 0000000000000005 R09: 0000000000000006
[  990.833321] R10: 0000000000000007 R11: 0000000000000287 R12: 000000000000000b
[  990.841209] R13: 000000000000000c R14: 000000000000000d R15: 00000000ffffffff
[  990.863093] Task in /syz2 killed as a result of limit of /syz2
[  990.869342] memory: usage 307176kB, limit 307200kB, failcnt 19738
[  990.883497] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  990.890660] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  990.904992] Memory cgroup stats for /syz2: cache:92KB rss:4492KB rss_huge:4096KB shmem:0KB mapped_file:0KB dirty:132KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:4448KB inactive_file:0KB active_file:0KB unevictable:0KB
[  990.931425] Memory cgroup out of memory: Kill process 29063 (syz-executor.2) score 120 or sacrifice child
[  990.941831] Killed process 29108 (syz-executor.2) total-vm:72584kB, anon-rss:2216kB, file-rss:34816kB, shmem-rss:0kB
[  990.979519] syz-executor.2 invoked oom-killer: gfp_mask=0x6040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null), order=0, oom_score_adj=0
[  991.000223] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[  991.006323] CPU: 1 PID: 29691 Comm: syz-executor.2 Not tainted 4.19.37 #5
[  991.013374] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  991.023153] Call Trace:
[  991.025878]  dump_stack+0x172/0x1f0
[  991.029716]  dump_header+0x15e/0x929
[  991.033688]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[  991.039011]  ? ___ratelimit+0x60/0x595
[  991.043248]  ? do_raw_spin_unlock+0x57/0x270
[  991.048250]  oom_kill_process.cold+0x10/0x6f5
[  991.052910]  ? task_will_free_mem+0x139/0x6e0
[  991.057617]  out_of_memory+0x936/0x12d0
[  991.061666]  ? oom_killer_disable+0x280/0x280
[  991.066210]  ? find_held_lock+0x35/0x130
[  991.070405]  mem_cgroup_out_of_memory+0x1d2/0x240
[  991.075461]  ? memcg_event_wake+0x230/0x230
[  991.080175]  ? do_raw_spin_unlock+0x57/0x270
[  991.084702]  ? _raw_spin_unlock+0x2d/0x50
[  991.089081]  try_charge+0xd25/0x15b0
[  991.093157]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[  991.098145]  ? rcu_read_lock_sched_held+0x110/0x130
[  991.103196]  ? __alloc_pages_nodemask+0x63e/0x760
[  991.108356]  ? perf_trace_lock_acquire+0xf5/0x580
[  991.113419]  memcg_kmem_charge_memcg+0x7c/0x130
[  991.118383]  ? memcg_kmem_put_cache+0xb0/0xb0
[  991.123077]  ? cache_grow_begin+0x59a/0x8c0
[  991.127538]  ? lockdep_hardirqs_on+0x415/0x5d0
[  991.132353]  ? trace_hardirqs_on+0x67/0x230
[  991.136752]  cache_grow_begin+0x25f/0x8c0
[  991.141074]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  991.146738]  ? __cpuset_node_allowed+0x136/0x540
[  991.152058]  fallback_alloc+0x1fd/0x2d0
[  991.156450]  ____cache_alloc_node+0x1be/0x1e0
[  991.161352]  kmem_cache_alloc+0x1f3/0x700
[  991.165561]  ? call_rwsem_wake+0x1b/0x30
[  991.170011]  anon_vma_clone+0x238/0x480
[  991.174374]  anon_vma_fork+0x8f/0x4a0
[  991.178471]  ? dup_userfaultfd+0x15e/0x6c0
[  991.183225]  ? memcpy+0x46/0x50
[  991.186862]  copy_process.part.0+0x34dc/0x7970
[  991.191780]  ? __cleanup_sighand+0x70/0x70
[  991.196148]  ? kasan_check_read+0x11/0x20
[  991.200382]  _do_fork+0x257/0xfe0
[  991.203883]  ? fork_idle+0x1d0/0x1d0
[  991.207860]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  991.212837]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  991.217896]  ? do_syscall_64+0x26/0x610
[  991.222042]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  991.227788]  ? do_syscall_64+0x26/0x610
[  991.232007]  __x64_sys_clone+0xbf/0x150
[  991.236536]  do_syscall_64+0x103/0x610
[  991.240792]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  991.246116] RIP: 0033:0x2000008a
[  991.249815] Code: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 98 4a 2a e9 2c 18 96 4c 0f 05 <bf> 03 00 00 00 c4 a3 7b f0 c5 1d 41 e2 e9 c4 22 e9 aa bb 3c 00 00
[  991.269428] RSP: 002b:00000000000004f0 EFLAGS: 00000287 ORIG_RAX: 0000000000000038
[  991.277349] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 000000002000008a
[  991.285223] RDX: 9c3755da22921eda RSI: 00000000000004f0 RDI: 0000000000000003
[  991.293081] RBP: 00000000000000f8 R08: 0000000000000005 R09: 0000000000000006
[  991.300466] R10: 0000000000000007 R11: 0000000000000287 R12: 000000000000000b
[  991.308120] R13: 000000000000000c R14: 000000000000000d R15: 00000000ffffffff
[  991.319339] Task in /syz2 killed as a result of limit of /syz2
[  991.325806] memory: usage 307192kB, limit 307200kB, failcnt 19759
[  991.332942] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  991.339754] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  991.346597] Memory cgroup stats for /syz2: cache:92KB rss:4492KB rss_huge:4096KB shmem:0KB mapped_file:0KB dirty:132KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:4448KB inactive_file:0KB active_file:0KB unevictable:0KB
[  991.371551] Memory cgroup out of memory: Kill process 29063 (syz-executor.2) score 120 or sacrifice child
[  991.385346] Killed process 29145 (syz-executor.2) total-vm:72584kB, anon-rss:2216kB, file-rss:34816kB, shmem-rss:0kB
[  991.428481] syz-executor.2 invoked oom-killer: gfp_mask=0x6040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null), order=0, oom_score_adj=0
[  991.450082] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[  991.456943] CPU: 1 PID: 29151 Comm: syz-executor.2 Not tainted 4.19.37 #5
[  991.464523] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  991.474309] Call Trace:
[  991.477136]  dump_stack+0x172/0x1f0
[  991.480960]  dump_header+0x15e/0x929
[  991.484715]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[  991.489863]  ? ___ratelimit+0x60/0x595
[  991.494359]  ? do_raw_spin_unlock+0x57/0x270
[  991.499119]  oom_kill_process.cold+0x10/0x6f5
[  991.503784]  ? task_will_free_mem+0x139/0x6e0
[  991.508863]  out_of_memory+0x936/0x12d0
[  991.512890]  ? oom_killer_disable+0x280/0x280
[  991.517414]  ? find_held_lock+0x35/0x130
[  991.521546]  mem_cgroup_out_of_memory+0x1d2/0x240
[  991.526917]  ? memcg_event_wake+0x230/0x230
[  991.531603]  ? do_raw_spin_unlock+0x57/0x270
[  991.536377]  ? _raw_spin_unlock+0x2d/0x50
[  991.540978]  try_charge+0xd25/0x15b0
[  991.544744]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[  991.549831]  ? rcu_read_lock_sched_held+0x110/0x130
[  991.554981]  ? __alloc_pages_nodemask+0x63e/0x760
[  991.560087]  ? perf_trace_lock_acquire+0xf5/0x580
[  991.565955]  memcg_kmem_charge_memcg+0x7c/0x130
[  991.570942]  ? memcg_kmem_put_cache+0xb0/0xb0
[  991.575618]  ? cache_grow_begin+0x59a/0x8c0
[  991.580437]  ? lockdep_hardirqs_on+0x415/0x5d0
[  991.585450]  ? trace_hardirqs_on+0x67/0x230
[  991.589891]  cache_grow_begin+0x25f/0x8c0
[  991.594524]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  991.600301]  ? __cpuset_node_allowed+0x136/0x540
[  991.605668]  fallback_alloc+0x1fd/0x2d0
[  991.610138]  ____cache_alloc_node+0x1be/0x1e0
[  991.614931]  kmem_cache_alloc+0x1f3/0x700
[  991.619135]  ? call_rwsem_wake+0x1b/0x30
[  991.623239]  anon_vma_clone+0x238/0x480
[  991.627631]  anon_vma_fork+0x8f/0x4a0
[  991.631862]  ? dup_userfaultfd+0x15e/0x6c0
[  991.636318]  ? memcpy+0x46/0x50
[  991.639729]  copy_process.part.0+0x34dc/0x7970
[  991.644495]  ? __cleanup_sighand+0x70/0x70
[  991.648995]  ? kasan_check_read+0x11/0x20
[  991.653363]  _do_fork+0x257/0xfe0
[  991.656860]  ? fork_idle+0x1d0/0x1d0
[  991.660897]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  991.665688]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  991.670746]  ? do_syscall_64+0x26/0x610
[  991.674769]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  991.680562]  ? do_syscall_64+0x26/0x610
[  991.684931]  __x64_sys_clone+0xbf/0x150
[  991.689204]  do_syscall_64+0x103/0x610
[  991.693143]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  991.698778] RIP: 0033:0x2000008a
[  991.702582] Code: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 98 4a 2a e9 2c 18 96 4c 0f 05 <bf> 03 00 00 00 c4 a3 7b f0 c5 1d 41 e2 e9 c4 22 e9 aa bb 3c 00 00
[  991.722305] RSP: 002b:00000000000004f0 EFLAGS: 00000287 ORIG_RAX: 0000000000000038
[  991.730463] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 000000002000008a
[  991.737936] RDX: 9c3755da22921eda RSI: 00000000000004f0 RDI: 0000000000000003
[  991.745532] RBP: 00000000000000f8 R08: 0000000000000005 R09: 0000000000000006
[  991.753045] R10: 0000000000000007 R11: 0000000000000287 R12: 000000000000000b
[  991.761917] R13: 000000000000000c R14: 000000000000000d R15: 00000000ffffffff
[  991.773514] Task in /syz2 killed as a result of limit of /syz2
[  991.780058] memory: usage 307200kB, limit 307200kB, failcnt 19793
[  991.787435] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  991.794915] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  991.801909] Memory cgroup stats for /syz2: cache:92KB rss:4492KB rss_huge:4096KB shmem:0KB mapped_file:0KB dirty:132KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:4448KB inactive_file:0KB active_file:0KB unevictable:0KB
[  991.825799] Memory cgroup out of memory: Kill process 29063 (syz-executor.2) score 120 or sacrifice child
[  991.836566] Killed process 29220 (syz-executor.2) total-vm:72584kB, anon-rss:2216kB, file-rss:34816kB, shmem-rss:0kB
[  991.880112] syz-executor.2 invoked oom-killer: gfp_mask=0x7080c0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), nodemask=(null), order=0, oom_score_adj=0
[  991.915230] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[  991.921973] CPU: 1 PID: 29601 Comm: syz-executor.2 Not tainted 4.19.37 #5
[  991.929372] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  991.939416] Call Trace:
[  991.942058]  dump_stack+0x172/0x1f0
[  991.945924]  dump_header+0x15e/0x929
[  991.949951]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[  991.955361]  ? ___ratelimit+0x60/0x595
[  991.959384]  ? do_raw_spin_unlock+0x57/0x270
[  991.964126]  oom_kill_process.cold+0x10/0x6f5
[  991.968993]  ? task_will_free_mem+0x139/0x6e0
[  991.974012]  out_of_memory+0x936/0x12d0
[  991.978614]  ? oom_killer_disable+0x280/0x280
[  991.983386]  ? find_held_lock+0x35/0x130
[  991.987859]  mem_cgroup_out_of_memory+0x1d2/0x240
[  991.993559]  ? memcg_event_wake+0x230/0x230
[  991.998170]  ? do_raw_spin_unlock+0x57/0x270
[  992.002664]  ? _raw_spin_unlock+0x2d/0x50
[  992.007120]  try_charge+0xd25/0x15b0
[  992.011620]  ? find_held_lock+0x35/0x130
[  992.016316]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[  992.021314]  ? get_mem_cgroup_from_mm+0x10b/0x2b0
[  992.026551]  ? find_held_lock+0x35/0x130
[  992.030933]  ? get_mem_cgroup_from_mm+0x10b/0x2b0
[  992.036478]  memcg_kmem_charge_memcg+0x7c/0x130
[  992.041618]  ? memcg_kmem_put_cache+0xb0/0xb0
[  992.046518]  ? get_mem_cgroup_from_mm+0x128/0x2b0
[  992.052002]  memcg_kmem_charge+0x136/0x300
[  992.056358]  __alloc_pages_nodemask+0x3c6/0x760
[  992.061499]  ? __alloc_pages_slowpath+0x2870/0x2870
[  992.066858]  ? _raw_spin_unlock_irqrestore+0x6b/0xe0
[  992.072355]  ? try_to_wake_up+0xcc/0xf60
[  992.076641]  ? _raw_spin_unlock_irqrestore+0x6b/0xe0
[  992.081958]  ? __sanitizer_cov_trace_const_cmp2+0x18/0x20
[  992.088088]  alloc_pages_current+0x107/0x210
[  992.093230]  get_zeroed_page+0x14/0x50
[  992.097297]  __pud_alloc+0x3b/0x250
[  992.101177]  pud_alloc+0xde/0x150
[  992.104750]  copy_page_range+0x37a/0x1f90
[  992.108944]  ? _raw_spin_unlock_irqrestore+0x6b/0xe0
[  992.114640]  ? wake_up_q+0xaa/0x100
[  992.118340]  ? rwsem_wake+0x1f6/0x2f0
[  992.122456]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[  992.127510]  ? pmd_alloc+0x180/0x180
[  992.131259]  ? __vma_link_rb+0x279/0x370
[  992.135662]  copy_process.part.0+0x5434/0x7970
[  992.140341]  ? __cleanup_sighand+0x70/0x70
[  992.144719]  ? kasan_check_read+0x11/0x20
[  992.149126]  _do_fork+0x257/0xfe0
[  992.152848]  ? fork_idle+0x1d0/0x1d0
[  992.157115]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  992.162099]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  992.167259]  ? do_syscall_64+0x26/0x610
[  992.171471]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  992.177133]  ? do_syscall_64+0x26/0x610
[  992.181505]  __x64_sys_clone+0xbf/0x150
[  992.185776]  do_syscall_64+0x103/0x610
[  992.189987]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  992.195766] RIP: 0033:0x2000008a
[  992.199744] Code: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 98 4a 2a e9 2c 18 96 4c 0f 05 <bf> 03 00 00 00 c4 a3 7b f0 c5 1d 41 e2 e9 c4 22 e9 aa bb 3c 00 00
[  992.219577] RSP: 002b:00000000000004f0 EFLAGS: 00000287 ORIG_RAX: 0000000000000038
[  992.228309] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 000000002000008a
[  992.235819] RDX: 9c3755da22921eda RSI: 00000000000004f0 RDI: 0000000000000003
[  992.243494] RBP: 00000000000000f8 R08: 0000000000000005 R09: 0000000000000006
[  992.251060] R10: 0000000000000007 R11: 0000000000000287 R12: 000000000000000b
[  992.258644] R13: 000000000000000c R14: 000000000000000d R15: 00000000ffffffff
[  992.269718] Task in /syz2 killed as a result of limit of /syz2
[  992.276458] memory: usage 307200kB, limit 307200kB, failcnt 19851
[  992.283723] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  992.290776] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  992.297581] Memory cgroup stats for /syz2: cache:92KB rss:4492KB rss_huge:4096KB shmem:0KB mapped_file:0KB dirty:132KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:4448KB inactive_file:0KB active_file:0KB unevictable:0KB
[  992.319325] Memory cgroup out of memory: Kill process 29063 (syz-executor.2) score 120 or sacrifice child
[  992.330212] Killed process 29361 (syz-executor.2) total-vm:72584kB, anon-rss:2216kB, file-rss:34816kB, shmem-rss:0kB
[  992.351634] oom_reaper: reaped process 29361 (syz-executor.2), now anon-rss:0kB, file-rss:34816kB, shmem-rss:0kB
[  992.376627] syz-executor.2 invoked oom-killer: gfp_mask=0x7080c0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), nodemask=(null), order=0, oom_score_adj=0
[  992.407415] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[  992.415639] CPU: 0 PID: 29601 Comm: syz-executor.2 Not tainted 4.19.37 #5
[  992.422893] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  992.433429] Call Trace:
[  992.436362]  dump_stack+0x172/0x1f0
[  992.440044]  dump_header+0x15e/0x929
[  992.443987]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[  992.449125]  ? ___ratelimit+0x60/0x595
[  992.453141]  ? do_raw_spin_unlock+0x57/0x270
[  992.457846]  oom_kill_process.cold+0x10/0x6f5
[  992.462437]  ? task_will_free_mem+0x139/0x6e0
[  992.467181]  out_of_memory+0x936/0x12d0
[  992.471339]  ? lock_downgrade+0x810/0x810
[  992.475659]  ? oom_killer_disable+0x280/0x280
[  992.480525]  ? find_held_lock+0x35/0x130
[  992.486677]  mem_cgroup_out_of_memory+0x1d2/0x240
[  992.491832]  ? memcg_event_wake+0x230/0x230
[  992.496729]  ? do_raw_spin_unlock+0x57/0x270
[  992.501535]  ? _raw_spin_unlock+0x2d/0x50
[  992.506101]  try_charge+0xd25/0x15b0
[  992.510084]  ? find_held_lock+0x35/0x130
[  992.514341]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[  992.519440]  ? get_mem_cgroup_from_mm+0x10b/0x2b0
[  992.524876]  ? find_held_lock+0x35/0x130
[  992.529440]  ? get_mem_cgroup_from_mm+0x10b/0x2b0
[  992.534768]  memcg_kmem_charge_memcg+0x7c/0x130
[  992.539771]  ? memcg_kmem_put_cache+0xb0/0xb0
[  992.544652]  ? get_mem_cgroup_from_mm+0x128/0x2b0
[  992.549973]  memcg_kmem_charge+0x136/0x300
[  992.554380]  __alloc_pages_nodemask+0x3c6/0x760
[  992.559251]  ? __alloc_pages_slowpath+0x2870/0x2870
[  992.564361]  ? _raw_spin_unlock_irqrestore+0x6b/0xe0
[  992.569840]  ? try_to_wake_up+0xcc/0xf60
[  992.574125]  ? _raw_spin_unlock_irqrestore+0x6b/0xe0
[  992.579683]  ? __sanitizer_cov_trace_const_cmp2+0x18/0x20
[  992.585922]  alloc_pages_current+0x107/0x210
[  992.590650]  get_zeroed_page+0x14/0x50
[  992.594784]  __pud_alloc+0x3b/0x250
[  992.598535]  pud_alloc+0xde/0x150
[  992.602024]  copy_page_range+0x37a/0x1f90
[  992.606474]  ? _raw_spin_unlock_irqrestore+0x6b/0xe0
[  992.611617]  ? wake_up_q+0xaa/0x100
[  992.615574]  ? rwsem_wake+0x1f6/0x2f0
[  992.620111]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[  992.625200]  ? pmd_alloc+0x180/0x180
[  992.629331]  ? __vma_link_rb+0x279/0x370
[  992.633531]  copy_process.part.0+0x5434/0x7970
[  992.638711]  ? __cleanup_sighand+0x70/0x70
[  992.643226]  ? kasan_check_read+0x11/0x20
[  992.648363]  _do_fork+0x257/0xfe0
[  992.651948]  ? fork_idle+0x1d0/0x1d0
[  992.655716]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  992.660959]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  992.666309]  ? do_syscall_64+0x26/0x610
[  992.670828]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  992.676828]  ? do_syscall_64+0x26/0x610
[  992.682157]  __x64_sys_clone+0xbf/0x150
[  992.686606]  do_syscall_64+0x103/0x610
[  992.691679]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  992.698107] RIP: 0033:0x2000008a
[  992.702030] Code: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 98 4a 2a e9 2c 18 96 4c 0f 05 <bf> 03 00 00 00 c4 a3 7b f0 c5 1d 41 e2 e9 c4 22 e9 aa bb 3c 00 00
[  992.723320] RSP: 002b:00000000000004f0 EFLAGS: 00000287 ORIG_RAX: 0000000000000038
[  992.731709] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 000000002000008a
[  992.740202] RDX: 9c3755da22921eda RSI: 00000000000004f0 RDI: 0000000000000003
[  992.747805] RBP: 00000000000000f8 R08: 0000000000000005 R09: 0000000000000006
[  992.755634] R10: 0000000000000007 R11: 0000000000000287 R12: 000000000000000b
[  992.763185] R13: 000000000000000c R14: 000000000000000d R15: 00000000ffffffff
[  992.786088] Task in /syz2 killed as a result of limit of /syz2
[  992.799446] memory: usage 307052kB, limit 307200kB, failcnt 19874
[  992.808355] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  992.824844] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  992.837142] Memory cgroup stats for /syz2: cache:92KB rss:4492KB rss_huge:4096KB shmem:0KB mapped_file:0KB dirty:132KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:4448KB inactive_file:0KB active_file:0KB unevictable:0KB
[  992.866733] Memory cgroup out of memory: Kill process 29063 (syz-executor.2) score 120 or sacrifice child
[  992.878883] Killed process 29456 (syz-executor.2) total-vm:72584kB, anon-rss:2216kB, file-rss:34816kB, shmem-rss:0kB
[  992.930189] syz-executor.2 invoked oom-killer: gfp_mask=0x6040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null), order=0, oom_score_adj=0
[  992.954505] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[  992.960131] CPU: 0 PID: 29168 Comm: syz-executor.2 Not tainted 4.19.37 #5
[  992.967811] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  992.977935] Call Trace:
[  992.980646]  dump_stack+0x172/0x1f0
[  992.984744]  dump_header+0x15e/0x929
[  992.988969]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[  992.994127]  ? ___ratelimit+0x60/0x595
[  992.998382]  ? do_raw_spin_unlock+0x57/0x270
[  993.003728]  oom_kill_process.cold+0x10/0x6f5
[  993.008377]  ? task_will_free_mem+0x139/0x6e0
[  993.013133]  out_of_memory+0x936/0x12d0
[  993.017368]  ? oom_killer_disable+0x280/0x280
[  993.022169]  ? find_held_lock+0x35/0x130
[  993.026385]  mem_cgroup_out_of_memory+0x1d2/0x240
[  993.031764]  ? memcg_event_wake+0x230/0x230
[  993.036840]  ? do_raw_spin_unlock+0x57/0x270
[  993.041309]  ? _raw_spin_unlock+0x2d/0x50
[  993.045725]  try_charge+0xd25/0x15b0
[  993.049831]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[  993.055363]  ? rcu_read_lock_sched_held+0x110/0x130
[  993.060846]  ? __alloc_pages_nodemask+0x63e/0x760
[  993.066081]  ? perf_trace_lock_acquire+0xf5/0x580
[  993.071141]  memcg_kmem_charge_memcg+0x7c/0x130
[  993.076029]  ? memcg_kmem_put_cache+0xb0/0xb0
[  993.080595]  ? cache_grow_begin+0x59a/0x8c0
[  993.085152]  ? lockdep_hardirqs_on+0x415/0x5d0
[  993.089950]  ? trace_hardirqs_on+0x67/0x230
[  993.094825]  cache_grow_begin+0x25f/0x8c0
[  993.099366]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  993.105047]  ? __cpuset_node_allowed+0x136/0x540
[  993.110025]  fallback_alloc+0x1fd/0x2d0
[  993.114592]  ____cache_alloc_node+0x1be/0x1e0
[  993.119362]  kmem_cache_alloc+0x1f3/0x700
[  993.123816]  ? call_rwsem_wake+0x1b/0x30
[  993.128408]  anon_vma_clone+0x238/0x480
[  993.132615]  anon_vma_fork+0x8f/0x4a0
[  993.136541]  ? dup_userfaultfd+0x15e/0x6c0
[  993.141203]  ? memcpy+0x46/0x50
[  993.144641]  copy_process.part.0+0x34dc/0x7970
[  993.149463]  ? __cleanup_sighand+0x70/0x70
[  993.153994]  ? kasan_check_read+0x11/0x20
[  993.158310]  _do_fork+0x257/0xfe0
[  993.161811]  ? fork_idle+0x1d0/0x1d0
[  993.165744]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  993.170678]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  993.175883]  ? do_syscall_64+0x26/0x610
[  993.179893]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  993.185802]  ? do_syscall_64+0x26/0x610
[  993.189904]  __x64_sys_clone+0xbf/0x150
[  993.193915]  do_syscall_64+0x103/0x610
[  993.197944]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  993.203295] RIP: 0033:0x2000008a
[  993.206796] Code: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 98 4a 2a e9 2c 18 96 4c 0f 05 <bf> 03 00 00 00 c4 a3 7b f0 c5 1d 41 e2 e9 c4 22 e9 aa bb 3c 00 00
[  993.226459] RSP: 002b:00000000000004f0 EFLAGS: 00000287 ORIG_RAX: 0000000000000038
[  993.234442] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 000000002000008a
[  993.241913] RDX: 9c3755da22921eda RSI: 00000000000004f0 RDI: 0000000000000003
[  993.249244] RBP: 00000000000000f8 R08: 0000000000000005 R09: 0000000000000006
[  993.256655] R10: 0000000000000007 R11: 0000000000000287 R12: 000000000000000b
[  993.264118] R13: 000000000000000c R14: 000000000000000d R15: 00000000ffffffff
[  993.273927] Task in /syz2 killed as a result of limit of /syz2
[  993.280420] memory: usage 307200kB, limit 307200kB, failcnt 19912
[  993.281544] net_ratelimit: 18 callbacks suppressed
[  993.281553] protocol 88fb is buggy, dev hsr_slave_0
[  993.287452] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  993.291979] protocol 88fb is buggy, dev hsr_slave_1
[  993.309752] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  993.316684] Memory cgroup stats for /syz2: cache:92KB rss:4492KB rss_huge:4096KB shmem:0KB mapped_file:0KB dirty:132KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:4448KB inactive_file:0KB active_file:0KB unevictable:0KB
[  993.339731] Memory cgroup out of memory: Kill process 29063 (syz-executor.2) score 120 or sacrifice child
[  993.350564] Killed process 29537 (syz-executor.2) total-vm:72584kB, anon-rss:2216kB, file-rss:34816kB, shmem-rss:0kB
[  993.364822] oom_reaper: reaped process 29537 (syz-executor.2), now anon-rss:0kB, file-rss:34816kB, shmem-rss:0kB
[  993.428459] syz-executor.2 invoked oom-killer: gfp_mask=0x7080c0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), nodemask=(null), order=0, oom_score_adj=0
[  993.449808] syz-executor.2 cpuset=syz2 mems_allowed=0-1
[  993.456364] CPU: 0 PID: 29168 Comm: syz-executor.2 Not tainted 4.19.37 #5
[  993.463902] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  993.474173] Call Trace:
[  993.477162]  dump_stack+0x172/0x1f0
[  993.481072]  dump_header+0x15e/0x929
[  993.485080]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[  993.490525]  ? ___ratelimit+0x60/0x595
[  993.494747]  ? do_raw_spin_unlock+0x57/0x270
[  993.499246]  oom_kill_process.cold+0x10/0x6f5
[  993.504007]  ? task_will_free_mem+0x139/0x6e0
[  993.508808]  ? find_held_lock+0x35/0x130
[  993.513040]  out_of_memory+0x936/0x12d0
[  993.517557]  ? lock_downgrade+0x810/0x810
[  993.521983]  ? oom_killer_disable+0x280/0x280
[  993.526935]  ? find_held_lock+0x35/0x130
[  993.531326]  mem_cgroup_out_of_memory+0x1d2/0x240
[  993.536807]  ? memcg_event_wake+0x230/0x230
[  993.541473]  ? do_raw_spin_unlock+0x57/0x270
[  993.546714]  ? _raw_spin_unlock+0x2d/0x50
[  993.550988]  try_charge+0xd25/0x15b0
[  993.554996]  ? find_held_lock+0x35/0x130
[  993.559479]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[  993.564641]  ? get_mem_cgroup_from_mm+0x10b/0x2b0
[  993.569691]  ? find_held_lock+0x35/0x130
[  993.573812]  ? get_mem_cgroup_from_mm+0x10b/0x2b0
[  993.579031]  memcg_kmem_charge_memcg+0x7c/0x130
[  993.583923]  ? memcg_kmem_put_cache+0xb0/0xb0
[  993.588468]  ? get_mem_cgroup_from_mm+0x128/0x2b0
[  993.594155]  memcg_kmem_charge+0x136/0x300
[  993.598843]  __alloc_pages_nodemask+0x3c6/0x760
[  993.604312]  ? debug_smp_processor_id+0x1c/0x20
[  993.609023]  ? __alloc_pages_slowpath+0x2870/0x2870
[  993.614915]  ? find_held_lock+0x35/0x130
[  993.619424]  ? copy_page_range+0x124f/0x1f90
[  993.624071]  ? __sanitizer_cov_trace_const_cmp2+0x18/0x20
[  993.632198]  alloc_pages_current+0x107/0x210
[  993.638568]  pte_alloc_one+0x1b/0x1a0
[  993.643013]  __pte_alloc+0x2a/0x360
[  993.647244]  copy_page_range+0x151f/0x1f90
[  993.651722]  ? debug_smp_processor_id+0x1c/0x20
[  993.656966]  ? pmd_alloc+0x180/0x180
[  993.661383]  ? __vma_link_rb+0x279/0x370
[  993.665668]  copy_process.part.0+0x5434/0x7970
[  993.670571]  ? __cleanup_sighand+0x70/0x70
[  993.675318]  ? kasan_check_read+0x11/0x20
[  993.679800]  _do_fork+0x257/0xfe0
[  993.683325]  ? fork_idle+0x1d0/0x1d0
[  993.687442]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  993.692576]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  993.697548]  ? do_syscall_64+0x26/0x610
[  993.701562]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  993.707464]  ? do_syscall_64+0x26/0x610
[  993.711913]  __x64_sys_clone+0xbf/0x150
[  993.716098]  do_syscall_64+0x103/0x610
[  993.720199]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  993.726161] RIP: 0033:0x2000008a
[  993.730033] Code: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 98 4a 2a e9 2c 18 96 4c 0f 05 <bf> 03 00 00 00 c4 a3 7b f0 c5 1d 41 e2 e9 c4 22 e9 aa bb 3c 00 00
[  993.750887] RSP: 002b:00000000000004f0 EFLAGS: 00000287 ORIG_RAX: 0000000000000038
[  993.758978] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 000000002000008a
[  993.766353] RDX: 9c3755da22921eda RSI: 00000000000004f0 RDI: 0000000000000003
[  993.773923] RBP: 00000000000000f8 R08: 0000000000000005 R09: 0000000000000006
[  993.782046] R10: 0000000000000007 R11: 0000000000000287 R12: 000000000000000b
[  993.789977] R13: 000000000000000c R14: 000000000000000d R15: 00000000ffffffff
[  993.802484] Task in /syz2 killed as a result of limit of /syz2
[  993.808819] memory: usage 307048kB, limit 307200kB, failcnt 19944
[  993.816458] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  993.824793] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  993.832701] Memory cgroup stats for /syz2: cache:92KB rss:4492KB rss_huge:4096KB shmem:0KB mapped_file:0KB dirty:132KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:4448KB inactive_file:0KB active_file:0KB unevictable:0KB
[  993.855372] protocol 88fb is buggy, dev hsr_slave_0
[  993.855440] protocol 88fb is buggy, dev hsr_slave_1
[  993.867032] Memory cgroup out of memory: Kill process 29063 (syz-executor.2) score 120 or sacrifice child
[  993.878002] Killed process 29063 (syz-executor.2) total-vm:72584kB, anon-rss:2216kB, file-rss:34816kB, shmem-rss:0kB
[  993.891110] oom_reaper: reaped process 29063 (syz-executor.2), now anon-rss:0kB, file-rss:34816kB, shmem-rss:0kB
[  993.919499] syz-executor.2 invoked oom-killer: gfp_mask=0x7080c0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), nodemask=(null), order=0, oom_score_adj=0
[  993.941515] protocol 88fb is buggy, dev hsr_slave_0
[  993.947429] protocol 88fb is buggy, dev hsr_slave_1
[  993.949945] syz-executor.2 cpuset=
[  993.952904] protocol 88fb is buggy, dev hsr_slave_0
[  993.953479] syz2
[  993.956918] protocol 88fb is buggy, dev hsr_slave_1
[  993.970715]  mems_allowed=0-1
[  993.974378] CPU: 0 PID: 29599 Comm: syz-executor.2 Not tainted 4.19.37 #5
[  993.981441] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  993.991742] Call Trace:
[  993.994595]  dump_stack+0x172/0x1f0
[  993.998416]  dump_header+0x15e/0x929
[  994.002415]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[  994.008173]  ? ___ratelimit+0x60/0x595
[  994.012365]  ? do_raw_spin_unlock+0x57/0x270
[  994.017011]  oom_kill_process.cold+0x10/0x6f5
[  994.021741]  ? task_will_free_mem+0x139/0x6e0
[  994.026601]  out_of_memory+0x936/0x12d0
[  994.031115]  ? oom_killer_disable+0x280/0x280
[  994.036458]  ? find_held_lock+0x35/0x130
[  994.040846]  mem_cgroup_out_of_memory+0x1d2/0x240
[  994.046091]  ? memcg_event_wake+0x230/0x230
[  994.050867]  ? do_raw_spin_unlock+0x57/0x270
[  994.055605]  ? _raw_spin_unlock+0x2d/0x50
[  994.059815]  try_charge+0xd25/0x15b0
[  994.063735]  ? find_held_lock+0x35/0x130
[  994.067836]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[  994.073428]  ? get_mem_cgroup_from_mm+0x10b/0x2b0
[  994.079002]  ? find_held_lock+0x35/0x130
[  994.083525]  ? get_mem_cgroup_from_mm+0x10b/0x2b0
[  994.089555]  memcg_kmem_charge_memcg+0x7c/0x130
[  994.094940]  ? memcg_kmem_put_cache+0xb0/0xb0
[  994.099915]  ? get_mem_cgroup_from_mm+0x128/0x2b0
[  994.104983]  memcg_kmem_charge+0x136/0x300
[  994.109645]  __alloc_pages_nodemask+0x3c6/0x760
[  994.114732]  ? __alloc_pages_slowpath+0x2870/0x2870
[  994.120705]  ? _raw_spin_unlock_irqrestore+0x6b/0xe0
[  994.126733]  ? try_to_wake_up+0xcc/0xf60
[  994.131151]  ? _raw_spin_unlock_irqrestore+0x6b/0xe0
[  994.136341]  ? __sanitizer_cov_trace_const_cmp2+0x18/0x20
[  994.142261]  alloc_pages_current+0x107/0x210
[  994.147138]  get_zeroed_page+0x14/0x50
[  994.151342]  __pud_alloc+0x3b/0x250
[  994.155330]  pud_alloc+0xde/0x150
[  994.158817]  copy_page_range+0x37a/0x1f90
[  994.163577]  ? _raw_spin_unlock_irqrestore+0x6b/0xe0
[  994.168931]  ? wake_up_q+0xaa/0x100
[  994.172902]  ? rwsem_wake+0x1f6/0x2f0
[  994.177003]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[  994.182143]  ? pmd_alloc+0x180/0x180
[  994.186091]  ? __vma_link_rb+0x279/0x370
[  994.190437]  copy_process.part.0+0x5434/0x7970
[  994.195737]  ? __cleanup_sighand+0x70/0x70
[  994.200818]  ? kasan_check_read+0x11/0x20
[  994.205348]  _do_fork+0x257/0xfe0
[  994.209529]  ? fork_idle+0x1d0/0x1d0
[  994.213571]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  994.218653]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  994.224107]  ? do_syscall_64+0x26/0x610
[  994.228420]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  994.233979]  ? do_syscall_64+0x26/0x610
[  994.238077]  __x64_sys_clone+0xbf/0x150
[  994.242462]  do_syscall_64+0x103/0x610
[  994.246433]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  994.251958] RIP: 0033:0x2000008a
[  994.255479] Code: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 98 4a 2a e9 2c 18 96 4c 0f 05 <bf> 03 00 00 00 c4 a3 7b f0 c5 1d 41 e2 e9 c4 22 e9 aa bb 3c 00 00
[  994.275624] RSP: 002b:00000000000004f0 EFLAGS: 00000287 ORIG_RAX: 0000000000000038
[  994.283728] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 000000002000008a
[  994.291469] RDX: 9c3755da22921eda RSI: 00000000000004f0 RDI: 0000000000000003
[  994.299336] RBP: 00000000000000f8 R08: 0000000000000005 R09: 0000000000000006
[  994.307367] R10: 0000000000000007 R11: 0000000000000287 R12: 000000000000000b
[  994.315330] R13: 000000000000000c R14: 000000000000000d R15: 00000000ffffffff
[  994.491468] protocol 88fb is buggy, dev hsr_slave_0
[  994.496715] protocol 88fb is buggy, dev hsr_slave_1
[  998.651502] net_ratelimit: 18 callbacks suppressed
[  998.651512] protocol 88fb is buggy, dev hsr_slave_0
[  998.662215] protocol 88fb is buggy, dev hsr_slave_1
[  999.531374] protocol 88fb is buggy, dev hsr_slave_0
[  999.536529] protocol 88fb is buggy, dev hsr_slave_1
[ 1000.091441] protocol 88fb is buggy, dev hsr_slave_0
[ 1000.096598] protocol 88fb is buggy, dev hsr_slave_1
[ 1000.171383] protocol 88fb is buggy, dev hsr_slave_0
[ 1000.176509] protocol 88fb is buggy, dev hsr_slave_1
[ 1000.181702] protocol 88fb is buggy, dev hsr_slave_0
[ 1000.186791] protocol 88fb is buggy, dev hsr_slave_1
[ 1003.691340] net_ratelimit: 12 callbacks suppressed
[ 1003.691349] protocol 88fb is buggy, dev hsr_slave_0
[ 1003.701460] protocol 88fb is buggy, dev hsr_slave_1
[ 1004.251426] protocol 88fb is buggy, dev hsr_slave_0
[ 1004.256589] protocol 88fb is buggy, dev hsr_slave_1
[ 1004.331357] protocol 88fb is buggy, dev hsr_slave_0
[ 1004.336480] protocol 88fb is buggy, dev hsr_slave_1
[ 1004.341750] protocol 88fb is buggy, dev hsr_slave_0
[ 1004.346831] protocol 88fb is buggy, dev hsr_slave_1
[ 1004.891326] protocol 88fb is buggy, dev hsr_slave_0
[ 1004.896467] protocol 88fb is buggy, dev hsr_slave_1
[ 1009.051266] net_ratelimit: 18 callbacks suppressed
[ 1009.051287] protocol 88fb is buggy, dev hsr_slave_0
[ 1009.061534] protocol 88fb is buggy, dev hsr_slave_1
[ 1009.931322] protocol 88fb is buggy, dev hsr_slave_0
[ 1009.936447] protocol 88fb is buggy, dev hsr_slave_1
[ 1010.491397] protocol 88fb is buggy, dev hsr_slave_0
[ 1010.496520] protocol 88fb is buggy, dev hsr_slave_1
[ 1010.581297] protocol 88fb is buggy, dev hsr_slave_0
[ 1010.586404] protocol 88fb is buggy, dev hsr_slave_1
[ 1010.591581] protocol 88fb is buggy, dev hsr_slave_0
[ 1010.596653] protocol 88fb is buggy, dev hsr_slave_1
[ 1014.091207] net_ratelimit: 12 callbacks suppressed
[ 1014.091216] protocol 88fb is buggy, dev hsr_slave_0
[ 1014.101336] protocol 88fb is buggy, dev hsr_slave_1
[ 1014.651416] protocol 88fb is buggy, dev hsr_slave_0
[ 1014.656637] protocol 88fb is buggy, dev hsr_slave_1
[ 1014.731252] protocol 88fb is buggy, dev hsr_slave_0
[ 1014.736456] protocol 88fb is buggy, dev hsr_slave_1
[ 1014.741648] protocol 88fb is buggy, dev hsr_slave_0
[ 1014.746728] protocol 88fb is buggy, dev hsr_slave_1
[ 1015.291242] protocol 88fb is buggy, dev hsr_slave_0
[ 1015.296397] protocol 88fb is buggy, dev hsr_slave_1
[ 1015.801212] Task in /syz2 killed as a result of limit of /syz2
[ 1016.551196] memory: usage 237852kB, limit 307200kB, failcnt 19965
[ 1016.557483] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1016.588342] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1019.451200] net_ratelimit: 18 callbacks suppressed
[ 1019.451210] protocol 88fb is buggy, dev hsr_slave_0
[ 1019.461407] protocol 88fb is buggy, dev hsr_slave_1
[ 1020.278222] audit: type=1400 audit(1021.915:541): avc:  denied  { map } for  pid=30385 comm="sh" path="/bin/dash" dev="sda1" ino=1473 scontext=system_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=system_u:object_r:file_t:s0 tclass=file permissive=1
[ 1020.331165] protocol 88fb is buggy, dev hsr_slave_0
[ 1020.336282] protocol 88fb is buggy, dev hsr_slave_1
[ 1020.473601] Memory cgroup stats for /syz2: cache:92KB rss:2416KB rss_huge:2048KB shmem:0KB mapped_file:0KB dirty:132KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:2252KB inactive_file:0KB active_file:0KB unevictable:0KB
[ 1020.891226] protocol 88fb is buggy, dev hsr_slave_0
[ 1020.896392] protocol 88fb is buggy, dev hsr_slave_1
[ 1020.971177] protocol 88fb is buggy, dev hsr_slave_0
[ 1020.976313] protocol 88fb is buggy, dev hsr_slave_1
[ 1020.981504] protocol 88fb is buggy, dev hsr_slave_0
[ 1020.986626] protocol 88fb is buggy, dev hsr_slave_1
[ 1021.472218] Memory cgroup out of memory: Kill process 29067 (syz-executor.2) score 120 or sacrifice child
00:17:04 executing program 2:
syz_mount_image$xfs(&(0x7f0000000000)='xfs\x00', &(0x7f0000000040)='./bus\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000180)={[{@attr2='attr2'}]})

00:17:04 executing program 5:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f123c123f319bd070")
openat$vfio(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vfio/vfio\x00', 0x80, 0x0)
r1 = socket$inet6(0xa, 0x400000000001, 0x0)
r2 = dup(r1)
setsockopt$inet6_tcp_int(r2, 0x6, 0xa, &(0x7f00007b1000)=0x81, 0x4)
bind$inet6(r1, &(0x7f00000000c0)={0xa, 0x4e20}, 0x1c)
setsockopt$inet6_tcp_TCP_CONGESTION(r2, 0x6, 0xd, &(0x7f0000000080)='dctcp\x00', 0x6)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
socket$unix(0x1, 0x5, 0x0)
getresgid(&(0x7f0000000000), &(0x7f0000000100), &(0x7f00000001c0))
socket$inet6_dccp(0xa, 0x6, 0x0)
socket$inet_tcp(0x2, 0x1, 0x0)
prctl$PR_SET_PTRACER(0x59616d61, 0x0)
getpriority(0x0, 0x0)
ioprio_set$pid(0x0, 0x0, 0x0)
getsockopt$inet_int(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
sendto$inet6(r1, 0x0, 0x0, 0x20000008, &(0x7f00008d4fe4)={0xa, 0x4e20, 0x0, @loopback}, 0x1c)
getsockopt$inet6_dccp_int(0xffffffffffffffff, 0x21, 0x0, 0x0, 0x0)
setsockopt$EBT_SO_SET_COUNTERS(0xffffffffffffffff, 0x0, 0x81, 0x0, 0x0)
setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0)
getsockopt$inet6_tcp_TCP_REPAIR_WINDOW(r2, 0x6, 0x1d, &(0x7f0000000140), &(0x7f0000000180)=0x14)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r3 = getpgid(0x0)
ptrace$cont(0x3f, r3, 0x40000007a42, 0x7)
r4 = open(&(0x7f0000000040)='./bus\x00', 0x141042, 0x0)
getsockopt$inet6_tcp_int(r2, 0x6, 0x6, 0x0, 0x0)
ftruncate(r4, 0x7fff)
sendfile(r2, r4, 0x0, 0x8000fffffffe)

00:17:04 executing program 3:
r0 = socket(0x10, 0x803, 0x0)
sendto(r0, &(0x7f0000000000)="120000001a00e5ff007b00000000008000a1", 0x12, 0x0, 0x0, 0x0)

00:17:04 executing program 1:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
unshare(0x400)
ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070")
open(&(0x7f00007e2ff8)='./file0\x00', 0x80040, 0x0)
r1 = open(&(0x7f00007e2ff8)='./file0\x00', 0x0, 0x0)
fcntl$setlease(r1, 0x400, 0x0)
r2 = open(&(0x7f0000000100)='./file0\x00', 0x0, 0x0)
fcntl$getflags(r2, 0x401)

00:17:04 executing program 4:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000140)='attr/sockcreate\x00&\xa0\xd1\xf2\x10\xf9\x16E\vv\x0e\x02z\xb6/%\xbdQe(\xe7\xe6\xce\xd0n\x83\x8d\xee\x00\x8cF\xdf\x84|vA\xc8\xe6\r:\\\x1d.\xdb\x1e\x1am\xd4]\b\v0\xd4\f')
write$selinux_context(r0, &(0x7f00000000c0)='system_u:object_r:semanage_trans_lock_t:s0\n', 0x2b)

00:17:04 executing program 0:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f123c123f319bd070")
openat$vfio(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vfio/vfio\x00', 0x80, 0x0)
r1 = socket$inet6(0xa, 0x400000000001, 0x0)
r2 = dup(r1)
setsockopt$inet6_tcp_int(r2, 0x6, 0xa, &(0x7f00007b1000)=0x81, 0x4)
bind$inet6(r1, &(0x7f00000000c0)={0xa, 0x4e20}, 0x1c)
setsockopt$inet6_tcp_TCP_CONGESTION(r2, 0x6, 0xd, &(0x7f0000000080)='dctcp\x00', 0x6)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
socket$unix(0x1, 0x5, 0x0)
getresgid(&(0x7f0000000000), &(0x7f0000000100), &(0x7f00000001c0))
socket$inet6_dccp(0xa, 0x6, 0x0)
socket$inet_tcp(0x2, 0x1, 0x0)
prctl$PR_SET_PTRACER(0x59616d61, 0x0)
getpriority(0x0, 0x0)
ioprio_set$pid(0x0, 0x0, 0x0)
getsockopt$inet_int(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
sendto$inet6(r1, 0x0, 0x0, 0x20000008, &(0x7f00008d4fe4)={0xa, 0x4e20, 0x0, @loopback}, 0x1c)
getsockopt$inet6_dccp_int(0xffffffffffffffff, 0x21, 0x0, 0x0, 0x0)
setsockopt$EBT_SO_SET_COUNTERS(0xffffffffffffffff, 0x0, 0x81, 0x0, 0x0)
setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0)
getsockopt$inet6_tcp_TCP_REPAIR_WINDOW(r2, 0x6, 0x1d, &(0x7f0000000140), &(0x7f0000000180)=0x14)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r3 = getpgid(0x0)
ptrace$cont(0x3f, r3, 0x40000007a42, 0x7)
r4 = open(&(0x7f0000000040)='./bus\x00', 0x141042, 0x0)
getsockopt$inet6_tcp_int(r2, 0x6, 0x6, 0x0, 0x0)
ftruncate(r4, 0x7fff)
sendfile(r2, r4, 0x0, 0x8000fffffffe)

00:17:04 executing program 4:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
ioctl(r0, 0xffffffffffffffc8, 0x0)

00:17:04 executing program 3:
socket$unix(0x1, 0x1, 0x0)
syz_execute_func(&(0x7f0000000000)="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")

00:17:04 executing program 1:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
unshare(0x400)
ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070")
open(&(0x7f00007e2ff8)='./file0\x00', 0x80040, 0x0)
r1 = open(&(0x7f00007e2ff8)='./file0\x00', 0x0, 0x0)
fcntl$setlease(r1, 0x400, 0x0)
r2 = open(&(0x7f0000000100)='./file0\x00', 0x0, 0x0)
fcntl$getflags(r2, 0x401)

00:17:04 executing program 4:
syz_execute_func(&(0x7f0000000140)="1cfdb5b598cd800f1211f57962f5696200d9d9d0170f1205d126000012ae00000000f2680c0000008fe9589b26c7e4c753fbc4e101edfec4e801e80182663ed107c2c0bb7063f2168f4808eebce00000802000c422b18cc4e3c15c80c02400000e0000005151c4a27d181ec1ea01eff265dc5f00c35b0ad1304545e269a841000fc4c2559c3766030fae6a69c6c1197d780ac21cf145f1360db874e4d663805bdedec4f3f0016f41400f0d1c8080f20f0f0b96fe5ff6e30fad6736660fd2938c000000c4c1f913376666450f17720d2e440fc7bf0d00008066660f3a0b0865")

00:17:04 executing program 1:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
unshare(0x400)
ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070")
open(&(0x7f00007e2ff8)='./file0\x00', 0x80040, 0x0)
r1 = open(&(0x7f00007e2ff8)='./file0\x00', 0x0, 0x0)
fcntl$setlease(r1, 0x400, 0x0)
r2 = open(&(0x7f0000000100)='./file0\x00', 0x0, 0x0)
fcntl$getflags(r2, 0x401)

00:17:04 executing program 4:
r0 = socket$tipc(0x1e, 0x2, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r1, 0x1000008912, &(0x7f00000000c0)="0adc1f123c123f319bd070")
getsockopt$TIPC_SRC_DROPPABLE(r0, 0x10f, 0x82, 0x0, &(0x7f0000000b40)=0x300)

[ 1024.491123] net_ratelimit: 12 callbacks suppressed
[ 1024.491131] protocol 88fb is buggy, dev hsr_slave_0
[ 1024.501255] protocol 88fb is buggy, dev hsr_slave_1
[ 1024.757741] IPVS: ftp: loaded support on port[0] = 21
[ 1025.051192] protocol 88fb is buggy, dev hsr_slave_0
[ 1025.056326] protocol 88fb is buggy, dev hsr_slave_1
[ 1025.131138] protocol 88fb is buggy, dev hsr_slave_0
[ 1025.136251] protocol 88fb is buggy, dev hsr_slave_1
[ 1025.141466] protocol 88fb is buggy, dev hsr_slave_0
[ 1025.146540] protocol 88fb is buggy, dev hsr_slave_1
[ 1025.691118] protocol 88fb is buggy, dev hsr_slave_0
[ 1025.696350] protocol 88fb is buggy, dev hsr_slave_1
[ 1026.745926] chnl_net:caif_netlink_parms(): no params data found
[ 1027.116469] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1027.129989] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1027.138606] device bridge_slave_0 entered promiscuous mode
[ 1027.420249] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1027.428062] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1027.444050] device bridge_slave_1 entered promiscuous mode
[ 1027.787603] bond0: Enslaving bond_slave_0 as an active interface with an up link
[ 1027.797936] bond0: Enslaving bond_slave_1 as an active interface with an up link
[ 1027.838356] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready
[ 1027.855186] team0: Port device team_slave_0 added
[ 1028.061467] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready
[ 1028.069441] team0: Port device team_slave_1 added
[ 1028.076171] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready
[ 1028.084121] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready
[ 1028.424625] device hsr_slave_0 entered promiscuous mode
[ 1028.469414] device hsr_slave_1 entered promiscuous mode
[ 1028.511367] IPVS: stopping backup sync thread 28381 ...
[ 1028.518047] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready
[ 1028.534219] device bridge_slave_1 left promiscuous mode
[ 1028.539752] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1028.592088] device bridge_slave_0 left promiscuous mode
[ 1028.597659] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1029.851117] net_ratelimit: 16 callbacks suppressed
[ 1029.851127] protocol 88fb is buggy, dev hsr_slave_0
[ 1029.861496] protocol 88fb is buggy, dev hsr_slave_1
[ 1030.731067] protocol 88fb is buggy, dev hsr_slave_0
[ 1030.736215] protocol 88fb is buggy, dev hsr_slave_1
[ 1031.291185] protocol 88fb is buggy, dev hsr_slave_0
[ 1031.296340] protocol 88fb is buggy, dev hsr_slave_1
[ 1031.371119] protocol 88fb is buggy, dev hsr_slave_0
[ 1031.376262] protocol 88fb is buggy, dev hsr_slave_1
[ 1031.931137] protocol 88fb is buggy, dev hsr_slave_0
[ 1031.936286] protocol 88fb is buggy, dev hsr_slave_1
[ 1034.891012] net_ratelimit: 8 callbacks suppressed
[ 1034.891021] protocol 88fb is buggy, dev hsr_slave_0
[ 1034.901032] protocol 88fb is buggy, dev hsr_slave_1
[ 1035.451169] protocol 88fb is buggy, dev hsr_slave_0
[ 1035.456327] protocol 88fb is buggy, dev hsr_slave_1
[ 1035.531068] protocol 88fb is buggy, dev hsr_slave_0
[ 1035.536286] protocol 88fb is buggy, dev hsr_slave_1
[ 1036.091073] protocol 88fb is buggy, dev hsr_slave_0
[ 1036.096220] protocol 88fb is buggy, dev hsr_slave_1
[ 1036.813992] device hsr_slave_1 left promiscuous mode
[ 1036.856466] device hsr_slave_0 left promiscuous mode
[ 1036.953690] bond0 (unregistering): Releasing backup interface bond_slave_0
[ 1036.981011] protocol 88fb is buggy, dev hsr_slave_0
[ 1036.986217] protocol 88fb is buggy, dev hsr_slave_1
[ 1037.084391] bond0 (unregistering): Released all slaves
[ 1037.195931] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready
[ 1037.225932] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready
[ 1037.360256] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1037.377951] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[ 1037.399997] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[ 1037.437784] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 1037.446209] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1037.463685] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready
[ 1037.469811] 8021q: adding VLAN 0 to HW filter on device team0
[ 1037.488214] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[ 1037.500491] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 1037.517425] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1037.527048] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1037.533492] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1037.551801] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[ 1037.560235] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 1037.575741] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 1037.588527] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1037.600612] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1037.607079] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1037.660059] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready
[ 1037.668924] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 1037.687808] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready
[ 1037.699742] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 1037.722942] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready
[ 1037.738380] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 1037.748817] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 1037.766224] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready
[ 1037.778791] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 1037.790392] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 1037.807016] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 1037.841506] IPv6: ADDRCONF(NETDEV_UP): veth0_to_hsr: link is not ready
[ 1037.861750] IPv6: ADDRCONF(NETDEV_UP): veth1_to_hsr: link is not ready
[ 1037.869667] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 1037.882289] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1037.889948] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 1037.921758] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1037.931852] IPv6: ADDRCONF(NETDEV_UP): hsr0: link is not ready
[ 1037.937941] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 1037.982491] IPv6: ADDRCONF(NETDEV_UP): vxcan1: link is not ready
[ 1038.007235] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1038.332197] XFS (loop2): Invalid superblock magic number
00:17:20 executing program 2:
syz_mount_image$xfs(&(0x7f0000000000)='xfs\x00', &(0x7f0000000040)='./bus\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000180)={[{@attr2='attr2'}]})

00:17:20 executing program 1:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
unshare(0x400)
ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070")
open(&(0x7f00007e2ff8)='./file0\x00', 0x80040, 0x0)
r1 = open(&(0x7f00007e2ff8)='./file0\x00', 0x0, 0x0)
fcntl$setlease(r1, 0x400, 0x0)
r2 = open(&(0x7f0000000100)='./file0\x00', 0x0, 0x0)
fcntl$getflags(r2, 0x401)

00:17:20 executing program 4:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f00000001c0)="0adc1f123c123f319bc070")
r1 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r1, &(0x7f0000001000)={0x0, 0x0, &(0x7f0000182000)={&(0x7f0000000200)={0x2, 0x4000000000000d, 0x0, 0x0, 0x14, 0x0, 0x0, 0x0, [@sadb_x_policy={0x8, 0x12, 0x0, 0x3, 0x0, 0x0, 0x0, {0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @in=@multicast1}}, @sadb_address={0x3, 0x6, 0x0, 0x0, 0x0, @in={0x2, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff}}}, @sadb_address={0x3, 0x5, 0x0, 0x0, 0x0, @in={0x2, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff}}}, @sadb_lifetime={0x4, 0x3}]}, 0xa0}}, 0x0)

00:17:20 executing program 0:
r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setown(r0, 0x8, 0x0)

00:17:20 executing program 5:
sched_setaffinity(0x0, 0x8, &(0x7f0000000340)=0xa000000000000005)
r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$F_SET_RW_HINT(r0, 0x40c, &(0x7f0000000140)=0x3)
r1 = getpgrp(0xffffffffffffffff)
setpriority(0x0, r1, 0x0)
r2 = open(&(0x7f0000000180)='./file0\x00', 0x40, 0x1)
add_key(&(0x7f0000000080)='.request_kay_a \x00\x00\x00', 0x0, 0x0, 0x0, 0x0)
getsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, 0x0, &(0x7f0000000380))
setxattr$security_capability(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='security.capability\x00', &(0x7f0000000500)=@v3={0x3000000, [{0x0, 0x4}, {0x692, 0x2}]}, 0x18, 0x0)
set_mempolicy(0x8003, &(0x7f0000000100)=0x3, 0x9)
setsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x23, 0x0, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r2, 0x0, 0x0)
ioctl$SIOCSIFHWADDR(r2, 0x8924, &(0x7f0000000200)={'ifb0\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}})
write$RDMA_USER_CM_CMD_ACCEPT(r2, &(0x7f0000000680)={0x8, 0x120, 0xfa00, {0x0, {0x8, 0x0, "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", 0xa, 0x1, 0x4, 0x3, 0x8ff, 0x5, 0x2}}}, 0x128)
accept$inet6(r2, &(0x7f0000000240)={0xa, 0x0, 0x0, @mcast1}, &(0x7f0000000280)=0x1c)
ioctl$UI_DEV_DESTROY(r2, 0x5502)
clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, &(0x7f0000000640), 0xffffffffffffffff)
execve(&(0x7f0000000300)='./file0\x00', &(0x7f0000000480)=[0x0, &(0x7f0000000400)='security.capa%ility\x00'], &(0x7f0000000ac0))

00:17:20 executing program 3:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f319bd070")
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x2, 0x31, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$rose(0xb, 0x5, 0x0)
getsockopt$rose(r1, 0x104, 0x2, &(0x7f00000000c0), &(0x7f0000001800)=0x85)

00:17:20 executing program 1:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000000680)={0x2, 0x4e23, @local}, 0x10)

00:17:20 executing program 3:
r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/if_inet6\x00')
preadv(r0, &(0x7f0000000300)=[{&(0x7f0000000000)=""/109, 0x6d}], 0x1000000000000126, 0x200000000047)

00:17:20 executing program 4:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f00000001c0)="0adc1f123c123f319bc070")
r1 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r1, &(0x7f0000001000)={0x0, 0x0, &(0x7f0000182000)={&(0x7f0000000200)={0x2, 0x4000000000000d, 0x0, 0x0, 0x14, 0x0, 0x0, 0x0, [@sadb_x_policy={0x8, 0x12, 0x0, 0x3, 0x0, 0x0, 0x0, {0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @in=@multicast1}}, @sadb_address={0x3, 0x6, 0x0, 0x0, 0x0, @in={0x2, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff}}}, @sadb_address={0x3, 0x5, 0x0, 0x0, 0x0, @in={0x2, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff}}}, @sadb_lifetime={0x4, 0x3}]}, 0xa0}}, 0x0)

00:17:20 executing program 0:
r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setown(r0, 0x8, 0x0)

00:17:20 executing program 1:
r0 = socket$inet6(0x10, 0x2, 0x0)
sendmsg(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f000000dfaa)="5500000018007f5f00fe01b2a4a280930206000100000001000000003900090035000c02030000002d00054001000005000022dc1338d54400009b84136ef75afb83de4411000b00c43ab8220000060cec4fab91d4", 0x55}], 0x1}, 0x0)

[ 1038.786319] XFS (loop2): Invalid superblock magic number
00:17:20 executing program 3:
openat$ashmem(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ashmem\x00', 0x0, 0x0)

00:17:20 executing program 2:
syz_mount_image$xfs(&(0x7f0000000000)='xfs\x00', &(0x7f0000000040)='./bus\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000180)={[{@attr2='attr2'}]})

00:17:20 executing program 4:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f00000001c0)="0adc1f123c123f319bc070")
r1 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r1, &(0x7f0000001000)={0x0, 0x0, &(0x7f0000182000)={&(0x7f0000000200)={0x2, 0x4000000000000d, 0x0, 0x0, 0x14, 0x0, 0x0, 0x0, [@sadb_x_policy={0x8, 0x12, 0x0, 0x3, 0x0, 0x0, 0x0, {0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @in=@multicast1}}, @sadb_address={0x3, 0x6, 0x0, 0x0, 0x0, @in={0x2, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff}}}, @sadb_address={0x3, 0x5, 0x0, 0x0, 0x0, @in={0x2, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff}}}, @sadb_lifetime={0x4, 0x3}]}, 0xa0}}, 0x0)

00:17:20 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
r1 = syz_open_pts(r0, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000100)=0x11)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000040))

00:17:20 executing program 0:
r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setown(r0, 0x8, 0x0)

00:17:20 executing program 1:
syz_open_dev$swradio(0x0, 0xffffffffffffffff, 0x2)
r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_open_dev$admmidi(0x0, 0x0, 0x20000)
ioctl$GIO_SCRNMAP(r1, 0x4b40, 0x0)
semctl$GETPID(0x0, 0x0, 0xb, &(0x7f0000000080)=""/20)
semtimedop(0x0, &(0x7f0000000140)=[{}], 0x1, 0x0)
getsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r1, 0x84, 0x1f, &(0x7f0000000400)={0x0, @in={{0x2, 0x4e22}}}, 0x0)
semctl$IPC_RMID(0x0, 0x0, 0x0)
ioctl$void(r0, 0xc0045878)
shmget(0xffffffffffffffff, 0x2000, 0x0, &(0x7f0000ffc000/0x2000)=nil)
shmctl$SHM_STAT(0x0, 0xd, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x0)
rt_sigprocmask(0x0, 0x0, 0x0, 0x0)

00:17:20 executing program 3:
setsockopt$bt_BT_POWER(0xffffffffffffffff, 0x112, 0x9, 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
lsetxattr$trusted_overlay_opaque(0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$EVIOCGSND(0xffffffffffffffff, 0x8040451a, 0x0)
r0 = socket$can_raw(0x1d, 0x3, 0x1)
syz_open_dev$video4linux(&(0x7f00000000c0)='/dev/v4l-subdev#\x00', 0x0, 0x0)
bind$can_raw(r0, &(0x7f0000000140), 0x10)
setsockopt(r0, 0x65, 0x1, &(0x7f0000000700)="3b3561ac00814a4548c78d250bdd795fd74ffc69a3565b45f64e53148f3f1ba2f9ef4cd9bc9accca5a9e66aa66083c540e1c390ef3733d2d4aa8d18ac54b2a11459a84cd69778e626bf2180598cf27123f9e627bf4e0467e04f91dd4c9824be1fec0ce58dd168688e6c45a2d8381f4c9a4dfa0fdbb9c9f9e0ffe482aabc46830685fd52c4413cd4d9929999530dec36e01bfcd34099fbe33339b575ff07af0ec8c1a3c4470c103362070b6230923b6a576f83bd964cdafeaeec9e341d82f90054773b4bb1886feeab2b03ec217b9c7e1caba03da6c718f16cbf30431abe8bb25295fb02cdf4fe3a04f89cf9cc5152d48d92b3f8c9e53beb90474488822da8c6ff25760c06fa435f9d0854024945f872c2d61c78c2db8a5d40e8acbd8c00e008aa50d36c09ac673fb47850a7bf8c3394a2e8112c10c10b5c9a7ee6d364ca52a1e1422e433bb020f2e74eb600033d1af7f5e2bd98ba21417e6daa73284c958ac353dc9add51e9b3ce7558cd3f47417d148444ac3a4012a393f87f3edfe83a68f9c5c80fa3e3605150e199f0443b908f11934f96745dcdf9079b275908bdfa7f470c6583c2f17d00f865afa83a0161d65624de63dfa09e359e1eb0000000100000000b8726651fba34a330eb4d117571008a9634576a1d3e245355788c524a072e1dd361370769a3250291fbb1c0015bbe190d93320e4cf2bfe640f9082a4a33524291403c723ff866b37e651eb32b16803511b5e4ca7afa48ff5dba1559deb21413bee6d818b648d60e299d9ef9e39846d771f4eb6e2fbefac6290fc2cbb1af648451675a870b77b956db74420005e9393520c971741bb4529", 0x258)
setsockopt$inet6_MRT6_DEL_MFC(0xffffffffffffffff, 0x29, 0xcd, 0x0, 0x0)
socket$alg(0x26, 0x5, 0x0)

[ 1039.109877] XFS (loop2): Invalid superblock magic number
00:17:20 executing program 4:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f00000001c0)="0adc1f123c123f319bc070")
r1 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r1, &(0x7f0000001000)={0x0, 0x0, &(0x7f0000182000)={&(0x7f0000000200)={0x2, 0x4000000000000d, 0x0, 0x0, 0x14, 0x0, 0x0, 0x0, [@sadb_x_policy={0x8, 0x12, 0x0, 0x3, 0x0, 0x0, 0x0, {0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @in=@multicast1}}, @sadb_address={0x3, 0x6, 0x0, 0x0, 0x0, @in={0x2, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff}}}, @sadb_address={0x3, 0x5, 0x0, 0x0, 0x0, @in={0x2, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff}}}, @sadb_lifetime={0x4, 0x3}]}, 0xa0}}, 0x0)

00:17:20 executing program 0:
r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setown(r0, 0x8, 0x0)

00:17:20 executing program 2:
syz_mount_image$xfs(&(0x7f0000000000)='xfs\x00', &(0x7f0000000040)='./bus\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000180)={[{@attr2='attr2'}]})

00:17:20 executing program 1:
syz_open_dev$swradio(0x0, 0xffffffffffffffff, 0x2)
r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_open_dev$admmidi(0x0, 0x0, 0x20000)
ioctl$GIO_SCRNMAP(r1, 0x4b40, 0x0)
semctl$GETPID(0x0, 0x0, 0xb, &(0x7f0000000080)=""/20)
semtimedop(0x0, &(0x7f0000000140)=[{}], 0x1, 0x0)
getsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r1, 0x84, 0x1f, &(0x7f0000000400)={0x0, @in={{0x2, 0x4e22}}}, 0x0)
semctl$IPC_RMID(0x0, 0x0, 0x0)
ioctl$void(r0, 0xc0045878)
shmget(0xffffffffffffffff, 0x2000, 0x0, &(0x7f0000ffc000/0x2000)=nil)
shmctl$SHM_STAT(0x0, 0xd, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x0)
rt_sigprocmask(0x0, 0x0, 0x0, 0x0)

00:17:20 executing program 5:
syz_open_dev$swradio(0x0, 0xffffffffffffffff, 0x2)
r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_open_dev$admmidi(0x0, 0x0, 0x20000)
ioctl$GIO_SCRNMAP(r1, 0x4b40, 0x0)
semctl$GETPID(0x0, 0x0, 0xb, &(0x7f0000000080)=""/20)
semtimedop(0x0, &(0x7f0000000140)=[{}], 0x1, 0x0)
getsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r1, 0x84, 0x1f, &(0x7f0000000400)={0x0, @in={{0x2, 0x4e22}}}, 0x0)
semctl$IPC_RMID(0x0, 0x0, 0x0)
ioctl$void(r0, 0xc0045878)
shmget(0xffffffffffffffff, 0x2000, 0x0, &(0x7f0000ffc000/0x2000)=nil)
shmctl$SHM_STAT(0x0, 0xd, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x0)
rt_sigprocmask(0x0, 0x0, 0x0, 0x0)

00:17:20 executing program 4:
syz_open_dev$swradio(0x0, 0xffffffffffffffff, 0x2)
r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_open_dev$admmidi(0x0, 0x0, 0x20000)
ioctl$GIO_SCRNMAP(r1, 0x4b40, 0x0)
semctl$GETPID(0x0, 0x0, 0xb, &(0x7f0000000080)=""/20)
semtimedop(0x0, &(0x7f0000000140)=[{}], 0x1, 0x0)
getsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r1, 0x84, 0x1f, &(0x7f0000000400)={0x0, @in={{0x2, 0x4e22}}}, 0x0)
semctl$IPC_RMID(0x0, 0x0, 0x0)
ioctl$void(r0, 0xc0045878)
shmget(0xffffffffffffffff, 0x2000, 0x0, &(0x7f0000ffc000/0x2000)=nil)
shmctl$SHM_STAT(0x0, 0xd, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x0)
rt_sigprocmask(0x0, 0x0, 0x0, 0x0)

00:17:21 executing program 0:
syz_open_dev$swradio(0x0, 0xffffffffffffffff, 0x2)
r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_open_dev$admmidi(0x0, 0x0, 0x20000)
ioctl$GIO_SCRNMAP(r1, 0x4b40, 0x0)
semctl$GETPID(0x0, 0x0, 0xb, &(0x7f0000000080)=""/20)
semtimedop(0x0, &(0x7f0000000140)=[{}], 0x1, 0x0)
getsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r1, 0x84, 0x1f, &(0x7f0000000400)={0x0, @in={{0x2, 0x4e22}}}, 0x0)
semctl$IPC_RMID(0x0, 0x0, 0x0)
ioctl$void(r0, 0xc0045878)
shmget(0xffffffffffffffff, 0x2000, 0x0, &(0x7f0000ffc000/0x2000)=nil)
shmctl$SHM_STAT(0x0, 0xd, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x0)
rt_sigprocmask(0x0, 0x0, 0x0, 0x0)

00:17:21 executing program 1:
syz_open_dev$swradio(0x0, 0xffffffffffffffff, 0x2)
r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_open_dev$admmidi(0x0, 0x0, 0x20000)
ioctl$GIO_SCRNMAP(r1, 0x4b40, 0x0)
semctl$GETPID(0x0, 0x0, 0xb, &(0x7f0000000080)=""/20)
semtimedop(0x0, &(0x7f0000000140)=[{}], 0x1, 0x0)
getsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r1, 0x84, 0x1f, &(0x7f0000000400)={0x0, @in={{0x2, 0x4e22}}}, 0x0)
semctl$IPC_RMID(0x0, 0x0, 0x0)
ioctl$void(r0, 0xc0045878)
shmget(0xffffffffffffffff, 0x2000, 0x0, &(0x7f0000ffc000/0x2000)=nil)
shmctl$SHM_STAT(0x0, 0xd, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x0)
rt_sigprocmask(0x0, 0x0, 0x0, 0x0)

00:17:21 executing program 4:
syz_open_dev$swradio(0x0, 0xffffffffffffffff, 0x2)
r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_open_dev$admmidi(0x0, 0x0, 0x20000)
ioctl$GIO_SCRNMAP(r1, 0x4b40, 0x0)
semctl$GETPID(0x0, 0x0, 0xb, &(0x7f0000000080)=""/20)
semtimedop(0x0, &(0x7f0000000140)=[{}], 0x1, 0x0)
getsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r1, 0x84, 0x1f, &(0x7f0000000400)={0x0, @in={{0x2, 0x4e22}}}, 0x0)
semctl$IPC_RMID(0x0, 0x0, 0x0)
ioctl$void(r0, 0xc0045878)
shmget(0xffffffffffffffff, 0x2000, 0x0, &(0x7f0000ffc000/0x2000)=nil)
shmctl$SHM_STAT(0x0, 0xd, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x0)
rt_sigprocmask(0x0, 0x0, 0x0, 0x0)

[ 1039.488609] XFS (loop2): Invalid superblock magic number
00:17:21 executing program 0:
syz_open_dev$swradio(0x0, 0xffffffffffffffff, 0x2)
r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_open_dev$admmidi(0x0, 0x0, 0x20000)
ioctl$GIO_SCRNMAP(r1, 0x4b40, 0x0)
semctl$GETPID(0x0, 0x0, 0xb, &(0x7f0000000080)=""/20)
semtimedop(0x0, &(0x7f0000000140)=[{}], 0x1, 0x0)
getsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r1, 0x84, 0x1f, &(0x7f0000000400)={0x0, @in={{0x2, 0x4e22}}}, 0x0)
semctl$IPC_RMID(0x0, 0x0, 0x0)
ioctl$void(r0, 0xc0045878)
shmget(0xffffffffffffffff, 0x2000, 0x0, &(0x7f0000ffc000/0x2000)=nil)
shmctl$SHM_STAT(0x0, 0xd, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x0)
rt_sigprocmask(0x0, 0x0, 0x0, 0x0)

00:17:21 executing program 5:
syz_open_dev$swradio(0x0, 0xffffffffffffffff, 0x2)
r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_open_dev$admmidi(0x0, 0x0, 0x20000)
ioctl$GIO_SCRNMAP(r1, 0x4b40, 0x0)
semctl$GETPID(0x0, 0x0, 0xb, &(0x7f0000000080)=""/20)
semtimedop(0x0, &(0x7f0000000140)=[{}], 0x1, 0x0)
getsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r1, 0x84, 0x1f, &(0x7f0000000400)={0x0, @in={{0x2, 0x4e22}}}, 0x0)
semctl$IPC_RMID(0x0, 0x0, 0x0)
ioctl$void(r0, 0xc0045878)
shmget(0xffffffffffffffff, 0x2000, 0x0, &(0x7f0000ffc000/0x2000)=nil)
shmctl$SHM_STAT(0x0, 0xd, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x0)
rt_sigprocmask(0x0, 0x0, 0x0, 0x0)

[ 1040.251021] net_ratelimit: 20 callbacks suppressed
[ 1040.251030] protocol 88fb is buggy, dev hsr_slave_0
[ 1040.261257] protocol 88fb is buggy, dev hsr_slave_1
[ 1040.411001] protocol 88fb is buggy, dev hsr_slave_0
[ 1040.416190] protocol 88fb is buggy, dev hsr_slave_1
[ 1040.611389] WARNING: CPU: 0 PID: 8066 at net/xfrm/xfrm_state.c:2391 xfrm_state_fini+0x218/0x280
[ 1040.620777] Kernel panic - not syncing: panic_on_warn set ...
[ 1040.620777] 
[ 1040.628168] CPU: 0 PID: 8066 Comm: kworker/u4:5 Not tainted 4.19.37 #5
[ 1040.634845] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1040.644291] Workqueue: netns cleanup_net
[ 1040.648385] Call Trace:
[ 1040.650990]  dump_stack+0x172/0x1f0
[ 1040.654652]  panic+0x263/0x51d
[ 1040.657859]  ? __warn_printk+0xf3/0xf3
[ 1040.661775]  ? xfrm_state_fini+0x218/0x280
[ 1040.666029]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1040.671583]  ? __warn.cold+0x5/0x54
[ 1040.675222]  ? __warn+0xe8/0x1d0
[ 1040.678607]  ? xfrm_state_fini+0x218/0x280
[ 1040.682881]  __warn.cold+0x20/0x54
[ 1040.686437]  ? xfrm_state_fini+0x218/0x280
[ 1040.690692]  report_bug+0x263/0x2b0
[ 1040.694581]  do_error_trap+0x204/0x360
[ 1040.698484]  ? math_error+0x340/0x340
[ 1040.702307]  ? find_held_lock+0x35/0x130
[ 1040.706397]  ? error_entry+0x76/0xd0
[ 1040.710133]  ? trace_hardirqs_off_caller+0x65/0x220
[ 1040.715164]  ? _raw_spin_unlock_bh+0x31/0x40
[ 1040.719718]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[ 1040.724585]  do_invalid_op+0x1b/0x20
[ 1040.728320]  invalid_op+0x14/0x20
[ 1040.731790] RIP: 0010:xfrm_state_fini+0x218/0x280
[ 1040.736646] Code: 41 5e 5d c3 e8 a9 15 7c fb 0f 0b e9 09 ff ff ff e8 9d 15 7c fb 0f 0b e9 68 ff ff ff e8 91 15 7c fb 0f 0b eb c6 e8 88 15 7c fb <0f> 0b e9 52 fe ff ff e8 1c 77 b2 fb e9 75 fe ff ff e8 32 77 b2 fb
[ 1040.755657] RSP: 0018:ffff888067d4fbd0 EFLAGS: 00010293
[ 1040.761047] RAX: ffff888067d460c0 RBX: ffff88809c1e40c0 RCX: ffffffff85ee2b19
[ 1040.768415] RDX: 0000000000000000 RSI: ffffffff85ef31f8 RDI: 0000000000000005
[ 1040.775698] RBP: ffff888067d4fbf0 R08: ffff888067d460c0 R09: ffff888067d469b0
[ 1040.783068] R10: 0000000000000000 R11: 0000000000000000 R12: ffff88809c1e5c00
[ 1040.790352] R13: ffff888067d4fcc8 R14: ffffffff891b7078 R15: dffffc0000000000
[ 1040.797665]  ? xfrm_state_flush+0x5a9/0x660
[ 1040.802003]  ? xfrm_state_fini+0x218/0x280
[ 1040.806348]  ? xfrm_policy_fini+0x2b0/0x2b0
[ 1040.810704]  xfrm_net_exit+0x25/0x70
[ 1040.814440]  ops_exit_list.isra.0+0xb0/0x160
[ 1040.818873]  cleanup_net+0x3fb/0x960
[ 1040.822607]  ? unregister_pernet_device+0x80/0x80
[ 1040.827466]  ? __lock_is_held+0xb6/0x140
[ 1040.831608]  process_one_work+0x98e/0x1760
[ 1040.835876]  ? pwq_dec_nr_in_flight+0x320/0x320
[ 1040.840564]  ? lock_acquire+0x16f/0x3f0
[ 1040.844556]  ? kasan_check_write+0x14/0x20
[ 1040.848811]  ? do_raw_spin_lock+0xc8/0x240
[ 1040.853076]  worker_thread+0x98/0xe40
[ 1040.856897]  ? trace_hardirqs_on+0x67/0x230
[ 1040.861309]  kthread+0x357/0x430
[ 1040.864699]  ? process_one_work+0x1760/0x1760
[ 1040.869204]  ? kthread_delayed_work_timer_fn+0x290/0x290
[ 1040.874761]  ret_from_fork+0x3a/0x50
[ 1040.880074] Kernel Offset: disabled
[ 1040.883925] Rebooting in 86400 seconds..