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", 0x1000}, {&(0x7f00000025c0)="80b20e5e6bfb6618c84076150817dbc4ba34c0f701c61df594bb88e0d841886955bd164fe2848022080c90a65f829a06b6f91a3a47eef756f43267e926a194b7275540f2c0d925347f0c7684263389442bf9817570b9101cab0ea97cb3f3d95f4b6129e9c74f48166b67da814625d2914e27248c7c4bc8970adfdd37f2ace7b25f47b488882e6b6a5bc7b72c", 0x8c}, {&(0x7f0000002680)="af6941cd817dfd51eb3de1c44a70d96b3b9fe978c85ee300525ef01a0b69c9f6ec5811f36e9a17fe2b822b482e0d3247a4c59fe8d45de1532bf77e1ebd6373863191becadea5f0612b8cd9df7fc518a6e16d473ea0534fa9ab006ad71d461451f41d5804d15549eb75eea088c6f6e7f2fde8e77862703414c8f9dbe13fe82254d86f359d4bafaf1ee982aab1dc45cf50769b6b63ff09ba52ebcb17c2cb4a41e26b8e1daa257ebe5d0ee008433070ef2b0f5c5f7fe7d75d77ba5e6fdef28992e226dfe966b290e133d72fde49a8add892dea28ac3164273f17937c8dfc25b2e0433aaa7eafe929992d7ed06eada56bb828192442cf9a177b16f", 0xf9}, {&(0x7f0000002780)="937712efc26089403a697d31295cdf826ad65f3256763765b75f655caf", 0x1d}, {&(0x7f00000027c0)="d5d665e19078e648461a08de7b152011435c5f53ed8cebe0a018d24d658daac893e8ae7c3ebbba8d7b38ad8e076abb934681158c2facab9a", 0x38}, {&(0x7f0000002800)="9093f92382563f1e530274fe4d33f3a35d0401bdbf47384df6b93190cbb44263ecf8bbd99ab19b672ffb4298944b5f2a70a3df76e5c200f2523fdb6949a61218cd228b75058da3ae92dfa6ae35f0469ddf04010f57ee010029aa7b8c81d905e0bb31641436851a0099c9542f598f3936df178c74394ed9b81e62d9ed48d2aef7f9fc18a6f451bf899c4d136382c4dc60698534c0a9b703e4975af0c1f6cc8313bb9ae47dac4a5cf1c1397aac7e73e799cea6a28e6b43350cc91717a07c01138eb2b036d264a89e60a35e50f8acd570708108bd1218ecc8afc52cf2a1d00f95631e49e2efa257", 0xe6}, {&(0x7f0000002900)="a114b0785debe16957446be1bb3fcf60dc85704215a9a317e9cf22e88e947bc4f5717a2d1792dad1cd74be6ef22fab5af2ecedc7ac16f3f6bcf41cc829102f394ecb25ff66cc408e6e230308a8e4e30cf49b2a6cf12db3556722fd3448358724e3fda648ee9674435afc6af4cba5498f0026e44f8940ef49df6ed92d9e0352f446037f5dd722f155aad1edda2c6d0cfe81b0cc91c9c44dfed9f26db321702d908e977639f781cde17ca7c9823a2110ff37b876628b7e2f4c349df68bf3f9e64f26779be6758be1229ca227ae1d3988001e98fa9355d15f532d158180f4d61732a9017e530ce24766e18f7f7b1181313e46", 0xf1}], 0xa, &(0x7f0000002ac0)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @multicast2, @loopback}}}, @ip_retopts={{0x24, 0x0, 0x7, {[@timestamp={0x44, 0x8, 0x44, 0x0, 0xd, [0x9]}, @ssrr={0x89, 0xb, 0xe4, [@broadcast, @local]}]}}}, @ip_ttl={{0x14, 0x0, 0x2, 0x7e8}}, @ip_retopts={{0x7c, 0x0, 0x7, {[@timestamp={0x44, 0x10, 0xcf, 0x0, 0x2, [0xc8, 0x9e, 0xfff]}, @generic={0x83, 0xd, "2488631cc53aabc5183919"}, @noop, @ssrr={0x89, 0x1f, 0x28, [@broadcast, @multicast2, @remote, @empty, @broadcast, @remote, @rand_addr=0x64010101]}, @generic={0x86, 0x8, "7e7ec034e9f9"}, @lsrr={0x83, 0x27, 0x2d, [@multicast1, @initdev={0xac, 0x1e, 0x1, 0x0}, @empty, @initdev={0xac, 0x1e, 0x0, 0x0}, @private=0xa010102, @loopback, @rand_addr=0x64010100, @rand_addr=0x64010100, @remote]}]}}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @multicast1, @dev={0xac, 0x14, 0x14, 0x32}}}}, @ip_tos_int={{0x14, 0x0, 0x1, 0x8001}}, @ip_tos_u8={{0x11, 0x0, 0x1, 0xc1}}, @ip_tos_u8={{0x11, 0x0, 0x1, 0xf9}}, @ip_tos_int={{0x14, 0x0, 0x1, 0x4}}, @ip_retopts={{0x18, 0x0, 0x7, {[@ssrr={0x89, 0x7, 0xd4, [@initdev={0xac, 0x1e, 0x1, 0x0}]}]}}}], 0x178}}, {{&(0x7f0000002c40)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x36}}, 0x10, &(0x7f0000002ec0)=[{&(0x7f0000002c80)="d330caa8237665c31e89fd1726ead4232b3064b591b2a343f31e44a533659747a961e2c8be3a45", 0x27}, {&(0x7f0000002cc0)="2dfa2b1e91252134d9aca1fdfef7474c819a5bf41d3d2e73a944ca44d23f52fb7e5dc75379053176b209b0f9a270ea87faa7d6bfb73ca738f13d4f48b5a58ae20b44d83123b7", 0x46}, {&(0x7f0000002d40)="afceaca5f47cfbec71efe043ec38f2c51f2f36225ae767655632942548d74bd73600e0c97d0d148c158359a091a36b863645a4489c13db8420653b38a66a1240cfb4c053a9ebd6e678fd6f78b3158a3577a798723da2267093e9dfe869934b10d096ddabf1e4748b061ad51c540221dfbb4e1b8a8b694e557040873d831282d041d2cfe558eb480abef24a995536c80cf6561b9be78514066d4ebea8d89e6e173f330498026646371a51aeeaf2bc26c4ba86f006d058759e387b4b97", 0xbc}, {&(0x7f0000002e00)="b5eeaa05a1271a82c13e7b5c5dd70e3542c8f603e6b8c8e421f5b428d78d110a130cedf27ede8f1f", 0x28}, {&(0x7f0000002e40)="b204fdeb721fcbde4d4b324a4c855475065178a26de39cd12915286fdc6fca329f025fe3fe7c492cbd35e05d2a8e31c9001c15c66c26a7d324a52e37edc689df96b1eb828310ef6f1986e596f9ab7c6ce47a6840cc112ad4015f08bfc91f3b7e27f10936014d12a4dac891286a971b62", 0x70}], 0x5}}, {{&(0x7f0000002f40)={0x2, 0x4e23, @broadcast}, 0x10, &(0x7f00000031c0)=[{&(0x7f0000002f80)="ec0e41627fb00aa5c6bc745014019ab7de5e6d4739d0ae830c68db417d098402f4a97bf3a01c5121be514998a030a7a53a3f3c252fb520b44fe92a7afa9361704f748b97e304957a161fb33ff3003824003e40aeb191463867e672a744f8e570c6a3d79178b7f2864920af9e53fcd999daaf817a0d2e18a8ea04334239fa4d6750aabedbb3378352b69d678c37eb6144d6302d4f27b17e81903e508ef2b9b90d4dfbd98436a1d716b4186f9cd69ae9c3c42493bcaa1e462ab47d2cdec4ea25e73e4b896fb1f1eba663f82ab64b8edd599be261348cc1e9118a716c91a1813c232121", 0xe2}, {&(0x7f0000003080)="60738aa7e9ebca0df76c", 0xa}, {&(0x7f00000030c0)="55f3b11bbe4acf448c14db87fba6e2f36f77a8d1aec7a073", 0x18}, {&(0x7f0000003100)="7a6ba52bc45918987f91d322d4d10165985b3b4982c9f47d7f75f71f20446062e344bda95fbc", 0x26}, {&(0x7f0000003140)="dca5cbaa2830119da020594fc9729dd74d92f2f1109b0ee37249dae2bf9b677ae1416bfa943e450ed5557903601f69ffacd1c3d134c718848022f3d826a8d24b86d7de3569ba5c454773ef11788d716349b39070", 0x54}], 0x5, &(0x7f00000032c0)=[@ip_tos_int={{0x14, 0x0, 0x1, 0x4}}, @ip_tos_int={{0x14, 0x0, 0x1, 0x7}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {r1, @private=0xa010100, @rand_addr=0x64010100}}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {r2, @initdev={0xac, 0x1e, 0x1, 0x0}, @broadcast}}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @multicast2, @empty}}}, @ip_ttl={{0x14}}], 0xa8}}, {{&(0x7f0000003380)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x2e}}, 0x10, &(0x7f0000003780)=[{&(0x7f00000033c0)="44d4bef2e517878e9bc38f84cedb8a88b217c65b953f976f00c217d13dddd9f42a2c6e1b45a58818bca860961f7cf654f6d861eb", 0x34}, {&(0x7f0000003400)="1c91ad476a08079918b9b9ce7c7ed17c", 0x10}, {&(0x7f0000003440)="4edb1f5281d400dee9639be10a35c7df610ace672fa436f314bf4c74935b9d0bd86bea411dd950ccc158728ec65f581b443f4c721fa8fee04ba940e0c5b3b3e74a9af01783b9399e13b2d09c8774cc6fcbc6c4246c452928ce09eb03eb81b22c36a8439118999dbaea13cc12f8076aca86fddab161523b085cd69edfae9b8b7841078350e70a6cc591", 0x89}, {&(0x7f0000003500)="decbf525269c466667f099ee6dee2db5ecd1f71c4d67049d490c3116c09b4821e063a6342c08d4fff19a08ec7f4fdb9000181283d67c327fec9f739563b0ac9f24d4897548c526a5f23fa021b39cf57e035b94947ec1ef84088e71570b33056b8dc663461811870b22594c208eac79a65fabfff2e2d42bf119238a254a6ffdbbf59df745bb593c92dc29beeba9f75b0782e94e1cd312268db2fee9c208f047481a764f0d83813d9909bd4c740b", 0xad}, {&(0x7f00000035c0)="34f123b234ddbfde46427ccfe2b1419b1c0f357ddbc81a650fa3d97dff7595145a31d4882b8e1aa1c938f05159e0a68b2344d17b9ed37f90240a8bad56f9f63f5cd3ea2a66ee77bbf2cd4dd046a2e57435289eeb98aa072f21aadba18ca97d67cfd2a31bcdf9e7cd3d462602a9c9337428dce26fa9becb4e51da7c4a50702300181f52c00a47ef101b46b7eb8b27d976dc38ab6875e02bd5043f8927842a1eb1f17269ac04bba6cd1d300e3b528fefecc59e2fee69046211b1eb0bd3a5dfac18670216b9e395b06b75a74c6410bd68bb88b5325474e33f3a265ef84818", 0xdd}, {&(0x7f00000036c0)="49906187ca8934c61a8f4084473e37f27683ab65ee10efff81dd2a58dd4e95cf60d71fafa3a2fe33ed0096ae60d4efe2fac59f6a1d3ce558f6fffb4a4c6083be70c0988459fa1a9c3a0f81c3e19a56a04a22103593f9f64946ff2c0511a5543ae7c14faae789159c6a74d74c05c887bd9eb4ef2f69b2619764f1ae98798682aa28e90fe985", 0x85}], 0x6}}, {{&(0x7f0000003800)={0x2, 0x4e22, @private=0xa010102}, 0x10, &(0x7f0000004980)=[{&(0x7f0000003840)="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", 0x1000}, {&(0x7f0000004840)="aaf6067e479805a25c86c991bd9759ba712ae07691be6df653cbc3a4dab0409c3cfe03d4c49d36e667be9bebfc868029ca936b452ec6440cff8ff4bddde139a08bf3b29953586ffb223463bc6db4dbb45a1af394584da12f19da65bca2aab9974c594b5a4b47b163846f2119a698046f817d328fab", 0x75}, {&(0x7f00000048c0)="4c0272f5f0ca72729497362a82e6112713886ffdf274dc989ab9effe4123936d279bb7ebda8c6e168acae93c539a285a783f9d687bc709bc99ff286badac853846d63f8d9003a39f675270f51c84f6effbd992fced3eaae78e51b0ca2d89d69f86d2fa140eabcc1dd8440605882f5abad808fd9b82a546e5664e632626146f065b6eb36c2d377b70e7fa964b34600d4a67e30d8ef56867ebe9a52a0c71df6733e74cc3d3775b75b862f1", 0xaa}], 0x3, &(0x7f00000049c0)=[@ip_ttl={{0x14, 0x0, 0x2, 0x1}}, @ip_tos_u8={{0x11, 0x0, 0x1, 0xff}}, @ip_tos_u8={{0x11, 0x0, 0x1, 0x3f}}, @ip_ttl={{0x14, 0x0, 0x2, 0xff}}], 0x60}}, {{0x0, 0x0, &(0x7f0000005c40)=[{&(0x7f0000004a40)="d63156e951961735daebf6745b9c387cb01302bf8a35a3f8eaf5e8d5052bc78b143ef4eabf82bcf9db09dd57a7b63503ee131c1b8a49edb30e6fb4bdde8f91664cbde6e318fd0d7840b28c201c5ba6bd49ff760734a16bd4fac34c715485f3d5972e8f7350d307e43592e1a553109aa5a1b1fc7bc44a9f6fb58fc8e055000451073f7e9072944542a91d36e313820352f0957e4b134290ac04445f47658a52c7c24c2993f2739b3a6c71be60b7d0908deb37d76371b08deafd3e1c7631df016d322c20dd4682f8b21531d5e066adc7573136c283b0c32c008f73d2cef3e585463f82a0c858f8728b813e502b47da569e268b54e6", 0xf4}, {&(0x7f0000004b40)="6a9474898e95852a30dbabce9ce988291adbc2cc286e9b2933c28858f21db4975d0d4f95ed7ad9e4d081536f8989", 0x2e}, {&(0x7f0000004b80)="52a56712b57cbc85f90b91c0ad645c6c397845dc5b7c7bd33ad47adab775457333373a482823bd57ab58bc76d8d6dbefb1e13e7fd2b6affe2d45", 0x3a}, {&(0x7f0000004bc0)="f10f1fafaf1d6665e9de4077c74869d90c76b29dcddf3bf1ae5ce25604356b9cdef0387325114612e5ab3022b18c800367840fb41bb2ce193e04ea6418a906ba113405899cde183764cc765b3074c44bde4d27a882fb8849f4232ab645af1700da2b54f3b9d71b9e9d8cad", 0x6b}, {&(0x7f0000004c40)="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", 0x1000}], 0x5, &(0x7f0000005cc0)=[@ip_ttl={{0x14, 0x0, 0x2, 0x3}}], 0x18}}, {{&(0x7f0000005d00)={0x2, 0x4e20, @loopback}, 0x10, &(0x7f0000006000)=[{&(0x7f0000005d40)="ca8bd50f6b5b959f050e9bcbd0524104dd79e4ff20151423cfc2f2beaeb45226ed5b73a6adae2d9075629f7ac22cbe04d1a1a90077621df72f71a55b882f4aff00bf5f71dc3e8e2349a720599027fe9bc9047cca0cfbf293d72b2b9ed60b617444e8496a6ba774ae3316e5f4add42c10f69e9897afabe8dc1115bc0d51ee8a3563eefc20dd6c2441928fa8516075e08cf1e94a52db34dca9c30d4ba62c88bd8625949eefe5cd6dd47d631d853765b4cdf38fce8d5b756b", 0xb7}, {&(0x7f0000005e00)="1d90a2dadadd7cd5030f452032909cfa2fd2885066b5ade8b7adcd4d1157fb39d69556dd48574e97e955d8b931dc94c96f3a25972371f9383e7e8b563cf4f499241b61e608fdc6ec5bdcc4315ce4733fc7fc44d09c5dbd6800c7a540bd68ecbdef589ff5a241f9bd18a48d7d470dc55a8b6b747eccdf40d8dfb0b44efd56d3c7e2a482bafbacac939f71275c73e108b5e712b9921f22fcd1901879040e5ac74d9b11196a50dc3f0698280ef67bad7e45d2349a9139101a7a21e1429ded8cb955bf27b91fea30e6e169a8cf747cf548076a03e09d910d31d60cebc96c19270b58576b4825aae2f7623d5701db2a", 0xed}, {&(0x7f0000005f00)="3a1e1c5d797e48c35eeb1c8ab8d54468048da189675462a660cf4ba8a1a9dd50bc13009f129c95338c2930ca4575e76057379bca78ad22f21e6ea968a01abd0774fe5d79886b11e7da566672ecb1e0fe47dd1d12d78504b16ed26eb6afa515d86482b7c6bc1909fae9f50767a8e553863a832c70228913892a814ff2c3", 0x7d}, {&(0x7f0000005f80)="81146a3c2a012d229af3b423cef73c7b06f446118052e456aff88af44720c238bc7052aefed6e7f4485d903a61696b1133b1f05b49e9aed2e0fc730ea4136862186c635b6f2e562406b83e231a4b70710480e8ecb7276c8d21cf90702d", 0x5d}], 0x4, &(0x7f00000061c0)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {r3, @loopback, @multicast1}}}, @ip_tos_u8={{0x11}}, @ip_tos_u8={{0x11, 0x0, 0x1, 0x5}}, @ip_tos_u8={{0x11, 0x0, 0x1, 0x5}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {r4, @multicast2, @broadcast}}}, @ip_ttl={{0x14, 0x0, 0x2, 0x9}}, @ip_ttl={{0x14, 0x0, 0x2, 0x5}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {r5, @broadcast, @private=0xa010101}}}, @ip_tos_int={{0x14, 0x0, 0x1, 0x40}}], 0xf0}}], 0x8, 0x1)

[ 2556.738914][T27276] total_inactive_file 0
[ 2556.755320][T27276] total_active_file 0
[ 2556.776225][T27276] total_unevictable 0
[ 2556.780281][T27276] anon_cost 0
[ 2556.783588][T27276] file_cost 0
[ 2556.806639][T27276] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=27276,uid=0
[ 2556.836652][T27276] Memory cgroup out of memory: Killed process 27276 (syz-executor.3) total-vm:54504kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
19:46:28 executing program 3:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x32}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000280)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000240)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=@newlink={0x48, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0xe403, r2}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @veth={{0x9}, {0x18, 0x2, 0x0, 0x1, @val=@VETH_INFO_PEER={0x14}}}}]}, 0x48}, 0x7300}, 0x0)

[ 2556.969211][T27237] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2556.987219][T27237] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2557.037948][T27237] bridge_slave_0: entered allmulticast mode
[ 2557.072362][T27237] bridge_slave_0: entered promiscuous mode
[ 2557.244893][T27237] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2557.278925][T27237] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2557.319390][T27237] bridge_slave_1: entered allmulticast mode
19:46:29 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000000280)={'syztnl2\x00', &(0x7f0000000200)={'syztnl1\x00', <r1=>0x0, 0x29, 0xff, 0x7, 0x5656, 0x12, @local, @remote, 0x40, 0x8, 0x5, 0x7}})
r2 = bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000440)=@base={0x12, 0x8, 0x8, 0x6, 0x0, 0x1}, 0x48)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000140)={r2, &(0x7f0000002040), &(0x7f0000000100)=@tcp6}, 0x20)
sendmsg$nl_route(r0, &(0x7f00000005c0)={&(0x7f0000000500)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000580)={&(0x7f0000000540)=@ipv4_getroute={0x1c, 0x1a, 0x1, 0x70bd25, 0x25dfdbff, {0x2, 0x10, 0x14, 0x1, 0x0, 0x1, 0xfd, 0x9, 0x1d80}}, 0x1c}}, 0x20000010)
recvmmsg(0xffffffffffffffff, &(0x7f0000001c40)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000001b00)=[{&(0x7f0000001a00)=""/49, 0x31}], 0x1}}], 0x2, 0x7fbc3ac7cda9, 0x0)
sendmsg$nl_netfilter(0xffffffffffffffff, &(0x7f00000004c0)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000400)={&(0x7f0000000380)={0x74, 0x0, 0x7, 0x201, 0x70bd2c, 0x25dfdbfb, {0x1, 0x0, 0x7}, [@typed={0xc, 0x14, 0x0, 0x0, @u64=0x4}, @generic="ab14ccaddc1134f70826eeb2b9b62088932c3ee1c2956f42746b400b620837067ed27d9bea55f6597e761ea9a365cc17737e3fa00748987d6640d5a972845976b6cbe5f51a06c22dff1d5d1527ddf6e33354"]}, 0x74}}, 0x20004050)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='cgroup.controllers\x00', 0x26e1, 0x0)
r4 = socket$kcm(0x2, 0x1000000000000002, 0x0)
setsockopt$sock_attach_bpf(r4, 0x1, 0x3e, &(0x7f00000002c0)=r3, 0x161)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r3, 0x89f0, &(0x7f0000000300)={'syztnl1\x00', &(0x7f00000000c0)={'sit0\x00', <r5=>r1, 0x40, 0x8000, 0x9, 0x2ee, {{0x5, 0x4, 0x3, 0x1e, 0x14, 0x66, 0x0, 0x9, 0x4, 0x0, @multicast2, @local}}}})
sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)=@delqdisc={0x2c, 0x25, 0x400, 0x70bd29, 0x25dfdbff, {0x0, 0x0, 0x0, r5, {0x2, 0x2}, {0xfff3, 0xfff3}, {0xffff, 0xb}}, [@TCA_RATE={0x6, 0x5, {0x7f, 0x7f}}]}, 0x2c}, 0x1, 0x0, 0x0, 0x51}, 0x4000)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="3ce0ffff0f0039040000000000000000000003e4", @ANYRES32=0x0, @ANYBLOB="00000000000000001c00128009000100626f6e64000000000c00028008001400ffff0000"], 0x3c}}, 0x0)

[ 2557.387251][T27237] bridge_slave_1: entered promiscuous mode
[ 2557.518902][T27301] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2557.542905][T27301] CPU: 1 PID: 27301 Comm: syz-executor.3 Not tainted 6.7.0-syzkaller-12291-g435e202d645c #0
[ 2557.553039][T27301] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 2557.563393][T27301] Call Trace:
[ 2557.566697][T27301]  <TASK>
[ 2557.569693][T27301]  dump_stack_lvl+0x125/0x1b0
[ 2557.574406][T27301]  dump_header+0x103/0x900
[ 2557.578881][T27301]  oom_kill_process+0x270/0xa60
[ 2557.583778][T27301]  out_of_memory+0x344/0x16c0
[ 2557.589113][T27301]  ? oom_killer_disable+0x2d0/0x2d0
[ 2557.594353][T27301]  ? rcu_read_unlock+0x1c/0x60
[ 2557.599181][T27301]  mem_cgroup_out_of_memory+0x206/0x270
[ 2557.604774][T27301]  ? mem_cgroup_margin+0x130/0x130
[ 2557.610018][T27301]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2557.615817][T27301]  try_charge_memcg+0xcd1/0x11a0
[ 2557.620826][T27301]  ? mem_cgroup_handle_over_high+0x570/0x570
[ 2557.626860][T27301]  ? get_mem_cgroup_from_objcg+0xb5/0x2a0
[ 2557.632618][T27301]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2557.638025][T27301]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2557.643445][T27301]  __memcg_kmem_charge_page+0xdd/0x2a0
[ 2557.648939][T27301]  memcg_charge_kernel_stack+0xc3/0x1f0
[ 2557.654533][T27301]  copy_process+0x527/0x97b0
[ 2557.659165][T27301]  ? hlock_class+0x4e/0x130
[ 2557.663705][T27301]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2557.669719][T27301]  ? hlock_class+0x4e/0x130
[ 2557.674270][T27301]  ? pidfd_prepare+0x80/0x80
[ 2557.678892][T27301]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2557.684302][T27301]  ? preempt_count_sub+0x160/0x160
[ 2557.689459][T27301]  ? __lock_acquire+0x1502/0x3b30
[ 2557.694514][T27301]  ? __might_fault+0xe6/0x1a0
[ 2557.699681][T27301]  ? _copy_from_user+0x5d/0xf0
[ 2557.704490][T27301]  kernel_clone+0xfd/0x930
[ 2557.708942][T27301]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2557.714967][T27301]  ? create_io_thread+0xe0/0xe0
[ 2557.719871][T27301]  ? find_held_lock+0x2d/0x110
[ 2557.724680][T27301]  __do_sys_clone3+0x1f1/0x260
[ 2557.729566][T27301]  ? __do_sys_clone+0x100/0x100
[ 2557.736484][T27301]  do_syscall_64+0xd3/0x250
[ 2557.741023][T27301]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 2557.747040][T27301] RIP: 0033:0x7f212b0a8b99
[ 2557.754623][T27301] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 2557.774448][T27301] RSP: 002b:00007ffc7b20b738 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 2557.782897][T27301] RAX: ffffffffffffffda RBX: 00007f212b051270 RCX: 00007f212b0a8b99
[ 2557.790903][T27301] RDX: 00007f212b051270 RSI: 0000000000000058 RDI: 00007ffc7b20b780
[ 2557.798910][T27301] RBP: 00007f212be566c0 R08: 00007f212be566c0 R09: 00007ffc7b20b867
[ 2557.806909][T27301] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 2557.814904][T27301] R13: 000000000000000b R14: 00007ffc7b20b780 R15: 00007ffc7b20b868
[ 2557.824935][T27301]  </TASK>
[ 2557.856416][T27301] memory: usage 307200kB, limit 307200kB, failcnt 113650
[ 2557.863596][T27301] memory+swap: usage 307508kB, limit 9007199254740988kB, failcnt 0
[ 2557.872754][T27301] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0
[ 2557.880494][T27301] Memory cgroup stats for /syz3:
[ 2557.880672][T27301] cache 0
[ 2557.889864][T27301] rss 12288
[ 2557.893026][T27301] rss_huge 0
19:46:29 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0) (async, rerun: 32)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000000280)={'syztnl2\x00', &(0x7f0000000200)={'syztnl1\x00', <r1=>0x0, 0x29, 0xff, 0x7, 0x5656, 0x12, @local, @remote, 0x40, 0x8, 0x5, 0x7}}) (async, rerun: 32)
r2 = bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000440)=@base={0x12, 0x8, 0x8, 0x6, 0x0, 0x1}, 0x48)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000140)={r2, &(0x7f0000002040), &(0x7f0000000100)=@tcp6}, 0x20) (async, rerun: 32)
sendmsg$nl_route(r0, &(0x7f00000005c0)={&(0x7f0000000500)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000580)={&(0x7f0000000540)=@ipv4_getroute={0x1c, 0x1a, 0x1, 0x70bd25, 0x25dfdbff, {0x2, 0x10, 0x14, 0x1, 0x0, 0x1, 0xfd, 0x9, 0x1d80}}, 0x1c}}, 0x20000010) (async, rerun: 32)
recvmmsg(0xffffffffffffffff, &(0x7f0000001c40)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000001b00)=[{&(0x7f0000001a00)=""/49, 0x31}], 0x1}}], 0x2, 0x7fbc3ac7cda9, 0x0) (async)
sendmsg$nl_netfilter(0xffffffffffffffff, &(0x7f00000004c0)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000400)={&(0x7f0000000380)={0x74, 0x0, 0x7, 0x201, 0x70bd2c, 0x25dfdbfb, {0x1, 0x0, 0x7}, [@typed={0xc, 0x14, 0x0, 0x0, @u64=0x4}, @generic="ab14ccaddc1134f70826eeb2b9b62088932c3ee1c2956f42746b400b620837067ed27d9bea55f6597e761ea9a365cc17737e3fa00748987d6640d5a972845976b6cbe5f51a06c22dff1d5d1527ddf6e33354"]}, 0x74}}, 0x20004050)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='cgroup.controllers\x00', 0x26e1, 0x0)
r4 = socket$kcm(0x2, 0x1000000000000002, 0x0)
setsockopt$sock_attach_bpf(r4, 0x1, 0x3e, &(0x7f00000002c0)=r3, 0x161) (async)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r3, 0x89f0, &(0x7f0000000300)={'syztnl1\x00', &(0x7f00000000c0)={'sit0\x00', <r5=>r1, 0x40, 0x8000, 0x9, 0x2ee, {{0x5, 0x4, 0x3, 0x1e, 0x14, 0x66, 0x0, 0x9, 0x4, 0x0, @multicast2, @local}}}})
sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)=@delqdisc={0x2c, 0x25, 0x400, 0x70bd29, 0x25dfdbff, {0x0, 0x0, 0x0, r5, {0x2, 0x2}, {0xfff3, 0xfff3}, {0xffff, 0xb}}, [@TCA_RATE={0x6, 0x5, {0x7f, 0x7f}}]}, 0x2c}, 0x1, 0x0, 0x0, 0x51}, 0x4000) (async)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="3ce0ffff0f0039040000000000000000000003e4", @ANYRES32=0x0, @ANYBLOB="00000000000000001c00128009000100626f6e64000000000c00028008001400ffff0000"], 0x3c}}, 0x0)

[ 2557.920442][T27301] shmem 0
[ 2557.940458][T27301] mapped_file 0
[ 2557.943980][T27301] dirty 0
[ 2557.966039][T27301] writeback 0
[ 2557.969388][T27301] workingset_refault_anon 33445
[ 2557.996068][T27301] workingset_refault_file 1
[ 2558.000609][T27301] swap 315392
[ 2558.000621][T27301] swapcached 12288
[ 2558.000629][T27301] pgpgin 157141
[ 2558.000638][T27301] pgpgout 157138
[ 2558.000647][T27301] pgfault 347373
[ 2558.030684][T27154] veth0_macvtap: entered promiscuous mode
[ 2558.101721][T27301] pgmajfault 32765
[ 2558.111094][T27301] inactive_anon 4096
[ 2558.136554][T27301] active_anon 8192
[ 2558.142644][T27301] inactive_file 0
19:46:29 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0) (async)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000000280)={'syztnl2\x00', &(0x7f0000000200)={'syztnl1\x00', <r1=>0x0, 0x29, 0xff, 0x7, 0x5656, 0x12, @local, @remote, 0x40, 0x8, 0x5, 0x7}}) (async)
r2 = bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000440)=@base={0x12, 0x8, 0x8, 0x6, 0x0, 0x1}, 0x48)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000140)={r2, &(0x7f0000002040), &(0x7f0000000100)=@tcp6}, 0x20)
sendmsg$nl_route(r0, &(0x7f00000005c0)={&(0x7f0000000500)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000580)={&(0x7f0000000540)=@ipv4_getroute={0x1c, 0x1a, 0x1, 0x70bd25, 0x25dfdbff, {0x2, 0x10, 0x14, 0x1, 0x0, 0x1, 0xfd, 0x9, 0x1d80}}, 0x1c}}, 0x20000010) (async)
recvmmsg(0xffffffffffffffff, &(0x7f0000001c40)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000001b00)=[{&(0x7f0000001a00)=""/49, 0x31}], 0x1}}], 0x2, 0x7fbc3ac7cda9, 0x0) (async)
sendmsg$nl_netfilter(0xffffffffffffffff, &(0x7f00000004c0)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000400)={&(0x7f0000000380)={0x74, 0x0, 0x7, 0x201, 0x70bd2c, 0x25dfdbfb, {0x1, 0x0, 0x7}, [@typed={0xc, 0x14, 0x0, 0x0, @u64=0x4}, @generic="ab14ccaddc1134f70826eeb2b9b62088932c3ee1c2956f42746b400b620837067ed27d9bea55f6597e761ea9a365cc17737e3fa00748987d6640d5a972845976b6cbe5f51a06c22dff1d5d1527ddf6e33354"]}, 0x74}}, 0x20004050)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='cgroup.controllers\x00', 0x26e1, 0x0) (async)
r4 = socket$kcm(0x2, 0x1000000000000002, 0x0)
setsockopt$sock_attach_bpf(r4, 0x1, 0x3e, &(0x7f00000002c0)=r3, 0x161) (async)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r3, 0x89f0, &(0x7f0000000300)={'syztnl1\x00', &(0x7f00000000c0)={'sit0\x00', <r5=>r1, 0x40, 0x8000, 0x9, 0x2ee, {{0x5, 0x4, 0x3, 0x1e, 0x14, 0x66, 0x0, 0x9, 0x4, 0x0, @multicast2, @local}}}})
sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)=@delqdisc={0x2c, 0x25, 0x400, 0x70bd29, 0x25dfdbff, {0x0, 0x0, 0x0, r5, {0x2, 0x2}, {0xfff3, 0xfff3}, {0xffff, 0xb}}, [@TCA_RATE={0x6, 0x5, {0x7f, 0x7f}}]}, 0x2c}, 0x1, 0x0, 0x0, 0x51}, 0x4000) (async)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="3ce0ffff0f0039040000000000000000000003e4", @ANYRES32=0x0, @ANYBLOB="00000000000000001c00128009000100626f6e64000000000c00028008001400ffff0000"], 0x3c}}, 0x0)

[ 2558.154927][T27237] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 2558.156207][T27301] active_file 0
[ 2558.226123][T27301] unevictable 0
[ 2558.229655][T27301] hierarchical_memory_limit 314572800
[ 2558.235059][T27301] hierarchical_memsw_limit 9223372036854771712
[ 2558.244267][T27237] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 2558.281029][T27301] total_cache 0
[ 2558.284541][T27301] total_rss 12288
[ 2558.316452][T27301] total_rss_huge 0
[ 2558.320335][T27301] total_shmem 0
[ 2558.323824][T27301] total_mapped_file 0
[ 2558.356427][T27301] total_dirty 0
[ 2558.360967][T27301] total_writeback 0
[ 2558.364894][T27301] total_workingset_refault_anon 33445
19:46:30 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)=ANY=[@ANYBLOB="3c000000100039040000000000000000000003e4", @ANYRES32=0x0, @ANYBLOB="008f5572555ababfc0869ea36b0d8b1928000000000000001c00128009005c5222e6a6f20100626f6664000000000c0002800800"], 0x3c}}, 0x0)

[ 2558.400881][T27301] total_workingset_refault_file 1
[ 2558.420900][T27301] total_swap 315392
[ 2558.424765][T27301] total_swapcached 12288
[ 2558.434490][T27154] veth1_macvtap: entered promiscuous mode
[ 2558.451699][T27301] total_pgpgin 157141
[ 2558.455740][T27301] total_pgpgout 157138
[ 2558.496278][T27301] total_pgfault 347373
[ 2558.500496][T27301] total_pgmajfault 32765
[ 2558.504767][T27301] total_inactive_anon 4096
[ 2558.546224][T27301] total_active_anon 8192
[ 2558.550544][T27301] total_inactive_file 0
[ 2558.554729][T27301] total_active_file 0
[ 2558.586375][T27301] total_unevictable 0
[ 2558.602434][T27301] anon_cost 0
[ 2558.605786][T27301] file_cost 0
[ 2558.634533][T27321] netlink: 28 bytes leftover after parsing attributes in process `syz-executor.1'.
19:46:30 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)=ANY=[@ANYBLOB="3c000000100039040000000000000000000003e4", @ANYRES32=0x0, @ANYBLOB="008f5572555ababfc0869ea36b0d8b1928000000000000001c00128009005c5222e6a6f20100626f6664000000000c0002800800"], 0x3c}}, 0x0)

[ 2558.635443][T27301] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=27301,uid=0
[ 2558.730391][T27301] Memory cgroup out of memory: Killed process 27301 (syz-executor.3) total-vm:54504kB, anon-rss:380kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 2558.910104][T27237] team0: Port device team_slave_0 added
[ 2558.933858][T26202] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
19:46:30 executing program 3:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x32}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000280)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000240)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=@newlink={0x48, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0xe403, r2}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @veth={{0x9}, {0x18, 0x2, 0x0, 0x1, @val=@VETH_INFO_PEER={0x14}}}}]}, 0x48}, 0x7400}, 0x0)

[ 2558.961495][T26202] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2559.128537][T27323] netlink: 28 bytes leftover after parsing attributes in process `syz-executor.1'.
19:46:30 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)=ANY=[@ANYBLOB="3c000000100039040000000000000000000003e4", @ANYRES32=0x0, @ANYBLOB="008f5572555ababfc0869ea36b0d8b1928000000000000001c00128009005c5222e6a6f20100626f6664000000000c0002800800"], 0x3c}}, 0x0)

[ 2559.228936][T27237] team0: Port device team_slave_1 added
[ 2559.334543][T27325] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2559.377114][T27325] CPU: 0 PID: 27325 Comm: syz-executor.3 Not tainted 6.7.0-syzkaller-12291-g435e202d645c #0
[ 2559.387251][T27325] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 2559.397338][T27325] Call Trace:
[ 2559.400637][T27325]  <TASK>
[ 2559.403593][T27325]  dump_stack_lvl+0x125/0x1b0
[ 2559.408303][T27325]  dump_header+0x103/0x900
[ 2559.412764][T27325]  oom_kill_process+0x270/0xa60
[ 2559.417652][T27325]  out_of_memory+0x344/0x16c0
[ 2559.422371][T27325]  ? oom_killer_disable+0x2d0/0x2d0
[ 2559.427606][T27325]  ? rcu_read_unlock+0x1c/0x60
[ 2559.432413][T27325]  mem_cgroup_out_of_memory+0x206/0x270
[ 2559.438012][T27325]  ? mem_cgroup_margin+0x130/0x130
[ 2559.443167][T27325]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2559.448608][T27325]  try_charge_memcg+0xcd1/0x11a0
[ 2559.453615][T27325]  ? mem_cgroup_handle_over_high+0x570/0x570
[ 2559.459617][T27325]  ? get_mem_cgroup_from_objcg+0xb5/0x2a0
[ 2559.465370][T27325]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2559.470791][T27325]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2559.476222][T27325]  __memcg_kmem_charge_page+0xdd/0x2a0
[ 2559.481714][T27325]  memcg_charge_kernel_stack+0xc3/0x1f0
[ 2559.487908][T27325]  copy_process+0x527/0x97b0
[ 2559.492640][T27325]  ? hlock_class+0x4e/0x130
[ 2559.497172][T27325]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2559.503187][T27325]  ? page_ext_put+0x43/0xd0
[ 2559.507728][T27325]  ? hlock_class+0x4e/0x130
[ 2559.512374][T27325]  ? pidfd_prepare+0x80/0x80
[ 2559.517005][T27325]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2559.522397][T27325]  ? preempt_count_sub+0x160/0x160
[ 2559.527518][T27325]  ? __lock_acquire+0x1502/0x3b30
[ 2559.532552][T27325]  ? __might_fault+0xe6/0x1a0
[ 2559.537270][T27325]  ? _copy_from_user+0x5d/0xf0
[ 2559.542064][T27325]  kernel_clone+0xfd/0x930
[ 2559.546506][T27325]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2559.552508][T27325]  ? create_io_thread+0xe0/0xe0
[ 2559.557380][T27325]  ? find_held_lock+0x2d/0x110
[ 2559.562164][T27325]  __do_sys_clone3+0x1f1/0x260
[ 2559.566945][T27325]  ? __do_sys_clone+0x100/0x100
[ 2559.571839][T27325]  do_syscall_64+0xd3/0x250
[ 2559.576364][T27325]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 2559.582265][T27325] RIP: 0033:0x7f212b0a8b99
[ 2559.586687][T27325] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 2559.606316][T27325] RSP: 002b:00007ffc7b20b738 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 2559.614749][T27325] RAX: ffffffffffffffda RBX: 00007f212b051270 RCX: 00007f212b0a8b99
[ 2559.622727][T27325] RDX: 00007f212b051270 RSI: 0000000000000058 RDI: 00007ffc7b20b780
[ 2559.630726][T27325] RBP: 00007f212be566c0 R08: 00007f212be566c0 R09: 00007ffc7b20b867
[ 2559.638730][T27325] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 2559.647151][T27325] R13: 000000000000000b R14: 00007ffc7b20b780 R15: 00007ffc7b20b868
[ 2559.655256][T27325]  </TASK>
[ 2559.697848][T27325] memory: usage 307200kB, limit 307200kB, failcnt 113975
[ 2559.711248][T27325] memory+swap: usage 307560kB, limit 9007199254740988kB, failcnt 0
[ 2559.719787][T27325] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[ 2559.727743][T27325] Memory cgroup stats for /syz3:
[ 2559.727923][T27325] cache 0
[ 2559.735859][T27325] rss 0
[ 2559.739724][T27325] rss_huge 0
[ 2559.742965][T27325] shmem 0
[ 2559.745909][T27325] mapped_file 0
[ 2559.783218][T27325] dirty 0
[ 2559.790353][T27325] writeback 0
[ 2559.809971][T27325] workingset_refault_anon 33508
[ 2559.814883][T27325] workingset_refault_file 1
[ 2559.820737][T27327] netlink: 28 bytes leftover after parsing attributes in process `syz-executor.1'.
19:46:31 executing program 1:
socket$kcm(0x10, 0x400000002, 0x0)
socket$inet(0x2, 0x2, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x3, &(0x7f00000000c0)=@framed, &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
write$binfmt_script(r1, &(0x7f0000000480)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r1, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r2 = socket$rxrpc(0x21, 0x2, 0xa)
r3 = syz_genetlink_get_family_id$batadv(&(0x7f0000007580), 0xffffffffffffffff)
sendmsg$BATADV_CMD_SET_HARDIF(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001740)={&(0x7f0000000000)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16, @ANYBLOB="2d0100000000000000", @ANYRES32=r0], 0x2c}}, 0x0)
sendmsg$BATADV_CMD_GET_GATEWAYS(0xffffffffffffffff, &(0x7f0000007680)={0x0, 0x0, &(0x7f0000007640)={&(0x7f0000000000)=ANY=[@ANYBLOB="46040000", @ANYRES16=r3, @ANYBLOB="ff83050000076dc6d81b", @ANYRES32=r2], 0x4}}, 0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendfile(r5, r4, 0x0, 0x100000002)

[ 2559.843515][T27325] swap 368640
[ 2559.866100][T27325] swapcached 0
[ 2559.869539][T27325] pgpgin 157217
[ 2559.873026][T27325] pgpgout 157217
[ 2559.902589][T27325] pgfault 347493
[ 2559.906721][T27325] pgmajfault 32823
[ 2559.910465][T27325] inactive_anon 0
[ 2559.914110][T27325] active_anon 0
[ 2559.918751][T27325] inactive_file 0
[ 2559.956448][T27325] active_file 0
[ 2559.959963][T27325] unevictable 0
[ 2559.963444][T27325] hierarchical_memory_limit 314572800
[ 2559.972547][T27325] hierarchical_memsw_limit 9223372036854771712
[ 2560.006435][T27325] total_cache 0
[ 2560.010001][T27325] total_rss 0
[ 2560.023390][T27325] total_rss_huge 0
[ 2560.028753][T27325] total_shmem 0
[ 2560.043842][T27325] total_mapped_file 0
[ 2560.050365][T27237] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 2560.058344][T27237] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2560.084438][T27325] total_dirty 0
[ 2560.088197][T27325] total_writeback 0
[ 2560.092118][T27325] total_workingset_refault_anon 33508
[ 2560.112066][T27325] total_workingset_refault_file 1
[ 2560.118952][T27325] total_swap 368640
[ 2560.122806][T27325] total_swapcached 0
[ 2560.127090][T27237] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 2560.149173][T27325] total_pgpgin 157217
[ 2560.153736][T27325] total_pgpgout 157217
[ 2560.175065][T27325] total_pgfault 347493
[ 2560.189825][T27325] total_pgmajfault 32823
[ 2560.194307][T27325] total_inactive_anon 0
[ 2560.198771][T27325] total_active_anon 0
[ 2560.219845][T27325] total_inactive_file 0
[ 2560.244051][T27325] total_active_file 0
[ 2560.266696][T27325] total_unevictable 0
[ 2560.274135][T27325] anon_cost 0
[ 2560.299520][T27325] file_cost 0
[ 2560.315196][T27325] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=27325,uid=0
[ 2560.322665][T27154] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2560.352339][T27325] Memory cgroup out of memory: Killed process 27325 (syz-executor.3) total-vm:54504kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 2560.371540][T27154] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2560.397101][T27154] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2560.411985][T27154] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2560.422086][T27154] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2560.432692][T27154] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2560.445174][   T28] audit: type=1804 audit(1706039192.101:1906): pid=27330 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir245649211/syzkaller.jQ7tPM/11/cgroup.controllers" dev="sda1" ino=1951 res=1 errno=0
19:46:32 executing program 3:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x32}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000280)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000240)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=@newlink={0x48, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0xe403, r2}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @veth={{0x9}, {0x18, 0x2, 0x0, 0x1, @val=@VETH_INFO_PEER={0x14}}}}]}, 0x48}, 0x7500}, 0x0)

[ 2560.503199][T27154] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 2560.554255][T27237] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 2560.575724][T27237] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2560.617018][T27237] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 2560.746767][T16775] hsr_slave_0: left promiscuous mode
[ 2560.767271][T16775] hsr_slave_1: left promiscuous mode
[ 2560.788554][T16775] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 2560.811119][T16775] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 2560.852877][T16775] bridge_slave_1: left allmulticast mode
[ 2560.876367][T16775] bridge_slave_1: left promiscuous mode
[ 2560.884055][T16775] bridge0: port 2(bridge_slave_1) entered disabled state
19:46:32 executing program 1:
socket$kcm(0x10, 0x400000002, 0x0)
socket$inet(0x2, 0x2, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x3, &(0x7f00000000c0)=@framed, &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
write$binfmt_script(r1, &(0x7f0000000480)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r1, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r2 = socket$rxrpc(0x21, 0x2, 0xa)
r3 = syz_genetlink_get_family_id$batadv(&(0x7f0000007580), 0xffffffffffffffff)
sendmsg$BATADV_CMD_SET_HARDIF(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001740)={&(0x7f0000000000)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16, @ANYBLOB="2d0100000000000000", @ANYRES32=r0], 0x2c}}, 0x0)
sendmsg$BATADV_CMD_GET_GATEWAYS(0xffffffffffffffff, &(0x7f0000007680)={0x0, 0x0, &(0x7f0000007640)={&(0x7f0000000000)=ANY=[@ANYBLOB="46040000", @ANYRES16=r3, @ANYBLOB="ff83050000076dc6d81b", @ANYRES32=r2], 0x4}}, 0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendfile(r5, r4, 0x0, 0x100000002)

[ 2560.940610][T16775] bridge_slave_0: left allmulticast mode
[ 2560.946950][T16775] bridge_slave_0: left promiscuous mode
[ 2560.966796][T16775] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2560.990118][T16775] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 2560.995026][T27331] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2561.042059][T16775] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 2561.049411][T27331] CPU: 1 PID: 27331 Comm: syz-executor.3 Not tainted 6.7.0-syzkaller-12291-g435e202d645c #0
[ 2561.049445][T27331] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 2561.049460][T27331] Call Trace:
[ 2561.049469][T27331]  <TASK>
[ 2561.049479][T27331]  dump_stack_lvl+0x125/0x1b0
[ 2561.049515][T27331]  dump_header+0x103/0x900
[ 2561.049556][T27331]  oom_kill_process+0x270/0xa60
[ 2561.049602][T27331]  out_of_memory+0x344/0x16c0
[ 2561.049645][T27331]  ? oom_killer_disable+0x2d0/0x2d0
[ 2561.049679][T27331]  ? rcu_read_unlock+0x1c/0x60
[ 2561.049722][T27331]  mem_cgroup_out_of_memory+0x206/0x270
[ 2561.049749][T27331]  ? mem_cgroup_margin+0x130/0x130
[ 2561.049772][T27331]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2561.123975][T27331]  try_charge_memcg+0xcd1/0x11a0
[ 2561.128951][T27331]  ? mem_cgroup_handle_over_high+0x570/0x570
[ 2561.134959][T27331]  ? get_mem_cgroup_from_objcg+0xb5/0x2a0
[ 2561.140695][T27331]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2561.146080][T27331]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2561.151472][T27331]  __memcg_kmem_charge_page+0xdd/0x2a0
[ 2561.156950][T27331]  memcg_charge_kernel_stack+0xc3/0x1f0
[ 2561.162512][T27331]  copy_process+0x527/0x97b0
[ 2561.167121][T27331]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2561.173120][T27331]  ? page_ext_put+0x43/0xd0
[ 2561.177635][T27331]  ? hlock_class+0x4e/0x130
[ 2561.182163][T27331]  ? pidfd_prepare+0x80/0x80
[ 2561.188105][T27331]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2561.198648][T27331]  ? preempt_count_sub+0x160/0x160
[ 2561.204320][T27331]  ? print_usage_bug.part.0+0x550/0x550
[ 2561.209884][T27331]  ? __might_fault+0xe6/0x1a0
[ 2561.214698][T27331]  ? _copy_from_user+0x5d/0xf0
[ 2561.219494][T27331]  kernel_clone+0xfd/0x930
[ 2561.223937][T27331]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2561.229952][T27331]  ? create_io_thread+0xe0/0xe0
[ 2561.234836][T27331]  ? find_held_lock+0x2d/0x110
[ 2561.239624][T27331]  __do_sys_clone3+0x1f1/0x260
[ 2561.244683][T27331]  ? __do_sys_clone+0x100/0x100
[ 2561.249600][T27331]  do_syscall_64+0xd3/0x250
[ 2561.254133][T27331]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 2561.260040][T27331] RIP: 0033:0x7f212b0a8b99
[ 2561.264489][T27331] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 2561.284129][T27331] RSP: 002b:00007ffc7b20b738 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 2561.292650][T27331] RAX: ffffffffffffffda RBX: 00007f212b051270 RCX: 00007f212b0a8b99
[ 2561.300627][T27331] RDX: 00007f212b051270 RSI: 0000000000000058 RDI: 00007ffc7b20b780
[ 2561.308622][T27331] RBP: 00007f212be566c0 R08: 00007f212be566c0 R09: 00007ffc7b20b867
[ 2561.316607][T27331] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 2561.324583][T27331] R13: 000000000000000b R14: 00007ffc7b20b780 R15: 00007ffc7b20b868
[ 2561.332582][T27331]  </TASK>
[ 2561.373827][T16775] bridge_slave_1: left allmulticast mode
[ 2561.379681][T16775] bridge_slave_1: left promiscuous mode
[ 2561.385447][T16775] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2561.396171][T27331] memory: usage 307200kB, limit 307200kB, failcnt 114261
[ 2561.403258][T27331] memory+swap: usage 307520kB, limit 9007199254740988kB, failcnt 0
[ 2561.421525][T27331] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[ 2561.436238][T27331] Memory cgroup stats for /syz3:
[ 2561.436416][T27331] cache 0
[ 2561.456297][T27331] rss 0
[ 2561.460321][T16775] bridge_slave_0: left allmulticast mode
[ 2561.466131][T16775] bridge_slave_0: left promiscuous mode
[ 2561.472213][T16775] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2561.479977][T27331] rss_huge 0
[ 2561.483213][T27331] shmem 0
[ 2561.501231][T27331] mapped_file 0
[ 2561.504740][T27331] dirty 0
[ 2561.511249][T16775] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 2561.518969][T27331] writeback 0
[ 2561.522376][T27331] workingset_refault_anon 33608
[ 2561.535009][T27331] workingset_refault_file 1
[ 2561.545393][T16775] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 2561.563534][T27331] swap 327680
[ 2561.571814][T16775] bridge_slave_1: left allmulticast mode
[ 2561.578252][T27331] swapcached 0
[ 2561.582115][T27331] pgpgin 157330
[ 2561.585602][T27331] pgpgout 157330
[ 2561.594694][T16775] bridge_slave_1: left promiscuous mode
[ 2561.600484][T27331] pgfault 347639
[ 2561.604067][T27331] pgmajfault 32894
[ 2561.608574][T16775] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2561.616372][T27331] inactive_anon 0
[ 2561.620353][T27331] active_anon 0
[ 2561.623940][T27331] inactive_file 0
[ 2561.628046][T27331] active_file 0
[ 2561.638324][T16775] bridge_slave_0: left allmulticast mode
[ 2561.644698][   T28] audit: type=1804 audit(1706039193.281:1907): pid=27333 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir245649211/syzkaller.jQ7tPM/12/cgroup.controllers" dev="sda1" ino=1951 res=1 errno=0
[ 2561.666656][T27331] unevictable 0
[ 2561.671444][T16775] bridge_slave_0: left promiscuous mode
[ 2561.683592][T16775] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2561.698552][T27331] hierarchical_memory_limit 314572800
[ 2561.704231][T27331] hierarchical_memsw_limit 9223372036854771712
[ 2561.711080][T27331] total_cache 0
[ 2561.715133][T27331] total_rss 0
[ 2561.723253][T27331] total_rss_huge 0
[ 2561.731828][T27331] total_shmem 0
[ 2561.745245][T27331] total_mapped_file 0
[ 2561.754662][T27331] total_dirty 0
[ 2561.762863][T27331] total_writeback 0
[ 2561.770761][T27331] total_workingset_refault_anon 33608
[ 2561.783703][T27331] total_workingset_refault_file 1
[ 2561.796338][T27331] total_swap 327680
[ 2561.800521][T27331] total_swapcached 0
[ 2561.804644][T16775] hsr_slave_0: left promiscuous mode
[ 2561.810225][T27331] total_pgpgin 157330
[ 2561.817426][T27331] total_pgpgout 157330
[ 2561.823502][T27331] total_pgfault 347639
[ 2561.828177][T27331] total_pgmajfault 32894
[ 2561.832601][T16775] hsr_slave_1: left promiscuous mode
[ 2561.841540][T27331] total_inactive_anon 0
[ 2561.847336][T27331] total_active_anon 0
[ 2561.852821][T16775] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 2561.861548][T27331] total_inactive_file 0
[ 2561.865958][T27331] total_active_file 0
[ 2561.871260][T27331] total_unevictable 0
[ 2561.881582][T16775] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 2561.889045][T27331] anon_cost 0
[ 2561.892591][T27331] file_cost 0
[ 2561.900012][T27331] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=27331,uid=0
[ 2561.921929][T16775] bridge_slave_1: left allmulticast mode
[ 2561.928242][T16775] bridge_slave_1: left promiscuous mode
[ 2561.956317][T16775] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2561.963627][T27331] Memory cgroup out of memory: Killed process 27331 (syz-executor.3) total-vm:54504kB, anon-rss:380kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 2561.998570][T16775] bridge_slave_0: left allmulticast mode
[ 2562.009716][T16775] bridge_slave_0: left promiscuous mode
[ 2562.015674][T16775] bridge0: port 1(bridge_slave_0) entered disabled state
19:46:33 executing program 1:
socket$kcm(0x10, 0x400000002, 0x0)
socket$inet(0x2, 0x2, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
write$binfmt_script(r0, &(0x7f0000000480)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r1 = socket$rxrpc(0x21, 0x2, 0x0)
r2 = syz_genetlink_get_family_id$batadv(&(0x7f0000007580), 0xffffffffffffffff)
sendmsg$BATADV_CMD_SET_HARDIF(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001740)={&(0x7f0000000000)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16, @ANYBLOB="2d0100000000000000000500f6ff08000300", @ANYRES32], 0x2c}}, 0x0)
sendmsg$BATADV_CMD_GET_GATEWAYS(0xffffffffffffffff, &(0x7f0000007680)={0x0, 0x0, &(0x7f0000007640)={&(0x7f0000000000)=ANY=[@ANYBLOB="46040000", @ANYRES16=r2, @ANYBLOB="ff83050000076dc6d81b", @ANYRES32=r1], 0x4}}, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendfile(r4, r3, 0x0, 0x100000002)

19:46:33 executing program 3:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x32}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000280)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000240)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=@newlink={0x48, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0xe403, r2}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @veth={{0x9}, {0x18, 0x2, 0x0, 0x1, @val=@VETH_INFO_PEER={0x14}}}}]}, 0x48}, 0x7600}, 0x0)

[ 2562.126846][T16775] hsr_slave_0: left promiscuous mode
[ 2562.169200][T16775] hsr_slave_1: left promiscuous mode
[ 2562.196766][T16775] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 2562.221147][T16775] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 2562.262611][T16775] bridge_slave_1: left allmulticast mode
[ 2562.270147][T16775] bridge_slave_1: left promiscuous mode
[ 2562.276640][T16775] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2562.290967][T16775] bridge_slave_0: left allmulticast mode
[ 2562.316665][T16775] bridge_slave_0: left promiscuous mode
[ 2562.323724][T16775] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2562.417595][   T28] audit: type=1804 audit(1706039194.061:1908): pid=27336 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir245649211/syzkaller.jQ7tPM/13/cgroup.controllers" dev="sda1" ino=1947 res=1 errno=0
[ 2562.475588][T16775] hsr_slave_0: left promiscuous mode
[ 2562.517160][T16775] hsr_slave_1: left promiscuous mode
[ 2562.539977][T16775] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 2562.545733][T27337] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2562.563339][T27337] CPU: 1 PID: 27337 Comm: syz-executor.3 Not tainted 6.7.0-syzkaller-12291-g435e202d645c #0
[ 2562.573469][T27337] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 2562.583558][T27337] Call Trace:
[ 2562.586888][T27337]  <TASK>
[ 2562.589849][T27337]  dump_stack_lvl+0x125/0x1b0
[ 2562.594693][T27337]  dump_header+0x103/0x900
[ 2562.599157][T27337]  oom_kill_process+0x270/0xa60
[ 2562.604053][T27337]  out_of_memory+0x344/0x16c0
[ 2562.608770][T27337]  ? oom_killer_disable+0x2d0/0x2d0
[ 2562.614004][T27337]  ? rcu_read_unlock+0x1c/0x60
[ 2562.618825][T27337]  mem_cgroup_out_of_memory+0x206/0x270
[ 2562.624668][T27337]  ? mem_cgroup_margin+0x130/0x130
[ 2562.629799][T27337]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2562.635218][T27337]  try_charge_memcg+0xcd1/0x11a0
[ 2562.640202][T27337]  ? mem_cgroup_handle_over_high+0x570/0x570
[ 2562.646216][T27337]  ? get_mem_cgroup_from_objcg+0xb5/0x2a0
[ 2562.651969][T27337]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2562.657724][T27337]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2562.663582][T27337]  __memcg_kmem_charge_page+0xdd/0x2a0
[ 2562.669091][T27337]  memcg_charge_kernel_stack+0xc3/0x1f0
[ 2562.674687][T27337]  copy_process+0x1532/0x97b0
[ 2562.679406][T27337]  ? hlock_class+0x4e/0x130
[ 2562.683948][T27337]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2562.690134][T27337]  ? page_ext_put+0x43/0xd0
[ 2562.694676][T27337]  ? hlock_class+0x4e/0x130
[ 2562.699342][T27337]  ? pidfd_prepare+0x80/0x80
[ 2562.704416][T27337]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2562.709915][T27337]  ? preempt_count_sub+0x160/0x160
[ 2562.715045][T27337]  ? __lock_acquire+0x1502/0x3b30
[ 2562.720079][T27337]  ? __might_fault+0xe6/0x1a0
[ 2562.724798][T27337]  ? _copy_from_user+0x5d/0xf0
[ 2562.729606][T27337]  kernel_clone+0xfd/0x930
[ 2562.734050][T27337]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2562.740057][T27337]  ? create_io_thread+0xe0/0xe0
[ 2562.744988][T27337]  ? find_held_lock+0x2d/0x110
[ 2562.749824][T27337]  __do_sys_clone3+0x1f1/0x260
[ 2562.754621][T27337]  ? __do_sys_clone+0x100/0x100
[ 2562.759534][T27337]  do_syscall_64+0xd3/0x250
[ 2562.764085][T27337]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 2562.770011][T27337] RIP: 0033:0x7f212b0a8b99
[ 2562.775604][T27337] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 2562.795403][T27337] RSP: 002b:00007ffc7b20b738 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 2562.804033][T27337] RAX: ffffffffffffffda RBX: 00007f212b051270 RCX: 00007f212b0a8b99
[ 2562.812231][T27337] RDX: 00007f212b051270 RSI: 0000000000000058 RDI: 00007ffc7b20b780
[ 2562.820540][T27337] RBP: 00007f212be566c0 R08: 00007f212be566c0 R09: 00007ffc7b20b867
[ 2562.828545][T27337] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 2562.836573][T27337] R13: 000000000000000b R14: 00007ffc7b20b780 R15: 00007ffc7b20b868
[ 2562.845006][T27337]  </TASK>
[ 2562.872060][T27337] memory: usage 307200kB, limit 307200kB, failcnt 114519
[ 2562.874200][T16775] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 2562.879586][T27337] memory+swap: usage 307520kB, limit 9007199254740988kB, failcnt 0
[ 2562.898122][T27337] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[ 2562.910412][T27337] Memory cgroup stats for /syz3:
[ 2562.910591][T27337] cache 0
[ 2562.921916][T16775] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 2562.930431][T27337] rss 0
[ 2562.934927][T27337] rss_huge 0
[ 2562.939432][T27337] shmem 0
[ 2562.951469][T16775] bridge_slave_1: left allmulticast mode
[ 2562.976509][T27337] mapped_file 0
[ 2562.984958][T16775] bridge_slave_1: left promiscuous mode
[ 2562.991472][T27337] dirty 0
[ 2562.994546][T27337] writeback 0
[ 2562.998987][T27337] workingset_refault_anon 33686
[ 2562.999817][T16775] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2563.003845][T27337] workingset_refault_file 1
[ 2563.003857][T27337] swap 327680
[ 2563.003865][T27337] swapcached 0
[ 2563.003874][T27337] pgpgin 157420
[ 2563.041563][T27337] pgpgout 157420
[ 2563.046663][T16775] bridge_slave_0: left allmulticast mode
[ 2563.052372][T16775] bridge_slave_0: left promiscuous mode
[ 2563.057011][T27337] pgfault 347774
[ 2563.061848][T27337] pgmajfault 32968
[ 2563.065596][T27337] inactive_anon 0
[ 2563.081259][T27337] active_anon 0
[ 2563.085290][T27337] inactive_file 0
[ 2563.095394][T16775] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2563.104267][T27337] active_file 0
[ 2563.111982][T27337] unevictable 0
[ 2563.115700][T27337] hierarchical_memory_limit 314572800
[ 2563.135144][T27337] hierarchical_memsw_limit 9223372036854771712
19:46:34 executing program 1:
socket$kcm(0x10, 0x400000002, 0x0)
socket$inet(0x2, 0x2, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
write$binfmt_script(r0, &(0x7f0000000480)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r1 = socket$rxrpc(0x21, 0x2, 0x0)
r2 = syz_genetlink_get_family_id$batadv(&(0x7f0000007580), 0xffffffffffffffff)
sendmsg$BATADV_CMD_SET_HARDIF(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001740)={&(0x7f0000000000)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16, @ANYBLOB="2d0100000000000000000500f6ff08000300", @ANYRES32], 0x2c}}, 0x0)
sendmsg$BATADV_CMD_GET_GATEWAYS(0xffffffffffffffff, &(0x7f0000007680)={0x0, 0x0, &(0x7f0000007640)={&(0x7f0000000000)=ANY=[@ANYBLOB="46040000", @ANYRES16=r2, @ANYBLOB="ff83050000076dc6d81b", @ANYRES32=r1], 0x4}}, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendfile(r4, r3, 0x0, 0x100000002)

[ 2563.145948][T27337] total_cache 0
[ 2563.149992][T27337] total_rss 0
[ 2563.153310][T27337] total_rss_huge 0
[ 2563.157784][T27337] total_shmem 0
[ 2563.177742][T27337] total_mapped_file 0
[ 2563.181782][T27337] total_dirty 0
[ 2563.185260][T27337] total_writeback 0
[ 2563.189796][T27337] total_workingset_refault_anon 33686
[ 2563.195205][T27337] total_workingset_refault_file 1
[ 2563.201064][T27337] total_swap 327680
[ 2563.204913][T27337] total_swapcached 0
[ 2563.260614][T27337] total_pgpgin 157420
[ 2563.264694][T27337] total_pgpgout 157420
[ 2563.268977][T16775] hsr_slave_0: left promiscuous mode
[ 2563.269673][T27337] total_pgfault 347774
[ 2563.290600][T16775] hsr_slave_1: left promiscuous mode
[ 2563.298409][T27337] total_pgmajfault 32968
[ 2563.298482][T27337] total_inactive_anon 0
[ 2563.319556][T16775] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 2563.330657][T27337] total_active_anon 0
[ 2563.335212][T27337] total_inactive_file 0
[ 2563.366106][T27337] total_active_file 0
[ 2563.366964][T16775] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 2563.370143][T27337] total_unevictable 0
[ 2563.393919][T16775] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 2563.406036][T27337] anon_cost 0
[ 2563.409471][T27337] file_cost 0
[ 2563.412829][T27337] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=27337,uid=0
[ 2563.423348][T16775] bridge_slave_1: left allmulticast mode
[ 2563.468580][T16775] bridge_slave_1: left promiscuous mode
[ 2563.474890][T16775] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2563.486066][   T28] audit: type=1804 audit(1706039195.111:1909): pid=27340 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir245649211/syzkaller.jQ7tPM/14/cgroup.controllers" dev="sda1" ino=1947 res=1 errno=0
[ 2563.486823][T27337] Memory cgroup out of memory: Killed process 27337 (syz-executor.3) total-vm:54504kB, anon-rss:368kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 2563.544215][T16775] bridge_slave_0: left allmulticast mode
[ 2563.553489][T16775] bridge_slave_0: left promiscuous mode
[ 2563.567009][T16775] bridge0: port 1(bridge_slave_0) entered disabled state
19:46:35 executing program 3:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x32}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000280)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000240)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=@newlink={0x48, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0xe403, r2}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @veth={{0x9}, {0x18, 0x2, 0x0, 0x1, @val=@VETH_INFO_PEER={0x14}}}}]}, 0x48}, 0x7700}, 0x0)

[ 2563.631696][T16775] bridge_slave_1: left allmulticast mode
[ 2563.637918][T16775] bridge_slave_1: left promiscuous mode
[ 2563.643915][T16775] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2563.697195][T16775] bridge_slave_0: left allmulticast mode
[ 2563.706550][T16775] bridge_slave_0: left promiscuous mode
[ 2563.712422][T16775] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2563.794977][T16775] bond1: left promiscuous mode
[ 2563.813737][T16775] team0: left promiscuous mode
[ 2563.819428][T16775] team_slave_0: left promiscuous mode
[ 2563.831450][T16775] team_slave_1: left promiscuous mode
[ 2563.837695][T16775] veth15: left promiscuous mode
[ 2563.846745][T16775] veth17: left promiscuous mode
[ 2563.851888][T16775] veth19: left promiscuous mode
[ 2563.862699][T16775] veth21: left promiscuous mode
[ 2563.868474][T16775] veth23: left promiscuous mode
[ 2563.875158][T16775] veth25: left promiscuous mode
[ 2563.880917][T16775] veth27: left promiscuous mode
[ 2563.889907][T16775] veth29: left promiscuous mode
[ 2563.905057][T16775] veth31: left promiscuous mode
[ 2563.913218][T16775] veth33: left promiscuous mode
[ 2563.923404][T16775] veth35: left promiscuous mode
[ 2563.929630][T16775] veth37: left promiscuous mode
[ 2563.936777][T16775] veth39: left promiscuous mode
[ 2563.942334][T16775] veth41: left promiscuous mode
[ 2563.949983][T16775] veth43: left promiscuous mode
[ 2563.955423][T16775] veth45: left promiscuous mode
[ 2563.962647][T16775] veth47: left promiscuous mode
[ 2563.970009][T16775] veth73: left promiscuous mode
[ 2563.975470][T16775] veth75: left promiscuous mode
[ 2563.982993][T16775] veth77: left promiscuous mode
[ 2563.988800][T16775] veth79: left promiscuous mode
[ 2563.996484][T16775] veth81: left promiscuous mode
[ 2564.001976][T16775] veth83: left promiscuous mode
[ 2564.009233][T16775] veth229: left promiscuous mode
[ 2564.015530][T16775] veth231: left promiscuous mode
[ 2564.023412][T16775] veth233: left promiscuous mode
[ 2564.032429][T16775] veth235: left promiscuous mode
[ 2564.039542][T16775] veth237: left promiscuous mode
[ 2564.045054][T16775] veth239: left promiscuous mode
[ 2564.055668][T16775] veth241: left promiscuous mode
[ 2564.071925][T16775] veth243: left promiscuous mode
[ 2564.078455][T16775] veth245: left promiscuous mode
[ 2564.085448][T16775] veth247: left promiscuous mode
[ 2564.096163][T16775] veth249: left promiscuous mode
[ 2564.101524][T16775] veth251: left promiscuous mode
[ 2564.107812][T16775] veth253: left promiscuous mode
[ 2564.113306][T16775] veth255: left promiscuous mode
[ 2564.133722][T16775] veth257: left promiscuous mode
[ 2564.148823][T16775] veth259: left promiscuous mode
19:46:35 executing program 1:
socket$kcm(0x10, 0x400000002, 0x0)
socket$inet(0x2, 0x2, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
write$binfmt_script(r0, &(0x7f0000000480)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r1 = socket$rxrpc(0x21, 0x2, 0xa)
r2 = syz_genetlink_get_family_id$batadv(&(0x7f0000007580), 0xffffffffffffffff)
sendmsg$BATADV_CMD_SET_HARDIF(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001740)={&(0x7f0000000000)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16, @ANYBLOB="2d0100000000000000000500f6ff08000300"], 0x2c}}, 0x0)
sendmsg$BATADV_CMD_GET_GATEWAYS(0xffffffffffffffff, &(0x7f0000007680)={0x0, 0x0, &(0x7f0000007640)={&(0x7f0000000000)=ANY=[@ANYBLOB="46040000", @ANYRES16=r2, @ANYBLOB="ff83050000076dc6d81b", @ANYRES32=r1], 0x4}}, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendfile(r4, r3, 0x0, 0x100000002)

[ 2564.154703][T16775] veth261: left promiscuous mode
[ 2564.172806][T16775] veth263: left promiscuous mode
[ 2564.178444][T16775] veth265: left promiscuous mode
[ 2564.183703][T16775] veth267: left promiscuous mode
[ 2564.189575][T16775] veth269: left promiscuous mode
[ 2564.196517][T16775] veth271: left promiscuous mode
[ 2564.292576][T27342] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2564.304145][T16775] hsr_slave_0: left promiscuous mode
[ 2564.311710][T16775] hsr_slave_1: left promiscuous mode
[ 2564.329120][T27342] CPU: 1 PID: 27342 Comm: syz-executor.3 Not tainted 6.7.0-syzkaller-12291-g435e202d645c #0
[ 2564.339251][T27342] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 2564.349323][T27342] Call Trace:
[ 2564.352614][T27342]  <TASK>
[ 2564.355566][T27342]  dump_stack_lvl+0x125/0x1b0
[ 2564.360438][T27342]  dump_header+0x103/0x900
[ 2564.364965][T27342]  oom_kill_process+0x270/0xa60
[ 2564.369962][T27342]  out_of_memory+0x344/0x16c0
[ 2564.375707][T27342]  ? oom_killer_disable+0x2d0/0x2d0
[ 2564.381105][T27342]  ? rcu_read_unlock+0x1c/0x60
[ 2564.385891][T27342]  mem_cgroup_out_of_memory+0x206/0x270
[ 2564.391446][T27342]  ? mem_cgroup_margin+0x130/0x130
[ 2564.396847][T27342]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2564.402244][T27342]  try_charge_memcg+0xcd1/0x11a0
[ 2564.407210][T27342]  ? mem_cgroup_handle_over_high+0x570/0x570
[ 2564.413201][T27342]  ? get_mem_cgroup_from_objcg+0xb5/0x2a0
[ 2564.418933][T27342]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2564.424320][T27342]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2564.429711][T27342]  __memcg_kmem_charge_page+0xdd/0x2a0
[ 2564.436603][T27342]  memcg_charge_kernel_stack+0xc3/0x1f0
[ 2564.442433][T27342]  copy_process+0x527/0x97b0
[ 2564.447296][T27342]  ? hlock_class+0x4e/0x130
[ 2564.451816][T27342]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2564.457828][T27342]  ? hlock_class+0x4e/0x130
[ 2564.462354][T27342]  ? pidfd_prepare+0x80/0x80
[ 2564.467230][T27342]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2564.472671][T27342]  ? preempt_count_sub+0x160/0x160
[ 2564.477813][T27342]  ? __lock_acquire+0x1502/0x3b30
[ 2564.482845][T27342]  ? __might_fault+0xe6/0x1a0
[ 2564.487627][T27342]  ? _copy_from_user+0x5d/0xf0
[ 2564.492412][T27342]  kernel_clone+0xfd/0x930
[ 2564.496846][T27342]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2564.502834][T27342]  ? create_io_thread+0xe0/0xe0
[ 2564.507705][T27342]  ? find_held_lock+0x2d/0x110
[ 2564.512530][T27342]  __do_sys_clone3+0x1f1/0x260
[ 2564.517343][T27342]  ? __do_sys_clone+0x100/0x100
[ 2564.522250][T27342]  do_syscall_64+0xd3/0x250
[ 2564.526862][T27342]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 2564.533043][T27342] RIP: 0033:0x7f212b0a8b99
[ 2564.537474][T27342] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 2564.557711][T27342] RSP: 002b:00007ffc7b20b738 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 2564.566672][T27342] RAX: ffffffffffffffda RBX: 00007f212b051270 RCX: 00007f212b0a8b99
[ 2564.574712][T27342] RDX: 00007f212b051270 RSI: 0000000000000058 RDI: 00007ffc7b20b780
[ 2564.582773][T27342] RBP: 00007f212be566c0 R08: 00007f212be566c0 R09: 00007ffc7b20b867
[ 2564.590743][T27342] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 2564.598905][T27342] R13: 000000000000000b R14: 00007ffc7b20b780 R15: 00007ffc7b20b868
[ 2564.606902][T27342]  </TASK>
[ 2564.629769][T16775] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 2564.637040][T27342] memory: usage 307200kB, limit 307200kB, failcnt 114853
[ 2564.652409][T27342] memory+swap: usage 307560kB, limit 9007199254740988kB, failcnt 0
[ 2564.665799][T16775] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 2564.673634][T27342] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[ 2564.681919][T27342] Memory cgroup stats for /syz3:
[ 2564.682101][T27342] cache 0
[ 2564.690692][T27342] rss 0
[ 2564.693732][T27342] rss_huge 0
[ 2564.705450][T16775] bridge_slave_1: left allmulticast mode
[ 2564.712065][T16775] bridge_slave_1: left promiscuous mode
[ 2564.721698][T27342] shmem 0
[ 2564.724843][T27342] mapped_file 0
[ 2564.732858][T16775] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2564.740340][T27342] dirty 0
[ 2564.743807][T27342] writeback 0
[ 2564.749567][T27342] workingset_refault_anon 33796
[ 2564.750874][T16775] bridge_slave_0: left allmulticast mode
[ 2564.762065][T27342] workingset_refault_file 1
[ 2564.767477][T27342] swap 368640
[ 2564.770923][T16775] bridge_slave_0: left promiscuous mode
[ 2564.776746][T27342] swapcached 0
[ 2564.780876][T27342] pgpgin 157541
[ 2564.784722][T16775] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2564.792655][T27342] pgpgout 157541
[ 2564.798388][T27342] pgfault 347970
[ 2564.802560][T27342] pgmajfault 33072
[ 2564.806876][T27342] inactive_anon 0
[ 2564.811321][T27342] active_anon 0
[ 2564.815378][T27342] inactive_file 0
[ 2564.819427][T27342] active_file 0
[ 2564.822903][T27342] unevictable 0
[ 2564.827155][T27342] hierarchical_memory_limit 314572800
[ 2564.830335][   T28] audit: type=1804 audit(1706039196.481:1910): pid=27344 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir245649211/syzkaller.jQ7tPM/15/cgroup.controllers" dev="sda1" ino=1947 res=1 errno=0
[ 2564.832527][T27342] hierarchical_memsw_limit 9223372036854771712
[ 2564.884565][T27342] total_cache 0
[ 2564.917194][T27342] total_rss 0
[ 2564.932486][T27342] total_rss_huge 0
[ 2564.940650][T27342] total_shmem 0
[ 2564.944969][T27342] total_mapped_file 0
[ 2564.949867][T27342] total_dirty 0
[ 2564.954901][T27342] total_writeback 0
[ 2564.970722][T27342] total_workingset_refault_anon 33796
[ 2564.998110][T27342] total_workingset_refault_file 1
[ 2565.003569][T27342] total_swap 368640
[ 2565.009837][T27342] total_swapcached 0
[ 2565.015255][T27342] total_pgpgin 157541
[ 2565.031341][T27342] total_pgpgout 157541
[ 2565.035596][T27342] total_pgfault 347970
[ 2565.040787][T27342] total_pgmajfault 33072
[ 2565.056292][T27342] total_inactive_anon 0
[ 2565.061218][T27342] total_active_anon 0
[ 2565.065796][T27342] total_inactive_file 0
[ 2565.070935][T27342] total_active_file 0
[ 2565.086847][T16775] veth1_macvtap: left promiscuous mode
[ 2565.092574][T16775] veth0_macvtap: left promiscuous mode
[ 2565.093448][T27342] total_unevictable 0
[ 2565.104656][T16775] veth1_vlan: left promiscuous mode
[ 2565.105467][T27342] anon_cost 0
[ 2565.126210][T27342] file_cost 0
[ 2565.131267][T27342] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=27342,uid=0
[ 2565.158316][T27342] Memory cgroup out of memory: Killed process 27342 (syz-executor.3) total-vm:54504kB, anon-rss:364kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
19:46:36 executing program 3:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x32}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000280)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000240)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=@newlink={0x48, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0xe403, r2}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @veth={{0x9}, {0x18, 0x2, 0x0, 0x1, @val=@VETH_INFO_PEER={0x14}}}}]}, 0x48}, 0x7800}, 0x0)

19:46:36 executing program 1:
socket$kcm(0x10, 0x400000002, 0x0)
socket$inet(0x2, 0x2, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
write$binfmt_script(r0, &(0x7f0000000480)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket(0x10, 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r1 = socket$rxrpc(0x21, 0x2, 0xa)
r2 = syz_genetlink_get_family_id$batadv(&(0x7f0000007580), 0xffffffffffffffff)
sendmsg$BATADV_CMD_SET_HARDIF(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001740)={&(0x7f0000000000)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16, @ANYBLOB="2d0100000000000000000500f6ff08000300", @ANYRES32], 0x2c}}, 0x0)
sendmsg$BATADV_CMD_GET_GATEWAYS(0xffffffffffffffff, &(0x7f0000007680)={0x0, 0x0, &(0x7f0000007640)={&(0x7f0000000000)=ANY=[@ANYBLOB="46040000", @ANYRES16=r2, @ANYBLOB="ff83050000076dc6d81b", @ANYRES32=r1], 0x4}}, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendfile(r4, r3, 0x0, 0x100000002)

[ 2565.279318][T16775] veth1_macvtap: left promiscuous mode
[ 2565.285022][T16775] veth0_macvtap: left promiscuous mode
[ 2565.316694][T16775] veth1_vlan: left promiscuous mode
[ 2565.587628][   T28] audit: type=1804 audit(1706039197.241:1911): pid=27348 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir245649211/syzkaller.jQ7tPM/16/cgroup.controllers" dev="sda1" ino=1947 res=1 errno=0
[ 2565.692679][T27347] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2565.703817][T27347] CPU: 1 PID: 27347 Comm: syz-executor.3 Not tainted 6.7.0-syzkaller-12291-g435e202d645c #0
[ 2565.714005][T27347] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 2565.724270][T27347] Call Trace:
[ 2565.727579][T27347]  <TASK>
[ 2565.730533][T27347]  dump_stack_lvl+0x125/0x1b0
[ 2565.735762][T27347]  dump_header+0x103/0x900
[ 2565.740217][T27347]  oom_kill_process+0x270/0xa60
[ 2565.745198][T27347]  out_of_memory+0x344/0x16c0
[ 2565.750092][T27347]  ? oom_killer_disable+0x2d0/0x2d0
[ 2565.755307][T27347]  ? rcu_read_unlock+0x1c/0x60
[ 2565.760109][T27347]  mem_cgroup_out_of_memory+0x206/0x270
[ 2565.765662][T27347]  ? mem_cgroup_margin+0x130/0x130
[ 2565.770778][T27347]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2565.776261][T27347]  try_charge_memcg+0xcd1/0x11a0
[ 2565.781236][T27347]  ? mem_cgroup_handle_over_high+0x570/0x570
[ 2565.787313][T27347]  ? get_mem_cgroup_from_objcg+0xb5/0x2a0
[ 2565.793037][T27347]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2565.798435][T27347]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2565.803824][T27347]  __memcg_kmem_charge_page+0xdd/0x2a0
[ 2565.809300][T27347]  memcg_charge_kernel_stack+0xc3/0x1f0
[ 2565.814864][T27347]  copy_process+0x1532/0x97b0
[ 2565.819557][T27347]  ? hlock_class+0x4e/0x130
[ 2565.824073][T27347]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2565.830061][T27347]  ? hlock_class+0x4e/0x130
[ 2565.834587][T27347]  ? pidfd_prepare+0x80/0x80
[ 2565.839191][T27347]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2565.844625][T27347]  ? preempt_count_sub+0x160/0x160
[ 2565.849742][T27347]  ? __lock_acquire+0x1502/0x3b30
[ 2565.854778][T27347]  ? __might_fault+0xe6/0x1a0
[ 2565.859476][T27347]  ? _copy_from_user+0x5d/0xf0
[ 2565.864604][T27347]  kernel_clone+0xfd/0x930
[ 2565.869033][T27347]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2565.875018][T27347]  ? create_io_thread+0xe0/0xe0
[ 2565.879886][T27347]  ? find_held_lock+0x2d/0x110
[ 2565.884664][T27347]  __do_sys_clone3+0x1f1/0x260
[ 2565.889439][T27347]  ? __do_sys_clone+0x100/0x100
[ 2565.894502][T27347]  do_syscall_64+0xd3/0x250
[ 2565.899020][T27347]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 2565.904932][T27347] RIP: 0033:0x7f212b0a8b99
[ 2565.909437][T27347] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 2565.929487][T27347] RSP: 002b:00007ffc7b20b738 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 2565.937995][T27347] RAX: ffffffffffffffda RBX: 00007f212b051270 RCX: 00007f212b0a8b99
[ 2565.946029][T27347] RDX: 00007f212b051270 RSI: 0000000000000058 RDI: 00007ffc7b20b780
[ 2565.954094][T27347] RBP: 00007f212be566c0 R08: 00007f212be566c0 R09: 00007ffc7b20b867
[ 2565.962065][T27347] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 2565.970062][T27347] R13: 000000000000000b R14: 00007ffc7b20b780 R15: 00007ffc7b20b868
[ 2565.978165][T27347]  </TASK>
[ 2565.998854][T27347] memory: usage 307200kB, limit 307200kB, failcnt 115100
[ 2566.028011][T27347] memory+swap: usage 307588kB, limit 9007199254740988kB, failcnt 0
[ 2566.049811][T27347] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0
[ 2566.074726][T27347] Memory cgroup stats for /syz3:
[ 2566.074889][T27347] cache 0
[ 2566.084455][T27347] rss 12288
[ 2566.100367][T27347] rss_huge 0
[ 2566.104097][T27347] shmem 0
[ 2566.118393][T27347] mapped_file 0
[ 2566.121976][T27347] dirty 0
[ 2566.124941][T27347] writeback 0
[ 2566.129274][T27347] workingset_refault_anon 33879
[ 2566.147618][T27347] workingset_refault_file 1
[ 2566.152183][T27347] swap 397312
[ 2566.155493][T27347] swapcached 12288
[ 2566.177498][T27347] pgpgin 157635
[ 2566.181115][T27347] pgpgout 157632
[ 2566.184837][T27347] pgfault 348114
[ 2566.188767][T27347] pgmajfault 33138
[ 2566.192597][T27347] inactive_anon 4096
[ 2566.196735][T27347] active_anon 8192
19:46:37 executing program 1:
socket$kcm(0x10, 0x400000002, 0x0)
socket$inet(0x2, 0x2, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
write$binfmt_script(r0, &(0x7f0000000480)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r1 = socket$rxrpc(0x21, 0x2, 0xa)
r2 = syz_genetlink_get_family_id$batadv(&(0x7f0000007580), 0xffffffffffffffff)
sendmsg$BATADV_CMD_SET_HARDIF(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001740)={&(0x7f0000000000)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16, @ANYBLOB="2d0100000000000000000500f6ff08000300"], 0x2c}}, 0x0)
sendmsg$BATADV_CMD_GET_GATEWAYS(0xffffffffffffffff, &(0x7f0000007680)={0x0, 0x0, &(0x7f0000007640)={&(0x7f0000000000)=ANY=[@ANYBLOB="46040000", @ANYRES16=r2, @ANYBLOB="ff83050000076dc6d81b", @ANYRES32=r1], 0x4}}, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendfile(r4, r3, 0x0, 0x100000002)

[ 2566.200477][T27347] inactive_file 0
[ 2566.243522][T27347] active_file 0
[ 2566.256293][T27347] unevictable 0
[ 2566.264369][T27347] hierarchical_memory_limit 314572800
[ 2566.286656][T27347] hierarchical_memsw_limit 9223372036854771712
[ 2566.292878][T27347] total_cache 0
[ 2566.304713][T27347] total_rss 12288
[ 2566.309213][T27347] total_rss_huge 0
[ 2566.325900][T27347] total_shmem 0
[ 2566.346158][T27347] total_mapped_file 0
[ 2566.350290][T27347] total_dirty 0
[ 2566.354039][T27347] total_writeback 0
[ 2566.358265][T27347] total_workingset_refault_anon 33879
[ 2566.374848][T27347] total_workingset_refault_file 1
[ 2566.391554][T27347] total_swap 397312
[ 2566.407250][T27347] total_swapcached 12288
[ 2566.411826][T27347] total_pgpgin 157635
[ 2566.416663][T27347] total_pgpgout 157632
[ 2566.420977][T27347] total_pgfault 348114
[ 2566.425483][T27347] total_pgmajfault 33138
[ 2566.459728][T27347] total_inactive_anon 4096
[ 2566.464572][T27347] total_active_anon 8192
[ 2566.470027][T27347] total_inactive_file 0
[ 2566.474393][T27347] total_active_file 0
[ 2566.478900][T27347] total_unevictable 0
[ 2566.494596][T27347] anon_cost 0
[ 2566.498365][T27347] file_cost 0
[ 2566.501943][T27347] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=27347,uid=0
[ 2566.518581][T27347] Memory cgroup out of memory: Killed process 27347 (syz-executor.3) total-vm:54504kB, anon-rss:380kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 2566.574087][   T28] audit: type=1804 audit(1706039198.221:1912): pid=27351 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir245649211/syzkaller.jQ7tPM/17/cgroup.controllers" dev="sda1" ino=1947 res=1 errno=0
19:46:38 executing program 3:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x32}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000280)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000240)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=@newlink={0x48, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0xe403, r2}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @veth={{0x9}, {0x18, 0x2, 0x0, 0x1, @val=@VETH_INFO_PEER={0x14}}}}]}, 0x48}, 0x7900}, 0x0)

[ 2567.234683][ T5091] syz-executor.3 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[ 2567.246523][ T5091] CPU: 0 PID: 5091 Comm: syz-executor.3 Not tainted 6.7.0-syzkaller-12291-g435e202d645c #0
[ 2567.256569][ T5091] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 2567.266653][ T5091] Call Trace:
[ 2567.269955][ T5091]  <TASK>
[ 2567.272911][ T5091]  dump_stack_lvl+0x125/0x1b0
[ 2567.277627][ T5091]  dump_header+0x103/0x900
[ 2567.282083][ T5091]  oom_kill_process+0x270/0xa60
[ 2567.286996][ T5091]  out_of_memory+0x344/0x16c0
[ 2567.291903][ T5091]  ? mutex_trylock+0xa0/0x130
[ 2567.296611][ T5091]  ? oom_killer_disable+0x2d0/0x2d0
[ 2567.301860][ T5091]  ? rcu_read_unlock+0x1c/0x60
[ 2567.306762][ T5091]  mem_cgroup_out_of_memory+0x206/0x270
[ 2567.312683][ T5091]  ? mem_cgroup_margin+0x130/0x130
[ 2567.317809][ T5091]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2567.323202][ T5091]  try_charge_memcg+0xcd1/0x11a0
[ 2567.328178][ T5091]  ? mem_cgroup_handle_over_high+0x570/0x570
[ 2567.334159][ T5091]  ? rcu_read_unlock+0x1c/0x60
[ 2567.338922][ T5091]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2567.344300][ T5091]  ? __radix_tree_lookup+0x21f/0x2c0
[ 2567.349599][ T5091]  mem_cgroup_swapin_charge_folio+0x138/0x380
[ 2567.355702][ T5091]  __read_swap_cache_async+0x4e1/0x600
[ 2567.361178][ T5091]  ? filemap_get_incore_folio+0x160/0x160
[ 2567.367177][ T5091]  ? swp_swap_info+0xcf/0x130
[ 2567.371876][ T5091]  ? swapcache_prepare+0x20/0x20
[ 2567.376911][ T5091]  ? hlock_class+0x4e/0x130
[ 2567.381428][ T5091]  ? mark_lock+0xb5/0xc50
[ 2567.385779][ T5091]  swap_cluster_readahead+0x4d4/0x710
[ 2567.391168][ T5091]  ? read_swap_cache_async+0x1a0/0x1a0
[ 2567.396639][ T5091]  ? reacquire_held_locks+0x410/0x4c0
[ 2567.402020][ T5091]  ? xas_descend+0x141/0x4e0
[ 2567.406721][ T5091]  ? filemap_get_entry+0x23e/0x460
[ 2567.411862][ T5091]  swapin_readahead+0x132/0xe60
[ 2567.416728][ T5091]  ? get_swap_device+0x363/0x5e0
[ 2567.421675][ T5091]  ? exit_swap_address_space+0x250/0x250
[ 2567.427376][ T5091]  ? __filemap_get_folio+0x2b0/0xaa0
[ 2567.432677][ T5091]  ? swap_cache_get_folio+0x1dc/0x460
[ 2567.438058][ T5091]  ? get_swap_device+0x245/0x5e0
[ 2567.443547][ T5091]  ? free_pages_and_swap_cache+0xa0/0xa0
[ 2567.449551][ T5091]  ? lock_sync+0x190/0x190
[ 2567.454068][ T5091]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2567.460059][ T5091]  do_swap_page+0x4a6/0x3190
[ 2567.464689][ T5091]  ? rcu_is_watching+0x12/0xb0
[ 2567.469476][ T5091]  ? __pte_offset_map+0x1b9/0x540
[ 2567.474525][ T5091]  ? unmap_mapping_folio+0x3b0/0x3b0
[ 2567.479834][ T5091]  ? pte_offset_map_nolock+0xfa/0x1b0
[ 2567.485216][ T5091]  ? __pte_offset_map+0x540/0x540
[ 2567.490341][ T5091]  __handle_mm_fault+0x13a0/0x4900
[ 2567.495470][ T5091]  ? clear_huge_page+0x2e0/0x2e0
[ 2567.500429][ T5091]  ? find_vma+0x112/0x1b0
[ 2567.504771][ T5091]  ? get_unmapped_area+0x400/0x400
[ 2567.509985][ T5091]  handle_mm_fault+0x47a/0xa10
[ 2567.514762][ T5091]  ? lock_mm_and_find_vma+0xa6/0x580
[ 2567.520079][ T5091]  do_user_addr_fault+0x3f8/0x1030
[ 2567.525221][ T5091]  ? rcu_is_watching+0x12/0xb0
[ 2567.530004][ T5091]  exc_page_fault+0x5d/0xc0
[ 2567.534531][ T5091]  asm_exc_page_fault+0x26/0x30
[ 2567.539408][ T5091] RIP: 0010:__get_user_8+0x11/0x20
[ 2567.544544][ T5091] Code: 48 c1 fa 3f 48 09 d0 0f 01 cb 8b 10 31 c0 0f 01 ca c3 0f 1f 80 00 00 00 00 f3 0f 1e fa 48 89 c2 48 c1 fa 3f 48 09 d0 0f 01 cb <48> 8b 10 31 c0 0f 01 ca c3 66 0f 1f 44 00 00 f3 0f 1e fa 0f 01 cb
[ 2567.568257][ T5091] RSP: 0018:ffffc900047cfdf8 EFLAGS: 00050202
[ 2567.574342][ T5091] RAX: 0000555555796da8 RBX: ffff888027da0000 RCX: ffffc900047cfd60
[ 2567.582332][ T5091] RDX: 0000000000000000 RSI: ffffffff81b655ac RDI: ffffffff8b2f9d00
[ 2567.590312][ T5091] RBP: ffffc900047cfef8 R08: 0000000000000000 R09: fffffbfff1e753fa
[ 2567.598292][ T5091] R10: ffffffff8f3a9fd7 R11: 0000000000000000 R12: ffff888027da0000
[ 2567.606274][ T5091] R13: ffffc900047cff58 R14: ffffc900047cfe60 R15: 0000000000000000
[ 2567.614473][ T5091]  ? __rseq_handle_notify_resume+0x14c/0x1020
[ 2567.620604][ T5091]  __rseq_handle_notify_resume+0x183/0x1020
[ 2567.626657][ T5091]  ? __do_sys_rseq+0x750/0x750
[ 2567.631448][ T5091]  ? folio_memcg_unlock+0x240/0x240
[ 2567.637303][ T5091]  ? __ia32_sys_clock_getres_time32+0x280/0x280
[ 2567.644278][ T5091]  syscall_exit_to_user_mode+0x1a9/0x2b0
[ 2567.649948][ T5091]  do_syscall_64+0xe0/0x250
[ 2567.654469][ T5091]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 2567.660467][ T5091] RIP: 0033:0x7f212b0a81b5
[ 2567.664897][ T5091] Code: 24 0c 89 3c 24 48 89 4c 24 18 e8 f6 b9 ff ff 4c 8b 54 24 18 48 8b 54 24 10 41 89 c0 8b 74 24 0c 8b 3c 24 b8 e6 00 00 00 0f 05 <44> 89 c7 48 89 04 24 e8 4f ba ff ff 48 8b 04 24 48 83 c4 28 f7 d8
[ 2567.684519][ T5091] RSP: 002b:00007ffc7b20bb10 EFLAGS: 00000293 ORIG_RAX: 00000000000000e6
[ 2567.692949][ T5091] RAX: 0000000000000000 RBX: 00000000000028ec RCX: 00007f212b0a81b5
[ 2567.700933][ T5091] RDX: 00007ffc7b20bb50 RSI: 0000000000000000 RDI: 0000000000000000
[ 2567.708915][ T5091] RBP: 00007ffc7b20bbdc R08: 0000000000000000 R09: 0000000000000001
[ 2567.717081][ T5091] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000032
[ 2567.725153][ T5091] R13: 0000000000272a81 R14: 0000000000272a81 R15: 0000000000000000
19:46:39 executing program 1:
socket$kcm(0x10, 0x400000002, 0x0)
socket$inet(0x2, 0x2, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
write$binfmt_script(r1, &(0x7f0000000480)=ANY=[], 0x208e24b)
socket$netlink(0x10, 0x3, 0x0)
socket(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r2 = socket$rxrpc(0x21, 0x2, 0xa)
r3 = syz_genetlink_get_family_id$batadv(&(0x7f0000007580), 0xffffffffffffffff)
sendmsg$BATADV_CMD_SET_HARDIF(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001740)={&(0x7f0000000000)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16, @ANYBLOB="2d0100000000000000000500f6ff08000300", @ANYRES32=r0], 0x2c}}, 0x0)
sendmsg$BATADV_CMD_GET_GATEWAYS(0xffffffffffffffff, &(0x7f0000007680)={0x0, 0x0, &(0x7f0000007640)={&(0x7f0000000000)=ANY=[@ANYBLOB="46040000", @ANYRES16=r3, @ANYBLOB="ff83050000076dc6d81b", @ANYRES32=r2], 0x4}}, 0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendfile(r5, r4, 0x0, 0x100000002)

[ 2567.735841][ T5091]  </TASK>
[ 2567.784685][ T5091] memory: usage 307200kB, limit 307200kB, failcnt 115396
[ 2567.792387][ T5091] memory+swap: usage 307640kB, limit 9007199254740988kB, failcnt 0
[ 2567.801257][ T5091] kmem: usage 307184kB, limit 9007199254740988kB, failcnt 0
[ 2567.809119][ T5091] Memory cgroup stats for /syz3:
[ 2567.809286][ T5091] cache 0
[ 2567.829083][ T5091] rss 0
[ 2567.832083][ T5091] rss_huge 0
[ 2567.835295][ T5091] shmem 0
[ 2567.841005][ T5091] mapped_file 0
[ 2567.844518][ T5091] dirty 0
[ 2567.884848][ T5091] writeback 0
[ 2567.892120][ T5091] workingset_refault_anon 33992
[ 2567.924277][ T5091] workingset_refault_file 1
[ 2567.933990][ T5091] swap 450560
[ 2567.958329][ T5091] swapcached 0
[ 2567.961772][ T5091] pgpgin 157759
[ 2567.974399][ T5091] pgpgout 157759
[ 2567.980351][ T5091] pgfault 348293
[ 2567.984368][ T5091] pgmajfault 33233
[ 2567.989329][ T5091] inactive_anon 0
[ 2568.009948][ T5091] active_anon 0
[ 2568.019670][ T5091] inactive_file 0
[ 2568.039437][ T5091] active_file 0
[ 2568.048332][ T5091] unevictable 0
[ 2568.054135][ T5091] hierarchical_memory_limit 314572800
[ 2568.092492][ T5091] hierarchical_memsw_limit 9223372036854771712
[ 2568.119563][ T5091] total_cache 0
[ 2568.127329][ T5091] total_rss 0
[ 2568.154422][ T5091] total_rss_huge 0
[ 2568.164660][ T5091] total_shmem 0
[ 2568.182667][ T5091] total_mapped_file 0
[ 2568.216195][ T5091] total_dirty 0
[ 2568.219732][ T5091] total_writeback 0
[ 2568.223569][ T5091] total_workingset_refault_anon 33992
[ 2568.249234][ T5091] total_workingset_refault_file 1
[ 2568.254385][ T5091] total_swap 450560
[ 2568.270535][ T5091] total_swapcached 0
[ 2568.274510][ T5091] total_pgpgin 157759
[ 2568.296084][ T5091] total_pgpgout 157759
[ 2568.300214][ T5091] total_pgfault 348293
[ 2568.304304][ T5091] total_pgmajfault 33233
[ 2568.334563][ T5091] total_inactive_anon 0
[ 2568.343349][ T5091] total_active_anon 0
[ 2568.372089][ T5091] total_inactive_file 0
[ 2568.377143][ T5091] total_active_file 0
[ 2568.381158][ T5091] total_unevictable 0
[ 2568.385155][ T5091] anon_cost 0
[ 2568.389372][ T5091] file_cost 0
[ 2568.406795][ T5091] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=27353,uid=0
[ 2568.434539][ T5091] Memory cgroup out of memory: Killed process 27353 (syz-executor.3) total-vm:54504kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
19:46:40 executing program 3:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x32}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000280)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000240)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=@newlink={0x48, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0xe403, r2}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @veth={{0x9}, {0x18, 0x2, 0x0, 0x1, @val=@VETH_INFO_PEER={0x14}}}}]}, 0x48}, 0x7a00}, 0x0)

[ 2568.800919][   T28] audit: type=1804 audit(1706039200.391:1913): pid=27356 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir245649211/syzkaller.jQ7tPM/18/cgroup.controllers" dev="sda1" ino=1947 res=1 errno=0
[ 2568.864591][ T5091] syz-executor.3 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[ 2568.896269][ T5091] CPU: 0 PID: 5091 Comm: syz-executor.3 Not tainted 6.7.0-syzkaller-12291-g435e202d645c #0
[ 2568.906318][ T5091] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 2568.916383][ T5091] Call Trace:
[ 2568.919666][ T5091]  <TASK>
[ 2568.922603][ T5091]  dump_stack_lvl+0x125/0x1b0
[ 2568.927302][ T5091]  dump_header+0x103/0x900
[ 2568.931754][ T5091]  oom_kill_process+0x270/0xa60
[ 2568.936642][ T5091]  out_of_memory+0x344/0x16c0
[ 2568.941340][ T5091]  ? mutex_trylock+0xa0/0x130
[ 2568.946060][ T5091]  ? oom_killer_disable+0x2d0/0x2d0
[ 2568.951306][ T5091]  ? rcu_read_unlock+0x1c/0x60
[ 2568.956102][ T5091]  mem_cgroup_out_of_memory+0x206/0x270
[ 2568.961662][ T5091]  ? mem_cgroup_margin+0x130/0x130
[ 2568.966780][ T5091]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2568.972348][ T5091]  try_charge_memcg+0xcd1/0x11a0
[ 2568.977674][ T5091]  ? mem_cgroup_handle_over_high+0x570/0x570
[ 2568.983692][ T5091]  ? rcu_read_unlock+0x1c/0x60
[ 2568.988475][ T5091]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2568.993893][ T5091]  ? __radix_tree_lookup+0x21f/0x2c0
[ 2568.999209][ T5091]  mem_cgroup_swapin_charge_folio+0x138/0x380
[ 2569.005415][ T5091]  __read_swap_cache_async+0x4e1/0x600
[ 2569.010928][ T5091]  ? filemap_get_incore_folio+0x160/0x160
[ 2569.016785][ T5091]  ? swp_swap_info+0xcf/0x130
[ 2569.021480][ T5091]  ? swapcache_prepare+0x20/0x20
[ 2569.026703][ T5091]  ? hlock_class+0x4e/0x130
[ 2569.031324][ T5091]  ? mark_lock+0xb5/0xc50
[ 2569.035794][ T5091]  swap_cluster_readahead+0x4d4/0x710
[ 2569.041194][ T5091]  ? read_swap_cache_async+0x1a0/0x1a0
[ 2569.046660][ T5091]  ? reacquire_held_locks+0x410/0x4c0
[ 2569.052063][ T5091]  ? xas_descend+0x141/0x4e0
[ 2569.056705][ T5091]  ? filemap_get_entry+0x23e/0x460
[ 2569.062549][ T5091]  swapin_readahead+0x132/0xe60
[ 2569.067699][ T5091]  ? get_swap_device+0x363/0x5e0
[ 2569.072685][ T5091]  ? exit_swap_address_space+0x250/0x250
[ 2569.078339][ T5091]  ? __filemap_get_folio+0x2b0/0xaa0
[ 2569.084139][ T5091]  ? swap_cache_get_folio+0x1dc/0x460
[ 2569.089563][ T5091]  ? get_swap_device+0x245/0x5e0
[ 2569.094523][ T5091]  ? free_pages_and_swap_cache+0xa0/0xa0
[ 2569.100192][ T5091]  ? lock_sync+0x190/0x190
[ 2569.104623][ T5091]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2569.110619][ T5091]  do_swap_page+0x4a6/0x3190
[ 2569.115227][ T5091]  ? rcu_is_watching+0x12/0xb0
[ 2569.120004][ T5091]  ? __pte_offset_map+0x1b9/0x540
[ 2569.125038][ T5091]  ? unmap_mapping_folio+0x3b0/0x3b0
[ 2569.130338][ T5091]  ? pte_offset_map_nolock+0xfa/0x1b0
[ 2569.135725][ T5091]  ? __pte_offset_map+0x540/0x540
[ 2569.140771][ T5091]  __handle_mm_fault+0x13a0/0x4900
[ 2569.145902][ T5091]  ? clear_huge_page+0x2e0/0x2e0
[ 2569.150862][ T5091]  ? find_vma+0x112/0x1b0
[ 2569.155209][ T5091]  ? get_unmapped_area+0x400/0x400
[ 2569.160338][ T5091]  handle_mm_fault+0x47a/0xa10
[ 2569.165125][ T5091]  ? lock_mm_and_find_vma+0xa6/0x580
[ 2569.171489][ T5091]  do_user_addr_fault+0x3f8/0x1030
[ 2569.176626][ T5091]  ? rcu_is_watching+0x12/0xb0
[ 2569.182470][ T5091]  exc_page_fault+0x5d/0xc0
[ 2569.187269][ T5091]  asm_exc_page_fault+0x26/0x30
[ 2569.192229][ T5091] RIP: 0010:__get_user_8+0x11/0x20
[ 2569.197792][ T5091] Code: 48 c1 fa 3f 48 09 d0 0f 01 cb 8b 10 31 c0 0f 01 ca c3 0f 1f 80 00 00 00 00 f3 0f 1e fa 48 89 c2 48 c1 fa 3f 48 09 d0 0f 01 cb <48> 8b 10 31 c0 0f 01 ca c3 66 0f 1f 44 00 00 f3 0f 1e fa 0f 01 cb
[ 2569.217424][ T5091] RSP: 0000:ffffc900047cfdf8 EFLAGS: 00050202
[ 2569.223503][ T5091] RAX: 0000555555796da8 RBX: ffff888027da0000 RCX: ffffc900047cfd60
[ 2569.231491][ T5091] RDX: 0000000000000000 RSI: ffffffff81b655ac RDI: ffffffff8b2f9d00
[ 2569.239647][ T5091] RBP: ffffc900047cfef8 R08: 0000000000000000 R09: fffffbfff1e753fa
[ 2569.247630][ T5091] R10: ffffffff8f3a9fd7 R11: 0000000000000000 R12: ffff888027da0000
[ 2569.255609][ T5091] R13: ffffc900047cff58 R14: ffffc900047cfe60 R15: 0000000000000000
[ 2569.263599][ T5091]  ? __rseq_handle_notify_resume+0x14c/0x1020
[ 2569.269697][ T5091]  __rseq_handle_notify_resume+0x183/0x1020
[ 2569.275627][ T5091]  ? __do_sys_rseq+0x750/0x750
[ 2569.280496][ T5091]  ? folio_memcg_unlock+0x240/0x240
[ 2569.285708][ T5091]  ? __ia32_sys_clock_getres_time32+0x280/0x280
[ 2569.291978][ T5091]  syscall_exit_to_user_mode+0x1a9/0x2b0
[ 2569.297636][ T5091]  do_syscall_64+0xe0/0x250
[ 2569.302164][ T5091]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 2569.308064][ T5091] RIP: 0033:0x7f212b0a81b5
[ 2569.312570][ T5091] Code: 24 0c 89 3c 24 48 89 4c 24 18 e8 f6 b9 ff ff 4c 8b 54 24 18 48 8b 54 24 10 41 89 c0 8b 74 24 0c 8b 3c 24 b8 e6 00 00 00 0f 05 <44> 89 c7 48 89 04 24 e8 4f ba ff ff 48 8b 04 24 48 83 c4 28 f7 d8
[ 2569.332193][ T5091] RSP: 002b:00007ffc7b20bb10 EFLAGS: 00000293 ORIG_RAX: 00000000000000e6
[ 2569.340626][ T5091] RAX: 0000000000000000 RBX: 00000000000028ed RCX: 00007f212b0a81b5
[ 2569.348602][ T5091] RDX: 00007ffc7b20bb50 RSI: 0000000000000000 RDI: 0000000000000000
[ 2569.356662][ T5091] RBP: 00007ffc7b20bbdc R08: 0000000000000000 R09: 0000000000000001
[ 2569.364901][ T5091] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000032
[ 2569.372938][ T5091] R13: 00000000002731bd R14: 00000000002731bd R15: 0000000000000000
[ 2569.380968][ T5091]  </TASK>
[ 2569.396096][   T28] audit: type=1800 audit(1706039200.391:1914): pid=27356 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.1" name="cgroup.controllers" dev="sda1" ino=1947 res=0 errno=0
19:46:41 executing program 1:
socket$kcm(0x10, 0x400000002, 0x0)
socket$inet(0x2, 0x2, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x3, &(0x7f00000000c0)=@framed, &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
write$binfmt_script(r1, &(0x7f0000000480)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r1, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r2 = socket$rxrpc(0x21, 0x2, 0xa)
r3 = syz_genetlink_get_family_id$batadv(&(0x7f0000007580), 0xffffffffffffffff)
sendmsg$BATADV_CMD_SET_HARDIF(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001740)={&(0x7f0000000000)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16, @ANYBLOB, @ANYRES32=r0], 0x2c}}, 0x0)
sendmsg$BATADV_CMD_GET_GATEWAYS(0xffffffffffffffff, &(0x7f0000007680)={0x0, 0x0, &(0x7f0000007640)={&(0x7f0000000000)=ANY=[@ANYBLOB="46040000", @ANYRES16=r3, @ANYBLOB="ff83050000076dc6d81b", @ANYRES32=r2], 0x4}}, 0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendfile(r5, r4, 0x0, 0x100000002)

[ 2569.556283][ T5091] memory: usage 307200kB, limit 307200kB, failcnt 115568
[ 2569.563371][ T5091] memory+swap: usage 307680kB, limit 9007199254740988kB, failcnt 0
[ 2569.582230][ T5091] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[ 2569.597672][ T5091] Memory cgroup stats for /syz3:
[ 2569.597816][ T5091] cache 0
[ 2569.622605][ T5091] rss 0
[ 2569.639486][ T5091] rss_huge 0
[ 2569.642747][ T5091] shmem 0
[ 2569.645780][ T5091] mapped_file 0
[ 2569.659849][ T5091] dirty 0
[ 2569.662918][ T5091] writeback 0
[ 2569.680270][ T5091] workingset_refault_anon 34032
[ 2569.685499][ T5091] workingset_refault_file 1
[ 2569.702477][ T5091] swap 491520
[ 2569.705826][ T5091] swapcached 0
[ 2569.784775][ T5091] pgpgin 157811
[ 2569.791152][ T5091] pgpgout 157811
[ 2569.794754][ T5091] pgfault 348376
[ 2569.825165][ T5091] pgmajfault 33271
[ 2569.852796][ T5091] inactive_anon 0
[ 2569.861160][ T5091] active_anon 0
[ 2569.870491][ T5091] inactive_file 0
[ 2569.878797][ T5091] active_file 0
[ 2569.885790][ T5091] unevictable 0
[ 2569.894293][ T5091] hierarchical_memory_limit 314572800
[ 2569.909458][ T5091] hierarchical_memsw_limit 9223372036854771712
[ 2569.926304][ T5091] total_cache 0
[ 2569.933456][ T5091] total_rss 0
[ 2569.942401][ T5091] total_rss_huge 0
[ 2569.952311][ T5091] total_shmem 0
[ 2569.960071][ T5091] total_mapped_file 0
[ 2569.964209][ T5091] total_dirty 0
[ 2569.966407][T16775] infiniband syz2: set down
[ 2569.968420][ T5091] total_writeback 0
[ 2569.976588][ T5091] total_workingset_refault_anon 34032
[ 2569.982125][ T5091] total_workingset_refault_file 1
[ 2569.993010][ T5091] total_swap 491520
[ 2570.001541][ T5091] total_swapcached 0
[ 2570.010132][ T5091] total_pgpgin 157811
[ 2570.015680][ T5091] total_pgpgout 157811
[ 2570.025773][ T5091] total_pgfault 348376
[ 2570.040343][ T5091] total_pgmajfault 33271
[ 2570.046982][   T28] audit: type=1804 audit(1706039201.701:1915): pid=27361 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir245649211/syzkaller.jQ7tPM/19/cgroup.controllers" dev="sda1" ino=1947 res=1 errno=0
[ 2570.052512][ T5091] total_inactive_anon 0
[ 2570.091001][ T5091] total_active_anon 0
[ 2570.095632][ T5091] total_inactive_file 0
[ 2570.100443][ T5091] total_active_file 0
[ 2570.112979][ T5091] total_unevictable 0
[ 2570.119550][ T5091] anon_cost 0
[ 2570.123477][ T5091] file_cost 0
[ 2570.127813][ T5091] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=27358,uid=0
[ 2570.149369][ T5091] Memory cgroup out of memory: Killed process 27358 (syz-executor.3) total-vm:54504kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
19:46:41 executing program 3:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x32}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000280)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000240)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=@newlink={0x48, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0xe403, r2}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @veth={{0x9}, {0x18, 0x2, 0x0, 0x1, @val=@VETH_INFO_PEER={0x14}}}}]}, 0x48}, 0x7b00}, 0x0)

19:46:42 executing program 1:
socket$kcm(0x10, 0x400000002, 0x0)
socket$inet(0x2, 0x2, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x3, &(0x7f00000000c0)=@framed, &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
write$binfmt_script(r1, &(0x7f0000000480)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r1, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r2 = socket$rxrpc(0x21, 0x2, 0xa)
r3 = syz_genetlink_get_family_id$batadv(&(0x7f0000007580), 0xffffffffffffffff)
sendmsg$BATADV_CMD_SET_HARDIF(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001740)={&(0x7f0000000000)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16, @ANYBLOB, @ANYRES32=r0], 0x2c}}, 0x0)
sendmsg$BATADV_CMD_GET_GATEWAYS(0xffffffffffffffff, &(0x7f0000007680)={0x0, 0x0, &(0x7f0000007640)={&(0x7f0000000000)=ANY=[@ANYBLOB="46040000", @ANYRES16=r3, @ANYBLOB="ff83050000076dc6d81b", @ANYRES32=r2], 0x4}}, 0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendfile(r5, r4, 0x0, 0x100000002)

[ 2570.684000][T16775] team0 (unregistering): Port device team_slave_1 removed
[ 2570.753483][ T5091] syz-executor.3 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[ 2570.776967][ T5091] CPU: 1 PID: 5091 Comm: syz-executor.3 Not tainted 6.7.0-syzkaller-12291-g435e202d645c #0
[ 2570.787029][ T5091] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 2570.797111][ T5091] Call Trace:
[ 2570.800418][ T5091]  <TASK>
[ 2570.803394][ T5091]  dump_stack_lvl+0x125/0x1b0
[ 2570.808296][ T5091]  dump_header+0x103/0x900
[ 2570.813115][ T5091]  oom_kill_process+0x270/0xa60
[ 2570.818017][ T5091]  out_of_memory+0x344/0x16c0
[ 2570.822728][ T5091]  ? mutex_trylock+0xa0/0x130
[ 2570.827515][ T5091]  ? oom_killer_disable+0x2d0/0x2d0
[ 2570.832734][ T5091]  ? rcu_read_unlock+0x1c/0x60
[ 2570.837522][ T5091]  mem_cgroup_out_of_memory+0x206/0x270
[ 2570.843082][ T5091]  ? mem_cgroup_margin+0x130/0x130
[ 2570.848205][ T5091]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2570.853719][ T5091]  try_charge_memcg+0xcd1/0x11a0
[ 2570.858705][ T5091]  ? mem_cgroup_handle_over_high+0x570/0x570
[ 2570.864728][ T5091]  ? rcu_read_unlock+0x1c/0x60
[ 2570.870051][ T5091]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2570.875813][ T5091]  ? __radix_tree_lookup+0x21f/0x2c0
[ 2570.881250][ T5091]  mem_cgroup_swapin_charge_folio+0x138/0x380
[ 2570.890169][ T5091]  __read_swap_cache_async+0x4e1/0x600
[ 2570.895834][ T5091]  ? filemap_get_incore_folio+0x160/0x160
[ 2570.901571][ T5091]  ? swp_swap_info+0xcf/0x130
[ 2570.906260][ T5091]  ? swapcache_prepare+0x20/0x20
[ 2570.911222][ T5091]  ? hlock_class+0x4e/0x130
[ 2570.915847][ T5091]  ? mark_lock+0xb5/0xc50
[ 2570.920216][ T5091]  swap_cluster_readahead+0x3e6/0x710
[ 2570.925609][ T5091]  ? read_swap_cache_async+0x1a0/0x1a0
[ 2570.931074][ T5091]  ? reacquire_held_locks+0x410/0x4c0
[ 2570.936542][ T5091]  ? xas_descend+0x141/0x4e0
[ 2570.941159][ T5091]  ? filemap_get_entry+0x23e/0x460
[ 2570.946353][ T5091]  swapin_readahead+0x132/0xe60
[ 2570.951351][ T5091]  ? get_swap_device+0x363/0x5e0
[ 2570.956324][ T5091]  ? exit_swap_address_space+0x250/0x250
[ 2570.961991][ T5091]  ? __filemap_get_folio+0x2b0/0xaa0
[ 2570.967330][ T5091]  ? swap_cache_get_folio+0x1dc/0x460
[ 2570.972953][ T5091]  ? get_swap_device+0x245/0x5e0
[ 2570.977917][ T5091]  ? free_pages_and_swap_cache+0xa0/0xa0
[ 2570.983560][ T5091]  ? lock_sync+0x190/0x190
[ 2570.987984][ T5091]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2570.993998][ T5091]  do_swap_page+0x4a6/0x3190
[ 2570.998626][ T5091]  ? rcu_is_watching+0x12/0xb0
[ 2571.003422][ T5091]  ? __pte_offset_map+0x1b9/0x540
[ 2571.008977][ T5091]  ? unmap_mapping_folio+0x3b0/0x3b0
[ 2571.014279][ T5091]  ? pte_offset_map_nolock+0xfa/0x1b0
[ 2571.019679][ T5091]  ? __pte_offset_map+0x540/0x540
[ 2571.026823][ T5091]  __handle_mm_fault+0x13a0/0x4900
[ 2571.033110][ T5091]  ? clear_huge_page+0x2e0/0x2e0
[ 2571.038353][ T5091]  ? find_vma+0x112/0x1b0
[ 2571.042712][ T5091]  ? get_unmapped_area+0x400/0x400
[ 2571.049844][ T5091]  handle_mm_fault+0x47a/0xa10
[ 2571.054715][ T5091]  ? lock_mm_and_find_vma+0xa6/0x580
[ 2571.060190][ T5091]  do_user_addr_fault+0x3f8/0x1030
[ 2571.066044][ T5091]  ? rcu_is_watching+0x12/0xb0
[ 2571.071299][ T5091]  exc_page_fault+0x5d/0xc0
[ 2571.075833][ T5091]  asm_exc_page_fault+0x26/0x30
[ 2571.080694][ T5091] RIP: 0010:__get_user_8+0x11/0x20
[ 2571.085814][ T5091] Code: 48 c1 fa 3f 48 09 d0 0f 01 cb 8b 10 31 c0 0f 01 ca c3 0f 1f 80 00 00 00 00 f3 0f 1e fa 48 89 c2 48 c1 fa 3f 48 09 d0 0f 01 cb <48> 8b 10 31 c0 0f 01 ca c3 66 0f 1f 44 00 00 f3 0f 1e fa 0f 01 cb
[ 2571.105442][ T5091] RSP: 0018:ffffc900047cfdf8 EFLAGS: 00050202
[ 2571.111531][ T5091] RAX: 0000555555796da8 RBX: ffff888027da0000 RCX: ffffc900047cfd60
[ 2571.119538][ T5091] RDX: 0000000000000000 RSI: ffffffff81b655ac RDI: ffffffff8b2f9d00
[ 2571.128903][ T5091] RBP: ffffc900047cfef8 R08: 0000000000000000 R09: fffffbfff1e753fa
[ 2571.136965][ T5091] R10: ffffffff8f3a9fd7 R11: 0000000000000000 R12: ffff888027da0000
[ 2571.144944][ T5091] R13: ffffc900047cff58 R14: ffffc900047cfe60 R15: 0000000000000000
[ 2571.152934][ T5091]  ? __rseq_handle_notify_resume+0x14c/0x1020
[ 2571.159033][ T5091]  __rseq_handle_notify_resume+0x183/0x1020
[ 2571.164950][ T5091]  ? __do_sys_rseq+0x750/0x750
[ 2571.169731][ T5091]  ? folio_memcg_unlock+0x240/0x240
[ 2571.175475][ T5091]  ? __ia32_sys_clock_getres_time32+0x280/0x280
[ 2571.189896][ T5091]  syscall_exit_to_user_mode+0x1a9/0x2b0
[ 2571.195584][ T5091]  do_syscall_64+0xe0/0x250
[ 2571.200838][ T5091]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 2571.206764][ T5091] RIP: 0033:0x7f212b0a81b5
[ 2571.211228][ T5091] Code: 24 0c 89 3c 24 48 89 4c 24 18 e8 f6 b9 ff ff 4c 8b 54 24 18 48 8b 54 24 10 41 89 c0 8b 74 24 0c 8b 3c 24 b8 e6 00 00 00 0f 05 <44> 89 c7 48 89 04 24 e8 4f ba ff ff 48 8b 04 24 48 83 c4 28 f7 d8
[ 2571.230844][ T5091] RSP: 002b:00007ffc7b20bb10 EFLAGS: 00000293 ORIG_RAX: 00000000000000e6
[ 2571.239266][ T5091] RAX: 0000000000000000 RBX: 00000000000028ee RCX: 00007f212b0a81b5
[ 2571.247252][ T5091] RDX: 00007ffc7b20bb50 RSI: 0000000000000000 RDI: 0000000000000000
[ 2571.255230][ T5091] RBP: 00007ffc7b20bbdc R08: 0000000000000000 R09: 0000000000000001
[ 2571.263210][ T5091] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000032
[ 2571.271197][ T5091] R13: 000000000027384b R14: 000000000027384b R15: 0000000000000000
[ 2571.279194][ T5091]  </TASK>
[ 2571.289073][ T5091] memory: usage 307200kB, limit 307200kB, failcnt 115808
[ 2571.390392][T16775] team0 (unregistering): Port device team_slave_0 removed
[ 2571.396057][ T5091] memory+swap: usage 307552kB, limit 9007199254740988kB, failcnt 0
[ 2571.416467][ T5091] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[ 2571.423820][ T5091] Memory cgroup stats for /syz3:
[ 2571.423998][ T5091] cache 0
[ 2571.452919][T16775] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 2571.459415][ T5091] rss 0
[ 2571.482053][ T5091] rss_huge 0
[ 2571.506192][ T5091] shmem 0
[ 2571.509287][ T5091] mapped_file 0
[ 2571.533032][ T5091] dirty 0
[ 2571.538420][ T5091] writeback 0
[ 2571.557919][T16775] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 2571.566364][ T5091] workingset_refault_anon 34111
[ 2571.573099][ T5091] workingset_refault_file 1
[ 2571.578541][ T5091] swap 360448
[ 2571.601342][ T5091] swapcached 0
[ 2571.607179][ T5091] pgpgin 157902
[ 2571.613328][ T5091] pgpgout 157902
[ 2571.629500][   T28] audit: type=1804 audit(1706039203.271:1916): pid=27365 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir245649211/syzkaller.jQ7tPM/20/cgroup.controllers" dev="sda1" ino=1952 res=1 errno=0
[ 2571.672645][ T5091] pgfault 348520
[ 2571.685004][ T5091] pgmajfault 33342
[ 2571.690116][ T5091] inactive_anon 0
[ 2571.694093][ T5091] active_anon 0
[ 2571.699366][ T5091] inactive_file 0
[ 2571.709494][ T5091] active_file 0
[ 2571.720343][ T5091] unevictable 0
[ 2571.731947][ T5091] hierarchical_memory_limit 314572800
[ 2571.746093][ T5091] hierarchical_memsw_limit 9223372036854771712
[ 2571.760101][ T5091] total_cache 0
[ 2571.768149][ T5091] total_rss 0
[ 2571.773983][ T5091] total_rss_huge 0
[ 2571.787569][ T5091] total_shmem 0
[ 2571.814497][ T5091] total_mapped_file 0
[ 2571.837724][ T5091] total_dirty 0
[ 2571.848828][ T5091] total_writeback 0
[ 2571.864929][ T5091] total_workingset_refault_anon 34111
[ 2571.890552][ T5091] total_workingset_refault_file 1
[ 2571.895644][ T5091] total_swap 360448
[ 2571.917958][ T5091] total_swapcached 0
19:46:43 executing program 1:
socket$kcm(0x10, 0x400000002, 0x0)
socket$inet(0x2, 0x2, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x3, &(0x7f00000000c0)=@framed, &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
write$binfmt_script(r1, &(0x7f0000000480)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r1, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r2 = socket$rxrpc(0x21, 0x2, 0xa)
r3 = syz_genetlink_get_family_id$batadv(&(0x7f0000007580), 0xffffffffffffffff)
sendmsg$BATADV_CMD_SET_HARDIF(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001740)={&(0x7f0000000000)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16, @ANYBLOB, @ANYRES32=r0], 0x2c}}, 0x0)
sendmsg$BATADV_CMD_GET_GATEWAYS(0xffffffffffffffff, &(0x7f0000007680)={0x0, 0x0, &(0x7f0000007640)={&(0x7f0000000000)=ANY=[@ANYBLOB="46040000", @ANYRES16=r3, @ANYBLOB="ff83050000076dc6d81b", @ANYRES32=r2], 0x4}}, 0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendfile(r5, r4, 0x0, 0x100000002)

[ 2571.954490][ T5091] total_pgpgin 157902
[ 2571.962680][ T5091] total_pgpgout 157902
[ 2571.968505][ T5091] total_pgfault 348520
[ 2571.972618][ T5091] total_pgmajfault 33342
[ 2571.979142][ T5091] total_inactive_anon 0
[ 2571.983341][ T5091] total_active_anon 0
[ 2571.987941][ T5091] total_inactive_file 0
[ 2571.992225][ T5091] total_active_file 0
[ 2571.996802][ T5091] total_unevictable 0
[ 2572.000818][ T5091] anon_cost 0
[ 2572.004276][ T5091] file_cost 0
[ 2572.058070][ T5091] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=27363,uid=0
[ 2572.119008][ T5091] Memory cgroup out of memory: Killed process 27363 (syz-executor.3) total-vm:54504kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
19:46:43 executing program 3:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x32}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000280)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000240)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=@newlink={0x48, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0xe403, r2}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @veth={{0x9}, {0x18, 0x2, 0x0, 0x1, @val=@VETH_INFO_PEER={0x14}}}}]}, 0x48}, 0x7c00}, 0x0)

[ 2572.288262][T16775] bond0 (unregistering): Released all slaves
[ 2572.409296][ T5094] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[ 2572.420319][ T5094] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[ 2572.443475][ T5094] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[ 2572.459983][   T28] audit: type=1804 audit(1706039204.111:1917): pid=27369 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir245649211/syzkaller.jQ7tPM/21/cgroup.controllers" dev="sda1" ino=1952 res=1 errno=0
[ 2572.499928][ T5094] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[ 2572.514699][ T5094] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3
[ 2572.523843][ T5094] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[ 2572.643356][T27372] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2572.667611][T27372] CPU: 1 PID: 27372 Comm: syz-executor.3 Not tainted 6.7.0-syzkaller-12291-g435e202d645c #0
[ 2572.677837][T27372] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 2572.687927][T27372] Call Trace:
[ 2572.691328][T27372]  <TASK>
[ 2572.694309][T27372]  dump_stack_lvl+0x125/0x1b0
[ 2572.699026][T27372]  dump_header+0x103/0x900
[ 2572.703504][T27372]  oom_kill_process+0x270/0xa60
[ 2572.708410][T27372]  out_of_memory+0x344/0x16c0
[ 2572.713155][T27372]  ? oom_killer_disable+0x2d0/0x2d0
[ 2572.718414][T27372]  ? rcu_read_unlock+0x1c/0x60
[ 2572.723237][T27372]  mem_cgroup_out_of_memory+0x206/0x270
[ 2572.728817][T27372]  ? mem_cgroup_margin+0x130/0x130
[ 2572.733959][T27372]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2572.739380][T27372]  try_charge_memcg+0xcd1/0x11a0
[ 2572.744370][T27372]  ? mem_cgroup_handle_over_high+0x570/0x570
[ 2572.750395][T27372]  ? get_mem_cgroup_from_objcg+0xb5/0x2a0
[ 2572.756168][T27372]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2572.761763][T27372]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2572.767269][T27372]  __memcg_kmem_charge_page+0xdd/0x2a0
[ 2572.772771][T27372]  memcg_charge_kernel_stack+0xc3/0x1f0
[ 2572.778368][T27372]  copy_process+0x527/0x97b0
[ 2572.783005][T27372]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2572.789110][T27372]  ? page_ext_put+0x43/0xd0
[ 2572.793677][T27372]  ? pidfd_prepare+0x80/0x80
[ 2572.798492][T27372]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2572.803902][T27372]  ? preempt_count_sub+0x160/0x160
[ 2572.809047][T27372]  ? print_usage_bug.part.0+0x550/0x550
[ 2572.814651][T27372]  ? __might_fault+0xe6/0x1a0
[ 2572.819390][T27372]  ? _copy_from_user+0x5d/0xf0
[ 2572.824213][T27372]  kernel_clone+0xfd/0x930
[ 2572.828771][T27372]  ? create_io_thread+0xe0/0xe0
[ 2572.833700][T27372]  __do_sys_clone3+0x1f1/0x260
[ 2572.838525][T27372]  ? __do_sys_clone+0x100/0x100
[ 2572.843432][T27372]  ? do_user_addr_fault+0x663/0x1030
[ 2572.848914][T27372]  do_syscall_64+0xd3/0x250
[ 2572.853470][T27372]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 2572.859398][T27372] RIP: 0033:0x7f212b0a8b99
[ 2572.863838][T27372] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 2572.883912][T27372] RSP: 002b:00007ffc7b20b738 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 2572.892389][T27372] RAX: ffffffffffffffda RBX: 00007f212b051270 RCX: 00007f212b0a8b99
[ 2572.900417][T27372] RDX: 00007f212b051270 RSI: 0000000000000058 RDI: 00007ffc7b20b780
[ 2572.908513][T27372] RBP: 00007f212be566c0 R08: 00007f212be566c0 R09: 00007ffc7b20b867
[ 2572.916514][T27372] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 2572.924517][T27372] R13: 000000000000000b R14: 00007ffc7b20b780 R15: 00007ffc7b20b868
[ 2572.932546][T27372]  </TASK>
[ 2572.967661][T27372] memory: usage 307200kB, limit 307200kB, failcnt 115994
[ 2572.998976][T27372] memory+swap: usage 307580kB, limit 9007199254740988kB, failcnt 0
19:46:44 executing program 1:
socket$kcm(0x10, 0x400000002, 0x0)
socket$inet(0x2, 0x2, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
write$binfmt_script(r0, &(0x7f0000000480)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r1 = socket$rxrpc(0x21, 0x2, 0xa)
r2 = syz_genetlink_get_family_id$batadv(&(0x7f0000007580), 0xffffffffffffffff)
sendmsg$BATADV_CMD_SET_HARDIF(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001740)={&(0x7f0000000000)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16, @ANYBLOB="2d0100000000000000000500f6ff08000300"], 0x2c}}, 0x0)
sendmsg$BATADV_CMD_GET_GATEWAYS(0xffffffffffffffff, &(0x7f0000007680)={0x0, 0x0, &(0x7f0000007640)={&(0x7f0000000000)=ANY=[@ANYBLOB="46040000", @ANYRES16=r2, @ANYBLOB="ff83050000076dc6d81b", @ANYRES32=r1], 0x4}}, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendfile(r4, r3, 0x0, 0x100000002)

[ 2573.020359][T27372] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0
[ 2573.029781][T27372] Memory cgroup stats for /syz3:
[ 2573.029944][T27372] cache 0
[ 2573.086156][T27372] rss 12288
[ 2573.089395][T27372] rss_huge 0
[ 2573.092610][T27372] shmem 0
[ 2573.095566][T27372] mapped_file 0
[ 2573.130676][T27372] dirty 0
[ 2573.133669][T27372] writeback 0
[ 2573.148609][T27372] workingset_refault_anon 34173
[ 2573.150041][T16775] team0 (unregistering): Port device team_slave_1 removed
[ 2573.153598][T27372] workingset_refault_file 1
[ 2573.180029][T27372] swap 389120
[ 2573.183552][T27372] swapcached 8192
[ 2573.206044][T27372] pgpgin 157975
[ 2573.209566][T27372] pgpgout 157972
[ 2573.217366][T16775] team0 (unregistering): Port device team_slave_0 removed
[ 2573.231972][T27372] pgfault 348640
[ 2573.235574][T27372] pgmajfault 33401
[ 2573.256374][T27372] inactive_anon 4096
[ 2573.266125][T27372] active_anon 8192
[ 2573.270870][T27372] inactive_file 0
[ 2573.283869][T27372] active_file 0
[ 2573.291586][T16775] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 2573.305043][T27372] unevictable 0
[ 2573.312859][T27372] hierarchical_memory_limit 314572800
[ 2573.323494][T27372] hierarchical_memsw_limit 9223372036854771712
[ 2573.338065][T27372] total_cache 0
[ 2573.345173][T27372] total_rss 12288
[ 2573.365903][T27372] total_rss_huge 0
[ 2573.379532][T27372] total_shmem 0
[ 2573.392250][T27372] total_mapped_file 0
[ 2573.398979][T16775] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 2573.412940][T27372] total_dirty 0
[ 2573.425083][T27372] total_writeback 0
[ 2573.431849][   T28] audit: type=1804 audit(1706039205.071:1918): pid=27376 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir245649211/syzkaller.jQ7tPM/22/cgroup.controllers" dev="sda1" ino=1952 res=1 errno=0
[ 2573.463124][T27372] total_workingset_refault_anon 34173
[ 2573.476955][T27372] total_workingset_refault_file 1
[ 2573.494509][T27372] total_swap 389120
[ 2573.510738][T27372] total_swapcached 8192
[ 2573.524281][T27372] total_pgpgin 157975
[ 2573.537379][T27372] total_pgpgout 157972
[ 2573.552143][T27372] total_pgfault 348640
[ 2573.568076][T27372] total_pgmajfault 33401
[ 2573.572751][T27372] total_inactive_anon 4096
[ 2573.579439][T27372] total_active_anon 8192
[ 2573.583946][T27372] total_inactive_file 0
[ 2573.597024][T27372] total_active_file 0
[ 2573.602901][T27372] total_unevictable 0
[ 2573.618890][T27372] anon_cost 0
[ 2573.622436][T27372] file_cost 0
[ 2573.641309][T27372] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=27372,uid=0
[ 2573.669269][T27372] Memory cgroup out of memory: Killed process 27372 (syz-executor.3) total-vm:54504kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
19:46:45 executing program 3:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x32}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000280)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000240)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=@newlink={0x48, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0xe403, r2}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @veth={{0x9}, {0x18, 0x2, 0x0, 0x1, @val=@VETH_INFO_PEER={0x14}}}}]}, 0x48}, 0x7d00}, 0x0)

[ 2573.988960][T16775] bond0 (unregistering): Released all slaves
19:46:45 executing program 1:
socket$kcm(0x10, 0x400000002, 0x0)
socket$inet(0x2, 0x2, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
write$binfmt_script(r0, &(0x7f0000000480)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r1 = socket$rxrpc(0x21, 0x2, 0xa)
r2 = syz_genetlink_get_family_id$batadv(&(0x7f0000007580), 0xffffffffffffffff)
sendmsg$BATADV_CMD_SET_HARDIF(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001740)={&(0x7f0000000000)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16, @ANYBLOB="2d0100000000000000000500f6ff08000300"], 0x2c}}, 0x0)
sendmsg$BATADV_CMD_GET_GATEWAYS(0xffffffffffffffff, &(0x7f0000007680)={0x0, 0x0, &(0x7f0000007640)={&(0x7f0000000000)=ANY=[@ANYBLOB="46040000", @ANYRES16=r2, @ANYBLOB="ff83050000076dc6d81b", @ANYRES32=r1], 0x4}}, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendfile(r4, r3, 0x0, 0x100000002)

[ 2574.238297][T26667] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[ 2574.249666][T26667] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[ 2574.262770][T26667] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[ 2574.299922][T26667] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[ 2574.328306][T26667] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3
[ 2574.336535][T26667] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[ 2574.474310][T27380] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2574.519950][T27380] CPU: 1 PID: 27380 Comm: syz-executor.3 Not tainted 6.7.0-syzkaller-12291-g435e202d645c #0
[ 2574.530095][T27380] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 2574.540190][T27380] Call Trace:
[ 2574.543488][T27380]  <TASK>
[ 2574.546436][T27380]  dump_stack_lvl+0x125/0x1b0
[ 2574.549388][T16775] team0 (unregistering): Port device team_slave_1 removed
[ 2574.551133][T27380]  dump_header+0x103/0x900
[ 2574.551179][T27380]  oom_kill_process+0x270/0xa60
[ 2574.567864][T27380]  out_of_memory+0x344/0x16c0
[ 2574.572596][T27380]  ? oom_killer_disable+0x2d0/0x2d0
[ 2574.576170][   T28] audit: type=1804 audit(1706039206.221:1919): pid=27384 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir245649211/syzkaller.jQ7tPM/23/cgroup.controllers" dev="sda1" ino=1952 res=1 errno=0
[ 2574.577839][T27380]  ? rcu_read_unlock+0x1c/0x60
[ 2574.610512][T27380]  mem_cgroup_out_of_memory+0x206/0x270
[ 2574.616110][T27380]  ? mem_cgroup_margin+0x130/0x130
[ 2574.621262][T27380]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2574.626750][T27380]  try_charge_memcg+0xcd1/0x11a0
[ 2574.631712][T27380]  ? mem_cgroup_handle_over_high+0x570/0x570
[ 2574.637702][T27380]  ? get_mem_cgroup_from_objcg+0xb5/0x2a0
[ 2574.643777][T27380]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2574.649163][T27380]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2574.654730][T27380]  __memcg_kmem_charge_page+0xdd/0x2a0
[ 2574.660644][T27380]  memcg_charge_kernel_stack+0xc3/0x1f0
[ 2574.666212][T27380]  copy_process+0x1532/0x97b0
[ 2574.670902][T27380]  ? hlock_class+0x4e/0x130
[ 2574.675422][T27380]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2574.681412][T27380]  ? page_ext_put+0x43/0xd0
[ 2574.685965][T27380]  ? hlock_class+0x4e/0x130
[ 2574.691657][T27380]  ? pidfd_prepare+0x80/0x80
[ 2574.696279][T27380]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2574.701862][T27380]  ? preempt_count_sub+0x160/0x160
[ 2574.707021][T27380]  ? __lock_acquire+0x1502/0x3b30
[ 2574.712069][T27380]  ? __might_fault+0xe6/0x1a0
[ 2574.716973][T27380]  ? _copy_from_user+0x5d/0xf0
[ 2574.721790][T27380]  kernel_clone+0xfd/0x930
[ 2574.726249][T27380]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2574.732244][T27380]  ? create_io_thread+0xe0/0xe0
[ 2574.737115][T27380]  ? find_held_lock+0x2d/0x110
[ 2574.741900][T27380]  __do_sys_clone3+0x1f1/0x260
[ 2574.746676][T27380]  ? __do_sys_clone+0x100/0x100
[ 2574.751583][T27380]  do_syscall_64+0xd3/0x250
[ 2574.756108][T27380]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 2574.762012][T27380] RIP: 0033:0x7f212b0a8b99
[ 2574.766432][T27380] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 2574.786240][T27380] RSP: 002b:00007ffc7b20b738 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 2574.794770][T27380] RAX: ffffffffffffffda RBX: 00007f212b051270 RCX: 00007f212b0a8b99
[ 2574.802754][T27380] RDX: 00007f212b051270 RSI: 0000000000000058 RDI: 00007ffc7b20b780
[ 2574.810733][T27380] RBP: 00007f212be566c0 R08: 00007f212be566c0 R09: 00007ffc7b20b867
[ 2574.818711][T27380] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 2574.827329][T27380] R13: 000000000000000b R14: 00007ffc7b20b780 R15: 00007ffc7b20b868
[ 2574.835330][T27380]  </TASK>
[ 2574.860613][T27380] memory: usage 307200kB, limit 307200kB, failcnt 116328
[ 2574.869847][T26667] Bluetooth: hci6: command 0x0409 tx timeout
[ 2574.876981][T27380] memory+swap: usage 307632kB, limit 9007199254740988kB, failcnt 0
19:46:46 executing program 1:
socket$kcm(0x10, 0x400000002, 0x0)
socket$inet(0x2, 0x2, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
write$binfmt_script(r0, &(0x7f0000000480)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r1 = socket$rxrpc(0x21, 0x2, 0xa)
r2 = syz_genetlink_get_family_id$batadv(&(0x7f0000007580), 0xffffffffffffffff)
sendmsg$BATADV_CMD_SET_HARDIF(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001740)={&(0x7f0000000000)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16, @ANYBLOB="2d0100000000000000000500f6ff08000300"], 0x2c}}, 0x0)
sendmsg$BATADV_CMD_GET_GATEWAYS(0xffffffffffffffff, &(0x7f0000007680)={0x0, 0x0, &(0x7f0000007640)={&(0x7f0000000000)=ANY=[@ANYBLOB="46040000", @ANYRES16=r2, @ANYBLOB="ff83050000076dc6d81b", @ANYRES32=r1], 0x4}}, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendfile(r4, r3, 0x0, 0x100000002)

[ 2574.972376][T27380] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[ 2574.984532][T16775] team0 (unregistering): Port device team_slave_0 removed
[ 2575.012066][T27380] Memory cgroup stats for /syz3:
[ 2575.012244][T27380] cache 0
[ 2575.036160][T27380] rss 0
[ 2575.038996][T27380] rss_huge 0
[ 2575.042230][T27380] shmem 0
[ 2575.045200][T27380] mapped_file 0
[ 2575.086353][T27380] dirty 0
[ 2575.089371][T27380] writeback 0
[ 2575.119140][T27380] workingset_refault_anon 34290
[ 2575.136182][T27380] workingset_refault_file 1
[ 2575.140746][T27380] swap 442368
[ 2575.156549][T27380] swapcached 0
[ 2575.160332][T27380] pgpgin 158104
[ 2575.163826][T27380] pgpgout 158104
[ 2575.192922][T16775] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 2575.206123][T27380] pgfault 348836
[ 2575.209726][T27380] pgmajfault 33512
[ 2575.213466][T27380] inactive_anon 0
[ 2575.220667][T27380] active_anon 0
[ 2575.224399][T27380] inactive_file 0
[ 2575.228223][T27380] active_file 0
[ 2575.231720][T27380] unevictable 0
[ 2575.235207][T27380] hierarchical_memory_limit 314572800
[ 2575.243662][T27380] hierarchical_memsw_limit 9223372036854771712
[ 2575.250164][T27380] total_cache 0
[ 2575.254518][T27380] total_rss 0
[ 2575.258437][T27380] total_rss_huge 0
[ 2575.262184][T27380] total_shmem 0
[ 2575.265652][T27380] total_mapped_file 0
[ 2575.281181][T27380] total_dirty 0
[ 2575.284698][T27380] total_writeback 0
[ 2575.292038][T27380] total_workingset_refault_anon 34290
[ 2575.308787][T27380] total_workingset_refault_file 1
[ 2575.311213][T16775] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 2575.313845][T27380] total_swap 442368
[ 2575.313856][T27380] total_swapcached 0
[ 2575.342012][T27380] total_pgpgin 158104
[ 2575.366349][   T28] audit: type=1804 audit(1706039207.011:1920): pid=27387 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir245649211/syzkaller.jQ7tPM/24/cgroup.controllers" dev="sda1" ino=1952 res=1 errno=0
[ 2575.366436][T27380] total_pgpgout 158104
[ 2575.400049][T27380] total_pgfault 348836
[ 2575.404173][T27380] total_pgmajfault 33512
[ 2575.408615][T27380] total_inactive_anon 0
[ 2575.412831][T27380] total_active_anon 0
[ 2575.418260][T27380] total_inactive_file 0
[ 2575.422469][T27380] total_active_file 0
[ 2575.426647][T27380] total_unevictable 0
[ 2575.430828][T27380] anon_cost 0
[ 2575.434214][T27380] file_cost 0
[ 2575.437645][T27380] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=27380,uid=0
[ 2575.453336][T27380] Memory cgroup out of memory: Killed process 27380 (syz-executor.3) total-vm:54504kB, anon-rss:380kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
19:46:47 executing program 3:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x32}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000280)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000240)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=@newlink={0x48, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0xe403, r2}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @veth={{0x9}, {0x18, 0x2, 0x0, 0x1, @val=@VETH_INFO_PEER={0x14}}}}]}, 0x48}, 0x7e00}, 0x0)

[ 2575.834167][T16775] bond0 (unregistering): Released all slaves
[ 2576.002216][ T5091] syz-executor.3 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[ 2576.034763][ T5091] CPU: 0 PID: 5091 Comm: syz-executor.3 Not tainted 6.7.0-syzkaller-12291-g435e202d645c #0
[ 2576.044812][ T5091] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 2576.054901][ T5091] Call Trace:
[ 2576.058204][ T5091]  <TASK>
[ 2576.061160][ T5091]  dump_stack_lvl+0x125/0x1b0
[ 2576.065878][ T5091]  dump_header+0x103/0x900
[ 2576.070349][ T5091]  oom_kill_process+0x270/0xa60
[ 2576.075430][ T5091]  out_of_memory+0x344/0x16c0
[ 2576.080159][ T5091]  ? mutex_trylock+0xa0/0x130
[ 2576.084898][ T5091]  ? oom_killer_disable+0x2d0/0x2d0
[ 2576.090620][ T5091]  ? rcu_read_unlock+0x1c/0x60
[ 2576.095419][ T5091]  mem_cgroup_out_of_memory+0x206/0x270
[ 2576.100980][ T5091]  ? mem_cgroup_margin+0x130/0x130
[ 2576.106096][ T5091]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2576.111493][ T5091]  try_charge_memcg+0xcd1/0x11a0
[ 2576.116449][ T5091]  ? mem_cgroup_handle_over_high+0x570/0x570
[ 2576.122450][ T5091]  ? rcu_read_unlock+0x1c/0x60
[ 2576.127243][ T5091]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2576.132630][ T5091]  ? __radix_tree_lookup+0x21f/0x2c0
[ 2576.137937][ T5091]  mem_cgroup_swapin_charge_folio+0x138/0x380
[ 2576.144032][ T5091]  __read_swap_cache_async+0x4e1/0x600
[ 2576.149513][ T5091]  ? filemap_get_incore_folio+0x160/0x160
[ 2576.156130][ T5091]  ? swp_swap_info+0xcf/0x130
[ 2576.160832][ T5091]  ? swapcache_prepare+0x20/0x20
[ 2576.165774][ T5091]  ? hlock_class+0x4e/0x130
[ 2576.170289][ T5091]  ? mark_lock+0xb5/0xc50
[ 2576.174645][ T5091]  swap_cluster_readahead+0x4d4/0x710
[ 2576.180047][ T5091]  ? read_swap_cache_async+0x1a0/0x1a0
[ 2576.185516][ T5091]  ? reacquire_held_locks+0x410/0x4c0
[ 2576.190896][ T5091]  ? xas_descend+0x141/0x4e0
[ 2576.195517][ T5091]  ? filemap_get_entry+0x23e/0x460
[ 2576.200646][ T5091]  swapin_readahead+0x132/0xe60
[ 2576.205511][ T5091]  ? get_swap_device+0x363/0x5e0
[ 2576.210462][ T5091]  ? exit_swap_address_space+0x250/0x250
[ 2576.216207][ T5091]  ? __filemap_get_folio+0x2b0/0xaa0
[ 2576.221529][ T5091]  ? swap_cache_get_folio+0x1dc/0x460
[ 2576.226910][ T5091]  ? get_swap_device+0x245/0x5e0
[ 2576.231855][ T5091]  ? free_pages_and_swap_cache+0xa0/0xa0
[ 2576.237506][ T5091]  ? lock_sync+0x190/0x190
[ 2576.241937][ T5091]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2576.247955][ T5091]  do_swap_page+0x4a6/0x3190
[ 2576.252591][ T5091]  ? rcu_is_watching+0x12/0xb0
[ 2576.257389][ T5091]  ? __pte_offset_map+0x1b9/0x540
[ 2576.262425][ T5091]  ? unmap_mapping_folio+0x3b0/0x3b0
[ 2576.267722][ T5091]  ? pte_offset_map_nolock+0xfa/0x1b0
[ 2576.273098][ T5091]  ? __pte_offset_map+0x540/0x540
[ 2576.278159][ T5091]  __handle_mm_fault+0x13a0/0x4900
[ 2576.283304][ T5091]  ? clear_huge_page+0x2e0/0x2e0
[ 2576.288545][ T5091]  ? find_vma+0x112/0x1b0
[ 2576.292900][ T5091]  ? get_unmapped_area+0x400/0x400
[ 2576.298027][ T5091]  handle_mm_fault+0x47a/0xa10
[ 2576.302809][ T5091]  ? lock_mm_and_find_vma+0xa6/0x580
[ 2576.308102][ T5091]  do_user_addr_fault+0x3f8/0x1030
[ 2576.313225][ T5091]  ? rcu_is_watching+0x12/0xb0
[ 2576.318297][ T5091]  exc_page_fault+0x5d/0xc0
[ 2576.322824][ T5091]  asm_exc_page_fault+0x26/0x30
[ 2576.327717][ T5091] RIP: 0010:__get_user_8+0x11/0x20
[ 2576.332836][ T5091] Code: 48 c1 fa 3f 48 09 d0 0f 01 cb 8b 10 31 c0 0f 01 ca c3 0f 1f 80 00 00 00 00 f3 0f 1e fa 48 89 c2 48 c1 fa 3f 48 09 d0 0f 01 cb <48> 8b 10 31 c0 0f 01 ca c3 66 0f 1f 44 00 00 f3 0f 1e fa 0f 01 cb
[ 2576.352986][ T5091] RSP: 0000:ffffc900047cfdf8 EFLAGS: 00050202
[ 2576.359064][ T5091] RAX: 0000555555796da8 RBX: ffff888027da0000 RCX: ffffc900047cfd60
[ 2576.367040][ T5091] RDX: 0000000000000000 RSI: ffffffff81b655ac RDI: ffffffff8b2f9d00
[ 2576.375015][ T5091] RBP: ffffc900047cfef8 R08: 0000000000000000 R09: fffffbfff1e753fa
[ 2576.382991][ T5091] R10: ffffffff8f3a9fd7 R11: 0000000000000000 R12: ffff888027da0000
[ 2576.391320][ T5091] R13: ffffc900047cff58 R14: ffffc900047cfe60 R15: 0000000000000000
[ 2576.400451][ T5091]  ? __rseq_handle_notify_resume+0x14c/0x1020
[ 2576.406550][ T5091]  __rseq_handle_notify_resume+0x183/0x1020
[ 2576.412472][ T5091]  ? __do_sys_rseq+0x750/0x750
[ 2576.417253][ T5091]  ? folio_memcg_unlock+0x240/0x240
[ 2576.422492][ T5091]  ? __ia32_sys_clock_getres_time32+0x280/0x280
[ 2576.428746][ T5091]  syscall_exit_to_user_mode+0x1a9/0x2b0
[ 2576.434572][ T5091]  do_syscall_64+0xe0/0x250
[ 2576.439088][ T5091]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 2576.444991][ T5091] RIP: 0033:0x7f212b0a81b5
[ 2576.449422][ T5091] Code: 24 0c 89 3c 24 48 89 4c 24 18 e8 f6 b9 ff ff 4c 8b 54 24 18 48 8b 54 24 10 41 89 c0 8b 74 24 0c 8b 3c 24 b8 e6 00 00 00 0f 05 <44> 89 c7 48 89 04 24 e8 4f ba ff ff 48 8b 04 24 48 83 c4 28 f7 d8
[ 2576.469041][ T5091] RSP: 002b:00007ffc7b20bb10 EFLAGS: 00000293 ORIG_RAX: 00000000000000e6
[ 2576.477481][ T5091] RAX: 0000000000000000 RBX: 00000000000028f1 RCX: 00007f212b0a81b5
[ 2576.485464][ T5091] RDX: 00007ffc7b20bb50 RSI: 0000000000000000 RDI: 0000000000000000
[ 2576.493444][ T5091] RBP: 00007ffc7b20bbdc R08: 0000000000000000 R09: 0000000000000001
[ 2576.501625][ T5091] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000032
[ 2576.509624][ T5091] R13: 0000000000274d4b R14: 0000000000274d4b R15: 0000000000000000
[ 2576.517641][ T5091]  </TASK>
[ 2576.537034][T26667] Bluetooth: hci7: command 0x0409 tx timeout
[ 2576.544920][ T5091] memory: usage 307200kB, limit 307200kB, failcnt 116521
[ 2576.552114][ T5091] memory+swap: usage 307560kB, limit 9007199254740988kB, failcnt 0
[ 2576.560113][ T5091] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[ 2576.568269][ T5091] Memory cgroup stats for /syz3:
[ 2576.568445][ T5091] cache 0
[ 2576.576405][ T5091] rss 0
[ 2576.579181][ T5091] rss_huge 0
[ 2576.582388][ T5091] shmem 0
[ 2576.585743][ T5091] mapped_file 0
[ 2576.589404][ T5091] dirty 0
[ 2576.592363][ T5091] writeback 0
[ 2576.595684][ T5091] workingset_refault_anon 34350
19:46:48 executing program 1:
socket$kcm(0x10, 0x400000002, 0x0)
socket$inet(0x2, 0x2, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
write$binfmt_script(r0, &(0x7f0000000480)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket(0x10, 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r1 = socket$rxrpc(0x21, 0x2, 0xa)
r2 = syz_genetlink_get_family_id$batadv(&(0x7f0000007580), 0xffffffffffffffff)
sendmsg$BATADV_CMD_SET_HARDIF(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001740)={&(0x7f0000000000)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16, @ANYBLOB="2d0100000000000000000500f6ff08000300", @ANYRES32], 0x2c}}, 0x0)
sendmsg$BATADV_CMD_GET_GATEWAYS(0xffffffffffffffff, &(0x7f0000007680)={0x0, 0x0, &(0x7f0000007640)={&(0x7f0000000000)=ANY=[@ANYBLOB="46040000", @ANYRES16=r2, @ANYBLOB="ff83050000076dc6d81b", @ANYRES32=r1], 0x4}}, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendfile(r4, r3, 0x0, 0x100000002)

[ 2576.600672][ T5091] workingset_refault_file 1
[ 2576.605199][ T5091] swap 368640
[ 2576.608553][ T5091] swapcached 0
[ 2576.611940][ T5091] pgpgin 158175
[ 2576.615410][ T5091] pgpgout 158175
[ 2576.619202][ T5091] pgfault 348951
[ 2576.622767][ T5091] pgmajfault 33568
[ 2576.633642][ T5091] inactive_anon 0
[ 2576.640489][ T5091] active_anon 0
[ 2576.643987][ T5091] inactive_file 0
[ 2576.647708][ T5091] active_file 0
[ 2576.651210][ T5091] unevictable 0
[ 2576.654680][ T5091] hierarchical_memory_limit 314572800
[ 2576.660141][ T5091] hierarchical_memsw_limit 9223372036854771712
[ 2576.677202][ T5091] total_cache 0
[ 2576.680724][ T5091] total_rss 0
[ 2576.684045][ T5091] total_rss_huge 0
[ 2576.695547][ T5091] total_shmem 0
[ 2576.704231][ T5091] total_mapped_file 0
[ 2576.711491][ T5091] total_dirty 0
[ 2576.715017][ T5091] total_writeback 0
[ 2576.726202][ T5091] total_workingset_refault_anon 34350
[ 2576.731650][ T5091] total_workingset_refault_file 1
[ 2576.766415][ T5091] total_swap 368640
[ 2576.774376][ T5091] total_swapcached 0
[ 2576.781546][ T5091] total_pgpgin 158175
[ 2576.793917][ T5091] total_pgpgout 158175
[ 2576.801510][ T5091] total_pgfault 348951
[ 2576.805617][ T5091] total_pgmajfault 33568
[ 2576.816562][ T5091] total_inactive_anon 0
[ 2576.821007][ T5091] total_active_anon 0
[ 2576.825003][ T5091] total_inactive_file 0
[ 2576.835794][ T5091] total_active_file 0
[ 2576.843282][ T5091] total_unevictable 0
[ 2576.848091][ T5091] anon_cost 0
[ 2576.851447][ T5091] file_cost 0
[ 2576.861293][ T5091] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=27389,uid=0
[ 2576.881060][   T28] audit: type=1804 audit(1706039208.531:1921): pid=27392 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir245649211/syzkaller.jQ7tPM/25/cgroup.controllers" dev="sda1" ino=1956 res=1 errno=0
[ 2576.896151][ T5091] Memory cgroup out of memory: Killed process 27389 (syz-executor.3) total-vm:54504kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 2576.946201][T26667] Bluetooth: hci6: command 0x041b tx timeout
19:46:48 executing program 3:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x32}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000280)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000240)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=@newlink={0x48, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0xe403, r2}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @veth={{0x9}, {0x18, 0x2, 0x0, 0x1, @val=@VETH_INFO_PEER={0x14}}}}]}, 0x48}, 0x7f00}, 0x0)

[ 2577.332901][ T5094] Bluetooth: hci8: unexpected cc 0x0c03 length: 249 > 1
[ 2577.346920][ T5094] Bluetooth: hci8: unexpected cc 0x1003 length: 249 > 9
[ 2577.365846][ T5094] Bluetooth: hci8: unexpected cc 0x1001 length: 249 > 9
[ 2577.391959][ T5094] Bluetooth: hci8: unexpected cc 0x0c23 length: 249 > 4
[ 2577.419894][ T5094] Bluetooth: hci8: unexpected cc 0x0c25 length: 249 > 3
[ 2577.436396][ T5094] Bluetooth: hci8: unexpected cc 0x0c38 length: 249 > 2
19:46:49 executing program 1:
socket$kcm(0x10, 0x400000002, 0x0)
socket$inet(0x2, 0x2, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
write$binfmt_script(r1, &(0x7f0000000480)=ANY=[], 0x208e24b)
socket$netlink(0x10, 0x3, 0x0)
socket(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r2 = socket$rxrpc(0x21, 0x2, 0xa)
r3 = syz_genetlink_get_family_id$batadv(&(0x7f0000007580), 0xffffffffffffffff)
sendmsg$BATADV_CMD_SET_HARDIF(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001740)={&(0x7f0000000000)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16, @ANYBLOB="2d0100000000000000000500f6ff08000300", @ANYRES32=r0], 0x2c}}, 0x0)
sendmsg$BATADV_CMD_GET_GATEWAYS(0xffffffffffffffff, &(0x7f0000007680)={0x0, 0x0, &(0x7f0000007640)={&(0x7f0000000000)=ANY=[@ANYBLOB="46040000", @ANYRES16=r3, @ANYBLOB="ff83050000076dc6d81b", @ANYRES32=r2], 0x4}}, 0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendfile(r5, r4, 0x0, 0x100000002)

[ 2577.682564][T27394] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2577.756048][T27394] CPU: 1 PID: 27394 Comm: syz-executor.3 Not tainted 6.7.0-syzkaller-12291-g435e202d645c #0
[ 2577.766186][T27394] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 2577.776269][T27394] Call Trace:
[ 2577.779556][T27394]  <TASK>
[ 2577.782488][T27394]  dump_stack_lvl+0x125/0x1b0
[ 2577.787749][T27394]  dump_header+0x103/0x900
[ 2577.792642][T27394]  oom_kill_process+0x270/0xa60
[ 2577.797519][T27394]  out_of_memory+0x344/0x16c0
[ 2577.802417][T27394]  ? oom_killer_disable+0x2d0/0x2d0
[ 2577.807657][T27394]  ? rcu_read_unlock+0x1c/0x60
[ 2577.813064][T27394]  mem_cgroup_out_of_memory+0x206/0x270
[ 2577.818624][T27394]  ? mem_cgroup_margin+0x130/0x130
[ 2577.823827][T27394]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2577.830992][T27394]  try_charge_memcg+0xcd1/0x11a0
[ 2577.836185][T27394]  ? mem_cgroup_handle_over_high+0x570/0x570
[ 2577.842271][T27394]  ? get_mem_cgroup_from_objcg+0xb5/0x2a0
[ 2577.849335][T27394]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2577.854727][T27394]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2577.860150][T27394]  __memcg_kmem_charge_page+0xdd/0x2a0
[ 2577.865652][T27394]  memcg_charge_kernel_stack+0xc3/0x1f0
[ 2577.871251][T27394]  copy_process+0x1532/0x97b0
[ 2577.876667][T27394]  ? hlock_class+0x4e/0x130
[ 2577.881205][T27394]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2577.887194][T27394]  ? page_ext_put+0x43/0xd0
[ 2577.891704][T27394]  ? hlock_class+0x4e/0x130
[ 2577.896229][T27394]  ? pidfd_prepare+0x80/0x80
[ 2577.900833][T27394]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2577.906216][T27394]  ? preempt_count_sub+0x160/0x160
[ 2577.911421][T27394]  ? __lock_acquire+0x1502/0x3b30
[ 2577.916452][T27394]  ? __might_fault+0xe6/0x1a0
[ 2577.921154][T27394]  ? _copy_from_user+0x5d/0xf0
[ 2577.925936][T27394]  kernel_clone+0xfd/0x930
[ 2577.930369][T27394]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2577.936360][T27394]  ? create_io_thread+0xe0/0xe0
[ 2577.941248][T27394]  ? find_held_lock+0x2d/0x110
[ 2577.946034][T27394]  __do_sys_clone3+0x1f1/0x260
[ 2577.950816][T27394]  ? __do_sys_clone+0x100/0x100
[ 2577.955714][T27394]  do_syscall_64+0xd3/0x250
[ 2577.960232][T27394]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 2577.966133][T27394] RIP: 0033:0x7f212b0a8b99
[ 2577.970577][T27394] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 2577.990839][T27394] RSP: 002b:00007ffc7b20b738 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 2577.999287][T27394] RAX: ffffffffffffffda RBX: 00007f212b051270 RCX: 00007f212b0a8b99
[ 2578.007271][T27394] RDX: 00007f212b051270 RSI: 0000000000000058 RDI: 00007ffc7b20b780
[ 2578.015346][T27394] RBP: 00007f212be566c0 R08: 00007f212be566c0 R09: 00007ffc7b20b867
[ 2578.023411][T27394] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 2578.031411][T27394] R13: 000000000000000b R14: 00007ffc7b20b780 R15: 00007ffc7b20b868
[ 2578.039438][T27394]  </TASK>
[ 2578.047954][T27394] memory: usage 307200kB, limit 307200kB, failcnt 116765
[ 2578.055034][T27394] memory+swap: usage 307556kB, limit 9007199254740988kB, failcnt 0
[ 2578.073797][T16775] team0 (unregistering): Port device team_slave_1 removed
[ 2578.107766][T27394] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[ 2578.119335][T27394] Memory cgroup stats for /syz3:
[ 2578.119501][T27394] cache 0
[ 2578.160000][T27394] rss 0
[ 2578.164514][T16775] team0 (unregistering): Port device team_slave_0 removed
[ 2578.173369][T27394] rss_huge 0
[ 2578.180053][T27394] shmem 0
[ 2578.186429][T27394] mapped_file 0
[ 2578.194934][T27394] dirty 0
[ 2578.201564][T27394] writeback 0
[ 2578.209570][T27394] workingset_refault_anon 34426
[ 2578.220309][T27394] workingset_refault_file 1
[ 2578.225691][T27394] swap 364544
[ 2578.232616][T16775] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 2578.241568][T27394] swapcached 0
[ 2578.245140][T27394] pgpgin 158262
[ 2578.250382][T27394] pgpgout 158262
[ 2578.273288][T27394] pgfault 349091
[ 2578.280238][T27394] pgmajfault 33636
[ 2578.284184][T27394] inactive_anon 0
[ 2578.296369][T27394] active_anon 0
[ 2578.300067][T27394] inactive_file 0
[ 2578.303967][T27394] active_file 0
[ 2578.317377][T27394] unevictable 0
[ 2578.323010][T27394] hierarchical_memory_limit 314572800
[ 2578.332288][T16775] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 2578.352168][T27394] hierarchical_memsw_limit 9223372036854771712
[ 2578.360097][T27394] total_cache 0
[ 2578.363808][T27394] total_rss 0
[ 2578.378417][T27394] total_rss_huge 0
[ 2578.382632][T27394] total_shmem 0
[ 2578.402622][T27394] total_mapped_file 0
[ 2578.407224][T27394] total_dirty 0
[ 2578.411061][T27394] total_writeback 0
[ 2578.415047][T27394] total_workingset_refault_anon 34426
[ 2578.430086][T27394] total_workingset_refault_file 1
[ 2578.443086][T27394] total_swap 364544
[ 2578.458525][T27394] total_swapcached 0
[ 2578.467170][T27394] total_pgpgin 158262
[ 2578.473162][T27394] total_pgpgout 158262
[ 2578.487108][T27394] total_pgfault 349091
[ 2578.500669][T27394] total_pgmajfault 33636
[ 2578.525819][T27394] total_inactive_anon 0
[ 2578.536846][T27394] total_active_anon 0
[ 2578.543265][T27394] total_inactive_file 0
[ 2578.551972][T27394] total_active_file 0
[ 2578.559576][T27394] total_unevictable 0
[ 2578.578896][T27394] anon_cost 0
[ 2578.585751][T27394] file_cost 0
[ 2578.597029][T27394] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=27394,uid=0
[ 2578.618481][T26667] Bluetooth: hci7: command 0x041b tx timeout
[ 2578.655157][T27394] Memory cgroup out of memory: Killed process 27394 (syz-executor.3) total-vm:54504kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 2578.657241][   T28] audit: type=1800 audit(1706039210.301:1922): pid=27402 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.1" name="cgroup.controllers" dev="sda1" ino=1956 res=0 errno=0
19:46:50 executing program 1:
socket$kcm(0x10, 0x400000002, 0x0)
socket$inet(0x2, 0x2, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
write$binfmt_script(r0, &(0x7f0000000480)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket(0x0, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r1 = socket$rxrpc(0x21, 0x2, 0xa)
r2 = syz_genetlink_get_family_id$batadv(&(0x7f0000007580), 0xffffffffffffffff)
sendmsg$BATADV_CMD_SET_HARDIF(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001740)={&(0x7f0000000000)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16, @ANYBLOB="2d0100000000000000000500f6ff08000300", @ANYRES32], 0x2c}}, 0x0)
sendmsg$BATADV_CMD_GET_GATEWAYS(0xffffffffffffffff, &(0x7f0000007680)={0x0, 0x0, &(0x7f0000007640)={&(0x7f0000000000)=ANY=[@ANYBLOB="46040000", @ANYRES16=r2, @ANYBLOB="ff83050000076dc6d81b", @ANYRES32=r1], 0x4}}, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendfile(r4, r3, 0x0, 0x100000002)

19:46:50 executing program 3:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x32}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000280)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000240)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=@newlink={0x48, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0xe403, r2}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @veth={{0x9}, {0x18, 0x2, 0x0, 0x1, @val=@VETH_INFO_PEER={0x14}}}}]}, 0x48}, 0x8100}, 0x0)

[ 2578.921700][T16775] bond0 (unregistering): Released all slaves
[ 2579.016234][T26667] Bluetooth: hci6: command 0x040f tx timeout
[ 2579.112579][T16775] bond49 (unregistering): Released all slaves
[ 2579.175777][T27403] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2579.196195][T27403] CPU: 0 PID: 27403 Comm: syz-executor.3 Not tainted 6.7.0-syzkaller-12291-g435e202d645c #0
[ 2579.206332][T27403] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 2579.216416][T27403] Call Trace:
[ 2579.219709][T27403]  <TASK>
[ 2579.222661][T27403]  dump_stack_lvl+0x125/0x1b0
[ 2579.227390][T27403]  dump_header+0x103/0x900
[ 2579.231857][T27403]  oom_kill_process+0x270/0xa60
[ 2579.236763][T27403]  out_of_memory+0x344/0x16c0
[ 2579.241503][T27403]  ? oom_killer_disable+0x2d0/0x2d0
[ 2579.246764][T27403]  ? rcu_read_unlock+0x1c/0x60
[ 2579.251612][T27403]  mem_cgroup_out_of_memory+0x206/0x270
[ 2579.257206][T27403]  ? mem_cgroup_margin+0x130/0x130
[ 2579.262342][T27403]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2579.267779][T27403]  try_charge_memcg+0xcd1/0x11a0
[ 2579.272865][T27403]  ? mem_cgroup_handle_over_high+0x570/0x570
[ 2579.278866][T27403]  ? get_mem_cgroup_from_objcg+0xb5/0x2a0
[ 2579.284593][T27403]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2579.289988][T27403]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2579.295378][T27403]  __memcg_kmem_charge_page+0xdd/0x2a0
[ 2579.300858][T27403]  memcg_charge_kernel_stack+0xc3/0x1f0
[ 2579.306425][T27403]  copy_process+0x527/0x97b0
[ 2579.311048][T27403]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2579.317040][T27403]  ? page_ext_put+0x43/0xd0
[ 2579.321556][T27403]  ? hlock_class+0x4e/0x130
[ 2579.326082][T27403]  ? pidfd_prepare+0x80/0x80
[ 2579.330686][T27403]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2579.336077][T27403]  ? preempt_count_sub+0x160/0x160
[ 2579.341203][T27403]  ? print_usage_bug.part.0+0x550/0x550
[ 2579.346857][T27403]  ? __might_fault+0xe6/0x1a0
[ 2579.351561][T27403]  ? _copy_from_user+0x5d/0xf0
[ 2579.356349][T27403]  kernel_clone+0xfd/0x930
[ 2579.362604][T27403]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2579.368593][T27403]  ? create_io_thread+0xe0/0xe0
[ 2579.373465][T27403]  ? find_held_lock+0x2d/0x110
[ 2579.378251][T27403]  __do_sys_clone3+0x1f1/0x260
[ 2579.383051][T27403]  ? __do_sys_clone+0x100/0x100
[ 2579.387946][T27403]  do_syscall_64+0xd3/0x250
[ 2579.392469][T27403]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 2579.398375][T27403] RIP: 0033:0x7f212b0a8b99
[ 2579.402812][T27403] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 2579.422446][T27403] RSP: 002b:00007ffc7b20b738 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 2579.430873][T27403] RAX: ffffffffffffffda RBX: 00007f212b051270 RCX: 00007f212b0a8b99
[ 2579.439199][T27403] RDX: 00007f212b051270 RSI: 0000000000000058 RDI: 00007ffc7b20b780
[ 2579.447960][T27403] RBP: 00007f212be566c0 R08: 00007f212be566c0 R09: 00007ffc7b20b867
[ 2579.455946][T27403] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 2579.463967][T27403] R13: 000000000000000b R14: 00007ffc7b20b780 R15: 00007ffc7b20b868
[ 2579.471991][T27403]  </TASK>
[ 2579.486114][T16775] bond48 (unregistering): Released all slaves
[ 2579.509379][T16775] bond47 (unregistering): Released all slaves
[ 2579.538031][T27403] memory: usage 307200kB, limit 307200kB, failcnt 117034
[ 2579.552538][T26667] Bluetooth: hci8: command 0x0409 tx timeout
[ 2579.560913][T27403] memory+swap: usage 307584kB, limit 9007199254740988kB, failcnt 0
[ 2579.614840][T16775] bond46 (unregistering): Released all slaves
[ 2579.632778][   T28] audit: type=1804 audit(1706039211.281:1923): pid=27405 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir245649211/syzkaller.jQ7tPM/27/cgroup.controllers" dev="sda1" ino=1956 res=1 errno=0
[ 2579.646145][T27403] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0
[ 2579.695333][T16775] bond45 (unregistering): Released all slaves
[ 2579.716874][T27403] Memory cgroup stats for /syz3:
[ 2579.717133][T27403] cache 0
[ 2579.727301][T27403] rss 12288
[ 2579.728423][T16775] bond44 (unregistering): Released all slaves
[ 2579.731302][T27403] rss_huge 0
[ 2579.742301][T27403] shmem 0
[ 2579.747477][T27403] mapped_file 0
[ 2579.752891][T27403] dirty 0
[ 2579.761549][T27403] writeback 0
[ 2579.765618][T27403] workingset_refault_anon 34522
[ 2579.772922][T27403] workingset_refault_file 1
[ 2579.781812][T27403] swap 393216
[ 2579.803504][T27403] swapcached 12288
[ 2579.812295][T27403] pgpgin 158369
[ 2579.821509][T16775] bond43 (unregistering): Released all slaves
[ 2579.829975][T27403] pgpgout 158366
[ 2579.837351][T27403] pgfault 349265
[ 2579.846723][T27403] pgmajfault 33727
[ 2579.858440][T27403] inactive_anon 0
[ 2579.876431][T27403] active_anon 12288
[ 2579.887070][T27403] inactive_file 0
[ 2579.894980][T16775] bond42 (unregistering): Released all slaves
[ 2579.903977][T27403] active_file 0
[ 2579.908547][T27403] unevictable 0
[ 2579.965049][T16775] bond41 (unregistering): Released all slaves
[ 2579.965071][T27403] hierarchical_memory_limit 314572800
[ 2579.965084][T27403] hierarchical_memsw_limit 9223372036854771712
19:46:51 executing program 1:
socket$kcm(0x10, 0x400000002, 0x0)
socket$inet(0x2, 0x2, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x3, &(0x7f00000000c0)=@framed, &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
write$binfmt_script(r1, &(0x7f0000000480)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r1, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r2 = socket$rxrpc(0x21, 0x2, 0xa)
r3 = syz_genetlink_get_family_id$batadv(&(0x7f0000007580), 0xffffffffffffffff)
sendmsg$BATADV_CMD_SET_HARDIF(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001740)={&(0x7f0000000000)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16, @ANYBLOB, @ANYRES32=r0], 0x2c}}, 0x0)
sendmsg$BATADV_CMD_GET_GATEWAYS(0xffffffffffffffff, &(0x7f0000007680)={0x0, 0x0, &(0x7f0000007640)={&(0x7f0000000000)=ANY=[@ANYBLOB="46040000", @ANYRES16=r3, @ANYBLOB="ff83050000076dc6d81b", @ANYRES32=r2], 0x4}}, 0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendfile(r5, r4, 0x0, 0x100000002)

[ 2580.016375][T27403] total_cache 0
[ 2580.019966][T27403] total_rss 12288
[ 2580.023617][T27403] total_rss_huge 0
[ 2580.046475][T27403] total_shmem 0
[ 2580.055488][T16775] bond40 (unregistering): Released all slaves
[ 2580.065301][T27403] total_mapped_file 0
[ 2580.076232][T27403] total_dirty 0
[ 2580.080772][T27403] total_writeback 0
[ 2580.084783][T27403] total_workingset_refault_anon 34522
[ 2580.106905][T16775] bond39 (unregistering): Released all slaves
[ 2580.116546][T27403] total_workingset_refault_file 1
[ 2580.127008][T27403] total_swap 393216
[ 2580.130954][T27403] total_swapcached 12288
[ 2580.135220][T27403] total_pgpgin 158369
[ 2580.159189][T27403] total_pgpgout 158366
[ 2580.172343][T27403] total_pgfault 349265
[ 2580.177191][T27403] total_pgmajfault 33727
[ 2580.184576][T16775] bond38 (unregistering): Released all slaves
[ 2580.190941][T27403] total_inactive_anon 0
[ 2580.199925][T27403] total_active_anon 12288
[ 2580.215615][T27403] total_inactive_file 0
[ 2580.221725][T27403] total_active_file 0
[ 2580.226472][T27403] total_unevictable 0
[ 2580.235289][T16775] bond37 (unregistering): Released all slaves
[ 2580.248368][T27403] anon_cost 0
[ 2580.254233][T27403] file_cost 0
[ 2580.266571][T27403] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=27403,uid=0
[ 2580.307944][T27403] Memory cgroup out of memory: Killed process 27403 (syz-executor.3) total-vm:54504kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 2580.329914][T16775] bond36 (unregistering): Released all slaves
19:46:52 executing program 3:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x32}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000280)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000240)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=@newlink={0x48, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0xe403, r2}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @veth={{0x9}, {0x18, 0x2, 0x0, 0x1, @val=@VETH_INFO_PEER={0x14}}}}]}, 0x48}, 0x8200}, 0x0)

[ 2580.372254][T16775] bond35 (unregistering): Released all slaves
[ 2580.432731][T16775] bond34 (unregistering): Released all slaves
[ 2580.441355][   T28] audit: type=1804 audit(1706039212.091:1924): pid=27409 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir245649211/syzkaller.jQ7tPM/28/cgroup.controllers" dev="sda1" ino=1956 res=1 errno=0
[ 2580.487875][T16775] bond33 (unregistering): Released all slaves
[ 2580.707495][T26667] Bluetooth: hci7: command 0x040f tx timeout
[ 2580.973475][ T5091] syz-executor.3 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[ 2581.020895][ T5091] CPU: 1 PID: 5091 Comm: syz-executor.3 Not tainted 6.7.0-syzkaller-12291-g435e202d645c #0
[ 2581.030948][ T5091] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 2581.041034][ T5091] Call Trace:
[ 2581.044330][ T5091]  <TASK>
[ 2581.047280][ T5091]  dump_stack_lvl+0x125/0x1b0
[ 2581.052049][ T5091]  dump_header+0x103/0x900
[ 2581.056515][ T5091]  oom_kill_process+0x270/0xa60
[ 2581.061412][ T5091]  out_of_memory+0x344/0x16c0
[ 2581.066133][ T5091]  ? mutex_trylock+0xa0/0x130
[ 2581.070882][ T5091]  ? oom_killer_disable+0x2d0/0x2d0
[ 2581.076148][ T5091]  ? rcu_read_unlock+0x1c/0x60
[ 2581.080959][ T5091]  mem_cgroup_out_of_memory+0x206/0x270
[ 2581.086536][ T5091]  ? mem_cgroup_margin+0x130/0x130
[ 2581.092032][ T5091]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2581.096760][T26667] Bluetooth: hci6: command 0x0419 tx timeout
[ 2581.097441][ T5091]  try_charge_memcg+0xcd1/0x11a0
[ 2581.108384][ T5091]  ? mem_cgroup_handle_over_high+0x570/0x570
[ 2581.114417][ T5091]  ? rcu_read_unlock+0x1c/0x60
[ 2581.119313][ T5091]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2581.124719][ T5091]  ? __radix_tree_lookup+0x21f/0x2c0
[ 2581.130048][ T5091]  mem_cgroup_swapin_charge_folio+0x138/0x380
[ 2581.136172][ T5091]  __read_swap_cache_async+0x4e1/0x600
[ 2581.141670][ T5091]  ? filemap_get_incore_folio+0x160/0x160
[ 2581.147425][ T5091]  ? swp_swap_info+0xcf/0x130
[ 2581.152138][ T5091]  ? swapcache_prepare+0x20/0x20
[ 2581.157207][ T5091]  swap_cluster_readahead+0x4d4/0x710
[ 2581.162626][ T5091]  ? read_swap_cache_async+0x1a0/0x1a0
[ 2581.168134][ T5091]  ? reacquire_held_locks+0x410/0x4c0
[ 2581.173539][ T5091]  ? xas_descend+0x141/0x4e0
[ 2581.178189][ T5091]  ? filemap_get_entry+0x23e/0x460
[ 2581.183338][ T5091]  swapin_readahead+0x132/0xe60
[ 2581.188226][ T5091]  ? get_swap_device+0x363/0x5e0
[ 2581.193291][ T5091]  ? exit_swap_address_space+0x250/0x250
[ 2581.199046][ T5091]  ? __filemap_get_folio+0x2b0/0xaa0
[ 2581.204381][ T5091]  ? swap_cache_get_folio+0x1dc/0x460
[ 2581.209788][ T5091]  ? get_swap_device+0x245/0x5e0
[ 2581.214787][ T5091]  ? free_pages_and_swap_cache+0xa0/0xa0
[ 2581.220431][ T5091]  ? lock_sync+0x190/0x190
[ 2581.224874][ T5091]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2581.230915][ T5091]  do_swap_page+0x4a6/0x3190
[ 2581.235533][ T5091]  ? rcu_is_watching+0x12/0xb0
[ 2581.240315][ T5091]  ? __pte_offset_map+0x1b9/0x540
[ 2581.245446][ T5091]  ? unmap_mapping_folio+0x3b0/0x3b0
[ 2581.250740][ T5091]  ? pte_offset_map_nolock+0xfa/0x1b0
[ 2581.256141][ T5091]  ? __pte_offset_map+0x540/0x540
[ 2581.261208][ T5091]  __handle_mm_fault+0x13a0/0x4900
[ 2581.266353][ T5091]  ? clear_huge_page+0x2e0/0x2e0
[ 2581.271334][ T5091]  ? find_vma+0x112/0x1b0
[ 2581.275694][ T5091]  ? get_unmapped_area+0x400/0x400
[ 2581.280840][ T5091]  handle_mm_fault+0x47a/0xa10
[ 2581.285627][ T5091]  ? lock_mm_and_find_vma+0xa6/0x580
[ 2581.290932][ T5091]  do_user_addr_fault+0x3f8/0x1030
[ 2581.296082][ T5091]  ? rcu_is_watching+0x12/0xb0
[ 2581.300894][ T5091]  exc_page_fault+0x5d/0xc0
[ 2581.305440][ T5091]  asm_exc_page_fault+0x26/0x30
[ 2581.310321][ T5091] RIP: 0010:__get_user_8+0x11/0x20
[ 2581.315450][ T5091] Code: 48 c1 fa 3f 48 09 d0 0f 01 cb 8b 10 31 c0 0f 01 ca c3 0f 1f 80 00 00 00 00 f3 0f 1e fa 48 89 c2 48 c1 fa 3f 48 09 d0 0f 01 cb <48> 8b 10 31 c0 0f 01 ca c3 66 0f 1f 44 00 00 f3 0f 1e fa 0f 01 cb
[ 2581.335162][ T5091] RSP: 0018:ffffc900047cfdf8 EFLAGS: 00050202
[ 2581.341262][ T5091] RAX: 0000555555796da8 RBX: ffff888027da0000 RCX: ffffc900047cfd60
[ 2581.349458][ T5091] RDX: 0000000000000000 RSI: ffffffff81b655ac RDI: ffffffff8b2f9d00
[ 2581.357471][ T5091] RBP: ffffc900047cfef8 R08: 0000000000000000 R09: fffffbfff1e753fa
[ 2581.365479][ T5091] R10: ffffffff8f3a9fd7 R11: 0000000000000000 R12: ffff888027da0000
[ 2581.373572][ T5091] R13: ffffc900047cff58 R14: ffffc900047cfe60 R15: 0000000000000000
[ 2581.381613][ T5091]  ? __rseq_handle_notify_resume+0x14c/0x1020
[ 2581.387743][ T5091]  __rseq_handle_notify_resume+0x183/0x1020
[ 2581.393692][ T5091]  ? __do_sys_rseq+0x750/0x750
[ 2581.398507][ T5091]  ? folio_memcg_unlock+0x240/0x240
[ 2581.403749][ T5091]  ? __ia32_sys_clock_getres_time32+0x280/0x280
[ 2581.410148][ T5091]  syscall_exit_to_user_mode+0x1a9/0x2b0
[ 2581.415834][ T5091]  do_syscall_64+0xe0/0x250
[ 2581.420380][ T5091]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 2581.426315][ T5091] RIP: 0033:0x7f212b0a81b5
[ 2581.430758][ T5091] Code: 24 0c 89 3c 24 48 89 4c 24 18 e8 f6 b9 ff ff 4c 8b 54 24 18 48 8b 54 24 10 41 89 c0 8b 74 24 0c 8b 3c 24 b8 e6 00 00 00 0f 05 <44> 89 c7 48 89 04 24 e8 4f ba ff ff 48 8b 04 24 48 83 c4 28 f7 d8
[ 2581.450421][ T5091] RSP: 002b:00007ffc7b20bb10 EFLAGS: 00000293 ORIG_RAX: 00000000000000e6
[ 2581.458894][ T5091] RAX: 0000000000000000 RBX: 00000000000028f4 RCX: 00007f212b0a81b5
[ 2581.466921][ T5091] RDX: 00007ffc7b20bb50 RSI: 0000000000000000 RDI: 0000000000000000
[ 2581.474915][ T5091] RBP: 00007ffc7b20bbdc R08: 0000000000000000 R09: 0000000000000001
[ 2581.482916][ T5091] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000032
[ 2581.491007][ T5091] R13: 000000000027601b R14: 000000000027601b R15: 0000000000000000
[ 2581.499031][ T5091]  </TASK>
19:46:53 executing program 1:
socket$kcm(0x10, 0x400000002, 0x0)
socket$inet(0x2, 0x2, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
write$binfmt_script(r1, &(0x7f0000000480)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r1, 0x0)
socket(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r2 = socket$rxrpc(0x21, 0x2, 0xa)
r3 = syz_genetlink_get_family_id$batadv(&(0x7f0000007580), 0xffffffffffffffff)
sendmsg$BATADV_CMD_SET_HARDIF(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001740)={&(0x7f0000000000)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16, @ANYBLOB="2d0100000000000000000500f6ff08000300", @ANYRES32=r0], 0x2c}}, 0x0)
sendmsg$BATADV_CMD_GET_GATEWAYS(0xffffffffffffffff, &(0x7f0000007680)={0x0, 0x0, &(0x7f0000007640)={&(0x7f0000000000)=ANY=[@ANYBLOB="46040000", @ANYRES16=r3, @ANYBLOB="ff83050000076dc6d81b", @ANYRES32=r2], 0x4}}, 0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendfile(r5, r4, 0x0, 0x100000002)

[ 2581.522388][ T5091] memory: usage 307200kB, limit 307200kB, failcnt 117253
[ 2581.533022][T16775] bond32 (unregistering): Released all slaves
[ 2581.537911][ T5091] memory+swap: usage 307636kB, limit 9007199254740988kB, failcnt 0
[ 2581.547271][ T5091] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[ 2581.555038][ T5091] Memory cgroup stats for /syz3:
[ 2581.555445][ T5091] cache 0
[ 2581.577163][T26667] Bluetooth: hci8: command 0x041b tx timeout
[ 2581.587060][ T5091] rss 0
[ 2581.601124][ T5091] rss_huge 0
[ 2581.636401][ T5091] shmem 0
[ 2581.641916][ T5091] mapped_file 0
[ 2581.645436][ T5091] dirty 0
[ 2581.658925][T16775] bond31 (unregistering): Released all slaves
[ 2581.676236][ T5091] writeback 0
[ 2581.680182][ T5091] workingset_refault_anon 34588
[ 2581.685082][ T5091] workingset_refault_file 1
[ 2581.709626][ T5091] swap 446464
[ 2581.726059][ T5091] swapcached 0
[ 2581.729499][ T5091] pgpgin 158446
[ 2581.732988][ T5091] pgpgout 158446
[ 2581.746128][ T5091] pgfault 349389
[ 2581.749750][ T5091] pgmajfault 33786
[ 2581.753513][ T5091] inactive_anon 0
[ 2581.760541][T16775] bond30 (unregistering): Released all slaves
[ 2581.786370][ T5091] active_anon 0
[ 2581.789907][ T5091] inactive_file 0
[ 2581.793572][ T5091] active_file 0
[ 2581.819481][ T5091] unevictable 0
[ 2581.823016][ T5091] hierarchical_memory_limit 314572800
[ 2581.831927][T16775] bond29 (unregistering): Released all slaves
[ 2581.846587][ T5091] hierarchical_memsw_limit 9223372036854771712
[ 2581.852806][ T5091] total_cache 0
[ 2581.863420][   T28] audit: type=1804 audit(1706039213.511:1925): pid=27414 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir245649211/syzkaller.jQ7tPM/29/cgroup.controllers" dev="sda1" ino=1956 res=1 errno=0
[ 2581.892743][ T5091] total_rss 0
[ 2581.892989][T16775] bond28 (unregistering): Released all slaves
[ 2581.896653][ T5091] total_rss_huge 0
[ 2581.896666][ T5091] total_shmem 0
[ 2581.896677][ T5091] total_mapped_file 0
[ 2581.896688][ T5091] total_dirty 0
[ 2581.896697][ T5091] total_writeback 0
[ 2581.896708][ T5091] total_workingset_refault_anon 34588
[ 2581.896719][ T5091] total_workingset_refault_file 1
[ 2581.896730][ T5091] total_swap 446464
[ 2581.896739][ T5091] total_swapcached 0
[ 2581.954376][ T5091] total_pgpgin 158446
[ 2581.960721][ T5091] total_pgpgout 158446
[ 2581.966716][T16775] bond27 (unregistering): Released all slaves
[ 2581.969097][ T5091] total_pgfault 349389
[ 2582.009995][ T5091] total_pgmajfault 33786
[ 2582.029940][ T5091] total_inactive_anon 0
[ 2582.032125][T16775] bond26 (unregistering): Released all slaves
[ 2582.057972][ T5091] total_active_anon 0
[ 2582.062006][ T5091] total_inactive_file 0
[ 2582.067780][ T5091] total_active_file 0
[ 2582.089953][ T5091] total_unevictable 0
[ 2582.094805][ T5091] anon_cost 0
[ 2582.102163][T16775] bond25 (unregistering): Released all slaves
[ 2582.106015][ T5091] file_cost 0
[ 2582.137653][ T5091] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=27412,uid=0
[ 2582.154271][ T5091] Memory cgroup out of memory: Killed process 27412 (syz-executor.3) total-vm:54504kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 2582.167173][T16775] bond24 (unregistering): Released all slaves
19:46:53 executing program 3:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x32}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000280)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000240)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=@newlink={0x48, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0xe403, r2}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @veth={{0x9}, {0x18, 0x2, 0x0, 0x1, @val=@VETH_INFO_PEER={0x14}}}}]}, 0x48}, 0x8300}, 0x0)

[ 2582.277966][T16775] bond23 (unregistering): Released all slaves
[ 2582.373641][T16775] bond22 (unregistering): Released all slaves
[ 2582.424861][T16775] bond21 (unregistering): Released all slaves
[ 2582.504279][T16775] bond20 (unregistering): Released all slaves
19:46:54 executing program 1:
socket$kcm(0x10, 0x400000002, 0x0)
socket$inet(0x2, 0x2, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
write$binfmt_script(r0, &(0x7f0000000480)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket(0x0, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r1 = socket$rxrpc(0x21, 0x2, 0xa)
r2 = syz_genetlink_get_family_id$batadv(&(0x7f0000007580), 0xffffffffffffffff)
sendmsg$BATADV_CMD_SET_HARDIF(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001740)={&(0x7f0000000000)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16, @ANYBLOB="2d0100000000000000000500f6ff08000300", @ANYRES32], 0x2c}}, 0x0)
sendmsg$BATADV_CMD_GET_GATEWAYS(0xffffffffffffffff, &(0x7f0000007680)={0x0, 0x0, &(0x7f0000007640)={&(0x7f0000000000)=ANY=[@ANYBLOB="46040000", @ANYRES16=r2, @ANYBLOB="ff83050000076dc6d81b", @ANYRES32=r1], 0x4}}, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendfile(r4, r3, 0x0, 0x100000002)

[ 2582.655254][T16775] bond19 (unregistering): Released all slaves
[ 2582.693800][T27416] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2582.719159][T27416] CPU: 1 PID: 27416 Comm: syz-executor.3 Not tainted 6.7.0-syzkaller-12291-g435e202d645c #0
[ 2582.729644][T27416] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 2582.739735][T27416] Call Trace:
[ 2582.743047][T27416]  <TASK>
[ 2582.746003][T27416]  dump_stack_lvl+0x125/0x1b0
[ 2582.750748][T27416]  dump_header+0x103/0x900
[ 2582.755227][T27416]  oom_kill_process+0x270/0xa60
[ 2582.760136][T27416]  out_of_memory+0x344/0x16c0
[ 2582.764860][T27416]  ? oom_killer_disable+0x2d0/0x2d0
[ 2582.771580][T27416]  ? rcu_read_unlock+0x1c/0x60
[ 2582.776392][T27416]  mem_cgroup_out_of_memory+0x206/0x270
[ 2582.781961][T27416]  ? mem_cgroup_margin+0x130/0x130
[ 2582.787079][T27416]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2582.792473][T27416]  try_charge_memcg+0xcd1/0x11a0
[ 2582.797435][T27416]  ? mem_cgroup_handle_over_high+0x570/0x570
[ 2582.803427][T27416]  ? get_mem_cgroup_from_objcg+0xb5/0x2a0
[ 2582.809157][T27416]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2582.814538][T27416]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2582.819929][T27416]  __memcg_kmem_charge_page+0xdd/0x2a0
[ 2582.825408][T27416]  memcg_charge_kernel_stack+0xc3/0x1f0
[ 2582.830976][T27416]  copy_process+0x527/0x97b0
[ 2582.835593][T27416]  ? __lock_acquire+0x1502/0x3b30
[ 2582.840636][T27416]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2582.846644][T27416]  ? hlock_class+0x4e/0x130
[ 2582.851279][T27416]  ? pidfd_prepare+0x80/0x80
[ 2582.855907][T27416]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2582.861316][T27416]  ? preempt_count_sub+0x160/0x160
[ 2582.867240][T27416]  ? __might_fault+0xe6/0x1a0
[ 2582.872771][T27416]  ? _copy_from_user+0x5d/0xf0
[ 2582.877583][T27416]  kernel_clone+0xfd/0x930
[ 2582.882020][T27416]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2582.888183][T27416]  ? create_io_thread+0xe0/0xe0
[ 2582.893051][T27416]  ? find_held_lock+0x2d/0x110
[ 2582.897857][T27416]  __do_sys_clone3+0x1f1/0x260
[ 2582.902649][T27416]  ? __do_sys_clone+0x100/0x100
[ 2582.907549][T27416]  do_syscall_64+0xd3/0x250
[ 2582.912069][T27416]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 2582.917972][T27416] RIP: 0033:0x7f212b0a8b99
[ 2582.922395][T27416] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 2582.942026][T27416] RSP: 002b:00007ffc7b20b738 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 2582.950467][T27416] RAX: ffffffffffffffda RBX: 00007f212b051270 RCX: 00007f212b0a8b99
[ 2582.958806][T27416] RDX: 00007f212b051270 RSI: 0000000000000058 RDI: 00007ffc7b20b780
[ 2582.966973][T27416] RBP: 00007f212be566c0 R08: 00007f212be566c0 R09: 00007ffc7b20b867
[ 2582.974952][T27416] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 2582.982929][T27416] R13: 000000000000000b R14: 00007ffc7b20b780 R15: 00007ffc7b20b868
[ 2582.990942][T27416]  </TASK>
[ 2582.998730][T27416] memory: usage 307200kB, limit 307200kB, failcnt 117460
[ 2583.005827][T27416] memory+swap: usage 307532kB, limit 9007199254740988kB, failcnt 0
[ 2583.014749][T26667] Bluetooth: hci7: command 0x0419 tx timeout
[ 2583.021106][T27416] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[ 2583.029569][T16775] bond18 (unregistering): Released all slaves
[ 2583.029684][T27416] Memory cgroup stats for /syz3:
[ 2583.036858][T27416] cache 0
[ 2583.045547][T27416] rss 0
[ 2583.091933][T27416] rss_huge 0
[ 2583.095305][T27416] shmem 0
[ 2583.114619][T27416] mapped_file 0
[ 2583.118696][T27416] dirty 0
[ 2583.121229][T16775] bond17 (unregistering): Released all slaves
[ 2583.121743][T27416] writeback 0
[ 2583.153574][T27416] workingset_refault_anon 34641
[ 2583.158779][T27416] workingset_refault_file 1
[ 2583.174513][T27416] swap 339968
[ 2583.178481][T27416] swapcached 0
[ 2583.181964][T27416] pgpgin 158511
[ 2583.196589][T27416] pgpgout 158511
[ 2583.200395][T27416] pgfault 349501
[ 2583.204090][T27416] pgmajfault 33839
[ 2583.209568][T27416] inactive_anon 0
[ 2583.210710][T16775] bond16 (unregistering): Released all slaves
[ 2583.213324][T27416] active_anon 0
[ 2583.249020][T27416] inactive_file 0
[ 2583.252835][T27416] active_file 0
[ 2583.265729][T27416] unevictable 0
[ 2583.277187][T16775] bond15 (unregistering): Released all slaves
[ 2583.304883][T27416] hierarchical_memory_limit 314572800
[ 2583.304991][   T28] audit: type=1804 audit(1706039214.951:1926): pid=27419 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir245649211/syzkaller.jQ7tPM/30/cgroup.controllers" dev="sda1" ino=1956 res=1 errno=0
[ 2583.320278][T27416] hierarchical_memsw_limit 9223372036854771712
[ 2583.369777][T27416] total_cache 0
[ 2583.373969][T27416] total_rss 0
[ 2583.379568][T27416] total_rss_huge 0
[ 2583.384069][T27416] total_shmem 0
[ 2583.390152][T27416] total_mapped_file 0
[ 2583.394868][T27416] total_dirty 0
[ 2583.400062][T27416] total_writeback 0
[ 2583.402343][T16775] bond14 (unregistering): Released all slaves
[ 2583.404533][T27416] total_workingset_refault_anon 34641
[ 2583.417405][T27416] total_workingset_refault_file 1
[ 2583.423146][T27416] total_swap 339968
[ 2583.429021][T27416] total_swapcached 0
[ 2583.437411][T27416] total_pgpgin 158511
[ 2583.456305][T27416] total_pgpgout 158511
[ 2583.480318][T27416] total_pgfault 349501
[ 2583.484446][T27416] total_pgmajfault 33839
[ 2583.492832][T27416] total_inactive_anon 0
[ 2583.500626][T16775] bond13 (unregistering): Released all slaves
[ 2583.507257][T27416] total_active_anon 0
[ 2583.517045][T27416] total_inactive_file 0
[ 2583.527611][T27416] total_active_file 0
[ 2583.536455][T27416] total_unevictable 0
[ 2583.542706][T27416] anon_cost 0
[ 2583.546842][T27416] file_cost 0
[ 2583.551785][T27416] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=27416,uid=0
[ 2583.572585][T16775] bond12 (unregistering): Released all slaves
[ 2583.592535][T27416] Memory cgroup out of memory: Killed process 27416 (syz-executor.3) total-vm:54504kB, anon-rss:380kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 2583.666406][T26667] Bluetooth: hci8: command 0x040f tx timeout
[ 2583.712267][T16775] bond11 (unregistering): Released all slaves
19:46:55 executing program 3:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x32}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000280)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000240)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=@newlink={0x48, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0xe403, r2}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @veth={{0x9}, {0x18, 0x2, 0x0, 0x1, @val=@VETH_INFO_PEER={0x14}}}}]}, 0x48}, 0x8400}, 0x0)

[ 2583.761605][T16775] bond10 (unregistering): Released all slaves
[ 2583.818687][T16775] bond9 (unregistering): Released all slaves
19:46:55 executing program 1:
socket$kcm(0x10, 0x400000002, 0x0)
socket$inet(0x2, 0x2, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x3, &(0x7f00000000c0)=@framed, &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
write$binfmt_script(r1, &(0x7f0000000480)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r1, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r2 = socket$rxrpc(0x21, 0x2, 0xa)
r3 = syz_genetlink_get_family_id$batadv(&(0x7f0000007580), 0xffffffffffffffff)
sendmsg$BATADV_CMD_SET_HARDIF(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001740)={&(0x7f0000000000)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16, @ANYRES32=r0], 0x2c}}, 0x0)
sendmsg$BATADV_CMD_GET_GATEWAYS(0xffffffffffffffff, &(0x7f0000007680)={0x0, 0x0, &(0x7f0000007640)={&(0x7f0000000000)=ANY=[@ANYBLOB="46040000", @ANYRES16=r3, @ANYBLOB="ff83050000076dc6d81b", @ANYRES32=r2], 0x4}}, 0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendfile(r5, r4, 0x0, 0x100000002)

[ 2584.008374][T16775] bond8 (unregistering): Released all slaves
[ 2584.078927][T16775] bond7 (unregistering): Released all slaves
[ 2584.151301][T16775] bond6 (unregistering): Released all slaves
[ 2584.206895][T16775] bond5 (unregistering): Released all slaves
[ 2584.284162][T16775] bond4 (unregistering): Released all slaves
[ 2584.349082][T16775] bond3 (unregistering): Released all slaves
[ 2584.376323][   T28] audit: type=1804 audit(1706039216.021:1927): pid=27423 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir245649211/syzkaller.jQ7tPM/31/cgroup.controllers" dev="sda1" ino=1956 res=1 errno=0
[ 2584.396662][T27421] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2584.415206][T27421] CPU: 0 PID: 27421 Comm: syz-executor.3 Not tainted 6.7.0-syzkaller-12291-g435e202d645c #0
[ 2584.425324][T27421] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 2584.435421][T27421] Call Trace:
[ 2584.438721][T27421]  <TASK>
[ 2584.441656][T27421]  dump_stack_lvl+0x125/0x1b0
[ 2584.446371][T27421]  dump_header+0x103/0x900
[ 2584.450931][T27421]  oom_kill_process+0x270/0xa60
[ 2584.455845][T27421]  out_of_memory+0x344/0x16c0
[ 2584.460748][T27421]  ? oom_killer_disable+0x2d0/0x2d0
[ 2584.466250][T27421]  ? rcu_read_unlock+0x1c/0x60
[ 2584.471075][T27421]  mem_cgroup_out_of_memory+0x206/0x270
[ 2584.476674][T27421]  ? mem_cgroup_margin+0x130/0x130
[ 2584.481824][T27421]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2584.487263][T27421]  try_charge_memcg+0xcd1/0x11a0
[ 2584.492254][T27421]  ? mem_cgroup_handle_over_high+0x570/0x570
[ 2584.498280][T27421]  ? get_mem_cgroup_from_objcg+0xb5/0x2a0
[ 2584.504040][T27421]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2584.509463][T27421]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2584.514896][T27421]  __memcg_kmem_charge_page+0xdd/0x2a0
[ 2584.520423][T27421]  memcg_charge_kernel_stack+0xc3/0x1f0
[ 2584.526005][T27421]  copy_process+0x1532/0x97b0
[ 2584.530737][T27421]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2584.536751][T27421]  ? page_ext_put+0x43/0xd0
[ 2584.541332][T27421]  ? hlock_class+0x4e/0x130
[ 2584.546017][T27421]  ? pidfd_prepare+0x80/0x80
[ 2584.550663][T27421]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2584.556087][T27421]  ? preempt_count_sub+0x160/0x160
[ 2584.561244][T27421]  ? print_usage_bug.part.0+0x550/0x550
[ 2584.566857][T27421]  ? __might_fault+0xe6/0x1a0
[ 2584.571593][T27421]  ? _copy_from_user+0x5d/0xf0
[ 2584.576413][T27421]  kernel_clone+0xfd/0x930
[ 2584.580876][T27421]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2584.586893][T27421]  ? create_io_thread+0xe0/0xe0
[ 2584.591793][T27421]  ? find_held_lock+0x2d/0x110
[ 2584.596603][T27421]  __do_sys_clone3+0x1f1/0x260
[ 2584.601413][T27421]  ? __do_sys_clone+0x100/0x100
[ 2584.606715][T27421]  do_syscall_64+0xd3/0x250
[ 2584.611279][T27421]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 2584.617218][T27421] RIP: 0033:0x7f212b0a8b99
[ 2584.621656][T27421] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 2584.641299][T27421] RSP: 002b:00007ffc7b20b738 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 2584.649764][T27421] RAX: ffffffffffffffda RBX: 00007f212b051270 RCX: 00007f212b0a8b99
[ 2584.657775][T27421] RDX: 00007f212b051270 RSI: 0000000000000058 RDI: 00007ffc7b20b780
[ 2584.665781][T27421] RBP: 00007f212be566c0 R08: 00007f212be566c0 R09: 00007ffc7b20b867
[ 2584.673795][T27421] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 2584.681889][T27421] R13: 000000000000000b R14: 00007ffc7b20b780 R15: 00007ffc7b20b868
[ 2584.690656][T27421]  </TASK>
[ 2584.697009][T27421] memory: usage 307200kB, limit 307200kB, failcnt 117873
[ 2584.703487][T16775] bond2 (unregistering): Released all slaves
[ 2584.732019][T27421] memory+swap: usage 307560kB, limit 9007199254740988kB, failcnt 0
[ 2584.740485][T27421] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0
[ 2584.750660][T16775] bond1 (unregistering): Released all slaves
[ 2584.774822][T27421] Memory cgroup stats for /syz3:
[ 2584.775002][T27421] cache 0
[ 2584.802589][T27421] rss 12288
[ 2584.824961][T27421] rss_huge 0
[ 2584.844473][T27421] shmem 0
[ 2584.852105][T27421] mapped_file 0
[ 2584.866869][T27421] dirty 0
[ 2584.886483][T27421] writeback 0
[ 2584.892222][T27421] workingset_refault_anon 34781
[ 2584.922575][T27421] workingset_refault_file 1
[ 2584.928313][T27421] swap 368640
19:46:56 executing program 1:
socket$kcm(0x10, 0x400000002, 0x0)
socket$inet(0x2, 0x2, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
write$binfmt_script(r0, &(0x7f0000000480)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r1 = socket$rxrpc(0x21, 0x2, 0xa)
r2 = syz_genetlink_get_family_id$batadv(&(0x7f0000007580), 0xffffffffffffffff)
sendmsg$BATADV_CMD_SET_HARDIF(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001740)={0x0, 0x2c}}, 0x0)
sendmsg$BATADV_CMD_GET_GATEWAYS(0xffffffffffffffff, &(0x7f0000007680)={0x0, 0x0, &(0x7f0000007640)={&(0x7f0000000000)=ANY=[@ANYBLOB="46040000", @ANYRES16=r2, @ANYBLOB="ff83050000076dc6d81b", @ANYRES32=r1], 0x4}}, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendfile(r4, r3, 0x0, 0x100000002)

[ 2584.953046][T27421] swapcached 8192
[ 2584.961084][T27421] pgpgin 158664
[ 2584.965395][T27421] pgpgout 158661
[ 2584.978989][T27421] pgfault 349743
[ 2584.996543][T27421] pgmajfault 33969
[ 2585.000515][T27421] inactive_anon 0
[ 2585.004295][T27421] active_anon 12288
[ 2585.026710][T27421] inactive_file 0
[ 2585.036379][T27421] active_file 0
[ 2585.051265][T27421] unevictable 0
[ 2585.056552][T27421] hierarchical_memory_limit 314572800
[ 2585.067121][T27421] hierarchical_memsw_limit 9223372036854771712
[ 2585.080614][T27421] total_cache 0
[ 2585.091199][T27421] total_rss 12288
[ 2585.099356][T16775] team0 (unregistering): Port device veth15 removed
[ 2585.100189][T27421] total_rss_huge 0
[ 2585.116295][T27421] total_shmem 0
[ 2585.121080][T27421] total_mapped_file 0
[ 2585.130673][T27421] total_dirty 0
[ 2585.143121][T27421] total_writeback 0
[ 2585.150948][T27421] total_workingset_refault_anon 34781
[ 2585.166095][T27421] total_workingset_refault_file 1
[ 2585.174579][T27421] total_swap 368640
[ 2585.184467][T27421] total_swapcached 8192
[ 2585.196237][T27421] total_pgpgin 158664
[ 2585.204898][T27421] total_pgpgout 158661
[ 2585.214247][T27421] total_pgfault 349743
[ 2585.224195][T27421] total_pgmajfault 33969
[ 2585.238154][T27421] total_inactive_anon 0
[ 2585.278985][T27421] total_active_anon 12288
[ 2585.283813][T27421] total_inactive_file 0
[ 2585.297235][   T28] audit: type=1804 audit(1706039216.941:1928): pid=27427 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir245649211/syzkaller.jQ7tPM/32/cgroup.controllers" dev="sda1" ino=1956 res=1 errno=0
[ 2585.331596][T27421] total_active_file 0
[ 2585.336882][T27421] total_unevictable 0
[ 2585.341626][T27421] anon_cost 0
[ 2585.345286][T27421] file_cost 0
[ 2585.352292][T27421] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=27421,uid=0
[ 2585.369930][T27421] Memory cgroup out of memory: Killed process 27421 (syz-executor.3) total-vm:54504kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
19:46:57 executing program 3:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x32}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000280)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000240)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=@newlink={0x48, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0xe403, r2}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @veth={{0x9}, {0x18, 0x2, 0x0, 0x1, @val=@VETH_INFO_PEER={0x14}}}}]}, 0x48}, 0x8500}, 0x0)

[ 2585.736055][T26667] Bluetooth: hci8: command 0x0419 tx timeout
[ 2585.843849][T27429] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2585.874063][T27429] CPU: 0 PID: 27429 Comm: syz-executor.3 Not tainted 6.7.0-syzkaller-12291-g435e202d645c #0
[ 2585.884199][T27429] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 2585.894294][T27429] Call Trace:
[ 2585.897582][T27429]  <TASK>
[ 2585.900562][T27429]  dump_stack_lvl+0x125/0x1b0
[ 2585.905352][T27429]  dump_header+0x103/0x900
[ 2585.909792][T27429]  oom_kill_process+0x270/0xa60
[ 2585.914664][T27429]  out_of_memory+0x344/0x16c0
[ 2585.919366][T27429]  ? oom_killer_disable+0x2d0/0x2d0
[ 2585.924580][T27429]  ? rcu_read_unlock+0x1c/0x60
[ 2585.929389][T27429]  mem_cgroup_out_of_memory+0x206/0x270
[ 2585.934987][T27429]  ? mem_cgroup_margin+0x130/0x130
[ 2585.940121][T27429]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2585.945519][T27429]  try_charge_memcg+0xcd1/0x11a0
[ 2585.950495][T27429]  ? mem_cgroup_handle_over_high+0x570/0x570
[ 2585.956488][T27429]  ? get_mem_cgroup_from_objcg+0xb5/0x2a0
[ 2585.962216][T27429]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2585.967603][T27429]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2585.973000][T27429]  __memcg_kmem_charge_page+0xdd/0x2a0
[ 2585.978486][T27429]  memcg_charge_kernel_stack+0xc3/0x1f0
[ 2585.984049][T27429]  copy_process+0x527/0x97b0
[ 2585.988655][T27429]  ? hlock_class+0x4e/0x130
[ 2585.993174][T27429]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2585.999187][T27429]  ? page_ext_put+0x43/0xd0
[ 2586.003702][T27429]  ? hlock_class+0x4e/0x130
[ 2586.008233][T27429]  ? pidfd_prepare+0x80/0x80
[ 2586.012849][T27429]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2586.018237][T27429]  ? preempt_count_sub+0x160/0x160
[ 2586.023365][T27429]  ? __lock_acquire+0x1502/0x3b30
[ 2586.028397][T27429]  ? __might_fault+0xe6/0x1a0
[ 2586.033096][T27429]  ? _copy_from_user+0x5d/0xf0
[ 2586.037879][T27429]  kernel_clone+0xfd/0x930
[ 2586.042487][T27429]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2586.048473][T27429]  ? create_io_thread+0xe0/0xe0
[ 2586.053344][T27429]  ? find_held_lock+0x2d/0x110
[ 2586.058130][T27429]  __do_sys_clone3+0x1f1/0x260
[ 2586.062905][T27429]  ? __do_sys_clone+0x100/0x100
[ 2586.067837][T27429]  do_syscall_64+0xd3/0x250
[ 2586.072370][T27429]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 2586.078277][T27429] RIP: 0033:0x7f212b0a8b99
[ 2586.082696][T27429] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 2586.102604][T27429] RSP: 002b:00007ffc7b20b738 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 2586.111125][T27429] RAX: ffffffffffffffda RBX: 00007f212b051270 RCX: 00007f212b0a8b99
[ 2586.119117][T27429] RDX: 00007f212b051270 RSI: 0000000000000058 RDI: 00007ffc7b20b780
[ 2586.127134][T27429] RBP: 00007f212be566c0 R08: 00007f212be566c0 R09: 00007ffc7b20b867
[ 2586.135143][T27429] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 2586.143125][T27429] R13: 000000000000000b R14: 00007ffc7b20b780 R15: 00007ffc7b20b868
[ 2586.151122][T27429]  </TASK>
19:46:57 executing program 1:
socket$kcm(0x10, 0x400000002, 0x0)
socket$inet(0x2, 0x2, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
write$binfmt_script(r0, &(0x7f0000000480)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket(0x0, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r1 = socket$rxrpc(0x21, 0x2, 0xa)
r2 = syz_genetlink_get_family_id$batadv(&(0x7f0000007580), 0xffffffffffffffff)
sendmsg$BATADV_CMD_SET_HARDIF(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001740)={&(0x7f0000000000)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16, @ANYBLOB="2d0100000000000000000500f6ff08000300", @ANYRES32], 0x2c}}, 0x0)
sendmsg$BATADV_CMD_GET_GATEWAYS(0xffffffffffffffff, &(0x7f0000007680)={0x0, 0x0, &(0x7f0000007640)={&(0x7f0000000000)=ANY=[@ANYBLOB="46040000", @ANYRES16=r2, @ANYBLOB="ff83050000076dc6d81b", @ANYRES32=r1], 0x4}}, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendfile(r4, r3, 0x0, 0x100000002)

[ 2586.196131][T27429] memory: usage 307200kB, limit 307200kB, failcnt 118132
[ 2586.206059][T27429] memory+swap: usage 307612kB, limit 9007199254740988kB, failcnt 0
[ 2586.226221][T27429] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[ 2586.252898][T27429] Memory cgroup stats for /syz3:
[ 2586.253084][T27429] cache 0
[ 2586.266083][T27429] rss 0
[ 2586.276308][T27429] rss_huge 0
[ 2586.279575][T27429] shmem 0
[ 2586.282550][T27429] mapped_file 0
[ 2586.296245][T27429] dirty 0
[ 2586.299244][T27429] writeback 0
[ 2586.311569][T27429] workingset_refault_anon 34841
[ 2586.323242][T27429] workingset_refault_file 1
[ 2586.332740][T27429] swap 421888
[ 2586.339897][T27429] swapcached 0
[ 2586.344017][T27429] pgpgin 158739
[ 2586.356503][T27429] pgpgout 158739
[ 2586.364983][T27429] pgfault 349854
[ 2586.372678][T27429] pgmajfault 34011
[ 2586.381414][T27429] inactive_anon 0
[ 2586.385100][T27429] active_anon 0
[ 2586.411859][T27429] inactive_file 0
[ 2586.418829][T27429] active_file 0
[ 2586.422465][T27429] unevictable 0
[ 2586.432580][T27429] hierarchical_memory_limit 314572800
[ 2586.444422][T27429] hierarchical_memsw_limit 9223372036854771712
[ 2586.454702][T27429] total_cache 0
[ 2586.458743][T27429] total_rss 0
[ 2586.462178][T27429] total_rss_huge 0
[ 2586.487969][T27429] total_shmem 0
[ 2586.491602][T27429] total_mapped_file 0
[ 2586.503960][T27429] total_dirty 0
[ 2586.523531][T27429] total_writeback 0
[ 2586.532006][T27429] total_workingset_refault_anon 34841
[ 2586.564460][T27429] total_workingset_refault_file 1
[ 2586.578077][T27429] total_swap 421888
[ 2586.582119][T27429] total_swapcached 0
[ 2586.591796][   T28] audit: type=1804 audit(1706039218.221:1929): pid=27432 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir245649211/syzkaller.jQ7tPM/33/cgroup.controllers" dev="sda1" ino=1956 res=1 errno=0
[ 2586.626212][T27429] total_pgpgin 158739
[ 2586.636111][T27429] total_pgpgout 158739
[ 2586.653960][T27429] total_pgfault 349854
[ 2586.659320][T27429] total_pgmajfault 34011
[ 2586.665849][T27429] total_inactive_anon 0
[ 2586.676116][T27429] total_active_anon 0
[ 2586.683887][T16775] team0 (unregistering): Port device team_slave_1 removed
[ 2586.694717][T27429] total_inactive_file 0
[ 2586.701144][T27429] total_active_file 0
[ 2586.731249][T27429] total_unevictable 0
[ 2586.776396][T27429] anon_cost 0
[ 2586.790067][T27429] file_cost 0
[ 2586.793468][T27429] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=27429,uid=0
[ 2586.797157][T16775] team0 (unregistering): Port device team_slave_0 removed
[ 2586.846134][T27429] Memory cgroup out of memory: Killed process 27429 (syz-executor.3) total-vm:54504kB, anon-rss:432kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 2586.882409][T16775] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
19:46:58 executing program 3:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x32}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000280)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000240)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=@newlink={0x48, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0xe403, r2}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @veth={{0x9}, {0x18, 0x2, 0x0, 0x1, @val=@VETH_INFO_PEER={0x14}}}}]}, 0x48}, 0x8600}, 0x0)

[ 2586.919233][T16775] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
19:46:58 executing program 1:
socket$kcm(0x10, 0x400000002, 0x0)
socket$inet(0x2, 0x2, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x3, &(0x7f00000000c0)=@framed, &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
write$binfmt_script(r1, &(0x7f0000000480)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r1, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r2 = socket$rxrpc(0x21, 0x2, 0xa)
r3 = syz_genetlink_get_family_id$batadv(&(0x7f0000007580), 0xffffffffffffffff)
sendmsg$BATADV_CMD_SET_HARDIF(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001740)={&(0x7f0000000000)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16, @ANYRES32=r0], 0x2c}}, 0x0)
sendmsg$BATADV_CMD_GET_GATEWAYS(0xffffffffffffffff, &(0x7f0000007680)={0x0, 0x0, &(0x7f0000007640)={&(0x7f0000000000)=ANY=[@ANYBLOB="46040000", @ANYRES16=r3, @ANYBLOB="ff83050000076dc6d81b", @ANYRES32=r2], 0x4}}, 0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendfile(r5, r4, 0x0, 0x100000002)

[ 2587.454155][T16775] bond0 (unregistering): Released all slaves
[ 2587.589963][T27434] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2587.609254][T27434] CPU: 1 PID: 27434 Comm: syz-executor.3 Not tainted 6.7.0-syzkaller-12291-g435e202d645c #0
[ 2587.619411][T27434] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 2587.629593][T27434] Call Trace:
[ 2587.632931][T27434]  <TASK>
[ 2587.636232][T27434]  dump_stack_lvl+0x125/0x1b0
[ 2587.640957][T27434]  dump_header+0x103/0x900
[ 2587.645440][T27434]  oom_kill_process+0x270/0xa60
[ 2587.650384][T27434]  out_of_memory+0x344/0x16c0
[ 2587.655132][T27434]  ? oom_killer_disable+0x2d0/0x2d0
[ 2587.660366][T27434]  ? rcu_read_unlock+0x1c/0x60
[ 2587.665157][T27434]  mem_cgroup_out_of_memory+0x206/0x270
[ 2587.670715][T27434]  ? mem_cgroup_margin+0x130/0x130
[ 2587.675837][T27434]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2587.681229][T27434]  try_charge_memcg+0xcd1/0x11a0
[ 2587.686192][T27434]  ? mem_cgroup_handle_over_high+0x570/0x570
[ 2587.692182][T27434]  ? get_mem_cgroup_from_objcg+0xb5/0x2a0
[ 2587.697996][T27434]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2587.703378][T27434]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2587.708773][T27434]  __memcg_kmem_charge_page+0xdd/0x2a0
[ 2587.714251][T27434]  memcg_charge_kernel_stack+0xc3/0x1f0
[ 2587.719862][T27434]  copy_process+0x1532/0x97b0
[ 2587.724605][T27434]  ? hlock_class+0x4e/0x130
[ 2587.729134][T27434]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2587.735124][T27434]  ? page_ext_put+0x43/0xd0
[ 2587.739653][T27434]  ? hlock_class+0x4e/0x130
[ 2587.744196][T27434]  ? pidfd_prepare+0x80/0x80
[ 2587.748808][T27434]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2587.754195][T27434]  ? preempt_count_sub+0x160/0x160
[ 2587.759487][T27434]  ? __lock_acquire+0x1502/0x3b30
[ 2587.764535][T27434]  ? __might_fault+0xe6/0x1a0
[ 2587.769233][T27434]  ? _copy_from_user+0x5d/0xf0
[ 2587.774015][T27434]  kernel_clone+0xfd/0x930
[ 2587.778443][T27434]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2587.784603][T27434]  ? create_io_thread+0xe0/0xe0
[ 2587.789478][T27434]  ? find_held_lock+0x2d/0x110
[ 2587.794292][T27434]  __do_sys_clone3+0x1f1/0x260
[ 2587.799079][T27434]  ? __do_sys_clone+0x100/0x100
[ 2587.803979][T27434]  do_syscall_64+0xd3/0x250
[ 2587.808527][T27434]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 2587.814446][T27434] RIP: 0033:0x7f212b0a8b99
[ 2587.818872][T27434] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 2587.838531][T27434] RSP: 002b:00007ffc7b20b738 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 2587.846959][T27434] RAX: ffffffffffffffda RBX: 00007f212b051270 RCX: 00007f212b0a8b99
[ 2587.854937][T27434] RDX: 00007f212b051270 RSI: 0000000000000058 RDI: 00007ffc7b20b780
[ 2587.863196][T27434] RBP: 00007f212be566c0 R08: 00007f212be566c0 R09: 00007ffc7b20b867
[ 2587.871272][T27434] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 2587.879256][T27434] R13: 000000000000000b R14: 00007ffc7b20b780 R15: 00007ffc7b20b868
[ 2587.887248][T27434]  </TASK>
[ 2587.909430][   T28] audit: type=1804 audit(1706039219.561:1930): pid=27437 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir245649211/syzkaller.jQ7tPM/34/cgroup.controllers" dev="sda1" ino=1956 res=1 errno=0
[ 2587.939217][T27434] memory: usage 307200kB, limit 307200kB, failcnt 118471
[ 2587.948867][T27434] memory+swap: usage 307568kB, limit 9007199254740988kB, failcnt 0
[ 2587.957952][T27434] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[ 2587.983392][T27434] Memory cgroup stats for /syz3:
[ 2587.983556][T27434] cache 0
[ 2588.002910][T16775] bond90 (unregistering): Released all slaves
[ 2588.005508][T27434] rss 0
[ 2588.017928][T27434] rss_huge 0
[ 2588.027307][T27434] shmem 0
[ 2588.042130][T27434] mapped_file 0
[ 2588.053551][T27434] dirty 0
[ 2588.061770][T27434] writeback 0
[ 2588.066759][T16775] bond89 (unregistering): Released all slaves
[ 2588.073468][T27434] workingset_refault_anon 34960
[ 2588.086268][T27434] workingset_refault_file 1
[ 2588.100013][T27434] swap 376832
[ 2588.108496][T27434] swapcached 0
[ 2588.120165][T27434] pgpgin 158869
[ 2588.122370][T16775] bond88 (unregistering): Released all slaves
[ 2588.129543][T27434] pgpgout 158869
[ 2588.138162][T27434] pgfault 350052
[ 2588.160218][T27434] pgmajfault 34114
[ 2588.174061][T27434] inactive_anon 0
[ 2588.182421][T27434] active_anon 0
[ 2588.186308][T16775] bond87 (unregistering): Released all slaves
[ 2588.193975][T27434] inactive_file 0
[ 2588.206491][T27434] active_file 0
[ 2588.210079][T27434] unevictable 0
[ 2588.213887][T27434] hierarchical_memory_limit 314572800
[ 2588.237749][T27434] hierarchical_memsw_limit 9223372036854771712
[ 2588.243982][T27434] total_cache 0
[ 2588.253245][T16775] bond86 (unregistering): Released all slaves
[ 2588.257952][T27434] total_rss 0
[ 2588.264606][T27434] total_rss_huge 0
[ 2588.277655][T27434] total_shmem 0
[ 2588.281251][T27434] total_mapped_file 0
[ 2588.285253][T27434] total_dirty 0
[ 2588.306162][T27434] total_writeback 0
[ 2588.310032][T27434] total_workingset_refault_anon 34960
[ 2588.315411][T27434] total_workingset_refault_file 1
19:47:00 executing program 1:
socket$kcm(0x10, 0x400000002, 0x0)
socket$inet(0x2, 0x2, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
write$binfmt_script(r1, &(0x7f0000000480)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r1, 0x0)
socket(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r2 = socket$rxrpc(0x21, 0x2, 0xa)
r3 = syz_genetlink_get_family_id$batadv(&(0x7f0000007580), 0xffffffffffffffff)
sendmsg$BATADV_CMD_SET_HARDIF(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001740)={&(0x7f0000000000)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16, @ANYBLOB="2d0100000000000000000500f6ff08000300", @ANYRES32=r0], 0x2c}}, 0x0)
sendmsg$BATADV_CMD_GET_GATEWAYS(0xffffffffffffffff, &(0x7f0000007680)={0x0, 0x0, &(0x7f0000007640)={&(0x7f0000000000)=ANY=[@ANYBLOB="46040000", @ANYRES16=r3, @ANYBLOB="ff83050000076dc6d81b", @ANYRES32=r2], 0x4}}, 0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendfile(r5, r4, 0x0, 0x100000002)

[ 2588.346162][T27434] total_swap 376832
[ 2588.347479][T16775] bond85 (unregistering): Released all slaves
[ 2588.350001][T27434] total_swapcached 0
[ 2588.350013][T27434] total_pgpgin 158869
[ 2588.406227][T27434] total_pgpgout 158869
[ 2588.410389][T27434] total_pgfault 350052
[ 2588.414476][T27434] total_pgmajfault 34114
[ 2588.422786][T16775] bond84 (unregistering): Released all slaves
[ 2588.437653][T27434] total_inactive_anon 0
[ 2588.441881][T27434] total_active_anon 0
[ 2588.445879][T27434] total_inactive_file 0
[ 2588.476082][T27434] total_active_file 0
[ 2588.480116][T27434] total_unevictable 0
[ 2588.484225][T27434] anon_cost 0
[ 2588.490979][T16775] bond83 (unregistering): Released all slaves
[ 2588.497574][T27434] file_cost 0
[ 2588.500894][T27434] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=27434,uid=0
[ 2588.536464][T27434] Memory cgroup out of memory: Killed process 27434 (syz-executor.3) total-vm:54504kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 2588.557735][T16775] bond82 (unregistering): Released all slaves
19:47:00 executing program 3:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x32}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000280)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000240)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=@newlink={0x48, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0xe403, r2}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @veth={{0x9}, {0x18, 0x2, 0x0, 0x1, @val=@VETH_INFO_PEER={0x14}}}}]}, 0x48}, 0x8700}, 0x0)

[ 2588.635440][T16775] bond81 (unregistering): Released all slaves
[ 2588.709094][T16775] bond80 (unregistering): Released all slaves
[ 2588.729245][   T28] audit: type=1804 audit(1706039220.381:1931): pid=27440 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir245649211/syzkaller.jQ7tPM/35/cgroup.controllers" dev="sda1" ino=1956 res=1 errno=0
[ 2588.772259][T16775] bond79 (unregistering): Released all slaves
[ 2589.087501][T27442] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2589.115378][T27442] CPU: 0 PID: 27442 Comm: syz-executor.3 Not tainted 6.7.0-syzkaller-12291-g435e202d645c #0
[ 2589.125525][T27442] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 2589.135637][T27442] Call Trace:
[ 2589.139054][T27442]  <TASK>
[ 2589.142011][T27442]  dump_stack_lvl+0x125/0x1b0
[ 2589.146739][T27442]  dump_header+0x103/0x900
[ 2589.151212][T27442]  oom_kill_process+0x270/0xa60
[ 2589.156125][T27442]  out_of_memory+0x344/0x16c0
[ 2589.160980][T27442]  ? oom_killer_disable+0x2d0/0x2d0
[ 2589.166223][T27442]  ? rcu_read_unlock+0x1c/0x60
[ 2589.171046][T27442]  mem_cgroup_out_of_memory+0x206/0x270
[ 2589.176636][T27442]  ? mem_cgroup_margin+0x130/0x130
[ 2589.182661][T27442]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2589.188361][T27442]  try_charge_memcg+0xcd1/0x11a0
[ 2589.193361][T27442]  ? mem_cgroup_handle_over_high+0x570/0x570
[ 2589.199366][T27442]  ? get_mem_cgroup_from_objcg+0xb5/0x2a0
[ 2589.205103][T27442]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2589.210507][T27442]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2589.215939][T27442]  __memcg_kmem_charge_page+0xdd/0x2a0
[ 2589.221452][T27442]  memcg_charge_kernel_stack+0xc3/0x1f0
[ 2589.227047][T27442]  copy_process+0x1532/0x97b0
[ 2589.231860][T27442]  ? hlock_class+0x4e/0x130
[ 2589.236442][T27442]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2589.242631][T27442]  ? hlock_class+0x4e/0x130
[ 2589.247193][T27442]  ? pidfd_prepare+0x80/0x80
[ 2589.251826][T27442]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2589.257953][T27442]  ? preempt_count_sub+0x160/0x160
[ 2589.263089][T27442]  ? __lock_acquire+0x1502/0x3b30
[ 2589.268121][T27442]  ? __might_fault+0xe6/0x1a0
[ 2589.273007][T27442]  ? _copy_from_user+0x5d/0xf0
[ 2589.277791][T27442]  kernel_clone+0xfd/0x930
[ 2589.282269][T27442]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2589.288289][T27442]  ? create_io_thread+0xe0/0xe0
[ 2589.293169][T27442]  ? find_held_lock+0x2d/0x110
[ 2589.298046][T27442]  __do_sys_clone3+0x1f1/0x260
[ 2589.302821][T27442]  ? __do_sys_clone+0x100/0x100
[ 2589.307717][T27442]  do_syscall_64+0xd3/0x250
[ 2589.312243][T27442]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 2589.318143][T27442] RIP: 0033:0x7f212b0a8b99
[ 2589.322599][T27442] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 2589.342242][T27442] RSP: 002b:00007ffc7b20b738 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 2589.353149][T27442] RAX: ffffffffffffffda RBX: 00007f212b051270 RCX: 00007f212b0a8b99
[ 2589.361313][T27442] RDX: 00007f212b051270 RSI: 0000000000000058 RDI: 00007ffc7b20b780
[ 2589.369316][T27442] RBP: 00007f212be566c0 R08: 00007f212be566c0 R09: 00007ffc7b20b867
[ 2589.377302][T27442] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 2589.385287][T27442] R13: 000000000000000b R14: 00007ffc7b20b780 R15: 00007ffc7b20b868
[ 2589.393634][T27442]  </TASK>
[ 2589.426190][T27442] memory: usage 307200kB, limit 307200kB, failcnt 118720
19:47:01 executing program 1:
socket$kcm(0x10, 0x400000002, 0x0)
socket$inet(0x2, 0x2, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
write$binfmt_script(r0, &(0x7f0000000480)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r1 = socket$rxrpc(0x21, 0x2, 0xa)
r2 = syz_genetlink_get_family_id$batadv(&(0x7f0000007580), 0xffffffffffffffff)
sendmsg$BATADV_CMD_SET_HARDIF(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, 0x0}, 0x0)
sendmsg$BATADV_CMD_GET_GATEWAYS(0xffffffffffffffff, &(0x7f0000007680)={0x0, 0x0, &(0x7f0000007640)={&(0x7f0000000000)=ANY=[@ANYBLOB="46040000", @ANYRES16=r2, @ANYBLOB="ff83050000076dc6d81b", @ANYRES32=r1], 0x4}}, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendfile(r4, r3, 0x0, 0x100000002)

[ 2589.441587][T27442] memory+swap: usage 307544kB, limit 9007199254740988kB, failcnt 0
[ 2589.459404][T27442] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0
[ 2589.486557][T27442] Memory cgroup stats for /syz3:
[ 2589.486737][T27442] cache 0
[ 2589.513539][T27442] rss 12288
[ 2589.528019][T27442] rss_huge 0
[ 2589.531625][T27442] shmem 0
[ 2589.535524][T27442] mapped_file 0
[ 2589.541996][T16775] bond78 (unregistering): Released all slaves
[ 2589.547100][T27442] dirty 0
[ 2589.556197][T27442] writeback 0
[ 2589.560265][T27442] workingset_refault_anon 35034
[ 2589.576548][T27442] workingset_refault_file 1
[ 2589.581197][T27442] swap 352256
[ 2589.586549][T27442] swapcached 12288
[ 2589.606287][T27442] pgpgin 158957
[ 2589.613649][T27442] pgpgout 158954
[ 2589.625570][T16775] bond77 (unregistering): Released all slaves
[ 2589.627644][T27442] pgfault 350201
[ 2589.650656][T27442] pgmajfault 34185
[ 2589.684040][T27442] inactive_anon 8192
[ 2589.686842][T16775] bond76 (unregistering): Released all slaves
[ 2589.699369][T27442] active_anon 4096
[ 2589.705482][T27442] inactive_file 0
[ 2589.711956][T27442] active_file 0
[ 2589.715457][T27442] unevictable 0
[ 2589.746146][T27442] hierarchical_memory_limit 314572800
[ 2589.748903][T16775] bond75 (unregistering): Released all slaves
[ 2589.761814][T27442] hierarchical_memsw_limit 9223372036854771712
[ 2589.786148][T27442] total_cache 0
[ 2589.789670][T27442] total_rss 12288
[ 2589.793327][T27442] total_rss_huge 0
[ 2589.816072][   T28] audit: type=1804 audit(1706039221.451:1932): pid=27444 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir245649211/syzkaller.jQ7tPM/36/cgroup.controllers" dev="sda1" ino=1956 res=1 errno=0
[ 2589.816249][T27442] total_shmem 0
[ 2589.854507][T16775] bond74 (unregistering): Released all slaves
[ 2589.863533][T27442] total_mapped_file 0
[ 2589.876044][T27442] total_dirty 0
[ 2589.879568][T27442] total_writeback 0
[ 2589.883396][T27442] total_workingset_refault_anon 35034
[ 2589.907003][T27442] total_workingset_refault_file 1
[ 2589.912230][T27442] total_swap 352256
[ 2589.929811][T27442] total_swapcached 12288
[ 2589.934126][T27442] total_pgpgin 158957
[ 2589.953536][T27442] total_pgpgout 158954
[ 2589.972376][T16775] bond73 (unregistering): Released all slaves
[ 2589.972500][T27442] total_pgfault 350201
[ 2589.984039][T27442] total_pgmajfault 34185
[ 2589.996033][T27442] total_inactive_anon 8192
[ 2590.016294][T27442] total_active_anon 4096
[ 2590.020747][T27442] total_inactive_file 0
[ 2590.036052][T27442] total_active_file 0
[ 2590.040597][T27442] total_unevictable 0
[ 2590.044630][T16775] bond72 (unregistering): Released all slaves
[ 2590.045209][T27442] anon_cost 0
[ 2590.055285][T27442] file_cost 0
[ 2590.060536][T27442] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=27442,uid=0
[ 2590.084721][T27442] Memory cgroup out of memory: Killed process 27442 (syz-executor.3) total-vm:54504kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 2590.086783][T16775] bond71 (unregistering): Released all slaves
[ 2590.165182][T16775] bond70 (unregistering): Released all slaves
19:47:01 executing program 3:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x32}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000280)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000240)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=@newlink={0x48, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0xe403, r2}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @veth={{0x9}, {0x18, 0x2, 0x0, 0x1, @val=@VETH_INFO_PEER={0x14}}}}]}, 0x48}, 0x8800}, 0x0)

[ 2590.224097][T16775] bond69 (unregistering): Released all slaves
[ 2590.253642][T16775] bond68 (unregistering): Released all slaves
[ 2590.318547][T16775] bond67 (unregistering): Released all slaves
[ 2590.406938][T16775] bond66 (unregistering): Released all slaves
[ 2590.475115][T16775] bond65 (unregistering): Released all slaves
19:47:02 executing program 1:
socket$kcm(0x10, 0x400000002, 0x0)
socket$inet(0x2, 0x2, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
write$binfmt_script(r0, &(0x7f0000000480)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r1 = socket$rxrpc(0x21, 0x2, 0xa)
r2 = syz_genetlink_get_family_id$batadv(&(0x7f0000007580), 0xffffffffffffffff)
sendmsg$BATADV_CMD_SET_HARDIF(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, 0x0}, 0x0)
sendmsg$BATADV_CMD_GET_GATEWAYS(0xffffffffffffffff, &(0x7f0000007680)={0x0, 0x0, &(0x7f0000007640)={&(0x7f0000000000)=ANY=[@ANYBLOB="46040000", @ANYRES16=r2, @ANYBLOB="ff83050000076dc6d81b", @ANYRES32=r1], 0x4}}, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendfile(r4, r3, 0x0, 0x100000002)

[ 2590.569343][T16775] bond64 (unregistering): Released all slaves
[ 2590.622758][T16775] bond63 (unregistering): Released all slaves
[ 2590.689391][T16775] bond62 (unregistering): Released all slaves
[ 2590.701744][T27446] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2590.724470][T27446] CPU: 0 PID: 27446 Comm: syz-executor.3 Not tainted 6.7.0-syzkaller-12291-g435e202d645c #0
[ 2590.734613][T27446] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 2590.744881][T27446] Call Trace:
[ 2590.748206][T27446]  <TASK>
[ 2590.751166][T27446]  dump_stack_lvl+0x125/0x1b0
[ 2590.755897][T27446]  dump_header+0x103/0x900
[ 2590.760363][T27446]  oom_kill_process+0x270/0xa60
[ 2590.765270][T27446]  out_of_memory+0x344/0x16c0
[ 2590.770020][T27446]  ? oom_killer_disable+0x2d0/0x2d0
[ 2590.775278][T27446]  ? rcu_read_unlock+0x1c/0x60
[ 2590.780098][T27446]  mem_cgroup_out_of_memory+0x206/0x270
[ 2590.785771][T27446]  ? mem_cgroup_margin+0x130/0x130
[ 2590.791874][T27446]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2590.797303][T27446]  try_charge_memcg+0xcd1/0x11a0
[ 2590.802294][T27446]  ? mem_cgroup_handle_over_high+0x570/0x570
[ 2590.808324][T27446]  ? get_mem_cgroup_from_objcg+0xb5/0x2a0
[ 2590.814086][T27446]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2590.819584][T27446]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2590.825002][T27446]  __memcg_kmem_charge_page+0xdd/0x2a0
[ 2590.830511][T27446]  memcg_charge_kernel_stack+0xc3/0x1f0
[ 2590.836091][T27446]  copy_process+0x1532/0x97b0
[ 2590.840802][T27446]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2590.846816][T27446]  ? page_ext_put+0x43/0xd0
[ 2590.851360][T27446]  ? pidfd_prepare+0x80/0x80
[ 2590.855986][T27446]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2590.861478][T27446]  ? preempt_count_sub+0x160/0x160
[ 2590.866621][T27446]  ? print_usage_bug.part.0+0x550/0x550
[ 2590.872208][T27446]  ? __might_fault+0xe6/0x1a0
[ 2590.876935][T27446]  ? _copy_from_user+0x5d/0xf0
[ 2590.881742][T27446]  kernel_clone+0xfd/0x930
[ 2590.886190][T27446]  ? create_io_thread+0xe0/0xe0
[ 2590.891094][T27446]  __do_sys_clone3+0x1f1/0x260
[ 2590.896000][T27446]  ? __do_sys_clone+0x100/0x100
[ 2590.900924][T27446]  ? do_user_addr_fault+0x663/0x1030
[ 2590.906291][T27446]  do_syscall_64+0xd3/0x250
[ 2590.910857][T27446]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 2590.916895][T27446] RIP: 0033:0x7f212b0a8b99
[ 2590.921448][T27446] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 2590.941105][T27446] RSP: 002b:00007ffc7b20b738 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 2590.949553][T27446] RAX: ffffffffffffffda RBX: 00007f212b051270 RCX: 00007f212b0a8b99
[ 2590.957554][T27446] RDX: 00007f212b051270 RSI: 0000000000000058 RDI: 00007ffc7b20b780
[ 2590.965551][T27446] RBP: 00007f212be566c0 R08: 00007f212be566c0 R09: 00007ffc7b20b867
[ 2590.973731][T27446] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 2590.981735][T27446] R13: 000000000000000b R14: 00007ffc7b20b780 R15: 00007ffc7b20b868
[ 2590.989864][T27446]  </TASK>
[ 2591.004109][ T1223] ieee802154 phy0 wpan0: encryption failed: -22
[ 2591.012962][ T1223] ieee802154 phy1 wpan1: encryption failed: -22
[ 2591.033988][T27446] memory: usage 307200kB, limit 307200kB, failcnt 118943
[ 2591.041387][T27446] memory+swap: usage 307596kB, limit 9007199254740988kB, failcnt 0
[ 2591.049605][T27446] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[ 2591.058393][T27446] Memory cgroup stats for /syz3:
[ 2591.058551][T27446] cache 0
[ 2591.059323][T16775] bond61 (unregistering): Released all slaves
[ 2591.085783][T27446] rss 0
[ 2591.090137][   T28] audit: type=1804 audit(1706039222.731:1933): pid=27450 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir245649211/syzkaller.jQ7tPM/37/cgroup.controllers" dev="sda1" ino=1956 res=1 errno=0
[ 2591.131370][T27446] rss_huge 0
[ 2591.134733][T27446] shmem 0
[ 2591.137850][T27446] mapped_file 0
[ 2591.152224][T27446] dirty 0
[ 2591.155330][T27446] writeback 0
[ 2591.158995][T27446] workingset_refault_anon 35101
[ 2591.164117][T27446] workingset_refault_file 1
[ 2591.168607][T16775] bond60 (unregistering): Released all slaves
[ 2591.174947][T27446] swap 405504
[ 2591.178500][T27446] swapcached 0
[ 2591.193201][T27446] pgpgin 159037
[ 2591.219002][T16775] bond59 (unregistering): Released all slaves
[ 2591.233584][T27446] pgpgout 159037
[ 2591.239627][T27446] pgfault 350328
[ 2591.243211][T27446] pgmajfault 34241
19:47:02 executing program 1:
socket$kcm(0x10, 0x400000002, 0x0)
socket$inet(0x2, 0x2, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
write$binfmt_script(r0, &(0x7f0000000480)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r1 = socket$rxrpc(0x21, 0x2, 0xa)
r2 = syz_genetlink_get_family_id$batadv(&(0x7f0000007580), 0xffffffffffffffff)
sendmsg$BATADV_CMD_SET_HARDIF(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, 0x0}, 0x0)
sendmsg$BATADV_CMD_GET_GATEWAYS(0xffffffffffffffff, &(0x7f0000007680)={0x0, 0x0, &(0x7f0000007640)={&(0x7f0000000000)=ANY=[@ANYBLOB="46040000", @ANYRES16=r2, @ANYBLOB="ff83050000076dc6d81b", @ANYRES32=r1], 0x4}}, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendfile(r4, r3, 0x0, 0x100000002)

[ 2591.273088][T27446] inactive_anon 0
[ 2591.274617][T16775] bond58 (unregistering): Released all slaves
[ 2591.286354][T27446] active_anon 0
[ 2591.289876][T27446] inactive_file 0
[ 2591.294097][T27446] active_file 0
[ 2591.316098][T27446] unevictable 0
[ 2591.319614][T27446] hierarchical_memory_limit 314572800
[ 2591.325012][T27446] hierarchical_memsw_limit 9223372036854771712
[ 2591.355884][T27446] total_cache 0
[ 2591.363310][T16775] bond57 (unregistering): Released all slaves
[ 2591.396491][T27446] total_rss 0
[ 2591.399842][T27446] total_rss_huge 0
[ 2591.403595][T27446] total_shmem 0
[ 2591.417478][T27446] total_mapped_file 0
[ 2591.421509][T27446] total_dirty 0
[ 2591.424976][T27446] total_writeback 0
[ 2591.436455][T27446] total_workingset_refault_anon 35101
[ 2591.442177][T27446] total_workingset_refault_file 1
[ 2591.447943][T27446] total_swap 405504
[ 2591.454457][T16775] bond56 (unregistering): Released all slaves
[ 2591.461206][T27446] total_swapcached 0
[ 2591.465144][T27446] total_pgpgin 159037
[ 2591.484065][T27446] total_pgpgout 159037
[ 2591.494583][T27446] total_pgfault 350328
[ 2591.501716][T16775] bond55 (unregistering): Released all slaves
[ 2591.508150][T27446] total_pgmajfault 34241
[ 2591.512420][T27446] total_inactive_anon 0
[ 2591.526294][T27446] total_active_anon 0
[ 2591.530343][T27446] total_inactive_file 0
[ 2591.552762][T27446] total_active_file 0
[ 2591.560502][T16775] bond54 (unregistering): Released all slaves
[ 2591.566956][T27446] total_unevictable 0
[ 2591.570959][T27446] anon_cost 0
[ 2591.574277][T27446] file_cost 0
[ 2591.586166][T27446] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=27446,uid=0
[ 2591.614404][T27446] Memory cgroup out of memory: Killed process 27446 (syz-executor.3) total-vm:54504kB, anon-rss:380kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 2591.635458][T16775] bond53 (unregistering): Released all slaves
[ 2591.682350][T16775] bond52 (unregistering): Released all slaves
19:47:03 executing program 3:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x32}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000280)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000240)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=@newlink={0x48, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0xe403, r2}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @veth={{0x9}, {0x18, 0x2, 0x0, 0x1, @val=@VETH_INFO_PEER={0x14}}}}]}, 0x48}, 0x8900}, 0x0)

[ 2591.752193][T16775] bond51 (unregistering): Released all slaves
[ 2591.804086][T16775] bond50 (unregistering): Released all slaves
[ 2591.856326][T16775] bond49 (unregistering): Released all slaves
[ 2591.856504][   T28] audit: type=1804 audit(1706039223.501:1934): pid=27453 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir245649211/syzkaller.jQ7tPM/38/cgroup.controllers" dev="sda1" ino=1956 res=1 errno=0
[ 2591.960615][T16775] bond48 (unregistering): Released all slaves
[ 2592.013538][T16775] bond47 (unregistering): Released all slaves
[ 2592.066505][T16775] bond46 (unregistering): Released all slaves
[ 2592.180045][T16775] bond45 (unregistering): Released all slaves
[ 2592.237700][T27455] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2592.250940][T16775] bond44 (unregistering): Released all slaves
[ 2592.260087][T27455] CPU: 1 PID: 27455 Comm: syz-executor.3 Not tainted 6.7.0-syzkaller-12291-g435e202d645c #0
[ 2592.270217][T27455] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 2592.280303][T27455] Call Trace:
[ 2592.283600][T27455]  <TASK>
[ 2592.286543][T27455]  dump_stack_lvl+0x125/0x1b0
[ 2592.291256][T27455]  dump_header+0x103/0x900
[ 2592.295713][T27455]  oom_kill_process+0x270/0xa60
[ 2592.300606][T27455]  out_of_memory+0x344/0x16c0
[ 2592.305332][T27455]  ? oom_killer_disable+0x2d0/0x2d0
[ 2592.310670][T27455]  ? rcu_read_unlock+0x1c/0x60
[ 2592.315476][T27455]  mem_cgroup_out_of_memory+0x206/0x270
[ 2592.321051][T27455]  ? mem_cgroup_margin+0x130/0x130
[ 2592.326194][T27455]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2592.331626][T27455]  try_charge_memcg+0xcd1/0x11a0
[ 2592.336868][T27455]  ? mem_cgroup_handle_over_high+0x570/0x570
[ 2592.342883][T27455]  ? get_mem_cgroup_from_objcg+0xb5/0x2a0
[ 2592.348630][T27455]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2592.354035][T27455]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2592.359456][T27455]  __memcg_kmem_charge_page+0xdd/0x2a0
[ 2592.364968][T27455]  memcg_charge_kernel_stack+0xc3/0x1f0
[ 2592.370552][T27455]  copy_process+0x527/0x97b0
[ 2592.375188][T27455]  ? hlock_class+0x4e/0x130
[ 2592.379734][T27455]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2592.385739][T27455]  ? page_ext_put+0x43/0xd0
[ 2592.390267][T27455]  ? hlock_class+0x4e/0x130
[ 2592.394819][T27455]  ? pidfd_prepare+0x80/0x80
[ 2592.399450][T27455]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2592.404864][T27455]  ? preempt_count_sub+0x160/0x160
[ 2592.410019][T27455]  ? __lock_acquire+0x1502/0x3b30
[ 2592.415076][T27455]  ? __might_fault+0xe6/0x1a0
[ 2592.419796][T27455]  ? _copy_from_user+0x5d/0xf0
[ 2592.424615][T27455]  kernel_clone+0xfd/0x930
[ 2592.429079][T27455]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2592.435092][T27455]  ? create_io_thread+0xe0/0xe0
[ 2592.440093][T27455]  ? find_held_lock+0x2d/0x110
[ 2592.444899][T27455]  __do_sys_clone3+0x1f1/0x260
[ 2592.449693][T27455]  ? __do_sys_clone+0x100/0x100
[ 2592.454641][T27455]  do_syscall_64+0xd3/0x250
[ 2592.459379][T27455]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 2592.465337][T27455] RIP: 0033:0x7f212b0a8b99
[ 2592.469794][T27455] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 2592.489453][T27455] RSP: 002b:00007ffc7b20b738 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 2592.497907][T27455] RAX: ffffffffffffffda RBX: 00007f212b051270 RCX: 00007f212b0a8b99
[ 2592.505899][T27455] RDX: 00007f212b051270 RSI: 0000000000000058 RDI: 00007ffc7b20b780
[ 2592.513893][T27455] RBP: 00007f212be566c0 R08: 00007f212be566c0 R09: 00007ffc7b20b867
[ 2592.521894][T27455] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 2592.531199][T27455] R13: 000000000000000b R14: 00007ffc7b20b780 R15: 00007ffc7b20b868
[ 2592.539232][T27455]  </TASK>
[ 2592.560460][T27455] memory: usage 307200kB, limit 307200kB, failcnt 119148
[ 2592.561015][T16775] bond43 (unregistering): Released all slaves
[ 2592.574363][T27455] memory+swap: usage 307564kB, limit 9007199254740988kB, failcnt 0
[ 2592.591716][T27455] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[ 2592.603617][T27455] Memory cgroup stats for /syz3:
19:47:04 executing program 1:
socket$kcm(0x10, 0x400000002, 0x0)
socket$inet(0x2, 0x2, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
write$binfmt_script(r0, &(0x7f0000000480)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, 0xffffffffffffffff, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r1 = socket$rxrpc(0x21, 0x2, 0xa)
r2 = syz_genetlink_get_family_id$batadv(&(0x7f0000007580), 0xffffffffffffffff)
sendmsg$BATADV_CMD_SET_HARDIF(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001740)={&(0x7f0000000000)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16, @ANYBLOB="2d0100000000000000000500f6ff08000300", @ANYRES32], 0x2c}}, 0x0)
sendmsg$BATADV_CMD_GET_GATEWAYS(0xffffffffffffffff, &(0x7f0000007680)={0x0, 0x0, &(0x7f0000007640)={&(0x7f0000000000)=ANY=[@ANYBLOB="46040000", @ANYRES16=r2, @ANYBLOB="ff83050000076dc6d81b", @ANYRES32=r1], 0x4}}, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendfile(r4, r3, 0x0, 0x100000002)

[ 2592.604437][T27455] cache 0
[ 2592.627892][T27455] rss 0
[ 2592.630728][T27455] rss_huge 0
[ 2592.633954][T27455] shmem 0
[ 2592.638847][T27455] mapped_file 0
[ 2592.660384][T27455] dirty 0
[ 2592.667068][T16775] bond42 (unregistering): Released all slaves
[ 2592.669424][T27455] writeback 0
[ 2592.687236][T27455] workingset_refault_anon 35157
[ 2592.692154][T27455] workingset_refault_file 1
[ 2592.706031][T27455] swap 372736
[ 2592.709422][T27455] swapcached 0
[ 2592.712820][T27455] pgpgin 159104
[ 2592.726226][T27455] pgpgout 159104
[ 2592.729831][T27455] pgfault 350435
[ 2592.733396][T27455] pgmajfault 34293
[ 2592.755763][T27455] inactive_anon 0
[ 2592.782321][T27455] active_anon 0
[ 2592.785944][T27455] inactive_file 0
[ 2592.792507][T27455] active_file 0
[ 2592.796595][T27455] unevictable 0
[ 2592.798340][T16775] bond41 (unregistering): Released all slaves
[ 2592.811082][T27455] hierarchical_memory_limit 314572800
[ 2592.817084][T27455] hierarchical_memsw_limit 9223372036854771712
[ 2592.823379][T27455] total_cache 0
[ 2592.856040][T27455] total_rss 0
[ 2592.859394][T27455] total_rss_huge 0
[ 2592.865493][T27455] total_shmem 0
[ 2592.865637][T16775] bond40 (unregistering): Released all slaves
[ 2592.871552][T27455] total_mapped_file 0
[ 2592.882538][T27455] total_dirty 0
[ 2592.886444][T27455] total_writeback 0
[ 2592.890370][T27455] total_workingset_refault_anon 35157
[ 2592.895775][T27455] total_workingset_refault_file 1
[ 2592.901030][T27455] total_swap 372736
[ 2592.904951][T27455] total_swapcached 0
[ 2592.908980][T27455] total_pgpgin 159104
[ 2592.913259][T27455] total_pgpgout 159104
[ 2592.917538][T27455] total_pgfault 350435
[ 2592.921700][T27455] total_pgmajfault 34293
[ 2592.926103][T27455] total_inactive_anon 0
[ 2592.930285][T27455] total_active_anon 0
[ 2592.934287][T27455] total_inactive_file 0
[ 2592.938634][T27455] total_active_file 0
[ 2592.942650][T27455] total_unevictable 0
[ 2592.946833][T27455] anon_cost 0
[ 2592.950154][T27455] file_cost 0
[ 2592.953174][T16775] bond39 (unregistering): Released all slaves
[ 2592.953428][T27455] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=27455,uid=0
[ 2592.976766][T27455] Memory cgroup out of memory: Killed process 27455 (syz-executor.3) total-vm:54504kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
19:47:04 executing program 3:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x32}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000280)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000240)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=@newlink={0x48, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0xe403, r2}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @veth={{0x9}, {0x18, 0x2, 0x0, 0x1, @val=@VETH_INFO_PEER={0x14}}}}]}, 0x48}, 0x8a00}, 0x0)

[ 2593.128277][T16775] bond38 (unregistering): Released all slaves
[ 2593.220904][T16775] bond37 (unregistering): Released all slaves
[ 2593.292580][T16775] bond36 (unregistering): Released all slaves
[ 2593.372081][T16775] bond35 (unregistering): Released all slaves
[ 2593.457039][T16775] bond34 (unregistering): Released all slaves
[ 2593.518143][ T5091] syz-executor.3 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[ 2593.536258][ T5091] CPU: 1 PID: 5091 Comm: syz-executor.3 Not tainted 6.7.0-syzkaller-12291-g435e202d645c #0
[ 2593.546311][ T5091] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 2593.556395][ T5091] Call Trace:
[ 2593.559707][ T5091]  <TASK>
[ 2593.562651][ T5091]  dump_stack_lvl+0x125/0x1b0
[ 2593.567365][ T5091]  dump_header+0x103/0x900
[ 2593.571808][ T5091]  oom_kill_process+0x270/0xa60
[ 2593.576770][ T5091]  out_of_memory+0x344/0x16c0
[ 2593.581461][ T5091]  ? mutex_trylock+0xa0/0x130
[ 2593.586181][ T5091]  ? oom_killer_disable+0x2d0/0x2d0
[ 2593.591417][ T5091]  ? rcu_read_unlock+0x1c/0x60
[ 2593.596226][ T5091]  mem_cgroup_out_of_memory+0x206/0x270
[ 2593.601802][ T5091]  ? mem_cgroup_margin+0x130/0x130
[ 2593.606940][ T5091]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2593.612363][ T5091]  try_charge_memcg+0xcd1/0x11a0
[ 2593.617334][ T5091]  ? mem_cgroup_handle_over_high+0x570/0x570
[ 2593.623333][ T5091]  ? rcu_read_unlock+0x1c/0x60
[ 2593.628109][ T5091]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2593.633489][ T5091]  ? __radix_tree_lookup+0x21f/0x2c0
[ 2593.638793][ T5091]  mem_cgroup_swapin_charge_folio+0x138/0x380
[ 2593.644887][ T5091]  __read_swap_cache_async+0x4e1/0x600
[ 2593.650358][ T5091]  ? filemap_get_incore_folio+0x160/0x160
[ 2593.656088][ T5091]  ? swp_swap_info+0xcf/0x130
[ 2593.660783][ T5091]  ? swapcache_prepare+0x20/0x20
[ 2593.665726][ T5091]  ? find_held_lock+0x2d/0x110
[ 2593.670508][ T5091]  ? find_held_lock+0x2d/0x110
[ 2593.675292][ T5091]  swap_cluster_readahead+0x4d4/0x710
[ 2593.680721][ T5091]  ? read_swap_cache_async+0x1a0/0x1a0
[ 2593.686288][ T5091]  ? reacquire_held_locks+0x410/0x4c0
[ 2593.691691][ T5091]  ? xas_descend+0x141/0x4e0
[ 2593.696327][ T5091]  ? filemap_get_entry+0x23e/0x460
[ 2593.701465][ T5091]  swapin_readahead+0x132/0xe60
[ 2593.706329][ T5091]  ? get_swap_device+0x363/0x5e0
[ 2593.711887][ T5091]  ? exit_swap_address_space+0x250/0x250
[ 2593.718592][ T5091]  ? __filemap_get_folio+0x2b0/0xaa0
[ 2593.723913][ T5091]  ? swap_cache_get_folio+0x1dc/0x460
[ 2593.729320][ T5091]  ? get_swap_device+0x245/0x5e0
[ 2593.734281][ T5091]  ? free_pages_and_swap_cache+0xa0/0xa0
[ 2593.739931][ T5091]  ? lock_sync+0x190/0x190
[ 2593.744968][ T5091]  do_swap_page+0x4a6/0x3190
[ 2593.749569][ T5091]  ? rcu_is_watching+0x12/0xb0
[ 2593.754516][ T5091]  ? __pte_offset_map+0x1b9/0x540
[ 2593.759545][ T5091]  ? unmap_mapping_folio+0x3b0/0x3b0
[ 2593.765038][ T5091]  ? pte_offset_map_nolock+0xfa/0x1b0
[ 2593.770436][ T5091]  ? __pte_offset_map+0x540/0x540
[ 2593.775594][ T5091]  __handle_mm_fault+0x13a0/0x4900
[ 2593.780997][ T5091]  ? clear_huge_page+0x2e0/0x2e0
[ 2593.785973][ T5091]  ? lock_mm_and_find_vma+0x580/0x580
[ 2593.791362][ T5091]  handle_mm_fault+0x47a/0xa10
[ 2593.796159][ T5091]  do_user_addr_fault+0x30b/0x1030
[ 2593.801305][ T5091]  ? irqentry_enter_from_user_mode+0x5f/0xc0
[ 2593.807315][ T5091]  exc_page_fault+0x5d/0xc0
[ 2593.811839][ T5091]  asm_exc_page_fault+0x26/0x30
[ 2593.816697][ T5091] RIP: 0033:0x7f212b0a81b8
[ 2593.821114][ T5091] Code: 3c 24 48 89 4c 24 18 e8 f6 b9 ff ff 4c 8b 54 24 18 48 8b 54 24 10 41 89 c0 8b 74 24 0c 8b 3c 24 b8 e6 00 00 00 0f 05 44 89 c7 <48> 89 04 24 e8 4f ba ff ff 48 8b 04 24 48 83 c4 28 f7 d8 c3 0f 1f
[ 2593.840732][ T5091] RSP: 002b:00007ffc7b20bb10 EFLAGS: 00010293
[ 2593.846812][ T5091] RAX: 0000000000000000 RBX: 00000000000028fc RCX: 00007f212b0a81b5
[ 2593.854787][ T5091] RDX: 00007ffc7b20bb50 RSI: 0000000000000000 RDI: 0000000000000000
[ 2593.863226][ T5091] RBP: 00007ffc7b20bbdc R08: 0000000000000000 R09: 0000000000000001
[ 2593.871212][ T5091] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000032
[ 2593.879206][ T5091] R13: 00000000002791aa R14: 00000000002791aa R15: 0000000000000000
[ 2593.887209][ T5091]  </TASK>
19:47:05 executing program 1:
socket$kcm(0x10, 0x400000002, 0x0)
socket$inet(0x2, 0x2, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x3, &(0x7f00000000c0)=@framed, &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
write$binfmt_script(r1, &(0x7f0000000480)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r1, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r2 = socket$rxrpc(0x21, 0x2, 0xa)
r3 = syz_genetlink_get_family_id$batadv(&(0x7f0000007580), 0xffffffffffffffff)
sendmsg$BATADV_CMD_SET_HARDIF(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001740)={&(0x7f0000000000)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16, @ANYRES32=r0], 0x2c}}, 0x0)
sendmsg$BATADV_CMD_GET_GATEWAYS(0xffffffffffffffff, &(0x7f0000007680)={0x0, 0x0, &(0x7f0000007640)={&(0x7f0000000000)=ANY=[@ANYBLOB="46040000", @ANYRES16=r3, @ANYBLOB="ff83050000076dc6d81b", @ANYRES32=r2], 0x4}}, 0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendfile(r5, r4, 0x0, 0x100000002)

[ 2593.944269][   T28] audit: type=1804 audit(1706039225.561:1935): pid=27459 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir245649211/syzkaller.jQ7tPM/39/cgroup.controllers" dev="sda1" ino=1956 res=1 errno=0
[ 2593.963918][ T5091] memory: usage 307184kB, limit 307200kB, failcnt 119492
[ 2594.020912][T16775] bond33 (unregistering): Released all slaves
[ 2594.040492][ T5091] memory+swap: usage 307504kB, limit 9007199254740988kB, failcnt 0
[ 2594.056689][ T5091] kmem: usage 307184kB, limit 9007199254740988kB, failcnt 0
[ 2594.064058][ T5091] Memory cgroup stats for /syz3:
[ 2594.064222][ T5091] cache 0
[ 2594.086422][ T5091] rss 0
[ 2594.088784][T16775] bond32 (unregistering): Released all slaves
[ 2594.089229][ T5091] rss_huge 0
[ 2594.116320][ T5091] shmem 0
[ 2594.119313][ T5091] mapped_file 0
[ 2594.122789][ T5091] dirty 0
[ 2594.125856][ T5091] writeback 0
[ 2594.136044][ T5091] workingset_refault_anon 35263
[ 2594.151616][ T5091] workingset_refault_file 1
[ 2594.159299][T16775] bond31 (unregistering): Released all slaves
[ 2594.166220][ T5091] swap 327680
[ 2594.169576][ T5091] swapcached 0
[ 2594.172977][ T5091] pgpgin 159223
[ 2594.186387][ T5091] pgpgout 159223
[ 2594.189990][ T5091] pgfault 350618
[ 2594.193547][ T5091] pgmajfault 34392
[ 2594.206038][ T5091] inactive_anon 0
[ 2594.209738][ T5091] active_anon 0
[ 2594.217710][ T5091] inactive_file 0
[ 2594.221392][ T5091] active_file 0
[ 2594.225132][ T5091] unevictable 0
[ 2594.232699][T16775] bond30 (unregistering): Released all slaves
[ 2594.263927][ T5091] hierarchical_memory_limit 314572800
[ 2594.280446][ T5091] hierarchical_memsw_limit 9223372036854771712
[ 2594.296076][ T5091] total_cache 0
[ 2594.303396][T16775] bond29 (unregistering): Released all slaves
[ 2594.310105][ T5091] total_rss 0
[ 2594.313421][ T5091] total_rss_huge 0
[ 2594.336317][ T5091] total_shmem 0
[ 2594.339838][ T5091] total_mapped_file 0
[ 2594.343841][ T5091] total_dirty 0
[ 2594.367088][ T5091] total_writeback 0
[ 2594.371080][ T5091] total_workingset_refault_anon 35263
[ 2594.390330][ T5091] total_workingset_refault_file 1
[ 2594.391852][T16775] bond28 (unregistering): Released all slaves
[ 2594.395383][ T5091] total_swap 327680
[ 2594.395395][ T5091] total_swapcached 0
[ 2594.435382][ T5091] total_pgpgin 159223
[ 2594.447702][ T5091] total_pgpgout 159223
[ 2594.451838][ T5091] total_pgfault 350618
[ 2594.459435][T16775] bond27 (unregistering): Released all slaves
[ 2594.476188][ T5091] total_pgmajfault 34392
[ 2594.480498][ T5091] total_inactive_anon 0
[ 2594.484674][ T5091] total_active_anon 0
[ 2594.518566][ T5091] total_inactive_file 0
[ 2594.522805][ T5091] total_active_file 0
[ 2594.538494][T16775] bond26 (unregistering): Released all slaves
[ 2594.544685][ T5091] total_unevictable 0
[ 2594.556054][ T5091] anon_cost 0
[ 2594.559410][ T5091] file_cost 0
[ 2594.562730][ T5091] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=27461,uid=0
[ 2594.605682][T16775] bond25 (unregistering): Released all slaves
[ 2594.606092][ T5091] Memory cgroup out of memory: Killed process 27461 (syz-executor.3) total-vm:54504kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 2594.626925][   T28] audit: type=1804 audit(1706039226.281:1936): pid=27463 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir245649211/syzkaller.jQ7tPM/40/cgroup.controllers" dev="sda1" ino=1956 res=1 errno=0
[ 2594.747208][T16775] bond24 (unregistering): Released all slaves
19:47:06 executing program 3:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x32}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000280)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000240)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=@newlink={0x48, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0xe403, r2}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @veth={{0x9}, {0x18, 0x2, 0x0, 0x1, @val=@VETH_INFO_PEER={0x14}}}}]}, 0x48}, 0x8b00}, 0x0)

[ 2594.799450][T16775] bond23 (unregistering): Released all slaves
[ 2594.859411][T16775] bond22 (unregistering): Released all slaves
[ 2594.922684][T16775] bond21 (unregistering): Released all slaves
[ 2594.995393][T16775] bond20 (unregistering): Released all slaves
[ 2595.062482][T16775] bond19 (unregistering): Released all slaves
[ 2595.121086][T16775] bond18 (unregistering): Released all slaves
[ 2595.171871][T27465] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2595.184079][T27465] CPU: 1 PID: 27465 Comm: syz-executor.3 Not tainted 6.7.0-syzkaller-12291-g435e202d645c #0
[ 2595.194206][T27465] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 2595.204294][T27465] Call Trace:
[ 2595.207595][T27465]  <TASK>
[ 2595.210542][T27465]  dump_stack_lvl+0x125/0x1b0
[ 2595.215255][T27465]  dump_header+0x103/0x900
[ 2595.219719][T27465]  oom_kill_process+0x270/0xa60
[ 2595.224620][T27465]  out_of_memory+0x344/0x16c0
[ 2595.229344][T27465]  ? oom_killer_disable+0x2d0/0x2d0
[ 2595.234579][T27465]  ? rcu_read_unlock+0x1c/0x60
[ 2595.239474][T27465]  mem_cgroup_out_of_memory+0x206/0x270
[ 2595.245127][T27465]  ? mem_cgroup_margin+0x130/0x130
[ 2595.251125][T27465]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2595.256545][T27465]  try_charge_memcg+0xcd1/0x11a0
[ 2595.261528][T27465]  ? mem_cgroup_handle_over_high+0x570/0x570
[ 2595.267543][T27465]  ? get_mem_cgroup_from_objcg+0xb5/0x2a0
[ 2595.273295][T27465]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2595.278696][T27465]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2595.284109][T27465]  __memcg_kmem_charge_page+0xdd/0x2a0
[ 2595.289609][T27465]  memcg_charge_kernel_stack+0xc3/0x1f0
[ 2595.295180][T27465]  copy_process+0x527/0x97b0
[ 2595.299785][T27465]  ? hlock_class+0x4e/0x130
[ 2595.304319][T27465]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2595.310341][T27465]  ? hlock_class+0x4e/0x130
[ 2595.314875][T27465]  ? pidfd_prepare+0x80/0x80
[ 2595.319579][T27465]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2595.325277][T27465]  ? preempt_count_sub+0x160/0x160
[ 2595.330929][T27465]  ? __lock_acquire+0x1502/0x3b30
[ 2595.336005][T27465]  ? __might_fault+0xe6/0x1a0
[ 2595.340729][T27465]  ? _copy_from_user+0x5d/0xf0
[ 2595.345543][T27465]  kernel_clone+0xfd/0x930
[ 2595.350001][T27465]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2595.356007][T27465]  ? create_io_thread+0xe0/0xe0
[ 2595.360915][T27465]  ? find_held_lock+0x2d/0x110
[ 2595.365730][T27465]  __do_sys_clone3+0x1f1/0x260
[ 2595.370531][T27465]  ? __do_sys_clone+0x100/0x100
[ 2595.375426][T27465]  do_syscall_64+0xd3/0x250
[ 2595.379949][T27465]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 2595.385862][T27465] RIP: 0033:0x7f212b0a8b99
[ 2595.390286][T27465] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 2595.409930][T27465] RSP: 002b:00007ffc7b20b738 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 2595.418383][T27465] RAX: ffffffffffffffda RBX: 00007f212b051270 RCX: 00007f212b0a8b99
[ 2595.426394][T27465] RDX: 00007f212b051270 RSI: 0000000000000058 RDI: 00007ffc7b20b780
[ 2595.434465][T27465] RBP: 00007f212be566c0 R08: 00007f212be566c0 R09: 00007ffc7b20b867
[ 2595.442468][T27465] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 2595.450470][T27465] R13: 000000000000000b R14: 00007ffc7b20b780 R15: 00007ffc7b20b868
[ 2595.458493][T27465]  </TASK>
[ 2595.470606][T16775] bond17 (unregistering): Released all slaves
19:47:07 executing program 1:
socket$kcm(0x10, 0x400000002, 0x0)
socket$inet(0x2, 0x2, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x3, &(0x7f00000000c0)=@framed, &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
write$binfmt_script(r1, &(0x7f0000000480)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r1, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r2 = socket$rxrpc(0x21, 0x2, 0xa)
r3 = syz_genetlink_get_family_id$batadv(&(0x7f0000007580), 0xffffffffffffffff)
sendmsg$BATADV_CMD_SET_HARDIF(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001740)={&(0x7f0000000000)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16, @ANYRES32=r0], 0x2c}}, 0x0)
sendmsg$BATADV_CMD_GET_GATEWAYS(0xffffffffffffffff, &(0x7f0000007680)={0x0, 0x0, &(0x7f0000007640)={&(0x7f0000000000)=ANY=[@ANYBLOB="46040000", @ANYRES16=r3, @ANYBLOB="ff83050000076dc6d81b", @ANYRES32=r2], 0x4}}, 0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendfile(r5, r4, 0x0, 0x100000002)

[ 2595.496854][T27465] memory: usage 307200kB, limit 307200kB, failcnt 119792
[ 2595.505157][T27465] memory+swap: usage 307548kB, limit 9007199254740988kB, failcnt 0
[ 2595.520376][T27465] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0
[ 2595.573224][T16775] bond16 (unregistering): Released all slaves
[ 2595.596585][T27465] Memory cgroup stats for /syz3:
[ 2595.596746][T27465] cache 0
[ 2595.636566][T27465] rss 12288
[ 2595.639744][T27465] rss_huge 0
[ 2595.642974][T27465] shmem 0
[ 2595.658710][T27465] mapped_file 0
[ 2595.664630][T16775] bond15 (unregistering): Released all slaves
[ 2595.671888][T27465] dirty 0
[ 2595.686404][T27465] writeback 0
[ 2595.689926][T27465] workingset_refault_anon 35357
[ 2595.694957][T27465] workingset_refault_file 1
[ 2595.704345][T27465] swap 356352
[ 2595.709321][T27465] swapcached 8192
[ 2595.724443][T27465] pgpgin 159330
[ 2595.728371][T27465] pgpgout 159327
[ 2595.730538][T16775] bond14 (unregistering): Released all slaves
[ 2595.732096][T27465] pgfault 350780
[ 2595.755187][T27465] pgmajfault 34472
[ 2595.766415][T27465] inactive_anon 0
[ 2595.783240][T27465] active_anon 12288
[ 2595.789918][T27465] inactive_file 0
[ 2595.796315][T27465] active_file 0
[ 2595.796891][T16775] bond13 (unregistering): Released all slaves
[ 2595.802292][T27465] unevictable 0
[ 2595.825422][T27465] hierarchical_memory_limit 314572800
[ 2595.843219][T27465] hierarchical_memsw_limit 9223372036854771712
[ 2595.858484][T27465] total_cache 0
[ 2595.873517][T27465] total_rss 12288
[ 2595.875538][T16775] bond12 (unregistering): Released all slaves
[ 2595.878066][T27465] total_rss_huge 0
[ 2595.899001][T27465] total_shmem 0
[ 2595.902658][T27465] total_mapped_file 0
[ 2595.907802][T27465] total_dirty 0
[ 2595.911461][T27465] total_writeback 0
[ 2595.931025][T27465] total_workingset_refault_anon 35357
[ 2595.939496][T27465] total_workingset_refault_file 1
[ 2595.945622][T27465] total_swap 356352
[ 2595.963729][T27465] total_swapcached 8192
[ 2595.966478][T16775] bond11 (unregistering): Released all slaves
[ 2595.969017][T27465] total_pgpgin 159330
[ 2595.993515][T27465] total_pgpgout 159327
[ 2595.999234][T27465] total_pgfault 350780
[ 2596.006701][   T28] audit: type=1804 audit(1706039227.651:1937): pid=27467 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir245649211/syzkaller.jQ7tPM/41/cgroup.controllers" dev="sda1" ino=1956 res=1 errno=0
[ 2596.019217][T27465] total_pgmajfault 34472
[ 2596.056703][T27465] total_inactive_anon 0
[ 2596.074280][T27465] total_active_anon 12288
[ 2596.075766][T16775] bond10 (unregistering): Released all slaves
[ 2596.103043][T27465] total_inactive_file 0
[ 2596.108359][T27465] total_active_file 0
[ 2596.114098][T27465] total_unevictable 0
[ 2596.130011][T27465] anon_cost 0
[ 2596.131613][T16775] bond9 (unregistering): Released all slaves
[ 2596.134861][T27465] file_cost 0
[ 2596.180479][T16775] bond8 (unregistering): Released all slaves
[ 2596.207039][T16775] bond7 (unregistering): Released all slaves
[ 2596.208830][T27465] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=27465,uid=0
[ 2596.252593][T27465] Memory cgroup out of memory: Killed process 27465 (syz-executor.3) total-vm:54504kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 2596.292938][T16775] bond6 (unregistering): Released all slaves
[ 2596.338820][T16775] bond5 (unregistering): Released all slaves
[ 2596.391301][T16775] bond4 (unregistering): Released all slaves
19:47:08 executing program 3:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x32}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000280)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000240)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=@newlink={0x48, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0xe403, r2}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @veth={{0x9}, {0x18, 0x2, 0x0, 0x1, @val=@VETH_INFO_PEER={0x14}}}}]}, 0x48}, 0x8c00}, 0x0)

[ 2596.456619][T16775] bond3 (unregistering): Released all slaves
[ 2596.518227][T16775] bond2 (unregistering): Released all slaves
19:47:08 executing program 1:
socket$kcm(0x10, 0x400000002, 0x0)
socket$inet(0x2, 0x2, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
write$binfmt_script(r0, &(0x7f0000000480)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r1 = socket$rxrpc(0x21, 0x2, 0xa)
r2 = syz_genetlink_get_family_id$batadv(&(0x7f0000007580), 0xffffffffffffffff)
sendmsg$BATADV_CMD_SET_HARDIF(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, 0x0}, 0x0)
sendmsg$BATADV_CMD_GET_GATEWAYS(0xffffffffffffffff, &(0x7f0000007680)={0x0, 0x0, &(0x7f0000007640)={&(0x7f0000000000)=ANY=[@ANYBLOB="46040000", @ANYRES16=r2, @ANYBLOB="ff83050000076dc6d81b", @ANYRES32=r1], 0x4}}, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendfile(r4, r3, 0x0, 0x100000002)

[ 2596.581803][T16775] bond1 (unregistering): Released all slaves
[ 2596.781678][ T5091] syz-executor.3 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[ 2596.816484][ T5091] CPU: 0 PID: 5091 Comm: syz-executor.3 Not tainted 6.7.0-syzkaller-12291-g435e202d645c #0
[ 2596.826530][ T5091] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 2596.836613][ T5091] Call Trace:
[ 2596.839911][ T5091]  <TASK>
[ 2596.842871][ T5091]  dump_stack_lvl+0x125/0x1b0
[ 2596.847595][ T5091]  dump_header+0x103/0x900
[ 2596.852067][ T5091]  oom_kill_process+0x270/0xa60
[ 2596.856974][ T5091]  out_of_memory+0x344/0x16c0
[ 2596.861699][ T5091]  ? mutex_trylock+0xa0/0x130
[ 2596.866429][ T5091]  ? oom_killer_disable+0x2d0/0x2d0
[ 2596.871671][ T5091]  ? rcu_read_unlock+0x1c/0x60
[ 2596.876468][ T5091]  mem_cgroup_out_of_memory+0x206/0x270
[ 2596.882028][ T5091]  ? mem_cgroup_margin+0x130/0x130
[ 2596.887230][ T5091]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2596.892625][ T5091]  try_charge_memcg+0xcd1/0x11a0
[ 2596.897579][ T5091]  ? mem_cgroup_handle_over_high+0x570/0x570
[ 2596.903575][ T5091]  ? rcu_read_unlock+0x1c/0x60
[ 2596.908442][ T5091]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2596.913826][ T5091]  ? __radix_tree_lookup+0x21f/0x2c0
[ 2596.919143][ T5091]  mem_cgroup_swapin_charge_folio+0x138/0x380
[ 2596.927323][ T5091]  __read_swap_cache_async+0x4e1/0x600
[ 2596.932901][ T5091]  ? filemap_get_incore_folio+0x160/0x160
[ 2596.938633][ T5091]  ? swp_swap_info+0xcf/0x130
[ 2596.943320][ T5091]  ? swapcache_prepare+0x20/0x20
[ 2596.948265][ T5091]  ? mark_lock+0xb5/0xc50
[ 2596.952616][ T5091]  swap_cluster_readahead+0x4d4/0x710
[ 2596.958003][ T5091]  ? read_swap_cache_async+0x1a0/0x1a0
[ 2596.963473][ T5091]  ? reacquire_held_locks+0x410/0x4c0
[ 2596.968856][ T5091]  ? xas_descend+0x141/0x4e0
[ 2596.973485][ T5091]  ? filemap_get_entry+0x23e/0x460
[ 2596.978617][ T5091]  swapin_readahead+0x132/0xe60
[ 2596.983484][ T5091]  ? get_swap_device+0x363/0x5e0
[ 2596.988438][ T5091]  ? exit_swap_address_space+0x250/0x250
[ 2596.994080][ T5091]  ? __filemap_get_folio+0x2b0/0xaa0
[ 2596.999556][ T5091]  ? swap_cache_get_folio+0x1dc/0x460
[ 2597.004941][ T5091]  ? get_swap_device+0x245/0x5e0
[ 2597.009889][ T5091]  ? free_pages_and_swap_cache+0xa0/0xa0
[ 2597.015534][ T5091]  ? lock_sync+0x190/0x190
[ 2597.019960][ T5091]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2597.025969][ T5091]  do_swap_page+0x4a6/0x3190
[ 2597.030600][ T5091]  ? rcu_is_watching+0x12/0xb0
[ 2597.035405][ T5091]  ? __pte_offset_map+0x1b9/0x540
[ 2597.040452][ T5091]  ? unmap_mapping_folio+0x3b0/0x3b0
[ 2597.045752][ T5091]  ? pte_offset_map_nolock+0xfa/0x1b0
[ 2597.051131][ T5091]  ? __pte_offset_map+0x540/0x540
[ 2597.056174][ T5091]  __handle_mm_fault+0x13a0/0x4900
[ 2597.061306][ T5091]  ? clear_huge_page+0x2e0/0x2e0
[ 2597.066280][ T5091]  ? find_vma+0x112/0x1b0
[ 2597.070637][ T5091]  ? get_unmapped_area+0x400/0x400
[ 2597.075766][ T5091]  handle_mm_fault+0x47a/0xa10
[ 2597.080545][ T5091]  ? lock_mm_and_find_vma+0xa6/0x580
[ 2597.085849][ T5091]  do_user_addr_fault+0x3f8/0x1030
[ 2597.091061][ T5091]  ? rcu_is_watching+0x12/0xb0
[ 2597.095839][ T5091]  exc_page_fault+0x5d/0xc0
[ 2597.100363][ T5091]  asm_exc_page_fault+0x26/0x30
[ 2597.105243][ T5091] RIP: 0010:__get_user_8+0x11/0x20
[ 2597.110560][ T5091] Code: 48 c1 fa 3f 48 09 d0 0f 01 cb 8b 10 31 c0 0f 01 ca c3 0f 1f 80 00 00 00 00 f3 0f 1e fa 48 89 c2 48 c1 fa 3f 48 09 d0 0f 01 cb <48> 8b 10 31 c0 0f 01 ca c3 66 0f 1f 44 00 00 f3 0f 1e fa 0f 01 cb
[ 2597.130197][ T5091] RSP: 0018:ffffc900047cfe38 EFLAGS: 00050202
[ 2597.136274][ T5091] RAX: 0000555555796da8 RBX: ffff888027da0000 RCX: ffffc900047cfda0
[ 2597.144770][ T5091] RDX: 0000000000000000 RSI: ffffffff81b655ac RDI: ffffffff8b2f9d00
[ 2597.152744][ T5091] RBP: ffffc900047cff28 R08: 0000000000000000 R09: fffffbfff1e753fa
[ 2597.160736][ T5091] R10: ffffffff8f3a9fd7 R11: 0000000000000000 R12: ffff888027da0000
[ 2597.168717][ T5091] R13: ffffc900047cff58 R14: ffffc900047cfea0 R15: 0000000000000000
[ 2597.176711][ T5091]  ? __rseq_handle_notify_resume+0x14c/0x1020
[ 2597.182808][ T5091]  __rseq_handle_notify_resume+0x183/0x1020
[ 2597.188722][ T5091]  ? blkcg_maybe_throttle_current+0x5ae/0xda0
[ 2597.194813][ T5091]  ? __do_sys_rseq+0x750/0x750
[ 2597.199598][ T5091]  ? do_user_addr_fault+0x492/0x1030
[ 2597.204902][ T5091]  irqentry_exit_to_user_mode+0x194/0x290
[ 2597.210647][ T5091]  asm_exc_page_fault+0x26/0x30
[ 2597.215510][ T5091] RIP: 0033:0x7f212b0797a4
[ 2597.219936][ T5091] Code: 84 00 00 00 00 00 80 3d 71 57 10 00 00 49 89 ca 74 14 b8 3d 00 00 00 0f 05 48 3d 00 f0 ff ff 77 5d c3 0f 1f 40 00 48 83 ec 28 <89> 54 24 14 48 89 74 24 08 89 7c 24 10 48 89 4c 24 18 e8 d5 a3 02
[ 2597.239660][ T5091] RSP: 002b:00007ffc7b20bb50 EFLAGS: 00010206
[ 2597.245738][ T5091] RAX: 00000000000000a6 RBX: 00000000000028fe RCX: 0000000000000000
[ 2597.253717][ T5091] RDX: 0000000040000001 RSI: 00007ffc7b20bbdc RDI: 00000000ffffffff
[ 2597.261701][ T5091] RBP: 00007ffc7b20bbdc R08: 0000000000000a24 R09: 0000000000000001
[ 2597.269708][ T5091] R10: 0000000000000000 R11: 000000000198b842 R12: 0000000000000032
[ 2597.277688][ T5091] R13: 0000000000279ec8 R14: 0000000000279ec8 R15: 0000000000000000
[ 2597.285687][ T5091]  </TASK>
[ 2597.344343][ T5091] memory: usage 307200kB, limit 307200kB, failcnt 120093
[ 2597.367700][ T5091] memory+swap: usage 307600kB, limit 9007199254740988kB, failcnt 0
[ 2597.403162][ T5091] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[ 2597.430105][ T5091] Memory cgroup stats for /syz3:
[ 2597.430291][ T5091] cache 0
[ 2597.448561][ T5091] rss 0
[ 2597.464155][ T5091] rss_huge 0
[ 2597.470277][ T5091] shmem 0
[ 2597.473272][ T5091] mapped_file 0
[ 2597.486357][ T5091] dirty 0
[ 2597.500463][ T5091] writeback 0
[ 2597.503794][ T5091] workingset_refault_anon 35426
[ 2597.522701][ T5091] workingset_refault_file 1
[ 2597.529697][ T5091] swap 409600
[ 2597.533025][ T5091] swapcached 0
[ 2597.538691][ T5091] pgpgin 159412
[ 2597.546423][T16775] veth19 (unregistering): left promiscuous mode
[ 2597.552922][ T5091] pgpgout 159412
[ 2597.574600][ T5091] pgfault 350905
[ 2597.582549][   T28] audit: type=1804 audit(1706039229.221:1938): pid=27471 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir245649211/syzkaller.jQ7tPM/42/cgroup.controllers" dev="sda1" ino=1956 res=1 errno=0
[ 2597.609474][ T5091] pgmajfault 34529
[ 2597.612468][T16775] team0 (unregistering): Port device veth19 removed
[ 2597.613202][ T5091] inactive_anon 0
[ 2597.613214][ T5091] active_anon 0
[ 2597.645776][ T5091] inactive_file 0
[ 2597.665870][ T5091] active_file 0
[ 2597.683523][ T5091] unevictable 0
[ 2597.688948][ T5091] hierarchical_memory_limit 314572800
[ 2597.695857][ T5091] hierarchical_memsw_limit 9223372036854771712
[ 2597.713835][ T5091] total_cache 0
[ 2597.717980][ T5091] total_rss 0
[ 2597.721445][ T5091] total_rss_huge 0
[ 2597.725444][ T5091] total_shmem 0
[ 2597.743713][ T5091] total_mapped_file 0
[ 2597.749635][ T5091] total_dirty 0
[ 2597.753141][ T5091] total_writeback 0
[ 2597.757791][ T5091] total_workingset_refault_anon 35426
[ 2597.765435][T16775] veth13 (unregistering): left promiscuous mode
[ 2597.776113][ T5091] total_workingset_refault_file 1
[ 2597.795578][ T5091] total_swap 409600
[ 2597.800226][ T5091] total_swapcached 0
[ 2597.805824][ T5091] total_pgpgin 159412
[ 2597.807659][T16775] team0 (unregistering): Port device veth13 removed
[ 2597.812791][ T5091] total_pgpgout 159412
19:47:09 executing program 1:
socket$kcm(0x10, 0x400000002, 0x0)
socket$inet(0x2, 0x2, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
write$binfmt_script(r1, &(0x7f0000000480)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r1, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r2 = socket$rxrpc(0x21, 0x2, 0xa)
r3 = syz_genetlink_get_family_id$batadv(&(0x7f0000007580), 0xffffffffffffffff)
sendmsg$BATADV_CMD_SET_HARDIF(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001740)={&(0x7f0000000000)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16, @ANYBLOB="2d0100000000000000000500f6ff08000300", @ANYRES32=r0], 0x2c}}, 0x0)
sendmsg$BATADV_CMD_GET_GATEWAYS(0xffffffffffffffff, &(0x7f0000007680)={0x0, 0x0, &(0x7f0000007640)={&(0x7f0000000000)=ANY=[@ANYBLOB="46040000", @ANYRES16=r3, @ANYBLOB="ff83050000076dc6d81b", @ANYRES32=r2], 0x4}}, 0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendfile(r5, r4, 0x0, 0x100000002)

[ 2597.857710][ T5091] total_pgfault 350905
[ 2597.861841][ T5091] total_pgmajfault 34529
[ 2597.877546][ T5091] total_inactive_anon 0
[ 2597.881763][ T5091] total_active_anon 0
[ 2597.888638][ T5091] total_inactive_file 0
[ 2597.893181][ T5091] total_active_file 0
[ 2597.897848][ T5091] total_unevictable 0
[ 2597.901853][ T5091] anon_cost 0
[ 2597.905321][ T5091] file_cost 0
[ 2597.926103][ T5091] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=27469,uid=0
[ 2597.975440][ T5091] Memory cgroup out of memory: Killed process 27469 (syz-executor.3) total-vm:54504kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
19:47:09 executing program 3:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x32}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000280)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000240)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=@newlink={0x48, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0xe403, r2}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @veth={{0x9}, {0x18, 0x2, 0x0, 0x1, @val=@VETH_INFO_PEER={0x14}}}}]}, 0x48}, 0x8d00}, 0x0)

[ 2598.316202][   T28] audit: type=1804 audit(1706039229.961:1939): pid=27475 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir245649211/syzkaller.jQ7tPM/43/cgroup.controllers" dev="sda1" ino=1956 res=1 errno=0
[ 2598.484748][T27478] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2598.496632][T27478] CPU: 1 PID: 27478 Comm: syz-executor.3 Not tainted 6.7.0-syzkaller-12291-g435e202d645c #0
[ 2598.506755][T27478] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 2598.516842][T27478] Call Trace:
[ 2598.520135][T27478]  <TASK>
[ 2598.523082][T27478]  dump_stack_lvl+0x125/0x1b0
[ 2598.527784][T27478]  dump_header+0x103/0x900
[ 2598.532249][T27478]  oom_kill_process+0x270/0xa60
[ 2598.537142][T27478]  out_of_memory+0x344/0x16c0
[ 2598.541862][T27478]  ? oom_killer_disable+0x2d0/0x2d0
[ 2598.547105][T27478]  ? rcu_read_unlock+0x1c/0x60
[ 2598.551915][T27478]  mem_cgroup_out_of_memory+0x206/0x270
[ 2598.559587][T27478]  ? mem_cgroup_margin+0x130/0x130
[ 2598.565336][T27478]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2598.570832][T27478]  try_charge_memcg+0xcd1/0x11a0
[ 2598.575936][T27478]  ? mem_cgroup_handle_over_high+0x570/0x570
[ 2598.581953][T27478]  ? get_mem_cgroup_from_objcg+0xb5/0x2a0
[ 2598.587706][T27478]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2598.593106][T27478]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2598.598703][T27478]  __memcg_kmem_charge_page+0xdd/0x2a0
[ 2598.604211][T27478]  memcg_charge_kernel_stack+0xc3/0x1f0
[ 2598.609987][T27478]  copy_process+0x1532/0x97b0
[ 2598.614728][T27478]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2598.620751][T27478]  ? page_ext_put+0x43/0xd0
[ 2598.625314][T27478]  ? pidfd_prepare+0x80/0x80
[ 2598.629941][T27478]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2598.635343][T27478]  ? preempt_count_sub+0x160/0x160
[ 2598.640487][T27478]  ? print_usage_bug.part.0+0x550/0x550
[ 2598.646090][T27478]  ? __might_fault+0xe6/0x1a0
[ 2598.650841][T27478]  ? _copy_from_user+0x5d/0xf0
[ 2598.655656][T27478]  kernel_clone+0xfd/0x930
[ 2598.660124][T27478]  ? create_io_thread+0xe0/0xe0
[ 2598.665012][T27478]  __do_sys_clone3+0x1f1/0x260
[ 2598.669787][T27478]  ? __do_sys_clone+0x100/0x100
[ 2598.674681][T27478]  ? do_user_addr_fault+0x663/0x1030
[ 2598.680028][T27478]  do_syscall_64+0xd3/0x250
[ 2598.684569][T27478]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 2598.690489][T27478] RIP: 0033:0x7f212b0a8b99
[ 2598.694925][T27478] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 2598.714745][T27478] RSP: 002b:00007ffc7b20b738 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 2598.723188][T27478] RAX: ffffffffffffffda RBX: 00007f212b051270 RCX: 00007f212b0a8b99
[ 2598.731277][T27478] RDX: 00007f212b051270 RSI: 0000000000000058 RDI: 00007ffc7b20b780
[ 2598.739279][T27478] RBP: 00007f212be566c0 R08: 00007f212be566c0 R09: 00007ffc7b20b867
[ 2598.747288][T27478] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 2598.755273][T27478] R13: 000000000000000b R14: 00007ffc7b20b780 R15: 00007ffc7b20b868
[ 2598.763274][T27478]  </TASK>
[ 2598.792046][T27478] memory: usage 307200kB, limit 307200kB, failcnt 120283
[ 2598.799307][T27478] memory+swap: usage 307564kB, limit 9007199254740988kB, failcnt 0
[ 2598.808323][T27478] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0
[ 2598.816890][T27478] Memory cgroup stats for /syz3:
[ 2598.817044][T27478] cache 0
[ 2598.824955][T27478] rss 12288
[ 2598.828865][T27478] rss_huge 0
[ 2598.832192][T27478] shmem 0
[ 2598.835242][T27478] mapped_file 0
[ 2598.839441][T27478] dirty 0
[ 2598.842518][T27478] writeback 0
[ 2598.846602][T27478] workingset_refault_anon 35488
[ 2598.851654][T27478] workingset_refault_file 1
[ 2598.857677][T27478] swap 372736
[ 2598.861192][T27478] swapcached 4096
[ 2598.865207][T27478] pgpgin 159485
[ 2598.870347][T27478] pgpgout 159482
[ 2598.874019][T27478] pgfault 351030
[ 2598.882289][T27478] pgmajfault 34590
[ 2598.886566][T27478] inactive_anon 0
[ 2598.890703][T27478] active_anon 12288
[ 2598.894811][T27478] inactive_file 0
[ 2598.910936][T27478] active_file 0
[ 2598.915016][T27478] unevictable 0
[ 2598.919146][T27478] hierarchical_memory_limit 314572800
[ 2598.925187][T27478] hierarchical_memsw_limit 9223372036854771712
[ 2598.931983][T27478] total_cache 0
[ 2598.935685][T27478] total_rss 12288
[ 2598.951852][T27478] total_rss_huge 0
[ 2598.955795][T27478] total_shmem 0
[ 2598.959863][T27478] total_mapped_file 0
[ 2598.975436][T27478] total_dirty 0
[ 2598.980615][T27478] total_writeback 0
[ 2598.985055][T27478] total_workingset_refault_anon 35488
[ 2598.996320][T27478] total_workingset_refault_file 1
19:47:10 executing program 1:
socket$kcm(0x10, 0x400000002, 0x0)
socket$inet(0x2, 0x2, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
write$binfmt_script(r1, &(0x7f0000000480)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r1, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r2 = socket$rxrpc(0x21, 0x2, 0xa)
r3 = syz_genetlink_get_family_id$batadv(&(0x7f0000007580), 0xffffffffffffffff)
sendmsg$BATADV_CMD_SET_HARDIF(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001740)={&(0x7f0000000000)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16, @ANYBLOB="2d0100000000000000000500f6ff08000300", @ANYRES32=r0], 0x2c}}, 0x0)
sendmsg$BATADV_CMD_GET_GATEWAYS(0xffffffffffffffff, &(0x7f0000007680)={0x0, 0x0, &(0x7f0000007640)={&(0x7f0000000000)=ANY=[@ANYBLOB="46040000", @ANYRES16=r3, @ANYBLOB="ff83050000076dc6d81b", @ANYRES32=r2], 0x4}}, 0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendfile(r5, r4, 0x0, 0x100000002)

[ 2599.001488][T27478] total_swap 372736
[ 2599.005429][T27478] total_swapcached 4096
[ 2599.023168][T27478] total_pgpgin 159485
[ 2599.032190][T27478] total_pgpgout 159482
[ 2599.037268][T27478] total_pgfault 351030
[ 2599.041475][T27478] total_pgmajfault 34590
[ 2599.045849][T27478] total_inactive_anon 0
[ 2599.051109][T27478] total_active_anon 12288
[ 2599.055823][T27478] total_inactive_file 0
[ 2599.060791][T27478] total_active_file 0
[ 2599.065069][T27478] total_unevictable 0
[ 2599.080971][T27478] anon_cost 0
[ 2599.084515][T27478] file_cost 0
[ 2599.088937][T27478] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=27478,uid=0
[ 2599.127421][T27478] Memory cgroup out of memory: Killed process 27478 (syz-executor.3) total-vm:54504kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
19:47:10 executing program 3:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x32}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000280)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000240)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=@newlink={0x48, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0xe403, r2}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @veth={{0x9}, {0x18, 0x2, 0x0, 0x1, @val=@VETH_INFO_PEER={0x14}}}}]}, 0x48}, 0x8e00}, 0x0)

[ 2599.403740][   T28] audit: type=1804 audit(1706039231.041:1940): pid=27480 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir245649211/syzkaller.jQ7tPM/44/cgroup.controllers" dev="sda1" ino=1956 res=1 errno=0
[ 2599.550350][T16775] team_slave_1 (unregistering): left promiscuous mode
[ 2599.579155][T16775] team0 (unregistering): Port device team_slave_1 removed
[ 2599.653642][T16775] team_slave_0 (unregistering): left promiscuous mode
[ 2599.715487][T16775] team0 (unregistering): Port device team_slave_0 removed
[ 2599.773542][T16775] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 2599.871864][T16775] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
19:47:11 executing program 1:
socket$kcm(0x10, 0x400000002, 0x0)
socket$inet(0x2, 0x2, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x3, &(0x7f00000000c0)=@framed, &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
write$binfmt_script(r1, &(0x7f0000000480)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r1, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r2 = socket$rxrpc(0x21, 0x2, 0xa)
r3 = syz_genetlink_get_family_id$batadv(&(0x7f0000007580), 0xffffffffffffffff)
sendmsg$BATADV_CMD_SET_HARDIF(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001740)={&(0x7f0000000000)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16, @ANYBLOB="2d0100000000000000000500f6ff08000300", @ANYRES32], 0x2c}}, 0x0)
sendmsg$BATADV_CMD_GET_GATEWAYS(0xffffffffffffffff, &(0x7f0000007680)={0x0, 0x0, &(0x7f0000007640)={&(0x7f0000000000)=ANY=[@ANYBLOB="46040000", @ANYRES16=r3, @ANYBLOB="ff83050000076dc6d81b", @ANYRES32=r2], 0x4}}, 0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendfile(r5, r4, 0x0, 0x100000002)

[ 2600.168026][T27482] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2600.199165][T27482] CPU: 1 PID: 27482 Comm: syz-executor.3 Not tainted 6.7.0-syzkaller-12291-g435e202d645c #0
[ 2600.209314][T27482] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 2600.219404][T27482] Call Trace:
[ 2600.222704][T27482]  <TASK>
[ 2600.225650][T27482]  dump_stack_lvl+0x125/0x1b0
[ 2600.230379][T27482]  dump_header+0x103/0x900
[ 2600.234862][T27482]  oom_kill_process+0x270/0xa60
[ 2600.239775][T27482]  out_of_memory+0x344/0x16c0
[ 2600.244516][T27482]  ? oom_killer_disable+0x2d0/0x2d0
[ 2600.249750][T27482]  ? rcu_read_unlock+0x1c/0x60
[ 2600.254567][T27482]  mem_cgroup_out_of_memory+0x206/0x270
[ 2600.260158][T27482]  ? mem_cgroup_margin+0x130/0x130
[ 2600.265308][T27482]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2600.270747][T27482]  try_charge_memcg+0xcd1/0x11a0
[ 2600.275764][T27482]  ? mem_cgroup_handle_over_high+0x570/0x570
[ 2600.281795][T27482]  ? get_mem_cgroup_from_objcg+0xb5/0x2a0
[ 2600.287557][T27482]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2600.292965][T27482]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2600.298373][T27482]  __memcg_kmem_charge_page+0xdd/0x2a0
[ 2600.303855][T27482]  memcg_charge_kernel_stack+0xc3/0x1f0
[ 2600.309417][T27482]  copy_process+0x1532/0x97b0
[ 2600.314132][T27482]  ? hlock_class+0x4e/0x130
[ 2600.318655][T27482]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2600.324735][T27482]  ? hlock_class+0x4e/0x130
[ 2600.329559][T27482]  ? pidfd_prepare+0x80/0x80
[ 2600.334163][T27482]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2600.339559][T27482]  ? preempt_count_sub+0x160/0x160
[ 2600.344681][T27482]  ? __lock_acquire+0x1502/0x3b30
[ 2600.349720][T27482]  ? __might_fault+0xe6/0x1a0
[ 2600.354424][T27482]  ? _copy_from_user+0x5d/0xf0
[ 2600.359215][T27482]  kernel_clone+0xfd/0x930
[ 2600.363645][T27482]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2600.369633][T27482]  ? create_io_thread+0xe0/0xe0
[ 2600.374514][T27482]  ? find_held_lock+0x2d/0x110
[ 2600.379299][T27482]  __do_sys_clone3+0x1f1/0x260
[ 2600.384074][T27482]  ? __do_sys_clone+0x100/0x100
[ 2600.388968][T27482]  do_syscall_64+0xd3/0x250
[ 2600.393507][T27482]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 2600.399415][T27482] RIP: 0033:0x7f212b0a8b99
[ 2600.403838][T27482] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 2600.423480][T27482] RSP: 002b:00007ffc7b20b738 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 2600.431916][T27482] RAX: ffffffffffffffda RBX: 00007f212b051270 RCX: 00007f212b0a8b99
[ 2600.440248][T27482] RDX: 00007f212b051270 RSI: 0000000000000058 RDI: 00007ffc7b20b780
[ 2600.448334][T27482] RBP: 00007f212be566c0 R08: 00007f212be566c0 R09: 00007ffc7b20b867
[ 2600.456320][T27482] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 2600.464583][T27482] R13: 000000000000000b R14: 00007ffc7b20b780 R15: 00007ffc7b20b868
[ 2600.472598][T27482]  </TASK>
[ 2600.479282][T27482] memory: usage 307200kB, limit 307200kB, failcnt 120762
[ 2600.486476][T27482] memory+swap: usage 307576kB, limit 9007199254740988kB, failcnt 0
[ 2600.494388][T27482] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[ 2600.501866][T27482] Memory cgroup stats for /syz3:
[ 2600.502029][T27482] cache 0
[ 2600.511115][T27482] rss 0
[ 2600.513911][T27482] rss_huge 0
[ 2600.517206][T27482] shmem 0
[ 2600.520157][T27482] mapped_file 0
[ 2600.523620][T27482] dirty 0
[ 2600.526912][T27482] writeback 0
[ 2600.530219][T27482] workingset_refault_anon 35659
[ 2600.535085][T27482] workingset_refault_file 1
[ 2600.546497][T27482] swap 385024
[ 2600.549853][T27482] swapcached 0
[ 2600.553256][T27482] pgpgin 159669
[ 2600.613387][T27482] pgpgout 159669
[ 2600.626317][T27482] pgfault 351312
[ 2600.629930][T27482] pgmajfault 34742
[ 2600.633689][T27482] inactive_anon 0
[ 2600.639422][T27482] active_anon 0
[ 2600.643171][T27482] inactive_file 0
[ 2600.646910][T27482] active_file 0
[ 2600.651715][T27482] unevictable 0
[ 2600.655210][T27482] hierarchical_memory_limit 314572800
[ 2600.660877][T27482] hierarchical_memsw_limit 9223372036854771712
[ 2600.667862][T27482] total_cache 0
[ 2600.671340][T27482] total_rss 0
[ 2600.674634][T27482] total_rss_huge 0
[ 2600.686064][T27482] total_shmem 0
[ 2600.689701][T27482] total_mapped_file 0
[ 2600.693736][T27482] total_dirty 0
[ 2600.716177][T27482] total_writeback 0
[ 2600.720043][T27482] total_workingset_refault_anon 35659
[ 2600.721129][T16775] bond0 (unregistering): Released all slaves
[ 2600.725414][T27482] total_workingset_refault_file 1
[ 2600.748338][T27482] total_swap 385024
[ 2600.753054][T27482] total_swapcached 0
[ 2600.757636][T27482] total_pgpgin 159669
[ 2600.761648][T27482] total_pgpgout 159669
[ 2600.765825][T27482] total_pgfault 351312
[ 2600.770486][T27482] total_pgmajfault 34742
[ 2600.774796][T27482] total_inactive_anon 0
[ 2600.780435][T27482] total_active_anon 0
[ 2600.784455][T27482] total_inactive_file 0
[ 2600.788985][T27482] total_active_file 0
[ 2600.793000][T27482] total_unevictable 0
[ 2600.809088][   T28] audit: type=1804 audit(1706039232.461:1941): pid=27484 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir245649211/syzkaller.jQ7tPM/45/cgroup.controllers" dev="sda1" ino=1956 res=1 errno=0
[ 2600.823943][T27482] anon_cost 0
[ 2600.858577][T27482] file_cost 0
[ 2600.861924][T27482] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=27482,uid=0
19:47:12 executing program 3:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x32}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000280)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000240)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=@newlink={0x48, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0xe403, r2}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @veth={{0x9}, {0x18, 0x2, 0x0, 0x1, @val=@VETH_INFO_PEER={0x14}}}}]}, 0x48}, 0x8f00}, 0x0)

[ 2600.904917][T27482] Memory cgroup out of memory: Killed process 27482 (syz-executor.3) total-vm:54504kB, anon-rss:368kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 2601.004456][T16775] bond1823 (unregistering): Released all slaves
[ 2601.067977][T16775] bond1822 (unregistering): Released all slaves
[ 2601.134576][T16775] bond1821 (unregistering): Released all slaves
19:47:12 executing program 1:
socket$kcm(0x10, 0x400000002, 0x0)
socket$inet(0x2, 0x2, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x3, &(0x7f00000000c0)=@framed, &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
write$binfmt_script(r1, &(0x7f0000000480)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r1, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r2 = socket$rxrpc(0x21, 0x2, 0xa)
r3 = syz_genetlink_get_family_id$batadv(&(0x7f0000007580), 0xffffffffffffffff)
sendmsg$BATADV_CMD_SET_HARDIF(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001740)={&(0x7f0000000000)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16, @ANYBLOB="2d0100000000000000000500f6ff08000300", @ANYRES32], 0x2c}}, 0x0)
sendmsg$BATADV_CMD_GET_GATEWAYS(0xffffffffffffffff, &(0x7f0000007680)={0x0, 0x0, &(0x7f0000007640)={&(0x7f0000000000)=ANY=[@ANYBLOB="46040000", @ANYRES16=r3, @ANYBLOB="ff83050000076dc6d81b", @ANYRES32=r2], 0x4}}, 0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendfile(r5, r4, 0x0, 0x100000002)

[ 2601.236584][T16775] bond1820 (unregistering): Released all slaves
[ 2601.328898][T16775] bond1819 (unregistering): Released all slaves
[ 2601.385034][ T5091] syz-executor.3 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[ 2601.399848][T16775] bond1818 (unregistering): Released all slaves
[ 2601.426372][ T5091] CPU: 1 PID: 5091 Comm: syz-executor.3 Not tainted 6.7.0-syzkaller-12291-g435e202d645c #0
[ 2601.436421][ T5091] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 2601.446486][ T5091] Call Trace:
[ 2601.449771][ T5091]  <TASK>
[ 2601.452716][ T5091]  dump_stack_lvl+0x125/0x1b0
[ 2601.457413][ T5091]  dump_header+0x103/0x900
[ 2601.461869][ T5091]  oom_kill_process+0x270/0xa60
[ 2601.466769][ T5091]  out_of_memory+0x344/0x16c0
[ 2601.471474][ T5091]  ? mutex_trylock+0xa0/0x130
[ 2601.476699][ T5091]  ? oom_killer_disable+0x2d0/0x2d0
[ 2601.481927][ T5091]  ? rcu_read_unlock+0x1c/0x60
[ 2601.486711][ T5091]  mem_cgroup_out_of_memory+0x206/0x270
[ 2601.492273][ T5091]  ? mem_cgroup_margin+0x130/0x130
[ 2601.497392][ T5091]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2601.502787][ T5091]  try_charge_memcg+0xcd1/0x11a0
[ 2601.507749][ T5091]  ? mem_cgroup_handle_over_high+0x570/0x570
[ 2601.513749][ T5091]  ? rcu_read_unlock+0x1c/0x60
[ 2601.518705][ T5091]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2601.524128][ T5091]  ? __radix_tree_lookup+0x21f/0x2c0
[ 2601.529448][ T5091]  mem_cgroup_swapin_charge_folio+0x138/0x380
[ 2601.535541][ T5091]  __read_swap_cache_async+0x4e1/0x600
[ 2601.541012][ T5091]  ? filemap_get_incore_folio+0x160/0x160
[ 2601.546742][ T5091]  ? swp_swap_info+0xcf/0x130
[ 2601.551429][ T5091]  ? swapcache_prepare+0x20/0x20
[ 2601.556377][ T5091]  ? hlock_class+0x4e/0x130
[ 2601.560899][ T5091]  ? mark_lock+0xb5/0xc50
[ 2601.565249][ T5091]  swap_cluster_readahead+0x4d4/0x710
[ 2601.570637][ T5091]  ? read_swap_cache_async+0x1a0/0x1a0
[ 2601.576114][ T5091]  ? reacquire_held_locks+0x410/0x4c0
[ 2601.581506][ T5091]  ? xas_descend+0x141/0x4e0
[ 2601.586130][ T5091]  ? filemap_get_entry+0x23e/0x460
[ 2601.591262][ T5091]  swapin_readahead+0x132/0xe60
[ 2601.596136][ T5091]  ? get_swap_device+0x363/0x5e0
[ 2601.601089][ T5091]  ? exit_swap_address_space+0x250/0x250
[ 2601.606734][ T5091]  ? __filemap_get_folio+0x2b0/0xaa0
[ 2601.612052][ T5091]  ? swap_cache_get_folio+0x1dc/0x460
[ 2601.617436][ T5091]  ? get_swap_device+0x245/0x5e0
[ 2601.622395][ T5091]  ? free_pages_and_swap_cache+0xa0/0xa0
[ 2601.628040][ T5091]  ? lock_sync+0x190/0x190
[ 2601.632463][ T5091]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2601.638459][ T5091]  do_swap_page+0x4a6/0x3190
[ 2601.643065][ T5091]  ? rcu_is_watching+0x12/0xb0
[ 2601.647848][ T5091]  ? __pte_offset_map+0x1b9/0x540
[ 2601.652880][ T5091]  ? unmap_mapping_folio+0x3b0/0x3b0
[ 2601.658176][ T5091]  ? pte_offset_map_nolock+0xfa/0x1b0
[ 2601.663556][ T5091]  ? __pte_offset_map+0x540/0x540
[ 2601.668596][ T5091]  __handle_mm_fault+0x13a0/0x4900
[ 2601.673723][ T5091]  ? clear_huge_page+0x2e0/0x2e0
[ 2601.678685][ T5091]  ? find_vma+0x112/0x1b0
[ 2601.683026][ T5091]  ? get_unmapped_area+0x400/0x400
[ 2601.688350][ T5091]  handle_mm_fault+0x47a/0xa10
[ 2601.693273][ T5091]  ? lock_mm_and_find_vma+0xa6/0x580
[ 2601.698582][ T5091]  do_user_addr_fault+0x3f8/0x1030
[ 2601.703746][ T5091]  ? rcu_is_watching+0x12/0xb0
[ 2601.708700][ T5091]  exc_page_fault+0x5d/0xc0
[ 2601.713226][ T5091]  asm_exc_page_fault+0x26/0x30
[ 2601.718096][ T5091] RIP: 0010:__get_user_8+0x11/0x20
[ 2601.723220][ T5091] Code: 48 c1 fa 3f 48 09 d0 0f 01 cb 8b 10 31 c0 0f 01 ca c3 0f 1f 80 00 00 00 00 f3 0f 1e fa 48 89 c2 48 c1 fa 3f 48 09 d0 0f 01 cb <48> 8b 10 31 c0 0f 01 ca c3 66 0f 1f 44 00 00 f3 0f 1e fa 0f 01 cb
[ 2601.742845][ T5091] RSP: 0018:ffffc900047cfdf8 EFLAGS: 00050202
[ 2601.748926][ T5091] RAX: 0000555555796da8 RBX: ffff888027da0000 RCX: ffffc900047cfd60
[ 2601.756904][ T5091] RDX: 0000000000000000 RSI: ffffffff81b655ac RDI: ffffffff8b2f9d00
[ 2601.764878][ T5091] RBP: ffffc900047cfef8 R08: 0000000000000000 R09: fffffbfff1e753fa
[ 2601.772853][ T5091] R10: ffffffff8f3a9fd7 R11: 0000000000000000 R12: ffff888027da0000
[ 2601.780868][ T5091] R13: ffffc900047cff58 R14: ffffc900047cfe60 R15: 0000000000000000
[ 2601.788861][ T5091]  ? __rseq_handle_notify_resume+0x14c/0x1020
[ 2601.794961][ T5091]  __rseq_handle_notify_resume+0x183/0x1020
[ 2601.800883][ T5091]  ? __do_sys_rseq+0x750/0x750
[ 2601.805666][ T5091]  ? folio_memcg_unlock+0x240/0x240
[ 2601.810880][ T5091]  ? __ia32_sys_clock_getres_time32+0x280/0x280
[ 2601.817143][ T5091]  syscall_exit_to_user_mode+0x1a9/0x2b0
[ 2601.822808][ T5091]  do_syscall_64+0xe0/0x250
[ 2601.827345][ T5091]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 2601.833379][ T5091] RIP: 0033:0x7f212b0a81b5
[ 2601.837904][ T5091] Code: 24 0c 89 3c 24 48 89 4c 24 18 e8 f6 b9 ff ff 4c 8b 54 24 18 48 8b 54 24 10 41 89 c0 8b 74 24 0c 8b 3c 24 b8 e6 00 00 00 0f 05 <44> 89 c7 48 89 04 24 e8 4f ba ff ff 48 8b 04 24 48 83 c4 28 f7 d8
[ 2601.857606][ T5091] RSP: 002b:00007ffc7b20bb10 EFLAGS: 00000293 ORIG_RAX: 00000000000000e6
[ 2601.866027][ T5091] RAX: 0000000000000000 RBX: 0000000000002901 RCX: 00007f212b0a81b5
[ 2601.874010][ T5091] RDX: 00007ffc7b20bb50 RSI: 0000000000000000 RDI: 0000000000000000
[ 2601.881988][ T5091] RBP: 00007ffc7b20bbdc R08: 0000000000000000 R09: 0000000000000001
[ 2601.889965][ T5091] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000032
[ 2601.897940][ T5091] R13: 000000000027b060 R14: 000000000027b060 R15: 0000000000000000
[ 2601.905957][ T5091]  </TASK>
[ 2601.946261][ T5091] memory: usage 307200kB, limit 307200kB, failcnt 120961
[ 2601.953343][ T5091] memory+swap: usage 307616kB, limit 9007199254740988kB, failcnt 0
[ 2602.023422][ T5091] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[ 2602.056333][ T5091] Memory cgroup stats for /syz3:
[ 2602.056516][ T5091] cache 0
[ 2602.064426][ T5091] rss 0
[ 2602.106275][ T5091] rss_huge 0
[ 2602.117709][ T5091] shmem 0
[ 2602.120693][ T5091] mapped_file 0
[ 2602.124854][ T5091] dirty 0
[ 2602.133619][T16775] bond1817 (unregistering): Released all slaves
[ 2602.153365][ T5091] writeback 0
[ 2602.177901][ T5091] workingset_refault_anon 35720
[ 2602.180565][T16775] bond1816 (unregistering): Released all slaves
[ 2602.203170][ T5091] workingset_refault_file 1
[ 2602.216117][ T5091] swap 425984
[ 2602.219527][ T5091] swapcached 0
[ 2602.222939][ T5091] pgpgin 159741
[ 2602.230383][ T5091] pgpgout 159741
[ 2602.233989][ T5091] pgfault 351430
[ 2602.266163][ T5091] pgmajfault 34793
[ 2602.269961][ T5091] inactive_anon 0
[ 2602.273756][ T5091] active_anon 0
[ 2602.281188][T16775] bond1815 (unregistering): Released all slaves
[ 2602.286103][ T5091] inactive_file 0
[ 2602.313700][ T5091] active_file 0
[ 2602.317736][ T5091] unevictable 0
[ 2602.321220][ T5091] hierarchical_memory_limit 314572800
[ 2602.327128][   T28] audit: type=1804 audit(1706039233.981:1942): pid=27488 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir245649211/syzkaller.jQ7tPM/46/cgroup.controllers" dev="sda1" ino=1956 res=1 errno=0
[ 2602.367623][ T5091] hierarchical_memsw_limit 9223372036854771712
[ 2602.373844][ T5091] total_cache 0
[ 2602.396171][ T5091] total_rss 0
[ 2602.399514][ T5091] total_rss_huge 0
[ 2602.403258][ T5091] total_shmem 0
[ 2602.404641][T16775] bond1814 (unregistering): Released all slaves
[ 2602.429667][ T5091] total_mapped_file 0
[ 2602.437452][ T5091] total_dirty 0
[ 2602.458311][ T5091] total_writeback 0
[ 2602.462185][ T5091] total_workingset_refault_anon 35720
[ 2602.477699][ T5091] total_workingset_refault_file 1
[ 2602.484666][T16775] bond1813 (unregistering): Released all slaves
[ 2602.506087][ T5091] total_swap 425984
[ 2602.509959][ T5091] total_swapcached 0
[ 2602.513882][ T5091] total_pgpgin 159741
[ 2602.526238][ T5091] total_pgpgout 159741
[ 2602.530378][ T5091] total_pgfault 351430
[ 2602.534476][ T5091] total_pgmajfault 34793
[ 2602.567689][ T5091] total_inactive_anon 0
[ 2602.571975][ T5091] total_active_anon 0
[ 2602.574716][T16775] bond1812 (unregistering): Released all slaves
19:47:14 executing program 1:
socket$kcm(0x10, 0x400000002, 0x0)
socket$inet(0x2, 0x2, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
write$binfmt_script(r0, &(0x7f0000000480)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r1 = socket$rxrpc(0x21, 0x2, 0xa)
r2 = syz_genetlink_get_family_id$batadv(&(0x7f0000007580), 0xffffffffffffffff)
sendmsg$BATADV_CMD_SET_HARDIF(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, 0x0}, 0x0)
sendmsg$BATADV_CMD_GET_GATEWAYS(0xffffffffffffffff, &(0x7f0000007680)={0x0, 0x0, &(0x7f0000007640)={&(0x7f0000000000)=ANY=[@ANYBLOB="46040000", @ANYRES16=r2, @ANYBLOB="ff83050000076dc6d81b", @ANYRES32=r1], 0x4}}, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendfile(r4, r3, 0x0, 0x100000002)

[ 2602.606136][ T5091] total_inactive_file 0
[ 2602.610546][ T5091] total_active_file 0
[ 2602.614749][ T5091] total_unevictable 0
[ 2602.638746][ T5091] anon_cost 0
[ 2602.658404][ T5091] file_cost 0
[ 2602.660982][T16775] bond1811 (unregistering): Released all slaves
[ 2602.661730][ T5091] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=27486,uid=0
[ 2602.724085][T16775] bond1810 (unregistering): Released all slaves
[ 2602.746271][ T5091] Memory cgroup out of memory: Killed process 27486 (syz-executor.3) total-vm:54504kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 2602.830355][T16775] bond1809 (unregistering): Released all slaves
19:47:14 executing program 3:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x32}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000280)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000240)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=@newlink={0x48, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0xe403, r2}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @veth={{0x9}, {0x18, 0x2, 0x0, 0x1, @val=@VETH_INFO_PEER={0x14}}}}]}, 0x48}, 0x9000}, 0x0)

[ 2602.918944][T16775] bond1808 (unregistering): Released all slaves
[ 2602.948314][   T28] audit: type=1804 audit(1706039234.591:1943): pid=27491 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir245649211/syzkaller.jQ7tPM/47/cgroup.controllers" dev="sda1" ino=1956 res=1 errno=0
[ 2603.001742][T16775] bond1807 (unregistering): Released all slaves
[ 2603.054366][T16775] bond1806 (unregistering): Released all slaves
[ 2603.122139][T16775] bond1805 (unregistering): Released all slaves
[ 2603.194248][T16775] bond1804 (unregistering): Released all slaves
[ 2603.212893][T27493] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2603.236251][T27493] CPU: 0 PID: 27493 Comm: syz-executor.3 Not tainted 6.7.0-syzkaller-12291-g435e202d645c #0
[ 2603.246527][T27493] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 2603.256629][T27493] Call Trace:
[ 2603.259985][T27493]  <TASK>
[ 2603.262947][T27493]  dump_stack_lvl+0x125/0x1b0
[ 2603.267670][T27493]  dump_header+0x103/0x900
[ 2603.272136][T27493]  oom_kill_process+0x270/0xa60
[ 2603.277024][T27493]  out_of_memory+0x344/0x16c0
[ 2603.281752][T27493]  ? oom_killer_disable+0x2d0/0x2d0
[ 2603.287096][T27493]  ? rcu_read_unlock+0x1c/0x60
[ 2603.291923][T27493]  mem_cgroup_out_of_memory+0x206/0x270
[ 2603.297522][T27493]  ? mem_cgroup_margin+0x130/0x130
[ 2603.302852][T27493]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2603.308289][T27493]  try_charge_memcg+0xcd1/0x11a0
[ 2603.313297][T27493]  ? mem_cgroup_handle_over_high+0x570/0x570
[ 2603.319331][T27493]  ? get_mem_cgroup_from_objcg+0xb5/0x2a0
[ 2603.325107][T27493]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2603.330530][T27493]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2603.335929][T27493]  __memcg_kmem_charge_page+0xdd/0x2a0
[ 2603.341441][T27493]  memcg_charge_kernel_stack+0xc3/0x1f0
[ 2603.347049][T27493]  copy_process+0x1532/0x97b0
[ 2603.351863][T27493]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2603.357888][T27493]  ? page_ext_put+0x43/0xd0
[ 2603.362434][T27493]  ? hlock_class+0x4e/0x130
[ 2603.367006][T27493]  ? pidfd_prepare+0x80/0x80
[ 2603.371648][T27493]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2603.377062][T27493]  ? preempt_count_sub+0x160/0x160
[ 2603.382212][T27493]  ? print_usage_bug.part.0+0x550/0x550
[ 2603.387810][T27493]  ? __might_fault+0xe6/0x1a0
[ 2603.392900][T27493]  ? _copy_from_user+0x5d/0xf0
[ 2603.397720][T27493]  kernel_clone+0xfd/0x930
[ 2603.402339][T27493]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2603.408412][T27493]  ? create_io_thread+0xe0/0xe0
[ 2603.413327][T27493]  ? find_held_lock+0x2d/0x110
[ 2603.418145][T27493]  __do_sys_clone3+0x1f1/0x260
[ 2603.422954][T27493]  ? __do_sys_clone+0x100/0x100
[ 2603.427958][T27493]  do_syscall_64+0xd3/0x250
[ 2603.432483][T27493]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 2603.438401][T27493] RIP: 0033:0x7f212b0a8b99
[ 2603.442839][T27493] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 2603.462832][T27493] RSP: 002b:00007ffc7b20b738 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 2603.471379][T27493] RAX: ffffffffffffffda RBX: 00007f212b051270 RCX: 00007f212b0a8b99
[ 2603.479392][T27493] RDX: 00007f212b051270 RSI: 0000000000000058 RDI: 00007ffc7b20b780
[ 2603.487385][T27493] RBP: 00007f212be566c0 R08: 00007f212be566c0 R09: 00007ffc7b20b867
[ 2603.495387][T27493] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 2603.503395][T27493] R13: 000000000000000b R14: 00007ffc7b20b780 R15: 00007ffc7b20b868
[ 2603.511412][T27493]  </TASK>
[ 2603.519762][T16775] bond1803 (unregistering): Released all slaves
[ 2603.528024][T27493] memory: usage 307200kB, limit 307200kB, failcnt 121154
[ 2603.535373][T27493] memory+swap: usage 307556kB, limit 9007199254740988kB, failcnt 0
[ 2603.544110][T27493] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0
[ 2603.566140][T27493] Memory cgroup stats for /syz3:
[ 2603.566308][T27493] cache 0
[ 2603.584429][T27493] rss 12288
[ 2603.588042][T27493] rss_huge 0
[ 2603.606112][T27493] shmem 0
[ 2603.610960][T16775] bond1802 (unregistering): Released all slaves
[ 2603.629897][T27493] mapped_file 0
[ 2603.647247][T27493] dirty 0
[ 2603.650266][T27493] writeback 0
[ 2603.653582][T27493] workingset_refault_anon 35789
19:47:15 executing program 1:
socket$kcm(0x10, 0x400000002, 0x0)
socket$inet(0x2, 0x2, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
write$binfmt_script(r0, &(0x7f0000000480)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r1 = socket$rxrpc(0x21, 0x2, 0xa)
r2 = syz_genetlink_get_family_id$batadv(&(0x7f0000007580), 0xffffffffffffffff)
sendmsg$BATADV_CMD_SET_HARDIF(0xffffffffffffffff, 0x0, 0x0)
sendmsg$BATADV_CMD_GET_GATEWAYS(0xffffffffffffffff, &(0x7f0000007680)={0x0, 0x0, &(0x7f0000007640)={&(0x7f0000000000)=ANY=[@ANYBLOB="46040000", @ANYRES16=r2, @ANYBLOB="ff83050000076dc6d81b", @ANYRES32=r1], 0x4}}, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendfile(r4, r3, 0x0, 0x100000002)

[ 2603.683839][T27493] workingset_refault_file 1
[ 2603.692596][T16775] bond1801 (unregistering): Released all slaves
[ 2603.699189][T27493] swap 364544
[ 2603.702504][T27493] swapcached 12288
[ 2603.716371][T27493] pgpgin 159823
[ 2603.719936][T27493] pgpgout 159820
[ 2603.729528][T27493] pgfault 351550
[ 2603.733126][T27493] pgmajfault 34847
[ 2603.752059][T16775] bond1800 (unregistering): Released all slaves
[ 2603.758703][T27493] inactive_anon 0
[ 2603.762375][T27493] active_anon 12288
[ 2603.776418][T27493] inactive_file 0
[ 2603.780120][T27493] active_file 0
[ 2603.783590][T27493] unevictable 0
[ 2603.794370][T27493] hierarchical_memory_limit 314572800
[ 2603.802340][T16775] bond1799 (unregistering): Released all slaves
[ 2603.826079][T27493] hierarchical_memsw_limit 9223372036854771712
[ 2603.832304][T27493] total_cache 0
[ 2603.835793][T27493] total_rss 12288
[ 2603.861671][T27493] total_rss_huge 0
[ 2603.868292][T16775] bond1798 (unregistering): Released all slaves
[ 2603.886849][T27493] total_shmem 0
[ 2603.890369][T27493] total_mapped_file 0
[ 2603.894369][T27493] total_dirty 0
[ 2603.922658][T27493] total_writeback 0
[ 2603.929647][T16775] bond1797 (unregistering): Released all slaves
[ 2603.948665][T27493] total_workingset_refault_anon 35789
[ 2603.954097][T27493] total_workingset_refault_file 1
[ 2603.986366][T27493] total_swap 364544
[ 2603.990246][T27493] total_swapcached 12288
[ 2603.994515][T27493] total_pgpgin 159823
[ 2604.012538][T27493] total_pgpgout 159820
[ 2604.019368][   T28] audit: type=1804 audit(1706039235.671:1944): pid=27495 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir245649211/syzkaller.jQ7tPM/48/cgroup.controllers" dev="sda1" ino=1956 res=1 errno=0
[ 2604.019575][T16775] bond1796 (unregistering): Released all slaves
[ 2604.074841][T27493] total_pgfault 351550
[ 2604.079805][T27493] total_pgmajfault 34847
[ 2604.086904][T27493] total_inactive_anon 0
[ 2604.097020][T27493] total_active_anon 12288
[ 2604.136352][T27493] total_inactive_file 0
[ 2604.142365][T27493] total_active_file 0
[ 2604.155740][T27493] total_unevictable 0
[ 2604.168639][T27493] anon_cost 0
[ 2604.171976][T27493] file_cost 0
[ 2604.175273][T27493] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=27493,uid=0
[ 2604.189647][T16775] bond1795 (unregistering): Released all slaves
[ 2604.197701][T27493] Memory cgroup out of memory: Killed process 27493 (syz-executor.3) total-vm:54504kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
19:47:15 executing program 3:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x32}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000280)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000240)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=@newlink={0x48, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0xe403, r2}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @veth={{0x9}, {0x18, 0x2, 0x0, 0x1, @val=@VETH_INFO_PEER={0x14}}}}]}, 0x48}, 0x9100}, 0x0)

[ 2604.344630][T16775] bond1794 (unregistering): Released all slaves
[ 2604.403182][T16775] bond1793 (unregistering): Released all slaves
[ 2604.459938][T16775] bond1792 (unregistering): Released all slaves
[ 2604.517570][T16775] bond1791 (unregistering): Released all slaves
[ 2604.592696][T16775] bond1790 (unregistering): Released all slaves
[ 2604.649947][T16775] bond1789 (unregistering): Released all slaves
[ 2604.720944][T16775] bond1788 (unregistering): Released all slaves
19:47:16 executing program 1:
socket$kcm(0x10, 0x400000002, 0x0)
socket$inet(0x2, 0x2, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
write$binfmt_script(r0, &(0x7f0000000480)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r1 = socket$rxrpc(0x21, 0x2, 0xa)
r2 = syz_genetlink_get_family_id$batadv(&(0x7f0000007580), 0xffffffffffffffff)
sendmsg$BATADV_CMD_SET_HARDIF(0xffffffffffffffff, 0x0, 0x0)
sendmsg$BATADV_CMD_GET_GATEWAYS(0xffffffffffffffff, &(0x7f0000007680)={0x0, 0x0, &(0x7f0000007640)={&(0x7f0000000000)=ANY=[@ANYBLOB="46040000", @ANYRES16=r2, @ANYBLOB="ff83050000076dc6d81b", @ANYRES32=r1], 0x4}}, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendfile(r4, r3, 0x0, 0x100000002)

[ 2604.800639][T16775] bond1787 (unregistering): Released all slaves
[ 2604.850698][T16775] bond1786 (unregistering): Released all slaves
[ 2604.893644][ T5091] syz-executor.3 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[ 2604.922771][ T5091] CPU: 0 PID: 5091 Comm: syz-executor.3 Not tainted 6.7.0-syzkaller-12291-g435e202d645c #0
[ 2604.932910][ T5091] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 2604.943346][ T5091] Call Trace:
[ 2604.946646][ T5091]  <TASK>
[ 2604.949609][ T5091]  dump_stack_lvl+0x125/0x1b0
[ 2604.954339][ T5091]  dump_header+0x103/0x900
[ 2604.958805][ T5091]  oom_kill_process+0x270/0xa60
[ 2604.963715][ T5091]  out_of_memory+0x344/0x16c0
[ 2604.968418][ T5091]  ? mutex_trylock+0xa0/0x130
[ 2604.973142][ T5091]  ? oom_killer_disable+0x2d0/0x2d0
[ 2604.978381][ T5091]  ? rcu_read_unlock+0x1c/0x60
[ 2604.983201][ T5091]  mem_cgroup_out_of_memory+0x206/0x270
[ 2604.988887][ T5091]  ? mem_cgroup_margin+0x130/0x130
[ 2604.994034][ T5091]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2604.999459][ T5091]  try_charge_memcg+0xcd1/0x11a0
[ 2605.004541][ T5091]  ? mem_cgroup_handle_over_high+0x570/0x570
[ 2605.010579][ T5091]  ? rcu_read_unlock+0x1c/0x60
[ 2605.015388][ T5091]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2605.020806][ T5091]  ? __radix_tree_lookup+0x21f/0x2c0
[ 2605.026138][ T5091]  mem_cgroup_swapin_charge_folio+0x138/0x380
[ 2605.032266][ T5091]  __read_swap_cache_async+0x4e1/0x600
[ 2605.037778][ T5091]  ? filemap_get_incore_folio+0x160/0x160
[ 2605.043530][ T5091]  ? swp_swap_info+0xcf/0x130
[ 2605.048251][ T5091]  ? swapcache_prepare+0x20/0x20
[ 2605.053232][ T5091]  ? hlock_class+0x4e/0x130
[ 2605.057879][ T5091]  ? mark_lock+0xb5/0xc50
[ 2605.062267][ T5091]  swap_cluster_readahead+0x4d4/0x710
[ 2605.067694][ T5091]  ? read_swap_cache_async+0x1a0/0x1a0
[ 2605.073202][ T5091]  ? reacquire_held_locks+0x410/0x4c0
[ 2605.078616][ T5091]  ? xas_descend+0x141/0x4e0
[ 2605.083282][ T5091]  ? filemap_get_entry+0x23e/0x460
[ 2605.088455][ T5091]  swapin_readahead+0x132/0xe60
[ 2605.093486][ T5091]  ? get_swap_device+0x363/0x5e0
[ 2605.098534][ T5091]  ? exit_swap_address_space+0x250/0x250
[ 2605.104214][ T5091]  ? __filemap_get_folio+0x2b0/0xaa0
[ 2605.109559][ T5091]  ? swap_cache_get_folio+0x1dc/0x460
[ 2605.115073][ T5091]  ? get_swap_device+0x245/0x5e0
[ 2605.120758][ T5091]  ? free_pages_and_swap_cache+0xa0/0xa0
[ 2605.126536][ T5091]  ? lock_sync+0x190/0x190
[ 2605.130988][ T5091]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2605.137006][ T5091]  do_swap_page+0x4a6/0x3190
[ 2605.141646][ T5091]  ? rcu_is_watching+0x12/0xb0
[ 2605.142267][   T28] audit: type=1804 audit(1706039236.781:1945): pid=27499 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir245649211/syzkaller.jQ7tPM/49/cgroup.controllers" dev="sda1" ino=1956 res=1 errno=0
[ 2605.146429][ T5091]  ? __pte_offset_map+0x1b9/0x540
[ 2605.146458][ T5091]  ? unmap_mapping_folio+0x3b0/0x3b0
[ 2605.146482][ T5091]  ? pte_offset_map_nolock+0xfa/0x1b0
[ 2605.188749][ T5091]  ? __pte_offset_map+0x540/0x540
[ 2605.196692][ T5091]  __handle_mm_fault+0x13a0/0x4900
[ 2605.202340][ T5091]  ? clear_huge_page+0x2e0/0x2e0
[ 2605.207432][ T5091]  ? find_vma+0x112/0x1b0
[ 2605.212412][ T5091]  ? get_unmapped_area+0x400/0x400
[ 2605.217579][ T5091]  handle_mm_fault+0x47a/0xa10
[ 2605.226048][ T5091]  ? lock_mm_and_find_vma+0xa6/0x580
[ 2605.231390][ T5091]  do_user_addr_fault+0x3f8/0x1030
[ 2605.236554][ T5091]  ? rcu_is_watching+0x12/0xb0
[ 2605.241379][ T5091]  exc_page_fault+0x5d/0xc0
[ 2605.245956][ T5091]  asm_exc_page_fault+0x26/0x30
[ 2605.250857][ T5091] RIP: 0010:__get_user_8+0x11/0x20
[ 2605.256012][ T5091] Code: 48 c1 fa 3f 48 09 d0 0f 01 cb 8b 10 31 c0 0f 01 ca c3 0f 1f 80 00 00 00 00 f3 0f 1e fa 48 89 c2 48 c1 fa 3f 48 09 d0 0f 01 cb <48> 8b 10 31 c0 0f 01 ca c3 66 0f 1f 44 00 00 f3 0f 1e fa 0f 01 cb
[ 2605.275664][ T5091] RSP: 0000:ffffc900047cfdf8 EFLAGS: 00050202
[ 2605.281779][ T5091] RAX: 0000555555796da8 RBX: ffff888027da0000 RCX: ffffc900047cfd60
[ 2605.292322][ T5091] RDX: 0000000000000000 RSI: ffffffff81b655ac RDI: ffffffff8b2f9d00
[ 2605.301034][ T5091] RBP: ffffc900047cfef8 R08: 0000000000000000 R09: fffffbfff1e753fa
[ 2605.309044][ T5091] R10: ffffffff8f3a9fd7 R11: 0000000000000000 R12: ffff888027da0000
[ 2605.317083][ T5091] R13: ffffc900047cff58 R14: ffffc900047cfe60 R15: 0000000000000000
[ 2605.325108][ T5091]  ? __rseq_handle_notify_resume+0x14c/0x1020
[ 2605.331247][ T5091]  __rseq_handle_notify_resume+0x183/0x1020
[ 2605.337206][ T5091]  ? __do_sys_rseq+0x750/0x750
[ 2605.342033][ T5091]  ? folio_memcg_unlock+0x240/0x240
[ 2605.347270][ T5091]  ? __ia32_sys_clock_getres_time32+0x280/0x280
[ 2605.353548][ T5091]  syscall_exit_to_user_mode+0x1a9/0x2b0
[ 2605.359407][ T5091]  do_syscall_64+0xe0/0x250
[ 2605.364069][ T5091]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 2605.370019][ T5091] RIP: 0033:0x7f212b0a81b5
[ 2605.374473][ T5091] Code: 24 0c 89 3c 24 48 89 4c 24 18 e8 f6 b9 ff ff 4c 8b 54 24 18 48 8b 54 24 10 41 89 c0 8b 74 24 0c 8b 3c 24 b8 e6 00 00 00 0f 05 <44> 89 c7 48 89 04 24 e8 4f ba ff ff 48 8b 04 24 48 83 c4 28 f7 d8
[ 2605.394999][ T5091] RSP: 002b:00007ffc7b20bb10 EFLAGS: 00000293 ORIG_RAX: 00000000000000e6
[ 2605.403453][ T5091] RAX: 0000000000000000 RBX: 0000000000002903 RCX: 00007f212b0a81b5
[ 2605.411461][ T5091] RDX: 00007ffc7b20bb50 RSI: 0000000000000000 RDI: 0000000000000000
[ 2605.419457][ T5091] RBP: 00007ffc7b20bbdc R08: 0000000000000000 R09: 0000000000000001
[ 2605.427435][ T5091] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000032
[ 2605.435427][ T5091] R13: 000000000027bd79 R14: 000000000027bd79 R15: 0000000000000000
[ 2605.443462][ T5091]  </TASK>
[ 2605.466546][T16775] bond1785 (unregistering): Released all slaves
[ 2605.492302][T16775] bond1784 (unregistering): Released all slaves
[ 2605.516524][ T5091] memory: usage 307200kB, limit 307200kB, failcnt 121517
[ 2605.527261][T16775] bond1783 (unregistering): Released all slaves
[ 2605.548018][ T5091] memory+swap: usage 307524kB, limit 9007199254740988kB, failcnt 0
[ 2605.562038][T16775] bond1782 (unregistering): Released all slaves
[ 2605.579376][ T5091] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[ 2605.596405][ T5091] Memory cgroup stats for /syz3:
[ 2605.596562][ T5091] cache 0
[ 2605.608500][ T5091] rss 0
[ 2605.611332][ T5091] rss_huge 0
[ 2605.614562][ T5091] shmem 0
[ 2605.621816][T16775] bond1781 (unregistering): Released all slaves
[ 2605.628708][ T5091] mapped_file 0
[ 2605.632208][ T5091] dirty 0
[ 2605.635173][ T5091] writeback 0
[ 2605.646257][ T5091] workingset_refault_anon 35904
[ 2605.651161][ T5091] workingset_refault_file 1
[ 2605.664092][ T5091] swap 331776
[ 2605.677757][ T5091] swapcached 0
[ 2605.688147][ T5091] pgpgin 159949
[ 2605.695088][T16775] bond1780 (unregistering): Released all slaves
[ 2605.696081][ T5091] pgpgout 159949
[ 2605.717968][ T5091] pgfault 351745
[ 2605.721697][ T5091] pgmajfault 34951
[ 2605.725563][ T5091] inactive_anon 0
[ 2605.734139][T16775] bond1779 (unregistering): Released all slaves
[ 2605.740656][ T5091] active_anon 0
[ 2605.746750][ T5091] inactive_file 0
[ 2605.753911][ T5091] active_file 0
[ 2605.762013][ T5091] unevictable 0
[ 2605.771182][ T5091] hierarchical_memory_limit 314572800
[ 2605.782287][ T5091] hierarchical_memsw_limit 9223372036854771712
[ 2605.795457][T16775] bond1778 (unregistering): Released all slaves
[ 2605.816171][ T5091] total_cache 0
[ 2605.819706][ T5091] total_rss 0
[ 2605.823165][ T5091] total_rss_huge 0
19:47:17 executing program 1:
socket$kcm(0x10, 0x400000002, 0x0)
socket$inet(0x2, 0x2, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
write$binfmt_script(r0, &(0x7f0000000480)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r1 = socket$rxrpc(0x21, 0x2, 0xa)
r2 = syz_genetlink_get_family_id$batadv(&(0x7f0000007580), 0xffffffffffffffff)
sendmsg$BATADV_CMD_SET_HARDIF(0xffffffffffffffff, 0x0, 0x0)
sendmsg$BATADV_CMD_GET_GATEWAYS(0xffffffffffffffff, &(0x7f0000007680)={0x0, 0x0, &(0x7f0000007640)={&(0x7f0000000000)=ANY=[@ANYBLOB="46040000", @ANYRES16=r2, @ANYBLOB="ff83050000076dc6d81b", @ANYRES32=r1], 0x4}}, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendfile(r4, r3, 0x0, 0x100000002)

[ 2605.834691][ T5091] total_shmem 0
[ 2605.842888][ T5091] total_mapped_file 0
[ 2605.849832][ T5091] total_dirty 0
[ 2605.853454][ T5091] total_writeback 0
[ 2605.858144][ T5091] total_workingset_refault_anon 35904
[ 2605.863810][ T5091] total_workingset_refault_file 1
[ 2605.872928][T16775] bond1777 (unregistering): Released all slaves
[ 2605.879604][ T5091] total_swap 331776
[ 2605.902257][ T5091] total_swapcached 0
[ 2605.926126][ T5091] total_pgpgin 159949
[ 2605.930237][ T5091] total_pgpgout 159949
[ 2605.934322][ T5091] total_pgfault 351745
[ 2605.954745][T16775] bond1776 (unregistering): Released all slaves
[ 2605.961178][ T5091] total_pgmajfault 34951
[ 2605.965434][ T5091] total_inactive_anon 0
[ 2605.984210][ T5091] total_active_anon 0
[ 2606.006226][ T5091] total_inactive_file 0
[ 2606.010447][ T5091] total_active_file 0
[ 2606.014441][ T5091] total_unevictable 0
[ 2606.021929][T16775] bond1775 (unregistering): Released all slaves
[ 2606.042760][ T5091] anon_cost 0
[ 2606.056328][ T5091] file_cost 0
[ 2606.070498][ T5091] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=27497,uid=0
[ 2606.073352][T16775] bond1774 (unregistering): Released all slaves
[ 2606.116559][ T5091] Memory cgroup out of memory: Killed process 27497 (syz-executor.3) total-vm:54504kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
19:47:17 executing program 3:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x32}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000280)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000240)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=@newlink={0x48, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0xe403, r2}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @veth={{0x9}, {0x18, 0x2, 0x0, 0x1, @val=@VETH_INFO_PEER={0x14}}}}]}, 0x48}, 0x9200}, 0x0)

[ 2606.179639][T16775] bond1773 (unregistering): Released all slaves
[ 2606.217885][   T28] audit: type=1804 audit(1706039237.861:1946): pid=27502 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir245649211/syzkaller.jQ7tPM/50/cgroup.controllers" dev="sda1" ino=1956 res=1 errno=0
[ 2606.251799][T16775] bond1772 (unregistering): Released all slaves
[ 2606.320206][T16775] bond1771 (unregistering): Released all slaves
[ 2606.406710][T16775] bond1770 (unregistering): Released all slaves
[ 2606.463344][T16775] bond1769 (unregistering): Released all slaves
[ 2606.520313][T27504] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2606.538237][T16775] bond1768 (unregistering): Released all slaves
[ 2606.545369][T27504] CPU: 0 PID: 27504 Comm: syz-executor.3 Not tainted 6.7.0-syzkaller-12291-g435e202d645c #0
[ 2606.555495][T27504] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 2606.565934][T27504] Call Trace:
[ 2606.569241][T27504]  <TASK>
[ 2606.572299][T27504]  dump_stack_lvl+0x125/0x1b0
[ 2606.577024][T27504]  dump_header+0x103/0x900
[ 2606.581498][T27504]  oom_kill_process+0x270/0xa60
[ 2606.586400][T27504]  out_of_memory+0x344/0x16c0
[ 2606.591126][T27504]  ? oom_killer_disable+0x2d0/0x2d0
[ 2606.596381][T27504]  ? rcu_read_unlock+0x1c/0x60
[ 2606.601206][T27504]  mem_cgroup_out_of_memory+0x206/0x270
[ 2606.606802][T27504]  ? mem_cgroup_margin+0x130/0x130
[ 2606.611937][T27504]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2606.617419][T27504]  try_charge_memcg+0xcd1/0x11a0
[ 2606.622373][T27504]  ? mem_cgroup_handle_over_high+0x570/0x570
[ 2606.628365][T27504]  ? get_mem_cgroup_from_objcg+0xb5/0x2a0
[ 2606.634195][T27504]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2606.639840][T27504]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2606.645230][T27504]  __memcg_kmem_charge_page+0xdd/0x2a0
[ 2606.650709][T27504]  memcg_charge_kernel_stack+0xc3/0x1f0
[ 2606.656280][T27504]  copy_process+0x1532/0x97b0
[ 2606.660976][T27504]  ? hlock_class+0x4e/0x130
[ 2606.665492][T27504]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2606.671475][T27504]  ? page_ext_put+0x43/0xd0
[ 2606.676003][T27504]  ? hlock_class+0x4e/0x130
[ 2606.680535][T27504]  ? pidfd_prepare+0x80/0x80
[ 2606.685146][T27504]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2606.691310][T27504]  ? preempt_count_sub+0x160/0x160
[ 2606.696438][T27504]  ? __lock_acquire+0x1502/0x3b30
[ 2606.701513][T27504]  ? __might_fault+0xe6/0x1a0
[ 2606.706239][T27504]  ? _copy_from_user+0x5d/0xf0
[ 2606.711048][T27504]  kernel_clone+0xfd/0x930
[ 2606.715476][T27504]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2606.721559][T27504]  ? create_io_thread+0xe0/0xe0
[ 2606.726431][T27504]  ? find_held_lock+0x2d/0x110
[ 2606.731216][T27504]  __do_sys_clone3+0x1f1/0x260
[ 2606.735992][T27504]  ? __do_sys_clone+0x100/0x100
[ 2606.740888][T27504]  do_syscall_64+0xd3/0x250
[ 2606.745404][T27504]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 2606.751304][T27504] RIP: 0033:0x7f212b0a8b99
[ 2606.755721][T27504] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 2606.775355][T27504] RSP: 002b:00007ffc7b20b738 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 2606.784043][T27504] RAX: ffffffffffffffda RBX: 00007f212b051270 RCX: 00007f212b0a8b99
[ 2606.792019][T27504] RDX: 00007f212b051270 RSI: 0000000000000058 RDI: 00007ffc7b20b780
[ 2606.800002][T27504] RBP: 00007f212be566c0 R08: 00007f212be566c0 R09: 00007ffc7b20b867
[ 2606.807979][T27504] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 2606.815953][T27504] R13: 000000000000000b R14: 00007ffc7b20b780 R15: 00007ffc7b20b868
[ 2606.823951][T27504]  </TASK>
[ 2606.851312][T16775] bond1767 (unregistering): Released all slaves
[ 2606.876074][T27504] memory: usage 307200kB, limit 307200kB, failcnt 121713
[ 2606.894337][T27504] memory+swap: usage 307564kB, limit 9007199254740988kB, failcnt 0
[ 2606.920867][T16775] bond1766 (unregistering): Released all slaves
[ 2606.929584][T27504] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
19:47:18 executing program 1:
socket$kcm(0x10, 0x400000002, 0x0)
socket$inet(0x2, 0x2, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
write$binfmt_script(r1, &(0x7f0000000480)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r1, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket(0x10, 0x3, 0x0)
r2 = socket$rxrpc(0x21, 0x2, 0xa)
r3 = syz_genetlink_get_family_id$batadv(&(0x7f0000007580), 0xffffffffffffffff)
sendmsg$BATADV_CMD_SET_HARDIF(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001740)={&(0x7f0000000000)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16, @ANYBLOB="2d0100000000000000000500f6ff08000300", @ANYRES32=r0], 0x2c}}, 0x0)
sendmsg$BATADV_CMD_GET_GATEWAYS(0xffffffffffffffff, &(0x7f0000007680)={0x0, 0x0, &(0x7f0000007640)={&(0x7f0000000000)=ANY=[@ANYBLOB="46040000", @ANYRES16=r3, @ANYBLOB="ff83050000076dc6d81b", @ANYRES32=r2], 0x4}}, 0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendfile(r5, r4, 0x0, 0x100000002)

[ 2606.968665][T27504] Memory cgroup stats for /syz3:
[ 2606.968827][T27504] cache 0
[ 2606.994020][T27504] rss 0
[ 2607.016806][T27504] rss_huge 0
[ 2607.020052][T27504] shmem 0
[ 2607.022999][T27504] mapped_file 0
[ 2607.028775][T16775] bond1765 (unregistering): Released all slaves
[ 2607.048062][T27504] dirty 0
[ 2607.051073][T27504] writeback 0
[ 2607.054386][T27504] workingset_refault_anon 35960
[ 2607.076139][T27504] workingset_refault_file 1
[ 2607.080698][T27504] swap 372736
[ 2607.084001][T27504] swapcached 0
[ 2607.099049][T27504] pgpgin 160018
[ 2607.106859][T27504] pgpgout 160018
[ 2607.110453][T27504] pgfault 351853
[ 2607.119104][T16775] bond1764 (unregistering): Released all slaves
[ 2607.128822][T27504] pgmajfault 35002
[ 2607.132587][T27504] inactive_anon 0
[ 2607.156254][T27504] active_anon 0
[ 2607.159777][T27504] inactive_file 0
[ 2607.163423][T27504] active_file 0
[ 2607.186486][T27504] unevictable 0
[ 2607.190142][T27504] hierarchical_memory_limit 314572800
[ 2607.195527][T27504] hierarchical_memsw_limit 9223372036854771712
[ 2607.205783][T16775] bond1763 (unregistering): Released all slaves
[ 2607.227329][T27504] total_cache 0
[ 2607.230851][T27504] total_rss 0
[ 2607.234145][T27504] total_rss_huge 0
[ 2607.242658][T27504] total_shmem 0
[ 2607.246718][T27504] total_mapped_file 0
[ 2607.250731][T27504] total_dirty 0
[ 2607.257542][T16775] bond1762 (unregistering): Released all slaves
[ 2607.264601][T27504] total_writeback 0
[ 2607.269048][T27504] total_workingset_refault_anon 35960
[ 2607.290869][T27504] total_workingset_refault_file 1
[ 2607.296397][T27504] total_swap 372736
[ 2607.302611][T27504] total_swapcached 0
[ 2607.314473][T16775] bond1761 (unregistering): Released all slaves
[ 2607.321041][T27504] total_pgpgin 160018
[ 2607.327090][   T28] audit: type=1804 audit(1706039238.981:1947): pid=27506 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir245649211/syzkaller.jQ7tPM/51/cgroup.controllers" dev="sda1" ino=1956 res=1 errno=0
[ 2607.354457][T27504] total_pgpgout 160018
[ 2607.366121][T27504] total_pgfault 351853
[ 2607.376099][T27504] total_pgmajfault 35002
[ 2607.382776][T27504] total_inactive_anon 0
[ 2607.387984][T27504] total_active_anon 0
[ 2607.395700][T16775] bond1760 (unregistering): Released all slaves
[ 2607.408414][T27504] total_inactive_file 0
[ 2607.414993][T27504] total_active_file 0
[ 2607.423888][T27504] total_unevictable 0
[ 2607.432965][T27504] anon_cost 0
[ 2607.440953][T27504] file_cost 0
[ 2607.444541][T27504] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=27504,uid=0
[ 2607.464246][T16775] bond1759 (unregistering): Released all slaves
[ 2607.472239][T27504] Memory cgroup out of memory: Killed process 27504 (syz-executor.3) total-vm:54504kB, anon-rss:380kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 2607.541883][T16775] bond1758 (unregistering): Released all slaves
19:47:19 executing program 3:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x32}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000280)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000240)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=@newlink={0x48, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0xe403, r2}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @veth={{0x9}, {0x18, 0x2, 0x0, 0x1, @val=@VETH_INFO_PEER={0x14}}}}]}, 0x48}, 0x9300}, 0x0)

[ 2607.624027][T16775] bond1757 (unregistering): Released all slaves
[ 2607.678452][T16775] bond1756 (unregistering): Released all slaves
[ 2607.726903][T16775] bond1755 (unregistering): Released all slaves
[ 2607.770832][T16775] bond1754 (unregistering): Released all slaves
[ 2607.837059][T16775] bond1753 (unregistering): Released all slaves
[ 2607.894654][T16775] bond1752 (unregistering): Released all slaves
[ 2607.955510][T16775] bond1751 (unregistering): Released all slaves
[ 2608.025864][T16775] bond1750 (unregistering): Released all slaves
19:47:19 executing program 1:
socket$kcm(0x10, 0x400000002, 0x0)
socket$inet(0x2, 0x2, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
write$binfmt_script(r0, &(0x7f0000000480)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r1 = socket$rxrpc(0x21, 0x2, 0xa)
r2 = syz_genetlink_get_family_id$batadv(&(0x7f0000007580), 0xffffffffffffffff)
sendmsg$BATADV_CMD_SET_HARDIF(0xffffffffffffffff, 0x0, 0x0)
sendmsg$BATADV_CMD_GET_GATEWAYS(0xffffffffffffffff, &(0x7f0000007680)={0x0, 0x0, &(0x7f0000007640)={&(0x7f0000000000)=ANY=[@ANYBLOB="46040000", @ANYRES16=r2, @ANYBLOB="ff83050000076dc6d81b", @ANYRES32=r1], 0x4}}, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendfile(r4, r3, 0x0, 0x100000002)

[ 2608.079335][T16775] bond1749 (unregistering): Released all slaves
[ 2608.171336][T16775] bond1748 (unregistering): Released all slaves
[ 2608.223460][T16775] bond1747 (unregistering): Released all slaves
[ 2608.271530][T16775] bond1746 (unregistering): Released all slaves
[ 2608.320771][T27508] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2608.345714][T16775] bond1745 (unregistering): Released all slaves
[ 2608.376069][T27508] CPU: 1 PID: 27508 Comm: syz-executor.3 Not tainted 6.7.0-syzkaller-12291-g435e202d645c #0
[ 2608.386283][T27508] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 2608.396447][T27508] Call Trace:
[ 2608.399729][T27508]  <TASK>
[ 2608.403212][T27508]  dump_stack_lvl+0x125/0x1b0
[ 2608.407906][T27508]  dump_header+0x103/0x900
[ 2608.412604][T27508]  oom_kill_process+0x270/0xa60
[ 2608.417474][T27508]  out_of_memory+0x344/0x16c0
[ 2608.422255][T27508]  ? oom_killer_disable+0x2d0/0x2d0
[ 2608.427465][T27508]  ? rcu_read_unlock+0x1c/0x60
[ 2608.432250][T27508]  mem_cgroup_out_of_memory+0x206/0x270
[ 2608.437804][T27508]  ? mem_cgroup_margin+0x130/0x130
[ 2608.442918][T27508]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2608.448310][T27508]  try_charge_memcg+0xcd1/0x11a0
[ 2608.453299][T27508]  ? mem_cgroup_handle_over_high+0x570/0x570
[ 2608.459296][T27508]  ? get_mem_cgroup_from_objcg+0xb5/0x2a0
[ 2608.465028][T27508]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2608.470407][T27508]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2608.475811][T27508]  __memcg_kmem_charge_page+0xdd/0x2a0
[ 2608.481287][T27508]  memcg_charge_kernel_stack+0xc3/0x1f0
[ 2608.486847][T27508]  copy_process+0x527/0x97b0
[ 2608.492065][T27508]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2608.498053][T27508]  ? page_ext_put+0x43/0xd0
[ 2608.502576][T27508]  ? pidfd_prepare+0x80/0x80
[ 2608.507271][T27508]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2608.512655][T27508]  ? preempt_count_sub+0x160/0x160
[ 2608.517776][T27508]  ? print_usage_bug.part.0+0x550/0x550
[ 2608.523339][T27508]  ? __might_fault+0xe6/0x1a0
[ 2608.528034][T27508]  ? _copy_from_user+0x5d/0xf0
[ 2608.532817][T27508]  kernel_clone+0xfd/0x930
[ 2608.537255][T27508]  ? create_io_thread+0xe0/0xe0
[ 2608.542938][T27508]  __do_sys_clone3+0x1f1/0x260
[ 2608.547711][T27508]  ? __do_sys_clone+0x100/0x100
[ 2608.552587][T27508]  ? do_user_addr_fault+0x663/0x1030
[ 2608.557902][T27508]  do_syscall_64+0xd3/0x250
[ 2608.562424][T27508]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 2608.568342][T27508] RIP: 0033:0x7f212b0a8b99
[ 2608.572778][T27508] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 2608.592846][T27508] RSP: 002b:00007ffc7b20b738 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 2608.601277][T27508] RAX: ffffffffffffffda RBX: 00007f212b051270 RCX: 00007f212b0a8b99
[ 2608.609267][T27508] RDX: 00007f212b051270 RSI: 0000000000000058 RDI: 00007ffc7b20b780
[ 2608.617242][T27508] RBP: 00007f212be566c0 R08: 00007f212be566c0 R09: 00007ffc7b20b867
[ 2608.625219][T27508] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 2608.633198][T27508] R13: 000000000000000b R14: 00007ffc7b20b780 R15: 00007ffc7b20b868
[ 2608.641228][T27508]  </TASK>
[ 2608.676399][T27508] memory: usage 307200kB, limit 307200kB, failcnt 122063
[ 2608.683777][T27508] memory+swap: usage 307568kB, limit 9007199254740988kB, failcnt 0
[ 2608.692904][   T28] audit: type=1804 audit(1706039240.321:1948): pid=27510 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir245649211/syzkaller.jQ7tPM/52/cgroup.controllers" dev="sda1" ino=1956 res=1 errno=0
[ 2608.720173][T27508] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[ 2608.727687][T27508] Memory cgroup stats for /syz3:
[ 2608.727816][T27508] cache 0
[ 2608.735852][T27508] rss 0
[ 2608.739640][T27508] rss_huge 0
[ 2608.743130][T27508] shmem 0
[ 2608.744771][T16775] bond1744 (unregistering): Released all slaves
[ 2608.747789][T27508] mapped_file 0
[ 2608.758752][T27508] dirty 0
[ 2608.761842][T27508] writeback 0
[ 2608.765247][T27508] workingset_refault_anon 36074
[ 2608.770337][T27508] workingset_refault_file 1
[ 2608.775015][T27508] swap 376832
[ 2608.778579][T27508] swapcached 0
[ 2608.782143][T27508] pgpgin 160143
[ 2608.785780][T27508] pgpgout 160143
[ 2608.789578][T27508] pgfault 352050
[ 2608.793339][T27508] pgmajfault 35103
[ 2608.797382][T27508] inactive_anon 0
[ 2608.801286][T27508] active_anon 0
[ 2608.804916][T27508] inactive_file 0
[ 2608.808893][T27508] active_file 0
[ 2608.812532][T27508] unevictable 0
[ 2608.816262][T27508] hierarchical_memory_limit 314572800
[ 2608.821845][T27508] hierarchical_memsw_limit 9223372036854771712
[ 2608.828305][T27508] total_cache 0
[ 2608.830566][T16775] bond1743 (unregistering): Released all slaves
[ 2608.831938][T27508] total_rss 0
[ 2608.868774][T27508] total_rss_huge 0
[ 2608.875775][T16775] bond1742 (unregistering): Released all slaves
[ 2608.883407][T27508] total_shmem 0
[ 2608.896221][T27508] total_mapped_file 0
[ 2608.912704][T27508] total_dirty 0
[ 2608.934020][T27508] total_writeback 0
[ 2608.946016][T27508] total_workingset_refault_anon 36074
[ 2608.951992][T27508] total_workingset_refault_file 1
[ 2608.957491][T27508] total_swap 376832
[ 2608.965012][T27508] total_swapcached 0
[ 2608.969600][T27508] total_pgpgin 160143
[ 2608.977028][T16775] bond1741 (unregistering): Released all slaves
[ 2608.983584][T27508] total_pgpgout 160143
[ 2608.994976][T27508] total_pgfault 352050
[ 2609.011593][T27508] total_pgmajfault 35103
[ 2609.017064][T27508] total_inactive_anon 0
[ 2609.033122][T27508] total_active_anon 0
[ 2609.038375][T27508] total_inactive_file 0
[ 2609.040379][T16775] bond1740 (unregistering): Released all slaves
[ 2609.044779][T27508] total_active_file 0
[ 2609.065505][T27508] total_unevictable 0
[ 2609.070285][T27508] anon_cost 0
[ 2609.079468][T27508] file_cost 0
[ 2609.083306][T27508] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=27508,uid=0
[ 2609.114858][T27508] Memory cgroup out of memory: Killed process 27508 (syz-executor.3) total-vm:54504kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
19:47:20 executing program 1:
socket$kcm(0x10, 0x400000002, 0x0)
socket$inet(0x2, 0x2, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
write$binfmt_script(r0, &(0x7f0000000480)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r1 = socket$rxrpc(0x21, 0x2, 0xa)
r2 = syz_genetlink_get_family_id$batadv(&(0x7f0000007580), 0xffffffffffffffff)
sendmsg$BATADV_CMD_SET_HARDIF(0xffffffffffffffff, 0x0, 0x0)
sendmsg$BATADV_CMD_GET_GATEWAYS(0xffffffffffffffff, &(0x7f0000007680)={0x0, 0x0, &(0x7f0000007640)={&(0x7f0000000000)=ANY=[@ANYBLOB="46040000", @ANYRES16=r2, @ANYBLOB="ff83050000076dc6d81b", @ANYRES32=r1], 0x4}}, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendfile(r4, r3, 0x0, 0x100000002)

[ 2609.150356][T16775] bond1739 (unregistering): Released all slaves
19:47:20 executing program 3:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x32}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000280)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000240)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=@newlink={0x48, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0xe403, r2}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @veth={{0x9}, {0x18, 0x2, 0x0, 0x1, @val=@VETH_INFO_PEER={0x14}}}}]}, 0x48}, 0x9400}, 0x0)

[ 2609.229018][T16775] bond1738 (unregistering): Released all slaves
[ 2609.304808][T16775] bond1737 (unregistering): Released all slaves
[ 2609.373086][T16775] bond1736 (unregistering): Released all slaves
[ 2609.437688][T16775] bond1735 (unregistering): Released all slaves
[ 2609.476281][   T28] audit: type=1804 audit(1706039241.131:1949): pid=27513 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir245649211/syzkaller.jQ7tPM/53/cgroup.controllers" dev="sda1" ino=1949 res=1 errno=0
[ 2609.523750][T16775] bond1734 (unregistering): Released all slaves
[ 2609.608655][T16775] bond1733 (unregistering): Released all slaves
[ 2609.647983][T16775] bond1732 (unregistering): Released all slaves
[ 2609.695764][T16775] bond1731 (unregistering): Released all slaves
[ 2609.715663][T27514] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2609.738378][T27514] CPU: 0 PID: 27514 Comm: syz-executor.3 Not tainted 6.7.0-syzkaller-12291-g435e202d645c #0
[ 2609.748794][T27514] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 2609.759057][T27514] Call Trace:
[ 2609.762366][T27514]  <TASK>
[ 2609.765321][T27514]  dump_stack_lvl+0x125/0x1b0
[ 2609.770042][T27514]  dump_header+0x103/0x900
[ 2609.774514][T27514]  oom_kill_process+0x270/0xa60
[ 2609.779425][T27514]  out_of_memory+0x344/0x16c0
[ 2609.784176][T27514]  ? oom_killer_disable+0x2d0/0x2d0
[ 2609.789430][T27514]  ? rcu_read_unlock+0x1c/0x60
[ 2609.794316][T27514]  mem_cgroup_out_of_memory+0x206/0x270
[ 2609.799867][T27514]  ? mem_cgroup_margin+0x130/0x130
[ 2609.804984][T27514]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2609.810376][T27514]  try_charge_memcg+0xcd1/0x11a0
[ 2609.815329][T27514]  ? mem_cgroup_handle_over_high+0x570/0x570
[ 2609.821326][T27514]  ? get_mem_cgroup_from_objcg+0xb5/0x2a0
[ 2609.827054][T27514]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2609.832437][T27514]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2609.837834][T27514]  __memcg_kmem_charge_page+0xdd/0x2a0
[ 2609.843325][T27514]  memcg_charge_kernel_stack+0xc3/0x1f0
[ 2609.848907][T27514]  copy_process+0x1532/0x97b0
[ 2609.853608][T27514]  ? hlock_class+0x4e/0x130
[ 2609.858142][T27514]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2609.864144][T27514]  ? hlock_class+0x4e/0x130
[ 2609.868695][T27514]  ? pidfd_prepare+0x80/0x80
[ 2609.873339][T27514]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2609.878731][T27514]  ? preempt_count_sub+0x160/0x160
[ 2609.883853][T27514]  ? __lock_acquire+0x1502/0x3b30
[ 2609.888965][T27514]  ? __might_fault+0xe6/0x1a0
[ 2609.893680][T27514]  ? _copy_from_user+0x5d/0xf0
[ 2609.898462][T27514]  kernel_clone+0xfd/0x930
[ 2609.902891][T27514]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2609.908904][T27514]  ? create_io_thread+0xe0/0xe0
[ 2609.913788][T27514]  ? find_held_lock+0x2d/0x110
[ 2609.918573][T27514]  __do_sys_clone3+0x1f1/0x260
[ 2609.923349][T27514]  ? __do_sys_clone+0x100/0x100
[ 2609.928241][T27514]  do_syscall_64+0xd3/0x250
[ 2609.932762][T27514]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 2609.938669][T27514] RIP: 0033:0x7f212b0a8b99
[ 2609.943109][T27514] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 2609.963268][T27514] RSP: 002b:00007ffc7b20b738 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 2609.971718][T27514] RAX: ffffffffffffffda RBX: 00007f212b051270 RCX: 00007f212b0a8b99
[ 2609.979710][T27514] RDX: 00007f212b051270 RSI: 0000000000000058 RDI: 00007ffc7b20b780
[ 2609.987693][T27514] RBP: 00007f212be566c0 R08: 00007f212be566c0 R09: 00007ffc7b20b867
[ 2609.995669][T27514] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 2610.003649][T27514] R13: 000000000000000b R14: 00007ffc7b20b780 R15: 00007ffc7b20b868
[ 2610.011648][T27514]  </TASK>
[ 2610.049116][T27514] memory: usage 307200kB, limit 307200kB, failcnt 122334
[ 2610.057372][T27514] memory+swap: usage 307588kB, limit 9007199254740988kB, failcnt 0
[ 2610.066988][T27514] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0
[ 2610.076999][T27514] Memory cgroup stats for /syz3:
[ 2610.077170][T27514] cache 0
[ 2610.085546][T27514] rss 12288
[ 2610.089635][T16775] bond1730 (unregistering): Released all slaves
[ 2610.122707][T27514] rss_huge 0
[ 2610.130788][T27514] shmem 0
[ 2610.132489][T16775] bond1729 (unregistering): Released all slaves
[ 2610.133887][T27514] mapped_file 0
[ 2610.146719][T27514] dirty 0
[ 2610.161771][T27514] writeback 0
19:47:21 executing program 1:
socket$kcm(0x10, 0x400000002, 0x0)
socket$inet(0x2, 0x2, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x3, &(0x7f00000000c0)=@framed, &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
write$binfmt_script(r1, &(0x7f0000000480)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r1, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r2 = socket$rxrpc(0x21, 0x2, 0xa)
r3 = syz_genetlink_get_family_id$batadv(&(0x7f0000007580), 0xffffffffffffffff)
sendmsg$BATADV_CMD_SET_HARDIF(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001740)={&(0x7f0000000000)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16, @ANYBLOB="2d0100000000000000000500f6ff08000300"], 0x2c}}, 0x0)
sendmsg$BATADV_CMD_GET_GATEWAYS(0xffffffffffffffff, &(0x7f0000007680)={0x0, 0x0, &(0x7f0000007640)={&(0x7f0000000000)=ANY=[@ANYBLOB="46040000", @ANYRES16=r3, @ANYBLOB="ff83050000076dc6d81b", @ANYRES32=r2], 0x4}}, 0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendfile(r5, r4, 0x0, 0x100000002)

[ 2610.187715][T16775] bond1728 (unregistering): Released all slaves
[ 2610.209084][T27514] workingset_refault_anon 36169
[ 2610.214520][T27514] workingset_refault_file 1
[ 2610.217291][T16775] bond1727 (unregistering): Released all slaves
[ 2610.223758][T27514] swap 397312
[ 2610.233815][T27514] swapcached 12288
[ 2610.250878][T27514] pgpgin 160250
[ 2610.254460][T27514] pgpgout 160247
[ 2610.258786][T27514] pgfault 352215
[ 2610.262369][T27514] pgmajfault 35180
[ 2610.286178][T27514] inactive_anon 0
[ 2610.288837][T16775] bond1726 (unregistering): Released all slaves
[ 2610.289844][T27514] active_anon 12288
[ 2610.289856][T27514] inactive_file 0
[ 2610.309733][T27514] active_file 0
[ 2610.316162][T27514] unevictable 0
[ 2610.324720][T27514] hierarchical_memory_limit 314572800
[ 2610.335618][T27514] hierarchical_memsw_limit 9223372036854771712
[ 2610.352701][T27514] total_cache 0
[ 2610.361918][T16775] bond1725 (unregistering): Released all slaves
[ 2610.366198][T27514] total_rss 12288
[ 2610.373636][T27514] total_rss_huge 0
[ 2610.384922][T27514] total_shmem 0
[ 2610.393635][T27514] total_mapped_file 0
[ 2610.401632][T27514] total_dirty 0
[ 2610.410063][T27514] total_writeback 0
[ 2610.418683][T27514] total_workingset_refault_anon 36169
[ 2610.429901][T27514] total_workingset_refault_file 1
[ 2610.438851][T16775] bond1724 (unregistering): Released all slaves
[ 2610.440553][T27514] total_swap 397312
[ 2610.459201][T27514] total_swapcached 12288
[ 2610.477375][T27514] total_pgpgin 160250
[ 2610.491733][T27514] total_pgpgout 160247
[ 2610.506747][T27514] total_pgfault 352215
[ 2610.511084][T27514] total_pgmajfault 35180
[ 2610.513577][T16775] bond1723 (unregistering): Released all slaves
[ 2610.518870][T27514] total_inactive_anon 0
[ 2610.529483][T27514] total_active_anon 12288
[ 2610.538637][T27514] total_inactive_file 0
[ 2610.547991][T27514] total_active_file 0
[ 2610.583760][T27514] total_unevictable 0
[ 2610.588370][T27514] anon_cost 0
[ 2610.591695][T27514] file_cost 0
[ 2610.595007][T27514] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=27514,uid=0
[ 2610.598089][   T28] audit: type=1804 audit(1706039242.201:1950): pid=27517 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir245649211/syzkaller.jQ7tPM/54/cgroup.controllers" dev="sda1" ino=1949 res=1 errno=0
[ 2610.610589][T27514] Memory cgroup out of memory: Killed process 27514 (syz-executor.3) total-vm:54504kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 2610.709140][T16775] bond1722 (unregistering): Released all slaves
19:47:22 executing program 3:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x32}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000280)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000240)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=@newlink={0x48, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0xe403, r2}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @veth={{0x9}, {0x18, 0x2, 0x0, 0x1, @val=@VETH_INFO_PEER={0x14}}}}]}, 0x48}, 0x9500}, 0x0)

[ 2610.884682][T16775] bond1721 (unregistering): Released all slaves
[ 2610.976181][T16775] bond1720 (unregistering): Released all slaves
[ 2611.068887][T16775] bond1719 (unregistering): Released all slaves
[ 2611.132360][T16775] bond1718 (unregistering): Released all slaves
19:47:22 executing program 1:
socket$kcm(0x10, 0x400000002, 0x0)
socket$inet(0x2, 0x2, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x3, &(0x7f00000000c0)=@framed, &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
write$binfmt_script(r1, &(0x7f0000000480)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r1, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r2 = socket$rxrpc(0x21, 0x2, 0xa)
r3 = syz_genetlink_get_family_id$batadv(&(0x7f0000007580), 0xffffffffffffffff)
sendmsg$BATADV_CMD_SET_HARDIF(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001740)={&(0x7f0000000000)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16, @ANYBLOB="2d0100000000000000000500f6ff08000300"], 0x2c}}, 0x0)
sendmsg$BATADV_CMD_GET_GATEWAYS(0xffffffffffffffff, &(0x7f0000007680)={0x0, 0x0, &(0x7f0000007640)={&(0x7f0000000000)=ANY=[@ANYBLOB="46040000", @ANYRES16=r3, @ANYBLOB="ff83050000076dc6d81b", @ANYRES32=r2], 0x4}}, 0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendfile(r5, r4, 0x0, 0x100000002)

[ 2611.288665][T16775] bond1717 (unregistering): Released all slaves
[ 2611.329072][ T5091] syz-executor.3 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[ 2611.385372][ T5091] CPU: 1 PID: 5091 Comm: syz-executor.3 Not tainted 6.7.0-syzkaller-12291-g435e202d645c #0
[ 2611.395430][ T5091] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 2611.405640][ T5091] Call Trace:
[ 2611.408966][ T5091]  <TASK>
[ 2611.411910][ T5091]  dump_stack_lvl+0x125/0x1b0
[ 2611.416622][ T5091]  dump_header+0x103/0x900
[ 2611.421076][ T5091]  oom_kill_process+0x270/0xa60
[ 2611.425953][ T5091]  out_of_memory+0x344/0x16c0
[ 2611.430656][ T5091]  ? mutex_trylock+0xa0/0x130
[ 2611.435362][ T5091]  ? oom_killer_disable+0x2d0/0x2d0
[ 2611.440580][ T5091]  ? rcu_read_unlock+0x1c/0x60
[ 2611.445368][ T5091]  mem_cgroup_out_of_memory+0x206/0x270
[ 2611.450927][ T5091]  ? mem_cgroup_margin+0x130/0x130
[ 2611.456046][ T5091]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2611.461439][ T5091]  try_charge_memcg+0xcd1/0x11a0
[ 2611.466396][ T5091]  ? mem_cgroup_handle_over_high+0x570/0x570
[ 2611.472395][ T5091]  ? rcu_read_unlock+0x1c/0x60
[ 2611.477172][ T5091]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2611.482560][ T5091]  ? __radix_tree_lookup+0x21f/0x2c0
[ 2611.487898][ T5091]  mem_cgroup_swapin_charge_folio+0x138/0x380
[ 2611.494028][ T5091]  __read_swap_cache_async+0x4e1/0x600
[ 2611.499517][ T5091]  ? filemap_get_incore_folio+0x160/0x160
[ 2611.505333][ T5091]  ? swp_swap_info+0xcf/0x130
[ 2611.510032][ T5091]  ? swapcache_prepare+0x20/0x20
[ 2611.514992][ T5091]  swap_cluster_readahead+0x4d4/0x710
[ 2611.520406][ T5091]  ? read_swap_cache_async+0x1a0/0x1a0
[ 2611.525928][ T5091]  ? reacquire_held_locks+0x410/0x4c0
[ 2611.531617][ T5091]  ? xas_descend+0x141/0x4e0
[ 2611.536254][ T5091]  ? filemap_get_entry+0x23e/0x460
[ 2611.541403][ T5091]  swapin_readahead+0x132/0xe60
[ 2611.546288][ T5091]  ? get_swap_device+0x363/0x5e0
[ 2611.551269][ T5091]  ? exit_swap_address_space+0x250/0x250
[ 2611.556922][ T5091]  ? __filemap_get_folio+0x2b0/0xaa0
[ 2611.562224][ T5091]  ? swap_cache_get_folio+0x1dc/0x460
[ 2611.567656][ T5091]  ? get_swap_device+0x245/0x5e0
[ 2611.572605][ T5091]  ? free_pages_and_swap_cache+0xa0/0xa0
[ 2611.578256][ T5091]  ? lock_sync+0x190/0x190
[ 2611.582724][ T5091]  do_swap_page+0x4a6/0x3190
[ 2611.587328][ T5091]  ? rcu_is_watching+0x12/0xb0
[ 2611.592102][ T5091]  ? __pte_offset_map+0x1b9/0x540
[ 2611.597142][ T5091]  ? unmap_mapping_folio+0x3b0/0x3b0
[ 2611.602440][ T5091]  ? pte_offset_map_nolock+0xfa/0x1b0
[ 2611.607823][ T5091]  ? __pte_offset_map+0x540/0x540
[ 2611.612866][ T5091]  __handle_mm_fault+0x13a0/0x4900
[ 2611.617998][ T5091]  ? clear_huge_page+0x2e0/0x2e0
[ 2611.622954][ T5091]  ? lock_mm_and_find_vma+0x580/0x580
[ 2611.628342][ T5091]  ? rcu_is_watching+0x12/0xb0
[ 2611.633131][ T5091]  handle_mm_fault+0x47a/0xa10
[ 2611.637912][ T5091]  do_user_addr_fault+0x30b/0x1030
[ 2611.643037][ T5091]  ? irqentry_enter_from_user_mode+0x5f/0xc0
[ 2611.649038][ T5091]  exc_page_fault+0x5d/0xc0
[ 2611.653560][ T5091]  asm_exc_page_fault+0x26/0x30
[ 2611.658418][ T5091] RIP: 0033:0x7f212b0a3c15
[ 2611.662836][ T5091] Code: 00 00 f0 83 88 08 03 00 00 10 64 48 8b 3c 25 00 03 00 00 e8 1d 13 00 00 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 83 e7 02 74 0b <c3> 66 2e 0f 1f 84 00 00 00 00 00 64 48 8b 04 25 10 00 00 00 8b 90
[ 2611.683451][ T5091] RSP: 002b:00007ffc7b20bb08 EFLAGS: 00010297
[ 2611.689531][ T5091] RAX: 0000000000000002 RBX: 0000000000002907 RCX: 0000000000000000
[ 2611.698461][ T5091] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000555555796788
[ 2611.706719][ T5091] RBP: 00007ffc7b20bbdc R08: 0000000000000000 R09: 0000000000000001
[ 2611.714735][ T5091] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000032
[ 2611.722720][ T5091] R13: 000000000027d726 R14: 000000000027d726 R15: 0000000000000000
[ 2611.730718][ T5091]  </TASK>
[ 2611.771006][T16775] bond1716 (unregistering): Released all slaves
[ 2611.786211][ T5091] memory: usage 307200kB, limit 307200kB, failcnt 122686
[ 2611.793292][ T5091] memory+swap: usage 307640kB, limit 9007199254740988kB, failcnt 0
[ 2611.807934][T16775] bond1715 (unregistering): Released all slaves
[ 2611.826729][ T5091] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[ 2611.834096][ T5091] Memory cgroup stats for /syz3:
[ 2611.834253][ T5091] cache 0
[ 2611.860367][ T5091] rss 0
[ 2611.863177][T16775] bond1714 (unregistering): Released all slaves
[ 2611.863199][ T5091] rss_huge 0
[ 2611.887166][ T5091] shmem 0
[ 2611.890158][ T5091] mapped_file 0
[ 2611.893625][ T5091] dirty 0
[ 2611.897188][ T5091] writeback 0
[ 2611.900497][ T5091] workingset_refault_anon 36234
[ 2611.905361][ T5091] workingset_refault_file 1
[ 2611.922139][ T5091] swap 446464
[ 2611.925936][ T5091] swapcached 4096
[ 2611.932758][ T5091] pgpgin 160326
[ 2611.938871][ T5091] pgpgout 160325
[ 2611.940694][T16775] bond1713 (unregistering): Released all slaves
[ 2611.942438][ T5091] pgfault 352333
[ 2611.942451][ T5091] pgmajfault 35239
[ 2611.972965][ T5091] inactive_anon 0
[ 2611.973584][   T28] audit: type=1804 audit(1706039243.621:1951): pid=27521 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir245649211/syzkaller.jQ7tPM/55/cgroup.controllers" dev="sda1" ino=1949 res=1 errno=0
[ 2611.977575][ T5091] active_anon 0
[ 2612.018898][ T5091] inactive_file 0
[ 2612.030194][ T5091] active_file 0
[ 2612.041760][ T5091] unevictable 0
[ 2612.045410][ T5091] hierarchical_memory_limit 314572800
[ 2612.053872][T16775] bond1712 (unregistering): Released all slaves
[ 2612.081789][ T5091] hierarchical_memsw_limit 9223372036854771712
[ 2612.091819][ T5091] total_cache 0
[ 2612.095544][ T5091] total_rss 0
[ 2612.099343][ T5091] total_rss_huge 0
[ 2612.107920][ T5091] total_shmem 0
[ 2612.111622][T16775] bond1711 (unregistering): Released all slaves
[ 2612.119697][ T5091] total_mapped_file 0
[ 2612.124907][ T5091] total_dirty 0
[ 2612.136169][ T5091] total_writeback 0
[ 2612.152565][ T5091] total_workingset_refault_anon 36234
[ 2612.170897][ T5091] total_workingset_refault_file 1
[ 2612.183591][ T5091] total_swap 446464
[ 2612.195098][T16775] bond1710 (unregistering): Released all slaves
[ 2612.209727][ T5091] total_swapcached 4096
[ 2612.224841][ T5091] total_pgpgin 160326
[ 2612.240253][ T5091] total_pgpgout 160325
[ 2612.252261][ T5091] total_pgfault 352333
[ 2612.261235][T16775] bond1709 (unregistering): Released all slaves
[ 2612.276138][ T5091] total_pgmajfault 35239
[ 2612.280593][ T5091] total_inactive_anon 0
[ 2612.295234][ T5091] total_active_anon 0
19:47:23 executing program 1:
socket$kcm(0x10, 0x400000002, 0x0)
socket$inet(0x2, 0x2, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
write$binfmt_script(r1, &(0x7f0000000480)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r1, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket(0x10, 0x3, 0x0)
r2 = socket$rxrpc(0x21, 0x2, 0xa)
r3 = syz_genetlink_get_family_id$batadv(&(0x7f0000007580), 0xffffffffffffffff)
sendmsg$BATADV_CMD_SET_HARDIF(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001740)={&(0x7f0000000000)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16, @ANYBLOB="2d0100000000000000000500f6ff08000300", @ANYRES32=r0], 0x2c}}, 0x0)
sendmsg$BATADV_CMD_GET_GATEWAYS(0xffffffffffffffff, &(0x7f0000007680)={0x0, 0x0, &(0x7f0000007640)={&(0x7f0000000000)=ANY=[@ANYBLOB="46040000", @ANYRES16=r3, @ANYBLOB="ff83050000076dc6d81b", @ANYRES32=r2], 0x4}}, 0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendfile(r5, r4, 0x0, 0x100000002)

[ 2612.326344][ T5091] total_inactive_file 0
[ 2612.347432][ T5091] total_active_file 0
[ 2612.351467][ T5091] total_unevictable 0
[ 2612.355463][ T5091] anon_cost 0
[ 2612.366808][ T5091] file_cost 0
[ 2612.370154][ T5091] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=27519,uid=0
[ 2612.398596][T16775] bond1708 (unregistering): Released all slaves
[ 2612.435890][ T5091] Memory cgroup out of memory: Killed process 27519 (syz-executor.3) total-vm:54504kB, anon-rss:380kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 2612.468323][T16775] bond1707 (unregistering): Released all slaves
19:47:24 executing program 3:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x32}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000280)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000240)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=@newlink={0x48, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0xe403, r2}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @veth={{0x9}, {0x18, 0x2, 0x0, 0x1, @val=@VETH_INFO_PEER={0x14}}}}]}, 0x48}, 0x9600}, 0x0)

[ 2612.564777][T16775] bond1706 (unregistering): Released all slaves
[ 2612.668800][T16775] bond1705 (unregistering): Released all slaves
[ 2612.703975][   T28] audit: type=1804 audit(1706039244.341:1952): pid=27525 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir245649211/syzkaller.jQ7tPM/56/cgroup.controllers" dev="sda1" ino=1959 res=1 errno=0
[ 2612.808600][T16775] bond1704 (unregistering): Released all slaves
[ 2612.895778][T16775] bond1703 (unregistering): Released all slaves
[ 2612.937229][T27527] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2612.965661][T27527] CPU: 0 PID: 27527 Comm: syz-executor.3 Not tainted 6.7.0-syzkaller-12291-g435e202d645c #0
[ 2612.975792][T27527] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 2612.985881][T27527] Call Trace:
[ 2612.989192][T27527]  <TASK>
[ 2612.992145][T27527]  dump_stack_lvl+0x125/0x1b0
[ 2612.996853][T27527]  dump_header+0x103/0x900
[ 2613.001309][T27527]  oom_kill_process+0x270/0xa60
[ 2613.006207][T27527]  out_of_memory+0x344/0x16c0
[ 2613.010939][T27527]  ? oom_killer_disable+0x2d0/0x2d0
[ 2613.016176][T27527]  ? rcu_read_unlock+0x1c/0x60
[ 2613.020986][T27527]  mem_cgroup_out_of_memory+0x206/0x270
[ 2613.026573][T27527]  ? mem_cgroup_margin+0x130/0x130
[ 2613.031824][T27527]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2613.037272][T27527]  try_charge_memcg+0xcd1/0x11a0
[ 2613.042272][T27527]  ? mem_cgroup_handle_over_high+0x570/0x570
[ 2613.048297][T27527]  ? get_mem_cgroup_from_objcg+0xb5/0x2a0
[ 2613.054053][T27527]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2613.059461][T27527]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2613.064872][T27527]  __memcg_kmem_charge_page+0xdd/0x2a0
[ 2613.072114][T27527]  memcg_charge_kernel_stack+0xc3/0x1f0
[ 2613.078665][T27527]  copy_process+0x1532/0x97b0
[ 2613.083384][T27527]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2613.089397][T27527]  ? page_ext_put+0x43/0xd0
[ 2613.093938][T27527]  ? hlock_class+0x4e/0x130
[ 2613.098495][T27527]  ? pidfd_prepare+0x80/0x80
[ 2613.103128][T27527]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2613.108538][T27527]  ? preempt_count_sub+0x160/0x160
[ 2613.113674][T27527]  ? print_usage_bug.part.0+0x550/0x550
[ 2613.119354][T27527]  ? __might_fault+0xe6/0x1a0
[ 2613.124091][T27527]  ? _copy_from_user+0x5d/0xf0
[ 2613.128906][T27527]  kernel_clone+0xfd/0x930
[ 2613.133363][T27527]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2613.139393][T27527]  ? create_io_thread+0xe0/0xe0
[ 2613.144318][T27527]  ? find_held_lock+0x2d/0x110
[ 2613.149152][T27527]  __do_sys_clone3+0x1f1/0x260
[ 2613.153952][T27527]  ? __do_sys_clone+0x100/0x100
[ 2613.158874][T27527]  do_syscall_64+0xd3/0x250
[ 2613.159551][ T5094] Bluetooth: hci9: unexpected cc 0x0c03 length: 249 > 1
[ 2613.163405][T27527]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 2613.176615][T27527] RIP: 0033:0x7f212b0a8b99
[ 2613.181068][T27527] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 2613.187190][ T5094] Bluetooth: hci9: unexpected cc 0x1003 length: 249 > 9
[ 2613.200694][T27527] RSP: 002b:00007ffc7b20b738 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 2613.200725][T27527] RAX: ffffffffffffffda RBX: 00007f212b051270 RCX: 00007f212b0a8b99
[ 2613.200740][T27527] RDX: 00007f212b051270 RSI: 0000000000000058 RDI: 00007ffc7b20b780
[ 2613.200755][T27527] RBP: 00007f212be566c0 R08: 00007f212be566c0 R09: 00007ffc7b20b867
[ 2613.200773][T27527] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 2613.200786][T27527] R13: 000000000000000b R14: 00007ffc7b20b780 R15: 00007ffc7b20b868
[ 2613.200818][T27527]  </TASK>
[ 2613.264192][T16775] bond1702 (unregistering): Released all slaves
[ 2613.268602][T27527] memory: usage 307200kB, limit 307200kB, failcnt 122876
[ 2613.272617][ T5094] Bluetooth: hci9: unexpected cc 0x1001 length: 249 > 9
[ 2613.291605][T27527] memory+swap: usage 307556kB, limit 9007199254740988kB, failcnt 0
[ 2613.300080][T27527] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[ 2613.305480][ T5094] Bluetooth: hci9: unexpected cc 0x0c23 length: 249 > 4
[ 2613.320005][T27527] Memory cgroup stats for /syz3:
[ 2613.320180][T27527] cache 0
[ 2613.329397][T27527] rss 0
[ 2613.332710][T27527] rss_huge 0
[ 2613.339043][ T5094] Bluetooth: hci9: unexpected cc 0x0c25 length: 249 > 3
[ 2613.365093][T27527] shmem 0
[ 2613.370120][T27527] mapped_file 0
[ 2613.371720][T16775] bond1701 (unregistering): Released all slaves
[ 2613.378621][T27527] dirty 0
[ 2613.380182][ T5094] Bluetooth: hci9: unexpected cc 0x0c38 length: 249 > 2
[ 2613.382807][T27527] writeback 0
[ 2613.407705][T27527] workingset_refault_anon 36287
19:47:25 executing program 1:
socket$kcm(0x10, 0x400000002, 0x0)
socket$inet(0x2, 0x2, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
write$binfmt_script(r0, &(0x7f0000000480)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r1 = socket$rxrpc(0x21, 0x2, 0xa)
r2 = syz_genetlink_get_family_id$batadv(&(0x7f0000007580), 0xffffffffffffffff)
sendmsg$BATADV_CMD_SET_HARDIF(0xffffffffffffffff, 0x0, 0x0)
sendmsg$BATADV_CMD_GET_GATEWAYS(0xffffffffffffffff, &(0x7f0000007680)={0x0, 0x0, &(0x7f0000007640)={&(0x7f0000000000)=ANY=[@ANYBLOB="46040000", @ANYRES16=r2, @ANYBLOB="ff83050000076dc6d81b", @ANYRES32=r1], 0x4}}, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendfile(r4, r3, 0x0, 0x100000002)

[ 2613.412620][T27527] workingset_refault_file 1
[ 2613.418155][T27527] swap 364544
[ 2613.421764][T27527] swapcached 0
[ 2613.433371][T27527] pgpgin 160391
[ 2613.438317][T27527] pgpgout 160391
[ 2613.441896][T27527] pgfault 352435
[ 2613.445454][T27527] pgmajfault 35285
[ 2613.449650][T27527] inactive_anon 0
[ 2613.460606][T16775] bond1700 (unregistering): Released all slaves
[ 2613.478687][T27527] active_anon 0
[ 2613.482215][T27527] inactive_file 0
[ 2613.485873][T27527] active_file 0
[ 2613.516391][T27527] unevictable 0
[ 2613.519911][T27527] hierarchical_memory_limit 314572800
[ 2613.525304][T27527] hierarchical_memsw_limit 9223372036854771712
[ 2613.561706][T16775] bond1699 (unregistering): Released all slaves
[ 2613.576082][T27527] total_cache 0
[ 2613.589796][T27527] total_rss 0
[ 2613.593153][T27527] total_rss_huge 0
[ 2613.614020][T27527] total_shmem 0
[ 2613.617714][T27527] total_mapped_file 0
[ 2613.621957][T27527] total_dirty 0
[ 2613.625446][T27527] total_writeback 0
[ 2613.644599][T27527] total_workingset_refault_anon 36287
[ 2613.656899][T16775] bond1698 (unregistering): Released all slaves
[ 2613.671579][T27527] total_workingset_refault_file 1
[ 2613.689708][T27527] total_swap 364544
[ 2613.693663][T27527] total_swapcached 0
[ 2613.709811][T27527] total_pgpgin 160391
[ 2613.713971][   T28] audit: type=1804 audit(1706039245.361:1953): pid=27534 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir245649211/syzkaller.jQ7tPM/57/cgroup.controllers" dev="sda1" ino=1959 res=1 errno=0
[ 2613.741338][T27527] total_pgpgout 160391
[ 2613.743407][T16775] bond1697 (unregistering): Released all slaves
[ 2613.745542][T27527] total_pgfault 352435
[ 2613.771988][T27527] total_pgmajfault 35285
[ 2613.800814][T16775] bond1696 (unregistering): Released all slaves
[ 2613.800827][T27527] total_inactive_anon 0
[ 2613.800840][T27527] total_active_anon 0
[ 2613.800850][T27527] total_inactive_file 0
[ 2613.820918][T27527] total_active_file 0
[ 2613.853421][T16775] bond1695 (unregistering): Released all slaves
[ 2613.868257][T27527] total_unevictable 0
[ 2613.872456][T27527] anon_cost 0
[ 2613.888564][T27527] file_cost 0
[ 2613.892077][T27527] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=27527,uid=0
[ 2613.911097][T16775] bond1694 (unregistering): Released all slaves
[ 2613.918112][T27527] Memory cgroup out of memory: Killed process 27527 (syz-executor.3) total-vm:54504kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 2613.953960][T16775] bond1693 (unregistering): Released all slaves
19:47:25 executing program 3:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x32}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000280)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000240)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=@newlink={0x48, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0xe403, r2}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @veth={{0x9}, {0x18, 0x2, 0x0, 0x1, @val=@VETH_INFO_PEER={0x14}}}}]}, 0x48}, 0x9700}, 0x0)

[ 2614.034712][T16775] bond1692 (unregistering): Released all slaves
[ 2614.098729][T16775] bond1691 (unregistering): Released all slaves
[ 2614.151820][T16775] bond1690 (unregistering): Released all slaves
[ 2614.245091][T16775] bond1689 (unregistering): Released all slaves
[ 2614.322104][T16775] bond1688 (unregistering): Released all slaves
[ 2614.390345][T16775] bond1687 (unregistering): Released all slaves
19:47:26 executing program 1:
socket$kcm(0x10, 0x400000002, 0x0)
socket$inet(0x2, 0x2, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
write$binfmt_script(r0, &(0x7f0000000480)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r1 = socket$rxrpc(0x21, 0x2, 0xa)
r2 = syz_genetlink_get_family_id$batadv(&(0x7f0000007580), 0xffffffffffffffff)
sendmsg$BATADV_CMD_SET_HARDIF(0xffffffffffffffff, 0x0, 0x0)
sendmsg$BATADV_CMD_GET_GATEWAYS(0xffffffffffffffff, &(0x7f0000007680)={0x0, 0x0, &(0x7f0000007640)={&(0x7f0000000000)=ANY=[@ANYBLOB="46040000", @ANYRES16=r2, @ANYBLOB="ff83050000076dc6d81b", @ANYRES32=r1], 0x4}}, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendfile(r4, r3, 0x0, 0x100000002)

[ 2614.487448][T16775] bond1686 (unregistering): Released all slaves
[ 2614.618590][T16775] bond1685 (unregistering): Released all slaves
[ 2614.703441][T16775] bond1684 (unregistering): Released all slaves
[ 2614.724589][ T5091] syz-executor.3 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[ 2614.758774][T16775] bond1683 (unregistering): Released all slaves
[ 2614.773386][   T28] audit: type=1804 audit(1706039246.421:1954): pid=27538 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir245649211/syzkaller.jQ7tPM/58/cgroup.controllers" dev="sda1" ino=1959 res=1 errno=0
[ 2614.780779][ T5091] CPU: 1 PID: 5091 Comm: syz-executor.3 Not tainted 6.7.0-syzkaller-12291-g435e202d645c #0
[ 2614.809827][ T5091] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 2614.819916][ T5091] Call Trace:
[ 2614.823240][ T5091]  <TASK>
[ 2614.826176][ T5091]  dump_stack_lvl+0x125/0x1b0
[ 2614.830890][ T5091]  dump_header+0x103/0x900
[ 2614.835331][ T5091]  oom_kill_process+0x270/0xa60
[ 2614.840195][ T5091]  out_of_memory+0x344/0x16c0
[ 2614.844879][ T5091]  ? mutex_trylock+0xa0/0x130
[ 2614.849574][ T5091]  ? oom_killer_disable+0x2d0/0x2d0
[ 2614.854779][ T5091]  ? rcu_read_unlock+0x1c/0x60
[ 2614.859577][ T5091]  mem_cgroup_out_of_memory+0x206/0x270
[ 2614.865147][ T5091]  ? mem_cgroup_margin+0x130/0x130
[ 2614.870257][ T5091]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2614.875638][ T5091]  try_charge_memcg+0xcd1/0x11a0
[ 2614.881041][ T5091]  ? mem_cgroup_handle_over_high+0x570/0x570
[ 2614.887059][ T5091]  ? rcu_read_unlock+0x1c/0x60
[ 2614.891832][ T5091]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2614.897407][ T5091]  ? __radix_tree_lookup+0x21f/0x2c0
[ 2614.902735][ T5091]  mem_cgroup_swapin_charge_folio+0x138/0x380
[ 2614.908819][ T5091]  __read_swap_cache_async+0x4e1/0x600
[ 2614.914376][ T5091]  ? filemap_get_incore_folio+0x160/0x160
[ 2614.920275][ T5091]  ? preempt_schedule_thunk+0x1a/0x30
[ 2614.925705][ T5091]  swap_cluster_readahead+0x4d4/0x710
[ 2614.931104][ T5091]  ? read_swap_cache_async+0x1a0/0x1a0
[ 2614.936671][ T5091]  ? reacquire_held_locks+0x410/0x4c0
[ 2614.942085][ T5091]  ? xas_descend+0x141/0x4e0
[ 2614.946731][ T5091]  ? filemap_get_entry+0x23e/0x460
[ 2614.951855][ T5091]  swapin_readahead+0x132/0xe60
[ 2614.956740][ T5091]  ? get_swap_device+0x363/0x5e0
[ 2614.961728][ T5091]  ? exit_swap_address_space+0x250/0x250
[ 2614.967364][ T5091]  ? __filemap_get_folio+0x2b0/0xaa0
[ 2614.972693][ T5091]  ? swap_cache_get_folio+0x1dc/0x460
[ 2614.978088][ T5091]  ? get_swap_device+0x245/0x5e0
[ 2614.983057][ T5091]  ? free_pages_and_swap_cache+0xa0/0xa0
[ 2614.988714][ T5091]  ? lock_sync+0x190/0x190
[ 2614.993171][ T5091]  do_swap_page+0x4a6/0x3190
[ 2614.997795][ T5091]  ? rcu_is_watching+0x12/0xb0
[ 2615.002590][ T5091]  ? __pte_offset_map+0x1b9/0x540
[ 2615.007626][ T5091]  ? unmap_mapping_folio+0x3b0/0x3b0
[ 2615.012913][ T5091]  ? pte_offset_map_nolock+0xfa/0x1b0
[ 2615.018299][ T5091]  ? __pte_offset_map+0x540/0x540
[ 2615.023353][ T5091]  __handle_mm_fault+0x13a0/0x4900
[ 2615.028475][ T5091]  ? clear_huge_page+0x2e0/0x2e0
[ 2615.033421][ T5091]  ? lock_mm_and_find_vma+0x580/0x580
[ 2615.038808][ T5091]  ? do_user_addr_fault+0x663/0x1030
[ 2615.044126][ T5091]  handle_mm_fault+0x47a/0xa10
[ 2615.048899][ T5091]  do_user_addr_fault+0x30b/0x1030
[ 2615.054015][ T5091]  ? irqentry_enter_from_user_mode+0x5f/0xc0
[ 2615.060126][ T5091]  exc_page_fault+0x5d/0xc0
[ 2615.064640][ T5091]  asm_exc_page_fault+0x26/0x30
[ 2615.069493][ T5091] RIP: 0033:0x7f212b0a3b90
[ 2615.074024][ T5091] Code: 6e c7 89 13 48 8b 50 08 0f 16 40 50 0f 11 00 48 89 50 50 48 8b 50 10 48 89 78 10 48 89 50 40 48 89 d7 eb b2 66 0f 1f 44 00 00 <64> 48 8b 0c 25 10 00 00 00 8b 91 08 03 00 00 48 8d b9 08 03 00 00
[ 2615.093741][ T5091] RSP: 002b:00007ffc7b20bb48 EFLAGS: 00010206
[ 2615.099828][ T5091] RAX: 000000000000020b RBX: 0000000000002909 RCX: 0000000000000000
[ 2615.107819][ T5091] RDX: 0000000040000001 RSI: 00007ffc7b20bbdc RDI: 00000000ffffffff
[ 2615.115792][ T5091] RBP: 00007ffc7b20bbdc R08: 0000000000000a36 R09: 0000000000000001
[ 2615.123766][ T5091] R10: 0000000000000000 R11: 00000000009e29a5 R12: 0000000000000032
[ 2615.131753][ T5091] R13: 000000000027e379 R14: 000000000027e379 R15: 0000000000000000
[ 2615.139754][ T5091]  </TASK>
[ 2615.162487][ T5091] memory: usage 307200kB, limit 307200kB, failcnt 123235
[ 2615.163841][T16775] bond1682 (unregistering): Released all slaves
[ 2615.169661][ T5091] memory+swap: usage 307544kB, limit 9007199254740988kB, failcnt 0
[ 2615.169682][ T5091] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[ 2615.169699][ T5091] Memory cgroup stats for /syz3:
[ 2615.197020][ T5091] cache 0
[ 2615.205315][ T5091] rss 0
[ 2615.213240][ T5091] rss_huge 0
[ 2615.218988][ T5091] shmem 0
[ 2615.224365][ T5091] mapped_file 0
[ 2615.229905][ T5091] dirty 0
[ 2615.233725][ T5091] writeback 0
[ 2615.239187][ T5091] workingset_refault_anon 36424
[ 2615.239706][T16775] bond1681 (unregistering): Released all slaves
[ 2615.244743][ T5091] workingset_refault_file 1
[ 2615.273477][ T5091] swap 352256
[ 2615.277304][ T5091] swapcached 0
[ 2615.280697][ T5091] pgpgin 160540
[ 2615.284165][ T5091] pgpgout 160540
[ 2615.287905][ T5091] pgfault 352646
[ 2615.292678][ T5091] pgmajfault 35399
[ 2615.296695][ T5091] inactive_anon 0
[ 2615.300350][ T5091] active_anon 0
[ 2615.303829][ T5091] inactive_file 0
[ 2615.307949][ T5091] active_file 0
[ 2615.311424][ T5091] unevictable 0
[ 2615.316933][ T5091] hierarchical_memory_limit 314572800
[ 2615.322542][ T5091] hierarchical_memsw_limit 9223372036854771712
[ 2615.329041][ T5091] total_cache 0
[ 2615.332599][ T5091] total_rss 0
[ 2615.335907][ T5091] total_rss_huge 0
[ 2615.340508][ T5091] total_shmem 0
[ 2615.344019][ T5091] total_mapped_file 0
[ 2615.348517][ T5091] total_dirty 0
[ 2615.352038][ T5091] total_writeback 0
[ 2615.356932][ T5091] total_workingset_refault_anon 36424
[ 2615.360637][T16775] bond1680 (unregistering): Released all slaves
[ 2615.365661][ T5091] total_workingset_refault_file 1
[ 2615.392484][ T5091] total_swap 352256
[ 2615.419095][ T5091] total_swapcached 0
[ 2615.423527][ T5091] total_pgpgin 160540
[ 2615.428028][ T5091] total_pgpgout 160540
[ 2615.456356][ T5091] total_pgfault 352646
[ 2615.458055][T16775] bond1679 (unregistering): Released all slaves
[ 2615.463704][ T5091] total_pgmajfault 35399
[ 2615.471827][ T5091] total_inactive_anon 0
[ 2615.496193][ T5094] Bluetooth: hci9: command 0x0409 tx timeout
[ 2615.499410][ T5091] total_active_anon 0
[ 2615.507012][ T5091] total_inactive_file 0
19:47:27 executing program 1:
socket$kcm(0x10, 0x400000002, 0x0)
socket$inet(0x2, 0x2, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x3, &(0x7f00000000c0)=@framed, &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
write$binfmt_script(r1, &(0x7f0000000480)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r1, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r2 = socket$rxrpc(0x21, 0x2, 0xa)
r3 = syz_genetlink_get_family_id$batadv(&(0x7f0000007580), 0xffffffffffffffff)
sendmsg$BATADV_CMD_SET_HARDIF(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001740)={&(0x7f0000000000)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16, @ANYBLOB="2d0100000000000000000500f6ff08000300"], 0x2c}}, 0x0)
sendmsg$BATADV_CMD_GET_GATEWAYS(0xffffffffffffffff, &(0x7f0000007680)={0x0, 0x0, &(0x7f0000007640)={&(0x7f0000000000)=ANY=[@ANYBLOB="46040000", @ANYRES16=r3, @ANYBLOB="ff83050000076dc6d81b", @ANYRES32=r2], 0x4}}, 0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendfile(r5, r4, 0x0, 0x100000002)

[ 2615.526166][ T5091] total_active_file 0
[ 2615.540488][ T5091] total_unevictable 0
[ 2615.544537][ T5091] anon_cost 0
[ 2615.550858][T16775] bond1678 (unregistering): Released all slaves
[ 2615.556192][ T5091] file_cost 0
[ 2615.566771][ T5091] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=27536,uid=0
[ 2615.589337][T16775] bond1677 (unregistering): Released all slaves
[ 2615.606209][ T5091] Memory cgroup out of memory: Killed process 27536 (syz-executor.3) total-vm:54504kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
19:47:27 executing program 3:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x32}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000280)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000240)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=@newlink={0x48, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0xe403, r2}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @veth={{0x9}, {0x18, 0x2, 0x0, 0x1, @val=@VETH_INFO_PEER={0x14}}}}]}, 0x48}, 0x9800}, 0x0)

[ 2615.640217][T16775] bond1676 (unregistering): Released all slaves
[ 2615.698856][T16775] bond1675 (unregistering): Released all slaves
[ 2615.748778][T16775] bond1674 (unregistering): Released all slaves
[ 2615.808579][T16775] bond1673 (unregistering): Released all slaves
[ 2615.858878][T16775] bond1672 (unregistering): Released all slaves
[ 2615.877943][   T28] audit: type=1804 audit(1706039247.521:1955): pid=27541 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir245649211/syzkaller.jQ7tPM/59/cgroup.controllers" dev="sda1" ino=1959 res=1 errno=0
[ 2615.925124][T16775] bond1671 (unregistering): Released all slaves
[ 2616.002523][T16775] bond1670 (unregistering): Released all slaves
[ 2616.063686][T27543] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2616.074282][T27543] CPU: 0 PID: 27543 Comm: syz-executor.3 Not tainted 6.7.0-syzkaller-12291-g435e202d645c #0
[ 2616.077283][T16775] bond1669 (unregistering): Released all slaves
[ 2616.084367][T27543] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 2616.084382][T27543] Call Trace:
[ 2616.084392][T27543]  <TASK>
[ 2616.084402][T27543]  dump_stack_lvl+0x125/0x1b0
[ 2616.111616][T27543]  dump_header+0x103/0x900
[ 2616.116086][T27543]  oom_kill_process+0x270/0xa60
[ 2616.121008][T27543]  out_of_memory+0x344/0x16c0
[ 2616.125753][T27543]  ? oom_killer_disable+0x2d0/0x2d0
[ 2616.131000][T27543]  ? rcu_read_unlock+0x1c/0x60
[ 2616.135812][T27543]  mem_cgroup_out_of_memory+0x206/0x270
[ 2616.141479][T27543]  ? mem_cgroup_margin+0x130/0x130
[ 2616.146627][T27543]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2616.152078][T27543]  try_charge_memcg+0xcd1/0x11a0
[ 2616.157081][T27543]  ? mem_cgroup_handle_over_high+0x570/0x570
[ 2616.163108][T27543]  ? get_mem_cgroup_from_objcg+0xb5/0x2a0
[ 2616.168868][T27543]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2616.174256][T27543]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2616.179685][T27543]  __memcg_kmem_charge_page+0xdd/0x2a0
[ 2616.185203][T27543]  memcg_charge_kernel_stack+0xc3/0x1f0
[ 2616.190902][T27543]  copy_process+0x527/0x97b0
[ 2616.195545][T27543]  ? hlock_class+0x4e/0x130
[ 2616.200188][T27543]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2616.206996][T27543]  ? page_ext_put+0x43/0xd0
[ 2616.211563][T27543]  ? hlock_class+0x4e/0x130
[ 2616.216131][T27543]  ? pidfd_prepare+0x80/0x80
[ 2616.220947][T27543]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2616.226368][T27543]  ? preempt_count_sub+0x160/0x160
[ 2616.231518][T27543]  ? __lock_acquire+0x1502/0x3b30
[ 2616.236582][T27543]  ? __might_fault+0xe6/0x1a0
[ 2616.241322][T27543]  ? _copy_from_user+0x5d/0xf0
[ 2616.246147][T27543]  kernel_clone+0xfd/0x930
[ 2616.250616][T27543]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2616.256650][T27543]  ? create_io_thread+0xe0/0xe0
[ 2616.261563][T27543]  ? find_held_lock+0x2d/0x110
[ 2616.266386][T27543]  __do_sys_clone3+0x1f1/0x260
[ 2616.271199][T27543]  ? __do_sys_clone+0x100/0x100
[ 2616.276230][T27543]  do_syscall_64+0xd3/0x250
[ 2616.280779][T27543]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 2616.286699][T27543] RIP: 0033:0x7f212b0a8b99
[ 2616.291659][T27543] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 2616.311477][T27543] RSP: 002b:00007ffc7b20b738 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 2616.319918][T27543] RAX: ffffffffffffffda RBX: 00007f212b051270 RCX: 00007f212b0a8b99
[ 2616.327911][T27543] RDX: 00007f212b051270 RSI: 0000000000000058 RDI: 00007ffc7b20b780
[ 2616.336086][T27543] RBP: 00007f212be566c0 R08: 00007f212be566c0 R09: 00007ffc7b20b867
[ 2616.344082][T27543] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 2616.352366][T27543] R13: 000000000000000b R14: 00007ffc7b20b780 R15: 00007ffc7b20b868
[ 2616.360392][T27543]  </TASK>
[ 2616.374242][T27543] memory: usage 307200kB, limit 307200kB, failcnt 123483
[ 2616.378564][T16775] bond1668 (unregistering): Released all slaves
[ 2616.381693][T27543] memory+swap: usage 307572kB, limit 9007199254740988kB, failcnt 0
[ 2616.395686][T27543] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0
[ 2616.403336][T27543] Memory cgroup stats for /syz3:
[ 2616.403519][T27543] cache 0
[ 2616.411573][T27543] rss 12288
[ 2616.414798][T27543] rss_huge 0
[ 2616.426063][T27543] shmem 0
[ 2616.434751][T27543] mapped_file 0
[ 2616.444170][T27543] dirty 0
[ 2616.447871][T27543] writeback 0
[ 2616.453858][T16775] bond1667 (unregistering): Released all slaves
[ 2616.471941][T27543] workingset_refault_anon 36519
[ 2616.486084][T27543] workingset_refault_file 1
[ 2616.492628][T16775] bond1666 (unregistering): Released all slaves
[ 2616.499650][T27543] swap 380928
[ 2616.505397][T27543] swapcached 8192
[ 2616.525131][T27543] pgpgin 160646
[ 2616.534681][T27543] pgpgout 160643
[ 2616.545106][T27543] pgfault 352813
[ 2616.553098][T16775] bond1665 (unregistering): Released all slaves
[ 2616.560570][T27543] pgmajfault 35485
[ 2616.564495][T27543] inactive_anon 4096
19:47:28 executing program 1:
socket$kcm(0x10, 0x400000002, 0x0)
socket$inet(0x2, 0x2, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
write$binfmt_script(r0, &(0x7f0000000480)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x10, r0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r1 = socket$rxrpc(0x21, 0x2, 0xa)
r2 = syz_genetlink_get_family_id$batadv(&(0x7f0000007580), 0xffffffffffffffff)
sendmsg$BATADV_CMD_SET_HARDIF(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001740)={&(0x7f0000000000)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16, @ANYBLOB="2d0100000000000000000500f6ff08000300", @ANYRES32], 0x2c}}, 0x0)
sendmsg$BATADV_CMD_GET_GATEWAYS(0xffffffffffffffff, &(0x7f0000007680)={0x0, 0x0, &(0x7f0000007640)={&(0x7f0000000000)=ANY=[@ANYBLOB="46040000", @ANYRES16=r2, @ANYBLOB="ff83050000076dc6d81b", @ANYRES32=r1], 0x4}}, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendfile(r4, r3, 0x0, 0x100000002)

[ 2616.582315][T27543] active_anon 8192
[ 2616.592282][T27543] inactive_file 0
[ 2616.601847][T27543] active_file 0
[ 2616.620425][T16775] bond1664 (unregistering): Released all slaves
[ 2616.627161][T27543] unevictable 0
[ 2616.630645][T27543] hierarchical_memory_limit 314572800
[ 2616.656052][T27543] hierarchical_memsw_limit 9223372036854771712
[ 2616.662282][T27543] total_cache 0
[ 2616.672024][T27543] total_rss 12288
[ 2616.675709][T27543] total_rss_huge 0
[ 2616.682205][T16775] bond1663 (unregistering): Released all slaves
[ 2616.690463][T27543] total_shmem 0
[ 2616.693956][T27543] total_mapped_file 0
[ 2616.715563][T27543] total_dirty 0
[ 2616.719329][T27543] total_writeback 0
[ 2616.723339][T27543] total_workingset_refault_anon 36519
[ 2616.731922][T16775] bond1662 (unregistering): Released all slaves
[ 2616.756095][T27543] total_workingset_refault_file 1
[ 2616.761181][T27543] total_swap 380928
[ 2616.765010][T27543] total_swapcached 8192
[ 2616.777138][T27543] total_pgpgin 160646
[ 2616.783664][T16775] bond1661 (unregistering): Released all slaves
[ 2616.790103][T27543] total_pgpgout 160643
[ 2616.794199][T27543] total_pgfault 352813
[ 2616.807911][T27543] total_pgmajfault 35485
[ 2616.812211][T27543] total_inactive_anon 4096
[ 2616.824682][T27543] total_active_anon 8192
[ 2616.832532][T16775] bond1660 (unregistering): Released all slaves
[ 2616.839024][T27543] total_inactive_file 0
[ 2616.843222][T27543] total_active_file 0
[ 2616.863376][T27543] total_unevictable 0
[ 2616.874710][T27543] anon_cost 0
[ 2616.881093][T16775] bond1659 (unregistering): Released all slaves
[ 2616.887645][T27543] file_cost 0
[ 2616.890962][T27543] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=27543,uid=0
[ 2616.926144][T27543] Memory cgroup out of memory: Killed process 27543 (syz-executor.3) total-vm:54504kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 2616.959005][T16775] bond1658 (unregistering): Released all slaves
19:47:28 executing program 3:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x32}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000280)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000240)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=@newlink={0x48, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0xe403, r2}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @veth={{0x9}, {0x18, 0x2, 0x0, 0x1, @val=@VETH_INFO_PEER={0x14}}}}]}, 0x48}, 0x9900}, 0x0)

[ 2616.998585][T16775] bond1657 (unregistering): Released all slaves
[ 2617.054119][T16775] bond1656 (unregistering): Released all slaves
[ 2617.110871][T16775] bond1655 (unregistering): Released all slaves
[ 2617.167262][T16775] bond1654 (unregistering): Released all slaves
[ 2617.232097][T16775] bond1653 (unregistering): Released all slaves
[ 2617.291509][T16775] bond1652 (unregistering): Released all slaves
[ 2617.349069][T16775] bond1651 (unregistering): Released all slaves
[ 2617.407328][T16775] bond1650 (unregistering): Released all slaves
[ 2617.485462][T16775] bond1649 (unregistering): Released all slaves
[ 2617.539446][T16775] bond1648 (unregistering): Released all slaves
[ 2617.577620][ T5094] Bluetooth: hci9: command 0x041b tx timeout
[ 2617.599753][T16775] bond1647 (unregistering): Released all slaves
[ 2617.667288][T16775] bond1646 (unregistering): Released all slaves
[ 2617.723562][   T28] audit: type=1804 audit(1706039249.371:1956): pid=27547 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir245649211/syzkaller.jQ7tPM/60/cgroup.controllers" dev="sda1" ino=1959 res=1 errno=0
[ 2617.753107][T16775] bond1645 (unregistering): Released all slaves
[ 2617.798187][   T28] audit: type=1800 audit(1706039249.371:1957): pid=27547 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.1" name="cgroup.controllers" dev="sda1" ino=1959 res=0 errno=0
[ 2617.800322][T27549] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2617.838339][T27549] CPU: 0 PID: 27549 Comm: syz-executor.3 Not tainted 6.7.0-syzkaller-12291-g435e202d645c #0
19:47:29 executing program 1:
socket$kcm(0x10, 0x400000002, 0x0)
socket$inet(0x2, 0x2, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
write$binfmt_script(r1, &(0x7f0000000480)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r1, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r2 = syz_genetlink_get_family_id$batadv(&(0x7f0000007580), 0xffffffffffffffff)
sendmsg$BATADV_CMD_SET_HARDIF(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001740)={&(0x7f0000000000)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16, @ANYBLOB="2d0100000000000000000500f6ff08000300", @ANYRES32=r0], 0x2c}}, 0x0)
sendmsg$BATADV_CMD_GET_GATEWAYS(0xffffffffffffffff, &(0x7f0000007680)={0x0, 0x0, &(0x7f0000007640)={&(0x7f0000000000)=ANY=[@ANYBLOB="46040000", @ANYRES16=r2, @ANYBLOB="ff83050000076dc6d81b", @ANYRES32], 0x4}}, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendfile(r4, r3, 0x0, 0x100000002)

[ 2617.848476][T27549] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 2617.858560][T27549] Call Trace:
[ 2617.861865][T27549]  <TASK>
[ 2617.864813][T27549]  dump_stack_lvl+0x125/0x1b0
[ 2617.869536][T27549]  dump_header+0x103/0x900
[ 2617.874012][T27549]  oom_kill_process+0x270/0xa60
[ 2617.878916][T27549]  out_of_memory+0x344/0x16c0
[ 2617.883651][T27549]  ? oom_killer_disable+0x2d0/0x2d0
[ 2617.888899][T27549]  ? rcu_read_unlock+0x1c/0x60
[ 2617.893514][T16775] bond1644 (unregistering): Released all slaves
[ 2617.893700][T27549]  mem_cgroup_out_of_memory+0x206/0x270
[ 2617.905530][T27549]  ? mem_cgroup_margin+0x130/0x130
[ 2617.910680][T27549]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2617.916106][T27549]  try_charge_memcg+0xcd1/0x11a0
[ 2617.921190][T27549]  ? mem_cgroup_handle_over_high+0x570/0x570
[ 2617.927218][T27549]  ? get_mem_cgroup_from_objcg+0xb5/0x2a0
[ 2617.932977][T27549]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2617.938382][T27549]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2617.943808][T27549]  __memcg_kmem_charge_page+0xdd/0x2a0
[ 2617.949316][T27549]  memcg_charge_kernel_stack+0xc3/0x1f0
[ 2617.954911][T27549]  copy_process+0x527/0x97b0
[ 2617.959549][T27549]  ? hlock_class+0x4e/0x130
[ 2617.964098][T27549]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2617.970122][T27549]  ? hlock_class+0x4e/0x130
[ 2617.974938][T27549]  ? pidfd_prepare+0x80/0x80
[ 2617.979573][T27549]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2617.984980][T27549]  ? preempt_count_sub+0x160/0x160
[ 2617.992158][T27549]  ? __lock_acquire+0x1502/0x3b30
[ 2617.997316][T27549]  ? __might_fault+0xe6/0x1a0
[ 2618.003179][T27549]  ? _copy_from_user+0x5d/0xf0
[ 2618.007983][T27549]  kernel_clone+0xfd/0x930
[ 2618.012520][T27549]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2618.018526][T27549]  ? create_io_thread+0xe0/0xe0
[ 2618.023437][T27549]  ? find_held_lock+0x2d/0x110
[ 2618.028765][T27549]  __do_sys_clone3+0x1f1/0x260
[ 2618.033563][T27549]  ? __do_sys_clone+0x100/0x100
[ 2618.038490][T27549]  do_syscall_64+0xd3/0x250
[ 2618.043024][T27549]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 2618.048941][T27549] RIP: 0033:0x7f212b0a8b99
[ 2618.053388][T27549] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 2618.073023][T27549] RSP: 002b:00007ffc7b20b738 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 2618.081474][T27549] RAX: ffffffffffffffda RBX: 00007f212b051270 RCX: 00007f212b0a8b99
[ 2618.089476][T27549] RDX: 00007f212b051270 RSI: 0000000000000058 RDI: 00007ffc7b20b780
[ 2618.097478][T27549] RBP: 00007f212be566c0 R08: 00007f212be566c0 R09: 00007ffc7b20b867
[ 2618.105481][T27549] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 2618.113484][T27549] R13: 000000000000000b R14: 00007ffc7b20b780 R15: 00007ffc7b20b868
[ 2618.121943][T27549]  </TASK>
[ 2618.133721][T16775] bond1643 (unregistering): Released all slaves
[ 2618.184770][T27549] memory: usage 307200kB, limit 307200kB, failcnt 123944
[ 2618.215206][T27549] memory+swap: usage 307560kB, limit 9007199254740988kB, failcnt 0
[ 2618.226324][T16775] bond1642 (unregistering): Released all slaves
[ 2618.239468][T27549] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[ 2618.256032][T27549] Memory cgroup stats for /syz3:
[ 2618.256193][T27549] cache 0
[ 2618.265173][T27549] rss 0
[ 2618.270929][T16775] bond1641 (unregistering): Released all slaves
[ 2618.276081][T27549] rss_huge 0
[ 2618.280474][T27549] shmem 0
[ 2618.283425][T27549] mapped_file 0
[ 2618.296058][T27549] dirty 0
[ 2618.299050][T27549] writeback 0
[ 2618.302344][T27549] workingset_refault_anon 36679
[ 2618.316042][T27549] workingset_refault_file 1
[ 2618.323407][T16775] bond1640 (unregistering): Released all slaves
[ 2618.326298][T27549] swap 368640
[ 2618.332983][T27549] swapcached 0
[ 2618.356274][T27549] pgpgin 160819
[ 2618.359811][T27549] pgpgout 160819
[ 2618.363383][T27549] pgfault 353090
[ 2618.370463][T16775] bond1639 (unregistering): Released all slaves
[ 2618.376280][T27549] pgmajfault 35640
[ 2618.380478][T27549] inactive_anon 0
[ 2618.384120][T27549] active_anon 0
[ 2618.396047][T27549] inactive_file 0
[ 2618.400257][T27549] active_file 0
[ 2618.403816][T27549] unevictable 0
[ 2618.415528][T16775] bond1638 (unregistering): Released all slaves
[ 2618.423987][T27549] hierarchical_memory_limit 314572800
[ 2618.436288][T27549] hierarchical_memsw_limit 9223372036854771712
[ 2618.442501][T27549] total_cache 0
[ 2618.467459][T27549] total_rss 0
[ 2618.470897][T27549] total_rss_huge 0
[ 2618.474624][T27549] total_shmem 0
[ 2618.480269][T27549] total_mapped_file 0
[ 2618.484271][T27549] total_dirty 0
[ 2618.488148][T27549] total_writeback 0
[ 2618.493248][T27549] total_workingset_refault_anon 36679
[ 2618.496398][T16775] bond1637 (unregistering): Released all slaves
[ 2618.498804][T27549] total_workingset_refault_file 1
[ 2618.510186][T27549] total_swap 368640
[ 2618.514006][T27549] total_swapcached 0
[ 2618.527467][T16775] bond1636 (unregistering): Released all slaves
[ 2618.536079][T27549] total_pgpgin 160819
[ 2618.540101][T27549] total_pgpgout 160819
[ 2618.544179][T27549] total_pgfault 353090
[ 2618.553977][T16775] bond1635 (unregistering): Released all slaves
[ 2618.566428][T27549] total_pgmajfault 35640
[ 2618.579789][T27549] total_inactive_anon 0
[ 2618.584007][T27549] total_active_anon 0
[ 2618.588601][   T28] audit: type=1804 audit(1706039250.231:1958): pid=27551 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir245649211/syzkaller.jQ7tPM/61/cgroup.controllers" dev="sda1" ino=1959 res=1 errno=0
[ 2618.617881][T27549] total_inactive_file 0
[ 2618.620584][T16775] bond1634 (unregistering): Released all slaves
19:47:30 executing program 3:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x32}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000280)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000240)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=@newlink={0x48, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0xe403, r2}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @veth={{0x9}, {0x18, 0x2, 0x0, 0x1, @val=@VETH_INFO_PEER={0x14}}}}]}, 0x48}, 0xfffe}, 0x0)

[ 2618.622048][T27549] total_active_file 0
[ 2618.633865][T27549] total_unevictable 0
[ 2618.638102][T27549] anon_cost 0
[ 2618.641406][T27549] file_cost 0
[ 2618.644700][T27549] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=27549,uid=0
[ 2618.660525][T27549] Memory cgroup out of memory: Killed process 27549 (syz-executor.3) total-vm:54504kB, anon-rss:388kB, file-rss:8944kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 2618.714900][T16775] bond1633 (unregistering): Released all slaves
[ 2618.750496][T16775] bond1632 (unregistering): Released all slaves
[ 2618.780769][T16775] bond1631 (unregistering): Released all slaves
[ 2618.830595][T16775] bond1630 (unregistering): Released all slaves
[ 2618.893697][T16775] bond1629 (unregistering): Released all slaves
[ 2618.948927][T16775] bond1628 (unregistering): Released all slaves
[ 2618.998566][T16775] bond1627 (unregistering): Released all slaves
[ 2619.048437][T16775] bond1626 (unregistering): Released all slaves
[ 2619.090430][T16775] bond1625 (unregistering): Released all slaves
[ 2619.125833][T27553] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2619.138490][T27553] CPU: 1 PID: 27553 Comm: syz-executor.3 Not tainted 6.7.0-syzkaller-12291-g435e202d645c #0
[ 2619.148820][T27553] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 2619.158922][T27553] Call Trace:
[ 2619.162207][T27553]  <TASK>
[ 2619.165138][T27553]  dump_stack_lvl+0x125/0x1b0
[ 2619.169829][T27553]  dump_header+0x103/0x900
[ 2619.174263][T27553]  oom_kill_process+0x270/0xa60
[ 2619.179137][T27553]  out_of_memory+0x344/0x16c0
[ 2619.183850][T27553]  ? oom_killer_disable+0x2d0/0x2d0
[ 2619.189420][T27553]  ? rcu_read_unlock+0x1c/0x60
[ 2619.194208][T27553]  mem_cgroup_out_of_memory+0x206/0x270
[ 2619.199761][T27553]  ? mem_cgroup_margin+0x130/0x130
[ 2619.204880][T27553]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2619.210275][T27553]  try_charge_memcg+0xcd1/0x11a0
[ 2619.215237][T27553]  ? mem_cgroup_handle_over_high+0x570/0x570
[ 2619.221231][T27553]  ? get_mem_cgroup_from_objcg+0xb5/0x2a0
[ 2619.226960][T27553]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2619.232342][T27553]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2619.237732][T27553]  __memcg_kmem_charge_page+0xdd/0x2a0
[ 2619.243210][T27553]  memcg_charge_kernel_stack+0xc3/0x1f0
[ 2619.248772][T27553]  copy_process+0x1532/0x97b0
[ 2619.253466][T27553]  ? hlock_class+0x4e/0x130
[ 2619.258072][T27553]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2619.264065][T27553]  ? hlock_class+0x4e/0x130
[ 2619.268590][T27553]  ? pidfd_prepare+0x80/0x80
[ 2619.273195][T27553]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2619.278579][T27553]  ? preempt_count_sub+0x160/0x160
[ 2619.283695][T27553]  ? __lock_acquire+0x1502/0x3b30
[ 2619.288728][T27553]  ? __might_fault+0xe6/0x1a0
[ 2619.293428][T27553]  ? _copy_from_user+0x5d/0xf0
[ 2619.298211][T27553]  kernel_clone+0xfd/0x930
[ 2619.302640][T27553]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2619.308629][T27553]  ? create_io_thread+0xe0/0xe0
[ 2619.313497][T27553]  ? find_held_lock+0x2d/0x110
[ 2619.318280][T27553]  __do_sys_clone3+0x1f1/0x260
[ 2619.323059][T27553]  ? __do_sys_clone+0x100/0x100
[ 2619.327954][T27553]  do_syscall_64+0xd3/0x250
[ 2619.332496][T27553]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 2619.338418][T27553] RIP: 0033:0x7f212b0a8b99
[ 2619.342929][T27553] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 2619.362647][T27553] RSP: 002b:00007ffc7b20b738 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 2619.371075][T27553] RAX: ffffffffffffffda RBX: 00007f212b051270 RCX: 00007f212b0a8b99
[ 2619.379049][T27553] RDX: 00007f212b051270 RSI: 0000000000000058 RDI: 00007ffc7b20b780
[ 2619.387023][T27553] RBP: 00007f212be566c0 R08: 00007f212be566c0 R09: 00007ffc7b20b867
[ 2619.395005][T27553] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 2619.402985][T27553] R13: 000000000000000b R14: 00007ffc7b20b780 R15: 00007ffc7b20b868
[ 2619.411114][T27553]  </TASK>
[ 2619.417417][T16775] bond1624 (unregistering): Released all slaves
[ 2619.445911][T27553] memory: usage 307200kB, limit 307200kB, failcnt 124229
[ 2619.459614][T16775] bond1623 (unregistering): Released all slaves
[ 2619.466298][T27553] memory+swap: usage 307548kB, limit 9007199254740988kB, failcnt 0
[ 2619.486356][T27553] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0
19:47:31 executing program 1:
socket$kcm(0x10, 0x400000002, 0x0)
socket$inet(0x2, 0x2, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
write$binfmt_script(r1, &(0x7f0000000480)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r1, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r2 = syz_genetlink_get_family_id$batadv(&(0x7f0000007580), 0xffffffffffffffff)
sendmsg$BATADV_CMD_SET_HARDIF(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001740)={&(0x7f0000000000)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16, @ANYBLOB="2d0100000000000000000500f6ff08000300", @ANYRES32=r0], 0x2c}}, 0x0)
sendmsg$BATADV_CMD_GET_GATEWAYS(0xffffffffffffffff, &(0x7f0000007680)={0x0, 0x0, &(0x7f0000007640)={&(0x7f0000000000)=ANY=[@ANYBLOB="46040000", @ANYRES16=r2, @ANYBLOB="ff83050000076dc6d81b", @ANYRES32], 0x4}}, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendfile(r4, r3, 0x0, 0x100000002)

[ 2619.520255][T27553] Memory cgroup stats for /syz3:
[ 2619.520438][T27553] cache 0
[ 2619.528636][T27553] rss 12288
[ 2619.534453][T16775] bond1622 (unregistering): Released all slaves
[ 2619.542623][T27553] rss_huge 0
[ 2619.545867][T27553] shmem 0
[ 2619.566368][T27553] mapped_file 0
[ 2619.569898][T27553] dirty 0
[ 2619.572846][T27553] writeback 0
[ 2619.582811][T27553] workingset_refault_anon 36780
[ 2619.591130][T16775] bond1621 (unregistering): Released all slaves
[ 2619.606220][T27553] workingset_refault_file 1
[ 2619.610798][T27553] swap 356352
[ 2619.614109][T27553] swapcached 8192
[ 2619.625006][T27553] pgpgin 160931
[ 2619.631757][T16775] bond1620 (unregistering): Released all slaves
[ 2619.647667][T27553] pgpgout 160928
[ 2619.651279][T27553] pgfault 353279
[ 2619.654852][T27553] pgmajfault 35741
[ 2619.660354][ T5094] Bluetooth: hci9: command 0x040f tx timeout
[ 2619.676274][T27553] inactive_anon 4096
[ 2619.678789][T16775] bond1619 (unregistering): Released all slaves
[ 2619.680206][T27553] active_anon 8192
[ 2619.680218][T27553] inactive_file 0
[ 2619.694660][T27553] active_file 0
[ 2619.699122][T27553] unevictable 0
[ 2619.702615][T27553] hierarchical_memory_limit 314572800
[ 2619.708638][T27553] hierarchical_memsw_limit 9223372036854771712
[ 2619.714836][T27553] total_cache 0
[ 2619.718871][T27553] total_rss 12288
[ 2619.722536][T27553] total_rss_huge 0
[ 2619.728565][T27553] total_shmem 0
[ 2619.732080][T27553] total_mapped_file 0
[ 2619.737016][T27553] total_dirty 0
[ 2619.740513][T27553] total_writeback 0
[ 2619.744335][T27553] total_workingset_refault_anon 36780
[ 2619.749887][T27553] total_workingset_refault_file 1
[ 2619.754941][T27553] total_swap 356352
[ 2619.760282][T27553] total_swapcached 8192
[ 2619.761708][T16775] bond1618 (unregistering): Released all slaves
[ 2619.765511][T27553] total_pgpgin 160931
[ 2619.777790][T27553] total_pgpgout 160928
[ 2619.781914][T27553] total_pgfault 353279
[ 2619.786298][T27553] total_pgmajfault 35741
[ 2619.791270][T27553] total_inactive_anon 4096
[ 2619.795722][T27553] total_active_anon 8192
[ 2619.800516][T27553] total_inactive_file 0
[ 2619.805585][T27553] total_active_file 0
[ 2619.809700][T27553] total_unevictable 0
[ 2619.813708][T27553] anon_cost 0
[ 2619.825999][T27553] file_cost 0
[ 2619.829413][T27553] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=27553,uid=0
[ 2619.845363][   T28] audit: type=1804 audit(1706039251.481:1959): pid=27555 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir245649211/syzkaller.jQ7tPM/62/cgroup.controllers" dev="sda1" ino=1959 res=1 errno=0
[ 2619.851475][T16775] bond1617 (unregistering): Released all slaves
[ 2619.883228][T27553] Memory cgroup out of memory: Killed process 27553 (syz-executor.3) total-vm:54504kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
19:47:31 executing program 3:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x32}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000280)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000240)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=@newlink={0x48, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0xe403, r2}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @veth={{0x9}, {0x18, 0x2, 0x0, 0x1, @val=@VETH_INFO_PEER={0x14}}}}]}, 0x48}, 0x80026}, 0x0)

[ 2619.942232][T16775] bond1616 (unregistering): Released all slaves
[ 2619.999557][T16775] bond1615 (unregistering): Released all slaves
[ 2620.057186][T16775] bond1614 (unregistering): Released all slaves
[ 2620.094421][T16775] bond1613 (unregistering): Released all slaves
[ 2620.168827][T16775] bond1612 (unregistering): Released all slaves
[ 2620.225797][T16775] bond1611 (unregistering): Released all slaves
[ 2620.299026][T16775] bond1610 (unregistering): Released all slaves
19:47:32 executing program 1:
socket$kcm(0x10, 0x400000002, 0x0)
socket$inet(0x2, 0x2, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
write$binfmt_script(r0, &(0x7f0000000480)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r1 = socket$rxrpc(0x21, 0x2, 0xa)
r2 = syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$BATADV_CMD_SET_HARDIF(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001740)={&(0x7f0000000000)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16, @ANYBLOB="2d0100000000000000000500f6ff08000300", @ANYRES32], 0x2c}}, 0x0)
sendmsg$BATADV_CMD_GET_GATEWAYS(0xffffffffffffffff, &(0x7f0000007680)={0x0, 0x0, &(0x7f0000007640)={&(0x7f0000000000)=ANY=[@ANYBLOB="46040000", @ANYRES16=r2, @ANYBLOB="ff83050000076dc6d81b", @ANYRES32=r1], 0x4}}, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendfile(r4, r3, 0x0, 0x100000002)

[ 2620.360536][T16775] bond1609 (unregistering): Released all slaves
[ 2620.420323][T16775] bond1608 (unregistering): Released all slaves
[ 2620.478756][T16775] bond1607 (unregistering): Released all slaves
[ 2620.488031][ T5091] syz-executor.3 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[ 2620.521982][T16775] bond1606 (unregistering): Released all slaves
[ 2620.531638][ T5091] CPU: 0 PID: 5091 Comm: syz-executor.3 Not tainted 6.7.0-syzkaller-12291-g435e202d645c #0
[ 2620.541694][ T5091] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 2620.551790][ T5091] Call Trace:
[ 2620.555093][ T5091]  <TASK>
[ 2620.558046][ T5091]  dump_stack_lvl+0x125/0x1b0
[ 2620.562774][ T5091]  dump_header+0x103/0x900
[ 2620.567248][ T5091]  oom_kill_process+0x270/0xa60
[ 2620.572162][ T5091]  out_of_memory+0x344/0x16c0
[ 2620.576904][ T5091]  ? mutex_trylock+0xa0/0x130
[ 2620.582169][ T5091]  ? oom_killer_disable+0x2d0/0x2d0
[ 2620.587601][ T5091]  ? rcu_read_unlock+0x1c/0x60
[ 2620.592438][ T5091]  mem_cgroup_out_of_memory+0x206/0x270
[ 2620.598043][ T5091]  ? mem_cgroup_margin+0x130/0x130
[ 2620.603172][ T5091]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2620.608575][ T5091]  try_charge_memcg+0xcd1/0x11a0
[ 2620.613560][ T5091]  ? mem_cgroup_handle_over_high+0x570/0x570
[ 2620.619581][ T5091]  ? rcu_read_unlock+0x1c/0x60
[ 2620.624368][ T5091]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2620.630648][ T5091]  ? __radix_tree_lookup+0x21f/0x2c0
[ 2620.635982][ T5091]  mem_cgroup_swapin_charge_folio+0x138/0x380
[ 2620.642088][ T5091]  __read_swap_cache_async+0x4e1/0x600
[ 2620.647563][ T5091]  ? filemap_get_incore_folio+0x160/0x160
[ 2620.653291][ T5091]  ? swp_swap_info+0xcf/0x130
[ 2620.657984][ T5091]  ? swapcache_prepare+0x20/0x20
[ 2620.662937][ T5091]  swap_cluster_readahead+0x4d4/0x710
[ 2620.668322][ T5091]  ? read_swap_cache_async+0x1a0/0x1a0
[ 2620.673794][ T5091]  ? reacquire_held_locks+0x410/0x4c0
[ 2620.679185][ T5091]  ? xas_descend+0x141/0x4e0
[ 2620.683802][ T5091]  ? filemap_get_entry+0x23e/0x460
[ 2620.688942][ T5091]  swapin_readahead+0x132/0xe60
[ 2620.693844][ T5091]  ? get_swap_device+0x363/0x5e0
[ 2620.698795][ T5091]  ? exit_swap_address_space+0x250/0x250
[ 2620.704438][ T5091]  ? __filemap_get_folio+0x2b0/0xaa0
[ 2620.709740][ T5091]  ? swap_cache_get_folio+0x1dc/0x460
[ 2620.715118][ T5091]  ? get_swap_device+0x245/0x5e0
[ 2620.720088][ T5091]  ? free_pages_and_swap_cache+0xa0/0xa0
[ 2620.725744][ T5091]  ? lock_sync+0x190/0x190
[ 2620.731397][ T5091]  do_swap_page+0x4a6/0x3190
[ 2620.736288][ T5091]  ? rcu_is_watching+0x12/0xb0
[ 2620.741098][ T5091]  ? __pte_offset_map+0x1b9/0x540
[ 2620.746135][ T5091]  ? unmap_mapping_folio+0x3b0/0x3b0
[ 2620.751433][ T5091]  ? pte_offset_map_nolock+0xfa/0x1b0
[ 2620.757072][ T5091]  ? __pte_offset_map+0x540/0x540
[ 2620.762203][ T5091]  __handle_mm_fault+0x13a0/0x4900
[ 2620.767332][ T5091]  ? clear_huge_page+0x2e0/0x2e0
[ 2620.772288][ T5091]  ? lock_mm_and_find_vma+0x580/0x580
[ 2620.777669][ T5091]  ? do_user_addr_fault+0x663/0x1030
[ 2620.783056][ T5091]  handle_mm_fault+0x47a/0xa10
[ 2620.787834][ T5091]  do_user_addr_fault+0x30b/0x1030
[ 2620.792957][ T5091]  ? irqentry_enter_from_user_mode+0x5f/0xc0
[ 2620.800187][ T5091]  exc_page_fault+0x5d/0xc0
[ 2620.804797][ T5091]  asm_exc_page_fault+0x26/0x30
[ 2620.809655][ T5091] RIP: 0033:0x7f212b07cd89
[ 2620.814083][ T5091] Code: 29 c7 48 69 ff e8 03 00 00 48 89 7c 24 08 48 89 e7 e8 2b cb ff ff 48 8b 54 24 18 64 48 2b 14 25 28 00 00 00 75 05 48 83 c4 28 <c3> e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2
[ 2620.833707][ T5091] RSP: 002b:00007ffc7b20bb78 EFLAGS: 00010206
[ 2620.839786][ T5091] RAX: 0000000000000000 RBX: 000000000000290d RCX: 0000000000000000
[ 2620.848059][ T5091] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000555555796788
[ 2620.856042][ T5091] RBP: 00007ffc7b20bbdc R08: 0000000000000000 R09: 0000000000000001
[ 2620.864017][ T5091] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000032
[ 2620.871990][ T5091] R13: 000000000027fa90 R14: 000000000027fa90 R15: 0000000000000000
[ 2620.880000][ T5091]  </TASK>
[ 2620.916799][T16775] bond1605 (unregistering): Released all slaves
[ 2620.926107][   T28] audit: type=1804 audit(1706039252.571:1960): pid=27559 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir245649211/syzkaller.jQ7tPM/63/cgroup.controllers" dev="sda1" ino=1959 res=1 errno=0
[ 2620.939231][ T5091] memory: usage 307184kB, limit 307200kB, failcnt 124564
[ 2620.963850][T16775] bond1604 (unregistering): Released all slaves
[ 2620.967927][ T5091] memory+swap: usage 307584kB, limit 9007199254740988kB, failcnt 0
[ 2620.979679][ T5091] kmem: usage 307184kB, limit 9007199254740988kB, failcnt 0
[ 2620.987684][ T5091] Memory cgroup stats for /syz3:
[ 2620.987839][ T5091] cache 0
[ 2621.004834][ T5091] rss 0
[ 2621.008203][ T5091] rss_huge 0
[ 2621.011441][ T5091] shmem 0
[ 2621.014534][ T5091] mapped_file 0
[ 2621.019317][ T5091] dirty 0
[ 2621.022433][ T5091] writeback 0
[ 2621.027027][ T5091] workingset_refault_anon 36899
[ 2621.032019][ T5091] workingset_refault_file 1
[ 2621.033032][T16775] bond1603 (unregistering): Released all slaves
[ 2621.036818][ T5091] swap 409600
[ 2621.036830][ T5091] swapcached 0
[ 2621.036838][ T5091] pgpgin 161061
[ 2621.036849][ T5091] pgpgout 161061
[ 2621.036859][ T5091] pgfault 353475
[ 2621.036867][ T5091] pgmajfault 35856
[ 2621.036878][ T5091] inactive_anon 0
[ 2621.069922][ T5091] active_anon 0
[ 2621.073479][ T5091] inactive_file 0
[ 2621.077471][ T5091] active_file 0
[ 2621.081133][ T5091] unevictable 0
[ 2621.084751][ T5091] hierarchical_memory_limit 314572800
[ 2621.091822][ T5091] hierarchical_memsw_limit 9223372036854771712
[ 2621.100222][ T5091] total_cache 0
[ 2621.103959][ T5091] total_rss 0
[ 2621.111308][ T5091] total_rss_huge 0
[ 2621.115259][ T5091] total_shmem 0
[ 2621.118974][ T5091] total_mapped_file 0
[ 2621.123180][ T5091] total_dirty 0
[ 2621.127651][ T5091] total_writeback 0
[ 2621.132429][T16775] bond1602 (unregistering): Released all slaves
[ 2621.136601][ T5091] total_workingset_refault_anon 36899
[ 2621.147093][ T5091] total_workingset_refault_file 1
[ 2621.168117][ T5091] total_swap 409600
[ 2621.172315][ T5091] total_swapcached 0
[ 2621.174893][T16775] bond1601 (unregistering): Released all slaves
[ 2621.181351][ T5091] total_pgpgin 161061
[ 2621.201136][ T5091] total_pgpgout 161061
[ 2621.207315][ T5091] total_pgfault 353475
[ 2621.208064][T16775] bond1600 (unregistering): Released all slaves
[ 2621.212368][ T5091] total_pgmajfault 35856
[ 2621.228528][ T5091] total_inactive_anon 0
[ 2621.235691][ T5091] total_active_anon 0
[ 2621.241013][ T5091] total_inactive_file 0
[ 2621.251450][ T5091] total_active_file 0
[ 2621.255650][ T5091] total_unevictable 0
[ 2621.261156][ T5091] anon_cost 0
[ 2621.272588][ T5091] file_cost 0
[ 2621.279328][T16775] bond1599 (unregistering): Released all slaves
[ 2621.285850][ T5091] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=27557,uid=0
[ 2621.317555][ T5091] Memory cgroup out of memory: Killed process 27557 (syz-executor.3) total-vm:54504kB, anon-rss:388kB, file-rss:8752kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 2621.355919][T16775] bond1598 (unregistering): Released all slaves
19:47:33 executing program 1:
socket$kcm(0x10, 0x400000002, 0x0)
socket$inet(0x2, 0x2, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
write$binfmt_script(r0, &(0x7f0000000480)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r1 = socket$rxrpc(0x21, 0x2, 0xa)
r2 = syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$BATADV_CMD_SET_HARDIF(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001740)={&(0x7f0000000000)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16, @ANYBLOB="2d0100000000000000000500f6ff08000300", @ANYRES32], 0x2c}}, 0x0)
sendmsg$BATADV_CMD_GET_GATEWAYS(0xffffffffffffffff, &(0x7f0000007680)={0x0, 0x0, &(0x7f0000007640)={&(0x7f0000000000)=ANY=[@ANYBLOB="46040000", @ANYRES16=r2, @ANYBLOB="ff83050000076dc6d81b", @ANYRES32=r1], 0x4}}, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendfile(r4, r3, 0x0, 0x100000002)

19:47:33 executing program 3:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x32}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000280)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000240)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=@newlink={0x48, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0xe403, r2}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @veth={{0x9}, {0x18, 0x2, 0x0, 0x1, @val=@VETH_INFO_PEER={0x14}}}}]}, 0x48}, 0x80027}, 0x0)

[ 2621.429683][T16775] bond1597 (unregistering): Released all slaves
[ 2621.498730][T16775] bond1596 (unregistering): Released all slaves
[ 2621.548736][T16775] bond1595 (unregistering): Released all slaves
[ 2621.600694][T16775] bond1594 (unregistering): Released all slaves
[ 2621.654501][T16775] bond1593 (unregistering): Released all slaves
[ 2621.697620][   T28] audit: type=1804 audit(1706039253.351:1961): pid=27563 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir245649211/syzkaller.jQ7tPM/64/cgroup.controllers" dev="sda1" ino=1950 res=1 errno=0
[ 2621.731719][T16775] bond1592 (unregistering): Released all slaves
[ 2621.738619][ T5094] Bluetooth: hci9: command 0x0419 tx timeout
[ 2621.804241][T16775] bond1591 (unregistering): Released all slaves
[ 2621.879713][T16775] bond1590 (unregistering): Released all slaves
[ 2621.944976][T16775] bond1589 (unregistering): Released all slaves
[ 2622.004764][T16775] bond1588 (unregistering): Released all slaves
[ 2622.055499][T16775] bond1587 (unregistering): Released all slaves
[ 2622.094988][T27562] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2622.107163][T27562] CPU: 1 PID: 27562 Comm: syz-executor.3 Not tainted 6.7.0-syzkaller-12291-g435e202d645c #0
[ 2622.111485][T16775] bond1586 (unregistering): Released all slaves
[ 2622.118233][T27562] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 2622.118251][T27562] Call Trace:
[ 2622.118262][T27562]  <TASK>
[ 2622.118272][T27562]  dump_stack_lvl+0x125/0x1b0
[ 2622.118306][T27562]  dump_header+0x103/0x900
[ 2622.118342][T27562]  oom_kill_process+0x270/0xa60
[ 2622.118378][T27562]  out_of_memory+0x344/0x16c0
[ 2622.118418][T27562]  ? oom_killer_disable+0x2d0/0x2d0
[ 2622.165358][T27562]  ? rcu_read_unlock+0x1c/0x60
[ 2622.170180][T27562]  mem_cgroup_out_of_memory+0x206/0x270
[ 2622.175779][T27562]  ? mem_cgroup_margin+0x130/0x130
[ 2622.180927][T27562]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2622.186374][T27562]  try_charge_memcg+0xcd1/0x11a0
[ 2622.191344][T27562]  ? mem_cgroup_handle_over_high+0x570/0x570
[ 2622.197423][T27562]  ? get_mem_cgroup_from_objcg+0xb5/0x2a0
[ 2622.203160][T27562]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2622.208549][T27562]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2622.213945][T27562]  __memcg_kmem_charge_page+0xdd/0x2a0
[ 2622.220033][T27562]  memcg_charge_kernel_stack+0xc3/0x1f0
[ 2622.226399][T27562]  copy_process+0x527/0x97b0
[ 2622.231041][T27562]  ? hlock_class+0x4e/0x130
[ 2622.235579][T27562]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2622.241615][T27562]  ? page_ext_put+0x43/0xd0
[ 2622.246162][T27562]  ? hlock_class+0x4e/0x130
[ 2622.250836][T27562]  ? pidfd_prepare+0x80/0x80
[ 2622.255450][T27562]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2622.260837][T27562]  ? preempt_count_sub+0x160/0x160
[ 2622.265984][T27562]  ? __lock_acquire+0x1502/0x3b30
[ 2622.271060][T27562]  ? __might_fault+0xe6/0x1a0
[ 2622.275772][T27562]  ? _copy_from_user+0x5d/0xf0
[ 2622.280583][T27562]  kernel_clone+0xfd/0x930
[ 2622.285021][T27562]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2622.291040][T27562]  ? create_io_thread+0xe0/0xe0
[ 2622.295916][T27562]  ? find_held_lock+0x2d/0x110
[ 2622.300714][T27562]  __do_sys_clone3+0x1f1/0x260
[ 2622.305491][T27562]  ? __do_sys_clone+0x100/0x100
[ 2622.310390][T27562]  do_syscall_64+0xd3/0x250
[ 2622.314905][T27562]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 2622.320806][T27562] RIP: 0033:0x7f212b0a8b99
[ 2622.325226][T27562] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 2622.345975][T27562] RSP: 002b:00007ffc7b20b738 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 2622.354491][T27562] RAX: ffffffffffffffda RBX: 00007f212b051270 RCX: 00007f212b0a8b99
[ 2622.362553][T27562] RDX: 00007f212b051270 RSI: 0000000000000058 RDI: 00007ffc7b20b780
[ 2622.370533][T27562] RBP: 00007f212be566c0 R08: 00007f212be566c0 R09: 00007ffc7b20b867
[ 2622.378948][T27562] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 2622.386950][T27562] R13: 000000000000000b R14: 00007ffc7b20b780 R15: 00007ffc7b20b868
[ 2622.395041][T27562]  </TASK>
[ 2622.404271][T16775] bond1585 (unregistering): Released all slaves
[ 2622.433122][T16775] bond1584 (unregistering): Released all slaves
[ 2622.459000][T16775] bond1583 (unregistering): Released all slaves
19:47:34 executing program 1:
socket$kcm(0x10, 0x400000002, 0x0)
socket$inet(0x2, 0x2, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
write$binfmt_script(r0, &(0x7f0000000480)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r1 = socket$rxrpc(0x21, 0x2, 0xa)
r2 = syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$BATADV_CMD_SET_HARDIF(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001740)={&(0x7f0000000000)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16, @ANYBLOB="2d0100000000000000000500f6ff08000300", @ANYRES32], 0x2c}}, 0x0)
sendmsg$BATADV_CMD_GET_GATEWAYS(0xffffffffffffffff, &(0x7f0000007680)={0x0, 0x0, &(0x7f0000007640)={&(0x7f0000000000)=ANY=[@ANYBLOB="46040000", @ANYRES16=r2, @ANYBLOB="ff83050000076dc6d81b", @ANYRES32=r1], 0x4}}, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendfile(r4, r3, 0x0, 0x100000002)

[ 2622.485659][T27562] memory: usage 307200kB, limit 307200kB, failcnt 124993
[ 2622.511368][T27562] memory+swap: usage 307512kB, limit 9007199254740988kB, failcnt 0
[ 2622.518086][T16775] bond1582 (unregistering): Released all slaves
[ 2622.546274][T27562] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0
[ 2622.561209][T27562] Memory cgroup stats for /syz3:
[ 2622.561389][T27562] cache 0
[ 2622.564572][T16775] bond1581 (unregistering): Released all slaves
[ 2622.576679][T27562] rss 12288
[ 2622.579927][T27562] rss_huge 0
[ 2622.602942][T27562] shmem 0
[ 2622.608841][T27562] mapped_file 0
[ 2622.612486][T27562] dirty 0
[ 2622.615544][T27562] writeback 0
[ 2622.622798][T27562] workingset_refault_anon 37031
[ 2622.628339][T27562] workingset_refault_file 1
[ 2622.633046][T27562] swap 319488
[ 2622.637436][T27562] swapcached 12288
[ 2622.638768][T16775] bond1580 (unregistering): Released all slaves
[ 2622.641307][T27562] pgpgin 161204
[ 2622.666039][T27562] pgpgout 161201
[ 2622.669650][T27562] pgfault 353711
[ 2622.675863][T27562] pgmajfault 35987
[ 2622.688383][T27562] inactive_anon 4096
[ 2622.688990][T16775] bond1579 (unregistering): Released all slaves
[ 2622.693183][T27562] active_anon 8192
[ 2622.693195][T27562] inactive_file 0
[ 2622.744116][T27562] active_file 0
[ 2622.753789][T27562] unevictable 0
[ 2622.757985][T27562] hierarchical_memory_limit 314572800
[ 2622.762818][T16775] bond1578 (unregistering): Released all slaves
[ 2622.763478][T27562] hierarchical_memsw_limit 9223372036854771712
[ 2622.777547][T27562] total_cache 0
[ 2622.781306][T27562] total_rss 12288
[ 2622.785643][T27562] total_rss_huge 0
[ 2622.790431][T27562] total_shmem 0
[ 2622.794028][T27562] total_mapped_file 0
[ 2622.809241][   T28] audit: type=1804 audit(1706039254.451:1962): pid=27566 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir245649211/syzkaller.jQ7tPM/65/cgroup.controllers" dev="sda1" ino=1950 res=1 errno=0
[ 2622.830918][T27562] total_dirty 0
[ 2622.850580][T16775] bond1577 (unregistering): Released all slaves
[ 2622.857226][T27562] total_writeback 0
[ 2622.864064][T27562] total_workingset_refault_anon 37031
[ 2622.885877][T27562] total_workingset_refault_file 1
[ 2622.895045][T27562] total_swap 319488
[ 2622.900838][T27562] total_swapcached 12288
[ 2622.902098][T16775] bond1576 (unregistering): Released all slaves
[ 2622.905717][T27562] total_pgpgin 161204
[ 2622.917379][T27562] total_pgpgout 161201
[ 2622.922104][T27562] total_pgfault 353711
[ 2622.927707][T27562] total_pgmajfault 35987
[ 2622.933064][T27562] total_inactive_anon 4096
[ 2622.941405][T27562] total_active_anon 8192
[ 2622.947993][T27562] total_inactive_file 0
[ 2622.953823][T27562] total_active_file 0
[ 2622.965489][T27562] total_unevictable 0
[ 2622.973098][T16775] bond1575 (unregistering): Released all slaves
[ 2622.973412][T27562] anon_cost 0
[ 2622.983441][T27562] file_cost 0
[ 2622.988416][T27562] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=27562,uid=0
[ 2623.004666][T27562] Memory cgroup out of memory: Killed process 27562 (syz-executor.3) total-vm:54504kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 2623.034042][T16775] bond1574 (unregistering): Released all slaves
[ 2623.071996][T16775] bond1573 (unregistering): Released all slaves
[ 2623.115907][T16775] bond1572 (unregistering): Released all slaves
19:47:34 executing program 3:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x32}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000280)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000240)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=@newlink={0x48, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0xe403, r2}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @veth={{0x9}, {0x18, 0x2, 0x0, 0x1, @val=@VETH_INFO_PEER={0x14}}}}]}, 0x48}, 0x80028}, 0x0)

[ 2623.161282][T16775] bond1571 (unregistering): Released all slaves
[ 2623.218833][T16775] bond1570 (unregistering): Released all slaves
[ 2623.261281][T16775] bond1569 (unregistering): Released all slaves
[ 2623.319212][T16775] bond1568 (unregistering): Released all slaves
[ 2623.367068][T16775] bond1567 (unregistering): Released all slaves
[ 2623.423528][T16775] bond1566 (unregistering): Released all slaves
[ 2623.479967][T16775] bond1565 (unregistering): Released all slaves
19:47:35 executing program 1:
socket$kcm(0x10, 0x400000002, 0x0)
socket$inet(0x2, 0x2, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x3, &(0x7f00000000c0)=@framed, &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
write$binfmt_script(r1, &(0x7f0000000480)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r1, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r2 = socket$rxrpc(0x21, 0x2, 0xa)
r3 = syz_genetlink_get_family_id$batadv(&(0x7f0000007580), 0xffffffffffffffff)
sendmsg$BATADV_CMD_SET_HARDIF(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001740)={&(0x7f0000000000)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16, @ANYBLOB="2d0100000000000000000500f6ff08000300"], 0x2c}}, 0x0)
sendmsg$BATADV_CMD_GET_GATEWAYS(0xffffffffffffffff, &(0x7f0000007680)={0x0, 0x0, &(0x7f0000007640)={&(0x7f0000000000)=ANY=[@ANYBLOB="46040000", @ANYRES16=r3, @ANYBLOB="ff83050000076dc6d81b", @ANYRES32=r2], 0x4}}, 0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendfile(r5, r4, 0x0, 0x100000002)

[ 2623.539535][T16775] bond1564 (unregistering): Released all slaves
[ 2623.564713][ T5091] syz-executor.3 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[ 2623.598913][ T5091] CPU: 0 PID: 5091 Comm: syz-executor.3 Not tainted 6.7.0-syzkaller-12291-g435e202d645c #0
[ 2623.608962][ T5091] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 2623.619043][ T5091] Call Trace:
[ 2623.622336][ T5091]  <TASK>
[ 2623.625382][ T5091]  dump_stack_lvl+0x125/0x1b0
[ 2623.630099][ T5091]  dump_header+0x103/0x900
[ 2623.634562][ T5091]  oom_kill_process+0x270/0xa60
[ 2623.639457][ T5091]  out_of_memory+0x344/0x16c0
[ 2623.644191][ T5091]  ? mutex_trylock+0xa0/0x130
[ 2623.650895][ T5091]  ? oom_killer_disable+0x2d0/0x2d0
[ 2623.656183][ T5091]  ? rcu_read_unlock+0x1c/0x60
[ 2623.661014][ T5091]  mem_cgroup_out_of_memory+0x206/0x270
[ 2623.666589][ T5091]  ? mem_cgroup_margin+0x130/0x130
[ 2623.671709][ T5091]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2623.677102][ T5091]  try_charge_memcg+0xcd1/0x11a0
[ 2623.682059][ T5091]  ? mem_cgroup_handle_over_high+0x570/0x570
[ 2623.688060][ T5091]  ? rcu_read_unlock+0x1c/0x60
[ 2623.693734][ T5091]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2623.699123][ T5091]  ? __radix_tree_lookup+0x21f/0x2c0
[ 2623.704430][ T5091]  mem_cgroup_swapin_charge_folio+0x138/0x380
[ 2623.710518][ T5091]  __read_swap_cache_async+0x4e1/0x600
[ 2623.715996][ T5091]  ? filemap_get_incore_folio+0x160/0x160
[ 2623.721722][ T5091]  ? swp_swap_info+0xcf/0x130
[ 2623.726409][ T5091]  ? swapcache_prepare+0x20/0x20
[ 2623.731440][ T5091]  ? hlock_class+0x4e/0x130
[ 2623.735976][ T5091]  swap_cluster_readahead+0x3e6/0x710
[ 2623.741362][ T5091]  ? read_swap_cache_async+0x1a0/0x1a0
[ 2623.746827][ T5091]  ? reacquire_held_locks+0x410/0x4c0
[ 2623.752203][ T5091]  ? xas_descend+0x141/0x4e0
[ 2623.757342][ T5091]  ? filemap_get_entry+0x23e/0x460
[ 2623.762471][ T5091]  swapin_readahead+0x132/0xe60
[ 2623.767333][ T5091]  ? get_swap_device+0x363/0x5e0
[ 2623.772280][ T5091]  ? exit_swap_address_space+0x250/0x250
[ 2623.777917][ T5091]  ? __filemap_get_folio+0x2b0/0xaa0
[ 2623.783242][ T5091]  ? swap_cache_get_folio+0x1dc/0x460
[ 2623.788728][ T5091]  ? get_swap_device+0x245/0x5e0
[ 2623.793856][ T5091]  ? free_pages_and_swap_cache+0xa0/0xa0
[ 2623.799503][ T5091]  ? lock_sync+0x190/0x190
[ 2623.803956][ T5091]  do_swap_page+0x4a6/0x3190
[ 2623.808663][ T5091]  ? rcu_is_watching+0x12/0xb0
[ 2623.813476][ T5091]  ? __pte_offset_map+0x1b9/0x540
[ 2623.820159][ T5091]  ? unmap_mapping_folio+0x3b0/0x3b0
[ 2623.825479][ T5091]  ? pte_offset_map_nolock+0xfa/0x1b0
[ 2623.830855][ T5091]  ? __pte_offset_map+0x540/0x540
[ 2623.836427][ T5091]  __handle_mm_fault+0x13a0/0x4900
[ 2623.841556][ T5091]  ? clear_huge_page+0x2e0/0x2e0
[ 2623.846510][ T5091]  ? lock_mm_and_find_vma+0x580/0x580
[ 2623.851893][ T5091]  handle_mm_fault+0x47a/0xa10
[ 2623.856674][ T5091]  do_user_addr_fault+0x30b/0x1030
[ 2623.861804][ T5091]  ? irqentry_enter_from_user_mode+0x5f/0xc0
[ 2623.867806][ T5091]  exc_page_fault+0x5d/0xc0
[ 2623.872326][ T5091]  asm_exc_page_fault+0x26/0x30
[ 2623.877183][ T5091] RIP: 0033:0x7f212b079780
[ 2623.881602][ T5091] Code: ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 31 c9 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 <80> 3d 71 57 10 00 00 49 89 ca 74 14 b8 3d 00 00 00 0f 05 48 3d 00
[ 2623.901307][ T5091] RSP: 002b:00007ffc7b20bb78 EFLAGS: 00010246
[ 2623.907386][ T5091] RAX: 0000000000000115 RBX: 000000000000290f RCX: 0000000000000000
[ 2623.915369][ T5091] RDX: 0000000040000001 RSI: 00007ffc7b20bbdc RDI: 00000000ffffffff
[ 2623.923347][ T5091] RBP: 00007ffc7b20bbdc R08: 0000000000000a3f R09: 0000000000000001
[ 2623.931400][ T5091] R10: 00007ffc7b2d4080 R11: 0000000001b1d65f R12: 0000000000000032
[ 2623.939376][ T5091] R13: 00000000002806ff R14: 00000000002806ff R15: 0000000000000000
[ 2623.947371][ T5091]  </TASK>
[ 2623.978548][T16775] bond1563 (unregistering): Released all slaves
[ 2623.986190][ T5091] memory: usage 307200kB, limit 307200kB, failcnt 125334
[ 2623.993353][ T5091] memory+swap: usage 307556kB, limit 9007199254740988kB, failcnt 0
[ 2624.026094][ T5091] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[ 2624.036197][T16775] bond1562 (unregistering): Released all slaves
[ 2624.046089][ T5091] Memory cgroup stats for /syz3:
[ 2624.046244][ T5091] cache 0
[ 2624.054156][ T5091] rss 0
[ 2624.066061][ T5091] rss_huge 0
[ 2624.069350][ T5091] shmem 0
[ 2624.072328][ T5091] mapped_file 0
[ 2624.075800][ T5091] dirty 0
[ 2624.095182][T16775] bond1561 (unregistering): Released all slaves
[ 2624.121259][T16775] bond1560 (unregistering): Released all slaves
[ 2624.126192][ T5091] writeback 0
[ 2624.136856][ T5091] workingset_refault_anon 37135
[ 2624.141513][   T28] audit: type=1804 audit(1706039255.791:1963): pid=27571 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir245649211/syzkaller.jQ7tPM/66/cgroup.controllers" dev="sda1" ino=1950 res=1 errno=0
[ 2624.141767][ T5091] workingset_refault_file 1
[ 2624.141781][ T5091] swap 364544
[ 2624.141790][ T5091] swapcached 0
[ 2624.141800][ T5091] pgpgin 161319
[ 2624.209842][ T5091] pgpgout 161319
[ 2624.217344][ T5091] pgfault 353883
[ 2624.219232][T16775] bond1559 (unregistering): Released all slaves
[ 2624.221315][ T5091] pgmajfault 36070
[ 2624.232869][ T5091] inactive_anon 0
[ 2624.237010][ T5091] active_anon 0
[ 2624.240908][ T5091] inactive_file 0
[ 2624.244649][ T5091] active_file 0
[ 2624.248224][ T5091] unevictable 0
[ 2624.252146][ T5091] hierarchical_memory_limit 314572800
[ 2624.257665][ T5091] hierarchical_memsw_limit 9223372036854771712
[ 2624.264276][ T5091] total_cache 0
[ 2624.267927][ T5091] total_rss 0
[ 2624.271653][ T5091] total_rss_huge 0
[ 2624.275470][ T5091] total_shmem 0
[ 2624.279405][ T5091] total_mapped_file 0
[ 2624.283521][ T5091] total_dirty 0
[ 2624.287120][ T5091] total_writeback 0
[ 2624.287876][T16775] bond1558 (unregistering): Released all slaves
[ 2624.291356][ T5091] total_workingset_refault_anon 37135
[ 2624.303840][ T5091] total_workingset_refault_file 1
[ 2624.309151][ T5091] total_swap 364544
[ 2624.313128][ T5091] total_swapcached 0
[ 2624.321445][ T5091] total_pgpgin 161319
[ 2624.326902][ T5091] total_pgpgout 161319
[ 2624.331097][ T5091] total_pgfault 353883
[ 2624.335192][ T5091] total_pgmajfault 36070
[ 2624.339520][ T5091] total_inactive_anon 0
[ 2624.343694][ T5091] total_active_anon 0
[ 2624.347918][ T5091] total_inactive_file 0
[ 2624.352244][ T5091] total_active_file 0
[ 2624.356419][ T5091] total_unevictable 0
[ 2624.360554][ T5091] anon_cost 0
[ 2624.363980][ T5091] file_cost 0
[ 2624.368455][T16775] bond1557 (unregistering): Released all slaves
[ 2624.377488][ T5091] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=27568,uid=0
[ 2624.394519][ T5091] Memory cgroup out of memory: Killed process 27568 (syz-executor.3) total-vm:54504kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 2624.395752][T16775] bond1556 (unregistering): Released all slaves
19:47:36 executing program 3:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x32}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000280)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000240)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=@newlink={0x48, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0xe403, r2}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @veth={{0x9}, {0x18, 0x2, 0x0, 0x1, @val=@VETH_INFO_PEER={0x14}}}}]}, 0x48}, 0x80029}, 0x0)

[ 2624.483449][T16775] bond1555 (unregistering): Released all slaves
[ 2624.535847][T16775] bond1554 (unregistering): Released all slaves
[ 2624.590356][T16775] bond1553 (unregistering): Released all slaves
[ 2624.649314][T16775] bond1552 (unregistering): Released all slaves
[ 2624.709763][T16775] bond1551 (unregistering): Released all slaves
19:47:36 executing program 1:
socket$kcm(0x10, 0x400000002, 0x0)
socket$inet(0x2, 0x2, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x3, &(0x7f00000000c0)=@framed, &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
write$binfmt_script(r1, &(0x7f0000000480)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r1, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r2 = socket$rxrpc(0x21, 0x2, 0xa)
r3 = syz_genetlink_get_family_id$batadv(&(0x7f0000007580), 0xffffffffffffffff)
sendmsg$BATADV_CMD_SET_HARDIF(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001740)={&(0x7f0000000000)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16, @ANYBLOB="2d0100000000000000000500f6ff08000300"], 0x2c}}, 0x0)
sendmsg$BATADV_CMD_GET_GATEWAYS(0xffffffffffffffff, &(0x7f0000007680)={0x0, 0x0, &(0x7f0000007640)={&(0x7f0000000000)=ANY=[@ANYBLOB="46040000", @ANYRES16=r3, @ANYBLOB="ff83050000076dc6d81b", @ANYRES32=r2], 0x4}}, 0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendfile(r5, r4, 0x0, 0x100000002)

[ 2624.767113][T16775] bond1550 (unregistering): Released all slaves
[ 2624.830200][T16775] bond1549 (unregistering): Released all slaves
[ 2624.880606][T16775] bond1548 (unregistering): Released all slaves
[ 2624.934016][T16775] bond1547 (unregistering): Released all slaves
[ 2624.984764][T16775] bond1546 (unregistering): Released all slaves
[ 2625.038598][T16775] bond1545 (unregistering): Released all slaves
[ 2625.059123][   T28] audit: type=1804 audit(1706039256.711:1964): pid=27575 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir245649211/syzkaller.jQ7tPM/67/cgroup.controllers" dev="sda1" ino=1950 res=1 errno=0
[ 2625.089357][T16775] bond1544 (unregistering): Released all slaves
[ 2625.161156][ T5091] syz-executor.3 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[ 2625.161473][T16775] bond1543 (unregistering): Released all slaves
[ 2625.172801][ T5091] CPU: 0 PID: 5091 Comm: syz-executor.3 Not tainted 6.7.0-syzkaller-12291-g435e202d645c #0
[ 2625.189083][ T5091] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 2625.200011][ T5091] Call Trace:
[ 2625.203489][ T5091]  <TASK>
[ 2625.206440][ T5091]  dump_stack_lvl+0x125/0x1b0
[ 2625.211152][ T5091]  dump_header+0x103/0x900
[ 2625.216072][ T5091]  oom_kill_process+0x270/0xa60
[ 2625.220980][ T5091]  out_of_memory+0x344/0x16c0
[ 2625.225715][ T5091]  ? mutex_trylock+0xa0/0x130
[ 2625.230442][ T5091]  ? oom_killer_disable+0x2d0/0x2d0
[ 2625.235667][ T5091]  ? rcu_read_unlock+0x1c/0x60
[ 2625.240452][ T5091]  mem_cgroup_out_of_memory+0x206/0x270
[ 2625.246008][ T5091]  ? mem_cgroup_margin+0x130/0x130
[ 2625.251210][ T5091]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2625.256601][ T5091]  try_charge_memcg+0xcd1/0x11a0
[ 2625.261558][ T5091]  ? mem_cgroup_handle_over_high+0x570/0x570
[ 2625.267640][ T5091]  ? rcu_read_unlock+0x1c/0x60
[ 2625.272420][ T5091]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2625.277801][ T5091]  ? __radix_tree_lookup+0x21f/0x2c0
[ 2625.283102][ T5091]  mem_cgroup_swapin_charge_folio+0x138/0x380
[ 2625.289186][ T5091]  __read_swap_cache_async+0x4e1/0x600
[ 2625.294659][ T5091]  ? filemap_get_incore_folio+0x160/0x160
[ 2625.300384][ T5091]  ? swp_swap_info+0xcf/0x130
[ 2625.305068][ T5091]  ? swapcache_prepare+0x20/0x20
[ 2625.310025][ T5091]  swap_cluster_readahead+0x4d4/0x710
[ 2625.315411][ T5091]  ? read_swap_cache_async+0x1a0/0x1a0
[ 2625.320875][ T5091]  ? reacquire_held_locks+0x410/0x4c0
[ 2625.328077][ T5091]  ? xas_descend+0x141/0x4e0
[ 2625.332692][ T5091]  ? filemap_get_entry+0x23e/0x460
[ 2625.338180][ T5091]  swapin_readahead+0x132/0xe60
[ 2625.343043][ T5091]  ? get_swap_device+0x363/0x5e0
[ 2625.347990][ T5091]  ? exit_swap_address_space+0x250/0x250
[ 2625.353665][ T5091]  ? __filemap_get_folio+0x2b0/0xaa0
[ 2625.358966][ T5091]  ? swap_cache_get_folio+0x1dc/0x460
[ 2625.364362][ T5091]  ? get_swap_device+0x245/0x5e0
[ 2625.369753][ T5091]  ? free_pages_and_swap_cache+0xa0/0xa0
[ 2625.375609][ T5091]  ? lock_sync+0x190/0x190
[ 2625.380048][ T5091]  do_swap_page+0x4a6/0x3190
[ 2625.384652][ T5091]  ? rcu_is_watching+0x12/0xb0
[ 2625.389424][ T5091]  ? __pte_offset_map+0x1b9/0x540
[ 2625.394451][ T5091]  ? unmap_mapping_folio+0x3b0/0x3b0
[ 2625.399743][ T5091]  ? pte_offset_map_nolock+0xfa/0x1b0
[ 2625.405119][ T5091]  ? __pte_offset_map+0x540/0x540
[ 2625.410156][ T5091]  __handle_mm_fault+0x13a0/0x4900
[ 2625.415283][ T5091]  ? clear_huge_page+0x2e0/0x2e0
[ 2625.420241][ T5091]  ? lock_mm_and_find_vma+0x580/0x580
[ 2625.425624][ T5091]  handle_mm_fault+0x47a/0xa10
[ 2625.430490][ T5091]  do_user_addr_fault+0x30b/0x1030
[ 2625.435609][ T5091]  ? irqentry_enter_from_user_mode+0x5f/0xc0
[ 2625.441612][ T5091]  exc_page_fault+0x5d/0xc0
[ 2625.446133][ T5091]  asm_exc_page_fault+0x26/0x30
[ 2625.450993][ T5091] RIP: 0033:0x7f212b0a3c15
[ 2625.455414][ T5091] Code: 00 00 f0 83 88 08 03 00 00 10 64 48 8b 3c 25 00 03 00 00 e8 1d 13 00 00 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 83 e7 02 74 0b <c3> 66 2e 0f 1f 84 00 00 00 00 00 64 48 8b 04 25 10 00 00 00 8b 90
[ 2625.475029][ T5091] RSP: 002b:00007ffc7b20bb08 EFLAGS: 00010297
[ 2625.481100][ T5091] RAX: 0000000000000002 RBX: 0000000000002910 RCX: 0000000000000000
[ 2625.489072][ T5091] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000555555796788
[ 2625.497044][ T5091] RBP: 00007ffc7b20bbdc R08: 0000000000000000 R09: 0000000000000001
[ 2625.505018][ T5091] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000032
[ 2625.512989][ T5091] R13: 0000000000280c09 R14: 0000000000280c09 R15: 0000000000000000
[ 2625.520986][ T5091]  </TASK>
[ 2625.536863][T16775] bond1542 (unregistering): Released all slaves
[ 2625.558831][ T5091] memory: usage 307200kB, limit 307200kB, failcnt 125763
[ 2625.569337][T16775] bond1541 (unregistering): Released all slaves
[ 2625.594369][T16775] bond1540 (unregistering): Released all slaves
[ 2625.606793][ T5091] memory+swap: usage 307596kB, limit 9007199254740988kB, failcnt 0
[ 2625.618622][T16775] bond1539 (unregistering): Released all slaves
[ 2625.640350][ T5091] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[ 2625.648674][ T5091] Memory cgroup stats for /syz3:
[ 2625.648835][ T5091] cache 0
[ 2625.650637][T16775] bond1538 (unregistering): Released all slaves
[ 2625.663852][ T5091] rss 0
[ 2625.667358][ T5091] rss_huge 0
[ 2625.672342][ T5091] shmem 0
[ 2625.675679][ T5091] mapped_file 0
[ 2625.681895][ T5091] dirty 0
[ 2625.700385][ T5091] writeback 0
[ 2625.703736][ T5091] workingset_refault_anon 37279
[ 2625.708694][T16775] bond1537 (unregistering): Released all slaves
[ 2625.718335][ T5091] workingset_refault_file 1
[ 2625.725177][ T5091] swap 405504
[ 2625.733737][ T5091] swapcached 0
[ 2625.739320][T16775] bond1536 (unregistering): Released all slaves
[ 2625.745635][ T5091] pgpgin 161474
[ 2625.745651][ T5091] pgpgout 161474
[ 2625.745661][ T5091] pgfault 354127
[ 2625.745669][ T5091] pgmajfault 36212
[ 2625.745679][ T5091] inactive_anon 0
19:47:37 executing program 1:
socket$kcm(0x10, 0x400000002, 0x0)
socket$inet(0x2, 0x2, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
write$binfmt_script(r1, &(0x7f0000000480)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r1, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r2 = syz_genetlink_get_family_id$batadv(&(0x7f0000007580), 0xffffffffffffffff)
sendmsg$BATADV_CMD_SET_HARDIF(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001740)={&(0x7f0000000000)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16, @ANYBLOB="2d0100000000000000000500f6ff08000300", @ANYRES32=r0], 0x2c}}, 0x0)
sendmsg$BATADV_CMD_GET_GATEWAYS(0xffffffffffffffff, &(0x7f0000007680)={0x0, 0x0, &(0x7f0000007640)={&(0x7f0000000000)=ANY=[@ANYBLOB="46040000", @ANYRES16=r2, @ANYBLOB="ff83050000076dc6d81b", @ANYRES32], 0x4}}, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendfile(r4, r3, 0x0, 0x100000002)

[ 2625.745689][ T5091] active_anon 0
[ 2625.777786][ T5091] inactive_file 0
[ 2625.781589][ T5091] active_file 0
[ 2625.785146][ T5091] unevictable 0
[ 2625.789403][ T5091] hierarchical_memory_limit 314572800
[ 2625.814700][T16775] bond1535 (unregistering): Released all slaves
[ 2625.817264][ T5091] hierarchical_memsw_limit 9223372036854771712
[ 2625.836822][ T5091] total_cache 0
[ 2625.841019][ T5091] total_rss 0
[ 2625.844344][ T5091] total_rss_huge 0
[ 2625.856612][ T5091] total_shmem 0
[ 2625.860138][ T5091] total_mapped_file 0
[ 2625.864236][ T5091] total_dirty 0
[ 2625.878670][ T5091] total_writeback 0
[ 2625.878758][T16775] bond1534 (unregistering): Released all slaves
[ 2625.882679][ T5091] total_workingset_refault_anon 37279
[ 2625.905591][ T5091] total_workingset_refault_file 1
[ 2625.915334][ T5091] total_swap 405504
[ 2625.927257][T16775] bond1533 (unregistering): Released all slaves
[ 2625.945740][ T5091] total_swapcached 0
[ 2625.956234][ T5091] total_pgpgin 161474
[ 2625.956427][T16775] bond1532 (unregistering): Released all slaves
[ 2625.960247][ T5091] total_pgpgout 161474
[ 2625.960260][ T5091] total_pgfault 354127
[ 2625.996271][ T5091] total_pgmajfault 36212
[ 2625.998776][T16775] bond1531 (unregistering): Released all slaves
[ 2626.000566][ T5091] total_inactive_anon 0
[ 2626.026185][ T5091] total_active_anon 0
[ 2626.030230][ T5091] total_inactive_file 0
[ 2626.034407][ T5091] total_active_file 0
[ 2626.050119][ T5091] total_unevictable 0
[ 2626.056375][ T5091] anon_cost 0
[ 2626.058016][T16775] bond1530 (unregistering): Released all slaves
[ 2626.059844][ T5091] file_cost 0
[ 2626.074632][ T5091] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=27573,uid=0
[ 2626.092891][   T28] audit: type=1804 audit(1706039257.741:1965): pid=27578 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir245649211/syzkaller.jQ7tPM/68/cgroup.controllers" dev="sda1" ino=1950 res=1 errno=0
[ 2626.124229][ T5091] Memory cgroup out of memory: Killed process 27573 (syz-executor.3) total-vm:54504kB, anon-rss:380kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 2626.150100][T16775] bond1529 (unregistering): Released all slaves
19:47:37 executing program 3:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x32}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000280)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000240)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=@newlink={0x48, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0xe403, r2}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @veth={{0x9}, {0x18, 0x2, 0x0, 0x1, @val=@VETH_INFO_PEER={0x14}}}}]}, 0x48}, 0x8002a}, 0x0)

[ 2626.223358][T16775] bond1528 (unregistering): Released all slaves
[ 2626.293341][T16775] bond1527 (unregistering): Released all slaves
[ 2626.366601][T16775] bond1526 (unregistering): Released all slaves
[ 2626.398270][T16775] bond1525 (unregistering): Released all slaves
[ 2626.445213][T16775] bond1524 (unregistering): Released all slaves
[ 2626.496229][T16775] bond1523 (unregistering): Released all slaves
[ 2626.541579][T16775] bond1522 (unregistering): Released all slaves
[ 2626.593127][T16775] bond1521 (unregistering): Released all slaves
[ 2626.639935][T16775] bond1520 (unregistering): Released all slaves
[ 2626.680953][T27580] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2626.701201][T27580] CPU: 0 PID: 27580 Comm: syz-executor.3 Not tainted 6.7.0-syzkaller-12291-g435e202d645c #0
[ 2626.712201][T27580] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 2626.723569][T27580] Call Trace:
[ 2626.727111][T27580]  <TASK>
[ 2626.730305][T27580]  dump_stack_lvl+0x125/0x1b0
[ 2626.735194][T27580]  dump_header+0x103/0x900
[ 2626.739641][T27580]  oom_kill_process+0x270/0xa60
[ 2626.747187][T27580]  out_of_memory+0x344/0x16c0
[ 2626.751895][T27580]  ? oom_killer_disable+0x2d0/0x2d0
[ 2626.757109][T27580]  ? rcu_read_unlock+0x1c/0x60
[ 2626.761950][T27580]  mem_cgroup_out_of_memory+0x206/0x270
[ 2626.767536][T27580]  ? mem_cgroup_margin+0x130/0x130
[ 2626.772681][T27580]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2626.778099][T27580]  try_charge_memcg+0xcd1/0x11a0
[ 2626.783081][T27580]  ? mem_cgroup_handle_over_high+0x570/0x570
[ 2626.789082][T27580]  ? get_mem_cgroup_from_objcg+0xb5/0x2a0
[ 2626.794982][T27580]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2626.800361][T27580]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2626.805751][T27580]  __memcg_kmem_charge_page+0xdd/0x2a0
[ 2626.811228][T27580]  memcg_charge_kernel_stack+0xc3/0x1f0
[ 2626.816786][T27580]  copy_process+0x1532/0x97b0
[ 2626.821476][T27580]  ? hlock_class+0x4e/0x130
[ 2626.825987][T27580]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2626.831986][T27580]  ? page_ext_put+0x43/0xd0
[ 2626.836499][T27580]  ? hlock_class+0x4e/0x130
[ 2626.841023][T27580]  ? pidfd_prepare+0x80/0x80
[ 2626.845625][T27580]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2626.851005][T27580]  ? preempt_count_sub+0x160/0x160
[ 2626.856129][T27580]  ? __lock_acquire+0x1502/0x3b30
[ 2626.861190][T27580]  ? __might_fault+0xe6/0x1a0
[ 2626.865913][T27580]  ? _copy_from_user+0x5d/0xf0
[ 2626.870708][T27580]  kernel_clone+0xfd/0x930
[ 2626.875401][T27580]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2626.881424][T27580]  ? create_io_thread+0xe0/0xe0
[ 2626.886328][T27580]  ? find_held_lock+0x2d/0x110
[ 2626.891150][T27580]  __do_sys_clone3+0x1f1/0x260
[ 2626.895954][T27580]  ? __do_sys_clone+0x100/0x100
[ 2626.901124][T27580]  do_syscall_64+0xd3/0x250
[ 2626.905668][T27580]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 2626.911581][T27580] RIP: 0033:0x7f212b0a8b99
[ 2626.916001][T27580] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 2626.935739][T27580] RSP: 002b:00007ffc7b20b738 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 2626.944164][T27580] RAX: ffffffffffffffda RBX: 00007f212b051270 RCX: 00007f212b0a8b99
[ 2626.952210][T27580] RDX: 00007f212b051270 RSI: 0000000000000058 RDI: 00007ffc7b20b780
[ 2626.960383][T27580] RBP: 00007f212be566c0 R08: 00007f212be566c0 R09: 00007ffc7b20b867
[ 2626.968381][T27580] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 2626.976403][T27580] R13: 000000000000000b R14: 00007ffc7b20b780 R15: 00007ffc7b20b868
[ 2626.984393][T27580]  </TASK>
[ 2626.995744][T27580] memory: usage 307200kB, limit 307200kB, failcnt 126007
[ 2627.018537][T16775] bond1519 (unregistering): Released all slaves
[ 2627.019484][T27580] memory+swap: usage 307580kB, limit 9007199254740988kB, failcnt 0
19:47:38 executing program 1:
socket$kcm(0x10, 0x400000002, 0x0)
socket$inet(0x2, 0x2, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
write$binfmt_script(r0, &(0x7f0000000480)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r1 = socket$rxrpc(0x21, 0x2, 0xa)
r2 = syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$BATADV_CMD_SET_HARDIF(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001740)={&(0x7f0000000000)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16, @ANYBLOB="2d0100000000000000000500f6ff08000300", @ANYRES32], 0x2c}}, 0x0)
sendmsg$BATADV_CMD_GET_GATEWAYS(0xffffffffffffffff, &(0x7f0000007680)={0x0, 0x0, &(0x7f0000007640)={&(0x7f0000000000)=ANY=[@ANYBLOB="46040000", @ANYRES16=r2, @ANYBLOB="ff83050000076dc6d81b", @ANYRES32=r1], 0x4}}, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendfile(r4, r3, 0x0, 0x100000002)

[ 2627.039322][T27580] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0
[ 2627.058607][T27580] Memory cgroup stats for /syz3:
[ 2627.058791][T27580] cache 0
[ 2627.071949][T16775] bond1518 (unregistering): Released all slaves
[ 2627.077260][T27580] rss 12288
[ 2627.099063][T27580] rss_huge 0
[ 2627.102174][T16775] bond1517 (unregistering): Released all slaves
[ 2627.106258][T27580] shmem 0
[ 2627.116200][T27580] mapped_file 0
[ 2627.126161][T27580] dirty 0
[ 2627.131677][T27580] writeback 0
[ 2627.133970][T16775] bond1516 (unregistering): Released all slaves
[ 2627.146579][T27580] workingset_refault_anon 37386
[ 2627.151626][T27580] workingset_refault_file 1
[ 2627.166734][T27580] swap 389120
[ 2627.170875][T27580] swapcached 8192
[ 2627.185482][T27580] pgpgin 161592
[ 2627.192311][T16775] bond1515 (unregistering): Released all slaves
[ 2627.194935][T27580] pgpgout 161589
[ 2627.203559][T27580] pgfault 354292
[ 2627.210822][T27580] pgmajfault 36294
[ 2627.214741][T27580] inactive_anon 4096
[ 2627.219332][T27580] active_anon 8192
[ 2627.223263][T27580] inactive_file 0
[ 2627.229936][T27580] active_file 0
[ 2627.236594][T27580] unevictable 0
[ 2627.241308][T27580] hierarchical_memory_limit 314572800
[ 2627.248547][T27580] hierarchical_memsw_limit 9223372036854771712
[ 2627.254905][T27580] total_cache 0
[ 2627.258891][T16775] bond1514 (unregistering): Released all slaves
[ 2627.266778][T27580] total_rss 12288
[ 2627.273935][T27580] total_rss_huge 0
[ 2627.282793][T27580] total_shmem 0
[ 2627.294489][T27580] total_mapped_file 0
[ 2627.302969][T27580] total_dirty 0
[ 2627.308408][T16775] bond1513 (unregistering): Released all slaves
[ 2627.311417][T27580] total_writeback 0
[ 2627.328736][T27580] total_workingset_refault_anon 37386
[ 2627.341282][T27580] total_workingset_refault_file 1
[ 2627.351811][T27580] total_swap 389120
[ 2627.359006][T16775] bond1512 (unregistering): Released all slaves
[ 2627.360181][T27580] total_swapcached 8192
[ 2627.374595][   T28] audit: type=1804 audit(1706039259.021:1966): pid=27582 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir245649211/syzkaller.jQ7tPM/69/cgroup.controllers" dev="sda1" ino=1950 res=1 errno=0
[ 2627.397944][T27580] total_pgpgin 161592
[ 2627.405261][T27580] total_pgpgout 161589
[ 2627.408908][T16775] bond1511 (unregistering): Released all slaves
[ 2627.416632][T27580] total_pgfault 354292
[ 2627.433909][T27580] total_pgmajfault 36294
[ 2627.438961][T27580] total_inactive_anon 4096
[ 2627.440905][T16775] bond1510 (unregistering): Released all slaves
[ 2627.444907][T27580] total_active_anon 8192
[ 2627.454254][T27580] total_inactive_file 0
[ 2627.458584][T27580] total_active_file 0
[ 2627.462662][T27580] total_unevictable 0
[ 2627.467939][T27580] anon_cost 0
[ 2627.471611][T27580] file_cost 0
[ 2627.477073][T27580] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=27580,uid=0
19:47:39 executing program 3:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x32}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000280)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000240)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=@newlink={0x48, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0xe403, r2}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @veth={{0x9}, {0x18, 0x2, 0x0, 0x1, @val=@VETH_INFO_PEER={0x14}}}}]}, 0x48}, 0x8002b}, 0x0)

[ 2627.494015][T27580] Memory cgroup out of memory: Killed process 27580 (syz-executor.3) total-vm:54504kB, anon-rss:380kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 2627.513810][T16775] bond1509 (unregistering): Released all slaves
[ 2627.600563][T16775] bond1508 (unregistering): Released all slaves
[ 2627.655316][T16775] bond1507 (unregistering): Released all slaves
[ 2627.712916][T16775] bond1506 (unregistering): Released all slaves
[ 2627.758809][T16775] bond1505 (unregistering): Released all slaves
[ 2627.822460][T16775] bond1504 (unregistering): Released all slaves
[ 2627.852802][T16775] bond1503 (unregistering): Released all slaves
[ 2627.920545][T16775] bond1502 (unregistering): Released all slaves
[ 2627.939681][T27584] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2627.951860][T27584] CPU: 0 PID: 27584 Comm: syz-executor.3 Not tainted 6.7.0-syzkaller-12291-g435e202d645c #0
[ 2627.961969][T27584] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 2627.972163][T27584] Call Trace:
[ 2627.975962][T27584]  <TASK>
[ 2627.978905][T27584]  dump_stack_lvl+0x125/0x1b0
[ 2627.983602][T27584]  dump_header+0x103/0x900
[ 2627.988146][T27584]  oom_kill_process+0x270/0xa60
[ 2627.993054][T27584]  out_of_memory+0x344/0x16c0
[ 2627.997796][T27584]  ? oom_killer_disable+0x2d0/0x2d0
[ 2628.003039][T27584]  ? rcu_read_unlock+0x1c/0x60
[ 2628.008457][T27584]  mem_cgroup_out_of_memory+0x206/0x270
[ 2628.014134][T27584]  ? mem_cgroup_margin+0x130/0x130
[ 2628.019290][T27584]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2628.024717][T27584]  try_charge_memcg+0xcd1/0x11a0
[ 2628.029798][T27584]  ? mem_cgroup_handle_over_high+0x570/0x570
[ 2628.035806][T27584]  ? get_mem_cgroup_from_objcg+0xb5/0x2a0
[ 2628.041548][T27584]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2628.046963][T27584]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2628.052372][T27584]  __memcg_kmem_charge_page+0xdd/0x2a0
[ 2628.057850][T27584]  memcg_charge_kernel_stack+0xc3/0x1f0
[ 2628.063448][T27584]  copy_process+0x1532/0x97b0
[ 2628.068179][T27584]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2628.074203][T27584]  ? page_ext_put+0x43/0xd0
[ 2628.078739][T27584]  ? hlock_class+0x4e/0x130
[ 2628.083294][T27584]  ? pidfd_prepare+0x80/0x80
[ 2628.087925][T27584]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2628.093459][T27584]  ? preempt_count_sub+0x160/0x160
[ 2628.098636][T27584]  ? print_usage_bug.part.0+0x550/0x550
[ 2628.104260][T27584]  ? __might_fault+0xe6/0x1a0
[ 2628.109176][T27584]  ? _copy_from_user+0x5d/0xf0
[ 2628.113986][T27584]  kernel_clone+0xfd/0x930
[ 2628.118446][T27584]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2628.124475][T27584]  ? create_io_thread+0xe0/0xe0
[ 2628.129383][T27584]  ? find_held_lock+0x2d/0x110
[ 2628.134228][T27584]  __do_sys_clone3+0x1f1/0x260
[ 2628.139027][T27584]  ? __do_sys_clone+0x100/0x100
[ 2628.143967][T27584]  do_syscall_64+0xd3/0x250
[ 2628.148510][T27584]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 2628.154609][T27584] RIP: 0033:0x7f212b0a8b99
[ 2628.159049][T27584] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 2628.178873][T27584] RSP: 002b:00007ffc7b20b738 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 2628.187502][T27584] RAX: ffffffffffffffda RBX: 00007f212b051270 RCX: 00007f212b0a8b99
[ 2628.195502][T27584] RDX: 00007f212b051270 RSI: 0000000000000058 RDI: 00007ffc7b20b780
[ 2628.203524][T27584] RBP: 00007f212be566c0 R08: 00007f212be566c0 R09: 00007ffc7b20b867
[ 2628.211536][T27584] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 2628.219548][T27584] R13: 000000000000000b R14: 00007ffc7b20b780 R15: 00007ffc7b20b868
[ 2628.227565][T27584]  </TASK>
[ 2628.234354][T16775] bond1501 (unregistering): Released all slaves
19:47:39 executing program 1:
socket$kcm(0x10, 0x400000002, 0x0)
socket$inet(0x2, 0x2, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
write$binfmt_script(r0, &(0x7f0000000480)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x10, r0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r1 = socket$rxrpc(0x21, 0x2, 0xa)
r2 = syz_genetlink_get_family_id$batadv(&(0x7f0000007580), 0xffffffffffffffff)
sendmsg$BATADV_CMD_SET_HARDIF(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001740)={&(0x7f0000000000)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16, @ANYBLOB="2d0100000000000000000500f6ff08000300", @ANYRES32], 0x2c}}, 0x0)
sendmsg$BATADV_CMD_GET_GATEWAYS(0xffffffffffffffff, &(0x7f0000007680)={0x0, 0x0, &(0x7f0000007640)={&(0x7f0000000000)=ANY=[@ANYBLOB="46040000", @ANYRES16=r2, @ANYBLOB="ff83050000076dc6d81b", @ANYRES32=r1], 0x4}}, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendfile(r4, r3, 0x0, 0x100000002)

[ 2628.273465][T27584] memory: usage 307200kB, limit 307200kB, failcnt 126356
[ 2628.306047][T27584] memory+swap: usage 307608kB, limit 9007199254740988kB, failcnt 0
[ 2628.314011][T27584] kmem: usage 307184kB, limit 9007199254740988kB, failcnt 0
[ 2628.323227][T16775] bond1500 (unregistering): Released all slaves
[ 2628.346585][T27584] Memory cgroup stats for /syz3:
[ 2628.346770][T27584] cache 0
[ 2628.354676][T27584] rss 0
[ 2628.359361][T27584] rss_huge 0
[ 2628.362607][T27584] shmem 0
[ 2628.369017][T16775] bond1499 (unregistering): Released all slaves
[ 2628.374002][T27584] mapped_file 0
[ 2628.396169][T27584] dirty 0
[ 2628.402709][T27584] writeback 0
[ 2628.409528][T16775] bond1498 (unregistering): Released all slaves
[ 2628.416010][T27584] workingset_refault_anon 37532
[ 2628.420887][T27584] workingset_refault_file 1
[ 2628.425414][T27584] swap 434176
[ 2628.436019][T27584] swapcached 0
[ 2628.439456][T27584] pgpgin 161749
[ 2628.443547][T27584] pgpgout 161749
[ 2628.452665][T16775] bond1497 (unregistering): Released all slaves
[ 2628.464887][T27584] pgfault 354514
[ 2628.469511][T27584] pgmajfault 36421
[ 2628.473351][T27584] inactive_anon 0
[ 2628.486316][T27584] active_anon 0
[ 2628.489847][T27584] inactive_file 0
[ 2628.493495][T27584] active_file 0
[ 2628.505408][T16775] bond1496 (unregistering): Released all slaves
[ 2628.516299][T27584] unevictable 0
[ 2628.519814][T27584] hierarchical_memory_limit 314572800
[ 2628.525196][T27584] hierarchical_memsw_limit 9223372036854771712
[ 2628.546128][T27584] total_cache 0
[ 2628.549145][T16775] bond1495 (unregistering): Released all slaves
[ 2628.549633][T27584] total_rss 0
[ 2628.549645][T27584] total_rss_huge 0
[ 2628.576599][T27584] total_shmem 0
[ 2628.580131][T27584] total_mapped_file 0
[ 2628.584129][T27584] total_dirty 0
[ 2628.596028][T27584] total_writeback 0
[ 2628.599898][T27584] total_workingset_refault_anon 37532
[ 2628.609607][T16775] bond1494 (unregistering): Released all slaves
[ 2628.617286][T27584] total_workingset_refault_file 1
[ 2628.622354][T27584] total_swap 434176
[ 2628.639513][T27584] total_swapcached 0
[ 2628.643460][T27584] total_pgpgin 161749
[ 2628.653942][T27584] total_pgpgout 161749
[ 2628.666378][T27584] total_pgfault 354514
[ 2628.670507][T27584] total_pgmajfault 36421
[ 2628.674780][T27584] total_inactive_anon 0
[ 2628.685565][T16775] bond1493 (unregistering): Released all slaves
[ 2628.696537][T27584] total_active_anon 0
[ 2628.700579][T27584] total_inactive_file 0
[ 2628.704773][T27584] total_active_file 0
[ 2628.730306][T27584] total_unevictable 0
[ 2628.734385][T27584] anon_cost 0
[ 2628.738615][T27584] file_cost 0
[ 2628.741937][T27584] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=27584,uid=0
[ 2628.760256][T16775] bond1492 (unregistering): Released all slaves
[ 2628.776519][T27584] Memory cgroup out of memory: Killed process 27584 (syz-executor.3) total-vm:54504kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 2628.818207][T16775] bond1491 (unregistering): Released all slaves
[ 2628.879984][T16775] bond1490 (unregistering): Released all slaves
19:47:40 executing program 3:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x32}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000280)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000240)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=@newlink={0x48, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0xe403, r2}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @veth={{0x9}, {0x18, 0x2, 0x0, 0x1, @val=@VETH_INFO_PEER={0x14}}}}]}, 0x48}, 0x8002c}, 0x0)

[ 2628.931185][T16775] bond1489 (unregistering): Released all slaves
[ 2628.988522][T16775] bond1488 (unregistering): Released all slaves
[ 2629.039768][T16775] bond1487 (unregistering): Released all slaves
[ 2629.096330][T26229] Bluetooth: hci3: command 0x0406 tx timeout
[ 2629.110947][ T5094] Bluetooth: hci2: command 0x0406 tx timeout
[ 2629.122509][T16775] bond1486 (unregistering): Released all slaves
[ 2629.148950][T16775] bond1485 (unregistering): Released all slaves
[ 2629.182791][T16775] bond1484 (unregistering): Released all slaves
[ 2629.213394][T16775] bond1483 (unregistering): Released all slaves
[ 2629.285162][T16775] bond1482 (unregistering): Released all slaves
[ 2629.342272][   T28] audit: type=1804 audit(1706039260.991:1967): pid=27587 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir245649211/syzkaller.jQ7tPM/70/cgroup.controllers" dev="sda1" ino=1950 res=1 errno=0
[ 2629.343614][T16775] bond1481 (unregistering): Released all slaves
[ 2629.402726][T27589] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2629.413072][T27589] CPU: 0 PID: 27589 Comm: syz-executor.3 Not tainted 6.7.0-syzkaller-12291-g435e202d645c #0
[ 2629.423350][T27589] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 2629.424204][   T28] audit: type=1800 audit(1706039260.991:1968): pid=27587 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.1" name="cgroup.controllers" dev="sda1" ino=1950 res=0 errno=0
[ 2629.433493][T27589] Call Trace:
[ 2629.433505][T27589]  <TASK>
[ 2629.433515][T27589]  dump_stack_lvl+0x125/0x1b0
[ 2629.433549][T27589]  dump_header+0x103/0x900
[ 2629.471516][T27589]  oom_kill_process+0x270/0xa60
[ 2629.476522][T27589]  out_of_memory+0x344/0x16c0
[ 2629.481259][T27589]  ? oom_killer_disable+0x2d0/0x2d0
[ 2629.486500][T27589]  ? rcu_read_unlock+0x1c/0x60
[ 2629.491314][T27589]  mem_cgroup_out_of_memory+0x206/0x270
[ 2629.496893][T27589]  ? mem_cgroup_margin+0x130/0x130
[ 2629.502045][T27589]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2629.507461][T27589]  try_charge_memcg+0xcd1/0x11a0
[ 2629.512432][T27589]  ? mem_cgroup_handle_over_high+0x570/0x570
[ 2629.518425][T27589]  ? get_mem_cgroup_from_objcg+0xb5/0x2a0
[ 2629.524149][T27589]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2629.529533][T27589]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2629.534924][T27589]  __memcg_kmem_charge_page+0xdd/0x2a0
[ 2629.540403][T27589]  memcg_charge_kernel_stack+0xc3/0x1f0
[ 2629.545973][T27589]  copy_process+0x527/0x97b0
[ 2629.550625][T27589]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2629.556612][T27589]  ? page_ext_put+0x43/0xd0
[ 2629.561133][T27589]  ? pidfd_prepare+0x80/0x80
[ 2629.565764][T27589]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2629.571330][T27589]  ? preempt_count_sub+0x160/0x160
[ 2629.576448][T27589]  ? print_usage_bug.part.0+0x550/0x550
[ 2629.582009][T27589]  ? __might_fault+0xe6/0x1a0
[ 2629.586708][T27589]  ? _copy_from_user+0x5d/0xf0
[ 2629.591490][T27589]  kernel_clone+0xfd/0x930
[ 2629.596200][T27589]  ? create_io_thread+0xe0/0xe0
[ 2629.601086][T27589]  __do_sys_clone3+0x1f1/0x260
[ 2629.605859][T27589]  ? __do_sys_clone+0x100/0x100
[ 2629.610733][T27589]  ? do_user_addr_fault+0x663/0x1030
[ 2629.616050][T27589]  do_syscall_64+0xd3/0x250
[ 2629.620569][T27589]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 2629.626467][T27589] RIP: 0033:0x7f212b0a8b99
[ 2629.630887][T27589] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
19:47:41 executing program 1:
socket$kcm(0x10, 0x400000002, 0x0)
socket$inet(0x2, 0x2, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
write$binfmt_script(r0, &(0x7f0000000480)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x10, r0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r1 = socket$rxrpc(0x21, 0x2, 0xa)
r2 = syz_genetlink_get_family_id$batadv(&(0x7f0000007580), 0xffffffffffffffff)
sendmsg$BATADV_CMD_SET_HARDIF(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001740)={&(0x7f0000000000)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16, @ANYBLOB="2d0100000000000000000500f6ff08000300", @ANYRES32], 0x2c}}, 0x0)
sendmsg$BATADV_CMD_GET_GATEWAYS(0xffffffffffffffff, &(0x7f0000007680)={0x0, 0x0, &(0x7f0000007640)={&(0x7f0000000000)=ANY=[@ANYBLOB="46040000", @ANYRES16=r2, @ANYBLOB="ff83050000076dc6d81b", @ANYRES32=r1], 0x4}}, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendfile(r4, r3, 0x0, 0x100000002)

[ 2629.650508][T27589] RSP: 002b:00007ffc7b20b738 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 2629.658932][T27589] RAX: ffffffffffffffda RBX: 00007f212b051270 RCX: 00007f212b0a8b99
[ 2629.666908][T27589] RDX: 00007f212b051270 RSI: 0000000000000058 RDI: 00007ffc7b20b780
[ 2629.674885][T27589] RBP: 00007f212be566c0 R08: 00007f212be566c0 R09: 00007ffc7b20b867
[ 2629.682864][T27589] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 2629.690866][T27589] R13: 000000000000000b R14: 00007ffc7b20b780 R15: 00007ffc7b20b868
[ 2629.698865][T27589]  </TASK>
[ 2629.766973][T27589] memory: usage 307184kB, limit 307200kB, failcnt 126704
[ 2629.774072][T27589] memory+swap: usage 307532kB, limit 9007199254740988kB, failcnt 0
[ 2629.787419][T16775] bond1480 (unregistering): Released all slaves
[ 2629.806162][T27589] kmem: usage 307184kB, limit 9007199254740988kB, failcnt 0
[ 2629.813507][T27589] Memory cgroup stats for /syz3:
[ 2629.813680][T27589] cache 0
[ 2629.834315][T27589] rss 0
[ 2629.836809][T16775] bond1479 (unregistering): Released all slaves
[ 2629.846282][T27589] rss_huge 0
[ 2629.849527][T27589] shmem 0
[ 2629.852474][T27589] mapped_file 0
[ 2629.866619][T27589] dirty 0
[ 2629.869624][T27589] writeback 0
[ 2629.872924][T27589] workingset_refault_anon 37643
[ 2629.880593][T16775] bond1478 (unregistering): Released all slaves
[ 2629.906253][T27589] workingset_refault_file 1
[ 2629.910822][T27589] swap 356352
[ 2629.914132][T27589] swapcached 0
[ 2629.930090][T16775] bond1477 (unregistering): Released all slaves
[ 2629.936163][T27589] pgpgin 161871
[ 2629.939978][T27589] pgpgout 161871
[ 2629.943541][T27589] pgfault 354705
[ 2629.970786][T27589] pgmajfault 36525
[ 2629.974742][T27589] inactive_anon 0
[ 2629.986089][T27589] active_anon 0
[ 2629.988397][T16775] bond1476 (unregistering): Released all slaves
[ 2629.989582][T27589] inactive_file 0
[ 2629.989594][T27589] active_file 0
[ 2630.025515][T27589] unevictable 0
[ 2630.029603][T27589] hierarchical_memory_limit 314572800
[ 2630.035049][T27589] hierarchical_memsw_limit 9223372036854771712
[ 2630.038223][T16775] bond1475 (unregistering): Released all slaves
[ 2630.056556][T27589] total_cache 0
[ 2630.060438][T27589] total_rss 0
[ 2630.063755][T27589] total_rss_huge 0
[ 2630.076303][T27589] total_shmem 0
[ 2630.079822][T27589] total_mapped_file 0
[ 2630.083809][T27589] total_dirty 0
[ 2630.096026][T27589] total_writeback 0
[ 2630.100152][T27589] total_workingset_refault_anon 37643
[ 2630.105547][T27589] total_workingset_refault_file 1
[ 2630.113316][T16775] bond1474 (unregistering): Released all slaves
[ 2630.126576][T27589] total_swap 356352
[ 2630.130439][T27589] total_swapcached 0
[ 2630.134359][T27589] total_pgpgin 161871
[ 2630.156196][T27589] total_pgpgout 161871
[ 2630.160326][T27589] total_pgfault 354705
[ 2630.162569][T16775] bond1473 (unregistering): Released all slaves
[ 2630.164387][T27589] total_pgmajfault 36525
[ 2630.164399][T27589] total_inactive_anon 0
[ 2630.205694][T27589] total_active_anon 0
[ 2630.217249][T16775] bond1472 (unregistering): Released all slaves
[ 2630.236093][T27589] total_inactive_file 0
[ 2630.240310][T27589] total_active_file 0
[ 2630.245516][T27589] total_unevictable 0
[ 2630.283742][T27589] anon_cost 0
[ 2630.287606][T27589] file_cost 0
[ 2630.290923][T27589] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=27589,uid=0
[ 2630.313442][T16775] bond1471 (unregistering): Released all slaves
[ 2630.334369][T27589] Memory cgroup out of memory: Killed process 27589 (syz-executor.3) total-vm:54504kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 2630.355809][T16775] bond1470 (unregistering): Released all slaves
[ 2630.408502][T16775] bond1469 (unregistering): Released all slaves
[ 2630.484401][T16775] bond1468 (unregistering): Released all slaves
19:47:42 executing program 3:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x32}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000280)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000240)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=@newlink={0x48, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0xe403, r2}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @veth={{0x9}, {0x18, 0x2, 0x0, 0x1, @val=@VETH_INFO_PEER={0x14}}}}]}, 0x48}, 0x8002d}, 0x0)

[ 2630.547958][T16775] bond1467 (unregistering): Released all slaves
[ 2630.598563][T16775] bond1466 (unregistering): Released all slaves
[ 2630.648591][T16775] bond1465 (unregistering): Released all slaves
[ 2630.699140][T16775] bond1464 (unregistering): Released all slaves
[ 2630.757652][T16775] bond1463 (unregistering): Released all slaves
[ 2630.807802][T16775] bond1462 (unregistering): Released all slaves
[ 2630.867584][T16775] bond1461 (unregistering): Released all slaves
[ 2630.913235][T16775] bond1460 (unregistering): Released all slaves
[ 2630.932127][   T28] audit: type=1804 audit(1706039262.581:1969): pid=27593 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir245649211/syzkaller.jQ7tPM/71/cgroup.controllers" dev="sda1" ino=1950 res=1 errno=0
19:47:42 executing program 1:
socket$kcm(0x10, 0x400000002, 0x0)
socket$inet(0x2, 0x2, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x3, &(0x7f00000000c0)=@framed, &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
write$binfmt_script(r1, &(0x7f0000000480)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r1, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r2 = socket$rxrpc(0x21, 0x2, 0xa)
r3 = syz_genetlink_get_family_id$batadv(&(0x7f0000007580), 0xffffffffffffffff)
sendmsg$BATADV_CMD_SET_HARDIF(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001740)={0x0, 0x2c}}, 0x0)
sendmsg$BATADV_CMD_GET_GATEWAYS(0xffffffffffffffff, &(0x7f0000007680)={0x0, 0x0, &(0x7f0000007640)={&(0x7f0000000000)=ANY=[@ANYBLOB="46040000", @ANYRES16=r3, @ANYBLOB="ff83050000076dc6d81b", @ANYRES32=r2], 0x4}}, 0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendfile(r5, r4, 0x0, 0x100000002)

[ 2630.983018][ T5091] syz-executor.3 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[ 2630.997373][T16775] bond1459 (unregistering): Released all slaves
[ 2631.006283][ T5091] CPU: 1 PID: 5091 Comm: syz-executor.3 Not tainted 6.7.0-syzkaller-12291-g435e202d645c #0
[ 2631.016312][ T5091] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 2631.026487][ T5091] Call Trace:
[ 2631.029796][ T5091]  <TASK>
[ 2631.032760][ T5091]  dump_stack_lvl+0x125/0x1b0
[ 2631.037497][ T5091]  dump_header+0x103/0x900
[ 2631.041983][ T5091]  oom_kill_process+0x270/0xa60
[ 2631.046898][ T5091]  out_of_memory+0x344/0x16c0
[ 2631.051616][ T5091]  ? mutex_trylock+0xa0/0x130
[ 2631.056340][ T5091]  ? oom_killer_disable+0x2d0/0x2d0
[ 2631.061575][ T5091]  ? rcu_read_unlock+0x1c/0x60
[ 2631.066383][ T5091]  mem_cgroup_out_of_memory+0x206/0x270
[ 2631.071970][ T5091]  ? mem_cgroup_margin+0x130/0x130
[ 2631.077112][ T5091]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2631.082532][ T5091]  try_charge_memcg+0xcd1/0x11a0
[ 2631.090219][ T5091]  ? mem_cgroup_handle_over_high+0x570/0x570
[ 2631.096315][ T5091]  ? rcu_read_unlock+0x1c/0x60
[ 2631.101145][ T5091]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2631.106594][ T5091]  ? __radix_tree_lookup+0x21f/0x2c0
[ 2631.111931][ T5091]  mem_cgroup_swapin_charge_folio+0x138/0x380
[ 2631.118241][ T5091]  __read_swap_cache_async+0x4e1/0x600
[ 2631.123827][ T5091]  ? filemap_get_incore_folio+0x160/0x160
[ 2631.129583][ T5091]  ? swp_swap_info+0xcf/0x130
[ 2631.134293][ T5091]  ? swapcache_prepare+0x20/0x20
[ 2631.139271][ T5091]  swap_cluster_readahead+0x3e6/0x710
[ 2631.144682][ T5091]  ? read_swap_cache_async+0x1a0/0x1a0
[ 2631.150169][ T5091]  ? reacquire_held_locks+0x410/0x4c0
[ 2631.155566][ T5091]  ? xas_descend+0x141/0x4e0
[ 2631.160216][ T5091]  ? filemap_get_entry+0x23e/0x460
[ 2631.165371][ T5091]  swapin_readahead+0x132/0xe60
[ 2631.170268][ T5091]  ? get_swap_device+0x363/0x5e0
[ 2631.175240][ T5091]  ? exit_swap_address_space+0x250/0x250
[ 2631.180905][ T5091]  ? __filemap_get_folio+0x2b0/0xaa0
[ 2631.186237][ T5091]  ? swap_cache_get_folio+0x1dc/0x460
[ 2631.191636][ T5091]  ? get_swap_device+0x245/0x5e0
[ 2631.197143][ T5091]  ? free_pages_and_swap_cache+0xa0/0xa0
[ 2631.202815][ T5091]  ? lock_sync+0x190/0x190
[ 2631.207275][ T5091]  do_swap_page+0x4a6/0x3190
[ 2631.211900][ T5091]  ? rcu_is_watching+0x12/0xb0
[ 2631.216700][ T5091]  ? __pte_offset_map+0x1b9/0x540
[ 2631.221777][ T5091]  ? unmap_mapping_folio+0x3b0/0x3b0
[ 2631.227094][ T5091]  ? pte_offset_map_nolock+0xfa/0x1b0
[ 2631.232509][ T5091]  ? __pte_offset_map+0x540/0x540
[ 2631.237575][ T5091]  __handle_mm_fault+0x13a0/0x4900
[ 2631.242727][ T5091]  ? clear_huge_page+0x2e0/0x2e0
[ 2631.247716][ T5091]  ? lock_mm_and_find_vma+0x580/0x580
[ 2631.253114][ T5091]  ? do_user_addr_fault+0x663/0x1030
[ 2631.258436][ T5091]  handle_mm_fault+0x47a/0xa10
[ 2631.263238][ T5091]  do_user_addr_fault+0x30b/0x1030
[ 2631.268388][ T5091]  ? irqentry_enter_from_user_mode+0x5f/0xc0
[ 2631.274411][ T5091]  exc_page_fault+0x5d/0xc0
[ 2631.278952][ T5091]  asm_exc_page_fault+0x26/0x30
[ 2631.283829][ T5091] RIP: 0033:0x7f212b079780
[ 2631.288271][ T5091] Code: ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 31 c9 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 <80> 3d 71 57 10 00 00 49 89 ca 74 14 b8 3d 00 00 00 0f 05 48 3d 00
[ 2631.310524][ T5091] RSP: 002b:00007ffc7b20bb78 EFLAGS: 00010246
[ 2631.316628][ T5091] RAX: 000000000000013b RBX: 0000000000002914 RCX: 0000000000000000
[ 2631.324634][ T5091] RDX: 0000000040000001 RSI: 00007ffc7b20bbdc RDI: 00000000ffffffff
[ 2631.332641][ T5091] RBP: 00007ffc7b20bbdc R08: 0000000000000a46 R09: 0000000000000001
[ 2631.340644][ T5091] R10: 00007ffc7b2d4080 R11: 00000000023d2eb7 R12: 0000000000000032
[ 2631.348639][ T5091] R13: 00000000002823c6 R14: 00000000002823c6 R15: 0000000000000000
[ 2631.356658][ T5091]  </TASK>
[ 2631.365203][T16775] bond1458 (unregistering): Released all slaves
[ 2631.478732][T16775] bond1457 (unregistering): Released all slaves
[ 2631.517946][ T5091] memory: usage 307200kB, limit 307200kB, failcnt 127107
[ 2631.525053][ T5091] memory+swap: usage 307588kB, limit 9007199254740988kB, failcnt 0
[ 2631.535850][T16775] bond1456 (unregistering): Released all slaves
[ 2631.543226][ T5091] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[ 2631.562149][ T5091] Memory cgroup stats for /syz3:
[ 2631.562333][ T5091] cache 0
[ 2631.575548][ T5091] rss 0
[ 2631.581215][T16775] bond1455 (unregistering): Released all slaves
[ 2631.581380][ T5091] rss_huge 0
[ 2631.596125][ T5091] shmem 0
[ 2631.601390][ T5091] mapped_file 0
[ 2631.604888][ T5091] dirty 0
[ 2631.614284][ T5091] writeback 0
[ 2631.620963][ T5091] workingset_refault_anon 37747
[ 2631.630639][ T5091] workingset_refault_file 1
[ 2631.635199][ T5091] swap 397312
[ 2631.638428][T16775] bond1454 (unregistering): Released all slaves
[ 2631.652967][   T28] audit: type=1804 audit(1706039263.301:1970): pid=27598 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir245649211/syzkaller.jQ7tPM/72/cgroup.controllers" dev="sda1" ino=1950 res=1 errno=0
[ 2631.678440][ T5091] swapcached 0
[ 2631.683280][ T5091] pgpgin 161986
[ 2631.685313][T16775] bond1453 (unregistering): Released all slaves
[ 2631.694179][ T5091] pgpgout 161986
[ 2631.702900][ T5091] pgfault 354889
[ 2631.710218][ T5091] pgmajfault 36620
[ 2631.718524][ T5091] inactive_anon 0
[ 2631.727516][ T5091] active_anon 0
[ 2631.736086][ T5091] inactive_file 0
[ 2631.743200][T16775] bond1452 (unregistering): Released all slaves
[ 2631.749736][ T5091] active_file 0
[ 2631.768210][ T5091] unevictable 0
[ 2631.771970][ T5091] hierarchical_memory_limit 314572800
[ 2631.775677][T16775] bond1451 (unregistering): Released all slaves
[ 2631.779180][ T5091] hierarchical_memsw_limit 9223372036854771712
[ 2631.792246][ T5091] total_cache 0
[ 2631.796826][ T5091] total_rss 0
[ 2631.801918][ T5091] total_rss_huge 0
[ 2631.811642][ T5091] total_shmem 0
[ 2631.817766][ T5091] total_mapped_file 0
[ 2631.822520][ T5091] total_dirty 0
[ 2631.827889][ T5091] total_writeback 0
[ 2631.828853][T16775] bond1450 (unregistering): Released all slaves
[ 2631.832419][ T5091] total_workingset_refault_anon 37747
[ 2631.845351][ T5091] total_workingset_refault_file 1
[ 2631.851380][ T5091] total_swap 397312
[ 2631.857189][ T5091] total_swapcached 0
[ 2631.867712][ T5091] total_pgpgin 161986
[ 2631.873539][ T5091] total_pgpgout 161986
[ 2631.878673][ T5091] total_pgfault 354889
[ 2631.886220][ T5091] total_pgmajfault 36620
[ 2631.887182][T16775] bond1449 (unregistering): Released all slaves
[ 2631.891215][ T5091] total_inactive_anon 0
[ 2631.911821][ T5091] total_active_anon 0
[ 2631.915864][ T5091] total_inactive_file 0
[ 2631.926669][ T5091] total_active_file 0
[ 2631.931546][ T5091] total_unevictable 0
[ 2631.937810][ T5091] anon_cost 0
[ 2631.941889][ T5091] file_cost 0
[ 2631.948218][ T5091] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=27595,uid=0
[ 2631.949670][T16775] bond1448 (unregistering): Released all slaves
[ 2631.964585][ T5091] Memory cgroup out of memory: Killed process 27595 (syz-executor.3) total-vm:54504kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 2632.028627][T16775] bond1447 (unregistering): Released all slaves
19:47:43 executing program 3:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x32}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000280)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000240)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=@newlink={0x48, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0xe403, r2}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @veth={{0x9}, {0x18, 0x2, 0x0, 0x1, @val=@VETH_INFO_PEER={0x14}}}}]}, 0x48}, 0x8002e}, 0x0)

[ 2632.083440][T16775] bond1446 (unregistering): Released all slaves
[ 2632.114258][T16775] bond1445 (unregistering): Released all slaves
[ 2632.151888][T16775] bond1444 (unregistering): Released all slaves
[ 2632.196776][T16775] bond1443 (unregistering): Released all slaves
[ 2632.230442][T16775] bond1442 (unregistering): Released all slaves
[ 2632.280356][T16775] bond1441 (unregistering): Released all slaves
[ 2632.353712][T16775] bond1440 (unregistering): Released all slaves
19:47:44 executing program 1:
socket$kcm(0x10, 0x400000002, 0x0)
socket$inet(0x2, 0x2, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
write$binfmt_script(r1, &(0x7f0000000480)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r1, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r2 = syz_genetlink_get_family_id$batadv(&(0x7f0000007580), 0xffffffffffffffff)
sendmsg$BATADV_CMD_SET_HARDIF(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001740)={&(0x7f0000000000)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16, @ANYBLOB="2d0100000000000000000500f6ff08000300", @ANYRES32=r0], 0x2c}}, 0x0)
sendmsg$BATADV_CMD_GET_GATEWAYS(0xffffffffffffffff, &(0x7f0000007680)={0x0, 0x0, &(0x7f0000007640)={&(0x7f0000000000)=ANY=[@ANYBLOB="46040000", @ANYRES16=r2, @ANYBLOB="ff83050000076dc6d81b", @ANYRES32], 0x4}}, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendfile(r4, r3, 0x0, 0x100000002)

[ 2632.401614][T16775] bond1439 (unregistering): Released all slaves
[ 2632.445395][T16775] bond1438 (unregistering): Released all slaves
[ 2632.488950][T16775] bond1437 (unregistering): Released all slaves
[ 2632.507425][T27600] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2632.541337][T16775] bond1436 (unregistering): Released all slaves
[ 2632.544248][T27600] CPU: 1 PID: 27600 Comm: syz-executor.3 Not tainted 6.7.0-syzkaller-12291-g435e202d645c #0
[ 2632.557704][T27600] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 2632.567791][T27600] Call Trace:
[ 2632.571107][T27600]  <TASK>
[ 2632.574068][T27600]  dump_stack_lvl+0x125/0x1b0
[ 2632.578791][T27600]  dump_header+0x103/0x900
[ 2632.583254][T27600]  oom_kill_process+0x270/0xa60
[ 2632.588155][T27600]  out_of_memory+0x344/0x16c0
[ 2632.592878][T27600]  ? oom_killer_disable+0x2d0/0x2d0
[ 2632.598116][T27600]  ? rcu_read_unlock+0x1c/0x60
[ 2632.602929][T27600]  mem_cgroup_out_of_memory+0x206/0x270
[ 2632.608504][T27600]  ? mem_cgroup_margin+0x130/0x130
[ 2632.613641][T27600]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2632.619054][T27600]  try_charge_memcg+0xcd1/0x11a0
[ 2632.624031][T27600]  ? mem_cgroup_handle_over_high+0x570/0x570
[ 2632.630225][T27600]  ? get_mem_cgroup_from_objcg+0xb5/0x2a0
[ 2632.636219][T27600]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2632.642217][T27600]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2632.647609][T27600]  __memcg_kmem_charge_page+0xdd/0x2a0
[ 2632.653347][T27600]  memcg_charge_kernel_stack+0xc3/0x1f0
[ 2632.658995][T27600]  copy_process+0x527/0x97b0
[ 2632.663598][T27600]  ? hlock_class+0x4e/0x130
[ 2632.668115][T27600]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2632.674106][T27600]  ? page_ext_put+0x43/0xd0
[ 2632.678617][T27600]  ? hlock_class+0x4e/0x130
[ 2632.683152][T27600]  ? pidfd_prepare+0x80/0x80
[ 2632.687779][T27600]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2632.693180][T27600]  ? preempt_count_sub+0x160/0x160
[ 2632.698390][T27600]  ? __lock_acquire+0x1502/0x3b30
[ 2632.703443][T27600]  ? __might_fault+0xe6/0x1a0
[ 2632.708172][T27600]  ? _copy_from_user+0x5d/0xf0
[ 2632.712969][T27600]  kernel_clone+0xfd/0x930
[ 2632.717404][T27600]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2632.724230][T27600]  ? create_io_thread+0xe0/0xe0
[ 2632.729116][T27600]  ? find_held_lock+0x2d/0x110
[ 2632.733898][T27600]  __do_sys_clone3+0x1f1/0x260
[ 2632.738678][T27600]  ? __do_sys_clone+0x100/0x100
[ 2632.743572][T27600]  do_syscall_64+0xd3/0x250
[ 2632.748096][T27600]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 2632.753996][T27600] RIP: 0033:0x7f212b0a8b99
[ 2632.758419][T27600] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 2632.778036][T27600] RSP: 002b:00007ffc7b20b738 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 2632.786469][T27600] RAX: ffffffffffffffda RBX: 00007f212b051270 RCX: 00007f212b0a8b99
[ 2632.794471][T27600] RDX: 00007f212b051270 RSI: 0000000000000058 RDI: 00007ffc7b20b780
[ 2632.802467][T27600] RBP: 00007f212be566c0 R08: 00007f212be566c0 R09: 00007ffc7b20b867
[ 2632.810540][T27600] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 2632.818519][T27600] R13: 000000000000000b R14: 00007ffc7b20b780 R15: 00007ffc7b20b868
[ 2632.826602][T27600]  </TASK>
[ 2632.834940][T16775] bond1435 (unregistering): Released all slaves
[ 2632.856871][T27600] memory: usage 307200kB, limit 307200kB, failcnt 127343
[ 2632.864063][T27600] memory+swap: usage 307544kB, limit 9007199254740988kB, failcnt 0
[ 2632.878923][T27600] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[ 2632.893291][T16775] bond1434 (unregistering): Released all slaves
[ 2632.899717][T27600] Memory cgroup stats for /syz3:
[ 2632.899900][T27600] cache 0
[ 2632.910900][T27600] rss 0
[ 2632.945647][T27600] rss_huge 0
[ 2632.954148][T16775] bond1433 (unregistering): Released all slaves
[ 2632.956192][T27600] shmem 0
[ 2632.963419][T27600] mapped_file 0
[ 2632.977124][T27600] dirty 0
[ 2632.980571][T27600] writeback 0
[ 2632.984512][T27600] workingset_refault_anon 37833
[ 2632.992837][T16775] bond1432 (unregistering): Released all slaves
[ 2632.999675][T27600] workingset_refault_file 1
[ 2633.013234][T27600] swap 352256
[ 2633.017051][T27600] swapcached 0
[ 2633.026289][T27600] pgpgin 162083
[ 2633.030048][T27600] pgpgout 162083
[ 2633.033622][T27600] pgfault 355036
[ 2633.043616][T27600] pgmajfault 36693
[ 2633.050823][   T28] audit: type=1804 audit(1706039264.691:1971): pid=27602 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir245649211/syzkaller.jQ7tPM/73/cgroup.controllers" dev="sda1" ino=1950 res=1 errno=0
[ 2633.080252][T16775] bond1431 (unregistering): Released all slaves
[ 2633.086077][T27600] inactive_anon 0
[ 2633.090200][T27600] active_anon 0
[ 2633.093695][T27600] inactive_file 0
[ 2633.116227][T27600] active_file 0
[ 2633.120039][T27600] unevictable 0
[ 2633.123523][T27600] hierarchical_memory_limit 314572800
[ 2633.138552][T16775] bond1430 (unregistering): Released all slaves
[ 2633.146067][T27600] hierarchical_memsw_limit 9223372036854771712
[ 2633.152485][T27600] total_cache 0
[ 2633.159560][T27600] total_rss 0
[ 2633.162899][T27600] total_rss_huge 0
[ 2633.177527][T27600] total_shmem 0
[ 2633.181049][T27600] total_mapped_file 0
[ 2633.183680][T16775] bond1429 (unregistering): Released all slaves
[ 2633.185028][T27600] total_dirty 0
[ 2633.185039][T27600] total_writeback 0
[ 2633.185048][T27600] total_workingset_refault_anon 37833
[ 2633.185057][T27600] total_workingset_refault_file 1
[ 2633.185067][T27600] total_swap 352256
[ 2633.185076][T27600] total_swapcached 0
[ 2633.185086][T27600] total_pgpgin 162083
[ 2633.185095][T27600] total_pgpgout 162083
[ 2633.227239][T27600] total_pgfault 355036
[ 2633.231359][T27600] total_pgmajfault 36693
[ 2633.235679][T27600] total_inactive_anon 0
[ 2633.261540][T16775] bond1428 (unregistering): Released all slaves
[ 2633.269498][T27600] total_active_anon 0
[ 2633.273537][T27600] total_inactive_file 0
[ 2633.286063][T27600] total_active_file 0
[ 2633.290107][T27600] total_unevictable 0
[ 2633.304187][T27600] anon_cost 0
[ 2633.307730][T27600] file_cost 0
[ 2633.311041][T27600] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=27600,uid=0
[ 2633.328424][T27600] Memory cgroup out of memory: Killed process 27600 (syz-executor.3) total-vm:54504kB, anon-rss:360kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 2633.329838][T16775] bond1427 (unregistering): Released all slaves
19:47:45 executing program 3:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x32}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000280)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000240)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=@newlink={0x48, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0xe403, r2}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @veth={{0x9}, {0x18, 0x2, 0x0, 0x1, @val=@VETH_INFO_PEER={0x14}}}}]}, 0x48}, 0x8002f}, 0x0)

19:47:45 executing program 1:
socket$kcm(0x10, 0x400000002, 0x0)
socket$inet(0x2, 0x2, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
write$binfmt_script(r1, &(0x7f0000000480)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r1, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r2 = syz_genetlink_get_family_id$batadv(&(0x7f0000007580), 0xffffffffffffffff)
sendmsg$BATADV_CMD_SET_HARDIF(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001740)={&(0x7f0000000000)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16, @ANYBLOB="2d0100000000000000000500f6ff08000300", @ANYRES32=r0], 0x2c}}, 0x0)
sendmsg$BATADV_CMD_GET_GATEWAYS(0xffffffffffffffff, &(0x7f0000007680)={0x0, 0x0, &(0x7f0000007640)={&(0x7f0000000000)=ANY=[@ANYBLOB="46040000", @ANYRES16=r2, @ANYBLOB="ff83050000076dc6d81b", @ANYRES32], 0x4}}, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendfile(r4, r3, 0x0, 0x100000002)

[ 2633.436937][T16775] bond1426 (unregistering): Released all slaves
[ 2633.528043][T16775] bond1425 (unregistering): Released all slaves
[ 2633.571387][T16775] bond1424 (unregistering): Released all slaves
[ 2633.631632][T16775] bond1423 (unregistering): Released all slaves
[ 2633.694883][T16775] bond1422 (unregistering): Released all slaves
[ 2633.745409][T16775] bond1421 (unregistering): Released all slaves
[ 2633.804091][T16775] bond1420 (unregistering): Released all slaves
[ 2633.814200][T27604] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2633.830353][   T28] audit: type=1804 audit(1706039265.481:1972): pid=27606 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir245649211/syzkaller.jQ7tPM/74/cgroup.controllers" dev="sda1" ino=1959 res=1 errno=0
[ 2633.858276][T27604] CPU: 0 PID: 27604 Comm: syz-executor.3 Not tainted 6.7.0-syzkaller-12291-g435e202d645c #0
[ 2633.860567][T16775] bond1419 (unregistering): Released all slaves
[ 2633.868362][T27604] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 2633.868377][T27604] Call Trace:
[ 2633.868387][T27604]  <TASK>
[ 2633.868397][T27604]  dump_stack_lvl+0x125/0x1b0
[ 2633.868430][T27604]  dump_header+0x103/0x900
[ 2633.868470][T27604]  oom_kill_process+0x270/0xa60
[ 2633.868511][T27604]  out_of_memory+0x344/0x16c0
[ 2633.868555][T27604]  ? oom_killer_disable+0x2d0/0x2d0
[ 2633.868590][T27604]  ? rcu_read_unlock+0x1c/0x60
[ 2633.868634][T27604]  mem_cgroup_out_of_memory+0x206/0x270
[ 2633.868661][T27604]  ? mem_cgroup_margin+0x130/0x130
[ 2633.868684][T27604]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2633.868721][T27604]  try_charge_memcg+0xcd1/0x11a0
[ 2633.868765][T27604]  ? mem_cgroup_handle_over_high+0x570/0x570
[ 2633.868794][T27604]  ? get_mem_cgroup_from_objcg+0xb5/0x2a0
[ 2633.868910][T27604]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2633.868938][T27604]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2633.868973][T27604]  __memcg_kmem_charge_page+0xdd/0x2a0
[ 2633.869008][T27604]  memcg_charge_kernel_stack+0xc3/0x1f0
[ 2633.869042][T27604]  copy_process+0x527/0x97b0
[ 2633.869074][T27604]  ? hlock_class+0x4e/0x130
[ 2633.985872][T27604]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2633.991907][T27604]  ? page_ext_put+0x43/0xd0
[ 2633.996450][T27604]  ? hlock_class+0x4e/0x130
[ 2634.003395][T27604]  ? pidfd_prepare+0x80/0x80
[ 2634.008138][T27604]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2634.013570][T27604]  ? preempt_count_sub+0x160/0x160
[ 2634.018737][T27604]  ? __lock_acquire+0x1502/0x3b30
[ 2634.024246][T27604]  ? __might_fault+0xe6/0x1a0
[ 2634.029335][T27604]  ? _copy_from_user+0x5d/0xf0
[ 2634.034175][T27604]  kernel_clone+0xfd/0x930
[ 2634.038749][T27604]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2634.044866][T27604]  ? create_io_thread+0xe0/0xe0
[ 2634.049783][T27604]  ? find_held_lock+0x2d/0x110
[ 2634.054610][T27604]  __do_sys_clone3+0x1f1/0x260
[ 2634.059422][T27604]  ? __do_sys_clone+0x100/0x100
[ 2634.064373][T27604]  do_syscall_64+0xd3/0x250
[ 2634.068946][T27604]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 2634.074887][T27604] RIP: 0033:0x7f212b0a8b99
[ 2634.079338][T27604] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 2634.099010][T27604] RSP: 002b:00007ffc7b20b738 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 2634.107463][T27604] RAX: ffffffffffffffda RBX: 00007f212b051270 RCX: 00007f212b0a8b99
[ 2634.115455][T27604] RDX: 00007f212b051270 RSI: 0000000000000058 RDI: 00007ffc7b20b780
[ 2634.123447][T27604] RBP: 00007f212be566c0 R08: 00007f212be566c0 R09: 00007ffc7b20b867
[ 2634.131458][T27604] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 2634.139558][T27604] R13: 000000000000000b R14: 00007ffc7b20b780 R15: 00007ffc7b20b868
[ 2634.147596][T27604]  </TASK>
[ 2634.151776][   T52] Bluetooth: hci4: command 0x0406 tx timeout
[ 2634.155745][T26229] Bluetooth: hci5: command 0x0406 tx timeout
[ 2634.178173][T27604] memory: usage 307184kB, limit 307200kB, failcnt 127652
[ 2634.185253][T27604] memory+swap: usage 307504kB, limit 9007199254740988kB, failcnt 0
[ 2634.193615][T27604] kmem: usage 307184kB, limit 9007199254740988kB, failcnt 0
[ 2634.201162][T27604] Memory cgroup stats for /syz3:
[ 2634.201337][T27604] cache 0
[ 2634.209468][T27604] rss 0
[ 2634.212261][T27604] rss_huge 0
[ 2634.214505][T16775] bond1418 (unregistering): Released all slaves
[ 2634.215471][T27604] shmem 0
[ 2634.224775][T27604] mapped_file 0
[ 2634.233504][T27604] dirty 0
[ 2634.236938][T27604] writeback 0
[ 2634.240325][T27604] workingset_refault_anon 37948
[ 2634.245197][T27604] workingset_refault_file 1
[ 2634.249865][T27604] swap 327680
[ 2634.253172][T27604] swapcached 0
[ 2634.259738][T27604] pgpgin 162209
[ 2634.263322][T27604] pgpgout 162209
[ 2634.267070][T27604] pgfault 355220
[ 2634.270709][T27604] pgmajfault 36793
[ 2634.276111][T27604] inactive_anon 0
[ 2634.279787][T27604] active_anon 0
[ 2634.283263][T27604] inactive_file 0
[ 2634.292041][T27604] active_file 0
[ 2634.295664][T27604] unevictable 0
[ 2634.300290][T27604] hierarchical_memory_limit 314572800
[ 2634.305721][T27604] hierarchical_memsw_limit 9223372036854771712
[ 2634.312604][T27604] total_cache 0
[ 2634.318935][T27604] total_rss 0
[ 2634.322363][T27604] total_rss_huge 0
[ 2634.322599][T16775] bond1417 (unregistering): Released all slaves
[ 2634.326333][T27604] total_shmem 0
[ 2634.336983][T27604] total_mapped_file 0
[ 2634.341752][T27604] total_dirty 0
[ 2634.345339][T27604] total_writeback 0
[ 2634.349604][T27604] total_workingset_refault_anon 37948
[ 2634.355216][T27604] total_workingset_refault_file 1
[ 2634.360562][T27604] total_swap 327680
[ 2634.364807][T27604] total_swapcached 0
[ 2634.371915][T27604] total_pgpgin 162209
[ 2634.376358][T27604] total_pgpgout 162209
[ 2634.381640][T27604] total_pgfault 355220
[ 2634.385881][T27604] total_pgmajfault 36793
[ 2634.388598][T16775] bond1416 (unregistering): Released all slaves
[ 2634.392002][T27604] total_inactive_anon 0
[ 2634.423347][T27604] total_active_anon 0
[ 2634.432812][T16775] bond1415 (unregistering): Released all slaves
[ 2634.433267][T27604] total_inactive_file 0
[ 2634.474156][T27604] total_active_file 0
[ 2634.486113][T27604] total_unevictable 0
[ 2634.490225][T27604] anon_cost 0
[ 2634.492747][T16775] bond1414 (unregistering): Released all slaves
[ 2634.493516][T27604] file_cost 0
19:47:46 executing program 1:
socket$kcm(0x10, 0x400000002, 0x0)
socket$inet(0x2, 0x2, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
write$binfmt_script(r1, &(0x7f0000000480)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r1, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r2 = syz_genetlink_get_family_id$batadv(&(0x7f0000007580), 0xffffffffffffffff)
sendmsg$BATADV_CMD_SET_HARDIF(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001740)={&(0x7f0000000000)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16, @ANYBLOB="2d0100000000000000000500f6ff08000300", @ANYRES32=r0], 0x2c}}, 0x0)
sendmsg$BATADV_CMD_GET_GATEWAYS(0xffffffffffffffff, &(0x7f0000007680)={0x0, 0x0, &(0x7f0000007640)={&(0x7f0000000000)=ANY=[@ANYBLOB="46040000", @ANYRES16=r2, @ANYBLOB="ff83050000076dc6d81b", @ANYRES32], 0x4}}, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendfile(r4, r3, 0x0, 0x100000002)

[ 2634.493530][T27604] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=27604,uid=0
[ 2634.548938][T16775] bond1413 (unregistering): Released all slaves
[ 2634.554377][T27604] Memory cgroup out of memory: Killed process 27604 (syz-executor.3) total-vm:54504kB, anon-rss:380kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 2634.639833][T16775] bond1412 (unregistering): Released all slaves
19:47:46 executing program 3:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x32}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000280)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000240)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=@newlink={0x48, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0xe403, r2}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @veth={{0x9}, {0x18, 0x2, 0x0, 0x1, @val=@VETH_INFO_PEER={0x14}}}}]}, 0x48}, 0xffffff1f}, 0x0)

[ 2634.712941][T16775] bond1411 (unregistering): Released all slaves
[ 2634.762627][T16775] bond1410 (unregistering): Released all slaves
[ 2634.791443][   T28] audit: type=1804 audit(1706039266.441:1973): pid=27611 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir245649211/syzkaller.jQ7tPM/75/cgroup.controllers" dev="sda1" ino=1959 res=1 errno=0
[ 2634.849201][T16775] bond1409 (unregistering): Released all slaves
[ 2634.865598][ T5091] syz-executor.3 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[ 2634.908700][T16775] bond1408 (unregistering): Released all slaves
[ 2634.929531][ T5091] CPU: 0 PID: 5091 Comm: syz-executor.3 Not tainted 6.7.0-syzkaller-12291-g435e202d645c #0
[ 2634.939588][ T5091] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 2634.950128][ T5091] Call Trace:
[ 2634.953440][ T5091]  <TASK>
[ 2634.956410][ T5091]  dump_stack_lvl+0x125/0x1b0
[ 2634.961144][ T5091]  dump_header+0x103/0x900
[ 2634.965624][ T5091]  oom_kill_process+0x270/0xa60
[ 2634.970538][ T5091]  out_of_memory+0x344/0x16c0
[ 2634.975274][ T5091]  ? mutex_trylock+0xa0/0x130
[ 2634.980018][ T5091]  ? oom_killer_disable+0x2d0/0x2d0
[ 2634.985364][ T5091]  ? rcu_read_unlock+0x1c/0x60
[ 2634.990371][ T5091]  mem_cgroup_out_of_memory+0x206/0x270
[ 2634.995953][ T5091]  ? mem_cgroup_margin+0x130/0x130
[ 2635.001083][ T5091]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2635.006488][ T5091]  try_charge_memcg+0xcd1/0x11a0
[ 2635.011447][ T5091]  ? mem_cgroup_handle_over_high+0x570/0x570
[ 2635.017446][ T5091]  ? rcu_read_unlock+0x1c/0x60
[ 2635.022238][ T5091]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2635.027627][ T5091]  ? __radix_tree_lookup+0x21f/0x2c0
[ 2635.033023][ T5091]  mem_cgroup_swapin_charge_folio+0x138/0x380
[ 2635.039115][ T5091]  __read_swap_cache_async+0x4e1/0x600
[ 2635.045125][ T5091]  ? filemap_get_incore_folio+0x160/0x160
[ 2635.051462][ T5091]  ? swp_swap_info+0xcf/0x130
[ 2635.056256][ T5091]  ? swapcache_prepare+0x20/0x20
[ 2635.061214][ T5091]  ? find_held_lock+0x2d/0x110
[ 2635.066021][ T5091]  ? find_held_lock+0x2d/0x110
[ 2635.070832][ T5091]  swap_cluster_readahead+0x4d4/0x710
[ 2635.076249][ T5091]  ? read_swap_cache_async+0x1a0/0x1a0
[ 2635.081721][ T5091]  ? reacquire_held_locks+0x410/0x4c0
[ 2635.087109][ T5091]  ? xas_descend+0x141/0x4e0
[ 2635.092443][ T5091]  ? filemap_get_entry+0x23e/0x460
[ 2635.097598][ T5091]  swapin_readahead+0x132/0xe60
[ 2635.102490][ T5091]  ? get_swap_device+0x363/0x5e0
[ 2635.107449][ T5091]  ? exit_swap_address_space+0x250/0x250
[ 2635.113191][ T5091]  ? __filemap_get_folio+0x2b0/0xaa0
[ 2635.118496][ T5091]  ? swap_cache_get_folio+0x1dc/0x460
[ 2635.123887][ T5091]  ? get_swap_device+0x245/0x5e0
[ 2635.128838][ T5091]  ? free_pages_and_swap_cache+0xa0/0xa0
[ 2635.134486][ T5091]  ? lock_sync+0x190/0x190
[ 2635.139006][ T5091]  do_swap_page+0x4a6/0x3190
[ 2635.143616][ T5091]  ? rcu_is_watching+0x12/0xb0
[ 2635.148398][ T5091]  ? __pte_offset_map+0x1b9/0x540
[ 2635.153543][ T5091]  ? unmap_mapping_folio+0x3b0/0x3b0
[ 2635.158850][ T5091]  ? pte_offset_map_nolock+0xfa/0x1b0
[ 2635.164233][ T5091]  ? __pte_offset_map+0x540/0x540
[ 2635.169279][ T5091]  __handle_mm_fault+0x13a0/0x4900
[ 2635.174412][ T5091]  ? clear_huge_page+0x2e0/0x2e0
[ 2635.179376][ T5091]  ? lock_mm_and_find_vma+0x580/0x580
[ 2635.184764][ T5091]  handle_mm_fault+0x47a/0xa10
[ 2635.189553][ T5091]  do_user_addr_fault+0x30b/0x1030
[ 2635.194683][ T5091]  ? irqentry_enter_from_user_mode+0x5f/0xc0
[ 2635.200695][ T5091]  exc_page_fault+0x5d/0xc0
[ 2635.205292][ T5091]  asm_exc_page_fault+0x26/0x30
[ 2635.210285][ T5091] RIP: 0033:0x7f212b0a81b8
[ 2635.214745][ T5091] Code: 3c 24 48 89 4c 24 18 e8 f6 b9 ff ff 4c 8b 54 24 18 48 8b 54 24 10 41 89 c0 8b 74 24 0c 8b 3c 24 b8 e6 00 00 00 0f 05 44 89 c7 <48> 89 04 24 e8 4f ba ff ff 48 8b 04 24 48 83 c4 28 f7 d8 c3 0f 1f
[ 2635.235148][ T5091] RSP: 002b:00007ffc7b20bb10 EFLAGS: 00010293
[ 2635.241315][ T5091] RAX: 0000000000000000 RBX: 0000000000002917 RCX: 00007f212b0a81b5
[ 2635.249296][ T5091] RDX: 00007ffc7b20bb50 RSI: 0000000000000000 RDI: 0000000000000000
[ 2635.257277][ T5091] RBP: 00007ffc7b20bbdc R08: 0000000000000000 R09: 0000000000000001
[ 2635.265349][ T5091] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000032
[ 2635.273332][ T5091] R13: 00000000002833ef R14: 00000000002833ef R15: 0000000000000000
[ 2635.281420][ T5091]  </TASK>
[ 2635.292191][T16775] bond1407 (unregistering): Released all slaves
[ 2635.316500][T16775] bond1406 (unregistering): Released all slaves
[ 2635.342393][T16775] bond1405 (unregistering): Released all slaves
[ 2635.408868][ T5091] memory: usage 307200kB, limit 307200kB, failcnt 127934
[ 2635.409522][T16775] bond1404 (unregistering): Released all slaves
[ 2635.441799][ T5091] memory+swap: usage 307560kB, limit 9007199254740988kB, failcnt 0
[ 2635.442320][T16775] bond1403 (unregistering): Released all slaves
[ 2635.480141][ T5091] kmem: usage 307184kB, limit 9007199254740988kB, failcnt 0
[ 2635.490620][ T5091] Memory cgroup stats for /syz3:
[ 2635.490838][ T5091] cache 0
[ 2635.492378][T16775] bond1402 (unregistering): Released all slaves
[ 2635.495901][ T5091] rss 0
[ 2635.538430][T16775] bond1401 (unregistering): Released all slaves
[ 2635.554682][ T5091] rss_huge 0
[ 2635.571190][ T5091] shmem 0
[ 2635.577611][ T5091] mapped_file 0
19:47:47 executing program 1:
socket$kcm(0x10, 0x400000002, 0x0)
socket$inet(0x2, 0x2, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x3, &(0x7f00000000c0)=@framed, &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
write$binfmt_script(r1, &(0x7f0000000480)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r1, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r2 = socket$rxrpc(0x21, 0x2, 0xa)
r3 = syz_genetlink_get_family_id$batadv(&(0x7f0000007580), 0xffffffffffffffff)
sendmsg$BATADV_CMD_SET_HARDIF(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001740)={0x0, 0x2c}}, 0x0)
sendmsg$BATADV_CMD_GET_GATEWAYS(0xffffffffffffffff, &(0x7f0000007680)={0x0, 0x0, &(0x7f0000007640)={&(0x7f0000000000)=ANY=[@ANYBLOB="46040000", @ANYRES16=r3, @ANYBLOB="ff83050000076dc6d81b", @ANYRES32=r2], 0x4}}, 0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendfile(r5, r4, 0x0, 0x100000002)

[ 2635.583552][T16775] bond1400 (unregistering): Released all slaves
[ 2635.606015][ T5091] dirty 0
[ 2635.609013][ T5091] writeback 0
[ 2635.612319][ T5091] workingset_refault_anon 38023
[ 2635.624773][T16775] bond1399 (unregistering): Released all slaves
[ 2635.626749][ T5091] workingset_refault_file 1
[ 2635.635606][ T5091] swap 368640
[ 2635.656443][ T5091] swapcached 0
[ 2635.659878][ T5091] pgpgin 162295
[ 2635.663352][ T5091] pgpgout 162295
[ 2635.679800][T16775] bond1398 (unregistering): Released all slaves
[ 2635.685213][ T5091] pgfault 355352
[ 2635.690472][ T5091] pgmajfault 36858
[ 2635.694231][ T5091] inactive_anon 0
[ 2635.699091][ T5091] active_anon 0
[ 2635.702695][ T5091] inactive_file 0
[ 2635.708562][ T5091] active_file 0
[ 2635.712397][ T5091] unevictable 0
[ 2635.716728][ T5091] hierarchical_memory_limit 314572800
[ 2635.723627][ T5091] hierarchical_memsw_limit 9223372036854771712
[ 2635.732220][ T5091] total_cache 0
[ 2635.734676][T16775] bond1397 (unregistering): Released all slaves
[ 2635.740320][ T5091] total_rss 0
[ 2635.746419][ T5091] total_rss_huge 0
[ 2635.750273][ T5091] total_shmem 0
[ 2635.753859][ T5091] total_mapped_file 0
[ 2635.764376][ T5091] total_dirty 0
[ 2635.776835][ T5091] total_writeback 0
[ 2635.780706][ T5091] total_workingset_refault_anon 38023
[ 2635.797353][T16775] bond1396 (unregistering): Released all slaves
[ 2635.798720][ T5091] total_workingset_refault_file 1
[ 2635.820995][ T5091] total_swap 368640
[ 2635.824869][ T5091] total_swapcached 0
[ 2635.836411][ T5091] total_pgpgin 162295
[ 2635.843921][ T5091] total_pgpgout 162295
[ 2635.844763][T16775] bond1395 (unregistering): Released all slaves
[ 2635.852319][ T5091] total_pgfault 355352
[ 2635.863925][ T5091] total_pgmajfault 36858
[ 2635.870974][ T5091] total_inactive_anon 0
[ 2635.880825][ T5091] total_active_anon 0
[ 2635.884867][ T5091] total_inactive_file 0
[ 2635.895445][ T5091] total_active_file 0
[ 2635.898368][T16775] bond1394 (unregistering): Released all slaves
[ 2635.904576][ T5091] total_unevictable 0
[ 2635.914639][ T5091] anon_cost 0
[ 2635.921810][ T5091] file_cost 0
[ 2635.925147][ T5091] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=27613,uid=0
[ 2635.943801][T16775] bond1393 (unregistering): Released all slaves
[ 2635.946125][   T28] audit: type=1804 audit(1706039267.591:1974): pid=27615 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir245649211/syzkaller.jQ7tPM/76/cgroup.controllers" dev="sda1" ino=1959 res=1 errno=0
[ 2635.982753][ T5091] Memory cgroup out of memory: Killed process 27613 (syz-executor.3) total-vm:54504kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 2636.004421][T16775] bond1392 (unregistering): Released all slaves
19:47:47 executing program 3:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x32}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000280)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000240)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=@newlink={0x48, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0xe403, r2}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @veth={{0x9}, {0x18, 0x2, 0x0, 0x1, @val=@VETH_INFO_PEER={0x14}}}}]}, 0x48}, 0xfffffffffffffff}, 0x0)

[ 2636.056179][T16775] bond1391 (unregistering): Released all slaves
[ 2636.109336][T16775] bond1390 (unregistering): Released all slaves
[ 2636.162678][T16775] bond1389 (unregistering): Released all slaves
[ 2636.222633][T16775] bond1388 (unregistering): Released all slaves
[ 2636.293323][T16775] bond1387 (unregistering): Released all slaves
[ 2636.349992][T16775] bond1386 (unregistering): Released all slaves
[ 2636.404101][T16775] bond1385 (unregistering): Released all slaves
[ 2636.484243][T16775] bond1384 (unregistering): Released all slaves
[ 2636.554884][T16775] bond1383 (unregistering): Released all slaves
19:47:48 executing program 1:
socket$kcm(0x10, 0x400000002, 0x0)
socket$inet(0x2, 0x2, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x3, &(0x7f00000000c0)=@framed, &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
write$binfmt_script(r1, &(0x7f0000000480)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r1, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r2 = socket$rxrpc(0x21, 0x2, 0xa)
r3 = syz_genetlink_get_family_id$batadv(&(0x7f0000007580), 0xffffffffffffffff)
sendmsg$BATADV_CMD_SET_HARDIF(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001740)={0x0, 0x2c}}, 0x0)
sendmsg$BATADV_CMD_GET_GATEWAYS(0xffffffffffffffff, &(0x7f0000007680)={0x0, 0x0, &(0x7f0000007640)={&(0x7f0000000000)=ANY=[@ANYBLOB="46040000", @ANYRES16=r3, @ANYBLOB="ff83050000076dc6d81b", @ANYRES32=r2], 0x4}}, 0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendfile(r5, r4, 0x0, 0x100000002)

[ 2636.658505][T16775] bond1382 (unregistering): Released all slaves
[ 2636.685860][T27617] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2636.741354][T16775] bond1381 (unregistering): Released all slaves
[ 2636.787107][T27617] CPU: 0 PID: 27617 Comm: syz-executor.3 Not tainted 6.7.0-syzkaller-12291-g435e202d645c #0
[ 2636.797257][T27617] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 2636.807343][T27617] Call Trace:
[ 2636.810640][T27617]  <TASK>
[ 2636.813592][T27617]  dump_stack_lvl+0x125/0x1b0
[ 2636.818314][T27617]  dump_header+0x103/0x900
[ 2636.823033][T27617]  oom_kill_process+0x270/0xa60
[ 2636.827960][T27617]  out_of_memory+0x344/0x16c0
[ 2636.833472][T27617]  ? oom_killer_disable+0x2d0/0x2d0
[ 2636.838761][T27617]  ? rcu_read_unlock+0x1c/0x60
[ 2636.843670][T27617]  mem_cgroup_out_of_memory+0x206/0x270
[ 2636.849250][T27617]  ? mem_cgroup_margin+0x130/0x130
[ 2636.854384][T27617]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2636.859794][T27617]  try_charge_memcg+0xcd1/0x11a0
[ 2636.864790][T27617]  ? mem_cgroup_handle_over_high+0x570/0x570
[ 2636.871781][T27617]  ? get_mem_cgroup_from_objcg+0xb5/0x2a0
[ 2636.877548][T27617]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2636.882962][T27617]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2636.888360][T27617]  __memcg_kmem_charge_page+0xdd/0x2a0
[ 2636.893843][T27617]  memcg_charge_kernel_stack+0xc3/0x1f0
[ 2636.899413][T27617]  copy_process+0x527/0x97b0
[ 2636.904037][T27617]  ? hlock_class+0x4e/0x130
[ 2636.908582][T27617]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2636.914585][T27617]  ? hlock_class+0x4e/0x130
[ 2636.919115][T27617]  ? pidfd_prepare+0x80/0x80
[ 2636.923734][T27617]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2636.929122][T27617]  ? preempt_count_sub+0x160/0x160
[ 2636.934264][T27617]  ? __lock_acquire+0x1502/0x3b30
[ 2636.939339][T27617]  ? __might_fault+0xe6/0x1a0
[ 2636.944052][T27617]  ? _copy_from_user+0x5d/0xf0
[ 2636.948844][T27617]  kernel_clone+0xfd/0x930
[ 2636.953281][T27617]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2636.959532][T27617]  ? create_io_thread+0xe0/0xe0
[ 2636.964416][T27617]  ? find_held_lock+0x2d/0x110
[ 2636.969207][T27617]  __do_sys_clone3+0x1f1/0x260
[ 2636.974041][T27617]  ? __do_sys_clone+0x100/0x100
[ 2636.978947][T27617]  do_syscall_64+0xd3/0x250
[ 2636.983471][T27617]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 2636.989471][T27617] RIP: 0033:0x7f212b0a8b99
[ 2636.994010][T27617] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 2637.013858][T27617] RSP: 002b:00007ffc7b20b738 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 2637.022310][T27617] RAX: ffffffffffffffda RBX: 00007f212b051270 RCX: 00007f212b0a8b99
[ 2637.030850][T27617] RDX: 00007f212b051270 RSI: 0000000000000058 RDI: 00007ffc7b20b780
[ 2637.038844][T27617] RBP: 00007f212be566c0 R08: 00007f212be566c0 R09: 00007ffc7b20b867
[ 2637.046833][T27617] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 2637.054823][T27617] R13: 000000000000000b R14: 00007ffc7b20b780 R15: 00007ffc7b20b868
[ 2637.062828][T27617]  </TASK>
[ 2637.081379][T16775] bond1380 (unregistering): Released all slaves
[ 2637.106355][T27617] memory: usage 307200kB, limit 307200kB, failcnt 128289
[ 2637.114061][T27617] memory+swap: usage 307560kB, limit 9007199254740988kB, failcnt 0
[ 2637.124959][T16775] bond1379 (unregistering): Released all slaves
[ 2637.156585][T27617] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[ 2637.163941][T27617] Memory cgroup stats for /syz3:
[ 2637.164184][T27617] cache 0
[ 2637.198281][T16775] bond1378 (unregistering): Released all slaves
[ 2637.206484][T27617] rss 0
[ 2637.209297][T27617] rss_huge 0
[ 2637.212507][T27617] shmem 0
[ 2637.215477][T27617] mapped_file 0
[ 2637.233764][T27617] dirty 0
[ 2637.237075][T27617] writeback 0
[ 2637.240392][T27617] workingset_refault_anon 38136
[ 2637.245259][T27617] workingset_refault_file 1
[ 2637.252348][T16775] bond1377 (unregistering): Released all slaves
[ 2637.266111][T27617] swap 368640
[ 2637.269541][T27617] swapcached 0
[ 2637.272943][T27617] pgpgin 162419
[ 2637.284394][T27617] pgpgout 162419
[ 2637.300281][T27617] pgfault 355553
[ 2637.303894][T27617] pgmajfault 36966
[ 2637.312199][T16775] bond1376 (unregistering): Released all slaves
[ 2637.331822][   T28] audit: type=1804 audit(1706039268.981:1975): pid=27619 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir245649211/syzkaller.jQ7tPM/77/cgroup.controllers" dev="sda1" ino=1959 res=1 errno=0
[ 2637.336115][T27617] inactive_anon 0
[ 2637.363372][T27617] active_anon 0
[ 2637.369768][T27617] inactive_file 0
[ 2637.374202][T27617] active_file 0
[ 2637.381327][T27617] unevictable 0
[ 2637.385201][T27617] hierarchical_memory_limit 314572800
[ 2637.393767][T27617] hierarchical_memsw_limit 9223372036854771712
[ 2637.398591][T16775] bond1375 (unregistering): Released all slaves
[ 2637.403913][T27617] total_cache 0
[ 2637.418931][T27617] total_rss 0
[ 2637.422612][T27617] total_rss_huge 0
[ 2637.428596][T27617] total_shmem 0
[ 2637.432701][T27617] total_mapped_file 0
[ 2637.439682][T27617] total_dirty 0
[ 2637.443479][T27617] total_writeback 0
[ 2637.449840][T27617] total_workingset_refault_anon 38136
[ 2637.455614][T27617] total_workingset_refault_file 1
[ 2637.457862][T16775] bond1374 (unregistering): Released all slaves
[ 2637.462989][T27617] total_swap 368640
[ 2637.471623][T27617] total_swapcached 0
[ 2637.478900][T27617] total_pgpgin 162419
[ 2637.483568][T27617] total_pgpgout 162419
[ 2637.490314][T27617] total_pgfault 355553
[ 2637.494788][T27617] total_pgmajfault 36966
[ 2637.502141][T27617] total_inactive_anon 0
[ 2637.503373][T16775] bond1373 (unregistering): Released all slaves
[ 2637.513170][T27617] total_active_anon 0
[ 2637.519394][T27617] total_inactive_file 0
[ 2637.525329][T27617] total_active_file 0
[ 2637.539980][T27617] total_unevictable 0
[ 2637.545858][T27617] anon_cost 0
[ 2637.550510][T27617] file_cost 0
[ 2637.555492][T27617] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=27617,uid=0
[ 2637.572122][T27617] Memory cgroup out of memory: Killed process 27617 (syz-executor.3) total-vm:54504kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 2637.573714][T16775] bond1372 (unregistering): Released all slaves
19:47:49 executing program 3:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x32}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000280)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000240)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=@newlink={0x48, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0xe403, r2}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @veth={{0x9}, {0x18, 0x2, 0x0, 0x1, @val=@VETH_INFO_PEER={0x14}}}}]}, 0x48}, 0xffff8880394b48f8}, 0x0)

19:47:49 executing program 1:
socket$kcm(0x10, 0x400000002, 0x0)
socket$inet(0x2, 0x2, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x3, &(0x7f00000000c0)=@framed, &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
write$binfmt_script(r1, &(0x7f0000000480)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r1, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r2 = socket$rxrpc(0x21, 0x2, 0xa)
r3 = syz_genetlink_get_family_id$batadv(&(0x7f0000007580), 0xffffffffffffffff)
sendmsg$BATADV_CMD_SET_HARDIF(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001740)={0x0, 0x2c}}, 0x0)
sendmsg$BATADV_CMD_GET_GATEWAYS(0xffffffffffffffff, &(0x7f0000007680)={0x0, 0x0, &(0x7f0000007640)={&(0x7f0000000000)=ANY=[@ANYBLOB="46040000", @ANYRES16=r3, @ANYBLOB="ff83050000076dc6d81b", @ANYRES32=r2], 0x4}}, 0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendfile(r5, r4, 0x0, 0x100000002)

[ 2637.672747][T16775] bond1371 (unregistering): Released all slaves
[ 2637.698660][T16775] bond1370 (unregistering): Released all slaves
[ 2637.769246][T16775] bond1369 (unregistering): Released all slaves
[ 2637.828750][T16775] bond1368 (unregistering): Released all slaves
[ 2637.880619][T16775] bond1367 (unregistering): Released all slaves
[ 2637.935466][T16775] bond1366 (unregistering): Released all slaves
[ 2637.994923][T16775] bond1365 (unregistering): Released all slaves
[ 2638.059418][T16775] bond1364 (unregistering): Released all slaves
[ 2638.124043][T16775] bond1363 (unregistering): Released all slaves
[ 2638.179415][T16775] bond1362 (unregistering): Released all slaves
[ 2638.189859][T27622] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2638.212294][T27622] CPU: 1 PID: 27622 Comm: syz-executor.3 Not tainted 6.7.0-syzkaller-12291-g435e202d645c #0
[ 2638.222434][T27622] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 2638.226062][   T28] audit: type=1804 audit(1706039269.861:1976): pid=27624 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir245649211/syzkaller.jQ7tPM/78/cgroup.controllers" dev="sda1" ino=1960 res=1 errno=0
[ 2638.232501][T27622] Call Trace:
[ 2638.232513][T27622]  <TASK>
[ 2638.232523][T27622]  dump_stack_lvl+0x125/0x1b0
[ 2638.232556][T27622]  dump_header+0x103/0x900
[ 2638.232594][T27622]  oom_kill_process+0x270/0xa60
[ 2638.232634][T27622]  out_of_memory+0x344/0x16c0
[ 2638.232676][T27622]  ? oom_killer_disable+0x2d0/0x2d0
[ 2638.232710][T27622]  ? rcu_read_unlock+0x1c/0x60
[ 2638.232752][T27622]  mem_cgroup_out_of_memory+0x206/0x270
[ 2638.232779][T27622]  ? mem_cgroup_margin+0x130/0x130
[ 2638.232800][T27622]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2638.310440][T27622]  try_charge_memcg+0xcd1/0x11a0
[ 2638.315442][T27622]  ? mem_cgroup_handle_over_high+0x570/0x570
[ 2638.321479][T27622]  ? get_mem_cgroup_from_objcg+0xb5/0x2a0
[ 2638.327255][T27622]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2638.332684][T27622]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2638.338125][T27622]  __memcg_kmem_charge_page+0xdd/0x2a0
[ 2638.343643][T27622]  memcg_charge_kernel_stack+0xc3/0x1f0
[ 2638.349252][T27622]  copy_process+0x1532/0x97b0
[ 2638.353987][T27622]  ? hlock_class+0x4e/0x130
[ 2638.359152][T27622]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2638.365185][T27622]  ? page_ext_put+0x43/0xd0
[ 2638.369737][T27622]  ? hlock_class+0x4e/0x130
[ 2638.374307][T27622]  ? pidfd_prepare+0x80/0x80
[ 2638.378959][T27622]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2638.384380][T27622]  ? preempt_count_sub+0x160/0x160
[ 2638.389768][T27622]  ? __lock_acquire+0x1502/0x3b30
[ 2638.394939][T27622]  ? __might_fault+0xe6/0x1a0
[ 2638.399682][T27622]  ? _copy_from_user+0x5d/0xf0
[ 2638.404504][T27622]  kernel_clone+0xfd/0x930
[ 2638.409146][T27622]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2638.415176][T27622]  ? create_io_thread+0xe0/0xe0
[ 2638.420092][T27622]  ? find_held_lock+0x2d/0x110
[ 2638.424938][T27622]  __do_sys_clone3+0x1f1/0x260
[ 2638.429757][T27622]  ? __do_sys_clone+0x100/0x100
[ 2638.434705][T27622]  do_syscall_64+0xd3/0x250
[ 2638.439263][T27622]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 2638.445226][T27622] RIP: 0033:0x7f212b0a8b99
[ 2638.449695][T27622] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 2638.469517][T27622] RSP: 002b:00007ffc7b20b738 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 2638.481627][T27622] RAX: ffffffffffffffda RBX: 00007f212b051270 RCX: 00007f212b0a8b99
[ 2638.489644][T27622] RDX: 00007f212b051270 RSI: 0000000000000058 RDI: 00007ffc7b20b780
[ 2638.498633][T27622] RBP: 00007f212be566c0 R08: 00007f212be566c0 R09: 00007ffc7b20b867
[ 2638.506744][T27622] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 2638.515463][T27622] R13: 000000000000000b R14: 00007ffc7b20b780 R15: 00007ffc7b20b868
[ 2638.523933][T27622]  </TASK>
[ 2638.586838][T27622] memory: usage 307200kB, limit 307200kB, failcnt 128558
[ 2638.612750][T16775] bond1361 (unregistering): Released all slaves
[ 2638.637728][T16775] bond1360 (unregistering): Released all slaves
[ 2638.639490][T27622] memory+swap: usage 307588kB, limit 9007199254740988kB, failcnt 0
[ 2638.662132][T16775] bond1359 (unregistering): Released all slaves
[ 2638.677720][T27622] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0
[ 2638.686254][T27622] Memory cgroup stats for /syz3:
[ 2638.686417][T27622] cache 0
[ 2638.694708][T27622] rss 12288
[ 2638.703562][T27622] rss_huge 0
[ 2638.707507][T27622] shmem 0
[ 2638.710649][T27622] mapped_file 0
[ 2638.721154][T16775] bond1358 (unregistering): Released all slaves
[ 2638.736013][T27622] dirty 0
[ 2638.739024][T27622] writeback 0
[ 2638.750732][T27622] workingset_refault_anon 38229
[ 2638.755656][T27622] workingset_refault_file 1
[ 2638.760249][T27622] swap 397312
[ 2638.763553][T27622] swapcached 12288
[ 2638.767324][T27622] pgpgin 162523
[ 2638.773097][T16775] bond1357 (unregistering): Released all slaves
[ 2638.786007][T27622] pgpgout 162520
[ 2638.789625][T27622] pgfault 355727
[ 2638.793199][T27622] pgmajfault 37053
[ 2638.797661][T27622] inactive_anon 8192
[ 2638.801589][T27622] active_anon 4096
[ 2638.805342][T27622] inactive_file 0
19:47:50 executing program 1:
socket$kcm(0x10, 0x400000002, 0x0)
socket$inet(0x2, 0x2, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
write$binfmt_script(r0, &(0x7f0000000480)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x28011, r0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r1 = socket$rxrpc(0x21, 0x2, 0xa)
r2 = syz_genetlink_get_family_id$batadv(&(0x7f0000007580), 0xffffffffffffffff)
sendmsg$BATADV_CMD_SET_HARDIF(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001740)={&(0x7f0000000000)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16, @ANYBLOB="2d0100000000000000000500f6ff08000300", @ANYRES32], 0x2c}}, 0x0)
sendmsg$BATADV_CMD_GET_GATEWAYS(0xffffffffffffffff, &(0x7f0000007680)={0x0, 0x0, &(0x7f0000007640)={&(0x7f0000000000)=ANY=[@ANYBLOB="46040000", @ANYRES16=r2, @ANYBLOB="ff83050000076dc6d81b", @ANYRES32=r1], 0x4}}, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendfile(r4, r3, 0x0, 0x100000002)

[ 2638.838548][T27622] active_file 0
[ 2638.842074][T27622] unevictable 0
[ 2638.854148][T16775] bond1356 (unregistering): Released all slaves
[ 2638.860764][T27622] hierarchical_memory_limit 314572800
[ 2638.886509][T27622] hierarchical_memsw_limit 9223372036854771712
[ 2638.902223][T27622] total_cache 0
[ 2638.913983][T27622] total_rss 12288
[ 2638.918367][T27622] total_rss_huge 0
[ 2638.922358][T27622] total_shmem 0
[ 2638.929315][T16775] bond1355 (unregistering): Released all slaves
[ 2638.949987][T27622] total_mapped_file 0
[ 2638.954744][T27622] total_dirty 0
[ 2638.972969][T27622] total_writeback 0
[ 2638.977473][T27622] total_workingset_refault_anon 38229
[ 2638.987232][T26667] Bluetooth: hci10: unexpected cc 0x0c03 length: 249 > 1
[ 2639.000876][T26667] Bluetooth: hci10: unexpected cc 0x1003 length: 249 > 9
[ 2639.006174][T27622] total_workingset_refault_file 1
[ 2639.013815][T26667] Bluetooth: hci10: unexpected cc 0x1001 length: 249 > 9
[ 2639.026462][T27622] total_swap 397312
[ 2639.035110][T27622] total_swapcached 12288
[ 2639.036306][T26667] Bluetooth: hci10: unexpected cc 0x0c23 length: 249 > 4
[ 2639.059615][T27622] total_pgpgin 162523
[ 2639.063971][T26667] Bluetooth: hci10: unexpected cc 0x0c25 length: 249 > 3
[ 2639.067587][T27622] total_pgpgout 162520
[ 2639.073891][T16775] bond1354 (unregistering): Released all slaves
[ 2639.078973][T27622] total_pgfault 355727
[ 2639.086761][T26667] Bluetooth: hci10: unexpected cc 0x0c38 length: 249 > 2
[ 2639.096420][T27622] total_pgmajfault 37053
[ 2639.100806][T27622] total_inactive_anon 8192
[ 2639.105256][T27622] total_active_anon 4096
[ 2639.109659][T27622] total_inactive_file 0
[ 2639.113876][T27622] total_active_file 0
[ 2639.118829][T27622] total_unevictable 0
[ 2639.122833][T27622] anon_cost 0
[ 2639.126309][T27622] file_cost 0
[ 2639.129635][T27622] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=27622,uid=0
[ 2639.145312][T27622] Memory cgroup out of memory: Killed process 27622 (syz-executor.3) total-vm:54504kB, anon-rss:368kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
19:47:50 executing program 3:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x32}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000280)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000240)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=@newlink={0x48, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0xe403, r2}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @veth={{0x9}, {0x18, 0x2, 0x0, 0x1, @val=@VETH_INFO_PEER={0x14}}}}]}, 0x48}, 0xffff8880394b4be0}, 0x0)

[ 2639.244264][T16775] bond1353 (unregistering): Released all slaves
19:47:50 executing program 1:
socket$kcm(0x10, 0x400000002, 0x0)
socket$inet(0x2, 0x2, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x3, &(0x7f00000000c0)=@framed, &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
write$binfmt_script(r1, &(0x7f0000000480)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r1, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r2 = socket$rxrpc(0x21, 0x2, 0xa)
r3 = syz_genetlink_get_family_id$batadv(&(0x7f0000007580), 0xffffffffffffffff)
sendmsg$BATADV_CMD_SET_HARDIF(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001740)={0x0, 0x2c}}, 0x0)
sendmsg$BATADV_CMD_GET_GATEWAYS(0xffffffffffffffff, &(0x7f0000007680)={0x0, 0x0, &(0x7f0000007640)={&(0x7f0000000000)=ANY=[@ANYBLOB="46040000", @ANYRES16=r3, @ANYBLOB="ff83050000076dc6d81b", @ANYRES32=r2], 0x4}}, 0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendfile(r5, r4, 0x0, 0x100000002)

[ 2639.325593][T16775] bond1352 (unregistering): Released all slaves
[ 2639.385553][T16775] bond1351 (unregistering): Released all slaves
[ 2639.433828][T16775] bond1350 (unregistering): Released all slaves
[ 2639.496259][   T28] audit: type=1804 audit(1706039271.141:1977): pid=27636 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir245649211/syzkaller.jQ7tPM/80/cgroup.controllers" dev="sda1" ino=1951 res=1 errno=0
[ 2639.549290][T16775] bond1349 (unregistering): Released all slaves
[ 2639.600205][T16775] bond1348 (unregistering): Released all slaves
[ 2639.670102][T16775] bond1347 (unregistering): Released all slaves
[ 2639.727634][T16775] bond1346 (unregistering): Released all slaves
[ 2639.776921][T27635] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2639.793874][T16775] bond1345 (unregistering): Released all slaves
[ 2639.803021][T27635] CPU: 0 PID: 27635 Comm: syz-executor.3 Not tainted 6.7.0-syzkaller-12291-g435e202d645c #0
[ 2639.813170][T27635] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 2639.823265][T27635] Call Trace:
[ 2639.826594][T27635]  <TASK>
[ 2639.829574][T27635]  dump_stack_lvl+0x125/0x1b0
[ 2639.834388][T27635]  dump_header+0x103/0x900
[ 2639.838919][T27635]  oom_kill_process+0x270/0xa60
[ 2639.843818][T27635]  out_of_memory+0x344/0x16c0
[ 2639.848541][T27635]  ? oom_killer_disable+0x2d0/0x2d0
[ 2639.853900][T27635]  ? rcu_read_unlock+0x1c/0x60
[ 2639.858734][T27635]  mem_cgroup_out_of_memory+0x206/0x270
[ 2639.864330][T27635]  ? mem_cgroup_margin+0x130/0x130
[ 2639.869491][T27635]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2639.874940][T27635]  try_charge_memcg+0xcd1/0x11a0
[ 2639.879944][T27635]  ? mem_cgroup_handle_over_high+0x570/0x570
[ 2639.885978][T27635]  ? get_mem_cgroup_from_objcg+0xb5/0x2a0
[ 2639.891754][T27635]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2639.897185][T27635]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2639.902697][T27635]  __memcg_kmem_charge_page+0xdd/0x2a0
[ 2639.908234][T27635]  memcg_charge_kernel_stack+0xc3/0x1f0
[ 2639.913842][T27635]  copy_process+0x1532/0x97b0
[ 2639.918682][T27635]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2639.924714][T27635]  ? page_ext_put+0x43/0xd0
[ 2639.929978][T27635]  ? hlock_class+0x4e/0x130
[ 2639.934638][T27635]  ? pidfd_prepare+0x80/0x80
[ 2639.939277][T27635]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2639.944690][T27635]  ? preempt_count_sub+0x160/0x160
[ 2639.949853][T27635]  ? print_usage_bug.part.0+0x550/0x550
[ 2639.955608][T27635]  ? __might_fault+0xe6/0x1a0
[ 2639.960366][T27635]  ? _copy_from_user+0x5d/0xf0
[ 2639.965262][T27635]  kernel_clone+0xfd/0x930
[ 2639.969734][T27635]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2639.975757][T27635]  ? create_io_thread+0xe0/0xe0
[ 2639.980670][T27635]  ? find_held_lock+0x2d/0x110
[ 2639.985440][T27635]  __do_sys_clone3+0x1f1/0x260
[ 2639.990206][T27635]  ? __do_sys_clone+0x100/0x100
[ 2639.995115][T27635]  do_syscall_64+0xd3/0x250
[ 2639.999667][T27635]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 2640.005608][T27635] RIP: 0033:0x7f212b0a8b99
[ 2640.010047][T27635] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 2640.029662][T27635] RSP: 002b:00007ffc7b20b738 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 2640.038111][T27635] RAX: ffffffffffffffda RBX: 00007f212b051270 RCX: 00007f212b0a8b99
[ 2640.046112][T27635] RDX: 00007f212b051270 RSI: 0000000000000058 RDI: 00007ffc7b20b780
[ 2640.054125][T27635] RBP: 00007f212be566c0 R08: 00007f212be566c0 R09: 00007ffc7b20b867
[ 2640.062137][T27635] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 2640.070232][T27635] R13: 000000000000000b R14: 00007ffc7b20b780 R15: 00007ffc7b20b868
[ 2640.078281][T27635]  </TASK>
[ 2640.091192][T16775] bond1344 (unregistering): Released all slaves
[ 2640.102295][T27635] memory: usage 307200kB, limit 307200kB, failcnt 128938
[ 2640.118770][T27635] memory+swap: usage 307560kB, limit 9007199254740988kB, failcnt 0
[ 2640.136186][T27635] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[ 2640.151290][T27635] Memory cgroup stats for /syz3:
[ 2640.151483][T27635] cache 0
[ 2640.178276][T27635] rss 0
[ 2640.181113][T27635] rss_huge 0
[ 2640.184347][T27635] shmem 0
[ 2640.198361][T16775] bond1343 (unregistering): Released all slaves
[ 2640.206034][T27635] mapped_file 0
[ 2640.209607][T27635] dirty 0
[ 2640.212586][T27635] writeback 0
19:47:51 executing program 1:
socket$kcm(0x10, 0x400000002, 0x0)
socket$inet(0x2, 0x2, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
write$binfmt_script(r0, &(0x7f0000000480)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r1 = socket$rxrpc(0x21, 0x2, 0x0)
r2 = syz_genetlink_get_family_id$batadv(&(0x7f0000007580), 0xffffffffffffffff)
sendmsg$BATADV_CMD_SET_HARDIF(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001740)={&(0x7f0000000000)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16, @ANYBLOB="2d0100000000000000000500f6ff08000300", @ANYRES32], 0x2c}}, 0x0)
sendmsg$BATADV_CMD_GET_GATEWAYS(0xffffffffffffffff, &(0x7f0000007680)={0x0, 0x0, &(0x7f0000007640)={&(0x7f0000000000)=ANY=[@ANYBLOB="46040000", @ANYRES16=r2, @ANYBLOB="ff83050000076dc6d81b", @ANYRES32=r1], 0x4}}, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendfile(r4, r3, 0x0, 0x100000002)

[ 2640.226123][T27635] workingset_refault_anon 38364
[ 2640.233406][T27635] workingset_refault_file 1
[ 2640.243023][T27635] swap 368640
[ 2640.249867][T27635] swapcached 0
[ 2640.258237][T27635] pgpgin 162669
[ 2640.264347][T16775] bond1342 (unregistering): Released all slaves
[ 2640.266029][T27635] pgpgout 162669
[ 2640.297591][T27635] pgfault 355965
[ 2640.301197][T27635] pgmajfault 37179
[ 2640.304940][T27635] inactive_anon 0
[ 2640.326708][T27635] active_anon 0
[ 2640.327285][T16775] bond1341 (unregistering): Released all slaves
[ 2640.330202][T27635] inactive_file 0
[ 2640.356114][T27635] active_file 0
[ 2640.359642][T27635] unevictable 0
[ 2640.363132][T27635] hierarchical_memory_limit 314572800
[ 2640.376681][T27635] hierarchical_memsw_limit 9223372036854771712
[ 2640.383270][T27635] total_cache 0
[ 2640.396335][T27635] total_rss 0
[ 2640.399684][T27635] total_rss_huge 0
[ 2640.403537][T27635] total_shmem 0
[ 2640.413570][T16775] bond1340 (unregistering): Released all slaves
[ 2640.420961][T27635] total_mapped_file 0
[ 2640.429859][T27635] total_dirty 0
[ 2640.437454][T27635] total_writeback 0
[ 2640.442530][T27635] total_workingset_refault_anon 38364
[ 2640.457319][T27635] total_workingset_refault_file 1
[ 2640.468562][T27635] total_swap 368640
[ 2640.477606][T27635] total_swapcached 0
[ 2640.484852][T16775] bond1339 (unregistering): Released all slaves
[ 2640.487461][T27635] total_pgpgin 162669
[ 2640.499800][T27635] total_pgpgout 162669
[ 2640.508511][T27635] total_pgfault 355965
[ 2640.518749][T27635] total_pgmajfault 37179
[ 2640.531196][T27635] total_inactive_anon 0
[ 2640.540927][T27635] total_active_anon 0
[ 2640.542931][T16775] bond1338 (unregistering): Released all slaves
[ 2640.549470][T27635] total_inactive_file 0
[ 2640.576646][T27635] total_active_file 0
[ 2640.580693][T27635] total_unevictable 0
[ 2640.588455][T27635] anon_cost 0
[ 2640.591790][T27635] file_cost 0
[ 2640.595090][T27635] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=27635,uid=0
[ 2640.617568][T16775] bond1337 (unregistering): Released all slaves
[ 2640.656082][T27635] Memory cgroup out of memory: Killed process 27635 (syz-executor.3) total-vm:54504kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 2640.675889][T16775] bond1336 (unregistering): Released all slaves
19:47:52 executing program 3:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x32}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000280)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000240)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=@newlink={0x48, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0xe403, r2}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @veth={{0x9}, {0x18, 0x2, 0x0, 0x1, @val=@VETH_INFO_PEER={0x14}}}}]}, 0x48}, 0x1, 0x2}, 0x0)

[ 2640.734538][   T28] audit: type=1804 audit(1706039272.381:1978): pid=27640 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir245649211/syzkaller.jQ7tPM/81/cgroup.controllers" dev="sda1" ino=1963 res=1 errno=0
[ 2640.765022][T16775] bond1335 (unregistering): Released all slaves
[ 2640.838698][T16775] bond1334 (unregistering): Released all slaves
[ 2640.913396][T16775] bond1333 (unregistering): Released all slaves
[ 2640.961337][T16775] bond1332 (unregistering): Released all slaves
[ 2641.032805][T16775] bond1331 (unregistering): Released all slaves
[ 2641.045303][ T5094] Bluetooth: hci11: unexpected cc 0x0c03 length: 249 > 1
[ 2641.058327][ T5094] Bluetooth: hci11: unexpected cc 0x1003 length: 249 > 9
[ 2641.076530][ T5094] Bluetooth: hci11: unexpected cc 0x1001 length: 249 > 9
[ 2641.089375][ T5094] Bluetooth: hci11: unexpected cc 0x0c23 length: 249 > 4
[ 2641.098908][ T5094] Bluetooth: hci11: unexpected cc 0x0c25 length: 249 > 3
[ 2641.109827][ T5094] Bluetooth: hci11: unexpected cc 0x0c38 length: 249 > 2
[ 2641.146874][T16775] bond1330 (unregistering): Released all slaves
[ 2641.176555][ T5094] Bluetooth: hci10: command 0x0409 tx timeout
[ 2641.218357][T16775] bond1329 (unregistering): Released all slaves
[ 2641.220523][T27642] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2641.244360][T16775] bond1328 (unregistering): Released all slaves
[ 2641.256619][T27642] CPU: 0 PID: 27642 Comm: syz-executor.3 Not tainted 6.7.0-syzkaller-12291-g435e202d645c #0
[ 2641.266753][T27642] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 2641.276852][T27642] Call Trace:
[ 2641.280172][T27642]  <TASK>
[ 2641.283141][T27642]  dump_stack_lvl+0x125/0x1b0
[ 2641.287871][T27642]  dump_header+0x103/0x900
[ 2641.292355][T27642]  oom_kill_process+0x270/0xa60
[ 2641.297268][T27642]  out_of_memory+0x344/0x16c0
[ 2641.302010][T27642]  ? oom_killer_disable+0x2d0/0x2d0
[ 2641.307270][T27642]  ? rcu_read_unlock+0x1c/0x60
[ 2641.312096][T27642]  mem_cgroup_out_of_memory+0x206/0x270
[ 2641.317675][T27642]  ? mem_cgroup_margin+0x130/0x130
[ 2641.322800][T27642]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2641.328195][T27642]  try_charge_memcg+0xcd1/0x11a0
[ 2641.333154][T27642]  ? mem_cgroup_handle_over_high+0x570/0x570
[ 2641.339148][T27642]  ? get_mem_cgroup_from_objcg+0xb5/0x2a0
[ 2641.344879][T27642]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2641.350264][T27642]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2641.355654][T27642]  __memcg_kmem_charge_page+0xdd/0x2a0
[ 2641.361564][T27642]  memcg_charge_kernel_stack+0xc3/0x1f0
[ 2641.367179][T27642]  copy_process+0x527/0x97b0
[ 2641.371824][T27642]  ? hlock_class+0x4e/0x130
[ 2641.376378][T27642]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2641.382384][T27642]  ? hlock_class+0x4e/0x130
[ 2641.386964][T27642]  ? pidfd_prepare+0x80/0x80
[ 2641.392945][T27642]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2641.398953][T27642]  ? preempt_count_sub+0x160/0x160
[ 2641.404082][T27642]  ? __lock_acquire+0x1502/0x3b30
[ 2641.409124][T27642]  ? __might_fault+0xe6/0x1a0
[ 2641.413832][T27642]  ? _copy_from_user+0x5d/0xf0
[ 2641.418618][T27642]  kernel_clone+0xfd/0x930
[ 2641.423139][T27642]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2641.429133][T27642]  ? create_io_thread+0xe0/0xe0
[ 2641.434006][T27642]  ? find_held_lock+0x2d/0x110
[ 2641.438880][T27642]  __do_sys_clone3+0x1f1/0x260
[ 2641.443655][T27642]  ? __do_sys_clone+0x100/0x100
[ 2641.448556][T27642]  do_syscall_64+0xd3/0x250
[ 2641.453076][T27642]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 2641.458985][T27642] RIP: 0033:0x7f212b0a8b99
[ 2641.463407][T27642] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 2641.483200][T27642] RSP: 002b:00007ffc7b20b738 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 2641.491626][T27642] RAX: ffffffffffffffda RBX: 00007f212b051270 RCX: 00007f212b0a8b99
[ 2641.499611][T27642] RDX: 00007f212b051270 RSI: 0000000000000058 RDI: 00007ffc7b20b780
[ 2641.507596][T27642] RBP: 00007f212be566c0 R08: 00007f212be566c0 R09: 00007ffc7b20b867
[ 2641.515577][T27642] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 2641.523560][T27642] R13: 000000000000000b R14: 00007ffc7b20b780 R15: 00007ffc7b20b868
[ 2641.532003][T27642]  </TASK>
[ 2641.543168][T16775] bond1327 (unregistering): Released all slaves
[ 2641.565087][T27642] memory: usage 307200kB, limit 307200kB, failcnt 129223
[ 2641.575921][T16775] bond1326 (unregistering): Released all slaves
19:47:53 executing program 1:
socket$kcm(0x10, 0x400000002, 0x0)
socket$inet(0x2, 0x2, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
write$binfmt_script(r0, 0x0, 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r1 = socket$rxrpc(0x21, 0x2, 0xa)
r2 = syz_genetlink_get_family_id$batadv(&(0x7f0000007580), 0xffffffffffffffff)
sendmsg$BATADV_CMD_SET_HARDIF(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001740)={&(0x7f0000000000)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16, @ANYBLOB="2d0100000000000000000500f6ff08000300", @ANYRES32], 0x2c}}, 0x0)
sendmsg$BATADV_CMD_GET_GATEWAYS(0xffffffffffffffff, &(0x7f0000007680)={0x0, 0x0, &(0x7f0000007640)={&(0x7f0000000000)=ANY=[@ANYBLOB="46040000", @ANYRES16=r2, @ANYBLOB="ff83050000076dc6d81b", @ANYRES32=r1], 0x4}}, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendfile(r4, r3, 0x0, 0x100000002)

[ 2641.610791][T16775] bond1325 (unregistering): Released all slaves
[ 2641.617244][T27642] memory+swap: usage 307588kB, limit 9007199254740988kB, failcnt 0
[ 2641.636064][T27642] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0
[ 2641.646425][T27642] Memory cgroup stats for /syz3:
[ 2641.646600][T27642] cache 0
[ 2641.654573][T27642] rss 12288
[ 2641.673001][T27642] rss_huge 0
[ 2641.676920][T27642] shmem 0
[ 2641.682581][T16775] bond1324 (unregistering): Released all slaves
[ 2641.698541][T27642] mapped_file 0
[ 2641.706079][T27642] dirty 0
[ 2641.720153][T27642] writeback 0
[ 2641.730575][T16775] bond1323 (unregistering): Released all slaves
[ 2641.737366][T27642] workingset_refault_anon 38462
[ 2641.742353][T27642] workingset_refault_file 1
[ 2641.756071][T27642] swap 397312
[ 2641.759857][T27642] swapcached 8192
[ 2641.764922][T27642] pgpgin 162780
[ 2641.779910][T27642] pgpgout 162777
[ 2641.790832][T27642] pgfault 356134
[ 2641.796161][T27642] pgmajfault 37271
[ 2641.802524][T16775] bond1322 (unregistering): Released all slaves
[ 2641.809022][T27642] inactive_anon 4096
[ 2641.814523][T27642] active_anon 8192
[ 2641.826078][T27642] inactive_file 0
19:47:53 executing program 1:
socket$kcm(0x10, 0x400000002, 0x0)
socket$inet(0x2, 0x2, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
write$binfmt_script(r1, &(0x7f0000000480)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r1, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r2 = socket$rxrpc(0x21, 0x2, 0xa)
sendmsg$BATADV_CMD_SET_HARDIF(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001740)={&(0x7f0000000000)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16, @ANYBLOB="2d0100000000000000000500f6ff08000300", @ANYRES32=r0], 0x2c}}, 0x0)
sendmsg$BATADV_CMD_GET_GATEWAYS(0xffffffffffffffff, &(0x7f0000007680)={0x0, 0x0, &(0x7f0000007640)={&(0x7f0000000000)=ANY=[@ANYBLOB="46040000", @ANYRES16, @ANYBLOB="ff83050000076dc6d81b", @ANYRES32=r2], 0x4}}, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendfile(r4, r3, 0x0, 0x100000002)

[ 2641.842589][T27642] active_file 0
[ 2641.856219][T27642] unevictable 0
[ 2641.868817][T27642] hierarchical_memory_limit 314572800
[ 2641.880277][T16775] bond1321 (unregistering): Released all slaves
[ 2641.954596][T27642] hierarchical_memsw_limit 9223372036854771712
[ 2641.981630][T27642] total_cache 0
[ 2641.985189][T27642] total_rss 12288
[ 2641.986173][T16775] bond1320 (unregistering): Released all slaves
[ 2642.008290][T27642] total_rss_huge 0
[ 2642.012077][T27642] total_shmem 0
[ 2642.015561][T27642] total_mapped_file 0
[ 2642.043485][T27642] total_dirty 0
[ 2642.052359][T27642] total_writeback 0
[ 2642.063076][T27642] total_workingset_refault_anon 38462
[ 2642.074494][T27642] total_workingset_refault_file 1
[ 2642.083011][T16775] bond1319 (unregistering): Released all slaves
[ 2642.091584][T27642] total_swap 397312
[ 2642.095523][T27642] total_swapcached 8192
[ 2642.111644][T27642] total_pgpgin 162780
[ 2642.121458][   T28] audit: type=1804 audit(1706039273.771:1979): pid=27648 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir245649211/syzkaller.jQ7tPM/83/cgroup.controllers" dev="sda1" ino=1963 res=1 errno=0
[ 2642.158860][T27642] total_pgpgout 162777
[ 2642.163090][T27642] total_pgfault 356134
[ 2642.178460][T27642] total_pgmajfault 37271
[ 2642.183005][T27642] total_inactive_anon 4096
[ 2642.187968][T27642] total_active_anon 8192
[ 2642.190939][T16775] bond1318 (unregistering): Released all slaves
[ 2642.193254][T27642] total_inactive_file 0
[ 2642.203154][T27642] total_active_file 0
[ 2642.207406][T27642] total_unevictable 0
[ 2642.213536][T27642] anon_cost 0
[ 2642.217354][T27642] file_cost 0
[ 2642.220841][T27642] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=27642,uid=0
[ 2642.245675][T27642] Memory cgroup out of memory: Killed process 27642 (syz-executor.3) total-vm:54504kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 2642.268236][T16775] bond1317 (unregistering): Released all slaves
19:47:53 executing program 3:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x32}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000280)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000240)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=@newlink={0x48, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0xe403, r2}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @veth={{0x9}, {0x18, 0x2, 0x0, 0x1, @val=@VETH_INFO_PEER={0x14}}}}]}, 0x48}, 0x1, 0x3}, 0x0)

[ 2642.308763][T16775] bond1316 (unregistering): Released all slaves
[ 2642.371315][T16775] bond1315 (unregistering): Released all slaves
[ 2642.405508][T16775] bond1314 (unregistering): Released all slaves
[ 2642.475161][T16775] bond1313 (unregistering): Released all slaves
[ 2642.523239][T16775] bond1312 (unregistering): Released all slaves
[ 2642.578594][T16775] bond1311 (unregistering): Released all slaves
[ 2642.629050][T16775] bond1310 (unregistering): Released all slaves
[ 2642.682712][T16775] bond1309 (unregistering): Released all slaves
[ 2642.735603][T16775] bond1308 (unregistering): Released all slaves
[ 2642.792447][T27650] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2642.793523][T16775] bond1307 (unregistering): Released all slaves
[ 2642.817728][T27650] CPU: 0 PID: 27650 Comm: syz-executor.3 Not tainted 6.7.0-syzkaller-12291-g435e202d645c #0
[ 2642.827864][T27650] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 2642.838010][T27650] Call Trace:
[ 2642.841320][T27650]  <TASK>
[ 2642.844282][T27650]  dump_stack_lvl+0x125/0x1b0
[ 2642.849013][T27650]  dump_header+0x103/0x900
[ 2642.853497][T27650]  oom_kill_process+0x270/0xa60
[ 2642.858423][T27650]  out_of_memory+0x344/0x16c0
[ 2642.863175][T27650]  ? oom_killer_disable+0x2d0/0x2d0
[ 2642.868440][T27650]  ? rcu_read_unlock+0x1c/0x60
[ 2642.873349][T27650]  mem_cgroup_out_of_memory+0x206/0x270
[ 2642.878934][T27650]  ? mem_cgroup_margin+0x130/0x130
[ 2642.884083][T27650]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2642.889647][T27650]  try_charge_memcg+0xcd1/0x11a0
[ 2642.894704][T27650]  ? mem_cgroup_handle_over_high+0x570/0x570
[ 2642.900706][T27650]  ? get_mem_cgroup_from_objcg+0xb5/0x2a0
[ 2642.906434][T27650]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2642.911832][T27650]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2642.917317][T27650]  __memcg_kmem_charge_page+0xdd/0x2a0
[ 2642.922815][T27650]  memcg_charge_kernel_stack+0xc3/0x1f0
[ 2642.929450][T27650]  copy_process+0x1532/0x97b0
[ 2642.934224][T27650]  ? hlock_class+0x4e/0x130
[ 2642.938751][T27650]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2642.944746][T27650]  ? hlock_class+0x4e/0x130
[ 2642.949281][T27650]  ? pidfd_prepare+0x80/0x80
[ 2642.953893][T27650]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2642.959575][T27650]  ? preempt_count_sub+0x160/0x160
[ 2642.964738][T27650]  ? __lock_acquire+0x1502/0x3b30
[ 2642.969779][T27650]  ? __might_fault+0xe6/0x1a0
[ 2642.974486][T27650]  ? _copy_from_user+0x5d/0xf0
[ 2642.979275][T27650]  kernel_clone+0xfd/0x930
[ 2642.983709][T27650]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2642.989876][T27650]  ? create_io_thread+0xe0/0xe0
[ 2642.994850][T27650]  ? find_held_lock+0x2d/0x110
[ 2642.999778][T27650]  __do_sys_clone3+0x1f1/0x260
[ 2643.004569][T27650]  ? __do_sys_clone+0x100/0x100
[ 2643.009469][T27650]  do_syscall_64+0xd3/0x250
[ 2643.013994][T27650]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 2643.019900][T27650] RIP: 0033:0x7f212b0a8b99
[ 2643.024326][T27650] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 2643.044207][T27650] RSP: 002b:00007ffc7b20b738 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 2643.052636][T27650] RAX: ffffffffffffffda RBX: 00007f212b051270 RCX: 00007f212b0a8b99
[ 2643.060620][T27650] RDX: 00007f212b051270 RSI: 0000000000000058 RDI: 00007ffc7b20b780
[ 2643.069302][T27650] RBP: 00007f212be566c0 R08: 00007f212be566c0 R09: 00007ffc7b20b867
[ 2643.077288][T27650] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 2643.085267][T27650] R13: 000000000000000b R14: 00007ffc7b20b780 R15: 00007ffc7b20b868
[ 2643.093274][T27650]  </TASK>
19:47:54 executing program 1:
socket$kcm(0x10, 0x400000002, 0x0)
socket$inet(0x2, 0x2, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
write$binfmt_script(r1, &(0x7f0000000480)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r1, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r2 = socket$rxrpc(0x21, 0x2, 0xa)
sendmsg$BATADV_CMD_SET_HARDIF(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001740)={&(0x7f0000000000)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16, @ANYBLOB="2d0100000000000000000500f6ff08000300", @ANYRES32=r0], 0x2c}}, 0x0)
sendmsg$BATADV_CMD_GET_GATEWAYS(0xffffffffffffffff, &(0x7f0000007680)={0x0, 0x0, &(0x7f0000007640)={&(0x7f0000000000)=ANY=[@ANYBLOB="46040000", @ANYRES16, @ANYBLOB="ff83050000076dc6d81b", @ANYRES32=r2], 0x4}}, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendfile(r4, r3, 0x0, 0x100000002)

[ 2643.128192][T16775] bond1306 (unregistering): Released all slaves
[ 2643.146078][T27650] memory: usage 307200kB, limit 307200kB, failcnt 129496
[ 2643.162594][T27650] memory+swap: usage 307548kB, limit 9007199254740988kB, failcnt 0
[ 2643.173189][T16775] bond1305 (unregistering): Released all slaves
[ 2643.180685][ T5094] Bluetooth: hci11: command 0x0409 tx timeout
[ 2643.196512][T27650] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0
[ 2643.215128][T27650] Memory cgroup stats for /syz3:
[ 2643.215287][T27650] cache 0
[ 2643.226805][T27650] rss 12288
[ 2643.234498][T27650] rss_huge 0
[ 2643.240366][T16775] bond1304 (unregistering): Released all slaves
[ 2643.256034][T27650] shmem 0
[ 2643.256142][ T5094] Bluetooth: hci10: command 0x041b tx timeout
[ 2643.259018][T27650] mapped_file 0
[ 2643.259033][T27650] dirty 0
[ 2643.317999][T27650] writeback 0
[ 2643.326445][T27650] workingset_refault_anon 38560
[ 2643.346113][T27650] workingset_refault_file 1
[ 2643.364192][T27650] swap 356352
[ 2643.371192][T27650] swapcached 0
[ 2643.385283][T16775] bond1303 (unregistering): Released all slaves
[ 2643.394532][T27650] pgpgin 162889
[ 2643.398622][T27650] pgpgout 162886
[ 2643.407987][T27650] pgfault 356313
[ 2643.416319][T27650] pgmajfault 37365
[ 2643.436177][T27650] inactive_anon 12288
[ 2643.440885][T27650] active_anon 0
[ 2643.453500][T27650] inactive_file 0
[ 2643.465236][T27650] active_file 0
[ 2643.478407][T16775] bond1302 (unregistering): Released all slaves
[ 2643.480018][   T28] audit: type=1804 audit(1706039275.131:1980): pid=27653 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir245649211/syzkaller.jQ7tPM/84/cgroup.controllers" dev="sda1" ino=1963 res=1 errno=0
[ 2643.496143][T27650] unevictable 0
[ 2643.524081][T27650] hierarchical_memory_limit 314572800
[ 2643.530024][T27650] hierarchical_memsw_limit 9223372036854771712
[ 2643.539878][T27650] total_cache 0
[ 2643.558137][T27650] total_rss 12288
[ 2643.566464][T27650] total_rss_huge 0
[ 2643.571199][T27650] total_shmem 0
[ 2643.572965][T16775] bond1301 (unregistering): Released all slaves
[ 2643.595767][T27650] total_mapped_file 0
[ 2643.600140][T27650] total_dirty 0
[ 2643.611751][T27650] total_writeback 0
[ 2643.613286][T16775] bond1300 (unregistering): Released all slaves
[ 2643.636455][T27650] total_workingset_refault_anon 38560
[ 2643.643570][T27650] total_workingset_refault_file 1
[ 2643.652264][T16775] bond1299 (unregistering): Released all slaves
[ 2643.662090][T27650] total_swap 356352
[ 2643.676324][T27650] total_swapcached 0
[ 2643.681864][T27650] total_pgpgin 162889
[ 2643.693699][T27650] total_pgpgout 162886
[ 2643.706996][T16775] bond1298 (unregistering): Released all slaves
[ 2643.709944][T27650] total_pgfault 356313
[ 2643.736600][T27650] total_pgmajfault 37365
[ 2643.744144][T27650] total_inactive_anon 12288
[ 2643.751399][T16775] bond1297 (unregistering): Released all slaves
[ 2643.761801][T27650] total_active_anon 0
[ 2643.765859][T27650] total_inactive_file 0
[ 2643.787050][T27650] total_active_file 0
[ 2643.791116][T27650] total_unevictable 0
[ 2643.795125][T27650] anon_cost 0
[ 2643.798702][T27650] file_cost 0
[ 2643.802963][T27650] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=27650,uid=0
[ 2643.819382][T27650] Memory cgroup out of memory: Killed process 27650 (syz-executor.3) total-vm:54504kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 2643.848504][T26667] Bluetooth: hci12: unexpected cc 0x0c03 length: 249 > 1
[ 2643.849007][T16775] bond1296 (unregistering): Released all slaves
[ 2643.864710][T26667] Bluetooth: hci12: unexpected cc 0x1003 length: 249 > 9
[ 2643.874657][T26667] Bluetooth: hci12: unexpected cc 0x1001 length: 249 > 9
[ 2643.883562][T26667] Bluetooth: hci12: unexpected cc 0x0c23 length: 249 > 4
19:47:55 executing program 3:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x32}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000280)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000240)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=@newlink={0x48, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0xe403, r2}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @veth={{0x9}, {0x18, 0x2, 0x0, 0x1, @val=@VETH_INFO_PEER={0x14}}}}]}, 0x48}, 0x1, 0x4}, 0x0)

[ 2643.897069][T26667] Bluetooth: hci12: unexpected cc 0x0c25 length: 249 > 3
[ 2643.904713][T26667] Bluetooth: hci12: unexpected cc 0x0c38 length: 249 > 2
[ 2643.917865][T16775] bond1295 (unregistering): Released all slaves
[ 2643.987222][T16775] bond1294 (unregistering): Released all slaves
[ 2644.015123][T16775] bond1293 (unregistering): Released all slaves
[ 2644.070605][T16775] bond1292 (unregistering): Released all slaves
[ 2644.112362][T16775] bond1291 (unregistering): Released all slaves
19:47:55 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=@newlink={0x3c, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0xe403}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bond={{0x9}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BOND_PACKETS_PER_SLAVE={0x8, 0x14, 0xffff}]}}}]}, 0x3c}, 0x1, 0x0, 0x10}, 0x0)

[ 2644.201495][T16775] bond1290 (unregistering): Released all slaves
[ 2644.258429][T16775] bond1289 (unregistering): Released all slaves
[ 2644.311032][T16775] bond1288 (unregistering): Released all slaves
19:47:56 executing program 1:
socket$kcm(0x10, 0x400000002, 0x0)
socket$inet(0x2, 0x2, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x3, &(0x7f00000000c0)=@framed, &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
write$binfmt_script(r1, &(0x7f0000000480)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r1, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r2 = socket$rxrpc(0x21, 0x2, 0xa)
r3 = syz_genetlink_get_family_id$batadv(&(0x7f0000007580), 0xffffffffffffffff)
sendmsg$BATADV_CMD_SET_HARDIF(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, 0x0}, 0x0)
sendmsg$BATADV_CMD_GET_GATEWAYS(0xffffffffffffffff, &(0x7f0000007680)={0x0, 0x0, &(0x7f0000007640)={&(0x7f0000000000)=ANY=[@ANYBLOB="46040000", @ANYRES16=r3, @ANYBLOB="ff83050000076dc6d81b", @ANYRES32=r2], 0x4}}, 0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendfile(r5, r4, 0x0, 0x100000002)

[ 2644.359094][T16775] bond1287 (unregistering): Released all slaves
[ 2644.389176][T27658] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2644.406645][T16775] bond1286 (unregistering): Released all slaves
[ 2644.416151][T27658] CPU: 1 PID: 27658 Comm: syz-executor.3 Not tainted 6.7.0-syzkaller-12291-g435e202d645c #0
[ 2644.426266][T27658] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 2644.436345][T27658] Call Trace:
[ 2644.439641][T27658]  <TASK>
[ 2644.442589][T27658]  dump_stack_lvl+0x125/0x1b0
[ 2644.447303][T27658]  dump_header+0x103/0x900
[ 2644.451760][T27658]  oom_kill_process+0x270/0xa60
[ 2644.456649][T27658]  out_of_memory+0x344/0x16c0
[ 2644.461379][T27658]  ? oom_killer_disable+0x2d0/0x2d0
[ 2644.466620][T27658]  ? rcu_read_unlock+0x1c/0x60
[ 2644.471598][T27658]  mem_cgroup_out_of_memory+0x206/0x270
[ 2644.477172][T27658]  ? mem_cgroup_margin+0x130/0x130
[ 2644.482312][T27658]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2644.487732][T27658]  try_charge_memcg+0xcd1/0x11a0
[ 2644.492711][T27658]  ? mem_cgroup_handle_over_high+0x570/0x570
[ 2644.498721][T27658]  ? get_mem_cgroup_from_objcg+0xb5/0x2a0
[ 2644.504473][T27658]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2644.509888][T27658]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2644.515313][T27658]  __memcg_kmem_charge_page+0xdd/0x2a0
[ 2644.520822][T27658]  memcg_charge_kernel_stack+0xc3/0x1f0
[ 2644.526408][T27658]  copy_process+0x1532/0x97b0
[ 2644.531131][T27658]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2644.537143][T27658]  ? page_ext_put+0x43/0xd0
[ 2644.541676][T27658]  ? hlock_class+0x4e/0x130
[ 2644.546224][T27658]  ? pidfd_prepare+0x80/0x80
[ 2644.550853][T27658]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2644.556260][T27658]  ? preempt_count_sub+0x160/0x160
[ 2644.561399][T27658]  ? print_usage_bug.part.0+0x550/0x550
[ 2644.566985][T27658]  ? __might_fault+0xe6/0x1a0
[ 2644.571712][T27658]  ? _copy_from_user+0x5d/0xf0
[ 2644.576521][T27658]  kernel_clone+0xfd/0x930
[ 2644.580976][T27658]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2644.586984][T27658]  ? create_io_thread+0xe0/0xe0
[ 2644.591975][T27658]  ? find_held_lock+0x2d/0x110
[ 2644.596779][T27658]  __do_sys_clone3+0x1f1/0x260
[ 2644.601570][T27658]  ? __do_sys_clone+0x100/0x100
[ 2644.606482][T27658]  do_syscall_64+0xd3/0x250
[ 2644.611001][T27658]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 2644.616897][T27658] RIP: 0033:0x7f212b0a8b99
[ 2644.621317][T27658] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 2644.640934][T27658] RSP: 002b:00007ffc7b20b738 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 2644.649362][T27658] RAX: ffffffffffffffda RBX: 00007f212b051270 RCX: 00007f212b0a8b99
[ 2644.657353][T27658] RDX: 00007f212b051270 RSI: 0000000000000058 RDI: 00007ffc7b20b780
[ 2644.665327][T27658] RBP: 00007f212be566c0 R08: 00007f212be566c0 R09: 00007ffc7b20b867
[ 2644.673306][T27658] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 2644.681281][T27658] R13: 000000000000000b R14: 00007ffc7b20b780 R15: 00007ffc7b20b868
[ 2644.689277][T27658]  </TASK>
[ 2644.699697][T16775] bond1285 (unregistering): Released all slaves
[ 2644.711231][T27658] memory: usage 307200kB, limit 307200kB, failcnt 129816
[ 2644.723320][T27658] memory+swap: usage 307548kB, limit 9007199254740988kB, failcnt 0
[ 2644.741314][T16775] bond1284 (unregistering): Released all slaves
[ 2644.743941][T27658] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0
[ 2644.759682][T27658] Memory cgroup stats for /syz3:
[ 2644.759870][T27658] cache 0
[ 2644.777305][T16775] bond1283 (unregistering): Released all slaves
[ 2644.779761][T27658] rss 12288
[ 2644.788793][T27658] rss_huge 0
[ 2644.792125][T27658] shmem 0
[ 2644.795149][T27658] mapped_file 0
[ 2644.799016][T27658] dirty 0
[ 2644.802092][T27658] writeback 0
[ 2644.805483][T27658] workingset_refault_anon 38668
[ 2644.810627][T27658] workingset_refault_file 1
[ 2644.815300][T27658] swap 356352
[ 2644.823067][T27658] swapcached 12288
[ 2644.826962][T27658] pgpgin 163008
[ 2644.832098][T27658] pgpgout 163005
[ 2644.835755][T27658] pgfault 356501
[ 2644.840033][T27658] pgmajfault 37470
[ 2644.844161][T27658] inactive_anon 0
[ 2644.847994][T27658] active_anon 12288
[ 2644.851922][T27658] inactive_file 0
[ 2644.855663][T27658] active_file 0
[ 2644.859680][T27658] unevictable 0
[ 2644.863267][T27658] hierarchical_memory_limit 314572800
[ 2644.865436][T16775] bond1282 (unregistering): Released all slaves
[ 2644.876382][T27658] hierarchical_memsw_limit 9223372036854771712
[ 2644.882574][T27658] total_cache 0
[ 2644.897312][T27658] total_rss 12288
[ 2644.903325][T16775] bond1281 (unregistering): Released all slaves
[ 2644.904623][T27658] total_rss_huge 0
[ 2644.911691][   T28] audit: type=1804 audit(1706039276.551:1981): pid=27662 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir245649211/syzkaller.jQ7tPM/86/cgroup.controllers" dev="sda1" ino=1963 res=1 errno=0
[ 2644.920773][T27658] total_shmem 0
[ 2644.958681][T27658] total_mapped_file 0
[ 2644.964608][T27658] total_dirty 0
[ 2644.965103][T16775] bond1280 (unregistering): Released all slaves
[ 2644.968950][T27658] total_writeback 0
[ 2644.979178][T27658] total_workingset_refault_anon 38668
[ 2644.986737][T27658] total_workingset_refault_file 1
[ 2644.993156][T27658] total_swap 356352
[ 2644.998790][T27658] total_swapcached 12288
[ 2645.004760][T27658] total_pgpgin 163008
[ 2645.009643][T27658] total_pgpgout 163005
[ 2645.015326][T27658] total_pgfault 356501
[ 2645.018078][T16775] bond1279 (unregistering): Released all slaves
[ 2645.020548][T27658] total_pgmajfault 37470
[ 2645.030700][T27658] total_inactive_anon 0
[ 2645.037047][T27658] total_active_anon 12288
[ 2645.041674][T27658] total_inactive_file 0
[ 2645.048318][T27658] total_active_file 0
[ 2645.052526][T27658] total_unevictable 0
[ 2645.059042][T27658] anon_cost 0
[ 2645.063941][T27658] file_cost 0
[ 2645.072436][T27658] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=27658,uid=0
[ 2645.090674][T16775] bond1278 (unregistering): Released all slaves
[ 2645.094076][T27658] Memory cgroup out of memory: Killed process 27658 (syz-executor.3) total-vm:54504kB, anon-rss:368kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
19:47:56 executing program 3:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x32}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000280)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000240)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=@newlink={0x48, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0xe403, r2}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @veth={{0x9}, {0x18, 0x2, 0x0, 0x1, @val=@VETH_INFO_PEER={0x14}}}}]}, 0x48}, 0x1, 0x5}, 0x0)

[ 2645.142114][T16775] bond1277 (unregistering): Released all slaves
[ 2645.197681][T16775] bond1276 (unregistering): Released all slaves
[ 2645.221269][T16775] bond1275 (unregistering): Released all slaves
[ 2645.256142][T26667] Bluetooth: hci11: command 0x041b tx timeout
[ 2645.264834][T16775] bond1274 (unregistering): Released all slaves
[ 2645.325802][T16775] bond1273 (unregistering): Released all slaves
[ 2645.337558][T26667] Bluetooth: hci10: command 0x040f tx timeout
19:47:57 executing program 1:
socket$kcm(0x10, 0x400000002, 0x0)
socket$inet(0x2, 0x2, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x3, &(0x7f00000000c0)=@framed, &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
write$binfmt_script(r1, &(0x7f0000000480)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r1, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r2 = socket$rxrpc(0x21, 0x2, 0xa)
r3 = syz_genetlink_get_family_id$batadv(&(0x7f0000007580), 0xffffffffffffffff)
sendmsg$BATADV_CMD_SET_HARDIF(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, 0x0}, 0x0)
sendmsg$BATADV_CMD_GET_GATEWAYS(0xffffffffffffffff, &(0x7f0000007680)={0x0, 0x0, &(0x7f0000007640)={&(0x7f0000000000)=ANY=[@ANYBLOB="46040000", @ANYRES16=r3, @ANYBLOB="ff83050000076dc6d81b", @ANYRES32=r2], 0x4}}, 0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendfile(r5, r4, 0x0, 0x100000002)

[ 2645.411005][T16775] bond1272 (unregistering): Released all slaves
[ 2645.444927][T16775] bond1271 (unregistering): Released all slaves
[ 2645.475719][T27664] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2645.489542][T27664] CPU: 1 PID: 27664 Comm: syz-executor.3 Not tainted 6.7.0-syzkaller-12291-g435e202d645c #0
[ 2645.499669][T27664] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 2645.509752][T27664] Call Trace:
[ 2645.513051][T27664]  <TASK>
[ 2645.516008][T27664]  dump_stack_lvl+0x125/0x1b0
[ 2645.520726][T27664]  dump_header+0x103/0x900
[ 2645.525196][T27664]  oom_kill_process+0x270/0xa60
[ 2645.530091][T27664]  out_of_memory+0x344/0x16c0
[ 2645.534795][T27664]  ? oom_killer_disable+0x2d0/0x2d0
[ 2645.540011][T27664]  ? rcu_read_unlock+0x1c/0x60
[ 2645.544795][T27664]  mem_cgroup_out_of_memory+0x206/0x270
[ 2645.550351][T27664]  ? mem_cgroup_margin+0x130/0x130
[ 2645.555640][T27664]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2645.561034][T27664]  try_charge_memcg+0xcd1/0x11a0
[ 2645.566011][T27664]  ? mem_cgroup_handle_over_high+0x570/0x570
[ 2645.572035][T27664]  ? get_mem_cgroup_from_objcg+0xb5/0x2a0
[ 2645.577792][T27664]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2645.583207][T27664]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2645.588604][T27664]  __memcg_kmem_charge_page+0xdd/0x2a0
[ 2645.594082][T27664]  memcg_charge_kernel_stack+0xc3/0x1f0
[ 2645.599734][T27664]  copy_process+0x527/0x97b0
[ 2645.604342][T27664]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2645.610333][T27664]  ? page_ext_put+0x43/0xd0
[ 2645.614860][T27664]  ? pidfd_prepare+0x80/0x80
[ 2645.619553][T27664]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2645.624961][T27664]  ? preempt_count_sub+0x160/0x160
[ 2645.630107][T27664]  ? print_usage_bug.part.0+0x550/0x550
[ 2645.635673][T27664]  ? __might_fault+0xe6/0x1a0
[ 2645.640367][T27664]  ? _copy_from_user+0x5d/0xf0
[ 2645.645146][T27664]  kernel_clone+0xfd/0x930
[ 2645.649577][T27664]  ? create_io_thread+0xe0/0xe0
[ 2645.654453][T27664]  __do_sys_clone3+0x1f1/0x260
[ 2645.659228][T27664]  ? __do_sys_clone+0x100/0x100
[ 2645.664104][T27664]  ? do_user_addr_fault+0x663/0x1030
[ 2645.669627][T27664]  do_syscall_64+0xd3/0x250
[ 2645.674624][T27664]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 2645.680544][T27664] RIP: 0033:0x7f212b0a8b99
[ 2645.684966][T27664] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 2645.704779][T27664] RSP: 002b:00007ffc7b20b738 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 2645.713937][T27664] RAX: ffffffffffffffda RBX: 00007f212b051270 RCX: 00007f212b0a8b99
[ 2645.721934][T27664] RDX: 00007f212b051270 RSI: 0000000000000058 RDI: 00007ffc7b20b780
[ 2645.730651][T27664] RBP: 00007f212be566c0 R08: 00007f212be566c0 R09: 00007ffc7b20b867
[ 2645.738642][T27664] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 2645.746622][T27664] R13: 000000000000000b R14: 00007ffc7b20b780 R15: 00007ffc7b20b868
[ 2645.755588][T27664]  </TASK>
[ 2645.766094][T27664] memory: usage 307200kB, limit 307200kB, failcnt 130056
[ 2645.773179][T27664] memory+swap: usage 307596kB, limit 9007199254740988kB, failcnt 0
[ 2645.786607][T16775] bond1270 (unregistering): Released all slaves
[ 2645.795156][T27664] kmem: usage 307196kB, limit 9007199254740988kB, failcnt 0
[ 2645.830294][T16775] bond1269 (unregistering): Released all slaves
[ 2645.844126][T27664] Memory cgroup stats for /syz3:
[ 2645.844311][T27664] cache 0
[ 2645.878635][T16775] bond1268 (unregistering): Released all slaves
[ 2645.885565][T27664] rss 4096
[ 2645.889784][T27664] rss_huge 0
[ 2645.893134][T27664] shmem 0
[ 2645.897133][T27664] mapped_file 0
[ 2645.900716][T27664] dirty 0
[ 2645.903750][T27664] writeback 0
[ 2645.908026][T27664] workingset_refault_anon 38768
[ 2645.926378][T27664] workingset_refault_file 1
[ 2645.930934][T27664] swap 405504
[ 2645.937507][T16775] bond1267 (unregistering): Released all slaves
[ 2645.937828][T27664] swapcached 4096
[ 2645.954783][T27664] pgpgin 163119
[ 2645.961041][T27664] pgpgout 163118
[ 2645.968081][T27664] pgfault 356667
[ 2645.974597][T27664] pgmajfault 37559
[ 2645.979319][T26667] Bluetooth: hci12: command 0x0409 tx timeout
[ 2645.981094][T16775] bond1266 (unregistering): Released all slaves
[ 2645.991516][T27664] inactive_anon 4096
[ 2646.004360][T27664] active_anon 0
[ 2646.008179][T27664] inactive_file 0
[ 2646.013056][T27664] active_file 0
[ 2646.014686][   T28] audit: type=1804 audit(1706039277.651:1982): pid=27666 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir245649211/syzkaller.jQ7tPM/87/cgroup.controllers" dev="sda1" ino=1963 res=1 errno=0
[ 2646.016669][T27664] unevictable 0
[ 2646.016682][T27664] hierarchical_memory_limit 314572800
[ 2646.016693][T27664] hierarchical_memsw_limit 9223372036854771712
[ 2646.016704][T27664] total_cache 0
[ 2646.016714][T27664] total_rss 4096
[ 2646.016724][T27664] total_rss_huge 0
[ 2646.016734][T27664] total_shmem 0
[ 2646.016744][T27664] total_mapped_file 0
[ 2646.016753][T27664] total_dirty 0
[ 2646.016762][T27664] total_writeback 0
[ 2646.016772][T27664] total_workingset_refault_anon 38768
[ 2646.016781][T27664] total_workingset_refault_file 1
[ 2646.016791][T27664] total_swap 405504
[ 2646.016800][T27664] total_swapcached 4096
[ 2646.016810][T27664] total_pgpgin 163119
[ 2646.016819][T27664] total_pgpgout 163118
[ 2646.016828][T27664] total_pgfault 356667
[ 2646.016839][T27664] total_pgmajfault 37559
[ 2646.016848][T27664] total_inactive_anon 4096
[ 2646.016857][T27664] total_active_anon 0
[ 2646.016866][T27664] total_inactive_file 0
[ 2646.016875][T27664] total_active_file 0
[ 2646.016886][T27664] total_unevictable 0
[ 2646.016895][T27664] anon_cost 0
[ 2646.016903][T27664] file_cost 0
[ 2646.016913][T27664] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=27664,uid=0
19:47:57 executing program 3:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x32}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000280)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000240)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=@newlink={0x48, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0xe403, r2}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @veth={{0x9}, {0x18, 0x2, 0x0, 0x1, @val=@VETH_INFO_PEER={0x14}}}}]}, 0x48}, 0x1, 0x6}, 0x0)

[ 2646.017037][T27664] Memory cgroup out of memory: Killed process 27664 (syz-executor.3) total-vm:54504kB, anon-rss:340kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 2646.208383][T16775] bond1265 (unregistering): Released all slaves
[ 2646.267001][T16775] bond1264 (unregistering): Released all slaves
[ 2646.312794][T16775] bond1263 (unregistering): Released all slaves
[ 2646.375214][T16775] bond1262 (unregistering): Released all slaves
[ 2646.428584][T16775] bond1261 (unregistering): Released all slaves
[ 2646.488840][T16775] bond1260 (unregistering): Released all slaves
[ 2646.548865][T16775] bond1259 (unregistering): Released all slaves
[ 2646.593408][T16775] bond1258 (unregistering): Released all slaves
[ 2646.638349][T16775] bond1257 (unregistering): Released all slaves
[ 2646.670668][T16775] bond1256 (unregistering): Released all slaves
19:47:58 executing program 1:
socket$kcm(0x10, 0x400000002, 0x0)
socket$inet(0x2, 0x2, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x3, &(0x7f00000000c0)=@framed, &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
write$binfmt_script(r1, &(0x7f0000000480)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r1, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r2 = socket$rxrpc(0x21, 0x2, 0xa)
r3 = syz_genetlink_get_family_id$batadv(&(0x7f0000007580), 0xffffffffffffffff)
sendmsg$BATADV_CMD_SET_HARDIF(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, 0x0}, 0x0)
sendmsg$BATADV_CMD_GET_GATEWAYS(0xffffffffffffffff, &(0x7f0000007680)={0x0, 0x0, &(0x7f0000007640)={&(0x7f0000000000)=ANY=[@ANYBLOB="46040000", @ANYRES16=r3, @ANYBLOB="ff83050000076dc6d81b", @ANYRES32=r2], 0x4}}, 0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendfile(r5, r4, 0x0, 0x100000002)

[ 2646.707254][T16775] bond1255 (unregistering): Released all slaves
[ 2646.768964][T16775] bond1254 (unregistering): Released all slaves
[ 2646.828161][T27668] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2646.859196][T16775] bond1253 (unregistering): Released all slaves
[ 2646.863205][T27668] CPU: 0 PID: 27668 Comm: syz-executor.3 Not tainted 6.7.0-syzkaller-12291-g435e202d645c #0
[ 2646.880352][T27668] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 2646.890437][T27668] Call Trace:
[ 2646.893751][T27668]  <TASK>
[ 2646.896698][T27668]  dump_stack_lvl+0x125/0x1b0
[ 2646.901404][T27668]  dump_header+0x103/0x900
[ 2646.905870][T27668]  oom_kill_process+0x270/0xa60
[ 2646.910855][T27668]  out_of_memory+0x344/0x16c0
[ 2646.915565][T27668]  ? oom_killer_disable+0x2d0/0x2d0
[ 2646.920812][T27668]  ? rcu_read_unlock+0x1c/0x60
[ 2646.925608][T27668]  mem_cgroup_out_of_memory+0x206/0x270
[ 2646.931198][T27668]  ? mem_cgroup_margin+0x130/0x130
[ 2646.936497][T27668]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2646.941890][T27668]  try_charge_memcg+0xcd1/0x11a0
[ 2646.946846][T27668]  ? mem_cgroup_handle_over_high+0x570/0x570
[ 2646.952867][T27668]  ? get_mem_cgroup_from_objcg+0xb5/0x2a0
[ 2646.958616][T27668]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2646.964008][T27668]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2646.969400][T27668]  __memcg_kmem_charge_page+0xdd/0x2a0
[ 2646.974877][T27668]  memcg_charge_kernel_stack+0xc3/0x1f0
[ 2646.980441][T27668]  copy_process+0x527/0x97b0
[ 2646.985308][T27668]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2646.991404][T27668]  ? page_ext_put+0x43/0xd0
[ 2646.995931][T27668]  ? pidfd_prepare+0x80/0x80
[ 2647.000636][T27668]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2647.006116][T27668]  ? preempt_count_sub+0x160/0x160
[ 2647.011233][T27668]  ? print_usage_bug.part.0+0x550/0x550
[ 2647.016797][T27668]  ? __might_fault+0xe6/0x1a0
[ 2647.021495][T27668]  ? _copy_from_user+0x5d/0xf0
[ 2647.026275][T27668]  kernel_clone+0xfd/0x930
[ 2647.030707][T27668]  ? create_io_thread+0xe0/0xe0
[ 2647.035602][T27668]  __do_sys_clone3+0x1f1/0x260
[ 2647.040390][T27668]  ? __do_sys_clone+0x100/0x100
[ 2647.045264][T27668]  ? do_user_addr_fault+0x663/0x1030
[ 2647.050591][T27668]  do_syscall_64+0xd3/0x250
[ 2647.055108][T27668]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 2647.061009][T27668] RIP: 0033:0x7f212b0a8b99
[ 2647.066209][T27668] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 2647.086020][T27668] RSP: 002b:00007ffc7b20b738 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 2647.094445][T27668] RAX: ffffffffffffffda RBX: 00007f212b051270 RCX: 00007f212b0a8b99
[ 2647.102423][T27668] RDX: 00007f212b051270 RSI: 0000000000000058 RDI: 00007ffc7b20b780
[ 2647.110412][T27668] RBP: 00007f212be566c0 R08: 00007f212be566c0 R09: 00007ffc7b20b867
[ 2647.118412][T27668] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 2647.126389][T27668] R13: 000000000000000b R14: 00007ffc7b20b780 R15: 00007ffc7b20b868
[ 2647.134755][T27668]  </TASK>
[ 2647.149052][T16775] bond1252 (unregistering): Released all slaves
[ 2647.176523][T27668] memory: usage 307200kB, limit 307200kB, failcnt 130609
[ 2647.183608][T27668] memory+swap: usage 307532kB, limit 9007199254740988kB, failcnt 0
[ 2647.205479][T27668] kmem: usage 307184kB, limit 9007199254740988kB, failcnt 0
[ 2647.219872][T27668] Memory cgroup stats for /syz3:
[ 2647.220036][T27668] cache 0
[ 2647.231197][T16775] bond1251 (unregistering): Released all slaves
[ 2647.243277][T27668] rss 0
[ 2647.246603][T27668] rss_huge 0
[ 2647.249836][T27668] shmem 0
[ 2647.252789][T27668] mapped_file 0
[ 2647.266961][T27668] dirty 0
[ 2647.269954][T27668] writeback 0
[ 2647.273270][T27668] workingset_refault_anon 38948
[ 2647.286047][T27668] workingset_refault_file 1
[ 2647.290611][T27668] swap 339968
[ 2647.293911][T27668] swapcached 0
[ 2647.298487][T27668] pgpgin 163314
[ 2647.301977][T27668] pgpgout 163314
[ 2647.317705][T27668] pgfault 356963
[ 2647.321319][T27668] pgmajfault 37725
[ 2647.325068][T27668] inactive_anon 0
[ 2647.332584][T27668] active_anon 0
[ 2647.337117][T27668] inactive_file 0
[ 2647.338658][T16775] bond1250 (unregistering): Released all slaves
[ 2647.340763][T27668] active_file 0
[ 2647.340774][T27668] unevictable 0
[ 2647.340783][T27668] hierarchical_memory_limit 314572800
[ 2647.340793][T27668] hierarchical_memsw_limit 9223372036854771712
[ 2647.340804][T27668] total_cache 0
[ 2647.348833][T26667] Bluetooth: hci11: command 0x040f tx timeout
[ 2647.376128][T27668] total_rss 0
[ 2647.376143][T27668] total_rss_huge 0
[ 2647.376153][T27668] total_shmem 0
[ 2647.376163][T27668] total_mapped_file 0
[ 2647.376172][T27668] total_dirty 0
[ 2647.376181][T27668] total_writeback 0
[ 2647.416108][T26667] Bluetooth: hci10: command 0x0419 tx timeout
[ 2647.421586][T27668] total_workingset_refault_anon 38948
[ 2647.435463][T16775] bond1249 (unregistering): Released all slaves
[ 2647.440208][T27668] total_workingset_refault_file 1
[ 2647.452529][T27668] total_swap 339968
[ 2647.456486][T27668] total_swapcached 0
[ 2647.460405][T27668] total_pgpgin 163314
[ 2647.464693][T27668] total_pgpgout 163314
[ 2647.468889][T27668] total_pgfault 356963
[ 2647.472972][T27668] total_pgmajfault 37725
[ 2647.477677][T27668] total_inactive_anon 0
[ 2647.481858][T27668] total_active_anon 0
[ 2647.485844][T27668] total_inactive_file 0
[ 2647.494747][T27668] total_active_file 0
[ 2647.499316][T27668] total_unevictable 0
[ 2647.503551][T27668] anon_cost 0
[ 2647.506954][T27668] file_cost 0
[ 2647.510481][T27668] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=27668,uid=0
[ 2647.526223][T27668] Memory cgroup out of memory: Killed process 27668 (syz-executor.3) total-vm:54504kB, anon-rss:380kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 2647.549921][T16775] bond1248 (unregistering): Released all slaves
[ 2647.586680][   T28] audit: type=1804 audit(1706039279.231:1983): pid=27670 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir245649211/syzkaller.jQ7tPM/88/cgroup.controllers" dev="sda1" ino=1963 res=1 errno=0
[ 2647.615508][T16775] bond1247 (unregistering): Released all slaves
19:47:59 executing program 3:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x32}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000280)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000240)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=@newlink={0x48, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0xe403, r2}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @veth={{0x9}, {0x18, 0x2, 0x0, 0x1, @val=@VETH_INFO_PEER={0x14}}}}]}, 0x48}, 0x1, 0x7}, 0x0)

[ 2647.673755][T16775] bond1246 (unregistering): Released all slaves
[ 2647.719316][T16775] bond1245 (unregistering): Released all slaves
[ 2647.765353][T16775] bond1244 (unregistering): Released all slaves
19:47:59 executing program 1:
socket$kcm(0x10, 0x400000002, 0x0)
socket$inet(0x2, 0x2, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x3, &(0x7f00000000c0)=@framed, &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
write$binfmt_script(r1, &(0x7f0000000480)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r1, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r2 = socket$rxrpc(0x21, 0x2, 0xa)
r3 = syz_genetlink_get_family_id$batadv(&(0x7f0000007580), 0xffffffffffffffff)
sendmsg$BATADV_CMD_SET_HARDIF(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, 0x0}, 0x0)
sendmsg$BATADV_CMD_GET_GATEWAYS(0xffffffffffffffff, &(0x7f0000007680)={0x0, 0x0, &(0x7f0000007640)={&(0x7f0000000000)=ANY=[@ANYBLOB="46040000", @ANYRES16=r3, @ANYBLOB="ff83050000076dc6d81b", @ANYRES32=r2], 0x4}}, 0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendfile(r5, r4, 0x0, 0x100000002)

[ 2647.818009][T16775] bond1243 (unregistering): Released all slaves
[ 2647.878402][T16775] bond1242 (unregistering): Released all slaves
[ 2647.930283][T16775] bond1241 (unregistering): Released all slaves
[ 2647.978986][T16775] bond1240 (unregistering): Released all slaves
[ 2648.038633][T16775] bond1239 (unregistering): Released all slaves
[ 2648.056287][T26667] Bluetooth: hci12: command 0x041b tx timeout
[ 2648.108731][T16775] bond1238 (unregistering): Released all slaves
[ 2648.142875][T16775] bond1237 (unregistering): Released all slaves
[ 2648.168946][T16775] bond1236 (unregistering): Released all slaves
[ 2648.177548][   T28] audit: type=1804 audit(1706039279.821:1984): pid=27674 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir245649211/syzkaller.jQ7tPM/89/cgroup.controllers" dev="sda1" ino=1963 res=1 errno=0
[ 2648.218385][T16775] bond1235 (unregistering): Released all slaves
[ 2648.257343][T27672] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2648.278223][T27672] CPU: 0 PID: 27672 Comm: syz-executor.3 Not tainted 6.7.0-syzkaller-12291-g435e202d645c #0
[ 2648.279290][T16775] bond1234 (unregistering): Released all slaves
[ 2648.288345][T27672] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 2648.288366][T27672] Call Trace:
[ 2648.288376][T27672]  <TASK>
[ 2648.288386][T27672]  dump_stack_lvl+0x125/0x1b0
[ 2648.288420][T27672]  dump_header+0x103/0x900
[ 2648.288456][T27672]  oom_kill_process+0x270/0xa60
[ 2648.325037][T27672]  out_of_memory+0x344/0x16c0
[ 2648.329782][T27672]  ? oom_killer_disable+0x2d0/0x2d0
[ 2648.335124][T27672]  ? rcu_read_unlock+0x1c/0x60
[ 2648.339964][T27672]  mem_cgroup_out_of_memory+0x206/0x270
[ 2648.345563][T27672]  ? mem_cgroup_margin+0x130/0x130
[ 2648.350724][T27672]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2648.356183][T27672]  try_charge_memcg+0xcd1/0x11a0
[ 2648.361183][T27672]  ? mem_cgroup_handle_over_high+0x570/0x570
[ 2648.367210][T27672]  ? get_mem_cgroup_from_objcg+0xb5/0x2a0
[ 2648.372985][T27672]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2648.378385][T27672]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2648.383797][T27672]  __memcg_kmem_charge_page+0xdd/0x2a0
[ 2648.389274][T27672]  memcg_charge_kernel_stack+0xc3/0x1f0
[ 2648.394837][T27672]  copy_process+0x1532/0x97b0
[ 2648.399538][T27672]  ? hlock_class+0x4e/0x130
[ 2648.404077][T27672]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2648.410085][T27672]  ? hlock_class+0x4e/0x130
[ 2648.415660][T27672]  ? pidfd_prepare+0x80/0x80
[ 2648.420275][T27672]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2648.425656][T27672]  ? preempt_count_sub+0x160/0x160
[ 2648.430779][T27672]  ? __lock_acquire+0x1502/0x3b30
[ 2648.435831][T27672]  ? __might_fault+0xe6/0x1a0
[ 2648.440549][T27672]  ? _copy_from_user+0x5d/0xf0
[ 2648.445343][T27672]  kernel_clone+0xfd/0x930
[ 2648.449775][T27672]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2648.455761][T27672]  ? create_io_thread+0xe0/0xe0
[ 2648.460630][T27672]  ? find_held_lock+0x2d/0x110
[ 2648.465411][T27672]  __do_sys_clone3+0x1f1/0x260
[ 2648.470187][T27672]  ? __do_sys_clone+0x100/0x100
[ 2648.475084][T27672]  do_syscall_64+0xd3/0x250
[ 2648.479610][T27672]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 2648.485515][T27672] RIP: 0033:0x7f212b0a8b99
[ 2648.489955][T27672] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 2648.509598][T27672] RSP: 002b:00007ffc7b20b738 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 2648.518024][T27672] RAX: ffffffffffffffda RBX: 00007f212b051270 RCX: 00007f212b0a8b99
[ 2648.526004][T27672] RDX: 00007f212b051270 RSI: 0000000000000058 RDI: 00007ffc7b20b780
[ 2648.533988][T27672] RBP: 00007f212be566c0 R08: 00007f212be566c0 R09: 00007ffc7b20b867
[ 2648.541963][T27672] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 2648.549939][T27672] R13: 000000000000000b R14: 00007ffc7b20b780 R15: 00007ffc7b20b868
[ 2648.557933][T27672]  </TASK>
[ 2648.574680][T27672] memory: usage 307200kB, limit 307200kB, failcnt 131016
[ 2648.594770][T27672] memory+swap: usage 307572kB, limit 9007199254740988kB, failcnt 0
[ 2648.598827][T16775] bond1233 (unregistering): Released all slaves
[ 2648.603864][T27672] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[ 2648.618693][T27672] Memory cgroup stats for /syz3:
[ 2648.618870][T27672] cache 0
[ 2648.644911][T27672] rss 0
[ 2648.649690][T27672] rss_huge 0
[ 2648.653094][T27672] shmem 0
[ 2648.654408][T16775] bond1232 (unregistering): Released all slaves
[ 2648.656555][T27672] mapped_file 0
[ 2648.669472][T27672] dirty 0
[ 2648.672762][T27672] writeback 0
[ 2648.678241][T27672] workingset_refault_anon 39079
[ 2648.683673][T27672] workingset_refault_file 1
[ 2648.688843][T27672] swap 380928
[ 2648.692323][T27672] swapcached 0
[ 2648.695873][T27672] pgpgin 163456
[ 2648.699966][T27672] pgpgout 163456
[ 2648.703694][T27672] pgfault 357167
[ 2648.707562][T27672] pgmajfault 37831
[ 2648.711445][T27672] inactive_anon 0
[ 2648.715231][T27672] active_anon 0
[ 2648.719016][T27672] inactive_file 0
[ 2648.722825][T27672] active_file 0
[ 2648.726495][T27672] unevictable 0
[ 2648.730132][T27672] hierarchical_memory_limit 314572800
[ 2648.735644][T27672] hierarchical_memsw_limit 9223372036854771712
[ 2648.742304][T27672] total_cache 0
[ 2648.744735][T16775] bond1231 (unregistering): Released all slaves
[ 2648.746124][T27672] total_rss 0
[ 2648.755641][T27672] total_rss_huge 0
[ 2648.760095][T27672] total_shmem 0
[ 2648.763922][T27672] total_mapped_file 0
[ 2648.768213][T27672] total_dirty 0
[ 2648.771847][T27672] total_writeback 0
[ 2648.775786][T27672] total_workingset_refault_anon 39079
[ 2648.784992][T27672] total_workingset_refault_file 1
[ 2648.790284][T27672] total_swap 380928
[ 2648.794270][T27672] total_swapcached 0
[ 2648.798782][T27672] total_pgpgin 163456
[ 2648.804365][T27672] total_pgpgout 163456
[ 2648.825781][T27672] total_pgfault 357167
[ 2648.827103][T16775] bond1230 (unregistering): Released all slaves
[ 2648.836638][T27672] total_pgmajfault 37831
[ 2648.836656][T27672] total_inactive_anon 0
[ 2648.836665][T27672] total_active_anon 0
[ 2648.836675][T27672] total_inactive_file 0
[ 2648.836684][T27672] total_active_file 0
[ 2648.836693][T27672] total_unevictable 0
[ 2648.836703][T27672] anon_cost 0
[ 2648.836713][T27672] file_cost 0
[ 2648.836723][T27672] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=27672,uid=0
19:48:00 executing program 1:
socket$kcm(0x10, 0x400000002, 0x0)
socket$inet(0x2, 0x2, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x3, &(0x7f00000000c0)=@framed, &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
write$binfmt_script(r1, &(0x7f0000000480)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r1, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r2 = socket$rxrpc(0x21, 0x2, 0xa)
r3 = syz_genetlink_get_family_id$batadv(&(0x7f0000007580), 0xffffffffffffffff)
sendmsg$BATADV_CMD_SET_HARDIF(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, 0x0}, 0x0)
sendmsg$BATADV_CMD_GET_GATEWAYS(0xffffffffffffffff, &(0x7f0000007680)={0x0, 0x0, &(0x7f0000007640)={&(0x7f0000000000)=ANY=[@ANYBLOB="46040000", @ANYRES16=r3, @ANYBLOB="ff83050000076dc6d81b", @ANYRES32=r2], 0x4}}, 0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendfile(r5, r4, 0x0, 0x100000002)

[ 2648.836848][T27672] Memory cgroup out of memory: Killed process 27672 (syz-executor.3) total-vm:54504kB, anon-rss:388kB, file-rss:8912kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
19:48:00 executing program 3:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x32}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000280)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000240)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=@newlink={0x48, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0xe403, r2}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @veth={{0x9}, {0x18, 0x2, 0x0, 0x1, @val=@VETH_INFO_PEER={0x14}}}}]}, 0x48}, 0x1, 0x8}, 0x0)

[ 2648.947094][T16775] bond1229 (unregistering): Released all slaves
[ 2648.979909][T16775] bond1228 (unregistering): Released all slaves
[ 2649.040456][T16775] bond1227 (unregistering): Released all slaves
[ 2649.072650][T16775] bond1226 (unregistering): Released all slaves
[ 2649.124117][T16775] bond1225 (unregistering): Released all slaves
[ 2649.181758][T16775] bond1224 (unregistering): Released all slaves
[ 2649.233016][T16775] bond1223 (unregistering): Released all slaves
[ 2649.260799][   T28] audit: type=1804 audit(1706039280.911:1985): pid=27677 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir245649211/syzkaller.jQ7tPM/90/cgroup.controllers" dev="sda1" ino=1952 res=1 errno=0
[ 2649.292390][T16775] bond1222 (unregistering): Released all slaves
[ 2649.333767][T16775] bond1221 (unregistering): Released all slaves
[ 2649.381583][T16775] bond1220 (unregistering): Released all slaves
[ 2649.416208][T26667] Bluetooth: hci11: command 0x0419 tx timeout
[ 2649.437385][T16775] bond1219 (unregistering): Released all slaves
[ 2649.518205][T16775] bond1218 (unregistering): Released all slaves
[ 2649.592925][T16775] bond1217 (unregistering): Released all slaves
[ 2649.636395][T27678] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2649.653303][T16775] bond1216 (unregistering): Released all slaves
[ 2649.660421][T27678] CPU: 1 PID: 27678 Comm: syz-executor.3 Not tainted 6.7.0-syzkaller-12291-g435e202d645c #0
[ 2649.670530][T27678] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 2649.681398][T27678] Call Trace:
[ 2649.684686][T27678]  <TASK>
[ 2649.687640][T27678]  dump_stack_lvl+0x125/0x1b0
[ 2649.692428][T27678]  dump_header+0x103/0x900
[ 2649.696876][T27678]  oom_kill_process+0x270/0xa60
[ 2649.701922][T27678]  out_of_memory+0x344/0x16c0
[ 2649.706934][T27678]  ? oom_killer_disable+0x2d0/0x2d0
[ 2649.712149][T27678]  ? rcu_read_unlock+0x1c/0x60
[ 2649.716936][T27678]  mem_cgroup_out_of_memory+0x206/0x270
[ 2649.722499][T27678]  ? mem_cgroup_margin+0x130/0x130
[ 2649.727878][T27678]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2649.733272][T27678]  try_charge_memcg+0xcd1/0x11a0
[ 2649.738577][T27678]  ? mem_cgroup_handle_over_high+0x570/0x570
[ 2649.744743][T27678]  ? get_mem_cgroup_from_objcg+0xb5/0x2a0
[ 2649.752615][T27678]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2649.758305][T27678]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2649.763708][T27678]  __memcg_kmem_charge_page+0xdd/0x2a0
[ 2649.769190][T27678]  memcg_charge_kernel_stack+0xc3/0x1f0
[ 2649.774752][T27678]  copy_process+0x1532/0x97b0
[ 2649.779447][T27678]  ? hlock_class+0x4e/0x130
[ 2649.783966][T27678]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2649.789958][T27678]  ? hlock_class+0x4e/0x130
[ 2649.794488][T27678]  ? pidfd_prepare+0x80/0x80
[ 2649.799099][T27678]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2649.804484][T27678]  ? preempt_count_sub+0x160/0x160
[ 2649.809607][T27678]  ? __lock_acquire+0x1502/0x3b30
[ 2649.814640][T27678]  ? __might_fault+0xe6/0x1a0
[ 2649.819341][T27678]  ? _copy_from_user+0x5d/0xf0
[ 2649.824125][T27678]  kernel_clone+0xfd/0x930
[ 2649.828566][T27678]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2649.834559][T27678]  ? create_io_thread+0xe0/0xe0
[ 2649.844916][T27678]  ? find_held_lock+0x2d/0x110
[ 2649.849740][T27678]  __do_sys_clone3+0x1f1/0x260
[ 2649.854528][T27678]  ? __do_sys_clone+0x100/0x100
[ 2649.859428][T27678]  do_syscall_64+0xd3/0x250
[ 2649.863948][T27678]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 2649.869847][T27678] RIP: 0033:0x7f212b0a8b99
[ 2649.874267][T27678] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 2649.894061][T27678] RSP: 002b:00007ffc7b20b738 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 2649.902630][T27678] RAX: ffffffffffffffda RBX: 00007f212b051270 RCX: 00007f212b0a8b99
[ 2649.910631][T27678] RDX: 00007f212b051270 RSI: 0000000000000058 RDI: 00007ffc7b20b780
[ 2649.918617][T27678] RBP: 00007f212be566c0 R08: 00007f212be566c0 R09: 00007ffc7b20b867
[ 2649.926597][T27678] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 2649.934594][T27678] R13: 000000000000000b R14: 00007ffc7b20b780 R15: 00007ffc7b20b868
[ 2649.942595][T27678]  </TASK>
[ 2649.950155][T27678] memory: usage 307200kB, limit 307200kB, failcnt 131366
[ 2649.959674][T27678] memory+swap: usage 307600kB, limit 9007199254740988kB, failcnt 0
[ 2649.968261][T27678] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0
[ 2649.987307][T27678] Memory cgroup stats for /syz3:
[ 2649.987491][T27678] cache 0
[ 2649.995393][T27678] rss 12288
[ 2650.018276][T27678] rss_huge 0
[ 2650.019355][T16775] bond1215 (unregistering): Released all slaves
[ 2650.021649][T27678] shmem 0
[ 2650.031295][T27678] mapped_file 0
19:48:01 executing program 1:
socket$kcm(0x10, 0x400000002, 0x0)
socket$inet(0x2, 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
write$binfmt_script(r0, &(0x7f0000000480)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r1 = socket$rxrpc(0x21, 0x2, 0xa)
r2 = syz_genetlink_get_family_id$batadv(&(0x7f0000007580), 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_GATEWAYS(0xffffffffffffffff, &(0x7f0000007680)={0x0, 0x0, &(0x7f0000007640)={&(0x7f0000000000)=ANY=[@ANYBLOB="46040000", @ANYRES16=r2, @ANYBLOB="ff83050000076dc6d81b", @ANYRES32=r1], 0x4}}, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendfile(r4, r3, 0x0, 0x100000002)

[ 2650.035619][T27678] dirty 0
[ 2650.039148][T27678] writeback 0
[ 2650.058601][T27678] workingset_refault_anon 39195
[ 2650.063610][T27678] workingset_refault_file 1
[ 2650.079943][T16775] bond1214 (unregistering): Released all slaves
[ 2650.086227][T27678] swap 409600
[ 2650.086244][T27678] swapcached 8192
[ 2650.086252][T27678] pgpgin 163583
[ 2650.086262][T27678] pgpgout 163580
[ 2650.086271][T27678] pgfault 357373
[ 2650.086281][T27678] pgmajfault 37942
[ 2650.086290][T27678] inactive_anon 0
[ 2650.086299][T27678] active_anon 12288
[ 2650.086309][T27678] inactive_file 0
[ 2650.086317][T27678] active_file 0
[ 2650.086326][T27678] unevictable 0
[ 2650.086336][T27678] hierarchical_memory_limit 314572800
[ 2650.086347][T27678] hierarchical_memsw_limit 9223372036854771712
[ 2650.086358][T27678] total_cache 0
[ 2650.086368][T27678] total_rss 12288
[ 2650.086377][T27678] total_rss_huge 0
[ 2650.086387][T27678] total_shmem 0
[ 2650.086395][T27678] total_mapped_file 0
[ 2650.086404][T27678] total_dirty 0
[ 2650.086459][T27678] total_writeback 0
[ 2650.158271][T26667] Bluetooth: hci12: command 0x040f tx timeout
[ 2650.188486][T16775] bond1213 (unregistering): Released all slaves
[ 2650.227346][T27678] total_workingset_refault_anon 39195
[ 2650.232886][T27678] total_workingset_refault_file 1
[ 2650.245172][T16775] bond1212 (unregistering): Released all slaves
[ 2650.246217][T27678] total_swap 409600
[ 2650.257737][T27678] total_swapcached 8192
[ 2650.262345][T27678] total_pgpgin 163583
[ 2650.270007][T16775] bond1211 (unregistering): Released all slaves
[ 2650.275512][T27678] total_pgpgout 163580
[ 2650.302749][T27678] total_pgfault 357373
[ 2650.308355][T27678] total_pgmajfault 37942
[ 2650.314481][T27678] total_inactive_anon 0
[ 2650.319774][T27678] total_active_anon 12288
[ 2650.324141][T27678] total_inactive_file 0
[ 2650.328358][T27678] total_active_file 0
[ 2650.332353][T27678] total_unevictable 0
[ 2650.336437][T27678] anon_cost 0
[ 2650.339740][T27678] file_cost 0
[ 2650.341437][T16775] bond1210 (unregistering): Released all slaves
[ 2650.343018][T27678] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=27678,uid=0
[ 2650.369733][T27678] Memory cgroup out of memory: Killed process 27678 (syz-executor.3) total-vm:54504kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 2650.422220][T16775] bond1209 (unregistering): Released all slaves
19:48:02 executing program 3:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x32}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000280)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000240)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=@newlink={0x48, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0xe403, r2}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @veth={{0x9}, {0x18, 0x2, 0x0, 0x1, @val=@VETH_INFO_PEER={0x14}}}}]}, 0x48}, 0x1, 0x9}, 0x0)

[ 2650.458375][   T28] audit: type=1804 audit(1706039282.111:1986): pid=27681 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir245649211/syzkaller.jQ7tPM/91/cgroup.controllers" dev="sda1" ino=1952 res=1 errno=0
[ 2650.484877][T16775] bond1208 (unregistering): Released all slaves
[ 2650.532014][T16775] bond1207 (unregistering): Released all slaves
[ 2650.574851][T16775] bond1206 (unregistering): Released all slaves
[ 2650.599827][T16775] bond1205 (unregistering): Released all slaves
[ 2650.665610][T16775] bond1204 (unregistering): Released all slaves
[ 2650.720018][T16775] bond1203 (unregistering): Released all slaves
[ 2650.774555][T16775] bond1202 (unregistering): Released all slaves
[ 2650.834700][T16775] bond1201 (unregistering): Released all slaves
[ 2650.889338][T16775] bond1200 (unregistering): Released all slaves
[ 2650.947386][T16775] bond1199 (unregistering): Released all slaves
[ 2650.970591][T27683] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2650.981427][T27683] CPU: 0 PID: 27683 Comm: syz-executor.3 Not tainted 6.7.0-syzkaller-12291-g435e202d645c #0
[ 2650.991532][T27683] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 2651.001610][T27683] Call Trace:
[ 2651.004906][T27683]  <TASK>
[ 2651.007972][T27683]  dump_stack_lvl+0x125/0x1b0
[ 2651.012858][T27683]  dump_header+0x103/0x900
[ 2651.017319][T27683]  oom_kill_process+0x270/0xa60
[ 2651.022184][T27683]  out_of_memory+0x344/0x16c0
[ 2651.026887][T27683]  ? oom_killer_disable+0x2d0/0x2d0
[ 2651.032137][T27683]  ? rcu_read_unlock+0x1c/0x60
[ 2651.036972][T27683]  mem_cgroup_out_of_memory+0x206/0x270
[ 2651.042569][T27683]  ? mem_cgroup_margin+0x130/0x130
[ 2651.047734][T27683]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2651.053162][T27683]  try_charge_memcg+0xcd1/0x11a0
[ 2651.058161][T27683]  ? mem_cgroup_handle_over_high+0x570/0x570
[ 2651.064180][T27683]  ? get_mem_cgroup_from_objcg+0xb5/0x2a0
[ 2651.070036][T27683]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2651.075454][T27683]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2651.080978][T27683]  __memcg_kmem_charge_page+0xdd/0x2a0
[ 2651.086487][T27683]  memcg_charge_kernel_stack+0xc3/0x1f0
[ 2651.092089][T27683]  copy_process+0x1532/0x97b0
[ 2651.096787][T27683]  ? hlock_class+0x4e/0x130
[ 2651.101301][T27683]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2651.107309][T27683]  ? hlock_class+0x4e/0x130
[ 2651.111868][T27683]  ? pidfd_prepare+0x80/0x80
[ 2651.116581][T27683]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2651.121976][T27683]  ? preempt_count_sub+0x160/0x160
[ 2651.127092][T27683]  ? __lock_acquire+0x1502/0x3b30
[ 2651.132122][T27683]  ? __might_fault+0xe6/0x1a0
[ 2651.136830][T27683]  ? _copy_from_user+0x5d/0xf0
[ 2651.141628][T27683]  kernel_clone+0xfd/0x930
[ 2651.146061][T27683]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2651.152047][T27683]  ? create_io_thread+0xe0/0xe0
[ 2651.156923][T27683]  ? find_held_lock+0x2d/0x110
[ 2651.161712][T27683]  __do_sys_clone3+0x1f1/0x260
[ 2651.166493][T27683]  ? __do_sys_clone+0x100/0x100
[ 2651.171388][T27683]  do_syscall_64+0xd3/0x250
[ 2651.175906][T27683]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 2651.181815][T27683] RIP: 0033:0x7f212b0a8b99
[ 2651.186238][T27683] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 2651.205868][T27683] RSP: 002b:00007ffc7b20b738 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 2651.214288][T27683] RAX: ffffffffffffffda RBX: 00007f212b051270 RCX: 00007f212b0a8b99
[ 2651.222268][T27683] RDX: 00007f212b051270 RSI: 0000000000000058 RDI: 00007ffc7b20b780
[ 2651.230619][T27683] RBP: 00007f212be566c0 R08: 00007f212be566c0 R09: 00007ffc7b20b867
[ 2651.238801][T27683] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
19:48:02 executing program 1:
socket$kcm(0x10, 0x400000002, 0x0)
socket$inet(0x2, 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
write$binfmt_script(r0, &(0x7f0000000480)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r1 = socket$rxrpc(0x21, 0x2, 0xa)
r2 = syz_genetlink_get_family_id$batadv(&(0x7f0000007580), 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_GATEWAYS(0xffffffffffffffff, &(0x7f0000007680)={0x0, 0x0, &(0x7f0000007640)={&(0x7f0000000000)=ANY=[@ANYBLOB="46040000", @ANYRES16=r2, @ANYBLOB="ff83050000076dc6d81b", @ANYRES32=r1], 0x4}}, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendfile(r4, r3, 0x0, 0x100000002)

[ 2651.246799][T27683] R13: 000000000000000b R14: 00007ffc7b20b780 R15: 00007ffc7b20b868
[ 2651.254829][T27683]  </TASK>
[ 2651.274630][T16775] bond1198 (unregistering): Released all slaves
[ 2651.293835][T27683] memory: usage 307200kB, limit 307200kB, failcnt 131669
[ 2651.303620][T16775] bond1197 (unregistering): Released all slaves
[ 2651.310135][T27683] memory+swap: usage 307600kB, limit 9007199254740988kB, failcnt 0
[ 2651.336174][T27683] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0
[ 2651.344197][T27683] Memory cgroup stats for /syz3:
[ 2651.344348][T27683] cache 0
[ 2651.353747][T27683] rss 12288
[ 2651.357134][T27683] rss_huge 0
[ 2651.360419][T27683] shmem 0
[ 2651.363520][T27683] mapped_file 0
[ 2651.367256][T27683] dirty 0
[ 2651.370332][T27683] writeback 0
[ 2651.373728][T27683] workingset_refault_anon 39285
[ 2651.380199][T27683] workingset_refault_file 1
[ 2651.384837][T27683] swap 409600
[ 2651.390464][T16775] bond1196 (unregistering): Released all slaves
[ 2651.406145][T27683] swapcached 12288
[ 2651.410178][T27683] pgpgin 163684
[ 2651.422798][T27683] pgpgout 163681
[ 2651.435515][T27683] pgfault 357547
[ 2651.443481][T16775] bond1195 (unregistering): Released all slaves
[ 2651.450292][T27683] pgmajfault 38028
[ 2651.454216][T27683] inactive_anon 0
[ 2651.466127][T27683] active_anon 12288
[ 2651.470078][T27683] inactive_file 0
[ 2651.476405][T27683] active_file 0
[ 2651.483523][T27683] unevictable 0
[ 2651.488626][T27683] hierarchical_memory_limit 314572800
[ 2651.494171][T27683] hierarchical_memsw_limit 9223372036854771712
[ 2651.502839][T16775] bond1194 (unregistering): Released all slaves
[ 2651.516184][T27683] total_cache 0
[ 2651.526275][T27683] total_rss 12288
[ 2651.533865][T27683] total_rss_huge 0
[ 2651.539248][T27683] total_shmem 0
[ 2651.546398][T16775] bond1193 (unregistering): Released all slaves
[ 2651.553020][T27683] total_mapped_file 0
[ 2651.557319][T27683] total_dirty 0
[ 2651.566300][T27683] total_writeback 0
[ 2651.577000][   T28] audit: type=1804 audit(1706039283.221:1987): pid=27685 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir245649211/syzkaller.jQ7tPM/92/cgroup.controllers" dev="sda1" ino=1952 res=1 errno=0
[ 2651.603931][T27683] total_workingset_refault_anon 39285
[ 2651.613635][T27683] total_workingset_refault_file 1
[ 2651.626047][T27683] total_swap 409600
[ 2651.636172][T27683] total_swapcached 12288
[ 2651.640587][T27683] total_pgpgin 163684
[ 2651.649147][T16775] bond1192 (unregistering): Released all slaves
[ 2651.664402][T27683] total_pgpgout 163681
[ 2651.668737][T27683] total_pgfault 357547
[ 2651.676223][T27683] total_pgmajfault 38028
[ 2651.686052][T27683] total_inactive_anon 0
[ 2651.696314][T27683] total_active_anon 12288
[ 2651.703505][T16775] bond1191 (unregistering): Released all slaves
[ 2651.709997][T27683] total_inactive_file 0
[ 2651.714274][T27683] total_active_file 0
[ 2651.729050][T27683] total_unevictable 0
[ 2651.733177][T27683] anon_cost 0
[ 2651.744581][T27683] file_cost 0
[ 2651.748436][T27683] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=27683,uid=0
[ 2651.766532][T16775] bond1190 (unregistering): Released all slaves
[ 2651.777675][T27683] Memory cgroup out of memory: Killed process 27683 (syz-executor.3) total-vm:54504kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 2651.809639][T16775] bond1189 (unregistering): Released all slaves
[ 2651.863117][T16775] bond1188 (unregistering): Released all slaves
19:48:03 executing program 3:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x32}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000280)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000240)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=@newlink={0x48, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0xe403, r2}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @veth={{0x9}, {0x18, 0x2, 0x0, 0x1, @val=@VETH_INFO_PEER={0x14}}}}]}, 0x48}, 0x1, 0xa}, 0x0)

[ 2651.905240][T16775] bond1187 (unregistering): Released all slaves
[ 2651.967819][T16775] bond1186 (unregistering): Released all slaves
[ 2652.008482][T16775] bond1185 (unregistering): Released all slaves
[ 2652.050212][T16775] bond1184 (unregistering): Released all slaves
[ 2652.108462][T16775] bond1183 (unregistering): Released all slaves
[ 2652.149669][T16775] bond1182 (unregistering): Released all slaves
[ 2652.200526][T16775] bond1181 (unregistering): Released all slaves
[ 2652.226328][T26667] Bluetooth: hci12: command 0x0419 tx timeout
[ 2652.250073][T16775] bond1180 (unregistering): Released all slaves
[ 2652.288318][T16775] bond1179 (unregistering): Released all slaves
19:48:04 executing program 1:
socket$kcm(0x10, 0x400000002, 0x0)
socket$inet(0x2, 0x2, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x3, &(0x7f00000000c0)=@framed, &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
write$binfmt_script(r1, &(0x7f0000000480)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r1, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r2 = socket$rxrpc(0x21, 0x2, 0xa)
r3 = syz_genetlink_get_family_id$batadv(&(0x7f0000007580), 0xffffffffffffffff)
sendmsg$BATADV_CMD_SET_HARDIF(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, 0x0}, 0x0)
sendmsg$BATADV_CMD_GET_GATEWAYS(0xffffffffffffffff, &(0x7f0000007680)={0x0, 0x0, &(0x7f0000007640)={&(0x7f0000000000)=ANY=[@ANYBLOB="46040000", @ANYRES16=r3, @ANYBLOB="ff83050000076dc6d81b", @ANYRES32=r2], 0x4}}, 0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendfile(r5, r4, 0x0, 0x100000002)

[ 2652.337431][T16775] bond1178 (unregistering): Released all slaves
[ 2652.365366][T27687] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2652.381107][T16775] bond1177 (unregistering): Released all slaves
[ 2652.381967][ T1223] ieee802154 phy0 wpan0: encryption failed: -22
[ 2652.396777][ T1223] ieee802154 phy1 wpan1: encryption failed: -22
[ 2652.443061][T16775] bond1176 (unregistering): Released all slaves
[ 2652.449627][T27687] CPU: 1 PID: 27687 Comm: syz-executor.3 Not tainted 6.7.0-syzkaller-12291-g435e202d645c #0
[ 2652.459733][T27687] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 2652.469930][T27687] Call Trace:
[ 2652.473225][T27687]  <TASK>
[ 2652.476174][T27687]  dump_stack_lvl+0x125/0x1b0
[ 2652.480970][T27687]  dump_header+0x103/0x900
[ 2652.485428][T27687]  oom_kill_process+0x270/0xa60
[ 2652.490317][T27687]  out_of_memory+0x344/0x16c0
[ 2652.495037][T27687]  ? oom_killer_disable+0x2d0/0x2d0
[ 2652.500278][T27687]  ? rcu_read_unlock+0x1c/0x60
[ 2652.505103][T27687]  mem_cgroup_out_of_memory+0x206/0x270
[ 2652.510700][T27687]  ? mem_cgroup_margin+0x130/0x130
[ 2652.515860][T27687]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2652.521295][T27687]  try_charge_memcg+0xcd1/0x11a0
[ 2652.526276][T27687]  ? mem_cgroup_handle_over_high+0x570/0x570
[ 2652.532291][T27687]  ? get_mem_cgroup_from_objcg+0xb5/0x2a0
[ 2652.538048][T27687]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2652.543454][T27687]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2652.548889][T27687]  __memcg_kmem_charge_page+0xdd/0x2a0
[ 2652.554402][T27687]  memcg_charge_kernel_stack+0xc3/0x1f0
[ 2652.560109][T27687]  copy_process+0x527/0x97b0
[ 2652.564836][T27687]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2652.571994][T27687]  ? page_ext_put+0x43/0xd0
[ 2652.576564][T27687]  ? pidfd_prepare+0x80/0x80
[ 2652.581198][T27687]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2652.586611][T27687]  ? preempt_count_sub+0x160/0x160
[ 2652.591760][T27687]  ? print_usage_bug.part.0+0x550/0x550
[ 2652.597355][T27687]  ? __might_fault+0xe6/0x1a0
[ 2652.602081][T27687]  ? _copy_from_user+0x5d/0xf0
[ 2652.606892][T27687]  kernel_clone+0xfd/0x930
[ 2652.611358][T27687]  ? create_io_thread+0xe0/0xe0
[ 2652.616272][T27687]  __do_sys_clone3+0x1f1/0x260
[ 2652.621076][T27687]  ? __do_sys_clone+0x100/0x100
[ 2652.625960][T27687]  ? do_user_addr_fault+0x663/0x1030
[ 2652.631314][T27687]  do_syscall_64+0xd3/0x250
[ 2652.635867][T27687]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 2652.641795][T27687] RIP: 0033:0x7f212b0a8b99
[ 2652.646235][T27687] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 2652.665855][T27687] RSP: 002b:00007ffc7b20b738 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 2652.674278][T27687] RAX: ffffffffffffffda RBX: 00007f212b051270 RCX: 00007f212b0a8b99
[ 2652.682254][T27687] RDX: 00007f212b051270 RSI: 0000000000000058 RDI: 00007ffc7b20b780
[ 2652.690231][T27687] RBP: 00007f212be566c0 R08: 00007f212be566c0 R09: 00007ffc7b20b867
[ 2652.698900][T27687] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 2652.706875][T27687] R13: 000000000000000b R14: 00007ffc7b20b780 R15: 00007ffc7b20b868
[ 2652.714883][T27687]  </TASK>
[ 2652.739934][T16775] bond1175 (unregistering): Released all slaves
[ 2652.818739][T16775] bond1174 (unregistering): Released all slaves
[ 2652.832648][T27687] memory: usage 307188kB, limit 307200kB, failcnt 132097
[ 2652.839959][   T28] audit: type=1804 audit(1706039284.481:1988): pid=27689 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir245649211/syzkaller.jQ7tPM/93/cgroup.controllers" dev="sda1" ino=1952 res=1 errno=0
[ 2652.876197][T27687] memory+swap: usage 307540kB, limit 9007199254740988kB, failcnt 0
[ 2652.884155][T27687] kmem: usage 307184kB, limit 9007199254740988kB, failcnt 0
[ 2652.910589][T16775] bond1173 (unregistering): Released all slaves
[ 2652.915397][T27687] Memory cgroup stats for /syz3:
[ 2652.917887][T27687] cache 0
[ 2652.925890][T27687] rss 0
[ 2652.930209][T27687] rss_huge 0
[ 2652.933449][T27687] shmem 0
[ 2652.937108][T27687] mapped_file 0
[ 2652.940596][T27687] dirty 0
[ 2652.943551][T27687] writeback 0
[ 2652.948172][T27687] workingset_refault_anon 39431
[ 2652.953346][T27687] workingset_refault_file 1
[ 2652.958751][T27687] swap 364544
[ 2652.962625][T27687] swapcached 0
[ 2652.964049][T16775] bond1172 (unregistering): Released all slaves
[ 2652.975781][T27687] pgpgin 163841
[ 2652.979713][T27687] pgpgout 163841
[ 2652.983282][T27687] pgfault 357758
[ 2652.995399][T27687] pgmajfault 38151
[ 2652.995619][T16775] bond1171 (unregistering): Released all slaves
[ 2653.020685][T27687] inactive_anon 0
[ 2653.026464][T27687] active_anon 0
[ 2653.036397][T27687] inactive_file 0
[ 2653.039640][T16775] bond1170 (unregistering): Released all slaves
[ 2653.040337][T27687] active_file 0
[ 2653.055046][T27687] unevictable 0
[ 2653.062791][T27687] hierarchical_memory_limit 314572800
[ 2653.076419][T27687] hierarchical_memsw_limit 9223372036854771712
[ 2653.081691][T16775] bond1169 (unregistering): Released all slaves
[ 2653.083013][T27687] total_cache 0
[ 2653.106172][T27687] total_rss 0
[ 2653.109515][T27687] total_rss_huge 0
[ 2653.113244][T27687] total_shmem 0
[ 2653.126009][T27687] total_mapped_file 0
[ 2653.130102][T27687] total_dirty 0
[ 2653.133872][T27687] total_writeback 0
[ 2653.138474][T27687] total_workingset_refault_anon 39431
[ 2653.140743][T16775] bond1168 (unregistering): Released all slaves
[ 2653.143862][T27687] total_workingset_refault_file 1
[ 2653.156081][T27687] total_swap 364544
[ 2653.160016][T27687] total_swapcached 0
[ 2653.163935][T27687] total_pgpgin 163841
[ 2653.168732][T27687] total_pgpgout 163841
[ 2653.172841][T27687] total_pgfault 357758
[ 2653.177605][T27687] total_pgmajfault 38151
[ 2653.182257][T27687] total_inactive_anon 0
[ 2653.191393][T27687] total_active_anon 0
[ 2653.192670][T16775] bond1167 (unregistering): Released all slaves
[ 2653.195383][T27687] total_inactive_file 0
[ 2653.206754][T27687] total_active_file 0
[ 2653.210774][T27687] total_unevictable 0
[ 2653.214771][T27687] anon_cost 0
[ 2653.220694][T27687] file_cost 0
[ 2653.224337][T27687] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=27687,uid=0
[ 2653.245101][T27687] Memory cgroup out of memory: Killed process 27687 (syz-executor.3) total-vm:54504kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 2653.269142][T16775] bond1166 (unregistering): Released all slaves
[ 2653.333084][T16775] bond1165 (unregistering): Released all slaves
[ 2653.393994][T16775] bond1164 (unregistering): Released all slaves
19:48:05 executing program 3:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x32}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000280)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000240)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=@newlink={0x48, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0xe403, r2}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @veth={{0x9}, {0x18, 0x2, 0x0, 0x1, @val=@VETH_INFO_PEER={0x14}}}}]}, 0x48}, 0x1, 0xb}, 0x0)

19:48:05 executing program 1:
socket$kcm(0x10, 0x400000002, 0x0)
socket$inet(0x2, 0x2, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x3, &(0x7f00000000c0)=@framed, &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
write$binfmt_script(r1, &(0x7f0000000480)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r1, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r2 = socket$rxrpc(0x21, 0x2, 0xa)
r3 = syz_genetlink_get_family_id$batadv(&(0x7f0000007580), 0xffffffffffffffff)
sendmsg$BATADV_CMD_SET_HARDIF(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, 0x0}, 0x0)
sendmsg$BATADV_CMD_GET_GATEWAYS(0xffffffffffffffff, &(0x7f0000007680)={0x0, 0x0, &(0x7f0000007640)={&(0x7f0000000000)=ANY=[@ANYBLOB="46040000", @ANYRES16=r3, @ANYBLOB="ff83050000076dc6d81b", @ANYRES32=r2], 0x4}}, 0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendfile(r5, r4, 0x0, 0x100000002)

[ 2653.441491][T16775] bond1163 (unregistering): Released all slaves
[ 2653.490609][T16775] bond1162 (unregistering): Released all slaves
[ 2653.548228][T16775] bond1161 (unregistering): Released all slaves
[ 2653.599321][T16775] bond1160 (unregistering): Released all slaves
[ 2653.676913][T16775] bond1159 (unregistering): Released all slaves
[ 2653.738615][T16775] bond1158 (unregistering): Released all slaves
[ 2653.758877][   T28] audit: type=1804 audit(1706039285.391:1989): pid=27694 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir245649211/syzkaller.jQ7tPM/94/cgroup.controllers" dev="sda1" ino=1963 res=1 errno=0
[ 2653.813694][T16775] bond1157 (unregistering): Released all slaves
[ 2653.879281][T16775] bond1156 (unregistering): Released all slaves
[ 2653.894520][T27692] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2653.910586][T27692] CPU: 0 PID: 27692 Comm: syz-executor.3 Not tainted 6.7.0-syzkaller-12291-g435e202d645c #0
[ 2653.920723][T27692] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 2653.930815][T27692] Call Trace:
[ 2653.934121][T27692]  <TASK>
[ 2653.937072][T27692]  dump_stack_lvl+0x125/0x1b0
[ 2653.941794][T27692]  dump_header+0x103/0x900
[ 2653.946279][T27692]  oom_kill_process+0x270/0xa60
[ 2653.951202][T27692]  out_of_memory+0x344/0x16c0
[ 2653.955935][T27692]  ? oom_killer_disable+0x2d0/0x2d0
[ 2653.961166][T27692]  ? rcu_read_unlock+0x1c/0x60
[ 2653.966016][T27692]  mem_cgroup_out_of_memory+0x206/0x270
[ 2653.971598][T27692]  ? mem_cgroup_margin+0x130/0x130
[ 2653.976720][T27692]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2653.982126][T27692]  try_charge_memcg+0xcd1/0x11a0
[ 2653.987087][T27692]  ? mem_cgroup_handle_over_high+0x570/0x570
[ 2653.993125][T27692]  ? get_mem_cgroup_from_objcg+0xb5/0x2a0
[ 2653.999225][T27692]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2654.006406][T27692]  __memcg_kmem_charge_page+0xdd/0x2a0
[ 2654.011895][T27692]  memcg_charge_kernel_stack+0xc3/0x1f0
[ 2654.017461][T27692]  copy_process+0x1532/0x97b0
[ 2654.022163][T27692]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2654.028176][T27692]  ? __lock_acquire+0xc77/0x3b30
[ 2654.033187][T27692]  ? pidfd_prepare+0x80/0x80
[ 2654.037815][T27692]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2654.043201][T27692]  ? preempt_count_sub+0x160/0x160
[ 2654.048430][T27692]  ? __might_fault+0xe6/0x1a0
[ 2654.053234][T27692]  ? _copy_from_user+0x5d/0xf0
[ 2654.058036][T27692]  kernel_clone+0xfd/0x930
[ 2654.062470][T27692]  ? create_io_thread+0xe0/0xe0
[ 2654.067343][T27692]  ? do_user_addr_fault+0x492/0x1030
[ 2654.072645][T27692]  ? exc_page_fault+0xa7/0xc0
[ 2654.077346][T27692]  __do_sys_clone3+0x1f1/0x260
[ 2654.082123][T27692]  ? __do_sys_clone+0x100/0x100
[ 2654.087023][T27692]  do_syscall_64+0xd3/0x250
[ 2654.091559][T27692]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 2654.097468][T27692] RIP: 0033:0x7f212b0a8b99
[ 2654.101896][T27692] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 2654.121912][T27692] RSP: 002b:00007ffc7b20b738 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 2654.130361][T27692] RAX: ffffffffffffffda RBX: 00007f212b051270 RCX: 00007f212b0a8b99
[ 2654.138647][T27692] RDX: 00007f212b051270 RSI: 0000000000000058 RDI: 00007ffc7b20b780
[ 2654.146635][T27692] RBP: 00007f212be566c0 R08: 00007f212be566c0 R09: 00007ffc7b20b867
[ 2654.154619][T27692] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 2654.162600][T27692] R13: 000000000000000b R14: 00007ffc7b20b780 R15: 00007ffc7b20b868
[ 2654.170598][T27692]  </TASK>
[ 2654.180616][T16775] bond1155 (unregistering): Released all slaves
[ 2654.205445][T16775] bond1154 (unregistering): Released all slaves
[ 2654.248947][T27692] memory: usage 307200kB, limit 307200kB, failcnt 132486
[ 2654.250174][T16775] bond1153 (unregistering): Released all slaves
[ 2654.256204][T27692] memory+swap: usage 307512kB, limit 9007199254740988kB, failcnt 0
[ 2654.271363][T27692] kmem: usage 307172kB, limit 9007199254740988kB, failcnt 0
[ 2654.279725][T27692] Memory cgroup stats for /syz3:
[ 2654.279906][T27692] cache 0
[ 2654.288475][T27692] rss 12288
[ 2654.291703][T27692] rss_huge 0
[ 2654.295044][T27692] shmem 0
[ 2654.299160][T27692] mapped_file 0
[ 2654.303188][T27692] dirty 0
[ 2654.313712][T16775] bond1152 (unregistering): Released all slaves
[ 2654.337581][T27692] writeback 0
[ 2654.343498][T16775] bond1151 (unregistering): Released all slaves
[ 2654.350517][T27692] workingset_refault_anon 39557
[ 2654.361570][T27692] workingset_refault_file 1
[ 2654.376369][T27692] swap 319488
[ 2654.381181][T27692] swapcached 8192
[ 2654.389976][T27692] pgpgin 163978
[ 2654.393980][T16775] bond1150 (unregistering): Released all slaves
[ 2654.403802][T27692] pgpgout 163975
[ 2654.411494][T27692] pgfault 357967
[ 2654.418824][T27692] pgmajfault 38271
[ 2654.438380][T27692] inactive_anon 8192
[ 2654.442477][T27692] active_anon 4096
[ 2654.454711][T16775] bond1149 (unregistering): Released all slaves
[ 2654.466111][T27692] inactive_file 0
[ 2654.469798][T27692] active_file 0
[ 2654.473268][T27692] unevictable 0
19:48:06 executing program 1:
socket$kcm(0x10, 0x400000002, 0x0)
socket$inet(0x2, 0x0, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
write$binfmt_script(r0, &(0x7f0000000480)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r1 = socket$rxrpc(0x21, 0x2, 0xa)
r2 = syz_genetlink_get_family_id$batadv(&(0x7f0000007580), 0xffffffffffffffff)
sendmsg$BATADV_CMD_SET_HARDIF(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001740)={&(0x7f0000000000)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16, @ANYBLOB="2d0100000000000000000500f6ff08000300", @ANYRES32], 0x2c}}, 0x0)
sendmsg$BATADV_CMD_GET_GATEWAYS(0xffffffffffffffff, &(0x7f0000007680)={0x0, 0x0, &(0x7f0000007640)={&(0x7f0000000000)=ANY=[@ANYBLOB="46040000", @ANYRES16=r2, @ANYBLOB="ff83050000076dc6d81b", @ANYRES32=r1], 0x4}}, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendfile(r4, r3, 0x0, 0x100000002)

[ 2654.496069][T27692] hierarchical_memory_limit 314572800
[ 2654.502233][T27692] hierarchical_memsw_limit 9223372036854771712
[ 2654.514985][T16775] bond1148 (unregistering): Released all slaves
[ 2654.546039][T27692] total_cache 0
[ 2654.549575][T27692] total_rss 12288
[ 2654.553226][T27692] total_rss_huge 0
[ 2654.564124][T16775] bond1147 (unregistering): Released all slaves
[ 2654.570543][T27692] total_shmem 0
[ 2654.574033][T27692] total_mapped_file 0
[ 2654.586031][T27692] total_dirty 0
[ 2654.589555][T27692] total_writeback 0
[ 2654.593382][T27692] total_workingset_refault_anon 39557
[ 2654.607429][T27692] total_workingset_refault_file 1
[ 2654.619645][T16775] bond1146 (unregistering): Released all slaves
[ 2654.636343][T27692] total_swap 319488
[ 2654.640204][T27692] total_swapcached 8192
[ 2654.644388][T27692] total_pgpgin 163978
[ 2654.657474][T16775] bond1145 (unregistering): Released all slaves
[ 2654.666193][T27692] total_pgpgout 163975
[ 2654.670307][T27692] total_pgfault 357967
[ 2654.674402][T27692] total_pgmajfault 38271
[ 2654.685999][T27692] total_inactive_anon 8192
[ 2654.690558][T27692] total_active_anon 4096
[ 2654.694932][T27692] total_inactive_file 0
[ 2654.709899][T16775] bond1144 (unregistering): Released all slaves
[ 2654.717847][T27692] total_active_file 0
[ 2654.722138][T27692] total_unevictable 0
[ 2654.746026][T27692] anon_cost 0
[ 2654.749375][T27692] file_cost 0
[ 2654.752684][T27692] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=27692,uid=0
[ 2654.778999][T27692] Memory cgroup out of memory: Killed process 27692 (syz-executor.3) total-vm:54504kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 2654.799012][T16775] bond1143 (unregistering): Released all slaves
[ 2654.824658][T16775] bond1142 (unregistering): Released all slaves
[ 2654.871775][T16775] bond1141 (unregistering): Released all slaves
19:48:06 executing program 3:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x32}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000280)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000240)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=@newlink={0x48, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0xe403, r2}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @veth={{0x9}, {0x18, 0x2, 0x0, 0x1, @val=@VETH_INFO_PEER={0x14}}}}]}, 0x48}, 0x1, 0xc}, 0x0)

[ 2654.928334][   T28] audit: type=1804 audit(1706039286.581:1990): pid=27699 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir245649211/syzkaller.jQ7tPM/95/cgroup.controllers" dev="sda1" ino=1963 res=1 errno=0
[ 2654.935644][T16775] bond1140 (unregistering): Released all slaves
[ 2654.992759][T16775] bond1139 (unregistering): Released all slaves
[ 2655.021167][T16775] bond1138 (unregistering): Released all slaves
[ 2655.081368][T16775] bond1137 (unregistering): Released all slaves
[ 2655.138349][T16775] bond1136 (unregistering): Released all slaves
[ 2655.185323][T16775] bond1135 (unregistering): Released all slaves
[ 2655.225632][T16775] bond1134 (unregistering): Released all slaves
[ 2655.267768][T16775] bond1133 (unregistering): Released all slaves
[ 2655.297753][T16775] bond1132 (unregistering): Released all slaves
[ 2655.325538][T16775] bond1131 (unregistering): Released all slaves
[ 2655.377705][T16775] bond1130 (unregistering): Released all slaves
[ 2655.400588][T27704] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2655.429376][T16775] bond1129 (unregistering): Released all slaves
[ 2655.437429][T27704] CPU: 1 PID: 27704 Comm: syz-executor.3 Not tainted 6.7.0-syzkaller-12291-g435e202d645c #0
[ 2655.447573][T27704] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 2655.457663][T27704] Call Trace:
[ 2655.460979][T27704]  <TASK>
[ 2655.463959][T27704]  dump_stack_lvl+0x125/0x1b0
[ 2655.468689][T27704]  dump_header+0x103/0x900
[ 2655.473157][T27704]  oom_kill_process+0x270/0xa60
[ 2655.478059][T27704]  out_of_memory+0x344/0x16c0
[ 2655.482787][T27704]  ? oom_killer_disable+0x2d0/0x2d0
[ 2655.488009][T27704]  ? rcu_read_unlock+0x1c/0x60
[ 2655.492798][T27704]  mem_cgroup_out_of_memory+0x206/0x270
[ 2655.498371][T27704]  ? mem_cgroup_margin+0x130/0x130
[ 2655.503520][T27704]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2655.508945][T27704]  try_charge_memcg+0xcd1/0x11a0
[ 2655.513988][T27704]  ? mem_cgroup_handle_over_high+0x570/0x570
[ 2655.519977][T27704]  ? get_mem_cgroup_from_objcg+0xb5/0x2a0
[ 2655.525707][T27704]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2655.531100][T27704]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2655.536501][T27704]  __memcg_kmem_charge_page+0xdd/0x2a0
[ 2655.541982][T27704]  memcg_charge_kernel_stack+0xc3/0x1f0
[ 2655.547546][T27704]  copy_process+0x527/0x97b0
[ 2655.552152][T27704]  ? hlock_class+0x4e/0x130
[ 2655.556670][T27704]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2655.562661][T27704]  ? page_ext_put+0x43/0xd0
[ 2655.567259][T27704]  ? hlock_class+0x4e/0x130
[ 2655.572135][T27704]  ? pidfd_prepare+0x80/0x80
[ 2655.576741][T27704]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2655.582132][T27704]  ? preempt_count_sub+0x160/0x160
[ 2655.587268][T27704]  ? __lock_acquire+0x1502/0x3b30
[ 2655.592319][T27704]  ? __might_fault+0xe6/0x1a0
[ 2655.597022][T27704]  ? _copy_from_user+0x5d/0xf0
[ 2655.601803][T27704]  kernel_clone+0xfd/0x930
[ 2655.606232][T27704]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2655.612225][T27704]  ? create_io_thread+0xe0/0xe0
[ 2655.617538][T27704]  ? find_held_lock+0x2d/0x110
[ 2655.622362][T27704]  __do_sys_clone3+0x1f1/0x260
[ 2655.627165][T27704]  ? __do_sys_clone+0x100/0x100
[ 2655.632094][T27704]  do_syscall_64+0xd3/0x250
[ 2655.636629][T27704]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 2655.642543][T27704] RIP: 0033:0x7f212b0a8b99
[ 2655.646963][T27704] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 2655.666594][T27704] RSP: 002b:00007ffc7b20b738 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 2655.675491][T27704] RAX: ffffffffffffffda RBX: 00007f212b051270 RCX: 00007f212b0a8b99
[ 2655.683468][T27704] RDX: 00007f212b051270 RSI: 0000000000000058 RDI: 00007ffc7b20b780
[ 2655.691444][T27704] RBP: 00007f212be566c0 R08: 00007f212be566c0 R09: 00007ffc7b20b867
[ 2655.699421][T27704] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 2655.707450][T27704] R13: 000000000000000b R14: 00007ffc7b20b780 R15: 00007ffc7b20b868
[ 2655.715706][T27704]  </TASK>
19:48:07 executing program 1:
socket$kcm(0x10, 0x400000002, 0x0)
socket$inet(0x2, 0x0, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
write$binfmt_script(r0, &(0x7f0000000480)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r1 = socket$rxrpc(0x21, 0x2, 0xa)
r2 = syz_genetlink_get_family_id$batadv(&(0x7f0000007580), 0xffffffffffffffff)
sendmsg$BATADV_CMD_SET_HARDIF(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001740)={&(0x7f0000000000)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16, @ANYBLOB="2d0100000000000000000500f6ff08000300", @ANYRES32], 0x2c}}, 0x0)
sendmsg$BATADV_CMD_GET_GATEWAYS(0xffffffffffffffff, &(0x7f0000007680)={0x0, 0x0, &(0x7f0000007640)={&(0x7f0000000000)=ANY=[@ANYBLOB="46040000", @ANYRES16=r2, @ANYBLOB="ff83050000076dc6d81b", @ANYRES32=r1], 0x4}}, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendfile(r4, r3, 0x0, 0x100000002)

[ 2655.735790][T27704] memory: usage 307200kB, limit 307200kB, failcnt 132794
[ 2655.753015][T27704] memory+swap: usage 307564kB, limit 9007199254740988kB, failcnt 0
[ 2655.775543][T16775] bond1128 (unregistering): Released all slaves
[ 2655.786138][T27704] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[ 2655.793493][T27704] Memory cgroup stats for /syz3:
[ 2655.793664][T27704] cache 0
[ 2655.816228][T27704] rss 0
[ 2655.819044][T27704] rss_huge 0
[ 2655.822256][T27704] shmem 0
[ 2655.825207][T27704] mapped_file 0
[ 2655.831799][T16775] bond1127 (unregistering): Released all slaves
[ 2655.832233][T27704] dirty 0
[ 2655.845302][T27704] writeback 0
[ 2655.849213][T27704] workingset_refault_anon 39650
[ 2655.854725][T27704] workingset_refault_file 1
[ 2655.859668][T27704] swap 372736
[ 2655.864216][T27704] swapcached 0
[ 2655.868131][T27704] pgpgin 164082
[ 2655.871752][T27704] pgpgout 164082
[ 2655.875419][T27704] pgfault 358131
[ 2655.880019][T27704] pgmajfault 38355
[ 2655.884581][T27704] inactive_anon 0
[ 2655.888761][T27704] active_anon 0
[ 2655.892815][T27704] inactive_file 0
[ 2655.903961][T27704] active_file 0
[ 2655.908074][T27704] unevictable 0
[ 2655.910227][T16775] bond1126 (unregistering): Released all slaves
[ 2655.911716][T27704] hierarchical_memory_limit 314572800
[ 2655.936208][T27704] hierarchical_memsw_limit 9223372036854771712
[ 2655.953973][T27704] total_cache 0
[ 2655.961335][T27704] total_rss 0
[ 2655.969394][T27704] total_rss_huge 0
[ 2655.977742][T27704] total_shmem 0
[ 2655.977796][T16775] bond1125 (unregistering): Released all slaves
[ 2655.984655][T27704] total_mapped_file 0
[ 2655.997292][T27704] total_dirty 0
[ 2656.003340][T27704] total_writeback 0
[ 2656.008059][T27704] total_workingset_refault_anon 39650
[ 2656.020365][T27704] total_workingset_refault_file 1
[ 2656.031295][T27704] total_swap 372736
[ 2656.039694][T27704] total_swapcached 0
[ 2656.059284][T27704] total_pgpgin 164082
[ 2656.063320][T27704] total_pgpgout 164082
[ 2656.073221][T16775] bond1124 (unregistering): Released all slaves
[ 2656.086883][T27704] total_pgfault 358131
[ 2656.091012][T27704] total_pgmajfault 38355
[ 2656.095262][T27704] total_inactive_anon 0
[ 2656.109517][T27704] total_active_anon 0
[ 2656.113878][T27704] total_inactive_file 0
[ 2656.129642][T16775] bond1123 (unregistering): Released all slaves
[ 2656.132498][T27704] total_active_file 0
[ 2656.144049][T27704] total_unevictable 0
[ 2656.153155][T27704] anon_cost 0
[ 2656.160169][T27704] file_cost 0
[ 2656.166946][   T28] audit: type=1804 audit(1706039287.811:1991): pid=27706 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir245649211/syzkaller.jQ7tPM/96/cgroup.controllers" dev="sda1" ino=1963 res=1 errno=0
[ 2656.170067][T27704] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=27704,uid=0
[ 2656.211345][T27704] Memory cgroup out of memory: Killed process 27704 (syz-executor.3) total-vm:54504kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 2656.213438][T16775] bond1122 (unregistering): Released all slaves
19:48:07 executing program 3:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x32}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000280)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000240)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=@newlink={0x48, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0xe403, r2}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @veth={{0x9}, {0x18, 0x2, 0x0, 0x1, @val=@VETH_INFO_PEER={0x14}}}}]}, 0x48}, 0x1, 0xe}, 0x0)

[ 2656.300527][T16775] bond1121 (unregistering): Released all slaves
[ 2656.348788][T16775] bond1120 (unregistering): Released all slaves
[ 2656.394838][T16775] bond1119 (unregistering): Released all slaves
[ 2656.431955][T16775] bond1118 (unregistering): Released all slaves
[ 2656.493610][T16775] bond1117 (unregistering): Released all slaves
19:48:08 executing program 1:
socket$kcm(0x10, 0x400000002, 0x0)
socket$inet(0x2, 0x0, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
write$binfmt_script(r0, &(0x7f0000000480)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r1 = socket$rxrpc(0x21, 0x2, 0xa)
r2 = syz_genetlink_get_family_id$batadv(&(0x7f0000007580), 0xffffffffffffffff)
sendmsg$BATADV_CMD_SET_HARDIF(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001740)={&(0x7f0000000000)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16, @ANYBLOB="2d0100000000000000000500f6ff08000300", @ANYRES32], 0x2c}}, 0x0)
sendmsg$BATADV_CMD_GET_GATEWAYS(0xffffffffffffffff, &(0x7f0000007680)={0x0, 0x0, &(0x7f0000007640)={&(0x7f0000000000)=ANY=[@ANYBLOB="46040000", @ANYRES16=r2, @ANYBLOB="ff83050000076dc6d81b", @ANYRES32=r1], 0x4}}, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendfile(r4, r3, 0x0, 0x100000002)

[ 2656.550430][T16775] bond1116 (unregistering): Released all slaves
[ 2656.628611][T16775] bond1115 (unregistering): Released all slaves
[ 2656.674744][T16775] bond1114 (unregistering): Released all slaves
[ 2656.733330][T16775] bond1113 (unregistering): Released all slaves
[ 2656.792214][T16775] bond1112 (unregistering): Released all slaves
[ 2656.861973][T16775] bond1111 (unregistering): Released all slaves
[ 2656.895519][T27711] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2656.923902][T16775] bond1110 (unregistering): Released all slaves
[ 2656.930361][T27711] CPU: 1 PID: 27711 Comm: syz-executor.3 Not tainted 6.7.0-syzkaller-12291-g435e202d645c #0
[ 2656.940724][T27711] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 2656.950818][T27711] Call Trace:
[ 2656.954113][T27711]  <TASK>
[ 2656.957061][T27711]  dump_stack_lvl+0x125/0x1b0
[ 2656.961899][T27711]  dump_header+0x103/0x900
[ 2656.966363][T27711]  oom_kill_process+0x270/0xa60
[ 2656.971281][T27711]  out_of_memory+0x344/0x16c0
[ 2656.973205][   T28] audit: type=1804 audit(1706039288.621:1992): pid=27713 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir245649211/syzkaller.jQ7tPM/97/cgroup.controllers" dev="sda1" ino=1963 res=1 errno=0
[ 2656.975994][T27711]  ? oom_killer_disable+0x2d0/0x2d0
[ 2656.976040][T27711]  ? rcu_read_unlock+0x1c/0x60
[ 2656.976081][T27711]  mem_cgroup_out_of_memory+0x206/0x270
[ 2656.976108][T27711]  ? mem_cgroup_margin+0x130/0x130
[ 2656.976131][T27711]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2656.976174][T27711]  try_charge_memcg+0xcd1/0x11a0
[ 2656.976214][T27711]  ? mem_cgroup_handle_over_high+0x570/0x570
[ 2656.976243][T27711]  ? get_mem_cgroup_from_objcg+0xb5/0x2a0
[ 2656.976270][T27711]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2656.976297][T27711]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2657.056460][T27711]  __memcg_kmem_charge_page+0xdd/0x2a0
[ 2657.062034][T27711]  memcg_charge_kernel_stack+0xc3/0x1f0
[ 2657.067596][T27711]  copy_process+0x1532/0x97b0
[ 2657.072287][T27711]  ? hlock_class+0x4e/0x130
[ 2657.076806][T27711]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2657.082794][T27711]  ? hlock_class+0x4e/0x130
[ 2657.087315][T27711]  ? pidfd_prepare+0x80/0x80
[ 2657.091916][T27711]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2657.097301][T27711]  ? preempt_count_sub+0x160/0x160
[ 2657.102417][T27711]  ? __lock_acquire+0x1502/0x3b30
[ 2657.107450][T27711]  ? __might_fault+0xe6/0x1a0
[ 2657.112151][T27711]  ? _copy_from_user+0x5d/0xf0
[ 2657.116934][T27711]  kernel_clone+0xfd/0x930
[ 2657.124701][T27711]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2657.130730][T27711]  ? create_io_thread+0xe0/0xe0
[ 2657.135644][T27711]  ? find_held_lock+0x2d/0x110
[ 2657.140530][T27711]  __do_sys_clone3+0x1f1/0x260
[ 2657.145326][T27711]  ? __do_sys_clone+0x100/0x100
[ 2657.150255][T27711]  do_syscall_64+0xd3/0x250
[ 2657.154788][T27711]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 2657.160691][T27711] RIP: 0033:0x7f212b0a8b99
[ 2657.165109][T27711] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 2657.184828][T27711] RSP: 002b:00007ffc7b20b738 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 2657.193250][T27711] RAX: ffffffffffffffda RBX: 00007f212b051270 RCX: 00007f212b0a8b99
[ 2657.201223][T27711] RDX: 00007f212b051270 RSI: 0000000000000058 RDI: 00007ffc7b20b780
[ 2657.209193][T27711] RBP: 00007f212be566c0 R08: 00007f212be566c0 R09: 00007ffc7b20b867
[ 2657.217166][T27711] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 2657.225157][T27711] R13: 000000000000000b R14: 00007ffc7b20b780 R15: 00007ffc7b20b868
[ 2657.233158][T27711]  </TASK>
[ 2657.251307][T27711] memory: usage 307200kB, limit 307200kB, failcnt 133162
[ 2657.258801][T27711] memory+swap: usage 307560kB, limit 9007199254740988kB, failcnt 0
[ 2657.268292][T27711] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[ 2657.277034][T27711] Memory cgroup stats for /syz3:
[ 2657.277210][T27711] cache 0
[ 2657.287271][T27711] rss 0
[ 2657.287508][T16775] bond1109 (unregistering): Released all slaves
[ 2657.290044][T27711] rss_huge 0
[ 2657.290053][T27711] shmem 0
[ 2657.290061][T27711] mapped_file 0
[ 2657.290069][T27711] dirty 0
[ 2657.290077][T27711] writeback 0
[ 2657.290086][T27711] workingset_refault_anon 39782
[ 2657.290095][T27711] workingset_refault_file 1
[ 2657.290105][T27711] swap 368640
[ 2657.290114][T27711] swapcached 0
[ 2657.290123][T27711] pgpgin 164225
[ 2657.290132][T27711] pgpgout 164225
[ 2657.290140][T27711] pgfault 358351
[ 2657.290148][T27711] pgmajfault 38478
[ 2657.290157][T27711] inactive_anon 0
[ 2657.290165][T27711] active_anon 0
[ 2657.290172][T27711] inactive_file 0
[ 2657.290181][T27711] active_file 0
[ 2657.290190][T27711] unevictable 0
[ 2657.364702][T27711] hierarchical_memory_limit 314572800
[ 2657.367103][T16775] bond1108 (unregistering): Released all slaves
[ 2657.370245][T27711] hierarchical_memsw_limit 9223372036854771712
[ 2657.383521][T27711] total_cache 0
[ 2657.387162][T27711] total_rss 0
[ 2657.390560][T27711] total_rss_huge 0
[ 2657.415337][T27711] total_shmem 0
[ 2657.420261][T27711] total_mapped_file 0
[ 2657.424380][T27711] total_dirty 0
[ 2657.428415][T27711] total_writeback 0
[ 2657.432349][T27711] total_workingset_refault_anon 39782
[ 2657.444534][T16775] bond1107 (unregistering): Released all slaves
[ 2657.445165][T27711] total_workingset_refault_file 1
[ 2657.475052][T27711] total_swap 368640
[ 2657.483379][T16775] bond1106 (unregistering): Released all slaves
[ 2657.490353][T27711] total_swapcached 0
[ 2657.494390][T27711] total_pgpgin 164225
19:48:09 executing program 1:
socket$kcm(0x10, 0x400000002, 0x0)
socket$inet(0x2, 0x2, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x3, &(0x7f00000000c0)=@framed, &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
write$binfmt_script(r1, &(0x7f0000000480)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r1, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r2 = socket$rxrpc(0x21, 0x2, 0xa)
r3 = syz_genetlink_get_family_id$batadv(&(0x7f0000007580), 0xffffffffffffffff)
sendmsg$BATADV_CMD_SET_HARDIF(0xffffffffffffffff, 0x0, 0x0)
sendmsg$BATADV_CMD_GET_GATEWAYS(0xffffffffffffffff, &(0x7f0000007680)={0x0, 0x0, &(0x7f0000007640)={&(0x7f0000000000)=ANY=[@ANYBLOB="46040000", @ANYRES16=r3, @ANYBLOB="ff83050000076dc6d81b", @ANYRES32=r2], 0x4}}, 0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendfile(r5, r4, 0x0, 0x100000002)

[ 2657.526043][T27711] total_pgpgout 164225
[ 2657.538859][T27711] total_pgfault 358351
[ 2657.542978][T27711] total_pgmajfault 38478
[ 2657.550936][T16775] bond1105 (unregistering): Released all slaves
[ 2657.557455][T27711] total_inactive_anon 0
[ 2657.561633][T27711] total_active_anon 0
[ 2657.565631][T27711] total_inactive_file 0
[ 2657.586003][T27711] total_active_file 0
[ 2657.590040][T27711] total_unevictable 0
[ 2657.594032][T27711] anon_cost 0
[ 2657.600563][T27711] file_cost 0
[ 2657.603898][T27711] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=27711,uid=0
[ 2657.623185][T16775] bond1104 (unregistering): Released all slaves
[ 2657.650292][T27711] Memory cgroup out of memory: Killed process 27711 (syz-executor.3) total-vm:54504kB, anon-rss:464kB, file-rss:8816kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 2657.690200][T16775] bond1103 (unregistering): Released all slaves
19:48:09 executing program 3:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x32}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000280)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000240)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=@newlink={0x48, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0xe403, r2}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @veth={{0x9}, {0x18, 0x2, 0x0, 0x1, @val=@VETH_INFO_PEER={0x14}}}}]}, 0x48}, 0x1, 0x10}, 0x0)

[ 2657.757623][T16775] bond1102 (unregistering): Released all slaves
[ 2657.789970][   T28] audit: type=1804 audit(1706039289.441:1993): pid=27719 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir245649211/syzkaller.jQ7tPM/98/cgroup.controllers" dev="sda1" ino=1963 res=1 errno=0
[ 2657.867712][T16775] bond1101 (unregistering): Released all slaves
[ 2657.914264][T16775] bond1100 (unregistering): Released all slaves
[ 2657.970483][T16775] bond1099 (unregistering): Released all slaves
[ 2658.029390][T16775] bond1098 (unregistering): Released all slaves
[ 2658.072740][T16775] bond1097 (unregistering): Released all slaves
[ 2658.110563][T16775] bond1096 (unregistering): Released all slaves
[ 2658.155393][T16775] bond1095 (unregistering): Released all slaves
[ 2658.196650][T16775] bond1094 (unregistering): Released all slaves
[ 2658.251867][T16775] bond1093 (unregistering): Released all slaves
[ 2658.277087][T16775] bond1092 (unregistering): Released all slaves
[ 2658.323560][T16775] bond1091 (unregistering): Released all slaves
[ 2658.370238][T16775] bond1090 (unregistering): Released all slaves
[ 2658.391143][ T5091] syz-executor.3 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[ 2658.417839][T16775] bond1089 (unregistering): Released all slaves
[ 2658.436133][ T5091] CPU: 1 PID: 5091 Comm: syz-executor.3 Not tainted 6.7.0-syzkaller-12291-g435e202d645c #0
[ 2658.446241][ T5091] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 2658.456319][ T5091] Call Trace:
[ 2658.459619][ T5091]  <TASK>
[ 2658.462570][ T5091]  dump_stack_lvl+0x125/0x1b0
[ 2658.467286][ T5091]  dump_header+0x103/0x900
[ 2658.471746][ T5091]  oom_kill_process+0x270/0xa60
[ 2658.476640][ T5091]  out_of_memory+0x344/0x16c0
[ 2658.481362][ T5091]  ? mutex_trylock+0xa0/0x130
[ 2658.486104][ T5091]  ? oom_killer_disable+0x2d0/0x2d0
[ 2658.491357][ T5091]  ? rcu_read_unlock+0x1c/0x60
[ 2658.496188][ T5091]  mem_cgroup_out_of_memory+0x206/0x270
[ 2658.501955][ T5091]  ? mem_cgroup_margin+0x130/0x130
[ 2658.507109][ T5091]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2658.512539][ T5091]  try_charge_memcg+0xcd1/0x11a0
[ 2658.517525][ T5091]  ? mem_cgroup_handle_over_high+0x570/0x570
[ 2658.523548][ T5091]  ? rcu_read_unlock+0x1c/0x60
[ 2658.528343][ T5091]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2658.533728][ T5091]  ? __radix_tree_lookup+0x21f/0x2c0
[ 2658.539051][ T5091]  mem_cgroup_swapin_charge_folio+0x138/0x380
[ 2658.545190][ T5091]  __read_swap_cache_async+0x4e1/0x600
[ 2658.550679][ T5091]  ? filemap_get_incore_folio+0x160/0x160
[ 2658.556411][ T5091]  ? swp_swap_info+0x30/0x130
[ 2658.561095][ T5091]  ? swapcache_prepare+0x20/0x20
[ 2658.566054][ T5091]  swap_cluster_readahead+0x3e6/0x710
[ 2658.571451][ T5091]  ? read_swap_cache_async+0x1a0/0x1a0
[ 2658.576939][ T5091]  ? reacquire_held_locks+0x410/0x4c0
[ 2658.582331][ T5091]  ? xas_descend+0x141/0x4e0
[ 2658.586945][ T5091]  ? filemap_get_entry+0x23e/0x460
[ 2658.592073][ T5091]  swapin_readahead+0x132/0xe60
[ 2658.597457][ T5091]  ? get_swap_device+0x363/0x5e0
[ 2658.602410][ T5091]  ? exit_swap_address_space+0x250/0x250
[ 2658.608054][ T5091]  ? __filemap_get_folio+0x2b0/0xaa0
[ 2658.613362][ T5091]  ? swap_cache_get_folio+0x1dc/0x460
[ 2658.618942][ T5091]  ? get_swap_device+0x245/0x5e0
[ 2658.623889][ T5091]  ? free_pages_and_swap_cache+0xa0/0xa0
[ 2658.629535][ T5091]  ? lock_sync+0x190/0x190
[ 2658.633964][ T5091]  do_swap_page+0x4a6/0x3190
[ 2658.638570][ T5091]  ? rcu_is_watching+0x12/0xb0
[ 2658.643343][ T5091]  ? __pte_offset_map+0x1b9/0x540
[ 2658.648387][ T5091]  ? unmap_mapping_folio+0x3b0/0x3b0
[ 2658.653680][ T5091]  ? pte_offset_map_nolock+0xfa/0x1b0
[ 2658.659059][ T5091]  ? __pte_offset_map+0x540/0x540
[ 2658.664100][ T5091]  __handle_mm_fault+0x13a0/0x4900
[ 2658.669232][ T5091]  ? clear_huge_page+0x2e0/0x2e0
[ 2658.674188][ T5091]  ? lock_mm_and_find_vma+0x580/0x580
[ 2658.679568][ T5091]  ? rcu_is_watching+0x12/0xb0
[ 2658.684558][ T5091]  handle_mm_fault+0x47a/0xa10
[ 2658.689457][ T5091]  do_user_addr_fault+0x30b/0x1030
[ 2658.694587][ T5091]  ? irqentry_enter_from_user_mode+0x5f/0xc0
[ 2658.700676][ T5091]  exc_page_fault+0x5d/0xc0
[ 2658.705196][ T5091]  asm_exc_page_fault+0x26/0x30
[ 2658.710052][ T5091] RIP: 0033:0x7f212b079780
[ 2658.714485][ T5091] Code: ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 31 c9 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 <80> 3d 71 57 10 00 00 49 89 ca 74 14 b8 3d 00 00 00 0f 05 48 3d 00
[ 2658.734294][ T5091] RSP: 002b:00007ffc7b20bb78 EFLAGS: 00010246
[ 2658.740375][ T5091] RAX: 00000000000001e1 RBX: 0000000000002927 RCX: 0000000000000000
[ 2658.748350][ T5091] RDX: 0000000040000001 RSI: 00007ffc7b20bbdc RDI: 00000000ffffffff
[ 2658.756323][ T5091] RBP: 00007ffc7b20bbdc R08: 0000000000000a62 R09: 0000000000000001
[ 2658.764299][ T5091] R10: 00007ffc7b2d4080 R11: 0000000000df8fbc R12: 0000000000000032
[ 2658.772278][ T5091] R13: 0000000000288e3b R14: 0000000000288e3b R15: 0000000000000000
[ 2658.780381][ T5091]  </TASK>
[ 2658.787264][ T5091] memory: usage 307200kB, limit 307200kB, failcnt 133504
[ 2658.794444][ T5091] memory+swap: usage 307560kB, limit 9007199254740988kB, failcnt 0
[ 2658.814379][T16775] bond1088 (unregistering): Released all slaves
[ 2658.817772][ T5091] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[ 2658.836122][ T5091] Memory cgroup stats for /syz3:
[ 2658.836288][ T5091] cache 0
[ 2658.844371][ T5091] rss 0
[ 2658.851200][T16775] bond1087 (unregistering): Released all slaves
[ 2658.856139][ T5091] rss_huge 0
[ 2658.860784][ T5091] shmem 0
[ 2658.863741][ T5091] mapped_file 0
19:48:10 executing program 1:
socket$kcm(0x10, 0x400000002, 0x0)
socket$inet(0x2, 0x2, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x3, &(0x7f00000000c0)=@framed, &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
write$binfmt_script(r1, &(0x7f0000000480)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r1, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r2 = socket$rxrpc(0x21, 0x2, 0xa)
r3 = syz_genetlink_get_family_id$batadv(&(0x7f0000007580), 0xffffffffffffffff)
sendmsg$BATADV_CMD_SET_HARDIF(0xffffffffffffffff, 0x0, 0x0)
sendmsg$BATADV_CMD_GET_GATEWAYS(0xffffffffffffffff, &(0x7f0000007680)={0x0, 0x0, &(0x7f0000007640)={&(0x7f0000000000)=ANY=[@ANYBLOB="46040000", @ANYRES16=r3, @ANYBLOB="ff83050000076dc6d81b", @ANYRES32=r2], 0x4}}, 0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendfile(r5, r4, 0x0, 0x100000002)

[ 2658.870206][ T5091] dirty 0
[ 2658.873203][ T5091] writeback 0
[ 2658.879737][ T5091] workingset_refault_anon 39904
[ 2658.884642][ T5091] workingset_refault_file 1
[ 2658.905315][ T5091] swap 368640
[ 2658.909213][ T5091] swapcached 0
[ 2658.912608][ T5091] pgpgin 164358
[ 2658.922143][ T5091] pgpgout 164358
[ 2658.925747][ T5091] pgfault 358548
[ 2658.931782][T16775] bond1086 (unregistering): Released all slaves
[ 2658.946079][ T5091] pgmajfault 38575
[ 2658.950546][ T5091] inactive_anon 0
[ 2658.954192][ T5091] active_anon 0
[ 2658.966258][ T5091] inactive_file 0
[ 2658.969979][ T5091] active_file 0
[ 2658.973555][ T5091] unevictable 0
[ 2658.978403][ T5091] hierarchical_memory_limit 314572800
[ 2658.986419][T16775] bond1085 (unregistering): Released all slaves
[ 2658.998296][ T5091] hierarchical_memsw_limit 9223372036854771712
[ 2659.004498][ T5091] total_cache 0
[ 2659.030880][ T5091] total_rss 0
[ 2659.034222][ T5091] total_rss_huge 0
[ 2659.040967][T16775] bond1084 (unregistering): Released all slaves
[ 2659.047425][ T5091] total_shmem 0
[ 2659.050912][ T5091] total_mapped_file 0
[ 2659.054987][ T5091] total_dirty 0
[ 2659.067153][ T5091] total_writeback 0
[ 2659.071101][ T5091] total_workingset_refault_anon 39904
[ 2659.086888][T16775] bond1083 (unregistering): Released all slaves
[ 2659.096541][ T5091] total_workingset_refault_file 1
[ 2659.101619][ T5091] total_swap 368640
[ 2659.105435][ T5091] total_swapcached 0
[ 2659.117565][ T5091] total_pgpgin 164358
[ 2659.122030][ T5091] total_pgpgout 164358
[ 2659.136506][ T5091] total_pgfault 358548
[ 2659.140636][ T5091] total_pgmajfault 38575
[ 2659.144901][ T5091] total_inactive_anon 0
[ 2659.160066][T16775] bond1082 (unregistering): Released all slaves
[ 2659.166637][ T5091] total_active_anon 0
[ 2659.170644][ T5091] total_inactive_file 0
[ 2659.174825][ T5091] total_active_file 0
[ 2659.186855][ T5091] total_unevictable 0
[ 2659.190886][ T5091] anon_cost 0
[ 2659.194214][ T5091] file_cost 0
[ 2659.200496][   T28] audit: type=1804 audit(1706039290.851:1994): pid=27723 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir245649211/syzkaller.jQ7tPM/99/cgroup.controllers" dev="sda1" ino=1963 res=1 errno=0
[ 2659.206482][ T5091] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=27721,uid=0
[ 2659.238306][T16775] bond1081 (unregistering): Released all slaves
[ 2659.244985][ T5091] Memory cgroup out of memory: Killed process 27721 (syz-executor.3) total-vm:54504kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
19:48:10 executing program 3:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x32}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000280)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000240)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=@newlink={0x48, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0xe403, r2}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @veth={{0x9}, {0x18, 0x2, 0x0, 0x1, @val=@VETH_INFO_PEER={0x14}}}}]}, 0x48}, 0x1, 0x11}, 0x0)

[ 2659.301900][T16775] bond1080 (unregistering): Released all slaves
[ 2659.364720][T16775] bond1079 (unregistering): Released all slaves
[ 2659.407096][T16775] bond1078 (unregistering): Released all slaves
[ 2659.455322][T16775] bond1077 (unregistering): Released all slaves
[ 2659.523024][T16775] bond1076 (unregistering): Released all slaves
[ 2659.552674][T16775] bond1075 (unregistering): Released all slaves
[ 2659.590144][T16775] bond1074 (unregistering): Released all slaves
[ 2659.650149][T16775] bond1073 (unregistering): Released all slaves
[ 2659.695240][T16775] bond1072 (unregistering): Released all slaves
[ 2659.748892][T16775] bond1071 (unregistering): Released all slaves
[ 2659.773956][ T5091] syz-executor.3 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[ 2659.795778][T16775] bond1070 (unregistering): Released all slaves
[ 2659.817631][ T5091] CPU: 1 PID: 5091 Comm: syz-executor.3 Not tainted 6.7.0-syzkaller-12291-g435e202d645c #0
[ 2659.827683][ T5091] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 2659.837776][ T5091] Call Trace:
[ 2659.841099][ T5091]  <TASK>
[ 2659.844062][ T5091]  dump_stack_lvl+0x125/0x1b0
[ 2659.848774][ T5091]  dump_header+0x103/0x900
[ 2659.853311][ T5091]  oom_kill_process+0x270/0xa60
[ 2659.858195][ T5091]  out_of_memory+0x344/0x16c0
[ 2659.862886][ T5091]  ? mutex_trylock+0xa0/0x130
[ 2659.867584][ T5091]  ? oom_killer_disable+0x2d0/0x2d0
[ 2659.872806][ T5091]  ? rcu_read_unlock+0x1c/0x60
[ 2659.877596][ T5091]  mem_cgroup_out_of_memory+0x206/0x270
[ 2659.883153][ T5091]  ? mem_cgroup_margin+0x130/0x130
[ 2659.888272][ T5091]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2659.893668][ T5091]  try_charge_memcg+0xcd1/0x11a0
[ 2659.898625][ T5091]  ? mem_cgroup_handle_over_high+0x570/0x570
[ 2659.904621][ T5091]  ? rcu_read_unlock+0x1c/0x60
[ 2659.909403][ T5091]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2659.914789][ T5091]  ? __radix_tree_lookup+0x21f/0x2c0
[ 2659.920104][ T5091]  mem_cgroup_swapin_charge_folio+0x138/0x380
[ 2659.926191][ T5091]  __read_swap_cache_async+0x4e1/0x600
[ 2659.931925][ T5091]  ? filemap_get_incore_folio+0x160/0x160
[ 2659.937653][ T5091]  ? swp_swap_info+0xcf/0x130
[ 2659.942342][ T5091]  ? swapcache_prepare+0x20/0x20
[ 2659.947320][ T5091]  swap_cluster_readahead+0x4d4/0x710
[ 2659.952725][ T5091]  ? read_swap_cache_async+0x1a0/0x1a0
[ 2659.958193][ T5091]  ? reacquire_held_locks+0x410/0x4c0
[ 2659.963658][ T5091]  ? xas_descend+0x141/0x4e0
[ 2659.968319][ T5091]  ? filemap_get_entry+0x23e/0x460
[ 2659.974609][ T5091]  swapin_readahead+0x132/0xe60
[ 2659.979492][ T5091]  ? get_swap_device+0x363/0x5e0
[ 2659.984446][ T5091]  ? exit_swap_address_space+0x250/0x250
[ 2659.990082][ T5091]  ? __filemap_get_folio+0x2b0/0xaa0
[ 2659.995383][ T5091]  ? swap_cache_get_folio+0x1dc/0x460
[ 2660.000757][ T5091]  ? get_swap_device+0x245/0x5e0
[ 2660.005704][ T5091]  ? free_pages_and_swap_cache+0xa0/0xa0
[ 2660.011350][ T5091]  ? lock_sync+0x190/0x190
[ 2660.016301][ T5091]  do_swap_page+0x4a6/0x3190
[ 2660.020906][ T5091]  ? rcu_is_watching+0x12/0xb0
[ 2660.025767][ T5091]  ? __pte_offset_map+0x1b9/0x540
[ 2660.030802][ T5091]  ? unmap_mapping_folio+0x3b0/0x3b0
[ 2660.036103][ T5091]  ? pte_offset_map_nolock+0xfa/0x1b0
[ 2660.041484][ T5091]  ? __pte_offset_map+0x540/0x540
[ 2660.046629][ T5091]  __handle_mm_fault+0x13a0/0x4900
[ 2660.051853][ T5091]  ? clear_huge_page+0x2e0/0x2e0
[ 2660.056830][ T5091]  ? lock_mm_and_find_vma+0x580/0x580
[ 2660.062395][ T5091]  ? do_user_addr_fault+0x663/0x1030
[ 2660.067889][ T5091]  handle_mm_fault+0x47a/0xa10
[ 2660.072690][ T5091]  do_user_addr_fault+0x30b/0x1030
[ 2660.077836][ T5091]  ? irqentry_enter_from_user_mode+0x5f/0xc0
[ 2660.083845][ T5091]  exc_page_fault+0x5d/0xc0
[ 2660.088363][ T5091]  asm_exc_page_fault+0x26/0x30
[ 2660.093257][ T5091] RIP: 0033:0x7f212b0a8184
[ 2660.097692][ T5091] Code: ff ff ff 49 89 ca 0f 44 f8 80 3d 8e 6d 0d 00 00 74 14 b8 e6 00 00 00 0f 05 f7 d8 c3 66 2e 0f 1f 84 00 00 00 00 00 48 83 ec 28 <48> 89 54 24 10 89 74 24 0c 89 3c 24 48 89 4c 24 18 e8 f6 b9 ff ff
[ 2660.117481][ T5091] RSP: 002b:00007ffc7b20bb10 EFLAGS: 00010202
[ 2660.123555][ T5091] RAX: 00000000fffffffa RBX: 0000000000002928 RCX: 0000000000000000
[ 2660.131547][ T5091] RDX: 00007ffc7b20bb50 RSI: 0000000000000000 RDI: 0000000000000000
[ 2660.139545][ T5091] RBP: 00007ffc7b20bbdc R08: 0000000000000000 R09: 0000000000000001
[ 2660.147634][ T5091] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000032
[ 2660.155617][ T5091] R13: 000000000028941b R14: 000000000028941b R15: 0000000000000000
[ 2660.163642][ T5091]  </TASK>
[ 2660.180419][ T5091] memory: usage 307200kB, limit 307200kB, failcnt 133832
[ 2660.198735][ T5091] memory+swap: usage 307596kB, limit 9007199254740988kB, failcnt 0
[ 2660.200071][T16775] bond1069 (unregistering): Released all slaves
[ 2660.214333][ T5091] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[ 2660.231118][ T5091] Memory cgroup stats for /syz3:
[ 2660.231302][ T5091] cache 0
[ 2660.240107][ T5091] rss 0
[ 2660.248759][ T5091] rss_huge 0
[ 2660.252012][ T5091] shmem 0
[ 2660.254958][ T5091] mapped_file 0
[ 2660.259036][ T5091] dirty 0
[ 2660.262156][ T5091] writeback 0
[ 2660.265541][ T5091] workingset_refault_anon 40028
[ 2660.273200][T16775] bond1068 (unregistering): Released all slaves
[ 2660.284107][ T5091] workingset_refault_file 1
[ 2660.296052][ T5091] swap 405504
19:48:11 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=@newlink={0x3c, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0xe403}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bond={{0x9}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BOND_PACKETS_PER_SLAVE={0x8, 0x14, 0xffff}]}}}]}, 0x3c}, 0x1, 0xffffffff00000000}, 0x0)

[ 2660.299402][ T5091] swapcached 0
[ 2660.302788][ T5091] pgpgin 164493
[ 2660.316149][ T5091] pgpgout 164493
[ 2660.319751][ T5091] pgfault 358753
[ 2660.323317][ T5091] pgmajfault 38690
[ 2660.328783][ T5091] inactive_anon 0
[ 2660.333769][ T5091] active_anon 0
[ 2660.339583][T16775] bond1067 (unregistering): Released all slaves
[ 2660.356263][ T5091] inactive_file 0
[ 2660.360023][ T5091] active_file 0
[ 2660.363586][ T5091] unevictable 0
[ 2660.373306][ T5091] hierarchical_memory_limit 314572800
[ 2660.396078][ T5091] hierarchical_memsw_limit 9223372036854771712
[ 2660.402293][ T5091] total_cache 0
[ 2660.405764][ T5091] total_rss 0
[ 2660.412777][T16775] bond1066 (unregistering): Released all slaves
[ 2660.421637][ T5091] total_rss_huge 0
[ 2660.425398][ T5091] total_shmem 0
[ 2660.436395][ T5091] total_mapped_file 0
[ 2660.440428][ T5091] total_dirty 0
[ 2660.444435][ T5091] total_writeback 0
[ 2660.448379][ T5091] total_workingset_refault_anon 40028
[ 2660.455029][ T5091] total_workingset_refault_file 1
[ 2660.460228][ T5091] total_swap 405504
[ 2660.464052][ T5091] total_swapcached 0
[ 2660.468112][ T5091] total_pgpgin 164493
[ 2660.472220][ T5091] total_pgpgout 164493
[ 2660.475710][T16775] bond1065 (unregistering): Released all slaves
[ 2660.476526][ T5091] total_pgfault 358753
[ 2660.486941][ T5091] total_pgmajfault 38690
[ 2660.491272][ T5091] total_inactive_anon 0
[ 2660.495519][ T5091] total_active_anon 0
[ 2660.508302][ T5091] total_inactive_file 0
[ 2660.517231][ T5091] total_active_file 0
[ 2660.525033][ T5091] total_unevictable 0
[ 2660.531697][T16775] bond1064 (unregistering): Released all slaves
[ 2660.538310][ T5091] anon_cost 0
[ 2660.541689][ T5091] file_cost 0
19:48:12 executing program 3:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x32}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000280)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000240)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=@newlink={0x48, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0xe403, r2}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @veth={{0x9}, {0x18, 0x2, 0x0, 0x1, @val=@VETH_INFO_PEER={0x14}}}}]}, 0x48}, 0x1, 0x12}, 0x0)

[ 2660.546047][ T5091] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=27725,uid=0
[ 2660.563220][ T5091] Memory cgroup out of memory: Killed process 27725 (syz-executor.3) total-vm:54504kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 2660.583283][T16775] bond1063 (unregistering): Released all slaves
[ 2660.641716][T16775] bond1062 (unregistering): Released all slaves
[ 2660.672267][T16775] bond1061 (unregistering): Released all slaves
[ 2660.730082][T16775] bond1060 (unregistering): Released all slaves
[ 2660.781678][T16775] bond1059 (unregistering): Released all slaves
[ 2660.842288][T16775] bond1058 (unregistering): Released all slaves
[ 2660.870326][T16775] bond1057 (unregistering): Released all slaves
[ 2660.918960][T27728] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2660.929321][T27728] CPU: 1 PID: 27728 Comm: syz-executor.3 Not tainted 6.7.0-syzkaller-12291-g435e202d645c #0
[ 2660.931866][T16775] bond1056 (unregistering): Released all slaves
[ 2660.939396][T27728] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 2660.939411][T27728] Call Trace:
[ 2660.939420][T27728]  <TASK>
[ 2660.939431][T27728]  dump_stack_lvl+0x125/0x1b0
[ 2660.939463][T27728]  dump_header+0x103/0x900
[ 2660.939500][T27728]  oom_kill_process+0x270/0xa60
[ 2660.939538][T27728]  out_of_memory+0x344/0x16c0
[ 2660.939581][T27728]  ? oom_killer_disable+0x2d0/0x2d0
[ 2660.939616][T27728]  ? rcu_read_unlock+0x1c/0x60
[ 2660.939659][T27728]  mem_cgroup_out_of_memory+0x206/0x270
[ 2660.939685][T27728]  ? mem_cgroup_margin+0x130/0x130
[ 2660.939708][T27728]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2660.939751][T27728]  try_charge_memcg+0xcd1/0x11a0
[ 2660.939790][T27728]  ? mem_cgroup_handle_over_high+0x570/0x570
[ 2660.939819][T27728]  ? get_mem_cgroup_from_objcg+0xb5/0x2a0
[ 2660.939846][T27728]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2660.939879][T27728]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2660.939917][T27728]  __memcg_kmem_charge_page+0xdd/0x2a0
[ 2660.939952][T27728]  memcg_charge_kernel_stack+0xc3/0x1f0
[ 2661.046132][T27728]  copy_process+0x527/0x97b0
[ 2661.050749][T27728]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2661.056743][T27728]  ? page_ext_put+0x43/0xd0
[ 2661.061689][T27728]  ? hlock_class+0x4e/0x130
[ 2661.066221][T27728]  ? pidfd_prepare+0x80/0x80
[ 2661.070832][T27728]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2661.076219][T27728]  ? preempt_count_sub+0x160/0x160
[ 2661.081339][T27728]  ? print_usage_bug.part.0+0x550/0x550
[ 2661.086913][T27728]  ? __might_fault+0xe6/0x1a0
[ 2661.091615][T27728]  ? _copy_from_user+0x5d/0xf0
[ 2661.096403][T27728]  kernel_clone+0xfd/0x930
[ 2661.100834][T27728]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2661.106910][T27728]  ? create_io_thread+0xe0/0xe0
[ 2661.111782][T27728]  ? find_held_lock+0x2d/0x110
[ 2661.116566][T27728]  __do_sys_clone3+0x1f1/0x260
[ 2661.121342][T27728]  ? __do_sys_clone+0x100/0x100
[ 2661.126215][T27728]  ? rcu_is_watching+0x12/0xb0
[ 2661.131009][T27728]  do_syscall_64+0xd3/0x250
[ 2661.135527][T27728]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 2661.141462][T27728] RIP: 0033:0x7f212b0a8b99
[ 2661.145880][T27728] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 2661.165505][T27728] RSP: 002b:00007ffc7b20b738 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 2661.174364][T27728] RAX: ffffffffffffffda RBX: 00007f212b051270 RCX: 00007f212b0a8b99
[ 2661.182522][T27728] RDX: 00007f212b051270 RSI: 0000000000000058 RDI: 00007ffc7b20b780
[ 2661.191285][T27728] RBP: 00007f212be566c0 R08: 00007f212be566c0 R09: 00007ffc7b20b867
[ 2661.199352][T27728] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 2661.207421][T27728] R13: 000000000000000b R14: 00007ffc7b20b780 R15: 00007ffc7b20b868
[ 2661.215504][T27728]  </TASK>
[ 2661.223137][T27728] memory: usage 307200kB, limit 307200kB, failcnt 134147
[ 2661.230542][T27728] memory+swap: usage 307552kB, limit 9007199254740988kB, failcnt 0
[ 2661.242989][T27728] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[ 2661.254978][T27728] Memory cgroup stats for /syz3:
[ 2661.255156][T27728] cache 0
[ 2661.273534][T27728] rss 0
[ 2661.273688][T16775] bond1055 (unregistering): Released all slaves
[ 2661.277073][T27728] rss_huge 0
[ 2661.286909][T27728] shmem 0
[ 2661.289979][T27728] mapped_file 0
[ 2661.293532][T27728] dirty 0
[ 2661.297479][T27728] writeback 0
[ 2661.300885][T27728] workingset_refault_anon 40138
[ 2661.305842][T27728] workingset_refault_file 1
[ 2661.311161][T27728] swap 360448
[ 2661.314561][T27728] swapcached 0
[ 2661.318914][T27728] pgpgin 164617
[ 2661.320577][T16775] bond1054 (unregistering): Released all slaves
[ 2661.322494][T27728] pgpgout 164617
[ 2661.335902][T27728] pgfault 358949
[ 2661.341691][T27728] pgmajfault 38799
[ 2661.345502][T27728] inactive_anon 0
[ 2661.353095][T27728] active_anon 0
[ 2661.359791][T27728] inactive_file 0
[ 2661.363580][T27728] active_file 0
[ 2661.367626][T27728] unevictable 0
[ 2661.367938][T16775] bond1053 (unregistering): Released all slaves
[ 2661.371203][T27728] hierarchical_memory_limit 314572800
[ 2661.383934][T27728] hierarchical_memsw_limit 9223372036854771712
[ 2661.390545][T27728] total_cache 0
[ 2661.394034][T27728] total_rss 0
[ 2661.398857][T27728] total_rss_huge 0
[ 2661.402734][T27728] total_shmem 0
[ 2661.406892][T27728] total_mapped_file 0
[ 2661.411024][T27728] total_dirty 0
[ 2661.414610][T27728] total_writeback 0
[ 2661.419405][T27728] total_workingset_refault_anon 40138
[ 2661.424954][T27728] total_workingset_refault_file 1
[ 2661.431027][T27728] total_swap 360448
[ 2661.431926][T16775] bond1052 (unregistering): Released all slaves
[ 2661.434965][T27728] total_swapcached 0
[ 2661.449089][T27728] total_pgpgin 164617
[ 2661.453213][T27728] total_pgpgout 164617
[ 2661.457925][T27728] total_pgfault 358949
[ 2661.462117][T27728] total_pgmajfault 38799
[ 2661.467008][T27728] total_inactive_anon 0
[ 2661.471636][T27728] total_active_anon 0
[ 2661.482324][T16775] bond1051 (unregistering): Released all slaves
[ 2661.486098][T27728] total_inactive_file 0
[ 2661.492894][T27728] total_active_file 0
[ 2661.503004][T27728] total_unevictable 0
[ 2661.511614][T27728] anon_cost 0
[ 2661.511625][T16775] bond1050 (unregistering): Released all slaves
[ 2661.518481][T27728] file_cost 0
[ 2661.528394][T27728] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=27728,uid=0
[ 2661.544666][T27728] Memory cgroup out of memory: Killed process 27728 (syz-executor.3) total-vm:54504kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 2661.554263][T16775] bond1049 (unregistering): Released all slaves
[ 2661.596565][T16775] bond1048 (unregistering): Released all slaves
19:48:13 executing program 3:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x32}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000280)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000240)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=@newlink={0x48, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0xe403, r2}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @veth={{0x9}, {0x18, 0x2, 0x0, 0x1, @val=@VETH_INFO_PEER={0x14}}}}]}, 0x48}, 0x1, 0x14}, 0x0)

[ 2661.638622][T16775] bond1047 (unregistering): Released all slaves
[ 2661.665315][T16775] bond1046 (unregistering): Released all slaves
[ 2661.719982][T16775] bond1045 (unregistering): Released all slaves
[ 2661.755110][T16775] bond1044 (unregistering): Released all slaves
[ 2661.795667][T16775] bond1043 (unregistering): Released all slaves
[ 2661.823580][T16775] bond1042 (unregistering): Released all slaves
[ 2661.851781][T16775] bond1041 (unregistering): Released all slaves
[ 2661.911014][T16775] bond1040 (unregistering): Released all slaves
[ 2661.934971][T16775] bond1039 (unregistering): Released all slaves
[ 2661.982354][T16775] bond1038 (unregistering): Released all slaves
[ 2662.032403][ T5091] syz-executor.3 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[ 2662.047448][ T5091] CPU: 1 PID: 5091 Comm: syz-executor.3 Not tainted 6.7.0-syzkaller-12291-g435e202d645c #0
[ 2662.057495][ T5091] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 2662.067578][ T5091] Call Trace:
[ 2662.070881][ T5091]  <TASK>
[ 2662.073830][ T5091]  dump_stack_lvl+0x125/0x1b0
[ 2662.078548][ T5091]  dump_header+0x103/0x900
[ 2662.083010][ T5091]  oom_kill_process+0x270/0xa60
[ 2662.087914][ T5091]  out_of_memory+0x344/0x16c0
[ 2662.092644][ T5091]  ? mutex_trylock+0xa0/0x130
[ 2662.097370][ T5091]  ? oom_killer_disable+0x2d0/0x2d0
[ 2662.102606][ T5091]  ? rcu_read_unlock+0x1c/0x60
[ 2662.107419][ T5091]  mem_cgroup_out_of_memory+0x206/0x270
[ 2662.112996][ T5091]  ? mem_cgroup_margin+0x130/0x130
[ 2662.118313][ T5091]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2662.123732][ T5091]  try_charge_memcg+0xcd1/0x11a0
[ 2662.128724][ T5091]  ? mem_cgroup_handle_over_high+0x570/0x570
[ 2662.134747][ T5091]  ? rcu_read_unlock+0x1c/0x60
[ 2662.139550][ T5091]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2662.144967][ T5091]  ? __radix_tree_lookup+0x21f/0x2c0
[ 2662.150298][ T5091]  mem_cgroup_swapin_charge_folio+0x138/0x380
[ 2662.156414][ T5091]  __read_swap_cache_async+0x4e1/0x600
[ 2662.161914][ T5091]  ? filemap_get_incore_folio+0x160/0x160
[ 2662.167668][ T5091]  ? swp_swap_info+0xcf/0x130
[ 2662.172376][ T5091]  ? swapcache_prepare+0x20/0x20
[ 2662.177351][ T5091]  ? mark_lock+0xb5/0xc50
[ 2662.181818][ T5091]  swap_cluster_readahead+0x4d4/0x710
[ 2662.187320][ T5091]  ? read_swap_cache_async+0x1a0/0x1a0
[ 2662.192811][ T5091]  ? reacquire_held_locks+0x410/0x4c0
[ 2662.198213][ T5091]  ? xas_descend+0x141/0x4e0
[ 2662.202928][ T5091]  ? filemap_get_entry+0x23e/0x460
[ 2662.208213][ T5091]  swapin_readahead+0x132/0xe60
[ 2662.213113][ T5091]  ? get_swap_device+0x363/0x5e0
[ 2662.218094][ T5091]  ? exit_swap_address_space+0x250/0x250
[ 2662.223764][ T5091]  ? __filemap_get_folio+0x2b0/0xaa0
[ 2662.229191][ T5091]  ? swap_cache_get_folio+0x1dc/0x460
[ 2662.234593][ T5091]  ? get_swap_device+0x245/0x5e0
[ 2662.239578][ T5091]  ? free_pages_and_swap_cache+0xa0/0xa0
[ 2662.245267][ T5091]  ? lock_sync+0x190/0x190
[ 2662.249729][ T5091]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2662.255770][ T5091]  do_swap_page+0x4a6/0x3190
[ 2662.260415][ T5091]  ? rcu_is_watching+0x12/0xb0
[ 2662.265239][ T5091]  ? __pte_offset_map+0x1b9/0x540
[ 2662.270329][ T5091]  ? unmap_mapping_folio+0x3b0/0x3b0
[ 2662.275688][ T5091]  ? pte_offset_map_nolock+0xfa/0x1b0
[ 2662.281113][ T5091]  ? __pte_offset_map+0x540/0x540
[ 2662.286183][ T5091]  __handle_mm_fault+0x13a0/0x4900
[ 2662.291338][ T5091]  ? clear_huge_page+0x2e0/0x2e0
[ 2662.296327][ T5091]  ? find_vma+0x112/0x1b0
[ 2662.300693][ T5091]  ? get_unmapped_area+0x400/0x400
[ 2662.305847][ T5091]  handle_mm_fault+0x47a/0xa10
[ 2662.310653][ T5091]  ? lock_mm_and_find_vma+0xa6/0x580
[ 2662.315975][ T5091]  do_user_addr_fault+0x3f8/0x1030
[ 2662.321119][ T5091]  ? rcu_is_watching+0x12/0xb0
[ 2662.327242][ T5091]  exc_page_fault+0x5d/0xc0
[ 2662.331797][ T5091]  asm_exc_page_fault+0x26/0x30
[ 2662.336680][ T5091] RIP: 0010:__get_user_8+0x11/0x20
[ 2662.341825][ T5091] Code: 48 c1 fa 3f 48 09 d0 0f 01 cb 8b 10 31 c0 0f 01 ca c3 0f 1f 80 00 00 00 00 f3 0f 1e fa 48 89 c2 48 c1 fa 3f 48 09 d0 0f 01 cb <48> 8b 10 31 c0 0f 01 ca c3 66 0f 1f 44 00 00 f3 0f 1e fa 0f 01 cb
[ 2662.361573][ T5091] RSP: 0018:ffffc900047cfe38 EFLAGS: 00050202
[ 2662.367674][ T5091] RAX: 0000555555796da8 RBX: ffff888027da0000 RCX: ffffc900047cfda0
[ 2662.375662][ T5091] RDX: 0000000000000000 RSI: ffffffff81b655ac RDI: ffffffff8b2f9d00
[ 2662.383650][ T5091] RBP: ffffc900047cff28 R08: 0000000000000000 R09: fffffbfff1e753fa
[ 2662.391653][ T5091] R10: ffffffff8f3a9fd7 R11: 0000000000000000 R12: ffff888027da0000
[ 2662.399662][ T5091] R13: ffffc900047cff58 R14: ffffc900047cfea0 R15: 0000000000000000
[ 2662.407682][ T5091]  ? __rseq_handle_notify_resume+0x14c/0x1020
[ 2662.413803][ T5091]  __rseq_handle_notify_resume+0x183/0x1020
[ 2662.419756][ T5091]  ? blkcg_maybe_throttle_current+0x5ae/0xda0
[ 2662.425869][ T5091]  ? __do_sys_rseq+0x750/0x750
[ 2662.430662][ T5091]  ? do_user_addr_fault+0x492/0x1030
[ 2662.435987][ T5091]  irqentry_exit_to_user_mode+0x194/0x290
[ 2662.441751][ T5091]  asm_exc_page_fault+0x26/0x30
[ 2662.446640][ T5091] RIP: 0033:0x7f212b0a81b8
[ 2662.451088][ T5091] Code: 3c 24 48 89 4c 24 18 e8 f6 b9 ff ff 4c 8b 54 24 18 48 8b 54 24 10 41 89 c0 8b 74 24 0c 8b 3c 24 b8 e6 00 00 00 0f 05 44 89 c7 <48> 89 04 24 e8 4f ba ff ff 48 8b 04 24 48 83 c4 28 f7 d8 c3 0f 1f
[ 2662.470740][ T5091] RSP: 002b:00007ffc7b20bb10 EFLAGS: 00010293
[ 2662.476834][ T5091] RAX: 0000000000000000 RBX: 000000000000292a RCX: 00007f212b0a81b5
[ 2662.484822][ T5091] RDX: 00007ffc7b20bb50 RSI: 0000000000000000 RDI: 0000000000000000
[ 2662.492834][ T5091] RBP: 00007ffc7b20bbdc R08: 0000000000000000 R09: 0000000000000001
[ 2662.500844][ T5091] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000032
[ 2662.508852][ T5091] R13: 0000000000289d5e R14: 0000000000289d5e R15: 0000000000000000
[ 2662.516879][ T5091]  </TASK>
[ 2662.531350][ T5091] memory: usage 307200kB, limit 307200kB, failcnt 134484
[ 2662.538440][T16775] bond1037 (unregistering): Released all slaves
[ 2662.542982][ T5091] memory+swap: usage 307560kB, limit 9007199254740988kB, failcnt 0
[ 2662.557495][ T5091] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[ 2662.564882][ T5091] Memory cgroup stats for /syz3:
[ 2662.565123][ T5091] cache 0
[ 2662.573476][ T5091] rss 0
[ 2662.576568][ T5091] rss_huge 0
[ 2662.580662][ T5091] shmem 0
[ 2662.583636][ T5091] mapped_file 0
[ 2662.587489][ T5091] dirty 0
[ 2662.590462][ T5091] writeback 0
[ 2662.593877][ T5091] workingset_refault_anon 40247
[ 2662.603117][T16775] bond1036 (unregistering): Released all slaves
[ 2662.605194][ T5091] workingset_refault_file 1
[ 2662.614152][ T5091] swap 368640
[ 2662.648404][T16775] bond1035 (unregistering): Released all slaves
[ 2662.650382][ T5091] swapcached 0
[ 2662.668277][ T5091] pgpgin 164737
[ 2662.675176][ T5091] pgpgout 164737
[ 2662.683322][ T5091] pgfault 359130
[ 2662.692287][ T5091] pgmajfault 38900
[ 2662.702241][T16775] bond1034 (unregistering): Released all slaves
[ 2662.703353][ T5091] inactive_anon 0
[ 2662.726095][ T5091] active_anon 0
[ 2662.729622][ T5091] inactive_file 0
[ 2662.733276][ T5091] active_file 0
[ 2662.746181][ T5091] unevictable 0
[ 2662.749723][ T5091] hierarchical_memory_limit 314572800
[ 2662.755112][ T5091] hierarchical_memsw_limit 9223372036854771712
[ 2662.765119][T16775] bond1033 (unregistering): Released all slaves
[ 2662.776045][ T5091] total_cache 0
[ 2662.779572][ T5091] total_rss 0
[ 2662.782884][ T5091] total_rss_huge 0
[ 2662.799042][ T5091] total_shmem 0
[ 2662.802558][ T5091] total_mapped_file 0
[ 2662.816018][ T5091] total_dirty 0
[ 2662.816777][T16775] bond1032 (unregistering): Released all slaves
[ 2662.819520][ T5091] total_writeback 0
[ 2662.819532][ T5091] total_workingset_refault_anon 40247
[ 2662.819542][ T5091] total_workingset_refault_file 1
[ 2662.819552][ T5091] total_swap 368640
[ 2662.819562][ T5091] total_swapcached 0
[ 2662.863311][T16775] bond1031 (unregistering): Released all slaves
[ 2662.890378][ T5091] total_pgpgin 164737
[ 2662.894855][ T5091] total_pgpgout 164737
[ 2662.908404][ T5091] total_pgfault 359130
[ 2662.912540][ T5091] total_pgmajfault 38900
[ 2662.919378][T16775] bond1030 (unregistering): Released all slaves
[ 2662.926574][ T5091] total_inactive_anon 0
[ 2662.930872][ T5091] total_active_anon 0
[ 2662.934917][ T5091] total_inactive_file 0
[ 2662.956021][ T5091] total_active_file 0
[ 2662.960069][ T5091] total_unevictable 0
[ 2662.967106][T16775] bond1029 (unregistering): Released all slaves
[ 2662.975999][ T5091] anon_cost 0
[ 2662.979320][ T5091] file_cost 0
[ 2662.982621][ T5091] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=27729,uid=0
[ 2663.026093][ T5091] Memory cgroup out of memory: Killed process 27729 (syz-executor.3) total-vm:54504kB, anon-rss:368kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 2663.046346][T16775] bond1028 (unregistering): Released all slaves
19:48:14 executing program 3:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x32}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000280)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000240)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=@newlink={0x48, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0xe403, r2}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @veth={{0x9}, {0x18, 0x2, 0x0, 0x1, @val=@VETH_INFO_PEER={0x14}}}}]}, 0x48}, 0x1, 0x15}, 0x0)

[ 2663.098841][T16775] bond1027 (unregistering): Released all slaves
[ 2663.171621][T16775] bond1026 (unregistering): Released all slaves
[ 2663.235891][T16775] bond1025 (unregistering): Released all slaves
[ 2663.298710][T16775] bond1024 (unregistering): Released all slaves
[ 2663.371391][T16775] bond1023 (unregistering): Released all slaves
[ 2663.438379][T16775] bond1022 (unregistering): Released all slaves
[ 2663.482180][T16775] bond1021 (unregistering): Released all slaves
[ 2663.538384][T16775] bond1020 (unregistering): Released all slaves
[ 2663.584880][ T5091] syz-executor.3 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[ 2663.621006][ T5091] CPU: 1 PID: 5091 Comm: syz-executor.3 Not tainted 6.7.0-syzkaller-12291-g435e202d645c #0
[ 2663.628972][T16775] bond1019 (unregistering): Released all slaves
[ 2663.631038][ T5091] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 2663.647348][ T5091] Call Trace:
[ 2663.650646][ T5091]  <TASK>
[ 2663.653593][ T5091]  dump_stack_lvl+0x125/0x1b0
[ 2663.658307][ T5091]  dump_header+0x103/0x900
[ 2663.662778][ T5091]  oom_kill_process+0x270/0xa60
[ 2663.667676][ T5091]  out_of_memory+0x344/0x16c0
[ 2663.672397][ T5091]  ? mutex_trylock+0xa0/0x130
[ 2663.677131][ T5091]  ? oom_killer_disable+0x2d0/0x2d0
[ 2663.682380][ T5091]  ? rcu_read_unlock+0x1c/0x60
[ 2663.687278][ T5091]  mem_cgroup_out_of_memory+0x206/0x270
[ 2663.693101][ T5091]  ? mem_cgroup_margin+0x130/0x130
[ 2663.698303][ T5091]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2663.703702][ T5091]  try_charge_memcg+0xcd1/0x11a0
[ 2663.708659][ T5091]  ? mem_cgroup_handle_over_high+0x570/0x570
[ 2663.714656][ T5091]  ? rcu_read_unlock+0x1c/0x60
[ 2663.719437][ T5091]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2663.724830][ T5091]  ? __radix_tree_lookup+0x21f/0x2c0
[ 2663.730138][ T5091]  mem_cgroup_swapin_charge_folio+0x138/0x380
[ 2663.736233][ T5091]  __read_swap_cache_async+0x4e1/0x600
[ 2663.741725][ T5091]  ? filemap_get_incore_folio+0x160/0x160
[ 2663.747453][ T5091]  ? swp_swap_info+0xcf/0x130
[ 2663.752145][ T5091]  ? swapcache_prepare+0x20/0x20
[ 2663.757092][ T5091]  ? hlock_class+0x4e/0x130
[ 2663.761609][ T5091]  ? mark_lock+0xb5/0xc50
[ 2663.766055][ T5091]  swap_cluster_readahead+0x3e6/0x710
[ 2663.771442][ T5091]  ? read_swap_cache_async+0x1a0/0x1a0
[ 2663.776911][ T5091]  ? reacquire_held_locks+0x410/0x4c0
[ 2663.782288][ T5091]  ? xas_descend+0x141/0x4e0
[ 2663.786905][ T5091]  ? filemap_get_entry+0x23e/0x460
[ 2663.792037][ T5091]  swapin_readahead+0x132/0xe60
[ 2663.796899][ T5091]  ? get_swap_device+0x363/0x5e0
[ 2663.801850][ T5091]  ? exit_swap_address_space+0x250/0x250
[ 2663.807491][ T5091]  ? __filemap_get_folio+0x2b0/0xaa0
[ 2663.812815][ T5091]  ? swap_cache_get_folio+0x1dc/0x460
[ 2663.818195][ T5091]  ? get_swap_device+0x245/0x5e0
[ 2663.823142][ T5091]  ? free_pages_and_swap_cache+0xa0/0xa0
[ 2663.828797][ T5091]  ? lock_sync+0x190/0x190
[ 2663.833219][ T5091]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2663.839211][ T5091]  do_swap_page+0x4a6/0x3190
[ 2663.844020][ T5091]  ? rcu_is_watching+0x12/0xb0
[ 2663.848816][ T5091]  ? __pte_offset_map+0x1b9/0x540
[ 2663.853862][ T5091]  ? unmap_mapping_folio+0x3b0/0x3b0
[ 2663.859164][ T5091]  ? pte_offset_map_nolock+0xfa/0x1b0
[ 2663.864583][ T5091]  ? __pte_offset_map+0x540/0x540
[ 2663.870437][ T5091]  __handle_mm_fault+0x13a0/0x4900
[ 2663.875591][ T5091]  ? clear_huge_page+0x2e0/0x2e0
[ 2663.880558][ T5091]  ? find_vma+0x112/0x1b0
[ 2663.884985][ T5091]  ? get_unmapped_area+0x400/0x400
[ 2663.890120][ T5091]  handle_mm_fault+0x47a/0xa10
[ 2663.894892][ T5091]  ? lock_mm_and_find_vma+0xa6/0x580
[ 2663.900338][ T5091]  do_user_addr_fault+0x3f8/0x1030
[ 2663.905473][ T5091]  ? rcu_is_watching+0x12/0xb0
[ 2663.910259][ T5091]  exc_page_fault+0x5d/0xc0
[ 2663.914794][ T5091]  asm_exc_page_fault+0x26/0x30
[ 2663.919651][ T5091] RIP: 0010:__get_user_8+0x11/0x20
[ 2663.924778][ T5091] Code: 48 c1 fa 3f 48 09 d0 0f 01 cb 8b 10 31 c0 0f 01 ca c3 0f 1f 80 00 00 00 00 f3 0f 1e fa 48 89 c2 48 c1 fa 3f 48 09 d0 0f 01 cb <48> 8b 10 31 c0 0f 01 ca c3 66 0f 1f 44 00 00 f3 0f 1e fa 0f 01 cb
[ 2663.944493][ T5091] RSP: 0018:ffffc900047cfdf8 EFLAGS: 00050202
[ 2663.950576][ T5091] RAX: 0000555555796da8 RBX: ffff888027da0000 RCX: ffffc900047cfd60
[ 2663.958562][ T5091] RDX: 0000000000000000 RSI: ffffffff81b655ac RDI: ffffffff8b2f9d00
[ 2663.966538][ T5091] RBP: ffffc900047cfef8 R08: 0000000000000000 R09: fffffbfff1e753fa
[ 2663.974520][ T5091] R10: ffffffff8f3a9fd7 R11: 0000000000000000 R12: ffff888027da0000
[ 2663.982504][ T5091] R13: ffffc900047cff58 R14: ffffc900047cfe60 R15: 0000000000000000
[ 2663.990866][ T5091]  ? __rseq_handle_notify_resume+0x14c/0x1020
[ 2663.996967][ T5091]  __rseq_handle_notify_resume+0x183/0x1020
[ 2664.002889][ T5091]  ? __do_sys_rseq+0x750/0x750
[ 2664.007676][ T5091]  ? folio_memcg_unlock+0x240/0x240
[ 2664.012976][ T5091]  ? __ia32_sys_clock_getres_time32+0x280/0x280
[ 2664.019237][ T5091]  syscall_exit_to_user_mode+0x1a9/0x2b0
[ 2664.024891][ T5091]  do_syscall_64+0xe0/0x250
[ 2664.029412][ T5091]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 2664.035313][ T5091] RIP: 0033:0x7f212b0a81b5
[ 2664.039740][ T5091] Code: 24 0c 89 3c 24 48 89 4c 24 18 e8 f6 b9 ff ff 4c 8b 54 24 18 48 8b 54 24 10 41 89 c0 8b 74 24 0c 8b 3c 24 b8 e6 00 00 00 0f 05 <44> 89 c7 48 89 04 24 e8 4f ba ff ff 48 8b 04 24 48 83 c4 28 f7 d8
[ 2664.059447][ T5091] RSP: 002b:00007ffc7b20bb10 EFLAGS: 00000293 ORIG_RAX: 00000000000000e6
[ 2664.068372][ T5091] RAX: 0000000000000000 RBX: 000000000000292b RCX: 00007f212b0a81b5
[ 2664.076620][ T5091] RDX: 00007ffc7b20bb50 RSI: 0000000000000000 RDI: 0000000000000000
[ 2664.084599][ T5091] RBP: 00007ffc7b20bbdc R08: 0000000000000000 R09: 0000000000000001
[ 2664.092574][ T5091] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000032
[ 2664.100564][ T5091] R13: 000000000028a2f8 R14: 000000000028a2f8 R15: 0000000000000000
[ 2664.108569][ T5091]  </TASK>
[ 2664.167462][T16775] bond1018 (unregistering): Released all slaves
[ 2664.181883][ T5091] memory: usage 307200kB, limit 307200kB, failcnt 134835
[ 2664.189127][ T5091] memory+swap: usage 307600kB, limit 9007199254740988kB, failcnt 0
[ 2664.201017][T16775] bond1017 (unregistering): Released all slaves
[ 2664.206308][ T5091] kmem: usage 307184kB, limit 9007199254740988kB, failcnt 0
[ 2664.214697][ T5091] Memory cgroup stats for /syz3:
[ 2664.214861][ T5091] cache 0
[ 2664.226764][ T5091] rss 0
[ 2664.229571][ T5091] rss_huge 0
[ 2664.230631][T16775] bond1016 (unregistering): Released all slaves
[ 2664.232773][ T5091] shmem 0
[ 2664.232785][ T5091] mapped_file 0
[ 2664.246430][ T5091] dirty 0
[ 2664.249399][ T5091] writeback 0
[ 2664.252694][ T5091] workingset_refault_anon 40374
[ 2664.257705][ T5091] workingset_refault_file 1
[ 2664.262596][ T5091] swap 409600
[ 2664.265915][ T5091] swapcached 0
[ 2664.269926][ T5091] pgpgin 164877
[ 2664.273395][ T5091] pgpgout 164877
[ 2664.277548][ T5091] pgfault 359338
[ 2664.281122][ T5091] pgmajfault 39016
[ 2664.284853][ T5091] inactive_anon 0
[ 2664.289214][ T5091] active_anon 0
[ 2664.290775][T16775] bond1015 (unregistering): Released all slaves
[ 2664.292677][ T5091] inactive_file 0
[ 2664.303816][ T5091] active_file 0
[ 2664.307723][ T5091] unevictable 0
[ 2664.311204][ T5091] hierarchical_memory_limit 314572800
[ 2664.317302][ T5091] hierarchical_memsw_limit 9223372036854771712
[ 2664.323486][ T5091] total_cache 0
[ 2664.328925][ T5091] total_rss 0
[ 2664.332247][ T5091] total_rss_huge 0
[ 2664.338211][ T5091] total_shmem 0
[ 2664.342090][ T5091] total_mapped_file 0
[ 2664.347173][ T5091] total_dirty 0
[ 2664.350662][ T5091] total_writeback 0
[ 2664.354543][ T5091] total_workingset_refault_anon 40374
[ 2664.356923][T16775] bond1014 (unregistering): Released all slaves
[ 2664.366709][ T5091] total_workingset_refault_file 1
[ 2664.371758][ T5091] total_swap 409600
[ 2664.375574][ T5091] total_swapcached 0
[ 2664.388400][ T5091] total_pgpgin 164877
[ 2664.392443][ T5091] total_pgpgout 164877
[ 2664.398778][T16775] bond1013 (unregistering): Released all slaves
[ 2664.406048][ T5091] total_pgfault 359338
[ 2664.410143][ T5091] total_pgmajfault 39016
[ 2664.414407][ T5091] total_inactive_anon 0
[ 2664.419748][ T5091] total_active_anon 0
[ 2664.423769][ T5091] total_inactive_file 0
[ 2664.428094][ T5091] total_active_file 0
[ 2664.432089][ T5091] total_unevictable 0
[ 2664.436449][ T5091] anon_cost 0
[ 2664.439759][ T5091] file_cost 0
[ 2664.443056][ T5091] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=27730,uid=0
[ 2664.466987][T16775] bond1012 (unregistering): Released all slaves
[ 2664.491479][T16775] bond1011 (unregistering): Released all slaves
[ 2664.493125][ T5091] Memory cgroup out of memory: Killed process 27730 (syz-executor.3) total-vm:54504kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 2664.518234][T16775] bond1010 (unregistering): Released all slaves
19:48:16 executing program 3:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x32}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000280)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000240)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=@newlink={0x48, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0xe403, r2}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @veth={{0x9}, {0x18, 0x2, 0x0, 0x1, @val=@VETH_INFO_PEER={0x14}}}}]}, 0x48}, 0x1, 0x48}, 0x0)

[ 2664.562910][T16775] bond1009 (unregistering): Released all slaves
[ 2664.587902][T16775] bond1008 (unregistering): Released all slaves
[ 2664.612806][T16775] bond1007 (unregistering): Released all slaves
[ 2664.660717][T16775] bond1006 (unregistering): Released all slaves
[ 2664.689036][T16775] bond1005 (unregistering): Released all slaves
[ 2664.738541][T16775] bond1004 (unregistering): Released all slaves
[ 2664.788622][T16775] bond1003 (unregistering): Released all slaves
[ 2664.812169][T16775] bond1002 (unregistering): Released all slaves
[ 2664.856932][T16775] bond1001 (unregistering): Released all slaves
[ 2664.881276][T16775] bond1000 (unregistering): Released all slaves
[ 2664.947409][T16775] bond999 (unregistering): Released all slaves
[ 2664.991844][T16775] bond998 (unregistering): Released all slaves
[ 2665.056253][T16775] bond997 (unregistering): Released all slaves
[ 2665.098515][T16775] bond996 (unregistering): Released all slaves
[ 2665.132690][T16775] bond995 (unregistering): Released all slaves
[ 2665.161400][T27732] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2665.166634][T16775] bond994 (unregistering): Released all slaves
[ 2665.194407][T27732] CPU: 0 PID: 27732 Comm: syz-executor.3 Not tainted 6.7.0-syzkaller-12291-g435e202d645c #0
[ 2665.204532][T27732] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 2665.214629][T27732] Call Trace:
[ 2665.217926][T27732]  <TASK>
[ 2665.220873][T27732]  dump_stack_lvl+0x125/0x1b0
[ 2665.225593][T27732]  dump_header+0x103/0x900
[ 2665.230044][T27732]  oom_kill_process+0x270/0xa60
[ 2665.234909][T27732]  out_of_memory+0x344/0x16c0
[ 2665.239591][T27732]  ? oom_killer_disable+0x2d0/0x2d0
[ 2665.244802][T27732]  ? rcu_read_unlock+0x1c/0x60
[ 2665.251149][T27732]  mem_cgroup_out_of_memory+0x206/0x270
[ 2665.256735][T27732]  ? mem_cgroup_margin+0x130/0x130
[ 2665.261865][T27732]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2665.267366][T27732]  try_charge_memcg+0xcd1/0x11a0
[ 2665.272327][T27732]  ? mem_cgroup_handle_over_high+0x570/0x570
[ 2665.278319][T27732]  ? get_mem_cgroup_from_objcg+0xb5/0x2a0
[ 2665.284048][T27732]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2665.289430][T27732]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2665.294821][T27732]  __memcg_kmem_charge_page+0xdd/0x2a0
[ 2665.300302][T27732]  memcg_charge_kernel_stack+0xc3/0x1f0
[ 2665.306087][T27732]  copy_process+0x527/0x97b0
[ 2665.310732][T27732]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2665.316742][T27732]  ? __lock_acquire+0xc77/0x3b30
[ 2665.321721][T27732]  ? hlock_class+0x4e/0x130
[ 2665.326249][T27732]  ? pidfd_prepare+0x80/0x80
[ 2665.330854][T27732]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2665.336234][T27732]  ? preempt_count_sub+0x160/0x160
[ 2665.341530][T27732]  ? __might_fault+0xe6/0x1a0
[ 2665.346239][T27732]  ? _copy_from_user+0x5d/0xf0
[ 2665.351036][T27732]  kernel_clone+0xfd/0x930
[ 2665.355484][T27732]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2665.361495][T27732]  ? create_io_thread+0xe0/0xe0
[ 2665.366375][T27732]  ? find_held_lock+0x2d/0x110
[ 2665.371158][T27732]  __do_sys_clone3+0x1f1/0x260
[ 2665.375935][T27732]  ? __do_sys_clone+0x100/0x100
[ 2665.380841][T27732]  do_syscall_64+0xd3/0x250
[ 2665.385367][T27732]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 2665.391271][T27732] RIP: 0033:0x7f212b0a8b99
[ 2665.395690][T27732] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 2665.420523][T27732] RSP: 002b:00007ffc7b20b738 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 2665.429295][T27732] RAX: ffffffffffffffda RBX: 00007f212b051270 RCX: 00007f212b0a8b99
[ 2665.437460][T27732] RDX: 00007f212b051270 RSI: 0000000000000058 RDI: 00007ffc7b20b780
[ 2665.445434][T27732] RBP: 00007f212be566c0 R08: 00007f212be566c0 R09: 00007ffc7b20b867
[ 2665.453414][T27732] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 2665.461394][T27732] R13: 000000000000000b R14: 00007ffc7b20b780 R15: 00007ffc7b20b868
[ 2665.469425][T27732]  </TASK>
[ 2665.479134][T27732] memory: usage 307200kB, limit 307200kB, failcnt 135355
[ 2665.496253][T27732] memory+swap: usage 307504kB, limit 9007199254740988kB, failcnt 0
[ 2665.505414][T27732] kmem: usage 307184kB, limit 9007199254740988kB, failcnt 0
[ 2665.513508][T27732] Memory cgroup stats for /syz3:
[ 2665.513682][T27732] cache 0
[ 2665.518836][T16775] bond993 (unregistering): Released all slaves
[ 2665.522044][T27732] rss 0
[ 2665.531761][T27732] rss_huge 0
[ 2665.535010][T27732] shmem 0
[ 2665.538626][T27732] mapped_file 0
[ 2665.542122][T27732] dirty 0
[ 2665.545120][T27732] writeback 0
[ 2665.547191][T16775] bond992 (unregistering): Released all slaves
[ 2665.549453][T27732] workingset_refault_anon 40547
[ 2665.559919][T27732] workingset_refault_file 1
[ 2665.564451][T27732] swap 327680
[ 2665.568480][T27732] swapcached 0
[ 2665.572150][T27732] pgpgin 165061
[ 2665.575630][T27732] pgpgout 165061
[ 2665.580169][T27732] pgfault 359636
[ 2665.583748][T27732] pgmajfault 39184
[ 2665.590975][T27732] inactive_anon 0
[ 2665.594697][T27732] active_anon 0
[ 2665.597502][T16775] bond991 (unregistering): Released all slaves
[ 2665.598876][T27732] inactive_file 0
[ 2665.615341][T27732] active_file 0
[ 2665.620676][T27732] unevictable 0
[ 2665.624163][T27732] hierarchical_memory_limit 314572800
[ 2665.630236][T27732] hierarchical_memsw_limit 9223372036854771712
[ 2665.636798][T27732] total_cache 0
[ 2665.640322][T27732] total_rss 0
[ 2665.642640][T16775] bond990 (unregistering): Released all slaves
[ 2665.643603][T27732] total_rss_huge 0
[ 2665.653992][T27732] total_shmem 0
[ 2665.658345][T27732] total_mapped_file 0
[ 2665.662351][T27732] total_dirty 0
[ 2665.665818][T27732] total_writeback 0
[ 2665.670519][T27732] total_workingset_refault_anon 40547
[ 2665.677053][T27732] total_workingset_refault_file 1
[ 2665.682275][T27732] total_swap 327680
[ 2665.686925][T27732] total_swapcached 0
[ 2665.690901][T27732] total_pgpgin 165061
[ 2665.693153][T16775] bond989 (unregistering): Released all slaves
[ 2665.694881][T27732] total_pgpgout 165061
[ 2665.694893][T27732] total_pgfault 359636
[ 2665.713229][T27732] total_pgmajfault 39184
[ 2665.717941][T27732] total_inactive_anon 0
[ 2665.722118][T27732] total_active_anon 0
[ 2665.727278][T27732] total_inactive_file 0
[ 2665.731577][T27732] total_active_file 0
[ 2665.735600][T27732] total_unevictable 0
[ 2665.741788][T16775] bond988 (unregistering): Released all slaves
[ 2665.748979][T27732] anon_cost 0
[ 2665.752414][T27732] file_cost 0
[ 2665.756642][T27732] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=27732,uid=0
[ 2665.777338][T27732] Memory cgroup out of memory: Killed process 27732 (syz-executor.3) total-vm:54504kB, anon-rss:368kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 2665.797607][T16775] bond987 (unregistering): Released all slaves
[ 2665.837547][T16775] bond986 (unregistering): Released all slaves
[ 2665.874395][T16775] bond985 (unregistering): Released all slaves
19:48:17 executing program 3:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x32}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000280)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000240)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=@newlink={0x48, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0xe403, r2}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @veth={{0x9}, {0x18, 0x2, 0x0, 0x1, @val=@VETH_INFO_PEER={0x14}}}}]}, 0x48}, 0x1, 0x4c}, 0x0)

[ 2665.907009][T16775] bond984 (unregistering): Released all slaves
[ 2665.952024][T16775] bond983 (unregistering): Released all slaves
[ 2665.986947][T16775] bond982 (unregistering): Released all slaves
[ 2666.018858][T16775] bond981 (unregistering): Released all slaves
[ 2666.062617][T16775] bond980 (unregistering): Released all slaves
[ 2666.089805][T16775] bond979 (unregistering): Released all slaves
[ 2666.114975][T16775] bond978 (unregistering): Released all slaves
[ 2666.160013][T16775] bond977 (unregistering): Released all slaves
[ 2666.192463][T16775] bond976 (unregistering): Released all slaves
[ 2666.238754][T16775] bond975 (unregistering): Released all slaves
[ 2666.272888][T16775] bond974 (unregistering): Released all slaves
[ 2666.315672][T16775] bond973 (unregistering): Released all slaves
[ 2666.355505][T16775] bond972 (unregistering): Released all slaves
[ 2666.403725][T16775] bond971 (unregistering): Released all slaves
[ 2666.432569][T27733] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2666.447249][T16775] bond970 (unregistering): Released all slaves
[ 2666.450480][T27733] CPU: 1 PID: 27733 Comm: syz-executor.3 Not tainted 6.7.0-syzkaller-12291-g435e202d645c #0
[ 2666.463525][T27733] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 2666.473723][T27733] Call Trace:
[ 2666.477023][T27733]  <TASK>
[ 2666.479977][T27733]  dump_stack_lvl+0x125/0x1b0
[ 2666.484689][T27733]  dump_header+0x103/0x900
[ 2666.489322][T27733]  oom_kill_process+0x270/0xa60
[ 2666.494225][T27733]  out_of_memory+0x344/0x16c0
[ 2666.498956][T27733]  ? oom_killer_disable+0x2d0/0x2d0
[ 2666.504188][T27733]  ? rcu_read_unlock+0x1c/0x60
[ 2666.509848][T27733]  mem_cgroup_out_of_memory+0x206/0x270
[ 2666.515406][T27733]  ? mem_cgroup_margin+0x130/0x130
[ 2666.520529][T27733]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2666.525927][T27733]  try_charge_memcg+0xcd1/0x11a0
[ 2666.530897][T27733]  ? mem_cgroup_handle_over_high+0x570/0x570
[ 2666.536910][T27733]  ? get_mem_cgroup_from_objcg+0xb5/0x2a0
[ 2666.542682][T27733]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2666.548073][T27733]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2666.553487][T27733]  __memcg_kmem_charge_page+0xdd/0x2a0
[ 2666.559053][T27733]  memcg_charge_kernel_stack+0xc3/0x1f0
[ 2666.564835][T27733]  copy_process+0x527/0x97b0
[ 2666.569463][T27733]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2666.575461][T27733]  ? page_ext_put+0x43/0xd0
[ 2666.579979][T27733]  ? hlock_class+0x4e/0x130
[ 2666.584531][T27733]  ? pidfd_prepare+0x80/0x80
[ 2666.589178][T27733]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2666.594567][T27733]  ? preempt_count_sub+0x160/0x160
[ 2666.599689][T27733]  ? print_usage_bug.part.0+0x550/0x550
[ 2666.605282][T27733]  ? __might_fault+0xe6/0x1a0
[ 2666.609996][T27733]  ? _copy_from_user+0x5d/0xf0
[ 2666.614777][T27733]  kernel_clone+0xfd/0x930
[ 2666.619212][T27733]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2666.625200][T27733]  ? create_io_thread+0xe0/0xe0
[ 2666.630077][T27733]  ? find_held_lock+0x2d/0x110
[ 2666.634865][T27733]  __do_sys_clone3+0x1f1/0x260
[ 2666.639644][T27733]  ? __do_sys_clone+0x100/0x100
[ 2666.647753][T27733]  ? rcu_is_watching+0x12/0xb0
[ 2666.653542][T27733]  do_syscall_64+0xd3/0x250
[ 2666.658110][T27733]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 2666.664023][T27733] RIP: 0033:0x7f212b0a8b99
[ 2666.668444][T27733] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 2666.688411][T27733] RSP: 002b:00007ffc7b20b738 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 2666.696846][T27733] RAX: ffffffffffffffda RBX: 00007f212b051270 RCX: 00007f212b0a8b99
[ 2666.704925][T27733] RDX: 00007f212b051270 RSI: 0000000000000058 RDI: 00007ffc7b20b780
[ 2666.712995][T27733] RBP: 00007f212be566c0 R08: 00007f212be566c0 R09: 00007ffc7b20b867
[ 2666.720974][T27733] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 2666.728980][T27733] R13: 000000000000000b R14: 00007ffc7b20b780 R15: 00007ffc7b20b868
[ 2666.736998][T27733]  </TASK>
[ 2666.744989][T16775] bond969 (unregistering): Released all slaves
[ 2666.766013][T27733] memory: usage 307200kB, limit 307200kB, failcnt 135822
[ 2666.773201][T27733] memory+swap: usage 307560kB, limit 9007199254740988kB, failcnt 0
[ 2666.795022][T27733] kmem: usage 307184kB, limit 9007199254740988kB, failcnt 0
[ 2666.804614][T27733] Memory cgroup stats for /syz3:
[ 2666.804789][T27733] cache 0
[ 2666.812983][T27733] rss 0
[ 2666.815772][T27733] rss_huge 0
[ 2666.819079][T27733] shmem 0
[ 2666.821394][T16775] bond968 (unregistering): Released all slaves
[ 2666.822015][T27733] mapped_file 0
[ 2666.822026][T27733] dirty 0
[ 2666.834874][T27733] writeback 0
[ 2666.838350][T27733] workingset_refault_anon 40723
[ 2666.844624][T27733] workingset_refault_file 1
[ 2666.849276][T27733] swap 368640
[ 2666.852658][T27733] swapcached 0
[ 2666.856254][T27733] pgpgin 165248
[ 2666.860235][T27733] pgpgout 165248
[ 2666.863884][T27733] pgfault 359891
[ 2666.867635][T27733] pgmajfault 39330
[ 2666.869771][T16775] bond967 (unregistering): Released all slaves
[ 2666.871359][T27733] inactive_anon 0
[ 2666.881335][T27733] active_anon 0
[ 2666.884805][T27733] inactive_file 0
[ 2666.888505][T27733] active_file 0
[ 2666.891982][T27733] unevictable 0
[ 2666.895446][T27733] hierarchical_memory_limit 314572800
[ 2666.913982][T27733] hierarchical_memsw_limit 9223372036854771712
[ 2666.920341][T27733] total_cache 0
[ 2666.923837][T27733] total_rss 0
[ 2666.927240][T27733] total_rss_huge 0
[ 2666.932378][T27733] total_shmem 0
[ 2666.934218][T16775] bond966 (unregistering): Released all slaves
[ 2666.935841][T27733] total_mapped_file 0
[ 2666.935853][T27733] total_dirty 0
[ 2666.956038][T27733] total_writeback 0
[ 2666.959891][T27733] total_workingset_refault_anon 40723
[ 2666.965276][T27733] total_workingset_refault_file 1
[ 2666.975589][T27733] total_swap 368640
[ 2666.982515][T16775] bond965 (unregistering): Released all slaves
[ 2666.983005][T27733] total_swapcached 0
[ 2666.993540][T27733] total_pgpgin 165248
[ 2666.998340][T27733] total_pgpgout 165248
[ 2667.002435][T27733] total_pgfault 359891
[ 2667.008059][T27733] total_pgmajfault 39330
[ 2667.012347][T27733] total_inactive_anon 0
[ 2667.017154][T27733] total_active_anon 0
[ 2667.021168][T27733] total_inactive_file 0
[ 2667.025399][T27733] total_active_file 0
[ 2667.031367][T27733] total_unevictable 0
[ 2667.035503][T27733] anon_cost 0
[ 2667.039617][T27733] file_cost 0
[ 2667.042927][T27733] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=27733,uid=0
[ 2667.049976][T16775] bond964 (unregistering): Released all slaves
[ 2667.059261][T27733] Memory cgroup out of memory: Killed process 27733 (syz-executor.3) total-vm:54504kB, anon-rss:380kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 2667.093562][T16775] bond963 (unregistering): Released all slaves
19:48:18 executing program 3:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x32}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000280)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000240)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=@newlink={0x48, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0xe403, r2}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @veth={{0x9}, {0x18, 0x2, 0x0, 0x1, @val=@VETH_INFO_PEER={0x14}}}}]}, 0x48}, 0x1, 0x5e}, 0x0)

[ 2667.149942][T16775] bond962 (unregistering): Released all slaves
[ 2667.178995][T16775] bond961 (unregistering): Released all slaves
[ 2667.214433][T16775] bond960 (unregistering): Released all slaves
[ 2667.244286][T16775] bond959 (unregistering): Released all slaves
[ 2667.271726][T16775] bond958 (unregistering): Released all slaves
[ 2667.314142][T16775] bond957 (unregistering): Released all slaves
[ 2667.344442][T16775] bond956 (unregistering): Released all slaves
[ 2667.385213][T16775] bond955 (unregistering): Released all slaves
[ 2667.440733][T16775] bond954 (unregistering): Released all slaves
[ 2667.499711][ T5091] syz-executor.3 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[ 2667.511052][ T5091] CPU: 1 PID: 5091 Comm: syz-executor.3 Not tainted 6.7.0-syzkaller-12291-g435e202d645c #0
[ 2667.521071][ T5091] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 2667.531157][ T5091] Call Trace:
[ 2667.534456][ T5091]  <TASK>
[ 2667.537406][ T5091]  dump_stack_lvl+0x125/0x1b0
[ 2667.542118][ T5091]  dump_header+0x103/0x900
[ 2667.546580][ T5091]  oom_kill_process+0x270/0xa60
[ 2667.551475][ T5091]  out_of_memory+0x344/0x16c0
[ 2667.556200][ T5091]  ? mutex_trylock+0xa0/0x130
[ 2667.560923][ T5091]  ? oom_killer_disable+0x2d0/0x2d0
[ 2667.566519][ T5091]  ? rcu_read_unlock+0x1c/0x60
[ 2667.572128][ T5091]  mem_cgroup_out_of_memory+0x206/0x270
[ 2667.577726][ T5091]  ? mem_cgroup_margin+0x130/0x130
[ 2667.582868][ T5091]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2667.588293][ T5091]  try_charge_memcg+0xcd1/0x11a0
[ 2667.593280][ T5091]  ? mem_cgroup_handle_over_high+0x570/0x570
[ 2667.599299][ T5091]  ? rcu_read_unlock+0x1c/0x60
[ 2667.604090][ T5091]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2667.609827][ T5091]  ? __radix_tree_lookup+0x21f/0x2c0
[ 2667.615764][ T5091]  mem_cgroup_swapin_charge_folio+0x138/0x380
[ 2667.622314][ T5091]  __read_swap_cache_async+0x4e1/0x600
[ 2667.627816][ T5091]  ? filemap_get_incore_folio+0x160/0x160
[ 2667.633582][ T5091]  ? swp_swap_info+0xcf/0x130
[ 2667.638312][ T5091]  ? swapcache_prepare+0x20/0x20
[ 2667.643295][ T5091]  ? find_held_lock+0x2d/0x110
[ 2667.648108][ T5091]  ? find_held_lock+0x2d/0x110
[ 2667.653543][ T5091]  swap_cluster_readahead+0x4d4/0x710
[ 2667.658966][ T5091]  ? read_swap_cache_async+0x1a0/0x1a0
[ 2667.664443][ T5091]  ? reacquire_held_locks+0x410/0x4c0
[ 2667.669849][ T5091]  ? xas_descend+0x141/0x4e0
[ 2667.674931][ T5091]  ? filemap_get_entry+0x23e/0x460
[ 2667.680084][ T5091]  swapin_readahead+0x132/0xe60
[ 2667.684974][ T5091]  ? get_swap_device+0x363/0x5e0
[ 2667.689945][ T5091]  ? exit_swap_address_space+0x250/0x250
[ 2667.695627][ T5091]  ? __filemap_get_folio+0x2b0/0xaa0
[ 2667.700955][ T5091]  ? swap_cache_get_folio+0x1dc/0x460
[ 2667.706360][ T5091]  ? get_swap_device+0x245/0x5e0
[ 2667.711330][ T5091]  ? free_pages_and_swap_cache+0xa0/0xa0
[ 2667.717009][ T5091]  ? lock_sync+0x190/0x190
[ 2667.721726][ T5091]  do_swap_page+0x4a6/0x3190
[ 2667.726448][ T5091]  ? rcu_is_watching+0x12/0xb0
[ 2667.731246][ T5091]  ? __pte_offset_map+0x1b9/0x540
[ 2667.736311][ T5091]  ? unmap_mapping_folio+0x3b0/0x3b0
[ 2667.741645][ T5091]  ? pte_offset_map_nolock+0xfa/0x1b0
[ 2667.747072][ T5091]  ? __pte_offset_map+0x540/0x540
[ 2667.752282][ T5091]  __handle_mm_fault+0x13a0/0x4900
[ 2667.757465][ T5091]  ? clear_huge_page+0x2e0/0x2e0
[ 2667.762456][ T5091]  ? lock_mm_and_find_vma+0x580/0x580
[ 2667.768653][ T5091]  handle_mm_fault+0x47a/0xa10
[ 2667.773454][ T5091]  do_user_addr_fault+0x30b/0x1030
[ 2667.778596][ T5091]  ? irqentry_enter_from_user_mode+0x5f/0xc0
[ 2667.784624][ T5091]  exc_page_fault+0x5d/0xc0
[ 2667.789361][ T5091]  asm_exc_page_fault+0x26/0x30
[ 2667.794266][ T5091] RIP: 0033:0x7f212b0a81b8
[ 2667.798711][ T5091] Code: 3c 24 48 89 4c 24 18 e8 f6 b9 ff ff 4c 8b 54 24 18 48 8b 54 24 10 41 89 c0 8b 74 24 0c 8b 3c 24 b8 e6 00 00 00 0f 05 44 89 c7 <48> 89 04 24 e8 4f ba ff ff 48 8b 04 24 48 83 c4 28 f7 d8 c3 0f 1f
[ 2667.818969][ T5091] RSP: 002b:00007ffc7b20bb10 EFLAGS: 00010293
[ 2667.825075][ T5091] RAX: 0000000000000000 RBX: 000000000000292e RCX: 00007f212b0a81b5
[ 2667.833078][ T5091] RDX: 00007ffc7b20bb50 RSI: 0000000000000000 RDI: 0000000000000000
[ 2667.841079][ T5091] RBP: 00007ffc7b20bbdc R08: 0000000000000000 R09: 0000000000000001
[ 2667.849080][ T5091] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000032
[ 2667.857082][ T5091] R13: 000000000028b30d R14: 000000000028b30d R15: 0000000000000000
[ 2667.865104][ T5091]  </TASK>
[ 2667.883118][ T5091] memory: usage 307200kB, limit 307200kB, failcnt 136199
[ 2667.885577][T16775] bond953 (unregistering): Released all slaves
[ 2667.905357][ T5091] memory+swap: usage 307556kB, limit 9007199254740988kB, failcnt 0
[ 2667.914342][ T5091] kmem: usage 307184kB, limit 9007199254740988kB, failcnt 0
[ 2667.916994][T16775] bond952 (unregistering): Released all slaves
[ 2667.923497][ T5091] Memory cgroup stats for /syz3:
[ 2667.929641][ T5091] cache 0
[ 2667.948922][T16775] bond951 (unregistering): Released all slaves
[ 2667.956201][ T5091] rss 0
[ 2667.958999][ T5091] rss_huge 0
[ 2667.962211][ T5091] shmem 0
[ 2667.965160][ T5091] mapped_file 0
[ 2667.972385][ T5091] dirty 0
[ 2667.972612][T16775] bond950 (unregistering): Released all slaves
[ 2667.975347][ T5091] writeback 0
[ 2667.975358][ T5091] workingset_refault_anon 40831
[ 2668.008842][ T5091] workingset_refault_file 1
[ 2668.013404][ T5091] swap 364544
[ 2668.019063][ T5091] swapcached 0
[ 2668.020806][T16775] bond949 (unregistering): Released all slaves
[ 2668.022458][ T5091] pgpgin 165367
[ 2668.033715][ T5091] pgpgout 165367
[ 2668.037714][ T5091] pgfault 360079
[ 2668.041374][ T5091] pgmajfault 39433
[ 2668.045224][ T5091] inactive_anon 0
[ 2668.049550][ T5091] active_anon 0
[ 2668.053035][ T5091] inactive_file 0
[ 2668.058093][ T5091] active_file 0
[ 2668.061580][ T5091] unevictable 0
[ 2668.065049][ T5091] hierarchical_memory_limit 314572800
[ 2668.071178][ T5091] hierarchical_memsw_limit 9223372036854771712
[ 2668.072829][T16775] bond948 (unregistering): Released all slaves
[ 2668.081433][ T5091] total_cache 0
[ 2668.088338][ T5091] total_rss 0
[ 2668.091998][ T5091] total_rss_huge 0
[ 2668.095910][ T5091] total_shmem 0
[ 2668.105580][ T5091] total_mapped_file 0
[ 2668.110533][ T5091] total_dirty 0
[ 2668.112438][T16775] bond947 (unregistering): Released all slaves
[ 2668.114010][ T5091] total_writeback 0
[ 2668.125230][ T5091] total_workingset_refault_anon 40831
[ 2668.131911][ T5091] total_workingset_refault_file 1
[ 2668.137730][ T5091] total_swap 364544
[ 2668.141568][ T5091] total_swapcached 0
[ 2668.145478][ T5091] total_pgpgin 165367
[ 2668.150363][ T5091] total_pgpgout 165367
[ 2668.154459][ T5091] total_pgfault 360079
[ 2668.159243][ T5091] total_pgmajfault 39433
[ 2668.163659][ T5091] total_inactive_anon 0
[ 2668.165899][T16775] bond946 (unregistering): Released all slaves
[ 2668.178129][ T5091] total_active_anon 0
[ 2668.182141][ T5091] total_inactive_file 0
[ 2668.193227][ T5091] total_active_file 0
[ 2668.197698][ T5091] total_unevictable 0
[ 2668.201857][ T5091] anon_cost 0
[ 2668.205198][ T5091] file_cost 0
[ 2668.207849][T16775] bond945 (unregistering): Released all slaves
[ 2668.209417][ T5091] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=27734,uid=0
[ 2668.235286][ T5091] Memory cgroup out of memory: Killed process 27734 (syz-executor.3) total-vm:54504kB, anon-rss:368kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 2668.256450][T16775] bond944 (unregistering): Released all slaves
19:48:20 executing program 3:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x32}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000280)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000240)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=@newlink={0x48, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0xe403, r2}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @veth={{0x9}, {0x18, 0x2, 0x0, 0x1, @val=@VETH_INFO_PEER={0x14}}}}]}, 0x48}, 0x1, 0x60}, 0x0)

[ 2668.307390][T16775] bond943 (unregistering): Released all slaves
[ 2668.347623][T16775] bond942 (unregistering): Released all slaves
[ 2668.402518][T16775] bond941 (unregistering): Released all slaves
[ 2668.448693][T16775] bond940 (unregistering): Released all slaves
[ 2668.472549][T16775] bond939 (unregistering): Released all slaves
[ 2668.503212][T16775] bond938 (unregistering): Released all slaves
[ 2668.547024][T16775] bond937 (unregistering): Released all slaves
[ 2668.597993][T16775] bond936 (unregistering): Released all slaves
[ 2668.613447][T27735] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2668.623774][T27735] CPU: 0 PID: 27735 Comm: syz-executor.3 Not tainted 6.7.0-syzkaller-12291-g435e202d645c #0
[ 2668.634917][T27735] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 2668.645184][T27735] Call Trace:
[ 2668.648498][T27735]  <TASK>
[ 2668.651463][T27735]  dump_stack_lvl+0x125/0x1b0
[ 2668.656178][T27735]  dump_header+0x103/0x900
[ 2668.660713][T27735]  oom_kill_process+0x270/0xa60
[ 2668.665573][T27735]  out_of_memory+0x344/0x16c0
[ 2668.670261][T27735]  ? oom_killer_disable+0x2d0/0x2d0
[ 2668.675487][T27735]  ? rcu_read_unlock+0x1c/0x60
[ 2668.680290][T27735]  mem_cgroup_out_of_memory+0x206/0x270
[ 2668.685883][T27735]  ? mem_cgroup_margin+0x130/0x130
[ 2668.691013][T27735]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2668.697407][T27735]  try_charge_memcg+0xcd1/0x11a0
[ 2668.702362][T27735]  ? mem_cgroup_handle_over_high+0x570/0x570
[ 2668.708364][T27735]  ? get_mem_cgroup_from_objcg+0xb5/0x2a0
[ 2668.714084][T27735]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2668.719479][T27735]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2668.724868][T27735]  __memcg_kmem_charge_page+0xdd/0x2a0
[ 2668.730371][T27735]  memcg_charge_kernel_stack+0xc3/0x1f0
[ 2668.736242][T27735]  copy_process+0x527/0x97b0
[ 2668.740862][T27735]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2668.746855][T27735]  ? page_ext_put+0x43/0xd0
[ 2668.751384][T27735]  ? pidfd_prepare+0x80/0x80
[ 2668.755996][T27735]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2668.761392][T27735]  ? preempt_count_sub+0x160/0x160
[ 2668.766526][T27735]  ? print_usage_bug.part.0+0x550/0x550
[ 2668.772093][T27735]  ? __might_fault+0xe6/0x1a0
[ 2668.776801][T27735]  ? _copy_from_user+0x5d/0xf0
[ 2668.781592][T27735]  kernel_clone+0xfd/0x930
[ 2668.786050][T27735]  ? create_io_thread+0xe0/0xe0
[ 2668.790965][T27735]  __do_sys_clone3+0x1f1/0x260
[ 2668.795770][T27735]  ? __do_sys_clone+0x100/0x100
[ 2668.800655][T27735]  ? do_user_addr_fault+0x663/0x1030
[ 2668.806005][T27735]  do_syscall_64+0xd3/0x250
[ 2668.810555][T27735]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 2668.816481][T27735] RIP: 0033:0x7f212b0a8b99
[ 2668.820929][T27735] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 2668.841323][T27735] RSP: 002b:00007ffc7b20b738 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 2668.850122][T27735] RAX: ffffffffffffffda RBX: 00007f212b051270 RCX: 00007f212b0a8b99
[ 2668.858117][T27735] RDX: 00007f212b051270 RSI: 0000000000000058 RDI: 00007ffc7b20b780
[ 2668.866098][T27735] RBP: 00007f212be566c0 R08: 00007f212be566c0 R09: 00007ffc7b20b867
[ 2668.874097][T27735] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 2668.882085][T27735] R13: 000000000000000b R14: 00007ffc7b20b780 R15: 00007ffc7b20b868
[ 2668.890390][T27735]  </TASK>
[ 2668.907908][T16775] bond935 (unregistering): Released all slaves
[ 2668.936525][T27735] memory: usage 307200kB, limit 307200kB, failcnt 136584
[ 2668.943696][T27735] memory+swap: usage 307596kB, limit 9007199254740988kB, failcnt 0
[ 2668.945877][T16775] bond934 (unregistering): Released all slaves
[ 2668.952443][T27735] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[ 2668.952465][T27735] Memory cgroup stats for /syz3:
[ 2668.952613][T27735] cache 0
[ 2668.974499][T27735] rss 0
[ 2668.977388][T27735] rss_huge 0
[ 2668.980691][T27735] shmem 0
[ 2668.983643][T27735] mapped_file 0
[ 2668.987249][T27735] dirty 0
[ 2668.990212][T27735] writeback 0
[ 2668.993774][T27735] workingset_refault_anon 40963
[ 2668.998737][T27735] workingset_refault_file 1
[ 2669.004282][T27735] swap 405504
[ 2669.008537][T16775] bond933 (unregistering): Released all slaves
[ 2669.014668][T27735] swapcached 0
[ 2669.032564][T27735] pgpgin 165511
[ 2669.037205][T27735] pgpgout 165511
[ 2669.038974][T16775] bond932 (unregistering): Released all slaves
[ 2669.040770][T27735] pgfault 360289
[ 2669.056715][T27735] pgmajfault 39560
[ 2669.060486][T27735] inactive_anon 0
[ 2669.064137][T27735] active_anon 0
[ 2669.068583][T27735] inactive_file 0
[ 2669.070015][T16775] bond931 (unregistering): Released all slaves
[ 2669.072321][T27735] active_file 0
[ 2669.072333][T27735] unevictable 0
[ 2669.087937][T27735] hierarchical_memory_limit 314572800
[ 2669.093590][T27735] hierarchical_memsw_limit 9223372036854771712
[ 2669.102599][T27735] total_cache 0
[ 2669.113771][T16775] bond930 (unregistering): Released all slaves
[ 2669.136228][T27735] total_rss 0
[ 2669.139573][T27735] total_rss_huge 0
[ 2669.144110][T27735] total_shmem 0
[ 2669.150543][T16775] bond929 (unregistering): Released all slaves
[ 2669.150724][T27735] total_mapped_file 0
[ 2669.181559][T16775] bond928 (unregistering): Released all slaves
[ 2669.186006][T27735] total_dirty 0
[ 2669.191346][T27735] total_writeback 0
[ 2669.195165][T27735] total_workingset_refault_anon 40963
[ 2669.204339][T16775] bond927 (unregistering): Released all slaves
[ 2669.216492][T27735] total_workingset_refault_file 1
[ 2669.221565][T27735] total_swap 405504
[ 2669.225395][T27735] total_swapcached 0
[ 2669.230310][T27735] total_pgpgin 165511
[ 2669.231857][T16775] bond926 (unregistering): Released all slaves
[ 2669.234302][T27735] total_pgpgout 165511
[ 2669.234314][T27735] total_pgfault 360289
[ 2669.259599][T27735] total_pgmajfault 39560
[ 2669.263908][T27735] total_inactive_anon 0
[ 2669.268864][T27735] total_active_anon 0
[ 2669.272872][T27735] total_inactive_file 0
[ 2669.277658][T27735] total_active_file 0
[ 2669.281667][T27735] total_unevictable 0
[ 2669.285662][T27735] anon_cost 0
[ 2669.289730][T27735] file_cost 0
[ 2669.291363][T16775] bond925 (unregistering): Released all slaves
[ 2669.293219][T27735] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=27735,uid=0
[ 2669.316185][T27735] Memory cgroup out of memory: Killed process 27735 (syz-executor.3) total-vm:54504kB, anon-rss:380kB, file-rss:8880kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 2669.344258][T16775] bond924 (unregistering): Released all slaves
19:48:21 executing program 3:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x32}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000280)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000240)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=@newlink={0x48, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0xe403, r2}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @veth={{0x9}, {0x18, 0x2, 0x0, 0x1, @val=@VETH_INFO_PEER={0x14}}}}]}, 0x48}, 0x1, 0x68}, 0x0)

[ 2669.408269][T16775] bond923 (unregistering): Released all slaves
[ 2669.443752][T16775] bond922 (unregistering): Released all slaves
[ 2669.504923][T16775] bond921 (unregistering): Released all slaves
[ 2669.538034][T16775] bond920 (unregistering): Released all slaves
[ 2669.565274][T16775] bond919 (unregistering): Released all slaves
[ 2669.612429][T16775] bond918 (unregistering): Released all slaves
[ 2669.659421][T16775] bond917 (unregistering): Released all slaves
[ 2669.703787][T16775] bond916 (unregistering): Released all slaves
[ 2669.728239][T16775] bond915 (unregistering): Released all slaves
[ 2669.790487][T16775] bond914 (unregistering): Released all slaves
[ 2669.819188][T26667] Bluetooth: hci0: command 0x0406 tx timeout
[ 2669.848851][T16775] bond913 (unregistering): Released all slaves
[ 2669.928140][T16775] bond912 (unregistering): Released all slaves
[ 2669.988543][T16775] bond911 (unregistering): Released all slaves
[ 2670.024188][T16775] bond910 (unregistering): Released all slaves
[ 2670.057910][T27736] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2670.069626][T27736] CPU: 1 PID: 27736 Comm: syz-executor.3 Not tainted 6.7.0-syzkaller-12291-g435e202d645c #0
[ 2670.070770][T16775] bond909 (unregistering): Released all slaves
[ 2670.079706][T27736] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 2670.079721][T27736] Call Trace:
[ 2670.079731][T27736]  <TASK>
[ 2670.079741][T27736]  dump_stack_lvl+0x125/0x1b0
[ 2670.079773][T27736]  dump_header+0x103/0x900
[ 2670.079813][T27736]  oom_kill_process+0x270/0xa60
[ 2670.079854][T27736]  out_of_memory+0x344/0x16c0
[ 2670.079897][T27736]  ? oom_killer_disable+0x2d0/0x2d0
[ 2670.079931][T27736]  ? rcu_read_unlock+0x1c/0x60
[ 2670.079976][T27736]  mem_cgroup_out_of_memory+0x206/0x270
[ 2670.080003][T27736]  ? mem_cgroup_margin+0x130/0x130
[ 2670.080027][T27736]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2670.080071][T27736]  try_charge_memcg+0xcd1/0x11a0
[ 2670.080109][T27736]  ? mem_cgroup_handle_over_high+0x570/0x570
[ 2670.080140][T27736]  ? get_mem_cgroup_from_objcg+0xb5/0x2a0
[ 2670.080169][T27736]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2670.080195][T27736]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2670.080236][T27736]  __memcg_kmem_charge_page+0xdd/0x2a0
[ 2670.080270][T27736]  memcg_charge_kernel_stack+0xc3/0x1f0
[ 2670.191375][T27736]  copy_process+0x1532/0x97b0
[ 2670.196103][T27736]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2670.202108][T27736]  ? __lock_acquire+0xc77/0x3b30
[ 2670.207174][T27736]  ? pidfd_prepare+0x80/0x80
[ 2670.211819][T27736]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2670.217238][T27736]  ? preempt_count_sub+0x160/0x160
[ 2670.222388][T27736]  ? __might_fault+0xe6/0x1a0
[ 2670.227110][T27736]  ? _copy_from_user+0x5d/0xf0
[ 2670.231920][T27736]  kernel_clone+0xfd/0x930
[ 2670.236375][T27736]  ? create_io_thread+0xe0/0xe0
[ 2670.241267][T27736]  ? do_user_addr_fault+0x492/0x1030
[ 2670.246758][T27736]  ? exc_page_fault+0xa7/0xc0
[ 2670.251487][T27736]  __do_sys_clone3+0x1f1/0x260
[ 2670.256322][T27736]  ? __do_sys_clone+0x100/0x100
[ 2670.261246][T27736]  do_syscall_64+0xd3/0x250
[ 2670.265771][T27736]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 2670.271669][T27736] RIP: 0033:0x7f212b0a8b99
[ 2670.277861][T27736] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 2670.297509][T27736] RSP: 002b:00007ffc7b20b738 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 2670.306481][T27736] RAX: ffffffffffffffda RBX: 00007f212b051270 RCX: 00007f212b0a8b99
[ 2670.314506][T27736] RDX: 00007f212b051270 RSI: 0000000000000058 RDI: 00007ffc7b20b780
[ 2670.323118][T27736] RBP: 00007f212be566c0 R08: 00007f212be566c0 R09: 00007ffc7b20b867
[ 2670.331119][T27736] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 2670.339116][T27736] R13: 000000000000000b R14: 00007ffc7b20b780 R15: 00007ffc7b20b868
[ 2670.347138][T27736]  </TASK>
[ 2670.356578][T27736] memory: usage 307200kB, limit 307200kB, failcnt 137089
[ 2670.363667][T27736] memory+swap: usage 307560kB, limit 9007199254740988kB, failcnt 0
[ 2670.369193][T16775] bond908 (unregistering): Released all slaves
[ 2670.371686][T27736] kmem: usage 307184kB, limit 9007199254740988kB, failcnt 0
[ 2670.387113][T27736] Memory cgroup stats for /syz3:
[ 2670.387267][T27736] cache 0
[ 2670.395182][T27736] rss 0
[ 2670.398155][T27736] rss_huge 0
[ 2670.401411][T27736] shmem 0
[ 2670.404360][T27736] mapped_file 0
[ 2670.407994][T27736] dirty 0
[ 2670.410946][T27736] writeback 0
[ 2670.414240][T27736] workingset_refault_anon 41138
[ 2670.419205][T27736] workingset_refault_file 1
[ 2670.423794][T27736] swap 368640
[ 2670.427324][T27736] swapcached 0
[ 2670.427679][T16775] bond907 (unregistering): Released all slaves
[ 2670.430699][T27736] pgpgin 165697
[ 2670.440860][T27736] pgpgout 165697
[ 2670.444441][T27736] pgfault 360582
[ 2670.449197][T27736] pgmajfault 39729
[ 2670.453119][T27736] inactive_anon 0
[ 2670.464784][T27736] active_anon 0
[ 2670.470267][T27736] inactive_file 0
[ 2670.473936][T27736] active_file 0
[ 2670.478107][T27736] unevictable 0
[ 2670.481613][T27736] hierarchical_memory_limit 314572800
[ 2670.488982][T27736] hierarchical_memsw_limit 9223372036854771712
[ 2670.490977][T16775] bond906 (unregistering): Released all slaves
[ 2670.495165][T27736] total_cache 0
[ 2670.506172][T27736] total_rss 0
[ 2670.509492][T27736] total_rss_huge 0
[ 2670.513220][T27736] total_shmem 0
[ 2670.517441][T27736] total_mapped_file 0
[ 2670.521445][T27736] total_dirty 0
[ 2670.524916][T27736] total_writeback 0
[ 2670.531861][T27736] total_workingset_refault_anon 41138
[ 2670.537763][T27736] total_workingset_refault_file 1
[ 2670.543845][T27736] total_swap 368640
[ 2670.545623][T16775] bond905 (unregistering): Released all slaves
[ 2670.548490][T27736] total_swapcached 0
[ 2670.558590][T27736] total_pgpgin 165697
[ 2670.562691][T27736] total_pgpgout 165697
[ 2670.570266][T27736] total_pgfault 360582
[ 2670.574371][T27736] total_pgmajfault 39729
[ 2670.581051][T27736] total_inactive_anon 0
[ 2670.585521][T27736] total_active_anon 0
[ 2670.594330][T16775] bond904 (unregistering): Released all slaves
[ 2670.606022][T27736] total_inactive_file 0
[ 2670.610225][T27736] total_active_file 0
[ 2670.614218][T27736] total_unevictable 0
[ 2670.633447][T16775] bond903 (unregistering): Released all slaves
[ 2670.640088][T27736] anon_cost 0
[ 2670.643428][T27736] file_cost 0
[ 2670.653240][T27736] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=27736,uid=0
[ 2670.669548][T27736] Memory cgroup out of memory: Killed process 27736 (syz-executor.3) total-vm:54504kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 2670.702172][T16775] bond902 (unregistering): Released all slaves
19:48:22 executing program 3:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x32}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000280)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000240)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=@newlink={0x48, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0xe403, r2}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @veth={{0x9}, {0x18, 0x2, 0x0, 0x1, @val=@VETH_INFO_PEER={0x14}}}}]}, 0x48}, 0x1, 0x6c}, 0x0)

[ 2670.745780][T16775] bond901 (unregistering): Released all slaves
[ 2670.805755][T16775] bond900 (unregistering): Released all slaves
[ 2670.837361][T16775] bond899 (unregistering): Released all slaves
[ 2670.864031][T16775] bond898 (unregistering): Released all slaves
[ 2670.894760][T16775] bond897 (unregistering): Released all slaves
[ 2670.930774][T16775] bond896 (unregistering): Released all slaves
[ 2670.983453][T16775] bond895 (unregistering): Released all slaves
[ 2671.043849][T16775] bond894 (unregistering): Released all slaves
[ 2671.088525][T16775] bond893 (unregistering): Released all slaves
[ 2671.118029][ T5091] syz-executor.3 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[ 2671.137048][ T5091] CPU: 0 PID: 5091 Comm: syz-executor.3 Not tainted 6.7.0-syzkaller-12291-g435e202d645c #0
[ 2671.147101][ T5091] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 2671.157182][ T5091] Call Trace:
[ 2671.160469][ T5091]  <TASK>
[ 2671.163403][ T5091]  dump_stack_lvl+0x125/0x1b0
[ 2671.168120][ T5091]  dump_header+0x103/0x900
[ 2671.173423][ T5091]  oom_kill_process+0x270/0xa60
[ 2671.178397][ T5091]  out_of_memory+0x344/0x16c0
[ 2671.184513][ T5091]  ? mutex_trylock+0xa0/0x130
[ 2671.189528][ T5091]  ? oom_killer_disable+0x2d0/0x2d0
[ 2671.194978][ T5091]  ? rcu_read_unlock+0x1c/0x60
[ 2671.199863][ T5091]  mem_cgroup_out_of_memory+0x206/0x270
[ 2671.205427][ T5091]  ? mem_cgroup_margin+0x130/0x130
[ 2671.210547][ T5091]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2671.215976][ T5091]  try_charge_memcg+0xcd1/0x11a0
[ 2671.220957][ T5091]  ? mem_cgroup_handle_over_high+0x570/0x570
[ 2671.227743][ T5091]  ? rcu_read_unlock+0x1c/0x60
[ 2671.232894][ T5091]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2671.238811][ T5091]  ? __radix_tree_lookup+0x21f/0x2c0
[ 2671.244117][ T5091]  mem_cgroup_swapin_charge_folio+0x138/0x380
[ 2671.250206][ T5091]  __read_swap_cache_async+0x4e1/0x600
[ 2671.255700][ T5091]  ? filemap_get_incore_folio+0x160/0x160
[ 2671.261432][ T5091]  ? swp_swap_info+0xcf/0x130
[ 2671.266120][ T5091]  ? swapcache_prepare+0x20/0x20
[ 2671.271092][ T5091]  ? hlock_class+0x4e/0x130
[ 2671.275794][ T5091]  ? mark_lock+0xb5/0xc50
[ 2671.280143][ T5091]  swap_cluster_readahead+0x4d4/0x710
[ 2671.285532][ T5091]  ? read_swap_cache_async+0x1a0/0x1a0
[ 2671.291006][ T5091]  ? reacquire_held_locks+0x410/0x4c0
[ 2671.296477][ T5091]  ? xas_descend+0x141/0x4e0
[ 2671.301096][ T5091]  ? filemap_get_entry+0x23e/0x460
[ 2671.306229][ T5091]  swapin_readahead+0x132/0xe60
[ 2671.311096][ T5091]  ? get_swap_device+0x363/0x5e0
[ 2671.316044][ T5091]  ? exit_swap_address_space+0x250/0x250
[ 2671.321690][ T5091]  ? __filemap_get_folio+0x2b0/0xaa0
[ 2671.327166][ T5091]  ? swap_cache_get_folio+0x1dc/0x460
[ 2671.332631][ T5091]  ? get_swap_device+0x245/0x5e0
[ 2671.338300][ T5091]  ? free_pages_and_swap_cache+0xa0/0xa0
[ 2671.344653][ T5091]  ? lock_sync+0x190/0x190
[ 2671.349162][ T5091]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2671.355158][ T5091]  do_swap_page+0x4a6/0x3190
[ 2671.359780][ T5091]  ? rcu_is_watching+0x12/0xb0
[ 2671.365026][ T5091]  ? __pte_offset_map+0x1b9/0x540
[ 2671.370781][ T5091]  ? unmap_mapping_folio+0x3b0/0x3b0
[ 2671.376260][ T5091]  ? pte_offset_map_nolock+0xfa/0x1b0
[ 2671.381642][ T5091]  ? __pte_offset_map+0x540/0x540
[ 2671.386720][ T5091]  __handle_mm_fault+0x13a0/0x4900
[ 2671.392009][ T5091]  ? clear_huge_page+0x2e0/0x2e0
[ 2671.396981][ T5091]  ? find_vma+0x112/0x1b0
[ 2671.401327][ T5091]  ? get_unmapped_area+0x400/0x400
[ 2671.406465][ T5091]  handle_mm_fault+0x47a/0xa10
[ 2671.411263][ T5091]  ? lock_mm_and_find_vma+0xa6/0x580
[ 2671.416583][ T5091]  do_user_addr_fault+0x3f8/0x1030
[ 2671.421720][ T5091]  ? rcu_is_watching+0x12/0xb0
[ 2671.426500][ T5091]  exc_page_fault+0x5d/0xc0
[ 2671.431062][ T5091]  asm_exc_page_fault+0x26/0x30
[ 2671.435927][ T5091] RIP: 0010:__get_user_8+0x11/0x20
[ 2671.441068][ T5091] Code: 48 c1 fa 3f 48 09 d0 0f 01 cb 8b 10 31 c0 0f 01 ca c3 0f 1f 80 00 00 00 00 f3 0f 1e fa 48 89 c2 48 c1 fa 3f 48 09 d0 0f 01 cb <48> 8b 10 31 c0 0f 01 ca c3 66 0f 1f 44 00 00 f3 0f 1e fa 0f 01 cb
[ 2671.460690][ T5091] RSP: 0018:ffffc900047cfdf8 EFLAGS: 00050202
[ 2671.466768][ T5091] RAX: 0000555555796da8 RBX: ffff888027da0000 RCX: ffffc900047cfd60
[ 2671.474752][ T5091] RDX: 0000000000000000 RSI: ffffffff81b655ac RDI: ffffffff8b2f9d00
[ 2671.482731][ T5091] RBP: ffffc900047cfef8 R08: 0000000000000000 R09: fffffbfff1e753fa
[ 2671.490715][ T5091] R10: ffffffff8f3a9fd7 R11: 0000000000000000 R12: ffff888027da0000
[ 2671.498697][ T5091] R13: ffffc900047cff58 R14: ffffc900047cfe60 R15: 0000000000000000
[ 2671.506877][ T5091]  ? __rseq_handle_notify_resume+0x14c/0x1020
[ 2671.512992][ T5091]  __rseq_handle_notify_resume+0x183/0x1020
[ 2671.519203][ T5091]  ? __do_sys_rseq+0x750/0x750
[ 2671.528868][ T5091]  ? folio_memcg_unlock+0x240/0x240
[ 2671.534090][ T5091]  ? __ia32_sys_clock_getres_time32+0x280/0x280
[ 2671.540348][ T5091]  syscall_exit_to_user_mode+0x1a9/0x2b0
[ 2671.546016][ T5091]  do_syscall_64+0xe0/0x250
[ 2671.550560][ T5091]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 2671.556470][ T5091] RIP: 0033:0x7f212b0a81b5
[ 2671.561085][ T5091] Code: 24 0c 89 3c 24 48 89 4c 24 18 e8 f6 b9 ff ff 4c 8b 54 24 18 48 8b 54 24 10 41 89 c0 8b 74 24 0c 8b 3c 24 b8 e6 00 00 00 0f 05 <44> 89 c7 48 89 04 24 e8 4f ba ff ff 48 8b 04 24 48 83 c4 28 f7 d8
[ 2671.580721][ T5091] RSP: 002b:00007ffc7b20bb10 EFLAGS: 00000293 ORIG_RAX: 00000000000000e6
[ 2671.589159][ T5091] RAX: 0000000000000000 RBX: 0000000000002931 RCX: 00007f212b0a81b5
[ 2671.597137][ T5091] RDX: 00007ffc7b20bb50 RSI: 0000000000000000 RDI: 0000000000000000
[ 2671.605120][ T5091] RBP: 00007ffc7b20bbdc R08: 0000000000000000 R09: 0000000000000001
[ 2671.613182][ T5091] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000032
[ 2671.621249][ T5091] R13: 000000000028c0be R14: 000000000028c0be R15: 0000000000000000
[ 2671.629249][ T5091]  </TASK>
[ 2671.646072][ T5091] memory: usage 307200kB, limit 307200kB, failcnt 137451
[ 2671.654575][ T5091] memory+swap: usage 307520kB, limit 9007199254740988kB, failcnt 0
[ 2671.665205][T16775] bond892 (unregistering): Released all slaves
[ 2671.691397][ T5091] kmem: usage 307184kB, limit 9007199254740988kB, failcnt 0
[ 2671.725766][T16775] bond891 (unregistering): Released all slaves
[ 2671.736317][ T5091] Memory cgroup stats for /syz3:
[ 2671.736493][ T5091] cache 0
[ 2671.744413][ T5091] rss 0
[ 2671.747897][ T5091] rss_huge 0
[ 2671.751125][ T5091] shmem 0
[ 2671.754083][ T5091] mapped_file 0
[ 2671.758693][ T5091] dirty 0
[ 2671.761656][ T5091] writeback 0
[ 2671.765498][ T5091] workingset_refault_anon 41265
[ 2671.771259][ T5091] workingset_refault_file 1
[ 2671.776597][ T5091] swap 327680
[ 2671.778439][T16775] bond890 (unregistering): Released all slaves
[ 2671.779889][ T5091] swapcached 0
[ 2671.779901][ T5091] pgpgin 165835
[ 2671.798701][ T5091] pgpgout 165835
[ 2671.802298][ T5091] pgfault 360789
[ 2671.806585][ T5091] pgmajfault 39849
[ 2671.810334][ T5091] inactive_anon 0
[ 2671.813979][ T5091] active_anon 0
[ 2671.820277][ T5091] inactive_file 0
[ 2671.823953][ T5091] active_file 0
[ 2671.827981][ T5091] unevictable 0
[ 2671.831512][ T5091] hierarchical_memory_limit 314572800
[ 2671.833645][T16775] bond889 (unregistering): Released all slaves
[ 2671.837679][ T5091] hierarchical_memsw_limit 9223372036854771712
[ 2671.850216][ T5091] total_cache 0
[ 2671.853698][ T5091] total_rss 0
[ 2671.864322][ T5091] total_rss_huge 0
[ 2671.868231][ T5091] total_shmem 0
[ 2671.871705][ T5091] total_mapped_file 0
[ 2671.875699][ T5091] total_dirty 0
[ 2671.884449][T16775] bond888 (unregistering): Released all slaves
[ 2671.888733][ T5091] total_writeback 0
[ 2671.895562][ T5091] total_workingset_refault_anon 41265
[ 2671.912390][T16775] bond887 (unregistering): Released all slaves
[ 2671.919388][ T5091] total_workingset_refault_file 1
[ 2671.924448][ T5091] total_swap 327680
[ 2671.937958][T16775] bond886 (unregistering): Released all slaves
[ 2671.945383][ T5091] total_swapcached 0
[ 2671.949855][ T5091] total_pgpgin 165835
[ 2671.953859][ T5091] total_pgpgout 165835
[ 2671.958532][ T5091] total_pgfault 360789
[ 2671.962668][ T5091] total_pgmajfault 39849
[ 2671.964891][T16775] bond885 (unregistering): Released all slaves
[ 2671.967796][ T5091] total_inactive_anon 0
[ 2671.979693][ T5091] total_active_anon 0
[ 2671.983699][ T5091] total_inactive_file 0
[ 2671.988762][ T5091] total_active_file 0
[ 2671.992804][ T5091] total_unevictable 0
[ 2671.999827][ T5091] anon_cost 0
[ 2672.003340][ T5091] file_cost 0
[ 2672.009202][ T5091] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=27738,uid=0
[ 2672.028787][T16775] bond884 (unregistering): Released all slaves
[ 2672.029705][ T5091] Memory cgroup out of memory: Killed process 27738 (syz-executor.3) total-vm:54504kB, anon-rss:380kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
19:48:23 executing program 3:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x32}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000280)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000240)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=@newlink={0x48, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0xe403, r2}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @veth={{0x9}, {0x18, 0x2, 0x0, 0x1, @val=@VETH_INFO_PEER={0x14}}}}]}, 0x48}, 0x1, 0x74}, 0x0)

[ 2672.084896][T16775] bond883 (unregistering): Released all slaves
[ 2672.111037][T16775] bond882 (unregistering): Released all slaves
[ 2672.135024][T16775] bond881 (unregistering): Released all slaves
[ 2672.180223][T16775] bond880 (unregistering): Released all slaves
[ 2672.237087][T16775] bond879 (unregistering): Released all slaves
[ 2672.270608][T16775] bond878 (unregistering): Released all slaves
[ 2672.294532][T16775] bond877 (unregistering): Released all slaves
[ 2672.340165][T16775] bond876 (unregistering): Released all slaves
[ 2672.388403][T16775] bond875 (unregistering): Released all slaves
[ 2672.424047][T16775] bond874 (unregistering): Released all slaves
[ 2672.463494][T16775] bond873 (unregistering): Released all slaves
[ 2672.506263][T27739] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2672.508501][T16775] bond872 (unregistering): Released all slaves
[ 2672.533732][T27739] CPU: 1 PID: 27739 Comm: syz-executor.3 Not tainted 6.7.0-syzkaller-12291-g435e202d645c #0
[ 2672.543868][T27739] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 2672.554808][T27739] Call Trace:
[ 2672.558096][T27739]  <TASK>
[ 2672.561053][T27739]  dump_stack_lvl+0x125/0x1b0
[ 2672.566105][T27739]  dump_header+0x103/0x900
[ 2672.570534][T27739]  oom_kill_process+0x270/0xa60
[ 2672.575389][T27739]  out_of_memory+0x344/0x16c0
[ 2672.580716][T27739]  ? oom_killer_disable+0x2d0/0x2d0
[ 2672.585954][T27739]  ? rcu_read_unlock+0x1c/0x60
[ 2672.590741][T27739]  mem_cgroup_out_of_memory+0x206/0x270
[ 2672.596301][T27739]  ? mem_cgroup_margin+0x130/0x130
[ 2672.601432][T27739]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2672.606808][T27739]  try_charge_memcg+0xcd1/0x11a0
[ 2672.611772][T27739]  ? mem_cgroup_handle_over_high+0x570/0x570
[ 2672.617768][T27739]  ? get_mem_cgroup_from_objcg+0xb5/0x2a0
[ 2672.623505][T27739]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2672.628884][T27739]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2672.634259][T27739]  __memcg_kmem_charge_page+0xdd/0x2a0
[ 2672.639727][T27739]  memcg_charge_kernel_stack+0xc3/0x1f0
[ 2672.645279][T27739]  copy_process+0x527/0x97b0
[ 2672.649877][T27739]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2672.655847][T27739]  ? page_ext_put+0x43/0xd0
[ 2672.660353][T27739]  ? hlock_class+0x4e/0x130
[ 2672.664871][T27739]  ? pidfd_prepare+0x80/0x80
[ 2672.669465][T27739]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2672.674839][T27739]  ? preempt_count_sub+0x160/0x160
[ 2672.679961][T27739]  ? print_usage_bug.part.0+0x550/0x550
[ 2672.685547][T27739]  ? __might_fault+0xe6/0x1a0
[ 2672.690244][T27739]  ? _copy_from_user+0x5d/0xf0
[ 2672.695026][T27739]  kernel_clone+0xfd/0x930
[ 2672.699461][T27739]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2672.705492][T27739]  ? create_io_thread+0xe0/0xe0
[ 2672.710407][T27739]  ? find_held_lock+0x2d/0x110
[ 2672.715208][T27739]  __do_sys_clone3+0x1f1/0x260
[ 2672.719997][T27739]  ? __do_sys_clone+0x100/0x100
[ 2672.724892][T27739]  ? rcu_is_watching+0x12/0xb0
[ 2672.729770][T27739]  do_syscall_64+0xd3/0x250
[ 2672.734358][T27739]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 2672.740273][T27739] RIP: 0033:0x7f212b0a8b99
[ 2672.744729][T27739] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 2672.764346][T27739] RSP: 002b:00007ffc7b20b738 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 2672.772790][T27739] RAX: ffffffffffffffda RBX: 00007f212b051270 RCX: 00007f212b0a8b99
[ 2672.780781][T27739] RDX: 00007f212b051270 RSI: 0000000000000058 RDI: 00007ffc7b20b780
[ 2672.788791][T27739] RBP: 00007f212be566c0 R08: 00007f212be566c0 R09: 00007ffc7b20b867
[ 2672.796815][T27739] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 2672.804800][T27739] R13: 000000000000000b R14: 00007ffc7b20b780 R15: 00007ffc7b20b868
[ 2672.812777][T27739]  </TASK>
[ 2672.822551][T27739] memory: usage 307200kB, limit 307200kB, failcnt 137835
[ 2672.829689][T27739] memory+swap: usage 307560kB, limit 9007199254740988kB, failcnt 0
[ 2672.833458][T16775] bond871 (unregistering): Released all slaves
[ 2672.837751][T27739] kmem: usage 307184kB, limit 9007199254740988kB, failcnt 0
[ 2672.837770][T27739] Memory cgroup stats for /syz3:
[ 2672.852555][T27739] cache 0
[ 2672.886645][T27739] rss 0
[ 2672.889562][T27739] rss_huge 0
[ 2672.892795][T27739] shmem 0
[ 2672.896161][T27739] mapped_file 0
[ 2672.900396][T27739] dirty 0
[ 2672.903748][T27739] writeback 0
[ 2672.909156][T27739] workingset_refault_anon 41413
[ 2672.911145][T16775] bond870 (unregistering): Released all slaves
[ 2672.914434][T27739] workingset_refault_file 1
[ 2672.925530][T27739] swap 368640
[ 2672.933464][T27739] swapcached 0
[ 2672.937191][T27739] pgpgin 165995
[ 2672.940673][T27739] pgpgout 165995
[ 2672.945636][T27739] pgfault 361028
[ 2672.949279][T27739] pgmajfault 39979
[ 2672.953012][T27739] inactive_anon 0
[ 2672.956694][T27739] active_anon 0
[ 2672.960204][T27739] inactive_file 0
[ 2672.962228][T16775] bond869 (unregistering): Released all slaves
[ 2672.963830][T27739] active_file 0
[ 2672.973590][T27739] unevictable 0
[ 2672.977274][T27739] hierarchical_memory_limit 314572800
[ 2672.982659][T27739] hierarchical_memsw_limit 9223372036854771712
[ 2672.989685][T27739] total_cache 0
[ 2672.993172][T27739] total_rss 0
[ 2672.996545][T27739] total_rss_huge 0
[ 2673.000279][T27739] total_shmem 0
[ 2673.003748][T27739] total_mapped_file 0
[ 2673.007823][T27739] total_dirty 0
[ 2673.011305][T27739] total_writeback 0
[ 2673.015130][T27739] total_workingset_refault_anon 41413
[ 2673.020668][T27739] total_workingset_refault_file 1
[ 2673.022930][T16775] bond868 (unregistering): Released all slaves
[ 2673.025690][T27739] total_swap 368640
[ 2673.025703][T27739] total_swapcached 0
[ 2673.044606][T27739] total_pgpgin 165995
[ 2673.050134][T27739] total_pgpgout 165995
[ 2673.054239][T27739] total_pgfault 361028
[ 2673.058515][T27739] total_pgmajfault 39979
[ 2673.062795][T27739] total_inactive_anon 0
[ 2673.067103][T27739] total_active_anon 0
[ 2673.071133][T27739] total_inactive_file 0
[ 2673.075307][T27739] total_active_file 0
[ 2673.079496][T27739] total_unevictable 0
[ 2673.083525][T27739] anon_cost 0
[ 2673.087264][T27739] file_cost 0
[ 2673.088245][T16775] bond867 (unregistering): Released all slaves
[ 2673.090772][T27739] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=27739,uid=0
[ 2673.113701][T27739] Memory cgroup out of memory: Killed process 27739 (syz-executor.3) total-vm:54504kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
19:48:24 executing program 3:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x32}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000280)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000240)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=@newlink={0x48, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0xe403, r2}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @veth={{0x9}, {0x18, 0x2, 0x0, 0x1, @val=@VETH_INFO_PEER={0x14}}}}]}, 0x48}, 0x1, 0x7a}, 0x0)

[ 2673.157318][T16775] bond866 (unregistering): Released all slaves
[ 2673.193094][T16775] bond865 (unregistering): Released all slaves
[ 2673.222665][T16775] bond864 (unregistering): Released all slaves
[ 2673.283337][T16775] bond863 (unregistering): Released all slaves
[ 2673.308601][T16775] bond862 (unregistering): Released all slaves
[ 2673.334295][T16775] bond861 (unregistering): Released all slaves
[ 2673.388604][T16775] bond860 (unregistering): Released all slaves
[ 2673.414270][T16775] bond859 (unregistering): Released all slaves
[ 2673.443496][T16775] bond858 (unregistering): Released all slaves
[ 2673.485228][T16775] bond857 (unregistering): Released all slaves
[ 2673.511020][T16775] bond856 (unregistering): Released all slaves
[ 2673.539909][T16775] bond855 (unregistering): Released all slaves
[ 2673.565714][T16775] bond854 (unregistering): Released all slaves
[ 2673.628901][T16775] bond853 (unregistering): Released all slaves
[ 2673.679898][T16775] bond852 (unregistering): Released all slaves
[ 2673.725343][T16775] bond851 (unregistering): Released all slaves
[ 2673.751117][T27740] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2673.767704][T16775] bond850 (unregistering): Released all slaves
[ 2673.786235][T27740] CPU: 1 PID: 27740 Comm: syz-executor.3 Not tainted 6.7.0-syzkaller-12291-g435e202d645c #0
[ 2673.796363][T27740] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 2673.808095][T27740] Call Trace:
[ 2673.811398][T27740]  <TASK>
[ 2673.814347][T27740]  dump_stack_lvl+0x125/0x1b0
[ 2673.819069][T27740]  dump_header+0x103/0x900
[ 2673.823535][T27740]  oom_kill_process+0x270/0xa60
[ 2673.828439][T27740]  out_of_memory+0x344/0x16c0
[ 2673.833178][T27740]  ? oom_killer_disable+0x2d0/0x2d0
[ 2673.838426][T27740]  ? rcu_read_unlock+0x1c/0x60
[ 2673.843246][T27740]  mem_cgroup_out_of_memory+0x206/0x270
[ 2673.848841][T27740]  ? mem_cgroup_margin+0x130/0x130
[ 2673.853990][T27740]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2673.859417][T27740]  try_charge_memcg+0xcd1/0x11a0
[ 2673.864405][T27740]  ? mem_cgroup_handle_over_high+0x570/0x570
[ 2673.870434][T27740]  ? get_mem_cgroup_from_objcg+0xb5/0x2a0
[ 2673.876206][T27740]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2673.881625][T27740]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2673.887056][T27740]  __memcg_kmem_charge_page+0xdd/0x2a0
[ 2673.892569][T27740]  memcg_charge_kernel_stack+0xc3/0x1f0
[ 2673.898275][T27740]  copy_process+0x1532/0x97b0
[ 2673.903113][T27740]  ? hlock_class+0x4e/0x130
[ 2673.907686][T27740]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2673.913711][T27740]  ? hlock_class+0x4e/0x130
[ 2673.918275][T27740]  ? pidfd_prepare+0x80/0x80
[ 2673.922913][T27740]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2673.928328][T27740]  ? preempt_count_sub+0x160/0x160
[ 2673.933476][T27740]  ? __lock_acquire+0x1502/0x3b30
[ 2673.938622][T27740]  ? __might_fault+0xe6/0x1a0
[ 2673.943347][T27740]  ? _copy_from_user+0x5d/0xf0
[ 2673.948167][T27740]  kernel_clone+0xfd/0x930
[ 2673.952637][T27740]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2673.958658][T27740]  ? create_io_thread+0xe0/0xe0
[ 2673.963572][T27740]  ? find_held_lock+0x2d/0x110
[ 2673.968406][T27740]  __do_sys_clone3+0x1f1/0x260
[ 2673.973232][T27740]  ? __do_sys_clone+0x100/0x100
[ 2673.978180][T27740]  do_syscall_64+0xd3/0x250
[ 2673.982729][T27740]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 2673.988664][T27740] RIP: 0033:0x7f212b0a8b99
[ 2673.993109][T27740] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 2674.012832][T27740] RSP: 002b:00007ffc7b20b738 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 2674.021453][T27740] RAX: ffffffffffffffda RBX: 00007f212b051270 RCX: 00007f212b0a8b99
[ 2674.029454][T27740] RDX: 00007f212b051270 RSI: 0000000000000058 RDI: 00007ffc7b20b780
[ 2674.037451][T27740] RBP: 00007f212be566c0 R08: 00007f212be566c0 R09: 00007ffc7b20b867
[ 2674.045445][T27740] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 2674.053441][T27740] R13: 000000000000000b R14: 00007ffc7b20b780 R15: 00007ffc7b20b868
[ 2674.062242][T27740]  </TASK>
[ 2674.080444][T27740] memory: usage 307200kB, limit 307200kB, failcnt 138577
[ 2674.087631][T27740] memory+swap: usage 307536kB, limit 9007199254740988kB, failcnt 0
[ 2674.092701][T16775] bond849 (unregistering): Released all slaves
[ 2674.095737][T27740] kmem: usage 307196kB, limit 9007199254740988kB, failcnt 0
[ 2674.109884][T27740] Memory cgroup stats for /syz3:
[ 2674.110063][T27740] cache 0
[ 2674.118494][T27740] rss 4096
[ 2674.121549][T27740] rss_huge 0
[ 2674.124769][T27740] shmem 0
[ 2674.146201][T27740] mapped_file 0
[ 2674.149824][T27740] dirty 0
[ 2674.154907][T16775] bond848 (unregistering): Released all slaves
[ 2674.163541][T27740] writeback 0
[ 2674.180369][T27740] workingset_refault_anon 41637
[ 2674.185313][T27740] workingset_refault_file 1
[ 2674.187653][T16775] bond847 (unregistering): Released all slaves
[ 2674.190813][T27740] swap 344064
[ 2674.199727][T27740] swapcached 4096
[ 2674.203385][T27740] pgpgin 166231
[ 2674.207401][T27740] pgpgout 166230
[ 2674.210978][T27740] pgfault 361388
[ 2674.214621][T27740] pgmajfault 40191
[ 2674.219327][T27740] inactive_anon 4096
[ 2674.223255][T27740] active_anon 0
[ 2674.227296][T27740] inactive_file 0
[ 2674.230952][T27740] active_file 0
[ 2674.234437][T27740] unevictable 0
[ 2674.238572][T27740] hierarchical_memory_limit 314572800
[ 2674.242440][T16775] bond846 (unregistering): Released all slaves
[ 2674.243949][T27740] hierarchical_memsw_limit 9223372036854771712
[ 2674.243963][T27740] total_cache 0
[ 2674.243991][T27740] total_rss 4096
[ 2674.244001][T27740] total_rss_huge 0
[ 2674.300556][T16775] bond845 (unregistering): Released all slaves
[ 2674.307310][T27740] total_shmem 0
[ 2674.311770][T27740] total_mapped_file 0
[ 2674.315784][T27740] total_dirty 0
[ 2674.333787][T27740] total_writeback 0
[ 2674.338160][T27740] total_workingset_refault_anon 41637
[ 2674.344225][T27740] total_workingset_refault_file 1
[ 2674.349396][T16775] bond844 (unregistering): Released all slaves
[ 2674.350955][T27740] total_swap 344064
[ 2674.360129][T27740] total_swapcached 4096
[ 2674.364306][T27740] total_pgpgin 166231
[ 2674.369014][T27740] total_pgpgout 166230
[ 2674.373110][T27740] total_pgfault 361388
[ 2674.389633][T16775] bond843 (unregistering): Released all slaves
[ 2674.400457][T27740] total_pgmajfault 40191
[ 2674.404750][T27740] total_inactive_anon 4096
[ 2674.423686][T27740] total_active_anon 0
[ 2674.427990][T27740] total_inactive_file 0
[ 2674.432174][T27740] total_active_file 0
[ 2674.438379][T16775] bond842 (unregistering): Released all slaves
[ 2674.446311][T27740] total_unevictable 0
[ 2674.451481][T27740] anon_cost 0
[ 2674.454790][T27740] file_cost 0
[ 2674.470821][T27740] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=27740,uid=0
[ 2674.487825][T27740] Memory cgroup out of memory: Killed process 27740 (syz-executor.3) total-vm:54504kB, anon-rss:380kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 2674.491016][T16775] bond841 (unregistering): Released all slaves
19:48:26 executing program 3:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x32}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000280)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000240)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=@newlink={0x48, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0xe403, r2}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @veth={{0x9}, {0x18, 0x2, 0x0, 0x1, @val=@VETH_INFO_PEER={0x14}}}}]}, 0x48}, 0x1, 0x92}, 0x0)

[ 2674.583487][T16775] bond840 (unregistering): Released all slaves
[ 2674.622050][T16775] bond839 (unregistering): Released all slaves
[ 2674.678251][T16775] bond838 (unregistering): Released all slaves
[ 2674.710221][T16775] bond837 (unregistering): Released all slaves
[ 2674.734930][T16775] bond836 (unregistering): Released all slaves
[ 2674.780867][T16775] bond835 (unregistering): Released all slaves
[ 2674.822716][T16775] bond834 (unregistering): Released all slaves
[ 2674.851663][T16775] bond833 (unregistering): Released all slaves
[ 2674.890966][T16775] bond832 (unregistering): Released all slaves
[ 2674.924605][T16775] bond831 (unregistering): Released all slaves
[ 2674.987209][T16775] bond830 (unregistering): Released all slaves
[ 2675.009341][ T5091] syz-executor.3 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[ 2675.021611][ T5091] CPU: 1 PID: 5091 Comm: syz-executor.3 Not tainted 6.7.0-syzkaller-12291-g435e202d645c #0
[ 2675.031644][ T5091] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 2675.041744][ T5091] Call Trace:
[ 2675.045052][ T5091]  <TASK>
[ 2675.048006][ T5091]  dump_stack_lvl+0x125/0x1b0
[ 2675.052806][ T5091]  dump_header+0x103/0x900
[ 2675.057273][ T5091]  oom_kill_process+0x270/0xa60
[ 2675.062189][ T5091]  out_of_memory+0x344/0x16c0
[ 2675.067036][ T5091]  ? mutex_trylock+0xa0/0x130
[ 2675.071780][ T5091]  ? oom_killer_disable+0x2d0/0x2d0
[ 2675.077039][ T5091]  ? rcu_read_unlock+0x1c/0x60
[ 2675.081862][ T5091]  mem_cgroup_out_of_memory+0x206/0x270
[ 2675.087444][ T5091]  ? mem_cgroup_margin+0x130/0x130
[ 2675.092582][ T5091]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2675.098012][ T5091]  try_charge_memcg+0xcd1/0x11a0
[ 2675.103170][ T5091]  ? mem_cgroup_handle_over_high+0x570/0x570
[ 2675.109191][ T5091]  ? rcu_read_unlock+0x1c/0x60
[ 2675.113995][ T5091]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2675.119406][ T5091]  ? __radix_tree_lookup+0x21f/0x2c0
[ 2675.124769][ T5091]  mem_cgroup_swapin_charge_folio+0x138/0x380
[ 2675.130982][ T5091]  __read_swap_cache_async+0x4e1/0x600
[ 2675.136482][ T5091]  ? filemap_get_incore_folio+0x160/0x160
[ 2675.142333][ T5091]  ? swp_swap_info+0xcf/0x130
[ 2675.147047][ T5091]  ? swapcache_prepare+0x20/0x20
[ 2675.152110][ T5091]  swap_cluster_readahead+0x4d4/0x710
[ 2675.157541][ T5091]  ? read_swap_cache_async+0x1a0/0x1a0
[ 2675.163038][ T5091]  ? reacquire_held_locks+0x410/0x4c0
[ 2675.168444][ T5091]  ? xas_descend+0x141/0x4e0
[ 2675.173089][ T5091]  ? filemap_get_entry+0x23e/0x460
[ 2675.178245][ T5091]  swapin_readahead+0x132/0xe60
[ 2675.183149][ T5091]  ? get_swap_device+0x363/0x5e0
[ 2675.188144][ T5091]  ? exit_swap_address_space+0x250/0x250
[ 2675.193824][ T5091]  ? __filemap_get_folio+0x2b0/0xaa0
[ 2675.199161][ T5091]  ? swap_cache_get_folio+0x1dc/0x460
[ 2675.204564][ T5091]  ? get_swap_device+0x245/0x5e0
[ 2675.209533][ T5091]  ? free_pages_and_swap_cache+0xa0/0xa0
[ 2675.215189][ T5091]  ? lock_sync+0x190/0x190
[ 2675.219633][ T5091]  do_swap_page+0x4a6/0x3190
[ 2675.224282][ T5091]  ? rcu_is_watching+0x12/0xb0
[ 2675.229093][ T5091]  ? __pte_offset_map+0x1b9/0x540
[ 2675.234144][ T5091]  ? unmap_mapping_folio+0x3b0/0x3b0
[ 2675.239466][ T5091]  ? pte_offset_map_nolock+0xfa/0x1b0
[ 2675.244870][ T5091]  ? __pte_offset_map+0x540/0x540
[ 2675.249939][ T5091]  __handle_mm_fault+0x13a0/0x4900
[ 2675.255078][ T5091]  ? clear_huge_page+0x2e0/0x2e0
[ 2675.260040][ T5091]  ? lock_mm_and_find_vma+0x580/0x580
[ 2675.265441][ T5091]  ? rcu_is_watching+0x12/0xb0
[ 2675.270248][ T5091]  handle_mm_fault+0x47a/0xa10
[ 2675.275053][ T5091]  do_user_addr_fault+0x30b/0x1030
[ 2675.280215][ T5091]  ? irqentry_enter_from_user_mode+0x5f/0xc0
[ 2675.286252][ T5091]  exc_page_fault+0x5d/0xc0
[ 2675.290804][ T5091]  asm_exc_page_fault+0x26/0x30
[ 2675.295687][ T5091] RIP: 0033:0x7f212b0a81b8
[ 2675.300132][ T5091] Code: 3c 24 48 89 4c 24 18 e8 f6 b9 ff ff 4c 8b 54 24 18 48 8b 54 24 10 41 89 c0 8b 74 24 0c 8b 3c 24 b8 e6 00 00 00 0f 05 44 89 c7 <48> 89 04 24 e8 4f ba ff ff 48 8b 04 24 48 83 c4 28 f7 d8 c3 0f 1f
[ 2675.319870][ T5091] RSP: 002b:00007ffc7b20bb10 EFLAGS: 00010293
[ 2675.326021][ T5091] RAX: 0000000000000000 RBX: 0000000000002934 RCX: 00007f212b0a81b5
[ 2675.334021][ T5091] RDX: 00007ffc7b20bb50 RSI: 0000000000000000 RDI: 0000000000000000
[ 2675.342115][ T5091] RBP: 00007ffc7b20bbdc R08: 0000000000000000 R09: 0000000000000001
[ 2675.350141][ T5091] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000032
[ 2675.358242][ T5091] R13: 000000000028cf97 R14: 000000000028cf97 R15: 0000000000000000
[ 2675.366264][ T5091]  </TASK>
[ 2675.375260][T16775] bond829 (unregistering): Released all slaves
[ 2675.378293][ T5091] memory: usage 307200kB, limit 307200kB, failcnt 138999
[ 2675.396119][ T5091] memory+swap: usage 307564kB, limit 9007199254740988kB, failcnt 0
[ 2675.406530][ T5091] kmem: usage 307184kB, limit 9007199254740988kB, failcnt 0
[ 2675.413865][ T5091] Memory cgroup stats for /syz3:
[ 2675.414060][ T5091] cache 0
[ 2675.422552][ T5091] rss 0
[ 2675.425343][ T5091] rss_huge 0
[ 2675.428927][ T5091] shmem 0
[ 2675.431930][ T5091] mapped_file 0
[ 2675.434036][T16775] bond828 (unregistering): Released all slaves
[ 2675.435387][ T5091] dirty 0
[ 2675.435399][ T5091] writeback 0
[ 2675.448506][ T5091] workingset_refault_anon 41772
[ 2675.453407][ T5091] workingset_refault_file 1
[ 2675.458300][ T5091] swap 372736
[ 2675.461609][ T5091] swapcached 0
[ 2675.464996][ T5091] pgpgin 166377
[ 2675.468900][ T5091] pgpgout 166377
[ 2675.472471][ T5091] pgfault 361597
[ 2675.480884][ T5091] pgmajfault 40312
[ 2675.484670][ T5091] inactive_anon 0
[ 2675.493214][T16775] bond827 (unregistering): Released all slaves
[ 2675.505458][ T5091] active_anon 0
[ 2675.517962][T16775] bond826 (unregistering): Released all slaves
[ 2675.526174][ T5091] inactive_file 0
[ 2675.529900][ T5091] active_file 0
[ 2675.533394][ T5091] unevictable 0
[ 2675.539446][ T5091] hierarchical_memory_limit 314572800
[ 2675.547430][T16775] bond825 (unregistering): Released all slaves
[ 2675.556636][ T5091] hierarchical_memsw_limit 9223372036854771712
[ 2675.562831][ T5091] total_cache 0
[ 2675.566959][ T5091] total_rss 0
[ 2675.570284][ T5091] total_rss_huge 0
[ 2675.574018][ T5091] total_shmem 0
[ 2675.578523][ T5091] total_mapped_file 0
[ 2675.582539][ T5091] total_dirty 0
[ 2675.591322][ T5091] total_writeback 0
[ 2675.595179][ T5091] total_workingset_refault_anon 41772
[ 2675.604339][T16775] bond824 (unregistering): Released all slaves
[ 2675.608794][ T5091] total_workingset_refault_file 1
[ 2675.615698][ T5091] total_swap 372736
[ 2675.619950][ T5091] total_swapcached 0
[ 2675.623893][ T5091] total_pgpgin 166377
[ 2675.628269][ T5091] total_pgpgout 166377
[ 2675.632359][ T5091] total_pgfault 361597
[ 2675.636989][ T5091] total_pgmajfault 40312
[ 2675.641257][ T5091] total_inactive_anon 0
[ 2675.645562][ T5091] total_active_anon 0
[ 2675.650025][ T5091] total_inactive_file 0
[ 2675.654205][ T5091] total_active_file 0
[ 2675.658500][ T5091] total_unevictable 0
[ 2675.658625][T16775] bond823 (unregistering): Released all slaves
[ 2675.662489][ T5091] anon_cost 0
[ 2675.672401][ T5091] file_cost 0
[ 2675.675712][ T5091] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=27741,uid=0
[ 2675.706248][ T5091] Memory cgroup out of memory: Killed process 27741 (syz-executor.3) total-vm:54504kB, anon-rss:380kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 2675.724875][T16775] bond822 (unregistering): Released all slaves
19:48:27 executing program 3:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x32}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000280)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000240)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=@newlink={0x48, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0xe403, r2}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @veth={{0x9}, {0x18, 0x2, 0x0, 0x1, @val=@VETH_INFO_PEER={0x14}}}}]}, 0x48}, 0x1, 0xbc}, 0x0)

[ 2675.777397][T16775] bond821 (unregistering): Released all slaves
[ 2675.829259][T16775] bond820 (unregistering): Released all slaves
[ 2675.859659][T16775] bond819 (unregistering): Released all slaves
[ 2675.891108][T16775] bond818 (unregistering): Released all slaves
[ 2675.942265][T16775] bond817 (unregistering): Released all slaves
[ 2675.994952][T16775] bond816 (unregistering): Released all slaves
[ 2676.038433][T16775] bond815 (unregistering): Released all slaves
[ 2676.098232][T16775] bond814 (unregistering): Released all slaves
[ 2676.158037][T16775] bond813 (unregistering): Released all slaves
[ 2676.195073][T16775] bond812 (unregistering): Released all slaves
[ 2676.238633][T16775] bond811 (unregistering): Released all slaves
[ 2676.255475][T27742] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2676.266497][T27742] CPU: 0 PID: 27742 Comm: syz-executor.3 Not tainted 6.7.0-syzkaller-12291-g435e202d645c #0
[ 2676.276719][T27742] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 2676.286811][T27742] Call Trace:
[ 2676.290130][T27742]  <TASK>
[ 2676.293079][T27742]  dump_stack_lvl+0x125/0x1b0
[ 2676.297795][T27742]  dump_header+0x103/0x900
[ 2676.302260][T27742]  oom_kill_process+0x270/0xa60
[ 2676.307144][T27742]  out_of_memory+0x344/0x16c0
[ 2676.311939][T27742]  ? oom_killer_disable+0x2d0/0x2d0
[ 2676.317217][T27742]  ? rcu_read_unlock+0x1c/0x60
[ 2676.322053][T27742]  mem_cgroup_out_of_memory+0x206/0x270
[ 2676.327658][T27742]  ? mem_cgroup_margin+0x130/0x130
[ 2676.332994][T27742]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2676.338442][T27742]  try_charge_memcg+0xcd1/0x11a0
[ 2676.343417][T27742]  ? mem_cgroup_handle_over_high+0x570/0x570
[ 2676.349422][T27742]  ? get_mem_cgroup_from_objcg+0xb5/0x2a0
[ 2676.355163][T27742]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2676.360569][T27742]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2676.365963][T27742]  __memcg_kmem_charge_page+0xdd/0x2a0
[ 2676.371457][T27742]  memcg_charge_kernel_stack+0xc3/0x1f0
[ 2676.377027][T27742]  copy_process+0x527/0x97b0
[ 2676.381634][T27742]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2676.387623][T27742]  ? page_ext_put+0x43/0xd0
[ 2676.392149][T27742]  ? pidfd_prepare+0x80/0x80
[ 2676.396756][T27742]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2676.402140][T27742]  ? preempt_count_sub+0x160/0x160
[ 2676.407263][T27742]  ? print_usage_bug.part.0+0x550/0x550
[ 2676.412854][T27742]  ? __might_fault+0xe6/0x1a0
[ 2676.417564][T27742]  ? _copy_from_user+0x5d/0xf0
[ 2676.422441][T27742]  kernel_clone+0xfd/0x930
[ 2676.426966][T27742]  ? create_io_thread+0xe0/0xe0
[ 2676.431862][T27742]  __do_sys_clone3+0x1f1/0x260
[ 2676.436643][T27742]  ? __do_sys_clone+0x100/0x100
[ 2676.441520][T27742]  ? do_user_addr_fault+0x663/0x1030
[ 2676.446837][T27742]  do_syscall_64+0xd3/0x250
[ 2676.451587][T27742]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 2676.457519][T27742] RIP: 0033:0x7f212b0a8b99
[ 2676.461958][T27742] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 2676.482198][T27742] RSP: 002b:00007ffc7b20b738 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 2676.490721][T27742] RAX: ffffffffffffffda RBX: 00007f212b051270 RCX: 00007f212b0a8b99
[ 2676.498788][T27742] RDX: 00007f212b051270 RSI: 0000000000000058 RDI: 00007ffc7b20b780
[ 2676.506765][T27742] RBP: 00007f212be566c0 R08: 00007f212be566c0 R09: 00007ffc7b20b867
[ 2676.514742][T27742] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 2676.522727][T27742] R13: 000000000000000b R14: 00007ffc7b20b780 R15: 00007ffc7b20b868
[ 2676.530727][T27742]  </TASK>
[ 2676.540913][T27742] memory: usage 307200kB, limit 307200kB, failcnt 139467
[ 2676.556044][T27742] memory+swap: usage 307532kB, limit 9007199254740988kB, failcnt 0
[ 2676.564007][T27742] kmem: usage 307184kB, limit 9007199254740988kB, failcnt 0
[ 2676.571024][T16775] bond810 (unregistering): Released all slaves
[ 2676.572121][T27742] Memory cgroup stats for /syz3:
[ 2676.577662][T27742] cache 0
[ 2676.586136][T27742] rss 0
[ 2676.588935][T27742] rss_huge 0
[ 2676.592155][T27742] shmem 0
[ 2676.595372][T27742] mapped_file 0
[ 2676.600470][T27742] dirty 0
[ 2676.603450][T27742] writeback 0
[ 2676.607196][T27742] workingset_refault_anon 41943
[ 2676.612084][T27742] workingset_refault_file 1
[ 2676.617205][T27742] swap 356352
[ 2676.620521][T27742] swapcached 0
[ 2676.624893][T27742] pgpgin 166559
[ 2676.632580][T27742] pgpgout 166559
[ 2676.639041][T16775] bond809 (unregistering): Released all slaves
[ 2676.649041][T27742] pgfault 361877
[ 2676.652640][T27742] pgmajfault 40475
[ 2676.666070][T27742] inactive_anon 0
[ 2676.669770][T27742] active_anon 0
[ 2676.673265][T27742] inactive_file 0
[ 2676.680827][T27742] active_file 0
[ 2676.684428][T27742] unevictable 0
[ 2676.686773][T16775] bond808 (unregistering): Released all slaves
[ 2676.688871][T27742] hierarchical_memory_limit 314572800
[ 2676.700051][T27742] hierarchical_memsw_limit 9223372036854771712
[ 2676.706509][T27742] total_cache 0
[ 2676.709992][T27742] total_rss 0
[ 2676.713300][T27742] total_rss_huge 0
[ 2676.717558][T27742] total_shmem 0
[ 2676.721047][T27742] total_mapped_file 0
[ 2676.725131][T27742] total_dirty 0
[ 2676.732858][T16775] bond807 (unregistering): Released all slaves
[ 2676.746015][T27742] total_writeback 0
[ 2676.749973][T27742] total_workingset_refault_anon 41943
[ 2676.755362][T27742] total_workingset_refault_file 1
[ 2676.782050][T16775] bond806 (unregistering): Released all slaves
[ 2676.785174][T27742] total_swap 356352
[ 2676.796329][T27742] total_swapcached 0
[ 2676.800280][T27742] total_pgpgin 166559
[ 2676.804521][T27742] total_pgpgout 166559
[ 2676.806677][T16775] bond805 (unregistering): Released all slaves
[ 2676.808831][T27742] total_pgfault 361877
[ 2676.819412][T27742] total_pgmajfault 40475
[ 2676.823701][T27742] total_inactive_anon 0
[ 2676.828076][T27742] total_active_anon 0
[ 2676.832185][T27742] total_inactive_file 0
[ 2676.846397][T27742] total_active_file 0
[ 2676.850714][T27742] total_unevictable 0
[ 2676.852569][T16775] bond804 (unregistering): Released all slaves
[ 2676.854702][T27742] anon_cost 0
[ 2676.854713][T27742] file_cost 0
[ 2676.871541][T27742] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=27742,uid=0
[ 2676.887798][T27742] Memory cgroup out of memory: Killed process 27742 (syz-executor.3) total-vm:54504kB, anon-rss:380kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 2676.918340][T16775] bond803 (unregistering): Released all slaves
19:48:28 executing program 3:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x32}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000280)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000240)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=@newlink={0x48, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0xe403, r2}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @veth={{0x9}, {0x18, 0x2, 0x0, 0x1, @val=@VETH_INFO_PEER={0x14}}}}]}, 0x48}, 0x1, 0xe4}, 0x0)

[ 2676.961041][T16775] bond802 (unregistering): Released all slaves
[ 2676.984697][T16775] bond801 (unregistering): Released all slaves
[ 2677.021784][T16775] bond800 (unregistering): Released all slaves
[ 2677.078255][T16775] bond799 (unregistering): Released all slaves
[ 2677.131160][T16775] bond798 (unregistering): Released all slaves
[ 2677.159562][T16775] bond797 (unregistering): Released all slaves
[ 2677.210753][T16775] bond796 (unregistering): Released all slaves
[ 2677.268175][T16775] bond795 (unregistering): Released all slaves
[ 2677.344312][T16775] bond794 (unregistering): Released all slaves
[ 2677.412892][T16775] bond793 (unregistering): Released all slaves
[ 2677.488220][T16775] bond792 (unregistering): Released all slaves
[ 2677.538506][T16775] bond791 (unregistering): Released all slaves
[ 2677.582483][T16775] bond790 (unregistering): Released all slaves
[ 2677.628201][T16775] bond789 (unregistering): Released all slaves
[ 2677.633912][ T5091] syz-executor.3 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[ 2677.657613][T16775] bond788 (unregistering): Released all slaves
[ 2677.676432][ T5091] CPU: 0 PID: 5091 Comm: syz-executor.3 Not tainted 6.7.0-syzkaller-12291-g435e202d645c #0
[ 2677.686493][ T5091] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 2677.696609][ T5091] Call Trace:
[ 2677.699906][ T5091]  <TASK>
[ 2677.702857][ T5091]  dump_stack_lvl+0x125/0x1b0
[ 2677.707575][ T5091]  dump_header+0x103/0x900
[ 2677.712034][ T5091]  oom_kill_process+0x270/0xa60
[ 2677.716917][ T5091]  out_of_memory+0x344/0x16c0
[ 2677.721648][ T5091]  ? mutex_trylock+0xa0/0x130
[ 2677.726331][ T5091]  ? oom_killer_disable+0x2d0/0x2d0
[ 2677.731530][ T5091]  ? rcu_read_unlock+0x1c/0x60
[ 2677.736315][ T5091]  mem_cgroup_out_of_memory+0x206/0x270
[ 2677.741924][ T5091]  ? mem_cgroup_margin+0x130/0x130
[ 2677.747081][ T5091]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2677.752798][ T5091]  try_charge_memcg+0xcd1/0x11a0
[ 2677.757764][ T5091]  ? mem_cgroup_handle_over_high+0x570/0x570
[ 2677.763791][ T5091]  ? rcu_read_unlock+0x1c/0x60
[ 2677.768581][ T5091]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2677.773973][ T5091]  ? __radix_tree_lookup+0x21f/0x2c0
[ 2677.779262][ T5091]  mem_cgroup_swapin_charge_folio+0x138/0x380
[ 2677.785360][ T5091]  __read_swap_cache_async+0x4e1/0x600
[ 2677.790950][ T5091]  ? filemap_get_incore_folio+0x160/0x160
[ 2677.797061][ T5091]  ? swp_swap_info+0xcf/0x130
[ 2677.801771][ T5091]  ? swapcache_prepare+0x20/0x20
[ 2677.806744][ T5091]  ? hlock_class+0x4e/0x130
[ 2677.811269][ T5091]  ? mark_lock+0xb5/0xc50
[ 2677.815635][ T5091]  swap_cluster_readahead+0x4d4/0x710
[ 2677.821023][ T5091]  ? read_swap_cache_async+0x1a0/0x1a0
[ 2677.826508][ T5091]  ? reacquire_held_locks+0x410/0x4c0
[ 2677.832019][ T5091]  ? xas_descend+0x141/0x4e0
[ 2677.836864][ T5091]  ? filemap_get_entry+0x23e/0x460
[ 2677.842029][ T5091]  swapin_readahead+0x132/0xe60
[ 2677.847083][ T5091]  ? get_swap_device+0x363/0x5e0
[ 2677.852023][ T5091]  ? exit_swap_address_space+0x250/0x250
[ 2677.857658][ T5091]  ? __filemap_get_folio+0x2b0/0xaa0
[ 2677.862981][ T5091]  ? swap_cache_get_folio+0x1dc/0x460
[ 2677.868378][ T5091]  ? get_swap_device+0x245/0x5e0
[ 2677.873317][ T5091]  ? free_pages_and_swap_cache+0xa0/0xa0
[ 2677.878951][ T5091]  ? lock_sync+0x190/0x190
[ 2677.883368][ T5091]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2677.889376][ T5091]  do_swap_page+0x4a6/0x3190
[ 2677.894018][ T5091]  ? rcu_is_watching+0x12/0xb0
[ 2677.898808][ T5091]  ? __pte_offset_map+0x1b9/0x540
[ 2677.903840][ T5091]  ? unmap_mapping_folio+0x3b0/0x3b0
[ 2677.909298][ T5091]  ? pte_offset_map_nolock+0xfa/0x1b0
[ 2677.914663][ T5091]  ? __pte_offset_map+0x540/0x540
[ 2677.919706][ T5091]  __handle_mm_fault+0x13a0/0x4900
[ 2677.925974][ T5091]  ? clear_huge_page+0x2e0/0x2e0
[ 2677.931137][ T5091]  ? find_vma+0x112/0x1b0
[ 2677.935469][ T5091]  ? get_unmapped_area+0x400/0x400
[ 2677.940617][ T5091]  handle_mm_fault+0x47a/0xa10
[ 2677.945424][ T5091]  ? lock_mm_and_find_vma+0xa6/0x580
[ 2677.950751][ T5091]  do_user_addr_fault+0x3f8/0x1030
[ 2677.956001][ T5091]  ? rcu_is_watching+0x12/0xb0
[ 2677.960793][ T5091]  exc_page_fault+0x5d/0xc0
[ 2677.965345][ T5091]  asm_exc_page_fault+0x26/0x30
[ 2677.970197][ T5091] RIP: 0010:__get_user_8+0x11/0x20
[ 2677.975300][ T5091] Code: 48 c1 fa 3f 48 09 d0 0f 01 cb 8b 10 31 c0 0f 01 ca c3 0f 1f 80 00 00 00 00 f3 0f 1e fa 48 89 c2 48 c1 fa 3f 48 09 d0 0f 01 cb <48> 8b 10 31 c0 0f 01 ca c3 66 0f 1f 44 00 00 f3 0f 1e fa 0f 01 cb
[ 2677.994923][ T5091] RSP: 0000:ffffc900047cfdf8 EFLAGS: 00050202
[ 2678.001116][ T5091] RAX: 0000555555796da8 RBX: ffff888027da0000 RCX: ffffc900047cfd60
[ 2678.009375][ T5091] RDX: 0000000000000000 RSI: ffffffff81b655ac RDI: ffffffff8b2f9d00
[ 2678.017367][ T5091] RBP: ffffc900047cfef8 R08: 0000000000000000 R09: fffffbfff1e753fa
[ 2678.025333][ T5091] R10: ffffffff8f3a9fd7 R11: 0000000000000000 R12: ffff888027da0000
[ 2678.033320][ T5091] R13: ffffc900047cff58 R14: ffffc900047cfe60 R15: 0000000000000000
[ 2678.041336][ T5091]  ? __rseq_handle_notify_resume+0x14c/0x1020
[ 2678.047540][ T5091]  __rseq_handle_notify_resume+0x183/0x1020
[ 2678.053447][ T5091]  ? __do_sys_rseq+0x750/0x750
[ 2678.058212][ T5091]  ? folio_memcg_unlock+0x240/0x240
[ 2678.068022][ T5091]  ? __ia32_sys_clock_getres_time32+0x280/0x280
[ 2678.074280][ T5091]  syscall_exit_to_user_mode+0x1a9/0x2b0
[ 2678.079919][ T5091]  do_syscall_64+0xe0/0x250
[ 2678.084472][ T5091]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 2678.090469][ T5091] RIP: 0033:0x7f212b0a81b5
[ 2678.095056][ T5091] Code: 24 0c 89 3c 24 48 89 4c 24 18 e8 f6 b9 ff ff 4c 8b 54 24 18 48 8b 54 24 10 41 89 c0 8b 74 24 0c 8b 3c 24 b8 e6 00 00 00 0f 05 <44> 89 c7 48 89 04 24 e8 4f ba ff ff 48 8b 04 24 48 83 c4 28 f7 d8
[ 2678.115386][ T5091] RSP: 002b:00007ffc7b20bb10 EFLAGS: 00000293 ORIG_RAX: 00000000000000e6
[ 2678.124085][ T5091] RAX: 0000000000000000 RBX: 0000000000002936 RCX: 00007f212b0a81b5
[ 2678.132078][ T5091] RDX: 00007ffc7b20bb50 RSI: 0000000000000000 RDI: 0000000000000000
[ 2678.140075][ T5091] RBP: 00007ffc7b20bbdc R08: 0000000000000000 R09: 0000000000000001
[ 2678.148766][ T5091] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000032
[ 2678.157535][ T5091] R13: 000000000028d90b R14: 000000000028d90b R15: 0000000000000000
[ 2678.165546][ T5091]  </TASK>
[ 2678.192484][ T5091] memory: usage 307184kB, limit 307200kB, failcnt 139961
[ 2678.199813][ T5091] memory+swap: usage 307532kB, limit 9007199254740988kB, failcnt 0
[ 2678.203535][T16775] bond787 (unregistering): Released all slaves
[ 2678.209712][ T5091] kmem: usage 307184kB, limit 9007199254740988kB, failcnt 0
[ 2678.226769][ T5091] Memory cgroup stats for /syz3:
[ 2678.226955][ T5091] cache 0
[ 2678.234885][ T5091] rss 0
[ 2678.238184][ T5091] rss_huge 0
[ 2678.241407][ T5091] shmem 0
[ 2678.244357][ T5091] mapped_file 0
[ 2678.248278][ T5091] dirty 0
[ 2678.251410][ T5091] writeback 0
[ 2678.254706][ T5091] workingset_refault_anon 42118
[ 2678.259992][ T5091] workingset_refault_file 1
[ 2678.261956][T16775] bond786 (unregistering): Released all slaves
[ 2678.264592][ T5091] swap 356352
[ 2678.275253][ T5091] swapcached 0
[ 2678.278981][ T5091] pgpgin 166745
[ 2678.282460][ T5091] pgpgout 166745
[ 2678.288551][ T5091] pgfault 362151
[ 2678.292141][ T5091] pgmajfault 40630
[ 2678.295876][ T5091] inactive_anon 0
[ 2678.310678][T16775] bond785 (unregistering): Released all slaves
[ 2678.334037][T16775] bond784 (unregistering): Released all slaves
[ 2678.336036][ T5091] active_anon 0
[ 2678.343765][ T5091] inactive_file 0
[ 2678.347775][ T5091] active_file 0
[ 2678.351254][ T5091] unevictable 0
[ 2678.354726][ T5091] hierarchical_memory_limit 314572800
[ 2678.360281][ T5091] hierarchical_memsw_limit 9223372036854771712
[ 2678.366548][ T5091] total_cache 0
[ 2678.371359][ T5091] total_rss 0
[ 2678.374675][ T5091] total_rss_huge 0
[ 2678.378872][ T5091] total_shmem 0
[ 2678.382354][ T5091] total_mapped_file 0
[ 2678.386468][ T5091] total_dirty 0
[ 2678.389986][ T5091] total_writeback 0
[ 2678.392087][T16775] bond783 (unregistering): Released all slaves
[ 2678.393791][ T5091] total_workingset_refault_anon 42118
[ 2678.408647][ T5091] total_workingset_refault_file 1
[ 2678.413738][ T5091] total_swap 356352
[ 2678.422474][ T5091] total_swapcached 0
[ 2678.426525][ T5091] total_pgpgin 166745
[ 2678.430523][ T5091] total_pgpgout 166745
[ 2678.434605][ T5091] total_pgfault 362151
[ 2678.439074][ T5091] total_pgmajfault 40630
[ 2678.443336][ T5091] total_inactive_anon 0
[ 2678.447602][ T5091] total_active_anon 0
[ 2678.451717][ T5091] total_inactive_file 0
[ 2678.455893][ T5091] total_active_file 0
[ 2678.459961][ T5091] total_unevictable 0
[ 2678.463961][ T5091] anon_cost 0
[ 2678.467375][ T5091] file_cost 0
[ 2678.470673][ T5091] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=27743,uid=0
[ 2678.477786][T16775] bond782 (unregistering): Released all slaves
[ 2678.505001][ T5091] Memory cgroup out of memory: Killed process 27743 (syz-executor.3) total-vm:54504kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 2678.525612][T16775] bond781 (unregistering): Released all slaves
19:48:30 executing program 3:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x32}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000280)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000240)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=@newlink={0x48, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0xe403, r2}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @veth={{0x9}, {0x18, 0x2, 0x0, 0x1, @val=@VETH_INFO_PEER={0x14}}}}]}, 0x48}, 0x1, 0xf0}, 0x0)

[ 2678.593909][T16775] bond780 (unregistering): Released all slaves
[ 2678.662899][T16775] bond779 (unregistering): Released all slaves
[ 2678.728331][T16775] bond778 (unregistering): Released all slaves
[ 2678.769581][T16775] bond777 (unregistering): Released all slaves
[ 2678.826968][T16775] bond776 (unregistering): Released all slaves
[ 2678.902471][T16775] bond775 (unregistering): Released all slaves
[ 2678.952461][T16775] bond774 (unregistering): Released all slaves
[ 2679.001053][T16775] bond773 (unregistering): Released all slaves
[ 2679.059744][T16775] bond772 (unregistering): Released all slaves
[ 2679.095519][ T5091] syz-executor.3 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[ 2679.115336][ T5091] CPU: 1 PID: 5091 Comm: syz-executor.3 Not tainted 6.7.0-syzkaller-12291-g435e202d645c #0
[ 2679.125386][ T5091] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 2679.135462][ T5091] Call Trace:
[ 2679.138747][ T5091]  <TASK>
[ 2679.141682][ T5091]  dump_stack_lvl+0x125/0x1b0
[ 2679.146378][ T5091]  dump_header+0x103/0x900
[ 2679.150823][ T5091]  oom_kill_process+0x270/0xa60
[ 2679.155695][ T5091]  out_of_memory+0x344/0x16c0
[ 2679.160399][ T5091]  ? mutex_trylock+0xa0/0x130
[ 2679.165104][ T5091]  ? oom_killer_disable+0x2d0/0x2d0
[ 2679.170326][ T5091]  ? rcu_read_unlock+0x1c/0x60
[ 2679.175124][ T5091]  mem_cgroup_out_of_memory+0x206/0x270
[ 2679.180699][ T5091]  ? mem_cgroup_margin+0x130/0x130
[ 2679.185820][ T5091]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2679.191218][ T5091]  try_charge_memcg+0xcd1/0x11a0
[ 2679.196178][ T5091]  ? mem_cgroup_handle_over_high+0x570/0x570
[ 2679.202180][ T5091]  ? rcu_read_unlock+0x1c/0x60
[ 2679.206977][ T5091]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2679.212390][ T5091]  ? __radix_tree_lookup+0x21f/0x2c0
[ 2679.217709][ T5091]  mem_cgroup_swapin_charge_folio+0x138/0x380
[ 2679.223803][ T5091]  __read_swap_cache_async+0x4e1/0x600
[ 2679.229281][ T5091]  ? filemap_get_incore_folio+0x160/0x160
[ 2679.235012][ T5091]  ? swp_swap_info+0xcf/0x130
[ 2679.239702][ T5091]  ? swapcache_prepare+0x20/0x20
[ 2679.244655][ T5091]  ? hlock_class+0x4e/0x130
[ 2679.249181][ T5091]  swap_cluster_readahead+0x3e6/0x710
[ 2679.254613][ T5091]  ? read_swap_cache_async+0x1a0/0x1a0
[ 2679.260262][ T5091]  ? reacquire_held_locks+0x410/0x4c0
[ 2679.265647][ T5091]  ? xas_descend+0x141/0x4e0
[ 2679.270267][ T5091]  ? filemap_get_entry+0x23e/0x460
[ 2679.275484][ T5091]  swapin_readahead+0x132/0xe60
[ 2679.280352][ T5091]  ? get_swap_device+0x363/0x5e0
[ 2679.286788][ T5091]  ? exit_swap_address_space+0x250/0x250
[ 2679.292432][ T5091]  ? __filemap_get_folio+0x2b0/0xaa0
[ 2679.297743][ T5091]  ? swap_cache_get_folio+0x1dc/0x460
[ 2679.303216][ T5091]  ? get_swap_device+0x245/0x5e0
[ 2679.308168][ T5091]  ? free_pages_and_swap_cache+0xa0/0xa0
[ 2679.313829][ T5091]  ? lock_sync+0x190/0x190
[ 2679.318267][ T5091]  do_swap_page+0x4a6/0x3190
[ 2679.322893][ T5091]  ? rcu_is_watching+0x12/0xb0
[ 2679.327668][ T5091]  ? __pte_offset_map+0x1b9/0x540
[ 2679.332711][ T5091]  ? unmap_mapping_folio+0x3b0/0x3b0
[ 2679.338007][ T5091]  ? pte_offset_map_nolock+0xfa/0x1b0
[ 2679.343668][ T5091]  ? __pte_offset_map+0x540/0x540
[ 2679.348711][ T5091]  __handle_mm_fault+0x13a0/0x4900
[ 2679.353845][ T5091]  ? clear_huge_page+0x2e0/0x2e0
[ 2679.358814][ T5091]  ? lock_mm_and_find_vma+0x580/0x580
[ 2679.364292][ T5091]  handle_mm_fault+0x47a/0xa10
[ 2679.369106][ T5091]  do_user_addr_fault+0x30b/0x1030
[ 2679.374267][ T5091]  ? irqentry_enter_from_user_mode+0x5f/0xc0
[ 2679.380375][ T5091]  exc_page_fault+0x5d/0xc0
[ 2679.384903][ T5091]  asm_exc_page_fault+0x26/0x30
[ 2679.389766][ T5091] RIP: 0033:0x7f212b079780
[ 2679.394192][ T5091] Code: ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 31 c9 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 <80> 3d 71 57 10 00 00 49 89 ca 74 14 b8 3d 00 00 00 0f 05 48 3d 00
[ 2679.413834][ T5091] RSP: 002b:00007ffc7b20bb78 EFLAGS: 00010246
[ 2679.419914][ T5091] RAX: 000000000000019c RBX: 0000000000002937 RCX: 0000000000000000
[ 2679.427893][ T5091] RDX: 0000000040000001 RSI: 00007ffc7b20bbdc RDI: 00000000ffffffff
[ 2679.436158][ T5091] RBP: 00007ffc7b20bbdc R08: 0000000000000a77 R09: 0000000000000001
[ 2679.444139][ T5091] R10: 00007ffc7b2d4080 R11: 00000000010e8203 R12: 0000000000000032
[ 2679.452117][ T5091] R13: 000000000028df68 R14: 000000000028df68 R15: 0000000000000000
[ 2679.460111][ T5091]  </TASK>
[ 2679.476180][ T5091] memory: usage 307200kB, limit 307200kB, failcnt 140285
[ 2679.483267][ T5091] memory+swap: usage 307552kB, limit 9007199254740988kB, failcnt 0
[ 2679.499315][T16775] bond771 (unregistering): Released all slaves
[ 2679.520584][ T5091] kmem: usage 307196kB, limit 9007199254740988kB, failcnt 0
[ 2679.529794][T16775] bond770 (unregistering): Released all slaves
[ 2679.536228][ T5091] Memory cgroup stats for /syz3:
[ 2679.536399][ T5091] cache 0
[ 2679.544296][ T5091] rss 4096
[ 2679.552212][T16775] bond769 (unregistering): Released all slaves
[ 2679.576331][ T5091] rss_huge 0
[ 2679.579614][ T5091] shmem 0
[ 2679.582565][ T5091] mapped_file 0
[ 2679.600001][ T5091] dirty 0
[ 2679.603008][ T5091] writeback 0
[ 2679.616389][ T5091] workingset_refault_anon 42221
[ 2679.623215][ T5091] workingset_refault_file 1
[ 2679.629441][T26667] Bluetooth: hci13: unexpected cc 0x0c03 length: 249 > 1
[ 2679.635977][ T5091] swap 360448
[ 2679.640204][ T5091] swapcached 0
[ 2679.646020][T26667] Bluetooth: hci13: unexpected cc 0x1003 length: 249 > 9
[ 2679.647586][T16775] bond768 (unregistering): Released all slaves
[ 2679.660121][ T5091] pgpgin 166859
[ 2679.660189][T26667] Bluetooth: hci13: unexpected cc 0x1001 length: 249 > 9
[ 2679.663610][ T5091] pgpgout 166858
[ 2679.686218][ T5091] pgfault 362335
[ 2679.686306][T26667] Bluetooth: hci13: unexpected cc 0x0c23 length: 249 > 4
[ 2679.689901][ T5091] pgmajfault 40724
[ 2679.689915][ T5091] inactive_anon 0
[ 2679.708522][T26667] Bluetooth: hci13: unexpected cc 0x0c25 length: 249 > 3
[ 2679.712802][ T5091] active_anon 0
[ 2679.719641][ T5091] inactive_file 0
[ 2679.723323][ T5091] active_file 0
[ 2679.727263][ T5091] unevictable 0
[ 2679.730098][T16775] bond767 (unregistering): Released all slaves
[ 2679.730866][T26667] Bluetooth: hci13: unexpected cc 0x0c38 length: 249 > 2
[ 2679.745432][ T5091] hierarchical_memory_limit 314572800
[ 2679.751627][ T5091] hierarchical_memsw_limit 9223372036854771712
[ 2679.759559][ T5091] total_cache 0
[ 2679.763183][ T5091] total_rss 4096
[ 2679.767615][ T5091] total_rss_huge 0
[ 2679.791794][T16775] bond766 (unregistering): Released all slaves
[ 2679.805065][ T5091] total_shmem 0
[ 2679.816374][ T5091] total_mapped_file 0
[ 2679.822563][T16775] bond765 (unregistering): Released all slaves
[ 2679.829485][ T5091] total_dirty 0
[ 2679.832971][ T5091] total_writeback 0
[ 2679.837739][ T5091] total_workingset_refault_anon 42221
[ 2679.843148][ T5091] total_workingset_refault_file 1
[ 2679.848757][ T5091] total_swap 360448
[ 2679.852586][ T5091] total_swapcached 0
[ 2679.857107][ T5091] total_pgpgin 166859
[ 2679.861114][ T5091] total_pgpgout 166858
[ 2679.865196][ T5091] total_pgfault 362335
[ 2679.869412][ T5091] total_pgmajfault 40724
[ 2679.874346][ T5091] total_inactive_anon 0
[ 2679.878802][ T5091] total_active_anon 0
[ 2679.883041][ T5091] total_inactive_file 0
[ 2679.887334][ T5091] total_active_file 0
[ 2679.889649][T16775] bond764 (unregistering): Released all slaves
[ 2679.891559][ T5091] total_unevictable 0
[ 2679.902339][ T5091] anon_cost 0
[ 2679.905635][ T5091] file_cost 0
[ 2679.909758][ T5091] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=27745,uid=0
[ 2679.929014][ T5091] Memory cgroup out of memory: Killed process 27745 (syz-executor.3) total-vm:54504kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 2679.962641][T16775] bond763 (unregistering): Released all slaves
19:48:31 executing program 3:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x32}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000280)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000240)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=@newlink={0x48, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0xe403, r2}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @veth={{0x9}, {0x18, 0x2, 0x0, 0x1, @val=@VETH_INFO_PEER={0x14}}}}]}, 0x48}, 0x1, 0x112}, 0x0)

[ 2680.022572][T16775] bond762 (unregistering): Released all slaves
[ 2680.087523][T16775] bond761 (unregistering): Released all slaves
[ 2680.130207][T16775] bond760 (unregistering): Released all slaves
[ 2680.156686][T16775] bond759 (unregistering): Released all slaves
[ 2680.210646][T16775] bond758 (unregistering): Released all slaves
[ 2680.276737][T16775] bond757 (unregistering): Released all slaves
[ 2680.323595][T16775] bond756 (unregistering): Released all slaves
[ 2680.360433][T16775] bond755 (unregistering): Released all slaves
[ 2680.386813][T16775] bond754 (unregistering): Released all slaves
[ 2680.438859][T16775] bond753 (unregistering): Released all slaves
[ 2680.488260][ T5091] syz-executor.3 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[ 2680.500453][ T5091] CPU: 1 PID: 5091 Comm: syz-executor.3 Not tainted 6.7.0-syzkaller-12291-g435e202d645c #0
[ 2680.501650][T16775] bond752 (unregistering): Released all slaves
[ 2680.510631][ T5091] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 2680.510646][ T5091] Call Trace:
[ 2680.510656][ T5091]  <TASK>
[ 2680.510665][ T5091]  dump_stack_lvl+0x125/0x1b0
[ 2680.510698][ T5091]  dump_header+0x103/0x900
[ 2680.510736][ T5091]  oom_kill_process+0x270/0xa60
[ 2680.510773][ T5091]  out_of_memory+0x344/0x16c0
[ 2680.510812][ T5091]  ? mutex_trylock+0xa0/0x130
[ 2680.510848][ T5091]  ? oom_killer_disable+0x2d0/0x2d0
[ 2680.510883][ T5091]  ? rcu_read_unlock+0x1c/0x60
[ 2680.510925][ T5091]  mem_cgroup_out_of_memory+0x206/0x270
[ 2680.571985][ T5091]  ? mem_cgroup_margin+0x130/0x130
[ 2680.577135][ T5091]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2680.582532][ T5091]  try_charge_memcg+0xcd1/0x11a0
[ 2680.587488][ T5091]  ? mem_cgroup_handle_over_high+0x570/0x570
[ 2680.593503][ T5091]  ? rcu_read_unlock+0x1c/0x60
[ 2680.598286][ T5091]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2680.603671][ T5091]  ? __radix_tree_lookup+0x21f/0x2c0
[ 2680.608973][ T5091]  mem_cgroup_swapin_charge_folio+0x138/0x380
[ 2680.615067][ T5091]  __read_swap_cache_async+0x4e1/0x600
[ 2680.620558][ T5091]  ? filemap_get_incore_folio+0x160/0x160
[ 2680.626293][ T5091]  ? swp_swap_info+0xcf/0x130
[ 2680.630983][ T5091]  ? swapcache_prepare+0x20/0x20
[ 2680.635931][ T5091]  ? find_held_lock+0x2d/0x110
[ 2680.640713][ T5091]  ? find_held_lock+0x2d/0x110
[ 2680.645607][ T5091]  swap_cluster_readahead+0x3e6/0x710
[ 2680.651035][ T5091]  ? read_swap_cache_async+0x1a0/0x1a0
[ 2680.656636][ T5091]  ? reacquire_held_locks+0x410/0x4c0
[ 2680.662022][ T5091]  ? xas_descend+0x141/0x4e0
[ 2680.666640][ T5091]  ? filemap_get_entry+0x23e/0x460
[ 2680.671796][ T5091]  swapin_readahead+0x132/0xe60
[ 2680.676668][ T5091]  ? get_swap_device+0x363/0x5e0
[ 2680.682416][ T5091]  ? exit_swap_address_space+0x250/0x250
[ 2680.688059][ T5091]  ? __filemap_get_folio+0x2b0/0xaa0
[ 2680.693362][ T5091]  ? swap_cache_get_folio+0x1dc/0x460
[ 2680.698738][ T5091]  ? get_swap_device+0x245/0x5e0
[ 2680.703709][ T5091]  ? free_pages_and_swap_cache+0xa0/0xa0
[ 2680.709385][ T5091]  ? lock_sync+0x190/0x190
[ 2680.713859][ T5091]  do_swap_page+0x4a6/0x3190
[ 2680.718477][ T5091]  ? rcu_is_watching+0x12/0xb0
[ 2680.723296][ T5091]  ? __pte_offset_map+0x1b9/0x540
[ 2680.728357][ T5091]  ? unmap_mapping_folio+0x3b0/0x3b0
[ 2680.733664][ T5091]  ? pte_offset_map_nolock+0xfa/0x1b0
[ 2680.739046][ T5091]  ? __pte_offset_map+0x540/0x540
[ 2680.744179][ T5091]  __handle_mm_fault+0x13a0/0x4900
[ 2680.749306][ T5091]  ? clear_huge_page+0x2e0/0x2e0
[ 2680.755397][ T5091]  ? lock_mm_and_find_vma+0x580/0x580
[ 2680.761046][ T5091]  handle_mm_fault+0x47a/0xa10
[ 2680.765828][ T5091]  do_user_addr_fault+0x30b/0x1030
[ 2680.771147][ T5091]  ? irqentry_enter_from_user_mode+0x5f/0xc0
[ 2680.777261][ T5091]  exc_page_fault+0x5d/0xc0
[ 2680.782227][ T5091]  asm_exc_page_fault+0x26/0x30
[ 2680.787086][ T5091] RIP: 0033:0x7f212b079780
[ 2680.791595][ T5091] Code: ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 31 c9 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 <80> 3d 71 57 10 00 00 49 89 ca 74 14 b8 3d 00 00 00 0f 05 48 3d 00
[ 2680.811336][ T5091] RSP: 002b:00007ffc7b20bb78 EFLAGS: 00010246
[ 2680.817685][ T5091] RAX: 000000000000013f RBX: 0000000000002938 RCX: 0000000000000000
[ 2680.825673][ T5091] RDX: 0000000040000001 RSI: 00007ffc7b20bbdc RDI: 00000000ffffffff
[ 2680.833740][ T5091] RBP: 00007ffc7b20bbdc R08: 0000000000000a78 R09: 0000000000000001
[ 2680.841720][ T5091] R10: 00007ffc7b2d4080 R11: 00000000012e7884 R12: 0000000000000032
[ 2680.849703][ T5091] R13: 000000000028e533 R14: 000000000028e533 R15: 0000000000000000
[ 2680.857699][ T5091]  </TASK>
[ 2680.886586][T16775] bond751 (unregistering): Released all slaves
[ 2680.906411][ T5091] memory: usage 307184kB, limit 307200kB, failcnt 140853
[ 2680.913511][ T5091] memory+swap: usage 307580kB, limit 9007199254740988kB, failcnt 0
[ 2680.925399][T16775] bond750 (unregistering): Released all slaves
[ 2680.955786][ T5091] kmem: usage 307184kB, limit 9007199254740988kB, failcnt 0
[ 2680.963308][ T5091] Memory cgroup stats for /syz3:
[ 2680.963452][ T5091] cache 0
[ 2680.968157][T16775] bond749 (unregistering): Released all slaves
[ 2680.969119][ T5091] rss 0
[ 2680.980575][ T5091] rss_huge 0
[ 2680.983792][ T5091] shmem 0
[ 2680.987349][ T5091] mapped_file 0
[ 2680.990915][ T5091] dirty 0
[ 2680.993868][ T5091] writeback 0
[ 2681.000953][ T5091] workingset_refault_anon 42380
[ 2681.005849][ T5091] workingset_refault_file 1
[ 2681.010481][ T5091] swap 405504
[ 2681.013791][ T5091] swapcached 0
[ 2681.017358][ T5091] pgpgin 167029
[ 2681.021046][ T5091] pgpgout 167029
[ 2681.023104][T16775] bond748 (unregistering): Released all slaves
[ 2681.024592][ T5091] pgfault 362575
[ 2681.035680][ T5091] pgmajfault 40854
[ 2681.039522][ T5091] inactive_anon 0
[ 2681.043175][ T5091] active_anon 0
[ 2681.046799][ T5091] inactive_file 0
[ 2681.050446][ T5091] active_file 0
[ 2681.053920][ T5091] unevictable 0
[ 2681.066069][ T5091] hierarchical_memory_limit 314572800
[ 2681.071500][ T5091] hierarchical_memsw_limit 9223372036854771712
[ 2681.077766][ T5091] total_cache 0
[ 2681.081243][ T5091] total_rss 0
[ 2681.084554][ T5091] total_rss_huge 0
[ 2681.088801][ T5091] total_shmem 0
[ 2681.090946][T16775] bond747 (unregistering): Released all slaves
[ 2681.092269][ T5091] total_mapped_file 0
[ 2681.092282][ T5091] total_dirty 0
[ 2681.110870][ T5091] total_writeback 0
[ 2681.114736][ T5091] total_workingset_refault_anon 42380
[ 2681.120207][ T5091] total_workingset_refault_file 1
[ 2681.125245][ T5091] total_swap 405504
[ 2681.129246][ T5091] total_swapcached 0
[ 2681.133163][ T5091] total_pgpgin 167029
[ 2681.138731][ T5091] total_pgpgout 167029
[ 2681.142895][ T5091] total_pgfault 362575
[ 2681.145129][T16775] bond746 (unregistering): Released all slaves
[ 2681.147112][ T5091] total_pgmajfault 40854
[ 2681.158330][ T5091] total_inactive_anon 0
[ 2681.162519][ T5091] total_active_anon 0
[ 2681.167097][ T5091] total_inactive_file 0
[ 2681.171280][ T5091] total_active_file 0
[ 2681.175274][ T5091] total_unevictable 0
[ 2681.180244][ T5091] anon_cost 0
[ 2681.183621][ T5091] file_cost 0
[ 2681.187713][ T5091] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=27749,uid=0
19:48:32 executing program 3:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x32}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000280)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000240)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=@newlink={0x48, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0xe403, r2}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @veth={{0x9}, {0x18, 0x2, 0x0, 0x1, @val=@VETH_INFO_PEER={0x14}}}}]}, 0x48}, 0x1, 0x11a}, 0x0)

[ 2681.203803][ T5091] Memory cgroup out of memory: Killed process 27749 (syz-executor.3) total-vm:54504kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 2681.205539][T16775] bond745 (unregistering): Released all slaves
[ 2681.298399][T16775] bond744 (unregistering): Released all slaves
[ 2681.325745][T16775] bond743 (unregistering): Released all slaves
[ 2681.354840][T16775] bond742 (unregistering): Released all slaves
[ 2681.387090][T16775] bond741 (unregistering): Released all slaves
[ 2681.423442][T16775] bond740 (unregistering): Released all slaves
[ 2681.469559][T16775] bond739 (unregistering): Released all slaves
[ 2681.495244][T16775] bond738 (unregistering): Released all slaves
[ 2681.541637][T16775] bond737 (unregistering): Released all slaves
[ 2681.598121][T16775] bond736 (unregistering): Released all slaves
[ 2681.635130][T16775] bond735 (unregistering): Released all slaves
[ 2681.660396][T16775] bond734 (unregistering): Released all slaves
[ 2681.691562][T16775] bond733 (unregistering): Released all slaves
[ 2681.721592][T16775] bond732 (unregistering): Released all slaves
[ 2681.744368][T16775] bond731 (unregistering): Released all slaves
[ 2681.772566][T16775] bond730 (unregistering): Released all slaves
[ 2681.814813][T27751] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2681.816162][T26667] Bluetooth: hci13: command 0x0409 tx timeout
[ 2681.840379][T16775] bond729 (unregistering): Released all slaves
[ 2681.845996][T27751] CPU: 1 PID: 27751 Comm: syz-executor.3 Not tainted 6.7.0-syzkaller-12291-g435e202d645c #0
[ 2681.856650][T27751] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 2681.866831][T27751] Call Trace:
[ 2681.870119][T27751]  <TASK>
[ 2681.873045][T27751]  dump_stack_lvl+0x125/0x1b0
[ 2681.877726][T27751]  dump_header+0x103/0x900
[ 2681.882150][T27751]  oom_kill_process+0x270/0xa60
[ 2681.887023][T27751]  out_of_memory+0x344/0x16c0
[ 2681.891744][T27751]  ? oom_killer_disable+0x2d0/0x2d0
[ 2681.896962][T27751]  ? rcu_read_unlock+0x1c/0x60
[ 2681.901774][T27751]  mem_cgroup_out_of_memory+0x206/0x270
[ 2681.907354][T27751]  ? mem_cgroup_margin+0x130/0x130
[ 2681.912492][T27751]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2681.917907][T27751]  try_charge_memcg+0xcd1/0x11a0
[ 2681.922870][T27751]  ? mem_cgroup_handle_over_high+0x570/0x570
[ 2681.928864][T27751]  ? get_mem_cgroup_from_objcg+0xb5/0x2a0
[ 2681.934596][T27751]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2681.939982][T27751]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2681.945380][T27751]  __memcg_kmem_charge_page+0xdd/0x2a0
[ 2681.950864][T27751]  memcg_charge_kernel_stack+0xc3/0x1f0
[ 2681.956432][T27751]  copy_process+0x1532/0x97b0
[ 2681.961165][T27751]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2681.967170][T27751]  ? page_ext_put+0x43/0xd0
[ 2681.971706][T27751]  ? pidfd_prepare+0x80/0x80
[ 2681.976323][T27751]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2681.981720][T27751]  ? preempt_count_sub+0x160/0x160
[ 2681.986843][T27751]  ? print_usage_bug.part.0+0x550/0x550
[ 2681.992409][T27751]  ? __might_fault+0xe6/0x1a0
[ 2681.997113][T27751]  ? _copy_from_user+0x5d/0xf0
[ 2682.001899][T27751]  kernel_clone+0xfd/0x930
[ 2682.006332][T27751]  ? create_io_thread+0xe0/0xe0
[ 2682.011218][T27751]  __do_sys_clone3+0x1f1/0x260
[ 2682.015999][T27751]  ? __do_sys_clone+0x100/0x100
[ 2682.020872][T27751]  ? do_user_addr_fault+0x663/0x1030
[ 2682.026189][T27751]  do_syscall_64+0xd3/0x250
[ 2682.030717][T27751]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 2682.036618][T27751] RIP: 0033:0x7f212b0a8b99
[ 2682.041083][T27751] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 2682.060714][T27751] RSP: 002b:00007ffc7b20b738 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 2682.069333][T27751] RAX: ffffffffffffffda RBX: 00007f212b051270 RCX: 00007f212b0a8b99
[ 2682.077330][T27751] RDX: 00007f212b051270 RSI: 0000000000000058 RDI: 00007ffc7b20b780
[ 2682.085315][T27751] RBP: 00007f212be566c0 R08: 00007f212be566c0 R09: 00007ffc7b20b867
[ 2682.093381][T27751] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 2682.101585][T27751] R13: 000000000000000b R14: 00007ffc7b20b780 R15: 00007ffc7b20b868
[ 2682.109610][T27751]  </TASK>
[ 2682.123057][T27751] memory: usage 307184kB, limit 307200kB, failcnt 141326
[ 2682.135226][T27751] memory+swap: usage 307580kB, limit 9007199254740988kB, failcnt 0
[ 2682.142091][T16775] bond728 (unregistering): Released all slaves
[ 2682.144231][T27751] kmem: usage 307184kB, limit 9007199254740988kB, failcnt 0
[ 2682.156957][T27751] Memory cgroup stats for /syz3:
[ 2682.157134][T27751] cache 0
[ 2682.166650][T27751] rss 0
[ 2682.169455][T27751] rss_huge 0
[ 2682.172675][T27751] shmem 0
[ 2682.175644][T27751] mapped_file 0
[ 2682.179313][T27751] dirty 0
[ 2682.182266][T27751] writeback 0
[ 2682.185560][T27751] workingset_refault_anon 42554
[ 2682.190626][T27751] workingset_refault_file 1
[ 2682.195158][T27751] swap 405504
[ 2682.198668][T27751] swapcached 0
[ 2682.200688][T16775] bond727 (unregistering): Released all slaves
[ 2682.202043][T27751] pgpgin 167218
[ 2682.202056][T27751] pgpgout 167218
[ 2682.218586][T27751] pgfault 362851
[ 2682.222589][T27751] pgmajfault 41011
[ 2682.231614][T27751] inactive_anon 0
[ 2682.236373][T27751] active_anon 0
[ 2682.240219][T27751] inactive_file 0
[ 2682.243951][T27751] active_file 0
[ 2682.247806][T27751] unevictable 0
[ 2682.251286][T27751] hierarchical_memory_limit 314572800
[ 2682.257286][T27751] hierarchical_memsw_limit 9223372036854771712
[ 2682.259304][T16775] bond726 (unregistering): Released all slaves
[ 2682.265448][T27751] total_cache 0
[ 2682.273921][T27751] total_rss 0
[ 2682.277556][T27751] total_rss_huge 0
[ 2682.281294][T27751] total_shmem 0
[ 2682.284765][T27751] total_mapped_file 0
[ 2682.289163][T27751] total_dirty 0
[ 2682.292644][T27751] total_writeback 0
[ 2682.296953][T27751] total_workingset_refault_anon 42554
[ 2682.302427][T27751] total_workingset_refault_file 1
[ 2682.307828][T27751] total_swap 405504
[ 2682.311787][T27751] total_swapcached 0
[ 2682.315695][T27751] total_pgpgin 167218
[ 2682.320186][T27751] total_pgpgout 167218
[ 2682.322237][T16775] bond725 (unregistering): Released all slaves
[ 2682.324261][T27751] total_pgfault 362851
[ 2682.324274][T27751] total_pgmajfault 41011
[ 2682.355282][T27751] total_inactive_anon 0
[ 2682.359839][T27751] total_active_anon 0
[ 2682.365854][T27751] total_inactive_file 0
[ 2682.370450][T27751] total_active_file 0
[ 2682.374486][T27751] total_unevictable 0
[ 2682.377157][T16775] bond724 (unregistering): Released all slaves
[ 2682.379431][T27751] anon_cost 0
[ 2682.388232][T27751] file_cost 0
[ 2682.391538][T27751] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=27751,uid=0
[ 2682.407616][T27751] Memory cgroup out of memory: Killed process 27751 (syz-executor.3) total-vm:54504kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 2682.427271][T16775] bond723 (unregistering): Released all slaves
[ 2682.478600][T16775] bond722 (unregistering): Released all slaves
[ 2682.517201][T16775] bond721 (unregistering): Released all slaves
19:48:34 executing program 3:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x32}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000280)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000240)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=@newlink={0x48, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0xe403, r2}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @veth={{0x9}, {0x18, 0x2, 0x0, 0x1, @val=@VETH_INFO_PEER={0x14}}}}]}, 0x48}, 0x1, 0x122}, 0x0)

[ 2682.542954][T16775] bond720 (unregistering): Released all slaves
[ 2682.598379][T16775] bond719 (unregistering): Released all slaves
[ 2682.643775][T16775] bond718 (unregistering): Released all slaves
[ 2682.682895][T16775] bond717 (unregistering): Released all slaves
[ 2682.729634][T16775] bond716 (unregistering): Released all slaves
[ 2682.767859][T16775] bond715 (unregistering): Released all slaves
[ 2682.819673][T16775] bond714 (unregistering): Released all slaves
[ 2682.868784][T16775] bond713 (unregistering): Released all slaves
[ 2682.928068][T16775] bond712 (unregistering): Released all slaves
[ 2682.979191][T16775] bond711 (unregistering): Released all slaves
[ 2683.005037][T27752] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2683.029367][T16775] bond710 (unregistering): Released all slaves
[ 2683.035861][T27752] CPU: 0 PID: 27752 Comm: syz-executor.3 Not tainted 6.7.0-syzkaller-12291-g435e202d645c #0
[ 2683.045968][T27752] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 2683.056132][T27752] Call Trace:
[ 2683.059957][T27752]  <TASK>
[ 2683.062908][T27752]  dump_stack_lvl+0x125/0x1b0
[ 2683.067714][T27752]  dump_header+0x103/0x900
[ 2683.072268][T27752]  oom_kill_process+0x270/0xa60
[ 2683.077170][T27752]  out_of_memory+0x344/0x16c0
[ 2683.081904][T27752]  ? oom_killer_disable+0x2d0/0x2d0
[ 2683.087234][T27752]  ? rcu_read_unlock+0x1c/0x60
[ 2683.092140][T27752]  mem_cgroup_out_of_memory+0x206/0x270
[ 2683.097727][T27752]  ? mem_cgroup_margin+0x130/0x130
[ 2683.103137][T27752]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2683.108565][T27752]  try_charge_memcg+0xcd1/0x11a0
[ 2683.113693][T27752]  ? mem_cgroup_handle_over_high+0x570/0x570
[ 2683.119726][T27752]  ? get_mem_cgroup_from_objcg+0xb5/0x2a0
[ 2683.125491][T27752]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2683.130903][T27752]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2683.136329][T27752]  __memcg_kmem_charge_page+0xdd/0x2a0
[ 2683.141919][T27752]  memcg_charge_kernel_stack+0xc3/0x1f0
[ 2683.147519][T27752]  copy_process+0x1532/0x97b0
[ 2683.152249][T27752]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2683.158267][T27752]  ? page_ext_put+0x43/0xd0
[ 2683.162830][T27752]  ? pidfd_prepare+0x80/0x80
[ 2683.167472][T27752]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2683.172886][T27752]  ? preempt_count_sub+0x160/0x160
[ 2683.178043][T27752]  ? print_usage_bug.part.0+0x550/0x550
[ 2683.183650][T27752]  ? __might_fault+0xe6/0x1a0
[ 2683.188387][T27752]  ? _copy_from_user+0x5d/0xf0
[ 2683.193210][T27752]  kernel_clone+0xfd/0x930
[ 2683.197677][T27752]  ? create_io_thread+0xe0/0xe0
[ 2683.202608][T27752]  __do_sys_clone3+0x1f1/0x260
[ 2683.207829][T27752]  ? __do_sys_clone+0x100/0x100
[ 2683.212748][T27752]  ? do_user_addr_fault+0x663/0x1030
[ 2683.218106][T27752]  do_syscall_64+0xd3/0x250
[ 2683.222658][T27752]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 2683.228590][T27752] RIP: 0033:0x7f212b0a8b99
[ 2683.233043][T27752] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 2683.252789][T27752] RSP: 002b:00007ffc7b20b738 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 2683.261241][T27752] RAX: ffffffffffffffda RBX: 00007f212b051270 RCX: 00007f212b0a8b99
[ 2683.269541][T27752] RDX: 00007f212b051270 RSI: 0000000000000058 RDI: 00007ffc7b20b780
[ 2683.277941][T27752] RBP: 00007f212be566c0 R08: 00007f212be566c0 R09: 00007ffc7b20b867
[ 2683.285940][T27752] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 2683.293945][T27752] R13: 000000000000000b R14: 00007ffc7b20b780 R15: 00007ffc7b20b868
[ 2683.301968][T27752]  </TASK>
[ 2683.319559][T27752] memory: usage 307200kB, limit 307200kB, failcnt 142172
[ 2683.327197][T27752] memory+swap: usage 307556kB, limit 9007199254740988kB, failcnt 0
[ 2683.328952][T16775] bond709 (unregistering): Released all slaves
[ 2683.335116][T27752] kmem: usage 307196kB, limit 9007199254740988kB, failcnt 0
[ 2683.349054][T27752] Memory cgroup stats for /syz3:
[ 2683.349233][T27752] cache 0
[ 2683.357388][T27752] rss 4096
[ 2683.360462][T27752] rss_huge 0
[ 2683.363765][T27752] shmem 0
[ 2683.367178][T27752] mapped_file 0
[ 2683.370725][T27752] dirty 0
[ 2683.373950][T27752] writeback 0
[ 2683.380537][T27752] workingset_refault_anon 42791
[ 2683.385553][T27752] workingset_refault_file 1
[ 2683.391622][T27752] swap 364544
[ 2683.393562][T16775] bond708 (unregistering): Released all slaves
[ 2683.395051][T27752] swapcached 4096
[ 2683.405354][T27752] pgpgin 167467
[ 2683.409285][T27752] pgpgout 167466
[ 2683.412948][T27752] pgfault 363224
[ 2683.421668][T27752] pgmajfault 41245
[ 2683.425817][T27752] inactive_anon 4096
[ 2683.433253][T27752] active_anon 0
[ 2683.437187][T27752] inactive_file 0
[ 2683.440959][T27752] active_file 0
[ 2683.444816][T27752] unevictable 0
[ 2683.449089][T27752] hierarchical_memory_limit 314572800
[ 2683.454724][T27752] hierarchical_memsw_limit 9223372036854771712
[ 2683.461593][T27752] total_cache 0
[ 2683.463456][T16775] bond707 (unregistering): Released all slaves
[ 2683.465199][T27752] total_rss 4096
[ 2683.475438][T27752] total_rss_huge 0
[ 2683.479589][T27752] total_shmem 0
[ 2683.483170][T27752] total_mapped_file 0
[ 2683.487612][T27752] total_dirty 0
[ 2683.491549][T27752] total_writeback 0
[ 2683.495475][T27752] total_workingset_refault_anon 42791
[ 2683.501459][T27752] total_workingset_refault_file 1
[ 2683.506834][T27752] total_swap 364544
[ 2683.510880][T27752] total_swapcached 4096
[ 2683.512875][T16775] bond706 (unregistering): Released all slaves
[ 2683.515145][T27752] total_pgpgin 167467
[ 2683.526651][T27752] total_pgpgout 167466
[ 2683.530864][T27752] total_pgfault 363224
[ 2683.535129][T27752] total_pgmajfault 41245
[ 2683.546428][T27752] total_inactive_anon 4096
[ 2683.551013][T27752] total_active_anon 0
[ 2683.555094][T27752] total_inactive_file 0
[ 2683.559773][T27752] total_active_file 0
[ 2683.563875][T27752] total_unevictable 0
[ 2683.568353][T27752] anon_cost 0
[ 2683.571771][T27752] file_cost 0
[ 2683.573861][T16775] bond705 (unregistering): Released all slaves
[ 2683.575207][T27752] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=27752,uid=0
[ 2683.607495][T16775] bond704 (unregistering): Released all slaves
[ 2683.622281][T27752] Memory cgroup out of memory: Killed process 27752 (syz-executor.3) total-vm:54504kB, anon-rss:380kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
19:48:35 executing program 3:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x32}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000280)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000240)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=@newlink={0x48, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0xe403, r2}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @veth={{0x9}, {0x18, 0x2, 0x0, 0x1, @val=@VETH_INFO_PEER={0x14}}}}]}, 0x48}, 0x1, 0x14e}, 0x0)

[ 2683.666910][T16775] bond703 (unregistering): Released all slaves
[ 2683.695776][T16775] bond702 (unregistering): Released all slaves
[ 2683.724951][T16775] bond701 (unregistering): Released all slaves
[ 2683.770614][T16775] bond700 (unregistering): Released all slaves
[ 2683.813300][T16775] bond699 (unregistering): Released all slaves
[ 2683.847378][T16775] bond698 (unregistering): Released all slaves
[ 2683.886529][T16775] bond697 (unregistering): Released all slaves
[ 2683.896158][T26667] Bluetooth: hci13: command 0x041b tx timeout
[ 2683.917512][T16775] bond696 (unregistering): Released all slaves
[ 2683.958533][T16775] bond695 (unregistering): Released all slaves
[ 2684.007214][T16775] bond694 (unregistering): Released all slaves
[ 2684.031467][T16775] bond693 (unregistering): Released all slaves
[ 2684.071714][T16775] bond692 (unregistering): Released all slaves
[ 2684.099573][T16775] bond691 (unregistering): Released all slaves
[ 2684.168711][T16775] bond690 (unregistering): Released all slaves
[ 2684.222412][T16775] bond689 (unregistering): Released all slaves
[ 2684.272887][T27753] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2684.283415][T27753] CPU: 0 PID: 27753 Comm: syz-executor.3 Not tainted 6.7.0-syzkaller-12291-g435e202d645c #0
[ 2684.293511][T27753] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 2684.303575][T27753] Call Trace:
[ 2684.306969][T27753]  <TASK>
[ 2684.309916][T27753]  dump_stack_lvl+0x125/0x1b0
[ 2684.314620][T27753]  dump_header+0x103/0x900
[ 2684.319046][T27753]  oom_kill_process+0x270/0xa60
[ 2684.323898][T27753]  out_of_memory+0x344/0x16c0
[ 2684.328580][T27753]  ? oom_killer_disable+0x2d0/0x2d0
[ 2684.333776][T27753]  ? rcu_read_unlock+0x1c/0x60
[ 2684.340041][T27753]  mem_cgroup_out_of_memory+0x206/0x270
[ 2684.345624][T27753]  ? mem_cgroup_margin+0x130/0x130
[ 2684.350756][T27753]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2684.356177][T27753]  try_charge_memcg+0xcd1/0x11a0
[ 2684.361228][T27753]  ? mem_cgroup_handle_over_high+0x570/0x570
[ 2684.367207][T27753]  ? get_mem_cgroup_from_objcg+0xb5/0x2a0
[ 2684.372920][T27753]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2684.378305][T27753]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2684.383675][T27753]  __memcg_kmem_charge_page+0xdd/0x2a0
[ 2684.389147][T27753]  memcg_charge_kernel_stack+0xc3/0x1f0
[ 2684.394715][T27753]  copy_process+0x527/0x97b0
[ 2684.399320][T27753]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2684.405394][T27753]  ? page_ext_put+0x43/0xd0
[ 2684.409941][T27753]  ? hlock_class+0x4e/0x130
[ 2684.414467][T27753]  ? pidfd_prepare+0x80/0x80
[ 2684.419075][T27753]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2684.424457][T27753]  ? preempt_count_sub+0x160/0x160
[ 2684.429598][T27753]  ? print_usage_bug.part.0+0x550/0x550
[ 2684.435172][T27753]  ? __might_fault+0xe6/0x1a0
[ 2684.439869][T27753]  ? _copy_from_user+0x5d/0xf0
[ 2684.444655][T27753]  kernel_clone+0xfd/0x930
[ 2684.449089][T27753]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2684.455079][T27753]  ? create_io_thread+0xe0/0xe0
[ 2684.459986][T27753]  ? find_held_lock+0x2d/0x110
[ 2684.464776][T27753]  __do_sys_clone3+0x1f1/0x260
[ 2684.469554][T27753]  ? __do_sys_clone+0x100/0x100
[ 2684.474429][T27753]  ? rcu_is_watching+0x12/0xb0
[ 2684.479312][T27753]  do_syscall_64+0xd3/0x250
[ 2684.483830][T27753]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 2684.489737][T27753] RIP: 0033:0x7f212b0a8b99
[ 2684.494162][T27753] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 2684.513872][T27753] RSP: 002b:00007ffc7b20b738 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 2684.522304][T27753] RAX: ffffffffffffffda RBX: 00007f212b051270 RCX: 00007f212b0a8b99
[ 2684.530455][T27753] RDX: 00007f212b051270 RSI: 0000000000000058 RDI: 00007ffc7b20b780
[ 2684.538435][T27753] RBP: 00007f212be566c0 R08: 00007f212be566c0 R09: 00007ffc7b20b867
[ 2684.546410][T27753] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 2684.554403][T27753] R13: 000000000000000b R14: 00007ffc7b20b780 R15: 00007ffc7b20b868
[ 2684.562396][T27753]  </TASK>
[ 2684.580347][T16775] bond688 (unregistering): Released all slaves
[ 2684.614043][T16775] bond687 (unregistering): Released all slaves
[ 2684.636783][T16775] bond686 (unregistering): Released all slaves
[ 2684.661735][T16775] bond685 (unregistering): Released all slaves
[ 2684.686174][T27753] memory: usage 307200kB, limit 307200kB, failcnt 142702
[ 2684.693349][T27753] memory+swap: usage 307560kB, limit 9007199254740988kB, failcnt 0
[ 2684.702433][T27753] kmem: usage 307184kB, limit 9007199254740988kB, failcnt 0
[ 2684.704996][T16775] bond684 (unregistering): Released all slaves
[ 2684.710936][T27753] Memory cgroup stats for /syz3:
[ 2684.720445][T27753] cache 0
[ 2684.728889][T27753] rss 0
[ 2684.731674][T27753] rss_huge 0
[ 2684.734887][T27753] shmem 0
[ 2684.738419][T27753] mapped_file 0
[ 2684.741915][T27753] dirty 0
[ 2684.744865][T27753] writeback 0
[ 2684.754442][T27753] workingset_refault_anon 42968
[ 2684.759745][T27753] workingset_refault_file 1
[ 2684.762044][T16775] bond683 (unregistering): Released all slaves
[ 2684.764253][T27753] swap 368640
[ 2684.764266][T27753] swapcached 0
[ 2684.778890][T27753] pgpgin 167659
[ 2684.782378][T27753] pgpgout 167659
[ 2684.789391][T27753] pgfault 363522
[ 2684.792968][T27753] pgmajfault 41416
[ 2684.805416][T27753] inactive_anon 0
[ 2684.809457][T27753] active_anon 0
[ 2684.812979][T27753] inactive_file 0
[ 2684.815015][T16775] bond682 (unregistering): Released all slaves
[ 2684.817098][T27753] active_file 0
[ 2684.827230][T27753] unevictable 0
[ 2684.830709][T27753] hierarchical_memory_limit 314572800
[ 2684.843888][T27753] hierarchical_memsw_limit 9223372036854771712
[ 2684.851599][T27753] total_cache 0
[ 2684.855099][T27753] total_rss 0
[ 2684.859253][T27753] total_rss_huge 0
[ 2684.863019][T27753] total_shmem 0
[ 2684.866943][T27753] total_mapped_file 0
[ 2684.871047][T27753] total_dirty 0
[ 2684.874607][T27753] total_writeback 0
[ 2684.878916][T27753] total_workingset_refault_anon 42968
[ 2684.880882][T16775] bond681 (unregistering): Released all slaves
[ 2684.884355][T27753] total_workingset_refault_file 1
[ 2684.899221][T27753] total_swap 368640
[ 2684.903067][T27753] total_swapcached 0
[ 2684.907381][T27753] total_pgpgin 167659
[ 2684.911378][T27753] total_pgpgout 167659
[ 2684.915458][T27753] total_pgfault 363522
[ 2684.919996][T27753] total_pgmajfault 41416
[ 2684.924857][T27753] total_inactive_anon 0
[ 2684.927117][T16775] bond680 (unregistering): Released all slaves
[ 2684.929773][T27753] total_active_anon 0
[ 2684.939724][T27753] total_inactive_file 0
[ 2684.943899][T27753] total_active_file 0
[ 2684.948302][T27753] total_unevictable 0
[ 2684.952302][T27753] anon_cost 0
[ 2684.955607][T27753] file_cost 0
[ 2684.959491][T27753] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=27753,uid=0
[ 2684.982814][T16775] bond679 (unregistering): Released all slaves
[ 2684.994675][T27753] Memory cgroup out of memory: Killed process 27753 (syz-executor.3) total-vm:54504kB, anon-rss:380kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 2685.015848][T16775] bond678 (unregistering): Released all slaves
19:48:36 executing program 3:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x32}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000280)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000240)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=@newlink={0x48, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0xe403, r2}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @veth={{0x9}, {0x18, 0x2, 0x0, 0x1, @val=@VETH_INFO_PEER={0x14}}}}]}, 0x48}, 0x1, 0x17a}, 0x0)

[ 2685.086996][T16775] bond677 (unregistering): Released all slaves
[ 2685.132301][T16775] bond676 (unregistering): Released all slaves
[ 2685.178134][T16775] bond675 (unregistering): Released all slaves
[ 2685.225108][T16775] bond674 (unregistering): Released all slaves
[ 2685.255893][T16775] bond673 (unregistering): Released all slaves
[ 2685.287957][T16775] bond672 (unregistering): Released all slaves
[ 2685.332503][T16775] bond671 (unregistering): Released all slaves
[ 2685.378900][T27754] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2685.383007][T16775] bond670 (unregistering): Released all slaves
[ 2685.406195][T27754] CPU: 1 PID: 27754 Comm: syz-executor.3 Not tainted 6.7.0-syzkaller-12291-g435e202d645c #0
[ 2685.416516][T27754] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 2685.427014][T27754] Call Trace:
[ 2685.430298][T27754]  <TASK>
[ 2685.433253][T27754]  dump_stack_lvl+0x125/0x1b0
[ 2685.437955][T27754]  dump_header+0x103/0x900
[ 2685.442400][T27754]  oom_kill_process+0x270/0xa60
[ 2685.447463][T27754]  out_of_memory+0x344/0x16c0
[ 2685.452182][T27754]  ? oom_killer_disable+0x2d0/0x2d0
[ 2685.457396][T27754]  ? rcu_read_unlock+0x1c/0x60
[ 2685.462180][T27754]  mem_cgroup_out_of_memory+0x206/0x270
[ 2685.467733][T27754]  ? mem_cgroup_margin+0x130/0x130
[ 2685.472846][T27754]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2685.478255][T27754]  try_charge_memcg+0xcd1/0x11a0
[ 2685.483314][T27754]  ? mem_cgroup_handle_over_high+0x570/0x570
[ 2685.489335][T27754]  ? get_mem_cgroup_from_objcg+0xb5/0x2a0
[ 2685.495100][T27754]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2685.500508][T27754]  __memcg_kmem_charge_page+0xdd/0x2a0
[ 2685.505993][T27754]  memcg_charge_kernel_stack+0xc3/0x1f0
[ 2685.511639][T27754]  copy_process+0x1532/0x97b0
[ 2685.516330][T27754]  ? hlock_class+0x4e/0x130
[ 2685.520846][T27754]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2685.526834][T27754]  ? hlock_class+0x4e/0x130
[ 2685.531360][T27754]  ? pidfd_prepare+0x80/0x80
[ 2685.535967][T27754]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2685.541351][T27754]  ? preempt_count_sub+0x160/0x160
[ 2685.546470][T27754]  ? __lock_acquire+0x1502/0x3b30
[ 2685.551502][T27754]  ? __might_fault+0xe6/0x1a0
[ 2685.556203][T27754]  ? _copy_from_user+0x5d/0xf0
[ 2685.561028][T27754]  kernel_clone+0xfd/0x930
[ 2685.565477][T27754]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2685.571484][T27754]  ? create_io_thread+0xe0/0xe0
[ 2685.577188][T27754]  ? find_held_lock+0x2d/0x110
[ 2685.581976][T27754]  __do_sys_clone3+0x1f1/0x260
[ 2685.586750][T27754]  ? __do_sys_clone+0x100/0x100
[ 2685.591662][T27754]  do_syscall_64+0xd3/0x250
[ 2685.596889][T27754]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 2685.602798][T27754] RIP: 0033:0x7f212b0a8b99
[ 2685.607220][T27754] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 2685.626846][T27754] RSP: 002b:00007ffc7b20b738 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 2685.635619][T27754] RAX: ffffffffffffffda RBX: 00007f212b051270 RCX: 00007f212b0a8b99
[ 2685.643609][T27754] RDX: 00007f212b051270 RSI: 0000000000000058 RDI: 00007ffc7b20b780
[ 2685.651589][T27754] RBP: 00007f212be566c0 R08: 00007f212be566c0 R09: 00007ffc7b20b867
[ 2685.659565][T27754] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 2685.667542][T27754] R13: 000000000000000b R14: 00007ffc7b20b780 R15: 00007ffc7b20b868
[ 2685.675556][T27754]  </TASK>
[ 2685.688748][T27754] memory: usage 307184kB, limit 307200kB, failcnt 143007
[ 2685.695843][T27754] memory+swap: usage 307572kB, limit 9007199254740988kB, failcnt 0
[ 2685.704318][T27754] kmem: usage 307172kB, limit 9007199254740988kB, failcnt 0
[ 2685.712070][T27754] Memory cgroup stats for /syz3:
[ 2685.712195][T27754] cache 0
[ 2685.712590][T16775] bond669 (unregistering): Released all slaves
[ 2685.717359][T27754] rss 12288
[ 2685.717371][T27754] rss_huge 0
[ 2685.717379][T27754] shmem 0
[ 2685.717388][T27754] mapped_file 0
[ 2685.717396][T27754] dirty 0
[ 2685.717404][T27754] writeback 0
[ 2685.717413][T27754] workingset_refault_anon 43087
[ 2685.717423][T27754] workingset_refault_file 1
[ 2685.717433][T27754] swap 397312
[ 2685.717441][T27754] swapcached 8192
[ 2685.717450][T27754] pgpgin 167794
[ 2685.717457][T27754] pgpgout 167791
[ 2685.717466][T27754] pgfault 363709
[ 2685.717474][T27754] pgmajfault 41517
[ 2685.717484][T27754] inactive_anon 4096
[ 2685.717494][T27754] active_anon 8192
[ 2685.717503][T27754] inactive_file 0
[ 2685.717513][T27754] active_file 0
[ 2685.717523][T27754] unevictable 0
[ 2685.717533][T27754] hierarchical_memory_limit 314572800
[ 2685.717545][T27754] hierarchical_memsw_limit 9223372036854771712
[ 2685.717556][T27754] total_cache 0
[ 2685.717566][T27754] total_rss 12288
[ 2685.717575][T27754] total_rss_huge 0
[ 2685.823299][T27754] total_shmem 0
[ 2685.826323][T16775] bond668 (unregistering): Released all slaves
[ 2685.827379][T27754] total_mapped_file 0
[ 2685.837326][T27754] total_dirty 0
[ 2685.840809][T27754] total_writeback 0
[ 2685.844631][T27754] total_workingset_refault_anon 43087
[ 2685.851934][T27754] total_workingset_refault_file 1
[ 2685.857523][T27754] total_swap 397312
[ 2685.861357][T27754] total_swapcached 8192
[ 2685.865537][T27754] total_pgpgin 167794
[ 2685.870376][T27754] total_pgpgout 167791
[ 2685.874780][T27754] total_pgfault 363709
[ 2685.877157][T16775] bond667 (unregistering): Released all slaves
[ 2685.879696][T27754] total_pgmajfault 41517
[ 2685.889934][T27754] total_inactive_anon 4096
[ 2685.894412][T27754] total_active_anon 8192
[ 2685.899298][T27754] total_inactive_file 0
[ 2685.903522][T27754] total_active_file 0
[ 2685.908077][T27754] total_unevictable 0
[ 2685.912083][T27754] anon_cost 0
[ 2685.915401][T27754] file_cost 0
[ 2685.923801][T16775] bond666 (unregistering): Released all slaves
[ 2685.954807][T27754] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=27754,uid=0
[ 2685.972869][T16775] bond665 (unregistering): Released all slaves
[ 2685.974226][T27754] Memory cgroup out of memory: Killed process 27754 (syz-executor.3) total-vm:54504kB, anon-rss:380kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 2685.979659][T26667] Bluetooth: hci13: command 0x040f tx timeout
19:48:37 executing program 3:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x32}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000280)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000240)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=@newlink={0x48, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0xe403, r2}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @veth={{0x9}, {0x18, 0x2, 0x0, 0x1, @val=@VETH_INFO_PEER={0x14}}}}]}, 0x48}, 0x1, 0x19a}, 0x0)

[ 2686.005556][T16775] bond664 (unregistering): Released all slaves
[ 2686.079894][T16775] bond663 (unregistering): Released all slaves
[ 2686.118292][T16775] bond662 (unregistering): Released all slaves
[ 2686.171750][T16775] bond661 (unregistering): Released all slaves
[ 2686.212658][T16775] bond660 (unregistering): Released all slaves
[ 2686.251027][T16775] bond659 (unregistering): Released all slaves
[ 2686.304169][T16775] bond658 (unregistering): Released all slaves
[ 2686.354888][T16775] bond657 (unregistering): Released all slaves
[ 2686.405550][T16775] bond656 (unregistering): Released all slaves
[ 2686.458906][T16775] bond655 (unregistering): Released all slaves
[ 2686.470649][ T5091] syz-executor.3 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[ 2686.484454][ T5091] CPU: 1 PID: 5091 Comm: syz-executor.3 Not tainted 6.7.0-syzkaller-12291-g435e202d645c #0
[ 2686.494493][ T5091] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 2686.504743][ T5091] Call Trace:
[ 2686.510886][ T5091]  <TASK>
[ 2686.513809][ T5091]  dump_stack_lvl+0x125/0x1b0
[ 2686.518533][ T5091]  dump_header+0x103/0x900
[ 2686.523582][ T5091]  oom_kill_process+0x270/0xa60
[ 2686.528447][ T5091]  out_of_memory+0x344/0x16c0
[ 2686.533125][ T5091]  ? mutex_trylock+0xa0/0x130
[ 2686.537806][ T5091]  ? oom_killer_disable+0x2d0/0x2d0
[ 2686.543005][ T5091]  ? rcu_read_unlock+0x1c/0x60
[ 2686.547777][ T5091]  mem_cgroup_out_of_memory+0x206/0x270
[ 2686.553321][ T5091]  ? mem_cgroup_margin+0x130/0x130
[ 2686.558447][ T5091]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2686.563860][ T5091]  try_charge_memcg+0xcd1/0x11a0
[ 2686.568820][ T5091]  ? mem_cgroup_handle_over_high+0x570/0x570
[ 2686.574804][ T5091]  ? rcu_read_unlock+0x1c/0x60
[ 2686.579570][ T5091]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2686.584939][ T5091]  ? __radix_tree_lookup+0x21f/0x2c0
[ 2686.590243][ T5091]  mem_cgroup_swapin_charge_folio+0x138/0x380
[ 2686.597010][ T5091]  __read_swap_cache_async+0x4e1/0x600
[ 2686.602559][ T5091]  ? filemap_get_incore_folio+0x160/0x160
[ 2686.608285][ T5091]  ? swp_swap_info+0xcf/0x130
[ 2686.612954][ T5091]  ? swapcache_prepare+0x20/0x20
[ 2686.617897][ T5091]  swap_cluster_readahead+0x4d4/0x710
[ 2686.623290][ T5091]  ? read_swap_cache_async+0x1a0/0x1a0
[ 2686.628745][ T5091]  ? reacquire_held_locks+0x410/0x4c0
[ 2686.635189][ T5091]  ? xas_descend+0x141/0x4e0
[ 2686.639896][ T5091]  ? filemap_get_entry+0x23e/0x460
[ 2686.645013][ T5091]  swapin_readahead+0x132/0xe60
[ 2686.649885][ T5091]  ? get_swap_device+0x363/0x5e0
[ 2686.654824][ T5091]  ? exit_swap_address_space+0x250/0x250
[ 2686.660460][ T5091]  ? __filemap_get_folio+0x2b0/0xaa0
[ 2686.665754][ T5091]  ? swap_cache_get_folio+0x1dc/0x460
[ 2686.671131][ T5091]  ? get_swap_device+0x245/0x5e0
[ 2686.676078][ T5091]  ? free_pages_and_swap_cache+0xa0/0xa0
[ 2686.681836][ T5091]  ? lock_sync+0x190/0x190
[ 2686.686285][ T5091]  do_swap_page+0x4a6/0x3190
[ 2686.691248][ T5091]  ? rcu_is_watching+0x12/0xb0
[ 2686.697074][ T5091]  ? __pte_offset_map+0x1b9/0x540
[ 2686.702145][ T5091]  ? unmap_mapping_folio+0x3b0/0x3b0
[ 2686.707542][ T5091]  ? pte_offset_map_nolock+0xfa/0x1b0
[ 2686.713812][ T5091]  ? __pte_offset_map+0x540/0x540
[ 2686.719216][ T5091]  __handle_mm_fault+0x13a0/0x4900
[ 2686.725787][ T5091]  ? clear_huge_page+0x2e0/0x2e0
[ 2686.731125][ T5091]  ? lock_mm_and_find_vma+0x580/0x580
[ 2686.736509][ T5091]  ? do_user_addr_fault+0x663/0x1030
[ 2686.741810][ T5091]  handle_mm_fault+0x47a/0xa10
[ 2686.746604][ T5091]  do_user_addr_fault+0x30b/0x1030
[ 2686.751734][ T5091]  ? irqentry_enter_from_user_mode+0x5f/0xc0
[ 2686.757722][ T5091]  exc_page_fault+0x5d/0xc0
[ 2686.762229][ T5091]  asm_exc_page_fault+0x26/0x30
[ 2686.767084][ T5091] RIP: 0033:0x7f212b0a3bc6
[ 2686.771523][ T5091] Code: 03 00 00 48 8d b9 08 03 00 00 89 d6 83 ce 02 39 d6 74 21 89 d0 f0 0f b1 37 89 c6 75 1b 83 e2 3b 83 ca 02 83 fa 0a 74 14 89 f0 <c3> 66 0f 1f 84 00 00 00 00 00 89 d6 eb f0 89 c2 eb ce 50 48 c7 81
[ 2686.791166][ T5091] RSP: 002b:00007ffc7b20bb48 EFLAGS: 00010293
[ 2686.797279][ T5091] RAX: 0000000000000000 RBX: 000000000000293d RCX: 0000555555796480
[ 2686.805547][ T5091] RDX: 0000000000000002 RSI: 0000000000000000 RDI: 0000555555796788
[ 2686.813699][ T5091] RBP: 00007ffc7b20bbdc R08: 0000000000000a7e R09: 0000000000000001
[ 2686.821670][ T5091] R10: 0000000000000000 R11: 0000000001b0edd1 R12: 0000000000000032
[ 2686.829658][ T5091] R13: 000000000028fc86 R14: 000000000028fc86 R15: 0000000000000000
[ 2686.837644][ T5091]  </TASK>
[ 2686.848190][ T5091] memory: usage 307200kB, limit 307200kB, failcnt 143398
[ 2686.855278][ T5091] memory+swap: usage 307520kB, limit 9007199254740988kB, failcnt 0
[ 2686.863863][ T5091] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[ 2686.872956][ T5091] Memory cgroup stats for /syz3:
[ 2686.873131][ T5091] cache 0
[ 2686.876645][T16775] bond654 (unregistering): Released all slaves
[ 2686.878232][ T5091] rss 0
[ 2686.890106][ T5091] rss_huge 0
[ 2686.893358][ T5091] shmem 0
[ 2686.896510][ T5091] mapped_file 0
[ 2686.900344][ T5091] dirty 0
[ 2686.903293][ T5091] writeback 0
[ 2686.918107][T16775] bond653 (unregistering): Released all slaves
[ 2686.926086][ T5091] workingset_refault_anon 43225
[ 2686.930982][ T5091] workingset_refault_file 1
[ 2686.935496][ T5091] swap 327680
[ 2686.943785][ T5091] swapcached 0
[ 2686.951136][ T5091] pgpgin 167943
[ 2686.954684][ T5091] pgpgout 167943
[ 2686.958975][T16775] bond652 (unregistering): Released all slaves
[ 2686.959250][ T5091] pgfault 363940
[ 2686.969243][ T5091] pgmajfault 41653
[ 2686.988161][ T5091] inactive_anon 0
[ 2686.993983][T16775] bond651 (unregistering): Released all slaves
[ 2686.996462][ T5091] active_anon 0
[ 2687.003774][ T5091] inactive_file 0
[ 2687.023548][ T5091] active_file 0
[ 2687.027735][ T5091] unevictable 0
[ 2687.029462][T16775] bond650 (unregistering): Released all slaves
[ 2687.031216][ T5091] hierarchical_memory_limit 314572800
[ 2687.043832][ T5091] hierarchical_memsw_limit 9223372036854771712
[ 2687.050648][ T5091] total_cache 0
[ 2687.054151][ T5091] total_rss 0
[ 2687.058196][ T5091] total_rss_huge 0
[ 2687.061953][ T5091] total_shmem 0
[ 2687.065444][ T5091] total_mapped_file 0
[ 2687.074955][ T5091] total_dirty 0
[ 2687.082760][T16775] bond649 (unregistering): Released all slaves
[ 2687.086152][ T5091] total_writeback 0
[ 2687.092828][ T5091] total_workingset_refault_anon 43225
[ 2687.109848][T16775] bond648 (unregistering): Released all slaves
[ 2687.121509][ T5091] total_workingset_refault_file 1
[ 2687.136009][ T5091] total_swap 327680
[ 2687.136369][T16775] bond647 (unregistering): Released all slaves
[ 2687.139859][ T5091] total_swapcached 0
[ 2687.163474][T16775] bond646 (unregistering): Released all slaves
[ 2687.166126][ T5091] total_pgpgin 167943
[ 2687.173683][ T5091] total_pgpgout 167943
[ 2687.185981][ T5091] total_pgfault 363940
[ 2687.190108][ T5091] total_pgmajfault 41653
[ 2687.194481][ T5091] total_inactive_anon 0
[ 2687.202237][T16775] bond645 (unregistering): Released all slaves
[ 2687.216230][ T5091] total_active_anon 0
[ 2687.220368][ T5091] total_inactive_file 0
[ 2687.224537][ T5091] total_active_file 0
[ 2687.231314][T16775] bond644 (unregistering): Released all slaves
[ 2687.231690][ T5091] total_unevictable 0
[ 2687.241732][ T5091] anon_cost 0
[ 2687.245041][ T5091] file_cost 0
[ 2687.248684][ T5091] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=27755,uid=0
19:48:38 executing program 3:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x32}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000280)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000240)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=@newlink={0x48, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0xe403, r2}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @veth={{0x9}, {0x18, 0x2, 0x0, 0x1, @val=@VETH_INFO_PEER={0x14}}}}]}, 0x48}, 0x1, 0x1bc}, 0x0)

[ 2687.264496][ T5091] Memory cgroup out of memory: Killed process 27755 (syz-executor.3) total-vm:54504kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 2687.285192][T16775] bond643 (unregistering): Released all slaves
[ 2687.358146][T16775] bond642 (unregistering): Released all slaves
[ 2687.384585][T16775] bond641 (unregistering): Released all slaves
[ 2687.434047][T16775] bond640 (unregistering): Released all slaves
[ 2687.487241][T16775] bond639 (unregistering): Released all slaves
[ 2687.521668][T16775] bond638 (unregistering): Released all slaves
[ 2687.548103][T16775] bond637 (unregistering): Released all slaves
[ 2687.618712][T16775] bond636 (unregistering): Released all slaves
[ 2687.669290][T16775] bond635 (unregistering): Released all slaves
[ 2687.707463][T16775] bond634 (unregistering): Released all slaves
[ 2687.733365][T16775] bond633 (unregistering): Released all slaves
[ 2687.767240][T16775] bond632 (unregistering): Released all slaves
[ 2687.811404][T16775] bond631 (unregistering): Released all slaves
[ 2687.821689][T27756] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2687.848384][T27756] CPU: 0 PID: 27756 Comm: syz-executor.3 Not tainted 6.7.0-syzkaller-12291-g435e202d645c #0
[ 2687.858516][T27756] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 2687.868586][T27756] Call Trace:
[ 2687.871862][T27756]  <TASK>
[ 2687.874786][T27756]  dump_stack_lvl+0x125/0x1b0
[ 2687.879466][T27756]  dump_header+0x103/0x900
[ 2687.883886][T27756]  oom_kill_process+0x270/0xa60
[ 2687.888752][T27756]  out_of_memory+0x344/0x16c0
[ 2687.893444][T27756]  ? oom_killer_disable+0x2d0/0x2d0
[ 2687.898670][T27756]  ? rcu_read_unlock+0x1c/0x60
[ 2687.903446][T27756]  mem_cgroup_out_of_memory+0x206/0x270
[ 2687.908998][T27756]  ? mem_cgroup_margin+0x130/0x130
[ 2687.914125][T27756]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2687.919528][T27756]  try_charge_memcg+0xcd1/0x11a0
[ 2687.924489][T27756]  ? mem_cgroup_handle_over_high+0x570/0x570
[ 2687.930568][T27756]  ? get_mem_cgroup_from_objcg+0xb5/0x2a0
[ 2687.936298][T27756]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2687.941685][T27756]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2687.947078][T27756]  __memcg_kmem_charge_page+0xdd/0x2a0
[ 2687.952559][T27756]  memcg_charge_kernel_stack+0xc3/0x1f0
[ 2687.958486][T27756]  copy_process+0x527/0x97b0
[ 2687.963296][T27756]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2687.969329][T27756]  ? page_ext_put+0x43/0xd0
[ 2687.973869][T27756]  ? pidfd_prepare+0x80/0x80
[ 2687.978481][T27756]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2687.983874][T27756]  ? preempt_count_sub+0x160/0x160
[ 2687.989036][T27756]  ? print_usage_bug.part.0+0x550/0x550
[ 2687.994919][T27756]  ? __might_fault+0xe6/0x1a0
[ 2688.000171][T27756]  ? _copy_from_user+0x5d/0xf0
[ 2688.004963][T27756]  kernel_clone+0xfd/0x930
[ 2688.009398][T27756]  ? create_io_thread+0xe0/0xe0
[ 2688.014313][T27756]  __do_sys_clone3+0x1f1/0x260
[ 2688.019175][T27756]  ? __do_sys_clone+0x100/0x100
[ 2688.024052][T27756]  ? do_user_addr_fault+0x663/0x1030
[ 2688.029370][T27756]  do_syscall_64+0xd3/0x250
[ 2688.033895][T27756]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 2688.039800][T27756] RIP: 0033:0x7f212b0a8b99
[ 2688.044310][T27756] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 2688.064110][T27756] RSP: 002b:00007ffc7b20b738 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 2688.072536][T27756] RAX: ffffffffffffffda RBX: 00007f212b051270 RCX: 00007f212b0a8b99
[ 2688.080518][T27756] RDX: 00007f212b051270 RSI: 0000000000000058 RDI: 00007ffc7b20b780
[ 2688.088500][T27756] RBP: 00007f212be566c0 R08: 00007f212be566c0 R09: 00007ffc7b20b867
[ 2688.096482][T27756] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 2688.104480][T27756] R13: 000000000000000b R14: 00007ffc7b20b780 R15: 00007ffc7b20b868
[ 2688.112502][T27756]  </TASK>
[ 2688.127142][T26667] Bluetooth: hci13: command 0x0419 tx timeout
[ 2688.136012][T27756] memory: usage 307200kB, limit 307200kB, failcnt 143841
[ 2688.143175][T27756] memory+swap: usage 307560kB, limit 9007199254740988kB, failcnt 0
[ 2688.158818][T16775] bond630 (unregistering): Released all slaves
[ 2688.173368][T27756] kmem: usage 307184kB, limit 9007199254740988kB, failcnt 0
[ 2688.181387][T27756] Memory cgroup stats for /syz3:
[ 2688.181560][T27756] cache 0
[ 2688.182871][T16775] bond629 (unregistering): Released all slaves
[ 2688.187376][T27756] rss 0
[ 2688.199000][T27756] rss_huge 0
[ 2688.204317][T27756] shmem 0
[ 2688.207929][T27756] mapped_file 0
[ 2688.211497][T27756] dirty 0
[ 2688.214449][T27756] writeback 0
[ 2688.229804][T16775] bond628 (unregistering): Released all slaves
[ 2688.247347][T27756] workingset_refault_anon 43380
[ 2688.252579][T27756] workingset_refault_file 1
[ 2688.254544][T16775] bond627 (unregistering): Released all slaves
[ 2688.258283][T27756] swap 368640
[ 2688.267383][T27756] swapcached 0
[ 2688.270911][T27756] pgpgin 168109
[ 2688.274484][T27756] pgpgout 168109
[ 2688.286040][T27756] pgfault 364195
[ 2688.289775][T27756] pgmajfault 41799
[ 2688.293593][T27756] inactive_anon 0
[ 2688.295566][T16775] bond626 (unregistering): Released all slaves
[ 2688.299180][T27756] active_anon 0
[ 2688.324623][T27756] inactive_file 0
[ 2688.328820][T27756] active_file 0
[ 2688.332313][T27756] unevictable 0
[ 2688.339798][T16775] bond625 (unregistering): Released all slaves
[ 2688.340344][T27756] hierarchical_memory_limit 314572800
[ 2688.351491][T27756] hierarchical_memsw_limit 9223372036854771712
[ 2688.357982][T27756] total_cache 0
[ 2688.361460][T27756] total_rss 0
[ 2688.364756][T27756] total_rss_huge 0
[ 2688.368597][T27756] total_shmem 0
[ 2688.372092][T27756] total_mapped_file 0
[ 2688.376768][T27756] total_dirty 0
[ 2688.381836][T27756] total_writeback 0
[ 2688.385675][T27756] total_workingset_refault_anon 43380
[ 2688.391219][T27756] total_workingset_refault_file 1
[ 2688.396555][T27756] total_swap 368640
[ 2688.398496][T16775] bond624 (unregistering): Released all slaves
[ 2688.400370][T27756] total_swapcached 0
[ 2688.400382][T27756] total_pgpgin 168109
[ 2688.415030][T27756] total_pgpgout 168109
[ 2688.419344][T27756] total_pgfault 364195
[ 2688.423427][T27756] total_pgmajfault 41799
[ 2688.427871][T27756] total_inactive_anon 0
[ 2688.432129][T27756] total_active_anon 0
[ 2688.436324][T27756] total_inactive_file 0
[ 2688.444306][T16775] bond623 (unregistering): Released all slaves
[ 2688.448900][T27756] total_active_file 0
[ 2688.455088][T27756] total_unevictable 0
[ 2688.476173][T27756] anon_cost 0
[ 2688.479521][T27756] file_cost 0
[ 2688.482884][T27756] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=27756,uid=0
[ 2688.484950][T16775] bond622 (unregistering): Released all slaves
[ 2688.498870][T27756] Memory cgroup out of memory: Killed process 27756 (syz-executor.3) total-vm:54504kB, anon-rss:368kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
19:48:40 executing program 3:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x32}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000280)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000240)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=@newlink={0x48, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0xe403, r2}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @veth={{0x9}, {0x18, 0x2, 0x0, 0x1, @val=@VETH_INFO_PEER={0x14}}}}]}, 0x48}, 0x1, 0x1c2}, 0x0)

[ 2688.561121][T16775] bond621 (unregistering): Released all slaves
[ 2688.593978][T16775] bond620 (unregistering): Released all slaves
[ 2688.620209][T16775] bond619 (unregistering): Released all slaves
[ 2688.644837][T16775] bond618 (unregistering): Released all slaves
[ 2688.698327][T16775] bond617 (unregistering): Released all slaves
[ 2688.726205][T16775] bond616 (unregistering): Released all slaves
[ 2688.751599][T16775] bond615 (unregistering): Released all slaves
[ 2688.792518][T16775] bond614 (unregistering): Released all slaves
[ 2688.838020][T16775] bond613 (unregistering): Released all slaves
[ 2688.878991][T16775] bond612 (unregistering): Released all slaves
[ 2688.918226][T16775] bond611 (unregistering): Released all slaves
[ 2688.947682][T16775] bond610 (unregistering): Released all slaves
[ 2689.001202][T16775] bond609 (unregistering): Released all slaves
[ 2689.048763][T16775] bond608 (unregistering): Released all slaves
[ 2689.077100][T16775] bond607 (unregistering): Released all slaves
[ 2689.109230][T27757] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2689.119961][T27757] CPU: 1 PID: 27757 Comm: syz-executor.3 Not tainted 6.7.0-syzkaller-12291-g435e202d645c #0
[ 2689.122352][T16775] bond606 (unregistering): Released all slaves
[ 2689.132122][T27757] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 2689.132138][T27757] Call Trace:
[ 2689.132153][T27757]  <TASK>
[ 2689.132162][T27757]  dump_stack_lvl+0x125/0x1b0
[ 2689.132196][T27757]  dump_header+0x103/0x900
[ 2689.132235][T27757]  oom_kill_process+0x270/0xa60
[ 2689.132270][T27757]  out_of_memory+0x344/0x16c0
[ 2689.132311][T27757]  ? oom_killer_disable+0x2d0/0x2d0
[ 2689.179422][T27757]  ? rcu_read_unlock+0x1c/0x60
[ 2689.184531][T27757]  mem_cgroup_out_of_memory+0x206/0x270
[ 2689.190113][T27757]  ? mem_cgroup_margin+0x130/0x130
[ 2689.195257][T27757]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2689.200693][T27757]  try_charge_memcg+0xcd1/0x11a0
[ 2689.206224][T27757]  ? mem_cgroup_handle_over_high+0x570/0x570
[ 2689.212262][T27757]  ? get_mem_cgroup_from_objcg+0xb5/0x2a0
[ 2689.218026][T27757]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2689.223453][T27757]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2689.228887][T27757]  __memcg_kmem_charge_page+0xdd/0x2a0
[ 2689.236319][T27757]  memcg_charge_kernel_stack+0xc3/0x1f0
[ 2689.242974][T27757]  copy_process+0x1532/0x97b0
[ 2689.247705][T27757]  ? hlock_class+0x4e/0x130
[ 2689.252245][T27757]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2689.258439][T27757]  ? hlock_class+0x4e/0x130
[ 2689.263000][T27757]  ? pidfd_prepare+0x80/0x80
[ 2689.267644][T27757]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2689.273063][T27757]  ? preempt_count_sub+0x160/0x160
[ 2689.278488][T27757]  ? __lock_acquire+0x1502/0x3b30
[ 2689.283555][T27757]  ? __might_fault+0xe6/0x1a0
[ 2689.288280][T27757]  ? _copy_from_user+0x5d/0xf0
[ 2689.293082][T27757]  kernel_clone+0xfd/0x930
[ 2689.297537][T27757]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2689.303547][T27757]  ? create_io_thread+0xe0/0xe0
[ 2689.308449][T27757]  ? find_held_lock+0x2d/0x110
[ 2689.313259][T27757]  __do_sys_clone3+0x1f1/0x260
[ 2689.318057][T27757]  ? __do_sys_clone+0x100/0x100
[ 2689.322985][T27757]  do_syscall_64+0xd3/0x250
[ 2689.327531][T27757]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 2689.333464][T27757] RIP: 0033:0x7f212b0a8b99
[ 2689.337958][T27757] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 2689.357707][T27757] RSP: 002b:00007ffc7b20b738 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 2689.367286][T27757] RAX: ffffffffffffffda RBX: 00007f212b051270 RCX: 00007f212b0a8b99
[ 2689.375284][T27757] RDX: 00007f212b051270 RSI: 0000000000000058 RDI: 00007ffc7b20b780
[ 2689.383372][T27757] RBP: 00007f212be566c0 R08: 00007f212be566c0 R09: 00007ffc7b20b867
[ 2689.391371][T27757] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 2689.399376][T27757] R13: 000000000000000b R14: 00007ffc7b20b780 R15: 00007ffc7b20b868
[ 2689.407402][T27757]  </TASK>
[ 2689.414604][T16775] bond605 (unregistering): Released all slaves
[ 2689.418369][T27757] memory: usage 307184kB, limit 307200kB, failcnt 144245
[ 2689.430550][T27757] memory+swap: usage 307504kB, limit 9007199254740988kB, failcnt 0
[ 2689.438689][T27757] kmem: usage 307184kB, limit 9007199254740988kB, failcnt 0
[ 2689.446160][T27757] Memory cgroup stats for /syz3:
[ 2689.446319][T27757] cache 0
[ 2689.454403][T27757] rss 0
[ 2689.457356][T27757] rss_huge 0
[ 2689.460660][T27757] shmem 0
[ 2689.463650][T27757] mapped_file 0
[ 2689.467231][T27757] dirty 0
[ 2689.470188][T27757] writeback 0
[ 2689.473505][T27757] workingset_refault_anon 43522
[ 2689.483852][T16775] bond604 (unregistering): Released all slaves
[ 2689.485982][T27757] workingset_refault_file 1
[ 2689.506034][T27757] swap 327680
[ 2689.509585][T27757] swapcached 0
[ 2689.511661][T16775] bond603 (unregistering): Released all slaves
[ 2689.513040][T27757] pgpgin 168265
[ 2689.513052][T27757] pgpgout 168265
[ 2689.532548][T27757] pgfault 364427
[ 2689.536293][T27757] pgmajfault 41926
[ 2689.540034][T27757] inactive_anon 0
[ 2689.543686][T27757] active_anon 0
[ 2689.547294][T27757] inactive_file 0
[ 2689.550944][T27757] active_file 0
[ 2689.554445][T27757] unevictable 0
[ 2689.560597][T27757] hierarchical_memory_limit 314572800
[ 2689.566249][T27757] hierarchical_memsw_limit 9223372036854771712
[ 2689.572729][T27757] total_cache 0
[ 2689.574507][T16775] bond602 (unregistering): Released all slaves
[ 2689.576659][T27757] total_rss 0
[ 2689.586256][T27757] total_rss_huge 0
[ 2689.590002][T27757] total_shmem 0
[ 2689.593469][T27757] total_mapped_file 0
[ 2689.598427][T27757] total_dirty 0
[ 2689.602245][T27757] total_writeback 0
[ 2689.606438][T27757] total_workingset_refault_anon 43522
[ 2689.611836][T27757] total_workingset_refault_file 1
[ 2689.617617][T27757] total_swap 327680
[ 2689.621451][T27757] total_swapcached 0
[ 2689.625374][T27757] total_pgpgin 168265
[ 2689.629889][T27757] total_pgpgout 168265
[ 2689.635824][T27757] total_pgfault 364427
[ 2689.637273][T16775] bond601 (unregistering): Released all slaves
[ 2689.644404][T27757] total_pgmajfault 41926
[ 2689.650811][T27757] total_inactive_anon 0
[ 2689.654984][T27757] total_active_anon 0
[ 2689.659403][T27757] total_inactive_file 0
[ 2689.663596][T27757] total_active_file 0
[ 2689.668577][T27757] total_unevictable 0
[ 2689.673377][T27757] anon_cost 0
[ 2689.680921][T27757] file_cost 0
[ 2689.684372][T27757] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=27757,uid=0
[ 2689.690051][T16775] bond600 (unregistering): Released all slaves
[ 2689.703484][T27757] Memory cgroup out of memory: Killed process 27757 (syz-executor.3) total-vm:54504kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 2689.735731][T16775] bond599 (unregistering): Released all slaves
[ 2689.759614][T16775] bond598 (unregistering): Released all slaves
19:48:41 executing program 3:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x32}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000280)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000240)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=@newlink={0x48, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0xe403, r2}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @veth={{0x9}, {0x18, 0x2, 0x0, 0x1, @val=@VETH_INFO_PEER={0x14}}}}]}, 0x48}, 0x1, 0x1fe}, 0x0)

[ 2689.798301][T16775] bond597 (unregistering): Released all slaves
[ 2689.840846][T16775] bond596 (unregistering): Released all slaves
[ 2689.898340][T16775] bond595 (unregistering): Released all slaves
[ 2689.951475][T16775] bond594 (unregistering): Released all slaves
[ 2689.983654][T16775] bond593 (unregistering): Released all slaves
[ 2690.010798][T16775] bond592 (unregistering): Released all slaves
[ 2690.063326][T16775] bond591 (unregistering): Released all slaves
[ 2690.119503][T16775] bond590 (unregistering): Released all slaves
[ 2690.144500][T16775] bond589 (unregistering): Released all slaves
[ 2690.178840][T16775] bond588 (unregistering): Released all slaves
[ 2690.213269][T16775] bond587 (unregistering): Released all slaves
[ 2690.268290][T16775] bond586 (unregistering): Released all slaves
[ 2690.293525][T27758] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2690.305096][T27758] CPU: 0 PID: 27758 Comm: syz-executor.3 Not tainted 6.7.0-syzkaller-12291-g435e202d645c #0
19:48:41 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=@newlink={0x3c, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0xe403}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bond={{0x9}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BOND_PACKETS_PER_SLAVE={0x8, 0x14, 0xffff}]}}}]}, 0x3c}, 0x1, 0xffffffff00000000}, 0x0)

[ 2690.315209][T27758] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 2690.325318][T27758] Call Trace:
[ 2690.328618][T27758]  <TASK>
[ 2690.331575][T27758]  dump_stack_lvl+0x125/0x1b0
[ 2690.336290][T27758]  dump_header+0x103/0x900
[ 2690.340758][T27758]  oom_kill_process+0x270/0xa60
[ 2690.345672][T27758]  out_of_memory+0x344/0x16c0
[ 2690.350410][T27758]  ? oom_killer_disable+0x2d0/0x2d0
[ 2690.355665][T27758]  ? rcu_read_unlock+0x1c/0x60
[ 2690.360497][T27758]  mem_cgroup_out_of_memory+0x206/0x270
[ 2690.366093][T27758]  ? mem_cgroup_margin+0x130/0x130
[ 2690.371287][T27758]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2690.376719][T27758]  try_charge_memcg+0xcd1/0x11a0
[ 2690.381721][T27758]  ? mem_cgroup_handle_over_high+0x570/0x570
[ 2690.387750][T27758]  ? get_mem_cgroup_from_objcg+0xb5/0x2a0
[ 2690.393502][T27758]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2690.398920][T27758]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2690.404349][T27758]  __memcg_kmem_charge_page+0xdd/0x2a0
[ 2690.409862][T27758]  memcg_charge_kernel_stack+0xc3/0x1f0
[ 2690.415471][T27758]  copy_process+0x527/0x97b0
[ 2690.420111][T27758]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2690.426121][T27758]  ? page_ext_put+0x43/0xd0
[ 2690.430683][T27758]  ? pidfd_prepare+0x80/0x80
[ 2690.435342][T27758]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2690.440770][T27758]  ? preempt_count_sub+0x160/0x160
[ 2690.445931][T27758]  ? print_usage_bug.part.0+0x550/0x550
[ 2690.451525][T27758]  ? __might_fault+0xe6/0x1a0
[ 2690.456261][T27758]  ? _copy_from_user+0x5d/0xf0
[ 2690.461237][T27758]  kernel_clone+0xfd/0x930
[ 2690.465669][T27758]  ? create_io_thread+0xe0/0xe0
[ 2690.470554][T27758]  __do_sys_clone3+0x1f1/0x260
[ 2690.475331][T27758]  ? __do_sys_clone+0x100/0x100
[ 2690.480205][T27758]  ? do_user_addr_fault+0x663/0x1030
[ 2690.485524][T27758]  do_syscall_64+0xd3/0x250
[ 2690.490138][T27758]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 2690.496044][T27758] RIP: 0033:0x7f212b0a8b99
[ 2690.500468][T27758] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 2690.520109][T27758] RSP: 002b:00007ffc7b20b738 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 2690.528619][T27758] RAX: ffffffffffffffda RBX: 00007f212b051270 RCX: 00007f212b0a8b99
[ 2690.536601][T27758] RDX: 00007f212b051270 RSI: 0000000000000058 RDI: 00007ffc7b20b780
[ 2690.544664][T27758] RBP: 00007f212be566c0 R08: 00007f212be566c0 R09: 00007ffc7b20b867
[ 2690.552643][T27758] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 2690.560639][T27758] R13: 000000000000000b R14: 00007ffc7b20b780 R15: 00007ffc7b20b868
[ 2690.568642][T27758]  </TASK>
[ 2690.575514][T16775] bond585 (unregistering): Released all slaves
[ 2690.581992][T27758] memory: usage 307200kB, limit 307200kB, failcnt 144737
[ 2690.589499][T27758] memory+swap: usage 307556kB, limit 9007199254740988kB, failcnt 0
[ 2690.626497][T27758] kmem: usage 307184kB, limit 9007199254740988kB, failcnt 0
[ 2690.639829][T27758] Memory cgroup stats for /syz3:
[ 2690.640015][T27758] cache 0
[ 2690.652375][T16775] bond584 (unregistering): Released all slaves
[ 2690.659878][T27758] rss 0
[ 2690.662686][T27758] rss_huge 0
[ 2690.676236][T27758] shmem 0
[ 2690.681780][T27758] mapped_file 0
[ 2690.685367][T27758] dirty 0
[ 2690.694898][T27758] writeback 0
[ 2690.701040][T16775] bond583 (unregistering): Released all slaves
[ 2690.711225][T27758] workingset_refault_anon 43684
[ 2690.723653][T27758] workingset_refault_file 1
[ 2690.736085][T27758] swap 364544
[ 2690.739432][T27758] swapcached 0
[ 2690.750865][T27758] pgpgin 168438
[ 2690.754520][T27758] pgpgout 168438
[ 2690.762583][T16775] bond582 (unregistering): Released all slaves
[ 2690.768999][T27758] pgfault 364683
[ 2690.772583][T27758] pgmajfault 42074
[ 2690.785999][T27758] inactive_anon 0
[ 2690.790195][T27758] active_anon 0
[ 2690.793681][T27758] inactive_file 0
[ 2690.803525][T27758] active_file 0
[ 2690.810208][T16775] bond581 (unregistering): Released all slaves
[ 2690.821089][T27758] unevictable 0
[ 2690.824596][T27758] hierarchical_memory_limit 314572800
[ 2690.830699][T27758] hierarchical_memsw_limit 9223372036854771712
[ 2690.837415][T27758] total_cache 0
[ 2690.840898][T27758] total_rss 0
[ 2690.844191][T27758] total_rss_huge 0
[ 2690.848605][T27758] total_shmem 0
[ 2690.852084][T27758] total_mapped_file 0
[ 2690.857087][T27758] total_dirty 0
[ 2690.860650][T27758] total_writeback 0
[ 2690.862672][T16775] bond580 (unregistering): Released all slaves
[ 2690.867344][T27758] total_workingset_refault_anon 43684
[ 2690.877405][T27758] total_workingset_refault_file 1
[ 2690.882460][T27758] total_swap 364544
[ 2690.886918][T27758] total_swapcached 0
[ 2690.891050][T27758] total_pgpgin 168438
[ 2690.895042][T27758] total_pgpgout 168438
[ 2690.899876][T27758] total_pgfault 364683
[ 2690.903969][T27758] total_pgmajfault 42074
[ 2690.917628][T16775] bond579 (unregistering): Released all slaves
[ 2690.930949][T27758] total_inactive_anon 0
[ 2690.935151][T27758] total_active_anon 0
[ 2690.940572][T27758] total_inactive_file 0
[ 2690.942010][T16775] bond578 (unregistering): Released all slaves
[ 2690.944741][T27758] total_active_file 0
[ 2690.944753][T27758] total_unevictable 0
[ 2690.959967][T27758] anon_cost 0
[ 2690.963304][T27758] file_cost 0
[ 2690.969451][T27758] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=27758,uid=0
19:48:42 executing program 3:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x32}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000280)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000240)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=@newlink={0x48, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0xe403, r2}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @veth={{0x9}, {0x18, 0x2, 0x0, 0x1, @val=@VETH_INFO_PEER={0x14}}}}]}, 0x48}, 0x1, 0x203}, 0x0)

[ 2690.985604][T27758] Memory cgroup out of memory: Killed process 27758 (syz-executor.3) total-vm:54504kB, anon-rss:332kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 2691.005043][T16775] bond577 (unregistering): Released all slaves
[ 2691.051554][T16775] bond576 (unregistering): Released all slaves
[ 2691.108156][T16775] bond575 (unregistering): Released all slaves
[ 2691.168363][T16775] bond574 (unregistering): Released all slaves
[ 2691.213851][T16775] bond573 (unregistering): Released all slaves
[ 2691.269072][T16775] bond572 (unregistering): Released all slaves
[ 2691.318726][T16775] bond571 (unregistering): Released all slaves
[ 2691.353028][T16775] bond570 (unregistering): Released all slaves
[ 2691.408101][T16775] bond569 (unregistering): Released all slaves
[ 2691.441620][T16775] bond568 (unregistering): Released all slaves
[ 2691.469194][T16775] bond567 (unregistering): Released all slaves
[ 2691.509124][T16775] bond566 (unregistering): Released all slaves
[ 2691.552578][T27759] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2691.563490][T27759] CPU: 0 PID: 27759 Comm: syz-executor.3 Not tainted 6.7.0-syzkaller-12291-g435e202d645c #0
[ 2691.565274][T16775] bond565 (unregistering): Released all slaves
[ 2691.573575][T27759] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 2691.573590][T27759] Call Trace:
[ 2691.573599][T27759]  <TASK>
[ 2691.573609][T27759]  dump_stack_lvl+0x125/0x1b0
[ 2691.573642][T27759]  dump_header+0x103/0x900
[ 2691.605151][T27759]  oom_kill_process+0x270/0xa60
[ 2691.610020][T27759]  out_of_memory+0x344/0x16c0
[ 2691.614717][T27759]  ? oom_killer_disable+0x2d0/0x2d0
[ 2691.619951][T27759]  ? rcu_read_unlock+0x1c/0x60
[ 2691.624791][T27759]  mem_cgroup_out_of_memory+0x206/0x270
[ 2691.630375][T27759]  ? mem_cgroup_margin+0x130/0x130
[ 2691.635505][T27759]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2691.640906][T27759]  try_charge_memcg+0xcd1/0x11a0
[ 2691.645850][T27759]  ? mem_cgroup_handle_over_high+0x570/0x570
[ 2691.651825][T27759]  ? get_mem_cgroup_from_objcg+0xb5/0x2a0
[ 2691.657628][T27759]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2691.663012][T27759]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2691.668411][T27759]  __memcg_kmem_charge_page+0xdd/0x2a0
[ 2691.673909][T27759]  memcg_charge_kernel_stack+0xc3/0x1f0
[ 2691.679795][T27759]  copy_process+0x527/0x97b0
[ 2691.685134][T27759]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2691.691149][T27759]  ? page_ext_put+0x43/0xd0
[ 2691.695674][T27759]  ? pidfd_prepare+0x80/0x80
[ 2691.700265][T27759]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2691.705655][T27759]  ? preempt_count_sub+0x160/0x160
[ 2691.710789][T27759]  ? print_usage_bug.part.0+0x550/0x550
[ 2691.716361][T27759]  ? __might_fault+0xe6/0x1a0
[ 2691.721350][T27759]  ? _copy_from_user+0x5d/0xf0
[ 2691.726154][T27759]  kernel_clone+0xfd/0x930
[ 2691.730606][T27759]  ? create_io_thread+0xe0/0xe0
[ 2691.735500][T27759]  __do_sys_clone3+0x1f1/0x260
[ 2691.740281][T27759]  ? __do_sys_clone+0x100/0x100
[ 2691.745143][T27759]  ? do_user_addr_fault+0x663/0x1030
[ 2691.750450][T27759]  do_syscall_64+0xd3/0x250
[ 2691.754955][T27759]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 2691.760856][T27759] RIP: 0033:0x7f212b0a8b99
[ 2691.765263][T27759] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 2691.784886][T27759] RSP: 002b:00007ffc7b20b738 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 2691.793332][T27759] RAX: ffffffffffffffda RBX: 00007f212b051270 RCX: 00007f212b0a8b99
[ 2691.801322][T27759] RDX: 00007f212b051270 RSI: 0000000000000058 RDI: 00007ffc7b20b780
[ 2691.809328][T27759] RBP: 00007f212be566c0 R08: 00007f212be566c0 R09: 00007ffc7b20b867
[ 2691.817334][T27759] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 2691.825348][T27759] R13: 000000000000000b R14: 00007ffc7b20b780 R15: 00007ffc7b20b868
[ 2691.833370][T27759]  </TASK>
[ 2691.840015][T16775] bond564 (unregistering): Released all slaves
[ 2691.841008][T27759] memory: usage 307184kB, limit 307200kB, failcnt 145209
[ 2691.854658][T27759] memory+swap: usage 307544kB, limit 9007199254740988kB, failcnt 0
[ 2691.863756][T27759] kmem: usage 307184kB, limit 9007199254740988kB, failcnt 0
[ 2691.871374][T27759] Memory cgroup stats for /syz3:
[ 2691.871538][T27759] cache 0
[ 2691.879891][T27759] rss 0
[ 2691.882702][T27759] rss_huge 0
[ 2691.886306][T27759] shmem 0
[ 2691.889728][T27759] mapped_file 0
[ 2691.893303][T27759] dirty 0
[ 2691.905970][T27759] writeback 0
[ 2691.909310][T27759] workingset_refault_anon 43856
[ 2691.914180][T27759] workingset_refault_file 1
[ 2691.921034][T16775] bond563 (unregistering): Released all slaves
[ 2691.936007][T27759] swap 368640
[ 2691.939349][T27759] swapcached 0
[ 2691.942747][T27759] pgpgin 168623
[ 2691.955994][T27759] pgpgout 168623
[ 2691.959601][T27759] pgfault 364968
[ 2691.963172][T27759] pgmajfault 42238
[ 2691.976763][T16775] bond562 (unregistering): Released all slaves
[ 2691.986199][T27759] inactive_anon 0
[ 2691.990214][T27759] active_anon 0
[ 2691.993696][T27759] inactive_file 0
[ 2692.006119][T27759] active_file 0
[ 2692.009639][T27759] unevictable 0
[ 2692.013121][T27759] hierarchical_memory_limit 314572800
[ 2692.036051][T27759] hierarchical_memsw_limit 9223372036854771712
[ 2692.042319][T27759] total_cache 0
[ 2692.045791][T27759] total_rss 0
[ 2692.059178][T27759] total_rss_huge 0
[ 2692.062949][T27759] total_shmem 0
[ 2692.066114][T16775] bond561 (unregistering): Released all slaves
[ 2692.076062][T27759] total_mapped_file 0
[ 2692.080103][T27759] total_dirty 0
[ 2692.083573][T27759] total_writeback 0
[ 2692.089596][T27759] total_workingset_refault_anon 43856
[ 2692.106089][T27759] total_workingset_refault_file 1
[ 2692.111188][T27759] total_swap 368640
[ 2692.115002][T27759] total_swapcached 0
[ 2692.121105][T16775] bond560 (unregistering): Released all slaves
[ 2692.132762][T27759] total_pgpgin 168623
[ 2692.156041][T27759] total_pgpgout 168623
[ 2692.160163][T27759] total_pgfault 364968
[ 2692.164243][T27759] total_pgmajfault 42238
[ 2692.185986][T27759] total_inactive_anon 0
[ 2692.190276][T27759] total_active_anon 0
[ 2692.192284][T16775] bond559 (unregistering): Released all slaves
[ 2692.194716][T27759] total_inactive_file 0
[ 2692.194730][T27759] total_active_file 0
[ 2692.194740][T27759] total_unevictable 0
[ 2692.194750][T27759] anon_cost 0
[ 2692.194759][T27759] file_cost 0
[ 2692.194769][T27759] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=27759,uid=0
[ 2692.194894][T27759] Memory cgroup out of memory: Killed process 27759 (syz-executor.3) total-vm:54504kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
19:48:43 executing program 3:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x32}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000280)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000240)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=@newlink={0x48, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0xe403, r2}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @veth={{0x9}, {0x18, 0x2, 0x0, 0x1, @val=@VETH_INFO_PEER={0x14}}}}]}, 0x48}, 0x1, 0x204}, 0x0)

[ 2692.282373][T16775] bond558 (unregistering): Released all slaves
[ 2692.342769][T16775] bond557 (unregistering): Released all slaves
[ 2692.401994][T16775] bond556 (unregistering): Released all slaves
[ 2692.443510][T16775] bond555 (unregistering): Released all slaves
[ 2692.527813][T16775] bond554 (unregistering): Released all slaves
[ 2692.549307][ T5094] Bluetooth: hci14: unexpected cc 0x0c03 length: 249 > 1
[ 2692.561540][ T5094] Bluetooth: hci14: unexpected cc 0x1003 length: 249 > 9
[ 2692.571520][ T5094] Bluetooth: hci14: unexpected cc 0x1001 length: 249 > 9
[ 2692.595694][ T5094] Bluetooth: hci14: unexpected cc 0x0c23 length: 249 > 4
[ 2692.605674][T16775] bond553 (unregistering): Released all slaves
[ 2692.614216][ T5094] Bluetooth: hci14: unexpected cc 0x0c25 length: 249 > 3
[ 2692.624571][ T5094] Bluetooth: hci14: unexpected cc 0x0c38 length: 249 > 2
[ 2692.690454][T16775] bond552 (unregistering): Released all slaves
[ 2692.738066][T16775] bond551 (unregistering): Released all slaves
[ 2692.788612][T16775] bond550 (unregistering): Released all slaves
[ 2692.841702][T16775] bond549 (unregistering): Released all slaves
[ 2692.888503][T16775] bond548 (unregistering): Released all slaves
[ 2692.943272][T16775] bond547 (unregistering): Released all slaves
[ 2693.000923][T27761] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2693.006831][T16775] bond546 (unregistering): Released all slaves
[ 2693.011257][T27761] CPU: 1 PID: 27761 Comm: syz-executor.3 Not tainted 6.7.0-syzkaller-12291-g435e202d645c #0
[ 2693.027373][T27761] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 2693.037453][T27761] Call Trace:
[ 2693.040775][T27761]  <TASK>
[ 2693.043738][T27761]  dump_stack_lvl+0x125/0x1b0
[ 2693.048467][T27761]  dump_header+0x103/0x900
[ 2693.052929][T27761]  oom_kill_process+0x270/0xa60
[ 2693.057834][T27761]  out_of_memory+0x344/0x16c0
[ 2693.062691][T27761]  ? oom_killer_disable+0x2d0/0x2d0
[ 2693.068347][T27761]  ? rcu_read_unlock+0x1c/0x60
[ 2693.073161][T27761]  mem_cgroup_out_of_memory+0x206/0x270
[ 2693.078739][T27761]  ? mem_cgroup_margin+0x130/0x130
[ 2693.084710][T27761]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2693.090237][T27761]  try_charge_memcg+0xcd1/0x11a0
[ 2693.095247][T27761]  ? mem_cgroup_handle_over_high+0x570/0x570
[ 2693.101285][T27761]  ? get_mem_cgroup_from_objcg+0xb5/0x2a0
[ 2693.107048][T27761]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2693.112459][T27761]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2693.117884][T27761]  __memcg_kmem_charge_page+0xdd/0x2a0
[ 2693.123389][T27761]  memcg_charge_kernel_stack+0xc3/0x1f0
[ 2693.128988][T27761]  copy_process+0x1532/0x97b0
[ 2693.133715][T27761]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2693.139738][T27761]  ? page_ext_put+0x43/0xd0
[ 2693.144294][T27761]  ? hlock_class+0x4e/0x130
[ 2693.148874][T27761]  ? pidfd_prepare+0x80/0x80
[ 2693.153699][T27761]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2693.159130][T27761]  ? preempt_count_sub+0x160/0x160
[ 2693.164274][T27761]  ? print_usage_bug.part.0+0x550/0x550
[ 2693.169872][T27761]  ? __might_fault+0xe6/0x1a0
[ 2693.174776][T27761]  ? _copy_from_user+0x5d/0xf0
[ 2693.179591][T27761]  kernel_clone+0xfd/0x930
[ 2693.184048][T27761]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2693.190059][T27761]  ? create_io_thread+0xe0/0xe0
[ 2693.194946][T27761]  ? find_held_lock+0x2d/0x110
[ 2693.199737][T27761]  __do_sys_clone3+0x1f1/0x260
[ 2693.204538][T27761]  ? __do_sys_clone+0x100/0x100
[ 2693.209445][T27761]  ? rcu_is_watching+0x12/0xb0
[ 2693.214508][T27761]  do_syscall_64+0xd3/0x250
[ 2693.219044][T27761]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 2693.224970][T27761] RIP: 0033:0x7f212b0a8b99
[ 2693.229416][T27761] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 2693.249148][T27761] RSP: 002b:00007ffc7b20b738 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 2693.257604][T27761] RAX: ffffffffffffffda RBX: 00007f212b051270 RCX: 00007f212b0a8b99
[ 2693.265674][T27761] RDX: 00007f212b051270 RSI: 0000000000000058 RDI: 00007ffc7b20b780
[ 2693.273655][T27761] RBP: 00007f212be566c0 R08: 00007f212be566c0 R09: 00007ffc7b20b867
[ 2693.281660][T27761] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 2693.289665][T27761] R13: 000000000000000b R14: 00007ffc7b20b780 R15: 00007ffc7b20b868
[ 2693.297685][T27761]  </TASK>
[ 2693.307143][T16775] bond545 (unregistering): Released all slaves
[ 2693.308647][T27761] memory: usage 307200kB, limit 307200kB, failcnt 145702
[ 2693.322011][T27761] memory+swap: usage 307560kB, limit 9007199254740988kB, failcnt 0
[ 2693.330263][T27761] kmem: usage 307184kB, limit 9007199254740988kB, failcnt 0
[ 2693.348174][T27761] Memory cgroup stats for /syz3:
[ 2693.348325][T27761] cache 0
[ 2693.356413][T27761] rss 0
[ 2693.359200][T27761] rss_huge 0
[ 2693.362411][T27761] shmem 0
[ 2693.372145][T27761] mapped_file 0
[ 2693.375761][T27761] dirty 0
[ 2693.382268][T16775] bond544 (unregistering): Released all slaves
[ 2693.388965][T27761] writeback 0
[ 2693.392270][T27761] workingset_refault_anon 44040
[ 2693.406403][T27761] workingset_refault_file 1
[ 2693.410963][T27761] swap 368640
[ 2693.414347][T27761] swapcached 0
[ 2693.436035][T27761] pgpgin 168818
[ 2693.439568][T27761] pgpgout 168818
[ 2693.443129][T27761] pgfault 365281
[ 2693.448993][T16775] bond543 (unregistering): Released all slaves
[ 2693.453972][T27761] pgmajfault 42411
[ 2693.459482][T27761] inactive_anon 0
[ 2693.463144][T27761] active_anon 0
[ 2693.473306][T27761] inactive_file 0
[ 2693.479421][T16775] bond542 (unregistering): Released all slaves
[ 2693.486217][T27761] active_file 0
[ 2693.489712][T27761] unevictable 0
[ 2693.493292][T27761] hierarchical_memory_limit 314572800
[ 2693.502188][T27761] hierarchical_memsw_limit 9223372036854771712
[ 2693.509977][T27761] total_cache 0
[ 2693.513579][T27761] total_rss 0
[ 2693.517296][T27761] total_rss_huge 0
[ 2693.521160][T27761] total_shmem 0
[ 2693.524673][T27761] total_mapped_file 0
[ 2693.528111][T16775] bond541 (unregistering): Released all slaves
[ 2693.530788][T27761] total_dirty 0
[ 2693.539752][T27761] total_writeback 0
[ 2693.543608][T27761] total_workingset_refault_anon 44040
[ 2693.549608][T27761] total_workingset_refault_file 1
[ 2693.554659][T27761] total_swap 368640
[ 2693.558903][T27761] total_swapcached 0
[ 2693.562819][T27761] total_pgpgin 168818
[ 2693.567209][T27761] total_pgpgout 168818
[ 2693.571299][T27761] total_pgfault 365281
[ 2693.575449][T27761] total_pgmajfault 42411
[ 2693.580602][T27761] total_inactive_anon 0
[ 2693.582649][T16775] bond540 (unregistering): Released all slaves
[ 2693.584773][T27761] total_active_anon 0
[ 2693.595354][T27761] total_inactive_file 0
[ 2693.599892][T27761] total_active_file 0
[ 2693.603898][T27761] total_unevictable 0
[ 2693.611462][T27761] anon_cost 0
[ 2693.614790][T27761] file_cost 0
[ 2693.618531][T27761] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=27761,uid=0
[ 2693.634952][T27761] Memory cgroup out of memory: Killed process 27761 (syz-executor.3) total-vm:54504kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 2693.643362][T16775] bond539 (unregistering): Released all slaves
19:48:45 executing program 3:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x32}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000280)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000240)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=@newlink={0x48, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0xe403, r2}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @veth={{0x9}, {0x18, 0x2, 0x0, 0x1, @val=@VETH_INFO_PEER={0x14}}}}]}, 0x48}, 0x1, 0x20a}, 0x0)

[ 2693.680566][T16775] bond538 (unregistering): Released all slaves
[ 2693.714546][T16775] bond537 (unregistering): Released all slaves
[ 2693.779739][T16775] bond536 (unregistering): Released all slaves
[ 2693.809134][T16775] bond535 (unregistering): Released all slaves
[ 2693.838390][T16775] bond534 (unregistering): Released all slaves
[ 2693.864837][T16775] bond533 (unregistering): Released all slaves
[ 2693.908868][T16775] bond532 (unregistering): Released all slaves
[ 2693.933672][T16775] bond531 (unregistering): Released all slaves
[ 2693.963110][T16775] bond530 (unregistering): Released all slaves
[ 2694.011922][T16775] bond529 (unregistering): Released all slaves
[ 2694.051875][T16775] bond528 (unregistering): Released all slaves
[ 2694.108097][T16775] bond527 (unregistering): Released all slaves
[ 2694.140801][T27766] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2694.151790][T27766] CPU: 0 PID: 27766 Comm: syz-executor.3 Not tainted 6.7.0-syzkaller-12291-g435e202d645c #0
[ 2694.161880][T27766] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 2694.172046][T27766] Call Trace:
[ 2694.175319][T27766]  <TASK>
[ 2694.178241][T27766]  dump_stack_lvl+0x125/0x1b0
[ 2694.183357][T27766]  dump_header+0x103/0x900
[ 2694.187883][T27766]  oom_kill_process+0x270/0xa60
[ 2694.192872][T27766]  out_of_memory+0x344/0x16c0
[ 2694.197565][T27766]  ? oom_killer_disable+0x2d0/0x2d0
[ 2694.202795][T27766]  ? rcu_read_unlock+0x1c/0x60
[ 2694.207637][T27766]  mem_cgroup_out_of_memory+0x206/0x270
[ 2694.213247][T27766]  ? mem_cgroup_margin+0x130/0x130
[ 2694.218416][T27766]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2694.223819][T27766]  try_charge_memcg+0xcd1/0x11a0
[ 2694.228789][T27766]  ? mem_cgroup_handle_over_high+0x570/0x570
[ 2694.234792][T27766]  ? get_mem_cgroup_from_objcg+0xb5/0x2a0
[ 2694.240701][T27766]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2694.246219][T27766]  __memcg_kmem_charge_page+0xdd/0x2a0
[ 2694.251898][T27766]  memcg_charge_kernel_stack+0xc3/0x1f0
[ 2694.257468][T27766]  copy_process+0x1532/0x97b0
[ 2694.262631][T27766]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2694.268638][T27766]  ? page_ext_put+0x43/0xd0
[ 2694.273156][T27766]  ? hlock_class+0x4e/0x130
[ 2694.277684][T27766]  ? pidfd_prepare+0x80/0x80
[ 2694.282293][T27766]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2694.287691][T27766]  ? preempt_count_sub+0x160/0x160
[ 2694.292811][T27766]  ? print_usage_bug.part.0+0x550/0x550
[ 2694.298376][T27766]  ? __might_fault+0xe6/0x1a0
[ 2694.303075][T27766]  ? _copy_from_user+0x5d/0xf0
[ 2694.307864][T27766]  kernel_clone+0xfd/0x930
[ 2694.312308][T27766]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2694.318299][T27766]  ? create_io_thread+0xe0/0xe0
[ 2694.323180][T27766]  ? find_held_lock+0x2d/0x110
[ 2694.327967][T27766]  __do_sys_clone3+0x1f1/0x260
[ 2694.332750][T27766]  ? __do_sys_clone+0x100/0x100
[ 2694.337636][T27766]  ? rcu_is_watching+0x12/0xb0
[ 2694.342439][T27766]  do_syscall_64+0xd3/0x250
[ 2694.346984][T27766]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 2694.352891][T27766] RIP: 0033:0x7f212b0a8b99
[ 2694.357337][T27766] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 2694.376960][T27766] RSP: 002b:00007ffc7b20b738 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 2694.385444][T27766] RAX: ffffffffffffffda RBX: 00007f212b051270 RCX: 00007f212b0a8b99
[ 2694.393427][T27766] RDX: 00007f212b051270 RSI: 0000000000000058 RDI: 00007ffc7b20b780
[ 2694.401842][T27766] RBP: 00007f212be566c0 R08: 00007f212be566c0 R09: 00007ffc7b20b867
[ 2694.409978][T27766] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 2694.417981][T27766] R13: 000000000000000b R14: 00007ffc7b20b780 R15: 00007ffc7b20b868
[ 2694.425981][T27766]  </TASK>
[ 2694.453310][T27766] memory: usage 307200kB, limit 307200kB, failcnt 146080
[ 2694.466454][T27766] memory+swap: usage 307588kB, limit 9007199254740988kB, failcnt 0
[ 2694.474421][T27766] kmem: usage 307172kB, limit 9007199254740988kB, failcnt 0
[ 2694.483731][T16775] bond526 (unregistering): Released all slaves
[ 2694.496403][T27766] Memory cgroup stats for /syz3:
[ 2694.496572][T27766] cache 0
[ 2694.504493][T27766] rss 12288
[ 2694.517326][T27766] rss_huge 0
[ 2694.519481][T16775] bond525 (unregistering): Released all slaves
[ 2694.536633][T27766] shmem 0
[ 2694.539632][T27766] mapped_file 0
[ 2694.543117][T27766] dirty 0
[ 2694.556370][T27766] writeback 0
[ 2694.559976][T27766] workingset_refault_anon 44180
[ 2694.565000][T27766] workingset_refault_file 1
[ 2694.567369][T16775] bond524 (unregistering): Released all slaves
[ 2694.569837][T27766] swap 397312
[ 2694.579342][T27766] swapcached 12288
[ 2694.583086][T27766] pgpgin 168970
[ 2694.587243][T27766] pgpgout 168967
[ 2694.590850][T27766] pgfault 365507
[ 2694.594690][T27766] pgmajfault 42535
[ 2694.599320][T27766] inactive_anon 4096
[ 2694.603343][T27766] active_anon 4096
[ 2694.607788][T27766] inactive_file 0
[ 2694.613724][T16775] bond523 (unregistering): Released all slaves
[ 2694.620590][T27766] active_file 0
[ 2694.636154][T27766] unevictable 0
[ 2694.637598][T16775] bond522 (unregistering): Released all slaves
[ 2694.639760][T27766] hierarchical_memory_limit 314572800
[ 2694.666148][T27766] hierarchical_memsw_limit 9223372036854771712
[ 2694.676560][T27766] total_cache 0
[ 2694.683981][T16775] bond521 (unregistering): Released all slaves
[ 2694.686256][T27766] total_rss 12288
[ 2694.696263][ T5094] Bluetooth: hci14: command 0x0409 tx timeout
[ 2694.703434][T27766] total_rss_huge 0
[ 2694.707498][T27766] total_shmem 0
[ 2694.709565][T16775] bond520 (unregistering): Released all slaves
[ 2694.711077][T27766] total_mapped_file 0
[ 2694.721203][T27766] total_dirty 0
[ 2694.724675][T27766] total_writeback 0
[ 2694.728634][T27766] total_workingset_refault_anon 44180
[ 2694.734026][T27766] total_workingset_refault_file 1
[ 2694.739170][T27766] total_swap 397312
[ 2694.743094][T27766] total_swapcached 12288
[ 2694.747450][T27766] total_pgpgin 168970
[ 2694.751463][T27766] total_pgpgout 168967
[ 2694.756517][T27766] total_pgfault 365507
[ 2694.760800][T27766] total_pgmajfault 42535
[ 2694.765362][T27766] total_inactive_anon 4096
[ 2694.767725][T16775] bond519 (unregistering): Released all slaves
[ 2694.773269][T27766] total_active_anon 4096
[ 2694.780754][T27766] total_inactive_file 0
[ 2694.784936][T27766] total_active_file 0
[ 2694.789127][T27766] total_unevictable 0
[ 2694.793146][T27766] anon_cost 0
[ 2694.796524][T27766] file_cost 0
[ 2694.799826][T27766] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=27766,uid=0
[ 2694.815521][T27766] Memory cgroup out of memory: Killed process 27766 (syz-executor.3) total-vm:54504kB, anon-rss:380kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 2694.858399][T16775] bond518 (unregistering): Released all slaves
[ 2694.910003][T16775] bond517 (unregistering): Released all slaves
19:48:46 executing program 3:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x32}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000280)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000240)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=@newlink={0x48, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0xe403, r2}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @veth={{0x9}, {0x18, 0x2, 0x0, 0x1, @val=@VETH_INFO_PEER={0x14}}}}]}, 0x48}, 0x1, 0x22a}, 0x0)

[ 2694.952999][T16775] bond516 (unregistering): Released all slaves
[ 2694.977263][T16775] bond515 (unregistering): Released all slaves
[ 2695.004767][T16775] bond514 (unregistering): Released all slaves
[ 2695.053389][T16775] bond513 (unregistering): Released all slaves
[ 2695.104045][T16775] bond512 (unregistering): Released all slaves
[ 2695.143720][T16775] bond511 (unregistering): Released all slaves
[ 2695.198213][T16775] bond510 (unregistering): Released all slaves
[ 2695.248342][T16775] bond509 (unregistering): Released all slaves
[ 2695.292020][T16775] bond508 (unregistering): Released all slaves
[ 2695.342453][T16775] bond507 (unregistering): Released all slaves
[ 2695.373266][T16775] bond506 (unregistering): Released all slaves
[ 2695.396865][T16775] bond505 (unregistering): Released all slaves
[ 2695.417662][ T5094] Bluetooth: hci6: command 0x0406 tx timeout
[ 2695.489226][T27767] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2695.499809][T27767] CPU: 1 PID: 27767 Comm: syz-executor.3 Not tainted 6.7.0-syzkaller-12291-g435e202d645c #0
[ 2695.509911][T27767] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 2695.518052][T16775] bond504 (unregistering): Released all slaves
[ 2695.519974][T27767] Call Trace:
[ 2695.519986][T27767]  <TASK>
[ 2695.532378][T27767]  dump_stack_lvl+0x125/0x1b0
[ 2695.537096][T27767]  dump_header+0x103/0x900
[ 2695.541563][T27767]  oom_kill_process+0x270/0xa60
[ 2695.546806][T27767]  out_of_memory+0x344/0x16c0
[ 2695.551712][T27767]  ? oom_killer_disable+0x2d0/0x2d0
[ 2695.556961][T27767]  ? rcu_read_unlock+0x1c/0x60
[ 2695.561785][T27767]  mem_cgroup_out_of_memory+0x206/0x270
[ 2695.567370][T27767]  ? mem_cgroup_margin+0x130/0x130
[ 2695.572512][T27767]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2695.577943][T27767]  try_charge_memcg+0xcd1/0x11a0
[ 2695.582957][T27767]  ? mem_cgroup_handle_over_high+0x570/0x570
[ 2695.589439][T27767]  ? get_mem_cgroup_from_objcg+0xb5/0x2a0
[ 2695.595200][T27767]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2695.600781][T27767]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2695.606299][T27767]  __memcg_kmem_charge_page+0xdd/0x2a0
[ 2695.611804][T27767]  memcg_charge_kernel_stack+0xc3/0x1f0
[ 2695.617402][T27767]  copy_process+0x1532/0x97b0
[ 2695.622151][T27767]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2695.628181][T27767]  ? page_ext_put+0x43/0xd0
[ 2695.632737][T27767]  ? pidfd_prepare+0x80/0x80
[ 2695.637369][T27767]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2695.644002][T27767]  ? preempt_count_sub+0x160/0x160
[ 2695.649164][T27767]  ? print_usage_bug.part.0+0x550/0x550
[ 2695.654790][T27767]  ? __might_fault+0xe6/0x1a0
[ 2695.659545][T27767]  ? _copy_from_user+0x5d/0xf0
[ 2695.664395][T27767]  kernel_clone+0xfd/0x930
[ 2695.668860][T27767]  ? create_io_thread+0xe0/0xe0
[ 2695.673773][T27767]  __do_sys_clone3+0x1f1/0x260
[ 2695.678591][T27767]  ? __do_sys_clone+0x100/0x100
[ 2695.683508][T27767]  ? do_user_addr_fault+0x663/0x1030
[ 2695.689906][T27767]  do_syscall_64+0xd3/0x250
[ 2695.694442][T27767]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 2695.701293][T27767] RIP: 0033:0x7f212b0a8b99
[ 2695.705739][T27767] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 2695.725453][T27767] RSP: 002b:00007ffc7b20b738 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 2695.733898][T27767] RAX: ffffffffffffffda RBX: 00007f212b051270 RCX: 00007f212b0a8b99
[ 2695.741912][T27767] RDX: 00007f212b051270 RSI: 0000000000000058 RDI: 00007ffc7b20b780
[ 2695.749926][T27767] RBP: 00007f212be566c0 R08: 00007f212be566c0 R09: 00007ffc7b20b867
[ 2695.757933][T27767] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 2695.765945][T27767] R13: 000000000000000b R14: 00007ffc7b20b780 R15: 00007ffc7b20b868
[ 2695.774056][T27767]  </TASK>
[ 2695.787681][T16775] bond503 (unregistering): Released all slaves
[ 2695.801135][T27767] memory: usage 307184kB, limit 307200kB, failcnt 146650
[ 2695.809886][T27767] memory+swap: usage 307508kB, limit 9007199254740988kB, failcnt 0
[ 2695.824327][T16775] bond502 (unregistering): Released all slaves
[ 2695.825989][T27767] kmem: usage 307184kB, limit 9007199254740988kB, failcnt 0
[ 2695.845989][T27767] Memory cgroup stats for /syz3:
[ 2695.846149][T27767] cache 0
[ 2695.854186][T27767] rss 0
[ 2695.856386][T16775] bond501 (unregistering): Released all slaves
[ 2695.857492][T27767] rss_huge 0
[ 2695.866549][T27767] shmem 0
[ 2695.869503][T27767] mapped_file 0
[ 2695.872978][T27767] dirty 0
[ 2695.877261][T27767] writeback 0
[ 2695.882472][T27767] workingset_refault_anon 44364
[ 2695.897698][T27767] workingset_refault_file 1
[ 2695.902298][T27767] swap 331776
[ 2695.904383][T16775] bond500 (unregistering): Released all slaves
[ 2695.905586][T27767] swapcached 0
[ 2695.905598][T27767] pgpgin 169169
[ 2695.919685][T27767] pgpgout 169169
[ 2695.923439][T27767] pgfault 365814
[ 2695.927671][T27767] pgmajfault 42714
[ 2695.931432][T27767] inactive_anon 0
[ 2695.935098][T27767] active_anon 0
[ 2695.939448][T27767] inactive_file 0
[ 2695.943115][T27767] active_file 0
[ 2695.947180][T27767] unevictable 0
[ 2695.950761][T27767] hierarchical_memory_limit 314572800
[ 2695.956860][T27767] hierarchical_memsw_limit 9223372036854771712
[ 2695.958305][T16775] bond499 (unregistering): Released all slaves
[ 2695.963030][T27767] total_cache 0
[ 2695.963042][T27767] total_rss 0
[ 2695.987925][T16775] bond498 (unregistering): Released all slaves
[ 2695.995739][T27767] total_rss_huge 0
[ 2696.014771][T16775] bond497 (unregistering): Released all slaves
[ 2696.015983][T27767] total_shmem 0
[ 2696.024471][T27767] total_mapped_file 0
[ 2696.039407][T16775] bond496 (unregistering): Released all slaves
[ 2696.046167][T27767] total_dirty 0
[ 2696.049813][T27767] total_writeback 0
[ 2696.053637][T27767] total_workingset_refault_anon 44364
[ 2696.061394][T27767] total_workingset_refault_file 1
[ 2696.069440][T16775] bond495 (unregistering): Released all slaves
[ 2696.076340][T27767] total_swap 331776
[ 2696.080177][T27767] total_swapcached 0
[ 2696.084084][T27767] total_pgpgin 169169
[ 2696.089426][T27767] total_pgpgout 169169
[ 2696.093542][T27767] total_pgfault 365814
[ 2696.098499][T27767] total_pgmajfault 42714
[ 2696.102767][T27767] total_inactive_anon 0
[ 2696.111342][T27767] total_active_anon 0
[ 2696.115371][T27767] total_inactive_file 0
[ 2696.119939][T27767] total_active_file 0
[ 2696.124217][T27767] total_unevictable 0
[ 2696.128320][T27767] anon_cost 0
[ 2696.131626][T27767] file_cost 0
19:48:47 executing program 3:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x32}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000280)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000240)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=@newlink={0x48, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0xe403, r2}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @veth={{0x9}, {0x18, 0x2, 0x0, 0x1, @val=@VETH_INFO_PEER={0x14}}}}]}, 0x48}, 0x1, 0x232}, 0x0)

[ 2696.134921][T27767] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=27767,uid=0
[ 2696.140343][T16775] bond494 (unregistering): Released all slaves
[ 2696.151116][T27767] Memory cgroup out of memory: Killed process 27767 (syz-executor.3) total-vm:54504kB, anon-rss:380kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 2696.238082][T16775] bond493 (unregistering): Released all slaves
[ 2696.285086][T16775] bond492 (unregistering): Released all slaves
[ 2696.314229][T16775] bond491 (unregistering): Released all slaves
[ 2696.343678][T16775] bond490 (unregistering): Released all slaves
[ 2696.386757][T16775] bond489 (unregistering): Released all slaves
[ 2696.442627][T16775] bond488 (unregistering): Released all slaves
[ 2696.473496][T16775] bond487 (unregistering): Released all slaves
[ 2696.518478][T16775] bond486 (unregistering): Released all slaves
[ 2696.581485][T16775] bond485 (unregistering): Released all slaves
[ 2696.622371][T27768] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2696.624306][T16775] bond484 (unregistering): Released all slaves
[ 2696.633587][T27768] CPU: 1 PID: 27768 Comm: syz-executor.3 Not tainted 6.7.0-syzkaller-12291-g435e202d645c #0
[ 2696.649345][T27768] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 2696.659431][T27768] Call Trace:
[ 2696.662733][T27768]  <TASK>
[ 2696.665772][T27768]  dump_stack_lvl+0x125/0x1b0
[ 2696.670521][T27768]  dump_header+0x103/0x900
[ 2696.675013][T27768]  oom_kill_process+0x270/0xa60
[ 2696.679925][T27768]  out_of_memory+0x344/0x16c0
[ 2696.684665][T27768]  ? oom_killer_disable+0x2d0/0x2d0
[ 2696.689924][T27768]  ? rcu_read_unlock+0x1c/0x60
[ 2696.694746][T27768]  mem_cgroup_out_of_memory+0x206/0x270
[ 2696.700339][T27768]  ? mem_cgroup_margin+0x130/0x130
[ 2696.705569][T27768]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2696.711004][T27768]  try_charge_memcg+0xcd1/0x11a0
[ 2696.716091][T27768]  ? mem_cgroup_handle_over_high+0x570/0x570
[ 2696.722123][T27768]  ? get_mem_cgroup_from_objcg+0xb5/0x2a0
[ 2696.727885][T27768]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2696.733314][T27768]  __memcg_kmem_charge_page+0xdd/0x2a0
[ 2696.738818][T27768]  memcg_charge_kernel_stack+0xc3/0x1f0
[ 2696.744411][T27768]  copy_process+0x1532/0x97b0
[ 2696.749145][T27768]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2696.755157][T27768]  ? page_ext_put+0x43/0xd0
[ 2696.759710][T27768]  ? pidfd_prepare+0x80/0x80
[ 2696.764328][T27768]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2696.769814][T27768]  ? preempt_count_sub+0x160/0x160
[ 2696.774961][T27768]  ? print_usage_bug.part.0+0x550/0x550
[ 2696.776393][T26667] Bluetooth: hci14: command 0x041b tx timeout
[ 2696.780533][T27768]  ? __might_fault+0xe6/0x1a0
[ 2696.791363][T27768]  ? _copy_from_user+0x5d/0xf0
[ 2696.796177][T27768]  kernel_clone+0xfd/0x930
[ 2696.800651][T27768]  ? create_io_thread+0xe0/0xe0
[ 2696.805585][T27768]  __do_sys_clone3+0x1f1/0x260
[ 2696.810453][T27768]  ? __do_sys_clone+0x100/0x100
[ 2696.815407][T27768]  ? do_user_addr_fault+0x663/0x1030
[ 2696.820777][T27768]  do_syscall_64+0xd3/0x250
[ 2696.825328][T27768]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 2696.831256][T27768] RIP: 0033:0x7f212b0a8b99
[ 2696.835690][T27768] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 2696.855702][T27768] RSP: 002b:00007ffc7b20b738 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 2696.864135][T27768] RAX: ffffffffffffffda RBX: 00007f212b051270 RCX: 00007f212b0a8b99
[ 2696.872153][T27768] RDX: 00007f212b051270 RSI: 0000000000000058 RDI: 00007ffc7b20b780
[ 2696.880162][T27768] RBP: 00007f212be566c0 R08: 00007f212be566c0 R09: 00007ffc7b20b867
[ 2696.888613][T27768] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 2696.896620][T27768] R13: 000000000000000b R14: 00007ffc7b20b780 R15: 00007ffc7b20b868
[ 2696.904639][T27768]  </TASK>
[ 2696.911923][T16775] bond483 (unregistering): Released all slaves
[ 2696.926083][T27768] memory: usage 307184kB, limit 307200kB, failcnt 147042
[ 2696.933165][T27768] memory+swap: usage 307528kB, limit 9007199254740988kB, failcnt 0
[ 2696.945026][T16775] bond482 (unregistering): Released all slaves
[ 2696.965596][T27768] kmem: usage 307172kB, limit 9007199254740988kB, failcnt 0
[ 2696.973432][T27768] Memory cgroup stats for /syz3:
[ 2696.973598][T27768] cache 0
[ 2696.975428][T16775] bond481 (unregistering): Released all slaves
[ 2696.978980][T27768] rss 12288
[ 2696.991916][T27768] rss_huge 0
[ 2696.995224][T27768] shmem 0
[ 2697.006001][T27768] mapped_file 0
[ 2697.014078][T16775] bond480 (unregistering): Released all slaves
[ 2697.015999][T27768] dirty 0
[ 2697.023261][T27768] writeback 0
[ 2697.046095][T27768] workingset_refault_anon 44516
[ 2697.051041][T27768] workingset_refault_file 1
[ 2697.054292][T16775] bond479 (unregistering): Released all slaves
[ 2697.055550][T27768] swap 352256
[ 2697.055562][T27768] swapcached 12288
[ 2697.055571][T27768] pgpgin 169332
[ 2697.055581][T27768] pgpgout 169329
[ 2697.055590][T27768] pgfault 366059
[ 2697.079950][T27768] pgmajfault 42854
[ 2697.083690][T27768] inactive_anon 0
[ 2697.087466][T27768] active_anon 12288
[ 2697.091487][T27768] inactive_file 0
[ 2697.095144][T27768] active_file 0
[ 2697.098813][T27768] unevictable 0
[ 2697.102321][T27768] hierarchical_memory_limit 314572800
[ 2697.107820][T27768] hierarchical_memsw_limit 9223372036854771712
[ 2697.113763][T16775] bond478 (unregistering): Released all slaves
[ 2697.115826][T27768] total_cache 0
[ 2697.123772][T27768] total_rss 12288
[ 2697.127508][T27768] total_rss_huge 0
[ 2697.131250][T27768] total_shmem 0
[ 2697.134725][T27768] total_mapped_file 0
[ 2697.143164][T27768] total_dirty 0
[ 2697.146777][T27768] total_writeback 0
[ 2697.150609][T27768] total_workingset_refault_anon 44516
[ 2697.156105][T27768] total_workingset_refault_file 1
[ 2697.161419][T27768] total_swap 352256
[ 2697.166160][T27768] total_swapcached 12288
[ 2697.170526][T27768] total_pgpgin 169332
[ 2697.174534][T27768] total_pgpgout 169329
[ 2697.187671][T16775] bond477 (unregistering): Released all slaves
[ 2697.196248][T27768] total_pgfault 366059
[ 2697.200477][T27768] total_pgmajfault 42854
[ 2697.204742][T27768] total_inactive_anon 0
[ 2697.213533][T16775] bond476 (unregistering): Released all slaves
[ 2697.226245][T27768] total_active_anon 12288
[ 2697.230634][T27768] total_inactive_file 0
[ 2697.234814][T27768] total_active_file 0
[ 2697.244758][T16775] bond475 (unregistering): Released all slaves
[ 2697.253841][T27768] total_unevictable 0
[ 2697.266012][T27768] anon_cost 0
[ 2697.269350][T27768] file_cost 0
[ 2697.272660][T27768] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=27768,uid=0
[ 2697.289048][T27768] Memory cgroup out of memory: Killed process 27768 (syz-executor.3) total-vm:54504kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 2697.291150][T16775] bond474 (unregistering): Released all slaves
[ 2697.336727][T16775] bond473 (unregistering): Released all slaves
19:48:49 executing program 3:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x32}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000280)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000240)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=@newlink={0x48, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0xe403, r2}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @veth={{0x9}, {0x18, 0x2, 0x0, 0x1, @val=@VETH_INFO_PEER={0x14}}}}]}, 0x48}, 0x1, 0x24a}, 0x0)

[ 2697.378873][T16775] bond472 (unregistering): Released all slaves
[ 2697.417837][T16775] bond471 (unregistering): Released all slaves
[ 2697.484312][T16775] bond470 (unregistering): Released all slaves
[ 2697.533043][T16775] bond469 (unregistering): Released all slaves
[ 2697.583208][T16775] bond468 (unregistering): Released all slaves
[ 2697.629796][T16775] bond467 (unregistering): Released all slaves
[ 2697.669312][T16775] bond466 (unregistering): Released all slaves
[ 2697.718842][T16775] bond465 (unregistering): Released all slaves
[ 2697.755674][T16775] bond464 (unregistering): Released all slaves
[ 2697.812313][T16775] bond463 (unregistering): Released all slaves
[ 2697.823555][T27769] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2697.853648][T16775] bond462 (unregistering): Released all slaves
[ 2697.866259][T27769] CPU: 1 PID: 27769 Comm: syz-executor.3 Not tainted 6.7.0-syzkaller-12291-g435e202d645c #0
[ 2697.877371][T27769] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 2697.887458][T27769] Call Trace:
[ 2697.890757][T27769]  <TASK>
[ 2697.893704][T27769]  dump_stack_lvl+0x125/0x1b0
[ 2697.898424][T27769]  dump_header+0x103/0x900
[ 2697.902892][T27769]  oom_kill_process+0x270/0xa60
[ 2697.907799][T27769]  out_of_memory+0x344/0x16c0
[ 2697.912549][T27769]  ? oom_killer_disable+0x2d0/0x2d0
[ 2697.917788][T27769]  ? rcu_read_unlock+0x1c/0x60
[ 2697.922581][T27769]  mem_cgroup_out_of_memory+0x206/0x270
[ 2697.928139][T27769]  ? mem_cgroup_margin+0x130/0x130
[ 2697.933259][T27769]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2697.938659][T27769]  try_charge_memcg+0xcd1/0x11a0
[ 2697.943620][T27769]  ? mem_cgroup_handle_over_high+0x570/0x570
[ 2697.949617][T27769]  ? get_mem_cgroup_from_objcg+0xb5/0x2a0
[ 2697.955355][T27769]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2697.965525][T27769]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2697.970921][T27769]  __memcg_kmem_charge_page+0xdd/0x2a0
[ 2697.976402][T27769]  memcg_charge_kernel_stack+0xc3/0x1f0
[ 2697.981969][T27769]  copy_process+0x1532/0x97b0
[ 2697.986673][T27769]  ? hlock_class+0x4e/0x130
[ 2697.991194][T27769]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2697.997189][T27769]  ? hlock_class+0x4e/0x130
[ 2698.001721][T27769]  ? pidfd_prepare+0x80/0x80
[ 2698.006339][T27769]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2698.011726][T27769]  ? preempt_count_sub+0x160/0x160
[ 2698.016847][T27769]  ? __lock_acquire+0x1502/0x3b30
[ 2698.021882][T27769]  ? __might_fault+0xe6/0x1a0
[ 2698.026594][T27769]  ? _copy_from_user+0x5d/0xf0
[ 2698.031382][T27769]  kernel_clone+0xfd/0x930
[ 2698.035851][T27769]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2698.041844][T27769]  ? create_io_thread+0xe0/0xe0
[ 2698.046729][T27769]  ? find_held_lock+0x2d/0x110
[ 2698.051525][T27769]  __do_sys_clone3+0x1f1/0x260
[ 2698.056306][T27769]  ? __do_sys_clone+0x100/0x100
[ 2698.061337][T27769]  do_syscall_64+0xd3/0x250
[ 2698.065862][T27769]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 2698.071772][T27769] RIP: 0033:0x7f212b0a8b99
[ 2698.076195][T27769] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 2698.095822][T27769] RSP: 002b:00007ffc7b20b738 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 2698.104249][T27769] RAX: ffffffffffffffda RBX: 00007f212b051270 RCX: 00007f212b0a8b99
[ 2698.112240][T27769] RDX: 00007f212b051270 RSI: 0000000000000058 RDI: 00007ffc7b20b780
[ 2698.120230][T27769] RBP: 00007f212be566c0 R08: 00007f212be566c0 R09: 00007ffc7b20b867
[ 2698.128237][T27769] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 2698.136236][T27769] R13: 000000000000000b R14: 00007ffc7b20b780 R15: 00007ffc7b20b868
[ 2698.144237][T27769]  </TASK>
[ 2698.152268][T16775] bond461 (unregistering): Released all slaves
[ 2698.176406][T16775] bond460 (unregistering): Released all slaves
[ 2698.199119][T16775] bond459 (unregistering): Released all slaves
[ 2698.215449][T27769] memory: usage 307200kB, limit 307200kB, failcnt 147495
[ 2698.223152][T27769] memory+swap: usage 307564kB, limit 9007199254740988kB, failcnt 0
[ 2698.239525][T16775] bond458 (unregistering): Released all slaves
[ 2698.251957][T27769] kmem: usage 307184kB, limit 9007199254740988kB, failcnt 0
[ 2698.262509][T27769] Memory cgroup stats for /syz3:
[ 2698.262638][T27769] cache 0
[ 2698.262654][T16775] bond457 (unregistering): Released all slaves
[ 2698.273306][T27769] rss 0
[ 2698.280404][T27769] rss_huge 0
[ 2698.283632][T27769] shmem 0
[ 2698.287225][T27769] mapped_file 0
[ 2698.290709][T27769] dirty 0
[ 2698.293655][T27769] writeback 0
[ 2698.297661][T27769] workingset_refault_anon 44650
[ 2698.302547][T27769] workingset_refault_file 1
[ 2698.307933][T27769] swap 372736
[ 2698.311348][T27769] swapcached 0
[ 2698.314735][T27769] pgpgin 169478
[ 2698.319027][T27769] pgpgout 169478
[ 2698.320322][T16775] bond456 (unregistering): Released all slaves
[ 2698.322584][T27769] pgfault 366272
[ 2698.322596][T27769] pgmajfault 42974
[ 2698.341310][T27769] inactive_anon 0
[ 2698.345001][T27769] active_anon 0
[ 2698.349508][T27769] inactive_file 0
[ 2698.353175][T27769] active_file 0
[ 2698.357241][T27769] unevictable 0
[ 2698.360731][T27769] hierarchical_memory_limit 314572800
[ 2698.368243][T27769] hierarchical_memsw_limit 9223372036854771712
[ 2698.370474][T16775] bond455 (unregistering): Released all slaves
[ 2698.374410][T27769] total_cache 0
[ 2698.374422][T27769] total_rss 0
[ 2698.391081][T27769] total_rss_huge 0
[ 2698.394844][T27769] total_shmem 0
[ 2698.398896][T27769] total_mapped_file 0
[ 2698.402902][T27769] total_dirty 0
[ 2698.406989][T27769] total_writeback 0
[ 2698.410819][T27769] total_workingset_refault_anon 44650
[ 2698.416795][T27769] total_workingset_refault_file 1
[ 2698.421895][T27769] total_swap 372736
[ 2698.423895][T16775] bond454 (unregistering): Released all slaves
[ 2698.425696][T27769] total_swapcached 0
[ 2698.425708][T27769] total_pgpgin 169478
[ 2698.441755][T27769] total_pgpgout 169478
[ 2698.446318][T27769] total_pgfault 366272
[ 2698.450416][T27769] total_pgmajfault 42974
[ 2698.479949][T27769] total_inactive_anon 0
[ 2698.486252][T27769] total_active_anon 0
[ 2698.490298][T27769] total_inactive_file 0
[ 2698.495264][T27769] total_active_file 0
[ 2698.499757][T16775] bond453 (unregistering): Released all slaves
[ 2698.516563][T27769] total_unevictable 0
[ 2698.520605][T27769] anon_cost 0
[ 2698.524515][T27769] file_cost 0
[ 2698.528723][T27769] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=27769,uid=0
[ 2698.536058][T16775] bond452 (unregistering): Released all slaves
[ 2698.566710][T27769] Memory cgroup out of memory: Killed process 27769 (syz-executor.3) total-vm:54504kB, anon-rss:508kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 2698.586548][T16775] bond451 (unregistering): Released all slaves
[ 2698.611246][T16775] bond450 (unregistering): Released all slaves
[ 2698.658360][T16775] bond449 (unregistering): Released all slaves
19:48:50 executing program 3:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x32}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000280)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000240)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=@newlink={0x48, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0xe403, r2}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @veth={{0x9}, {0x18, 0x2, 0x0, 0x1, @val=@VETH_INFO_PEER={0x14}}}}]}, 0x48}, 0x1, 0x262}, 0x0)

[ 2698.711689][T16775] bond448 (unregistering): Released all slaves
[ 2698.760656][T16775] bond447 (unregistering): Released all slaves
[ 2698.812971][T16775] bond446 (unregistering): Released all slaves
[ 2698.836940][T16775] bond445 (unregistering): Released all slaves
[ 2698.856036][T27770] Bluetooth: hci14: command 0x040f tx timeout
[ 2698.889353][T16775] bond444 (unregistering): Released all slaves
[ 2698.931644][T16775] bond443 (unregistering): Released all slaves
[ 2698.969369][T16775] bond442 (unregistering): Released all slaves
[ 2698.998939][T16775] bond441 (unregistering): Released all slaves
[ 2699.051741][T16775] bond440 (unregistering): Released all slaves
[ 2699.104749][T16775] bond439 (unregistering): Released all slaves
[ 2699.121191][T27771] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2699.131726][T27771] CPU: 1 PID: 27771 Comm: syz-executor.3 Not tainted 6.7.0-syzkaller-12291-g435e202d645c #0
[ 2699.133740][T16775] bond438 (unregistering): Released all slaves
[ 2699.141810][T27771] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 2699.141825][T27771] Call Trace:
[ 2699.141835][T27771]  <TASK>
[ 2699.141845][T27771]  dump_stack_lvl+0x125/0x1b0
[ 2699.141879][T27771]  dump_header+0x103/0x900
[ 2699.141916][T27771]  oom_kill_process+0x270/0xa60
[ 2699.141953][T27771]  out_of_memory+0x344/0x16c0
[ 2699.141995][T27771]  ? oom_killer_disable+0x2d0/0x2d0
[ 2699.142034][T27771]  ? rcu_read_unlock+0x1c/0x60
[ 2699.142076][T27771]  mem_cgroup_out_of_memory+0x206/0x270
[ 2699.142104][T27771]  ? mem_cgroup_margin+0x130/0x130
[ 2699.142127][T27771]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2699.142189][T27771]  try_charge_memcg+0xcd1/0x11a0
[ 2699.142225][T27771]  ? mem_cgroup_handle_over_high+0x570/0x570
[ 2699.220755][T27771]  ? get_mem_cgroup_from_objcg+0xb5/0x2a0
[ 2699.226498][T27771]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2699.231885][T27771]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2699.237369][T27771]  __memcg_kmem_charge_page+0xdd/0x2a0
[ 2699.243583][T27771]  memcg_charge_kernel_stack+0xc3/0x1f0
[ 2699.249179][T27771]  copy_process+0x1532/0x97b0
[ 2699.253920][T27771]  ? hlock_class+0x4e/0x130
[ 2699.258459][T27771]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2699.264461][T27771]  ? hlock_class+0x4e/0x130
[ 2699.269857][T27771]  ? pidfd_prepare+0x80/0x80
[ 2699.274464][T27771]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2699.279847][T27771]  ? preempt_count_sub+0x160/0x160
[ 2699.284971][T27771]  ? __lock_acquire+0x1502/0x3b30
[ 2699.290035][T27771]  ? __might_fault+0xe6/0x1a0
[ 2699.294781][T27771]  ? _copy_from_user+0x5d/0xf0
[ 2699.299579][T27771]  kernel_clone+0xfd/0x930
[ 2699.304013][T27771]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2699.310003][T27771]  ? create_io_thread+0xe0/0xe0
[ 2699.314879][T27771]  ? find_held_lock+0x2d/0x110
[ 2699.319667][T27771]  __do_sys_clone3+0x1f1/0x260
[ 2699.324470][T27771]  ? __do_sys_clone+0x100/0x100
[ 2699.329387][T27771]  do_syscall_64+0xd3/0x250
[ 2699.333914][T27771]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 2699.339816][T27771] RIP: 0033:0x7f212b0a8b99
[ 2699.344343][T27771] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 2699.363965][T27771] RSP: 002b:00007ffc7b20b738 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 2699.372504][T27771] RAX: ffffffffffffffda RBX: 00007f212b051270 RCX: 00007f212b0a8b99
[ 2699.380493][T27771] RDX: 00007f212b051270 RSI: 0000000000000058 RDI: 00007ffc7b20b780
[ 2699.388564][T27771] RBP: 00007f212be566c0 R08: 00007f212be566c0 R09: 00007ffc7b20b867
[ 2699.396544][T27771] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 2699.404524][T27771] R13: 000000000000000b R14: 00007ffc7b20b780 R15: 00007ffc7b20b868
[ 2699.412706][T27771]  </TASK>
[ 2699.420265][T27771] memory: usage 307200kB, limit 307200kB, failcnt 147932
[ 2699.427447][T27771] memory+swap: usage 307520kB, limit 9007199254740988kB, failcnt 0
[ 2699.435358][T27771] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0
[ 2699.443249][T27771] Memory cgroup stats for /syz3:
[ 2699.443433][T27771] cache 0
[ 2699.451700][T27771] rss 0
[ 2699.454485][T27771] rss_huge 0
[ 2699.458002][T27771] shmem 0
[ 2699.460952][T27771] mapped_file 0
[ 2699.471065][T16775] bond437 (unregistering): Released all slaves
[ 2699.486393][T27771] dirty 0
[ 2699.489399][T27771] writeback 0
[ 2699.492698][T27771] workingset_refault_anon 44775
[ 2699.506048][T27771] workingset_refault_file 1
[ 2699.510758][T27771] swap 327680
[ 2699.514065][T27771] swapcached 0
[ 2699.517840][T27771] pgpgin 169615
[ 2699.519836][T16775] bond436 (unregistering): Released all slaves
[ 2699.521399][T27771] pgpgout 169615
[ 2699.521411][T27771] pgfault 366474
[ 2699.546018][T27771] pgmajfault 43088
[ 2699.549837][T27771] inactive_anon 0
[ 2699.551835][T16775] bond435 (unregistering): Released all slaves
[ 2699.553473][T27771] active_anon 0
[ 2699.563596][T27771] inactive_file 0
[ 2699.567696][T27771] active_file 0
[ 2699.571220][T27771] unevictable 0
[ 2699.574691][T27771] hierarchical_memory_limit 314572800
[ 2699.580201][T27771] hierarchical_memsw_limit 9223372036854771712
[ 2699.586441][T27771] total_cache 0
[ 2699.589924][T27771] total_rss 0
[ 2699.593317][T27771] total_rss_huge 0
[ 2699.597203][T27771] total_shmem 0
[ 2699.600676][T27771] total_mapped_file 0
[ 2699.604669][T27771] total_dirty 0
[ 2699.608397][T27771] total_writeback 0
[ 2699.612263][T27771] total_workingset_refault_anon 44775
[ 2699.614224][T16775] bond434 (unregistering): Released all slaves
[ 2699.617783][T27771] total_workingset_refault_file 1
[ 2699.617797][T27771] total_swap 327680
[ 2699.617807][T27771] total_swapcached 0
[ 2699.617817][T27771] total_pgpgin 169615
[ 2699.617827][T27771] total_pgpgout 169615
[ 2699.617837][T27771] total_pgfault 366474
[ 2699.617847][T27771] total_pgmajfault 43088
[ 2699.617857][T27771] total_inactive_anon 0
[ 2699.617866][T27771] total_active_anon 0
[ 2699.617876][T27771] total_inactive_file 0
[ 2699.617886][T27771] total_active_file 0
[ 2699.617896][T27771] total_unevictable 0
[ 2699.617906][T27771] anon_cost 0
[ 2699.617915][T27771] file_cost 0
[ 2699.617926][T27771] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=27771,uid=0
19:48:51 executing program 3:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x32}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000280)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000240)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=@newlink={0x48, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0xe403, r2}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @veth={{0x9}, {0x18, 0x2, 0x0, 0x1, @val=@VETH_INFO_PEER={0x14}}}}]}, 0x48}, 0x1, 0x282}, 0x0)

[ 2699.618049][T27771] Memory cgroup out of memory: Killed process 27771 (syz-executor.3) total-vm:54504kB, anon-rss:380kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 2699.755405][T16775] bond433 (unregistering): Released all slaves
[ 2699.787386][T16775] bond432 (unregistering): Released all slaves
[ 2699.840871][T16775] bond431 (unregistering): Released all slaves
[ 2699.888323][T16775] bond430 (unregistering): Released all slaves
[ 2699.962881][T16775] bond429 (unregistering): Released all slaves
[ 2699.987415][T16775] bond428 (unregistering): Released all slaves
[ 2700.012129][T16775] bond427 (unregistering): Released all slaves
[ 2700.035809][T16775] bond426 (unregistering): Released all slaves
[ 2700.082506][T16775] bond425 (unregistering): Released all slaves
[ 2700.118595][T27772] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2700.129030][T27772] CPU: 0 PID: 27772 Comm: syz-executor.3 Not tainted 6.7.0-syzkaller-12291-g435e202d645c #0
[ 2700.139129][T27772] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 2700.149293][T27772] Call Trace:
[ 2700.152576][T27772]  <TASK>
[ 2700.155527][T27772]  dump_stack_lvl+0x125/0x1b0
[ 2700.160227][T27772]  dump_header+0x103/0x900
[ 2700.164689][T27772]  oom_kill_process+0x270/0xa60
[ 2700.169589][T27772]  out_of_memory+0x344/0x16c0
[ 2700.174317][T27772]  ? oom_killer_disable+0x2d0/0x2d0
[ 2700.179556][T27772]  ? rcu_read_unlock+0x1c/0x60
[ 2700.184350][T27772]  mem_cgroup_out_of_memory+0x206/0x270
[ 2700.189932][T27772]  ? mem_cgroup_margin+0x130/0x130
[ 2700.195075][T27772]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2700.200491][T27772]  try_charge_memcg+0xcd1/0x11a0
[ 2700.205554][T27772]  ? mem_cgroup_handle_over_high+0x570/0x570
[ 2700.211570][T27772]  ? get_mem_cgroup_from_objcg+0xb5/0x2a0
[ 2700.217328][T27772]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2700.222733][T27772]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2700.228130][T27772]  __memcg_kmem_charge_page+0xdd/0x2a0
[ 2700.233606][T27772]  memcg_charge_kernel_stack+0xc3/0x1f0
[ 2700.239166][T27772]  copy_process+0x527/0x97b0
[ 2700.243785][T27772]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2700.250843][T27772]  ? page_ext_put+0x43/0xd0
[ 2700.257202][T27772]  ? pidfd_prepare+0x80/0x80
[ 2700.261813][T27772]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2700.267251][T27772]  ? preempt_count_sub+0x160/0x160
[ 2700.272397][T27772]  ? print_usage_bug.part.0+0x550/0x550
[ 2700.277966][T27772]  ? __might_fault+0xe6/0x1a0
[ 2700.282664][T27772]  ? _copy_from_user+0x5d/0xf0
[ 2700.287451][T27772]  kernel_clone+0xfd/0x930
[ 2700.291897][T27772]  ? create_io_thread+0xe0/0xe0
[ 2700.296781][T27772]  __do_sys_clone3+0x1f1/0x260
[ 2700.301562][T27772]  ? __do_sys_clone+0x100/0x100
[ 2700.306436][T27772]  ? do_user_addr_fault+0x663/0x1030
[ 2700.311758][T27772]  do_syscall_64+0xd3/0x250
[ 2700.316738][T27772]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 2700.322660][T27772] RIP: 0033:0x7f212b0a8b99
[ 2700.327196][T27772] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 2700.346923][T27772] RSP: 002b:00007ffc7b20b738 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 2700.355381][T27772] RAX: ffffffffffffffda RBX: 00007f212b051270 RCX: 00007f212b0a8b99
[ 2700.363385][T27772] RDX: 00007f212b051270 RSI: 0000000000000058 RDI: 00007ffc7b20b780
[ 2700.371401][T27772] RBP: 00007f212be566c0 R08: 00007f212be566c0 R09: 00007ffc7b20b867
[ 2700.379380][T27772] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 2700.387358][T27772] R13: 000000000000000b R14: 00007ffc7b20b780 R15: 00007ffc7b20b868
[ 2700.395359][T27772]  </TASK>
[ 2700.410540][T27772] memory: usage 307200kB, limit 307200kB, failcnt 148297
[ 2700.418635][T27772] memory+swap: usage 307520kB, limit 9007199254740988kB, failcnt 0
[ 2700.426616][T27772] kmem: usage 307196kB, limit 9007199254740988kB, failcnt 0
[ 2700.434039][T27772] Memory cgroup stats for /syz3:
[ 2700.434217][T27772] cache 0
[ 2700.442236][T27772] rss 4096
[ 2700.445273][T27772] rss_huge 0
[ 2700.449844][T27772] shmem 0
[ 2700.453959][T27772] mapped_file 0
[ 2700.459182][T27772] dirty 0
[ 2700.462246][T27772] writeback 0
[ 2700.468127][T16775] bond424 (unregistering): Released all slaves
[ 2700.517024][T27772] workingset_refault_anon 44886
[ 2700.521932][T27772] workingset_refault_file 1
[ 2700.536703][T27770] Bluetooth: hci8: command 0x0406 tx timeout
[ 2700.542870][T27770] Bluetooth: hci7: command 0x0406 tx timeout
[ 2700.546100][T27772] swap 327680
[ 2700.568801][T16775] bond423 (unregistering): Released all slaves
[ 2700.591879][T27772] swapcached 0
[ 2700.595319][T27772] pgpgin 169739
[ 2700.620455][T27772] pgpgout 169738
[ 2700.626366][T16775] bond422 (unregistering): Released all slaves
[ 2700.638136][T27772] pgfault 366665
[ 2700.641751][T27772] pgmajfault 43195
[ 2700.645488][T27772] inactive_anon 0
[ 2700.653580][T16775] bond421 (unregistering): Released all slaves
[ 2700.674989][T27772] active_anon 4096
[ 2700.679542][T27772] inactive_file 0
[ 2700.681209][T16775] bond420 (unregistering): Released all slaves
[ 2700.683191][T27772] active_file 0
[ 2700.683203][T27772] unevictable 0
[ 2700.699223][T27772] hierarchical_memory_limit 314572800
[ 2700.704630][T27772] hierarchical_memsw_limit 9223372036854771712
[ 2700.714155][T27772] total_cache 0
[ 2700.718185][T27772] total_rss 4096
[ 2700.721768][T27772] total_rss_huge 0
[ 2700.725510][T27772] total_shmem 0
[ 2700.730029][T27772] total_mapped_file 0
[ 2700.734140][T27772] total_dirty 0
[ 2700.744604][T16775] bond419 (unregistering): Released all slaves
[ 2700.747104][T27772] total_writeback 0
[ 2700.754732][T27772] total_workingset_refault_anon 44886
[ 2700.777131][T27772] total_workingset_refault_file 1
[ 2700.782337][T27772] total_swap 327680
[ 2700.786977][T27772] total_swapcached 0
[ 2700.790890][T27772] total_pgpgin 169739
[ 2700.794891][T27772] total_pgpgout 169738
[ 2700.801574][T16775] bond418 (unregistering): Released all slaves
[ 2700.802764][T27772] total_pgfault 366665
[ 2700.812143][T27772] total_pgmajfault 43195
[ 2700.816682][T27772] total_inactive_anon 0
[ 2700.820968][T27772] total_active_anon 4096
[ 2700.825306][T27772] total_inactive_file 0
[ 2700.829666][T27772] total_active_file 0
[ 2700.833771][T27772] total_unevictable 0
[ 2700.838110][T27772] anon_cost 0
[ 2700.841552][T27772] file_cost 0
[ 2700.844942][T27772] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=27772,uid=0
[ 2700.862816][T27772] Memory cgroup out of memory: Killed process 27772 (syz-executor.3) total-vm:54504kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 2700.863296][T16775] bond417 (unregistering): Released all slaves
19:48:52 executing program 3:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x32}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000280)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000240)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=@newlink={0x48, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0xe403, r2}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @veth={{0x9}, {0x18, 0x2, 0x0, 0x1, @val=@VETH_INFO_PEER={0x14}}}}]}, 0x48}, 0x1, 0x284}, 0x0)

[ 2700.936564][ T5094] Bluetooth: hci14: command 0x0419 tx timeout
[ 2700.953754][T16775] bond416 (unregistering): Released all slaves
[ 2700.977276][T16775] bond415 (unregistering): Released all slaves
[ 2701.003074][T16775] bond414 (unregistering): Released all slaves
[ 2701.045188][T16775] bond413 (unregistering): Released all slaves
[ 2701.098017][T16775] bond412 (unregistering): Released all slaves
[ 2701.147616][T16775] bond411 (unregistering): Released all slaves
[ 2701.202740][T16775] bond410 (unregistering): Released all slaves
[ 2701.252192][T16775] bond409 (unregistering): Released all slaves
[ 2701.299261][T16775] bond408 (unregistering): Released all slaves
[ 2701.332871][T16775] bond407 (unregistering): Released all slaves
[ 2701.363987][T16775] bond406 (unregistering): Released all slaves
[ 2701.391983][ T5091] syz-executor.3 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[ 2701.406200][T16775] bond405 (unregistering): Released all slaves
[ 2701.414263][ T5091] CPU: 1 PID: 5091 Comm: syz-executor.3 Not tainted 6.7.0-syzkaller-12291-g435e202d645c #0
[ 2701.424552][ T5091] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 2701.434638][ T5091] Call Trace:
[ 2701.437942][ T5091]  <TASK>
[ 2701.440894][ T5091]  dump_stack_lvl+0x125/0x1b0
[ 2701.445615][ T5091]  dump_header+0x103/0x900
[ 2701.450076][ T5091]  oom_kill_process+0x270/0xa60
[ 2701.454973][ T5091]  out_of_memory+0x344/0x16c0
[ 2701.459692][ T5091]  ? mutex_trylock+0xa0/0x130
[ 2701.464426][ T5091]  ? oom_killer_disable+0x2d0/0x2d0
[ 2701.469666][ T5091]  ? rcu_read_unlock+0x1c/0x60
[ 2701.474477][ T5091]  mem_cgroup_out_of_memory+0x206/0x270
[ 2701.480054][ T5091]  ? mem_cgroup_margin+0x130/0x130
[ 2701.485185][ T5091]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2701.490588][ T5091]  try_charge_memcg+0xcd1/0x11a0
[ 2701.495571][ T5091]  ? mem_cgroup_handle_over_high+0x570/0x570
[ 2701.501597][ T5091]  ? rcu_read_unlock+0x1c/0x60
[ 2701.506405][ T5091]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2701.511810][ T5091]  ? __radix_tree_lookup+0x21f/0x2c0
[ 2701.517143][ T5091]  mem_cgroup_swapin_charge_folio+0x138/0x380
[ 2701.523259][ T5091]  __read_swap_cache_async+0x4e1/0x600
[ 2701.528766][ T5091]  ? filemap_get_incore_folio+0x160/0x160
[ 2701.534519][ T5091]  ? swp_swap_info+0xcf/0x130
[ 2701.539233][ T5091]  ? swapcache_prepare+0x20/0x20
[ 2701.544200][ T5091]  ? hlock_class+0x4e/0x130
[ 2701.548831][ T5091]  ? mark_lock+0xb5/0xc50
[ 2701.553208][ T5091]  swap_cluster_readahead+0x4d4/0x710
[ 2701.558619][ T5091]  ? read_swap_cache_async+0x1a0/0x1a0
[ 2701.564796][ T5091]  ? reacquire_held_locks+0x410/0x4c0
[ 2701.570201][ T5091]  ? xas_descend+0x141/0x4e0
[ 2701.574834][ T5091]  ? filemap_get_entry+0x23e/0x460
[ 2701.579977][ T5091]  swapin_readahead+0x132/0xe60
[ 2701.584864][ T5091]  ? get_swap_device+0x363/0x5e0
[ 2701.589840][ T5091]  ? exit_swap_address_space+0x250/0x250
[ 2701.595490][ T5091]  ? __filemap_get_folio+0x2b0/0xaa0
[ 2701.600799][ T5091]  ? swap_cache_get_folio+0x1dc/0x460
[ 2701.606198][ T5091]  ? get_swap_device+0x245/0x5e0
[ 2701.611165][ T5091]  ? free_pages_and_swap_cache+0xa0/0xa0
[ 2701.616837][ T5091]  ? lock_sync+0x190/0x190
[ 2701.621277][ T5091]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2701.627294][ T5091]  do_swap_page+0x4a6/0x3190
[ 2701.631923][ T5091]  ? rcu_is_watching+0x12/0xb0
[ 2701.636734][ T5091]  ? __pte_offset_map+0x1b9/0x540
[ 2701.641785][ T5091]  ? unmap_mapping_folio+0x3b0/0x3b0
[ 2701.647098][ T5091]  ? pte_offset_map_nolock+0xfa/0x1b0
[ 2701.652498][ T5091]  ? __pte_offset_map+0x540/0x540
[ 2701.657560][ T5091]  __handle_mm_fault+0x13a0/0x4900
[ 2701.662713][ T5091]  ? clear_huge_page+0x2e0/0x2e0
[ 2701.667707][ T5091]  ? find_vma+0x112/0x1b0
[ 2701.672074][ T5091]  ? get_unmapped_area+0x400/0x400
[ 2701.677222][ T5091]  handle_mm_fault+0x47a/0xa10
[ 2701.682023][ T5091]  ? lock_mm_and_find_vma+0xa6/0x580
[ 2701.687349][ T5091]  do_user_addr_fault+0x3f8/0x1030
[ 2701.692496][ T5091]  ? rcu_is_watching+0x12/0xb0
[ 2701.697301][ T5091]  exc_page_fault+0x5d/0xc0
[ 2701.701851][ T5091]  asm_exc_page_fault+0x26/0x30
[ 2701.706748][ T5091] RIP: 0010:__get_user_8+0x11/0x20
[ 2701.711927][ T5091] Code: 48 c1 fa 3f 48 09 d0 0f 01 cb 8b 10 31 c0 0f 01 ca c3 0f 1f 80 00 00 00 00 f3 0f 1e fa 48 89 c2 48 c1 fa 3f 48 09 d0 0f 01 cb <48> 8b 10 31 c0 0f 01 ca c3 66 0f 1f 44 00 00 f3 0f 1e fa 0f 01 cb
[ 2701.731581][ T5091] RSP: 0018:ffffc900047cfdf8 EFLAGS: 00050202
[ 2701.737681][ T5091] RAX: 0000555555796da8 RBX: ffff888027da0000 RCX: ffffc900047cfd60
[ 2701.745676][ T5091] RDX: 0000000000000000 RSI: ffffffff81b655ac RDI: ffffffff8b2f9d00
[ 2701.753677][ T5091] RBP: ffffc900047cfef8 R08: 0000000000000000 R09: fffffbfff1e753fa
[ 2701.761679][ T5091] R10: ffffffff8f3a9fd7 R11: 0000000000000000 R12: ffff888027da0000
[ 2701.769677][ T5091] R13: ffffc900047cff58 R14: ffffc900047cfe60 R15: 0000000000000000
[ 2701.777692][ T5091]  ? __rseq_handle_notify_resume+0x14c/0x1020
[ 2701.783814][ T5091]  __rseq_handle_notify_resume+0x183/0x1020
[ 2701.789734][ T5091]  ? __do_sys_rseq+0x750/0x750
[ 2701.794537][ T5091]  ? folio_memcg_unlock+0x240/0x240
[ 2701.799781][ T5091]  ? __ia32_sys_clock_getres_time32+0x280/0x280
[ 2701.806086][ T5091]  syscall_exit_to_user_mode+0x1a9/0x2b0
[ 2701.811785][ T5091]  do_syscall_64+0xe0/0x250
[ 2701.816346][ T5091]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 2701.822358][ T5091] RIP: 0033:0x7f212b0a81b5
[ 2701.827611][ T5091] Code: 24 0c 89 3c 24 48 89 4c 24 18 e8 f6 b9 ff ff 4c 8b 54 24 18 48 8b 54 24 10 41 89 c0 8b 74 24 0c 8b 3c 24 b8 e6 00 00 00 0f 05 <44> 89 c7 48 89 04 24 e8 4f ba ff ff 48 8b 04 24 48 83 c4 28 f7 d8
[ 2701.847263][ T5091] RSP: 002b:00007ffc7b20bb10 EFLAGS: 00000293 ORIG_RAX: 00000000000000e6
[ 2701.856070][ T5091] RAX: 0000000000000000 RBX: 0000000000002949 RCX: 00007f212b0a81b5
[ 2701.865215][ T5091] RDX: 00007ffc7b20bb50 RSI: 0000000000000000 RDI: 0000000000000000
[ 2701.873231][ T5091] RBP: 00007ffc7b20bbdc R08: 0000000000000000 R09: 0000000000000001
[ 2701.881239][ T5091] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000032
[ 2701.889239][ T5091] R13: 00000000002936c7 R14: 00000000002936c7 R15: 0000000000000000
[ 2701.897272][ T5091]  </TASK>
[ 2701.907875][T16775] bond404 (unregistering): Released all slaves
[ 2701.909873][ T5091] memory: usage 307184kB, limit 307200kB, failcnt 148725
[ 2701.922924][ T5091] memory+swap: usage 307548kB, limit 9007199254740988kB, failcnt 0
[ 2701.930934][ T5091] kmem: usage 307184kB, limit 9007199254740988kB, failcnt 0
[ 2701.938302][ T5091] Memory cgroup stats for /syz3:
[ 2701.938460][ T5091] cache 0
[ 2701.946444][ T5091] rss 0
[ 2701.949240][ T5091] rss_huge 0
[ 2701.952461][ T5091] shmem 0
[ 2701.955415][ T5091] mapped_file 0
[ 2701.959254][ T5091] dirty 0
[ 2701.962218][ T5091] writeback 0
[ 2701.965522][ T5091] workingset_refault_anon 45030
[ 2701.970870][ T5091] workingset_refault_file 1
[ 2701.975401][ T5091] swap 372736
[ 2701.979329][ T5091] swapcached 0
[ 2701.982800][ T5091] pgpgin 169894
[ 2701.985119][T16775] bond403 (unregistering): Released all slaves
[ 2701.986818][ T5091] pgpgout 169894
[ 2701.996489][ T5091] pgfault 366908
[ 2702.000068][ T5091] pgmajfault 43332
[ 2702.003891][ T5091] inactive_anon 0
[ 2702.007997][ T5091] active_anon 0
[ 2702.011499][ T5091] inactive_file 0
[ 2702.015147][ T5091] active_file 0
[ 2702.032110][T16775] bond402 (unregistering): Released all slaves
[ 2702.035986][ T5091] unevictable 0
[ 2702.041794][ T5091] hierarchical_memory_limit 314572800
[ 2702.056567][T16775] bond401 (unregistering): Released all slaves
[ 2702.066220][ T5091] hierarchical_memsw_limit 9223372036854771712
[ 2702.072547][ T5091] total_cache 0
[ 2702.078053][ T5091] total_rss 0
[ 2702.081378][ T5091] total_rss_huge 0
[ 2702.085110][ T5091] total_shmem 0
[ 2702.088863][ T5091] total_mapped_file 0
[ 2702.092875][ T5091] total_dirty 0
[ 2702.096489][ T5091] total_writeback 0
[ 2702.100354][ T5091] total_workingset_refault_anon 45030
[ 2702.102317][T16775] bond400 (unregistering): Released all slaves
[ 2702.105721][ T5091] total_workingset_refault_file 1
[ 2702.117131][ T5091] total_swap 372736
[ 2702.120951][ T5091] total_swapcached 0
[ 2702.124856][ T5091] total_pgpgin 169894
[ 2702.135674][ T5091] total_pgpgout 169894
[ 2702.149043][T16775] bond399 (unregistering): Released all slaves
[ 2702.156366][ T5091] total_pgfault 366908
[ 2702.160570][ T5091] total_pgmajfault 43332
[ 2702.164825][ T5091] total_inactive_anon 0
[ 2702.172996][T16775] bond398 (unregistering): Released all slaves
[ 2702.186470][ T5091] total_active_anon 0
[ 2702.190502][ T5091] total_inactive_file 0
[ 2702.194672][ T5091] total_active_file 0
[ 2702.199527][ T5091] total_unevictable 0
[ 2702.201162][T16775] bond397 (unregistering): Released all slaves
[ 2702.203531][ T5091] anon_cost 0
[ 2702.203543][ T5091] file_cost 0
[ 2702.217072][ T5091] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=27775,uid=0
[ 2702.235026][ T5091] Memory cgroup out of memory: Killed process 27775 (syz-executor.3) total-vm:54504kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 2702.254896][T16775] bond396 (unregistering): Released all slaves
[ 2702.280664][T16775] bond395 (unregistering): Released all slaves
19:48:54 executing program 3:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x32}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000280)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000240)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=@newlink={0x48, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0xe403, r2}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @veth={{0x9}, {0x18, 0x2, 0x0, 0x1, @val=@VETH_INFO_PEER={0x14}}}}]}, 0x48}, 0x1, 0x292}, 0x0)

[ 2702.328344][T16775] bond394 (unregistering): Released all slaves
[ 2702.371718][T16775] bond393 (unregistering): Released all slaves
[ 2702.448725][T16775] bond392 (unregistering): Released all slaves
[ 2702.501540][T16775] bond391 (unregistering): Released all slaves
[ 2702.531929][T16775] bond390 (unregistering): Released all slaves
[ 2702.563874][T16775] bond389 (unregistering): Released all slaves
[ 2702.600458][T16775] bond388 (unregistering): Released all slaves
[ 2702.631568][T16775] bond387 (unregistering): Released all slaves
[ 2702.658708][T16775] bond386 (unregistering): Released all slaves
[ 2702.681998][T16775] bond385 (unregistering): Released all slaves
[ 2702.729580][T16775] bond384 (unregistering): Released all slaves
[ 2702.787887][T16775] bond383 (unregistering): Released all slaves
[ 2702.817079][T16775] bond382 (unregistering): Released all slaves
[ 2702.879157][T16775] bond381 (unregistering): Released all slaves
[ 2702.930250][T16775] bond380 (unregistering): Released all slaves
[ 2702.983218][T16775] bond379 (unregistering): Released all slaves
[ 2703.036258][T27776] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2703.061727][T16775] bond378 (unregistering): Released all slaves
[ 2703.086181][T27776] CPU: 1 PID: 27776 Comm: syz-executor.3 Not tainted 6.7.0-syzkaller-12291-g435e202d645c #0
[ 2703.096317][T27776] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 2703.106405][T27776] Call Trace:
[ 2703.109701][T27776]  <TASK>
[ 2703.112661][T27776]  dump_stack_lvl+0x125/0x1b0
[ 2703.117381][T27776]  dump_header+0x103/0x900
[ 2703.121844][T27776]  oom_kill_process+0x270/0xa60
[ 2703.126760][T27776]  out_of_memory+0x344/0x16c0
[ 2703.131505][T27776]  ? oom_killer_disable+0x2d0/0x2d0
[ 2703.136746][T27776]  ? rcu_read_unlock+0x1c/0x60
[ 2703.141561][T27776]  mem_cgroup_out_of_memory+0x206/0x270
[ 2703.147150][T27776]  ? mem_cgroup_margin+0x130/0x130
[ 2703.152290][T27776]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2703.157714][T27776]  try_charge_memcg+0xcd1/0x11a0
[ 2703.162692][T27776]  ? mem_cgroup_handle_over_high+0x570/0x570
[ 2703.168694][T27776]  ? get_mem_cgroup_from_objcg+0xb5/0x2a0
[ 2703.174434][T27776]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2703.179824][T27776]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2703.185321][T27776]  __memcg_kmem_charge_page+0xdd/0x2a0
[ 2703.190831][T27776]  memcg_charge_kernel_stack+0xc3/0x1f0
[ 2703.196405][T27776]  copy_process+0x1532/0x97b0
[ 2703.201105][T27776]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2703.207092][T27776]  ? page_ext_put+0x43/0xd0
[ 2703.211630][T27776]  ? pidfd_prepare+0x80/0x80
[ 2703.216238][T27776]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2703.221625][T27776]  ? preempt_count_sub+0x160/0x160
[ 2703.226750][T27776]  ? print_usage_bug.part.0+0x550/0x550
[ 2703.232325][T27776]  ? __might_fault+0xe6/0x1a0
[ 2703.237028][T27776]  ? _copy_from_user+0x5d/0xf0
[ 2703.242078][T27776]  kernel_clone+0xfd/0x930
[ 2703.246690][T27776]  ? create_io_thread+0xe0/0xe0
[ 2703.251602][T27776]  __do_sys_clone3+0x1f1/0x260
[ 2703.256397][T27776]  ? __do_sys_clone+0x100/0x100
[ 2703.261277][T27776]  ? do_user_addr_fault+0x663/0x1030
[ 2703.266598][T27776]  do_syscall_64+0xd3/0x250
[ 2703.271170][T27776]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 2703.277074][T27776] RIP: 0033:0x7f212b0a8b99
[ 2703.281496][T27776] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 2703.301117][T27776] RSP: 002b:00007ffc7b20b738 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 2703.309547][T27776] RAX: ffffffffffffffda RBX: 00007f212b051270 RCX: 00007f212b0a8b99
[ 2703.317525][T27776] RDX: 00007f212b051270 RSI: 0000000000000058 RDI: 00007ffc7b20b780
[ 2703.325508][T27776] RBP: 00007f212be566c0 R08: 00007f212be566c0 R09: 00007ffc7b20b867
[ 2703.333492][T27776] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 2703.342023][T27776] R13: 000000000000000b R14: 00007ffc7b20b780 R15: 00007ffc7b20b868
[ 2703.350036][T27776]  </TASK>
[ 2703.370305][T27776] memory: usage 307200kB, limit 307200kB, failcnt 149228
[ 2703.377622][T27776] memory+swap: usage 307548kB, limit 9007199254740988kB, failcnt 0
[ 2703.385543][T27776] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[ 2703.405189][T27776] Memory cgroup stats for /syz3:
[ 2703.405367][T27776] cache 0
[ 2703.411938][T16775] bond377 (unregistering): Released all slaves
[ 2703.414177][T27776] rss 0
[ 2703.423011][T27776] rss_huge 0
[ 2703.428094][T27776] shmem 0
[ 2703.431080][T27776] mapped_file 0
[ 2703.434641][T27776] dirty 0
[ 2703.440351][T27776] writeback 0
[ 2703.443675][T27776] workingset_refault_anon 45210
[ 2703.449365][T27776] workingset_refault_file 1
[ 2703.453898][T27776] swap 356352
[ 2703.462821][T16775] bond376 (unregistering): Released all slaves
[ 2703.468757][T27776] swapcached 0
[ 2703.472419][T27776] pgpgin 170088
[ 2703.475893][T27776] pgpgout 170088
[ 2703.485777][T16775] bond375 (unregistering): Released all slaves
[ 2703.507375][T16775] bond374 (unregistering): Released all slaves
[ 2703.514693][T27776] pgfault 367202
[ 2703.519217][T27776] pgmajfault 43504
[ 2703.522972][T27776] inactive_anon 0
[ 2703.530658][T16775] bond373 (unregistering): Released all slaves
[ 2703.536082][T27776] active_anon 0
[ 2703.540523][T27776] inactive_file 0
[ 2703.544175][T27776] active_file 0
[ 2703.561308][T27776] unevictable 0
[ 2703.564826][T27776] hierarchical_memory_limit 314572800
[ 2703.572575][T27776] hierarchical_memsw_limit 9223372036854771712
[ 2703.572630][T16775] bond372 (unregistering): Released all slaves
[ 2703.579544][T27776] total_cache 0
[ 2703.598298][T27776] total_rss 0
[ 2703.601645][T27776] total_rss_huge 0
[ 2703.605373][T27776] total_shmem 0
[ 2703.609594][T27776] total_mapped_file 0
[ 2703.613605][T27776] total_dirty 0
[ 2703.617703][T27776] total_writeback 0
[ 2703.621532][T27776] total_workingset_refault_anon 45210
[ 2703.627470][T27776] total_workingset_refault_file 1
[ 2703.632981][T27776] total_swap 356352
[ 2703.637266][T27776] total_swapcached 0
[ 2703.641394][T27776] total_pgpgin 170088
[ 2703.645404][T27776] total_pgpgout 170088
[ 2703.670095][T27776] total_pgfault 367202
[ 2703.673135][T16775] bond371 (unregistering): Released all slaves
[ 2703.674202][T27776] total_pgmajfault 43504
[ 2703.674215][T27776] total_inactive_anon 0
[ 2703.691581][T27776] total_active_anon 0
[ 2703.695614][T27776] total_inactive_file 0
[ 2703.702173][T27776] total_active_file 0
[ 2703.707272][T27776] total_unevictable 0
[ 2703.711288][T27776] anon_cost 0
[ 2703.714595][T27776] file_cost 0
[ 2703.719750][T27776] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=27776,uid=0
[ 2703.736144][T27776] Memory cgroup out of memory: Killed process 27776 (syz-executor.3) total-vm:54504kB, anon-rss:380kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 2703.738587][T16775] bond370 (unregistering): Released all slaves
19:48:55 executing program 3:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x32}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000280)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000240)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=@newlink={0x48, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0xe403, r2}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @veth={{0x9}, {0x18, 0x2, 0x0, 0x1, @val=@VETH_INFO_PEER={0x14}}}}]}, 0x48}, 0x1, 0x29a}, 0x0)

[ 2703.828178][T16775] bond369 (unregistering): Released all slaves
[ 2703.852888][T16775] bond368 (unregistering): Released all slaves
[ 2703.878744][T16775] bond367 (unregistering): Released all slaves
[ 2703.902704][T16775] bond366 (unregistering): Released all slaves
[ 2703.930161][T16775] bond365 (unregistering): Released all slaves
[ 2703.956790][T16775] bond364 (unregistering): Released all slaves
[ 2703.981259][T16775] bond363 (unregistering): Released all slaves
[ 2704.005049][T16775] bond362 (unregistering): Released all slaves
[ 2704.054594][T16775] bond361 (unregistering): Released all slaves
[ 2704.110523][T16775] bond360 (unregistering): Released all slaves
[ 2704.163801][T27778] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2704.179111][T16775] bond359 (unregistering): Released all slaves
[ 2704.206312][T27778] CPU: 0 PID: 27778 Comm: syz-executor.3 Not tainted 6.7.0-syzkaller-12291-g435e202d645c #0
[ 2704.216547][T27778] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 2704.226638][T27778] Call Trace:
[ 2704.229944][T27778]  <TASK>
[ 2704.232890][T27778]  dump_stack_lvl+0x125/0x1b0
[ 2704.237604][T27778]  dump_header+0x103/0x900
[ 2704.242149][T27778]  oom_kill_process+0x270/0xa60
[ 2704.247040][T27778]  out_of_memory+0x344/0x16c0
[ 2704.251762][T27778]  ? oom_killer_disable+0x2d0/0x2d0
[ 2704.257004][T27778]  ? rcu_read_unlock+0x1c/0x60
[ 2704.261824][T27778]  mem_cgroup_out_of_memory+0x206/0x270
[ 2704.267398][T27778]  ? mem_cgroup_margin+0x130/0x130
[ 2704.272548][T27778]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2704.277971][T27778]  try_charge_memcg+0xcd1/0x11a0
[ 2704.282957][T27778]  ? mem_cgroup_handle_over_high+0x570/0x570
[ 2704.288976][T27778]  ? get_mem_cgroup_from_objcg+0xb5/0x2a0
[ 2704.294734][T27778]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2704.300135][T27778]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2704.305562][T27778]  __memcg_kmem_charge_page+0xdd/0x2a0
[ 2704.311080][T27778]  memcg_charge_kernel_stack+0xc3/0x1f0
[ 2704.316672][T27778]  copy_process+0x527/0x97b0
[ 2704.321302][T27778]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2704.327331][T27778]  ? page_ext_put+0x43/0xd0
[ 2704.331968][T27778]  ? pidfd_prepare+0x80/0x80
[ 2704.336690][T27778]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2704.342081][T27778]  ? preempt_count_sub+0x160/0x160
[ 2704.347199][T27778]  ? print_usage_bug.part.0+0x550/0x550
[ 2704.352762][T27778]  ? __might_fault+0xe6/0x1a0
[ 2704.357461][T27778]  ? _copy_from_user+0x5d/0xf0
[ 2704.362245][T27778]  kernel_clone+0xfd/0x930
[ 2704.366679][T27778]  ? create_io_thread+0xe0/0xe0
[ 2704.371569][T27778]  __do_sys_clone3+0x1f1/0x260
[ 2704.376350][T27778]  ? __do_sys_clone+0x100/0x100
[ 2704.381230][T27778]  ? do_user_addr_fault+0x663/0x1030
[ 2704.386555][T27778]  do_syscall_64+0xd3/0x250
[ 2704.391083][T27778]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 2704.396989][T27778] RIP: 0033:0x7f212b0a8b99
[ 2704.401416][T27778] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 2704.421297][T27778] RSP: 002b:00007ffc7b20b738 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 2704.429727][T27778] RAX: ffffffffffffffda RBX: 00007f212b051270 RCX: 00007f212b0a8b99
[ 2704.437715][T27778] RDX: 00007f212b051270 RSI: 0000000000000058 RDI: 00007ffc7b20b780
[ 2704.445696][T27778] RBP: 00007f212be566c0 R08: 00007f212be566c0 R09: 00007ffc7b20b867
[ 2704.453762][T27778] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 2704.461760][T27778] R13: 000000000000000b R14: 00007ffc7b20b780 R15: 00007ffc7b20b868
[ 2704.469782][T27778]  </TASK>
[ 2704.538124][T16775] bond358 (unregistering): Released all slaves
[ 2704.575727][T27778] memory: usage 307184kB, limit 307200kB, failcnt 149518
[ 2704.586485][T16775] bond357 (unregistering): Released all slaves
[ 2704.606509][T27778] memory+swap: usage 307572kB, limit 9007199254740988kB, failcnt 0
[ 2704.614479][T27778] kmem: usage 307184kB, limit 9007199254740988kB, failcnt 0
[ 2704.654256][T27778] Memory cgroup stats for /syz3:
[ 2704.654428][T27778] cache 0
[ 2704.663196][T27778] rss 0
[ 2704.664886][T16775] bond356 (unregistering): Released all slaves
[ 2704.666672][T27778] rss_huge 0
[ 2704.675797][T27778] shmem 0
[ 2704.679381][T27778] mapped_file 0
[ 2704.685795][T27778] dirty 0
[ 2704.690078][T27778] writeback 0
[ 2704.693410][T27778] workingset_refault_anon 45298
[ 2704.698711][T27778] workingset_refault_file 1
[ 2704.703238][T27778] swap 397312
[ 2704.706625][T27778] swapcached 0
[ 2704.710020][T27778] pgpgin 170187
[ 2704.713486][T27778] pgpgout 170187
[ 2704.717133][T27778] pgfault 367360
[ 2704.720704][T27778] pgmajfault 43592
[ 2704.724440][T27778] inactive_anon 0
[ 2704.728233][T27778] active_anon 0
[ 2704.731713][T27778] inactive_file 0
[ 2704.735359][T27778] active_file 0
[ 2704.748063][T16775] bond355 (unregistering): Released all slaves
[ 2704.748769][T27778] unevictable 0
[ 2704.758016][T27778] hierarchical_memory_limit 314572800
[ 2704.763407][T27778] hierarchical_memsw_limit 9223372036854771712
[ 2704.770312][T27778] total_cache 0
[ 2704.773798][T27778] total_rss 0
[ 2704.778052][T27778] total_rss_huge 0
[ 2704.781808][T27778] total_shmem 0
[ 2704.785283][T27778] total_mapped_file 0
[ 2704.792006][T27778] total_dirty 0
[ 2704.795506][T27778] total_writeback 0
[ 2704.800027][T27778] total_workingset_refault_anon 45298
[ 2704.805426][T27778] total_workingset_refault_file 1
[ 2704.811247][T27778] total_swap 397312
[ 2704.815528][T27778] total_swapcached 0
[ 2704.818054][T16775] bond354 (unregistering): Released all slaves
[ 2704.820324][T27778] total_pgpgin 170187
[ 2704.849071][T27778] total_pgpgout 170187
[ 2704.853211][T27778] total_pgfault 367360
[ 2704.869100][T16775] bond353 (unregistering): Released all slaves
[ 2704.875991][T27778] total_pgmajfault 43592
[ 2704.880281][T27778] total_inactive_anon 0
[ 2704.884451][T27778] total_active_anon 0
[ 2704.895821][T27778] total_inactive_file 0
[ 2704.906050][T27778] total_active_file 0
[ 2704.910091][T27778] total_unevictable 0
[ 2704.926079][T27778] anon_cost 0
[ 2704.926466][T16775] bond352 (unregistering): Released all slaves
[ 2704.929397][T27778] file_cost 0
[ 2704.929409][T27778] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=27778,uid=0
[ 2704.982052][T27778] Memory cgroup out of memory: Killed process 27778 (syz-executor.3) total-vm:54504kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 2705.001892][T16775] bond351 (unregistering): Released all slaves
[ 2705.007150][T26667] Bluetooth: hci15: unexpected cc 0x0c03 length: 249 > 1
[ 2705.026353][T26667] Bluetooth: hci15: unexpected cc 0x1003 length: 249 > 9
[ 2705.036763][T26667] Bluetooth: hci15: unexpected cc 0x1001 length: 249 > 9
19:48:56 executing program 3:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x32}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000280)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000240)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=@newlink={0x48, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0xe403, r2}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @veth={{0x9}, {0x18, 0x2, 0x0, 0x1, @val=@VETH_INFO_PEER={0x14}}}}]}, 0x48}, 0x1, 0x2a2}, 0x0)

[ 2705.046990][T26667] Bluetooth: hci15: unexpected cc 0x0c23 length: 249 > 4
[ 2705.060623][T26667] Bluetooth: hci15: unexpected cc 0x0c25 length: 249 > 3
[ 2705.084371][T26667] Bluetooth: hci15: unexpected cc 0x0c38 length: 249 > 2
[ 2705.086433][T16775] bond350 (unregistering): Released all slaves
[ 2705.208149][T16775] bond349 (unregistering): Released all slaves
[ 2705.328061][T16775] bond348 (unregistering): Released all slaves
[ 2705.361375][T16775] bond347 (unregistering): Released all slaves
[ 2705.385610][T16775] bond346 (unregistering): Released all slaves
[ 2705.422118][T16775] bond345 (unregistering): Released all slaves
[ 2705.468422][T16775] bond344 (unregistering): Released all slaves
[ 2705.502004][T16775] bond343 (unregistering): Released all slaves
[ 2705.544075][T16775] bond342 (unregistering): Released all slaves
[ 2705.599288][T16775] bond341 (unregistering): Released all slaves
[ 2705.648150][T16775] bond340 (unregistering): Released all slaves
[ 2705.692805][T16775] bond339 (unregistering): Released all slaves
[ 2705.751185][T16775] bond338 (unregistering): Released all slaves
[ 2705.797118][T27783] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2705.807743][T27783] CPU: 1 PID: 27783 Comm: syz-executor.3 Not tainted 6.7.0-syzkaller-12291-g435e202d645c #0
[ 2705.809615][T16775] bond337 (unregistering): Released all slaves
[ 2705.817823][T27783] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 2705.817839][T27783] Call Trace:
[ 2705.817849][T27783]  <TASK>
[ 2705.817858][T27783]  dump_stack_lvl+0x125/0x1b0
[ 2705.817891][T27783]  dump_header+0x103/0x900
[ 2705.817934][T27783]  oom_kill_process+0x270/0xa60
[ 2705.817973][T27783]  out_of_memory+0x344/0x16c0
[ 2705.818014][T27783]  ? oom_killer_disable+0x2d0/0x2d0
[ 2705.818047][T27783]  ? rcu_read_unlock+0x1c/0x60
[ 2705.818088][T27783]  mem_cgroup_out_of_memory+0x206/0x270
[ 2705.818115][T27783]  ? mem_cgroup_margin+0x130/0x130
[ 2705.818136][T27783]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2705.818178][T27783]  try_charge_memcg+0xcd1/0x11a0
[ 2705.818218][T27783]  ? mem_cgroup_handle_over_high+0x570/0x570
[ 2705.818246][T27783]  ? get_mem_cgroup_from_objcg+0xb5/0x2a0
[ 2705.818271][T27783]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2705.818300][T27783]  ? lockdep_hardirqs_on+0x7d/0x110
[ 2705.818352][T27783]  __memcg_kmem_charge_page+0xdd/0x2a0
[ 2705.818388][T27783]  memcg_charge_kernel_stack+0xc3/0x1f0
[ 2705.818424][T27783]  copy_process+0x527/0x97b0
[ 2705.818461][T27783]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2705.818486][T27783]  ? page_ext_put+0x43/0xd0
[ 2705.818513][T27783]  ? hlock_class+0x4e/0x130
[ 2705.818554][T27783]  ? pidfd_prepare+0x80/0x80
[ 2705.818585][T27783]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2705.818612][T27783]  ? preempt_count_sub+0x160/0x160
[ 2705.818639][T27783]  ? print_usage_bug.part.0+0x550/0x550
[ 2705.818675][T27783]  ? __might_fault+0xe6/0x1a0
[ 2705.818716][T27783]  ? _copy_from_user+0x5d/0xf0
[ 2705.818755][T27783]  kernel_clone+0xfd/0x930
[ 2705.818784][T27783]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2705.818809][T27783]  ? create_io_thread+0xe0/0xe0
[ 2705.818850][T27783]  ? find_held_lock+0x2d/0x110
[ 2705.818889][T27783]  __do_sys_clone3+0x1f1/0x260
[ 2705.818926][T27783]  ? __do_sys_clone+0x100/0x100
[ 2705.818998][T27783]  do_syscall_64+0xd3/0x250
[ 2706.009670][T27783]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 2706.015602][T27783] RIP: 0033:0x7f212b0a8b99
[ 2706.020040][T27783] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 2706.041949][T27783] RSP: 002b:00007ffc7b20b738 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 2706.050399][T27783] RAX: ffffffffffffffda RBX: 00007f212b051270 RCX: 00007f212b0a8b99
[ 2706.058399][T27783] RDX: 00007f212b051270 RSI: 0000000000000058 RDI: 00007ffc7b20b780
[ 2706.066393][T27783] RBP: 00007f212be566c0 R08: 00007f212be566c0 R09: 00007ffc7b20b867
[ 2706.074390][T27783] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 2706.082478][T27783] R13: 000000000000000b R14: 00007ffc7b20b780 R15: 00007ffc7b20b868
[ 2706.090502][T27783]  </TASK>
[ 2706.096890][T27783] memory: usage 307184kB, limit 307200kB, failcnt 150019
[ 2706.106743][T16775] bond336 (unregistering): Released all slaves
[ 2706.116074][T27783] memory+swap: usage 307492kB, limit 9007199254740988kB, failcnt 0
[ 2706.124798][T27783] kmem: usage 307172kB, limit 9007199254740988kB, failcnt 0
[ 2706.132610][T27783] Memory cgroup stats for /syz3:
[ 2706.132776][T27783] cache 0
[ 2706.141020][T27783] rss 12288
[ 2706.144209][T27783] rss_huge 0
[ 2706.148089][T27783] shmem 0
[ 2706.148918][T16775] bond335 (unregistering): Released all slaves
[ 2706.151038][T27783] mapped_file 0
[ 2706.151049][T27783] dirty 0
[ 2706.151057][T27783] writeback 0
[ 2706.151064][T27783] workingset_refault_anon 45487
[ 2706.151073][T27783] workingset_refault_file 1
[ 2706.151083][T27783] swap 315392
[ 2706.151092][T27783] swapcached 8192
[ 2706.187948][T27783] pgpgin 170387
[ 2706.191564][T27783] pgpgout 170384
[ 2706.195217][T27783] pgfault 367652
[ 2706.204598][T16775] bond334 (unregistering): Released all slaves
[ 2706.220818][T27783] pgmajfault 43768
[ 2706.229915][T27783] inactive_anon 4096
[ 2706.234090][T27783] active_anon 4096
[ 2706.236645][T16775] bond333 (unregistering): Released all slaves
[ 2706.238373][T27783] inactive_file 0
[ 2706.248189][T27783] active_file 0
[ 2706.251783][T27783] unevictable 0
[ 2706.255337][T27783] hierarchical_memory_limit 314572800
[ 2706.261239][T27783] hierarchical_memsw_limit 9223372036854771712
[ 2706.267853][T27783] total_cache 0
[ 2706.271464][T27783] total_rss 12288
[ 2706.273342][T16775] bond332 (unregistering): Released all slaves
[ 2706.275204][T27783] total_rss_huge 0
[ 2706.295801][T27783] total_shmem 0
[ 2706.301903][T16775] bond331 (unregistering): Released all slaves
[ 2706.302517][T27783] total_mapped_file 0
[ 2706.330799][T27783] total_dirty 0
[ 2706.337419][T16775] bond330 (unregistering): Released all slaves
[ 2706.344540][T27783] total_writeback 0
[ 2706.353385][T27783] total_workingset_refault_anon 45487
[ 2706.366482][T27783] total_workingset_refault_file 1
[ 2706.376860][T27783] total_swap 315392
[ 2706.382709][T16775] bond329 (unregistering): Released all slaves
[ 2706.386661][T27783] total_swapcached 8192
[ 2706.409278][T27783] total_pgpgin 170387
[ 2706.413394][T27783] total_pgpgout 170384
[ 2706.422983][T16775] bond328 (unregistering): Released all slaves
[ 2706.426075][T27783] total_pgfault 367652
[ 2706.433885][T27783] total_pgmajfault 43768
[ 2706.446121][T27783] total_inactive_anon 4096
[ 2706.450678][T27783] total_active_anon 4096
[ 2706.466482][T27783] total_inactive_file 0
[ 2706.471113][T27783] total_active_file 0
[ 2706.486125][T27783] total_unevictable 0
[ 2706.490284][T27783] anon_cost 0
[ 2706.493663][T27783] file_cost 0
[ 2706.499498][T16775] bond327 (unregistering): Released all slaves
[ 2706.506753][T27783] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=27783,uid=0
[ 2706.538667][T27783] Memory cgroup out of memory: Killed process 27783 (syz-executor.3) total-vm:54504kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
19:48:58 executing program 3:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x32}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000280)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000240)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=@newlink={0x48, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0xe403, r2}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @veth={{0x9}, {0x18, 0x2, 0x0, 0x1, @val=@VETH_INFO_PEER={0x14}}}}]}, 0x48}, 0x1, 0x2b4}, 0x0)

[ 2706.608506][T16775] bond326 (unregistering): Released all slaves
[ 2706.678394][T16775] bond325 (unregistering): Released all slaves
[ 2706.730850][T16775] bond324 (unregistering): Released all slaves
[ 2706.793660][T16775] bond323 (unregistering): Released all slaves
[ 2706.842289][T16775] bond322 (unregistering): Released all slaves
[ 2706.885362][T16775] bond321 (unregistering): Released all slaves
[ 2706.948199][T16775] bond320 (unregistering): Released all slaves
[ 2706.999203][T16775] bond319 (unregistering): Released all slaves
[ 2707.057262][T26667] Bluetooth: hci16: unexpected cc 0x0c03 length: 249 > 1
[ 2707.058363][T16775] bond318 (unregistering): Released all slaves
[ 2707.076864][T26667] Bluetooth: hci16: unexpected cc 0x1003 length: 249 > 9
[ 2707.088799][T26667] Bluetooth: hci16: unexpected cc 0x1001 length: 249 > 9
[ 2707.099095][T26667] Bluetooth: hci16: unexpected cc 0x0c23 length: 249 > 4
[ 2707.115113][T26667] Bluetooth: hci16: unexpected cc 0x0c25 length: 249 > 3
[ 2707.127663][T16775] bond317 (unregistering): Released all slaves
[ 2707.136191][T26667] Bluetooth: hci16: unexpected cc 0x0c38 length: 249 > 2
[ 2707.166843][T27785] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2707.180136][T27785] CPU: 0 PID: 27785 Comm: syz-executor.3 Not tainted 6.7.0-syzkaller-12291-g435e202d645c #0
[ 2707.190263][T27785] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 2707.205028][T27785] Call Trace:
[ 2707.208335][T27785]  <TASK>
[ 2707.211417][T27785]  dump_stack_lvl+0x125/0x1b0
[ 2707.215374][ T5094] Bluetooth: hci15: command 0x0409 tx timeout
[ 2707.216200][T27785]  dump_header+0x103/0x900
[ 2707.216242][T27785]  oom_kill_process+0x270/0xa60
[ 2707.216283][T27785]  out_of_memory+0x344/0x16c0
[ 2707.236533][T27785]  ? oom_killer_disable+0x2d0/0x2d0
[ 2707.241785][T27785]  ? rcu_read_unlock+0x1c/0x60
[ 2707.246590][T27785]  mem_cgroup_out_of_memory+0x206/0x270
[ 2707.252186][T27785]  ? mem_cgroup_margin+0x130/0x130
[ 2707.257307][T27785]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2707.262706][T27785]  try_charge_memcg+0xcd1/0x11a0
[ 2707.268100][T27785]  ? mem_cgroup_handle_over_high+0x570/0x570
[ 2707.274096][T27785]  ? get_mem_cgroup_from_objcg+0xb5/0x2a0
[ 2707.279833][T27785]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2707.285218][T27785]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2707.290618][T27785]  __memcg_kmem_charge_page+0xdd/0x2a0
[ 2707.296099][T27785]  memcg_charge_kernel_stack+0xc3/0x1f0
[ 2707.301666][T27785]  copy_process+0x1532/0x97b0
[ 2707.306361][T27785]  ? hlock_class+0x4e/0x130
[ 2707.310879][T27785]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2707.316874][T27785]  ? hlock_class+0x4e/0x130
[ 2707.321398][T27785]  ? pidfd_prepare+0x80/0x80
[ 2707.326002][T27785]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2707.331386][T27785]  ? preempt_count_sub+0x160/0x160
[ 2707.336516][T27785]  ? __lock_acquire+0x1502/0x3b30
[ 2707.341567][T27785]  ? __might_fault+0xe6/0x1a0
[ 2707.346266][T27785]  ? _copy_from_user+0x5d/0xf0
[ 2707.351051][T27785]  kernel_clone+0xfd/0x930
[ 2707.355494][T27785]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2707.361485][T27785]  ? create_io_thread+0xe0/0xe0
[ 2707.366372][T27785]  ? find_held_lock+0x2d/0x110
[ 2707.371159][T27785]  __do_sys_clone3+0x1f1/0x260
[ 2707.375938][T27785]  ? __do_sys_clone+0x100/0x100
[ 2707.380840][T27785]  do_syscall_64+0xd3/0x250
[ 2707.385365][T27785]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 2707.391268][T27785] RIP: 0033:0x7f212b0a8b99
[ 2707.395690][T27785] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 2707.415319][T27785] RSP: 002b:00007ffc7b20b738 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 2707.423832][T27785] RAX: ffffffffffffffda RBX: 00007f212b051270 RCX: 00007f212b0a8b99
[ 2707.432872][T27785] RDX: 00007f212b051270 RSI: 0000000000000058 RDI: 00007ffc7b20b780
[ 2707.440854][T27785] RBP: 00007f212be566c0 R08: 00007f212be566c0 R09: 00007ffc7b20b867
[ 2707.448833][T27785] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 2707.456815][T27785] R13: 000000000000000b R14: 00007ffc7b20b780 R15: 00007ffc7b20b868
[ 2707.464816][T27785]  </TASK>
[ 2707.479784][T16775] bond316 (unregistering): Released all slaves
[ 2707.503136][T16775] bond315 (unregistering): Released all slaves
[ 2707.516066][T27785] memory: usage 307200kB, limit 307200kB, failcnt 150351
[ 2707.523169][T27785] memory+swap: usage 307560kB, limit 9007199254740988kB, failcnt 0
[ 2707.532164][T27785] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[ 2707.550419][T16775] bond314 (unregistering): Released all slaves
[ 2707.566268][T27785] Memory cgroup stats for /syz3:
[ 2707.566447][T27785] cache 0
[ 2707.574370][T27785] rss 0
[ 2707.589188][T27785] rss_huge 0
[ 2707.592443][T27785] shmem 0
[ 2707.595649][T27785] mapped_file 0
[ 2707.607979][T16775] bond313 (unregistering): Released all slaves
[ 2707.612904][T27785] dirty 0
[ 2707.626193][T27785] writeback 0
[ 2707.629526][T27785] workingset_refault_anon 45592
[ 2707.634712][T27785] workingset_refault_file 1
[ 2707.636921][T16775] bond312 (unregistering): Released all slaves
[ 2707.639671][T27785] swap 368640
[ 2707.649495][T27785] swapcached 0
[ 2707.652890][T27785] pgpgin 170503
[ 2707.657751][T27785] pgpgout 170503
[ 2707.661330][T27785] pgfault 367834
[ 2707.664888][T27785] pgmajfault 43862
[ 2707.669196][T27785] inactive_anon 0
[ 2707.672850][T27785] active_anon 0
[ 2707.676993][T27785] inactive_file 0
[ 2707.680744][T27785] active_file 0
[ 2707.684264][T27785] unevictable 0
[ 2707.687299][T16775] bond311 (unregistering): Released all slaves
[ 2707.695098][T27785] hierarchical_memory_limit 314572800
[ 2707.700923][T27785] hierarchical_memsw_limit 9223372036854771712
[ 2707.707554][T27785] total_cache 0
[ 2707.711049][T27785] total_rss 0
[ 2707.714345][T27785] total_rss_huge 0
[ 2707.718734][T27785] total_shmem 0
[ 2707.722212][T27785] total_mapped_file 0
[ 2707.726793][T27785] total_dirty 0
[ 2707.730278][T27785] total_writeback 0
[ 2707.734139][T27785] total_workingset_refault_anon 45592
[ 2707.740957][T27785] total_workingset_refault_file 1
[ 2707.742391][T16775] bond310 (unregistering): Released all slaves
[ 2707.746685][T27785] total_swap 368640
[ 2707.757190][T27785] total_swapcached 0
[ 2707.761548][T27785] total_pgpgin 170503
[ 2707.765557][T27785] total_pgpgout 170503
[ 2707.770517][T27785] total_pgfault 367834
[ 2707.774619][T27785] total_pgmajfault 43862
[ 2707.787974][T27785] total_inactive_anon 0
[ 2707.792241][T27785] total_active_anon 0
[ 2707.794187][T16775] bond309 (unregistering): Released all slaves
[ 2707.799839][T27785] total_inactive_file 0
[ 2707.807124][T27785] total_active_file 0
[ 2707.811126][T27785] total_unevictable 0
[ 2707.815246][T27785] anon_cost 0
[ 2707.819342][T27785] file_cost 0
[ 2707.822659][T27785] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=27785,uid=0
[ 2707.838911][T27785] Memory cgroup out of memory: Killed process 27785 (syz-executor.3) total-vm:54504kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 2707.858084][T16775] bond308 (unregistering): Released all slaves
19:48:59 executing program 3:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x32}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000280)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000240)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=@newlink={0x48, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0xe403, r2}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @veth={{0x9}, {0x18, 0x2, 0x0, 0x1, @val=@VETH_INFO_PEER={0x14}}}}]}, 0x48}, 0x1, 0x2c2}, 0x0)

[ 2707.893545][T16775] bond307 (unregistering): Released all slaves
[ 2707.938621][T16775] bond306 (unregistering): Released all slaves
[ 2707.962418][T16775] bond305 (unregistering): Released all slaves
[ 2707.995583][T16775] bond304 (unregistering): Released all slaves
[ 2708.024774][T16775] bond303 (unregistering): Released all slaves
[ 2708.045856][T27789] syz-executor.3 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[ 2708.059678][T27789] CPU: 0 PID: 27789 Comm: syz-executor.3 Not tainted 6.7.0-syzkaller-12291-g435e202d645c #0
[ 2708.070171][T27789] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 2708.080262][T27789] Call Trace:
[ 2708.083557][T27789]  <TASK>
[ 2708.086532][T27789]  dump_stack_lvl+0x125/0x1b0
[ 2708.091339][T27789]  dump_header+0x103/0x900
[ 2708.095820][T27789]  oom_kill_process+0x270/0xa60
[ 2708.100741][T27789]  out_of_memory+0x344/0x16c0
[ 2708.105462][T27789]  ? mutex_trylock+0xa0/0x130
[ 2708.110180][T27789]  ? oom_killer_disable+0x2d0/0x2d0
[ 2708.115442][T27789]  ? rcu_read_unlock+0x1c/0x60
[ 2708.120500][T27789]  mem_cgroup_out_of_memory+0x206/0x270
[ 2708.126077][T27789]  ? mem_cgroup_margin+0x130/0x130
[ 2708.131271][T27789]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2708.137332][T27789]  try_charge_memcg+0xcd1/0x11a0
[ 2708.142284][T27789]  ? mem_cgroup_handle_over_high+0x570/0x570
[ 2708.148280][T27789]  ? rcu_read_unlock+0x1c/0x60
[ 2708.153064][T27789]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2708.158468][T27789]  ? __radix_tree_lookup+0x21f/0x2c0
[ 2708.163812][T27789]  mem_cgroup_swapin_charge_folio+0x138/0x380
[ 2708.170001][T27789]  __read_swap_cache_async+0x4e1/0x600
[ 2708.175508][T27789]  ? filemap_get_incore_folio+0x160/0x160
[ 2708.181265][T27789]  ? swp_swap_info+0xcf/0x130
[ 2708.185978][T27789]  ? swapcache_prepare+0x20/0x20
[ 2708.190968][T27789]  swap_cluster_readahead+0x4d4/0x710
[ 2708.196418][T27789]  ? read_swap_cache_async+0x1a0/0x1a0
[ 2708.201881][T27789]  ? reacquire_held_locks+0x410/0x4c0
[ 2708.207275][T27789]  ? xas_descend+0x141/0x4e0
[ 2708.211901][T27789]  ? filemap_get_entry+0x23e/0x460
[ 2708.217033][T27789]  swapin_readahead+0x132/0xe60
[ 2708.221922][T27789]  ? get_swap_device+0x363/0x5e0
[ 2708.226979][T27789]  ? exit_swap_address_space+0x250/0x250
[ 2708.232640][T27789]  ? __filemap_get_folio+0x2b0/0xaa0
[ 2708.237955][T27789]  ? swap_cache_get_folio+0x1dc/0x460
[ 2708.243378][T27789]  ? get_swap_device+0x245/0x5e0
[ 2708.248317][T27789]  ? free_pages_and_swap_cache+0xa0/0xa0
[ 2708.253953][T27789]  ? lock_sync+0x190/0x190
[ 2708.258374][T27789]  do_swap_page+0x4a6/0x3190
[ 2708.262972][T27789]  ? rcu_is_watching+0x12/0xb0
[ 2708.267758][T27789]  ? __pte_offset_map+0x1b9/0x540
[ 2708.272902][T27789]  ? unmap_mapping_folio+0x3b0/0x3b0
[ 2708.278222][T27789]  ? pte_offset_map_nolock+0xfa/0x1b0
[ 2708.283647][T27789]  ? __pte_offset_map+0x540/0x540
[ 2708.288719][T27789]  __handle_mm_fault+0x13a0/0x4900
[ 2708.293843][T27789]  ? clear_huge_page+0x2e0/0x2e0
[ 2708.298788][T27789]  ? lock_mm_and_find_vma+0x580/0x580
[ 2708.304155][T27789]  ? do_user_addr_fault+0x663/0x1030
[ 2708.309471][T27789]  handle_mm_fault+0x47a/0xa10
[ 2708.314260][T27789]  do_user_addr_fault+0x30b/0x1030
[ 2708.319391][T27789]  ? irqentry_enter_from_user_mode+0x5f/0xc0
[ 2708.325423][T27789]  exc_page_fault+0x5d/0xc0
[ 2708.330010][T27789]  asm_exc_page_fault+0x26/0x30
[ 2708.334883][T27789] RIP: 0033:0x7f212b0361b5
[ 2708.339322][T27789] Code: c0 0f 83 18 0d 00 00 49 89 ca 48 89 ce 48 89 cf 48 89 c8 49 c1 ea 08 48 c1 ee 10 4c 8d 42 18 0f b6 dd 48 c1 ef 18 48 c1 e8 20 <48> 0f af 05 cb f4 c9 00 48 03 42 10 41 81 e2 fe 00 00 00 4c 89 84
[ 2708.358943][T27789] RSP: 002b:00007ffc7b20b950 EFLAGS: 00010246
[ 2708.365027][T27789] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000008
[ 2708.373010][T27789] RDX: 00007f212ac00018 RSI: 0000000000000000 RDI: 0000000000000000
[ 2708.381011][T27789] RBP: 0000000000000000 R08: 00007f212ac00030 R09: 0000000000000000
[ 2708.389014][T27789] R10: 0000000000000000 R11: 000000000180106d R12: 00007ffc7b20baf0
[ 2708.397012][T27789] R13: 0000000000000f90 R14: 00007ffc7b20bb08 R15: 00007ffc7b20ba58
[ 2708.405005][T27789]  </TASK>
[ 2708.463203][T16775] bond302 (unregistering): Released all slaves
[ 2708.486087][T27789] memory: usage 307200kB, limit 307200kB, failcnt 150490
[ 2708.493345][T27789] memory+swap: usage 307572kB, limit 9007199254740988kB, failcnt 0
[ 2708.542638][T16775] bond301 (unregistering): Released all slaves
[ 2708.546132][T27789] kmem: usage 307176kB, limit 9007199254740988kB, failcnt 0
[ 2708.566922][T27789] Memory cgroup stats for /syz3:
[ 2708.567068][T27789] cache 0
[ 2708.575182][T27789] rss 16384
[ 2708.581201][T27789] rss_huge 0
[ 2708.596095][T27789] shmem 0
[ 2708.601311][T27789] mapped_file 0
[ 2708.614850][T27789] dirty 0
[ 2708.618386][T27789] writeback 0
[ 2708.624055][T27789] workingset_refault_anon 45629
[ 2708.624330][T16775] bond300 (unregistering): Released all slaves
[ 2708.632117][T27789] workingset_refault_file 1
[ 2708.640013][T27789] swap 380928
[ 2708.643329][T27789] swapcached 12288
[ 2708.647486][T27789] pgpgin 170548
[ 2708.651960][T27789] pgpgout 170544
[ 2708.655727][T27789] pgfault 367915
[ 2708.659427][T27789] pgmajfault 43897
[ 2708.663271][T27789] inactive_anon 0
[ 2708.667441][T27789] active_anon 16384
[ 2708.671366][T27789] inactive_file 0
[ 2708.675085][T27789] active_file 0
[ 2708.678898][T27789] unevictable 0
[ 2708.684109][T27789] hierarchical_memory_limit 314572800
[ 2708.690291][T27789] hierarchical_memsw_limit 9223372036854771712
[ 2708.691732][T16775] bond299 (unregistering): Released all slaves
[ 2708.696696][T27789] total_cache 0
[ 2708.696709][T27789] total_rss 16384
[ 2708.696725][T27789] total_rss_huge 0
[ 2708.696734][T27789] total_shmem 0
[ 2708.696744][T27789] total_mapped_file 0
[ 2708.696755][T27789] total_dirty 0
[ 2708.696764][T27789] total_writeback 0
[ 2708.696774][T27789] total_workingset_refault_anon 45629
[ 2708.696784][T27789] total_workingset_refault_file 1
[ 2708.742365][T16775] bond298 (unregistering): Released all slaves
[ 2708.743000][T27789] total_swap 380928
[ 2708.752772][T27789] total_swapcached 12288
[ 2708.757746][T27789] total_pgpgin 170548
[ 2708.761843][T27789] total_pgpgout 170544
[ 2708.766083][T27789] total_pgfault 367915
[ 2708.770258][T27789] total_pgmajfault 43897
[ 2708.775631][T27789] total_inactive_anon 0
[ 2708.780416][T27789] total_active_anon 16384
[ 2708.794587][T16775] bond297 (unregistering): Released all slaves
[ 2708.806499][T27789] total_inactive_file 0
[ 2708.816514][T27789] total_active_file 0
[ 2708.821013][T27789] total_unevictable 0
[ 2708.822903][T16775] bond296 (unregistering): Released all slaves
[ 2708.825105][T27789] anon_cost 0
[ 2708.835668][T27789] file_cost 0
19:49:00 executing program 3:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x32}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000280)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000240)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=@newlink={0x48, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0xe403, r2}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @veth={{0x9}, {0x18, 0x2, 0x0, 0x1, @val=@VETH_INFO_PEER={0x14}}}}]}, 0x48}, 0x1, 0x2ca}, 0x0)

[ 2708.839455][T27789] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=27789,uid=0
[ 2708.858528][T27789] Memory cgroup out of memory: Killed process 27789 (syz-executor.3) total-vm:54372kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:80kB oom_score_adj:1000
[ 2708.906985][T16775] bond295 (unregistering): Released all slaves
[ 2708.930378][T16775] bond294 (unregistering): Released all slaves
[ 2708.954017][T16775] bond293 (unregistering): Released all slaves
[ 2709.005557][T16775] bond292 (unregistering): Released all slaves
[ 2709.036483][T16775] bond291 (unregistering): Released all slaves
[ 2709.060921][T16775] bond290 (unregistering): Released all slaves
[ 2709.117937][T16775] bond289 (unregistering): Released all slaves
[ 2709.149192][T16775] bond288 (unregistering): Released all slaves
[ 2709.176232][T26667] Bluetooth: hci16: command 0x0409 tx timeout
[ 2709.202362][T16775] bond287 (unregistering): Released all slaves
[ 2709.239981][T16775] bond286 (unregistering): Released all slaves
[ 2709.256334][T26667] Bluetooth: hci15: command 0x041b tx timeout
[ 2709.271430][T16775] bond285 (unregistering): Released all slaves
[ 2709.319561][ T5091] syz-executor.3 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[ 2709.326682][T16775] bond284 (unregistering): Released all slaves
[ 2709.330879][ T5091] CPU: 0 PID: 5091 Comm: syz-executor.3 Not tainted 6.7.0-syzkaller-12291-g435e202d645c #0
[ 2709.346780][ T5091] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 2709.356859][ T5091] Call Trace:
[ 2709.360155][ T5091]  <TASK>
[ 2709.363108][ T5091]  dump_stack_lvl+0x125/0x1b0
[ 2709.367820][ T5091]  dump_header+0x103/0x900
[ 2709.372246][ T5091]  oom_kill_process+0x270/0xa60
[ 2709.377100][ T5091]  out_of_memory+0x344/0x16c0
[ 2709.381775][ T5091]  ? mutex_trylock+0xa0/0x130
[ 2709.386473][ T5091]  ? oom_killer_disable+0x2d0/0x2d0
[ 2709.391716][ T5091]  ? rcu_read_unlock+0x1c/0x60
[ 2709.396517][ T5091]  mem_cgroup_out_of_memory+0x206/0x270
[ 2709.402080][ T5091]  ? mem_cgroup_margin+0x130/0x130
[ 2709.407217][ T5091]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2709.412648][ T5091]  try_charge_memcg+0xcd1/0x11a0
[ 2709.417731][ T5091]  ? mem_cgroup_handle_over_high+0x570/0x570
[ 2709.423730][ T5091]  ? rcu_read_unlock+0x1c/0x60
[ 2709.428557][ T5091]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2709.433964][ T5091]  ? __radix_tree_lookup+0x21f/0x2c0
[ 2709.439276][ T5091]  mem_cgroup_swapin_charge_folio+0x138/0x380
[ 2709.445368][ T5091]  __read_swap_cache_async+0x4e1/0x600
[ 2709.450846][ T5091]  ? filemap_get_incore_folio+0x160/0x160
[ 2709.456576][ T5091]  ? swp_swap_info+0xcf/0x130
[ 2709.461284][ T5091]  ? swapcache_prepare+0x20/0x20
[ 2709.466254][ T5091]  swap_cluster_readahead+0x4d4/0x710
[ 2709.471644][ T5091]  ? read_swap_cache_async+0x1a0/0x1a0
[ 2709.477113][ T5091]  ? reacquire_held_locks+0x410/0x4c0
[ 2709.482498][ T5091]  ? xas_descend+0x141/0x4e0
[ 2709.487117][ T5091]  ? filemap_get_entry+0x23e/0x460
[ 2709.492250][ T5091]  swapin_readahead+0x132/0xe60
[ 2709.497115][ T5091]  ? get_swap_device+0x363/0x5e0
[ 2709.502068][ T5091]  ? exit_swap_address_space+0x250/0x250
[ 2709.507734][ T5091]  ? __filemap_get_folio+0x2b0/0xaa0
[ 2709.513043][ T5091]  ? swap_cache_get_folio+0x1dc/0x460
[ 2709.518444][ T5091]  ? get_swap_device+0x245/0x5e0
[ 2709.523394][ T5091]  ? free_pages_and_swap_cache+0xa0/0xa0
[ 2709.529041][ T5091]  ? lock_sync+0x190/0x190
[ 2709.533467][ T5091]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2709.539806][ T5091]  do_swap_page+0x4a6/0x3190
[ 2709.544455][ T5091]  ? rcu_is_watching+0x12/0xb0
[ 2709.549262][ T5091]  ? __pte_offset_map+0x1b9/0x540
[ 2709.554307][ T5091]  ? unmap_mapping_folio+0x3b0/0x3b0
[ 2709.559601][ T5091]  ? pte_offset_map_nolock+0xfa/0x1b0
[ 2709.564987][ T5091]  ? __pte_offset_map+0x540/0x540
[ 2709.570033][ T5091]  __handle_mm_fault+0x13a0/0x4900
[ 2709.575167][ T5091]  ? clear_huge_page+0x2e0/0x2e0
[ 2709.580127][ T5091]  ? find_vma+0x112/0x1b0
[ 2709.584495][ T5091]  ? get_unmapped_area+0x400/0x400
[ 2709.589639][ T5091]  handle_mm_fault+0x47a/0xa10
[ 2709.594419][ T5091]  ? lock_mm_and_find_vma+0xa6/0x580
[ 2709.599718][ T5091]  do_user_addr_fault+0x3f8/0x1030
[ 2709.604849][ T5091]  ? rcu_is_watching+0x12/0xb0
[ 2709.609637][ T5091]  exc_page_fault+0x5d/0xc0
[ 2709.614253][ T5091]  asm_exc_page_fault+0x26/0x30
[ 2709.619113][ T5091] RIP: 0010:__get_user_8+0x11/0x20
[ 2709.624235][ T5091] Code: 48 c1 fa 3f 48 09 d0 0f 01 cb 8b 10 31 c0 0f 01 ca c3 0f 1f 80 00 00 00 00 f3 0f 1e fa 48 89 c2 48 c1 fa 3f 48 09 d0 0f 01 cb <48> 8b 10 31 c0 0f 01 ca c3 66 0f 1f 44 00 00 f3 0f 1e fa 0f 01 cb
[ 2709.643944][ T5091] RSP: 0000:ffffc900047cfe38 EFLAGS: 00050202
[ 2709.650025][ T5091] RAX: 0000555555796da8 RBX: ffff888027da0000 RCX: ffffc900047cfda0
[ 2709.658001][ T5091] RDX: 0000000000000000 RSI: ffffffff81b655ac RDI: ffffffff8b2f9d00
[ 2709.665975][ T5091] RBP: ffffc900047cff28 R08: 0000000000000000 R09: fffffbfff1e753fa
[ 2709.673952][ T5091] R10: ffffffff8f3a9fd7 R11: 0000000000000000 R12: ffff888027da0000
[ 2709.681946][ T5091] R13: ffffc900047cff58 R14: ffffc900047cfea0 R15: 0000000000000000
[ 2709.690029][ T5091]  ? __rseq_handle_notify_resume+0x14c/0x1020
[ 2709.696153][ T5091]  __rseq_handle_notify_resume+0x183/0x1020
[ 2709.702107][ T5091]  ? blkcg_maybe_throttle_current+0x5ae/0xda0
[ 2709.708313][ T5091]  ? __do_sys_rseq+0x750/0x750
[ 2709.713108][ T5091]  ? do_user_addr_fault+0x492/0x1030
[ 2709.718431][ T5091]  irqentry_exit_to_user_mode+0x194/0x290
[ 2709.724197][ T5091]  asm_exc_page_fault+0x26/0x30
[ 2709.729063][ T5091] RIP: 0033:0x7f212b0a3bc6
[ 2709.733481][ T5091] Code: 03 00 00 48 8d b9 08 03 00 00 89 d6 83 ce 02 39 d6 74 21 89 d0 f0 0f b1 37 89 c6 75 1b 83 e2 3b 83 ca 02 83 fa 0a 74 14 89 f0 <c3> 66 0f 1f 84 00 00 00 00 00 89 d6 eb f0 89 c2 eb ce 50 48 c7 81
[ 2709.753108][ T5091] RSP: 002b:00007ffc7b20bb08 EFLAGS: 00010293
[ 2709.759187][ T5091] RAX: 0000000000000000 RBX: 000000000000294f RCX: 0000555555796480
[ 2709.767169][ T5091] RDX: 0000000000000002 RSI: 0000000000000000 RDI: 0000555555796788
[ 2709.775143][ T5091] RBP: 00007ffc7b20bbdc R08: 0000000000000000 R09: 0000000000000001
[ 2709.783141][ T5091] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000032
[ 2709.791121][ T5091] R13: 00000000002955fe R14: 00000000002955fe R15: 0000000000000000
[ 2709.799128][ T5091]  </TASK>
[ 2709.808479][T16775] bond283 (unregistering): Released all slaves
[ 2709.836180][ T5091] memory: usage 307200kB, limit 307200kB, failcnt 150789
[ 2709.838382][T16775] bond282 (unregistering): Released all slaves
[ 2709.851835][ T5091] memory+swap: usage 307528kB, limit 9007199254740988kB, failcnt 0
[ 2709.859821][ T5091] kmem: usage 307192kB, limit 9007199254740988kB, failcnt 0
[ 2709.875993][ T5091] Memory cgroup stats for /syz3:
[ 2709.876175][ T5091] cache 0
[ 2709.884109][ T5091] rss 8192
[ 2709.893954][ T5091] rss_huge 0
[ 2709.899679][T16775] bond281 (unregistering): Released all slaves
[ 2709.910100][ T5091] shmem 0
[ 2709.913090][ T5091] mapped_file 0
[ 2709.936091][ T5091] dirty 0
[ 2709.940574][ T5091] writeback 0
[ 2709.943921][ T5091] workingset_refault_anon 45751
[ 2709.969358][ T5091] workingset_refault_file 1
[ 2709.973908][ T5091] swap 335872
[ 2709.978560][T16775] bond280 (unregistering): Released all slaves
[ 2709.982102][ T5091] swapcached 8192
[ 2709.989583][ T5091] pgpgin 170681
[ 2709.993217][ T5091] pgpgout 170679
[ 2709.997815][ T5091] pgfault 368101
[ 2710.001479][ T5091] pgmajfault 43997
[ 2710.005215][ T5091] inactive_anon 0
[ 2710.009601][ T5091] active_anon 0
[ 2710.014367][ T5091] inactive_file 0
[ 2710.021531][ T5091] active_file 0
[ 2710.025036][ T5091] unevictable 0
[ 2710.034348][T16775] bond279 (unregistering): Released all slaves
[ 2710.042165][ T5091] hierarchical_memory_limit 314572800
[ 2710.056145][ T5091] hierarchical_memsw_limit 9223372036854771712
[ 2710.062358][ T5091] total_cache 0
[ 2710.065830][ T5091] total_rss 8192
[ 2710.079825][T16775] bond278 (unregistering): Released all slaves
[ 2710.086168][ T5091] total_rss_huge 0
[ 2710.090112][ T5091] total_shmem 0
[ 2710.093585][ T5091] total_mapped_file 0
[ 2710.106687][ T5091] total_dirty 0
[ 2710.110192][ T5091] total_writeback 0
[ 2710.115276][ T5091] total_workingset_refault_anon 45751
[ 2710.136444][ T5091] total_workingset_refault_file 1
[ 2710.141674][ T5091] total_swap 335872
[ 2710.145503][ T5091] total_swapcached 8192
[ 2710.158033][ T5091] total_pgpgin 170681
[ 2710.162690][ T5091] total_pgpgout 170679
[ 2710.169436][T16775] bond277 (unregistering): Released all slaves
[ 2710.176092][ T5091] total_pgfault 368101
[ 2710.180190][ T5091] total_pgmajfault 43997
[ 2710.189837][ T5091] total_inactive_anon 0
[ 2710.206233][ T5091] total_active_anon 0
[ 2710.210449][ T5091] total_inactive_file 0
[ 2710.214618][ T5091] total_active_file 0
[ 2710.235182][T16775] bond276 (unregistering): Released all slaves
[ 2710.241985][ T5091] total_unevictable 0
[ 2710.249226][ T5091] anon_cost 0
[ 2710.252550][ T5091] file_cost 0
[ 2710.255854][ T5091] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=27790,uid=0
[ 2710.290047][ T5091] Memory cgroup out of memory: Killed process 27790 (syz-executor.3) total-vm:54504kB, anon-rss:360kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 2710.314257][T16775] bond275 (unregistering): Released all slaves
[ 2710.378183][T16775] bond274 (unregistering): Released all slaves
19:49:02 executing program 3:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x32}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000280)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000240)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=@newlink={0x48, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0xe403, r2}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @veth={{0x9}, {0x18, 0x2, 0x0, 0x1, @val=@VETH_INFO_PEER={0x14}}}}]}, 0x48}, 0x1, 0x2da}, 0x0)

[ 2710.424978][T16775] bond273 (unregistering): Released all slaves
[ 2710.497958][T16775] bond272 (unregistering): Released all slaves
[ 2710.568839][T16775] bond271 (unregistering): Released all slaves
[ 2710.638053][T16775] bond270 (unregistering): Released all slaves
[ 2710.657608][ T5094] Bluetooth: hci17: unexpected cc 0x0c03 length: 249 > 1
[ 2710.692035][ T5094] Bluetooth: hci17: unexpected cc 0x1003 length: 249 > 9
[ 2710.704213][T16775] bond269 (unregistering): Released all slaves
[ 2710.711271][ T5094] Bluetooth: hci17: unexpected cc 0x1001 length: 249 > 9
[ 2710.721777][ T5094] Bluetooth: hci17: unexpected cc 0x0c23 length: 249 > 4
[ 2710.734344][ T5094] Bluetooth: hci17: unexpected cc 0x0c25 length: 249 > 3
[ 2710.744869][ T5094] Bluetooth: hci17: unexpected cc 0x0c38 length: 249 > 2
[ 2710.771586][T16775] bond268 (unregistering): Released all slaves
[ 2710.839844][T16775] bond267 (unregistering): Released all slaves
[ 2710.855333][ T5091] syz-executor.3 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[ 2710.868768][ T5091] CPU: 1 PID: 5091 Comm: syz-executor.3 Not tainted 6.7.0-syzkaller-12291-g435e202d645c #0
[ 2710.879347][ T5091] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 2710.889617][ T5091] Call Trace:
[ 2710.893548][ T5091]  <TASK>
[ 2710.896724][ T5091]  dump_stack_lvl+0x125/0x1b0
[ 2710.901444][ T5091]  dump_header+0x103/0x900
[ 2710.905903][ T5091]  oom_kill_process+0x270/0xa60
[ 2710.910790][ T5091]  out_of_memory+0x344/0x16c0
[ 2710.915591][ T5091]  ? mutex_trylock+0xa0/0x130
[ 2710.920327][ T5091]  ? oom_killer_disable+0x2d0/0x2d0
[ 2710.925573][ T5091]  ? rcu_read_unlock+0x1c/0x60
[ 2710.930402][ T5091]  mem_cgroup_out_of_memory+0x206/0x270
[ 2710.936158][ T5091]  ? mem_cgroup_margin+0x130/0x130
[ 2710.941368][ T5091]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2710.946775][ T5091]  try_charge_memcg+0xcd1/0x11a0
[ 2710.951826][ T5091]  ? mem_cgroup_handle_over_high+0x570/0x570
[ 2710.957828][ T5091]  ? rcu_read_unlock+0x1c/0x60
[ 2710.962614][ T5091]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2710.968009][ T5091]  ? __radix_tree_lookup+0x21f/0x2c0
[ 2710.973344][ T5091]  mem_cgroup_swapin_charge_folio+0x138/0x380
[ 2710.979442][ T5091]  __read_swap_cache_async+0x4e1/0x600
[ 2710.984923][ T5091]  ? filemap_get_incore_folio+0x160/0x160
[ 2710.990652][ T5091]  ? swp_swap_info+0xcf/0x130
[ 2710.995385][ T5091]  ? swapcache_prepare+0x20/0x20
[ 2711.000340][ T5091]  swap_cluster_readahead+0x3e6/0x710
[ 2711.005737][ T5091]  ? read_swap_cache_async+0x1a0/0x1a0
[ 2711.011232][ T5091]  ? reacquire_held_locks+0x410/0x4c0
[ 2711.016795][ T5091]  ? xas_descend+0x141/0x4e0
[ 2711.022372][ T5091]  ? filemap_get_entry+0x23e/0x460
[ 2711.027593][ T5091]  swapin_readahead+0x132/0xe60
[ 2711.032462][ T5091]  ? get_swap_device+0x363/0x5e0
[ 2711.037418][ T5091]  ? exit_swap_address_space+0x250/0x250
[ 2711.043065][ T5091]  ? __filemap_get_folio+0x2b0/0xaa0
[ 2711.048379][ T5091]  ? swap_cache_get_folio+0x1dc/0x460
[ 2711.053762][ T5091]  ? get_swap_device+0x245/0x5e0
[ 2711.058718][ T5091]  ? free_pages_and_swap_cache+0xa0/0xa0
[ 2711.064371][ T5091]  ? lock_sync+0x190/0x190
[ 2711.068902][ T5091]  do_swap_page+0x4a6/0x3190
[ 2711.073511][ T5091]  ? rcu_is_watching+0x12/0xb0
[ 2711.078300][ T5091]  ? __pte_offset_map+0x1b9/0x540
[ 2711.083440][ T5091]  ? unmap_mapping_folio+0x3b0/0x3b0
[ 2711.088738][ T5091]  ? pte_offset_map_nolock+0xfa/0x1b0
[ 2711.094121][ T5091]  ? __pte_offset_map+0x540/0x540
[ 2711.099167][ T5091]  __handle_mm_fault+0x13a0/0x4900
[ 2711.104308][ T5091]  ? clear_huge_page+0x2e0/0x2e0
[ 2711.109277][ T5091]  ? lock_mm_and_find_vma+0x580/0x580
[ 2711.115288][ T5091]  handle_mm_fault+0x47a/0xa10
[ 2711.120182][ T5091]  do_user_addr_fault+0x30b/0x1030
[ 2711.125315][ T5091]  ? irqentry_enter_from_user_mode+0x5f/0xc0
[ 2711.131337][ T5091]  exc_page_fault+0x5d/0xc0
[ 2711.135889][ T5091]  asm_exc_page_fault+0x26/0x30
[ 2711.140753][ T5091] RIP: 0033:0x7f212b0a81b8
[ 2711.145180][ T5091] Code: 3c 24 48 89 4c 24 18 e8 f6 b9 ff ff 4c 8b 54 24 18 48 8b 54 24 10 41 89 c0 8b 74 24 0c 8b 3c 24 b8 e6 00 00 00 0f 05 44 89 c7 <48> 89 04 24 e8 4f ba ff ff 48 8b 04 24 48 83 c4 28 f7 d8 c3 0f 1f
[ 2711.164818][ T5091] RSP: 002b:00007ffc7b20bb10 EFLAGS: 00010293
[ 2711.170996][ T5091] RAX: 0000000000000000 RBX: 0000000000002950 RCX: 00007f212b0a81b5
[ 2711.178991][ T5091] RDX: 00007ffc7b20bb50 RSI: 0000000000000000 RDI: 0000000000000000
[ 2711.186989][ T5091] RBP: 00007ffc7b20bbdc R08: 0000000000000000 R09: 0000000000000001
[ 2711.195064][ T5091] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000032
[ 2711.203389][ T5091] R13: 0000000000295be4 R14: 0000000000295be4 R15: 0000000000000000
[ 2711.211388][ T5091]  </TASK>
[ 2711.218889][T16775] bond266 (unregistering): Released all slaves
[ 2711.266153][ T5094] Bluetooth: hci16: command 0x041b tx timeout
[ 2711.272419][ T5091] memory: usage 307184kB, limit 307200kB, failcnt 151126
[ 2711.280207][ T5091] memory+swap: usage 307560kB, limit 9007199254740988kB, failcnt 0
[ 2711.288587][ T5091] kmem: usage 307184kB, limit 9007199254740988kB, failcnt 0
[ 2711.294633][T16775] bond265 (unregistering): Released all slaves
[ 2711.295892][ T5091] Memory cgroup stats for /syz3:
[ 2711.302820][ T5091] cache 0
[ 2711.314752][ T5091] rss 0
[ 2711.318342][ T5091] rss_huge 0
[ 2711.321572][ T5091] shmem 0
[ 2711.324521][ T5091] mapped_file 0
[ 2711.330181][ T5091] dirty 0
[ 2711.333158][ T5091] writeback 0
[ 2711.337166][ T5091] workingset_refault_anon 45848
[ 2711.342045][ T5091] workingset_refault_file 1
[ 2711.342076][T16775] bond264 (unregistering): Released all slaves
[ 2711.348534][ T5094] Bluetooth: hci15: command 0x040f tx timeout
[ 2711.362417][ T5091] swap 385024
[ 2711.365759][ T5091] swapcached 0
[ 2711.381604][T16775] bond263 (unregistering): Released all slaves
[ 2711.393912][ T5091] pgpgin 170789
[ 2711.402272][ T5091] pgpgout 170789
[ 2711.405881][ T5091] pgfault 368267
[ 2711.410714][ T5091] pgmajfault 44086
[ 2711.414461][ T5091] inactive_anon 0
[ 2711.419657][ T5091] active_anon 0
[ 2711.420994][T16775] bond262 (unregistering): Released all slaves
[ 2711.423133][ T5091] inactive_file 0
[ 2711.433967][ T5091] active_file 0
[ 2711.439119][ T5091] unevictable 0
[ 2711.442617][ T5091] hierarchical_memory_limit 314572800
[ 2711.449659][ T5091] hierarchical_memsw_limit 9223372036854771712
[ 2711.457925][ T5091] total_cache 0
[ 2711.461430][ T5091] total_rss 0
[ 2711.464746][ T5091] total_rss_huge 0
[ 2711.468778][ T5091] total_shmem 0
[ 2711.472273][ T5091] total_mapped_file 0
[ 2711.476438][ T5091] total_dirty 0
[ 2711.480468][ T5091] total_writeback 0
[ 2711.485240][ T5091] total_workingset_refault_anon 45848
[ 2711.487335][T16775] bond261 (unregistering): Released all slaves
[ 2711.490764][ T5091] total_workingset_refault_file 1
[ 2711.502405][ T5091] total_swap 385024
[ 2711.506326][ T5091] total_swapcached 0
[ 2711.510470][ T5091] total_pgpgin 170789
[ 2711.514480][ T5091] total_pgpgout 170789
[ 2711.518746][ T5091] total_pgfault 368267
[ 2711.523147][ T5091] total_pgmajfault 44086
[ 2711.527666][ T5091] total_inactive_anon 0
[ 2711.532059][ T5091] total_active_anon 0
[ 2711.537054][ T5091] total_inactive_file 0
[ 2711.541926][ T5091] total_active_file 0
[ 2711.543587][T16775] bond260 (unregistering): Released all slaves
[ 2711.547386][ T5091] total_unevictable 0
[ 2711.557682][ T5091] anon_cost 0
[ 2711.560994][ T5091] file_cost 0
[ 2711.564293][ T5091] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=27792,uid=0
[ 2711.581919][ T5091] Memory cgroup out of memory: Killed process 27792 (syz-executor.3) total-vm:54504kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 2711.608482][T16775] bond259 (unregistering): Released all slaves
19:49:03 executing program 3:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x32}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000280)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000240)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=@newlink={0x48, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0xe403, r2}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @veth={{0x9}, {0x18, 0x2, 0x0, 0x1, @val=@VETH_INFO_PEER={0x14}}}}]}, 0x48}, 0x1, 0x300}, 0x0)

[ 2711.667805][T16775] bond258 (unregistering): Released all slaves
[ 2711.738175][T16775] bond257 (unregistering): Released all slaves
[ 2711.789530][T16775] bond256 (unregistering): Released all slaves
[ 2711.825800][T16775] bond255 (unregistering): Released all slaves
[ 2711.874857][T16775] bond254 (unregistering): Released all slaves
[ 2711.933387][T16775] bond253 (unregistering): Released all slaves
[ 2711.972146][T16775] bond252 (unregistering): Released all slaves
[ 2712.022526][T16775] bond251 (unregistering): Released all slaves
[ 2712.024699][ T5091] syz-executor.3 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[ 2712.052427][T16775] bond250 (unregistering): Released all slaves
[ 2712.060759][ T5091] CPU: 0 PID: 5091 Comm: syz-executor.3 Not tainted 6.7.0-syzkaller-12291-g435e202d645c #0
[ 2712.070798][ T5091] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 2712.080864][ T5091] Call Trace:
[ 2712.084149][ T5091]  <TASK>
[ 2712.087084][ T5091]  dump_stack_lvl+0x125/0x1b0
[ 2712.091784][ T5091]  dump_header+0x103/0x900
[ 2712.096230][ T5091]  oom_kill_process+0x270/0xa60
[ 2712.101109][ T5091]  out_of_memory+0x344/0x16c0
[ 2712.105807][ T5091]  ? mutex_trylock+0xa0/0x130
[ 2712.110513][ T5091]  ? oom_killer_disable+0x2d0/0x2d0
[ 2712.115733][ T5091]  ? rcu_read_unlock+0x1c/0x60
[ 2712.120524][ T5091]  mem_cgroup_out_of_memory+0x206/0x270
[ 2712.126086][ T5091]  ? mem_cgroup_margin+0x130/0x130
[ 2712.131206][ T5091]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2712.136603][ T5091]  try_charge_memcg+0xcd1/0x11a0
[ 2712.141568][ T5091]  ? mem_cgroup_handle_over_high+0x570/0x570
[ 2712.147571][ T5091]  ? rcu_read_unlock+0x1c/0x60
[ 2712.152353][ T5091]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2712.157740][ T5091]  ? __radix_tree_lookup+0x21f/0x2c0
[ 2712.163050][ T5091]  mem_cgroup_swapin_charge_folio+0x138/0x380
[ 2712.169162][ T5091]  __read_swap_cache_async+0x4e1/0x600
[ 2712.174642][ T5091]  ? filemap_get_incore_folio+0x160/0x160
[ 2712.180375][ T5091]  ? swp_swap_info+0xcf/0x130
[ 2712.185082][ T5091]  ? swapcache_prepare+0x20/0x20
[ 2712.190311][ T5091]  ? find_held_lock+0x2d/0x110
[ 2712.195115][ T5091]  ? find_held_lock+0x2d/0x110
[ 2712.199943][ T5091]  swap_cluster_readahead+0x4d4/0x710
[ 2712.205366][ T5091]  ? read_swap_cache_async+0x1a0/0x1a0
[ 2712.210847][ T5091]  ? reacquire_held_locks+0x410/0x4c0
[ 2712.216261][ T5091]  ? xas_descend+0x141/0x4e0
[ 2712.220883][ T5091]  ? filemap_get_entry+0x23e/0x460
[ 2712.226015][ T5091]  swapin_readahead+0x132/0xe60
[ 2712.230913][ T5091]  ? get_swap_device+0x363/0x5e0
[ 2712.235918][ T5091]  ? exit_swap_address_space+0x250/0x250
[ 2712.241590][ T5091]  ? __filemap_get_folio+0x2b0/0xaa0
[ 2712.246898][ T5091]  ? swap_cache_get_folio+0x1dc/0x460
[ 2712.252312][ T5091]  ? get_swap_device+0x245/0x5e0
[ 2712.257262][ T5091]  ? free_pages_and_swap_cache+0xa0/0xa0
[ 2712.262998][ T5091]  ? lock_sync+0x190/0x190
[ 2712.267431][ T5091]  do_swap_page+0x4a6/0x3190
[ 2712.272038][ T5091]  ? rcu_is_watching+0x12/0xb0
[ 2712.276815][ T5091]  ? __pte_offset_map+0x1b9/0x540
[ 2712.282030][ T5091]  ? unmap_mapping_folio+0x3b0/0x3b0
[ 2712.287355][ T5091]  ? pte_offset_map_nolock+0xfa/0x1b0
[ 2712.292824][ T5091]  ? __pte_offset_map+0x540/0x540
[ 2712.297867][ T5091]  __handle_mm_fault+0x13a0/0x4900
[ 2712.303013][ T5091]  ? clear_huge_page+0x2e0/0x2e0
[ 2712.307994][ T5091]  ? lock_mm_and_find_vma+0x580/0x580
[ 2712.313396][ T5091]  handle_mm_fault+0x47a/0xa10
[ 2712.318180][ T5091]  do_user_addr_fault+0x30b/0x1030
[ 2712.323308][ T5091]  ? irqentry_enter_from_user_mode+0x5f/0xc0
[ 2712.329420][ T5091]  exc_page_fault+0x5d/0xc0
[ 2712.334058][ T5091]  asm_exc_page_fault+0x26/0x30
[ 2712.338941][ T5091] RIP: 0033:0x7f212b0a81b8
[ 2712.343376][ T5091] Code: 3c 24 48 89 4c 24 18 e8 f6 b9 ff ff 4c 8b 54 24 18 48 8b 54 24 10 41 89 c0 8b 74 24 0c 8b 3c 24 b8 e6 00 00 00 0f 05 44 89 c7 <48> 89 04 24 e8 4f ba ff ff 48 8b 04 24 48 83 c4 28 f7 d8 c3 0f 1f
[ 2712.363010][ T5091] RSP: 002b:00007ffc7b20bb10 EFLAGS: 00010293
[ 2712.369104][ T5091] RAX: 0000000000000000 RBX: 0000000000002951 RCX: 00007f212b0a81b5
[ 2712.377092][ T5091] RDX: 00007ffc7b20bb50 RSI: 0000000000000000 RDI: 0000000000000000
[ 2712.385076][ T5091] RBP: 00007ffc7b20bbdc R08: 0000000000000000 R09: 0000000000000001
[ 2712.393073][ T5091] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000032
[ 2712.401074][ T5091] R13: 00000000002960b2 R14: 00000000002960b2 R15: 0000000000000000
[ 2712.409111][ T5091]  </TASK>
[ 2712.465635][ T5091] memory: usage 307200kB, limit 307200kB, failcnt 151497
[ 2712.467999][T16775] bond249 (unregistering): Released all slaves
[ 2712.483232][ T5091] memory+swap: usage 307560kB, limit 9007199254740988kB, failcnt 0
[ 2712.496975][T16775] bond248 (unregistering): Released all slaves
[ 2712.506333][ T5091] kmem: usage 307184kB, limit 9007199254740988kB, failcnt 0
[ 2712.513752][ T5091] Memory cgroup stats for /syz3:
[ 2712.513933][ T5091] cache 0
[ 2712.524606][T16775] bond247 (unregistering): Released all slaves
[ 2712.525309][ T5091] rss 0
[ 2712.533868][ T5091] rss_huge 0
[ 2712.538837][ T5091] shmem 0
[ 2712.541976][ T5091] mapped_file 0
[ 2712.545466][ T5091] dirty 0
[ 2712.548913][ T5091] writeback 0
[ 2712.552237][ T5091] workingset_refault_anon 45966
[ 2712.557573][ T5091] workingset_refault_file 1
[ 2712.562117][ T5091] swap 368640
[ 2712.565500][ T5091] swapcached 0
[ 2712.569372][ T5091] pgpgin 170921
[ 2712.574126][ T5091] pgpgout 170921
[ 2712.577026][T16775] bond246 (unregistering): Released all slaves
[ 2712.578130][ T5091] pgfault 368474
[ 2712.596022][ T5091] pgmajfault 44198
[ 2712.599941][ T5091] inactive_anon 0
[ 2712.602025][T16775] bond245 (unregistering): Released all slaves
[ 2712.603711][ T5091] active_anon 0
[ 2712.614225][ T5091] inactive_file 0
[ 2712.618235][ T5091] active_file 0
[ 2712.621720][ T5091] unevictable 0
[ 2712.625196][ T5091] hierarchical_memory_limit 314572800
[ 2712.634418][ T5091] hierarchical_memsw_limit 9223372036854771712
[ 2712.653390][T16775] bond244 (unregistering): Released all slaves
[ 2712.654083][ T5091] total_cache 0
[ 2712.663385][ T5091] total_rss 0
[ 2712.667030][ T5091] total_rss_huge 0
[ 2712.670898][ T5091] total_shmem 0
[ 2712.676277][ T5091] total_mapped_file 0
[ 2712.680404][ T5091] total_dirty 0
[ 2712.683880][ T5091] total_writeback 0
[ 2712.688197][ T5091] total_workingset_refault_anon 45966
[ 2712.693605][ T5091] total_workingset_refault_file 1
[ 2712.698983][ T5091] total_swap 368640
[ 2712.702851][ T5091] total_swapcached 0
[ 2712.704770][T16775] bond243 (unregistering): Released all slaves
[ 2712.709803][ T5091] total_pgpgin 170921
[ 2712.720182][ T5091] total_pgpgout 170921
[ 2712.724350][ T5091] total_pgfault 368474
[ 2712.729337][ T5091] total_pgmajfault 44198
[ 2712.733621][ T5091] total_inactive_anon 0
[ 2712.741156][ T5091] total_active_anon 0
[ 2712.745227][ T5091] total_inactive_file 0
[ 2712.747772][T16775] bond242 (unregistering): Released all slaves
[ 2712.749862][ T5091] total_active_file 0
[ 2712.762982][ T5091] total_unevictable 0
[ 2712.767678][ T5091] anon_cost 0
[ 2712.771250][ T5091] file_cost 0
[ 2712.774562][ T5091] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=27797,uid=0
[ 2712.796340][ T5091] Memory cgroup out of memory: Killed process 27797 (syz-executor.3) total-vm:54504kB, anon-rss:380kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 2712.816605][T16775] bond241 (unregistering): Released all slaves
19:49:04 executing program 3:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x32}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000280)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000240)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=@newlink={0x48, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0xe403, r2}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @veth={{0x9}, {0x18, 0x2, 0x0, 0x1, @val=@VETH_INFO_PEER={0x14}}}}]}, 0x48}, 0x1, 0x302}, 0x0)

[ 2712.869474][ T5094] Bluetooth: hci17: command 0x0409 tx timeout
[ 2712.881251][T16775] bond240 (unregistering): Released all slaves
[ 2712.907480][T16775] bond239 (unregistering): Released all slaves
[ 2712.932712][T16775] bond238 (unregistering): Released all slaves
[ 2712.960644][T16775] bond237 (unregistering): Released all slaves
[ 2712.999030][T16775] bond236 (unregistering): Released all slaves
[ 2713.037794][T16775] bond235 (unregistering): Released all slaves
[ 2713.077593][T16775] bond234 (unregistering): Released all slaves
[ 2713.120984][T16775] bond233 (unregistering): Released all slaves
[ 2713.153121][T16775] bond232 (unregistering): Released all slaves
[ 2713.184501][T16775] bond231 (unregistering): Released all slaves
[ 2713.231886][T16775] bond230 (unregistering): Released all slaves
[ 2713.259164][T16775] bond229 (unregistering): Released all slaves
[ 2713.329836][T16775] bond228 (unregistering): Released all slaves
[ 2713.336106][ T5094] Bluetooth: hci16: command 0x040f tx timeout
[ 2713.377964][T16775] bond227 (unregistering): Released all slaves
[ 2713.419145][ T5094] Bluetooth: hci15: command 0x0419 tx timeout
[ 2713.438278][T16775] bond226 (unregistering): Released all slaves
[ 2713.481898][T16775] bond225 (unregistering): Released all slaves
[ 2713.568010][T16775] bond224 (unregistering): Released all slaves
[ 2713.591837][T16775] bond223 (unregistering): Released all slaves
[ 2713.593915][ T5091] syz-executor.3 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[ 2713.621449][T16775] bond222 (unregistering): Released all slaves
[ 2713.646351][ T5091] CPU: 0 PID: 5091 Comm: syz-executor.3 Not tainted 6.7.0-syzkaller-12291-g435e202d645c #0
[ 2713.647001][T16775] bond221 (unregistering): Released all slaves
[ 2713.656983][ T5091] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 2713.656999][ T5091] Call Trace:
[ 2713.657008][ T5091]  <TASK>
[ 2713.657018][ T5091]  dump_stack_lvl+0x125/0x1b0
[ 2713.657052][ T5091]  dump_header+0x103/0x900
[ 2713.688594][ T5091]  oom_kill_process+0x270/0xa60
[ 2713.693781][ T5091]  out_of_memory+0x344/0x16c0
[ 2713.698505][ T5091]  ? mutex_trylock+0xa0/0x130
[ 2713.703345][ T5091]  ? oom_killer_disable+0x2d0/0x2d0
[ 2713.708583][ T5091]  ? rcu_read_unlock+0x1c/0x60
[ 2713.713383][ T5091]  mem_cgroup_out_of_memory+0x206/0x270
[ 2713.718941][ T5091]  ? mem_cgroup_margin+0x130/0x130
[ 2713.724061][ T5091]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2713.729726][ T5091]  try_charge_memcg+0xcd1/0x11a0
[ 2713.735118][ T5091]  ? mem_cgroup_handle_over_high+0x570/0x570
[ 2713.741127][ T5091]  ? rcu_read_unlock+0x1c/0x60
[ 2713.745910][ T5091]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2713.751299][ T5091]  ? __radix_tree_lookup+0x21f/0x2c0
[ 2713.756610][ T5091]  mem_cgroup_swapin_charge_folio+0x138/0x380
[ 2713.762698][ T5091]  __read_swap_cache_async+0x4e1/0x600
[ 2713.768194][ T5091]  ? filemap_get_incore_folio+0x160/0x160
[ 2713.773923][ T5091]  ? swp_swap_info+0xcf/0x130
[ 2713.778613][ T5091]  ? swapcache_prepare+0x20/0x20
[ 2713.783564][ T5091]  ? hlock_class+0x4e/0x130
[ 2713.788091][ T5091]  ? mark_lock+0xb5/0xc50
[ 2713.792443][ T5091]  swap_cluster_readahead+0x4d4/0x710
[ 2713.798185][ T5091]  ? read_swap_cache_async+0x1a0/0x1a0
[ 2713.803839][ T5091]  ? reacquire_held_locks+0x410/0x4c0
[ 2713.809230][ T5091]  ? xas_descend+0x141/0x4e0
[ 2713.813856][ T5091]  ? filemap_get_entry+0x23e/0x460
[ 2713.818988][ T5091]  swapin_readahead+0x132/0xe60
[ 2713.823898][ T5091]  ? get_swap_device+0x363/0x5e0
[ 2713.828865][ T5091]  ? exit_swap_address_space+0x250/0x250
[ 2713.834793][ T5091]  ? __filemap_get_folio+0x2b0/0xaa0
[ 2713.840135][ T5091]  ? swap_cache_get_folio+0x1dc/0x460
[ 2713.845520][ T5091]  ? get_swap_device+0x245/0x5e0
[ 2713.850470][ T5091]  ? free_pages_and_swap_cache+0xa0/0xa0
[ 2713.856140][ T5091]  ? lock_sync+0x190/0x190
[ 2713.860571][ T5091]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2713.866625][ T5091]  do_swap_page+0x4a6/0x3190
[ 2713.871255][ T5091]  ? rcu_is_watching+0x12/0xb0
[ 2713.876124][ T5091]  ? __pte_offset_map+0x1b9/0x540
[ 2713.881156][ T5091]  ? unmap_mapping_folio+0x3b0/0x3b0
[ 2713.886545][ T5091]  ? pte_offset_map_nolock+0xfa/0x1b0
[ 2713.892140][ T5091]  ? __pte_offset_map+0x540/0x540
[ 2713.897203][ T5091]  __handle_mm_fault+0x13a0/0x4900
[ 2713.902519][ T5091]  ? clear_huge_page+0x2e0/0x2e0
[ 2713.907490][ T5091]  ? find_vma+0x112/0x1b0
[ 2713.911832][ T5091]  ? get_unmapped_area+0x400/0x400
[ 2713.916962][ T5091]  handle_mm_fault+0x47a/0xa10
[ 2713.921739][ T5091]  ? lock_mm_and_find_vma+0xa6/0x580
[ 2713.927041][ T5091]  do_user_addr_fault+0x3f8/0x1030
[ 2713.932168][ T5091]  ? rcu_is_watching+0x12/0xb0
[ 2713.936952][ T5091]  exc_page_fault+0x5d/0xc0
[ 2713.941515][ T5091]  asm_exc_page_fault+0x26/0x30
[ 2713.946476][ T5091] RIP: 0010:__get_user_8+0x11/0x20
[ 2713.951604][ T5091] Code: 48 c1 fa 3f 48 09 d0 0f 01 cb 8b 10 31 c0 0f 01 ca c3 0f 1f 80 00 00 00 00 f3 0f 1e fa 48 89 c2 48 c1 fa 3f 48 09 d0 0f 01 cb <48> 8b 10 31 c0 0f 01 ca c3 66 0f 1f 44 00 00 f3 0f 1e fa 0f 01 cb
[ 2713.971221][ T5091] RSP: 0018:ffffc900047cfdf8 EFLAGS: 00050202
[ 2713.977329][ T5091] RAX: 0000555555796da8 RBX: ffff888027da0000 RCX: ffffc900047cfd60
[ 2713.985330][ T5091] RDX: 0000000000000000 RSI: ffffffff81b655ac RDI: ffffffff8b2f9d00
[ 2713.993317][ T5091] RBP: ffffc900047cfef8 R08: 0000000000000000 R09: fffffbfff1e753fa
[ 2714.001294][ T5091] R10: ffffffff8f3a9fd7 R11: 0000000000000000 R12: ffff888027da0000
[ 2714.009541][ T5091] R13: ffffc900047cff58 R14: ffffc900047cfe60 R15: 0000000000000000
[ 2714.017536][ T5091]  ? __rseq_handle_notify_resume+0x14c/0x1020
[ 2714.023640][ T5091]  __rseq_handle_notify_resume+0x183/0x1020
[ 2714.030171][ T5091]  ? __do_sys_rseq+0x750/0x750
[ 2714.034963][ T5091]  ? folio_memcg_unlock+0x240/0x240
[ 2714.040191][ T5091]  ? __ia32_sys_clock_getres_time32+0x280/0x280
[ 2714.046461][ T5091]  syscall_exit_to_user_mode+0x1a9/0x2b0
[ 2714.052150][ T5091]  do_syscall_64+0xe0/0x250
[ 2714.056675][ T5091]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 2714.062613][ T5091] RIP: 0033:0x7f212b0a81b5
[ 2714.067035][ T5091] Code: 24 0c 89 3c 24 48 89 4c 24 18 e8 f6 b9 ff ff 4c 8b 54 24 18 48 8b 54 24 10 41 89 c0 8b 74 24 0c 8b 3c 24 b8 e6 00 00 00 0f 05 <44> 89 c7 48 89 04 24 e8 4f ba ff ff 48 8b 04 24 48 83 c4 28 f7 d8
[ 2714.086656][ T5091] RSP: 002b:00007ffc7b20bb10 EFLAGS: 00000293 ORIG_RAX: 00000000000000e6
[ 2714.095092][ T5091] RAX: 0000000000000000 RBX: 0000000000002952 RCX: 00007f212b0a81b5
[ 2714.103108][ T5091] RDX: 00007ffc7b20bb50 RSI: 0000000000000000 RDI: 0000000000000000
[ 2714.111101][ T5091] RBP: 00007ffc7b20bbdc R08: 0000000000000000 R09: 0000000000000001
[ 2714.119118][ T5091] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000032
[ 2714.127121][ T5091] R13: 00000000002965b0 R14: 00000000002965b0 R15: 0000000000000000
[ 2714.135235][ T5091]  </TASK>
[ 2714.152252][ T1223] ieee802154 phy0 wpan0: encryption failed: -22
[ 2714.152415][T16775] bond220 (unregistering): Released all slaves
[ 2714.158730][ T1223] ieee802154 phy1 wpan1: encryption failed: -22
[ 2714.176011][ T5091] memory: usage 307200kB, limit 307200kB, failcnt 152133
[ 2714.183116][ T5091] memory+swap: usage 307524kB, limit 9007199254740988kB, failcnt 0
[ 2714.216129][ T5091] kmem: usage 307184kB, limit 9007199254740988kB, failcnt 0
[ 2714.223479][ T5091] Memory cgroup stats for /syz3:
[ 2714.223609][ T5091] cache 0
[ 2714.247645][T16775] bond219 (unregistering): Released all slaves
[ 2714.253538][ T5091] rss 0
[ 2714.275282][T16775] bond218 (unregistering): Released all slaves
[ 2714.276110][ T5091] rss_huge 0
[ 2714.284716][ T5091] shmem 0
[ 2714.296194][ T5091] mapped_file 0
[ 2714.299717][ T5091] dirty 0
[ 2714.302665][ T5091] writeback 0
[ 2714.323082][T16775] bond217 (unregistering): Released all slaves
[ 2714.329049][ T5091] workingset_refault_anon 46190
[ 2714.334390][ T5091] workingset_refault_file 1
[ 2714.346017][ T5091] swap 331776
[ 2714.349461][ T5091] swapcached 0
[ 2714.353769][ T5091] pgpgin 171158
[ 2714.355712][T16775] bond216 (unregistering): Released all slaves
[ 2714.357716][ T5091] pgpgout 171158
[ 2714.357729][ T5091] pgfault 368792
[ 2714.357738][ T5091] pgmajfault 44392
[ 2714.374831][ T5091] inactive_anon 0
[ 2714.383500][ T5091] active_anon 0
[ 2714.387172][ T5091] inactive_file 0
[ 2714.390836][ T5091] active_file 0
[ 2714.394384][ T5091] unevictable 0
[ 2714.396975][T16775] bond215 (unregistering): Released all slaves
[ 2714.404304][ T5091] hierarchical_memory_limit 314572800
[ 2714.410562][ T5091] hierarchical_memsw_limit 9223372036854771712
[ 2714.419259][ T5091] total_cache 0
[ 2714.422763][ T5091] total_rss 0
[ 2714.426757][ T5091] total_rss_huge 0
[ 2714.430507][ T5091] total_shmem 0
[ 2714.433977][ T5091] total_mapped_file 0
[ 2714.438702][ T5091] total_dirty 0
[ 2714.440702][T16775] bond214 (unregistering): Released all slaves
[ 2714.442182][ T5091] total_writeback 0
[ 2714.453417][ T5091] total_workingset_refault_anon 46190
[ 2714.460172][ T5091] total_workingset_refault_file 1
[ 2714.465239][ T5091] total_swap 331776
[ 2714.469778][ T5091] total_swapcached 0
[ 2714.473715][ T5091] total_pgpgin 171158
[ 2714.484050][ T5091] total_pgpgout 171158
[ 2714.492789][T16775] bond213 (unregistering): Released all slaves
[ 2714.494546][ T5091] total_pgfault 368792
[ 2714.503757][ T5091] total_pgmajfault 44392
[ 2714.508912][ T5091] total_inactive_anon 0
[ 2714.513106][ T5091] total_active_anon 0
[ 2714.519887][ T5091] total_inactive_file 0
[ 2714.524082][ T5091] total_active_file 0
[ 2714.528677][ T5091] total_unevictable 0
[ 2714.532680][ T5091] anon_cost 0
[ 2714.536877][ T5091] file_cost 0
[ 2714.540191][ T5091] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=27798,uid=0
[ 2714.558247][T16775] bond212 (unregistering): Released all slaves
[ 2714.574551][ T5091] Memory cgroup out of memory: Killed process 27798 (syz-executor.3) total-vm:54504kB, anon-rss:368kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 2714.594942][T16775] bond211 (unregistering): Released all slaves
19:49:06 executing program 3:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x32}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000280)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000240)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=@newlink={0x48, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0xe403, r2}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @veth={{0x9}, {0x18, 0x2, 0x0, 0x1, @val=@VETH_INFO_PEER={0x14}}}}]}, 0x48}, 0x1, 0x304}, 0x0)

[ 2714.649621][T16775] bond210 (unregistering): Released all slaves
[ 2714.691196][T16775] bond209 (unregistering): Released all slaves
[ 2714.719754][T16775] bond208 (unregistering): Released all slaves
[ 2714.746078][T16775] bond207 (unregistering): Released all slaves
[ 2714.768672][T16775] bond206 (unregistering): Released all slaves
[ 2714.823869][T16775] bond205 (unregistering): Released all slaves
[ 2714.856820][T16775] bond204 (unregistering): Released all slaves
[ 2714.884628][T16775] bond203 (unregistering): Released all slaves
[ 2714.911888][T16775] bond202 (unregistering): Released all slaves
[ 2714.936034][ T5094] Bluetooth: hci17: command 0x041b tx timeout
[ 2714.951772][T27799] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2714.964778][T16775] bond201 (unregistering): Released all slaves
[ 2714.996781][T27799] CPU: 1 PID: 27799 Comm: syz-executor.3 Not tainted 6.7.0-syzkaller-12291-g435e202d645c #0
[ 2715.006931][T27799] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 2715.017026][T27799] Call Trace:
[ 2715.020328][T27799]  <TASK>
[ 2715.023286][T27799]  dump_stack_lvl+0x125/0x1b0
[ 2715.028011][T27799]  dump_header+0x103/0x900
[ 2715.032659][T27799]  oom_kill_process+0x270/0xa60
[ 2715.037570][T27799]  out_of_memory+0x344/0x16c0
[ 2715.042306][T27799]  ? oom_killer_disable+0x2d0/0x2d0
[ 2715.047557][T27799]  ? rcu_read_unlock+0x1c/0x60
[ 2715.052383][T27799]  mem_cgroup_out_of_memory+0x206/0x270
[ 2715.058062][T27799]  ? mem_cgroup_margin+0x130/0x130
[ 2715.063211][T27799]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2715.068651][T27799]  try_charge_memcg+0xcd1/0x11a0
[ 2715.073645][T27799]  ? mem_cgroup_handle_over_high+0x570/0x570
[ 2715.079673][T27799]  ? get_mem_cgroup_from_objcg+0xb5/0x2a0
[ 2715.085503][T27799]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2715.090887][T27799]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2715.096296][T27799]  __memcg_kmem_charge_page+0xdd/0x2a0
[ 2715.101780][T27799]  memcg_charge_kernel_stack+0xc3/0x1f0
[ 2715.107430][T27799]  copy_process+0x1532/0x97b0
[ 2715.112132][T27799]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2715.118131][T27799]  ? page_ext_put+0x43/0xd0
[ 2715.122656][T27799]  ? pidfd_prepare+0x80/0x80
[ 2715.127269][T27799]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2715.132652][T27799]  ? preempt_count_sub+0x160/0x160
[ 2715.137775][T27799]  ? print_usage_bug.part.0+0x550/0x550
[ 2715.143338][T27799]  ? __might_fault+0xe6/0x1a0
[ 2715.148035][T27799]  ? _copy_from_user+0x5d/0xf0
[ 2715.152821][T27799]  kernel_clone+0xfd/0x930
[ 2715.157341][T27799]  ? create_io_thread+0xe0/0xe0
[ 2715.162235][T27799]  __do_sys_clone3+0x1f1/0x260
[ 2715.167033][T27799]  ? __do_sys_clone+0x100/0x100
[ 2715.171994][T27799]  ? do_user_addr_fault+0x663/0x1030
[ 2715.177547][T27799]  do_syscall_64+0xd3/0x250
[ 2715.182174][T27799]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 2715.188447][T27799] RIP: 0033:0x7f212b0a8b99
[ 2715.192878][T27799] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 2715.212508][T27799] RSP: 002b:00007ffc7b20b738 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 2715.220936][T27799] RAX: ffffffffffffffda RBX: 00007f212b051270 RCX: 00007f212b0a8b99
[ 2715.228932][T27799] RDX: 00007f212b051270 RSI: 0000000000000058 RDI: 00007ffc7b20b780
[ 2715.236911][T27799] RBP: 00007f212be566c0 R08: 00007f212be566c0 R09: 00007ffc7b20b867
[ 2715.244912][T27799] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 2715.252896][T27799] R13: 000000000000000b R14: 00007ffc7b20b780 R15: 00007ffc7b20b868
[ 2715.260893][T27799]  </TASK>
[ 2715.275701][   T29] INFO: task kworker/0:4:5154 blocked for more than 143 seconds.
[ 2715.283666][   T29]       Not tainted 6.7.0-syzkaller-12291-g435e202d645c #0
[ 2715.296465][   T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 2715.305189][   T29] task:kworker/0:4     state:D stack:23920 pid:5154  tgid:5154  ppid:2      flags:0x00004000
[ 2715.312796][T27799] memory: usage 307200kB, limit 307200kB, failcnt 152583
[ 2715.317698][T16775] bond200 (unregistering): Released all slaves
[ 2715.338119][   T29] Workqueue: infiniband ib_cache_event_task
[ 2715.344122][   T29] Call Trace:
[ 2715.347375][T27799] memory+swap: usage 307560kB, limit 9007199254740988kB, failcnt 0
[ 2715.355626][   T29]  <TASK>
[ 2715.358715][   T29]  __schedule+0xf12/0x5c00
[ 2715.363177][   T29]  ? print_usage_bug.part.0+0x550/0x550
[ 2715.368938][   T29]  ? do_raw_spin_unlock+0x173/0x230
[ 2715.374192][   T29]  ? _raw_spin_unlock_irqrestore+0x3b/0x70
[ 2715.384289][   T29]  ? io_schedule_timeout+0x150/0x150
[ 2715.389370][T27799] kmem: usage 307196kB, limit 9007199254740988kB, failcnt 0
[ 2715.389697][   T29]  ? schedule+0x1fc/0x270
[ 2715.401448][   T29]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2715.407250][   T29]  ? _raw_spin_unlock_irq+0x23/0x50
[ 2715.412492][   T29]  ? lockdep_hardirqs_on+0x7d/0x110
[ 2715.417996][ T5094] Bluetooth: hci16: command 0x0419 tx timeout
[ 2715.424166][   T29]  schedule+0xe9/0x270
[ 2715.428397][   T29]  schedule_preempt_disabled+0x13/0x20
[ 2715.431833][T27799] Memory cgroup stats for 
[ 2715.433889][   T29]  __mutex_lock+0x5b9/0x9d0
[ 2715.433915][T27799] /syz3
[ 2715.433930][   T29]  ? find_held_lock+0x2d/0x110
[ 2715.452689][   T29]  ? ib_get_eth_speed+0x115/0xb50
[ 2715.460678][   T29]  ? mutex_trylock+0x130/0x130
[ 2715.463112][T27799] :
[ 2715.465497][   T29]  ? do_raw_spin_unlock+0x173/0x230
[ 2715.465636][T27799] cache 0
[ 2715.476765][   T29]  ? ib_get_eth_speed+0x115/0xb50
[ 2715.476812][   T29]  ? rtnl_lock+0x9/0x20
[ 2715.476843][   T29]  ib_get_eth_speed+0x115/0xb50
[ 2715.476881][   T29]  ? __ib_drain_rq+0x3d0/0x3d0
[ 2715.476943][   T29]  rxe_query_port+0x72/0x1f0
[ 2715.477011][   T29]  ib_query_port+0x431/0x890
[ 2715.495354][T27799] rss 4096
[ 2715.512951][T27799] rss_huge 0
[ 2715.516234][T27799] shmem 0
[ 2715.519187][T27799] mapped_file 0
[ 2715.522668][T27799] dirty 0
[ 2715.525625][T27799] writeback 0
[ 2715.529092][T27799] workingset_refault_anon 46302
[ 2715.532972][   T29]  ib_cache_update.part.0+0xdc/0xa30
[ 2715.533940][T27799] workingset_refault_file 1
[ 2715.544234][T27799] swap 368640
[ 2715.556872][   T29]  ? __ib_cache_gid_add+0x3c0/0x3c0
[ 2715.562156][   T29]  ? lock_sync+0x190/0x190
[ 2715.565434][T27799] swapcached 4096
[ 2715.571411][T27799] pgpgin 171281
[ 2715.571491][   T29]  ? lock_sync+0x190/0x190
[ 2715.574878][T27799] pgpgout 171280
[ 2715.574890][T27799] pgfault 368982
[ 2715.584565][   T29]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2715.597547][   T29]  ib_cache_event_task+0x1c2/0x290
[ 2715.602735][   T29]  process_one_work+0x886/0x15d0
[ 2715.613211][T27799] pgmajfault 44494
[ 2715.619290][   T29]  ? lock_sync+0x190/0x190
[ 2715.623867][   T29]  ? workqueue_congested+0x300/0x300
[ 2715.636084][T27799] inactive_anon 4096
[ 2715.636773][   T29]  ? assign_work+0x1a0/0x250
[ 2715.640010][T27799] active_anon 0
[ 2715.649198][   T29]  worker_thread+0x8b9/0x1290
[ 2715.653974][   T29]  ? process_one_work+0x15d0/0x15d0
[ 2715.666530][   T29]  kthread+0x2c6/0x3a0
[ 2715.670672][   T29]  ? _raw_spin_unlock_irq+0x23/0x50
[ 2715.676229][T27799] inactive_file 0
[ 2715.681109][   T29]  ? kthread_complete_and_exit+0x40/0x40
[ 2715.685406][T27799] active_file 0
[ 2715.690679][   T29]  ret_from_fork+0x45/0x80
[ 2715.695150][   T29]  ? kthread_complete_and_exit+0x40/0x40
[ 2715.695993][T27799] unevictable 0
[ 2715.704310][T27799] hierarchical_memory_limit 314572800
[ 2715.707135][   T29]  ret_from_fork_asm+0x11/0x20
[ 2715.720733][   T29]  </TASK>
[ 2715.728007][T16775] bond199 (unregistering): Released all slaves
[ 2715.736123][   T29] INFO: task kworker/0:1:27697 blocked for more than 144 seconds.
[ 2715.743974][   T29]       Not tainted 6.7.0-syzkaller-12291-g435e202d645c #0
[ 2715.746797][T27799] hierarchical_memsw_limit 9223372036854771712
[ 2715.776369][T27799] total_cache 0
[ 2715.776958][   T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 2715.791250][   T29] task:kworker/0:1     state:D stack:25824 pid:27697 tgid:27697 ppid:2      flags:0x00004000
[ 2715.796175][T27799] total_rss 4096
[ 2715.805045][T27799] total_rss_huge 0
[ 2715.807129][   T29] Workqueue: events switchdev_deferred_process_work
[ 2715.815424][   T29] Call Trace:
[ 2715.830097][   T29]  <TASK>
[ 2715.833093][   T29]  __schedule+0xf12/0x5c00
[ 2715.834936][T27799] total_shmem 0
[ 2715.840341][   T29]  ? print_usage_bug.part.0+0x550/0x550
[ 2715.852432][   T29]  ? io_schedule_timeout+0x150/0x150
[ 2715.856069][T27799] total_mapped_file 0
[ 2715.860985][   T29]  ? schedule+0x1fc/0x270
[ 2715.866187][T27799] total_dirty 0
[ 2715.868671][   T29]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2715.869659][T27799] total_writeback 0
[ 2715.875037][   T29]  ? _raw_spin_unlock_irq+0x23/0x50
[ 2715.890101][   T29]  ? lockdep_hardirqs_on+0x7d/0x110
[ 2715.895402][   T29]  schedule+0xe9/0x270
[ 2715.900401][T27799] total_workingset_refault_anon 46302
[ 2715.905822][T27799] total_workingset_refault_file 1
[ 2715.912066][T27799] total_swap 368640
[ 2715.916311][T27799] total_swapcached 4096
[ 2715.920500][T27799] total_pgpgin 171281
[ 2715.924500][T27799] total_pgpgout 171280
[ 2715.926043][   T29]  schedule_preempt_disabled+0x13/0x20
[ 2715.934090][   T29]  __mutex_lock+0x5b9/0x9d0
[ 2715.936922][T27799] total_pgfault 368982
[ 2715.945964][   T29]  ? switchdev_deferred_process_work+0xe/0x20
[ 2715.951371][T27799] total_pgmajfault 44494
[ 2715.953018][   T29]  ? mutex_trylock+0x130/0x130
[ 2715.966976][   T29]  ? lock_sync+0x190/0x190
[ 2715.971555][   T29]  ? lock_sync+0x190/0x190
[ 2715.976141][T27799] total_inactive_anon 4096
[ 2715.980589][T27799] total_active_anon 0
[ 2715.981813][   T29]  ? switchdev_deferred_process_work+0xe/0x20
[ 2715.984567][T27799] total_inactive_file 0
[ 2715.984579][T27799] total_active_file 0
[ 2715.984588][T27799] total_unevictable 0
[ 2715.984597][T27799] anon_cost 0
[ 2715.984605][T27799] file_cost 0
[ 2715.984616][T27799] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null)
[ 2715.990764][   T29]  switchdev_deferred_process_work+0xe/0x20
[ 2715.990803][   T29]  process_one_work+0x886/0x15d0
[ 2715.990849][   T29]  ? lock_sync+0x190/0x190
[ 2715.990873][   T29]  ? workqueue_congested+0x300/0x300
[ 2715.990917][   T29]  ? assign_work+0x1a0/0x250
[ 2715.990954][   T29]  worker_thread+0x8b9/0x1290
[ 2715.991005][   T29]  ? process_one_work+0x15d0/0x15d0
[ 2715.991038][   T29]  kthread+0x2c6/0x3a0
[ 2715.991065][   T29]  ? _raw_spin_unlock_irq+0x23/0x50
[ 2715.991092][   T29]  ? kthread_complete_and_exit+0x40/0x40
[ 2716.032622][T27799] ,cpuset=
[ 2716.066054][   T29]  ret_from_fork+0x45/0x80
[ 2716.079802][   T29]  ? kthread_complete_and_exit+0x40/0x40
[ 2716.085701][   T29]  ret_from_fork_asm+0x11/0x20
[ 2716.097013][   T29]  </TASK>
[ 2716.102102][T16775] bond198 (unregistering): Released all slaves
[ 2716.102831][T27799] syz3
[ 2716.116913][   T29] INFO: task kworker/0:0:26644 blocked for more than 144 seconds.
[ 2716.133496][T27799] ,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=27799,uid=0
[ 2716.143745][   T29]       Not tainted 6.7.0-syzkaller-12291-g435e202d645c #0
[ 2716.143767][   T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 2716.143777][   T29] task:kworker/0:0     state:D stack:25984 pid:26644 tgid:26644 ppid:2      flags:0x00004000
[ 2716.143822][   T29] Workqueue: ipv6_addrconf addrconf_dad_work
[ 2716.143860][   T29] Call Trace:
[ 2716.143869][   T29]  <TASK>
[ 2716.143885][   T29]  __schedule+0xf12/0x5c00
[ 2716.143921][   T29]  ? print_usage_bug.part.0+0x550/0x550
[ 2716.143977][   T29]  ? io_schedule_timeout+0x150/0x150
[ 2716.144014][   T29]  ? schedule+0x1fc/0x270
[ 2716.144046][   T29]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2716.144077][   T29]  ? _raw_spin_unlock_irq+0x23/0x50
[ 2716.144104][   T29]  ? lockdep_hardirqs_on+0x7d/0x110
[ 2716.144144][   T29]  schedule+0xe9/0x270
[ 2716.144175][   T29]  schedule_preempt_disabled+0x13/0x20
[ 2716.144207][   T29]  __mutex_lock+0x5b9/0x9d0
[ 2716.216965][T27799] Memory cgroup out of memory: Killed process 27799 (syz-executor.3) total-vm:54504kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 2716.266197][   T29]  ? addrconf_dad_work+0xcf/0x14b0
[ 2716.271663][   T29]  ? mutex_trylock+0x130/0x130
[ 2716.295131][   T29]  ? lockdep_hardirqs_on+0x7d/0x110
[ 2716.303932][   T29]  ? addrconf_dad_work+0xcf/0x14b0
[ 2716.309547][   T29]  ? rtnl_lock+0x9/0x20
[ 2716.313762][   T29]  addrconf_dad_work+0xcf/0x14b0
[ 2716.336167][   T29]  ? lock_sync+0x190/0x190
[ 2716.340656][   T29]  ? addrconf_dad_completed+0x1030/0x1030
[ 2716.356030][   T29]  process_one_work+0x886/0x15d0
[ 2716.361354][   T29]  ? vfree+0x7a0/0x7a0
[ 2716.365467][   T29]  ? workqueue_congested+0x300/0x300
19:49:08 executing program 3:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x32}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000280)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000240)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=@newlink={0x48, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0xe403, r2}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @veth={{0x9}, {0x18, 0x2, 0x0, 0x1, @val=@VETH_INFO_PEER={0x14}}}}]}, 0x48}, 0x1, 0x30a}, 0x0)

[ 2716.386168][   T29]  ? assign_work+0x1a0/0x250
[ 2716.390846][   T29]  worker_thread+0x8b9/0x1290
[ 2716.395589][   T29]  ? process_one_work+0x15d0/0x15d0
[ 2716.409228][   T29]  kthread+0x2c6/0x3a0
[ 2716.416956][   T29]  ? _raw_spin_unlock_irq+0x23/0x50
[ 2716.436266][   T29]  ? kthread_complete_and_exit+0x40/0x40
[ 2716.441996][   T29]  ret_from_fork+0x45/0x80
[ 2716.463705][   T29]  ? kthread_complete_and_exit+0x40/0x40
[ 2716.475033][   T29]  ret_from_fork_asm+0x11/0x20
[ 2716.486041][   T29]  </TASK>
[ 2716.491153][T16775] bond197 (unregistering): Released all slaves
[ 2716.506474][   T29] INFO: task syz-executor.0:27149 blocked for more than 144 seconds.
[ 2716.514603][   T29]       Not tainted 6.7.0-syzkaller-12291-g435e202d645c #0
[ 2716.529439][   T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 2716.538588][   T29] task:syz-executor.0  state:D stack:22896 pid:27149 tgid:27149 ppid:1      flags:0x00000006
[ 2716.549228][   T29] Call Trace:
[ 2716.552548][   T29]  <TASK>
[ 2716.555510][   T29]  __schedule+0xf12/0x5c00
[ 2716.566622][   T29]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2716.572798][   T29]  ? io_schedule_timeout+0x150/0x150
[ 2716.578937][   T29]  ? schedule+0x1fc/0x270
[ 2716.583339][   T29]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2716.589592][   T29]  ? __mutex_lock+0x5b4/0x9d0
[ 2716.594373][   T29]  ? __mutex_trylock_common+0x78/0x250
[ 2716.600541][   T29]  schedule+0xe9/0x270
[ 2716.604687][   T29]  schedule_preempt_disabled+0x13/0x20
[ 2716.610844][   T29]  __mutex_lock+0x5b9/0x9d0
[ 2716.615418][   T29]  ? nl80211_pre_doit+0xb4/0xb10
[ 2716.621359][   T29]  ? mutex_trylock+0x130/0x130
[ 2716.626675][   T29]  ? nl80211_pre_doit+0xb4/0xb10
[ 2716.632018][   T29]  ? rtnl_lock+0x9/0x20
[ 2716.636848][   T29]  nl80211_pre_doit+0xb4/0xb10
[ 2716.641676][   T29]  ? cfg80211_crit_proto_stopped+0x490/0x490
[ 2716.649002][   T29]  genl_family_rcv_msg_doit+0x1be/0x2e0
[ 2716.654614][   T29]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280
[ 2716.662721][   T29]  ? ns_capable+0xd5/0x110
[ 2716.686634][   T29]  genl_rcv_msg+0x561/0x800
[ 2716.691230][   T29]  ? genl_family_rcv_msg_dumpit+0x2d0/0x2d0
[ 2716.716244][   T29]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2716.722313][   T29]  ? cfg80211_crit_proto_stopped+0x490/0x490
[ 2716.735991][   T29]  ? nl80211_notify_iface+0x1a0/0x1a0
[ 2716.742325][   T29]  ? nl80211_get_power_save+0x480/0x480
[ 2716.766193][   T29]  netlink_rcv_skb+0x16b/0x440
[ 2716.772867][   T29]  ? genl_family_rcv_msg_dumpit+0x2d0/0x2d0
[ 2716.779736][   T29]  ? netlink_ack+0x1380/0x1380
[ 2716.784573][   T29]  ? down_read+0xc9/0x330
[ 2716.793787][   T29]  ? rwsem_down_read_slowpath+0xb20/0xb20
[ 2716.816545][   T29]  ? netlink_deliver_tap+0x1a0/0xd00
[ 2716.821925][   T29]  genl_rcv+0x28/0x40
[ 2716.836459][   T29]  netlink_unicast+0x53b/0x810
[ 2716.841316][   T29]  ? netlink_attachskb+0x880/0x880
[ 2716.856457][   T29]  ? __phys_addr_symbol+0x30/0x70
[ 2716.861597][   T29]  ? __check_object_size+0x323/0x730
[ 2716.874108][   T29]  netlink_sendmsg+0x8b7/0xd70
[ 2716.879334][   T29]  ? netlink_unicast+0x810/0x810
[ 2716.884329][   T29]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 2716.890508][   T29]  ? netlink_unicast+0x810/0x810
[ 2716.901156][   T29]  __sock_sendmsg+0xd5/0x180
[ 2716.909112][   T29]  __sys_sendto+0x225/0x310
[ 2716.914029][   T29]  ? __ia32_sys_getpeername+0xb0/0xb0
[ 2716.919906][   T29]  ? debug_object_assert_init+0x370/0x370
[ 2716.925753][   T29]  ? __fput+0x524/0xb70
[ 2716.930716][   T29]  ? __fput+0x524/0xb70
[ 2716.934942][   T29]  __x64_sys_sendto+0xe0/0x1b0
[ 2716.940379][   T29]  ? do_syscall_64+0x93/0x250
[ 2716.945109][   T29]  ? lockdep_hardirqs_on+0x7d/0x110
[ 2716.951097][   T29]  do_syscall_64+0xd3/0x250
[ 2716.955671][   T29]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 2716.962252][   T29] RIP: 0033:0x7f258c47ea9c
[ 2716.967846][   T29] RSP: 002b:00007ffff822b210 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[ 2716.986076][   T29] RAX: ffffffffffffffda RBX: 00007f258d0d4620 RCX: 00007f258c47ea9c
[ 2716.994123][   T29] RDX: 0000000000000024 RSI: 00007f258d0d4670 RDI: 0000000000000003
[ 2717.010620][   T29] RBP: 0000000000000000 R08: 00007ffff822b264 R09: 000000000000000c
[ 2717.016508][ T5094] Bluetooth: hci17: command 0x040f tx timeout
[ 2717.023812][   T29] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003
[ 2717.038571][   T29] R13: 0000000000000000 R14: 00007f258d0d4670 R15: 0000000000000000
[ 2717.054484][T27800] syz-executor.3 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[ 2717.066805][   T29]  </TASK>
[ 2717.069966][   T29] INFO: task syz-executor.4:27154 blocked for more than 145 seconds.
[ 2717.083384][T16775] bond196 (unregistering): Released all slaves
[ 2717.089912][   T29]       Not tainted 6.7.0-syzkaller-12291-g435e202d645c #0
[ 2717.106007][   T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 2717.114738][   T29] task:syz-executor.4  state:D stack:24160 pid:27154 tgid:27154 ppid:1      flags:0x00000006
[ 2717.115405][T27800] CPU: 0 PID: 27800 Comm: syz-executor.3 Not tainted 6.7.0-syzkaller-12291-g435e202d645c #0
[ 2717.132143][   T29] Call Trace:
[ 2717.136556][T27800] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 2717.136571][T27800] Call Trace:
[ 2717.136580][T27800]  <TASK>
[ 2717.136595][T27800]  dump_stack_lvl+0x125/0x1b0
[ 2717.136630][T27800]  dump_header+0x103/0x900
[ 2717.141056][   T29]  <TASK>
[ 2717.149953][T27800]  oom_kill_process+0x270/0xa60
[ 2717.150000][T27800]  out_of_memory+0x344/0x16c0
[ 2717.153553][   T29]  __schedule+0xf12/0x5c00
[ 2717.156206][T27800]  ? mutex_trylock+0xa0/0x130
[ 2717.156246][T27800]  ? oom_killer_disable+0x2d0/0x2d0
[ 2717.156280][T27800]  ? rcu_read_unlock+0x1c/0x60
[ 2717.156319][T27800]  mem_cgroup_out_of_memory+0x206/0x270
[ 2717.156346][T27800]  ? mem_cgroup_margin+0x130/0x130
[ 2717.156369][T27800]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2717.156414][T27800]  try_charge_memcg+0xcd1/0x11a0
[ 2717.156453][T27800]  ? mem_cgroup_handle_over_high+0x570/0x570
[ 2717.156489][T27800]  ? rcu_read_unlock+0x1c/0x60
[ 2717.156519][T27800]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2717.156546][T27800]  ? __radix_tree_lookup+0x21f/0x2c0
[ 2717.156589][T27800]  mem_cgroup_swapin_charge_folio+0x138/0x380
[ 2717.246622][T27800]  __read_swap_cache_async+0x4e1/0x600
[ 2717.252115][T27800]  ? filemap_get_incore_folio+0x160/0x160
[ 2717.258201][T27800]  ? swp_swap_info+0xcf/0x130
[ 2717.262892][T27800]  ? swapcache_prepare+0x20/0x20
[ 2717.267851][T27800]  swap_cluster_readahead+0x4d4/0x710
[ 2717.273239][T27800]  ? read_swap_cache_async+0x1a0/0x1a0
[ 2717.278708][T27800]  ? reacquire_held_locks+0x410/0x4c0
[ 2717.284092][T27800]  ? xas_descend+0x141/0x4e0
[ 2717.288713][T27800]  ? filemap_get_entry+0x23e/0x460
[ 2717.293859][T27800]  swapin_readahead+0x132/0xe60
[ 2717.298753][T27800]  ? get_swap_device+0x363/0x5e0
[ 2717.303724][T27800]  ? exit_swap_address_space+0x250/0x250
[ 2717.309370][T27800]  ? __filemap_get_folio+0x2b0/0xaa0
[ 2717.314702][T27800]  ? swap_cache_get_folio+0x1dc/0x460
[ 2717.320094][T27800]  ? get_swap_device+0x245/0x5e0
[ 2717.325042][T27800]  ? free_pages_and_swap_cache+0xa0/0xa0
[ 2717.330685][T27800]  ? lock_sync+0x190/0x190
[ 2717.335150][T27800]  do_swap_page+0x4a6/0x3190
[ 2717.339780][T27800]  ? rcu_is_watching+0x12/0xb0
[ 2717.344563][T27800]  ? __pte_offset_map+0x1b9/0x540
[ 2717.349596][T27800]  ? unmap_mapping_folio+0x3b0/0x3b0
[ 2717.354928][T27800]  ? pte_offset_map_nolock+0xfa/0x1b0
[ 2717.360324][T27800]  ? __pte_offset_map+0x540/0x540
[ 2717.365368][T27800]  __handle_mm_fault+0x13a0/0x4900
[ 2717.370499][T27800]  ? clear_huge_page+0x2e0/0x2e0
[ 2717.375543][T27800]  ? lock_mm_and_find_vma+0x580/0x580
[ 2717.380934][T27800]  handle_mm_fault+0x47a/0xa10
[ 2717.385719][T27800]  do_user_addr_fault+0x30b/0x1030
[ 2717.390903][T27800]  ? irqentry_enter_from_user_mode+0x5f/0xc0
[ 2717.396911][T27800]  exc_page_fault+0x5d/0xc0
[ 2717.401436][T27800]  asm_exc_page_fault+0x26/0x30
[ 2717.406300][T27800] RIP: 0033:0x7f212b0361b5
[ 2717.410897][T27800] Code: c0 0f 83 18 0d 00 00 49 89 ca 48 89 ce 48 89 cf 48 89 c8 49 c1 ea 08 48 c1 ee 10 4c 8d 42 18 0f b6 dd 48 c1 ef 18 48 c1 e8 20 <48> 0f af 05 cb f4 c9 00 48 03 42 10 41 81 e2 fe 00 00 00 4c 89 84
[ 2717.430775][T27800] RSP: 002b:00007ffc7b20b950 EFLAGS: 00010246
[ 2717.436852][T27800] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000008
[ 2717.444849][T27800] RDX: 00007f212ac00030 RSI: 0000000000000000 RDI: 0000000000000000
[ 2717.452834][T27800] RBP: 0000000000000000 R08: 00007f212ac00048 R09: 0000000000000000
[ 2717.460848][T27800] R10: 0000000000000000 R11: 0000000001b205b7 R12: 00007ffc7b20baf8
[ 2717.468829][T27800] R13: 0000000000000f90 R14: 00007ffc7b20bb08 R15: 00007ffc7b20ba58
[ 2717.476832][T27800]  </TASK>
[ 2717.494309][   T29]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2717.501264][   T29]  ? io_schedule_timeout+0x150/0x150
[ 2717.507266][   T29]  ? schedule+0x1fc/0x270
[ 2717.511655][   T29]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2717.518371][   T29]  ? __mutex_lock+0x5b4/0x9d0
[ 2717.523371][   T29]  ? __mutex_trylock_common+0x78/0x250
[ 2717.529268][   T29]  schedule+0xe9/0x270
[ 2717.533407][   T29]  schedule_preempt_disabled+0x13/0x20
[ 2717.536092][T27800] memory: usage 307184kB, limit 307200kB, failcnt 153594
[ 2717.539368][   T29]  __mutex_lock+0x5b9/0x9d0
[ 2717.550751][   T29]  ? rtnetlink_rcv_msg+0x372/0xe00
[ 2717.556021][   T29]  ? mutex_trylock+0x130/0x130
[ 2717.556665][T27800] memory+swap: usage 307564kB, limit 9007199254740988kB, failcnt 0
[ 2717.560838][   T29]  ? bpf_lsm_capable+0x9/0x10
[ 2717.560881][   T29]  ? rtnetlink_rcv_msg+0x372/0xe00
[ 2717.579469][   T29]  rtnetlink_rcv_msg+0x372/0xe00
[ 2717.584458][   T29]  ? rtnl_fill_vf+0x490/0x490
[ 2717.586077][T27800] kmem: usage 307172kB, limit 9007199254740988kB, failcnt 0
[ 2717.592782][   T29]  netlink_rcv_skb+0x16b/0x440
[ 2717.602430][   T29]  ? rtnl_fill_vf+0x490/0x490
[ 2717.608102][   T29]  ? netlink_ack+0x1380/0x1380
[ 2717.612941][   T29]  ? netlink_deliver_tap+0x1a0/0xd00
[ 2717.616043][T27800] Memory cgroup stats for /syz3:
[ 2717.618385][   T29]  netlink_unicast+0x53b/0x810
[ 2717.618487][T27800] cache 0
[ 2717.623347][   T29]  ? netlink_attachskb+0x880/0x880
[ 2717.623380][   T29]  ? __phys_addr_symbol+0x30/0x70
[ 2717.636501][T27800] rss 12288
[ 2717.644756][T27800] rss_huge 0
[ 2717.648558][T27800] shmem 0
[ 2717.651664][T27800] mapped_file 0
[ 2717.655261][T27800] dirty 0
[ 2717.658741][T27800] writeback 0
[ 2717.662756][T27800] workingset_refault_anon 46554
[ 2717.667908][T27800] workingset_refault_file 1
[ 2717.672618][T27800] swap 389120
[ 2717.676246][T27800] swapcached 12288
[ 2717.680541][T27800] pgpgin 171541
[ 2717.684105][T27800] pgpgout 171538
[ 2717.686006][   T29]  ? __check_object_size+0x323/0x730
[ 2717.687812][T27800] pgfault 369350
[ 2717.698302][T27800] pgmajfault 44724
[ 2717.702153][T27800] inactive_anon 4096
[ 2717.710100][   T29]  netlink_sendmsg+0x8b7/0xd70
[ 2717.714962][   T29]  ? netlink_unicast+0x810/0x810
[ 2717.716021][T27800] active_anon 0
[ 2717.721033][   T29]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 2717.726022][T27800] inactive_file 0
[ 2717.729290][   T29]  ? netlink_unicast+0x810/0x810
[ 2717.736384][T27800] active_file 0
[ 2717.737854][   T29]  __sock_sendmsg+0xd5/0x180
[ 2717.740862][T27800] unevictable 0
[ 2717.745347][   T29]  __sys_sendto+0x225/0x310
[ 2717.754329][   T29]  ? __ia32_sys_getpeername+0xb0/0xb0
[ 2717.759885][   T29]  ? debug_object_assert_init+0x370/0x370
[ 2717.765654][   T29]  ? __fput+0x524/0xb70
[ 2717.770031][T27800] hierarchical_memory_limit 314572800
[ 2717.775442][T27800] hierarchical_memsw_limit 9223372036854771712
[ 2717.781976][   T29]  ? __fput+0x524/0xb70
[ 2717.782027][   T29]  __x64_sys_sendto+0xe0/0x1b0
[ 2717.782066][   T29]  ? do_syscall_64+0x93/0x250
[ 2717.782121][   T29]  ? lockdep_hardirqs_on+0x7d/0x110
[ 2717.782157][   T29]  do_syscall_64+0xd3/0x250
[ 2717.782191][   T29]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 2717.805959][T27800] total_cache 0
[ 2717.815240][T27800] total_rss 12288
[ 2717.816628][   T29] RIP: 0033:0x7f4755a7ea9c
[ 2717.823957][   T29] RSP: 002b:00007ffe168f6d40 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[ 2717.832850][   T29] RAX: ffffffffffffffda RBX: 00007f47566d4620 RCX: 00007f4755a7ea9c
[ 2717.836060][T27800] total_rss_huge 0
[ 2717.841348][   T29] RDX: 0000000000000028 RSI: 00007f47566d4670 RDI: 0000000000000003
[ 2717.844553][T27800] total_shmem 0
[ 2717.853039][   T29] RBP: 0000000000000000 R08: 00007ffe168f6d94 R09: 000000000000000c
[ 2717.864806][   T29] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003
[ 2717.879798][   T29] R13: 0000000000000000 R14: 00007f47566d4670 R15: 0000000000000000
[ 2717.888260][   T29]  </TASK>
[ 2717.890405][T27800] total_mapped_file 0
[ 2717.891368][   T29] INFO: task syz-executor.2:27161 blocked for more than 146 seconds.
[ 2717.898667][T16775] bond195 (unregistering): Released all slaves
[ 2717.904844][   T29]       Not tainted 6.7.0-syzkaller-12291-g435e202d645c #0
[ 2717.919255][   T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 2717.929731][   T29] task:syz-executor.2  state:D stack:24432 pid:27161 tgid:27161 ppid:1      flags:0x00004006
[ 2717.936182][T27800] total_dirty 0
[ 2717.940509][   T29] Call Trace:
[ 2717.944610][T27800] total_writeback 0
[ 2717.947241][   T29]  <TASK>
[ 2717.954120][   T29]  __schedule+0xf12/0x5c00
[ 2717.956009][T27800] total_workingset_refault_anon 46554
[ 2717.959025][   T29]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2717.966031][T27800] total_workingset_refault_file 1
[ 2717.970794][   T29]  ? io_schedule_timeout+0x150/0x150
[ 2717.981565][   T29]  ? schedule+0x1fc/0x270
[ 2717.986221][T27800] total_swap 389120
[ 2717.986562][   T29]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2717.995430][   T29]  ? __mutex_lock+0x5b4/0x9d0
[ 2717.995999][T27800] total_swapcached 12288
[ 2718.001608][   T29]  ? __mutex_trylock_common+0x78/0x250
[ 2718.011445][   T29]  ? spin_bug+0x1d0/0x1d0
[ 2718.015832][   T29]  schedule+0xe9/0x270
[ 2718.016221][T27800] total_pgpgin 171541
[ 2718.020816][   T29]  schedule_preempt_disabled+0x13/0x20
[ 2718.023946][T27800] total_pgpgout 171538
[ 2718.023958][T27800] total_pgfault 369350
[ 2718.023967][T27800] total_pgmajfault 44724
[ 2718.023977][T27800] total_inactive_anon 4096
[ 2718.051195][   T29]  __mutex_lock+0x5b9/0x9d0
[ 2718.055875][   T29]  ? rtnetlink_rcv_msg+0x372/0xe00
[ 2718.061812][   T29]  ? mutex_trylock+0x130/0x130
[ 2718.067069][   T29]  ? bpf_lsm_capable+0x9/0x10
[ 2718.071917][   T29]  ? rtnetlink_rcv_msg+0x372/0xe00
[ 2718.075521][T27800] total_active_anon 0
[ 2718.077887][   T29]  rtnetlink_rcv_msg+0x372/0xe00
[ 2718.077936][   T29]  ? rtnl_fill_vf+0x490/0x490
[ 2718.077970][   T29]  ? lock_acquire+0x1ae/0x520
[ 2718.077995][   T29]  ? find_held_lock+0x2d/0x110
[ 2718.078034][   T29]  ? rcu_preempt_deferred_qs_irqrestore+0x4f9/0xb70
[ 2718.078071][   T29]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2718.078102][   T29]  netlink_rcv_skb+0x16b/0x440
[ 2718.078132][   T29]  ? rtnl_fill_vf+0x490/0x490
[ 2718.095994][T27800] total_inactive_file 0
[ 2718.105262][   T29]  ? netlink_ack+0x1380/0x1380
[ 2718.126574][T27800] total_active_file 0
[ 2718.128753][   T29]  ? _raw_spin_unlock_irqrestore+0x3b/0x70
[ 2718.132883][T27800] total_unevictable 0
[ 2718.132895][T27800] anon_cost 0
[ 2718.132904][T27800] file_cost 0
[ 2718.132914][T27800] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=
[ 2718.139240][   T29]  ? __rcu_read_unlock+0x2af/0x580
[ 2718.145979][T27800] syz3
[ 2718.149950][   T29]  ? netlink_deliver_tap+0x1a0/0xd00
[ 2718.151693][T27800] ,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3
[ 2718.155097][   T29]  netlink_unicast+0x53b/0x810
[ 2718.185232][T27800] ,task=syz-executor.3,pid=27800,uid=0
[ 2718.188417][   T29]  ? netlink_attachskb+0x880/0x880
[ 2718.199501][   T29]  ? __phys_addr_symbol+0x30/0x70
[ 2718.204985][   T29]  ? __check_object_size+0x323/0x730
[ 2718.211000][   T29]  netlink_sendmsg+0x8b7/0xd70
[ 2718.216245][T27800] Memory cgroup out of memory: Killed process 27800 (syz-executor.3) total-vm:54372kB, anon-rss:368kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:80kB oom_score_adj:1000
[ 2718.216666][   T29]  ? netlink_unicast+0x810/0x810
[ 2718.239031][   T29]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 2718.244461][   T29]  ? netlink_unicast+0x810/0x810
19:49:09 executing program 3:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x32}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000280)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000240)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=@newlink={0x48, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0xe403, r2}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @veth={{0x9}, {0x18, 0x2, 0x0, 0x1, @val=@VETH_INFO_PEER={0x14}}}}]}, 0x48}, 0x1, 0x31a}, 0x0)

[ 2718.251627][   T29]  __sock_sendmsg+0xd5/0x180
[ 2718.258375][   T29]  __sys_sendto+0x225/0x310
[ 2718.263062][   T29]  ? __ia32_sys_getpeername+0xb0/0xb0
[ 2718.270032][   T29]  ? debug_object_assert_init+0x370/0x370
[ 2718.276302][   T29]  ? __fput+0x524/0xb70
[ 2718.280647][   T29]  ? __fput+0x524/0xb70
[ 2718.284929][   T29]  __x64_sys_sendto+0xe0/0x1b0
[ 2718.290290][   T29]  ? do_syscall_64+0x93/0x250
[ 2718.299675][   T29]  ? lockdep_hardirqs_on+0x7d/0x110
[ 2718.304991][   T29]  do_syscall_64+0xd3/0x250
[ 2718.325971][   T29]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 2718.331988][   T29] RIP: 0033:0x7fc95847ea9c
[ 2718.346044][   T29] RSP: 002b:00007ffe87abbf50 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[ 2718.354538][   T29] RAX: ffffffffffffffda RBX: 00007fc9590d4620 RCX: 00007fc95847ea9c
[ 2718.362858][   T29] RDX: 000000000000002c RSI: 00007fc9590d4670 RDI: 0000000000000003
[ 2718.371484][   T29] RBP: 0000000000000000 R08: 00007ffe87abbfa4 R09: 000000000000000c
[ 2718.380425][   T29] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003
[ 2718.388929][   T29] R13: 0000000000000000 R14: 00007fc9590d4670 R15: 0000000000000000
[ 2718.397365][   T29]  </TASK>
[ 2718.400583][   T29] INFO: task kworker/1:6:27194 blocked for more than 146 seconds.
[ 2718.402548][T16775] bond194 (unregistering): Released all slaves
[ 2718.411524][   T29]       Not tainted 6.7.0-syzkaller-12291-g435e202d645c #0
[ 2718.425708][   T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 2718.447114][   T29] task:kworker/1:6     state:D stack:26368 pid:27194 tgid:27194 ppid:2      flags:0x00004000
[ 2718.459141][   T29] Workqueue: ipv6_addrconf addrconf_dad_work
[ 2718.465233][   T29] Call Trace:
[ 2718.469201][   T29]  <TASK>
[ 2718.472171][   T29]  __schedule+0xf12/0x5c00
[ 2718.477284][   T29]  ? print_usage_bug.part.0+0x550/0x550
[ 2718.482912][   T29]  ? io_schedule_timeout+0x150/0x150
[ 2718.488892][   T29]  ? schedule+0x1fc/0x270
[ 2718.493278][   T29]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2718.499328][   T29]  ? _raw_spin_unlock_irq+0x23/0x50
[ 2718.504588][   T29]  ? lockdep_hardirqs_on+0x7d/0x110
[ 2718.511929][   T29]  schedule+0xe9/0x270
[ 2718.518015][   T29]  schedule_preempt_disabled+0x13/0x20
[ 2718.523641][   T29]  __mutex_lock+0x5b9/0x9d0
[ 2718.537850][   T29]  ? addrconf_dad_work+0xcf/0x14b0
[ 2718.543059][   T29]  ? mutex_trylock+0x130/0x130
[ 2718.552855][   T29]  ? addrconf_dad_work+0xcf/0x14b0
[ 2718.558491][   T29]  ? rtnl_lock+0x9/0x20
[ 2718.562709][   T29]  addrconf_dad_work+0xcf/0x14b0
[ 2718.568503][   T29]  ? lock_sync+0x190/0x190
[ 2718.572988][   T29]  ? addrconf_dad_completed+0x1030/0x1030
[ 2718.586081][   T29]  process_one_work+0x886/0x15d0
[ 2718.591121][   T29]  ? lock_sync+0x190/0x190
[ 2718.595583][   T29]  ? workqueue_congested+0x300/0x300
[ 2718.614306][   T29]  ? assign_work+0x1a0/0x250
[ 2718.619461][   T29]  worker_thread+0x8b9/0x1290
[ 2718.624191][   T29]  ? __kthread_parkme+0x14b/0x220
[ 2718.631041][   T29]  ? process_one_work+0x15d0/0x15d0
[ 2718.639602][   T29]  kthread+0x2c6/0x3a0
[ 2718.643760][   T29]  ? _raw_spin_unlock_irq+0x23/0x50
[ 2718.649596][   T29]  ? kthread_complete_and_exit+0x40/0x40
[ 2718.655291][   T29]  ret_from_fork+0x45/0x80
[ 2718.660445][   T29]  ? kthread_complete_and_exit+0x40/0x40
[ 2718.666647][   T29]  ret_from_fork_asm+0x11/0x20
[ 2718.671500][   T29]  </TASK>
[ 2718.676696][T16775] bond193 (unregistering): Released all slaves
[ 2718.687972][   T29] INFO: task kworker/1:7:27205 blocked for more than 146 seconds.
[ 2718.695842][   T29]       Not tainted 6.7.0-syzkaller-12291-g435e202d645c #0
[ 2718.714969][   T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 2718.725614][   T29] task:kworker/1:7     state:D stack:25856 pid:27205 tgid:27205 ppid:2      flags:0x00004000
[ 2718.737831][   T29] Workqueue: events linkwatch_event
[ 2718.743103][   T29] Call Trace:
[ 2718.753279][   T29]  <TASK>
[ 2718.756899][   T29]  __schedule+0xf12/0x5c00
[ 2718.761388][   T29]  ? print_usage_bug.part.0+0x550/0x550
[ 2718.767577][   T29]  ? mark_held_locks+0x9f/0xe0
[ 2718.772418][   T29]  ? io_schedule_timeout+0x150/0x150
[ 2718.778583][   T29]  ? schedule+0x1fc/0x270
[ 2718.782991][   T29]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2718.789081][   T29]  ? _raw_spin_unlock_irq+0x29/0x50
[ 2718.794446][   T29]  schedule+0xe9/0x270
[ 2718.799306][   T29]  schedule_preempt_disabled+0x13/0x20
[ 2718.804839][   T29]  __mutex_lock+0x5b9/0x9d0
[ 2718.809950][   T29]  ? linkwatch_event+0x51/0xc0
[ 2718.814760][   T29]  ? mutex_trylock+0x130/0x130
[ 2718.821360][   T29]  ? lock_sync+0x190/0x190
[ 2718.821421][T27801] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2718.825805][   T29]  ? lock_sync+0x190/0x190
[ 2718.825830][   T29]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2718.825859][   T29]  ? linkwatch_event+0x51/0xc0
[ 2718.836480][T27801] CPU: 0 PID: 27801 Comm: syz-executor.3 Not tainted 6.7.0-syzkaller-12291-g435e202d645c #0
[ 2718.856864][   T29]  linkwatch_event+0x51/0xc0
[ 2718.860710][T27801] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 2718.865306][   T29]  ? __linkwatch_run_queue+0x680/0x680
[ 2718.875743][T27801] Call Trace:
[ 2718.875761][T27801]  <TASK>
[ 2718.875772][T27801]  dump_stack_lvl+0x125/0x1b0
[ 2718.875802][T27801]  dump_header+0x103/0x900
[ 2718.875839][T27801]  oom_kill_process+0x270/0xa60
[ 2718.884257][   T29]  ? rcu_is_watching+0x12/0xb0
[ 2718.884574][T27801]  out_of_memory+0x344/0x16c0
[ 2718.911191][T27801]  ? oom_killer_disable+0x2d0/0x2d0
[ 2718.915985][   T29]  process_one_work+0x886/0x15d0
[ 2718.916420][T27801]  ? rcu_read_unlock+0x1c/0x60
[ 2718.922357][   T29]  ? lock_sync+0x190/0x190
[ 2718.926102][T27801]  mem_cgroup_out_of_memory+0x206/0x270
[ 2718.926133][T27801]  ? mem_cgroup_margin+0x130/0x130
[ 2718.926154][T27801]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2718.938001][   T29]  ? workqueue_congested+0x300/0x300
[ 2718.941218][T27801]  try_charge_memcg+0xcd1/0x11a0
[ 2718.955994][   T29]  ? assign_work+0x1a0/0x250
[ 2718.956872][T27801]  ? mem_cgroup_handle_over_high+0x570/0x570
[ 2718.961447][   T29]  worker_thread+0x8b9/0x1290
[ 2718.967408][T27801]  ? get_mem_cgroup_from_objcg+0xb5/0x2a0
[ 2718.967436][T27801]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2718.967461][T27801]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2718.967498][T27801]  __memcg_kmem_charge_page+0xdd/0x2a0
[ 2718.977135][   T29]  ? __kthread_parkme+0x14b/0x220
[ 2718.977854][T27801]  memcg_charge_kernel_stack+0xc3/0x1f0
[ 2718.983208][   T29]  ? process_one_work+0x15d0/0x15d0
[ 2718.988564][T27801]  copy_process+0x1532/0x97b0
[ 2718.988601][T27801]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2718.988623][T27801]  ? page_ext_put+0x43/0xd0
[ 2718.988660][T27801]  ? pidfd_prepare+0x80/0x80
[ 2718.988692][T27801]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2718.988719][T27801]  ? preempt_count_sub+0x160/0x160
[ 2718.988746][T27801]  ? print_usage_bug.part.0+0x550/0x550
[ 2718.988783][T27801]  ? __might_fault+0xe6/0x1a0
[ 2718.988825][T27801]  ? _copy_from_user+0x5d/0xf0
[ 2718.988865][T27801]  kernel_clone+0xfd/0x930
[ 2718.988897][T27801]  ? create_io_thread+0xe0/0xe0
[ 2718.988950][T27801]  __do_sys_clone3+0x1f1/0x260
[ 2718.988980][T27801]  ? __do_sys_clone+0x100/0x100
[ 2718.989025][T27801]  ? do_user_addr_fault+0x663/0x1030
[ 2718.989076][T27801]  do_syscall_64+0xd3/0x250
[ 2718.989109][T27801]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 2718.989134][T27801] RIP: 0033:0x7f212b0a8b99
[ 2718.989155][T27801] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 2719.008832][   T29]  kthread+0x2c6/0x3a0
[ 2719.010322][T27801] RSP: 002b:00007ffc7b20b738 EFLAGS: 00000202
[ 2719.014990][   T29]  ? _raw_spin_unlock_irq+0x23/0x50
[ 2719.020949][T27801]  ORIG_RAX: 00000000000001b3
[ 2719.020961][T27801] RAX: ffffffffffffffda RBX: 00007f212b051270 RCX: 00007f212b0a8b99
[ 2719.020976][T27801] RDX: 00007f212b051270 RSI: 0000000000000058 RDI: 00007ffc7b20b780
[ 2719.020990][T27801] RBP: 00007f212be566c0 R08: 00007f212be566c0 R09: 00007ffc7b20b867
[ 2719.021004][T27801] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 2719.021019][T27801] R13: 000000000000000b R14: 00007ffc7b20b780 R15: 00007ffc7b20b868
[ 2719.021052][T27801]  </TASK>
[ 2719.033481][   T29]  ? kthread_complete_and_exit+0x40/0x40
[ 2719.096269][ T5094] Bluetooth: hci17: command 0x0419 tx timeout
[ 2719.100563][   T29]  ret_from_fork+0x45/0x80
[ 2719.149140][T27801] memory: usage 307200kB, limit 307200kB, failcnt 153907
[ 2719.187273][   T29]  ? kthread_complete_and_exit+0x40/0x40
[ 2719.189144][T27801] memory+swap: usage 307532kB, limit 9007199254740988kB, failcnt 0
[ 2719.200311][   T29]  ret_from_fork_asm+0x11/0x20
[ 2719.206666][T27801] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0
[ 2719.206686][T27801] Memory cgroup stats for /syz3:
[ 2719.206834][T27801] cache 0
[ 2719.206844][T27801] rss 12288
[ 2719.206854][T27801] rss_huge 0
[ 2719.206863][T27801] shmem 0
[ 2719.206873][T27801] mapped_file 0
[ 2719.206883][T27801] dirty 0
[ 2719.206892][T27801] writeback 0
[ 2719.206902][T27801] workingset_refault_anon 46678
[ 2719.206918][T27801] workingset_refault_file 1
[ 2719.206927][T27801] swap 339968
[ 2719.206936][T27801] swapcached 12288
[ 2719.206945][T27801] pgpgin 171677
[ 2719.206955][T27801] pgpgout 171674
[ 2719.206965][T27801] pgfault 369571
[ 2719.206975][T27801] pgmajfault 44842
[ 2719.206984][T27801] inactive_anon 0
[ 2719.206994][T27801] active_anon 12288
[ 2719.207004][T27801] inactive_file 0
[ 2719.207013][T27801] active_file 0
[ 2719.207023][T27801] unevictable 0
[ 2719.207032][T27801] hierarchical_memory_limit 314572800
[ 2719.207043][T27801] hierarchical_memsw_limit 9223372036854771712
[ 2719.207055][T27801] total_cache 0
[ 2719.207064][T27801] total_rss 12288
[ 2719.207073][T27801] total_rss_huge 0
[ 2719.207083][T27801] total_shmem 0
[ 2719.207093][T27801] total_mapped_file 0
[ 2719.207102][T27801] total_dirty 0
[ 2719.207112][T27801] total_writeback 0
[ 2719.207123][T27801] total_workingset_refault_anon 46678
[ 2719.207134][T27801] total_workingset_refault_file 1
[ 2719.207144][T27801] total_swap 339968
[ 2719.207154][T27801] total_swapcached 12288
19:49:11 executing program 3:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x32}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000280)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000240)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=@newlink={0x48, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0xe403, r2}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @veth={{0x9}, {0x18, 0x2, 0x0, 0x1, @val=@VETH_INFO_PEER={0x14}}}}]}, 0x48}, 0x1, 0x322}, 0x0)

[ 2719.207165][T27801] total_pgpgin 171677
[ 2719.207175][T27801] total_pgpgout 171674
[ 2719.207185][T27801] total_pgfault 369571
[ 2719.207195][T27801] total_pgmajfault 44842
[ 2719.207205][T27801] total_inactive_anon 0
[ 2719.207215][T27801] total_active_anon 12288
[ 2719.207226][T27801] total_inactive_file 0
[ 2719.207236][T27801] total_active_file 0
[ 2719.207245][T27801] total_unevictable 0
[ 2719.207253][T27801] anon_cost 0
[ 2719.207262][T27801] file_cost 0
[ 2719.235714][   T29]  </TASK>
[ 2719.238714][T27801] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1
[ 2719.244984][T16775] bond192 (unregistering): Released all slaves
[ 2719.248151][T27801] ,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=27801,uid=0
[ 2719.248234][T27801] Memory cgroup out of memory: Killed process 27801 (syz-executor.3) total-vm:54504kB, anon-rss:380kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 2719.326248][   T29] INFO: task syz-executor.5:27237 blocked for more than 147 seconds.
[ 2719.467531][   T29]       Not tainted 6.7.0-syzkaller-12291-g435e202d645c #0
[ 2719.474867][   T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 2719.483989][   T29] task:syz-executor.5  state:D stack:24608 pid:27237 tgid:27237 ppid:1      flags:0x00000006
[ 2719.494775][   T29] Call Trace:
[ 2719.498425][   T29]  <TASK>
[ 2719.501412][   T29]  __schedule+0xf12/0x5c00
[ 2719.505871][   T29]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2719.519653][   T29]  ? io_schedule_timeout+0x150/0x150
[ 2719.525074][   T29]  ? schedule+0x1fc/0x270
[ 2719.529831][   T29]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2719.535503][   T29]  ? __mutex_lock+0x5b4/0x9d0
[ 2719.546530][   T29]  ? __mutex_trylock_common+0x78/0x250
[ 2719.552428][   T29]  schedule+0xe9/0x270
[ 2719.559374][   T29]  schedule_preempt_disabled+0x13/0x20
[ 2719.575963][   T29]  __mutex_lock+0x5b9/0x9d0
[ 2719.580562][   T29]  ? rtnetlink_rcv_msg+0x372/0xe00
[ 2719.585753][   T29]  ? mutex_trylock+0x130/0x130
[ 2719.616247][   T29]  ? bpf_lsm_capable+0x9/0x10
[ 2719.621024][   T29]  ? rtnetlink_rcv_msg+0x372/0xe00
[ 2719.635953][   T29]  rtnetlink_rcv_msg+0x372/0xe00
[ 2719.642531][   T29]  ? rtnl_fill_vf+0x490/0x490
[ 2719.656945][   T29]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2719.663029][   T29]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 2719.686219][   T29]  ? hlock_class+0x4e/0x130
[ 2719.690814][   T29]  ? __lock_acquire+0xc77/0x3b30
[ 2719.695802][   T29]  netlink_rcv_skb+0x16b/0x440
[ 2719.701193][   T29]  ? rtnl_fill_vf+0x490/0x490
[ 2719.706261][   T29]  ? netlink_ack+0x1380/0x1380
[ 2719.711078][   T29]  ? lock_sync+0x190/0x190
[ 2719.711687][T27802] syz-executor.3 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[ 2719.715709][   T29]  ? netlink_deliver_tap+0x1a0/0xd00
[ 2719.732878][   T29]  ? _copy_from_iter+0x2c1/0x10f0
[ 2719.738368][   T29]  netlink_unicast+0x53b/0x810
[ 2719.744117][   T29]  ? netlink_attachskb+0x880/0x880
[ 2719.751522][   T29]  ? __phys_addr_symbol+0x30/0x70
[ 2719.756087][T27802] CPU: 0 PID: 27802 Comm: syz-executor.3 Not tainted 6.7.0-syzkaller-12291-g435e202d645c #0
[ 2719.766774][T27802] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 2719.777068][T27802] Call Trace:
[ 2719.780664][T27802]  <TASK>
[ 2719.783651][T27802]  dump_stack_lvl+0x125/0x1b0
[ 2719.788381][T27802]  dump_header+0x103/0x900
[ 2719.792853][T27802]  oom_kill_process+0x270/0xa60
[ 2719.797726][T27802]  out_of_memory+0x344/0x16c0
[ 2719.802422][T27802]  ? mutex_trylock+0xa0/0x130
[ 2719.807143][T27802]  ? oom_killer_disable+0x2d0/0x2d0
[ 2719.812362][T27802]  ? rcu_read_unlock+0x1c/0x60
[ 2719.817154][T27802]  mem_cgroup_out_of_memory+0x206/0x270
[ 2719.822828][T27802]  ? mem_cgroup_margin+0x130/0x130
[ 2719.827965][T27802]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2719.833359][T27802]  try_charge_memcg+0xcd1/0x11a0
[ 2719.838315][T27802]  ? mem_cgroup_handle_over_high+0x570/0x570
[ 2719.844327][T27802]  ? rcu_read_unlock+0x1c/0x60
[ 2719.849132][T27802]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2719.854526][T27802]  ? __radix_tree_lookup+0x21f/0x2c0
[ 2719.859830][T27802]  mem_cgroup_swapin_charge_folio+0x138/0x380
[ 2719.865944][T27802]  __read_swap_cache_async+0x4e1/0x600
[ 2719.871432][T27802]  ? filemap_get_incore_folio+0x160/0x160
[ 2719.877178][T27802]  ? swp_swap_info+0xcf/0x130
[ 2719.883003][T27802]  ? swapcache_prepare+0x20/0x20
[ 2719.887956][T27802]  swap_cluster_readahead+0x4d4/0x710
[ 2719.893343][T27802]  ? read_swap_cache_async+0x1a0/0x1a0
[ 2719.898811][T27802]  ? reacquire_held_locks+0x410/0x4c0
[ 2719.904274][T27802]  ? xas_descend+0x141/0x4e0
[ 2719.908892][T27802]  ? filemap_get_entry+0x23e/0x460
[ 2719.914036][T27802]  swapin_readahead+0x132/0xe60
[ 2719.918900][T27802]  ? get_swap_device+0x363/0x5e0
[ 2719.923848][T27802]  ? exit_swap_address_space+0x250/0x250
[ 2719.929513][T27802]  ? __filemap_get_folio+0x2b0/0xaa0
[ 2719.934851][T27802]  ? swap_cache_get_folio+0x1dc/0x460
[ 2719.940243][T27802]  ? get_swap_device+0x245/0x5e0
[ 2719.945278][T27802]  ? free_pages_and_swap_cache+0xa0/0xa0
[ 2719.950924][T27802]  ? lock_sync+0x190/0x190
[ 2719.955354][T27802]  do_swap_page+0x4a6/0x3190
[ 2719.959967][T27802]  ? rcu_is_watching+0x12/0xb0
[ 2719.964742][T27802]  ? __pte_offset_map+0x1b9/0x540
[ 2719.969785][T27802]  ? unmap_mapping_folio+0x3b0/0x3b0
[ 2719.975094][T27802]  ? pte_offset_map_nolock+0xfa/0x1b0
[ 2719.980475][T27802]  ? __pte_offset_map+0x540/0x540
[ 2719.985515][T27802]  __handle_mm_fault+0x13a0/0x4900
[ 2719.990674][T27802]  ? clear_huge_page+0x2e0/0x2e0
[ 2719.995633][T27802]  ? lock_mm_and_find_vma+0x580/0x580
[ 2720.001022][T27802]  handle_mm_fault+0x47a/0xa10
[ 2720.005805][T27802]  do_user_addr_fault+0x30b/0x1030
[ 2720.010954][T27802]  ? irqentry_enter_from_user_mode+0x5f/0xc0
[ 2720.016965][T27802]  exc_page_fault+0x5d/0xc0
[ 2720.021489][T27802]  asm_exc_page_fault+0x26/0x30
[ 2720.026349][T27802] RIP: 0033:0x7f212b045e02
[ 2720.030772][T27802] Code: ff ff 8b 2b 40 f6 c5 08 0f 85 8a 1f 00 00 48 83 7c 24 08 00 0f 84 30 20 00 00 40 f6 c5 02 0f 85 54 13 00 00 f3 41 0f 6f 4d 00 <48> 8b 7c 24 08 be 25 00 00 00 0f 11 8c 24 f8 00 00 00 49 8b 45 10
[ 2720.050390][T27802] RSP: 002b:00007ffc7b20afa0 EFLAGS: 00010246
[ 2720.056469][T27802] RAX: 00000000ffffffff RBX: 00007ffc7b20b500 RCX: 0000000000000000
[ 2720.064448][T27802] RDX: 00007ffc7b20b688 RSI: 00007f212b0c94fd RDI: 00007ffc7b20b500
[ 2720.072442][T27802] RBP: 00000000fbad8001 R08: 0000000000000000 R09: 0000000000000000
[ 2720.080514][T27802] R10: 0000000000000000 R11: 0000000000000206 R12: 00007f212b0c94fd
[ 2720.088490][T27802] R13: 00007ffc7b20b688 R14: 0000000000000000 R15: 00007ffc7b20b500
[ 2720.096501][T27802]  </TASK>
[ 2720.110343][T27802] memory: usage 307200kB, limit 307200kB, failcnt 154231
[ 2720.117675][T27802] memory+swap: usage 307548kB, limit 9007199254740988kB, failcnt 0
[ 2720.126021][T27802] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0
[ 2720.133487][T27802] Memory cgroup stats for /syz3:
[ 2720.133668][T27802] cache 0
[ 2720.141757][T27802] rss 12288
[ 2720.144964][T27802] rss_huge 0
[ 2720.148323][T27802] shmem 0
[ 2720.154156][T27802] mapped_file 0
[ 2720.161420][   T29]  ? __check_object_size+0x323/0x730
[ 2720.167243][   T29]  netlink_sendmsg+0x8b7/0xd70
[ 2720.172056][   T29]  ? netlink_unicast+0x810/0x810
[ 2720.174778][T27802] dirty 0
[ 2720.179912][   T29]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 2720.180786][T27802] writeback 0
[ 2720.185725][   T29]  ? netlink_unicast+0x810/0x810
[ 2720.185760][   T29]  __sock_sendmsg+0xd5/0x180
[ 2720.199507][   T29]  __sys_sendto+0x225/0x310
[ 2720.204069][   T29]  ? __ia32_sys_getpeername+0xb0/0xb0
[ 2720.206018][T27802] workingset_refault_anon 46784
[ 2720.209511][   T29]  ? reacquire_held_locks+0x4c0/0x4c0
[ 2720.215212][T27802] workingset_refault_file 1
[ 2720.219850][   T29]  ? rcu_is_watching+0x12/0xb0
[ 2720.219904][   T29]  ? folio_memcg_unlock+0x240/0x240
[ 2720.219945][   T29]  __x64_sys_sendto+0xe0/0x1b0
[ 2720.219983][   T29]  ? do_syscall_64+0x93/0x250
[ 2720.220015][   T29]  ? lockdep_hardirqs_on+0x7d/0x110
[ 2720.220050][   T29]  do_syscall_64+0xd3/0x250
[ 2720.220083][   T29]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 2720.220111][   T29] RIP: 0033:0x7f3b7a07ea9c
[ 2720.220132][   T29] RSP: 002b:00007fff3deea630 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[ 2720.220160][   T29] RAX: ffffffffffffffda RBX: 00007f3b7acd4620 RCX: 00007f3b7a07ea9c
[ 2720.220179][   T29] RDX: 0000000000000044 RSI: 00007f3b7acd4670 RDI: 0000000000000003
[ 2720.220196][   T29] RBP: 0000000000000000 R08: 00007fff3deea684 R09: 000000000000000c
[ 2720.220213][   T29] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003
[ 2720.220229][   T29] R13: 0000000000000000 R14: 00007f3b7acd4670 R15: 0000000000000000
[ 2720.220266][   T29]  </TASK>
[ 2720.220365][   T29] 
[ 2720.220365][   T29] Showing all locks held in the system:
[ 2720.220379][   T29] 2 locks held by kworker/1:1/27:
[ 2720.220396][   T29] 1 lock held by khungtaskd/29:
[ 2720.220411][   T29]  #0: ffffffff8d1acba0 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x75/0x340
[ 2720.231042][T16775] bond191 (unregistering): Released all slaves
[ 2720.235091][   T29] 2 locks held by getty/4813:
[ 2720.249139][T27802] swap 356352
[ 2720.256622][   T29]  #0: 
[ 2720.276015][T27802] swapcached 8192
[ 2720.298447][   T29] ffff888029b2c0a0
[ 2720.343729][T27802] pgpgin 171791
[ 2720.384256][T27802] pgpgout 171788
[ 2720.388231][T27802] pgfault 369746
[ 2720.391973][T27802] pgmajfault 44938
[ 2720.395712][T27802] inactive_anon 0
[ 2720.400243][T27802] active_anon 8192
[ 2720.403992][T27802] inactive_file 0
[ 2720.408221][T27802] active_file 0
[ 2720.411711][T27802] unevictable 0
[ 2720.414030][   T29]  (
[ 2720.415257][T27802] hierarchical_memory_limit 314572800
[ 2720.415271][T27802] hierarchical_memsw_limit 9223372036854771712
[ 2720.415283][T27802] total_cache 0
[ 2720.415292][T27802] total_rss 12288
[ 2720.422650][   T29] &tty->ldisc_sem
[ 2720.424744][T27802] total_rss_huge 0
[ 2720.437500][   T29] ){++++}-{0:0}
[ 2720.440907][T27802] total_shmem 0
[ 2720.446335][   T29] , at: tty_ldisc_ref_wait+0x24/0x80
[ 2720.452615][T27802] total_mapped_file 0
[ 2720.462676][T27802] total_dirty 0
[ 2720.466565][T27802] total_writeback 0
[ 2720.467142][   T29]  #1: 
[ 2720.470644][T27802] total_workingset_refault_anon 46784
[ 2720.470657][T27802] total_workingset_refault_file 1
[ 2720.470668][T27802] total_swap 356352
[ 2720.470677][T27802] total_swapcached 8192
[ 2720.477997][   T29] ffffc900015e72f0
[ 2720.479948][T27802] total_pgpgin 171791
[ 2720.496177][   T29]  (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0xfc6/0x1490
[ 2720.510428][   T29] 4 locks held by kworker/0:4/5154:
[ 2720.515667][   T29]  #0: ffff888014ff5538 ((wq_completion)infiniband){+.+.}-{0:0}, at: process_one_work+0x789/0x15d0
[ 2720.518320][T27802] total_pgpgout 171788
[ 2720.528032][   T29]  #1: ffffc9000543fd80 ((work_completion)(&work->work)#2){+.+.}-{0:0}, at: process_one_work+0x7eb/0x15d0
[ 2720.543257][   T29]  #2: ffff88802c64d158 (&rxe->usdev_lock){+.+.}-{3:3}, at: rxe_query_port+0x5d/0x1f0
[ 2720.549190][T27802] total_pgfault 369746
[ 2720.553018][   T29]  #3: ffffffff8ecbc728 (rtnl_mutex){+.+.}-{3:3}, at: ib_get_eth_speed+0x115/0xb50
[ 2720.567614][T27802] total_pgmajfault 44938
[ 2720.571938][T27802] total_inactive_anon 0
[ 2720.579394][   T29] 3 locks held by kworker/0:1/27697:
[ 2720.581879][T27802] total_active_anon 8192
[ 2720.589491][T27802] total_inactive_file 0
[ 2720.593673][T27802] total_active_file 0
[ 2720.596143][   T29]  #0: ffff888013088d38 ((wq_completion)events){+.+.}-{0:0}, at: process_one_work+0x789/0x15d0
[ 2720.598500][T27802] total_unevictable 0
[ 2720.618860][   T29]  #1: ffffc9000332fd80 (deferred_process_work){+.+.}-{0:0}, at: process_one_work+0x7eb/0x15d0
[ 2720.623681][T27802] anon_cost 0
[ 2720.632961][T27802] file_cost 0
[ 2720.636828][T27802] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=5091,uid=0
[ 2720.641714][   T29]  #2: 
[ 2720.653718][T27802] Memory cgroup out of memory: Killed process 5091 (syz-executor.3) total-vm:50532kB, anon-rss:504kB, file-rss:8960kB, shmem-rss:0kB, UID:0 pgtables:76kB oom_score_adj:0
[ 2720.666022][   T29] ffffffff8ecbc728 (rtnl_mutex){+.+.}-{3:3}, at: switchdev_deferred_process_work+0xe/0x20
[ 2720.705767][   T29] 5 locks held by kworker/u4:0/16775:
[ 2720.711813][   T29]  #0: ffff8880146e0d38 ((wq_completion)netns){+.+.}-{0:0}, at: process_one_work+0x789/0x15d0
[ 2720.722622][   T29]  #1: ffffc9001d837d80 (net_cleanup_work){+.+.}-{0:0}, at: process_one_work+0x7eb/0x15d0
[ 2720.732764][   T29]  #2: ffffffff8eca70d0 (pernet_ops_rwsem){++++}-{3:3}, at: cleanup_net+0x9f/0xb20
[ 2720.742526][   T29]  #3: ffffffff8ecbc728 (rtnl_mutex){+.+.}-{3:3}, at: default_device_exit_batch+0x8f/0xb30
[ 2720.755560][   T29]  #4: ffffffff8d1b83f8 (rcu_state.exp_mutex){+.+.}-{3:3}, at: synchronize_rcu_expedited+0x6b1/0x800
[ 2720.767053][   T29] 2 locks held by kworker/0:2/31746:
[ 2720.772373][   T29]  #0: ffff88801308a938 ((wq_completion)rcu_gp){+.+.}-{0:0}, at: process_one_work+0x789/0x15d0
[ 2720.795347][   T29]  #1: ffffc90021bb7d80 ((work_completion)(&rew->rew_work)){+.+.}-{0:0}, at: process_one_work+0x7eb/0x15d0
[ 2720.808250][   T29] 3 locks held by kworker/0:0/26644:
[ 2720.813578][   T29]  #0: ffff88802a085538 ((wq_completion)ipv6_addrconf){+.+.}-{0:0}, at: process_one_work+0x789/0x15d0
[ 2720.825228][   T29]  #1: ffffc900045afd80 ((work_completion)(&(&ifa->dad_work)->work)){+.+.}-{0:0}, at: process_one_work+0x7eb/0x15d0
[ 2720.838143][   T29]  #2: ffffffff8ecbc728 (rtnl_mutex){+.+.}-{3:3}, at: addrconf_dad_work+0xcf/0x14b0
[ 2720.848300][   T29] 2 locks held by syz-executor.0/27149:
[ 2720.853876][   T29]  #0: ffffffff8ed58c70 (cb_lock){++++}-{3:3}, at: genl_rcv+0x19/0x40
[ 2720.863308][   T29]  #1: ffffffff8ecbc728 (rtnl_mutex){+.+.}-{3:3}, at: nl80211_pre_doit+0xb4/0xb10
[ 2720.874679][   T29] 1 lock held by syz-executor.4/27154:
[ 2720.880754][   T29]  #0: ffffffff8ecbc728 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x372/0xe00
[ 2720.890677][   T29] 1 lock held by syz-executor.2/27161:
[ 2720.900727][   T29]  #0: ffffffff8ecbc728 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x372/0xe00
[ 2720.910408][   T29] 3 locks held by kworker/1:6/27194:
[ 2720.915748][   T29]  #0: ffff88802a085538 ((wq_completion)ipv6_addrconf){+.+.}-{0:0}, at: process_one_work+0x789/0x15d0
[ 2720.927011][   T29]  #1: ffffc9000364fd80 ((work_completion)(&(&ifa->dad_work)->work)){+.+.}-{0:0}, at: process_one_work+0x7eb/0x15d0
[ 2720.939477][   T29]  #2: ffffffff8ecbc728 (rtnl_mutex){+.+.}-{3:3}, at: addrconf_dad_work+0xcf/0x14b0
[ 2720.949119][   T29] 3 locks held by kworker/0:6/27201:
[ 2720.954454][   T29]  #0: ffff88801308a138 ((wq_completion)events_power_efficient){+.+.}-{0:0}, at: process_one_work+0x789/0x15d0
[ 2720.967031][   T29]  #1: ffffc900039cfd80 ((reg_check_chans).work){+.+.}-{0:0}, at: process_one_work+0x7eb/0x15d0
[ 2720.980051][   T29]  #2: ffffffff8ecbc728 (rtnl_mutex){+.+.}-{3:3}, at: reg_check_chans_work+0x7d/0x1050
[ 2720.990142][   T29] 3 locks held by kworker/1:7/27205:
[ 2720.995450][   T29]  #0: ffff888013088d38 ((wq_completion)events){+.+.}-{0:0}, at: process_one_work+0x789/0x15d0
[ 2721.010730][   T29]  #1: ffffc90003a4fd80 ((linkwatch_work).work){+.+.}-{0:0}, at: process_one_work+0x7eb/0x15d0
[ 2721.021258][   T29]  #2: ffffffff8ecbc728 (rtnl_mutex){+.+.}-{3:3}, at: linkwatch_event+0x51/0xc0
[ 2721.030530][   T29] 1 lock held by syz-executor.5/27237:
[ 2721.036135][   T29]  #0: ffffffff8ecbc728 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x372/0xe00
[ 2721.045626][   T29] 1 lock held by syz-executor.0/27371:
[ 2721.051221][   T29]  #0: ffffffff8ecbc728 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x372/0xe00
[ 2721.060778][   T29] 1 lock held by syz-executor.4/27381:
[ 2721.066403][   T29]  #0: ffffffff8ecbc728 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x372/0xe00
[ 2721.077978][   T29] 1 lock held by syz-executor.2/27395:
[ 2721.083493][   T29]  #0: ffffffff8ecbc728 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x372/0xe00
[ 2721.093876][   T29] 1 lock held by syz-executor.5/27528:
[ 2721.099880][   T29]  #0: ffffffff8ecbc728 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x372/0xe00
[ 2721.109772][   T29] 1 lock held by syz-executor.0/27626:
[ 2721.115340][   T29]  #0: ffffffff8ecbc728 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x372/0xe00
[ 2721.125636][   T29] 1 lock held by syz-executor.4/27643:
[ 2721.134544][   T29]  #0: ffffffff8ecbc728 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x372/0xe00
[ 2721.144479][   T29] 1 lock held by syz-executor.2/27655:
[ 2721.150647][   T29]  #0: ffffffff8ecbc728 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x372/0xe00
[ 2721.160467][   T29] 1 lock held by syz-executor.1/27727:
[ 2721.167854][   T29]  #0: ffffffff8ecbc728 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x372/0xe00
[ 2721.178831][   T29] 1 lock held by syz-executor.5/27746:
[ 2721.184325][   T29]  #0: ffffffff8ecbc728 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x372/0xe00
[ 2721.195410][   T29] 1 lock held by syz-executor.1/27762:
[ 2721.201313][   T29]  #0: ffffffff8ecbc728 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x372/0xe00
[ 2721.211669][   T29] 1 lock held by syz-executor.0/27780:
[ 2721.217553][   T29]  #0: ffffffff8ecbc728 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x372/0xe00
[ 2721.227445][   T29] 1 lock held by syz-executor.4/27786:
[ 2721.232917][   T29]  #0: ffffffff8ecbc728 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x372/0xe00
[ 2721.243226][   T29] 1 lock held by syz-executor.2/27793:
[ 2721.249102][   T29]  #0: ffffffff8ecbc728 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x372/0xe00
[ 2721.258998][   T29] 1 lock held by syz-executor.3/27802:
[ 2721.264492][   T29]  #0: ffffffff8d1b83f8 (rcu_state.exp_mutex){+.+.}-{3:3}, at: synchronize_rcu_expedited+0x3ff/0x800
[ 2721.278116][T16775] bond190 (unregistering): Released all slaves
[ 2721.291082][   T29] 
[ 2721.303008][   T29] =============================================
[ 2721.303008][   T29] 
[ 2721.337727][T16775] bond189 (unregistering): Released all slaves
[ 2721.356158][   T29] NMI backtrace for cpu 0
[ 2721.360560][   T29] CPU: 0 PID: 29 Comm: khungtaskd Not tainted 6.7.0-syzkaller-12291-g435e202d645c #0
[ 2721.370038][   T29] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 2721.380122][   T29] Call Trace:
[ 2721.383417][   T29]  <TASK>
[ 2721.386372][   T29]  dump_stack_lvl+0xd9/0x1b0
[ 2721.390999][   T29]  nmi_cpu_backtrace+0x277/0x390
[ 2721.395945][   T29]  ? lapic_can_unplug_cpu+0xa0/0xa0
[ 2721.401159][   T29]  nmi_trigger_cpumask_backtrace+0x299/0x300
[ 2721.407149][   T29]  watchdog+0xf87/0x1210
[ 2721.411428][   T29]  ? proc_dohung_task_timeout_secs+0x90/0x90
[ 2721.417420][   T29]  ? lockdep_hardirqs_on+0x7d/0x110
[ 2721.422636][   T29]  ? __kthread_parkme+0x14b/0x220
[ 2721.427677][   T29]  ? proc_dohung_task_timeout_secs+0x90/0x90
[ 2721.433671][   T29]  kthread+0x2c6/0x3a0
[ 2721.437750][   T29]  ? _raw_spin_unlock_irq+0x23/0x50
[ 2721.443044][   T29]  ? kthread_complete_and_exit+0x40/0x40
[ 2721.448689][   T29]  ret_from_fork+0x45/0x80
[ 2721.453114][   T29]  ? kthread_complete_and_exit+0x40/0x40
[ 2721.458758][   T29]  ret_from_fork_asm+0x11/0x20
[ 2721.463569][   T29]  </TASK>
[ 2721.467483][   T29] Sending NMI from CPU 0 to CPUs 1:
[ 2721.472777][    C1] NMI backtrace for cpu 1
[ 2721.472789][    C1] CPU: 1 PID: 2470 Comm: kworker/u4:9 Not tainted 6.7.0-syzkaller-12291-g435e202d645c #0
[ 2721.472813][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 2721.472826][    C1] Workqueue: events_unbound toggle_allocation_gate
[ 2721.472860][    C1] RIP: 0010:mark_lock+0x101/0xc50
[ 2721.472894][    C1] Code: 48 23 70 60 ba 01 00 00 00 0f 84 16 01 00 00 48 b8 00 00 00 00 00 fc ff df 4c 01 f8 48 c7 00 00 00 00 00 c7 40 08 00 00 00 00 <48> c7 40 10 00 00 00 00 48 8b 84 24 08 01 00 00 65 48 2b 04 25 28
[ 2721.472915][    C1] RSP: 0018:ffffc9000b107800 EFLAGS: 00000086
[ 2721.472930][    C1] RAX: fffff52001620f06 RBX: ffff888029498bb0 RCX: 1ffffffff242a373
[ 2721.472945][    C1] RDX: 0000000000000001 RSI: 0000000000000004 RDI: ffffffff92151b98
[ 2721.472958][    C1] RBP: ffffc9000b107940 R08: 0000000000000000 R09: fffffbfff2429de8
[ 2721.472972][    C1] R10: ffffffff9214ef47 R11: 0000000000000006 R12: ffff888029498000
[ 2721.472986][    C1] R13: 0000000000000004 R14: 0000000000000002 R15: 1ffff92001620f06
[ 2721.472999][    C1] FS:  0000000000000000(0000) GS:ffff8880b9900000(0000) knlGS:0000000000000000
[ 2721.473020][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 2721.473035][    C1] CR2: 0000555555796760 CR3: 000000000cf78000 CR4: 00000000003506f0
[ 2721.473049][    C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 2721.473061][    C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 2721.473074][    C1] Call Trace:
[ 2721.473081][    C1]  <NMI>
[ 2721.473089][    C1]  ? show_regs+0x8f/0xa0
[ 2721.473115][    C1]  ? nmi_cpu_backtrace+0x1d4/0x390
[ 2721.473140][    C1]  ? nmi_cpu_backtrace_handler+0xc/0x10
[ 2721.473172][    C1]  ? nmi_handle+0x1a6/0x570
[ 2721.473199][    C1]  ? mark_lock+0x101/0xc50
[ 2721.473230][    C1]  ? default_do_nmi+0x6a/0x160
[ 2721.473260][    C1]  ? exc_nmi+0x186/0x200
[ 2721.473287][    C1]  ? end_repeat_nmi+0xf/0x2a
[ 2721.473315][    C1]  ? mark_lock+0x101/0xc50
[ 2721.473346][    C1]  ? mark_lock+0x101/0xc50
[ 2721.473378][    C1]  ? mark_lock+0x101/0xc50
[ 2721.473408][    C1]  </NMI>
[ 2721.473414][    C1]  <TASK>
[ 2721.473422][    C1]  ? do_raw_spin_lock+0x12e/0x2b0
[ 2721.473444][    C1]  ? print_usage_bug.part.0+0x550/0x550
[ 2721.473476][    C1]  ? spin_bug+0x1d0/0x1d0
[ 2721.473496][    C1]  ? rcu_is_watching+0x12/0xb0
[ 2721.473524][    C1]  ? __pte_offset_map_lock+0x156/0x2f0
[ 2721.473546][    C1]  ? __phys_addr+0xc6/0x140
[ 2721.473576][    C1]  mark_held_locks+0x9f/0xe0
[ 2721.473610][    C1]  lockdep_hardirqs_on_prepare+0x139/0x420
[ 2721.473631][    C1]  ? kmem_cache_alloc_node+0xa2/0x340
[ 2721.473661][    C1]  trace_hardirqs_on+0x36/0x40
[ 2721.473692][    C1]  __text_poke+0x8d7/0xca0
[ 2721.473713][    C1]  ? setup_data_read+0x280/0x280
[ 2721.473737][    C1]  ? apply_relocation+0x830/0x830
[ 2721.473760][    C1]  ? kmem_cache_alloc_node+0xa2/0x340
[ 2721.473798][    C1]  text_poke_bp_batch+0x493/0x750
[ 2721.473823][    C1]  ? kmem_cache_alloc_bulk+0x1b7/0x940
[ 2721.473854][    C1]  ? alternatives_enable_smp+0x400/0x400
[ 2721.473877][    C1]  ? __jump_label_patch+0x1db/0x400
[ 2721.473907][    C1]  ? text_poke_queue+0xef/0x180
[ 2721.473930][    C1]  ? arch_jump_label_transform_queue+0xc0/0x110
[ 2721.473967][    C1]  text_poke_finish+0x30/0x40
[ 2721.473989][    C1]  arch_jump_label_transform_apply+0x1c/0x30
[ 2721.474021][    C1]  jump_label_update+0x1d7/0x400
[ 2721.474053][    C1]  static_key_enable_cpuslocked+0x1b7/0x270
[ 2721.474085][    C1]  static_key_enable+0x1a/0x20
[ 2721.474114][    C1]  toggle_allocation_gate+0xf4/0x250
[ 2721.474143][    C1]  ? wake_up_kfence_timer+0x30/0x30
[ 2721.474178][    C1]  process_one_work+0x886/0x15d0
[ 2721.474211][    C1]  ? batadv_nc_process_nc_paths.part.0+0x3e0/0x3e0
[ 2721.474300][    C1]  ? workqueue_congested+0x300/0x300
[ 2721.474333][    C1]  ? assign_work+0x1a0/0x250
[ 2721.474362][    C1]  worker_thread+0x8b9/0x1290
[ 2721.474397][    C1]  ? process_one_work+0x15d0/0x15d0
[ 2721.474425][    C1]  kthread+0x2c6/0x3a0
[ 2721.474449][    C1]  ? _raw_spin_unlock_irq+0x23/0x50
[ 2721.474472][    C1]  ? kthread_complete_and_exit+0x40/0x40
[ 2721.474499][    C1]  ret_from_fork+0x45/0x80
[ 2721.474524][    C1]  ? kthread_complete_and_exit+0x40/0x40
[ 2721.474551][    C1]  ret_from_fork_asm+0x11/0x20
[ 2721.474587][    C1]  </TASK>
[ 2721.891798][   T29] Kernel panic - not syncing: hung_task: blocked tasks
[ 2721.899664][   T29] CPU: 1 PID: 29 Comm: khungtaskd Not tainted 6.7.0-syzkaller-12291-g435e202d645c #0
[ 2721.909152][   T29] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 2721.919229][   T29] Call Trace:
[ 2721.922536][   T29]  <TASK>
[ 2721.925475][   T29]  dump_stack_lvl+0xd9/0x1b0
[ 2721.930094][   T29]  panic+0x6dc/0x790
[ 2721.934005][   T29]  ? panic_smp_self_stop+0xa0/0xa0
[ 2721.939147][   T29]  ? preempt_schedule_thunk+0x1a/0x30
[ 2721.944558][   T29]  ? lapic_can_unplug_cpu+0xa0/0xa0
[ 2721.949797][   T29]  ? preempt_schedule_thunk+0x1a/0x30
[ 2721.955301][   T29]  ? watchdog+0xd3e/0x1210
[ 2721.959753][   T29]  ? watchdog+0xd31/0x1210
[ 2721.964193][   T29]  watchdog+0xd4f/0x1210
[ 2721.968455][   T29]  ? proc_dohung_task_timeout_secs+0x90/0x90
[ 2721.974446][   T29]  ? lockdep_hardirqs_on+0x7d/0x110
[ 2721.979661][   T29]  ? __kthread_parkme+0x14b/0x220
[ 2721.984697][   T29]  ? proc_dohung_task_timeout_secs+0x90/0x90
[ 2721.990691][   T29]  kthread+0x2c6/0x3a0
[ 2721.994787][   T29]  ? _raw_spin_unlock_irq+0x23/0x50
[ 2722.000007][   T29]  ? kthread_complete_and_exit+0x40/0x40
[ 2722.005657][   T29]  ret_from_fork+0x45/0x80
[ 2722.010085][   T29]  ? kthread_complete_and_exit+0x40/0x40
[ 2722.015733][   T29]  ret_from_fork_asm+0x11/0x20
[ 2722.020526][   T29]  </TASK>
[ 2722.023736][   T29] Kernel Offset: disabled
[ 2722.028083][   T29] Rebooting in 86400 seconds..