00kB, failcnt 24680
[ 3141.388614][ T2091] memory+swap: usage 307636kB, limit 9007199254740988kB, failcnt 0
01:27:03 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0xa000000}, 0x0)

01:27:03 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36, 0xfffffff1}}}}]}, 0x58}}, 0x0)

[ 3141.430754][ T2091] kmem: usage 307196kB, limit 9007199254740988kB, failcnt 0
01:27:03 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {0x900}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

[ 3141.472479][ T2091] Memory cgroup stats for /syz0:
[ 3141.484844][ T2091] cache 0
[ 3141.543330][ T2091] rss 4096
[ 3141.546417][ T2091] rss_huge 0
[ 3141.554273][ T2091] shmem 0
[ 3141.560412][ T2091] mapped_file 0
[ 3141.564078][ T2091] dirty 0
[ 3141.567206][ T2091] writeback 0
[ 3141.571440][ T2091] workingset_refault_anon 9499
[ 3141.576388][ T2091] workingset_refault_file 56
[ 3141.581858][ T2091] swap 446464
[ 3141.585317][ T2091] swapcached 0
[ 3141.596496][ T2091] pgpgin 787984
[ 3141.601155][ T2091] pgpgout 787983
[ 3141.604891][ T2091] pgfault 1272298
[ 3141.608780][ T2091] pgmajfault 8793
[ 3141.626176][ T2091] inactive_anon 0
[ 3141.634292][ T2091] active_anon 4096
[ 3141.657754][ T2091] inactive_file 0
[ 3141.673824][ T2091] active_file 0
[ 3141.684986][ T2091] unevictable 0
[ 3141.696547][ T2091] hierarchical_memory_limit 314572800
01:27:04 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36, 0xfffffffc}}}}]}, 0x58}}, 0x0)

01:27:04 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0xb000000}, 0x0)

01:27:04 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {0xa00}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

[ 3141.712066][ T2091] hierarchical_memsw_limit 9223372036854771712
[ 3141.735533][ T2091] total_cache 0
[ 3141.776053][ T2091] total_rss 4096
[ 3141.793311][ T2091] total_rss_huge 0
[ 3141.808252][ T2091] total_shmem 0
[ 3141.824737][ T2091] total_mapped_file 0
[ 3141.828773][ T2091] total_dirty 0
[ 3141.841450][ T2091] total_writeback 0
[ 3141.845692][ T2091] total_workingset_refault_anon 9499
[ 3141.851846][ T2091] total_workingset_refault_file 56
[ 3141.860004][ T2091] total_swap 446464
[ 3141.864997][ T2091] total_swapcached 0
[ 3141.872213][ T2091] total_pgpgin 787984
01:27:04 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}}, 0x0)

[ 3141.876310][ T2091] total_pgpgout 787983
[ 3141.894843][ T2091] total_pgfault 1272298
[ 3141.899451][ T2091] total_pgmajfault 8793
[ 3141.904172][ T2091] total_inactive_anon 0
[ 3141.908789][ T2091] total_active_anon 4096
[ 3141.913660][ T2091] total_inactive_file 0
[ 3141.923073][ T2091] total_active_file 0
[ 3141.933066][ T2091] total_unevictable 0
[ 3141.937272][ T2091] anon_cost 0
[ 3141.944425][ T2091] file_cost 0
[ 3141.948286][ T2091] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=2077,uid=0
01:27:04 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0xc000000}, 0x0)

01:27:04 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {0xb00}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

[ 3141.982826][ T2091] Memory cgroup out of memory: Killed process 2077 (syz-executor.0) total-vm:54508kB, anon-rss:372kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000
01:27:04 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36, 0x0, 0x2}}}}]}, 0x58}}, 0x0)

01:27:04 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x44, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x14, 0x2, [@TCA_FLOW_EMATCHES={0x10, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100, 0x15}}, @TCA_EMATCH_TREE_LIST={0x4}]}]}}]}, 0x44}}, 0x0)

[ 3142.143725][ T2121] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3142.154988][ T2121] CPU: 0 PID: 2121 Comm: syz-executor.2 Not tainted 6.8.0-rc5-syzkaller-00002-gfca7526b7d89 #0
[ 3142.165441][ T2121] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024
[ 3142.175517][ T2121] Call Trace:
[ 3142.178817][ T2121]  <TASK>
[ 3142.181774][ T2121]  dump_stack_lvl+0x1e7/0x2e0
[ 3142.186516][ T2121]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3142.191759][ T2121]  ? __pfx__printk+0x10/0x10
[ 3142.196397][ T2121]  ? ___ratelimit+0x4c4/0x670
[ 3142.201126][ T2121]  ? __pfx____ratelimit+0x10/0x10
[ 3142.206192][ T2121]  dump_header+0xda/0x6a0
[ 3142.210573][ T2121]  oom_kill_process+0x3a7/0x930
[ 3142.215459][ T2121]  out_of_memory+0xf67/0x1320
[ 3142.220158][ T2121]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3142.225792][ T2121]  ? __pfx___mutex_lock+0x10/0x10
[ 3142.230820][ T2121]  ? __pfx_out_of_memory+0x10/0x10
[ 3142.235936][ T2121]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3142.241493][ T2121]  ? __pfx_lock_release+0x10/0x10
[ 3142.246518][ T2121]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3142.252583][ T2121]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3142.257806][ T2121]  ? mem_cgroup_iter+0x3e9/0x560
[ 3142.262849][ T2121]  try_charge_memcg+0xda2/0x18a0
[ 3142.267833][ T2121]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3142.273227][ T2121]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3142.278968][ T2121]  ? __pfx_lock_release+0x10/0x10
[ 3142.284013][ T2121]  ? memcg_account_kmem+0x1e7/0x210
[ 3142.289230][ T2121]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3142.295038][ T2121]  __memcg_kmem_charge_page+0xe1/0x250
[ 3142.300501][ T2121]  memcg_charge_kernel_stack+0x28a/0x550
[ 3142.306134][ T2121]  dup_task_struct+0x15d/0x7d0
[ 3142.310905][ T2121]  copy_process+0x5d5/0x3fc0
[ 3142.315505][ T2121]  ? __might_fault+0xa9/0x120
[ 3142.320187][ T2121]  ? __pfx_lock_release+0x10/0x10
[ 3142.325214][ T2121]  ? __pfx_copy_process+0x10/0x10
[ 3142.330231][ T2121]  ? __might_fault+0xc5/0x120
[ 3142.334908][ T2121]  ? __asan_memset+0x23/0x50
[ 3142.339506][ T2121]  kernel_clone+0x21d/0x8d0
[ 3142.344028][ T2121]  ? __pfx_kernel_clone+0x10/0x10
[ 3142.349063][ T2121]  __se_sys_clone3+0x2cb/0x350
[ 3142.353827][ T2121]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3142.359228][ T2121]  ? do_syscall_64+0x108/0x240
[ 3142.364006][ T2121]  ? do_syscall_64+0xb4/0x240
[ 3142.368687][ T2121]  do_syscall_64+0xf9/0x240
[ 3142.373191][ T2121]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 3142.379102][ T2121] RIP: 0033:0x7f5706ea9b99
[ 3142.383521][ T2121] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 3142.403128][ T2121] RSP: 002b:00007f57070cf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 3142.411715][ T2121] RAX: ffffffffffffffda RBX: 00007f5706e52270 RCX: 00007f5706ea9b99
[ 3142.419682][ T2121] RDX: 00007f5706e52270 RSI: 0000000000000058 RDI: 00007f57070cf960
[ 3142.427646][ T2121] RBP: 00007f5707c6c6c0 R08: 00007f5707c6c6c0 R09: 00007f57070cfa47
[ 3142.435618][ T2121] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 3142.443581][ T2121] R13: 000000000000000b R14: 00007f57070cf960 R15: 00007f57070cfa48
[ 3142.451580][ T2121]  </TASK>
[ 3142.476394][ T2121] memory: usage 307200kB, limit 307200kB, failcnt 80814
[ 3142.492224][ T2121] memory+swap: usage 307772kB, limit 9007199254740988kB, failcnt 0
[ 3142.501132][ T2121] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0
[ 3142.508833][ T2121] Memory cgroup stats for /syz2:
[ 3142.509374][ T2121] cache 0
[ 3142.517689][ T2121] rss 12288
[ 3142.522442][ T2121] rss_huge 0
[ 3142.526067][ T2121] shmem 0
[ 3142.529876][ T2121] mapped_file 0
[ 3142.533688][ T2121] dirty 0
[ 3142.536976][ T2121] writeback 0
[ 3142.542176][ T2121] workingset_refault_anon 28479
01:27:04 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {0xc00}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

01:27:04 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0xf000000}, 0x0)

[ 3142.567904][ T2121] workingset_refault_file 171
[ 3142.587598][ T2121] swap 585728
[ 3142.593866][ T2121] swapcached 0
[ 3142.597468][ T2121] pgpgin 779212
[ 3142.603963][ T2121] pgpgout 779209
[ 3142.607752][ T2121] pgfault 1281194
01:27:05 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36, 0x0, 0x3}}}}]}, 0x58}}, 0x0)

[ 3142.616713][ T2121] pgmajfault 23255
[ 3142.636484][ T2121] inactive_anon 0
[ 3142.655861][ T2174] __nla_validate_parse: 31 callbacks suppressed
[ 3142.655881][ T2174] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 3142.660130][ T2121] active_anon 12288
[ 3142.689680][ T2172] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 3142.703830][ T2121] inactive_file 0
[ 3142.709242][ T2121] active_file 0
[ 3142.713302][ T2121] unevictable 0
[ 3142.717013][ T2121] hierarchical_memory_limit 314572800
[ 3142.726603][ T2121] hierarchical_memsw_limit 9223372036854771712
[ 3142.737577][ T2121] total_cache 0
[ 3142.746107][ T2121] total_rss 12288
[ 3142.754191][ T2179] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 3142.755289][ T2121] total_rss_huge 0
01:27:05 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x10000000}, 0x0)

[ 3142.772272][ T2121] total_shmem 0
[ 3142.776507][ T2121] total_mapped_file 0
[ 3142.782386][ T2121] total_dirty 0
[ 3142.788255][ T2121] total_writeback 0
[ 3142.792602][ T2121] total_workingset_refault_anon 28479
[ 3142.798210][ T2121] total_workingset_refault_file 171
[ 3142.805893][ T2121] total_swap 585728
[ 3142.810464][ T2121] total_swapcached 0
[ 3142.814844][ T2121] total_pgpgin 779212
[ 3142.819251][ T2121] total_pgpgout 779209
[ 3142.831264][ T2121] total_pgfault 1281194
[ 3142.838338][ T2121] total_pgmajfault 23255
[ 3142.843282][ T2121] total_inactive_anon 0
[ 3142.847725][ T2121] total_active_anon 12288
[ 3142.853834][ T2121] total_inactive_file 0
[ 3142.858263][ T2121] total_active_file 0
[ 3142.865083][ T2121] total_unevictable 0
01:27:05 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {0xf00}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

01:27:05 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36, 0x0, 0x4}}}}]}, 0x58}}, 0x0)

[ 3142.872198][ T2121] anon_cost 0
[ 3142.877586][ T2183] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 3142.884385][ T2121] file_cost 0
[ 3142.912595][ T2121] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=2121,uid=0
01:27:05 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x11000000}, 0x0)

[ 3142.948625][ T2121] Memory cgroup out of memory: Killed process 2121 (syz-executor.2) total-vm:54508kB, anon-rss:0kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000
[ 3142.969299][ T2168] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3142.984983][ T2186] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 3142.992860][ T2168] CPU: 0 PID: 2168 Comm: syz-executor.0 Not tainted 6.8.0-rc5-syzkaller-00002-gfca7526b7d89 #0
[ 3143.004645][ T2168] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024
[ 3143.014699][ T2168] Call Trace:
[ 3143.018010][ T2168]  <TASK>
[ 3143.020936][ T2168]  dump_stack_lvl+0x1e7/0x2e0
[ 3143.025626][ T2168]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3143.030910][ T2168]  ? __pfx__printk+0x10/0x10
[ 3143.035494][ T2168]  ? ___ratelimit+0x4c4/0x670
[ 3143.040174][ T2168]  ? __pfx____ratelimit+0x10/0x10
[ 3143.045284][ T2168]  dump_header+0xda/0x6a0
[ 3143.049618][ T2168]  oom_kill_process+0x3a7/0x930
[ 3143.054465][ T2168]  out_of_memory+0xf67/0x1320
[ 3143.059139][ T2168]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3143.064764][ T2168]  ? __pfx___mutex_lock+0x10/0x10
[ 3143.069891][ T2168]  ? __pfx_out_of_memory+0x10/0x10
[ 3143.075002][ T2168]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3143.080545][ T2168]  ? __pfx_lock_release+0x10/0x10
[ 3143.085566][ T2168]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3143.091633][ T2168]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3143.096831][ T2168]  ? mem_cgroup_iter+0x422/0x560
[ 3143.101774][ T2168]  try_charge_memcg+0xda2/0x18a0
[ 3143.106728][ T2168]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3143.112094][ T2168]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3143.117816][ T2168]  ? __pfx_lock_release+0x10/0x10
[ 3143.122836][ T2168]  ? memcg_account_kmem+0x1e7/0x210
[ 3143.128032][ T2168]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3143.133831][ T2168]  __memcg_kmem_charge_page+0xe1/0x250
[ 3143.139302][ T2168]  memcg_charge_kernel_stack+0x37e/0x550
[ 3143.144933][ T2168]  dup_task_struct+0x40d/0x7d0
[ 3143.149789][ T2168]  copy_process+0x5d5/0x3fc0
[ 3143.154382][ T2168]  ? __might_fault+0xa9/0x120
[ 3143.159058][ T2168]  ? __pfx_lock_release+0x10/0x10
[ 3143.164094][ T2168]  ? __pfx_copy_process+0x10/0x10
[ 3143.169116][ T2168]  ? __might_fault+0xc5/0x120
[ 3143.173875][ T2168]  ? __asan_memset+0x23/0x50
[ 3143.178466][ T2168]  kernel_clone+0x21d/0x8d0
[ 3143.182968][ T2168]  ? __pfx_kernel_clone+0x10/0x10
[ 3143.188007][ T2168]  __se_sys_clone3+0x2cb/0x350
[ 3143.192771][ T2168]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3143.198079][ T2168]  ? do_syscall_64+0x108/0x240
[ 3143.202849][ T2168]  ? do_syscall_64+0xb4/0x240
[ 3143.207523][ T2168]  do_syscall_64+0xf9/0x240
[ 3143.213076][ T2168]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 3143.218966][ T2168] RIP: 0033:0x7f5af4ea9b99
[ 3143.223375][ T2168] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 3143.243063][ T2168] RSP: 002b:00007f5af50cf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 3143.251474][ T2168] RAX: ffffffffffffffda RBX: 00007f5af4e52270 RCX: 00007f5af4ea9b99
[ 3143.259438][ T2168] RDX: 00007f5af4e52270 RSI: 0000000000000058 RDI: 00007f5af50cf960
[ 3143.267401][ T2168] RBP: 00007f5af5c196c0 R08: 00007f5af5c196c0 R09: 00007f5af50cfa47
[ 3143.275362][ T2168] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 3143.283429][ T2168] R13: 000000000000000b R14: 00007f5af50cf960 R15: 00007f5af50cfa48
[ 3143.291435][ T2168]  </TASK>
01:27:05 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x15, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}}, 0x0)

[ 3143.314586][ T2168] memory: usage 307200kB, limit 307200kB, failcnt 25001
[ 3143.321838][ T2168] memory+swap: usage 307596kB, limit 9007199254740988kB, failcnt 0
01:27:05 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36, 0x0, 0x5}}}}]}, 0x58}}, 0x0)

[ 3143.371803][ T2190] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 3143.394747][ T2168] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0
[ 3143.431983][ T2168] Memory cgroup stats for /syz0:
[ 3143.432126][ T2168] cache 0
[ 3143.472248][ T2168] rss 12288
[ 3143.478519][ T2168] rss_huge 0
[ 3143.482449][ T2168] shmem 0
[ 3143.486417][ T2168] mapped_file 0
[ 3143.488300][ T2199] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 3143.494178][ T2168] dirty 0
[ 3143.518724][ T2168] writeback 0
01:27:05 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x14000000}, 0x0)

[ 3143.537516][ T2168] workingset_refault_anon 9587
[ 3143.542447][ T2168] workingset_refault_file 56
[ 3143.547065][ T2168] swap 405504
[ 3143.554741][ T2168] swapcached 0
[ 3143.556835][ T2198] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 3143.558139][ T2168] pgpgin 788086
[ 3143.558150][ T2168] pgpgout 788083
[ 3143.558158][ T2168] pgfault 1272440
[ 3143.558166][ T2168] pgmajfault 8864
[ 3143.558174][ T2168] inactive_anon 0
[ 3143.558182][ T2168] active_anon 12288
[ 3143.558190][ T2168] inactive_file 0
[ 3143.606487][ T2168] active_file 0
[ 3143.612083][ T2168] unevictable 0
[ 3143.622185][ T2203] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 3143.629887][ T2168] hierarchical_memory_limit 314572800
01:27:06 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {0x1100}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

01:27:06 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36, 0x0, 0x6}}}}]}, 0x58}}, 0x0)

[ 3143.636877][ T2168] hierarchical_memsw_limit 9223372036854771712
[ 3143.643452][ T2168] total_cache 0
[ 3143.646932][ T2168] total_rss 12288
[ 3143.662677][ T2168] total_rss_huge 0
[ 3143.666518][ T2168] total_shmem 0
[ 3143.670344][ T2168] total_mapped_file 0
[ 3143.674448][ T2168] total_dirty 0
[ 3143.678025][ T2168] total_writeback 0
[ 3143.685392][ T2168] total_workingset_refault_anon 9587
[ 3143.699087][ T2168] total_workingset_refault_file 56
[ 3143.704235][ T2168] total_swap 405504
[ 3143.714314][ T2168] total_swapcached 0
[ 3143.717278][ T2207] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 3143.721029][ T2168] total_pgpgin 788086
[ 3143.732751][ T2168] total_pgpgout 788083
[ 3143.736934][ T2168] total_pgfault 1272440
[ 3143.741910][ T2168] total_pgmajfault 8864
[ 3143.746147][ T2168] total_inactive_anon 0
[ 3143.751040][ T2168] total_active_anon 12288
[ 3143.755480][ T2168] total_inactive_file 0
[ 3143.761012][ T2168] total_active_file 0
[ 3143.765326][ T2168] total_unevictable 0
[ 3143.770328][ T2168] anon_cost 0
[ 3143.774118][ T2168] file_cost 0
01:27:06 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x15000000}, 0x0)

[ 3143.777569][ T2168] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=2168,uid=0
[ 3143.795123][ T2168] Memory cgroup out of memory: Killed process 2168 (syz-executor.0) total-vm:54508kB, anon-rss:384kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000
01:27:06 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36, 0x0, 0x7}}}}]}, 0x58}}, 0x0)

[ 3143.852237][ T5104] syz-executor.2 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[ 3143.891400][ T5104] CPU: 0 PID: 5104 Comm: syz-executor.2 Not tainted 6.8.0-rc5-syzkaller-00002-gfca7526b7d89 #0
[ 3143.901966][ T5104] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024
[ 3143.912133][ T5104] Call Trace:
[ 3143.915434][ T5104]  <TASK>
[ 3143.918382][ T5104]  dump_stack_lvl+0x1e7/0x2e0
[ 3143.923090][ T5104]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3143.928319][ T5104]  ? __pfx__printk+0x10/0x10
[ 3143.933031][ T5104]  ? ___ratelimit+0x4c4/0x670
[ 3143.937752][ T5104]  ? __pfx____ratelimit+0x10/0x10
[ 3143.942798][ T5104]  dump_header+0xda/0x6a0
[ 3143.947154][ T5104]  oom_kill_process+0x3a7/0x930
[ 3143.952021][ T5104]  out_of_memory+0xf67/0x1320
[ 3143.956705][ T5104]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3143.962338][ T5104]  ? __pfx___mutex_lock+0x10/0x10
[ 3143.967364][ T5104]  ? __pfx_out_of_memory+0x10/0x10
[ 3143.972477][ T5104]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3143.978016][ T5104]  ? __pfx_lock_release+0x10/0x10
[ 3143.983050][ T5104]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3143.989124][ T5104]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3143.994318][ T5104]  ? mem_cgroup_iter+0x3e9/0x560
[ 3143.999256][ T5104]  try_charge_memcg+0xda2/0x18a0
[ 3144.004273][ T5104]  ? mark_lock+0x9a/0x350
[ 3144.008611][ T5104]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3144.014010][ T5104]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 3144.020174][ T5104]  charge_memcg+0xa2/0x160
[ 3144.024601][ T5104]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 3144.030753][ T5104]  __read_swap_cache_async+0x480/0x8b0
[ 3144.036307][ T5104]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 3144.042287][ T5104]  ? mlock_drain_local+0x79/0x490
[ 3144.047309][ T5104]  ? mlock_drain_local+0x79/0x490
[ 3144.052348][ T5104]  ? mlock_drain_local+0x28c/0x490
[ 3144.057546][ T5104]  swap_cluster_readahead+0x67c/0x810
[ 3144.062927][ T5104]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 3144.068822][ T5104]  ? __pfx_lock_release+0x10/0x10
[ 3144.073849][ T5104]  ? xas_descend+0x37e/0x470
[ 3144.078878][ T5104]  swapin_readahead+0x1ea/0x1070
[ 3144.083813][ T5104]  ? filemap_get_entry+0x127/0x4e0
[ 3144.088938][ T5104]  ? __pfx_swapin_readahead+0x10/0x10
[ 3144.094314][ T5104]  ? __filemap_get_folio+0x935/0xbc0
[ 3144.099599][ T5104]  ? swap_cache_get_folio+0x9f/0x570
[ 3144.104887][ T5104]  do_swap_page+0x8ab/0x3da0
[ 3144.109475][ T5104]  ? __pte_offset_map+0x2c4/0x380
[ 3144.114499][ T5104]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3144.119695][ T5104]  ? do_swap_page+0x154/0x3da0
[ 3144.124456][ T5104]  ? __pfx_do_swap_page+0x10/0x10
[ 3144.129542][ T5104]  ? pte_offset_map_nolock+0x137/0x1f0
[ 3144.134993][ T5104]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 3144.140796][ T5104]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 3144.147127][ T5104]  __handle_mm_fault+0x15e8/0x72d0
[ 3144.152258][ T5104]  ? reacquire_held_locks+0x3eb/0x690
[ 3144.157632][ T5104]  ? __pfx___handle_mm_fault+0x10/0x10
[ 3144.163280][ T5104]  ? __pfx_reacquire_held_locks+0x10/0x10
[ 3144.169092][ T5104]  ? mtree_range_walk+0x6fd/0x8e0
[ 3144.174109][ T5104]  ? lock_vma_under_rcu+0x18a/0x730
[ 3144.179300][ T5104]  ? __pfx_lock_release+0x10/0x10
[ 3144.184316][ T5104]  ? lock_vma_under_rcu+0x2f9/0x730
[ 3144.189614][ T5104]  ? lock_vma_under_rcu+0x18a/0x730
[ 3144.194805][ T5104]  ? __pfx_lock_vma_under_rcu+0x10/0x10
[ 3144.200347][ T5104]  handle_mm_fault+0x3c1/0x8a0
[ 3144.205112][ T5104]  exc_page_fault+0x456/0x870
[ 3144.210155][ T5104]  asm_exc_page_fault+0x26/0x30
[ 3144.215090][ T5104] RIP: 0033:0x7f5706e7a780
[ 3144.219506][ T5104] Code: ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 31 c9 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 <80> 3d 71 57 10 00 00 49 89 ca 74 14 b8 3d 00 00 00 0f 05 48 3d 00
[ 3144.239192][ T5104] RSP: 002b:00007f57070cfd58 EFLAGS: 00010246
[ 3144.245252][ T5104] RAX: 0000000000000057 RBX: 0000000000006cf3 RCX: 0000000000000000
[ 3144.253218][ T5104] RDX: 0000000040000001 RSI: 00007f57070cfdbc RDI: 00000000ffffffff
[ 3144.261183][ T5104] RBP: 00007f57070cfdbc R08: 0000000000000010 R09: 00007ffeb39ee0b0
[ 3144.269146][ T5104] R10: 00007ffeb39ee080 R11: 000000000009456c R12: 0000000000000032
[ 3144.277107][ T5104] R13: 00000000002ff689 R14: 00000000002ff689 R15: 0000000000000000
[ 3144.285087][ T5104]  </TASK>
01:27:06 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x20000000}, 0x0)

01:27:06 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {0x1400}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

01:27:06 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36, 0x0, 0x8}}}}]}, 0x58}}, 0x0)

[ 3144.314612][ T1237] ieee802154 phy0 wpan0: encryption failed: -22
[ 3144.321638][ T1237] ieee802154 phy1 wpan1: encryption failed: -22
[ 3144.353539][ T5104] memory: usage 307200kB, limit 307200kB, failcnt 81056
[ 3144.371708][ T5104] memory+swap: usage 307784kB, limit 9007199254740988kB, failcnt 0
[ 3144.390347][ T5104] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[ 3144.397673][ T5104] Memory cgroup stats for /syz2:
[ 3144.397807][ T5104] cache 0
01:27:06 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {0x1500}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

01:27:06 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x60000000}, 0x0)

[ 3144.424027][ T5104] rss 8192
[ 3144.427097][ T5104] rss_huge 0
[ 3144.435742][ T5104] shmem 0
[ 3144.438805][ T5104] mapped_file 0
[ 3144.442739][ T5104] dirty 0
[ 3144.445787][ T5104] writeback 0
[ 3144.454433][ T5104] workingset_refault_anon 28558
[ 3144.460267][ T5104] workingset_refault_file 171
[ 3144.467635][ T5104] swap 589824
[ 3144.487078][ T5104] swapcached 0
[ 3144.495558][ T5104] pgpgin 779302
[ 3144.507153][ T5104] pgpgout 779300
[ 3144.516626][ T5104] pgfault 1281319
[ 3144.524978][ T5104] pgmajfault 23321
[ 3144.531966][ T5104] inactive_anon 0
[ 3144.535712][ T5104] active_anon 8192
[ 3144.545711][ T5104] inactive_file 0
[ 3144.549829][ T5104] active_file 0
[ 3144.553545][ T5104] unevictable 0
[ 3144.557112][ T5104] hierarchical_memory_limit 314572800
[ 3144.570125][ T5104] hierarchical_memsw_limit 9223372036854771712
[ 3144.576871][ T5104] total_cache 0
[ 3144.583278][ T5104] total_rss 8192
01:27:07 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x624551bf}, 0x0)

01:27:07 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36, 0x0, 0x9}}}}]}, 0x58}}, 0x0)

[ 3144.587187][ T5104] total_rss_huge 0
[ 3144.593585][ T5104] total_shmem 0
[ 3144.597133][ T5104] total_mapped_file 0
[ 3144.613739][ T5104] total_dirty 0
[ 3144.618430][ T5104] total_writeback 0
01:27:07 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {0x2000}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

[ 3144.663638][ T5104] total_workingset_refault_anon 28558
[ 3144.677235][ T5104] total_workingset_refault_file 171
[ 3144.683776][ T5104] total_swap 589824
[ 3144.687728][ T5104] total_swapcached 0
[ 3144.695624][ T5104] total_pgpgin 779302
[ 3144.700136][ T5104] total_pgpgout 779300
[ 3144.704358][ T5104] total_pgfault 1281319
[ 3144.708616][ T5104] total_pgmajfault 23321
01:27:07 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x65580000}, 0x0)

[ 3144.723234][ T5104] total_inactive_anon 0
[ 3144.728050][ T5104] total_active_anon 8192
[ 3144.742273][ T5104] total_inactive_file 0
[ 3144.746556][ T5104] total_active_file 0
[ 3144.753502][ T5104] total_unevictable 0
[ 3144.757600][ T5104] anon_cost 0
[ 3144.767130][ T5104] file_cost 0
01:27:07 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {0x2400}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

[ 3144.772674][ T5104] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=2191,uid=0
[ 3144.788825][ T5104] Memory cgroup out of memory: Killed process 2191 (syz-executor.2) total-vm:54508kB, anon-rss:0kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000
01:27:07 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36, 0x0, 0xa}}}}]}, 0x58}}, 0x0)

01:27:07 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x44, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x14, 0x2, [@TCA_FLOW_EMATCHES={0x10, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100, 0x60}}, @TCA_EMATCH_TREE_LIST={0x4}]}]}}]}, 0x44}}, 0x0)

01:27:07 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x28, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}}, 0x0)

01:27:07 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {0x2800}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

01:27:07 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x81000000}, 0x0)

01:27:07 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36, 0x0, 0xb}}}}]}, 0x58}}, 0x0)

[ 3145.240000][ T2253] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3145.257000][ T2253] CPU: 1 PID: 2253 Comm: syz-executor.2 Not tainted 6.8.0-rc5-syzkaller-00002-gfca7526b7d89 #0
[ 3145.267399][ T2253] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024
[ 3145.277476][ T2253] Call Trace:
[ 3145.280773][ T2253]  <TASK>
[ 3145.283723][ T2253]  dump_stack_lvl+0x1e7/0x2e0
[ 3145.288444][ T2253]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3145.293675][ T2253]  ? __pfx__printk+0x10/0x10
[ 3145.298300][ T2253]  ? ___ratelimit+0x4c4/0x670
[ 3145.303021][ T2253]  ? __pfx____ratelimit+0x10/0x10
[ 3145.308087][ T2253]  dump_header+0xda/0x6a0
[ 3145.312447][ T2253]  oom_kill_process+0x3a7/0x930
[ 3145.317430][ T2253]  out_of_memory+0xf67/0x1320
[ 3145.322147][ T2253]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3145.327900][ T2253]  ? __pfx___mutex_lock+0x10/0x10
[ 3145.332958][ T2253]  ? __pfx_out_of_memory+0x10/0x10
[ 3145.338214][ T2253]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3145.343792][ T2253]  ? __pfx_lock_release+0x10/0x10
[ 3145.348852][ T2253]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3145.354965][ T2253]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3145.360202][ T2253]  ? mem_cgroup_iter+0x3e9/0x560
[ 3145.365179][ T2253]  try_charge_memcg+0xda2/0x18a0
[ 3145.370696][ T2253]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3145.376097][ T2253]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3145.381866][ T2253]  ? __pfx_lock_release+0x10/0x10
[ 3145.386923][ T2253]  ? memcg_account_kmem+0x1e7/0x210
[ 3145.392171][ T2253]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3145.398014][ T2253]  __memcg_kmem_charge_page+0xe1/0x250
[ 3145.403509][ T2253]  memcg_charge_kernel_stack+0x28a/0x550
[ 3145.409175][ T2253]  dup_task_struct+0x40d/0x7d0
[ 3145.414145][ T2253]  copy_process+0x5d5/0x3fc0
[ 3145.418773][ T2253]  ? __might_fault+0xa9/0x120
[ 3145.423474][ T2253]  ? __pfx_lock_release+0x10/0x10
[ 3145.428538][ T2253]  ? __pfx_copy_process+0x10/0x10
[ 3145.433588][ T2253]  ? __might_fault+0xc5/0x120
[ 3145.438292][ T2253]  ? __asan_memset+0x23/0x50
[ 3145.442911][ T2253]  kernel_clone+0x21d/0x8d0
[ 3145.447453][ T2253]  ? __pfx_kernel_clone+0x10/0x10
[ 3145.452871][ T2253]  __se_sys_clone3+0x2cb/0x350
[ 3145.457668][ T2253]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3145.462989][ T2253]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3145.468994][ T2253]  ? exc_page_fault+0x587/0x870
[ 3145.473855][ T2253]  ? do_syscall_64+0xb4/0x240
[ 3145.478530][ T2253]  do_syscall_64+0xf9/0x240
[ 3145.483043][ T2253]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 3145.488950][ T2253] RIP: 0033:0x7f5706ea9b99
[ 3145.493368][ T2253] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 3145.512975][ T2253] RSP: 002b:00007f57070cf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 3145.521394][ T2253] RAX: ffffffffffffffda RBX: 00007f5706e52270 RCX: 00007f5706ea9b99
[ 3145.529361][ T2253] RDX: 00007f5706e52270 RSI: 0000000000000058 RDI: 00007f57070cf960
01:27:07 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x88470000}, 0x0)

01:27:07 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {0x4788}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

[ 3145.537321][ T2253] RBP: 00007f5707c6c6c0 R08: 00007f5707c6c6c0 R09: 00007f57070cfa47
[ 3145.545307][ T2253] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 3145.553380][ T2253] R13: 000000000000000b R14: 00007f57070cf960 R15: 00007f57070cfa48
[ 3145.561368][ T2253]  </TASK>
01:27:07 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36, 0x0, 0xc}}}}]}, 0x58}}, 0x0)

01:27:08 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {0x4888}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

[ 3145.701413][ T2253] memory: usage 307200kB, limit 307200kB, failcnt 81328
[ 3145.714155][ T2253] memory+swap: usage 307772kB, limit 9007199254740988kB, failcnt 0
01:27:08 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x88480000}, 0x0)

[ 3145.755483][ T2253] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0
[ 3145.773265][ T2253] Memory cgroup stats for /syz2:
[ 3145.773409][ T2253] cache 0
[ 3145.789666][ T2253] rss 12288
[ 3145.797604][ T2253] rss_huge 0
[ 3145.822520][ T2253] shmem 0
01:27:08 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36, 0x0, 0xf}}}}]}, 0x58}}, 0x0)

[ 3145.846527][ T2253] mapped_file 0
[ 3145.860300][ T2253] dirty 0
[ 3145.872052][ T2253] writeback 0
[ 3145.890969][ T2253] workingset_refault_anon 28625
[ 3145.895944][ T2253] workingset_refault_file 171
[ 3145.916055][ T2253] swap 585728
[ 3145.928351][ T2253] swapcached 0
[ 3145.937568][ T2253] pgpgin 779396
01:27:08 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {0x5865}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

[ 3145.946779][ T2253] pgpgout 779393
[ 3145.956085][ T2253] pgfault 1281466
[ 3145.967226][ T2253] pgmajfault 23396
[ 3145.976720][ T2253] inactive_anon 0
[ 3145.992604][ T2253] active_anon 12288
[ 3146.005524][ T2253] inactive_file 0
[ 3146.017827][ T2253] active_file 0
[ 3146.030174][ T2253] unevictable 0
[ 3146.045576][ T2253] hierarchical_memory_limit 314572800
01:27:08 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x88a8ffff}, 0x0)

01:27:08 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36, 0x0, 0x10}}}}]}, 0x58}}, 0x0)

[ 3146.063732][ T2253] hierarchical_memsw_limit 9223372036854771712
[ 3146.081385][ T2253] total_cache 0
[ 3146.089399][ T2253] total_rss 12288
[ 3146.097719][ T2253] total_rss_huge 0
[ 3146.119023][ T2253] total_shmem 0
[ 3146.122537][ T2253] total_mapped_file 0
[ 3146.149008][ T2253] total_dirty 0
[ 3146.152520][ T2253] total_writeback 0
01:27:08 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {0x6000}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

[ 3146.176861][ T2253] total_workingset_refault_anon 28625
[ 3146.194863][ T2253] total_workingset_refault_file 171
01:27:08 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0xbf514562}, 0x0)

[ 3146.229088][ T2253] total_swap 585728
[ 3146.232951][ T2253] total_swapcached 0
[ 3146.236862][ T2253] total_pgpgin 779396
[ 3146.260072][ T2253] total_pgpgout 779393
[ 3146.264193][ T2253] total_pgfault 1281466
[ 3146.288626][ T2253] total_pgmajfault 23396
[ 3146.299072][ T2253] total_inactive_anon 0
[ 3146.321279][ T2253] total_active_anon 12288
[ 3146.327951][ T2253] total_inactive_file 0
01:27:08 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36, 0x0, 0x11}}}}]}, 0x58}}, 0x0)

[ 3146.342151][ T2253] total_active_file 0
[ 3146.346188][ T2253] total_unevictable 0
[ 3146.361649][ T2253] anon_cost 0
[ 3146.364987][ T2253] file_cost 0
[ 3146.368293][ T2253] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=2253,uid=0
01:27:08 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {0x6558}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

[ 3146.418237][ T2253] Memory cgroup out of memory: Killed process 2253 (syz-executor.2) total-vm:54508kB, anon-rss:0kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000
01:27:08 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x60, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}}, 0x0)

01:27:08 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0xf0ffffff}, 0x0)

01:27:09 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36, 0x0, 0x14}}}}]}, 0x58}}, 0x0)

01:27:09 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {0x8100}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

01:27:09 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0xffffa888}, 0x0)

01:27:09 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36, 0x0, 0x15}}}}]}, 0x58}}, 0x0)

01:27:09 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {0x8847}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

01:27:09 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0xffffff7f}, 0x0)

01:27:09 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36, 0x0, 0x28}}}}]}, 0x58}}, 0x0)

[ 3147.031393][ T2314] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3147.090587][ T2314] CPU: 0 PID: 2314 Comm: syz-executor.2 Not tainted 6.8.0-rc5-syzkaller-00002-gfca7526b7d89 #0
[ 3147.100970][ T2314] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024
[ 3147.111039][ T2314] Call Trace:
[ 3147.114340][ T2314]  <TASK>
[ 3147.117296][ T2314]  dump_stack_lvl+0x1e7/0x2e0
[ 3147.122010][ T2314]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3147.127313][ T2314]  ? __pfx__printk+0x10/0x10
[ 3147.131935][ T2314]  ? ___ratelimit+0x4c4/0x670
[ 3147.136731][ T2314]  ? __pfx____ratelimit+0x10/0x10
[ 3147.141785][ T2314]  dump_header+0xda/0x6a0
[ 3147.146228][ T2314]  oom_kill_process+0x3a7/0x930
[ 3147.151110][ T2314]  out_of_memory+0xf67/0x1320
[ 3147.155810][ T2314]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3147.161441][ T2314]  ? __pfx___mutex_lock+0x10/0x10
[ 3147.166466][ T2314]  ? __pfx_out_of_memory+0x10/0x10
[ 3147.171584][ T2314]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3147.177122][ T2314]  ? __pfx_lock_release+0x10/0x10
[ 3147.182148][ T2314]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3147.188223][ T2314]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3147.193434][ T2314]  ? mem_cgroup_iter+0x3e9/0x560
[ 3147.198372][ T2314]  try_charge_memcg+0xda2/0x18a0
[ 3147.203335][ T2314]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3147.208801][ T2314]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3147.214514][ T2314]  ? __pfx_lock_release+0x10/0x10
[ 3147.219535][ T2314]  ? memcg_account_kmem+0x1e7/0x210
[ 3147.224733][ T2314]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3147.230533][ T2314]  __memcg_kmem_charge_page+0xe1/0x250
[ 3147.235993][ T2314]  memcg_charge_kernel_stack+0x3f8/0x550
[ 3147.241627][ T2314]  dup_task_struct+0x40d/0x7d0
[ 3147.246399][ T2314]  copy_process+0x5d5/0x3fc0
[ 3147.250993][ T2314]  ? __might_fault+0xa9/0x120
[ 3147.255666][ T2314]  ? __pfx_lock_release+0x10/0x10
[ 3147.260690][ T2314]  ? __pfx_copy_process+0x10/0x10
[ 3147.265706][ T2314]  ? __might_fault+0xc5/0x120
[ 3147.270385][ T2314]  ? __asan_memset+0x23/0x50
[ 3147.274974][ T2314]  kernel_clone+0x21d/0x8d0
[ 3147.279476][ T2314]  ? __pfx_kernel_clone+0x10/0x10
[ 3147.284507][ T2314]  __se_sys_clone3+0x2cb/0x350
[ 3147.289274][ T2314]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3147.294577][ T2314]  ? do_syscall_64+0x108/0x240
[ 3147.299362][ T2314]  ? do_syscall_64+0xb4/0x240
[ 3147.304056][ T2314]  do_syscall_64+0xf9/0x240
[ 3147.308562][ T2314]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 3147.314471][ T2314] RIP: 0033:0x7f5706ea9b99
[ 3147.318890][ T2314] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 3147.338509][ T2314] RSP: 002b:00007f57070cf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 3147.346934][ T2314] RAX: ffffffffffffffda RBX: 00007f5706e52270 RCX: 00007f5706ea9b99
[ 3147.355163][ T2314] RDX: 00007f5706e52270 RSI: 0000000000000058 RDI: 00007f57070cf960
[ 3147.363127][ T2314] RBP: 00007f5707c6c6c0 R08: 00007f5707c6c6c0 R09: 00007f57070cfa47
[ 3147.371196][ T2314] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 3147.379179][ T2314] R13: 000000000000000b R14: 00007f57070cf960 R15: 00007f57070cfa48
[ 3147.387165][ T2314]  </TASK>
01:27:09 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {0x8848}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

[ 3147.416875][ T2314] memory: usage 307200kB, limit 307200kB, failcnt 81631
[ 3147.430386][ T2314] memory+swap: usage 307784kB, limit 9007199254740988kB, failcnt 0
[ 3147.438443][ T2314] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[ 3147.457845][ T2314] Memory cgroup stats for /syz2:
[ 3147.457973][ T2314] cache 0
[ 3147.466542][ T2314] rss 16384
[ 3147.470265][ T2314] rss_huge 0
[ 3147.473481][ T2314] shmem 0
[ 3147.476427][ T2314] mapped_file 0
[ 3147.480926][ T2314] dirty 0
[ 3147.484112][ T2314] writeback 0
[ 3147.487617][ T2314] workingset_refault_anon 28721
[ 3147.493419][ T2314] workingset_refault_file 171
[ 3147.503118][ T2314] swap 581632
[ 3147.506521][ T2314] swapcached 0
01:27:09 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0xfffffff0}, 0x0)

01:27:09 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36, 0x0, 0x60}}}}]}, 0x58}}, 0x0)

[ 3147.514811][ T2314] pgpgin 779505
[ 3147.529524][ T2314] pgpgout 779501
[ 3147.533115][ T2314] pgfault 1281651
[ 3147.536759][ T2314] pgmajfault 23493
[ 3147.541218][ T2314] inactive_anon 0
[ 3147.544872][ T2314] active_anon 16384
[ 3147.548692][ T2314] inactive_file 0
[ 3147.558001][ T2314] active_file 0
[ 3147.562764][ T2314] unevictable 0
[ 3147.566266][ T2314] hierarchical_memory_limit 314572800
[ 3147.587312][ T2314] hierarchical_memsw_limit 9223372036854771712
[ 3147.597250][ T2314] total_cache 0
[ 3147.609385][ T2314] total_rss 16384
[ 3147.613057][ T2314] total_rss_huge 0
01:27:10 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

[ 3147.620189][ T2314] total_shmem 0
[ 3147.623679][ T2314] total_mapped_file 0
[ 3147.627670][ T2314] total_dirty 0
[ 3147.636891][ T2314] total_writeback 0
[ 3147.643272][ T2314] total_workingset_refault_anon 28721
[ 3147.650269][ T2314] total_workingset_refault_file 171
[ 3147.655547][ T2314] total_swap 581632
[ 3147.659809][ T2314] total_swapcached 0
01:27:10 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x40030000000000}, 0x0)

[ 3147.668470][ T2358] __nla_validate_parse: 39 callbacks suppressed
[ 3147.668486][ T2358] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 3147.674961][ T2314] total_pgpgin 779505
[ 3147.711393][ T2314] total_pgpgout 779501
[ 3147.722661][ T2314] total_pgfault 1281651
[ 3147.727607][ T2361] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 3147.734211][ T2314] total_pgmajfault 23493
[ 3147.754528][ T2314] total_inactive_anon 0
[ 3147.758735][ T2314] total_active_anon 16384
[ 3147.774564][ T2314] total_inactive_file 0
[ 3147.778757][ T2314] total_active_file 0
[ 3147.784919][ T2314] total_unevictable 0
[ 3147.789224][ T2314] anon_cost 0
[ 3147.792611][ T2314] file_cost 0
[ 3147.795969][ T2314] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=2314,uid=0
[ 3147.813397][ T2363] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 3147.814768][ T2314] Memory cgroup out of memory: Killed process 2314 (syz-executor.2) total-vm:54508kB, anon-rss:0kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000
[ 3147.890397][ T2252] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3147.900897][ T2252] CPU: 1 PID: 2252 Comm: syz-executor.0 Not tainted 6.8.0-rc5-syzkaller-00002-gfca7526b7d89 #0
[ 3147.911253][ T2252] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024
[ 3147.921337][ T2252] Call Trace:
[ 3147.924634][ T2252]  <TASK>
[ 3147.927577][ T2252]  dump_stack_lvl+0x1e7/0x2e0
[ 3147.932275][ T2252]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3147.937555][ T2252]  ? __pfx__printk+0x10/0x10
[ 3147.942135][ T2252]  ? ___ratelimit+0x4c4/0x670
[ 3147.946919][ T2252]  ? __pfx____ratelimit+0x10/0x10
[ 3147.951974][ T2252]  dump_header+0xda/0x6a0
[ 3147.956416][ T2252]  oom_kill_process+0x3a7/0x930
[ 3147.961271][ T2252]  out_of_memory+0xf67/0x1320
[ 3147.965957][ T2252]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3147.971593][ T2252]  ? __pfx___mutex_lock+0x10/0x10
[ 3147.976622][ T2252]  ? __pfx_out_of_memory+0x10/0x10
[ 3147.981738][ T2252]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3147.987283][ T2252]  ? __pfx_lock_release+0x10/0x10
[ 3147.992306][ T2252]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3147.998378][ T2252]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3148.003587][ T2252]  ? mem_cgroup_iter+0x422/0x560
[ 3148.008538][ T2252]  try_charge_memcg+0xda2/0x18a0
[ 3148.013497][ T2252]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3148.018871][ T2252]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3148.024585][ T2252]  ? __pfx_lock_release+0x10/0x10
[ 3148.029657][ T2252]  ? memcg_account_kmem+0x1e7/0x210
[ 3148.034861][ T2252]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3148.040662][ T2252]  __memcg_kmem_charge_page+0xe1/0x250
[ 3148.046126][ T2252]  memcg_charge_kernel_stack+0x210/0x550
[ 3148.051765][ T2252]  dup_task_struct+0x15d/0x7d0
[ 3148.056534][ T2252]  copy_process+0x5d5/0x3fc0
[ 3148.061134][ T2252]  ? __might_fault+0xa9/0x120
[ 3148.065808][ T2252]  ? __pfx_lock_release+0x10/0x10
[ 3148.070840][ T2252]  ? __pfx_copy_process+0x10/0x10
[ 3148.075864][ T2252]  ? __might_fault+0xc5/0x120
[ 3148.080542][ T2252]  ? __asan_memset+0x23/0x50
[ 3148.085134][ T2252]  kernel_clone+0x21d/0x8d0
[ 3148.089639][ T2252]  ? __pfx_kernel_clone+0x10/0x10
[ 3148.094685][ T2252]  __se_sys_clone3+0x2cb/0x350
[ 3148.099449][ T2252]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3148.104758][ T2252]  ? do_syscall_64+0x108/0x240
[ 3148.109529][ T2252]  ? do_syscall_64+0xb4/0x240
[ 3148.114221][ T2252]  do_syscall_64+0xf9/0x240
[ 3148.118901][ T2252]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 3148.124796][ T2252] RIP: 0033:0x7f5af4ea9b99
[ 3148.129208][ T2252] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 3148.148988][ T2252] RSP: 002b:00007f5af50cf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 3148.157483][ T2252] RAX: ffffffffffffffda RBX: 00007f5af4e52270 RCX: 00007f5af4ea9b99
[ 3148.165454][ T2252] RDX: 00007f5af4e52270 RSI: 0000000000000058 RDI: 00007f5af50cf960
[ 3148.173428][ T2252] RBP: 00007f5af5bf86c0 R08: 00007f5af5bf86c0 R09: 00007f5af50cfa47
[ 3148.181393][ T2252] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 3148.189356][ T2252] R13: 000000000000006e R14: 00007f5af50cf960 R15: 00007f5af50cfa48
[ 3148.197332][ T2252]  </TASK>
[ 3148.214559][ T2252] memory: usage 307200kB, limit 307200kB, failcnt 25974
[ 3148.222330][ T2252] memory+swap: usage 307608kB, limit 9007199254740988kB, failcnt 0
[ 3148.230700][ T2252] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[ 3148.237999][ T2252] Memory cgroup stats for /syz0:
[ 3148.238099][ T2252] cache 0
[ 3148.246016][ T2252] rss 4096
[ 3148.249301][ T2252] rss_huge 0
[ 3148.252501][ T2252] shmem 0
[ 3148.255416][ T2252] mapped_file 0
[ 3148.258853][ T2252] dirty 0
[ 3148.262127][ T2252] writeback 0
[ 3148.265418][ T2252] workingset_refault_anon 9884
[ 3148.270443][ T2252] workingset_refault_file 56
[ 3148.275047][ T2252] swap 413696
[ 3148.278325][ T2252] swapcached 0
[ 3148.281749][ T2252] pgpgin 788422
[ 3148.285211][ T2252] pgpgout 788421
[ 3148.288740][ T2252] pgfault 1272911
[ 3148.292773][ T2252] pgmajfault 9148
[ 3148.296425][ T2252] inactive_anon 0
[ 3148.300152][ T2252] active_anon 0
[ 3148.303613][ T2252] inactive_file 0
[ 3148.307238][ T2252] active_file 0
[ 3148.310801][ T2252] unevictable 0
[ 3148.314260][ T2252] hierarchical_memory_limit 314572800
[ 3148.321940][ T2252] hierarchical_memsw_limit 9223372036854771712
[ 3148.328310][ T2252] total_cache 0
[ 3148.332058][ T2252] total_rss 4096
[ 3148.335617][ T2252] total_rss_huge 0
[ 3148.339445][ T2252] total_shmem 0
[ 3148.342905][ T2252] total_mapped_file 0
[ 3148.346863][ T2252] total_dirty 0
[ 3148.350644][ T2252] total_writeback 0
[ 3148.354459][ T2252] total_workingset_refault_anon 9884
[ 3148.359835][ T2252] total_workingset_refault_file 56
[ 3148.364949][ T2252] total_swap 413696
[ 3148.368735][ T2252] total_swapcached 0
[ 3148.372746][ T2252] total_pgpgin 788422
[ 3148.376726][ T2252] total_pgpgout 788421
[ 3148.381135][ T2252] total_pgfault 1272911
[ 3148.385290][ T2252] total_pgmajfault 9148
[ 3148.389525][ T2252] total_inactive_anon 0
[ 3148.393683][ T2252] total_active_anon 0
[ 3148.397680][ T2252] total_inactive_file 0
[ 3148.402758][ T2252] total_active_file 0
[ 3148.406896][ T2252] total_unevictable 0
[ 3148.411289][ T2252] anon_cost 0
[ 3148.414594][ T2252] file_cost 0
[ 3148.418637][ T2252] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=2252,uid=0
01:27:10 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {0x0, 0x2}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

01:27:10 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x44, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x14, 0x2, [@TCA_FLOW_EMATCHES={0x10, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100, 0x300}}, @TCA_EMATCH_TREE_LIST={0x4}]}]}}]}, 0x44}}, 0x0)

01:27:10 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36, 0x0, 0x300}}}}]}, 0x58}}, 0x0)

01:27:10 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x300, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}}, 0x0)

01:27:10 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x100000000000000}, 0x0)

[ 3148.435319][ T2252] Memory cgroup out of memory: Killed process 2252 (syz-executor.0) total-vm:54640kB, anon-rss:384kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000
[ 3148.534737][ T2367] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 3148.651605][ T2366] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 3148.721373][ T2372] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3148.732981][ T2372] CPU: 1 PID: 2372 Comm: syz-executor.0 Not tainted 6.8.0-rc5-syzkaller-00002-gfca7526b7d89 #0
[ 3148.743351][ T2372] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024
[ 3148.753524][ T2372] Call Trace:
[ 3148.756810][ T2372]  <TASK>
[ 3148.759757][ T2372]  dump_stack_lvl+0x1e7/0x2e0
[ 3148.764465][ T2372]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3148.769690][ T2372]  ? __pfx__printk+0x10/0x10
[ 3148.774307][ T2372]  ? ___ratelimit+0x4c4/0x670
[ 3148.779021][ T2372]  ? __pfx____ratelimit+0x10/0x10
[ 3148.781803][ T2374] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 3148.784055][ T2372]  dump_header+0xda/0x6a0
[ 3148.797704][ T2372]  oom_kill_process+0x3a7/0x930
[ 3148.802589][ T2372]  out_of_memory+0xf67/0x1320
[ 3148.807311][ T2372]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3148.812970][ T2372]  ? __pfx___mutex_lock+0x10/0x10
01:27:11 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {0x0, 0x3}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

[ 3148.818470][ T2372]  ? __pfx_out_of_memory+0x10/0x10
[ 3148.823633][ T2372]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3148.829213][ T2372]  ? __pfx_lock_release+0x10/0x10
[ 3148.834265][ T2372]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3148.840362][ T2372]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3148.845589][ T2372]  ? mem_cgroup_iter+0x422/0x560
[ 3148.850569][ T2372]  try_charge_memcg+0xda2/0x18a0
[ 3148.855557][ T2372]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3148.860961][ T2372]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3148.866704][ T2372]  ? __pfx_lock_release+0x10/0x10
[ 3148.871756][ T2372]  ? memcg_account_kmem+0x1e7/0x210
[ 3148.876989][ T2372]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3148.882819][ T2372]  __memcg_kmem_charge_page+0xe1/0x250
[ 3148.888396][ T2372]  memcg_charge_kernel_stack+0x37e/0x550
[ 3148.894056][ T2372]  dup_task_struct+0x40d/0x7d0
[ 3148.898849][ T2372]  copy_process+0x5d5/0x3fc0
[ 3148.903493][ T2372]  ? __might_fault+0xa9/0x120
[ 3148.905509][ T2378] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 3148.908186][ T2372]  ? __pfx_lock_release+0x10/0x10
[ 3148.908227][ T2372]  ? __pfx_copy_process+0x10/0x10
[ 3148.908249][ T2372]  ? __might_fault+0xc5/0x120
[ 3148.932507][ T2372]  ? __asan_memset+0x23/0x50
[ 3148.937136][ T2372]  kernel_clone+0x21d/0x8d0
[ 3148.941669][ T2372]  ? __pfx_kernel_clone+0x10/0x10
[ 3148.946740][ T2372]  __se_sys_clone3+0x2cb/0x350
[ 3148.951539][ T2372]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3148.956865][ T2372]  ? do_syscall_64+0x108/0x240
[ 3148.961658][ T2372]  ? do_syscall_64+0xb4/0x240
[ 3148.966375][ T2372]  do_syscall_64+0xf9/0x240
01:27:11 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {0x0, 0x4}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

[ 3148.971002][ T2372]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 3148.976939][ T2372] RIP: 0033:0x7f5af4ea9b99
[ 3148.981380][ T2372] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 3149.001191][ T2372] RSP: 002b:00007f5af50cf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 3149.009743][ T2372] RAX: ffffffffffffffda RBX: 00007f5af4e52270 RCX: 00007f5af4ea9b99
01:27:11 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36, 0x0, 0x500}}}}]}, 0x58}}, 0x0)

[ 3149.017752][ T2372] RDX: 00007f5af4e52270 RSI: 0000000000000058 RDI: 00007f5af50cf960
[ 3149.025761][ T2372] RBP: 00007f5af5c196c0 R08: 00007f5af5c196c0 R09: 00007f5af50cfa47
[ 3149.033762][ T2372] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 3149.037824][ T2380] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 3149.041741][ T2372] R13: 000000000000000b R14: 00007f5af50cf960 R15: 00007f5af50cfa48
[ 3149.041780][ T2372]  </TASK>
[ 3149.061608][ T2372] memory: usage 307200kB, limit 307200kB, failcnt 26186
[ 3149.084112][ T2372] memory+swap: usage 307588kB, limit 9007199254740988kB, failcnt 0
[ 3149.093698][ T2372] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0
[ 3149.102600][ T2372] Memory cgroup stats for /syz0:
[ 3149.102737][ T2372] cache 0
[ 3149.111658][ T2372] rss 12288
[ 3149.115061][ T2372] rss_huge 0
[ 3149.118642][ T2372] shmem 0
[ 3149.123018][ T2372] mapped_file 0
[ 3149.126612][ T2372] dirty 0
[ 3149.130309][ T2372] writeback 0
01:27:11 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x200000000000000}, 0x0)

01:27:11 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {0x0, 0x5}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

[ 3149.134496][ T2372] workingset_refault_anon 9932
[ 3149.139764][ T2372] workingset_refault_file 56
[ 3149.160062][ T2372] swap 397312
[ 3149.164892][ T2372] swapcached 0
[ 3149.169458][ T2372] pgpgin 788486
[ 3149.173059][ T2372] pgpgout 788483
[ 3149.176771][ T2372] pgfault 1273018
[ 3149.181342][ T2372] pgmajfault 9193
[ 3149.185167][ T2372] inactive_anon 0
[ 3149.189589][ T2382] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 3149.204354][ T2372] active_anon 12288
[ 3149.211959][ T2372] inactive_file 0
[ 3149.221018][ T2372] active_file 0
[ 3149.227953][ T2372] unevictable 0
[ 3149.232136][ T2372] hierarchical_memory_limit 314572800
[ 3149.238694][ T2372] hierarchical_memsw_limit 9223372036854771712
[ 3149.245532][ T2372] total_cache 0
[ 3149.249583][ T2372] total_rss 12288
[ 3149.250229][ T2388] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 3149.254630][ T2372] total_rss_huge 0
[ 3149.267162][ T2372] total_shmem 0
[ 3149.275661][ T2372] total_mapped_file 0
[ 3149.282024][ T2372] total_dirty 0
[ 3149.286279][ T2372] total_writeback 0
[ 3149.291263][ T2372] total_workingset_refault_anon 9932
[ 3149.296720][ T2372] total_workingset_refault_file 56
[ 3149.302889][ T2372] total_swap 397312
[ 3149.309395][ T2372] total_swapcached 0
[ 3149.313508][ T2372] total_pgpgin 788486
[ 3149.317629][ T2372] total_pgpgout 788483
[ 3149.323388][ T2372] total_pgfault 1273018
[ 3149.327754][ T2372] total_pgmajfault 9193
[ 3149.332630][ T2372] total_inactive_anon 0
01:27:11 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36, 0x0, 0x600}}}}]}, 0x58}}, 0x0)

[ 3149.336948][ T2372] total_active_anon 12288
[ 3149.342951][ T2372] total_inactive_file 0
[ 3149.347270][ T2372] total_active_file 0
[ 3149.353156][ T2372] total_unevictable 0
[ 3149.357489][ T2372] anon_cost 0
[ 3149.361737][ T2372] file_cost 0
[ 3149.365152][ T2372] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=2372,uid=0
01:27:11 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x300000000000000}, 0x0)

01:27:11 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {0x0, 0x6}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

[ 3149.399733][ T2372] Memory cgroup out of memory: Killed process 2372 (syz-executor.0) total-vm:54508kB, anon-rss:384kB, file-rss:8912kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000
[ 3149.426966][ T2370] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3149.462180][ T2370] CPU: 1 PID: 2370 Comm: syz-executor.2 Not tainted 6.8.0-rc5-syzkaller-00002-gfca7526b7d89 #0
[ 3149.472589][ T2370] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024
[ 3149.482688][ T2370] Call Trace:
[ 3149.486000][ T2370]  <TASK>
[ 3149.488951][ T2370]  dump_stack_lvl+0x1e7/0x2e0
[ 3149.493664][ T2370]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3149.499028][ T2370]  ? __pfx__printk+0x10/0x10
[ 3149.503649][ T2370]  ? ___ratelimit+0x4c4/0x670
[ 3149.508365][ T2370]  ? __pfx____ratelimit+0x10/0x10
[ 3149.513434][ T2370]  dump_header+0xda/0x6a0
[ 3149.517799][ T2370]  oom_kill_process+0x3a7/0x930
[ 3149.522700][ T2370]  out_of_memory+0xf67/0x1320
[ 3149.527416][ T2370]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3149.533169][ T2370]  ? __pfx___mutex_lock+0x10/0x10
[ 3149.538224][ T2370]  ? __pfx_out_of_memory+0x10/0x10
[ 3149.543369][ T2370]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3149.548952][ T2370]  ? __pfx_lock_release+0x10/0x10
[ 3149.554012][ T2370]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3149.560103][ T2370]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3149.565397][ T2370]  ? mem_cgroup_iter+0x3e9/0x560
[ 3149.570347][ T2370]  try_charge_memcg+0xda2/0x18a0
[ 3149.575396][ T2370]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3149.580767][ T2370]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3149.586482][ T2370]  ? __pfx_lock_release+0x10/0x10
[ 3149.591509][ T2370]  ? memcg_account_kmem+0x1e7/0x210
[ 3149.596712][ T2370]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3149.602515][ T2370]  __memcg_kmem_charge_page+0xe1/0x250
[ 3149.607977][ T2370]  memcg_charge_kernel_stack+0x3f8/0x550
[ 3149.613606][ T2370]  dup_task_struct+0x40d/0x7d0
[ 3149.618369][ T2370]  copy_process+0x5d5/0x3fc0
[ 3149.622969][ T2370]  ? __might_fault+0xa9/0x120
[ 3149.627644][ T2370]  ? __pfx_lock_release+0x10/0x10
[ 3149.632672][ T2370]  ? __pfx_copy_process+0x10/0x10
[ 3149.637692][ T2370]  ? __might_fault+0xc5/0x120
[ 3149.642371][ T2370]  ? __asan_memset+0x23/0x50
[ 3149.646973][ T2370]  kernel_clone+0x21d/0x8d0
[ 3149.651531][ T2370]  ? __pfx_kernel_clone+0x10/0x10
[ 3149.656653][ T2370]  __se_sys_clone3+0x2cb/0x350
[ 3149.661419][ T2370]  ? __might_fault+0xa9/0x120
[ 3149.666094][ T2370]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3149.671397][ T2370]  ? do_syscall_64+0x108/0x240
[ 3149.676160][ T2370]  ? do_syscall_64+0xb4/0x240
[ 3149.680836][ T2370]  do_syscall_64+0xf9/0x240
[ 3149.685343][ T2370]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 3149.691249][ T2370] RIP: 0033:0x7f5706ea9b99
[ 3149.695662][ T2370] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 3149.715272][ T2370] RSP: 002b:00007f57070cf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 3149.723686][ T2370] RAX: ffffffffffffffda RBX: 00007f5706e52270 RCX: 00007f5706ea9b99
[ 3149.731653][ T2370] RDX: 00007f5706e52270 RSI: 0000000000000058 RDI: 00007f57070cf960
[ 3149.739703][ T2370] RBP: 00007f5707c6c6c0 R08: 00007f5707c6c6c0 R09: 00007f57070cfa47
[ 3149.747665][ T2370] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 3149.755644][ T2370] R13: 000000000000000b R14: 00007f57070cf960 R15: 00007f57070cfa48
01:27:12 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x44, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x14, 0x2, [@TCA_FLOW_EMATCHES={0x10, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100, 0x500}}, @TCA_EMATCH_TREE_LIST={0x4}]}]}}]}, 0x44}}, 0x0)

[ 3149.763715][ T2370]  </TASK>
[ 3149.780490][ T2370] memory: usage 307200kB, limit 307200kB, failcnt 81870
[ 3149.787684][ T2370] memory+swap: usage 307784kB, limit 9007199254740988kB, failcnt 0
[ 3149.796688][ T2370] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[ 3149.836910][ T2370] Memory cgroup stats for /syz2:
[ 3149.837053][ T2370] cache 0
[ 3149.858259][ T2370] rss 0
[ 3149.866647][ T2370] rss_huge 0
[ 3149.872390][ T2370] shmem 0
[ 3149.875504][ T2370] mapped_file 0
[ 3149.882838][ T2370] dirty 0
[ 3149.885948][ T2370] writeback 0
[ 3149.890643][ T2370] workingset_refault_anon 28807
[ 3149.895615][ T2370] workingset_refault_file 171
[ 3149.903881][ T2370] swap 598016
[ 3149.907331][ T2370] swapcached 0
[ 3149.911842][ T2370] pgpgin 779601
[ 3149.915414][ T2370] pgpgout 779601
[ 3149.926738][ T2370] pgfault 1281784
[ 3149.931673][ T2370] pgmajfault 23560
01:27:12 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36, 0x0, 0x700}}}}]}, 0x58}}, 0x0)

01:27:12 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x400000000000000}, 0x0)

[ 3149.935518][ T2370] inactive_anon 0
[ 3149.942687][ T2370] active_anon 0
[ 3149.946264][ T2370] inactive_file 0
[ 3149.951383][ T2370] active_file 0
[ 3149.956997][ T2370] unevictable 0
[ 3149.964108][ T2370] hierarchical_memory_limit 314572800
[ 3149.974470][ T2370] hierarchical_memsw_limit 9223372036854771712
[ 3149.984107][ T2370] total_cache 0
01:27:12 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {0x0, 0x7}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

[ 3149.990124][ T2370] total_rss 0
[ 3149.993545][ T2370] total_rss_huge 0
[ 3149.997378][ T2370] total_shmem 0
[ 3150.005068][ T2370] total_mapped_file 0
[ 3150.021290][ T2370] total_dirty 0
[ 3150.028198][ T2370] total_writeback 0
[ 3150.042920][ T2370] total_workingset_refault_anon 28807
[ 3150.049325][ T2370] total_workingset_refault_file 171
[ 3150.054837][ T2370] total_swap 598016
[ 3150.067536][ T2370] total_swapcached 0
[ 3150.071926][ T2370] total_pgpgin 779601
[ 3150.076653][ T2370] total_pgpgout 779601
[ 3150.085908][ T2370] total_pgfault 1281784
[ 3150.090689][ T2370] total_pgmajfault 23560
[ 3150.095109][ T2370] total_inactive_anon 0
[ 3150.103422][ T2370] total_active_anon 0
[ 3150.107516][ T2370] total_inactive_file 0
[ 3150.112235][ T2370] total_active_file 0
[ 3150.116317][ T2370] total_unevictable 0
[ 3150.124471][ T2370] anon_cost 0
[ 3150.127924][ T2370] file_cost 0
01:27:12 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x500000000000000}, 0x0)

01:27:12 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36, 0x0, 0x900}}}}]}, 0x58}}, 0x0)

01:27:12 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {0x0, 0x8}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

[ 3150.132983][ T2370] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=2370,uid=0
[ 3150.162013][ T2370] Memory cgroup out of memory: Killed process 2370 (syz-executor.2) total-vm:54508kB, anon-rss:0kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000
01:27:12 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x500, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}}, 0x0)

01:27:12 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {0x0, 0x9}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

01:27:12 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x600000000000000}, 0x0)

01:27:12 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36, 0x0, 0xa00}}}}]}, 0x58}}, 0x0)

[ 3150.581438][ T5104] syz-executor.2 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[ 3150.619875][ T5104] CPU: 1 PID: 5104 Comm: syz-executor.2 Not tainted 6.8.0-rc5-syzkaller-00002-gfca7526b7d89 #0
[ 3150.630355][ T5104] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024
[ 3150.640440][ T5104] Call Trace:
[ 3150.643743][ T5104]  <TASK>
[ 3150.646696][ T5104]  dump_stack_lvl+0x1e7/0x2e0
[ 3150.651509][ T5104]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3150.656721][ T5104]  ? __pfx__printk+0x10/0x10
[ 3150.661309][ T5104]  ? ___ratelimit+0x4c4/0x670
[ 3150.665987][ T5104]  ? __pfx____ratelimit+0x10/0x10
[ 3150.671016][ T5104]  dump_header+0xda/0x6a0
[ 3150.675356][ T5104]  oom_kill_process+0x3a7/0x930
[ 3150.680208][ T5104]  out_of_memory+0xf67/0x1320
[ 3150.684915][ T5104]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3150.690561][ T5104]  ? __pfx___mutex_lock+0x10/0x10
[ 3150.695610][ T5104]  ? __pfx_out_of_memory+0x10/0x10
[ 3150.700735][ T5104]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3150.706283][ T5104]  ? __pfx_lock_release+0x10/0x10
[ 3150.711315][ T5104]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3150.717380][ T5104]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3150.722575][ T5104]  ? mem_cgroup_iter+0x3e9/0x560
[ 3150.727522][ T5104]  try_charge_memcg+0xda2/0x18a0
[ 3150.732452][ T5104]  ? mark_lock+0x9a/0x350
[ 3150.736789][ T5104]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3150.743563][ T5104]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 3150.749805][ T5104]  charge_memcg+0xa2/0x160
[ 3150.754344][ T5104]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 3150.760424][ T5104]  __read_swap_cache_async+0x480/0x8b0
[ 3150.765893][ T5104]  ? mark_lock+0x9a/0x350
[ 3150.770232][ T5104]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 3150.776225][ T5104]  swap_cluster_readahead+0x67c/0x810
[ 3150.781622][ T5104]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 3150.787538][ T5104]  ? __pfx_lock_release+0x10/0x10
[ 3150.792569][ T5104]  ? xas_descend+0x37e/0x470
[ 3150.797167][ T5104]  swapin_readahead+0x1ea/0x1070
[ 3150.802106][ T5104]  ? filemap_get_entry+0x127/0x4e0
[ 3150.807230][ T5104]  ? __pfx_swapin_readahead+0x10/0x10
[ 3150.812620][ T5104]  ? __filemap_get_folio+0x935/0xbc0
[ 3150.817913][ T5104]  ? swap_cache_get_folio+0x9f/0x570
[ 3150.823215][ T5104]  do_swap_page+0x8ab/0x3da0
[ 3150.827811][ T5104]  ? __pte_offset_map+0x2c4/0x380
[ 3150.832838][ T5104]  ? do_swap_page+0x154/0x3da0
[ 3150.837595][ T5104]  ? __pfx_do_swap_page+0x10/0x10
[ 3150.842706][ T5104]  ? pte_offset_map_nolock+0x137/0x1f0
[ 3150.848162][ T5104]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 3150.853967][ T5104]  ? __pfx_validate_chain+0x10/0x10
[ 3150.859166][ T5104]  __handle_mm_fault+0x15e8/0x72d0
[ 3150.864302][ T5104]  ? __pfx___handle_mm_fault+0x10/0x10
[ 3150.869766][ T5104]  ? mt_find+0x226/0x850
[ 3150.874006][ T5104]  ? __pfx_lock_release+0x10/0x10
[ 3150.879068][ T5104]  ? mt_find+0x62d/0x850
[ 3150.883331][ T5104]  ? mt_find+0x226/0x850
[ 3150.887596][ T5104]  ? find_vma+0x142/0x1c0
[ 3150.891930][ T5104]  ? __pfx_find_vma+0x10/0x10
[ 3150.896693][ T5104]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3150.902675][ T5104]  handle_mm_fault+0x3c1/0x8a0
[ 3150.907441][ T5104]  exc_page_fault+0x2ad/0x870
[ 3150.912122][ T5104]  asm_exc_page_fault+0x26/0x30
[ 3150.916970][ T5104] RIP: 0010:__get_user_8+0x11/0x20
[ 3150.922077][ T5104] Code: ca c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 89 c2 48 c1 fa 3f 48 09 d0 0f 01 cb <48> 8b 10 31 c0 0f 01 ca c3 cc cc cc cc 66 90 90 90 90 90 90 90 90
[ 3150.941675][ T5104] RSP: 0018:ffffc90003bdfd98 EFLAGS: 00050202
[ 3150.947742][ T5104] RAX: 0000555556349da8 RBX: ffff8880296d6e78 RCX: ffffc90003bdfc03
[ 3150.955709][ T5104] RDX: 0000000000000000 RSI: ffffffff8baac7e0 RDI: ffffffff8bfe6da0
[ 3150.963760][ T5104] RBP: ffffc90003bdfec8 R08: ffffffff8f85672f R09: 1ffffffff1f0ace5
[ 3150.971725][ T5104] R10: dffffc0000000000 R11: fffffbfff1f0ace6 R12: ffffc90003bdfda0
[ 3150.979783][ T5104] R13: ffffc90003bdffd8 R14: dffffc0000000000 R15: ffff8880296d5940
[ 3150.987767][ T5104]  __rseq_handle_notify_resume+0x158/0x1490
[ 3150.993680][ T5104]  ? __pfx___rseq_handle_notify_resume+0x10/0x10
[ 3151.000018][ T5104]  ? syscall_exit_to_user_mode+0xa2/0x370
[ 3151.005742][ T5104]  syscall_exit_to_user_mode+0x113/0x370
[ 3151.011378][ T5104]  do_syscall_64+0x108/0x240
[ 3151.016012][ T5104]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 3151.021905][ T5104] RIP: 0033:0x7f5706ea91b5
[ 3151.026325][ T5104] Code: 24 0c 89 3c 24 48 89 4c 24 18 e8 f6 b9 ff ff 4c 8b 54 24 18 48 8b 54 24 10 41 89 c0 8b 74 24 0c 8b 3c 24 b8 e6 00 00 00 0f 05 <44> 89 c7 48 89 04 24 e8 4f ba ff ff 48 8b 04 24 48 83 c4 28 f7 d8
[ 3151.046021][ T5104] RSP: 002b:00007f57070cfcf0 EFLAGS: 00000293 ORIG_RAX: 00000000000000e6
[ 3151.054433][ T5104] RAX: 0000000000000000 RBX: 0000000000006cf8 RCX: 00007f5706ea91b5
[ 3151.062402][ T5104] RDX: 00007f57070cfd30 RSI: 0000000000000000 RDI: 0000000000000000
[ 3151.070366][ T5104] RBP: 00007f57070cfdbc R08: 0000000000000000 R09: 00007ffeb39ee0b0
[ 3151.078331][ T5104] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000032
[ 3151.086302][ T5104] R13: 00000000003011de R14: 00000000003011de R15: 0000000000000000
[ 3151.094320][ T5104]  </TASK>
01:27:13 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {0x0, 0xa}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

[ 3151.153739][ T5104] memory: usage 307200kB, limit 307200kB, failcnt 82081
[ 3151.176897][ T5104] memory+swap: usage 307792kB, limit 9007199254740988kB, failcnt 0
[ 3151.194312][ T5104] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[ 3151.203858][ T5104] Memory cgroup stats for /syz2:
[ 3151.204062][ T5104] cache 0
[ 3151.234145][ T5104] rss 0
[ 3151.237257][ T5104] rss_huge 0
[ 3151.241504][ T5104] shmem 0
[ 3151.245242][ T5104] mapped_file 0
[ 3151.255397][ T5104] dirty 0
[ 3151.260658][ T5104] writeback 0
[ 3151.266157][ T5104] workingset_refault_anon 28870
[ 3151.278782][ T5104] workingset_refault_file 171
[ 3151.301719][ T5104] swap 606208
01:27:13 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x700000000000000}, 0x0)

01:27:13 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36, 0x0, 0xb00}}}}]}, 0x58}}, 0x0)

[ 3151.310852][ T5104] swapcached 0
[ 3151.321140][ T5104] pgpgin 779675
[ 3151.332807][ T5104] pgpgout 779675
[ 3151.352371][ T5104] pgfault 1281898
[ 3151.369169][ T5104] pgmajfault 23613
[ 3151.372948][ T5104] inactive_anon 0
[ 3151.376597][ T5104] active_anon 0
[ 3151.391886][ T5104] inactive_file 0
[ 3151.397551][ T5104] active_file 0
[ 3151.404587][ T5104] unevictable 0
[ 3151.410423][ T5104] hierarchical_memory_limit 314572800
01:27:13 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {0x0, 0xb}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

[ 3151.419910][ T5104] hierarchical_memsw_limit 9223372036854771712
[ 3151.433870][ T5104] total_cache 0
[ 3151.441593][ T5104] total_rss 0
[ 3151.447251][ T5104] total_rss_huge 0
[ 3151.456492][ T5104] total_shmem 0
[ 3151.460524][ T5104] total_mapped_file 0
[ 3151.464683][ T5104] total_dirty 0
[ 3151.468306][ T5104] total_writeback 0
[ 3151.479733][ T5104] total_workingset_refault_anon 28870
[ 3151.493601][ T5104] total_workingset_refault_file 171
[ 3151.500195][ T5104] total_swap 606208
[ 3151.504279][ T5104] total_swapcached 0
[ 3151.510628][ T5104] total_pgpgin 779675
[ 3151.514836][ T5104] total_pgpgout 779675
[ 3151.524927][ T5104] total_pgfault 1281898
[ 3151.529411][ T5104] total_pgmajfault 23613
[ 3151.533857][ T5104] total_inactive_anon 0
[ 3151.538498][ T5104] total_active_anon 0
[ 3151.549391][ T5104] total_inactive_file 0
[ 3151.555256][ T5104] total_active_file 0
[ 3151.560768][ T5104] total_unevictable 0
[ 3151.565001][ T5104] anon_cost 0
[ 3151.568436][ T5104] file_cost 0
01:27:13 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x800000000000000}, 0x0)

[ 3151.589788][ T5104] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=2419,uid=0
01:27:14 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36, 0x0, 0xc00}}}}]}, 0x58}}, 0x0)

[ 3151.624448][ T5104] Memory cgroup out of memory: Killed process 2419 (syz-executor.2) total-vm:54508kB, anon-rss:0kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000
01:27:14 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {0x0, 0xc}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

01:27:14 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x600, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}}, 0x0)

01:27:14 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x900000000000000}, 0x0)

01:27:14 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {0x0, 0xf}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

01:27:14 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36, 0x0, 0xf00}}}}]}, 0x58}}, 0x0)

01:27:14 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0xa00000000000000}, 0x0)

01:27:14 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36, 0x0, 0x1100}}}}]}, 0x58}}, 0x0)

[ 3152.327503][ T5104] syz-executor.2 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[ 3152.377649][ T5104] CPU: 0 PID: 5104 Comm: syz-executor.2 Not tainted 6.8.0-rc5-syzkaller-00002-gfca7526b7d89 #0
[ 3152.388052][ T5104] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024
[ 3152.398139][ T5104] Call Trace:
[ 3152.401443][ T5104]  <TASK>
[ 3152.404398][ T5104]  dump_stack_lvl+0x1e7/0x2e0
[ 3152.409209][ T5104]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3152.414448][ T5104]  ? __pfx__printk+0x10/0x10
[ 3152.419080][ T5104]  ? ___ratelimit+0x4c4/0x670
[ 3152.423815][ T5104]  ? __pfx____ratelimit+0x10/0x10
[ 3152.428882][ T5104]  dump_header+0xda/0x6a0
[ 3152.433246][ T5104]  oom_kill_process+0x3a7/0x930
[ 3152.438118][ T5104]  out_of_memory+0xf67/0x1320
[ 3152.442798][ T5104]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3152.448433][ T5104]  ? __pfx___mutex_lock+0x10/0x10
[ 3152.453461][ T5104]  ? __pfx_out_of_memory+0x10/0x10
[ 3152.458574][ T5104]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3152.464125][ T5104]  ? __pfx_lock_release+0x10/0x10
[ 3152.469151][ T5104]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3152.475212][ T5104]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3152.480409][ T5104]  ? mem_cgroup_iter+0x3e9/0x560
[ 3152.485357][ T5104]  try_charge_memcg+0xda2/0x18a0
[ 3152.490286][ T5104]  ? mark_lock+0x9a/0x350
[ 3152.494630][ T5104]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3152.500014][ T5104]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 3152.506177][ T5104]  charge_memcg+0xa2/0x160
[ 3152.510597][ T5104]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 3152.516671][ T5104]  __read_swap_cache_async+0x480/0x8b0
[ 3152.522133][ T5104]  ? mark_lock+0x9a/0x350
[ 3152.526477][ T5104]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 3152.532464][ T5104]  swap_cluster_readahead+0x67c/0x810
[ 3152.537844][ T5104]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 3152.543737][ T5104]  ? __pfx_lock_release+0x10/0x10
[ 3152.548761][ T5104]  ? xas_descend+0x37e/0x470
[ 3152.553352][ T5104]  swapin_readahead+0x1ea/0x1070
[ 3152.558304][ T5104]  ? filemap_get_entry+0x127/0x4e0
[ 3152.563449][ T5104]  ? __pfx_swapin_readahead+0x10/0x10
[ 3152.568860][ T5104]  ? __filemap_get_folio+0x935/0xbc0
[ 3152.574166][ T5104]  ? swap_cache_get_folio+0x9f/0x570
[ 3152.579463][ T5104]  do_swap_page+0x8ab/0x3da0
[ 3152.584058][ T5104]  ? __pte_offset_map+0x2c4/0x380
[ 3152.589089][ T5104]  ? do_swap_page+0x154/0x3da0
[ 3152.593849][ T5104]  ? __pfx_do_swap_page+0x10/0x10
[ 3152.598867][ T5104]  ? pte_offset_map_nolock+0x137/0x1f0
[ 3152.604326][ T5104]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 3152.610135][ T5104]  __handle_mm_fault+0x15e8/0x72d0
[ 3152.615361][ T5104]  ? reacquire_held_locks+0x3eb/0x690
[ 3152.620745][ T5104]  ? __pfx___handle_mm_fault+0x10/0x10
[ 3152.626207][ T5104]  ? __pfx_reacquire_held_locks+0x10/0x10
[ 3152.631938][ T5104]  ? mtree_range_walk+0x6fd/0x8e0
[ 3152.636959][ T5104]  ? lock_vma_under_rcu+0x18a/0x730
[ 3152.642156][ T5104]  ? __pfx_lock_release+0x10/0x10
[ 3152.647176][ T5104]  ? lock_vma_under_rcu+0x2f9/0x730
[ 3152.652382][ T5104]  ? lock_vma_under_rcu+0x18a/0x730
[ 3152.657572][ T5104]  ? __pfx_lock_vma_under_rcu+0x10/0x10
[ 3152.663110][ T5104]  handle_mm_fault+0x3c1/0x8a0
[ 3152.667883][ T5104]  exc_page_fault+0x456/0x870
[ 3152.672561][ T5104]  asm_exc_page_fault+0x26/0x30
[ 3152.677405][ T5104] RIP: 0033:0x7f5706ea91b8
[ 3152.681815][ T5104] Code: 3c 24 48 89 4c 24 18 e8 f6 b9 ff ff 4c 8b 54 24 18 48 8b 54 24 10 41 89 c0 8b 74 24 0c 8b 3c 24 b8 e6 00 00 00 0f 05 44 89 c7 <48> 89 04 24 e8 4f ba ff ff 48 8b 04 24 48 83 c4 28 f7 d8 c3 0f 1f
[ 3152.701416][ T5104] RSP: 002b:00007f57070cfcf0 EFLAGS: 00010293
[ 3152.707476][ T5104] RAX: 0000000000000000 RBX: 0000000000006cf9 RCX: 00007f5706ea91b5
[ 3152.715438][ T5104] RDX: 00007f57070cfd30 RSI: 0000000000000000 RDI: 0000000000000000
[ 3152.723413][ T5104] RBP: 00007f57070cfdbc R08: 0000000000000000 R09: 00007ffeb39ee0b0
[ 3152.731383][ T5104] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000032
[ 3152.739360][ T5104] R13: 000000000030179b R14: 000000000030179b R15: 0000000000000000
[ 3152.749861][ T5104]  </TASK>
[ 3152.766579][ T5104] memory: usage 307200kB, limit 307200kB, failcnt 82532
01:27:15 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0xb00000000000000}, 0x0)

01:27:15 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {0x0, 0x10}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

[ 3152.778066][ T2470] __nla_validate_parse: 24 callbacks suppressed
[ 3152.778083][ T2470] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 3152.790591][ T5104] memory+swap: usage 307784kB, limit 9007199254740988kB, failcnt 0
[ 3152.819314][ T5104] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
01:27:15 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36, 0x0, 0x1400}}}}]}, 0x58}}, 0x0)

[ 3152.837250][ T2473] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'.
01:27:15 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x44, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x14, 0x2, [@TCA_FLOW_EMATCHES={0x10, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100, 0x600}}, @TCA_EMATCH_TREE_LIST={0x4}]}]}}]}, 0x44}}, 0x0)

[ 3152.879447][ T5104] Memory cgroup stats for /syz2:
[ 3152.879595][ T5104] cache 0
[ 3152.893823][ T5104] rss 12288
[ 3152.902436][ T5104] rss_huge 0
[ 3152.910405][ T5104] shmem 0
[ 3152.925932][ T5104] mapped_file 0
01:27:15 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0xc00000000000000}, 0x0)

[ 3152.937605][ T5104] dirty 0
[ 3152.945810][ T5104] writeback 0
[ 3152.950950][ T2474] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 3152.954687][ T5104] workingset_refault_anon 29000
[ 3152.972612][ T5104] workingset_refault_file 171
[ 3152.991051][ T5104] swap 585728
[ 3152.997971][ T5104] swapcached 0
[ 3153.006154][ T5104] pgpgin 779841
[ 3153.014493][ T5104] pgpgout 779838
[ 3153.022059][ T5104] pgfault 1282143
[ 3153.033354][ T5104] pgmajfault 23753
[ 3153.042242][ T5104] inactive_anon 12288
[ 3153.051990][ T5104] active_anon 0
[ 3153.052873][ T2477] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 3153.059740][ T5104] inactive_file 0
[ 3153.074772][ T5104] active_file 0
[ 3153.083878][ T5104] unevictable 0
01:27:15 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {0x0, 0x11}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

[ 3153.095891][ T5104] hierarchical_memory_limit 314572800
[ 3153.107074][ T5104] hierarchical_memsw_limit 9223372036854771712
[ 3153.119683][ T2485] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 3153.122427][ T5104] total_cache 0
[ 3153.140696][ T5104] total_rss 12288
01:27:15 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36, 0x0, 0x1500}}}}]}, 0x58}}, 0x0)

[ 3153.152811][ T5104] total_rss_huge 0
[ 3153.159410][ T5104] total_shmem 0
[ 3153.166475][ T5104] total_mapped_file 0
[ 3153.177423][ T5104] total_dirty 0
[ 3153.185118][ T5104] total_writeback 0
[ 3153.205203][ T5104] total_workingset_refault_anon 29000
[ 3153.226420][ T5104] total_workingset_refault_file 171
[ 3153.234359][ T5104] total_swap 585728
[ 3153.241685][ T5104] total_swapcached 0
[ 3153.242862][ T2487] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 3153.250685][ T5104] total_pgpgin 779841
[ 3153.272178][ T5104] total_pgpgout 779838
01:27:15 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0xf00000000000000}, 0x0)

[ 3153.279802][ T5104] total_pgfault 1282143
[ 3153.294999][ T5104] total_pgmajfault 23753
[ 3153.306278][ T5104] total_inactive_anon 12288
[ 3153.316943][ T5104] total_active_anon 0
[ 3153.332950][ T5104] total_inactive_file 0
[ 3153.335162][ T2491] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 3153.343707][ T5104] total_active_file 0
[ 3153.363446][ T5104] total_unevictable 0
[ 3153.372203][ T5104] anon_cost 0
[ 3153.379512][ T5104] file_cost 0
[ 3153.386808][ T5104] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=2454,uid=0
[ 3153.410295][ T2494] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'.
01:27:15 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {0x0, 0x14}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

[ 3153.420635][ T5104] Memory cgroup out of memory: Killed process 2454 (syz-executor.2) total-vm:54508kB, anon-rss:0kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000
01:27:15 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36, 0x0, 0x2800}}}}]}, 0x58}}, 0x0)

01:27:15 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x1000000000000000}, 0x0)

[ 3153.521554][ T2497] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
01:27:15 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x700, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}}, 0x0)

01:27:16 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {0x0, 0x15}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

[ 3153.656193][ T2503] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
01:27:16 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36, 0x0, 0x4788}}}}]}, 0x58}}, 0x0)

01:27:16 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x1100000000000000}, 0x0)

[ 3153.936578][ T2504] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3153.969204][ T2504] CPU: 0 PID: 2504 Comm: syz-executor.2 Not tainted 6.8.0-rc5-syzkaller-00002-gfca7526b7d89 #0
[ 3153.979672][ T2504] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024
[ 3153.989755][ T2504] Call Trace:
[ 3153.993234][ T2504]  <TASK>
[ 3153.996223][ T2504]  dump_stack_lvl+0x1e7/0x2e0
[ 3154.000943][ T2504]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3154.006176][ T2504]  ? __pfx__printk+0x10/0x10
[ 3154.010792][ T2504]  ? ___ratelimit+0x4c4/0x670
[ 3154.015514][ T2504]  ? __pfx____ratelimit+0x10/0x10
[ 3154.020574][ T2504]  dump_header+0xda/0x6a0
[ 3154.024945][ T2504]  oom_kill_process+0x3a7/0x930
[ 3154.029835][ T2504]  out_of_memory+0xf67/0x1320
[ 3154.034548][ T2504]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3154.040205][ T2504]  ? __pfx___mutex_lock+0x10/0x10
[ 3154.045269][ T2504]  ? __pfx_out_of_memory+0x10/0x10
[ 3154.050505][ T2504]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3154.056080][ T2504]  ? __pfx_lock_release+0x10/0x10
[ 3154.061144][ T2504]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3154.067269][ T2504]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3154.072502][ T2504]  ? mem_cgroup_iter+0x3e9/0x560
[ 3154.077477][ T2504]  try_charge_memcg+0xda2/0x18a0
[ 3154.082467][ T2504]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3154.087875][ T2504]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3154.093897][ T2504]  ? __pfx_lock_release+0x10/0x10
[ 3154.098952][ T2504]  ? memcg_account_kmem+0x1e7/0x210
[ 3154.104189][ T2504]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3154.110027][ T2504]  __memcg_kmem_charge_page+0xe1/0x250
[ 3154.115611][ T2504]  memcg_charge_kernel_stack+0x28a/0x550
[ 3154.121282][ T2504]  dup_task_struct+0x40d/0x7d0
[ 3154.126168][ T2504]  copy_process+0x5d5/0x3fc0
[ 3154.130813][ T2504]  ? __might_fault+0xa9/0x120
[ 3154.135528][ T2504]  ? __pfx_lock_release+0x10/0x10
[ 3154.140599][ T2504]  ? __pfx_copy_process+0x10/0x10
[ 3154.145653][ T2504]  ? __might_fault+0xc5/0x120
[ 3154.150453][ T2504]  ? __asan_memset+0x23/0x50
[ 3154.155085][ T2504]  kernel_clone+0x21d/0x8d0
[ 3154.159708][ T2504]  ? __pfx_kernel_clone+0x10/0x10
[ 3154.164807][ T2504]  __se_sys_clone3+0x2cb/0x350
[ 3154.169607][ T2504]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3154.174954][ T2504]  ? do_syscall_64+0x108/0x240
[ 3154.179751][ T2504]  ? do_syscall_64+0xb4/0x240
01:27:16 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {0x0, 0x24}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

[ 3154.184456][ T2504]  do_syscall_64+0xf9/0x240
[ 3154.188991][ T2504]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 3154.194915][ T2504] RIP: 0033:0x7f5706ea9b99
[ 3154.199353][ T2504] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 3154.218988][ T2504] RSP: 002b:00007f57070cf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 3154.227437][ T2504] RAX: ffffffffffffffda RBX: 00007f5706e52270 RCX: 00007f5706ea9b99
[ 3154.235473][ T2504] RDX: 00007f5706e52270 RSI: 0000000000000058 RDI: 00007f57070cf960
[ 3154.243475][ T2504] RBP: 00007f5707c6c6c0 R08: 00007f5707c6c6c0 R09: 00007f57070cfa47
[ 3154.251564][ T2504] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 3154.259565][ T2504] R13: 000000000000000b R14: 00007f57070cf960 R15: 00007f57070cfa48
[ 3154.267630][ T2504]  </TASK>
01:27:16 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x1400000000000000}, 0x0)

01:27:16 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {0x0, 0x28}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

[ 3154.342389][ T2504] memory: usage 307200kB, limit 307200kB, failcnt 82738
[ 3154.375473][ T2504] memory+swap: usage 307772kB, limit 9007199254740988kB, failcnt 0
01:27:16 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36, 0x0, 0x4888}}}}]}, 0x58}}, 0x0)

[ 3154.419324][ T2504] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0
[ 3154.433688][ T2504] Memory cgroup stats for /syz2:
[ 3154.433861][ T2504] cache 0
[ 3154.461625][ T2504] rss 12288
[ 3154.468219][ T2504] rss_huge 0
[ 3154.475631][ T2504] shmem 0
[ 3154.484277][ T2504] mapped_file 0
[ 3154.491832][ T2504] dirty 0
[ 3154.498212][ T2504] writeback 0
[ 3154.513724][ T2504] workingset_refault_anon 29065
[ 3154.523588][ T2504] workingset_refault_file 171
[ 3154.533371][ T2504] swap 622592
[ 3154.540094][ T2504] swapcached 0
[ 3154.553903][ T2504] pgpgin 779926
[ 3154.563858][ T2504] pgpgout 779923
[ 3154.572281][ T2504] pgfault 1282279
[ 3154.578476][ T2504] pgmajfault 23826
[ 3154.589692][ T2504] inactive_anon 0
[ 3154.594620][ T2504] active_anon 12288
[ 3154.602474][ T2504] inactive_file 0
[ 3154.606300][ T2504] active_file 0
01:27:17 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {0x0, 0x60}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

[ 3154.611758][ T2504] unevictable 0
[ 3154.615438][ T2504] hierarchical_memory_limit 314572800
[ 3154.621536][ T2504] hierarchical_memsw_limit 9223372036854771712
[ 3154.631092][ T2504] total_cache 0
[ 3154.635067][ T2504] total_rss 12288
[ 3154.638897][ T2504] total_rss_huge 0
[ 3154.643537][ T2504] total_shmem 0
[ 3154.647629][ T2504] total_mapped_file 0
[ 3154.652169][ T2504] total_dirty 0
[ 3154.655827][ T2504] total_writeback 0
01:27:17 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x1500000000000000}, 0x0)

[ 3154.672533][ T2504] total_workingset_refault_anon 29065
[ 3154.684882][ T2504] total_workingset_refault_file 171
[ 3154.696861][ T2504] total_swap 622592
[ 3154.706033][ T2504] total_swapcached 0
[ 3154.721033][ T2504] total_pgpgin 779926
[ 3154.737025][ T2504] total_pgpgout 779923
[ 3154.747344][ T2504] total_pgfault 1282279
[ 3154.757642][ T2504] total_pgmajfault 23826
[ 3154.767548][ T2504] total_inactive_anon 0
01:27:17 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36, 0x0, 0x5865}}}}]}, 0x58}}, 0x0)

[ 3154.777926][ T2504] total_active_anon 12288
[ 3154.788184][ T2504] total_inactive_file 0
[ 3154.803417][ T2504] total_active_file 0
[ 3154.815434][ T2504] total_unevictable 0
[ 3154.839339][ T2504] anon_cost 0
[ 3154.845331][ T2504] file_cost 0
[ 3154.851550][ T2504] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=2504,uid=0
[ 3154.881125][ T2504] Memory cgroup out of memory: Killed process 2504 (syz-executor.2) total-vm:54508kB, anon-rss:0kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000
01:27:17 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x2000000000000000}, 0x0)

01:27:17 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {0x0, 0x300}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

01:27:17 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x900, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}}, 0x0)

01:27:17 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36, 0x0, 0x6000}}}}]}, 0x58}}, 0x0)

01:27:17 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36, 0x0, 0x6558}}}}]}, 0x58}}, 0x0)

01:27:17 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x6000000000000000}, 0x0)

01:27:17 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {0x0, 0x500}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

01:27:17 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x624551bf00000000}, 0x0)

01:27:17 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {0x0, 0x600}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

01:27:17 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36, 0x0, 0x8100}}}}]}, 0x58}}, 0x0)

[ 3155.606699][ T2546] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3155.652031][ T2546] CPU: 1 PID: 2546 Comm: syz-executor.2 Not tainted 6.8.0-rc5-syzkaller-00002-gfca7526b7d89 #0
[ 3155.662763][ T2546] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024
[ 3155.672856][ T2546] Call Trace:
[ 3155.676160][ T2546]  <TASK>
[ 3155.679126][ T2546]  dump_stack_lvl+0x1e7/0x2e0
[ 3155.683852][ T2546]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3155.689180][ T2546]  ? __pfx__printk+0x10/0x10
[ 3155.695726][ T2546]  ? ___ratelimit+0x4c4/0x670
[ 3155.700450][ T2546]  ? __pfx____ratelimit+0x10/0x10
[ 3155.705492][ T2546]  dump_header+0xda/0x6a0
[ 3155.709837][ T2546]  oom_kill_process+0x3a7/0x930
[ 3155.714693][ T2546]  out_of_memory+0xf67/0x1320
[ 3155.719376][ T2546]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3155.725009][ T2546]  ? __pfx___mutex_lock+0x10/0x10
[ 3155.730037][ T2546]  ? __pfx_out_of_memory+0x10/0x10
[ 3155.735151][ T2546]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3155.740694][ T2546]  ? __pfx_lock_release+0x10/0x10
[ 3155.745730][ T2546]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3155.751801][ T2546]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3155.757034][ T2546]  ? mem_cgroup_iter+0x3e9/0x560
[ 3155.762003][ T2546]  try_charge_memcg+0xda2/0x18a0
[ 3155.766966][ T2546]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3155.772337][ T2546]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3155.778055][ T2546]  ? __pfx_lock_release+0x10/0x10
[ 3155.783109][ T2546]  ? memcg_account_kmem+0x1e7/0x210
[ 3155.788349][ T2546]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3155.794173][ T2546]  __memcg_kmem_charge_page+0xe1/0x250
[ 3155.799647][ T2546]  memcg_charge_kernel_stack+0x37e/0x550
[ 3155.805295][ T2546]  dup_task_struct+0x15d/0x7d0
[ 3155.810068][ T2546]  copy_process+0x5d5/0x3fc0
[ 3155.814665][ T2546]  ? __might_fault+0xa9/0x120
[ 3155.819341][ T2546]  ? __pfx_lock_release+0x10/0x10
[ 3155.824372][ T2546]  ? __pfx_copy_process+0x10/0x10
[ 3155.829396][ T2546]  ? __might_fault+0xc5/0x120
[ 3155.834069][ T2546]  ? __asan_memset+0x23/0x50
[ 3155.838659][ T2546]  kernel_clone+0x21d/0x8d0
[ 3155.843162][ T2546]  ? __pfx_kernel_clone+0x10/0x10
[ 3155.848195][ T2546]  __se_sys_clone3+0x2cb/0x350
[ 3155.852954][ T2546]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3155.858241][ T2546]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3155.864225][ T2546]  ? exc_page_fault+0x587/0x870
[ 3155.869077][ T2546]  ? do_syscall_64+0xb4/0x240
[ 3155.873750][ T2546]  do_syscall_64+0xf9/0x240
[ 3155.878250][ T2546]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 3155.884143][ T2546] RIP: 0033:0x7f5706ea9b99
[ 3155.888555][ T2546] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 3155.908161][ T2546] RSP: 002b:00007f57070cf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 3155.916577][ T2546] RAX: ffffffffffffffda RBX: 00007f5706e52270 RCX: 00007f5706ea9b99
[ 3155.924555][ T2546] RDX: 00007f5706e52270 RSI: 0000000000000058 RDI: 00007f57070cf960
[ 3155.932526][ T2546] RBP: 00007f5707c6c6c0 R08: 00007f5707c6c6c0 R09: 00007f57070cfa47
[ 3155.940499][ T2546] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 3155.948467][ T2546] R13: 000000000000000b R14: 00007f57070cf960 R15: 00007f57070cfa48
[ 3155.956446][ T2546]  </TASK>
[ 3155.969135][ T2546] memory: usage 307200kB, limit 307200kB, failcnt 83144
[ 3155.976127][ T2546] memory+swap: usage 307780kB, limit 9007199254740988kB, failcnt 0
[ 3155.990106][ T2546] kmem: usage 307196kB, limit 9007199254740988kB, failcnt 0
[ 3156.001198][ T2546] Memory cgroup stats for /syz2:
[ 3156.001345][ T2546] cache 0
[ 3156.009823][ T2546] rss 4096
[ 3156.013032][ T2546] rss_huge 0
[ 3156.017477][ T2546] shmem 0
[ 3156.021231][ T2546] mapped_file 0
[ 3156.024822][ T2546] dirty 0
[ 3156.027874][ T2546] writeback 0
[ 3156.031497][ T2546] workingset_refault_anon 29202
[ 3156.036520][ T2546] workingset_refault_file 171
[ 3156.041598][ T2546] swap 593920
[ 3156.045043][ T2546] swapcached 0
[ 3156.049543][ T2546] pgpgin 780074
01:27:18 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x6558000000000000}, 0x0)

[ 3156.053797][ T2546] pgpgout 780073
[ 3156.057515][ T2546] pgfault 1282494
[ 3156.067891][ T2546] pgmajfault 23953
[ 3156.088335][ T2546] inactive_anon 0
[ 3156.144954][ T2546] active_anon 4096
01:27:18 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {0x0, 0x700}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

[ 3156.168166][ T2546] inactive_file 0
01:27:18 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36, 0x0, 0x839a}}}}]}, 0x58}}, 0x0)

[ 3156.210562][ T2546] active_file 0
[ 3156.224903][ T2546] unevictable 0
[ 3156.236553][ T2546] hierarchical_memory_limit 314572800
[ 3156.262246][ T2546] hierarchical_memsw_limit 9223372036854771712
[ 3156.297839][ T2546] total_cache 0
[ 3156.382219][ T2546] total_rss 4096
[ 3156.393768][ T2546] total_rss_huge 0
[ 3156.409086][ T2546] total_shmem 0
[ 3156.421066][ T2546] total_mapped_file 0
[ 3156.449354][ T2546] total_dirty 0
[ 3156.457194][ T2546] total_writeback 0
[ 3156.492370][ T2546] total_workingset_refault_anon 29202
[ 3156.518168][ T2546] total_workingset_refault_file 171
[ 3156.530882][ T2546] total_swap 593920
[ 3156.534747][ T2546] total_swapcached 0
[ 3156.538655][ T2546] total_pgpgin 780074
[ 3156.569797][ T2546] total_pgpgout 780073
[ 3156.573918][ T2546] total_pgfault 1282494
[ 3156.578094][ T2546] total_pgmajfault 23953
[ 3156.613716][ T2546] total_inactive_anon 0
[ 3156.617935][ T2546] total_active_anon 4096
[ 3156.640071][ T2546] total_inactive_file 0
[ 3156.644279][ T2546] total_active_file 0
[ 3156.648359][ T2546] total_unevictable 0
[ 3156.661563][ T2546] anon_cost 0
[ 3156.664913][ T2546] file_cost 0
[ 3156.668231][ T2546] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=2546,uid=0
[ 3156.724928][ T2546] Memory cgroup out of memory: Killed process 2546 (syz-executor.2) total-vm:54508kB, anon-rss:0kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000
01:27:19 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x44, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x14, 0x2, [@TCA_FLOW_EMATCHES={0x10, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100, 0x700}}, @TCA_EMATCH_TREE_LIST={0x4}]}]}}]}, 0x44}}, 0x0)

01:27:19 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x8100000000000000}, 0x0)

01:27:19 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {0x0, 0x900}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

01:27:19 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36, 0x0, 0x8847}}}}]}, 0x58}}, 0x0)

01:27:19 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0xa00, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}}, 0x0)

01:27:19 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {0x0, 0xa00}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

01:27:19 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x8847000000000000}, 0x0)

01:27:19 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36, 0x0, 0x8848}}}}]}, 0x58}}, 0x0)

[ 3157.115730][ T2588] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3157.145854][ T2588] CPU: 1 PID: 2588 Comm: syz-executor.2 Not tainted 6.8.0-rc5-syzkaller-00002-gfca7526b7d89 #0
[ 3157.156274][ T2588] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024
[ 3157.166356][ T2588] Call Trace:
[ 3157.169654][ T2588]  <TASK>
[ 3157.172604][ T2588]  dump_stack_lvl+0x1e7/0x2e0
[ 3157.177316][ T2588]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3157.182551][ T2588]  ? __pfx__printk+0x10/0x10
[ 3157.187173][ T2588]  ? ___ratelimit+0x4c4/0x670
[ 3157.191894][ T2588]  ? __pfx____ratelimit+0x10/0x10
[ 3157.196951][ T2588]  dump_header+0xda/0x6a0
[ 3157.201285][ T2588]  oom_kill_process+0x3a7/0x930
[ 3157.206141][ T2588]  out_of_memory+0xf67/0x1320
[ 3157.210820][ T2588]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3157.216455][ T2588]  ? __pfx___mutex_lock+0x10/0x10
[ 3157.221486][ T2588]  ? __pfx_out_of_memory+0x10/0x10
[ 3157.226607][ T2588]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3157.232261][ T2588]  ? __pfx_lock_release+0x10/0x10
[ 3157.237286][ T2588]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3157.243352][ T2588]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3157.248549][ T2588]  ? mem_cgroup_iter+0x3e9/0x560
[ 3157.253577][ T2588]  try_charge_memcg+0xda2/0x18a0
[ 3157.258529][ T2588]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3157.263896][ T2588]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3157.269617][ T2588]  ? __pfx_lock_release+0x10/0x10
[ 3157.274643][ T2588]  ? memcg_account_kmem+0x1e7/0x210
[ 3157.279850][ T2588]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3157.285652][ T2588]  __memcg_kmem_charge_page+0xe1/0x250
[ 3157.291114][ T2588]  memcg_charge_kernel_stack+0x28a/0x550
[ 3157.296747][ T2588]  dup_task_struct+0x15d/0x7d0
[ 3157.301520][ T2588]  copy_process+0x5d5/0x3fc0
[ 3157.306202][ T2588]  ? __might_fault+0xa9/0x120
[ 3157.310880][ T2588]  ? __pfx_lock_release+0x10/0x10
[ 3157.315926][ T2588]  ? __pfx_copy_process+0x10/0x10
[ 3157.320952][ T2588]  ? __might_fault+0xc5/0x120
[ 3157.325632][ T2588]  ? __asan_memset+0x23/0x50
[ 3157.330255][ T2588]  kernel_clone+0x21d/0x8d0
[ 3157.334845][ T2588]  ? __pfx_kernel_clone+0x10/0x10
[ 3157.339878][ T2588]  __se_sys_clone3+0x2cb/0x350
[ 3157.344636][ T2588]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3157.349937][ T2588]  ? do_syscall_64+0x108/0x240
[ 3157.354699][ T2588]  ? do_syscall_64+0xb4/0x240
[ 3157.359375][ T2588]  do_syscall_64+0xf9/0x240
[ 3157.363886][ T2588]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 3157.369779][ T2588] RIP: 0033:0x7f5706ea9b99
[ 3157.374194][ T2588] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 3157.393800][ T2588] RSP: 002b:00007f57070cf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 3157.402218][ T2588] RAX: ffffffffffffffda RBX: 00007f5706e52270 RCX: 00007f5706ea9b99
[ 3157.410192][ T2588] RDX: 00007f5706e52270 RSI: 0000000000000058 RDI: 00007f57070cf960
[ 3157.418162][ T2588] RBP: 00007f5707c6c6c0 R08: 00007f5707c6c6c0 R09: 00007f57070cfa47
[ 3157.426146][ T2588] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 3157.434134][ T2588] R13: 000000000000000b R14: 00007f57070cf960 R15: 00007f57070cfa48
[ 3157.442302][ T2588]  </TASK>
[ 3157.474022][ T2588] memory: usage 307200kB, limit 307200kB, failcnt 83640
[ 3157.488150][ T2588] memory+swap: usage 307772kB, limit 9007199254740988kB, failcnt 0
01:27:19 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {0x0, 0xb00}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

[ 3157.521049][ T2588] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0
[ 3157.548834][ T2588] Memory cgroup stats for /syz2:
[ 3157.552951][ T2588] cache 0
[ 3157.569107][ T2588] rss 12288
[ 3157.574839][ T2588] rss_huge 0
[ 3157.583098][ T2588] shmem 0
[ 3157.591945][ T2588] mapped_file 0
[ 3157.599604][ T2588] dirty 0
[ 3157.604984][ T2588] writeback 0
01:27:20 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36, 0x0, 0x1000000}}}}]}, 0x58}}, 0x0)

[ 3157.617301][ T2588] workingset_refault_anon 29304
01:27:20 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x8848000000000000}, 0x0)

[ 3157.654646][ T2588] workingset_refault_file 171
[ 3157.667707][ T2588] swap 585728
[ 3157.678116][ T2588] swapcached 0
[ 3157.703901][ T2588] pgpgin 780202
[ 3157.723744][ T2588] pgpgout 780199
[ 3157.732992][ T2588] pgfault 1282677
[ 3157.749599][ T2588] pgmajfault 24060
01:27:20 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {0x0, 0xc00}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

[ 3157.758797][ T2588] inactive_anon 0
[ 3157.771750][ T2588] active_anon 12288
[ 3157.791599][ T2588] inactive_file 0
[ 3157.794675][ T2606] __nla_validate_parse: 31 callbacks suppressed
01:27:20 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36, 0x0, 0x2000000}}}}]}, 0x58}}, 0x0)

[ 3157.794693][ T2606] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 3157.802255][ T2588] active_file 0
[ 3157.843503][ T2588] unevictable 0
[ 3157.849919][ T2588] hierarchical_memory_limit 314572800
[ 3157.863414][ T2588] hierarchical_memsw_limit 9223372036854771712
[ 3157.880788][ T2588] total_cache 0
[ 3157.888536][ T2588] total_rss 12288
[ 3157.900050][ T2588] total_rss_huge 0
[ 3157.906474][ T2615] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 3157.908442][ T2588] total_shmem 0
[ 3157.950526][ T2588] total_mapped_file 0
[ 3157.959750][ T2613] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 3157.973882][ T2588] total_dirty 0
[ 3157.984827][ T2588] total_writeback 0
[ 3157.998454][ T2588] total_workingset_refault_anon 29304
[ 3158.013350][ T2588] total_workingset_refault_file 171
[ 3158.030017][ T2588] total_swap 585728
[ 3158.038423][ T2588] total_swapcached 0
[ 3158.047930][ T2588] total_pgpgin 780202
01:27:20 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x88a8ffff00000000}, 0x0)

01:27:20 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {0x0, 0xf00}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

[ 3158.061096][ T2588] total_pgpgout 780199
[ 3158.070514][ T2588] total_pgfault 1282677
[ 3158.080526][ T2588] total_pgmajfault 24060
[ 3158.092590][ T2588] total_inactive_anon 0
01:27:20 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36, 0x0, 0x3000000}}}}]}, 0x58}}, 0x0)

[ 3158.119287][ T2588] total_active_anon 12288
[ 3158.125499][ T2588] total_inactive_file 0
[ 3158.149386][ T2588] total_active_file 0
[ 3158.163361][ T2588] total_unevictable 0
[ 3158.165064][ T2619] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 3158.176957][ T2588] anon_cost 0
[ 3158.189511][ T2588] file_cost 0
[ 3158.203194][ T2588] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=2588,uid=0
01:27:20 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0xb00, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}}, 0x0)

[ 3158.232604][ T2620] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 3158.242021][ T2588] Memory cgroup out of memory: Killed process 2588 (syz-executor.2) total-vm:54508kB, anon-rss:0kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000
01:27:20 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {0x0, 0x1100}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

[ 3158.316290][ T2626] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
01:27:20 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0xf0ffffff00000000}, 0x0)

01:27:20 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36, 0x0, 0x4000000}}}}]}, 0x58}}, 0x0)

[ 3158.434999][ T2630] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
01:27:20 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {0x0, 0x1400}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

[ 3158.568715][ T2632] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 3158.697852][ T2637] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
01:27:21 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0xffffff7f00000000}, 0x0)

01:27:21 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36, 0x0, 0x5000000}}}}]}, 0x58}}, 0x0)

[ 3158.826386][ T2642] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 3158.925656][ T5104] syz-executor.2 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[ 3158.943894][ T5104] CPU: 0 PID: 5104 Comm: syz-executor.2 Not tainted 6.8.0-rc5-syzkaller-00002-gfca7526b7d89 #0
[ 3158.954448][ T5104] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024
[ 3158.964536][ T5104] Call Trace:
[ 3158.967838][ T5104]  <TASK>
[ 3158.970796][ T5104]  dump_stack_lvl+0x1e7/0x2e0
[ 3158.975512][ T5104]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3158.980770][ T5104]  ? __pfx__printk+0x10/0x10
[ 3158.985386][ T5104]  ? ___ratelimit+0x4c4/0x670
[ 3158.990118][ T5104]  ? __pfx____ratelimit+0x10/0x10
[ 3158.995189][ T5104]  dump_header+0xda/0x6a0
[ 3158.999556][ T5104]  oom_kill_process+0x3a7/0x930
[ 3159.004432][ T5104]  out_of_memory+0xf67/0x1320
[ 3159.009133][ T5104]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3159.014793][ T5104]  ? __pfx___mutex_lock+0x10/0x10
[ 3159.019860][ T5104]  ? __pfx_out_of_memory+0x10/0x10
01:27:21 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {0x0, 0x1500}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

[ 3159.025026][ T5104]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3159.030605][ T5104]  ? __pfx_lock_release+0x10/0x10
[ 3159.035662][ T5104]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3159.041763][ T5104]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3159.047045][ T5104]  ? mem_cgroup_iter+0x3e9/0x560
[ 3159.052026][ T5104]  try_charge_memcg+0xda2/0x18a0
[ 3159.057001][ T5104]  ? mark_lock+0x9a/0x350
[ 3159.061379][ T5104]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3159.066823][ T5104]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 3159.073015][ T5104]  charge_memcg+0xa2/0x160
[ 3159.077475][ T5104]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 3159.083663][ T5104]  __read_swap_cache_async+0x480/0x8b0
[ 3159.089328][ T5104]  ? mark_lock+0x9a/0x350
[ 3159.093703][ T5104]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 3159.099722][ T5104]  ? blk_start_plug+0x6f/0x1b0
[ 3159.104524][ T5104]  swap_cluster_readahead+0x398/0x810
[ 3159.109952][ T5104]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 3159.115891][ T5104]  ? __pfx_lock_release+0x10/0x10
[ 3159.120960][ T5104]  ? xas_descend+0x37e/0x470
[ 3159.125597][ T5104]  swapin_readahead+0x1ea/0x1070
[ 3159.130571][ T5104]  ? filemap_get_entry+0x127/0x4e0
[ 3159.135724][ T5104]  ? __pfx_swapin_readahead+0x10/0x10
[ 3159.141143][ T5104]  ? __filemap_get_folio+0x935/0xbc0
[ 3159.146479][ T5104]  ? swap_cache_get_folio+0x9f/0x570
[ 3159.151808][ T5104]  do_swap_page+0x8ab/0x3da0
[ 3159.156438][ T5104]  ? __pte_offset_map+0x2c4/0x380
[ 3159.161498][ T5104]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3159.166735][ T5104]  ? do_swap_page+0x154/0x3da0
[ 3159.171531][ T5104]  ? __pfx_do_swap_page+0x10/0x10
[ 3159.176594][ T5104]  ? pte_offset_map_nolock+0x137/0x1f0
[ 3159.182103][ T5104]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 3159.187952][ T5104]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 3159.194332][ T5104]  __handle_mm_fault+0x15e8/0x72d0
[ 3159.199502][ T5104]  ? reacquire_held_locks+0x3eb/0x690
[ 3159.204903][ T5104]  ? __pfx___handle_mm_fault+0x10/0x10
[ 3159.210405][ T5104]  ? __pfx_reacquire_held_locks+0x10/0x10
[ 3159.216183][ T5104]  ? mtree_range_walk+0x6fd/0x8e0
[ 3159.221234][ T5104]  ? lock_vma_under_rcu+0x18a/0x730
[ 3159.226461][ T5104]  ? __pfx_lock_release+0x10/0x10
[ 3159.231515][ T5104]  ? lock_vma_under_rcu+0x2f9/0x730
[ 3159.236763][ T5104]  ? lock_vma_under_rcu+0x18a/0x730
[ 3159.241994][ T5104]  ? __pfx_lock_vma_under_rcu+0x10/0x10
[ 3159.247574][ T5104]  handle_mm_fault+0x3c1/0x8a0
[ 3159.252382][ T5104]  exc_page_fault+0x456/0x870
[ 3159.257097][ T5104]  asm_exc_page_fault+0x26/0x30
[ 3159.261983][ T5104] RIP: 0033:0x7f5706e7a780
01:27:21 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36, 0x0, 0x6000000}}}}]}, 0x58}}, 0x0)

[ 3159.266430][ T5104] Code: ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 31 c9 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 <80> 3d 71 57 10 00 00 49 89 ca 74 14 b8 3d 00 00 00 0f 05 48 3d 00
[ 3159.286068][ T5104] RSP: 002b:00007f57070cfd58 EFLAGS: 00010246
[ 3159.292169][ T5104] RAX: 0000000000000225 RBX: 0000000000006cfd RCX: 0000000000000000
[ 3159.300167][ T5104] RDX: 0000000040000001 RSI: 00007f57070cfdbc RDI: 00000000ffffffff
[ 3159.308158][ T5104] RBP: 00007f57070cfdbc R08: 0000000000000010 R09: 00007ffeb39ee0b0
[ 3159.316158][ T5104] R10: 00007ffeb39ee080 R11: 000000000009503a R12: 0000000000000032
01:27:21 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0xffffffff00000000}, 0x0)

[ 3159.324153][ T5104] R13: 000000000030311f R14: 000000000030311f R15: 0000000000000000
[ 3159.332183][ T5104]  </TASK>
[ 3159.386862][ T5104] memory: usage 307200kB, limit 307200kB, failcnt 84005
[ 3159.396609][ T5104] memory+swap: usage 307784kB, limit 9007199254740988kB, failcnt 0
[ 3159.409948][ T5104] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[ 3159.417416][ T5104] Memory cgroup stats for /syz2:
[ 3159.417558][ T5104] cache 0
[ 3159.430457][ T5104] rss 12288
[ 3159.433772][ T5104] rss_huge 0
[ 3159.437077][ T5104] shmem 0
[ 3159.443702][ T5104] mapped_file 0
[ 3159.447290][ T5104] dirty 0
[ 3159.453886][ T5104] writeback 0
[ 3159.457622][ T5104] workingset_refault_anon 29420
[ 3159.467352][ T5104] workingset_refault_file 171
[ 3159.474338][ T5104] swap 585728
[ 3159.506629][ T5104] swapcached 4096
[ 3159.518779][ T5104] pgpgin 780338
[ 3159.538082][ T5104] pgpgout 780335
[ 3159.542239][ T5104] pgfault 1282891
[ 3159.546074][ T5104] pgmajfault 24176
01:27:21 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36, 0x0, 0x7000000}}}}]}, 0x58}}, 0x0)

[ 3159.556205][ T5104] inactive_anon 0
[ 3159.560316][ T5104] active_anon 12288
[ 3159.565027][ T5104] inactive_file 0
[ 3159.568884][ T5104] active_file 0
[ 3159.577046][ T5104] unevictable 0
[ 3159.582791][ T5104] hierarchical_memory_limit 314572800
[ 3159.588392][ T5104] hierarchical_memsw_limit 9223372036854771712
[ 3159.606512][ T5104] total_cache 0
[ 3159.614808][ T5104] total_rss 12288
[ 3159.622347][ T5104] total_rss_huge 0
[ 3159.626309][ T5104] total_shmem 0
[ 3159.632373][ T5104] total_mapped_file 0
[ 3159.636640][ T5104] total_dirty 0
[ 3159.644330][ T5104] total_writeback 0
[ 3159.648341][ T5104] total_workingset_refault_anon 29420
[ 3159.656581][ T5104] total_workingset_refault_file 171
[ 3159.674084][ T5104] total_swap 585728
[ 3159.678071][ T5104] total_swapcached 4096
[ 3159.689849][ T5104] total_pgpgin 780338
01:27:22 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {0x0, 0x2000}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

01:27:22 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x2}, 0x0)

[ 3159.707049][ T5104] total_pgpgout 780335
[ 3159.727493][ T5104] total_pgfault 1282891
[ 3159.738321][ T5104] total_pgmajfault 24176
[ 3159.748676][ T5104] total_inactive_anon 0
[ 3159.757861][ T5104] total_active_anon 12288
[ 3159.774177][ T5104] total_inactive_file 0
[ 3159.786038][ T5104] total_active_file 0
[ 3159.798478][ T5104] total_unevictable 0
01:27:22 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36, 0x0, 0x8000000}}}}]}, 0x58}}, 0x0)

[ 3159.808636][ T5104] anon_cost 0
[ 3159.847396][ T5104] file_cost 0
[ 3159.850861][ T5104] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=2627,uid=0
[ 3159.875591][ T5104] Memory cgroup out of memory: Killed process 2627 (syz-executor.2) total-vm:54508kB, anon-rss:0kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000
01:27:22 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x44, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x14, 0x2, [@TCA_FLOW_EMATCHES={0x10, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100, 0x900}}, @TCA_EMATCH_TREE_LIST={0x4}]}]}}]}, 0x44}}, 0x0)

01:27:22 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0xc00, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}}, 0x0)

01:27:22 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x3}, 0x0)

01:27:22 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {0x0, 0x2400}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

01:27:22 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36, 0x0, 0x9000000}}}}]}, 0x58}}, 0x0)

01:27:22 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x4}, 0x0)

01:27:22 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {0x0, 0x2800}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

01:27:22 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36, 0x0, 0xa000000}}}}]}, 0x58}}, 0x0)

[ 3160.470668][ T2674] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3160.488411][ T2674] CPU: 1 PID: 2674 Comm: syz-executor.2 Not tainted 6.8.0-rc5-syzkaller-00002-gfca7526b7d89 #0
[ 3160.498799][ T2674] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024
[ 3160.508890][ T2674] Call Trace:
[ 3160.512189][ T2674]  <TASK>
[ 3160.515144][ T2674]  dump_stack_lvl+0x1e7/0x2e0
[ 3160.519863][ T2674]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3160.525089][ T2674]  ? __pfx__printk+0x10/0x10
[ 3160.529702][ T2674]  ? ___ratelimit+0x4c4/0x670
[ 3160.534425][ T2674]  ? __pfx____ratelimit+0x10/0x10
[ 3160.539492][ T2674]  dump_header+0xda/0x6a0
[ 3160.544483][ T2674]  oom_kill_process+0x3a7/0x930
[ 3160.549379][ T2674]  out_of_memory+0xf67/0x1320
[ 3160.554094][ T2674]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3160.559761][ T2674]  ? __pfx___mutex_lock+0x10/0x10
[ 3160.564818][ T2674]  ? __pfx_out_of_memory+0x10/0x10
01:27:22 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {0x0, 0x4788}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

[ 3160.569964][ T2674]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3160.575541][ T2674]  ? __pfx_lock_release+0x10/0x10
[ 3160.580607][ T2674]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3160.586714][ T2674]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3160.591942][ T2674]  ? mem_cgroup_iter+0x3e9/0x560
[ 3160.597174][ T2674]  try_charge_memcg+0xda2/0x18a0
[ 3160.602166][ T2674]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3160.607571][ T2674]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3160.613315][ T2674]  ? __pfx_lock_release+0x10/0x10
[ 3160.618374][ T2674]  ? memcg_account_kmem+0x1e7/0x210
[ 3160.623701][ T2674]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3160.629539][ T2674]  __memcg_kmem_charge_page+0xe1/0x250
[ 3160.635032][ T2674]  memcg_charge_kernel_stack+0x28a/0x550
[ 3160.640711][ T2674]  dup_task_struct+0x40d/0x7d0
[ 3160.645527][ T2674]  copy_process+0x5d5/0x3fc0
[ 3160.650166][ T2674]  ? __might_fault+0xa9/0x120
[ 3160.654870][ T2674]  ? __pfx_lock_release+0x10/0x10
[ 3160.659922][ T2674]  ? __lock_acquire+0x1345/0x1fd0
[ 3160.664972][ T2674]  ? __pfx_copy_process+0x10/0x10
[ 3160.670019][ T2674]  ? __might_fault+0xc5/0x120
[ 3160.674719][ T2674]  ? __asan_memset+0x23/0x50
[ 3160.679335][ T2674]  kernel_clone+0x21d/0x8d0
[ 3160.683969][ T2674]  ? __pfx_kernel_clone+0x10/0x10
[ 3160.689081][ T2674]  ? __pfx_lock_release+0x10/0x10
[ 3160.694151][ T2674]  __se_sys_clone3+0x2cb/0x350
[ 3160.698946][ T2674]  ? __might_fault+0xa9/0x120
[ 3160.703649][ T2674]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3160.708953][ T2674]  ? rcu_is_watching+0x15/0xb0
[ 3160.713768][ T2674]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3160.719800][ T2674]  ? exc_page_fault+0x587/0x870
[ 3160.724735][ T2674]  ? do_syscall_64+0xb4/0x240
[ 3160.729497][ T2674]  do_syscall_64+0xf9/0x240
[ 3160.734050][ T2674]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 3160.740242][ T2674] RIP: 0033:0x7f5706ea9b99
[ 3160.744708][ T2674] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 3160.764524][ T2674] RSP: 002b:00007f57070cf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 3160.772976][ T2674] RAX: ffffffffffffffda RBX: 00007f5706e52270 RCX: 00007f5706ea9b99
[ 3160.780982][ T2674] RDX: 00007f5706e52270 RSI: 0000000000000058 RDI: 00007f57070cf960
[ 3160.788983][ T2674] RBP: 00007f5707c6c6c0 R08: 00007f5707c6c6c0 R09: 00007f57070cfa47
[ 3160.796987][ T2674] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 3160.804989][ T2674] R13: 000000000000000b R14: 00007f57070cf960 R15: 00007f57070cfa48
[ 3160.812997][ T2674]  </TASK>
01:27:23 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {0x0, 0x4888}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

[ 3160.857864][ T2674] memory: usage 307200kB, limit 307200kB, failcnt 84404
01:27:23 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x5}, 0x0)

01:27:23 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36, 0x0, 0xb000000}}}}]}, 0x58}}, 0x0)

[ 3160.902417][ T2674] memory+swap: usage 307772kB, limit 9007199254740988kB, failcnt 0
[ 3160.928227][ T2674] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0
01:27:23 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {0x0, 0x5865}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

[ 3160.975408][ T2674] Memory cgroup stats for /syz2:
[ 3160.975520][ T2674] cache 0
[ 3160.997318][ T2674] rss 12288
[ 3161.012880][ T2674] rss_huge 0
[ 3161.025590][ T2674] shmem 0
[ 3161.028573][ T2674] mapped_file 0
[ 3161.051735][ T2674] dirty 0
[ 3161.058088][ T2674] writeback 0
[ 3161.071126][ T2674] workingset_refault_anon 29558
01:27:23 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36, 0x0, 0xc000000}}}}]}, 0x58}}, 0x0)

[ 3161.082801][ T2674] workingset_refault_file 171
[ 3161.094425][ T2674] swap 585728
[ 3161.103046][ T2674] swapcached 4096
[ 3161.122493][ T2674] pgpgin 780490
[ 3161.126004][ T2674] pgpgout 780487
01:27:23 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x6}, 0x0)

[ 3161.143152][ T2674] pgfault 1283117
[ 3161.157802][ T2674] pgmajfault 24297
[ 3161.170289][ T2674] inactive_anon 12288
[ 3161.187211][ T2674] active_anon 0
[ 3161.196551][ T2674] inactive_file 0
[ 3161.206332][ T2674] active_file 0
[ 3161.215748][ T2674] unevictable 0
[ 3161.229828][ T2674] hierarchical_memory_limit 314572800
[ 3161.235258][ T2674] hierarchical_memsw_limit 9223372036854771712
01:27:23 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {0x0, 0x6000}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

[ 3161.266981][ T2674] total_cache 0
[ 3161.291128][ T2674] total_rss 12288
[ 3161.294821][ T2674] total_rss_huge 0
[ 3161.298552][ T2674] total_shmem 0
[ 3161.320641][ T2674] total_mapped_file 0
[ 3161.324687][ T2674] total_dirty 0
[ 3161.328166][ T2674] total_writeback 0
01:27:23 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36, 0x0, 0xf000000}}}}]}, 0x58}}, 0x0)

[ 3161.351278][ T2674] total_workingset_refault_anon 29558
[ 3161.356713][ T2674] total_workingset_refault_file 171
01:27:23 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x7}, 0x0)

[ 3161.392548][ T2674] total_swap 585728
[ 3161.409167][ T2674] total_swapcached 4096
[ 3161.413374][ T2674] total_pgpgin 780490
[ 3161.417378][ T2674] total_pgpgout 780487
01:27:23 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {0x0, 0x6558}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

[ 3161.449361][ T2674] total_pgfault 1283117
[ 3161.467859][ T2674] total_pgmajfault 24297
[ 3161.480419][ T2674] total_inactive_anon 12288
[ 3161.487781][ T2674] total_active_anon 0
[ 3161.498626][ T2674] total_inactive_file 0
[ 3161.504479][ T2674] total_active_file 0
[ 3161.508625][ T2674] total_unevictable 0
[ 3161.521871][ T2674] anon_cost 0
[ 3161.534612][ T2674] file_cost 0
[ 3161.538239][ T2674] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=2674,uid=0
[ 3161.564123][ T2674] Memory cgroup out of memory: Killed process 2674 (syz-executor.2) total-vm:54508kB, anon-rss:0kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000
01:27:24 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36, 0x0, 0x10000000}}}}]}, 0x58}}, 0x0)

01:27:24 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x8}, 0x0)

01:27:24 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0xf00, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}}, 0x0)

01:27:24 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {0x0, 0x8100}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

01:27:24 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36, 0x0, 0x11000000}}}}]}, 0x58}}, 0x0)

01:27:24 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x9}, 0x0)

01:27:24 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {0x0, 0x8847}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

[ 3162.047325][ T2736] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3162.071785][ T2736] CPU: 1 PID: 2736 Comm: syz-executor.2 Not tainted 6.8.0-rc5-syzkaller-00002-gfca7526b7d89 #0
[ 3162.082172][ T2736] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024
[ 3162.092348][ T2736] Call Trace:
[ 3162.095698][ T2736]  <TASK>
[ 3162.098751][ T2736]  dump_stack_lvl+0x1e7/0x2e0
[ 3162.103469][ T2736]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3162.108716][ T2736]  ? __pfx__printk+0x10/0x10
[ 3162.113366][ T2736]  ? ___ratelimit+0x4c4/0x670
[ 3162.118082][ T2736]  ? __pfx____ratelimit+0x10/0x10
[ 3162.123134][ T2736]  dump_header+0xda/0x6a0
[ 3162.127496][ T2736]  oom_kill_process+0x3a7/0x930
[ 3162.132394][ T2736]  out_of_memory+0xf67/0x1320
[ 3162.137107][ T2736]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3162.142777][ T2736]  ? __pfx___mutex_lock+0x10/0x10
[ 3162.147872][ T2736]  ? __pfx_out_of_memory+0x10/0x10
[ 3162.153033][ T2736]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3162.158709][ T2736]  ? __pfx_lock_release+0x10/0x10
[ 3162.163767][ T2736]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3162.169873][ T2736]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3162.175110][ T2736]  ? mem_cgroup_iter+0x3e9/0x560
[ 3162.180065][ T2736]  try_charge_memcg+0xda2/0x18a0
[ 3162.185030][ T2736]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3162.190407][ T2736]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3162.196131][ T2736]  ? __pfx_lock_release+0x10/0x10
[ 3162.201169][ T2736]  ? memcg_account_kmem+0x1e7/0x210
[ 3162.206375][ T2736]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3162.212190][ T2736]  __memcg_kmem_charge_page+0xe1/0x250
[ 3162.217663][ T2736]  memcg_charge_kernel_stack+0x28a/0x550
[ 3162.223297][ T2736]  dup_task_struct+0x15d/0x7d0
[ 3162.228147][ T2736]  copy_process+0x5d5/0x3fc0
[ 3162.232743][ T2736]  ? __might_fault+0xa9/0x120
[ 3162.237417][ T2736]  ? __pfx_lock_release+0x10/0x10
[ 3162.242451][ T2736]  ? __lock_acquire+0x1345/0x1fd0
[ 3162.247828][ T2736]  ? __pfx_copy_process+0x10/0x10
[ 3162.252852][ T2736]  ? __might_fault+0xc5/0x120
[ 3162.257874][ T2736]  ? __asan_memset+0x23/0x50
[ 3162.262467][ T2736]  kernel_clone+0x21d/0x8d0
[ 3162.267056][ T2736]  ? __pfx_kernel_clone+0x10/0x10
[ 3162.272081][ T2736]  ? __pfx_lock_release+0x10/0x10
[ 3162.277107][ T2736]  __se_sys_clone3+0x2cb/0x350
[ 3162.281865][ T2736]  ? __might_fault+0xa9/0x120
[ 3162.286556][ T2736]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3162.291852][ T2736]  ? rcu_is_watching+0x15/0xb0
[ 3162.296644][ T2736]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3162.302644][ T2736]  ? exc_page_fault+0x587/0x870
[ 3162.307509][ T2736]  ? do_syscall_64+0xb4/0x240
[ 3162.312191][ T2736]  do_syscall_64+0xf9/0x240
[ 3162.316793][ T2736]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 3162.322704][ T2736] RIP: 0033:0x7f5706ea9b99
[ 3162.327118][ T2736] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 3162.346727][ T2736] RSP: 002b:00007f57070cf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 3162.355233][ T2736] RAX: ffffffffffffffda RBX: 00007f5706e52270 RCX: 00007f5706ea9b99
[ 3162.363205][ T2736] RDX: 00007f5706e52270 RSI: 0000000000000058 RDI: 00007f57070cf960
[ 3162.371173][ T2736] RBP: 00007f5707c6c6c0 R08: 00007f5707c6c6c0 R09: 00007f57070cfa47
[ 3162.379143][ T2736] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 3162.387117][ T2736] R13: 000000000000000b R14: 00007f57070cf960 R15: 00007f57070cfa48
[ 3162.395103][ T2736]  </TASK>
[ 3162.439219][ T2736] memory: usage 307200kB, limit 307200kB, failcnt 84677
[ 3162.455898][ T2736] memory+swap: usage 307808kB, limit 9007199254740988kB, failcnt 0
[ 3162.474262][ T2736] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0
01:27:24 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36, 0x0, 0x14000000}}}}]}, 0x58}}, 0x0)

[ 3162.491592][ T2736] Memory cgroup stats for /syz2:
[ 3162.491740][ T2736] cache 0
[ 3162.525306][ T2736] rss 12288
[ 3162.536515][ T2736] rss_huge 0
01:27:24 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0xa}, 0x0)

[ 3162.544466][ T2736] shmem 0
01:27:25 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {0x0, 0x8848}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

[ 3162.582374][ T2736] mapped_file 0
[ 3162.590971][ T2736] dirty 0
[ 3162.598766][ T2736] writeback 0
[ 3162.636517][ T2736] workingset_refault_anon 29624
[ 3162.646716][ T2736] workingset_refault_file 171
[ 3162.659608][ T2736] swap 622592
[ 3162.670358][ T2736] swapcached 0
[ 3162.677590][ T2736] pgpgin 780568
[ 3162.688587][ T2736] pgpgout 780565
[ 3162.699249][ T2736] pgfault 1283245
[ 3162.708406][ T2736] pgmajfault 24361
[ 3162.721329][ T2736] inactive_anon 0
[ 3162.731957][ T2736] active_anon 12288
01:27:25 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0xb}, 0x0)

01:27:25 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36, 0x0, 0x15000000}}}}]}, 0x58}}, 0x0)

[ 3162.761236][ T2736] inactive_file 0
[ 3162.764920][ T2736] active_file 0
[ 3162.768648][ T2736] unevictable 0
[ 3162.817971][ T2736] hierarchical_memory_limit 314572800
[ 3162.829515][ T2736] hierarchical_memsw_limit 9223372036854771712
[ 3162.835699][ T2736] total_cache 0
[ 3162.853761][ T2736] total_rss 12288
[ 3162.868763][ T2736] total_rss_huge 0
[ 3162.870401][ T2760] __nla_validate_parse: 35 callbacks suppressed
[ 3162.870417][ T2760] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 3162.876570][ T2736] total_shmem 0
01:27:25 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0x0, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

[ 3162.919128][ T2736] total_mapped_file 0
[ 3162.923482][ T2736] total_dirty 0
[ 3162.936218][ T2736] total_writeback 0
[ 3162.956042][ T2736] total_workingset_refault_anon 29624
[ 3162.978373][ T2736] total_workingset_refault_file 171
[ 3163.003667][ T2736] total_swap 622592
[ 3163.010623][ T2761] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 3163.024734][ T2736] total_swapcached 0
[ 3163.048232][ T2736] total_pgpgin 780568
[ 3163.063260][ T2736] total_pgpgout 780565
[ 3163.077572][ T2736] total_pgfault 1283245
[ 3163.090526][ T2767] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
01:27:25 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x44, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x14, 0x2, [@TCA_FLOW_EMATCHES={0x10, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100, 0xa00}}, @TCA_EMATCH_TREE_LIST={0x4}]}]}}]}, 0x44}}, 0x0)

01:27:25 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0xc}, 0x0)

01:27:25 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36, 0x0, 0x28000000}}}}]}, 0x58}}, 0x0)

[ 3163.144907][ T2736] total_pgmajfault 24361
[ 3163.151303][ T2736] total_inactive_anon 0
[ 3163.163252][ T2736] total_active_anon 12288
[ 3163.182392][ T2736] total_inactive_file 0
[ 3163.191562][ T2736] total_active_file 0
[ 3163.200957][ T2736] total_unevictable 0
[ 3163.214699][ T2770] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 3163.226834][ T2736] anon_cost 0
[ 3163.240737][ T2736] file_cost 0
01:27:25 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

[ 3163.259955][ T2736] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=2736,uid=0
[ 3163.299295][ T2736] Memory cgroup out of memory: Killed process 2736 (syz-executor.2) total-vm:54508kB, anon-rss:0kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000
[ 3163.335330][ T2773] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'.
01:27:25 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x1100, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}}, 0x0)

01:27:25 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36, 0x0, 0x60000000}}}}]}, 0x58}}, 0x0)

[ 3163.465539][ T2779] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
01:27:25 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0xf}, 0x0)

[ 3163.610039][ T2784] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
01:27:26 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

[ 3163.756544][ T2786] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 3163.768742][ T2781] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3163.785765][ T2781] CPU: 1 PID: 2781 Comm: syz-executor.2 Not tainted 6.8.0-rc5-syzkaller-00002-gfca7526b7d89 #0
[ 3163.796140][ T2781] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024
[ 3163.806207][ T2781] Call Trace:
[ 3163.809572][ T2781]  <TASK>
[ 3163.812500][ T2781]  dump_stack_lvl+0x1e7/0x2e0
[ 3163.817190][ T2781]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3163.822389][ T2781]  ? __pfx__printk+0x10/0x10
[ 3163.826972][ T2781]  ? ___ratelimit+0x4c4/0x670
[ 3163.831650][ T2781]  ? __pfx____ratelimit+0x10/0x10
[ 3163.836673][ T2781]  dump_header+0xda/0x6a0
[ 3163.841008][ T2781]  oom_kill_process+0x3a7/0x930
[ 3163.845863][ T2781]  out_of_memory+0xf67/0x1320
[ 3163.850547][ T2781]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3163.856183][ T2781]  ? __pfx___mutex_lock+0x10/0x10
[ 3163.861218][ T2781]  ? __pfx_out_of_memory+0x10/0x10
[ 3163.866340][ T2781]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3163.871886][ T2781]  ? __pfx_lock_release+0x10/0x10
[ 3163.876910][ T2781]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3163.883071][ T2781]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3163.888273][ T2781]  ? mem_cgroup_iter+0x3e9/0x560
[ 3163.893300][ T2781]  try_charge_memcg+0xda2/0x18a0
[ 3163.898338][ T2781]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3163.903708][ T2781]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3163.909425][ T2781]  ? __pfx_lock_release+0x10/0x10
[ 3163.914456][ T2781]  ? memcg_account_kmem+0x1e7/0x210
[ 3163.919660][ T2781]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3163.925471][ T2781]  __memcg_kmem_charge_page+0xe1/0x250
[ 3163.931023][ T2781]  memcg_charge_kernel_stack+0x3f8/0x550
[ 3163.936658][ T2781]  dup_task_struct+0x15d/0x7d0
[ 3163.941419][ T2781]  copy_process+0x5d5/0x3fc0
[ 3163.946014][ T2781]  ? __might_fault+0xa9/0x120
[ 3163.950698][ T2781]  ? __pfx_lock_release+0x10/0x10
[ 3163.955733][ T2781]  ? __lock_acquire+0x1345/0x1fd0
[ 3163.960769][ T2781]  ? __pfx_copy_process+0x10/0x10
[ 3163.965792][ T2781]  ? __might_fault+0xc5/0x120
[ 3163.970472][ T2781]  ? __asan_memset+0x23/0x50
[ 3163.975063][ T2781]  kernel_clone+0x21d/0x8d0
[ 3163.979566][ T2781]  ? __pfx_kernel_clone+0x10/0x10
[ 3163.984596][ T2781]  ? __pfx_lock_release+0x10/0x10
[ 3163.989634][ T2781]  __se_sys_clone3+0x2cb/0x350
[ 3163.994400][ T2781]  ? __might_fault+0xa9/0x120
[ 3163.999079][ T2781]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3164.004458][ T2781]  ? rcu_is_watching+0x15/0xb0
[ 3164.009235][ T2781]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3164.015320][ T2781]  ? exc_page_fault+0x587/0x870
[ 3164.020177][ T2781]  ? do_syscall_64+0xb4/0x240
[ 3164.024854][ T2781]  do_syscall_64+0xf9/0x240
[ 3164.029793][ T2781]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 3164.035686][ T2781] RIP: 0033:0x7f5706ea9b99
[ 3164.040095][ T2781] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 3164.059698][ T2781] RSP: 002b:00007f57070cf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 3164.068105][ T2781] RAX: ffffffffffffffda RBX: 00007f5706e52270 RCX: 00007f5706ea9b99
[ 3164.076070][ T2781] RDX: 00007f5706e52270 RSI: 0000000000000058 RDI: 00007f57070cf960
[ 3164.084131][ T2781] RBP: 00007f5707c6c6c0 R08: 00007f5707c6c6c0 R09: 00007f57070cfa47
[ 3164.092113][ T2781] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 3164.100078][ T2781] R13: 000000000000000b R14: 00007f57070cf960 R15: 00007f57070cfa48
[ 3164.108055][ T2781]  </TASK>
[ 3164.140551][ T2781] memory: usage 307200kB, limit 307200kB, failcnt 84905
[ 3164.159098][ T2781] memory+swap: usage 307820kB, limit 9007199254740988kB, failcnt 0
[ 3164.174145][ T2781] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[ 3164.192390][ T2781] Memory cgroup stats for /syz2:
[ 3164.192617][ T2781] cache 0
[ 3164.211785][ T2781] rss 4096
[ 3164.218616][ T2781] rss_huge 0
[ 3164.228253][ T2781] shmem 0
[ 3164.235105][ T2781] mapped_file 0
[ 3164.245303][ T2781] dirty 0
[ 3164.252481][ T2781] writeback 0
[ 3164.256396][ T2781] workingset_refault_anon 29691
[ 3164.261875][ T2781] workingset_refault_file 171
[ 3164.266827][ T2781] swap 626688
[ 3164.271308][ T2781] swapcached 4096
[ 3164.275208][ T2781] pgpgin 780645
[ 3164.281626][ T2791] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
01:27:26 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36, 0x0, 0x65580000}}}}]}, 0x58}}, 0x0)

[ 3164.302700][ T2781] pgpgout 780643
[ 3164.321866][ T2781] pgfault 1283357
[ 3164.331638][ T2781] pgmajfault 24415
[ 3164.342987][ T2781] inactive_anon 0
01:27:26 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x10}, 0x0)

[ 3164.355846][ T2781] active_anon 8192
[ 3164.393214][ T2781] inactive_file 0
[ 3164.414681][ T2781] active_file 0
[ 3164.418216][ T2781] unevictable 0
[ 3164.436817][ T2781] hierarchical_memory_limit 314572800
[ 3164.445738][ T2781] hierarchical_memsw_limit 9223372036854771712
[ 3164.446108][ T2794] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
01:27:26 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}, {0x2}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

[ 3164.469572][ T2781] total_cache 0
[ 3164.476712][ T2781] total_rss 4096
[ 3164.482501][ T2781] total_rss_huge 0
[ 3164.499714][ T2781] total_shmem 0
[ 3164.507880][ T2781] total_mapped_file 0
[ 3164.525281][ T2781] total_dirty 0
[ 3164.535638][ T2781] total_writeback 0
[ 3164.546155][ T2781] total_workingset_refault_anon 29691
[ 3164.566766][ T2781] total_workingset_refault_file 171
[ 3164.574594][ T2781] total_swap 626688
[ 3164.585168][ T2781] total_swapcached 4096
[ 3164.604050][ T2781] total_pgpgin 780645
[ 3164.612774][ T2781] total_pgpgout 780643
[ 3164.622675][ T2781] total_pgfault 1283357
[ 3164.633927][ T2781] total_pgmajfault 24415
[ 3164.643938][ T2781] total_inactive_anon 0
[ 3164.670761][ T2781] total_active_anon 8192
01:27:27 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36, 0x0, 0x70fde8b4}}}}]}, 0x58}}, 0x0)

01:27:27 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x11}, 0x0)

[ 3164.691252][ T2781] total_inactive_file 0
[ 3164.703571][ T2781] total_active_file 0
[ 3164.723145][ T2781] total_unevictable 0
[ 3164.732927][ T2781] anon_cost 0
[ 3164.736622][ T2781] file_cost 0
01:27:27 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}, {0x3}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

[ 3164.743663][ T2781] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=2781,uid=0
[ 3164.809658][ T2781] Memory cgroup out of memory: Killed process 2781 (syz-executor.2) total-vm:54508kB, anon-rss:0kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000
01:27:27 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x1400, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}}, 0x0)

01:27:27 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x14}, 0x0)

01:27:27 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36, 0x0, 0x81000000}}}}]}, 0x58}}, 0x0)

01:27:27 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}, {0x4}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

01:27:27 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x15}, 0x0)

01:27:27 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36, 0x0, 0x88470000}}}}]}, 0x58}}, 0x0)

01:27:27 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}, {0x5}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

[ 3165.644138][ T2814] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3165.681669][ T2814] CPU: 1 PID: 2814 Comm: syz-executor.2 Not tainted 6.8.0-rc5-syzkaller-00002-gfca7526b7d89 #0
[ 3165.692058][ T2814] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024
[ 3165.702143][ T2814] Call Trace:
[ 3165.705446][ T2814]  <TASK>
[ 3165.708406][ T2814]  dump_stack_lvl+0x1e7/0x2e0
[ 3165.713127][ T2814]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3165.718361][ T2814]  ? __pfx__printk+0x10/0x10
[ 3165.722976][ T2814]  ? ___ratelimit+0x4c4/0x670
[ 3165.727684][ T2814]  ? __pfx____ratelimit+0x10/0x10
[ 3165.732840][ T2814]  dump_header+0xda/0x6a0
[ 3165.737202][ T2814]  oom_kill_process+0x3a7/0x930
[ 3165.742104][ T2814]  out_of_memory+0xf67/0x1320
[ 3165.746913][ T2814]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3165.752811][ T2814]  ? __pfx___mutex_lock+0x10/0x10
[ 3165.757882][ T2814]  ? __pfx_out_of_memory+0x10/0x10
[ 3165.763122][ T2814]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3165.768699][ T2814]  ? __pfx_lock_release+0x10/0x10
[ 3165.773937][ T2814]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3165.780045][ T2814]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3165.785279][ T2814]  ? mem_cgroup_iter+0x3e9/0x560
[ 3165.790256][ T2814]  try_charge_memcg+0xda2/0x18a0
[ 3165.795244][ T2814]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3165.800642][ T2814]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3165.806402][ T2814]  ? __pfx_lock_release+0x10/0x10
[ 3165.811464][ T2814]  ? memcg_account_kmem+0x1e7/0x210
[ 3165.816689][ T2814]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3165.822520][ T2814]  __memcg_kmem_charge_page+0xe1/0x250
[ 3165.828019][ T2814]  memcg_charge_kernel_stack+0x3f8/0x550
[ 3165.833688][ T2814]  dup_task_struct+0x15d/0x7d0
[ 3165.838486][ T2814]  copy_process+0x5d5/0x3fc0
[ 3165.843117][ T2814]  ? __might_fault+0xa9/0x120
[ 3165.847818][ T2814]  ? __pfx_lock_release+0x10/0x10
[ 3165.852886][ T2814]  ? __pfx_copy_process+0x10/0x10
[ 3165.857935][ T2814]  ? __might_fault+0xc5/0x120
[ 3165.862652][ T2814]  ? __asan_memset+0x23/0x50
[ 3165.867281][ T2814]  kernel_clone+0x21d/0x8d0
[ 3165.871814][ T2814]  ? __pfx_kernel_clone+0x10/0x10
[ 3165.876882][ T2814]  __se_sys_clone3+0x2cb/0x350
[ 3165.881675][ T2814]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3165.887029][ T2814]  ? do_syscall_64+0x108/0x240
01:27:28 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}, {0x6}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

[ 3165.891911][ T2814]  ? do_syscall_64+0xb4/0x240
[ 3165.896708][ T2814]  do_syscall_64+0xf9/0x240
[ 3165.901247][ T2814]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 3165.907167][ T2814] RIP: 0033:0x7f5706ea9b99
[ 3165.911617][ T2814] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 3165.931514][ T2814] RSP: 002b:00007f57070cf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 3165.940007][ T2814] RAX: ffffffffffffffda RBX: 00007f5706e52270 RCX: 00007f5706ea9b99
[ 3165.948007][ T2814] RDX: 00007f5706e52270 RSI: 0000000000000058 RDI: 00007f57070cf960
[ 3165.956015][ T2814] RBP: 00007f5707c6c6c0 R08: 00007f5707c6c6c0 R09: 00007f57070cfa47
[ 3165.964017][ T2814] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 3165.972017][ T2814] R13: 000000000000000b R14: 00007f57070cf960 R15: 00007f57070cfa48
[ 3165.980035][ T2814]  </TASK>
01:27:28 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x60}, 0x0)

01:27:28 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36, 0x0, 0x88480000}}}}]}, 0x58}}, 0x0)

[ 3166.056258][ T2814] memory: usage 307200kB, limit 307200kB, failcnt 85231
[ 3166.067974][ T2814] memory+swap: usage 307784kB, limit 9007199254740988kB, failcnt 0
[ 3166.084227][ T2814] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[ 3166.096237][ T2814] Memory cgroup stats for /syz2:
[ 3166.096345][ T2814] cache 0
01:27:28 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}, {0x7}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

[ 3166.128329][ T2814] rss 0
[ 3166.135409][ T2814] rss_huge 0
[ 3166.145331][ T2814] shmem 0
[ 3166.154865][ T2814] mapped_file 0
[ 3166.164539][ T2814] dirty 0
[ 3166.178171][ T2814] writeback 0
[ 3166.189229][ T2814] workingset_refault_anon 29802
[ 3166.214447][ T2814] workingset_refault_file 171
01:27:28 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36, 0x0, 0x88a8ffff}}}}]}, 0x58}}, 0x0)

01:27:28 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x44, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x14, 0x2, [@TCA_FLOW_EMATCHES={0x10, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100, 0xb00}}, @TCA_EMATCH_TREE_LIST={0x4}]}]}}]}, 0x44}}, 0x0)

[ 3166.231934][ T2814] swap 598016
[ 3166.248389][ T2814] swapcached 0
[ 3166.255861][ T2814] pgpgin 780767
[ 3166.266059][ T2814] pgpgout 780767
[ 3166.270199][ T2814] pgfault 1283546
[ 3166.274053][ T2814] pgmajfault 24524
[ 3166.278688][ T2814] inactive_anon 0
01:27:28 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x300}, 0x0)

[ 3166.284163][ T2814] active_anon 0
[ 3166.287820][ T2814] inactive_file 0
[ 3166.291733][ T2814] active_file 0
[ 3166.295730][ T2814] unevictable 0
[ 3166.299443][ T2814] hierarchical_memory_limit 314572800
[ 3166.343247][ T2814] hierarchical_memsw_limit 9223372036854771712
[ 3166.362008][ T2814] total_cache 0
[ 3166.373251][ T2814] total_rss 0
[ 3166.380845][ T2814] total_rss_huge 0
[ 3166.385747][ T2814] total_shmem 0
01:27:28 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}, {0x8}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

[ 3166.402961][ T2814] total_mapped_file 0
[ 3166.419005][ T2814] total_dirty 0
[ 3166.424894][ T2814] total_writeback 0
[ 3166.428749][ T2814] total_workingset_refault_anon 29802
[ 3166.456112][ T2814] total_workingset_refault_file 171
[ 3166.471648][ T2814] total_swap 598016
[ 3166.475507][ T2814] total_swapcached 0
[ 3166.495326][ T2814] total_pgpgin 780767
01:27:28 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36, 0x0, 0x9a830000}}}}]}, 0x58}}, 0x0)

[ 3166.504213][ T2814] total_pgpgout 780767
[ 3166.511884][ T2814] total_pgfault 1283546
[ 3166.518489][ T2814] total_pgmajfault 24524
[ 3166.525295][ T2814] total_inactive_anon 0
[ 3166.533144][ T2814] total_active_anon 0
[ 3166.539039][ T2814] total_inactive_file 0
[ 3166.560287][ T2814] total_active_file 0
[ 3166.569447][ T2814] total_unevictable 0
[ 3166.583849][ T2814] anon_cost 0
[ 3166.595137][ T2814] file_cost 0
01:27:29 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x500}, 0x0)

[ 3166.598696][ T2814] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=2814,uid=0
[ 3166.615288][ T2814] Memory cgroup out of memory: Killed process 2814 (syz-executor.2) total-vm:54508kB, anon-rss:0kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000
01:27:29 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x1500, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}}, 0x0)

01:27:29 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}, {0x9}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

01:27:29 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36, 0x0, 0xb4e8fd70}}}}]}, 0x58}}, 0x0)

01:27:29 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x600}, 0x0)

01:27:29 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}, {0xa}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

[ 3167.033762][ T2866] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3167.069133][ T2866] CPU: 1 PID: 2866 Comm: syz-executor.2 Not tainted 6.8.0-rc5-syzkaller-00002-gfca7526b7d89 #0
[ 3167.079524][ T2866] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024
[ 3167.089703][ T2866] Call Trace:
[ 3167.093004][ T2866]  <TASK>
[ 3167.095962][ T2866]  dump_stack_lvl+0x1e7/0x2e0
[ 3167.100679][ T2866]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3167.105916][ T2866]  ? __pfx__printk+0x10/0x10
[ 3167.110620][ T2866]  ? ___ratelimit+0x4c4/0x670
[ 3167.115335][ T2866]  ? __pfx____ratelimit+0x10/0x10
[ 3167.120394][ T2866]  dump_header+0xda/0x6a0
[ 3167.124760][ T2866]  oom_kill_process+0x3a7/0x930
[ 3167.129646][ T2866]  out_of_memory+0xf67/0x1320
[ 3167.134361][ T2866]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3167.140022][ T2866]  ? __pfx___mutex_lock+0x10/0x10
[ 3167.145081][ T2866]  ? __pfx_out_of_memory+0x10/0x10
[ 3167.150322][ T2866]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3167.155904][ T2866]  ? __pfx_lock_release+0x10/0x10
[ 3167.161053][ T2866]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3167.167157][ T2866]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3167.172386][ T2866]  ? mem_cgroup_iter+0x3e9/0x560
[ 3167.177367][ T2866]  try_charge_memcg+0xda2/0x18a0
[ 3167.182356][ T2866]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3167.187756][ T2866]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3167.193509][ T2866]  ? __pfx_lock_release+0x10/0x10
[ 3167.198570][ T2866]  ? memcg_account_kmem+0x1e7/0x210
[ 3167.203823][ T2866]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3167.209668][ T2866]  __memcg_kmem_charge_page+0xe1/0x250
[ 3167.215254][ T2866]  memcg_charge_kernel_stack+0x28a/0x550
[ 3167.220927][ T2866]  dup_task_struct+0x15d/0x7d0
[ 3167.225736][ T2866]  copy_process+0x5d5/0x3fc0
[ 3167.230462][ T2866]  ? __might_fault+0xa9/0x120
[ 3167.235179][ T2866]  ? __pfx_lock_release+0x10/0x10
[ 3167.240240][ T2866]  ? __pfx_copy_process+0x10/0x10
[ 3167.245299][ T2866]  ? __might_fault+0xc5/0x120
[ 3167.250007][ T2866]  ? __asan_memset+0x23/0x50
[ 3167.254630][ T2866]  kernel_clone+0x21d/0x8d0
[ 3167.260035][ T2866]  ? __pfx_kernel_clone+0x10/0x10
[ 3167.265096][ T2866]  __se_sys_clone3+0x2cb/0x350
[ 3167.269909][ T2866]  ? __might_fault+0xa9/0x120
[ 3167.274709][ T2866]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3167.280142][ T2866]  ? do_syscall_64+0x108/0x240
01:27:29 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36, 0x0, 0xf0ffffff}}}}]}, 0x58}}, 0x0)

[ 3167.284948][ T2866]  ? do_syscall_64+0xb4/0x240
[ 3167.289656][ T2866]  do_syscall_64+0xf9/0x240
[ 3167.294198][ T2866]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 3167.300215][ T2866] RIP: 0033:0x7f5706ea9b99
[ 3167.304653][ T2866] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 3167.324372][ T2866] RSP: 002b:00007f57070cf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 3167.332825][ T2866] RAX: ffffffffffffffda RBX: 00007f5706e52270 RCX: 00007f5706ea9b99
[ 3167.340830][ T2866] RDX: 00007f5706e52270 RSI: 0000000000000058 RDI: 00007f57070cf960
[ 3167.348841][ T2866] RBP: 00007f5707c6c6c0 R08: 00007f5707c6c6c0 R09: 00007f57070cfa47
[ 3167.356842][ T2866] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 3167.364830][ T2866] R13: 000000000000000b R14: 00007f57070cf960 R15: 00007f57070cfa48
[ 3167.372839][ T2866]  </TASK>
[ 3167.408705][ T2866] memory: usage 307200kB, limit 307200kB, failcnt 85454
[ 3167.417094][ T2866] memory+swap: usage 307772kB, limit 9007199254740988kB, failcnt 0
[ 3167.429093][ T2866] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0
[ 3167.436613][ T2866] Memory cgroup stats for /syz2:
[ 3167.436750][ T2866] cache 0
[ 3167.449710][ T2866] rss 12288
[ 3167.453092][ T2866] rss_huge 0
01:27:29 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x700}, 0x0)

[ 3167.456465][ T2866] shmem 0
[ 3167.462906][ T2866] mapped_file 0
[ 3167.468463][ T2866] dirty 0
[ 3167.472706][ T2866] writeback 0
[ 3167.476151][ T2866] workingset_refault_anon 29881
[ 3167.514694][ T2866] workingset_refault_file 171
[ 3167.526928][ T2866] swap 585728
[ 3167.530599][ T2866] swapcached 0
[ 3167.534156][ T2866] pgpgin 780858
[ 3167.538268][ T2866] pgpgout 780855
[ 3167.542407][ T2866] pgfault 1283685
[ 3167.546209][ T2866] pgmajfault 24596
[ 3167.550295][ T2866] inactive_anon 12288
[ 3167.554453][ T2866] active_anon 0
[ 3167.558079][ T2866] inactive_file 0
[ 3167.564455][ T2866] active_file 0
[ 3167.570239][ T2866] unevictable 0
[ 3167.573890][ T2866] hierarchical_memory_limit 314572800
01:27:29 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}, {0xb}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

[ 3167.606460][ T2866] hierarchical_memsw_limit 9223372036854771712
[ 3167.613536][ T2866] total_cache 0
[ 3167.617190][ T2866] total_rss 12288
[ 3167.630353][ T2866] total_rss_huge 0
[ 3167.634320][ T2866] total_shmem 0
[ 3167.637957][ T2866] total_mapped_file 0
[ 3167.646423][ T2866] total_dirty 0
[ 3167.651654][ T2866] total_writeback 0
01:27:30 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36, 0x0, 0xf1ffffff}}}}]}, 0x58}}, 0x0)

[ 3167.655639][ T2866] total_workingset_refault_anon 29881
[ 3167.670964][ T2866] total_workingset_refault_file 171
[ 3167.680445][ T2866] total_swap 585728
[ 3167.685623][ T2866] total_swapcached 0
[ 3167.694740][ T2866] total_pgpgin 780858
[ 3167.700399][ T2866] total_pgpgout 780855
[ 3167.704766][ T2866] total_pgfault 1283685
[ 3167.724842][ T2866] total_pgmajfault 24596
01:27:30 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x900}, 0x0)

[ 3167.747361][ T2866] total_inactive_anon 12288
[ 3167.759978][ T2866] total_active_anon 0
[ 3167.793130][ T2866] total_inactive_file 0
[ 3167.797953][ T2866] total_active_file 0
[ 3167.803805][ T2866] total_unevictable 0
[ 3167.807983][ T2866] anon_cost 0
[ 3167.818503][ T2866] file_cost 0
[ 3167.824831][ T2866] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=2866,uid=0
01:27:30 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}, {0xc}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

[ 3167.858159][ T2866] Memory cgroup out of memory: Killed process 2866 (syz-executor.2) total-vm:54508kB, anon-rss:0kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000
01:27:30 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x2800, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}}, 0x0)

[ 3167.899265][ T2894] __nla_validate_parse: 28 callbacks suppressed
[ 3167.899286][ T2894] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'.
01:27:30 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36, 0x0, 0xfcffffff}}}}]}, 0x58}}, 0x0)

[ 3168.047143][ T2900] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
01:27:30 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0xa00}, 0x0)

[ 3168.131310][ T2896] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
01:27:30 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}, {0xf}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

[ 3168.229065][ T2905] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'.
01:27:30 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36, 0x0, 0xffffa888}}}}]}, 0x58}}, 0x0)

01:27:30 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0xb00}, 0x0)

[ 3168.363427][ T2908] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 3168.450027][ T2909] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
01:27:30 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36, 0x0, 0xffffff7f}}}}]}, 0x58}}, 0x0)

01:27:30 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}, {0x10}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

[ 3168.534344][ T2914] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 3168.642449][ T2919] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
01:27:31 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0xc00}, 0x0)

[ 3168.729529][ T2920] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 3168.748477][ T2899] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3168.768058][ T2899] CPU: 1 PID: 2899 Comm: syz-executor.2 Not tainted 6.8.0-rc5-syzkaller-00002-gfca7526b7d89 #0
[ 3168.778516][ T2899] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024
[ 3168.788603][ T2899] Call Trace:
[ 3168.791904][ T2899]  <TASK>
[ 3168.794863][ T2899]  dump_stack_lvl+0x1e7/0x2e0
[ 3168.799581][ T2899]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3168.804804][ T2899]  ? __pfx__printk+0x10/0x10
[ 3168.809414][ T2899]  ? ___ratelimit+0x4c4/0x670
[ 3168.814119][ T2899]  ? __pfx____ratelimit+0x10/0x10
[ 3168.819175][ T2899]  dump_header+0xda/0x6a0
[ 3168.823540][ T2899]  oom_kill_process+0x3a7/0x930
[ 3168.828427][ T2899]  out_of_memory+0xf67/0x1320
[ 3168.833143][ T2899]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3168.838801][ T2899]  ? __pfx___mutex_lock+0x10/0x10
[ 3168.843861][ T2899]  ? __pfx_out_of_memory+0x10/0x10
[ 3168.849010][ T2899]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3168.854584][ T2899]  ? __pfx_lock_release+0x10/0x10
[ 3168.860087][ T2899]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3168.866188][ T2899]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3168.871422][ T2899]  ? mem_cgroup_iter+0x3e9/0x560
[ 3168.876392][ T2899]  try_charge_memcg+0xda2/0x18a0
[ 3168.881377][ T2899]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3168.886775][ T2899]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3168.892518][ T2899]  ? __pfx_lock_release+0x10/0x10
[ 3168.897578][ T2899]  ? memcg_account_kmem+0x1e7/0x210
[ 3168.902813][ T2899]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3168.908652][ T2899]  __memcg_kmem_charge_page+0xe1/0x250
[ 3168.914145][ T2899]  memcg_charge_kernel_stack+0x3f8/0x550
[ 3168.919819][ T2899]  dup_task_struct+0x15d/0x7d0
[ 3168.924980][ T2899]  copy_process+0x5d5/0x3fc0
[ 3168.929614][ T2899]  ? __might_fault+0xa9/0x120
[ 3168.934322][ T2899]  ? __pfx_lock_release+0x10/0x10
[ 3168.939398][ T2899]  ? __pfx_copy_process+0x10/0x10
[ 3168.944453][ T2899]  ? __might_fault+0xc5/0x120
[ 3168.949164][ T2899]  ? __asan_memset+0x23/0x50
[ 3168.953791][ T2899]  kernel_clone+0x21d/0x8d0
[ 3168.958335][ T2899]  ? __pfx_kernel_clone+0x10/0x10
[ 3168.963414][ T2899]  __se_sys_clone3+0x2cb/0x350
[ 3168.968229][ T2899]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3168.973569][ T2899]  ? do_syscall_64+0x108/0x240
[ 3168.978368][ T2899]  ? do_syscall_64+0xb4/0x240
[ 3168.983095][ T2899]  do_syscall_64+0xf9/0x240
[ 3168.987638][ T2899]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 3168.993566][ T2899] RIP: 0033:0x7f5706ea9b99
[ 3168.998004][ T2899] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 3169.017634][ T2899] RSP: 002b:00007f57070cf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
01:27:31 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}, {0x11}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

[ 3169.026172][ T2899] RAX: ffffffffffffffda RBX: 00007f5706e52270 RCX: 00007f5706ea9b99
[ 3169.034172][ T2899] RDX: 00007f5706e52270 RSI: 0000000000000058 RDI: 00007f57070cf960
[ 3169.042171][ T2899] RBP: 00007f5707c6c6c0 R08: 00007f5707c6c6c0 R09: 00007f57070cfa47
[ 3169.050172][ T2899] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 3169.058171][ T2899] R13: 000000000000000b R14: 00007f57070cf960 R15: 00007f57070cfa48
[ 3169.066277][ T2899]  </TASK>
01:27:31 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36, 0x0, 0xfffffff0}}}}]}, 0x58}}, 0x0)

[ 3169.081972][ T2924] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 3169.098401][ T2899] memory: usage 307200kB, limit 307200kB, failcnt 85922
[ 3169.108398][ T2899] memory+swap: usage 307784kB, limit 9007199254740988kB, failcnt 0
[ 3169.118394][ T2899] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[ 3169.125987][ T2899] Memory cgroup stats for /syz2:
[ 3169.126239][ T2899] cache 0
[ 3169.134481][ T2899] rss 0
[ 3169.137359][ T2899] rss_huge 0
[ 3169.142769][ T2899] shmem 0
[ 3169.147454][ T2899] mapped_file 0
[ 3169.151277][ T2899] dirty 0
[ 3169.155572][ T2899] writeback 0
[ 3169.161208][ T2899] workingset_refault_anon 30058
[ 3169.174938][ T2899] workingset_refault_file 171
[ 3169.182818][ T2899] swap 598016
[ 3169.189938][ T2899] swapcached 0
[ 3169.194958][ T2899] pgpgin 781046
[ 3169.207109][ T2899] pgpgout 781046
[ 3169.211189][ T2899] pgfault 1283956
[ 3169.214921][ T2899] pgmajfault 24758
[ 3169.220907][ T2899] inactive_anon 0
[ 3169.231249][ T2899] active_anon 0
[ 3169.241287][ T2899] inactive_file 0
[ 3169.246347][ T2899] active_file 0
[ 3169.250513][ T2899] unevictable 0
[ 3169.255541][ T2899] hierarchical_memory_limit 314572800
[ 3169.261685][ T2899] hierarchical_memsw_limit 9223372036854771712
[ 3169.269475][ T2899] total_cache 0
[ 3169.273055][ T2899] total_rss 0
[ 3169.277939][ T2899] total_rss_huge 0
[ 3169.282398][ T2899] total_shmem 0
[ 3169.285955][ T2899] total_mapped_file 0
[ 3169.292207][ T2899] total_dirty 0
[ 3169.297370][ T2899] total_writeback 0
[ 3169.301751][ T2899] total_workingset_refault_anon 30058
01:27:31 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0xf00}, 0x0)

01:27:31 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}, {0x14}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

[ 3169.335972][ T2899] total_workingset_refault_file 171
[ 3169.345938][ T2899] total_swap 598016
[ 3169.360025][ T2899] total_swapcached 0
[ 3169.367493][ T2899] total_pgpgin 781046
[ 3169.373119][ T2899] total_pgpgout 781046
[ 3169.378740][ T2899] total_pgfault 1283956
01:27:31 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x44, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x14, 0x2, [@TCA_FLOW_EMATCHES={0x10, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100, 0xc00}}, @TCA_EMATCH_TREE_LIST={0x4}]}]}}]}, 0x44}}, 0x0)

[ 3169.383577][ T2899] total_pgmajfault 24758
[ 3169.388012][ T2899] total_inactive_anon 0
[ 3169.393173][ T2899] total_active_anon 0
[ 3169.397332][ T2899] total_inactive_file 0
[ 3169.402105][ T2899] total_active_file 0
[ 3169.406268][ T2899] total_unevictable 0
[ 3169.412016][ T2899] anon_cost 0
01:27:31 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36, 0x0, 0xfffffff1}}}}]}, 0x58}}, 0x0)

[ 3169.449062][ T2899] file_cost 0
[ 3169.452406][ T2899] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=2899,uid=0
[ 3169.488084][ T2899] Memory cgroup out of memory: Killed process 2899 (syz-executor.2) total-vm:54508kB, anon-rss:0kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000
01:27:31 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}, {0x15}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

01:27:32 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x4788, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}}, 0x0)

01:27:32 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x1100}, 0x0)

01:27:32 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36, 0x0, 0xfffffffc}}}}]}, 0x58}}, 0x0)

01:27:32 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}, {0x24}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

01:27:32 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x1400}, 0x0)

01:27:32 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x10}}, 0x0)

01:27:32 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}, {0x28}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

[ 3170.063689][ T2947] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3170.108315][ T2947] CPU: 1 PID: 2947 Comm: syz-executor.2 Not tainted 6.8.0-rc5-syzkaller-00002-gfca7526b7d89 #0
[ 3170.118698][ T2947] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024
[ 3170.128864][ T2947] Call Trace:
[ 3170.132161][ T2947]  <TASK>
[ 3170.135101][ T2947]  dump_stack_lvl+0x1e7/0x2e0
[ 3170.139811][ T2947]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3170.145037][ T2947]  ? __pfx__printk+0x10/0x10
[ 3170.149650][ T2947]  ? ___ratelimit+0x4c4/0x670
[ 3170.154363][ T2947]  ? __pfx____ratelimit+0x10/0x10
[ 3170.159434][ T2947]  dump_header+0xda/0x6a0
[ 3170.163859][ T2947]  oom_kill_process+0x3a7/0x930
[ 3170.168747][ T2947]  out_of_memory+0xf67/0x1320
[ 3170.173457][ T2947]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3170.179127][ T2947]  ? __pfx___mutex_lock+0x10/0x10
[ 3170.184178][ T2947]  ? __pfx_out_of_memory+0x10/0x10
[ 3170.189326][ T2947]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3170.194984][ T2947]  ? __pfx_lock_release+0x10/0x10
[ 3170.200042][ T2947]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3170.206139][ T2947]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3170.211370][ T2947]  ? mem_cgroup_iter+0x3e9/0x560
[ 3170.216336][ T2947]  try_charge_memcg+0xda2/0x18a0
[ 3170.221734][ T2947]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3170.227102][ T2947]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3170.232822][ T2947]  ? __pfx_lock_release+0x10/0x10
[ 3170.237857][ T2947]  ? memcg_account_kmem+0x1e7/0x210
[ 3170.243149][ T2947]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3170.248961][ T2947]  __memcg_kmem_charge_page+0xe1/0x250
[ 3170.254434][ T2947]  memcg_charge_kernel_stack+0x3f8/0x550
[ 3170.260071][ T2947]  dup_task_struct+0x15d/0x7d0
[ 3170.264834][ T2947]  copy_process+0x5d5/0x3fc0
[ 3170.269516][ T2947]  ? __might_fault+0xa9/0x120
[ 3170.274197][ T2947]  ? __pfx_lock_release+0x10/0x10
[ 3170.279225][ T2947]  ? __pfx_copy_process+0x10/0x10
[ 3170.284349][ T2947]  ? __might_fault+0xc5/0x120
[ 3170.289041][ T2947]  ? __asan_memset+0x23/0x50
[ 3170.293652][ T2947]  kernel_clone+0x21d/0x8d0
[ 3170.298167][ T2947]  ? __pfx_kernel_clone+0x10/0x10
[ 3170.303210][ T2947]  __se_sys_clone3+0x2cb/0x350
[ 3170.307980][ T2947]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3170.313290][ T2947]  ? do_syscall_64+0x108/0x240
[ 3170.318057][ T2947]  ? do_syscall_64+0xb4/0x240
[ 3170.322737][ T2947]  do_syscall_64+0xf9/0x240
[ 3170.327250][ T2947]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 3170.333232][ T2947] RIP: 0033:0x7f5706ea9b99
[ 3170.337642][ T2947] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 3170.357254][ T2947] RSP: 002b:00007f57070cf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 3170.365667][ T2947] RAX: ffffffffffffffda RBX: 00007f5706e52270 RCX: 00007f5706ea9b99
[ 3170.373640][ T2947] RDX: 00007f5706e52270 RSI: 0000000000000058 RDI: 00007f57070cf960
[ 3170.381603][ T2947] RBP: 00007f5707c6c6c0 R08: 00007f5707c6c6c0 R09: 00007f57070cfa47
[ 3170.389566][ T2947] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 3170.397526][ T2947] R13: 000000000000000b R14: 00007f57070cf960 R15: 00007f57070cfa48
[ 3170.405508][ T2947]  </TASK>
01:27:32 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x1500}, 0x0)

[ 3170.412478][ T2947] memory: usage 307200kB, limit 307200kB, failcnt 86232
[ 3170.445217][ T2947] memory+swap: usage 307784kB, limit 9007199254740988kB, failcnt 0
[ 3170.466728][ T2947] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[ 3170.500548][ T2947] Memory cgroup stats for /syz2:
[ 3170.500687][ T2947] cache 0
[ 3170.512203][ T2947] rss 0
01:27:32 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}, {0x60}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

[ 3170.521833][ T2947] rss_huge 0
[ 3170.547619][ T2947] shmem 0
[ 3170.560097][ T2947] mapped_file 0
[ 3170.563703][ T2947] dirty 0
[ 3170.566645][ T2947] writeback 0
[ 3170.583060][ T2947] workingset_refault_anon 30160
01:27:32 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x2000}, 0x0)

[ 3170.596708][ T2947] workingset_refault_file 171
[ 3170.607231][ T2947] swap 598016
[ 3170.615155][ T2947] swapcached 0
[ 3170.622994][ T2947] pgpgin 781159
[ 3170.632945][ T2947] pgpgout 781159
[ 3170.642709][ T2947] pgfault 1284126
01:27:33 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x24}}, 0x0)

[ 3170.653882][ T2947] pgmajfault 24853
[ 3170.666005][ T2947] inactive_anon 0
[ 3170.675352][ T2947] active_anon 0
[ 3170.687582][ T2947] inactive_file 0
[ 3170.698358][ T2947] active_file 0
[ 3170.711492][ T2947] unevictable 0
[ 3170.719617][ T2947] hierarchical_memory_limit 314572800
[ 3170.738306][ T2947] hierarchical_memsw_limit 9223372036854771712
01:27:33 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}, {0x300}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

[ 3170.762235][ T2947] total_cache 0
[ 3170.770640][ T2947] total_rss 0
[ 3170.774052][ T2947] total_rss_huge 0
[ 3170.777873][ T2947] total_shmem 0
[ 3170.796082][ T2947] total_mapped_file 0
[ 3170.806771][ T2947] total_dirty 0
[ 3170.815364][ T2947] total_writeback 0
[ 3170.823649][ T2947] total_workingset_refault_anon 30160
[ 3170.836384][ T2947] total_workingset_refault_file 171
01:27:33 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x140}}, 0x0)

[ 3170.862515][ T2947] total_swap 598016
[ 3170.869966][ T2947] total_swapcached 0
[ 3170.877982][ T2947] total_pgpgin 781159
[ 3170.893487][ T2947] total_pgpgout 781159
[ 3170.909105][ T2947] total_pgfault 1284126
[ 3170.913312][ T2947] total_pgmajfault 24853
[ 3170.917571][ T2947] total_inactive_anon 0
[ 3170.939172][ T2947] total_active_anon 0
[ 3170.944298][ T2947] total_inactive_file 0
[ 3170.955355][ T2947] total_active_file 0
01:27:33 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x4788}, 0x0)

[ 3170.965910][ T2947] total_unevictable 0
[ 3170.974514][ T2947] anon_cost 0
[ 3170.977836][ T2947] file_cost 0
[ 3170.989356][ T2947] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=2947,uid=0
[ 3171.024531][ T2947] Memory cgroup out of memory: Killed process 2947 (syz-executor.2) total-vm:54508kB, anon-rss:0kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000
01:27:33 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}, {0x500}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

01:27:33 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0xec0}}, 0x0)

01:27:33 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x4888, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}}, 0x0)

01:27:33 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x4888}, 0x0)

01:27:33 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}, {0x600}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

01:27:33 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x33fe0}}, 0x0)

01:27:33 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x5865}, 0x0)

01:27:33 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}, {0x700}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

[ 3171.684715][ T2994] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3171.723432][ T2994] CPU: 1 PID: 2994 Comm: syz-executor.2 Not tainted 6.8.0-rc5-syzkaller-00002-gfca7526b7d89 #0
[ 3171.733901][ T2994] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024
[ 3171.744066][ T2994] Call Trace:
[ 3171.747375][ T2994]  <TASK>
[ 3171.750499][ T2994]  dump_stack_lvl+0x1e7/0x2e0
[ 3171.755225][ T2994]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3171.760577][ T2994]  ? __pfx__printk+0x10/0x10
[ 3171.765288][ T2994]  ? ___ratelimit+0x4c4/0x670
[ 3171.770001][ T2994]  ? __pfx____ratelimit+0x10/0x10
[ 3171.775056][ T2994]  dump_header+0xda/0x6a0
[ 3171.779427][ T2994]  oom_kill_process+0x3a7/0x930
[ 3171.784320][ T2994]  out_of_memory+0xf67/0x1320
[ 3171.789031][ T2994]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3171.794701][ T2994]  ? __pfx___mutex_lock+0x10/0x10
[ 3171.799759][ T2994]  ? __pfx_out_of_memory+0x10/0x10
[ 3171.804885][ T2994]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3171.810436][ T2994]  ? __pfx_lock_release+0x10/0x10
[ 3171.815467][ T2994]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3171.821535][ T2994]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3171.826820][ T2994]  ? mem_cgroup_iter+0x3e9/0x560
[ 3171.831848][ T2994]  try_charge_memcg+0xda2/0x18a0
[ 3171.836802][ T2994]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3171.842178][ T2994]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3171.847899][ T2994]  ? __pfx_lock_release+0x10/0x10
[ 3171.852924][ T2994]  ? memcg_account_kmem+0x1e7/0x210
[ 3171.858126][ T2994]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3171.863936][ T2994]  __memcg_kmem_charge_page+0xe1/0x250
[ 3171.869410][ T2994]  memcg_charge_kernel_stack+0x3f8/0x550
[ 3171.875044][ T2994]  dup_task_struct+0x15d/0x7d0
[ 3171.879806][ T2994]  copy_process+0x5d5/0x3fc0
[ 3171.884405][ T2994]  ? __might_fault+0xa9/0x120
[ 3171.889078][ T2994]  ? __pfx_lock_release+0x10/0x10
[ 3171.894108][ T2994]  ? __pfx_copy_process+0x10/0x10
[ 3171.899132][ T2994]  ? __might_fault+0xc5/0x120
[ 3171.903812][ T2994]  ? __asan_memset+0x23/0x50
[ 3171.908492][ T2994]  kernel_clone+0x21d/0x8d0
[ 3171.912996][ T2994]  ? __pfx_kernel_clone+0x10/0x10
[ 3171.918029][ T2994]  __se_sys_clone3+0x2cb/0x350
[ 3171.922794][ T2994]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3171.928098][ T2994]  ? do_syscall_64+0x108/0x240
[ 3171.932864][ T2994]  ? do_syscall_64+0xb4/0x240
[ 3171.937546][ T2994]  do_syscall_64+0xf9/0x240
[ 3171.942050][ T2994]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 3171.947954][ T2994] RIP: 0033:0x7f5706ea9b99
[ 3171.952459][ T2994] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 3171.972064][ T2994] RSP: 002b:00007f57070cf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
01:27:34 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x6000}, 0x0)

[ 3171.980480][ T2994] RAX: ffffffffffffffda RBX: 00007f5706e52270 RCX: 00007f5706ea9b99
[ 3171.988447][ T2994] RDX: 00007f5706e52270 RSI: 0000000000000058 RDI: 00007f57070cf960
[ 3171.996412][ T2994] RBP: 00007f5707c6c6c0 R08: 00007f5707c6c6c0 R09: 00007f57070cfa47
[ 3172.004379][ T2994] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 3172.012346][ T2994] R13: 000000000000000b R14: 00007f57070cf960 R15: 00007f57070cfa48
[ 3172.020324][ T2994]  </TASK>
01:27:34 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0xfffffdef}}, 0x0)

[ 3172.039444][ T2994] memory: usage 307200kB, limit 307200kB, failcnt 86560
[ 3172.061406][ T2994] memory+swap: usage 307784kB, limit 9007199254740988kB, failcnt 0
[ 3172.098160][ T2994] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[ 3172.111902][ T2994] Memory cgroup stats for /syz2:
[ 3172.112053][ T2994] cache 0
[ 3172.131520][ T2994] rss 12288
[ 3172.134717][ T2994] rss_huge 0
[ 3172.137930][ T2994] shmem 0
[ 3172.141961][ T2994] mapped_file 0
[ 3172.145558][ T2994] dirty 0
01:27:34 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}, {0x900}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

[ 3172.148582][ T2994] writeback 0
[ 3172.154404][ T2994] workingset_refault_anon 30261
[ 3172.160153][ T2994] workingset_refault_file 171
[ 3172.177871][ T2994] swap 585728
[ 3172.184211][ T2994] swapcached 0
01:27:34 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x6558}, 0x0)

[ 3172.216590][ T2994] pgpgin 781285
[ 3172.230197][ T2994] pgpgout 781282
[ 3172.237678][ T2994] pgfault 1284323
[ 3172.254115][ T2994] pgmajfault 24957
01:27:34 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}, 0x2}, 0x0)

[ 3172.263913][ T2994] inactive_anon 12288
[ 3172.267943][ T2994] active_anon 0
[ 3172.281726][ T2994] inactive_file 0
[ 3172.285409][ T2994] active_file 0
[ 3172.288900][ T2994] unevictable 0
[ 3172.303919][ T2994] hierarchical_memory_limit 314572800
[ 3172.321427][ T2994] hierarchical_memsw_limit 9223372036854771712
[ 3172.327842][ T2994] total_cache 0
[ 3172.343372][ T2994] total_rss 12288
[ 3172.347058][ T2994] total_rss_huge 0
[ 3172.356872][ T2994] total_shmem 0
01:27:34 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}, {0xa00}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

[ 3172.369373][ T2994] total_mapped_file 0
[ 3172.379451][ T2994] total_dirty 0
[ 3172.383039][ T2994] total_writeback 0
[ 3172.392026][ T2994] total_workingset_refault_anon 30261
[ 3172.403100][ T2994] total_workingset_refault_file 171
[ 3172.417010][ T2994] total_swap 585728
[ 3172.424389][ T2994] total_swapcached 0
[ 3172.432897][ T2994] total_pgpgin 781285
[ 3172.438710][ T2994] total_pgpgout 781282
[ 3172.442994][ T2994] total_pgfault 1284323
[ 3172.447252][ T2994] total_pgmajfault 24957
[ 3172.457366][ T2994] total_inactive_anon 12288
[ 3172.465909][ T2994] total_active_anon 0
[ 3172.479057][ T2994] total_inactive_file 0
[ 3172.486267][ T2994] total_active_file 0
[ 3172.493184][ T2994] total_unevictable 0
[ 3172.497276][ T2994] anon_cost 0
[ 3172.502891][ T2994] file_cost 0
[ 3172.506376][ T2994] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=2994,uid=0
01:27:34 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}, 0x4}, 0x0)

[ 3172.543734][ T2994] Memory cgroup out of memory: Killed process 2994 (syz-executor.2) total-vm:54508kB, anon-rss:0kB, file-rss:8768kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000
01:27:35 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x44, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x14, 0x2, [@TCA_FLOW_EMATCHES={0x10, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100, 0xf00}}, @TCA_EMATCH_TREE_LIST={0x4}]}]}}]}, 0x44}}, 0x0)

01:27:35 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x8100}, 0x0)

01:27:35 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x5865, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}}, 0x0)

01:27:35 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}, {0xb00}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

01:27:35 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}, 0x5}, 0x0)

01:27:35 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x8847}, 0x0)

01:27:35 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}, {0xc00}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

01:27:35 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}, 0x10}, 0x0)

[ 3173.023429][ T3043] __nla_validate_parse: 36 callbacks suppressed
[ 3173.023449][ T3043] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'.
01:27:35 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x8848}, 0x0)

[ 3173.161311][ T3049] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 3173.232778][ T3032] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3173.262263][ T3048] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 3173.275637][ T3032] CPU: 0 PID: 3032 Comm: syz-executor.2 Not tainted 6.8.0-rc5-syzkaller-00002-gfca7526b7d89 #0
[ 3173.286010][ T3032] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024
[ 3173.296082][ T3032] Call Trace:
[ 3173.299362][ T3032]  <TASK>
[ 3173.302293][ T3032]  dump_stack_lvl+0x1e7/0x2e0
[ 3173.306984][ T3032]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3173.312182][ T3032]  ? __pfx__printk+0x10/0x10
[ 3173.316774][ T3032]  ? ___ratelimit+0x4c4/0x670
[ 3173.321456][ T3032]  ? __pfx____ratelimit+0x10/0x10
[ 3173.326481][ T3032]  dump_header+0xda/0x6a0
[ 3173.330819][ T3032]  oom_kill_process+0x3a7/0x930
[ 3173.335702][ T3032]  out_of_memory+0xf67/0x1320
[ 3173.340389][ T3032]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3173.346026][ T3032]  ? __pfx___mutex_lock+0x10/0x10
[ 3173.351061][ T3032]  ? __pfx_out_of_memory+0x10/0x10
[ 3173.356173][ T3032]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3173.361712][ T3032]  ? __pfx_lock_release+0x10/0x10
[ 3173.366737][ T3032]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3173.372802][ T3032]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3173.377994][ T3032]  ? mem_cgroup_iter+0x3e9/0x560
[ 3173.382933][ T3032]  try_charge_memcg+0xda2/0x18a0
[ 3173.387887][ T3032]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3173.393263][ T3032]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3173.398984][ T3032]  ? __pfx_lock_release+0x10/0x10
[ 3173.404096][ T3032]  ? memcg_account_kmem+0x1e7/0x210
[ 3173.409303][ T3032]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3173.415112][ T3032]  __memcg_kmem_charge_page+0xe1/0x250
[ 3173.420588][ T3032]  memcg_charge_kernel_stack+0x28a/0x550
[ 3173.426232][ T3032]  dup_task_struct+0x40d/0x7d0
[ 3173.431015][ T3032]  copy_process+0x5d5/0x3fc0
[ 3173.435627][ T3032]  ? __might_fault+0xa9/0x120
[ 3173.440324][ T3032]  ? __pfx_lock_release+0x10/0x10
[ 3173.445370][ T3032]  ? __pfx_copy_process+0x10/0x10
[ 3173.450397][ T3032]  ? __might_fault+0xc5/0x120
[ 3173.455084][ T3032]  ? __asan_memset+0x23/0x50
[ 3173.459683][ T3032]  kernel_clone+0x21d/0x8d0
[ 3173.464195][ T3032]  ? __pfx_kernel_clone+0x10/0x10
[ 3173.469230][ T3032]  __se_sys_clone3+0x2cb/0x350
[ 3173.473993][ T3032]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3173.479286][ T3032]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3173.485280][ T3032]  ? exc_page_fault+0x587/0x870
[ 3173.490574][ T3032]  ? do_syscall_64+0xb4/0x240
[ 3173.495250][ T3032]  do_syscall_64+0xf9/0x240
[ 3173.499765][ T3032]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 3173.505747][ T3032] RIP: 0033:0x7f5706ea9b99
[ 3173.510164][ T3032] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 3173.529768][ T3032] RSP: 002b:00007f57070cf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 3173.538184][ T3032] RAX: ffffffffffffffda RBX: 00007f5706e52270 RCX: 00007f5706ea9b99
[ 3173.546158][ T3032] RDX: 00007f5706e52270 RSI: 0000000000000058 RDI: 00007f57070cf960
[ 3173.554122][ T3032] RBP: 00007f5707c6c6c0 R08: 00007f5707c6c6c0 R09: 00007f57070cfa47
[ 3173.562173][ T3032] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 3173.570139][ T3032] R13: 000000000000000b R14: 00007f57070cf960 R15: 00007f57070cfa48
[ 3173.578114][ T3032]  </TASK>
01:27:36 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}, {0xf00}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

[ 3173.618441][ T3054] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 3173.656685][ T3032] memory: usage 307200kB, limit 307200kB, failcnt 86951
01:27:36 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}, 0xffffff1f}, 0x0)

[ 3173.677150][ T3032] memory+swap: usage 307772kB, limit 9007199254740988kB, failcnt 0
[ 3173.687096][ T3032] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0
[ 3173.694921][ T3032] Memory cgroup stats for /syz2:
[ 3173.695063][ T3032] cache 0
[ 3173.703580][ T3032] rss 12288
[ 3173.706861][ T3032] rss_huge 0
[ 3173.711696][ T3032] shmem 0
[ 3173.714788][ T3032] mapped_file 0
[ 3173.718366][ T3032] dirty 0
[ 3173.722670][ T3032] writeback 0
[ 3173.726119][ T3032] workingset_refault_anon 30385
[ 3173.732650][ T3032] workingset_refault_file 171
[ 3173.737626][ T3032] swap 585728
[ 3173.741213][ T3032] swapcached 0
[ 3173.744740][ T3032] pgpgin 781425
[ 3173.754992][ T3032] pgpgout 781422
[ 3173.758905][ T3032] pgfault 1284531
[ 3173.763556][ T3032] pgmajfault 25074
[ 3173.767569][ T3032] inactive_anon 4096
[ 3173.772125][ T3032] active_anon 8192
[ 3173.776006][ T3032] inactive_file 0
[ 3173.780333][ T3032] active_file 0
[ 3173.784413][ T3032] unevictable 0
[ 3173.801258][ T3058] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 3173.801332][ T3032] hierarchical_memory_limit 314572800
01:27:36 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x34000}, 0x0)

[ 3173.830595][ T3032] hierarchical_memsw_limit 9223372036854771712
[ 3173.838915][ T3032] total_cache 0
[ 3173.843428][ T3032] total_rss 12288
[ 3173.847268][ T3032] total_rss_huge 0
[ 3173.852393][ T3032] total_shmem 0
[ 3173.856053][ T3032] total_mapped_file 0
[ 3173.861163][ T3032] total_dirty 0
[ 3173.864821][ T3032] total_writeback 0
[ 3173.872269][ T3032] total_workingset_refault_anon 30385
[ 3173.877892][ T3032] total_workingset_refault_file 171
[ 3173.893715][ T3032] total_swap 585728
[ 3173.902363][ T3032] total_swapcached 0
[ 3173.910808][ T3032] total_pgpgin 781425
[ 3173.916876][ T3032] total_pgpgout 781422
[ 3173.928915][ T3032] total_pgfault 1284531
[ 3173.933830][ T3032] total_pgmajfault 25074
[ 3173.938372][ T3032] total_inactive_anon 4096
[ 3173.945067][ T3032] total_active_anon 8192
[ 3173.949994][ T3032] total_inactive_file 0
[ 3173.954449][ T3032] total_active_file 0
[ 3173.958715][ T3032] total_unevictable 0
[ 3173.966112][ T3032] anon_cost 0
[ 3173.970345][ T3032] file_cost 0
[ 3173.973979][ T3032] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=3032,uid=0
[ 3173.992490][ T3032] Memory cgroup out of memory: Killed process 3032 (syz-executor.2) total-vm:54508kB, anon-rss:0kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000
01:27:36 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}, {0x1100}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

[ 3174.022715][ T3063] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 3174.135636][ T3067] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'.
01:27:36 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}, 0x1, 0x2}, 0x0)

01:27:36 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x6000, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}}, 0x0)

01:27:36 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x400300}, 0x0)

[ 3174.214507][ T3071] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 3174.341361][ T3073] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
01:27:36 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}, {0x1400}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

[ 3174.443926][ T3077] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'.
01:27:36 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}, 0x1, 0x3}, 0x0)

01:27:36 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x1000000}, 0x0)

01:27:37 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}, {0x1500}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

01:27:37 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}, 0x1, 0x4}, 0x0)

[ 3174.793437][ T3076] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3174.832919][ T3076] CPU: 1 PID: 3076 Comm: syz-executor.2 Not tainted 6.8.0-rc5-syzkaller-00002-gfca7526b7d89 #0
01:27:37 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x2000000}, 0x0)

[ 3174.843312][ T3076] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024
[ 3174.853417][ T3076] Call Trace:
[ 3174.856734][ T3076]  <TASK>
[ 3174.859692][ T3076]  dump_stack_lvl+0x1e7/0x2e0
[ 3174.864413][ T3076]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3174.869659][ T3076]  ? __pfx__printk+0x10/0x10
[ 3174.874293][ T3076]  ? ___ratelimit+0x4c4/0x670
[ 3174.879099][ T3076]  ? __pfx____ratelimit+0x10/0x10
[ 3174.884246][ T3076]  dump_header+0xda/0x6a0
[ 3174.888671][ T3076]  oom_kill_process+0x3a7/0x930
[ 3174.893562][ T3076]  out_of_memory+0xf67/0x1320
[ 3174.898278][ T3076]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3174.903948][ T3076]  ? __pfx___mutex_lock+0x10/0x10
[ 3174.909007][ T3076]  ? __pfx_out_of_memory+0x10/0x10
[ 3174.914178][ T3076]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3174.919774][ T3076]  ? __pfx_lock_release+0x10/0x10
[ 3174.924841][ T3076]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3174.930943][ T3076]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3174.936166][ T3076]  ? mem_cgroup_iter+0x3e9/0x560
[ 3174.941127][ T3076]  try_charge_memcg+0xda2/0x18a0
[ 3174.946118][ T3076]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3174.951508][ T3076]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3174.957340][ T3076]  ? __pfx_lock_release+0x10/0x10
[ 3174.962401][ T3076]  ? memcg_account_kmem+0x1e7/0x210
[ 3174.967649][ T3076]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3174.973483][ T3076]  __memcg_kmem_charge_page+0xe1/0x250
[ 3174.978967][ T3076]  memcg_charge_kernel_stack+0x3f8/0x550
[ 3174.984637][ T3076]  dup_task_struct+0x15d/0x7d0
[ 3174.989443][ T3076]  copy_process+0x5d5/0x3fc0
01:27:37 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}, {0x2000}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

[ 3174.994080][ T3076]  ? __might_fault+0xa9/0x120
[ 3174.998786][ T3076]  ? __pfx_lock_release+0x10/0x10
[ 3175.003845][ T3076]  ? __pfx_copy_process+0x10/0x10
[ 3175.008902][ T3076]  ? __might_fault+0xc5/0x120
[ 3175.013628][ T3076]  ? __asan_memset+0x23/0x50
[ 3175.018308][ T3076]  kernel_clone+0x21d/0x8d0
[ 3175.022847][ T3076]  ? __pfx_kernel_clone+0x10/0x10
[ 3175.027926][ T3076]  __se_sys_clone3+0x2cb/0x350
[ 3175.032717][ T3076]  ? __might_fault+0xa9/0x120
[ 3175.037427][ T3076]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3175.042785][ T3076]  ? do_syscall_64+0x108/0x240
[ 3175.047586][ T3076]  ? do_syscall_64+0xb4/0x240
[ 3175.052824][ T3076]  do_syscall_64+0xf9/0x240
[ 3175.057366][ T3076]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 3175.063385][ T3076] RIP: 0033:0x7f5706ea9b99
[ 3175.067830][ T3076] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
01:27:37 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x3000000}, 0x0)

[ 3175.087465][ T3076] RSP: 002b:00007f57070cf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 3175.095922][ T3076] RAX: ffffffffffffffda RBX: 00007f5706e52270 RCX: 00007f5706ea9b99
[ 3175.103941][ T3076] RDX: 00007f5706e52270 RSI: 0000000000000058 RDI: 00007f57070cf960
[ 3175.111952][ T3076] RBP: 00007f5707c6c6c0 R08: 00007f5707c6c6c0 R09: 00007f57070cfa47
[ 3175.119955][ T3076] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 3175.127967][ T3076] R13: 000000000000000b R14: 00007f57070cf960 R15: 00007f57070cfa48
[ 3175.135991][ T3076]  </TASK>
01:27:37 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}, 0x1, 0x5}, 0x0)

01:27:37 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x4000000}, 0x0)

[ 3175.175681][ T3076] memory: usage 307200kB, limit 307200kB, failcnt 87373
[ 3175.189303][ T3076] memory+swap: usage 307784kB, limit 9007199254740988kB, failcnt 0
[ 3175.197525][ T3076] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[ 3175.269029][ T3076] Memory cgroup stats for /syz2:
[ 3175.269173][ T3076] cache 0
[ 3175.277281][ T3076] rss 12288
[ 3175.293190][ T3076] rss_huge 0
[ 3175.296454][ T3076] shmem 0
01:27:37 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}, {0x2400}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

[ 3175.318893][ T3076] mapped_file 0
[ 3175.322638][ T3076] dirty 0
[ 3175.325599][ T3076] writeback 0
[ 3175.328908][ T3076] workingset_refault_anon 30517
[ 3175.341671][ T3076] workingset_refault_file 171
[ 3175.360610][ T3076] swap 585728
[ 3175.363948][ T3076] swapcached 0
[ 3175.367347][ T3076] pgpgin 781567
[ 3175.382413][ T3076] pgpgout 781564
[ 3175.417944][ T3076] pgfault 1284745
[ 3175.430341][ T3076] pgmajfault 25198
[ 3175.441394][ T3076] inactive_anon 12288
[ 3175.456914][ T3076] active_anon 0
[ 3175.464028][ T3076] inactive_file 0
[ 3175.479134][ T3076] active_file 0
[ 3175.486114][ T3076] unevictable 0
[ 3175.496243][ T3076] hierarchical_memory_limit 314572800
01:27:37 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x5000000}, 0x0)

01:27:37 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}, 0x1, 0x6}, 0x0)

[ 3175.527693][ T3076] hierarchical_memsw_limit 9223372036854771712
[ 3175.541328][ T3076] total_cache 0
[ 3175.550354][ T3076] total_rss 12288
[ 3175.582721][ T3076] total_rss_huge 0
[ 3175.586514][ T3076] total_shmem 0
[ 3175.598609][ T3076] total_mapped_file 0
[ 3175.617114][ T3076] total_dirty 0
[ 3175.632897][ T3076] total_writeback 0
[ 3175.636759][ T3076] total_workingset_refault_anon 30517
[ 3175.660683][ T3076] total_workingset_refault_file 171
01:27:38 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}, {0x2800}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

[ 3175.680473][ T3076] total_swap 585728
[ 3175.686207][ T3076] total_swapcached 0
[ 3175.700143][ T3076] total_pgpgin 781567
[ 3175.713473][ T3076] total_pgpgout 781564
[ 3175.717747][ T3076] total_pgfault 1284745
[ 3175.736430][ T3076] total_pgmajfault 25198
[ 3175.748712][ T3076] total_inactive_anon 12288
[ 3175.776420][ T3076] total_active_anon 0
01:27:38 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x44, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x14, 0x2, [@TCA_FLOW_EMATCHES={0x10, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100, 0x1100}}, @TCA_EMATCH_TREE_LIST={0x4}]}]}}]}, 0x44}}, 0x0)

[ 3175.792670][ T3076] total_inactive_file 0
[ 3175.807274][ T3076] total_active_file 0
[ 3175.820101][ T3076] total_unevictable 0
[ 3175.830010][ T3076] anon_cost 0
01:27:38 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}, 0x1, 0x7}, 0x0)

01:27:38 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x6000000}, 0x0)

[ 3175.844942][ T3076] file_cost 0
[ 3175.855566][ T3076] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=3076,uid=0
[ 3175.919024][ T3076] Memory cgroup out of memory: Killed process 3076 (syz-executor.2) total-vm:54508kB, anon-rss:0kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000
01:27:38 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}, {0x4788}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

01:27:38 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x6558, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}}, 0x0)

01:27:38 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x7000000}, 0x0)

01:27:38 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}, 0x1, 0x8}, 0x0)

01:27:38 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}, {0x4888}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

[ 3176.410985][ T3134] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3176.447306][ T3134] CPU: 1 PID: 3134 Comm: syz-executor.2 Not tainted 6.8.0-rc5-syzkaller-00002-gfca7526b7d89 #0
[ 3176.457702][ T3134] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024
[ 3176.467804][ T3134] Call Trace:
[ 3176.471199][ T3134]  <TASK>
[ 3176.474169][ T3134]  dump_stack_lvl+0x1e7/0x2e0
[ 3176.478892][ T3134]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3176.484131][ T3134]  ? __pfx__printk+0x10/0x10
[ 3176.488842][ T3134]  ? ___ratelimit+0x4c4/0x670
[ 3176.493643][ T3134]  ? __pfx____ratelimit+0x10/0x10
[ 3176.498705][ T3134]  dump_header+0xda/0x6a0
[ 3176.503082][ T3134]  oom_kill_process+0x3a7/0x930
[ 3176.507981][ T3134]  out_of_memory+0xf67/0x1320
[ 3176.512695][ T3134]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3176.518336][ T3134]  ? __pfx___mutex_lock+0x10/0x10
[ 3176.523370][ T3134]  ? __pfx_out_of_memory+0x10/0x10
[ 3176.528491][ T3134]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3176.534037][ T3134]  ? __pfx_lock_release+0x10/0x10
[ 3176.539071][ T3134]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3176.545147][ T3134]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3176.550346][ T3134]  ? mem_cgroup_iter+0x3e9/0x560
[ 3176.555285][ T3134]  try_charge_memcg+0xda2/0x18a0
[ 3176.560239][ T3134]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3176.565609][ T3134]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3176.571329][ T3134]  ? __pfx_lock_release+0x10/0x10
[ 3176.576359][ T3134]  ? memcg_account_kmem+0x1e7/0x210
[ 3176.581570][ T3134]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3176.587381][ T3134]  __memcg_kmem_charge_page+0xe1/0x250
[ 3176.592846][ T3134]  memcg_charge_kernel_stack+0x3f8/0x550
[ 3176.598482][ T3134]  dup_task_struct+0x40d/0x7d0
[ 3176.603248][ T3134]  copy_process+0x5d5/0x3fc0
[ 3176.607845][ T3134]  ? __might_fault+0xa9/0x120
[ 3176.612524][ T3134]  ? __pfx_lock_release+0x10/0x10
[ 3176.617555][ T3134]  ? __pfx_copy_process+0x10/0x10
[ 3176.622580][ T3134]  ? __might_fault+0xc5/0x120
[ 3176.627263][ T3134]  ? __asan_memset+0x23/0x50
[ 3176.631860][ T3134]  kernel_clone+0x21d/0x8d0
[ 3176.636379][ T3134]  ? __pfx_kernel_clone+0x10/0x10
[ 3176.641428][ T3134]  __se_sys_clone3+0x2cb/0x350
[ 3176.646198][ T3134]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3176.651765][ T3134]  ? do_syscall_64+0x108/0x240
[ 3176.656535][ T3134]  ? do_syscall_64+0xb4/0x240
[ 3176.661215][ T3134]  do_syscall_64+0xf9/0x240
[ 3176.665726][ T3134]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 3176.671628][ T3134] RIP: 0033:0x7f5706ea9b99
[ 3176.676044][ T3134] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 3176.695663][ T3134] RSP: 002b:00007f57070cf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 3176.704084][ T3134] RAX: ffffffffffffffda RBX: 00007f5706e52270 RCX: 00007f5706ea9b99
[ 3176.712065][ T3134] RDX: 00007f5706e52270 RSI: 0000000000000058 RDI: 00007f57070cf960
[ 3176.720134][ T3134] RBP: 00007f5707c6c6c0 R08: 00007f5707c6c6c0 R09: 00007f57070cfa47
[ 3176.728111][ T3134] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 3176.736282][ T3134] R13: 000000000000000b R14: 00007f57070cf960 R15: 00007f57070cfa48
[ 3176.744269][ T3134]  </TASK>
[ 3176.765719][ T3134] memory: usage 307200kB, limit 307200kB, failcnt 87636
[ 3176.773318][ T3134] memory+swap: usage 307784kB, limit 9007199254740988kB, failcnt 0
[ 3176.781453][ T3134] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[ 3176.790442][ T3134] Memory cgroup stats for /syz2:
[ 3176.790573][ T3134] cache 0
[ 3176.827095][ T3134] rss 0
[ 3176.830386][ T3134] rss_huge 0
[ 3176.833615][ T3134] shmem 0
[ 3176.836566][ T3134] mapped_file 0
[ 3176.840256][ T3134] dirty 0
[ 3176.843208][ T3134] writeback 0
[ 3176.846509][ T3134] workingset_refault_anon 30554
[ 3176.851702][ T3134] workingset_refault_file 171
[ 3176.856438][ T3134] swap 598016
[ 3176.862146][ T3134] swapcached 0
[ 3176.865552][ T3134] pgpgin 781635
[ 3176.869156][ T3134] pgpgout 781635
[ 3176.872738][ T3134] pgfault 1284852
01:27:39 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x8000000}, 0x0)

[ 3176.876396][ T3134] pgmajfault 25252
[ 3176.880455][ T3134] inactive_anon 0
[ 3176.884857][ T3134] active_anon 0
[ 3176.888508][ T3134] inactive_file 0
[ 3176.892897][ T3134] active_file 0
[ 3176.896412][ T3134] unevictable 0
[ 3176.900032][ T3134] hierarchical_memory_limit 314572800
[ 3176.905428][ T3134] hierarchical_memsw_limit 9223372036854771712
[ 3176.911745][ T3134] total_cache 0
[ 3176.915238][ T3134] total_rss 0
[ 3176.918540][ T3134] total_rss_huge 0
[ 3176.927531][ T3134] total_shmem 0
[ 3176.934697][ T3134] total_mapped_file 0
[ 3176.938716][ T3134] total_dirty 0
[ 3176.943270][ T3134] total_writeback 0
[ 3176.953800][ T3134] total_workingset_refault_anon 30554
[ 3176.972506][ T3134] total_workingset_refault_file 171
01:27:39 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}, 0x1, 0x9}, 0x0)

[ 3176.982681][ T3134] total_swap 598016
[ 3176.993229][ T3134] total_swapcached 0
[ 3177.000634][ T3134] total_pgpgin 781635
[ 3177.013615][ T3134] total_pgpgout 781635
[ 3177.023795][ T3134] total_pgfault 1284852
01:27:39 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}, {0x5865}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

[ 3177.044513][ T3134] total_pgmajfault 25252
[ 3177.056136][ T3134] total_inactive_anon 0
[ 3177.063698][ T3134] total_active_anon 0
[ 3177.067875][ T3134] total_inactive_file 0
[ 3177.082501][ T3134] total_active_file 0
[ 3177.091241][ T3134] total_unevictable 0
[ 3177.119601][ T3134] anon_cost 0
[ 3177.122953][ T3134] file_cost 0
[ 3177.128814][ T3134] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=3134,uid=0
01:27:39 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}, 0x1, 0xa}, 0x0)

[ 3177.163146][ T3134] Memory cgroup out of memory: Killed process 3134 (syz-executor.2) total-vm:54508kB, anon-rss:0kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000
01:27:39 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x9000000}, 0x0)

01:27:39 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x6afd, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}}, 0x0)

01:27:39 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}, {0x6000}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

01:27:39 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}, 0x1, 0xb}, 0x0)

01:27:39 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0xa000000}, 0x0)

01:27:40 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}, {0x6558}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

01:27:40 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}, 0x1, 0xc}, 0x0)

01:27:40 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0xb000000}, 0x0)

01:27:40 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}, {0x8100}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

[ 3178.070718][ T3183] __nla_validate_parse: 30 callbacks suppressed
[ 3178.070737][ T3183] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
01:27:40 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}, 0x1, 0xf}, 0x0)

01:27:40 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0xc000000}, 0x0)

[ 3178.192396][ T3161] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3178.205225][ T3161] CPU: 0 PID: 3161 Comm: syz-executor.2 Not tainted 6.8.0-rc5-syzkaller-00002-gfca7526b7d89 #0
[ 3178.215692][ T3161] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024
[ 3178.225783][ T3161] Call Trace:
[ 3178.229097][ T3161]  <TASK>
[ 3178.232060][ T3161]  dump_stack_lvl+0x1e7/0x2e0
[ 3178.236788][ T3161]  ? __pfx_dump_stack_lvl+0x10/0x10
01:27:40 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}, {0x8847}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

[ 3178.242039][ T3161]  ? __pfx__printk+0x10/0x10
[ 3178.246661][ T3161]  ? ___ratelimit+0x4c4/0x670
[ 3178.251380][ T3161]  ? __pfx____ratelimit+0x10/0x10
[ 3178.256438][ T3161]  dump_header+0xda/0x6a0
[ 3178.260809][ T3161]  oom_kill_process+0x3a7/0x930
[ 3178.265700][ T3161]  out_of_memory+0xf67/0x1320
[ 3178.270414][ T3161]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3178.276087][ T3161]  ? __pfx___mutex_lock+0x10/0x10
[ 3178.281240][ T3161]  ? __pfx_out_of_memory+0x10/0x10
[ 3178.286482][ T3161]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3178.292329][ T3161]  ? __pfx_lock_release+0x10/0x10
[ 3178.297486][ T3161]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3178.303682][ T3161]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3178.309016][ T3161]  ? mem_cgroup_iter+0x3e9/0x560
[ 3178.312412][ T3185] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 3178.313976][ T3161]  try_charge_memcg+0xda2/0x18a0
[ 3178.328251][ T3161]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3178.333669][ T3161]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3178.339419][ T3161]  ? __pfx_lock_release+0x10/0x10
[ 3178.344480][ T3161]  ? memcg_account_kmem+0x1e7/0x210
[ 3178.351032][ T3161]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3178.356964][ T3161]  __memcg_kmem_charge_page+0xe1/0x250
[ 3178.362492][ T3161]  memcg_charge_kernel_stack+0x3f8/0x550
[ 3178.368163][ T3161]  dup_task_struct+0x40d/0x7d0
[ 3178.372983][ T3161]  copy_process+0x5d5/0x3fc0
[ 3178.377882][ T3161]  ? __might_fault+0xa9/0x120
[ 3178.382627][ T3161]  ? __pfx_lock_release+0x10/0x10
[ 3178.387693][ T3161]  ? __pfx_copy_process+0x10/0x10
[ 3178.392746][ T3161]  ? __might_fault+0xc5/0x120
[ 3178.397461][ T3161]  ? __asan_memset+0x23/0x50
[ 3178.402177][ T3161]  kernel_clone+0x21d/0x8d0
[ 3178.406799][ T3161]  ? __pfx_kernel_clone+0x10/0x10
[ 3178.411960][ T3161]  __se_sys_clone3+0x2cb/0x350
[ 3178.416761][ T3161]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3178.422097][ T3161]  ? do_syscall_64+0x108/0x240
[ 3178.426895][ T3161]  ? do_syscall_64+0xb4/0x240
[ 3178.431606][ T3161]  do_syscall_64+0xf9/0x240
[ 3178.436247][ T3161]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 3178.442172][ T3161] RIP: 0033:0x7f5706ea9b99
[ 3178.446633][ T3161] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 3178.466359][ T3161] RSP: 002b:00007f57070cf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 3178.474831][ T3161] RAX: ffffffffffffffda RBX: 00007f5706e52270 RCX: 00007f5706ea9b99
[ 3178.483996][ T3161] RDX: 00007f5706e52270 RSI: 0000000000000058 RDI: 00007f57070cf960
01:27:40 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}, 0x1, 0x10}, 0x0)

01:27:40 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0xf000000}, 0x0)

[ 3178.492009][ T3161] RBP: 00007f5707c6c6c0 R08: 00007f5707c6c6c0 R09: 00007f57070cfa47
[ 3178.500101][ T3161] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 3178.508116][ T3161] R13: 000000000000000b R14: 00007f57070cf960 R15: 00007f57070cfa48
[ 3178.516136][ T3161]  </TASK>
[ 3178.569914][ T3194] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
01:27:41 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}, 0x1, 0x11}, 0x0)

[ 3178.623865][ T3192] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 3178.683302][ T3196] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 3178.685600][ T3161] memory: usage 307200kB, limit 307200kB, failcnt 88122
[ 3178.700191][ T3161] memory+swap: usage 307784kB, limit 9007199254740988kB, failcnt 0
[ 3178.708249][ T3161] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[ 3178.716513][ T3161] Memory cgroup stats for /syz2:
[ 3178.716626][ T3161] cache 0
[ 3178.725246][ T3161] rss 0
[ 3178.729893][ T3161] rss_huge 0
[ 3178.733297][ T3161] shmem 0
[ 3178.736785][ T3161] mapped_file 0
[ 3178.741062][ T3161] dirty 0
[ 3178.744557][ T3161] writeback 0
[ 3178.748203][ T3161] workingset_refault_anon 30715
[ 3178.754877][ T3161] workingset_refault_file 171
[ 3178.760780][ T3161] swap 598016
[ 3178.764564][ T3161] swapcached 0
[ 3178.768181][ T3161] pgpgin 781814
[ 3178.774068][ T3200] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
01:27:41 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x10000000}, 0x0)

01:27:41 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}, {0x8848}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

[ 3178.802892][ T3161] pgpgout 781814
[ 3178.809074][ T3161] pgfault 1285116
[ 3178.815720][ T3161] pgmajfault 25403
[ 3178.853187][ T3161] inactive_anon 0
[ 3178.865461][ T3161] active_anon 0
[ 3178.871517][ T3161] inactive_file 0
[ 3178.878696][ T3161] active_file 0
[ 3178.888038][ T3161] unevictable 0
[ 3178.893404][ T3161] hierarchical_memory_limit 314572800
01:27:41 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x44, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x14, 0x2, [@TCA_FLOW_EMATCHES={0x10, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100, 0x1400}}, @TCA_EMATCH_TREE_LIST={0x4}]}]}}]}, 0x44}}, 0x0)

01:27:41 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}, 0x1, 0x14}, 0x0)

[ 3178.896558][ T3202] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 3178.899058][ T3161] hierarchical_memsw_limit 9223372036854771712
[ 3178.922178][ T3161] total_cache 0
[ 3178.925836][ T3161] total_rss 0
[ 3178.929410][ T3161] total_rss_huge 0
[ 3178.934082][ T3161] total_shmem 0
[ 3178.937833][ T3161] total_mapped_file 0
[ 3178.964099][ T3161] total_dirty 0
[ 3178.973901][ T3161] total_writeback 0
[ 3178.983723][ T3161] total_workingset_refault_anon 30715
[ 3178.995141][ T3161] total_workingset_refault_file 171
[ 3179.009705][ T3161] total_swap 598016
[ 3179.010087][ T3206] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 3179.027544][ T3161] total_swapcached 0
[ 3179.033423][ T3161] total_pgpgin 781814
[ 3179.038822][ T3161] total_pgpgout 781814
[ 3179.043715][ T3161] total_pgfault 1285116
[ 3179.048121][ T3161] total_pgmajfault 25403
[ 3179.053015][ T3161] total_inactive_anon 0
[ 3179.057331][ T3161] total_active_anon 0
[ 3179.063169][ T3161] total_inactive_file 0
[ 3179.067462][ T3161] total_active_file 0
[ 3179.072043][ T3161] total_unevictable 0
[ 3179.081289][ T3210] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 3179.099107][ T3161] anon_cost 0
[ 3179.102430][ T3161] file_cost 0
01:27:41 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

01:27:41 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x11000000}, 0x0)

[ 3179.105733][ T3161] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=3161,uid=0
01:27:41 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}, 0x1, 0x15}, 0x0)

[ 3179.153501][ T3161] Memory cgroup out of memory: Killed process 3161 (syz-executor.2) total-vm:54508kB, anon-rss:0kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000
[ 3179.198426][ T3215] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
01:27:41 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x8100, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}}, 0x0)

01:27:41 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}, {0x0, 0x2}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

01:27:41 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x14000000}, 0x0)

01:27:41 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}, 0x1, 0x28}, 0x0)

[ 3179.517226][ T3221] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3179.555802][ T3221] CPU: 0 PID: 3221 Comm: syz-executor.2 Not tainted 6.8.0-rc5-syzkaller-00002-gfca7526b7d89 #0
[ 3179.566187][ T3221] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024
[ 3179.576273][ T3221] Call Trace:
[ 3179.579575][ T3221]  <TASK>
[ 3179.582531][ T3221]  dump_stack_lvl+0x1e7/0x2e0
[ 3179.587245][ T3221]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3179.592473][ T3221]  ? __pfx__printk+0x10/0x10
[ 3179.597105][ T3221]  ? ___ratelimit+0x4c4/0x670
[ 3179.601851][ T3221]  ? __pfx____ratelimit+0x10/0x10
[ 3179.607012][ T3221]  dump_header+0xda/0x6a0
[ 3179.611386][ T3221]  oom_kill_process+0x3a7/0x930
[ 3179.616275][ T3221]  out_of_memory+0xf67/0x1320
[ 3179.620994][ T3221]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3179.626744][ T3221]  ? __pfx___mutex_lock+0x10/0x10
[ 3179.631810][ T3221]  ? __pfx_out_of_memory+0x10/0x10
[ 3179.636964][ T3221]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3179.642540][ T3221]  ? __pfx_lock_release+0x10/0x10
[ 3179.647595][ T3221]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3179.653693][ T3221]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3179.658919][ T3221]  ? mem_cgroup_iter+0x3e9/0x560
01:27:42 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x15000000}, 0x0)

[ 3179.663890][ T3221]  try_charge_memcg+0xda2/0x18a0
[ 3179.668885][ T3221]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3179.674285][ T3221]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3179.680028][ T3221]  ? __pfx_lock_release+0x10/0x10
[ 3179.685081][ T3221]  ? memcg_account_kmem+0x1e7/0x210
[ 3179.690321][ T3221]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3179.696246][ T3221]  __memcg_kmem_charge_page+0xe1/0x250
[ 3179.701744][ T3221]  memcg_charge_kernel_stack+0x3f8/0x550
[ 3179.707426][ T3221]  dup_task_struct+0x40d/0x7d0
[ 3179.712313][ T3221]  copy_process+0x5d5/0x3fc0
[ 3179.716940][ T3221]  ? __might_fault+0xa9/0x120
[ 3179.721654][ T3221]  ? __pfx_lock_release+0x10/0x10
[ 3179.726722][ T3221]  ? __pfx_copy_process+0x10/0x10
[ 3179.731773][ T3221]  ? __might_fault+0xc5/0x120
[ 3179.736487][ T3221]  ? __asan_memset+0x23/0x50
[ 3179.741114][ T3221]  kernel_clone+0x21d/0x8d0
[ 3179.745653][ T3221]  ? __pfx_kernel_clone+0x10/0x10
[ 3179.750749][ T3221]  __se_sys_clone3+0x2cb/0x350
[ 3179.755570][ T3221]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3179.760920][ T3221]  ? do_syscall_64+0x108/0x240
01:27:42 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}, 0x1, 0x60}, 0x0)

[ 3179.765729][ T3221]  ? do_syscall_64+0xb4/0x240
[ 3179.770445][ T3221]  do_syscall_64+0xf9/0x240
[ 3179.775086][ T3221]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 3179.781017][ T3221] RIP: 0033:0x7f5706ea9b99
[ 3179.785550][ T3221] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 3179.805184][ T3221] RSP: 002b:00007f57070cf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
01:27:42 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}, {0x0, 0x3}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

[ 3179.813731][ T3221] RAX: ffffffffffffffda RBX: 00007f5706e52270 RCX: 00007f5706ea9b99
[ 3179.821739][ T3221] RDX: 00007f5706e52270 RSI: 0000000000000058 RDI: 00007f57070cf960
[ 3179.829747][ T3221] RBP: 00007f5707c6c6c0 R08: 00007f5707c6c6c0 R09: 00007f57070cfa47
[ 3179.837925][ T3221] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 3179.845933][ T3221] R13: 000000000000000b R14: 00007f57070cf960 R15: 00007f57070cfa48
[ 3179.854307][ T3221]  </TASK>
01:27:42 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}, 0x1, 0x300}, 0x0)

[ 3179.941819][ T3221] memory: usage 307200kB, limit 307200kB, failcnt 88324
[ 3179.949111][ T3221] memory+swap: usage 307784kB, limit 9007199254740988kB, failcnt 0
[ 3179.957869][ T3221] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[ 3179.967464][ T3221] Memory cgroup stats for /syz2:
[ 3179.967605][ T3221] cache 0
[ 3179.994693][ T3221] rss 0
[ 3179.998112][ T3221] rss_huge 0
[ 3180.002014][ T3221] shmem 0
[ 3180.005146][ T3221] mapped_file 0
[ 3180.008808][ T3221] dirty 0
[ 3180.012149][ T3221] writeback 0
[ 3180.015645][ T3221] workingset_refault_anon 30770
[ 3180.023049][ T3221] workingset_refault_file 171
[ 3180.028006][ T3221] swap 598016
[ 3180.032049][ T3221] swapcached 0
[ 3180.035644][ T3221] pgpgin 781880
[ 3180.039354][ T3221] pgpgout 781880
[ 3180.043388][ T3221] pgfault 1285223
[ 3180.048863][ T3221] pgmajfault 25455
[ 3180.052944][ T3221] inactive_anon 0
[ 3180.056802][ T3221] active_anon 0
01:27:42 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x20000000}, 0x0)

[ 3180.096527][ T3221] inactive_file 0
[ 3180.104480][ T3221] active_file 0
[ 3180.109630][ T3221] unevictable 0
[ 3180.116491][ T3221] hierarchical_memory_limit 314572800
[ 3180.130031][ T3221] hierarchical_memsw_limit 9223372036854771712
[ 3180.138833][ T3221] total_cache 0
[ 3180.146636][ T3221] total_rss 0
[ 3180.153961][ T3221] total_rss_huge 0
[ 3180.158359][ T3221] total_shmem 0
[ 3180.171022][ T3221] total_mapped_file 0
[ 3180.177869][ T3221] total_dirty 0
[ 3180.185389][ T3221] total_writeback 0
[ 3180.192030][ T3221] total_workingset_refault_anon 30770
[ 3180.197573][ T3221] total_workingset_refault_file 171
[ 3180.206207][ T3221] total_swap 598016
[ 3180.221253][ T3221] total_swapcached 0
[ 3180.227497][ T3221] total_pgpgin 781880
[ 3180.240016][ T3221] total_pgpgout 781880
01:27:42 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}, {0x0, 0x4}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

01:27:42 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}, 0x1, 0x500}, 0x0)

[ 3180.246937][ T3221] total_pgfault 1285223
[ 3180.262566][ T3221] total_pgmajfault 25455
[ 3180.277984][ T3221] total_inactive_anon 0
[ 3180.288067][ T3221] total_active_anon 0
01:27:42 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x60000000}, 0x0)

[ 3180.302648][ T3221] total_inactive_file 0
[ 3180.313248][ T3221] total_active_file 0
[ 3180.324055][ T3221] total_unevictable 0
[ 3180.337360][ T3221] anon_cost 0
[ 3180.348994][ T3221] file_cost 0
[ 3180.356182][ T3221] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=3221,uid=0
[ 3180.401099][ T3221] Memory cgroup out of memory: Killed process 3221 (syz-executor.2) total-vm:54508kB, anon-rss:0kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000
01:27:42 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}, {0x0, 0x5}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

01:27:42 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}, 0x1, 0x600}, 0x0)

01:27:42 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x8847, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}}, 0x0)

01:27:42 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x624551bf}, 0x0)

01:27:43 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}, {0x0, 0x6}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

01:27:43 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}, 0x1, 0x700}, 0x0)

01:27:43 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x65580000}, 0x0)

01:27:43 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}, {0x0, 0x7}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

01:27:43 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}, {0x0, 0x8}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

01:27:43 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x81000000}, 0x0)

01:27:43 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}, 0x1, 0x900}, 0x0)

[ 3181.326506][ T3260] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3181.365186][ T3260] CPU: 0 PID: 3260 Comm: syz-executor.2 Not tainted 6.8.0-rc5-syzkaller-00002-gfca7526b7d89 #0
[ 3181.375653][ T3260] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024
[ 3181.385826][ T3260] Call Trace:
[ 3181.389315][ T3260]  <TASK>
[ 3181.392276][ T3260]  dump_stack_lvl+0x1e7/0x2e0
[ 3181.396989][ T3260]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3181.402227][ T3260]  ? __pfx__printk+0x10/0x10
[ 3181.406849][ T3260]  ? ___ratelimit+0x4c4/0x670
[ 3181.411672][ T3260]  ? __pfx____ratelimit+0x10/0x10
[ 3181.416742][ T3260]  dump_header+0xda/0x6a0
[ 3181.421122][ T3260]  oom_kill_process+0x3a7/0x930
[ 3181.426025][ T3260]  out_of_memory+0xf67/0x1320
[ 3181.430741][ T3260]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3181.436405][ T3260]  ? __pfx___mutex_lock+0x10/0x10
[ 3181.441467][ T3260]  ? __pfx_out_of_memory+0x10/0x10
[ 3181.446612][ T3260]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3181.452193][ T3260]  ? __pfx_lock_release+0x10/0x10
[ 3181.457258][ T3260]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3181.463364][ T3260]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3181.468593][ T3260]  ? mem_cgroup_iter+0x3e9/0x560
[ 3181.473565][ T3260]  try_charge_memcg+0xda2/0x18a0
[ 3181.478557][ T3260]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3181.483969][ T3260]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3181.489727][ T3260]  ? __pfx_lock_release+0x10/0x10
[ 3181.494783][ T3260]  ? memcg_account_kmem+0x1e7/0x210
[ 3181.500024][ T3260]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3181.505872][ T3260]  __memcg_kmem_charge_page+0xe1/0x250
[ 3181.511371][ T3260]  memcg_charge_kernel_stack+0x3f8/0x550
[ 3181.517049][ T3260]  dup_task_struct+0x15d/0x7d0
[ 3181.521843][ T3260]  copy_process+0x5d5/0x3fc0
01:27:43 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x88470000}, 0x0)

[ 3181.526569][ T3260]  ? __might_fault+0xa9/0x120
[ 3181.531325][ T3260]  ? __pfx_lock_release+0x10/0x10
[ 3181.536407][ T3260]  ? __pfx_copy_process+0x10/0x10
[ 3181.541500][ T3260]  ? __might_fault+0xc5/0x120
[ 3181.546215][ T3260]  ? __asan_memset+0x23/0x50
[ 3181.550857][ T3260]  kernel_clone+0x21d/0x8d0
[ 3181.555488][ T3260]  ? __pfx_kernel_clone+0x10/0x10
[ 3181.560569][ T3260]  __se_sys_clone3+0x2cb/0x350
[ 3181.565626][ T3260]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3181.570978][ T3260]  ? do_syscall_64+0x108/0x240
[ 3181.575869][ T3260]  ? do_syscall_64+0xb4/0x240
[ 3181.580759][ T3260]  do_syscall_64+0xf9/0x240
[ 3181.585306][ T3260]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 3181.591236][ T3260] RIP: 0033:0x7f5706ea9b99
[ 3181.595696][ T3260] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 3181.615329][ T3260] RSP: 002b:00007f57070cf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
01:27:44 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}, {0x0, 0x9}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

[ 3181.623778][ T3260] RAX: ffffffffffffffda RBX: 00007f5706e52270 RCX: 00007f5706ea9b99
[ 3181.631776][ T3260] RDX: 00007f5706e52270 RSI: 0000000000000058 RDI: 00007f57070cf960
[ 3181.639777][ T3260] RBP: 00007f5707c6c6c0 R08: 00007f5707c6c6c0 R09: 00007f57070cfa47
[ 3181.647858][ T3260] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 3181.655944][ T3260] R13: 000000000000000b R14: 00007f57070cf960 R15: 00007f57070cfa48
[ 3181.663958][ T3260]  </TASK>
01:27:44 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}, 0x1, 0xa00}, 0x0)

[ 3181.712987][ T3260] memory: usage 307200kB, limit 307200kB, failcnt 88821
[ 3181.721688][ T3260] memory+swap: usage 307784kB, limit 9007199254740988kB, failcnt 0
[ 3181.730688][ T3260] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[ 3181.739241][ T3260] Memory cgroup stats for /syz2:
[ 3181.739455][ T3260] cache 0
[ 3181.747560][ T3260] rss 24576
[ 3181.751308][ T3260] rss_huge 0
[ 3181.754687][ T3260] shmem 0
[ 3181.757860][ T3260] mapped_file 0
[ 3181.761681][ T3260] dirty 0
[ 3181.764805][ T3260] writeback 0
[ 3181.768231][ T3260] workingset_refault_anon 30944
[ 3181.773772][ T3260] workingset_refault_file 171
[ 3181.778626][ T3260] swap 573440
[ 3181.782419][ T3260] swapcached 0
[ 3181.785994][ T3260] pgpgin 782066
[ 3181.791928][ T3260] pgpgout 782060
[ 3181.832821][ T3260] pgfault 1285484
[ 3181.841104][ T3260] pgmajfault 25610
[ 3181.859231][ T3260] inactive_anon 8192
[ 3181.863324][ T3260] active_anon 16384
[ 3181.870678][ T3260] inactive_file 0
[ 3181.877869][ T3260] active_file 0
01:27:44 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x88480000}, 0x0)

[ 3181.883959][ T3260] unevictable 0
[ 3181.902396][ T3260] hierarchical_memory_limit 314572800
[ 3181.927576][ T3260] hierarchical_memsw_limit 9223372036854771712
[ 3181.964861][ T3260] total_cache 0
[ 3181.968387][ T3260] total_rss 24576
[ 3181.982387][ T3260] total_rss_huge 0
[ 3181.986533][ T3260] total_shmem 0
[ 3181.994652][ T3260] total_mapped_file 0
[ 3181.998668][ T3260] total_dirty 0
[ 3182.006079][ T3260] total_writeback 0
[ 3182.019614][ T3260] total_workingset_refault_anon 30944
[ 3182.025037][ T3260] total_workingset_refault_file 171
01:27:44 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}, {0x0, 0xa}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

01:27:44 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}, 0x1, 0xb00}, 0x0)

01:27:44 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x44, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x14, 0x2, [@TCA_FLOW_EMATCHES={0x10, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100, 0x1500}}, @TCA_EMATCH_TREE_LIST={0x4}]}]}}]}, 0x44}}, 0x0)

[ 3182.030547][ T3260] total_swap 573440
[ 3182.034643][ T3260] total_swapcached 0
[ 3182.038734][ T3260] total_pgpgin 782066
[ 3182.044107][ T3260] total_pgpgout 782060
[ 3182.048209][ T3260] total_pgfault 1285484
[ 3182.061254][ T3260] total_pgmajfault 25610
[ 3182.071325][ T3260] total_inactive_anon 8192
[ 3182.075796][ T3260] total_active_anon 16384
[ 3182.094201][ T3260] total_inactive_file 0
[ 3182.102731][ T3260] total_active_file 0
[ 3182.117649][ T3260] total_unevictable 0
[ 3182.122394][ T3260] anon_cost 0
[ 3182.127253][ T3260] file_cost 0
01:27:44 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x88a8ffff}, 0x0)

[ 3182.134508][ T3260] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=3260,uid=0
[ 3182.165927][ T3260] Memory cgroup out of memory: Killed process 3260 (syz-executor.2) total-vm:54508kB, anon-rss:0kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000
01:27:44 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}, 0x1, 0xc00}, 0x0)

01:27:44 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x8848, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}}, 0x0)

01:27:44 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}, {0x0, 0xb}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

01:27:44 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0xbf514562}, 0x0)

01:27:44 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}, 0x1, 0xf00}, 0x0)

01:27:44 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}, {0x0, 0xc}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

[ 3182.605022][ T5104] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=0
[ 3182.655158][ T5104] CPU: 1 PID: 5104 Comm: syz-executor.2 Not tainted 6.8.0-rc5-syzkaller-00002-gfca7526b7d89 #0
[ 3182.665544][ T5104] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024
[ 3182.675631][ T5104] Call Trace:
[ 3182.679038][ T5104]  <TASK>
[ 3182.681988][ T5104]  dump_stack_lvl+0x1e7/0x2e0
[ 3182.686707][ T5104]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3182.692040][ T5104]  ? __pfx__printk+0x10/0x10
[ 3182.696666][ T5104]  ? ___ratelimit+0x4c4/0x670
[ 3182.701485][ T5104]  ? __pfx____ratelimit+0x10/0x10
[ 3182.706555][ T5104]  dump_header+0xda/0x6a0
[ 3182.710921][ T5104]  oom_kill_process+0x3a7/0x930
[ 3182.715809][ T5104]  out_of_memory+0xf67/0x1320
[ 3182.720527][ T5104]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3182.726179][ T5104]  ? __pfx___mutex_lock+0x10/0x10
[ 3182.731232][ T5104]  ? __pfx_out_of_memory+0x10/0x10
[ 3182.736381][ T5104]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3182.741949][ T5104]  ? __pfx_lock_release+0x10/0x10
[ 3182.747007][ T5104]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3182.753086][ T5104]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3182.758288][ T5104]  ? mem_cgroup_iter+0x3e9/0x560
[ 3182.763233][ T5104]  try_charge_memcg+0xda2/0x18a0
[ 3182.768190][ T5104]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3182.773566][ T5104]  ? percpu_ref_tryget+0x14/0x180
[ 3182.778608][ T5104]  charge_memcg+0xa2/0x160
[ 3182.783035][ T5104]  __mem_cgroup_charge+0x27/0x80
[ 3182.788002][ T5104]  __handle_mm_fault+0x5120/0x72d0
[ 3182.793139][ T5104]  ? reacquire_held_locks+0x3eb/0x690
[ 3182.798519][ T5104]  ? __pfx___handle_mm_fault+0x10/0x10
[ 3182.803996][ T5104]  ? __pfx_reacquire_held_locks+0x10/0x10
[ 3182.809731][ T5104]  ? mtree_range_walk+0x6fd/0x8e0
[ 3182.814769][ T5104]  ? lock_vma_under_rcu+0x18a/0x730
[ 3182.819967][ T5104]  ? __pfx_lock_release+0x10/0x10
[ 3182.825091][ T5104]  ? lock_vma_under_rcu+0x2f9/0x730
[ 3182.830312][ T5104]  ? lock_vma_under_rcu+0x18a/0x730
[ 3182.835527][ T5104]  ? __pfx_lock_vma_under_rcu+0x10/0x10
[ 3182.841250][ T5104]  handle_mm_fault+0x3c1/0x8a0
[ 3182.846019][ T5104]  exc_page_fault+0x456/0x870
[ 3182.850722][ T5104]  asm_exc_page_fault+0x26/0x30
[ 3182.855577][ T5104] RIP: 0033:0x7f5706ea91b8
[ 3182.859992][ T5104] Code: 3c 24 48 89 4c 24 18 e8 f6 b9 ff ff 4c 8b 54 24 18 48 8b 54 24 10 41 89 c0 8b 74 24 0c 8b 3c 24 b8 e6 00 00 00 0f 05 44 89 c7 <48> 89 04 24 e8 4f ba ff ff 48 8b 04 24 48 83 c4 28 f7 d8 c3 0f 1f
[ 3182.879768][ T5104] RSP: 002b:00007f57070cfcf0 EFLAGS: 00010293
[ 3182.885924][ T5104] RAX: 0000000000000000 RBX: 0000000000006d0c RCX: 00007f5706ea91b5
[ 3182.893982][ T5104] RDX: 00007f57070cfd30 RSI: 0000000000000000 RDI: 0000000000000000
01:27:45 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0xf0ffffff}, 0x0)

[ 3182.901953][ T5104] RBP: 00007f57070cfdbc R08: 0000000000000000 R09: 00007ffeb39ee0b0
[ 3182.910021][ T5104] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000032
[ 3182.917990][ T5104] R13: 0000000000308f10 R14: 0000000000308f10 R15: 0000000000000000
[ 3182.926072][ T5104]  </TASK>
01:27:45 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}, {0x0, 0xf}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

[ 3183.012677][ T5104] memory: usage 307200kB, limit 307200kB, failcnt 89067
01:27:45 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}, 0x1, 0x1100}, 0x0)

01:27:45 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}, {0x0, 0x10}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

01:27:45 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0xffffa888}, 0x0)

[ 3183.089053][ T5104] memory+swap: usage 307784kB, limit 9007199254740988kB, failcnt 0
[ 3183.097097][ T5104] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[ 3183.136775][ T3328] __nla_validate_parse: 37 callbacks suppressed
[ 3183.136794][ T3328] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 3183.171067][ T5104] Memory cgroup stats for /syz2:
[ 3183.171206][ T5104] cache 0
[ 3183.192790][ T5104] rss 0
[ 3183.199829][ T5104] rss_huge 0
[ 3183.207659][ T5104] shmem 0
[ 3183.215691][ T5104] mapped_file 0
[ 3183.223971][ T5104] dirty 0
[ 3183.224101][ T3330] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 3183.231620][ T5104] writeback 0
[ 3183.252583][ T5104] workingset_refault_anon 31024
[ 3183.265997][ T5104] workingset_refault_file 171
[ 3183.276924][ T5104] swap 598016
[ 3183.284999][ T5104] swapcached 0
[ 3183.290486][ T3335] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'.
01:27:45 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}, {0x0, 0x11}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

[ 3183.293199][ T5104] pgpgin 782156
[ 3183.316539][ T5104] pgpgout 782156
[ 3183.333831][ T5104] pgfault 1285620
[ 3183.348268][ T5104] pgmajfault 25687
01:27:45 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0xffffff7f}, 0x0)

01:27:45 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}, 0x1, 0x1400}, 0x0)

[ 3183.362922][ T5104] inactive_anon 0
[ 3183.370285][ T5104] active_anon 0
[ 3183.373963][ T5104] inactive_file 0
[ 3183.377617][ T5104] active_file 0
[ 3183.394929][ T5104] unevictable 0
[ 3183.398451][ T5104] hierarchical_memory_limit 314572800
[ 3183.415411][ T5104] hierarchical_memsw_limit 9223372036854771712
[ 3183.417366][ T3337] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 3183.436252][ T5104] total_cache 0
[ 3183.443708][ T5104] total_rss 0
[ 3183.447037][ T5104] total_rss_huge 0
[ 3183.459837][ T5104] total_shmem 0
[ 3183.467960][ T5104] total_mapped_file 0
[ 3183.486531][ T5104] total_dirty 0
[ 3183.491036][ T5104] total_writeback 0
[ 3183.496942][ T5104] total_workingset_refault_anon 31024
[ 3183.510139][ T3340] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 3183.510768][ T5104] total_workingset_refault_file 171
[ 3183.532664][ T5104] total_swap 598016
[ 3183.536631][ T5104] total_swapcached 0
[ 3183.554483][ T5104] total_pgpgin 782156
[ 3183.558549][ T5104] total_pgpgout 782156
01:27:45 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}, {0x0, 0x14}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

[ 3183.573478][ T5104] total_pgfault 1285620
[ 3183.578500][ T5104] total_pgmajfault 25687
[ 3183.583380][ T3341] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 3183.594292][ T5104] total_inactive_anon 0
01:27:46 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}, 0x1, 0x1500}, 0x0)

[ 3183.632712][ T5104] total_active_anon 0
[ 3183.638357][ T5104] total_inactive_file 0
[ 3183.673215][ T5104] total_active_file 0
01:27:46 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0xfffffff0}, 0x0)

[ 3183.700341][ T5104] total_unevictable 0
[ 3183.704484][ T5104] anon_cost 0
[ 3183.707886][ T5104] file_cost 0
[ 3183.725512][ T5104] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=3310,uid=0
[ 3183.739255][ T3345] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 3183.772903][ T5104] Memory cgroup out of memory: Killed process 3310 (syz-executor.2) total-vm:54508kB, anon-rss:0kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000
01:27:46 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0xfd6a, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}}, 0x0)

[ 3183.839604][ T3349] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'.
01:27:46 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}, {0x0, 0x15}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

[ 3183.885821][ T3351] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
01:27:46 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x40030000000000}, 0x0)

01:27:46 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}, 0x1, 0x2800}, 0x0)

[ 3184.036109][ T3356] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 3184.292121][ T3353] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3184.302792][ T3353] CPU: 1 PID: 3353 Comm: syz-executor.2 Not tainted 6.8.0-rc5-syzkaller-00002-gfca7526b7d89 #0
[ 3184.313167][ T3353] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024
[ 3184.323250][ T3353] Call Trace:
[ 3184.326559][ T3353]  <TASK>
[ 3184.329513][ T3353]  dump_stack_lvl+0x1e7/0x2e0
[ 3184.334249][ T3353]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3184.339493][ T3353]  ? __pfx__printk+0x10/0x10
[ 3184.344093][ T3353]  ? ___ratelimit+0x4c4/0x670
[ 3184.348794][ T3353]  ? __pfx____ratelimit+0x10/0x10
[ 3184.353839][ T3353]  dump_header+0xda/0x6a0
[ 3184.358199][ T3353]  oom_kill_process+0x3a7/0x930
[ 3184.363071][ T3353]  out_of_memory+0xf67/0x1320
[ 3184.367759][ T3353]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3184.373419][ T3353]  ? __pfx___mutex_lock+0x10/0x10
[ 3184.378460][ T3353]  ? __pfx_out_of_memory+0x10/0x10
[ 3184.383597][ T3353]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3184.389161][ T3353]  ? __pfx_lock_release+0x10/0x10
[ 3184.394195][ T3353]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3184.400284][ T3353]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3184.405497][ T3353]  ? mem_cgroup_iter+0x3e9/0x560
[ 3184.410450][ T3353]  try_charge_memcg+0xda2/0x18a0
[ 3184.415412][ T3353]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3184.420783][ T3353]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3184.426518][ T3353]  ? __pfx_lock_release+0x10/0x10
[ 3184.431567][ T3353]  ? memcg_account_kmem+0x1e7/0x210
[ 3184.436783][ T3353]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3184.442878][ T3353]  __memcg_kmem_charge_page+0xe1/0x250
[ 3184.448345][ T3353]  memcg_charge_kernel_stack+0x3f8/0x550
[ 3184.453989][ T3353]  dup_task_struct+0x15d/0x7d0
[ 3184.458759][ T3353]  copy_process+0x5d5/0x3fc0
[ 3184.463358][ T3353]  ? __might_fault+0xa9/0x120
[ 3184.468045][ T3353]  ? __pfx_lock_release+0x10/0x10
[ 3184.473070][ T3353]  ? __pfx_copy_process+0x10/0x10
[ 3184.478088][ T3353]  ? __might_fault+0xc5/0x120
[ 3184.482788][ T3353]  ? __asan_memset+0x23/0x50
[ 3184.487405][ T3353]  kernel_clone+0x21d/0x8d0
[ 3184.491923][ T3353]  ? __pfx_kernel_clone+0x10/0x10
[ 3184.497327][ T3353]  __se_sys_clone3+0x2cb/0x350
[ 3184.502107][ T3353]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3184.507411][ T3353]  ? do_syscall_64+0x108/0x240
[ 3184.512184][ T3353]  ? do_syscall_64+0xb4/0x240
[ 3184.516872][ T3353]  do_syscall_64+0xf9/0x240
[ 3184.521387][ T3353]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 3184.527288][ T3353] RIP: 0033:0x7f5706ea9b99
[ 3184.531723][ T3353] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 3184.551354][ T3353] RSP: 002b:00007f57070cf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 3184.559795][ T3353] RAX: ffffffffffffffda RBX: 00007f5706e52270 RCX: 00007f5706ea9b99
[ 3184.568032][ T3353] RDX: 00007f5706e52270 RSI: 0000000000000058 RDI: 00007f57070cf960
[ 3184.576043][ T3353] RBP: 00007f5707c6c6c0 R08: 00007f5707c6c6c0 R09: 00007f57070cfa47
[ 3184.584030][ T3353] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
01:27:46 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}, {0x0, 0x24}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

[ 3184.592018][ T3353] R13: 000000000000000b R14: 00007f57070cf960 R15: 00007f57070cfa48
[ 3184.600185][ T3353]  </TASK>
[ 3184.615135][ T3353] memory: usage 307200kB, limit 307200kB, failcnt 89370
[ 3184.625464][ T3353] memory+swap: usage 307784kB, limit 9007199254740988kB, failcnt 0
[ 3184.644220][ T3353] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[ 3184.662621][ T3353] Memory cgroup stats for /syz2:
[ 3184.662756][ T3353] cache 0
[ 3184.677950][ T3353] rss 24576
[ 3184.682894][ T3353] rss_huge 0
[ 3184.686268][ T3353] shmem 0
01:27:47 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x100000000000000}, 0x0)

01:27:47 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}, 0x1, 0x4788}, 0x0)

[ 3184.693105][ T3353] mapped_file 0
[ 3184.696721][ T3353] dirty 0
[ 3184.701704][ T3353] writeback 0
[ 3184.705145][ T3353] workingset_refault_anon 31143
[ 3184.727496][ T3353] workingset_refault_file 171
[ 3184.738561][ T3353] swap 573440
[ 3184.745984][ T3353] swapcached 0
[ 3184.758436][ T3353] pgpgin 782286
[ 3184.767801][ T3353] pgpgout 782280
[ 3184.784908][ T3353] pgfault 1285817
01:27:47 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}, {0x0, 0x28}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

[ 3184.804647][ T3353] pgmajfault 25798
[ 3184.822789][ T3353] inactive_anon 0
[ 3184.833708][ T3353] active_anon 24576
[ 3184.843403][ T3353] inactive_file 0
[ 3184.853905][ T3353] active_file 0
[ 3184.862150][ T3353] unevictable 0
[ 3184.868039][ T3353] hierarchical_memory_limit 314572800
[ 3184.880784][ T3353] hierarchical_memsw_limit 9223372036854771712
[ 3184.890508][ T3353] total_cache 0
[ 3184.897761][ T3353] total_rss 24576
01:27:47 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}, 0x1, 0x4888}, 0x0)

[ 3184.903888][ T3353] total_rss_huge 0
[ 3184.910034][ T3353] total_shmem 0
[ 3184.917081][ T3353] total_mapped_file 0
[ 3184.922648][ T3353] total_dirty 0
[ 3184.927518][ T3353] total_writeback 0
[ 3184.934212][ T3353] total_workingset_refault_anon 31143
[ 3184.940047][ T3353] total_workingset_refault_file 171
[ 3184.945410][ T3353] total_swap 573440
[ 3184.949550][ T3353] total_swapcached 0
[ 3184.953606][ T3353] total_pgpgin 782286
[ 3184.957741][ T3353] total_pgpgout 782280
[ 3184.991129][ T3353] total_pgfault 1285817
[ 3184.999440][ T3353] total_pgmajfault 25798
[ 3185.007438][ T3353] total_inactive_anon 0
[ 3185.019016][ T3353] total_active_anon 24576
[ 3185.029392][ T3353] total_inactive_file 0
01:27:47 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x200000000000000}, 0x0)

[ 3185.059333][ T3353] total_active_file 0
[ 3185.065306][ T3353] total_unevictable 0
[ 3185.071031][ T3353] anon_cost 0
[ 3185.074482][ T3353] file_cost 0
[ 3185.078743][ T3353] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=3353,uid=0
[ 3185.096745][ T3353] Memory cgroup out of memory: Killed process 3353 (syz-executor.2) total-vm:54508kB, anon-rss:0kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000
01:27:47 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}, {0x0, 0x60}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

01:27:47 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x44, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x14, 0x2, [@TCA_FLOW_EMATCHES={0x10, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100, 0x4788}}, @TCA_EMATCH_TREE_LIST={0x4}]}]}}]}, 0x44}}, 0x0)

01:27:47 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}, 0x1, 0x5865}, 0x0)

01:27:47 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}}, 0x0)

01:27:47 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x300000000000000}, 0x0)

01:27:47 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}, {0x0, 0x300}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

01:27:47 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}, 0x1, 0x6000}, 0x0)

01:27:48 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x400000000000000}, 0x0)

01:27:48 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}, {0x0, 0x500}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

01:27:48 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}, 0x1, 0x6558}, 0x0)

01:27:48 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x500000000000000}, 0x0)

[ 3186.015561][ T3390] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3186.053098][ T3390] CPU: 1 PID: 3390 Comm: syz-executor.2 Not tainted 6.8.0-rc5-syzkaller-00002-gfca7526b7d89 #0
[ 3186.063510][ T3390] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024
[ 3186.073628][ T3390] Call Trace:
[ 3186.076932][ T3390]  <TASK>
[ 3186.079985][ T3390]  dump_stack_lvl+0x1e7/0x2e0
[ 3186.084697][ T3390]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3186.089936][ T3390]  ? __pfx__printk+0x10/0x10
[ 3186.094647][ T3390]  ? ___ratelimit+0x4c4/0x670
[ 3186.099359][ T3390]  ? __pfx____ratelimit+0x10/0x10
[ 3186.104474][ T3390]  dump_header+0xda/0x6a0
[ 3186.108842][ T3390]  oom_kill_process+0x3a7/0x930
[ 3186.113749][ T3390]  out_of_memory+0xf67/0x1320
[ 3186.118468][ T3390]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3186.124150][ T3390]  ? __pfx___mutex_lock+0x10/0x10
[ 3186.129212][ T3390]  ? __pfx_out_of_memory+0x10/0x10
[ 3186.134437][ T3390]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3186.140000][ T3390]  ? __pfx_lock_release+0x10/0x10
[ 3186.145035][ T3390]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3186.151124][ T3390]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3186.156331][ T3390]  ? mem_cgroup_iter+0x3e9/0x560
[ 3186.161281][ T3390]  try_charge_memcg+0xda2/0x18a0
[ 3186.166323][ T3390]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3186.171692][ T3390]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3186.177431][ T3390]  ? __pfx_lock_release+0x10/0x10
[ 3186.182459][ T3390]  ? memcg_account_kmem+0x1e7/0x210
[ 3186.187663][ T3390]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3186.193502][ T3390]  __memcg_kmem_charge_page+0xe1/0x250
[ 3186.198977][ T3390]  memcg_charge_kernel_stack+0x28a/0x550
[ 3186.204631][ T3390]  dup_task_struct+0x15d/0x7d0
[ 3186.209402][ T3390]  copy_process+0x5d5/0x3fc0
[ 3186.214014][ T3390]  ? __might_fault+0xa9/0x120
[ 3186.218714][ T3390]  ? __pfx_lock_release+0x10/0x10
[ 3186.223801][ T3390]  ? __pfx_copy_process+0x10/0x10
[ 3186.228839][ T3390]  ? __might_fault+0xc5/0x120
[ 3186.233544][ T3390]  ? __asan_memset+0x23/0x50
[ 3186.238149][ T3390]  kernel_clone+0x21d/0x8d0
[ 3186.242662][ T3390]  ? __pfx_kernel_clone+0x10/0x10
[ 3186.247787][ T3390]  __se_sys_clone3+0x2cb/0x350
[ 3186.252554][ T3390]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3186.257858][ T3390]  ? do_syscall_64+0x108/0x240
[ 3186.262627][ T3390]  ? do_syscall_64+0xb4/0x240
[ 3186.267304][ T3390]  do_syscall_64+0xf9/0x240
[ 3186.271816][ T3390]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 3186.277722][ T3390] RIP: 0033:0x7f5706ea9b99
[ 3186.282148][ T3390] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 3186.301858][ T3390] RSP: 002b:00007f57070cf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 3186.310291][ T3390] RAX: ffffffffffffffda RBX: 00007f5706e52270 RCX: 00007f5706ea9b99
[ 3186.318524][ T3390] RDX: 00007f5706e52270 RSI: 0000000000000058 RDI: 00007f57070cf960
[ 3186.326497][ T3390] RBP: 00007f5707c6c6c0 R08: 00007f5707c6c6c0 R09: 00007f57070cfa47
[ 3186.334646][ T3390] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 3186.342615][ T3390] R13: 000000000000000b R14: 00007f57070cf960 R15: 00007f57070cfa48
[ 3186.350610][ T3390]  </TASK>
01:27:48 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}, {0x0, 0x600}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

01:27:48 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}, 0x1, 0x8100}, 0x0)

[ 3186.440336][ T3390] memory: usage 307200kB, limit 307200kB, failcnt 89721
[ 3186.461986][ T3390] memory+swap: usage 307772kB, limit 9007199254740988kB, failcnt 0
[ 3186.504581][ T3390] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0
01:27:48 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x600000000000000}, 0x0)

[ 3186.545849][ T3390] Memory cgroup stats for /syz2:
[ 3186.545999][ T3390] cache 0
[ 3186.568208][ T3390] rss 12288
[ 3186.629048][ T3390] rss_huge 0
[ 3186.635771][ T3390] shmem 0
[ 3186.647877][ T3390] mapped_file 0
[ 3186.663890][ T3390] dirty 0
[ 3186.679328][ T3390] writeback 0
[ 3186.690627][ T3390] workingset_refault_anon 31261
[ 3186.703559][ T3390] workingset_refault_file 171
[ 3186.724097][ T3390] swap 585728
[ 3186.733356][ T3390] swapcached 0
[ 3186.741455][ T3390] pgpgin 782431
[ 3186.752083][ T3390] pgpgout 782428
[ 3186.764765][ T3390] pgfault 1286045
01:27:49 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}, {0x0, 0x700}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

[ 3186.786194][ T3390] pgmajfault 25927
[ 3186.794181][ T3390] inactive_anon 12288
[ 3186.806685][ T3390] active_anon 0
[ 3186.823552][ T3390] inactive_file 0
[ 3186.847936][ T3390] active_file 0
[ 3186.852304][ T3390] unevictable 0
[ 3186.860241][ T3390] hierarchical_memory_limit 314572800
01:27:49 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x700000000000000}, 0x0)

01:27:49 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}, 0x1, 0x839a}, 0x0)

[ 3186.889280][ T3390] hierarchical_memsw_limit 9223372036854771712
[ 3186.895671][ T3390] total_cache 0
[ 3186.910267][ T3390] total_rss 12288
[ 3186.921480][ T3390] total_rss_huge 0
[ 3186.932302][ T3390] total_shmem 0
[ 3186.967746][ T3390] total_mapped_file 0
[ 3186.990567][ T3390] total_dirty 0
[ 3186.998059][ T3390] total_writeback 0
[ 3187.020979][ T3390] total_workingset_refault_anon 31261
[ 3187.030656][ T3390] total_workingset_refault_file 171
[ 3187.052604][ T3390] total_swap 585728
01:27:49 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}, {0x0, 0x900}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

[ 3187.076505][ T3390] total_swapcached 0
[ 3187.090149][ T3390] total_pgpgin 782431
[ 3187.119165][ T3390] total_pgpgout 782428
[ 3187.129521][ T3390] total_pgfault 1286045
[ 3187.138488][ T3390] total_pgmajfault 25927
[ 3187.169225][ T3390] total_inactive_anon 12288
[ 3187.173785][ T3390] total_active_anon 0
[ 3187.177785][ T3390] total_inactive_file 0
01:27:49 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}, 0x1, 0x8847}, 0x0)

[ 3187.221216][ T3390] total_active_file 0
[ 3187.225254][ T3390] total_unevictable 0
[ 3187.239203][ T3390] anon_cost 0
[ 3187.250639][ T3390] file_cost 0
[ 3187.258566][ T3390] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=3390,uid=0
01:27:49 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x800000000000000}, 0x0)

[ 3187.300928][ T3390] Memory cgroup out of memory: Killed process 3390 (syz-executor.2) total-vm:54508kB, anon-rss:0kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000
01:27:49 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {0x2}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}}, 0x0)

01:27:49 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}, {0x0, 0xa00}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

01:27:49 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}, 0x1, 0x8848}, 0x0)

01:27:50 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x900000000000000}, 0x0)

01:27:50 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}, {0x0, 0xb00}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

[ 3187.713672][ T3445] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3187.767935][ T3445] CPU: 0 PID: 3445 Comm: syz-executor.2 Not tainted 6.8.0-rc5-syzkaller-00002-gfca7526b7d89 #0
[ 3187.778324][ T3445] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024
[ 3187.788431][ T3445] Call Trace:
[ 3187.791742][ T3445]  <TASK>
[ 3187.794697][ T3445]  dump_stack_lvl+0x1e7/0x2e0
[ 3187.799422][ T3445]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3187.804674][ T3445]  ? __pfx__printk+0x10/0x10
[ 3187.809558][ T3445]  ? ___ratelimit+0x4c4/0x670
[ 3187.814273][ T3445]  ? __pfx____ratelimit+0x10/0x10
[ 3187.819335][ T3445]  dump_header+0xda/0x6a0
[ 3187.823702][ T3445]  oom_kill_process+0x3a7/0x930
[ 3187.828588][ T3445]  out_of_memory+0xf67/0x1320
[ 3187.833291][ T3445]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3187.838937][ T3445]  ? __pfx___mutex_lock+0x10/0x10
[ 3187.843993][ T3445]  ? __pfx_out_of_memory+0x10/0x10
[ 3187.849141][ T3445]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3187.854705][ T3445]  ? __pfx_lock_release+0x10/0x10
[ 3187.860093][ T3445]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3187.866172][ T3445]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3187.871382][ T3445]  ? mem_cgroup_iter+0x3e9/0x560
[ 3187.876368][ T3445]  try_charge_memcg+0xda2/0x18a0
[ 3187.881415][ T3445]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3187.886893][ T3445]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3187.892620][ T3445]  ? __pfx_lock_release+0x10/0x10
[ 3187.897653][ T3445]  ? memcg_account_kmem+0x1e7/0x210
[ 3187.902869][ T3445]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3187.908678][ T3445]  __memcg_kmem_charge_page+0xe1/0x250
[ 3187.914146][ T3445]  memcg_charge_kernel_stack+0x28a/0x550
[ 3187.919876][ T3445]  dup_task_struct+0x15d/0x7d0
[ 3187.924647][ T3445]  copy_process+0x5d5/0x3fc0
[ 3187.929329][ T3445]  ? __might_fault+0xa9/0x120
[ 3187.934005][ T3445]  ? __pfx_lock_release+0x10/0x10
[ 3187.939034][ T3445]  ? __pfx_copy_process+0x10/0x10
[ 3187.944056][ T3445]  ? __might_fault+0xc5/0x120
[ 3187.948732][ T3445]  ? __asan_memset+0x23/0x50
[ 3187.953329][ T3445]  kernel_clone+0x21d/0x8d0
[ 3187.957845][ T3445]  ? __pfx_kernel_clone+0x10/0x10
[ 3187.962881][ T3445]  __se_sys_clone3+0x2cb/0x350
[ 3187.967654][ T3445]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3187.972957][ T3445]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3187.978964][ T3445]  ? exc_page_fault+0x587/0x870
[ 3187.983903][ T3445]  ? do_syscall_64+0xb4/0x240
[ 3187.988668][ T3445]  do_syscall_64+0xf9/0x240
[ 3187.993258][ T3445]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 3187.999153][ T3445] RIP: 0033:0x7f5706ea9b99
[ 3188.003579][ T3445] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 3188.023366][ T3445] RSP: 002b:00007f57070cf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 3188.031865][ T3445] RAX: ffffffffffffffda RBX: 00007f5706e52270 RCX: 00007f5706ea9b99
[ 3188.039830][ T3445] RDX: 00007f5706e52270 RSI: 0000000000000058 RDI: 00007f57070cf960
[ 3188.047799][ T3445] RBP: 00007f5707c6c6c0 R08: 00007f5707c6c6c0 R09: 00007f57070cfa47
[ 3188.055872][ T3445] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 3188.063837][ T3445] R13: 000000000000000b R14: 00007f57070cf960 R15: 00007f57070cfa48
[ 3188.071827][ T3445]  </TASK>
[ 3188.152353][ T3445] memory: usage 307200kB, limit 307200kB, failcnt 89867
[ 3188.179115][ T3445] memory+swap: usage 307808kB, limit 9007199254740988kB, failcnt 0
[ 3188.202075][ T3445] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0
[ 3188.233030][ T3445] Memory cgroup stats for /syz2:
[ 3188.233177][ T3445] cache 0
01:27:50 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}, 0x1, 0x1000000}, 0x0)

[ 3188.250242][ T3455] __nla_validate_parse: 29 callbacks suppressed
[ 3188.250259][ T3455] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 3188.257102][ T3445] rss 12288
01:27:50 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0xa00000000000000}, 0x0)

01:27:50 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x44, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x14, 0x2, [@TCA_FLOW_EMATCHES={0x10, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100, 0x4888}}, @TCA_EMATCH_TREE_LIST={0x4}]}]}}]}, 0x44}}, 0x0)

[ 3188.298410][ T3445] rss_huge 0
[ 3188.308692][ T3445] shmem 0
[ 3188.320686][ T3445] mapped_file 0
[ 3188.346090][ T3445] dirty 0
[ 3188.356069][ T3445] writeback 0
[ 3188.371215][ T3445] workingset_refault_anon 31311
[ 3188.381852][ T3445] workingset_refault_file 171
[ 3188.392625][ T3445] swap 622592
[ 3188.399252][ T3445] swapcached 0
[ 3188.409278][ T3445] pgpgin 782493
[ 3188.420293][ T3445] pgpgout 782490
[ 3188.428864][ T3445] pgfault 1286144
[ 3188.437197][ T3445] pgmajfault 25977
01:27:50 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}, {0x0, 0xc00}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

[ 3188.446168][ T3463] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 3188.478991][ T3445] inactive_anon 0
[ 3188.482684][ T3445] active_anon 12288
[ 3188.492672][ T3445] inactive_file 0
[ 3188.519021][ T3445] active_file 0
[ 3188.522538][ T3445] unevictable 0
[ 3188.526020][ T3445] hierarchical_memory_limit 314572800
[ 3188.559008][ T3445] hierarchical_memsw_limit 9223372036854771712
[ 3188.565342][ T3445] total_cache 0
[ 3188.568826][ T3445] total_rss 12288
[ 3188.585311][ T3464] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 3188.602059][ T3445] total_rss_huge 0
[ 3188.611555][ T3445] total_shmem 0
[ 3188.629772][ T3445] total_mapped_file 0
[ 3188.646706][ T3445] total_dirty 0
[ 3188.657162][ T3445] total_writeback 0
[ 3188.675232][ T3445] total_workingset_refault_anon 31311
01:27:51 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}, 0x1, 0x2000000}, 0x0)

[ 3188.703570][ T3469] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 3188.709058][ T3445] total_workingset_refault_file 171
[ 3188.731488][ T3445] total_swap 622592
[ 3188.738817][ T3445] total_swapcached 0
01:27:51 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0xb00000000000000}, 0x0)

[ 3188.753221][ T3445] total_pgpgin 782493
[ 3188.765415][ T3445] total_pgpgout 782490
[ 3188.782952][ T3445] total_pgfault 1286144
[ 3188.811461][ T3445] total_pgmajfault 25977
[ 3188.816561][ T3445] total_inactive_anon 0
[ 3188.828978][ T3445] total_active_anon 12288
[ 3188.833363][ T3445] total_inactive_file 0
[ 3188.837632][ T3445] total_active_file 0
[ 3188.871444][ T3445] total_unevictable 0
[ 3188.875490][ T3445] anon_cost 0
[ 3188.878791][ T3445] file_cost 0
[ 3188.924140][ T3445] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=3445,uid=0
[ 3188.938137][ T3476] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
01:27:51 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}, {0x0, 0xf00}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

[ 3188.983883][ T3445] Memory cgroup out of memory: Killed process 3445 (syz-executor.2) total-vm:54508kB, anon-rss:0kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000
01:27:51 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}, 0x1, 0x3000000}, 0x0)

[ 3189.096500][ T3478] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'.
01:27:51 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {0x3}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}}, 0x0)

[ 3189.245096][ T3483] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
01:27:51 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0xc00000000000000}, 0x0)

01:27:51 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}, {0x0, 0x1100}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

[ 3189.421296][ T3488] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 3189.470399][ T5110] syz-executor.0 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[ 3189.494033][ T5110] CPU: 1 PID: 5110 Comm: syz-executor.0 Not tainted 6.8.0-rc5-syzkaller-00002-gfca7526b7d89 #0
[ 3189.504415][ T5110] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024
[ 3189.513670][ T3494] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 3189.514472][ T5110] Call Trace:
[ 3189.514484][ T5110]  <TASK>
[ 3189.514494][ T5110]  dump_stack_lvl+0x1e7/0x2e0
[ 3189.514530][ T5110]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3189.540030][ T5110]  ? __pfx__printk+0x10/0x10
[ 3189.544670][ T5110]  ? ___ratelimit+0x4c4/0x670
[ 3189.549395][ T5110]  ? __pfx____ratelimit+0x10/0x10
[ 3189.554468][ T5110]  dump_header+0xda/0x6a0
[ 3189.558824][ T5110]  oom_kill_process+0x3a7/0x930
[ 3189.563711][ T5110]  out_of_memory+0xf67/0x1320
[ 3189.568773][ T5110]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3189.574438][ T5110]  ? __pfx___mutex_lock+0x10/0x10
[ 3189.579504][ T5110]  ? __pfx_out_of_memory+0x10/0x10
[ 3189.584654][ T5110]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3189.590253][ T5110]  ? __pfx_lock_release+0x10/0x10
[ 3189.593610][ T3492] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 3189.595374][ T5110]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3189.595410][ T5110]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3189.595435][ T5110]  ? mem_cgroup_iter+0x422/0x560
[ 3189.621182][ T5110]  try_charge_memcg+0xda2/0x18a0
[ 3189.626174][ T5110]  ? mark_lock+0x9a/0x350
[ 3189.630814][ T5110]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3189.636333][ T5110]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 3189.642522][ T5110]  charge_memcg+0xa2/0x160
[ 3189.646964][ T5110]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 3189.653068][ T5110]  __read_swap_cache_async+0x480/0x8b0
[ 3189.658559][ T5110]  ? mark_lock+0x9a/0x350
[ 3189.662930][ T5110]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 3189.668959][ T5110]  ? blk_start_plug+0x6f/0x1b0
[ 3189.673772][ T5110]  swap_cluster_readahead+0x398/0x810
[ 3189.679187][ T5110]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 3189.685116][ T5110]  ? __pfx_lock_release+0x10/0x10
[ 3189.690176][ T5110]  ? xas_descend+0x37e/0x470
[ 3189.694817][ T5110]  swapin_readahead+0x1ea/0x1070
[ 3189.699780][ T5110]  ? filemap_get_entry+0x127/0x4e0
[ 3189.704934][ T5110]  ? __pfx_swapin_readahead+0x10/0x10
[ 3189.710345][ T5110]  ? __filemap_get_folio+0x935/0xbc0
[ 3189.715665][ T5110]  ? swap_cache_get_folio+0x9f/0x570
01:27:52 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}, {0x0, 0x1400}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

01:27:52 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0xf00000000000000}, 0x0)

[ 3189.721071][ T5110]  do_swap_page+0x8ab/0x3da0
[ 3189.725691][ T5110]  ? __pte_offset_map+0x2c4/0x380
[ 3189.730758][ T5110]  ? do_swap_page+0x154/0x3da0
[ 3189.735554][ T5110]  ? __pfx_do_swap_page+0x10/0x10
[ 3189.740615][ T5110]  ? pte_offset_map_nolock+0x137/0x1f0
[ 3189.746107][ T5110]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 3189.752151][ T5110]  ? __pfx_validate_chain+0x10/0x10
[ 3189.757388][ T5110]  __handle_mm_fault+0x15e8/0x72d0
[ 3189.762659][ T5110]  ? __pfx___handle_mm_fault+0x10/0x10
[ 3189.768152][ T5110]  ? mt_find+0x226/0x850
[ 3189.772418][ T5110]  ? __pfx_lock_release+0x10/0x10
[ 3189.777480][ T5110]  ? mt_find+0x62d/0x850
[ 3189.781745][ T5110]  ? mt_find+0x226/0x850
[ 3189.786048][ T5110]  ? find_vma+0x142/0x1c0
[ 3189.790675][ T5110]  ? __pfx_find_vma+0x10/0x10
[ 3189.795374][ T5110]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3189.801404][ T5110]  handle_mm_fault+0x3c1/0x8a0
[ 3189.806215][ T5110]  exc_page_fault+0x2ad/0x870
[ 3189.811015][ T5110]  asm_exc_page_fault+0x26/0x30
[ 3189.815925][ T5110] RIP: 0010:__get_user_8+0x11/0x20
01:27:52 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x1000000000000000}, 0x0)

[ 3189.821059][ T5110] Code: ca c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 89 c2 48 c1 fa 3f 48 09 d0 0f 01 cb <48> 8b 10 31 c0 0f 01 ca c3 cc cc cc cc 66 90 90 90 90 90 90 90 90
[ 3189.840778][ T5110] RSP: 0018:ffffc900042bfd78 EFLAGS: 00050202
[ 3189.846854][ T5110] RAX: 000055555603fda8 RBX: ffff888070bd1538 RCX: ffffc900042bfc03
[ 3189.854825][ T5110] RDX: 0000000000000000 RSI: ffffffff8baac7e0 RDI: ffffffff8bfe6da0
[ 3189.862805][ T5110] RBP: ffffc900042bfec0 R08: ffffffff8f85672f R09: 1ffffffff1f0ace5
[ 3189.870796][ T5110] R10: dffffc0000000000 R11: fffffbfff1f0ace6 R12: ffffc900042bfd80
[ 3189.878770][ T5110] R13: ffffc900042bffd8 R14: dffffc0000000000 R15: ffff888070bd0000
[ 3189.886854][ T5110]  __rseq_handle_notify_resume+0x158/0x1490
[ 3189.892777][ T5110]  ? __pfx___rseq_handle_notify_resume+0x10/0x10
[ 3189.899139][ T5110]  ? irqentry_exit_to_user_mode+0x52/0x280
[ 3189.904974][ T5110]  irqentry_exit_to_user_mode+0xbb/0x280
[ 3189.910611][ T5110]  exc_page_fault+0x587/0x870
[ 3189.915292][ T5110]  asm_exc_page_fault+0x26/0x30
[ 3189.920142][ T5110] RIP: 0033:0x7f5af4ea91b8
[ 3189.924557][ T5110] Code: 3c 24 48 89 4c 24 18 e8 f6 b9 ff ff 4c 8b 54 24 18 48 8b 54 24 10 41 89 c0 8b 74 24 0c 8b 3c 24 b8 e6 00 00 00 0f 05 44 89 c7 <48> 89 04 24 e8 4f ba ff ff 48 8b 04 24 48 83 c4 28 f7 d8 c3 0f 1f
[ 3189.944177][ T5110] RSP: 002b:00007f5af50cfcf0 EFLAGS: 00010293
[ 3189.950250][ T5110] RAX: 0000000000000000 RBX: 0000000000007d02 RCX: 00007f5af4ea91b5
[ 3189.958212][ T5110] RDX: 00007f5af50cfd30 RSI: 0000000000000000 RDI: 0000000000000000
[ 3189.966270][ T5110] RBP: 00007f5af50cfdbc R08: 0000000000000000 R09: 00007fff70ee90b0
[ 3189.974243][ T5110] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000032
[ 3189.982211][ T5110] R13: 000000000030a69a R14: 000000000030a69a R15: 0000000000000000
[ 3189.990197][ T5110]  </TASK>
01:27:52 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}, 0x1, 0x4000000}, 0x0)

[ 3190.094828][ T5110] memory: usage 307200kB, limit 307200kB, failcnt 41654
[ 3190.109249][ T5110] memory+swap: usage 307608kB, limit 9007199254740988kB, failcnt 0
[ 3190.117278][ T5110] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[ 3190.145958][ T5110] Memory cgroup stats for /syz0:
[ 3190.146102][ T5110] cache 0
[ 3190.176555][ T5110] rss 0
[ 3190.187596][ T5110] rss_huge 0
01:27:52 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x1100000000000000}, 0x0)

[ 3190.226319][ T5110] shmem 0
[ 3190.243163][ T5110] mapped_file 0
[ 3190.263191][ T5110] dirty 0
01:27:52 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}, {0x0, 0x1500}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

[ 3190.286272][ T5110] writeback 0
[ 3190.305456][ T5110] workingset_refault_anon 17024
[ 3190.336062][ T5110] workingset_refault_file 56
[ 3190.358026][ T5110] swap 417792
[ 3190.371292][ T5110] swapcached 0
[ 3190.384005][ T5110] pgpgin 796065
[ 3190.395613][ T5110] pgpgout 796065
01:27:52 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}, 0x1, 0x5000000}, 0x0)

[ 3190.411907][ T5110] pgfault 1284276
[ 3190.423255][ T5110] pgmajfault 15936
[ 3190.434562][ T5110] inactive_anon 0
01:27:52 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x1400000000000000}, 0x0)

[ 3190.460407][ T5110] active_anon 0
[ 3190.472070][ T5110] inactive_file 0
[ 3190.482453][ T5110] active_file 0
[ 3190.495789][ T5110] unevictable 0
[ 3190.505422][ T5110] hierarchical_memory_limit 314572800
[ 3190.515848][ T5110] hierarchical_memsw_limit 9223372036854771712
[ 3190.536338][ T5110] total_cache 0
[ 3190.546775][ T5110] total_rss 0
[ 3190.560282][ T5110] total_rss_huge 0
[ 3190.567500][ T5110] total_shmem 0
[ 3190.574812][ T5110] total_mapped_file 0
[ 3190.580385][ T5110] total_dirty 0
[ 3190.583949][ T5110] total_writeback 0
[ 3190.587837][ T5110] total_workingset_refault_anon 17024
01:27:53 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}, 0x1, 0x6000000}, 0x0)

[ 3190.619000][ T5110] total_workingset_refault_file 56
01:27:53 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}, {0x0, 0x2000}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

[ 3190.640552][ T5110] total_swap 417792
[ 3190.653638][ T5110] total_swapcached 0
[ 3190.657586][ T5110] total_pgpgin 796065
[ 3190.677038][ T5110] total_pgpgout 796065
[ 3190.689188][ T5110] total_pgfault 1284276
[ 3190.693407][ T5110] total_pgmajfault 15936
[ 3190.697664][ T5110] total_inactive_anon 0
[ 3190.716932][ T5110] total_active_anon 0
[ 3190.721451][ T5110] total_inactive_file 0
[ 3190.725717][ T5110] total_active_file 0
[ 3190.734018][ T5110] total_unevictable 0
[ 3190.741465][ T5110] anon_cost 0
[ 3190.749312][ T5110] file_cost 0
[ 3190.754937][ T5110] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=3462,uid=0
[ 3190.777845][ T5110] Memory cgroup out of memory: Killed process 3462 (syz-executor.0) total-vm:54640kB, anon-rss:0kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000
01:27:53 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x1500000000000000}, 0x0)

01:27:53 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x44, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x14, 0x2, [@TCA_FLOW_EMATCHES={0x10, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100, 0x5865}}, @TCA_EMATCH_TREE_LIST={0x4}]}]}}]}, 0x44}}, 0x0)

01:27:53 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}, 0x1, 0x7000000}, 0x0)

01:27:53 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}, {0x0, 0x2400}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

[ 3191.081311][ T5104] syz-executor.2 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[ 3191.107645][ T5104] CPU: 1 PID: 5104 Comm: syz-executor.2 Not tainted 6.8.0-rc5-syzkaller-00002-gfca7526b7d89 #0
[ 3191.118024][ T5104] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024
[ 3191.128096][ T5104] Call Trace:
[ 3191.131393][ T5104]  <TASK>
[ 3191.134326][ T5104]  dump_stack_lvl+0x1e7/0x2e0
[ 3191.139011][ T5104]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3191.144204][ T5104]  ? __pfx__printk+0x10/0x10
[ 3191.148873][ T5104]  ? ___ratelimit+0x4c4/0x670
[ 3191.153550][ T5104]  ? __pfx____ratelimit+0x10/0x10
[ 3191.158572][ T5104]  dump_header+0xda/0x6a0
[ 3191.162907][ T5104]  oom_kill_process+0x3a7/0x930
[ 3191.167845][ T5104]  out_of_memory+0xf67/0x1320
[ 3191.172521][ T5104]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3191.178150][ T5104]  ? __pfx___mutex_lock+0x10/0x10
[ 3191.183172][ T5104]  ? __pfx_out_of_memory+0x10/0x10
[ 3191.188281][ T5104]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3191.193821][ T5104]  ? __pfx_lock_release+0x10/0x10
[ 3191.198843][ T5104]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3191.204909][ T5104]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3191.210112][ T5104]  ? mem_cgroup_iter+0x3e9/0x560
[ 3191.215050][ T5104]  try_charge_memcg+0xda2/0x18a0
[ 3191.219996][ T5104]  ? mark_lock+0x9a/0x350
[ 3191.224347][ T5104]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3191.229745][ T5104]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 3191.235899][ T5104]  charge_memcg+0xa2/0x160
[ 3191.240323][ T5104]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 3191.246385][ T5104]  __read_swap_cache_async+0x480/0x8b0
[ 3191.251844][ T5104]  ? mark_lock+0x9a/0x350
[ 3191.256174][ T5104]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 3191.262161][ T5104]  swap_cluster_readahead+0x67c/0x810
[ 3191.267549][ T5104]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 3191.273462][ T5104]  ? __pfx_lock_release+0x10/0x10
[ 3191.278509][ T5104]  ? xas_descend+0x37e/0x470
[ 3191.283126][ T5104]  swapin_readahead+0x1ea/0x1070
[ 3191.288076][ T5104]  ? filemap_get_entry+0x127/0x4e0
[ 3191.293210][ T5104]  ? __pfx_swapin_readahead+0x10/0x10
[ 3191.298684][ T5104]  ? __filemap_get_folio+0x935/0xbc0
[ 3191.303985][ T5104]  ? swap_cache_get_folio+0x9f/0x570
[ 3191.309294][ T5104]  do_swap_page+0x8ab/0x3da0
[ 3191.313886][ T5104]  ? __pte_offset_map+0x2c4/0x380
[ 3191.318924][ T5104]  ? do_swap_page+0x154/0x3da0
[ 3191.323696][ T5104]  ? __pfx_do_swap_page+0x10/0x10
[ 3191.328718][ T5104]  ? pte_offset_map_nolock+0x137/0x1f0
[ 3191.334179][ T5104]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 3191.340442][ T5104]  __handle_mm_fault+0x15e8/0x72d0
[ 3191.345589][ T5104]  ? reacquire_held_locks+0x3eb/0x690
[ 3191.350984][ T5104]  ? __pfx___handle_mm_fault+0x10/0x10
[ 3191.356462][ T5104]  ? __pfx_reacquire_held_locks+0x10/0x10
[ 3191.362204][ T5104]  ? mtree_range_walk+0x6fd/0x8e0
[ 3191.367237][ T5104]  ? lock_vma_under_rcu+0x18a/0x730
[ 3191.372443][ T5104]  ? __pfx_lock_release+0x10/0x10
[ 3191.377474][ T5104]  ? lock_vma_under_rcu+0x2f9/0x730
[ 3191.382701][ T5104]  ? lock_vma_under_rcu+0x18a/0x730
[ 3191.387898][ T5104]  ? __pfx_lock_vma_under_rcu+0x10/0x10
[ 3191.393444][ T5104]  handle_mm_fault+0x3c1/0x8a0
[ 3191.398217][ T5104]  exc_page_fault+0x456/0x870
[ 3191.402916][ T5104]  asm_exc_page_fault+0x26/0x30
[ 3191.407785][ T5104] RIP: 0033:0x7f5706ea4c20
[ 3191.412205][ T5104] Code: 48 8b 3c 25 00 03 00 00 e8 1d 13 00 00 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 83 e7 02 74 0b c3 66 2e 0f 1f 84 00 00 00 00 00 <64> 48 8b 04 25 10 00 00 00 8b 90 08 03 00 00 48 8d b8 08 03 00 00
[ 3191.431904][ T5104] RSP: 002b:00007f57070cfce8 EFLAGS: 00010246
[ 3191.437971][ T5104] RAX: 0000000000000000 RBX: 0000000000006d11 RCX: 00007f5706ea91b5
[ 3191.445937][ T5104] RDX: 00007f57070cfd30 RSI: 0000000000000000 RDI: 0000000000000000
[ 3191.453904][ T5104] RBP: 00007f57070cfdbc R08: 0000000000000000 R09: 00007ffeb39ee0b0
[ 3191.461871][ T5104] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000032
[ 3191.469840][ T5104] R13: 000000000030aa0a R14: 000000000030aa0a R15: 0000000000000000
[ 3191.477992][ T5104]  </TASK>
01:27:53 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}, 0x1, 0x8000000}, 0x0)

01:27:53 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x2000000000000000}, 0x0)

[ 3191.515761][ T5104] memory: usage 307180kB, limit 307200kB, failcnt 90190
01:27:54 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}, {0x0, 0x2800}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

[ 3191.578419][ T5104] memory+swap: usage 307764kB, limit 9007199254740988kB, failcnt 0
[ 3191.588917][ T5104] kmem: usage 307180kB, limit 9007199254740988kB, failcnt 0
[ 3191.596491][ T5104] Memory cgroup stats for /syz2:
[ 3191.596629][ T5104] cache 0
[ 3191.614242][ T5104] rss 0
[ 3191.617144][ T5104] rss_huge 0
[ 3191.620746][ T5104] shmem 0
[ 3191.623713][ T5104] mapped_file 0
01:27:54 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}, 0x1, 0x9000000}, 0x0)

[ 3191.627495][ T5104] dirty 0
[ 3191.633295][ T5104] writeback 0
[ 3191.636879][ T5104] workingset_refault_anon 31389
[ 3191.643476][ T5104] workingset_refault_file 171
[ 3191.648180][ T5104] swap 593920
[ 3191.656362][ T5104] swapcached 4096
[ 3191.661093][ T5104] pgpgin 782598
[ 3191.664590][ T5104] pgpgout 782597
[ 3191.668154][ T5104] pgfault 1286295
[ 3191.674700][ T5104] pgmajfault 26056
[ 3191.678451][ T5104] inactive_anon 0
[ 3191.682785][ T5104] active_anon 0
[ 3191.686271][ T5104] inactive_file 0
[ 3191.690699][ T5104] active_file 0
[ 3191.695154][ T5104] unevictable 0
[ 3191.698640][ T5104] hierarchical_memory_limit 314572800
[ 3191.709283][ T5104] hierarchical_memsw_limit 9223372036854771712
[ 3191.716254][ T5104] total_cache 0
[ 3191.720293][ T5104] total_rss 0
[ 3191.724059][ T5104] total_rss_huge 0
[ 3191.727803][ T5104] total_shmem 0
[ 3191.734984][ T5104] total_mapped_file 0
[ 3191.739416][ T5104] total_dirty 0
[ 3191.742911][ T5104] total_writeback 0
[ 3191.746741][ T5104] total_workingset_refault_anon 31389
[ 3191.752794][ T5104] total_workingset_refault_file 171
[ 3191.758030][ T5104] total_swap 593920
[ 3191.769483][ T5104] total_swapcached 4096
[ 3191.773679][ T5104] total_pgpgin 782598
[ 3191.777680][ T5104] total_pgpgout 782597
[ 3191.788166][ T5104] total_pgfault 1286295
[ 3191.795978][ T5104] total_pgmajfault 26056
[ 3191.802565][ T5104] total_inactive_anon 0
[ 3191.808408][ T5104] total_active_anon 0
[ 3191.815159][ T5104] total_inactive_file 0
[ 3191.823667][ T5104] total_active_file 0
01:27:54 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}, {0x0, 0x4788}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

01:27:54 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x6000000000000000}, 0x0)

01:27:54 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}, 0x1, 0xa000000}, 0x0)

[ 3191.827904][ T5104] total_unevictable 0
[ 3191.836250][ T5104] anon_cost 0
[ 3191.848275][ T5104] file_cost 0
[ 3191.852445][ T5104] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=3487,uid=0
01:27:54 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {0x4}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}}, 0x0)

[ 3191.869601][ T5104] Memory cgroup out of memory: Killed process 3487 (syz-executor.2) total-vm:54508kB, anon-rss:0kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000
[ 3191.898396][ T3530] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3191.944007][ T3530] CPU: 1 PID: 3530 Comm: syz-executor.0 Not tainted 6.8.0-rc5-syzkaller-00002-gfca7526b7d89 #0
[ 3191.954394][ T3530] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024
[ 3191.964471][ T3530] Call Trace:
[ 3191.967799][ T3530]  <TASK>
[ 3191.970759][ T3530]  dump_stack_lvl+0x1e7/0x2e0
[ 3191.975459][ T3530]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3191.980698][ T3530]  ? __pfx__printk+0x10/0x10
[ 3191.985314][ T3530]  ? ___ratelimit+0x4c4/0x670
01:27:54 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}, {0x0, 0x4888}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

[ 3191.990031][ T3530]  ? __pfx____ratelimit+0x10/0x10
[ 3191.995094][ T3530]  dump_header+0xda/0x6a0
[ 3191.999464][ T3530]  oom_kill_process+0x3a7/0x930
[ 3192.004356][ T3530]  out_of_memory+0xf67/0x1320
[ 3192.009062][ T3530]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3192.015427][ T3530]  ? __pfx___mutex_lock+0x10/0x10
[ 3192.020502][ T3530]  ? __pfx_out_of_memory+0x10/0x10
[ 3192.025656][ T3530]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3192.031234][ T3530]  ? __pfx_lock_release+0x10/0x10
[ 3192.036295][ T3530]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3192.042394][ T3530]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3192.047797][ T3530]  ? mem_cgroup_iter+0x422/0x560
[ 3192.052783][ T3530]  try_charge_memcg+0xda2/0x18a0
[ 3192.057782][ T3530]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3192.063185][ T3530]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3192.068939][ T3530]  ? __pfx_lock_release+0x10/0x10
[ 3192.073999][ T3530]  ? memcg_account_kmem+0x1e7/0x210
[ 3192.079239][ T3530]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3192.085061][ T3530]  __memcg_kmem_charge_page+0xe1/0x250
[ 3192.090551][ T3530]  memcg_charge_kernel_stack+0x37e/0x550
[ 3192.096221][ T3530]  dup_task_struct+0x40d/0x7d0
[ 3192.101017][ T3530]  copy_process+0x5d5/0x3fc0
[ 3192.105645][ T3530]  ? __might_fault+0xa9/0x120
[ 3192.110351][ T3530]  ? __pfx_lock_release+0x10/0x10
[ 3192.115412][ T3530]  ? __pfx_copy_process+0x10/0x10
[ 3192.120466][ T3530]  ? __might_fault+0xc5/0x120
[ 3192.125176][ T3530]  ? __asan_memset+0x23/0x50
[ 3192.129777][ T3530]  kernel_clone+0x21d/0x8d0
[ 3192.134299][ T3530]  ? __pfx_kernel_clone+0x10/0x10
[ 3192.139524][ T3530]  __se_sys_clone3+0x2cb/0x350
[ 3192.144294][ T3530]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3192.149603][ T3530]  ? do_syscall_64+0x108/0x240
[ 3192.154371][ T3530]  ? do_syscall_64+0xb4/0x240
[ 3192.159053][ T3530]  do_syscall_64+0xf9/0x240
[ 3192.163681][ T3530]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 3192.169572][ T3530] RIP: 0033:0x7f5af4ea9b99
[ 3192.173990][ T3530] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 3192.193590][ T3530] RSP: 002b:00007f5af50cf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 3192.201999][ T3530] RAX: ffffffffffffffda RBX: 00007f5af4e52270 RCX: 00007f5af4ea9b99
[ 3192.209964][ T3530] RDX: 00007f5af4e52270 RSI: 0000000000000058 RDI: 00007f5af50cf960
[ 3192.217925][ T3530] RBP: 00007f5af5c196c0 R08: 00007f5af5c196c0 R09: 00007f5af50cfa47
[ 3192.225900][ T3530] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 3192.233873][ T3530] R13: 000000000000000b R14: 00007f5af50cf960 R15: 00007f5af50cfa48
[ 3192.241867][ T3530]  </TASK>
01:27:54 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x624551bf00000000}, 0x0)

01:27:54 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}, 0x1, 0xb000000}, 0x0)

[ 3192.246946][ T3530] memory: usage 307200kB, limit 307200kB, failcnt 41794
[ 3192.254274][ T3530] memory+swap: usage 307584kB, limit 9007199254740988kB, failcnt 0
[ 3192.262856][ T3530] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0
[ 3192.280513][ T3530] Memory cgroup stats for /syz0:
[ 3192.280645][ T3530] cache 0
[ 3192.295992][ T3530] rss 12288
[ 3192.308506][ T3530] rss_huge 0
[ 3192.323331][ T3530] shmem 0
[ 3192.339741][ T3530] mapped_file 0
01:27:54 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}, {0x0, 0x5865}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

[ 3192.356304][ T3530] dirty 0
[ 3192.363945][ T3530] writeback 0
[ 3192.371920][ T3530] workingset_refault_anon 17050
[ 3192.383893][ T3530] workingset_refault_file 56
[ 3192.395703][ T3530] swap 393216
[ 3192.412498][ T3530] swapcached 0
[ 3192.420532][ T3530] pgpgin 796120
[ 3192.427333][ T3530] pgpgout 796117
[ 3192.436073][ T3530] pgfault 1284372
[ 3192.445739][ T3530] pgmajfault 15978
[ 3192.457288][ T3530] inactive_anon 12288
01:27:54 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x6558000000000000}, 0x0)

[ 3192.467539][ T3530] active_anon 0
[ 3192.475804][ T3530] inactive_file 0
[ 3192.485211][ T3530] active_file 0
[ 3192.496220][ T3530] unevictable 0
[ 3192.505792][ T3530] hierarchical_memory_limit 314572800
01:27:54 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}, 0x1, 0xc000000}, 0x0)

[ 3192.518001][ T3530] hierarchical_memsw_limit 9223372036854771712
[ 3192.530800][ T3530] total_cache 0
[ 3192.534452][ T3530] total_rss 12288
[ 3192.538352][ T3530] total_rss_huge 0
[ 3192.544149][ T3530] total_shmem 0
01:27:54 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}, {0x0, 0x6000}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

[ 3192.580789][ T3530] total_mapped_file 0
[ 3192.584975][ T3530] total_dirty 0
[ 3192.595624][ T3530] total_writeback 0
[ 3192.600416][ T3530] total_workingset_refault_anon 17050
[ 3192.608327][ T3530] total_workingset_refault_file 56
[ 3192.619110][ T3530] total_swap 393216
01:27:55 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x8100000000000000}, 0x0)

[ 3192.628658][ T3530] total_swapcached 0
[ 3192.637953][ T3530] total_pgpgin 796120
[ 3192.645536][ T3530] total_pgpgout 796117
[ 3192.650204][ T3530] total_pgfault 1284372
[ 3192.655183][ T3530] total_pgmajfault 15978
[ 3192.660254][ T3530] total_inactive_anon 12288
[ 3192.665453][ T3530] total_active_anon 0
[ 3192.670658][ T3530] total_inactive_file 0
[ 3192.679634][ T3530] total_active_file 0
[ 3192.683728][ T3530] total_unevictable 0
[ 3192.693080][ T3530] anon_cost 0
[ 3192.696941][ T3530] file_cost 0
[ 3192.704422][ T3530] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=3530,uid=0
01:27:55 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}, {0x0, 0x6558}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

[ 3192.725190][ T3530] Memory cgroup out of memory: Killed process 3530 (syz-executor.0) total-vm:54508kB, anon-rss:0kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000
[ 3192.742928][ T3559] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3192.768231][ T3559] CPU: 0 PID: 3559 Comm: syz-executor.2 Not tainted 6.8.0-rc5-syzkaller-00002-gfca7526b7d89 #0
[ 3192.778615][ T3559] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024
[ 3192.788699][ T3559] Call Trace:
[ 3192.792010][ T3559]  <TASK>
[ 3192.794963][ T3559]  dump_stack_lvl+0x1e7/0x2e0
[ 3192.799675][ T3559]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3192.805152][ T3559]  ? __pfx__printk+0x10/0x10
[ 3192.809781][ T3559]  ? ___ratelimit+0x4c4/0x670
[ 3192.814494][ T3559]  ? __pfx____ratelimit+0x10/0x10
[ 3192.819546][ T3559]  dump_header+0xda/0x6a0
[ 3192.823897][ T3559]  oom_kill_process+0x3a7/0x930
[ 3192.828838][ T3559]  out_of_memory+0xf67/0x1320
[ 3192.833518][ T3559]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3192.839158][ T3559]  ? __pfx___mutex_lock+0x10/0x10
[ 3192.844244][ T3559]  ? __pfx_out_of_memory+0x10/0x10
[ 3192.849376][ T3559]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3192.854930][ T3559]  ? __pfx_lock_release+0x10/0x10
[ 3192.859966][ T3559]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3192.866048][ T3559]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3192.871259][ T3559]  ? mem_cgroup_iter+0x3e9/0x560
[ 3192.876205][ T3559]  try_charge_memcg+0xda2/0x18a0
[ 3192.881159][ T3559]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3192.886545][ T3559]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3192.892292][ T3559]  ? __pfx_lock_release+0x10/0x10
[ 3192.897337][ T3559]  ? memcg_account_kmem+0x1e7/0x210
[ 3192.902558][ T3559]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3192.908386][ T3559]  __memcg_kmem_charge_page+0xe1/0x250
[ 3192.913873][ T3559]  memcg_charge_kernel_stack+0x3f8/0x550
[ 3192.919609][ T3559]  dup_task_struct+0x15d/0x7d0
[ 3192.924390][ T3559]  copy_process+0x5d5/0x3fc0
[ 3192.929081][ T3559]  ? __might_fault+0xa9/0x120
[ 3192.933758][ T3559]  ? __pfx_lock_release+0x10/0x10
[ 3192.938786][ T3559]  ? __lock_acquire+0x1345/0x1fd0
[ 3192.943810][ T3559]  ? __pfx_copy_process+0x10/0x10
[ 3192.948828][ T3559]  ? __might_fault+0xc5/0x120
[ 3192.953509][ T3559]  ? __asan_memset+0x23/0x50
[ 3192.958200][ T3559]  kernel_clone+0x21d/0x8d0
[ 3192.962710][ T3559]  ? __pfx_kernel_clone+0x10/0x10
[ 3192.967824][ T3559]  ? __pfx_lock_release+0x10/0x10
[ 3192.972863][ T3559]  __se_sys_clone3+0x2cb/0x350
[ 3192.977641][ T3559]  ? __might_fault+0xa9/0x120
[ 3192.982322][ T3559]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3192.987601][ T3559]  ? rcu_is_watching+0x15/0xb0
[ 3192.992376][ T3559]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3192.998361][ T3559]  ? exc_page_fault+0x587/0x870
[ 3193.003217][ T3559]  ? do_syscall_64+0xb4/0x240
[ 3193.007892][ T3559]  do_syscall_64+0xf9/0x240
[ 3193.012402][ T3559]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 3193.018294][ T3559] RIP: 0033:0x7f5706ea9b99
[ 3193.022794][ T3559] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 3193.042394][ T3559] RSP: 002b:00007f57070cf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 3193.050808][ T3559] RAX: ffffffffffffffda RBX: 00007f5706e52270 RCX: 00007f5706ea9b99
[ 3193.058776][ T3559] RDX: 00007f5706e52270 RSI: 0000000000000058 RDI: 00007f57070cf960
[ 3193.066742][ T3559] RBP: 00007f5707c6c6c0 R08: 00007f5707c6c6c0 R09: 00007f57070cfa47
[ 3193.074713][ T3559] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 3193.082679][ T3559] R13: 000000000000000b R14: 00007f57070cf960 R15: 00007f57070cfa48
[ 3193.090659][ T3559]  </TASK>
[ 3193.109047][ T3559] memory: usage 307200kB, limit 307200kB, failcnt 90375
[ 3193.116042][ T3559] memory+swap: usage 307784kB, limit 9007199254740988kB, failcnt 0
01:27:55 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x44, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x14, 0x2, [@TCA_FLOW_EMATCHES={0x10, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100, 0x6000}}, @TCA_EMATCH_TREE_LIST={0x4}]}]}}]}, 0x44}}, 0x0)

01:27:55 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x8847000000000000}, 0x0)

01:27:55 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}, 0x1, 0xf000000}, 0x0)

[ 3193.149128][ T3559] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[ 3193.156464][ T3559] Memory cgroup stats for /syz2:
[ 3193.156602][ T3559] cache 0
[ 3193.204458][ T3559] rss 0
[ 3193.219183][ T3559] rss_huge 0
[ 3193.227188][ T3559] shmem 0
[ 3193.231428][ T3559] mapped_file 0
[ 3193.243998][ T3559] dirty 0
[ 3193.258589][ T3559] writeback 0
[ 3193.269078][ T3559] workingset_refault_anon 31443
[ 3193.280859][ T3559] workingset_refault_file 171
[ 3193.287410][ T3588] __nla_validate_parse: 30 callbacks suppressed
[ 3193.287427][ T3588] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
01:27:55 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}, {0x0, 0x8100}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

[ 3193.306866][ T3559] swap 598016
[ 3193.314671][ T3559] swapcached 0
[ 3193.321812][ T3559] pgpgin 782668
[ 3193.329535][ T3559] pgpgout 782668
[ 3193.339656][ T3559] pgfault 1286412
[ 3193.347270][ T3559] pgmajfault 26115
[ 3193.354848][ T3559] inactive_anon 0
01:27:55 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x8848000000000000}, 0x0)

[ 3193.364690][ T3559] active_anon 0
[ 3193.381422][ T3559] inactive_file 0
[ 3193.390275][ T3559] active_file 0
[ 3193.397987][ T3559] unevictable 0
[ 3193.403491][ T3559] hierarchical_memory_limit 314572800
01:27:55 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}, 0x1, 0x10000000}, 0x0)

[ 3193.412921][ T3559] hierarchical_memsw_limit 9223372036854771712
[ 3193.422027][ T3559] total_cache 0
[ 3193.425860][ T3559] total_rss 0
[ 3193.433868][ T3559] total_rss_huge 0
[ 3193.440231][ T3591] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 3193.455258][ T3559] total_shmem 0
[ 3193.466251][ T3559] total_mapped_file 0
[ 3193.482653][ T3559] total_dirty 0
[ 3193.492921][ T3559] total_writeback 0
[ 3193.496813][ T3594] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 3193.504759][ T3559] total_workingset_refault_anon 31443
01:27:55 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}, {0x0, 0x8847}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

[ 3193.516201][ T3559] total_workingset_refault_file 171
[ 3193.523155][ T3559] total_swap 598016
[ 3193.527184][ T3559] total_swapcached 0
[ 3193.534113][ T3559] total_pgpgin 782668
[ 3193.538244][ T3559] total_pgpgout 782668
[ 3193.543658][ T3597] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 3193.548148][ T3559] total_pgfault 1286412
[ 3193.562635][ T3559] total_pgmajfault 26115
01:27:56 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x88a8ffff00000000}, 0x0)

[ 3193.575918][ T3559] total_inactive_anon 0
[ 3193.586834][ T3559] total_active_anon 0
[ 3193.593443][ T3559] total_inactive_file 0
[ 3193.613490][ T3559] total_active_file 0
[ 3193.620972][ T3559] total_unevictable 0
01:27:56 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}, 0x1, 0x11000000}, 0x0)

[ 3193.627834][ T3559] anon_cost 0
[ 3193.638330][ T3559] file_cost 0
[ 3193.651468][ T3559] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=3559,uid=0
[ 3193.675383][ T3602] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 3193.677517][ T3559] Memory cgroup out of memory: Killed process 3559 (syz-executor.2) total-vm:54508kB, anon-rss:0kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000
[ 3193.714659][ T3584] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3193.731029][ T3584] CPU: 1 PID: 3584 Comm: syz-executor.0 Not tainted 6.8.0-rc5-syzkaller-00002-gfca7526b7d89 #0
[ 3193.741399][ T3584] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024
[ 3193.751588][ T3584] Call Trace:
[ 3193.754894][ T3584]  <TASK>
[ 3193.757857][ T3584]  dump_stack_lvl+0x1e7/0x2e0
[ 3193.762595][ T3584]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3193.767829][ T3584]  ? __pfx__printk+0x10/0x10
[ 3193.772445][ T3584]  ? ___ratelimit+0x4c4/0x670
01:27:56 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}, {0x0, 0x8848}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

[ 3193.777162][ T3584]  ? __pfx____ratelimit+0x10/0x10
[ 3193.777348][ T3606] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 3193.782199][ T3584]  dump_header+0xda/0x6a0
[ 3193.782235][ T3584]  oom_kill_process+0x3a7/0x930
[ 3193.782260][ T3584]  out_of_memory+0xf67/0x1320
[ 3193.782286][ T3584]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3193.782309][ T3584]  ? __pfx___mutex_lock+0x10/0x10
[ 3193.782338][ T3584]  ? __pfx_out_of_memory+0x10/0x10
[ 3193.782368][ T3584]  mem_cgroup_out_of_memory+0x263/0x3b0
01:27:56 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {0x5}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}}, 0x0)

[ 3193.782389][ T3584]  ? __pfx_lock_release+0x10/0x10
[ 3193.782413][ T3584]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3193.782438][ T3584]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3193.782462][ T3584]  ? mem_cgroup_iter+0x422/0x560
[ 3193.782490][ T3584]  try_charge_memcg+0xda2/0x18a0
[ 3193.782537][ T3584]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3193.782557][ T3584]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3193.782579][ T3584]  ? __pfx_lock_release+0x10/0x10
[ 3193.782604][ T3584]  ? memcg_account_kmem+0x1e7/0x210
[ 3193.782639][ T3584]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3193.782663][ T3584]  __memcg_kmem_charge_page+0xe1/0x250
[ 3193.782689][ T3584]  memcg_charge_kernel_stack+0x37e/0x550
[ 3193.782713][ T3584]  dup_task_struct+0x40d/0x7d0
[ 3193.782734][ T3584]  copy_process+0x5d5/0x3fc0
[ 3193.782768][ T3584]  ? __might_fault+0xa9/0x120
[ 3193.782790][ T3584]  ? __pfx_lock_release+0x10/0x10
[ 3193.782822][ T3584]  ? __pfx_copy_process+0x10/0x10
[ 3193.782840][ T3584]  ? __might_fault+0xc5/0x120
[ 3193.782866][ T3584]  ? __asan_memset+0x23/0x50
[ 3193.782894][ T3584]  kernel_clone+0x21d/0x8d0
[ 3193.782925][ T3584]  ? __pfx_kernel_clone+0x10/0x10
[ 3193.782965][ T3584]  __se_sys_clone3+0x2cb/0x350
[ 3193.782989][ T3584]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3193.783041][ T3584]  ? do_syscall_64+0x108/0x240
[ 3193.783070][ T3584]  ? do_syscall_64+0xb4/0x240
[ 3193.783094][ T3584]  do_syscall_64+0xf9/0x240
[ 3193.783124][ T3584]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 3193.783150][ T3584] RIP: 0033:0x7f5af4ea9b99
[ 3193.783168][ T3584] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 3193.783185][ T3584] RSP: 002b:00007f5af50cf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 3193.783208][ T3584] RAX: ffffffffffffffda RBX: 00007f5af4e52270 RCX: 00007f5af4ea9b99
[ 3193.783224][ T3584] RDX: 00007f5af4e52270 RSI: 0000000000000058 RDI: 00007f5af50cf960
[ 3193.783238][ T3584] RBP: 00007f5af5c196c0 R08: 00007f5af5c196c0 R09: 00007f5af50cfa47
01:27:56 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0xf0ffffff00000000}, 0x0)

[ 3193.783252][ T3584] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 3193.783265][ T3584] R13: 000000000000000b R14: 00007f5af50cf960 R15: 00007f5af50cfa48
[ 3193.783294][ T3584]  </TASK>
[ 3193.800124][ T3584] memory: usage 307200kB, limit 307200kB, failcnt 41955
[ 3194.003787][ T3611] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 3194.019699][ T3584] memory+swap: usage 307584kB, limit 9007199254740988kB, failcnt 0
[ 3194.071205][ T3584] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0
[ 3194.078703][ T3584] Memory cgroup stats for /syz0:
[ 3194.078837][ T3584] cache 0
[ 3194.086939][ T3584] rss 12288
[ 3194.091430][ T3584] rss_huge 0
[ 3194.094652][ T3584] shmem 0
[ 3194.097599][ T3584] mapped_file 0
[ 3194.101160][ T3584] dirty 0
[ 3194.104115][ T3584] writeback 0
[ 3194.107398][ T3584] workingset_refault_anon 17106
[ 3194.112343][ T3584] workingset_refault_file 56
[ 3194.116940][ T3584] swap 430080
01:27:56 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x4}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

[ 3194.144816][ T3584] swapcached 0
[ 3194.164469][ T3584] pgpgin 796188
[ 3194.169852][ T3615] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 3194.176029][ T3584] pgpgout 796185
01:27:56 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}, 0x1, 0x14000000}, 0x0)

[ 3194.191830][ T3584] pgfault 1284480
[ 3194.214045][ T3584] pgmajfault 16026
[ 3194.221041][ T3584] inactive_anon 12288
[ 3194.228614][ T3584] active_anon 0
[ 3194.237729][ T3584] inactive_file 0
[ 3194.246346][ T3584] active_file 0
[ 3194.250140][ T3584] unevictable 0
[ 3194.254839][ T3619] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 3194.255001][ T3584] hierarchical_memory_limit 314572800
[ 3194.270131][ T3584] hierarchical_memsw_limit 9223372036854771712
[ 3194.276522][ T3584] total_cache 0
[ 3194.280459][ T3584] total_rss 12288
[ 3194.284364][ T3584] total_rss_huge 0
[ 3194.288348][ T3584] total_shmem 0
[ 3194.293365][ T3584] total_mapped_file 0
[ 3194.297616][ T3584] total_dirty 0
[ 3194.301615][ T3584] total_writeback 0
[ 3194.306871][ T3584] total_workingset_refault_anon 17106
[ 3194.312842][ T3584] total_workingset_refault_file 56
[ 3194.315062][ T3618] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 3194.318214][ T3584] total_swap 430080
[ 3194.331708][ T3584] total_swapcached 0
[ 3194.335894][ T3584] total_pgpgin 796188
[ 3194.340205][ T3584] total_pgpgout 796185
[ 3194.344550][ T3584] total_pgfault 1284480
[ 3194.349229][ T3584] total_pgmajfault 16026
[ 3194.353726][ T3584] total_inactive_anon 12288
[ 3194.358553][ T3584] total_active_anon 0
[ 3194.368913][ T3584] total_inactive_file 0
[ 3194.373874][ T3584] total_active_file 0
[ 3194.378082][ T3584] total_unevictable 0
[ 3194.383415][ T3584] anon_cost 0
[ 3194.386727][ T3584] file_cost 0
01:27:56 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}, 0x1, 0x15000000}, 0x0)

01:27:56 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0xffffff7f00000000}, 0x0)

01:27:56 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x17}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

[ 3194.404667][ T3584] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=3584,uid=0
[ 3194.430935][ T3584] Memory cgroup out of memory: Killed process 3584 (syz-executor.0) total-vm:54508kB, anon-rss:0kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000
01:27:56 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x44, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x14, 0x2, [@TCA_FLOW_EMATCHES={0x10, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100, 0x6558}}, @TCA_EMATCH_TREE_LIST={0x4}]}]}}]}, 0x44}}, 0x0)

[ 3194.560431][ T3627] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3194.586968][ T3627] CPU: 0 PID: 3627 Comm: syz-executor.2 Not tainted 6.8.0-rc5-syzkaller-00002-gfca7526b7d89 #0
[ 3194.597348][ T3627] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024
[ 3194.607428][ T3627] Call Trace:
[ 3194.610726][ T3627]  <TASK>
[ 3194.613678][ T3627]  dump_stack_lvl+0x1e7/0x2e0
[ 3194.618478][ T3627]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3194.623798][ T3627]  ? __pfx__printk+0x10/0x10
[ 3194.628408][ T3627]  ? ___ratelimit+0x4c4/0x670
[ 3194.633113][ T3627]  ? __pfx____ratelimit+0x10/0x10
[ 3194.638172][ T3627]  dump_header+0xda/0x6a0
[ 3194.642534][ T3627]  oom_kill_process+0x3a7/0x930
[ 3194.647491][ T3627]  out_of_memory+0xf67/0x1320
[ 3194.652202][ T3627]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3194.657875][ T3627]  ? __pfx___mutex_lock+0x10/0x10
[ 3194.662934][ T3627]  ? __pfx_out_of_memory+0x10/0x10
[ 3194.668091][ T3627]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3194.673677][ T3627]  ? __pfx_lock_release+0x10/0x10
[ 3194.678733][ T3627]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3194.684932][ T3627]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3194.690258][ T3627]  ? mem_cgroup_iter+0x3e9/0x560
[ 3194.695237][ T3627]  try_charge_memcg+0xda2/0x18a0
[ 3194.700236][ T3627]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3194.705637][ T3627]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3194.711386][ T3627]  ? __pfx_lock_release+0x10/0x10
[ 3194.716450][ T3627]  ? memcg_account_kmem+0x1e7/0x210
[ 3194.721684][ T3627]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3194.727562][ T3627]  __memcg_kmem_charge_page+0xe1/0x250
[ 3194.733057][ T3627]  memcg_charge_kernel_stack+0x28a/0x550
[ 3194.738734][ T3627]  dup_task_struct+0x15d/0x7d0
[ 3194.743545][ T3627]  copy_process+0x5d5/0x3fc0
[ 3194.748176][ T3627]  ? __might_fault+0xa9/0x120
[ 3194.752888][ T3627]  ? __pfx_lock_release+0x10/0x10
[ 3194.757958][ T3627]  ? __pfx_copy_process+0x10/0x10
[ 3194.763017][ T3627]  ? __might_fault+0xc5/0x120
[ 3194.767727][ T3627]  ? __asan_memset+0x23/0x50
[ 3194.772346][ T3627]  kernel_clone+0x21d/0x8d0
[ 3194.776884][ T3627]  ? __pfx_kernel_clone+0x10/0x10
[ 3194.781959][ T3627]  __se_sys_clone3+0x2cb/0x350
[ 3194.786764][ T3627]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3194.792105][ T3627]  ? do_syscall_64+0x108/0x240
[ 3194.796901][ T3627]  ? do_syscall_64+0xb4/0x240
[ 3194.801619][ T3627]  do_syscall_64+0xf9/0x240
[ 3194.806155][ T3627]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 3194.812080][ T3627] RIP: 0033:0x7f5706ea9b99
[ 3194.816516][ T3627] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 3194.836146][ T3627] RSP: 002b:00007f57070cf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 3194.844597][ T3627] RAX: ffffffffffffffda RBX: 00007f5706e52270 RCX: 00007f5706ea9b99
[ 3194.852594][ T3627] RDX: 00007f5706e52270 RSI: 0000000000000058 RDI: 00007f57070cf960
[ 3194.860676][ T3627] RBP: 00007f5707c6c6c0 R08: 00007f5707c6c6c0 R09: 00007f57070cfa47
[ 3194.868676][ T3627] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 3194.876670][ T3627] R13: 000000000000000b R14: 00007f57070cf960 R15: 00007f57070cfa48
[ 3194.884857][ T3627]  </TASK>
01:27:57 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}, 0x1, 0x28000000}, 0x0)

01:27:57 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0xffffffff00000000}, 0x0)

01:27:57 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x18}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

[ 3194.960918][ T3627] memory: usage 307200kB, limit 307200kB, failcnt 90585
[ 3194.980115][ T3627] memory+swap: usage 307772kB, limit 9007199254740988kB, failcnt 0
[ 3194.993940][ T3627] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0
01:27:57 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}}, 0x0)

[ 3195.020375][ T3627] Memory cgroup stats for /syz2:
[ 3195.020947][ T3627] cache 0
[ 3195.029214][ T3627] rss 12288
[ 3195.032347][ T3627] rss_huge 0
[ 3195.035558][ T3627] shmem 0
[ 3195.038506][ T3627] mapped_file 0
[ 3195.078086][ T3627] dirty 0
[ 3195.086458][ T3627] writeback 0
[ 3195.095415][ T3627] workingset_refault_anon 31506
[ 3195.109389][ T3627] workingset_refault_file 171
[ 3195.124317][ T3627] swap 585728
[ 3195.135422][ T3627] swapcached 0
[ 3195.145711][ T3627] pgpgin 782741
[ 3195.162418][ T3627] pgpgout 782738
[ 3195.169495][ T3627] pgfault 1286512
[ 3195.177058][ T3627] pgmajfault 26164
01:27:57 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}, 0x1, 0x60000000}, 0x0)

[ 3195.184987][ T3627] inactive_anon 4096
[ 3195.193028][ T3627] active_anon 8192
[ 3195.200738][ T3627] inactive_file 0
[ 3195.207914][ T3627] active_file 0
[ 3195.217338][ T3627] unevictable 0
[ 3195.239548][ T3627] hierarchical_memory_limit 314572800
[ 3195.251689][ T3627] hierarchical_memsw_limit 9223372036854771712
[ 3195.289190][ T3627] total_cache 0
[ 3195.295918][ T3627] total_rss 12288
[ 3195.302089][ T3627] total_rss_huge 0
[ 3195.310754][ T3627] total_shmem 0
[ 3195.323825][ T3627] total_mapped_file 0
[ 3195.333669][ T3627] total_dirty 0
01:27:57 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x34}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

[ 3195.343106][ T3627] total_writeback 0
[ 3195.354091][ T3627] total_workingset_refault_anon 31506
[ 3195.375137][ T3627] total_workingset_refault_file 171
01:27:57 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x0, 0x2}, 0x0)

[ 3195.393571][ T3627] total_swap 585728
[ 3195.403456][ T3627] total_swapcached 0
[ 3195.413092][ T3627] total_pgpgin 782741
[ 3195.424834][ T3627] total_pgpgout 782738
[ 3195.451657][ T3627] total_pgfault 1286512
[ 3195.459410][ T3627] total_pgmajfault 26164
[ 3195.467164][ T3627] total_inactive_anon 4096
01:27:57 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}, 0x1, 0x65580000}, 0x0)

[ 3195.495921][ T3627] total_active_anon 8192
[ 3195.507263][ T3627] total_inactive_file 0
[ 3195.531424][ T3627] total_active_file 0
[ 3195.537773][ T3627] total_unevictable 0
[ 3195.551306][ T3627] anon_cost 0
[ 3195.556960][ T3627] file_cost 0
[ 3195.567420][ T3627] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=3627,uid=0
01:27:58 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8, 0x2}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

[ 3195.612655][ T3627] Memory cgroup out of memory: Killed process 3627 (syz-executor.2) total-vm:54508kB, anon-rss:0kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000
01:27:58 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {0x6}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}}, 0x0)

01:27:58 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x0, 0x3}, 0x0)

01:27:58 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}, 0x1, 0x70fde8b4}, 0x0)

01:27:58 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8, 0x4}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

01:27:58 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x0, 0x4}, 0x0)

[ 3196.020777][ T3664] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3196.046460][ T3664] CPU: 1 PID: 3664 Comm: syz-executor.2 Not tainted 6.8.0-rc5-syzkaller-00002-gfca7526b7d89 #0
[ 3196.056841][ T3664] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024
[ 3196.066926][ T3664] Call Trace:
[ 3196.070249][ T3664]  <TASK>
[ 3196.073291][ T3664]  dump_stack_lvl+0x1e7/0x2e0
[ 3196.078004][ T3664]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3196.083231][ T3664]  ? __pfx__printk+0x10/0x10
[ 3196.087843][ T3664]  ? ___ratelimit+0x4c4/0x670
[ 3196.092549][ T3664]  ? __pfx____ratelimit+0x10/0x10
[ 3196.097601][ T3664]  dump_header+0xda/0x6a0
[ 3196.101977][ T3664]  oom_kill_process+0x3a7/0x930
[ 3196.106857][ T3664]  out_of_memory+0xf67/0x1320
[ 3196.111563][ T3664]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3196.117197][ T3664]  ? __pfx___mutex_lock+0x10/0x10
[ 3196.122234][ T3664]  ? __pfx_out_of_memory+0x10/0x10
[ 3196.127349][ T3664]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3196.132892][ T3664]  ? __pfx_lock_release+0x10/0x10
[ 3196.137919][ T3664]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3196.144024][ T3664]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3196.149228][ T3664]  ? mem_cgroup_iter+0x3e9/0x560
[ 3196.154163][ T3664]  try_charge_memcg+0xda2/0x18a0
[ 3196.159140][ T3664]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3196.164518][ T3664]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3196.170232][ T3664]  ? __pfx_lock_release+0x10/0x10
[ 3196.175261][ T3664]  ? memcg_account_kmem+0x1e7/0x210
[ 3196.180460][ T3664]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3196.186261][ T3664]  __memcg_kmem_charge_page+0xe1/0x250
[ 3196.191725][ T3664]  memcg_charge_kernel_stack+0x3f8/0x550
[ 3196.197363][ T3664]  dup_task_struct+0x15d/0x7d0
[ 3196.202645][ T3664]  copy_process+0x5d5/0x3fc0
[ 3196.207253][ T3664]  ? __might_fault+0xa9/0x120
[ 3196.211925][ T3664]  ? __pfx_lock_release+0x10/0x10
[ 3196.216951][ T3664]  ? __pfx_copy_process+0x10/0x10
[ 3196.221977][ T3664]  ? __might_fault+0xc5/0x120
[ 3196.226652][ T3664]  ? __asan_memset+0x23/0x50
[ 3196.231243][ T3664]  kernel_clone+0x21d/0x8d0
[ 3196.235749][ T3664]  ? __pfx_kernel_clone+0x10/0x10
[ 3196.240786][ T3664]  __se_sys_clone3+0x2cb/0x350
[ 3196.245546][ T3664]  ? __might_fault+0xa9/0x120
[ 3196.250225][ T3664]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3196.255527][ T3664]  ? do_syscall_64+0x108/0x240
[ 3196.260299][ T3664]  ? do_syscall_64+0xb4/0x240
[ 3196.265149][ T3664]  do_syscall_64+0xf9/0x240
[ 3196.269665][ T3664]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 3196.275568][ T3664] RIP: 0033:0x7f5706ea9b99
[ 3196.279985][ T3664] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 3196.299606][ T3664] RSP: 002b:00007f57070cf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 3196.308023][ T3664] RAX: ffffffffffffffda RBX: 00007f5706e52270 RCX: 00007f5706ea9b99
[ 3196.316074][ T3664] RDX: 00007f5706e52270 RSI: 0000000000000058 RDI: 00007f57070cf960
[ 3196.324040][ T3664] RBP: 00007f5707c6c6c0 R08: 00007f5707c6c6c0 R09: 00007f57070cfa47
[ 3196.332005][ T3664] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 3196.340061][ T3664] R13: 000000000000000b R14: 00007f57070cf960 R15: 00007f57070cfa48
[ 3196.348053][ T3664]  </TASK>
[ 3196.401263][ T3664] memory: usage 307200kB, limit 307200kB, failcnt 90798
[ 3196.413126][ T3664] memory+swap: usage 307784kB, limit 9007199254740988kB, failcnt 0
01:27:58 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}, 0x1, 0x81000000}, 0x0)

01:27:58 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8, 0x5}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

[ 3196.446749][ T3664] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[ 3196.472107][ T3664] Memory cgroup stats for /syz2:
[ 3196.472255][ T3664] cache 0
[ 3196.498469][ T3664] rss 0
[ 3196.509507][ T3664] rss_huge 0
[ 3196.514052][ T3664] shmem 0
[ 3196.522023][ T3664] mapped_file 0
[ 3196.531090][ T3664] dirty 0
[ 3196.535972][ T3664] writeback 0
01:27:58 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}, 0x1, 0x88470000}, 0x0)

01:27:58 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x0, 0x5}, 0x0)

[ 3196.555249][ T3664] workingset_refault_anon 31558
[ 3196.561197][ T3664] workingset_refault_file 171
[ 3196.566099][ T3664] swap 593920
[ 3196.576353][ T3664] swapcached 4096
[ 3196.582043][ T3664] pgpgin 782807
[ 3196.585733][ T3664] pgpgout 782806
[ 3196.604465][ T3664] pgfault 1286621
[ 3196.613020][ T3664] pgmajfault 26213
[ 3196.624518][ T3664] inactive_anon 0
[ 3196.628330][ T3664] active_anon 4096
[ 3196.638886][ T3664] inactive_file 0
01:27:59 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8, 0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

[ 3196.653315][ T3664] active_file 0
[ 3196.670354][ T3664] unevictable 0
[ 3196.677289][ T3664] hierarchical_memory_limit 314572800
[ 3196.691590][ T3664] hierarchical_memsw_limit 9223372036854771712
[ 3196.702615][ T3664] total_cache 0
01:27:59 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}, 0x1, 0x88480000}, 0x0)

[ 3196.708633][ T3664] total_rss 0
[ 3196.714277][ T3664] total_rss_huge 0
[ 3196.718152][ T3664] total_shmem 0
[ 3196.722334][ T3664] total_mapped_file 0
[ 3196.726814][ T3664] total_dirty 0
[ 3196.731047][ T3664] total_writeback 0
[ 3196.738808][ T3664] total_workingset_refault_anon 31558
[ 3196.748241][ T3664] total_workingset_refault_file 171
[ 3196.756933][ T3664] total_swap 593920
[ 3196.763877][ T3664] total_swapcached 4096
[ 3196.768140][ T3664] total_pgpgin 782807
[ 3196.774615][ T3664] total_pgpgout 782806
[ 3196.778795][ T3664] total_pgfault 1286621
[ 3196.783233][ T3664] total_pgmajfault 26213
[ 3196.787500][ T3664] total_inactive_anon 0
[ 3196.795337][ T3664] total_active_anon 4096
[ 3196.799854][ T3664] total_inactive_file 0
01:27:59 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x0, 0x6}, 0x0)

[ 3196.808139][ T3664] total_active_file 0
[ 3196.816987][ T3664] total_unevictable 0
[ 3196.821149][ T3664] anon_cost 0
[ 3196.824529][ T3664] file_cost 0
[ 3196.827906][ T3664] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=3664,uid=0
[ 3196.845531][ T3664] Memory cgroup out of memory: Killed process 3664 (syz-executor.2) total-vm:54508kB, anon-rss:0kB, file-rss:8880kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000
01:27:59 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8, 0x10}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

01:27:59 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}, 0x1, 0x88a8ffff}, 0x0)

01:27:59 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {0x7}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}}, 0x0)

01:27:59 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x0, 0x7}, 0x0)

01:27:59 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x4, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

01:27:59 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}, 0x1, 0x9a830000}, 0x0)

01:27:59 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x0, 0x8}, 0x0)

01:27:59 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x3, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

01:27:59 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}, 0x1, 0xb4e8fd70}, 0x0)

01:28:00 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x44, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x14, 0x2, [@TCA_FLOW_EMATCHES={0x10, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100, 0x8100}}, @TCA_EMATCH_TREE_LIST={0x4}]}]}}]}, 0x44}}, 0x0)

01:28:00 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x4, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

01:28:00 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x0, 0x9}, 0x0)

[ 3197.724583][ T3700] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3197.782926][ T3700] CPU: 1 PID: 3700 Comm: syz-executor.2 Not tainted 6.8.0-rc5-syzkaller-00002-gfca7526b7d89 #0
[ 3197.793313][ T3700] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024
[ 3197.803632][ T3700] Call Trace:
[ 3197.806911][ T3700]  <TASK>
[ 3197.809837][ T3700]  dump_stack_lvl+0x1e7/0x2e0
[ 3197.814539][ T3700]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3197.819736][ T3700]  ? __pfx__printk+0x10/0x10
[ 3197.824331][ T3700]  ? ___ratelimit+0x4c4/0x670
[ 3197.829013][ T3700]  ? __pfx____ratelimit+0x10/0x10
[ 3197.834045][ T3700]  dump_header+0xda/0x6a0
[ 3197.838381][ T3700]  oom_kill_process+0x3a7/0x930
[ 3197.843237][ T3700]  out_of_memory+0xf67/0x1320
[ 3197.847913][ T3700]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3197.853715][ T3700]  ? __pfx___mutex_lock+0x10/0x10
[ 3197.858742][ T3700]  ? __pfx_out_of_memory+0x10/0x10
[ 3197.863858][ T3700]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3197.869401][ T3700]  ? __pfx_lock_release+0x10/0x10
[ 3197.874425][ T3700]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3197.880497][ T3700]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3197.885710][ T3700]  ? mem_cgroup_iter+0x3e9/0x560
[ 3197.890734][ T3700]  try_charge_memcg+0xda2/0x18a0
[ 3197.895686][ T3700]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3197.901052][ T3700]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3197.906852][ T3700]  ? __pfx_lock_release+0x10/0x10
[ 3197.911876][ T3700]  ? memcg_account_kmem+0x1e7/0x210
[ 3197.917075][ T3700]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3197.922877][ T3700]  __memcg_kmem_charge_page+0xe1/0x250
[ 3197.928341][ T3700]  memcg_charge_kernel_stack+0x3f8/0x550
[ 3197.934058][ T3700]  dup_task_struct+0x15d/0x7d0
[ 3197.938820][ T3700]  copy_process+0x5d5/0x3fc0
[ 3197.943419][ T3700]  ? __might_fault+0xa9/0x120
[ 3197.948095][ T3700]  ? __pfx_lock_release+0x10/0x10
[ 3197.953126][ T3700]  ? __lock_acquire+0x1345/0x1fd0
[ 3197.958145][ T3700]  ? __pfx_copy_process+0x10/0x10
[ 3197.963164][ T3700]  ? __might_fault+0xc5/0x120
[ 3197.967849][ T3700]  ? __asan_memset+0x23/0x50
[ 3197.972454][ T3700]  kernel_clone+0x21d/0x8d0
[ 3197.976955][ T3700]  ? __pfx_kernel_clone+0x10/0x10
[ 3197.982156][ T3700]  ? __pfx_lock_release+0x10/0x10
[ 3197.987194][ T3700]  __se_sys_clone3+0x2cb/0x350
[ 3197.991970][ T3700]  ? __might_fault+0xa9/0x120
[ 3197.996655][ T3700]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3198.002378][ T3700]  ? rcu_is_watching+0x15/0xb0
[ 3198.007427][ T3700]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3198.013427][ T3700]  ? exc_page_fault+0x587/0x870
[ 3198.018284][ T3700]  ? do_syscall_64+0xb4/0x240
[ 3198.022975][ T3700]  do_syscall_64+0xf9/0x240
[ 3198.027501][ T3700]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 3198.033402][ T3700] RIP: 0033:0x7f5706ea9b99
[ 3198.037818][ T3700] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 3198.057430][ T3700] RSP: 002b:00007f57070cf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 3198.065845][ T3700] RAX: ffffffffffffffda RBX: 00007f5706e52270 RCX: 00007f5706ea9b99
[ 3198.073816][ T3700] RDX: 00007f5706e52270 RSI: 0000000000000058 RDI: 00007f57070cf960
[ 3198.081782][ T3700] RBP: 00007f5707c6c6c0 R08: 00007f5707c6c6c0 R09: 00007f57070cfa47
[ 3198.089750][ T3700] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 3198.097716][ T3700] R13: 000000000000000b R14: 00007f57070cf960 R15: 00007f57070cfa48
[ 3198.105691][ T3700]  </TASK>
[ 3198.122632][ T3700] memory: usage 307200kB, limit 307200kB, failcnt 91328
01:28:00 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}, 0x1, 0xf0ffffff}, 0x0)

[ 3198.129825][ T3700] memory+swap: usage 307784kB, limit 9007199254740988kB, failcnt 0
[ 3198.137844][ T3700] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[ 3198.145601][ T3700] Memory cgroup stats for /syz2:
[ 3198.145733][ T3700] cache 0
[ 3198.172342][ T3700] rss 0
[ 3198.190902][ T3700] rss_huge 0
[ 3198.196049][ T3700] shmem 0
[ 3198.205475][ T3700] mapped_file 0
[ 3198.209777][ T3700] dirty 0
[ 3198.212912][ T3700] writeback 0
[ 3198.217886][ T3700] workingset_refault_anon 31754
[ 3198.228739][ T3700] workingset_refault_file 171
[ 3198.237012][ T3700] swap 598016
01:28:00 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x10, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

[ 3198.243589][ T3700] swapcached 0
[ 3198.250661][ T3700] pgpgin 783018
[ 3198.256159][ T3700] pgpgout 783018
[ 3198.263319][ T3700] pgfault 1286931
[ 3198.270523][ T3700] pgmajfault 26399
[ 3198.290675][ T3700] inactive_anon 0
[ 3198.299621][ T3700] active_anon 0
[ 3198.310904][ T3700] inactive_file 0
[ 3198.321418][ T3700] active_file 0
[ 3198.332325][ T3700] unevictable 0
01:28:00 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x0, 0xa}, 0x0)

01:28:00 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}, 0x1, 0xf1ffffff}, 0x0)

[ 3198.344796][ T3700] hierarchical_memory_limit 314572800
[ 3198.357236][ T3700] hierarchical_memsw_limit 9223372036854771712
[ 3198.372451][ T3700] total_cache 0
[ 3198.387032][ T3700] total_rss 0
[ 3198.396049][ T3734] __nla_validate_parse: 35 callbacks suppressed
[ 3198.396067][ T3734] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 3198.420148][ T3700] total_rss_huge 0
[ 3198.423907][ T3700] total_shmem 0
[ 3198.427371][ T3700] total_mapped_file 0
[ 3198.453187][ T3700] total_dirty 0
[ 3198.456709][ T3700] total_writeback 0
[ 3198.467534][ T3736] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 3198.471782][ T3700] total_workingset_refault_anon 31754
[ 3198.487752][ T3700] total_workingset_refault_file 171
[ 3198.499057][ T3700] total_swap 598016
[ 3198.505416][ T3700] total_swapcached 0
[ 3198.512757][ T3700] total_pgpgin 783018
[ 3198.521523][ T3700] total_pgpgout 783018
[ 3198.526297][ T3700] total_pgfault 1286931
[ 3198.534106][ T3700] total_pgmajfault 26399
[ 3198.542552][ T3700] total_inactive_anon 0
01:28:00 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x2}}}]}, 0x58}}, 0x0)

[ 3198.547806][ T3739] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 3198.567851][ T3700] total_active_anon 0
[ 3198.579301][ T3700] total_inactive_file 0
[ 3198.589356][ T3700] total_active_file 0
[ 3198.594074][ T3700] total_unevictable 0
01:28:01 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}, 0x1, 0xfcffffff}, 0x0)

[ 3198.619046][ T3700] anon_cost 0
[ 3198.622380][ T3700] file_cost 0
[ 3198.625675][ T3700] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=3700,uid=0
01:28:01 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x0, 0xb}, 0x0)

[ 3198.669325][ T3700] Memory cgroup out of memory: Killed process 3700 (syz-executor.2) total-vm:54508kB, anon-rss:0kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000
[ 3198.691726][ T3743] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
01:28:01 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {0x8}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}}, 0x0)

[ 3198.781242][ T3748] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'.
01:28:01 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x3}}}]}, 0x58}}, 0x0)

[ 3198.840028][ T3744] netlink: 40 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 3198.858229][ T3746] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
01:28:01 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x0, 0xc}, 0x0)

01:28:01 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}, 0x1, 0xffffa888}, 0x0)

[ 3198.953931][ T3753] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 3199.032435][ T3751] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3199.071381][ T3751] CPU: 1 PID: 3751 Comm: syz-executor.2 Not tainted 6.8.0-rc5-syzkaller-00002-gfca7526b7d89 #0
[ 3199.081845][ T3751] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024
[ 3199.085735][ T3754] netlink: 40 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 3199.091894][ T3751] Call Trace:
[ 3199.091907][ T3751]  <TASK>
[ 3199.091916][ T3751]  dump_stack_lvl+0x1e7/0x2e0
[ 3199.091949][ T3751]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3199.091972][ T3751]  ? __pfx__printk+0x10/0x10
[ 3199.091990][ T3751]  ? ___ratelimit+0x4c4/0x670
[ 3199.092017][ T3751]  ? __pfx____ratelimit+0x10/0x10
[ 3199.092043][ T3751]  dump_header+0xda/0x6a0
[ 3199.092071][ T3751]  oom_kill_process+0x3a7/0x930
[ 3199.092103][ T3751]  out_of_memory+0xf67/0x1320
[ 3199.092130][ T3751]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3199.092154][ T3751]  ? __pfx___mutex_lock+0x10/0x10
[ 3199.092184][ T3751]  ? __pfx_out_of_memory+0x10/0x10
[ 3199.092218][ T3751]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3199.092241][ T3751]  ? __pfx_lock_release+0x10/0x10
[ 3199.092267][ T3751]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3199.092295][ T3751]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3199.092319][ T3751]  ? mem_cgroup_iter+0x3e9/0x560
[ 3199.092345][ T3751]  try_charge_memcg+0xda2/0x18a0
[ 3199.092387][ T3751]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3199.199106][ T3751]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3199.204831][ T3751]  ? __pfx_lock_release+0x10/0x10
[ 3199.209878][ T3751]  ? memcg_account_kmem+0x1e7/0x210
[ 3199.215099][ T3751]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3199.220910][ T3751]  __memcg_kmem_charge_page+0xe1/0x250
[ 3199.226480][ T3751]  memcg_charge_kernel_stack+0x3f8/0x550
[ 3199.232125][ T3751]  dup_task_struct+0x15d/0x7d0
[ 3199.236893][ T3751]  copy_process+0x5d5/0x3fc0
[ 3199.241494][ T3751]  ? __might_fault+0xa9/0x120
[ 3199.246174][ T3751]  ? __pfx_lock_release+0x10/0x10
[ 3199.251213][ T3751]  ? __pfx_copy_process+0x10/0x10
[ 3199.256232][ T3751]  ? __might_fault+0xc5/0x120
[ 3199.260912][ T3751]  ? __asan_memset+0x23/0x50
[ 3199.265510][ T3751]  kernel_clone+0x21d/0x8d0
[ 3199.270017][ T3751]  ? __pfx_kernel_clone+0x10/0x10
[ 3199.275078][ T3751]  __se_sys_clone3+0x2cb/0x350
[ 3199.279870][ T3751]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3199.285201][ T3751]  ? do_syscall_64+0x108/0x240
[ 3199.289981][ T3751]  ? do_syscall_64+0xb4/0x240
[ 3199.294660][ T3751]  do_syscall_64+0xf9/0x240
[ 3199.299176][ T3751]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 3199.305091][ T3751] RIP: 0033:0x7f5706ea9b99
[ 3199.309513][ T3751] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 3199.329133][ T3751] RSP: 002b:00007f57070cf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 3199.337558][ T3751] RAX: ffffffffffffffda RBX: 00007f5706e52270 RCX: 00007f5706ea9b99
[ 3199.345611][ T3751] RDX: 00007f5706e52270 RSI: 0000000000000058 RDI: 00007f57070cf960
[ 3199.353662][ T3751] RBP: 00007f5707c6c6c0 R08: 00007f5707c6c6c0 R09: 00007f57070cfa47
[ 3199.361726][ T3751] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 3199.369692][ T3751] R13: 000000000000000b R14: 00007f57070cf960 R15: 00007f57070cfa48
[ 3199.377668][ T3751]  </TASK>
01:28:01 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x5}}}]}, 0x58}}, 0x0)

[ 3199.402182][ T3751] memory: usage 307200kB, limit 307200kB, failcnt 91523
[ 3199.411639][ T3751] memory+swap: usage 307784kB, limit 9007199254740988kB, failcnt 0
[ 3199.429217][ T3758] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 3199.468499][ T3751] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[ 3199.496981][ T3751] Memory cgroup stats for /syz2:
[ 3199.497124][ T3751] cache 0
[ 3199.532731][ T3751] rss 0
[ 3199.537465][ T3751] rss_huge 0
[ 3199.549656][ T3751] shmem 0
[ 3199.552821][ T3751] mapped_file 0
[ 3199.556499][ T3751] dirty 0
[ 3199.561718][ T3751] writeback 0
[ 3199.567524][ T3751] workingset_refault_anon 31811
[ 3199.577484][ T3751] workingset_refault_file 171
[ 3199.583670][ T3751] swap 598016
[ 3199.587160][ T3751] swapcached 0
[ 3199.600636][ T3751] pgpgin 783088
[ 3199.611648][ T3751] pgpgout 783088
[ 3199.621124][ T3751] pgfault 1287041
[ 3199.630020][ T3751] pgmajfault 26448
01:28:02 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x0, 0xf}, 0x0)

[ 3199.638349][ T3751] inactive_anon 0
[ 3199.645049][ T3751] active_anon 0
[ 3199.657662][ T3751] inactive_file 0
[ 3199.669091][ T3751] active_file 0
[ 3199.682176][ T3751] unevictable 0
01:28:02 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}, 0x1, 0xffffff7f}, 0x0)

[ 3199.697099][ T3751] hierarchical_memory_limit 314572800
[ 3199.709753][ T3751] hierarchical_memsw_limit 9223372036854771712
[ 3199.727708][ T3751] total_cache 0
[ 3199.734066][ T3751] total_rss 0
[ 3199.741906][ T3751] total_rss_huge 0
[ 3199.746558][ T3751] total_shmem 0
[ 3199.752836][ T3751] total_mapped_file 0
[ 3199.779317][ T3751] total_dirty 0
[ 3199.786374][ T3751] total_writeback 0
01:28:02 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x6}}}]}, 0x58}}, 0x0)

[ 3199.803020][ T3751] total_workingset_refault_anon 31811
[ 3199.817887][ T3751] total_workingset_refault_file 171
[ 3199.833581][ T3751] total_swap 598016
[ 3199.841874][ T3751] total_swapcached 0
[ 3199.851716][ T3751] total_pgpgin 783088
[ 3199.859373][ T3751] total_pgpgout 783088
[ 3199.867799][ T3751] total_pgfault 1287041
[ 3199.872714][ T3751] total_pgmajfault 26448
[ 3199.877202][ T3751] total_inactive_anon 0
[ 3199.882073][ T3751] total_active_anon 0
[ 3199.892208][ T3751] total_inactive_file 0
[ 3199.896596][ T3751] total_active_file 0
01:28:02 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x0, 0x10}, 0x0)

[ 3199.923630][ T3751] total_unevictable 0
[ 3199.941240][ T3751] anon_cost 0
[ 3199.950003][ T3751] file_cost 0
[ 3199.956650][ T3751] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=3751,uid=0
[ 3199.986947][ T3751] Memory cgroup out of memory: Killed process 3751 (syz-executor.2) total-vm:54508kB, anon-rss:0kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000
01:28:02 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x7}}}]}, 0x58}}, 0x0)

01:28:02 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}, 0x1, 0xfffffff0}, 0x0)

01:28:02 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {0x9}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}}, 0x0)

01:28:02 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x0, 0x11}, 0x0)

01:28:02 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}, 0x1, 0xfffffff1}, 0x0)

01:28:02 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x8}}}]}, 0x58}}, 0x0)

01:28:02 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x0, 0x14}, 0x0)

01:28:02 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}, 0x1, 0xfffffffc}, 0x0)

01:28:03 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x9}}}]}, 0x58}}, 0x0)

01:28:03 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x44, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x14, 0x2, [@TCA_FLOW_EMATCHES={0x10, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100, 0x8847}}, @TCA_EMATCH_TREE_LIST={0x4}]}]}}]}, 0x44}}, 0x0)

[ 3200.818195][ T5104] syz-executor.2 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[ 3200.848610][ T5104] CPU: 0 PID: 5104 Comm: syz-executor.2 Not tainted 6.8.0-rc5-syzkaller-00002-gfca7526b7d89 #0
01:28:03 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}, 0x1, 0x7f51e867dda9}, 0x0)

01:28:03 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28}}}]}, 0x58}}, 0x0)

[ 3200.859097][ T5104] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024
[ 3200.869185][ T5104] Call Trace:
[ 3200.872575][ T5104]  <TASK>
[ 3200.875535][ T5104]  dump_stack_lvl+0x1e7/0x2e0
[ 3200.880259][ T5104]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3200.885491][ T5104]  ? __pfx__printk+0x10/0x10
[ 3200.890112][ T5104]  ? ___ratelimit+0x4c4/0x670
[ 3200.894831][ T5104]  ? __pfx____ratelimit+0x10/0x10
[ 3200.899915][ T5104]  dump_header+0xda/0x6a0
[ 3200.904279][ T5104]  oom_kill_process+0x3a7/0x930
[ 3200.909173][ T5104]  out_of_memory+0xf67/0x1320
[ 3200.913968][ T5104]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3200.919764][ T5104]  ? __pfx___mutex_lock+0x10/0x10
[ 3200.924840][ T5104]  ? __pfx_out_of_memory+0x10/0x10
[ 3200.929998][ T5104]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3200.935563][ T5104]  ? __pfx_lock_release+0x10/0x10
[ 3200.940625][ T5104]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3200.946724][ T5104]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3200.951959][ T5104]  ? mem_cgroup_iter+0x3e9/0x560
[ 3200.956921][ T5104]  try_charge_memcg+0xda2/0x18a0
[ 3200.961858][ T5104]  ? mark_lock+0x9a/0x350
[ 3200.966204][ T5104]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3200.971681][ T5104]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 3200.977841][ T5104]  charge_memcg+0xa2/0x160
[ 3200.982260][ T5104]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 3200.988323][ T5104]  __read_swap_cache_async+0x480/0x8b0
[ 3200.993778][ T5104]  ? mark_lock+0x9a/0x350
[ 3200.998110][ T5104]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 3201.004187][ T5104]  swap_cluster_readahead+0x67c/0x810
[ 3201.009566][ T5104]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 3201.015550][ T5104]  ? __pfx_lock_release+0x10/0x10
[ 3201.020573][ T5104]  ? xas_descend+0x37e/0x470
[ 3201.025174][ T5104]  swapin_readahead+0x1ea/0x1070
[ 3201.030128][ T5104]  ? filemap_get_entry+0x127/0x4e0
[ 3201.035247][ T5104]  ? __pfx_swapin_readahead+0x10/0x10
[ 3201.040623][ T5104]  ? __filemap_get_folio+0x935/0xbc0
[ 3201.045909][ T5104]  ? swap_cache_get_folio+0x9f/0x570
[ 3201.051200][ T5104]  do_swap_page+0x8ab/0x3da0
[ 3201.055787][ T5104]  ? __pte_offset_map+0x2c4/0x380
[ 3201.060821][ T5104]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3201.066019][ T5104]  ? do_swap_page+0x154/0x3da0
[ 3201.070775][ T5104]  ? __pfx_do_swap_page+0x10/0x10
[ 3201.075806][ T5104]  ? pte_offset_map_nolock+0x137/0x1f0
[ 3201.081264][ T5104]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 3201.087158][ T5104]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 3201.093494][ T5104]  __handle_mm_fault+0x15e8/0x72d0
[ 3201.098623][ T5104]  ? reacquire_held_locks+0x3eb/0x690
[ 3201.104016][ T5104]  ? __pfx___handle_mm_fault+0x10/0x10
[ 3201.109488][ T5104]  ? __pfx_reacquire_held_locks+0x10/0x10
[ 3201.115305][ T5104]  ? mtree_range_walk+0x6fd/0x8e0
[ 3201.120333][ T5104]  ? lock_vma_under_rcu+0x18a/0x730
[ 3201.125528][ T5104]  ? __pfx_lock_release+0x10/0x10
[ 3201.130565][ T5104]  ? lock_vma_under_rcu+0x2f9/0x730
[ 3201.135793][ T5104]  ? lock_vma_under_rcu+0x18a/0x730
[ 3201.141027][ T5104]  ? __pfx_lock_vma_under_rcu+0x10/0x10
[ 3201.146581][ T5104]  handle_mm_fault+0x3c1/0x8a0
[ 3201.151356][ T5104]  exc_page_fault+0x456/0x870
[ 3201.156134][ T5104]  asm_exc_page_fault+0x26/0x30
[ 3201.161000][ T5104] RIP: 0033:0x7f5706e7a780
[ 3201.165415][ T5104] Code: ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 31 c9 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 <80> 3d 71 57 10 00 00 49 89 ca 74 14 b8 3d 00 00 00 0f 05 48 3d 00
[ 3201.185104][ T5104] RSP: 002b:00007f57070cfd58 EFLAGS: 00010246
[ 3201.191169][ T5104] RAX: 000000000000026e RBX: 0000000000006d18 RCX: 0000000000000000
[ 3201.199145][ T5104] RDX: 0000000040000001 RSI: 00007f57070cfdbc RDI: 00000000ffffffff
[ 3201.207123][ T5104] RBP: 00007f57070cfdbc R08: 0000000000000010 R09: 00007ffeb39ee0b0
[ 3201.215091][ T5104] R10: 00007ffeb39ee080 R11: 0000000000096e36 R12: 0000000000000032
[ 3201.223055][ T5104] R13: 000000000030d494 R14: 000000000030d494 R15: 0000000000000000
[ 3201.231033][ T5104]  </TASK>
01:28:03 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x0, 0x15}, 0x0)

[ 3201.263971][ T5104] memory: usage 307200kB, limit 307200kB, failcnt 92003
[ 3201.301310][ T5104] memory+swap: usage 307784kB, limit 9007199254740988kB, failcnt 0
01:28:03 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4, 0x2}}}]}, 0x58}}, 0x0)

01:28:03 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}, 0x1, 0x839a00000000}, 0x0)

[ 3201.323549][ T5104] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[ 3201.353716][ T5104] Memory cgroup stats for /syz2:
[ 3201.353864][ T5104] cache 0
[ 3201.370799][ T5104] rss 8192
[ 3201.390779][ T5104] rss_huge 0
[ 3201.400779][ T5104] shmem 0
[ 3201.410579][ T5104] mapped_file 0
[ 3201.424184][ T5104] dirty 0
[ 3201.427169][ T5104] writeback 0
[ 3201.440614][ T5104] workingset_refault_anon 31989
[ 3201.450825][ T5104] workingset_refault_file 171
[ 3201.463168][ T5104] swap 589824
[ 3201.476526][ T5104] swapcached 0
[ 3201.482649][ T5104] pgpgin 783279
[ 3201.489930][ T5104] pgpgout 783277
[ 3201.493635][ T5104] pgfault 1287306
[ 3201.497426][ T5104] pgmajfault 26601
[ 3201.506218][ T5104] inactive_anon 0
[ 3201.511619][ T5104] active_anon 8192
[ 3201.515480][ T5104] inactive_file 0
[ 3201.532061][ T5104] active_file 0
01:28:03 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x0, 0x60}, 0x0)

[ 3201.547956][ T5104] unevictable 0
[ 3201.557769][ T5104] hierarchical_memory_limit 314572800
[ 3201.571750][ T5104] hierarchical_memsw_limit 9223372036854771712
[ 3201.585926][ T5104] total_cache 0
[ 3201.594379][ T5104] total_rss 8192
[ 3201.602967][ T5104] total_rss_huge 0
[ 3201.611303][ T5104] total_shmem 0
[ 3201.619906][ T5104] total_mapped_file 0
[ 3201.627447][ T5104] total_dirty 0
[ 3201.635891][ T5104] total_writeback 0
[ 3201.644817][ T5104] total_workingset_refault_anon 31989
01:28:04 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}, 0x1, 0x100000000000000}, 0x0)

01:28:04 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4, 0x4}}}]}, 0x58}}, 0x0)

[ 3201.671076][ T5104] total_workingset_refault_file 171
[ 3201.676322][ T5104] total_swap 589824
[ 3201.691513][ T5104] total_swapcached 0
[ 3201.695757][ T5104] total_pgpgin 783279
[ 3201.709454][ T5104] total_pgpgout 783277
[ 3201.713659][ T5104] total_pgfault 1287306
01:28:04 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x0, 0x300}, 0x0)

[ 3201.727907][ T5104] total_pgmajfault 26601
[ 3201.735615][ T5104] total_inactive_anon 0
[ 3201.756212][ T5104] total_active_anon 8192
[ 3201.768540][ T5104] total_inactive_file 0
[ 3201.789017][ T5104] total_active_file 0
[ 3201.793046][ T5104] total_unevictable 0
[ 3201.797037][ T5104] anon_cost 0
[ 3201.817315][ T5104] file_cost 0
[ 3201.824255][ T5104] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=3783,uid=0
[ 3201.840591][ T5104] Memory cgroup out of memory: Killed process 3783 (syz-executor.2) total-vm:54508kB, anon-rss:0kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000
01:28:04 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}, 0x1, 0x200000000000000}, 0x0)

01:28:04 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {0xa}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}}, 0x0)

01:28:04 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4, 0x5}}}]}, 0x58}}, 0x0)

01:28:04 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x0, 0x500}, 0x0)

01:28:04 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}, 0x1, 0x300000000000000}, 0x0)

[ 3202.168640][ T5104] syz-executor.2 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[ 3202.209650][ T5104] CPU: 0 PID: 5104 Comm: syz-executor.2 Not tainted 6.8.0-rc5-syzkaller-00002-gfca7526b7d89 #0
[ 3202.220039][ T5104] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024
[ 3202.230120][ T5104] Call Trace:
[ 3202.233419][ T5104]  <TASK>
[ 3202.236379][ T5104]  dump_stack_lvl+0x1e7/0x2e0
[ 3202.241081][ T5104]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3202.246316][ T5104]  ? __pfx__printk+0x10/0x10
[ 3202.250938][ T5104]  ? ___ratelimit+0x4c4/0x670
01:28:04 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4, 0x8}}}]}, 0x58}}, 0x0)

[ 3202.255656][ T5104]  ? __pfx____ratelimit+0x10/0x10
[ 3202.260712][ T5104]  dump_header+0xda/0x6a0
[ 3202.265074][ T5104]  oom_kill_process+0x3a7/0x930
[ 3202.269953][ T5104]  out_of_memory+0xf67/0x1320
[ 3202.274658][ T5104]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3202.280318][ T5104]  ? __pfx___mutex_lock+0x10/0x10
[ 3202.285386][ T5104]  ? __pfx_out_of_memory+0x10/0x10
[ 3202.290557][ T5104]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3202.296130][ T5104]  ? __pfx_lock_release+0x10/0x10
[ 3202.301191][ T5104]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3202.307297][ T5104]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3202.312537][ T5104]  ? mem_cgroup_iter+0x3e9/0x560
[ 3202.317509][ T5104]  try_charge_memcg+0xda2/0x18a0
[ 3202.322552][ T5104]  ? mark_lock+0x9a/0x350
[ 3202.326919][ T5104]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3202.332413][ T5104]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 3202.338674][ T5104]  charge_memcg+0xa2/0x160
[ 3202.343129][ T5104]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 3202.349837][ T5104]  __read_swap_cache_async+0x480/0x8b0
[ 3202.355333][ T5104]  ? mark_lock+0x9a/0x350
[ 3202.359784][ T5104]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 3202.365810][ T5104]  swap_cluster_readahead+0x67c/0x810
[ 3202.371229][ T5104]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 3202.377250][ T5104]  ? __pfx_lock_release+0x10/0x10
[ 3202.382316][ T5104]  ? xas_descend+0x37e/0x470
[ 3202.386945][ T5104]  swapin_readahead+0x1ea/0x1070
[ 3202.391914][ T5104]  ? filemap_get_entry+0x127/0x4e0
[ 3202.397075][ T5104]  ? __pfx_swapin_readahead+0x10/0x10
[ 3202.402500][ T5104]  ? __filemap_get_folio+0x935/0xbc0
[ 3202.407836][ T5104]  ? swap_cache_get_folio+0x9f/0x570
[ 3202.413694][ T5104]  do_swap_page+0x8ab/0x3da0
[ 3202.418322][ T5104]  ? __pte_offset_map+0x2c4/0x380
[ 3202.423395][ T5104]  ? do_swap_page+0x154/0x3da0
[ 3202.428274][ T5104]  ? __pfx_do_swap_page+0x10/0x10
[ 3202.433414][ T5104]  ? pte_offset_map_nolock+0x137/0x1f0
[ 3202.438993][ T5104]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 3202.444831][ T5104]  ? __pfx_validate_chain+0x10/0x10
[ 3202.450062][ T5104]  __handle_mm_fault+0x15e8/0x72d0
[ 3202.455237][ T5104]  ? __pfx___handle_mm_fault+0x10/0x10
[ 3202.460733][ T5104]  ? mt_find+0x226/0x850
[ 3202.465005][ T5104]  ? __pfx_lock_release+0x10/0x10
[ 3202.470078][ T5104]  ? mt_find+0x62d/0x850
[ 3202.474364][ T5104]  ? mt_find+0x226/0x850
[ 3202.478653][ T5104]  ? find_vma+0x142/0x1c0
[ 3202.483003][ T5104]  ? __pfx_find_vma+0x10/0x10
[ 3202.487705][ T5104]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3202.493718][ T5104]  handle_mm_fault+0x3c1/0x8a0
[ 3202.498519][ T5104]  exc_page_fault+0x2ad/0x870
[ 3202.503227][ T5104]  asm_exc_page_fault+0x26/0x30
[ 3202.508107][ T5104] RIP: 0010:__get_user_8+0x11/0x20
[ 3202.513245][ T5104] Code: ca c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 89 c2 48 c1 fa 3f 48 09 d0 0f 01 cb <48> 8b 10 31 c0 0f 01 ca c3 cc cc cc cc 66 90 90 90 90 90 90 90 90
[ 3202.532970][ T5104] RSP: 0018:ffffc90003bdfd98 EFLAGS: 00050202
[ 3202.539067][ T5104] RAX: 0000555556349da8 RBX: ffff8880296d6e78 RCX: ffffc90003bdfc03
[ 3202.547079][ T5104] RDX: 0000000000000000 RSI: ffffffff8baac7e0 RDI: ffffffff8bfe6da0
01:28:04 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}, 0x1, 0x400000000000000}, 0x0)

[ 3202.555080][ T5104] RBP: ffffc90003bdfec8 R08: ffffffff8f85672f R09: 1ffffffff1f0ace5
[ 3202.563083][ T5104] R10: dffffc0000000000 R11: fffffbfff1f0ace6 R12: ffffc90003bdfda0
[ 3202.571099][ T5104] R13: ffffc90003bdffd8 R14: dffffc0000000000 R15: ffff8880296d5940
[ 3202.579201][ T5104]  __rseq_handle_notify_resume+0x158/0x1490
[ 3202.585237][ T5104]  ? __pfx___rseq_handle_notify_resume+0x10/0x10
[ 3202.591608][ T5104]  ? syscall_exit_to_user_mode+0xa2/0x370
[ 3202.597375][ T5104]  syscall_exit_to_user_mode+0x113/0x370
[ 3202.603058][ T5104]  do_syscall_64+0x108/0x240
[ 3202.607774][ T5104]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 3202.613725][ T5104] RIP: 0033:0x7f5706ea91b5
[ 3202.618166][ T5104] Code: 24 0c 89 3c 24 48 89 4c 24 18 e8 f6 b9 ff ff 4c 8b 54 24 18 48 8b 54 24 10 41 89 c0 8b 74 24 0c 8b 3c 24 b8 e6 00 00 00 0f 05 <44> 89 c7 48 89 04 24 e8 4f ba ff ff 48 8b 04 24 48 83 c4 28 f7 d8
[ 3202.637803][ T5104] RSP: 002b:00007f57070cfcf0 EFLAGS: 00000293 ORIG_RAX: 00000000000000e6
[ 3202.646254][ T5104] RAX: 0000000000000000 RBX: 0000000000006d19 RCX: 00007f5706ea91b5
[ 3202.654256][ T5104] RDX: 00007f57070cfd30 RSI: 0000000000000000 RDI: 0000000000000000
[ 3202.662257][ T5104] RBP: 00007f57070cfdbc R08: 0000000000000000 R09: 00007ffeb39ee0b0
[ 3202.670257][ T5104] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000032
[ 3202.678336][ T5104] R13: 000000000030dbac R14: 000000000030dbac R15: 0000000000000000
[ 3202.686354][ T5104]  </TASK>
01:28:05 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x0, 0x600}, 0x0)

[ 3202.750298][ T5104] memory: usage 307200kB, limit 307200kB, failcnt 92235
[ 3202.757293][ T5104] memory+swap: usage 307784kB, limit 9007199254740988kB, failcnt 0
[ 3202.765639][ T5104] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[ 3202.773033][ T5104] Memory cgroup stats for /syz2:
[ 3202.773179][ T5104] cache 0
[ 3202.781440][ T5104] rss 28672
[ 3202.784665][ T5104] rss_huge 0
[ 3202.787949][ T5104] shmem 0
[ 3202.791036][ T5104] mapped_file 0
[ 3202.795933][ T5104] dirty 0
01:28:05 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4, 0x10}}}]}, 0x58}}, 0x0)

[ 3202.799675][ T5104] writeback 0
[ 3202.803062][ T5104] workingset_refault_anon 32068
[ 3202.808014][ T5104] workingset_refault_file 171
01:28:05 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}, 0x1, 0x500000000000000}, 0x0)

[ 3202.860471][ T5104] swap 606208
[ 3202.865126][ T5104] swapcached 0
[ 3202.891311][ T5104] pgpgin 783368
[ 3202.895668][ T5104] pgpgout 783361
[ 3202.908522][ T5104] pgfault 1287447
[ 3202.924978][ T5104] pgmajfault 26681
[ 3202.932795][ T5104] inactive_anon 0
[ 3202.941226][ T5104] active_anon 28672
[ 3202.947881][ T5104] inactive_file 0
[ 3202.953687][ T5104] active_file 0
[ 3202.957329][ T5104] unevictable 0
[ 3202.962057][ T5104] hierarchical_memory_limit 314572800
[ 3202.967644][ T5104] hierarchical_memsw_limit 9223372036854771712
[ 3202.974503][ T5104] total_cache 0
[ 3202.978131][ T5104] total_rss 28672
[ 3202.982310][ T5104] total_rss_huge 0
[ 3202.986667][ T5104] total_shmem 0
[ 3202.993420][ T5104] total_mapped_file 0
[ 3203.000514][ T5104] total_dirty 0
[ 3203.006393][ T5104] total_writeback 0
[ 3203.010991][ T5104] total_workingset_refault_anon 32068
[ 3203.016628][ T5104] total_workingset_refault_file 171
[ 3203.022893][ T5104] total_swap 606208
[ 3203.026976][ T5104] total_swapcached 0
[ 3203.031796][ T5104] total_pgpgin 783368
01:28:05 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x0, 0x700}, 0x0)

01:28:05 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4}}}]}, 0x58}}, 0x0)

[ 3203.065032][ T5104] total_pgpgout 783361
[ 3203.081733][ T5104] total_pgfault 1287447
[ 3203.109358][ T5104] total_pgmajfault 26681
[ 3203.129018][ T5104] total_inactive_anon 0
[ 3203.133221][ T5104] total_active_anon 28672
[ 3203.137739][ T5104] total_inactive_file 0
[ 3203.153485][ T5104] total_active_file 0
01:28:05 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}, 0x1, 0x600000000000000}, 0x0)

[ 3203.162176][ T5104] total_unevictable 0
[ 3203.172022][ T5104] anon_cost 0
[ 3203.178831][ T5104] file_cost 0
[ 3203.186882][ T5104] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=3834,uid=0
[ 3203.223231][ T5104] Memory cgroup out of memory: Killed process 3834 (syz-executor.2) total-vm:54508kB, anon-rss:0kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000
01:28:05 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4, 0x1, {0x2}}}}]}, 0x58}}, 0x0)

01:28:05 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {0xb}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}}, 0x0)

01:28:05 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x0, 0x900}, 0x0)

01:28:05 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}, 0x1, 0x700000000000000}, 0x0)

[ 3203.421871][ T3870] __nla_validate_parse: 40 callbacks suppressed
[ 3203.421890][ T3870] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 3203.523902][ T3876] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
01:28:05 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4, 0x1, {0x3}}}}]}, 0x58}}, 0x0)

[ 3203.585739][ T3877] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'.
01:28:06 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}, 0x1, 0x800000000000000}, 0x0)

[ 3203.714519][ T3881] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
01:28:06 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x0, 0xa00}, 0x0)

01:28:06 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x44, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x14, 0x2, [@TCA_FLOW_EMATCHES={0x10, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100, 0x8848}}, @TCA_EMATCH_TREE_LIST={0x4}]}]}}]}, 0x44}}, 0x0)

[ 3203.835855][ T3884] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
01:28:06 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4, 0x1, {0x4}}}}]}, 0x58}}, 0x0)

01:28:06 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}, 0x1, 0x900000000000000}, 0x0)

[ 3203.936584][ T3889] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 3204.034334][ T3892] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 3204.045258][ T3871] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3204.065048][ T3871] CPU: 0 PID: 3871 Comm: syz-executor.2 Not tainted 6.8.0-rc5-syzkaller-00002-gfca7526b7d89 #0
[ 3204.075521][ T3871] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024
[ 3204.085600][ T3871] Call Trace:
[ 3204.088914][ T3871]  <TASK>
[ 3204.091868][ T3871]  dump_stack_lvl+0x1e7/0x2e0
[ 3204.096580][ T3871]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3204.101812][ T3871]  ? __pfx__printk+0x10/0x10
[ 3204.106425][ T3871]  ? ___ratelimit+0x4c4/0x670
[ 3204.111135][ T3871]  ? __pfx____ratelimit+0x10/0x10
[ 3204.116188][ T3871]  dump_header+0xda/0x6a0
[ 3204.120540][ T3871]  oom_kill_process+0x3a7/0x930
[ 3204.125424][ T3871]  out_of_memory+0xf67/0x1320
[ 3204.130144][ T3871]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3204.135821][ T3871]  ? __pfx___mutex_lock+0x10/0x10
[ 3204.140980][ T3871]  ? __pfx_out_of_memory+0x10/0x10
[ 3204.146155][ T3871]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3204.151739][ T3871]  ? __pfx_lock_release+0x10/0x10
[ 3204.156804][ T3871]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3204.162921][ T3871]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3204.168149][ T3871]  ? mem_cgroup_iter+0x3e9/0x560
[ 3204.171842][ T3894] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
01:28:06 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4, 0x1, {0x5}}}}]}, 0x58}}, 0x0)

[ 3204.173102][ T3871]  try_charge_memcg+0xda2/0x18a0
[ 3204.173153][ T3871]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3204.193149][ T3871]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3204.198988][ T3871]  ? __pfx_lock_release+0x10/0x10
[ 3204.204046][ T3871]  ? memcg_account_kmem+0x1e7/0x210
[ 3204.209307][ T3871]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3204.215146][ T3871]  __memcg_kmem_charge_page+0xe1/0x250
[ 3204.220636][ T3871]  memcg_charge_kernel_stack+0x3f8/0x550
[ 3204.226311][ T3871]  dup_task_struct+0x15d/0x7d0
[ 3204.231117][ T3871]  copy_process+0x5d5/0x3fc0
[ 3204.235745][ T3871]  ? __might_fault+0xa9/0x120
[ 3204.240524][ T3871]  ? __pfx_lock_release+0x10/0x10
[ 3204.245573][ T3871]  ? __lock_acquire+0x1345/0x1fd0
[ 3204.250624][ T3871]  ? __pfx_copy_process+0x10/0x10
[ 3204.255676][ T3871]  ? __might_fault+0xc5/0x120
[ 3204.260385][ T3871]  ? __asan_memset+0x23/0x50
[ 3204.265010][ T3871]  kernel_clone+0x21d/0x8d0
[ 3204.269543][ T3871]  ? __pfx_kernel_clone+0x10/0x10
[ 3204.274609][ T3871]  ? __pfx_lock_release+0x10/0x10
[ 3204.279661][ T3871]  __se_sys_clone3+0x2cb/0x350
01:28:06 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}, 0x1, 0xa00000000000000}, 0x0)

[ 3204.284442][ T3871]  ? __might_fault+0xa9/0x120
[ 3204.289230][ T3871]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3204.294542][ T3871]  ? rcu_is_watching+0x15/0xb0
[ 3204.299358][ T3871]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3204.305383][ T3871]  ? exc_page_fault+0x587/0x870
[ 3204.310276][ T3871]  ? do_syscall_64+0xb4/0x240
[ 3204.315070][ T3871]  do_syscall_64+0xf9/0x240
[ 3204.319613][ T3871]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 3204.325542][ T3871] RIP: 0033:0x7f5706ea9b99
[ 3204.329979][ T3871] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 3204.349616][ T3871] RSP: 002b:00007f57070cf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 3204.358127][ T3871] RAX: ffffffffffffffda RBX: 00007f5706e52270 RCX: 00007f5706ea9b99
[ 3204.366128][ T3871] RDX: 00007f5706e52270 RSI: 0000000000000058 RDI: 00007f57070cf960
[ 3204.374383][ T3871] RBP: 00007f5707c6c6c0 R08: 00007f5707c6c6c0 R09: 00007f57070cfa47
[ 3204.382423][ T3871] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 3204.390418][ T3871] R13: 000000000000000b R14: 00007f57070cf960 R15: 00007f57070cfa48
[ 3204.392059][ T3899] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 3204.398499][ T3871]  </TASK>
[ 3204.421414][ T3871] memory: usage 307200kB, limit 307200kB, failcnt 92668
[ 3204.428392][ T3871] memory+swap: usage 307784kB, limit 9007199254740988kB, failcnt 0
01:28:06 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x0, 0xb00}, 0x0)

[ 3204.438843][ T3871] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[ 3204.446447][ T3871] Memory cgroup stats for /syz2:
[ 3204.446570][ T3871] cache 0
[ 3204.454590][ T3871] rss 0
[ 3204.457372][ T3871] rss_huge 0
[ 3204.488257][ T3871] shmem 0
[ 3204.495239][ T3871] mapped_file 0
[ 3204.501096][ T3871] dirty 0
[ 3204.506622][ T3901] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 3204.516164][ T3871] writeback 0
[ 3204.524998][ T3871] workingset_refault_anon 32232
[ 3204.538253][ T3871] workingset_refault_file 171
[ 3204.547715][ T3871] swap 598016
[ 3204.556034][ T3871] swapcached 0
[ 3204.562871][ T3871] pgpgin 783545
[ 3204.569967][ T3871] pgpgout 783545
[ 3204.578256][ T3871] pgfault 1287687
[ 3204.586926][ T3871] pgmajfault 26825
[ 3204.592379][ T3871] inactive_anon 0
[ 3204.605493][ T3871] active_anon 0
01:28:07 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}, 0x1, 0xb00000000000000}, 0x0)

01:28:07 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4, 0x1, {0x6}}}}]}, 0x58}}, 0x0)

[ 3204.636670][ T3871] inactive_file 0
[ 3204.656329][ T3871] active_file 0
[ 3204.661021][ T3871] unevictable 0
[ 3204.664515][ T3871] hierarchical_memory_limit 314572800
01:28:07 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x0, 0xc00}, 0x0)

[ 3204.699364][ T3871] hierarchical_memsw_limit 9223372036854771712
[ 3204.705848][ T3871] total_cache 0
[ 3204.731440][ T3871] total_rss 0
[ 3204.734822][ T3871] total_rss_huge 0
[ 3204.746934][ T3871] total_shmem 0
[ 3204.750958][ T3871] total_mapped_file 0
[ 3204.755312][ T3871] total_dirty 0
[ 3204.758878][ T3871] total_writeback 0
[ 3204.777105][ T3871] total_workingset_refault_anon 32232
[ 3204.790465][ T3871] total_workingset_refault_file 171
[ 3204.822938][ T3871] total_swap 598016
[ 3204.833774][ T3871] total_swapcached 0
01:28:07 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4, 0x1, {0x7}}}}]}, 0x58}}, 0x0)

[ 3204.870245][ T3871] total_pgpgin 783545
[ 3204.874306][ T3871] total_pgpgout 783545
[ 3204.878402][ T3871] total_pgfault 1287687
[ 3204.911646][ T3871] total_pgmajfault 26825
[ 3204.915950][ T3871] total_inactive_anon 0
[ 3204.926508][ T3871] total_active_anon 0
[ 3204.930961][ T3871] total_inactive_file 0
[ 3204.935246][ T3871] total_active_file 0
[ 3204.943195][ T3871] total_unevictable 0
[ 3204.950237][ T3871] anon_cost 0
[ 3204.953657][ T3871] file_cost 0
01:28:07 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}, 0x1, 0xc00000000000000}, 0x0)

[ 3204.957034][ T3871] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=3871,uid=0
01:28:07 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x0, 0xf00}, 0x0)

[ 3205.014820][ T3871] Memory cgroup out of memory: Killed process 3871 (syz-executor.2) total-vm:54508kB, anon-rss:0kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000
01:28:07 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {0xc}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}}, 0x0)

01:28:07 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4, 0x1, {0x8}}}}]}, 0x58}}, 0x0)

01:28:07 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}, 0x1, 0xf00000000000000}, 0x0)

01:28:07 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x0, 0x1100}, 0x0)

[ 3205.363021][ T1237] ieee802154 phy0 wpan0: encryption failed: -22
[ 3205.369638][ T1237] ieee802154 phy1 wpan1: encryption failed: -22
[ 3205.450365][ T5104] syz-executor.2 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[ 3205.466117][ T5104] CPU: 0 PID: 5104 Comm: syz-executor.2 Not tainted 6.8.0-rc5-syzkaller-00002-gfca7526b7d89 #0
[ 3205.476485][ T5104] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024
[ 3205.486555][ T5104] Call Trace:
[ 3205.489865][ T5104]  <TASK>
[ 3205.492818][ T5104]  dump_stack_lvl+0x1e7/0x2e0
[ 3205.497530][ T5104]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3205.502766][ T5104]  ? __pfx__printk+0x10/0x10
[ 3205.507386][ T5104]  ? ___ratelimit+0x4c4/0x670
[ 3205.512100][ T5104]  ? __pfx____ratelimit+0x10/0x10
[ 3205.517263][ T5104]  dump_header+0xda/0x6a0
[ 3205.521630][ T5104]  oom_kill_process+0x3a7/0x930
[ 3205.526514][ T5104]  out_of_memory+0xf67/0x1320
[ 3205.531223][ T5104]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3205.536889][ T5104]  ? __pfx___mutex_lock+0x10/0x10
[ 3205.541949][ T5104]  ? __pfx_out_of_memory+0x10/0x10
[ 3205.547196][ T5104]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3205.552781][ T5104]  ? __pfx_lock_release+0x10/0x10
[ 3205.557848][ T5104]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3205.563951][ T5104]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3205.569440][ T5104]  ? mem_cgroup_iter+0x3e9/0x560
[ 3205.574416][ T5104]  try_charge_memcg+0xda2/0x18a0
[ 3205.579379][ T5104]  ? mark_lock+0x9a/0x350
[ 3205.583749][ T5104]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3205.589187][ T5104]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 3205.595363][ T5104]  charge_memcg+0xa2/0x160
[ 3205.599803][ T5104]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 3205.605880][ T5104]  __read_swap_cache_async+0x480/0x8b0
[ 3205.611360][ T5104]  ? mark_lock+0x9a/0x350
[ 3205.615733][ T5104]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 3205.621760][ T5104]  ? blk_start_plug+0x6f/0x1b0
[ 3205.626635][ T5104]  swap_cluster_readahead+0x398/0x810
[ 3205.632016][ T5104]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 3205.637936][ T5104]  ? __pfx_lock_release+0x10/0x10
[ 3205.642956][ T5104]  ? xas_descend+0x37e/0x470
[ 3205.647562][ T5104]  swapin_readahead+0x1ea/0x1070
[ 3205.652530][ T5104]  ? filemap_get_entry+0x127/0x4e0
[ 3205.657665][ T5104]  ? __pfx_swapin_readahead+0x10/0x10
[ 3205.663060][ T5104]  ? __filemap_get_folio+0x935/0xbc0
[ 3205.668367][ T5104]  ? swap_cache_get_folio+0x9f/0x570
[ 3205.673654][ T5104]  do_swap_page+0x8ab/0x3da0
[ 3205.678327][ T5104]  ? __pte_offset_map+0x2c4/0x380
[ 3205.683352][ T5104]  ? do_swap_page+0x154/0x3da0
[ 3205.688105][ T5104]  ? __pfx_do_swap_page+0x10/0x10
[ 3205.693137][ T5104]  ? pte_offset_map_nolock+0x137/0x1f0
[ 3205.698607][ T5104]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 3205.704415][ T5104]  ? __pfx_validate_chain+0x10/0x10
[ 3205.709611][ T5104]  __handle_mm_fault+0x15e8/0x72d0
[ 3205.714732][ T5104]  ? __pfx___handle_mm_fault+0x10/0x10
[ 3205.720212][ T5104]  ? mt_find+0x226/0x850
[ 3205.724481][ T5104]  ? __pfx_lock_release+0x10/0x10
[ 3205.729539][ T5104]  ? mt_find+0x62d/0x850
[ 3205.733817][ T5104]  ? mt_find+0x226/0x850
[ 3205.738091][ T5104]  ? find_vma+0x142/0x1c0
[ 3205.742419][ T5104]  ? __pfx_find_vma+0x10/0x10
[ 3205.747087][ T5104]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3205.753151][ T5104]  handle_mm_fault+0x3c1/0x8a0
[ 3205.757915][ T5104]  exc_page_fault+0x2ad/0x870
[ 3205.762600][ T5104]  asm_exc_page_fault+0x26/0x30
[ 3205.767447][ T5104] RIP: 0010:__get_user_8+0x11/0x20
[ 3205.772552][ T5104] Code: ca c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 89 c2 48 c1 fa 3f 48 09 d0 0f 01 cb <48> 8b 10 31 c0 0f 01 ca c3 cc cc cc cc 66 90 90 90 90 90 90 90 90
[ 3205.792155][ T5104] RSP: 0018:ffffc90003bdfd78 EFLAGS: 00050202
[ 3205.798221][ T5104] RAX: 0000555556349da8 RBX: ffff8880296d6e78 RCX: ffffc90003bdfc03
[ 3205.806181][ T5104] RDX: 0000000000000000 RSI: ffffffff8baac7e0 RDI: ffffffff8bfe6da0
[ 3205.814143][ T5104] RBP: ffffc90003bdfec0 R08: ffffffff8f85672f R09: 1ffffffff1f0ace5
[ 3205.822117][ T5104] R10: dffffc0000000000 R11: fffffbfff1f0ace6 R12: ffffc90003bdfd80
[ 3205.830104][ T5104] R13: ffffc90003bdffd8 R14: dffffc0000000000 R15: ffff8880296d5940
[ 3205.838080][ T5104]  __rseq_handle_notify_resume+0x158/0x1490
[ 3205.843985][ T5104]  ? __pfx___rseq_handle_notify_resume+0x10/0x10
[ 3205.850316][ T5104]  ? irqentry_exit_to_user_mode+0x52/0x280
[ 3205.856116][ T5104]  irqentry_exit_to_user_mode+0xbb/0x280
[ 3205.861827][ T5104]  exc_page_fault+0x587/0x870
[ 3205.866601][ T5104]  asm_exc_page_fault+0x26/0x30
[ 3205.871460][ T5104] RIP: 0033:0x7f5706ea91b8
[ 3205.875917][ T5104] Code: 3c 24 48 89 4c 24 18 e8 f6 b9 ff ff 4c 8b 54 24 18 48 8b 54 24 10 41 89 c0 8b 74 24 0c 8b 3c 24 b8 e6 00 00 00 0f 05 44 89 c7 <48> 89 04 24 e8 4f ba ff ff 48 8b 04 24 48 83 c4 28 f7 d8 c3 0f 1f
[ 3205.895524][ T5104] RSP: 002b:00007f57070cfcf0 EFLAGS: 00010293
01:28:08 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x0, 0x1400}, 0x0)

[ 3205.901763][ T5104] RAX: 0000000000000000 RBX: 0000000000006d1b RCX: 00007f5706ea91b5
[ 3205.909730][ T5104] RDX: 00007f57070cfd30 RSI: 0000000000000000 RDI: 0000000000000000
[ 3205.917696][ T5104] RBP: 00007f57070cfdbc R08: 0000000000000000 R09: 00007ffeb39ee0b0
[ 3205.925761][ T5104] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000032
[ 3205.934623][ T5104] R13: 000000000030e82e R14: 000000000030e82e R15: 0000000000000000
[ 3205.942629][ T5104]  </TASK>
01:28:08 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}, 0x1, 0x1000000000000000}, 0x0)

01:28:08 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4, 0x1, {0x9}}}}]}, 0x58}}, 0x0)

[ 3205.958588][ T5104] memory: usage 307200kB, limit 307200kB, failcnt 92941
[ 3205.966832][ T5104] memory+swap: usage 307796kB, limit 9007199254740988kB, failcnt 0
[ 3205.975084][ T5104] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[ 3205.982443][ T5104] Memory cgroup stats for /syz2:
[ 3205.982574][ T5104] cache 0
[ 3205.990527][ T5104] rss 12288
[ 3205.993661][ T5104] rss_huge 0
[ 3205.996857][ T5104] shmem 0
[ 3206.019982][ T5104] mapped_file 0
[ 3206.027949][ T5104] dirty 0
[ 3206.031866][ T5104] writeback 0
[ 3206.035322][ T5104] workingset_refault_anon 32295
[ 3206.041285][ T5104] workingset_refault_file 171
[ 3206.046126][ T5104] swap 598016
[ 3206.050745][ T5104] swapcached 0
[ 3206.054520][ T5104] pgpgin 783619
[ 3206.058139][ T5104] pgpgout 783616
[ 3206.064572][ T5104] pgfault 1287808
[ 3206.070582][ T5104] pgmajfault 26886
[ 3206.074568][ T5104] inactive_anon 12288
[ 3206.078678][ T5104] active_anon 0
[ 3206.082920][ T5104] inactive_file 0
[ 3206.086669][ T5104] active_file 0
[ 3206.090868][ T5104] unevictable 0
[ 3206.094482][ T5104] hierarchical_memory_limit 314572800
[ 3206.109446][ T5104] hierarchical_memsw_limit 9223372036854771712
01:28:08 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x0, 0x1500}, 0x0)

[ 3206.123968][ T5104] total_cache 0
[ 3206.131918][ T5104] total_rss 12288
[ 3206.135585][ T5104] total_rss_huge 0
[ 3206.140034][ T5104] total_shmem 0
[ 3206.143519][ T5104] total_mapped_file 0
[ 3206.147504][ T5104] total_dirty 0
[ 3206.156068][ T5104] total_writeback 0
[ 3206.165181][ T5104] total_workingset_refault_anon 32295
01:28:08 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}, 0x1, 0x1100000000000000}, 0x0)

[ 3206.177112][ T5104] total_workingset_refault_file 171
[ 3206.185615][ T5104] total_swap 598016
[ 3206.193365][ T5104] total_swapcached 0
[ 3206.197289][ T5104] total_pgpgin 783619
[ 3206.203051][ T5104] total_pgpgout 783616
[ 3206.207139][ T5104] total_pgfault 1287808
[ 3206.215744][ T5104] total_pgmajfault 26886
01:28:08 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4, 0x1, {0xa}}}}]}, 0x58}}, 0x0)

[ 3206.228035][ T5104] total_inactive_anon 12288
[ 3206.239422][ T5104] total_active_anon 0
[ 3206.252859][ T5104] total_inactive_file 0
[ 3206.259473][ T5104] total_active_file 0
[ 3206.263484][ T5104] total_unevictable 0
[ 3206.276664][ T5104] anon_cost 0
[ 3206.281241][ T5104] file_cost 0
[ 3206.284552][ T5104] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=3926,uid=0
[ 3206.307251][ T5104] Memory cgroup out of memory: Killed process 3926 (syz-executor.2) total-vm:54508kB, anon-rss:0kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000
01:28:08 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {0xf}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}}, 0x0)

01:28:08 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x0, 0x2000}, 0x0)

01:28:08 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4, 0x1, {0xb}}}}]}, 0x58}}, 0x0)

01:28:08 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}, 0x1, 0x1400000000000000}, 0x0)

01:28:09 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x0, 0x4788}, 0x0)

01:28:09 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4, 0x1, {0xc}}}}]}, 0x58}}, 0x0)

01:28:09 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}, 0x1, 0x1500000000000000}, 0x0)

01:28:09 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x0, 0x4888}, 0x0)

01:28:09 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x44, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x14, 0x2, [@TCA_FLOW_EMATCHES={0x10, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100, 0xf2ff}}, @TCA_EMATCH_TREE_LIST={0x4}]}]}}]}, 0x44}}, 0x0)

01:28:09 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4, 0x1, {0xf}}}}]}, 0x58}}, 0x0)

01:28:09 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}, 0x1, 0x2800000000000000}, 0x0)

[ 3207.259756][ T3954] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3207.284932][ T3954] CPU: 0 PID: 3954 Comm: syz-executor.2 Not tainted 6.8.0-rc5-syzkaller-00002-gfca7526b7d89 #0
[ 3207.295306][ T3954] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024
[ 3207.305384][ T3954] Call Trace:
[ 3207.308702][ T3954]  <TASK>
[ 3207.311652][ T3954]  dump_stack_lvl+0x1e7/0x2e0
[ 3207.316451][ T3954]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3207.321682][ T3954]  ? __pfx__printk+0x10/0x10
[ 3207.326291][ T3954]  ? ___ratelimit+0x4c4/0x670
[ 3207.331004][ T3954]  ? __pfx____ratelimit+0x10/0x10
[ 3207.336153][ T3954]  dump_header+0xda/0x6a0
[ 3207.340609][ T3954]  oom_kill_process+0x3a7/0x930
[ 3207.345493][ T3954]  out_of_memory+0xf67/0x1320
[ 3207.350299][ T3954]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3207.355957][ T3954]  ? __pfx___mutex_lock+0x10/0x10
[ 3207.361011][ T3954]  ? __pfx_out_of_memory+0x10/0x10
[ 3207.366167][ T3954]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3207.371737][ T3954]  ? __pfx_lock_release+0x10/0x10
[ 3207.376791][ T3954]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3207.382881][ T3954]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3207.388109][ T3954]  ? mem_cgroup_iter+0x3e9/0x560
[ 3207.393163][ T3954]  try_charge_memcg+0xda2/0x18a0
[ 3207.398161][ T3954]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3207.403558][ T3954]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3207.409305][ T3954]  ? __pfx_lock_release+0x10/0x10
[ 3207.414369][ T3954]  ? memcg_account_kmem+0x1e7/0x210
[ 3207.419693][ T3954]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3207.425538][ T3954]  __memcg_kmem_charge_page+0xe1/0x250
[ 3207.431049][ T3954]  memcg_charge_kernel_stack+0x28a/0x550
[ 3207.436715][ T3954]  dup_task_struct+0x40d/0x7d0
[ 3207.441508][ T3954]  copy_process+0x5d5/0x3fc0
[ 3207.446228][ T3954]  ? __might_fault+0xa9/0x120
[ 3207.450942][ T3954]  ? __pfx_lock_release+0x10/0x10
[ 3207.456000][ T3954]  ? __pfx_copy_process+0x10/0x10
[ 3207.461050][ T3954]  ? __might_fault+0xc5/0x120
[ 3207.465778][ T3954]  ? __asan_memset+0x23/0x50
[ 3207.470403][ T3954]  kernel_clone+0x21d/0x8d0
[ 3207.474937][ T3954]  ? __pfx_kernel_clone+0x10/0x10
[ 3207.480004][ T3954]  __se_sys_clone3+0x2cb/0x350
[ 3207.484798][ T3954]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3207.490126][ T3954]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3207.496141][ T3954]  ? exc_page_fault+0x587/0x870
[ 3207.501021][ T3954]  ? do_syscall_64+0xb4/0x240
[ 3207.505729][ T3954]  do_syscall_64+0xf9/0x240
[ 3207.510268][ T3954]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 3207.516191][ T3954] RIP: 0033:0x7f5706ea9b99
[ 3207.520629][ T3954] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 3207.540259][ T3954] RSP: 002b:00007f57070cf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 3207.548881][ T3954] RAX: ffffffffffffffda RBX: 00007f5706e52270 RCX: 00007f5706ea9b99
01:28:10 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x0, 0x5865}, 0x0)

[ 3207.556883][ T3954] RDX: 00007f5706e52270 RSI: 0000000000000058 RDI: 00007f57070cf960
[ 3207.564884][ T3954] RBP: 00007f5707c6c6c0 R08: 00007f5707c6c6c0 R09: 00007f57070cfa47
[ 3207.572885][ T3954] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 3207.580882][ T3954] R13: 000000000000000b R14: 00007f57070cf960 R15: 00007f57070cfa48
[ 3207.588898][ T3954]  </TASK>
[ 3207.599033][ T3954] memory: usage 307200kB, limit 307200kB, failcnt 93399
01:28:10 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}, 0x1, 0x6000000000000000}, 0x0)

01:28:10 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4, 0x1, {0x10}}}}]}, 0x58}}, 0x0)

[ 3207.631419][ T3954] memory+swap: usage 307772kB, limit 9007199254740988kB, failcnt 0
[ 3207.690069][ T3954] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0
[ 3207.697403][ T3954] Memory cgroup stats for /syz2:
[ 3207.697539][ T3954] cache 0
[ 3207.717580][ T3954] rss 12288
[ 3207.726442][ T3954] rss_huge 0
[ 3207.732142][ T3954] shmem 0
[ 3207.735327][ T3954] mapped_file 0
[ 3207.739784][ T3954] dirty 0
[ 3207.742983][ T3954] writeback 0
[ 3207.751431][ T3954] workingset_refault_anon 32453
[ 3207.756545][ T3954] workingset_refault_file 171
[ 3207.764325][ T3954] swap 585728
[ 3207.767875][ T3954] swapcached 0
[ 3207.772320][ T3954] pgpgin 783787
[ 3207.775983][ T3954] pgpgout 783784
[ 3207.780257][ T3954] pgfault 1288057
[ 3207.786068][ T3954] pgmajfault 27030
[ 3207.795415][ T3954] inactive_anon 12288
[ 3207.803600][ T3954] active_anon 0
[ 3207.813415][ T3954] inactive_file 0
[ 3207.828528][ T3954] active_file 0
[ 3207.837590][ T3954] unevictable 0
[ 3207.846317][ T3954] hierarchical_memory_limit 314572800
[ 3207.857773][ T3954] hierarchical_memsw_limit 9223372036854771712
[ 3207.873397][ T3954] total_cache 0
[ 3207.880842][ T3954] total_rss 12288
[ 3207.894274][ T3954] total_rss_huge 0
[ 3207.902774][ T3954] total_shmem 0
[ 3207.910329][ T3954] total_mapped_file 0
[ 3207.927399][ T3954] total_dirty 0
[ 3207.937122][ T3954] total_writeback 0
[ 3207.962736][ T3954] total_workingset_refault_anon 32453
[ 3207.989566][ T3954] total_workingset_refault_file 171
01:28:10 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4, 0x1, {0x11}}}}]}, 0x58}}, 0x0)

01:28:10 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}, 0x1, 0x6558000000000000}, 0x0)

01:28:10 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x0, 0x6000}, 0x0)

[ 3208.021299][ T3954] total_swap 585728
[ 3208.036019][ T3954] total_swapcached 0
[ 3208.072525][ T3954] total_pgpgin 783787
[ 3208.076547][ T3954] total_pgpgout 783784
[ 3208.109112][ T3954] total_pgfault 1288057
[ 3208.113319][ T3954] total_pgmajfault 27030
[ 3208.118475][ T3954] total_inactive_anon 12288
[ 3208.159494][ T3954] total_active_anon 0
[ 3208.169046][ T3954] total_inactive_file 0
[ 3208.181148][ T3954] total_active_file 0
[ 3208.195578][ T3954] total_unevictable 0
[ 3208.212831][ T3954] anon_cost 0
[ 3208.223111][ T3954] file_cost 0
[ 3208.234438][ T3954] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=3954,uid=0
01:28:10 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}, 0x1, 0x70fde8b400000000}, 0x0)

[ 3208.287450][ T3954] Memory cgroup out of memory: Killed process 3954 (syz-executor.2) total-vm:54508kB, anon-rss:0kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000
01:28:10 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4, 0x1, {0x14}}}}]}, 0x58}}, 0x0)

01:28:10 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x0, 0x6558}, 0x0)

01:28:10 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {0x10}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}}, 0x0)

01:28:10 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}, 0x1, 0x8100000000000000}, 0x0)

[ 3208.505613][ T4008] __nla_validate_parse: 31 callbacks suppressed
[ 3208.505633][ T4008] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 3208.644893][ T4010] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 3208.719062][ T4011] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3208.732041][ T4011] CPU: 1 PID: 4011 Comm: syz-executor.2 Not tainted 6.8.0-rc5-syzkaller-00002-gfca7526b7d89 #0
[ 3208.742397][ T4011] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024
[ 3208.752489][ T4011] Call Trace:
[ 3208.755792][ T4011]  <TASK>
[ 3208.758736][ T4011]  dump_stack_lvl+0x1e7/0x2e0
[ 3208.763443][ T4011]  ? __pfx_dump_stack_lvl+0x10/0x10
01:28:11 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4, 0x1, {0x15}}}}]}, 0x58}}, 0x0)

[ 3208.768675][ T4011]  ? __pfx__printk+0x10/0x10
[ 3208.773285][ T4011]  ? ___ratelimit+0x4c4/0x670
[ 3208.777998][ T4011]  ? __pfx____ratelimit+0x10/0x10
[ 3208.783054][ T4011]  dump_header+0xda/0x6a0
[ 3208.787423][ T4011]  oom_kill_process+0x3a7/0x930
[ 3208.792311][ T4011]  out_of_memory+0xf67/0x1320
[ 3208.797019][ T4011]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3208.802675][ T4011]  ? __pfx___mutex_lock+0x10/0x10
[ 3208.807727][ T4011]  ? __pfx_out_of_memory+0x10/0x10
[ 3208.812869][ T4011]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3208.818441][ T4011]  ? __pfx_lock_release+0x10/0x10
[ 3208.823506][ T4011]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3208.829604][ T4011]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3208.834829][ T4011]  ? mem_cgroup_iter+0x3e9/0x560
[ 3208.839975][ T4011]  try_charge_memcg+0xda2/0x18a0
[ 3208.844963][ T4011]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3208.850359][ T4011]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3208.856102][ T4011]  ? __pfx_lock_release+0x10/0x10
[ 3208.861162][ T4011]  ? memcg_account_kmem+0x1e7/0x210
[ 3208.866398][ T4011]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3208.872228][ T4011]  __memcg_kmem_charge_page+0xe1/0x250
[ 3208.877723][ T4011]  memcg_charge_kernel_stack+0x196/0x550
[ 3208.883382][ T4011]  dup_task_struct+0x40d/0x7d0
[ 3208.888180][ T4011]  copy_process+0x5d5/0x3fc0
[ 3208.892809][ T4011]  ? __might_fault+0xa9/0x120
[ 3208.897506][ T4011]  ? __pfx_lock_release+0x10/0x10
[ 3208.902577][ T4011]  ? __pfx_copy_process+0x10/0x10
[ 3208.907631][ T4011]  ? __might_fault+0xc5/0x120
[ 3208.912341][ T4011]  ? __asan_memset+0x23/0x50
[ 3208.916964][ T4011]  kernel_clone+0x21d/0x8d0
[ 3208.921498][ T4011]  ? __pfx_kernel_clone+0x10/0x10
[ 3208.926564][ T4011]  __se_sys_clone3+0x2cb/0x350
[ 3208.931357][ T4011]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3208.936703][ T4011]  ? do_syscall_64+0x108/0x240
[ 3208.941524][ T4011]  ? do_syscall_64+0xb4/0x240
[ 3208.946231][ T4011]  do_syscall_64+0xf9/0x240
[ 3208.950770][ T4011]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 3208.956688][ T4011] RIP: 0033:0x7f5706ea9b99
[ 3208.961123][ T4011] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 3208.980784][ T4011] RSP: 002b:00007f57070cf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 3208.989230][ T4011] RAX: ffffffffffffffda RBX: 00007f5706e52270 RCX: 00007f5706ea9b99
[ 3208.997221][ T4011] RDX: 00007f5706e52270 RSI: 0000000000000058 RDI: 00007f57070cf960
[ 3209.005216][ T4011] RBP: 00007f5707c6c6c0 R08: 00007f5707c6c6c0 R09: 00007f57070cfa47
[ 3209.013223][ T4011] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 3209.021299][ T4011] R13: 000000000000000b R14: 00007f57070cf960 R15: 00007f57070cfa48
[ 3209.029397][ T4011]  </TASK>
[ 3209.046713][ T4017] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
01:28:11 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x0, 0x8100}, 0x0)

01:28:11 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}, 0x1, 0x8847000000000000}, 0x0)

[ 3209.079271][ T4011] memory: usage 307200kB, limit 307200kB, failcnt 93564
[ 3209.099805][ T4011] memory+swap: usage 307764kB, limit 9007199254740988kB, failcnt 0
[ 3209.108756][ T4020] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 3209.158744][ T4011] kmem: usage 307180kB, limit 9007199254740988kB, failcnt 0
[ 3209.183701][ T4011] Memory cgroup stats for /syz2:
[ 3209.183845][ T4011] cache 0
[ 3209.203969][ T4011] rss 36864
01:28:11 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4, 0x1, {0x24}}}}]}, 0x58}}, 0x0)

[ 3209.214386][ T4011] rss_huge 0
[ 3209.221471][ T4023] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 3209.232245][ T4011] shmem 0
[ 3209.236087][ T4011] mapped_file 0
[ 3209.248861][ T4011] dirty 0
[ 3209.257750][ T4011] writeback 0
[ 3209.289964][ T4011] workingset_refault_anon 32488
[ 3209.309157][ T4011] workingset_refault_file 171
[ 3209.311920][ T4025] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 3209.326803][ T4011] swap 561152
[ 3209.340662][ T4011] swapcached 0
[ 3209.352938][ T4011] pgpgin 783851
[ 3209.362421][ T4011] pgpgout 783842
[ 3209.372830][ T4011] pgfault 1288165
[ 3209.382185][ T4029] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 3209.384621][ T4011] pgmajfault 27077
[ 3209.408391][ T4011] inactive_anon 24576
[ 3209.419720][ T4011] active_anon 12288
[ 3209.428676][ T4011] inactive_file 0
[ 3209.438750][ T4011] active_file 0
[ 3209.451618][ T4011] unevictable 0
[ 3209.462261][ T4011] hierarchical_memory_limit 314572800
[ 3209.474604][ T4011] hierarchical_memsw_limit 9223372036854771712
01:28:11 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x0, 0x8847}, 0x0)

01:28:11 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}, 0x1, 0x8848000000000000}, 0x0)

01:28:11 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4, 0x1, {0x28}}}}]}, 0x58}}, 0x0)

[ 3209.491055][ T4011] total_cache 0
[ 3209.503107][ T4011] total_rss 36864
[ 3209.515535][ T4011] total_rss_huge 0
[ 3209.534639][ T4011] total_shmem 0
[ 3209.542726][ T4011] total_mapped_file 0
[ 3209.553108][ T4011] total_dirty 0
[ 3209.561158][ T4011] total_writeback 0
[ 3209.570744][ T4011] total_workingset_refault_anon 32488
[ 3209.587560][ T4011] total_workingset_refault_file 171
[ 3209.600870][ T4011] total_swap 561152
[ 3209.607848][ T4033] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 3209.611686][ T4011] total_swapcached 0
[ 3209.636862][ T4011] total_pgpgin 783851
[ 3209.647767][ T4011] total_pgpgout 783842
[ 3209.657789][ T4011] total_pgfault 1288165
[ 3209.669017][ T4011] total_pgmajfault 27077
[ 3209.677138][ T4034] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 3209.688881][ T4011] total_inactive_anon 24576
[ 3209.700742][ T4011] total_active_anon 12288
[ 3209.710857][ T4011] total_inactive_file 0
[ 3209.721318][ T4011] total_active_file 0
[ 3209.733878][ T4011] total_unevictable 0
[ 3209.742408][ T4011] anon_cost 0
01:28:12 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x0, 0x8848}, 0x0)

[ 3209.743286][ T4038] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 3209.749517][ T4011] file_cost 0
[ 3209.774290][ T4011] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=4011,uid=0
[ 3209.828089][ T4011] Memory cgroup out of memory: Killed process 4011 (syz-executor.2) total-vm:54508kB, anon-rss:0kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000
[ 3209.862638][ T3973] syz-executor.0 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[ 3209.874325][ T3973] CPU: 1 PID: 3973 Comm: syz-executor.0 Not tainted 6.8.0-rc5-syzkaller-00002-gfca7526b7d89 #0
[ 3209.884699][ T3973] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024
[ 3209.894775][ T3973] Call Trace:
[ 3209.898076][ T3973]  <TASK>
[ 3209.901031][ T3973]  dump_stack_lvl+0x1e7/0x2e0
[ 3209.905768][ T3973]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3209.911002][ T3973]  ? __pfx__printk+0x10/0x10
[ 3209.915622][ T3973]  ? ___ratelimit+0x4c4/0x670
[ 3209.920342][ T3973]  ? __pfx____ratelimit+0x10/0x10
[ 3209.925404][ T3973]  dump_header+0xda/0x6a0
[ 3209.929772][ T3973]  oom_kill_process+0x3a7/0x930
[ 3209.934658][ T3973]  out_of_memory+0xf67/0x1320
[ 3209.939377][ T3973]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3209.945030][ T3973]  ? __pfx___mutex_lock+0x10/0x10
[ 3209.950078][ T3973]  ? __pfx_out_of_memory+0x10/0x10
[ 3209.955230][ T3973]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3209.960804][ T3973]  ? __pfx_lock_release+0x10/0x10
[ 3209.965863][ T3973]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3209.971972][ T3973]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3209.977202][ T3973]  ? mem_cgroup_iter+0x422/0x560
[ 3209.982172][ T3973]  try_charge_memcg+0xda2/0x18a0
[ 3209.987128][ T3973]  ? mark_lock+0x9a/0x350
[ 3209.991509][ T3973]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3209.996942][ T3973]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 3210.003120][ T3973]  charge_memcg+0xa2/0x160
[ 3210.007555][ T3973]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 3210.013642][ T3973]  __read_swap_cache_async+0x480/0x8b0
[ 3210.019132][ T3973]  ? mark_lock+0x9a/0x350
[ 3210.023495][ T3973]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 3210.029522][ T3973]  swap_cluster_readahead+0x67c/0x810
[ 3210.034921][ T3973]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 3210.040819][ T3973]  ? __pfx_lock_release+0x10/0x10
[ 3210.045845][ T3973]  ? xas_descend+0x37e/0x470
[ 3210.050452][ T3973]  swapin_readahead+0x1ea/0x1070
[ 3210.055392][ T3973]  ? filemap_get_entry+0x127/0x4e0
[ 3210.060512][ T3973]  ? __pfx_swapin_readahead+0x10/0x10
[ 3210.065894][ T3973]  ? __filemap_get_folio+0x935/0xbc0
[ 3210.071182][ T3973]  ? swap_cache_get_folio+0x9f/0x570
[ 3210.076473][ T3973]  do_swap_page+0x8ab/0x3da0
[ 3210.081067][ T3973]  ? __pte_offset_map+0x2c4/0x380
[ 3210.086100][ T3973]  ? __pfx_lock_acquire+0x10/0x10
[ 3210.091122][ T3973]  ? do_swap_page+0x154/0x3da0
[ 3210.095881][ T3973]  ? __pfx_do_swap_page+0x10/0x10
[ 3210.100898][ T3973]  ? pte_offset_map_nolock+0x137/0x1f0
[ 3210.106354][ T3973]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 3210.112179][ T3973]  __handle_mm_fault+0x15e8/0x72d0
[ 3210.117304][ T3973]  ? reacquire_held_locks+0x3eb/0x690
[ 3210.122675][ T3973]  ? __pfx___handle_mm_fault+0x10/0x10
[ 3210.128224][ T3973]  ? __pfx_reacquire_held_locks+0x10/0x10
[ 3210.133959][ T3973]  ? mtree_range_walk+0x6fd/0x8e0
[ 3210.138984][ T3973]  ? lock_vma_under_rcu+0x18a/0x730
[ 3210.144623][ T3973]  ? __pfx_lock_release+0x10/0x10
[ 3210.149646][ T3973]  ? lock_vma_under_rcu+0x2f9/0x730
[ 3210.154860][ T3973]  ? lock_vma_under_rcu+0x18a/0x730
[ 3210.160144][ T3973]  ? __pfx_lock_vma_under_rcu+0x10/0x10
[ 3210.165688][ T3973]  handle_mm_fault+0x3c1/0x8a0
[ 3210.170455][ T3973]  exc_page_fault+0x456/0x870
[ 3210.175135][ T3973]  asm_exc_page_fault+0x26/0x30
[ 3210.179985][ T3973] RIP: 0033:0x7f5af4e39afe
[ 3210.184392][ T3973] Code: d2 0f 84 65 01 00 00 83 c0 01 41 39 c2 75 da 89 e8 25 ff 1f 00 00 41 89 2c 86 89 ef 41 83 c4 01 e8 47 e7 fe ff 83 44 24 08 01 <44> 3b 63 04 0f 82 37 ff ff ff 44 8b 4c 24 08 48 8b 2c 24 49 89 df
[ 3210.203991][ T3973] RSP: 002b:00007f5af50cfa60 EFLAGS: 00010206
[ 3210.210077][ T3973] RAX: 0000001b31720068 RBX: 00007f5af4fac018 RCX: 0000001b31720000
[ 3210.218039][ T3973] RDX: 0000001b3172006c RSI: 0000000080000000 RDI: 000000008b5b5a8d
01:28:12 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {0x11}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}}, 0x0)

01:28:12 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}, 0x1, 0x88a8ffff00000000}, 0x0)

01:28:12 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4, 0x1, {0x60}}}}]}, 0x58}}, 0x0)

[ 3210.226005][ T3973] RBP: 000000008b5b5a8d R08: 0000001b31b20000 R09: 0000000000001a8d
[ 3210.233970][ T3973] R10: 000000008b5b5a91 R11: 00000000000971f2 R12: 0000000000000012
[ 3210.241945][ T3973] R13: 0000000000000001 R14: 00007f5af4fa0000 R15: ffffffff8b5b5bd4
[ 3210.250006][ T3973]  ? mtree_range_walk+0x2c4/0x8e0
[ 3210.255128][ T3973]  </TASK>
[ 3210.317340][ T3973] memory: usage 307200kB, limit 307200kB, failcnt 47429
[ 3210.328287][ T3973] memory+swap: usage 307616kB, limit 9007199254740988kB, failcnt 0
[ 3210.339091][ T3973] kmem: usage 307180kB, limit 9007199254740988kB, failcnt 0
[ 3210.354633][ T3973] Memory cgroup stats for /syz0:
[ 3210.354769][ T3973] cache 0
[ 3210.363309][ T3973] rss 20480
01:28:12 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x0, 0x34000}, 0x0)

[ 3210.366573][ T3973] rss_huge 0
[ 3210.371758][ T3973] shmem 0
[ 3210.374901][ T3973] mapped_file 0
[ 3210.389820][ T3973] dirty 0
[ 3210.395457][ T3973] writeback 0
[ 3210.399489][ T3973] workingset_refault_anon 19477
[ 3210.404747][ T3973] workingset_refault_file 56
[ 3210.414311][ T3973] swap 425984
01:28:12 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}, 0x1, 0xa9dd67e8517f0000}, 0x0)

[ 3210.417733][ T3973] swapcached 0
[ 3210.426913][ T3973] pgpgin 798692
[ 3210.430840][ T3973] pgpgout 798687
[ 3210.440432][ T3973] pgfault 1288168
[ 3210.444402][ T3973] pgmajfault 18200
[ 3210.448228][ T3973] inactive_anon 8192
[ 3210.453060][ T3973] active_anon 12288
[ 3210.457301][ T3973] inactive_file 0
[ 3210.461408][ T3973] active_file 0
01:28:12 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4, 0x1, {0x300}}}}]}, 0x58}}, 0x0)

[ 3210.464963][ T3973] unevictable 0
[ 3210.468559][ T3973] hierarchical_memory_limit 314572800
[ 3210.475910][ T3973] hierarchical_memsw_limit 9223372036854771712
[ 3210.529392][ T3973] total_cache 0
[ 3210.533056][ T3973] total_rss 20480
[ 3210.541197][ T3973] total_rss_huge 0
[ 3210.553947][ T3973] total_shmem 0
[ 3210.558450][ T3973] total_mapped_file 0
[ 3210.563254][ T3973] total_dirty 0
[ 3210.566876][ T3973] total_writeback 0
[ 3210.571133][ T3973] total_workingset_refault_anon 19477
[ 3210.578021][ T3973] total_workingset_refault_file 56
[ 3210.583639][ T3973] total_swap 425984
[ 3210.587575][ T3973] total_swapcached 0
[ 3210.592269][ T3973] total_pgpgin 798692
[ 3210.596401][ T3973] total_pgpgout 798687
[ 3210.600933][ T3973] total_pgfault 1288168
[ 3210.605569][ T3973] total_pgmajfault 18200
[ 3210.612514][ T3973] total_inactive_anon 8192
[ 3210.617171][ T3973] total_active_anon 12288
01:28:13 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x0, 0x400300}, 0x0)

01:28:13 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4, 0x1, {0x3a2}}}}]}, 0x58}}, 0x0)

01:28:13 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}, 0x1, 0xf0ffffff00000000}, 0x0)

[ 3210.640749][ T3973] total_inactive_file 0
[ 3210.679688][ T3973] total_active_file 0
[ 3210.688333][ T3973] total_unevictable 0
[ 3210.708899][ T3973] anon_cost 0
[ 3210.717474][ T3973] file_cost 0
01:28:13 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x0, 0x1000000}, 0x0)

[ 3210.725306][ T3973] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=3973,uid=0
[ 3210.741312][ T3973] Memory cgroup out of memory: Killed process 3973 (syz-executor.0) total-vm:54508kB, anon-rss:0kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000
[ 3210.824532][ T4064] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=0
[ 3210.850015][ T4064] CPU: 1 PID: 4064 Comm: syz-executor.2 Not tainted 6.8.0-rc5-syzkaller-00002-gfca7526b7d89 #0
[ 3210.860386][ T4064] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024
[ 3210.870466][ T4064] Call Trace:
[ 3210.873761][ T4064]  <TASK>
[ 3210.876707][ T4064]  dump_stack_lvl+0x1e7/0x2e0
[ 3210.881423][ T4064]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3210.886645][ T4064]  ? __pfx__printk+0x10/0x10
[ 3210.891259][ T4064]  ? ___ratelimit+0x4c4/0x670
[ 3210.895964][ T4064]  ? __pfx____ratelimit+0x10/0x10
[ 3210.901017][ T4064]  dump_header+0xda/0x6a0
[ 3210.905382][ T4064]  oom_kill_process+0x3a7/0x930
[ 3210.910261][ T4064]  out_of_memory+0xf67/0x1320
[ 3210.914965][ T4064]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3210.920624][ T4064]  ? __pfx___mutex_lock+0x10/0x10
[ 3210.925662][ T4064]  ? __pfx_out_of_memory+0x10/0x10
[ 3210.930769][ T4064]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3210.936304][ T4064]  ? __pfx_lock_release+0x10/0x10
[ 3210.941323][ T4064]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3210.947380][ T4064]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3210.952569][ T4064]  ? mem_cgroup_iter+0x3e9/0x560
[ 3210.957501][ T4064]  try_charge_memcg+0xda2/0x18a0
[ 3210.962444][ T4064]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3210.967833][ T4064]  ? percpu_ref_tryget+0x14/0x180
[ 3210.972858][ T4064]  charge_memcg+0xa2/0x160
[ 3210.977265][ T4064]  __mem_cgroup_charge+0x27/0x80
[ 3210.982200][ T4064]  folio_prealloc+0x52/0x170
[ 3210.986785][ T4064]  do_wp_page+0x1222/0x4c90
[ 3210.991297][ T4064]  ? __pfx_do_wp_page+0x10/0x10
[ 3210.996162][ T4064]  ? __pfx_lock_acquire+0x10/0x10
[ 3211.001287][ T4064]  ? do_raw_spin_lock+0x14e/0x370
[ 3211.006320][ T4064]  __handle_mm_fault+0x26ad/0x72d0
[ 3211.011447][ T4064]  ? reacquire_held_locks+0x3eb/0x690
[ 3211.016904][ T4064]  ? __pfx___handle_mm_fault+0x10/0x10
[ 3211.022364][ T4064]  ? __pfx_reacquire_held_locks+0x10/0x10
[ 3211.028084][ T4064]  ? mtree_range_walk+0x6fd/0x8e0
[ 3211.033099][ T4064]  ? lock_vma_under_rcu+0x18a/0x730
[ 3211.038284][ T4064]  ? __pfx_lock_release+0x10/0x10
[ 3211.043314][ T4064]  ? lock_vma_under_rcu+0x2f9/0x730
[ 3211.048519][ T4064]  ? lock_vma_under_rcu+0x18a/0x730
[ 3211.053737][ T4064]  ? __pfx_lock_vma_under_rcu+0x10/0x10
[ 3211.059282][ T4064]  handle_mm_fault+0x3c1/0x8a0
[ 3211.064129][ T4064]  exc_page_fault+0x456/0x870
[ 3211.068803][ T4064]  asm_exc_page_fault+0x26/0x30
[ 3211.073648][ T4064] RIP: 0033:0x7f5706e7a9c9
[ 3211.078051][ T4064] Code: 48 83 3d a1 e5 0f 00 00 0f 84 83 02 00 00 e8 7e f7 fd ff e8 f9 03 00 00 41 89 c4 85 c0 0f 85 7e 02 00 00 48 8b 05 97 fd c5 00 <c7> 05 ad 4b 10 00 01 00 00 00 c7 05 03 09 c6 00 00 00 00 00 c7 05
[ 3211.097652][ T4064] RSP: 002b:00007f57070cfc60 EFLAGS: 00010246
[ 3211.103723][ T4064] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007f5706e7ae0d
[ 3211.111688][ T4064] RDX: 0000000000000000 RSI: 0000000000000018 RDI: 0000555556349760
01:28:13 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x44, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x14, 0x2, [@TCA_FLOW_EMATCHES={0x10, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100, 0xfff2}}, @TCA_EMATCH_TREE_LIST={0x4}]}]}}]}, 0x44}}, 0x0)

01:28:13 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x0, 0x2000000}, 0x0)

01:28:13 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}, 0x1, 0xf1ffffff00000000}, 0x0)

01:28:13 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4, 0x1, {0x500}}}}]}, 0x58}}, 0x0)

[ 3211.119661][ T4064] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[ 3211.127642][ T4064] R10: 0000555556349750 R11: 0000000000000246 R12: 0000000000000000
[ 3211.135604][ T4064] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 3211.143575][ T4064]  </TASK>
[ 3211.169495][ T4064] memory: usage 307200kB, limit 307200kB, failcnt 93679
[ 3211.176497][ T4064] memory+swap: usage 307684kB, limit 9007199254740988kB, failcnt 0
[ 3211.209061][ T4064] kmem: usage 307132kB, limit 9007199254740988kB, failcnt 0
01:28:13 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x0, 0x3000000}, 0x0)

[ 3211.216398][ T4064] Memory cgroup stats for /syz2:
[ 3211.216511][ T4064] cache 0
[ 3211.250052][ T4064] rss 40960
[ 3211.259445][ T4064] rss_huge 0
[ 3211.288678][ T4064] shmem 0
[ 3211.293056][ T4064] mapped_file 0
[ 3211.307035][ T4064] dirty 0
[ 3211.312793][ T4064] writeback 0
[ 3211.324049][ T4064] workingset_refault_anon 32488
[ 3211.329250][ T4064] workingset_refault_file 171
[ 3211.335027][ T4064] swap 516096
[ 3211.338450][ T4064] swapcached 0
[ 3211.342094][ T4064] pgpgin 783859
[ 3211.345683][ T4064] pgpgout 783849
[ 3211.350324][ T4064] pgfault 1288175
[ 3211.354089][ T4064] pgmajfault 27085
[ 3211.357924][ T4064] inactive_anon 0
[ 3211.365591][ T4064] active_anon 40960
[ 3211.374200][ T4064] inactive_file 0
[ 3211.382530][ T4064] active_file 0
[ 3211.393855][ T4064] unevictable 0
01:28:13 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4, 0x1, {0x600}}}}]}, 0x58}}, 0x0)

[ 3211.406174][ T4064] hierarchical_memory_limit 314572800
[ 3211.413051][ T4064] hierarchical_memsw_limit 9223372036854771712
[ 3211.419736][ T4064] total_cache 0
[ 3211.423306][ T4064] total_rss 40960
[ 3211.427053][ T4064] total_rss_huge 0
[ 3211.431754][ T4064] total_shmem 0
[ 3211.440410][ T4064] total_mapped_file 0
[ 3211.447431][ T4064] total_dirty 0
[ 3211.451602][ T4064] total_writeback 0
01:28:13 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)

01:28:13 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}, 0x1, 0xfcffffff00000000}, 0x0)

[ 3211.469420][ T4064] total_workingset_refault_anon 32488
[ 3211.474816][ T4064] total_workingset_refault_file 171
[ 3211.483837][ T4064] total_swap 516096
[ 3211.498180][ T4064] total_swapcached 0
[ 3211.504438][ T4064] total_pgpgin 783859
[ 3211.508445][ T4064] total_pgpgout 783849
[ 3211.523904][ T4064] total_pgfault 1288175
[ 3211.528095][ T4064] total_pgmajfault 27085
[ 3211.538381][ T4064] total_inactive_anon 0
[ 3211.544605][ T4064] total_active_anon 40960
[ 3211.550039][ T4064] total_inactive_file 0
[ 3211.554412][ T4064] total_active_file 0
[ 3211.559602][ T4064] total_unevictable 0
[ 3211.563759][ T4064] anon_cost 0
[ 3211.567433][ T4064] file_cost 0
01:28:13 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4, 0x1, {0x700}}}}]}, 0x58}}, 0x0)

01:28:14 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}, 0x1, 0xffffff7f00000000}, 0x0)

[ 3211.574781][ T4064] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=5104,uid=0
[ 3211.594480][ T4064] Memory cgroup out of memory: Killed process 5104 (syz-executor.2) total-vm:50536kB, anon-rss:0kB, file-rss:8704kB, shmem-rss:0kB, UID:0 pgtables:80kB oom_score_adj:0
[ 3211.640213][ T4070] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=0
[ 3211.664820][ T4070] CPU: 1 PID: 4070 Comm: syz-executor.0 Not tainted 6.8.0-rc5-syzkaller-00002-gfca7526b7d89 #0
[ 3211.675194][ T4070] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024
[ 3211.685270][ T4070] Call Trace:
[ 3211.688572][ T4070]  <TASK>
[ 3211.691536][ T4070]  dump_stack_lvl+0x1e7/0x2e0
[ 3211.696251][ T4070]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3211.701476][ T4070]  ? __pfx__printk+0x10/0x10
[ 3211.706085][ T4070]  ? ___ratelimit+0x4c4/0x670
[ 3211.710767][ T4070]  ? __pfx____ratelimit+0x10/0x10
[ 3211.715798][ T4070]  dump_header+0xda/0x6a0
[ 3211.720138][ T4070]  oom_kill_process+0x3a7/0x930
[ 3211.725006][ T4070]  out_of_memory+0xf67/0x1320
[ 3211.729684][ T4070]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3211.735313][ T4070]  ? __pfx___mutex_lock+0x10/0x10
[ 3211.740344][ T4070]  ? __pfx_out_of_memory+0x10/0x10
[ 3211.745465][ T4070]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3211.751102][ T4070]  ? __pfx_lock_release+0x10/0x10
[ 3211.756126][ T4070]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3211.762205][ T4070]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3211.767409][ T4070]  ? mem_cgroup_iter+0x422/0x560
[ 3211.772346][ T4070]  try_charge_memcg+0xda2/0x18a0
[ 3211.777295][ T4070]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3211.782664][ T4070]  ? percpu_ref_tryget+0x14/0x180
[ 3211.787696][ T4070]  charge_memcg+0xa2/0x160
[ 3211.792113][ T4070]  __mem_cgroup_charge+0x27/0x80
[ 3211.797051][ T4070]  folio_prealloc+0x52/0x170
[ 3211.801641][ T4070]  do_wp_page+0x1222/0x4c90
[ 3211.806155][ T4070]  ? __pfx_do_wp_page+0x10/0x10
[ 3211.811003][ T4070]  ? __pfx_lock_acquire+0x10/0x10
[ 3211.816032][ T4070]  ? do_raw_spin_lock+0x14e/0x370
[ 3211.821057][ T4070]  ? __pfx_validate_chain+0x10/0x10
[ 3211.826253][ T4070]  __handle_mm_fault+0x26ad/0x72d0
[ 3211.831382][ T4070]  ? __pfx___handle_mm_fault+0x10/0x10
[ 3211.836926][ T4070]  ? mt_find+0x226/0x850
[ 3211.841166][ T4070]  ? __pfx_lock_release+0x10/0x10
[ 3211.846200][ T4070]  ? mt_find+0x62d/0x850
[ 3211.850451][ T4070]  ? mt_find+0x226/0x850
[ 3211.854705][ T4070]  ? find_vma+0x142/0x1c0
[ 3211.859033][ T4070]  ? __pfx_find_vma+0x10/0x10
[ 3211.863723][ T4070]  handle_mm_fault+0x3c1/0x8a0
[ 3211.868520][ T4070]  exc_page_fault+0x2ad/0x870
[ 3211.873203][ T4070]  asm_exc_page_fault+0x26/0x30
[ 3211.878053][ T4070] RIP: 0010:__put_user_4+0x11/0x20
[ 3211.883176][ T4070] Code: 1f 84 00 00 00 00 00 66 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 89 cb 48 c1 fb 3f 48 09 d9 0f 01 cb <89> 01 31 c9 0f 01 ca c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90
[ 3211.902800][ T4070] RSP: 0018:ffffc90005847f00 EFLAGS: 00050206
[ 3211.908879][ T4070] RAX: 0000000000007d12 RBX: 0000000000000000 RCX: 000055555603f750
[ 3211.916851][ T4070] RDX: 0000000000000000 RSI: ffffffff8baac7e0 RDI: ffffffff8bfe6da0
[ 3211.924833][ T4070] RBP: ffff88806fa641f0 R08: ffffffff8f85672f R09: 1ffffffff1f0ace5
[ 3211.932802][ T4070] R10: dffffc0000000000 R11: fffffbfff1f0ace6 R12: 0000000000000000
[ 3211.940770][ T4070] R13: 0000000000000000 R14: 0000000000007d12 R15: dffffc0000000000
[ 3211.948753][ T4070]  schedule_tail+0x95/0xb0
[ 3211.953265][ T4070]  ret_from_fork+0x24/0x80
[ 3211.957681][ T4070]  ret_from_fork_asm+0x1b/0x30
[ 3211.962463][ T4070]  </TASK>
01:28:14 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x0, 0x5000000}, 0x0)

[ 3211.995555][ T4070] memory: usage 307200kB, limit 307200kB, failcnt 47577
[ 3212.013607][ T4070] memory+swap: usage 307496kB, limit 9007199254740988kB, failcnt 0
[ 3212.031135][ T4070] kmem: usage 307124kB, limit 9007199254740988kB, failcnt 0
[ 3212.038628][ T4070] Memory cgroup stats for /syz0:
[ 3212.038762][ T4070] cache 0
[ 3212.049674][ T4070] rss 73728
[ 3212.052939][ T4070] rss_huge 0
[ 3212.056335][ T4070] shmem 0
[ 3212.062210][ T4070] mapped_file 0
[ 3212.071971][ T4070] dirty 0
[ 3212.075052][ T4070] writeback 0
[ 3212.078445][ T4070] workingset_refault_anon 19487
[ 3212.084458][ T4070] workingset_refault_file 56
[ 3212.089679][ T4070] swap 303104
[ 3212.093087][ T4070] swapcached 0
[ 3212.096563][ T4070] pgpgin 798707
[ 3212.100274][ T4070] pgpgout 798689
[ 3212.103989][ T4070] pgfault 1288196
[ 3212.107759][ T4070] pgmajfault 18212
[ 3212.114332][ T4070] inactive_anon 8192
[ 3212.118328][ T4070] active_anon 65536
[ 3212.122780][ T4070] inactive_file 0
[ 3212.126518][ T4070] active_file 0
[ 3212.130143][ T4070] unevictable 0
[ 3212.134366][ T4070] hierarchical_memory_limit 314572800
[ 3212.139967][ T4070] hierarchical_memsw_limit 9223372036854771712
[ 3212.146218][ T4070] total_cache 0
[ 3212.151654][ T4070] total_rss 73728
[ 3212.155325][ T4070] total_rss_huge 0
[ 3212.159351][ T4070] total_shmem 0
[ 3212.162830][ T4070] total_mapped_file 0
[ 3212.166856][ T4070] total_dirty 0
[ 3212.170452][ T4070] total_writeback 0
[ 3212.174273][ T4070] total_workingset_refault_anon 19487
[ 3212.181120][ T4070] total_workingset_refault_file 56
[ 3212.186265][ T4070] total_swap 303104
01:28:14 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}, 0x1, 0xffffffff00000000}, 0x0)

01:28:14 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4, 0x1, {0x900}}}}]}, 0x58}}, 0x0)

[ 3212.194361][ T4070] total_swapcached 0
[ 3212.198331][ T4070] total_pgpgin 798707
[ 3212.207938][ T4070] total_pgpgout 798689
[ 3212.213842][ T4070] total_pgfault 1288196
[ 3212.235563][ T4070] total_pgmajfault 18212
[ 3212.247721][ T4070] total_inactive_anon 8192
[ 3212.254808][ T4070] total_active_anon 65536
[ 3212.262096][ T4070] total_inactive_file 0
[ 3212.266458][ T4070] total_active_file 0
[ 3212.274555][ T4070] total_unevictable 0
[ 3212.278666][ T4070] anon_cost 0
[ 3212.284541][ T4070] file_cost 0
01:28:14 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x0, 0x6000000}, 0x0)

[ 3212.293433][ T4070] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=5110,uid=0
[ 3212.334295][ T4070] Memory cgroup out of memory: Killed process 5110 (syz-executor.0) total-vm:50536kB, anon-rss:0kB, file-rss:8704kB, shmem-rss:0kB, UID:0 pgtables:80kB oom_score_adj:0
01:28:14 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}, 0x1, 0x0, 0x2}, 0x0)

[ 3212.437776][ T4070] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=0
[ 3212.449476][ T4070] CPU: 1 PID: 4070 Comm: syz-executor.0 Not tainted 6.8.0-rc5-syzkaller-00002-gfca7526b7d89 #0
[ 3212.459852][ T4070] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024
[ 3212.469928][ T4070] Call Trace:
[ 3212.473208][ T4070]  <TASK>
[ 3212.476134][ T4070]  dump_stack_lvl+0x1e7/0x2e0
[ 3212.480824][ T4070]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3212.486026][ T4070]  ? __pfx__printk+0x10/0x10
[ 3212.490611][ T4070]  ? ___ratelimit+0x4c4/0x670
[ 3212.495289][ T4070]  ? __pfx____ratelimit+0x10/0x10
[ 3212.500315][ T4070]  dump_header+0xda/0x6a0
[ 3212.504647][ T4070]  oom_kill_process+0x3a7/0x930
[ 3212.509500][ T4070]  out_of_memory+0xf67/0x1320
[ 3212.514179][ T4070]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3212.519814][ T4070]  ? __pfx___mutex_lock+0x10/0x10
[ 3212.524865][ T4070]  ? __pfx_out_of_memory+0x10/0x10
[ 3212.529996][ T4070]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3212.535553][ T4070]  ? __pfx_lock_release+0x10/0x10
[ 3212.540596][ T4070]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3212.546668][ T4070]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3212.551961][ T4070]  ? mem_cgroup_iter+0x422/0x560
[ 3212.556896][ T4070]  try_charge_memcg+0xda2/0x18a0
[ 3212.561938][ T4070]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3212.567417][ T4070]  ? percpu_ref_tryget+0x14/0x180
[ 3212.572450][ T4070]  charge_memcg+0xa2/0x160
[ 3212.576868][ T4070]  __mem_cgroup_charge+0x27/0x80
[ 3212.581804][ T4070]  folio_prealloc+0x52/0x170
[ 3212.586497][ T4070]  do_wp_page+0x1222/0x4c90
[ 3212.591019][ T4070]  ? __pfx_do_wp_page+0x10/0x10
[ 3212.595970][ T4070]  ? __pfx_lock_acquire+0x10/0x10
[ 3212.600999][ T4070]  ? do_raw_spin_lock+0x14e/0x370
[ 3212.606025][ T4070]  ? __pfx_validate_chain+0x10/0x10
[ 3212.611219][ T4070]  __handle_mm_fault+0x26ad/0x72d0
[ 3212.616358][ T4070]  ? __pfx___handle_mm_fault+0x10/0x10
[ 3212.621919][ T4070]  ? mt_find+0x226/0x850
[ 3212.626184][ T4070]  ? __pfx_lock_release+0x10/0x10
[ 3212.631223][ T4070]  ? mt_find+0x62d/0x850
[ 3212.635467][ T4070]  ? mt_find+0x226/0x850
[ 3212.639731][ T4070]  ? find_vma+0x142/0x1c0
[ 3212.644059][ T4070]  ? __pfx_find_vma+0x10/0x10
[ 3212.648737][ T4070]  handle_mm_fault+0x3c1/0x8a0
[ 3212.653506][ T4070]  exc_page_fault+0x2ad/0x870
[ 3212.658188][ T4070]  asm_exc_page_fault+0x26/0x30
[ 3212.663035][ T4070] RIP: 0010:__put_user_4+0x11/0x20
[ 3212.668145][ T4070] Code: 1f 84 00 00 00 00 00 66 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 89 cb 48 c1 fb 3f 48 09 d9 0f 01 cb <89> 01 31 c9 0f 01 ca c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90
[ 3212.688099][ T4070] RSP: 0018:ffffc90005847f00 EFLAGS: 00050206
[ 3212.694175][ T4070] RAX: 0000000000007d12 RBX: 0000000000000000 RCX: 000055555603f750
[ 3212.702146][ T4070] RDX: 0000000000000000 RSI: ffffffff8baac7e0 RDI: ffffffff8bfe6da0
[ 3212.710119][ T4070] RBP: ffff88806fa641f0 R08: ffffffff8f85672f R09: 1ffffffff1f0ace5
[ 3212.718092][ T4070] R10: dffffc0000000000 R11: fffffbfff1f0ace6 R12: 0000000000000000
[ 3212.726071][ T4070] R13: 0000000000000000 R14: 0000000000007d12 R15: dffffc0000000000
[ 3212.734065][ T4070]  schedule_tail+0x95/0xb0
01:28:15 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {0x14}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}}, 0x0)

[ 3212.738509][ T4070]  ret_from_fork+0x24/0x80
[ 3212.742931][ T4070]  ret_from_fork_asm+0x1b/0x30
[ 3212.747706][ T4070]  </TASK>
[ 3212.803559][ T4070] memory: usage 307164kB, limit 307200kB, failcnt 47628
[ 3212.814294][ T4070] memory+swap: usage 307460kB, limit 9007199254740988kB, failcnt 0
[ 3212.822838][ T4070] kmem: usage 307092kB, limit 9007199254740988kB, failcnt 0
[ 3212.831661][ T4070] Memory cgroup stats for /syz0:
[ 3212.831768][ T4070] cache 0
[ 3212.840358][ T4070] rss 77824
01:28:15 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x0, 0x7000000}, 0x0)

01:28:15 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4, 0x1, {0xa00}}}}]}, 0x58}}, 0x0)

[ 3212.879066][ T4070] rss_huge 0
[ 3212.882425][ T4070] shmem 0
[ 3212.885389][ T4070] mapped_file 0
[ 3212.888855][ T4070] dirty 0
[ 3212.927621][ T4070] writeback 0
[ 3212.942046][ T4070] workingset_refault_anon 19487
[ 3212.967541][ T4070] workingset_refault_file 56
01:28:15 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}, 0x1, 0x0, 0x3}, 0x0)

[ 3212.983410][ T4070] swap 303104
[ 3212.991539][ T4070] swapcached 0
[ 3213.000944][ T4070] pgpgin 798708
[ 3213.007945][ T4070] pgpgout 798689
[ 3213.013357][T30539] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 3213.024498][ T4070] pgfault 1288197
[ 3213.029968][ T4070] pgmajfault 18212
[ 3213.037401][ T4070] inactive_anon 8192
[ 3213.046711][ T4070] active_anon 69632
[ 3213.056836][ T4070] inactive_file 0
[ 3213.060857][ T4070] active_file 0
[ 3213.064466][ T4070] unevictable 0
[ 3213.068167][ T4070] hierarchical_memory_limit 314572800
[ 3213.084416][ T4070] hierarchical_memsw_limit 9223372036854771712
[ 3213.091923][ T4070] total_cache 0
[ 3213.095635][ T4070] total_rss 77824
[ 3213.100024][ T4070] total_rss_huge 0
[ 3213.103934][ T4070] total_shmem 0
[ 3213.107547][ T4070] total_mapped_file 0
[ 3213.111768][ T4070] total_dirty 0
[ 3213.115378][ T4070] total_writeback 0
[ 3213.119538][ T4070] total_workingset_refault_anon 19487
[ 3213.125073][ T4070] total_workingset_refault_file 56
[ 3213.150261][ T4070] total_swap 303104
[ 3213.164004][ T4070] total_swapcached 0
[ 3213.174543][ T4070] total_pgpgin 798708
[ 3213.183087][ T4070] total_pgpgout 798689
[ 3213.187187][ T4070] total_pgfault 1288197
01:28:15 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x0, 0x8000000}, 0x0)

01:28:15 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4, 0x1, {0xb00}}}}]}, 0x58}}, 0x0)

[ 3213.204422][ T4070] total_pgmajfault 18212
[ 3213.218819][ T4070] total_inactive_anon 8192
[ 3213.228984][ T4070] total_active_anon 69632
[ 3213.235509][ T4070] total_inactive_file 0
[ 3213.242141][ T4070] total_active_file 0
01:28:15 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {0x15}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}}, 0x0)

[ 3213.264306][ T4070] total_unevictable 0
[ 3213.268353][ T4070] anon_cost 0
[ 3213.301562][ T4070] file_cost 0
[ 3213.304909][ T4070] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=4070,uid=0
01:28:15 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}, 0x1, 0x0, 0x4}, 0x0)

[ 3213.351447][ T4070] Memory cgroup out of memory: Killed process 4070 (syz-executor.0) total-vm:50536kB, anon-rss:0kB, file-rss:8192kB, shmem-rss:0kB, UID:0 pgtables:68kB oom_score_adj:0
[ 3213.404306][T30539] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
01:28:15 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x0, 0x9000000}, 0x0)

[ 3213.668537][ T4070] ¡: Port device macvlan3 removed
01:28:16 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4, 0x1, {0xc00}}}}]}, 0x58}}, 0x0)

[ 3213.773213][T30539] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
01:28:16 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x44, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x14, 0x2, [@TCA_FLOW_EMATCHES={0x10, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x2}]}]}}]}, 0x44}}, 0x0)

[ 3213.830871][ T4132] __nla_validate_parse: 29 callbacks suppressed
[ 3213.830893][ T4132] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 3213.937763][ T4136] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'.
01:28:16 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}, 0x1, 0x0, 0x5}, 0x0)

01:28:16 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x0, 0xa000000}, 0x0)

[ 3214.083637][T30539] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 3214.206037][ T4141] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
01:28:16 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4, 0x1, {0xf00}}}}]}, 0x58}}, 0x0)

[ 3214.334739][ T4146] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
01:28:16 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x44, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x14, 0x2, [@TCA_FLOW_EMATCHES={0x10, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x3}]}]}}]}, 0x44}}, 0x0)

[ 3214.464207][ T4149] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 3214.563612][ T4154] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 3214.892971][T30539] tipc: Left network mode
01:28:17 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}, 0x1, 0x0, 0x6}, 0x0)

01:28:17 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4, 0x1, {0x1100}}}}]}, 0x58}}, 0x0)

01:28:17 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x0, 0xb000000}, 0x0)

[ 3215.531790][ T4172] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 3215.720971][ T4175] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
01:28:18 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4, 0x1, {0x1400}}}}]}, 0x58}}, 0x0)

[ 3215.785001][ T4176] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
01:28:18 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}, 0x1, 0x0, 0x7}, 0x0)

01:28:18 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x0, 0xc000000}, 0x0)

01:28:18 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}, 0x1, 0x0, 0x8}, 0x0)

[ 3215.931108][ T4183] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 3215.984789][T30539] batman_adv: batadv0: Removing interface: gretap1
[ 3216.018527][T30539] batman_adv: batadv0: Removing interface: gretap2
[ 3216.046278][T30539] batman_adv: batadv0: Removing interface: gretap3
01:28:18 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x0, 0xf000000}, 0x0)

01:28:18 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4, 0x1, {0x1500}}}}]}, 0x58}}, 0x0)

01:28:18 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}, 0x1, 0x0, 0x9}, 0x0)

01:28:18 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}, 0x1, 0x0, 0xa}, 0x0)

[ 3216.301457][T30539] IPVS: stopping master sync thread 24162 ...
01:28:18 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4, 0x1, {0x2000}}}}]}, 0x58}}, 0x0)

01:28:18 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}, 0x1, 0x0, 0xb}, 0x0)

01:28:18 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x0, 0x10000000}, 0x0)

01:28:19 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4, 0x1, {0x2400}}}}]}, 0x58}}, 0x0)

01:28:19 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x0, 0x11000000}, 0x0)

01:28:19 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}, 0x1, 0x0, 0xc}, 0x0)

[ 3217.391839][T24700] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 3217.403609][T24700] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 3217.413079][T24700] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 3217.422031][T24700] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 3217.439688][ T4243] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[ 3217.447384][ T4243] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 3217.458066][ T4243] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 3217.466460][ T4240] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 3217.478066][ T5095] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 3217.489855][ T4243] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 3217.509479][ T4243] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[ 3217.516978][ T4243] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 3219.519283][ T4243] Bluetooth: hci0: command 0x0409 tx timeout
[ 3219.599285][ T4243] Bluetooth: hci1: command 0x0409 tx timeout
[ 3221.364999][T30539] hsr_slave_0: left promiscuous mode
[ 3221.371343][T30539] hsr_slave_1: left promiscuous mode
[ 3221.377331][T30539] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 3221.387236][T30539] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 3221.401528][T30539] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 3221.410992][T30539] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 3221.427465][T30539] bridge_slave_1: left allmulticast mode
[ 3221.433601][T30539] bridge_slave_1: left promiscuous mode
[ 3221.441415][T30539] bridge0: port 2(bridge_slave_1) entered disabled state
[ 3221.451692][T30539] bridge_slave_0: left allmulticast mode
[ 3221.457332][T30539] bridge_slave_0: left promiscuous mode
[ 3221.466159][T30539] bridge0: port 1(bridge_slave_0) entered disabled state
[ 3221.522470][T30539] veth1_macvtap: left promiscuous mode
[ 3221.528422][T30539] veth1_vlan: left promiscuous mode
[ 3221.536810][T30539] veth0_vlan: left promiscuous mode
[ 3221.600018][ T4243] Bluetooth: hci0: command 0x041b tx timeout
[ 3221.679281][ T4243] Bluetooth: hci1: command 0x041b tx timeout
[ 3223.679350][ T4243] Bluetooth: hci0: command 0x040f tx timeout
[ 3223.759606][ T4243] Bluetooth: hci1: command 0x040f tx timeout
[ 3225.759232][ T4243] Bluetooth: hci0: command 0x0419 tx timeout
[ 3225.839486][ T4243] Bluetooth: hci1: command 0x0419 tx timeout
01:28:49 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x4, 0x1, {0x2800}}}}]}, 0x58}}, 0x0)

01:28:49 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x100}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x0, 0x14000000}, 0x0)

01:28:49 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd36}}}}]}, 0x58}, 0x1, 0x0, 0xf}, 0x0)

[ 3248.266080][T24700] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[ 3248.280586][T24700] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[ 3248.293184][T24700] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[ 3248.302181][T24700] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[ 3248.310476][T24700] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[ 3248.317713][T24700] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[ 3248.731210][ T4243] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[ 3248.743146][ T4243] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[ 3248.757247][ T4243] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[ 3248.767388][ T4243] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[ 3248.778839][ T4243] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3
[ 3248.787085][ T5095] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[ 3248.796266][ T5095] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[ 3248.798191][ T4243] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[ 3248.812181][ T4243] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[ 3248.847085][T24700] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[ 3248.855717][T24700] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3
[ 3248.863491][T24700] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[ 3250.400157][ T4240] Bluetooth: hci5: command 0x0409 tx timeout
[ 3250.880160][ T4240] Bluetooth: hci6: command 0x0409 tx timeout
[ 3250.959203][ T4240] Bluetooth: hci7: command 0x0409 tx timeout
[ 3252.479288][ T4240] Bluetooth: hci5: command 0x041b tx timeout
[ 3252.959834][ T4240] Bluetooth: hci6: command 0x041b tx timeout
[ 3253.039297][ T4240] Bluetooth: hci7: command 0x041b tx timeout
[ 3254.559438][ T4240] Bluetooth: hci5: command 0x040f tx timeout
[ 3255.039091][ T4240] Bluetooth: hci6: command 0x040f tx timeout
[ 3255.121520][ T4240] Bluetooth: hci7: command 0x040f tx timeout
[ 3256.639356][ T4240] Bluetooth: hci5: command 0x0419 tx timeout
[ 3257.119279][ T4240] Bluetooth: hci6: command 0x0419 tx timeout
[ 3257.200153][ T4240] Bluetooth: hci7: command 0x0419 tx timeout
[ 3266.803380][ T1237] ieee802154 phy0 wpan0: encryption failed: -22
[ 3266.810259][ T1237] ieee802154 phy1 wpan1: encryption failed: -22
[ 3273.958627][T30539] pimreg (unregistering): left allmulticast mode
[ 3277.179070][T30539] team0 (unregistering): Port device team_slave_1 removed
[ 3277.198859][T30539] team0 (unregistering): Port device team_slave_0 removed
[ 3277.218590][T30539] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 3277.245159][T30539] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 3277.348453][T30539] bond0 (unregistering): (slave team0): Releasing backup interface
[ 3277.382400][T30539] bond0 (unregistering): Released all slaves
[ 3277.480612][ T4224] __nla_validate_parse: 10 callbacks suppressed
[ 3277.480634][ T4224] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 3277.528008][ T4228] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 3277.632699][ T4233] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 3278.423778][ T4227] syz_tun (unregistering): left allmulticast mode
[ 3278.679742][ T4227] macvlan2 (unregistering): left promiscuous mode
[ 3278.710814][ T4227] team0: Port device macvlan2 removed
[ 3278.754115][ T4227] macvlan3 (unregistering): left promiscuous mode
[ 3278.776055][ T4227] team0: Port device macvlan3 removed
[ 3278.811949][ T4227] macvlan4 (unregistering): left promiscuous mode
[ 3278.822539][ T4227] team0: Port device macvlan4 removed
[ 3278.863089][ T4227] macvlan5 (unregistering): left promiscuous mode
[ 3278.910769][ T4227] team0: Port device macvlan5 removed
[ 3279.073331][ T4227] macvlan15 (unregistering): left promiscuous mode
[ 3279.086654][ T4227] macvlan15 (unregistering): left allmulticast mode
[ 3279.096658][ T4227] team0: Port device macvlan15 removed
[ 3279.114689][ T4227] macvlan16 (unregistering): left promiscuous mode
[ 3279.121604][ T4227] macvlan16 (unregistering): left allmulticast mode
[ 3279.137017][ T4227] team0: Port device macvlan16 removed
[ 3279.156579][ T4227] macvlan17 (unregistering): left promiscuous mode
[ 3279.163282][ T4227] macvlan17 (unregistering): left allmulticast mode
[ 3279.177070][ T4227] team0: Port device macvlan17 removed
[ 3279.384030][ T4228] team0: Port device macvlan319 removed
[ 3279.417620][ T4228] team0: Port device macvlan320 removed
[ 3280.388717][ T4260] chnl_net:caif_netlink_parms(): no params data found
[ 3280.729103][ T4258] chnl_net:caif_netlink_parms(): no params data found
[ 3280.783620][ T4253] chnl_net:caif_netlink_parms(): no params data found
[ 3281.621255][ T4260] bridge0: port 1(bridge_slave_0) entered blocking state
[ 3281.628424][ T4260] bridge0: port 1(bridge_slave_0) entered disabled state
[ 3281.693554][ T4260] bridge_slave_0: entered allmulticast mode
[ 3281.722276][ T4260] bridge_slave_0: entered promiscuous mode
[ 3282.208585][ T4260] bridge0: port 2(bridge_slave_1) entered blocking state
[ 3282.236497][ T4260] bridge0: port 2(bridge_slave_1) entered disabled state
[ 3282.268506][ T4260] bridge_slave_1: entered allmulticast mode
[ 3282.305123][ T4260] bridge_slave_1: entered promiscuous mode
[ 3282.616400][ T4258] bridge0: port 1(bridge_slave_0) entered blocking state
[ 3282.629234][ T4258] bridge0: port 1(bridge_slave_0) entered disabled state
[ 3282.638299][ T4258] bridge_slave_0: entered allmulticast mode
[ 3282.674545][ T4258] bridge_slave_0: entered promiscuous mode
[ 3282.817773][ T4260] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 3282.965868][ T4258] bridge0: port 2(bridge_slave_1) entered blocking state
[ 3282.973799][ T4258] bridge0: port 2(bridge_slave_1) entered disabled state
[ 3283.001225][ T4258] bridge_slave_1: entered allmulticast mode
[ 3283.026670][ T4258] bridge_slave_1: entered promiscuous mode
[ 3283.081799][ T4260] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 3283.102947][ T4253] bridge0: port 1(bridge_slave_0) entered blocking state
[ 3283.123931][ T4253] bridge0: port 1(bridge_slave_0) entered disabled state
[ 3283.147976][ T4253] bridge_slave_0: entered allmulticast mode
[ 3283.165327][ T4253] bridge_slave_0: entered promiscuous mode
[ 3283.267301][ T4253] bridge0: port 2(bridge_slave_1) entered blocking state
[ 3283.278990][ T4253] bridge0: port 2(bridge_slave_1) entered disabled state
[ 3283.287576][ T4253] bridge_slave_1: entered allmulticast mode
[ 3283.300944][ T4253] bridge_slave_1: entered promiscuous mode
[ 3283.350740][ T4258] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 3283.375990][ T4258] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 3283.466220][ T4260] team0: Port device team_slave_0 added
[ 3283.623911][ T4260] team0: Port device team_slave_1 added
[ 3283.652333][ T4253] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 3283.708750][ T4253] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 3283.778860][ T4258] team0: Port device team_slave_0 added
[ 3283.831374][ T4258] team0: Port device team_slave_1 added
[ 3284.056340][T24700] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 3284.074540][T24700] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 3284.089421][T24700] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 3284.111552][T24700] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 3284.128296][T24700] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[ 3284.138251][ T4260] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 3284.145706][T24700] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 3284.193622][ T4260] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 3284.269252][ T4260] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 3284.491745][ T4258] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 3284.500213][ T4258] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 3284.537131][ T4258] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 3284.626946][ T4260] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 3284.639357][ T4260] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 3284.655069][T24700] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 3284.676812][ T4260] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 3284.680641][T24700] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 3284.701378][T24700] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 3284.710323][T24700] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 3284.718792][T24700] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[ 3284.720183][ T4253] team0: Port device team_slave_0 added
[ 3284.726655][T24700] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 3284.760640][ T4258] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 3284.767615][ T4258] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 3284.794784][ T4258] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 3284.850049][ T4253] team0: Port device team_slave_1 added
[ 3284.950754][ T4253] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 3284.957734][ T4253] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 3284.985095][ T4253] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 3285.071938][ T4253] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 3285.079113][ T4253] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 3285.105529][ T4253] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 3285.197700][ T4260] hsr_slave_0: entered promiscuous mode
[ 3285.208428][ T4260] hsr_slave_1: entered promiscuous mode
[ 3285.218444][ T4260] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 3285.227474][ T4260] Cannot create hsr debugfs directory
[ 3285.284224][T30539] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 3285.299252][T30539] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 1] type 2 family 0 port 5 - 0
[ 3285.334087][ T4258] hsr_slave_0: entered promiscuous mode
[ 3285.346055][ T4258] hsr_slave_1: entered promiscuous mode
[ 3285.356828][ T4258] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 3285.365454][ T4258] Cannot create hsr debugfs directory
[ 3285.421063][T30539] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 3285.431928][T30539] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 1] type 2 family 0 port 5 - 0
[ 3285.567230][T30539] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 3285.578461][T30539] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 1] type 2 family 0 port 5 - 0
[ 3285.739386][T30539] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 3285.749859][T30539] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 1] type 2 family 0 port 5 - 0
[ 3285.785103][ T4253] hsr_slave_0: entered promiscuous mode
[ 3285.797100][ T4253] hsr_slave_1: entered promiscuous mode
[ 3285.806541][ T4253] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 3285.815323][ T4253] Cannot create hsr debugfs directory
[ 3286.239710][T24700] Bluetooth: hci1: command 0x0409 tx timeout
[ 3286.453605][ T4260] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 3286.584587][ T4324] chnl_net:caif_netlink_parms(): no params data found
[ 3286.614249][ T4260] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 3286.716588][ T4260] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 3286.795429][ T4260] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 3286.799264][T24700] Bluetooth: hci0: command 0x0409 tx timeout
[ 3286.818701][ T4331] chnl_net:caif_netlink_parms(): no params data found
[ 3287.010378][T30539] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 3287.028258][T30539] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 1] type 2 family 0 port 5 - 0
[ 3287.161770][T30539] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 3287.173267][T30539] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 1] type 2 family 0 port 5 - 0
[ 3287.216538][ T4324] bridge0: port 1(bridge_slave_0) entered blocking state
[ 3287.226699][ T4324] bridge0: port 1(bridge_slave_0) entered disabled state
[ 3287.239662][ T4324] bridge_slave_0: entered allmulticast mode
[ 3287.250824][ T4324] bridge_slave_0: entered promiscuous mode
[ 3287.263719][ T4324] bridge0: port 2(bridge_slave_1) entered blocking state
[ 3287.271700][ T4324] bridge0: port 2(bridge_slave_1) entered disabled state
[ 3287.280882][ T4324] bridge_slave_1: entered allmulticast mode
[ 3287.294171][ T4324] bridge_slave_1: entered promiscuous mode
[ 3287.333138][T30539] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 3287.343685][T30539] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 1] type 2 family 0 port 5 - 0
[ 3287.420709][ T4331] bridge0: port 1(bridge_slave_0) entered blocking state
[ 3287.427884][ T4331] bridge0: port 1(bridge_slave_0) entered disabled state
[ 3287.437342][ T4331] bridge_slave_0: entered allmulticast mode
[ 3287.447909][ T4331] bridge_slave_0: entered promiscuous mode
[ 3287.491943][T30539] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 3287.502580][T30539] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 1] type 2 family 0 port 5 - 0
[ 3287.549490][ T4331] bridge0: port 2(bridge_slave_1) entered blocking state
[ 3287.556831][ T4331] bridge0: port 2(bridge_slave_1) entered disabled state
[ 3287.574311][ T4331] bridge_slave_1: entered allmulticast mode
[ 3287.597943][ T4331] bridge_slave_1: entered promiscuous mode
[ 3287.686358][ T4324] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 3287.733030][ T4324] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 3287.908903][ T4324] team0: Port device team_slave_0 added
[ 3287.966732][ T4331] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 3288.004295][ T4331] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 3288.038748][ T4324] team0: Port device team_slave_1 added
[ 3288.116187][ T4331] team0: Port device team_slave_0 added
[ 3288.146677][ T4324] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 3288.153837][ T4324] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 3288.180602][ T4324] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 3288.246751][ T4331] team0: Port device team_slave_1 added
[ 3288.263151][ T4324] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 3288.270592][ T4324] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 3288.297500][ T4324] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 3288.323179][T24700] Bluetooth: hci1: command 0x041b tx timeout
[ 3288.483465][ T4331] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 3288.490847][ T4331] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 3288.517754][ T4331] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 3288.550433][T30539] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 3288.590927][ T4258] netdevsim netdevsim3 netdevsim0: renamed from eth0
[ 3288.635557][ T4331] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 3288.643086][ T4331] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 3288.671380][ T4331] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 3288.684791][ T4258] netdevsim netdevsim3 netdevsim1: renamed from eth1
[ 3288.708546][T30539] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 3288.756848][ T4324] hsr_slave_0: entered promiscuous mode
[ 3288.769570][ T4324] hsr_slave_1: entered promiscuous mode
[ 3288.784677][ T4324] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 3288.792611][ T4324] Cannot create hsr debugfs directory
[ 3288.834823][ T4258] netdevsim netdevsim3 netdevsim2: renamed from eth2
[ 3288.848159][ T4258] netdevsim netdevsim3 netdevsim3: renamed from eth3
[ 3288.868523][T30539] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 3288.879266][T24700] Bluetooth: hci0: command 0x041b tx timeout
[ 3288.958552][ T4331] hsr_slave_0: entered promiscuous mode
[ 3288.972221][ T4331] hsr_slave_1: entered promiscuous mode
[ 3288.982373][ T4331] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 3288.990221][ T4331] Cannot create hsr debugfs directory
[ 3289.030564][T30539] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 3289.963690][ T4253] netdevsim netdevsim1 netdevsim0: renamed from eth0
[ 3289.992410][ T4253] netdevsim netdevsim1 netdevsim1: renamed from eth1
[ 3290.232169][ T4253] netdevsim netdevsim1 netdevsim2: renamed from eth2
[ 3290.293298][ T4253] netdevsim netdevsim1 netdevsim3: renamed from eth3
[ 3290.399373][T24700] Bluetooth: hci1: command 0x040f tx timeout
[ 3290.416412][ T4260] netdevsim netdevsim4 netdevsim0: renamed from eth0
[ 3290.435597][ T4260] netdevsim netdevsim4 netdevsim1: renamed from eth1
[ 3290.829306][ T4260] netdevsim netdevsim4 netdevsim2: renamed from eth2
[ 3290.846931][ T4260] netdevsim netdevsim4 netdevsim3: renamed from eth3
[ 3290.959462][T24700] Bluetooth: hci0: command 0x040f tx timeout
[ 3291.601036][ T4258] 8021q: adding VLAN 0 to HW filter on device bond0
[ 3291.755142][ T4258] 8021q: adding VLAN 0 to HW filter on device team0
[ 3292.128783][ T5175] bridge0: port 1(bridge_slave_0) entered blocking state
[ 3292.136014][ T5175] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 3292.165855][T30539] IPVS: stopping master sync thread 14551 ...
[ 3292.182076][T30539] IPVS: stopping master sync thread 16530 ...
[ 3292.226687][ T5175] bridge0: port 2(bridge_slave_1) entered blocking state
[ 3292.233937][ T5175] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 3292.483139][T24700] Bluetooth: hci1: command 0x0419 tx timeout
[ 3292.593675][ T4258] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 3292.643487][ T4253] 8021q: adding VLAN 0 to HW filter on device bond0
[ 3292.735476][ T4253] 8021q: adding VLAN 0 to HW filter on device team0
[ 3292.793082][ T4260] 8021q: adding VLAN 0 to HW filter on device bond0
[ 3292.896970][ T4261] bridge0: port 1(bridge_slave_0) entered blocking state
[ 3292.904121][ T4261] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 3292.925716][ T4331] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 3292.943656][ T4331] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 3293.026502][ T4261] bridge0: port 2(bridge_slave_1) entered blocking state
[ 3293.033731][ T4261] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 3293.039294][T24700] Bluetooth: hci0: command 0x0419 tx timeout
[ 3293.089187][ T4331] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 3293.127232][ T4260] 8021q: adding VLAN 0 to HW filter on device team0
[ 3293.214492][ T4331] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 3293.414051][T29129] bridge0: port 1(bridge_slave_0) entered blocking state
[ 3293.421282][T29129] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 3293.502540][ T4324] netdevsim netdevsim2 netdevsim0: renamed from eth0
[ 3293.526648][ T4324] netdevsim netdevsim2 netdevsim1: renamed from eth1
[ 3293.604089][ T4324] netdevsim netdevsim2 netdevsim2: renamed from eth2
[ 3293.618331][ T4324] netdevsim netdevsim2 netdevsim3: renamed from eth3
[ 3293.662362][T29129] bridge0: port 2(bridge_slave_1) entered blocking state
[ 3293.670456][T29129] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 3293.767957][ T4258] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 3297.020247][T30539] hsr_slave_0: left promiscuous mode
[ 3297.026433][T30539] hsr_slave_1: left promiscuous mode
[ 3297.032876][T30539] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 3297.042282][T30539] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 3297.055671][T30539] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 3297.064665][T30539] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 3297.085097][T30539] ¡: left allmulticast mode
[ 3297.089934][T30539] team_slave_0: left allmulticast mode
[ 3297.095820][T30539] team_slave_1: left allmulticast mode
[ 3297.101405][T30539] ¡: left promiscuous mode
[ 3297.105915][T30539] team_slave_0: left promiscuous mode
[ 3297.111497][T30539] team_slave_1: left promiscuous mode
[ 3297.117071][T30539] bridge0: port 3(¡) entered disabled state
[ 3297.127117][T30539] bridge_slave_1: left allmulticast mode
[ 3297.132871][T30539] bridge_slave_1: left promiscuous mode
[ 3297.138532][T30539] bridge0: port 2(bridge_slave_1) entered disabled state
[ 3297.147277][T30539] bridge_slave_0: left allmulticast mode
[ 3297.157477][T30539] bridge_slave_0: left promiscuous mode
[ 3297.163312][T30539] bridge0: port 1(bridge_slave_0) entered disabled state
[ 3298.984475][T30539] hsr_slave_0: left promiscuous mode
[ 3298.992814][T30539] hsr_slave_1: left promiscuous mode
[ 3298.998640][T30539] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 3299.009193][T30539] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 3299.020394][T30539] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 3299.029253][T30539] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 3299.042611][T30539] bridge_slave_1: left allmulticast mode
[ 3299.048359][T30539] bridge_slave_1: left promiscuous mode
[ 3299.054680][T30539] bridge0: port 2(bridge_slave_1) entered disabled state
[ 3299.064458][T30539] bridge_slave_0: left allmulticast mode
[ 3299.070491][T30539] bridge_slave_0: left promiscuous mode
[ 3299.076190][T30539] bridge0: port 1(bridge_slave_0) entered disabled state
[ 3302.944281][T30539] hsr_slave_0: left promiscuous mode
[ 3302.950575][T30539] hsr_slave_1: left promiscuous mode
[ 3302.956538][T30539] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 3302.972946][T30539] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 3302.988722][T30539] team0: left allmulticast mode
[ 3302.993832][T30539] team_slave_0: left allmulticast mode
[ 3302.999411][T30539] team_slave_1: left allmulticast mode
[ 3303.004903][T30539] team0: left promiscuous mode
[ 3303.009829][T30539] team_slave_0: left promiscuous mode
[ 3303.015455][T30539] team_slave_1: left promiscuous mode
[ 3303.021226][T30539] bridge0: port 3(team0) entered disabled state
[ 3303.030019][T30539] bridge_slave_1: left allmulticast mode
[ 3303.035683][T30539] bridge_slave_1: left promiscuous mode
[ 3303.042315][T30539] bridge0: port 2(bridge_slave_1) entered disabled state
[ 3303.053177][T30539] bridge_slave_0: left allmulticast mode
[ 3303.058870][T30539] bridge_slave_0: left promiscuous mode
[ 3303.064729][T30539] bridge0: port 1(bridge_slave_0) entered disabled state
[ 3307.005278][T30539] hsr_slave_0: left promiscuous mode
[ 3307.011582][T30539] hsr_slave_1: left promiscuous mode
[ 3307.017479][T30539] bridge_slave_1: left allmulticast mode
[ 3307.029659][T30539] bridge_slave_1: left promiscuous mode
[ 3307.035402][T30539] bridge0: port 2(bridge_slave_1) entered disabled state
[ 3307.048053][T30539] bridge_slave_0: left allmulticast mode
[ 3307.053812][T30539] bridge_slave_0: left promiscuous mode
[ 3307.059819][T30539] bridge0: port 1(bridge_slave_0) entered disabled state
[ 3307.152077][T30539] veth1_macvtap: left promiscuous mode
[ 3307.157801][T30539] veth1_vlan: left promiscuous mode
[ 3307.164478][T30539] veth0_vlan: left promiscuous mode
[ 3307.178140][T30539] veth1_macvtap: left promiscuous mode
[ 3307.183878][T30539] veth0_macvtap: left promiscuous mode
[ 3307.191938][T30539] veth1_vlan: left promiscuous mode
[ 3307.197197][T30539] veth0_vlan: left promiscuous mode
[ 3307.225893][T30539] veth1_macvtap: left promiscuous mode
[ 3307.236181][T30539] veth0_macvtap: left promiscuous mode
[ 3307.252613][T30539] veth1_vlan: left promiscuous mode
[ 3307.258012][T30539] veth0_vlan: left promiscuous mode
[ 3307.285274][T30539] veth1_vlan: left allmulticast mode
[ 3307.295204][T30539] veth1_macvtap: left promiscuous mode
[ 3307.303670][T30539] veth0_macvtap: left promiscuous mode
[ 3307.309963][T30539] veth1_vlan: left promiscuous mode
[ 3307.315249][T30539] veth0_vlan: left promiscuous mode
[ 3314.783002][ T4240] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 3314.800869][ T4240] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 3314.810741][ T4240] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 3314.818909][ T4240] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 3314.827921][ T4240] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[ 3314.835470][ T4240] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 3315.168123][T24700] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 3315.178224][T24700] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 3315.187115][T24700] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 3315.201417][T24700] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 3315.210398][T24700] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[ 3315.229203][T24700] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 3315.338351][ T4240] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[ 3315.353326][ T4240] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[ 3315.364342][ T4240] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[ 3315.375741][ T4240] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[ 3315.385141][ T4240] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[ 3315.392573][ T4240] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[ 3316.879205][T24700] Bluetooth: hci2: command 0x0409 tx timeout
[ 3317.279199][T24700] Bluetooth: hci3: command 0x0409 tx timeout
[ 3317.439482][T24700] Bluetooth: hci4: command 0x0409 tx timeout
[ 3318.959071][T24700] Bluetooth: hci2: command 0x041b tx timeout
[ 3319.359190][T24700] Bluetooth: hci3: command 0x041b tx timeout
[ 3319.519212][T24700] Bluetooth: hci4: command 0x041b tx timeout
[ 3321.053945][T24700] Bluetooth: hci2: command 0x040f tx timeout
[ 3321.439222][T24700] Bluetooth: hci3: command 0x040f tx timeout
[ 3321.601592][T24700] Bluetooth: hci4: command 0x040f tx timeout
[ 3323.119727][T24700] Bluetooth: hci2: command 0x0419 tx timeout
[ 3323.519135][T24700] Bluetooth: hci3: command 0x0419 tx timeout
[ 3323.679177][T24700] Bluetooth: hci4: command 0x0419 tx timeout
[ 3328.241506][ T1237] ieee802154 phy0 wpan0: encryption failed: -22
[ 3328.247846][ T1237] ieee802154 phy1 wpan1: encryption failed: -22
[ 3350.064527][ T4240] Bluetooth: hci8: unexpected cc 0x0c03 length: 249 > 1
[ 3350.075118][ T4240] Bluetooth: hci8: unexpected cc 0x1003 length: 249 > 9
[ 3350.086443][ T4240] Bluetooth: hci8: unexpected cc 0x1001 length: 249 > 9
[ 3350.098319][ T4240] Bluetooth: hci8: unexpected cc 0x0c23 length: 249 > 4
[ 3350.106879][ T4240] Bluetooth: hci8: unexpected cc 0x0c25 length: 249 > 3
[ 3350.114549][ T4240] Bluetooth: hci8: unexpected cc 0x0c38 length: 249 > 2
[ 3350.654626][T24700] Bluetooth: hci9: unexpected cc 0x0c03 length: 249 > 1
[ 3350.675119][T24700] Bluetooth: hci9: unexpected cc 0x1003 length: 249 > 9
[ 3350.684863][T24700] Bluetooth: hci9: unexpected cc 0x1001 length: 249 > 9
[ 3350.695946][T24700] Bluetooth: hci9: unexpected cc 0x0c23 length: 249 > 4
[ 3350.713981][T24700] Bluetooth: hci9: unexpected cc 0x0c25 length: 249 > 3
[ 3350.724226][T24700] Bluetooth: hci9: unexpected cc 0x0c38 length: 249 > 2
[ 3352.159315][T24700] Bluetooth: hci8: command 0x0409 tx timeout
[ 3352.799731][T24700] Bluetooth: hci9: command 0x0409 tx timeout
[ 3354.239165][T24700] Bluetooth: hci8: command 0x041b tx timeout
[ 3354.879635][T24700] Bluetooth: hci9: command 0x041b tx timeout
[ 3356.319184][T24700] Bluetooth: hci8: command 0x040f tx timeout
[ 3356.959174][T24700] Bluetooth: hci9: command 0x040f tx timeout
[ 3358.399163][T24700] Bluetooth: hci8: command 0x0419 tx timeout
[ 3359.049344][T24700] Bluetooth: hci9: command 0x0419 tx timeout
[ 3371.283115][T24700] Bluetooth: hci7: command 0x0406 tx timeout
[ 3371.289816][T24700] Bluetooth: hci5: command 0x0406 tx timeout
[ 3371.295871][T24700] Bluetooth: hci6: command 0x0406 tx timeout
[ 3381.218765][ T4240] Bluetooth: hci10: unexpected cc 0x0c03 length: 249 > 1
[ 3381.233531][ T4240] Bluetooth: hci10: unexpected cc 0x1003 length: 249 > 9
[ 3381.244588][ T4240] Bluetooth: hci10: unexpected cc 0x1001 length: 249 > 9
[ 3381.257520][ T4240] Bluetooth: hci10: unexpected cc 0x0c23 length: 249 > 4
[ 3381.274238][ T4240] Bluetooth: hci10: unexpected cc 0x0c25 length: 249 > 3
[ 3381.282223][ T4240] Bluetooth: hci10: unexpected cc 0x0c38 length: 249 > 2
[ 3381.669503][ T4243] Bluetooth: hci11: unexpected cc 0x0c03 length: 249 > 1
[ 3381.678724][ T4243] Bluetooth: hci11: unexpected cc 0x1003 length: 249 > 9
[ 3381.691324][ T4243] Bluetooth: hci11: unexpected cc 0x1001 length: 249 > 9
[ 3381.701879][ T4243] Bluetooth: hci11: unexpected cc 0x0c23 length: 249 > 4
[ 3381.716496][ T5095] Bluetooth: hci11: unexpected cc 0x0c25 length: 249 > 3
[ 3381.725873][ T5095] Bluetooth: hci11: unexpected cc 0x0c38 length: 249 > 2
[ 3381.725873][ T4243] Bluetooth: hci12: unexpected cc 0x0c03 length: 249 > 1
[ 3381.743220][ T4243] Bluetooth: hci12: unexpected cc 0x1003 length: 249 > 9
[ 3381.751475][ T4243] Bluetooth: hci12: unexpected cc 0x1001 length: 249 > 9
[ 3381.767578][ T4243] Bluetooth: hci12: unexpected cc 0x0c23 length: 249 > 4
[ 3381.776441][ T4243] Bluetooth: hci12: unexpected cc 0x0c25 length: 249 > 3
[ 3381.783946][ T4243] Bluetooth: hci12: unexpected cc 0x0c38 length: 249 > 2
[ 3383.359236][T24700] Bluetooth: hci10: command 0x0409 tx timeout
[ 3383.839198][ T4243] Bluetooth: hci11: command 0x0409 tx timeout
[ 3383.840546][T24700] Bluetooth: hci12: command 0x0409 tx timeout
[ 3385.439324][T24700] Bluetooth: hci10: command 0x041b tx timeout
[ 3385.919174][ T4243] Bluetooth: hci11: command 0x041b tx timeout
[ 3385.925390][T24700] Bluetooth: hci12: command 0x041b tx timeout
[ 3387.524254][T24700] Bluetooth: hci10: command 0x040f tx timeout
[ 3388.010488][ T4243] Bluetooth: hci11: command 0x040f tx timeout
[ 3388.016702][T24700] Bluetooth: hci12: command 0x040f tx timeout
[ 3389.609130][T24700] Bluetooth: hci10: command 0x0419 tx timeout
[ 3389.682433][ T1237] ieee802154 phy0 wpan0: encryption failed: -22
[ 3389.688781][ T1237] ieee802154 phy1 wpan1: encryption failed: -22
[ 3390.079107][T24700] Bluetooth: hci12: command 0x0419 tx timeout
[ 3390.085247][T24700] Bluetooth: hci11: command 0x0419 tx timeout
[ 3407.119562][ T5095] Bluetooth: hci0: command 0x0406 tx timeout
[ 3407.125654][ T4240] Bluetooth: hci1: command 0x0406 tx timeout
[ 3416.424594][T24700] Bluetooth: hci13: unexpected cc 0x0c03 length: 249 > 1
[ 3416.435695][T24700] Bluetooth: hci13: unexpected cc 0x1003 length: 249 > 9
[ 3416.444628][T24700] Bluetooth: hci13: unexpected cc 0x1001 length: 249 > 9
[ 3416.458803][T24700] Bluetooth: hci13: unexpected cc 0x0c23 length: 249 > 4
[ 3416.466853][T24700] Bluetooth: hci13: unexpected cc 0x0c25 length: 249 > 3
[ 3416.474916][T24700] Bluetooth: hci13: unexpected cc 0x0c38 length: 249 > 2
[ 3416.990961][ T4243] Bluetooth: hci14: unexpected cc 0x0c03 length: 249 > 1
[ 3417.001787][ T4243] Bluetooth: hci14: unexpected cc 0x1003 length: 249 > 9
[ 3417.011046][ T4243] Bluetooth: hci14: unexpected cc 0x1001 length: 249 > 9
[ 3417.022667][ T4243] Bluetooth: hci14: unexpected cc 0x0c23 length: 249 > 4
[ 3417.034328][ T4243] Bluetooth: hci14: unexpected cc 0x0c25 length: 249 > 3
[ 3417.042275][ T4243] Bluetooth: hci14: unexpected cc 0x0c38 length: 249 > 2
[ 3418.559221][ T4243] Bluetooth: hci13: command 0x0409 tx timeout
[ 3419.119749][T24700] Bluetooth: hci14: command 0x0409 tx timeout
[ 3420.639607][T24700] Bluetooth: hci13: command 0x041b tx timeout
[ 3421.199358][T24700] Bluetooth: hci14: command 0x041b tx timeout
[ 3422.729439][T24700] Bluetooth: hci13: command 0x040f tx timeout
[ 3423.279193][T24700] Bluetooth: hci14: command 0x040f tx timeout
[ 3424.803928][T24700] Bluetooth: hci13: command 0x0419 tx timeout
[ 3425.359246][T24700] Bluetooth: hci14: command 0x0419 tx timeout
[ 3437.842488][ T4240] Bluetooth: hci3: command 0x0406 tx timeout
[ 3437.848563][ T4240] Bluetooth: hci4: command 0x0406 tx timeout
[ 3437.849081][ T4442] Bluetooth: hci2: command 0x0406 tx timeout
[ 3438.319453][   T29] INFO: task dhcpcd:4732 blocked for more than 143 seconds.
[ 3438.326792][   T29]       Not tainted 6.8.0-rc5-syzkaller-00002-gfca7526b7d89 #0
[ 3438.334544][   T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 3438.343370][   T29] task:dhcpcd          state:D stack:20504 pid:4732  tgid:4732  ppid:4731   flags:0x00004002
[ 3438.353725][   T29] Call Trace:
[ 3438.357020][   T29]  <TASK>
[ 3438.360049][   T29]  __schedule+0x17d1/0x49f0
[ 3438.364604][   T29]  ? __pfx___schedule+0x10/0x10
[ 3438.369652][   T29]  ? __pfx_lock_release+0x10/0x10
[ 3438.374704][   T29]  ? __mutex_trylock_common+0x91/0x2e0
[ 3438.380237][   T29]  ? schedule+0x8e/0x260
[ 3438.384562][   T29]  schedule+0x149/0x260
[ 3438.388705][   T29]  schedule_preempt_disabled+0x13/0x30
[ 3438.394299][   T29]  __mutex_lock+0x6a3/0xd70
[ 3438.398830][   T29]  ? __mutex_lock+0x526/0xd70
[ 3438.403834][   T29]  ? netlink_dump+0xde/0xc80
[ 3438.408460][   T29]  ? __pfx___mutex_lock+0x10/0x10
[ 3438.414013][   T29]  ? do_syscall_64+0xf9/0x240
[ 3438.418737][   T29]  netlink_dump+0xde/0xc80
[ 3438.429228][   T29]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3438.435289][   T29]  ? __pfx_netlink_dump+0x10/0x10
[ 3438.440487][   T29]  ? netlink_recvmsg+0x60a/0x11d0
[ 3438.445553][   T29]  ? __kasan_slab_free+0x46/0x70
[ 3438.450711][   T29]  ? kmem_cache_free+0x102/0x2a0
[ 3438.455695][   T29]  netlink_recvmsg+0x6b9/0x11d0
[ 3438.460719][   T29]  ? __pfx_netlink_recvmsg+0x10/0x10
[ 3438.466000][   T29]  ? __pfx_aa_sk_perm+0x10/0x10
[ 3438.470960][   T29]  ? __pfx___might_resched+0x10/0x10
[ 3438.476525][   T29]  ? aa_sock_msg_perm+0x91/0x160
[ 3438.481661][   T29]  ? bpf_lsm_socket_recvmsg+0x9/0x10
[ 3438.487016][   T29]  ? security_socket_recvmsg+0x90/0xb0
[ 3438.492956][   T29]  ? __pfx_netlink_recvmsg+0x10/0x10
[ 3438.498277][   T29]  sock_recvmsg+0x22f/0x280
[ 3438.502857][   T29]  ____sys_recvmsg+0x1db/0x470
[ 3438.507650][   T29]  ? __pfx_____sys_recvmsg+0x10/0x10
[ 3438.513049][   T29]  ? vma_end_read+0x18/0x170
[ 3438.517667][   T29]  __sys_recvmsg+0x2f0/0x3e0
[ 3438.522735][   T29]  ? __pfx___sys_recvmsg+0x10/0x10
[ 3438.527892][   T29]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3438.534805][   T29]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 3438.542079][   T29]  ? exc_page_fault+0x587/0x870
[ 3438.546989][   T29]  ? do_syscall_64+0xb4/0x240
[ 3438.551955][   T29]  do_syscall_64+0xf9/0x240
[ 3438.556516][   T29]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 3438.562849][   T29] RIP: 0033:0x7f767039c91e
[ 3438.567313][   T29] RSP: 002b:00007ffc90b07e48 EFLAGS: 00000246 ORIG_RAX: 000000000000002f
[ 3438.575822][   T29] RAX: ffffffffffffffda RBX: 00007ffc90b08f70 RCX: 00007f767039c91e
[ 3438.583870][   T29] RDX: 0000000000000000 RSI: 00007ffc90b08e90 RDI: 0000000000000015
[ 3438.591942][   T29] RBP: 00007ffc90b08f00 R08: 0000000000000000 R09: 0000000000000000
[ 3438.600041][   T29] R10: 0000000000000101 R11: 0000000000000246 R12: 0000000000000f00
[ 3438.608022][   T29] R13: 00007ffc90b08e74 R14: 00007ffc90b08e90 R15: 00007ffc90b08e80
[ 3438.616127][   T29]  </TASK>
[ 3438.619302][   T29] INFO: task kworker/0:7:5175 blocked for more than 143 seconds.
[ 3438.627040][   T29]       Not tainted 6.8.0-rc5-syzkaller-00002-gfca7526b7d89 #0
[ 3438.636117][   T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 3438.645327][   T29] task:kworker/0:7     state:D stack:20760 pid:5175  tgid:5175  ppid:2      flags:0x00004000
[ 3438.655607][   T29] Workqueue: ipv6_addrconf addrconf_dad_work
[ 3438.661669][   T29] Call Trace:
[ 3438.664970][   T29]  <TASK>
[ 3438.667916][   T29]  __schedule+0x17d1/0x49f0
[ 3438.672508][   T29]  ? __pfx___schedule+0x10/0x10
[ 3438.677353][   T29]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3438.683492][   T29]  ? __pfx_lock_release+0x10/0x10
[ 3438.688551][   T29]  ? schedule+0x8e/0x260
[ 3438.692905][   T29]  ? preempt_schedule_thunk+0x1a/0x30
[ 3438.698291][   T29]  ? schedule+0x8e/0x260
[ 3438.702581][   T29]  schedule+0x149/0x260
[ 3438.706772][   T29]  schedule_preempt_disabled+0x13/0x30
[ 3438.712398][   T29]  __mutex_lock+0x6a3/0xd70
[ 3438.717002][   T29]  ? mark_lock+0x9a/0x350
[ 3438.721455][   T29]  ? __mutex_lock+0x526/0xd70
[ 3438.726155][   T29]  ? addrconf_dad_work+0xd0/0x16f0
[ 3438.731372][   T29]  ? __pfx___mutex_lock+0x10/0x10
[ 3438.736430][   T29]  addrconf_dad_work+0xd0/0x16f0
[ 3438.741738][   T29]  ? __pfx_addrconf_dad_work+0x10/0x10
[ 3438.747242][   T29]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 3438.758789][   T29]  ? process_scheduled_works+0x825/0x1420
[ 3438.766296][   T29]  process_scheduled_works+0x913/0x1420
[ 3438.778641][   T29]  ? __pfx_process_scheduled_works+0x10/0x10
[ 3438.784734][   T29]  ? assign_work+0x364/0x3d0
[ 3438.789632][   T29]  worker_thread+0xa5f/0x1000
[ 3438.794326][   T29]  ? __pfx_worker_thread+0x10/0x10
[ 3438.799648][   T29]  kthread+0x2ef/0x390
[ 3438.803746][   T29]  ? __pfx_worker_thread+0x10/0x10
[ 3438.808909][   T29]  ? __pfx_kthread+0x10/0x10
[ 3438.813650][   T29]  ret_from_fork+0x4b/0x80
[ 3438.818061][   T29]  ? __pfx_kthread+0x10/0x10
[ 3438.822704][   T29]  ret_from_fork_asm+0x1b/0x30
[ 3438.827490][   T29]  </TASK>
[ 3438.830646][   T29] INFO: task kworker/0:0:1628 blocked for more than 143 seconds.
[ 3438.838375][   T29]       Not tainted 6.8.0-rc5-syzkaller-00002-gfca7526b7d89 #0
[ 3438.846012][   T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 3438.854743][   T29] task:kworker/0:0     state:D stack:22416 pid:1628  tgid:1628  ppid:2      flags:0x00004000
[ 3438.865018][   T29] Workqueue: events linkwatch_event
[ 3438.870807][   T29] Call Trace:
[ 3438.874119][   T29]  <TASK>
[ 3438.877130][   T29]  __schedule+0x17d1/0x49f0
[ 3438.882412][   T29]  ? __pfx___schedule+0x10/0x10
[ 3438.887311][   T29]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3438.893673][   T29]  ? __pfx_lock_release+0x10/0x10
[ 3438.898712][   T29]  ? _raw_spin_unlock_irq+0x23/0x50
[ 3438.904214][   T29]  ? lockdep_hardirqs_on+0x98/0x140
[ 3438.911242][   T29]  ? schedule+0x8e/0x260
[ 3438.915480][   T29]  schedule+0x149/0x260
[ 3438.919834][   T29]  schedule_preempt_disabled+0x13/0x30
[ 3438.925314][   T29]  __mutex_lock+0x6a3/0xd70
[ 3438.930104][   T29]  ? __mutex_lock+0x526/0xd70
[ 3438.934830][   T29]  ? linkwatch_event+0xe/0x60
[ 3438.939646][   T29]  ? __pfx___mutex_lock+0x10/0x10
[ 3438.944702][   T29]  ? process_scheduled_works+0x825/0x1420
[ 3438.951242][   T29]  linkwatch_event+0xe/0x60
[ 3438.955771][   T29]  process_scheduled_works+0x913/0x1420
[ 3438.961503][   T29]  ? __pfx_process_scheduled_works+0x10/0x10
[ 3438.967504][   T29]  ? assign_work+0x364/0x3d0
[ 3438.972221][   T29]  worker_thread+0xa5f/0x1000
[ 3438.977024][   T29]  ? __pfx_worker_thread+0x10/0x10
[ 3438.984080][   T29]  kthread+0x2ef/0x390
[ 3438.988183][   T29]  ? __pfx_worker_thread+0x10/0x10
[ 3438.994753][   T29]  ? __pfx_kthread+0x10/0x10
[ 3438.999716][   T29]  ret_from_fork+0x4b/0x80
[ 3439.004166][   T29]  ? __pfx_kthread+0x10/0x10
[ 3439.008775][   T29]  ret_from_fork_asm+0x1b/0x30
[ 3439.013646][   T29]  </TASK>
[ 3439.019124][   T29] INFO: task syz-executor.1:4253 blocked for more than 144 seconds.
[ 3439.027125][   T29]       Not tainted 6.8.0-rc5-syzkaller-00002-gfca7526b7d89 #0
[ 3439.036108][   T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 3439.045187][   T29] task:syz-executor.1  state:D stack:20752 pid:4253  tgid:4253  ppid:1      flags:0x00004006
[ 3439.055471][   T29] Call Trace:
[ 3439.059000][   T29]  <TASK>
[ 3439.061963][   T29]  __schedule+0x17d1/0x49f0
[ 3439.066498][   T29]  ? __pfx___schedule+0x10/0x10
[ 3439.071465][   T29]  ? __pfx_lock_release+0x10/0x10
[ 3439.076509][   T29]  ? __mutex_trylock_common+0x91/0x2e0
[ 3439.082419][   T29]  ? schedule+0x8e/0x260
[ 3439.086694][   T29]  schedule+0x149/0x260
[ 3439.096391][   T29]  schedule_preempt_disabled+0x13/0x30
[ 3439.102053][   T29]  __mutex_lock+0x6a3/0xd70
[ 3439.106686][   T29]  ? __mutex_lock+0x526/0xd70
[ 3439.113772][   T29]  ? rtnetlink_rcv_msg+0x82c/0x1040
[ 3439.119173][   T29]  ? __pfx___mutex_lock+0x10/0x10
[ 3439.124224][   T29]  rtnetlink_rcv_msg+0x82c/0x1040
[ 3439.129392][   T29]  ? rtnetlink_rcv_msg+0x208/0x1040
[ 3439.134630][   T29]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[ 3439.140279][   T29]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[ 3439.146446][   T29]  ? __pfx_validate_chain+0x10/0x10
[ 3439.151811][   T29]  ? __pfx_validate_chain+0x10/0x10
[ 3439.157031][   T29]  ? mark_lock+0x9a/0x350
[ 3439.161404][   T29]  ? __pfx_validate_chain+0x10/0x10
[ 3439.166611][   T29]  ? __lock_acquire+0x1345/0x1fd0
[ 3439.171766][   T29]  ? mark_lock+0x9a/0x350
[ 3439.176115][   T29]  ? __lock_acquire+0x1345/0x1fd0
[ 3439.181217][   T29]  netlink_rcv_skb+0x1e3/0x430
[ 3439.185976][   T29]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[ 3439.191600][   T29]  ? __pfx_netlink_rcv_skb+0x10/0x10
[ 3439.196942][   T29]  ? netlink_deliver_tap+0x2e/0x1b0
[ 3439.202480][   T29]  netlink_unicast+0x7ea/0x980
[ 3439.207279][   T29]  ? __pfx_netlink_unicast+0x10/0x10
[ 3439.213198][   T29]  ? __virt_addr_valid+0x44e/0x520
[ 3439.218312][   T29]  ? __phys_addr_symbol+0x2f/0x70
[ 3439.224166][   T29]  ? __check_object_size+0x4bb/0xa00
[ 3439.229790][   T29]  ? bpf_lsm_netlink_send+0x9/0x10
[ 3439.235027][   T29]  netlink_sendmsg+0xa3b/0xd70
[ 3439.240279][   T29]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 3439.245669][   T29]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3439.252127][   T29]  ? aa_sock_msg_perm+0x91/0x160
[ 3439.257110][   T29]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 3439.262817][   T29]  ? security_socket_sendmsg+0x87/0xb0
[ 3439.268295][   T29]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 3439.274070][   T29]  __sock_sendmsg+0x221/0x270
[ 3439.278781][   T29]  __sys_sendto+0x3a4/0x4f0
[ 3439.283798][   T29]  ? __pfx___sys_sendto+0x10/0x10
[ 3439.288831][   T29]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 3439.295551][   T29]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3439.302971][   T29]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 3439.309587][   T29]  __x64_sys_sendto+0xde/0x100
[ 3439.314374][   T29]  do_syscall_64+0xf9/0x240
[ 3439.318868][   T29]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 3439.325001][   T29] RIP: 0033:0x7fc333e7fa9c
[ 3439.329485][   T29] RSP: 002b:00007fc3340cf610 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[ 3439.337909][   T29] RAX: ffffffffffffffda RBX: 00007fc334ad4620 RCX: 00007fc333e7fa9c
[ 3439.345955][   T29] RDX: 000000000000002c RSI: 00007fc334ad4670 RDI: 0000000000000003
[ 3439.354018][   T29] RBP: 0000000000000000 R08: 00007fc3340cf664 R09: 000000000000000c
[ 3439.362287][   T29] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003
[ 3439.370336][   T29] R13: 0000000000000000 R14: 00007fc334ad4670 R15: 0000000000000000
[ 3439.378334][   T29]  </TASK>
[ 3439.381497][   T29] INFO: task syz-executor.3:4258 blocked for more than 144 seconds.
[ 3439.389914][   T29]       Not tainted 6.8.0-rc5-syzkaller-00002-gfca7526b7d89 #0
[ 3439.397470][   T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 3439.406374][   T29] task:syz-executor.3  state:D stack:19504 pid:4258  tgid:4258  ppid:1      flags:0x00004006
[ 3439.417412][   T29] Call Trace:
[ 3439.420784][   T29]  <TASK>
[ 3439.423736][   T29]  __schedule+0x17d1/0x49f0
[ 3439.428275][   T29]  ? __pfx___schedule+0x10/0x10
[ 3439.433266][   T29]  ? __pfx_lock_release+0x10/0x10
[ 3439.438317][   T29]  ? __mutex_trylock_common+0x91/0x2e0
[ 3439.444011][   T29]  ? schedule+0x8e/0x260
[ 3439.448295][   T29]  schedule+0x149/0x260
[ 3439.452602][   T29]  schedule_preempt_disabled+0x13/0x30
[ 3439.458080][   T29]  __mutex_lock+0x6a3/0xd70
[ 3439.462695][   T29]  ? __mutex_lock+0x526/0xd70
[ 3439.467388][   T29]  ? rtnetlink_rcv_msg+0x82c/0x1040
[ 3439.472649][   T29]  ? __pfx___mutex_lock+0x10/0x10
[ 3439.477783][   T29]  rtnetlink_rcv_msg+0x82c/0x1040
[ 3439.482953][   T29]  ? rtnetlink_rcv_msg+0x208/0x1040
[ 3439.488174][   T29]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[ 3439.493991][   T29]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3439.500157][   T29]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 3439.506525][   T29]  ? __local_bh_enable_ip+0x168/0x200
[ 3439.512076][   T29]  ? lockdep_hardirqs_on+0x98/0x140
[ 3439.517299][   T29]  ? __local_bh_enable_ip+0x168/0x200
[ 3439.523510][   T29]  ? __dev_queue_xmit+0x2c4/0x3b10
[ 3439.528653][   T29]  ? __pfx___local_bh_enable_ip+0x10/0x10
[ 3439.536229][   T29]  ? __dev_queue_xmit+0x2c4/0x3b10
[ 3439.541729][   T29]  ? __dev_queue_xmit+0x15fd/0x3b10
[ 3439.546965][   T29]  ? __dev_queue_xmit+0x2c4/0x3b10
[ 3439.552666][   T29]  ? ref_tracker_free+0x643/0x7e0
[ 3439.557713][   T29]  netlink_rcv_skb+0x1e3/0x430
[ 3439.562636][   T29]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[ 3439.568118][   T29]  ? __pfx_netlink_rcv_skb+0x10/0x10
[ 3439.573728][   T29]  ? netlink_deliver_tap+0x2e/0x1b0
[ 3439.579226][   T29]  netlink_unicast+0x7ea/0x980
[ 3439.584038][   T29]  ? __pfx_netlink_unicast+0x10/0x10
[ 3439.589427][   T29]  ? __virt_addr_valid+0x44e/0x520
[ 3439.594570][   T29]  ? __phys_addr_symbol+0x2f/0x70
[ 3439.599879][   T29]  ? __check_object_size+0x4bb/0xa00
[ 3439.605185][   T29]  ? bpf_lsm_netlink_send+0x9/0x10
[ 3439.610655][   T29]  netlink_sendmsg+0xa3b/0xd70
[ 3439.615667][   T29]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 3439.621612][   T29]  ? aa_sock_msg_perm+0x91/0x160
[ 3439.626584][   T29]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 3439.632174][   T29]  ? security_socket_sendmsg+0x87/0xb0
[ 3439.637666][   T29]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 3439.643343][   T29]  __sock_sendmsg+0x221/0x270
[ 3439.648066][   T29]  __sys_sendto+0x3a4/0x4f0
[ 3439.654617][   T29]  ? __pfx___sys_sendto+0x10/0x10
[ 3439.659723][   T29]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3439.665704][   T29]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 3439.672175][   T29]  __x64_sys_sendto+0xde/0x100
[ 3439.676955][   T29]  do_syscall_64+0xf9/0x240
[ 3439.683842][   T29]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 3439.689867][   T29] RIP: 0033:0x7f5ffac7fa9c
[ 3439.694295][   T29] RSP: 002b:00007f5ffaecf650 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[ 3439.702916][   T29] RAX: ffffffffffffffda RBX: 00007f5ffb8d4620 RCX: 00007f5ffac7fa9c
[ 3439.710963][   T29] RDX: 0000000000000040 RSI: 00007f5ffb8d4670 RDI: 0000000000000003
[ 3439.719047][   T29] RBP: 0000000000000000 R08: 00007f5ffaecf6a4 R09: 000000000000000c
[ 3439.727044][   T29] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003
[ 3439.735092][   T29] R13: 0000000000000000 R14: 00007f5ffb8d4670 R15: 0000000000000000
[ 3439.743138][   T29]  </TASK>
[ 3439.746208][   T29] INFO: task syz-executor.4:4260 blocked for more than 144 seconds.
[ 3439.754331][   T29]       Not tainted 6.8.0-rc5-syzkaller-00002-gfca7526b7d89 #0
[ 3439.764510][   T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 3439.773283][   T29] task:syz-executor.4  state:D stack:20984 pid:4260  tgid:4260  ppid:1      flags:0x00004006
[ 3439.783534][   T29] Call Trace:
[ 3439.786824][   T29]  <TASK>
[ 3439.791993][   T29]  __schedule+0x17d1/0x49f0
[ 3439.796551][   T29]  ? __pfx___schedule+0x10/0x10
[ 3439.801476][   T29]  ? __pfx_lock_release+0x10/0x10
[ 3439.806551][   T29]  ? __mutex_trylock_common+0x91/0x2e0
[ 3439.812093][   T29]  ? schedule+0x8e/0x260
[ 3439.816439][   T29]  schedule+0x149/0x260
[ 3439.820725][   T29]  schedule_preempt_disabled+0x13/0x30
[ 3439.826217][   T29]  __mutex_lock+0x6a3/0xd70
[ 3439.830902][   T29]  ? __mutex_lock+0x526/0xd70
[ 3439.835602][   T29]  ? rtnetlink_rcv_msg+0x82c/0x1040
[ 3439.840907][   T29]  ? __pfx___mutex_lock+0x10/0x10
[ 3439.845956][   T29]  rtnetlink_rcv_msg+0x82c/0x1040
[ 3439.851090][   T29]  ? rtnetlink_rcv_msg+0x208/0x1040
[ 3439.856315][   T29]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[ 3439.861867][   T29]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[ 3439.868035][   T29]  ? __pfx_validate_chain+0x10/0x10
[ 3439.873596][   T29]  ? __pfx_validate_chain+0x10/0x10
[ 3439.878832][   T29]  ? mark_lock+0x9a/0x350
[ 3439.883456][   T29]  ? __pfx_validate_chain+0x10/0x10
[ 3439.888655][   T29]  ? __lock_acquire+0x1345/0x1fd0
[ 3439.893798][   T29]  ? mark_lock+0x9a/0x350
[ 3439.898271][   T29]  ? __lock_acquire+0x1345/0x1fd0
[ 3439.905967][   T29]  netlink_rcv_skb+0x1e3/0x430
[ 3439.911182][   T29]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[ 3439.916840][   T29]  ? __pfx_netlink_rcv_skb+0x10/0x10
[ 3439.922690][   T29]  ? netlink_deliver_tap+0x2e/0x1b0
[ 3439.927914][   T29]  netlink_unicast+0x7ea/0x980
[ 3439.933013][   T29]  ? __pfx_netlink_unicast+0x10/0x10
[ 3439.938301][   T29]  ? __virt_addr_valid+0x44e/0x520
[ 3439.943918][   T29]  ? __phys_addr_symbol+0x2f/0x70
[ 3439.949107][   T29]  ? __check_object_size+0x4bb/0xa00
[ 3439.954415][   T29]  ? bpf_lsm_netlink_send+0x9/0x10
[ 3439.959674][   T29]  netlink_sendmsg+0xa3b/0xd70
[ 3439.964482][   T29]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 3439.969871][   T29]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3439.975872][   T29]  ? aa_sock_msg_perm+0x91/0x160
[ 3439.981075][   T29]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 3439.986380][   T29]  ? security_socket_sendmsg+0x87/0xb0
[ 3439.993171][   T29]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 3439.998481][   T29]  __sock_sendmsg+0x221/0x270
[ 3440.003264][   T29]  __sys_sendto+0x3a4/0x4f0
[ 3440.007801][   T29]  ? __pfx___sys_sendto+0x10/0x10
[ 3440.013328][   T29]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 3440.020776][   T29]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3440.026772][   T29]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 3440.033656][   T29]  __x64_sys_sendto+0xde/0x100
[ 3440.038444][   T29]  do_syscall_64+0xf9/0x240
[ 3440.044958][   T29]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 3440.051228][   T29] RIP: 0033:0x7f911207fa9c
[ 3440.055685][   T29] RSP: 002b:00007f91122cf650 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[ 3440.064715][   T29] RAX: ffffffffffffffda RBX: 00007f9112cd4620 RCX: 00007f911207fa9c
[ 3440.073634][   T29] RDX: 0000000000000040 RSI: 00007f9112cd4670 RDI: 0000000000000003
[ 3440.082157][   T29] RBP: 0000000000000000 R08: 00007f91122cf6a4 R09: 000000000000000c
[ 3440.090551][   T29] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003
[ 3440.098581][   T29] R13: 0000000000000000 R14: 00007f9112cd4670 R15: 0000000000000000
[ 3440.106959][   T29]  </TASK>
[ 3440.113358][   T29] INFO: task kworker/1:4:4261 blocked for more than 145 seconds.
[ 3440.122173][   T29]       Not tainted 6.8.0-rc5-syzkaller-00002-gfca7526b7d89 #0
[ 3440.130164][   T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 3440.138848][   T29] task:kworker/1:4     state:D stack:23568 pid:4261  tgid:4261  ppid:2      flags:0x00004000
[ 3440.149511][   T29] Workqueue: ipv6_addrconf addrconf_dad_work
[ 3440.155526][   T29] Call Trace:
[ 3440.158791][   T29]  <TASK>
[ 3440.163652][   T29]  __schedule+0x17d1/0x49f0
[ 3440.168224][   T29]  ? __pfx___schedule+0x10/0x10
[ 3440.173487][   T29]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3440.180850][   T29]  ? __pfx_lock_release+0x10/0x10
[ 3440.185908][   T29]  ? _raw_spin_unlock_irq+0x23/0x50
[ 3440.191608][   T29]  ? lockdep_hardirqs_on+0x98/0x140
[ 3440.196842][   T29]  ? schedule+0x8e/0x260
[ 3440.201191][   T29]  schedule+0x149/0x260
[ 3440.205367][   T29]  schedule_preempt_disabled+0x13/0x30
[ 3440.210924][   T29]  __mutex_lock+0x6a3/0xd70
[ 3440.215441][   T29]  ? mark_lock+0x9a/0x350
[ 3440.219855][   T29]  ? __mutex_lock+0x526/0xd70
[ 3440.224576][   T29]  ? addrconf_dad_work+0xd0/0x16f0
[ 3440.229800][   T29]  ? __pfx___mutex_lock+0x10/0x10
[ 3440.234850][   T29]  addrconf_dad_work+0xd0/0x16f0
[ 3440.240014][   T29]  ? __pfx_addrconf_dad_work+0x10/0x10
[ 3440.245501][   T29]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 3440.251929][   T29]  ? process_scheduled_works+0x825/0x1420
[ 3440.257672][   T29]  process_scheduled_works+0x913/0x1420
[ 3440.263354][   T29]  ? __pfx_process_scheduled_works+0x10/0x10
[ 3440.269469][   T29]  ? assign_work+0x364/0x3d0
[ 3440.274086][   T29]  worker_thread+0xa5f/0x1000
[ 3440.278767][   T29]  ? __pfx_worker_thread+0x10/0x10
[ 3440.284079][   T29]  kthread+0x2ef/0x390
[ 3440.288169][   T29]  ? __pfx_worker_thread+0x10/0x10
[ 3440.293630][   T29]  ? __pfx_kthread+0x10/0x10
[ 3440.298262][   T29]  ret_from_fork+0x4b/0x80
[ 3440.307657][   T29]  ? __pfx_kthread+0x10/0x10
[ 3440.312538][   T29]  ret_from_fork_asm+0x1b/0x30
[ 3440.317312][   T29]  </TASK>
[ 3440.320660][   T29] INFO: task syz-executor.2:4324 blocked for more than 145 seconds.
[ 3440.328628][   T29]       Not tainted 6.8.0-rc5-syzkaller-00002-gfca7526b7d89 #0
[ 3440.336363][   T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 3440.346349][   T29] task:syz-executor.2  state:D stack:20984 pid:4324  tgid:4324  ppid:1      flags:0x00004006
[ 3440.356646][   T29] Call Trace:
[ 3440.360024][   T29]  <TASK>
[ 3440.362956][   T29]  __schedule+0x17d1/0x49f0
[ 3440.367552][   T29]  ? __pfx___schedule+0x10/0x10
[ 3440.374651][   T29]  ? __pfx_lock_release+0x10/0x10
[ 3440.379759][   T29]  ? __mutex_trylock_common+0x91/0x2e0
[ 3440.385301][   T29]  ? schedule+0x8e/0x260
[ 3440.389673][   T29]  schedule+0x149/0x260
[ 3440.393854][   T29]  schedule_preempt_disabled+0x13/0x30
[ 3440.399634][   T29]  __mutex_lock+0x6a3/0xd70
[ 3440.404168][   T29]  ? __mutex_lock+0x526/0xd70
[ 3440.408854][   T29]  ? rtnetlink_rcv_msg+0x82c/0x1040
[ 3440.414147][   T29]  ? __pfx___mutex_lock+0x10/0x10
[ 3440.419323][   T29]  rtnetlink_rcv_msg+0x82c/0x1040
[ 3440.424374][   T29]  ? rtnetlink_rcv_msg+0x208/0x1040
[ 3440.429707][   T29]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[ 3440.435295][   T29]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[ 3440.441513][   T29]  ? __pfx_validate_chain+0x10/0x10
[ 3440.446706][   T29]  ? __pfx_validate_chain+0x10/0x10
[ 3440.454291][   T29]  ? mark_lock+0x9a/0x350
[ 3440.458650][   T29]  ? __pfx_validate_chain+0x10/0x10
[ 3440.463924][   T29]  ? __lock_acquire+0x1345/0x1fd0
[ 3440.469004][   T29]  ? mark_lock+0x9a/0x350
[ 3440.473364][   T29]  ? __lock_acquire+0x1345/0x1fd0
[ 3440.478412][   T29]  netlink_rcv_skb+0x1e3/0x430
[ 3440.483921][   T29]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[ 3440.492391][   T29]  ? __pfx_netlink_rcv_skb+0x10/0x10
[ 3440.499288][   T29]  ? netlink_deliver_tap+0x2e/0x1b0
[ 3440.504527][   T29]  netlink_unicast+0x7ea/0x980
[ 3440.509858][   T29]  ? __pfx_netlink_unicast+0x10/0x10
[ 3440.515165][   T29]  ? __virt_addr_valid+0x44e/0x520
[ 3440.520357][   T29]  ? __phys_addr_symbol+0x2f/0x70
[ 3440.525402][   T29]  ? __check_object_size+0x4bb/0xa00
[ 3440.530755][   T29]  ? bpf_lsm_netlink_send+0x9/0x10
[ 3440.535883][   T29]  netlink_sendmsg+0xa3b/0xd70
[ 3440.540751][   T29]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 3440.546049][   T29]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3440.552171][   T29]  ? aa_sock_msg_perm+0x91/0x160
[ 3440.557136][   T29]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 3440.563516][   T29]  ? security_socket_sendmsg+0x87/0xb0
[ 3440.572639][   T29]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 3440.577927][   T29]  __sock_sendmsg+0x221/0x270
[ 3440.583094][   T29]  __sys_sendto+0x3a4/0x4f0
[ 3440.587620][   T29]  ? __pfx___sys_sendto+0x10/0x10
[ 3440.593820][   T29]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 3440.600312][   T29]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3440.606320][   T29]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 3440.612743][   T29]  __x64_sys_sendto+0xde/0x100
[ 3440.617529][   T29]  do_syscall_64+0xf9/0x240
[ 3440.622168][   T29]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 3440.628082][   T29] RIP: 0033:0x7feb4b07fa9c
[ 3440.633205][   T29] RSP: 002b:00007feb4b2cf650 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[ 3440.641992][   T29] RAX: ffffffffffffffda RBX: 00007feb4bcd4620 RCX: 00007feb4b07fa9c
[ 3440.650034][   T29] RDX: 0000000000000040 RSI: 00007feb4bcd4670 RDI: 0000000000000003
[ 3440.658021][   T29] RBP: 0000000000000000 R08: 00007feb4b2cf6a4 R09: 000000000000000c
[ 3440.666102][   T29] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003
[ 3440.674320][   T29] R13: 0000000000000000 R14: 00007feb4bcd4670 R15: 0000000000000000
[ 3440.684502][   T29]  </TASK>
[ 3440.687578][   T29] INFO: task syz-executor.0:4331 blocked for more than 145 seconds.
[ 3440.695626][   T29]       Not tainted 6.8.0-rc5-syzkaller-00002-gfca7526b7d89 #0
[ 3440.703345][   T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 3440.714255][   T29] task:syz-executor.0  state:D stack:20984 pid:4331  tgid:4331  ppid:1      flags:0x00004006
[ 3440.724811][   T29] Call Trace:
[ 3440.728109][   T29]  <TASK>
[ 3440.731367][   T29]  __schedule+0x17d1/0x49f0
[ 3440.735915][   T29]  ? __pfx___schedule+0x10/0x10
[ 3440.741147][   T29]  ? __pfx_lock_release+0x10/0x10
[ 3440.746202][   T29]  ? __mutex_trylock_common+0x91/0x2e0
[ 3440.753642][   T29]  ? schedule+0x8e/0x260
[ 3440.757927][   T29]  schedule+0x149/0x260
[ 3440.762233][   T29]  schedule_preempt_disabled+0x13/0x30
[ 3440.767714][   T29]  __mutex_lock+0x6a3/0xd70
[ 3440.772282][   T29]  ? __mutex_lock+0x526/0xd70
[ 3440.777068][   T29]  ? rtnetlink_rcv_msg+0x82c/0x1040
[ 3440.782427][   T29]  ? __pfx___mutex_lock+0x10/0x10
[ 3440.787512][   T29]  rtnetlink_rcv_msg+0x82c/0x1040
[ 3440.794565][   T29]  ? rtnetlink_rcv_msg+0x208/0x1040
[ 3440.799979][   T29]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[ 3440.805437][   T29]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[ 3440.812045][   T29]  ? __pfx_validate_chain+0x10/0x10
[ 3440.817273][   T29]  ? __pfx_validate_chain+0x10/0x10
[ 3440.822589][   T29]  ? mark_lock+0x9a/0x350
[ 3440.827050][   T29]  ? __pfx_validate_chain+0x10/0x10
[ 3440.834746][   T29]  ? __lock_acquire+0x1345/0x1fd0
[ 3440.840105][   T29]  ? mark_lock+0x9a/0x350
[ 3440.844447][   T29]  ? __lock_acquire+0x1345/0x1fd0
[ 3440.849816][   T29]  netlink_rcv_skb+0x1e3/0x430
[ 3440.854616][   T29]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[ 3440.860391][   T29]  ? __pfx_netlink_rcv_skb+0x10/0x10
[ 3440.865719][   T29]  ? netlink_deliver_tap+0x2e/0x1b0
[ 3440.871228][   T29]  netlink_unicast+0x7ea/0x980
[ 3440.876017][   T29]  ? __pfx_netlink_unicast+0x10/0x10
[ 3440.881670][   T29]  ? __virt_addr_valid+0x44e/0x520
[ 3440.886848][   T29]  ? __phys_addr_symbol+0x2f/0x70
[ 3440.892217][   T29]  ? __check_object_size+0x4bb/0xa00
[ 3440.897527][   T29]  ? bpf_lsm_netlink_send+0x9/0x10
[ 3440.905446][   T29]  netlink_sendmsg+0xa3b/0xd70
[ 3440.915601][   T29]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 3440.921116][   T29]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3440.927811][   T29]  ? aa_sock_msg_perm+0x91/0x160
[ 3440.933173][   T29]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 3440.938476][   T29]  ? security_socket_sendmsg+0x87/0xb0
[ 3440.944428][   T29]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 3440.953720][   T29]  __sock_sendmsg+0x221/0x270
[ 3440.958406][   T29]  __sys_sendto+0x3a4/0x4f0
[ 3440.963130][   T29]  ? __pfx___sys_sendto+0x10/0x10
[ 3440.968272][   T29]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 3440.975914][   T29]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3440.981999][   T29]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 3440.988350][   T29]  __x64_sys_sendto+0xde/0x100
[ 3440.993336][   T29]  do_syscall_64+0xf9/0x240
[ 3440.997863][   T29]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 3441.003971][   T29] RIP: 0033:0x7fb27be7fa9c
[ 3441.008397][   T29] RSP: 002b:00007fb27c0cf650 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[ 3441.016897][   T29] RAX: ffffffffffffffda RBX: 00007fb27cad4620 RCX: 00007fb27be7fa9c
[ 3441.025164][   T29] RDX: 0000000000000040 RSI: 00007fb27cad4670 RDI: 0000000000000003
[ 3441.033383][   T29] RBP: 0000000000000000 R08: 00007fb27c0cf6a4 R09: 000000000000000c
[ 3441.041583][   T29] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003
[ 3441.049715][   T29] R13: 0000000000000000 R14: 00007fb27cad4670 R15: 0000000000000000
[ 3441.057731][   T29]  </TASK>
[ 3441.061131][   T29] INFO: task kworker/0:5:4405 blocked for more than 146 seconds.
[ 3441.068868][   T29]       Not tainted 6.8.0-rc5-syzkaller-00002-gfca7526b7d89 #0
[ 3441.077847][   T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 3441.087009][   T29] task:kworker/0:5     state:D stack:24528 pid:4405  tgid:4405  ppid:2      flags:0x00004000
[ 3441.097319][   T29] Workqueue: events switchdev_deferred_process_work
[ 3441.104216][   T29] Call Trace:
[ 3441.107599][   T29]  <TASK>
[ 3441.110609][   T29]  __schedule+0x17d1/0x49f0
[ 3441.115171][   T29]  ? __pfx___schedule+0x10/0x10
[ 3441.122255][   T29]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3441.128294][   T29]  ? __pfx_lock_release+0x10/0x10
[ 3441.133613][   T29]  ? _raw_spin_unlock_irq+0x23/0x50
[ 3441.138835][   T29]  ? lockdep_hardirqs_on+0x98/0x140
[ 3441.144276][   T29]  ? schedule+0x8e/0x260
[ 3441.148549][   T29]  schedule+0x149/0x260
[ 3441.152858][   T29]  schedule_preempt_disabled+0x13/0x30
[ 3441.158340][   T29]  __mutex_lock+0x6a3/0xd70
[ 3441.163047][   T29]  ? __mutex_lock+0x526/0xd70
[ 3441.167752][   T29]  ? switchdev_deferred_process_work+0xe/0x20
[ 3441.173958][   T29]  ? __pfx___mutex_lock+0x10/0x10
[ 3441.179184][   T29]  ? process_scheduled_works+0x825/0x1420
[ 3441.184951][   T29]  switchdev_deferred_process_work+0xe/0x20
[ 3441.193613][   T29]  process_scheduled_works+0x913/0x1420
[ 3441.199721][   T29]  ? __pfx_process_scheduled_works+0x10/0x10
[ 3441.205731][   T29]  ? assign_work+0x364/0x3d0
[ 3441.210888][   T29]  worker_thread+0xa5f/0x1000
[ 3441.215603][   T29]  ? __pfx_worker_thread+0x10/0x10
[ 3441.221140][   T29]  kthread+0x2ef/0x390
[ 3441.225235][   T29]  ? __pfx_worker_thread+0x10/0x10
[ 3441.230805][   T29]  ? __pfx_kthread+0x10/0x10
[ 3441.235429][   T29]  ret_from_fork+0x4b/0x80
[ 3441.241438][   T29]  ? __pfx_kthread+0x10/0x10
[ 3441.246065][   T29]  ret_from_fork_asm+0x1b/0x30
[ 3441.251118][   T29]  </TASK>
[ 3441.254171][   T29] Future hung task reports are suppressed, see sysctl kernel.hung_task_warnings
[ 3441.263410][   T29] 
[ 3441.263410][   T29] Showing all locks held in the system:
[ 3441.271375][   T29] 1 lock held by khungtaskd/29:
[ 3441.276211][   T29]  #0: ffffffff8e130c60 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x55/0x2a0
[ 3441.286320][   T29] 1 lock held by syslogd/4500:
[ 3441.291207][   T29]  #0: ffff8880b943c958 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x2a/0x140
[ 3441.302354][   T29] 1 lock held by klogd/4507:
[ 3441.307059][   T29]  #0: ffff8880b943c958 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x2a/0x140
[ 3441.317180][   T29] 1 lock held by dhcpcd/4732:
[ 3441.321991][   T29]  #0: ffffffff8f3759c8 (rtnl_mutex){+.+.}-{3:3}, at: netlink_dump+0xde/0xc80
[ 3441.331031][   T29] 2 locks held by getty/4820:
[ 3441.338992][   T29]  #0: ffff88802affe0a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70
[ 3441.348892][   T29]  #1: ffffc90002f062f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0x6b4/0x1e10
[ 3441.365873][   T29] 3 locks held by kworker/0:7/5175:
[ 3441.371191][   T29]  #0: ffff88802a1a1d38 ((wq_completion)ipv6_addrconf){+.+.}-{0:0}, at: process_scheduled_works+0x825/0x1420
[ 3441.382866][   T29]  #1: ffffc900046ffd20 ((work_completion)(&(&ifa->dad_work)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x825/0x1420
[ 3441.395864][   T29]  #2: ffffffff8f3759c8 (rtnl_mutex){+.+.}-{3:3}, at: addrconf_dad_work+0xd0/0x16f0
[ 3441.405424][   T29] 5 locks held by kworker/u4:7/30539:
[ 3441.411149][   T29]  #0: ffff8880162f4938 ((wq_completion)netns){+.+.}-{0:0}, at: process_scheduled_works+0x825/0x1420
[ 3441.425674][   T29]  #1: ffffc900055bfd20 (net_cleanup_work){+.+.}-{0:0}, at: process_scheduled_works+0x825/0x1420
[ 3441.436863][   T29]  #2: ffffffff8f369450 (pernet_ops_rwsem){++++}-{3:3}, at: cleanup_net+0xf5/0xb90
[ 3441.446778][   T29]  #3: ffffffff8f3759c8 (rtnl_mutex){+.+.}-{3:3}, at: default_device_exit_batch+0xe8/0x9d0
[ 3441.457164][   T29]  #4: ffffffff8e1365f8 (rcu_state.exp_mutex){+.+.}-{3:3}, at: synchronize_rcu_expedited+0x3a3/0x890
[ 3441.468166][   T29] 3 locks held by kworker/0:0/1628:
[ 3441.473474][   T29]  #0: ffff888014c8c938 ((wq_completion)events){+.+.}-{0:0}, at: process_scheduled_works+0x825/0x1420
[ 3441.484682][   T29]  #1: ffffc9000993fd20 ((linkwatch_work).work){+.+.}-{0:0}, at: process_scheduled_works+0x825/0x1420
[ 3441.495756][   T29]  #2: ffffffff8f3759c8 (rtnl_mutex){+.+.}-{3:3}, at: linkwatch_event+0xe/0x60
[ 3441.504785][   T29] 1 lock held by syz-executor.1/4253:
[ 3441.510303][   T29]  #0: ffffffff8f3759c8 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x82c/0x1040
[ 3441.521066][   T29] 1 lock held by syz-executor.3/4258:
[ 3441.526547][   T29]  #0: ffffffff8f3759c8 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x82c/0x1040
[ 3441.536131][   T29] 1 lock held by syz-executor.4/4260:
[ 3441.541562][   T29]  #0: ffffffff8f3759c8 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x82c/0x1040
[ 3441.551540][   T29] 3 locks held by kworker/1:4/4261:
[ 3441.556757][   T29]  #0: ffff88802a1a1d38 ((wq_completion)ipv6_addrconf){+.+.}-{0:0}, at: process_scheduled_works+0x825/0x1420
[ 3441.568458][   T29]  #1: ffffc9000343fd20 ((work_completion)(&(&ifa->dad_work)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x825/0x1420
[ 3441.581416][   T29]  #2: ffffffff8f3759c8 (rtnl_mutex){+.+.}-{3:3}, at: addrconf_dad_work+0xd0/0x16f0
[ 3441.590978][   T29] 1 lock held by syz-executor.2/4324:
[ 3441.596372][   T29]  #0: ffffffff8f3759c8 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x82c/0x1040
[ 3441.606169][   T29] 1 lock held by syz-executor.0/4331:
[ 3441.611580][   T29]  #0: ffffffff8f3759c8 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x82c/0x1040
[ 3441.621170][   T29] 2 locks held by kworker/0:2/4403:
[ 3441.626376][   T29]  #0: ffff888014c8e538 ((wq_completion)rcu_gp){+.+.}-{0:0}, at: process_scheduled_works+0x825/0x1420
[ 3441.638264][   T29]  #1: ffffc900032ffd20 ((work_completion)(&rew->rew_work)){+.+.}-{0:0}, at: process_scheduled_works+0x825/0x1420
[ 3441.650432][   T29] 3 locks held by kworker/0:5/4405:
[ 3441.655726][   T29]  #0: ffff888014c8c938 ((wq_completion)events){+.+.}-{0:0}, at: process_scheduled_works+0x825/0x1420
[ 3441.666854][   T29]  #1: ffffc9000350fd20 (deferred_process_work){+.+.}-{0:0}, at: process_scheduled_works+0x825/0x1420
[ 3441.678000][   T29]  #2: ffffffff8f3759c8 (rtnl_mutex){+.+.}-{3:3}, at: switchdev_deferred_process_work+0xe/0x20
[ 3441.689245][   T29] 2 locks held by syz-executor.1/4427:
[ 3441.694725][   T29]  #0: ffffffff8f369450 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x4c7/0x7b0
[ 3441.705706][   T29]  #1: ffffffff8f3759c8 (rtnl_mutex){+.+.}-{3:3}, at: smc_pnet_net_init+0x10a/0x1e0
[ 3441.715598][   T29] 2 locks held by syz-executor.4/4431:
[ 3441.721276][   T29]  #0: ffffffff8f369450 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x4c7/0x7b0
[ 3441.731111][   T29]  #1: ffffffff8f3759c8 (rtnl_mutex){+.+.}-{3:3}, at: smc_pnet_net_init+0x10a/0x1e0
[ 3441.740895][   T29] 2 locks held by syz-executor.3/4434:
[ 3441.746341][   T29]  #0: ffffffff8f369450 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x4c7/0x7b0
[ 3441.756183][   T29]  #1: ffffffff8f3759c8 (rtnl_mutex){+.+.}-{3:3}, at: smc_pnet_net_init+0x10a/0x1e0
[ 3441.766971][   T29] 2 locks held by syz-executor.2/4438:
[ 3441.772562][   T29]  #0: ffffffff8f369450 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x4c7/0x7b0
[ 3441.782035][   T29]  #1: ffffffff8f3759c8 (rtnl_mutex){+.+.}-{3:3}, at: smc_pnet_net_init+0x10a/0x1e0
[ 3441.791536][   T29] 2 locks held by syz-executor.0/4441:
[ 3441.797002][   T29]  #0: ffffffff8f369450 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x4c7/0x7b0
[ 3441.806594][   T29]  #1: ffffffff8f3759c8 (rtnl_mutex){+.+.}-{3:3}, at: smc_pnet_net_init+0x10a/0x1e0
[ 3441.817964][   T29] 2 locks held by syz-executor.1/4447:
[ 3441.823527][   T29]  #0: ffffffff8f369450 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x4c7/0x7b0
[ 3441.833105][   T29]  #1: ffffffff8f3759c8 (rtnl_mutex){+.+.}-{3:3}, at: smc_pnet_net_init+0x10a/0x1e0
[ 3441.842717][   T29] 2 locks held by syz-executor.4/4452:
[ 3441.848183][   T29]  #0: ffffffff8f369450 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x4c7/0x7b0
[ 3441.860197][   T29]  #1: ffffffff8f3759c8 (rtnl_mutex){+.+.}-{3:3}, at: smc_pnet_net_init+0x10a/0x1e0
[ 3441.873423][   T29] 2 locks held by syz-executor.3/4454:
[ 3441.878879][   T29]  #0: ffffffff8f369450 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x4c7/0x7b0
[ 3441.888485][   T29]  #1: ffffffff8f3759c8 (rtnl_mutex){+.+.}-{3:3}, at: smc_pnet_net_init+0x10a/0x1e0
[ 3441.898275][   T29] 2 locks held by syz-executor.2/4464:
[ 3441.903898][   T29]  #0: ffffffff8f369450 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x4c7/0x7b0
[ 3441.913537][   T29]  #1: ffffffff8f3759c8 (rtnl_mutex){+.+.}-{3:3}, at: smc_pnet_net_init+0x10a/0x1e0
[ 3441.923094][   T29] 2 locks held by syz-executor.0/4467:
[ 3441.928565][   T29]  #0: ffffffff8f369450 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x4c7/0x7b0
[ 3441.938069][   T29]  #1: ffffffff8f3759c8 (rtnl_mutex){+.+.}-{3:3}, at: smc_pnet_net_init+0x10a/0x1e0
[ 3441.947558][   T29] 
[ 3441.950083][   T29] =============================================
[ 3441.950083][   T29] 
[ 3441.958613][   T29] NMI backtrace for cpu 1
[ 3441.963044][   T29] CPU: 1 PID: 29 Comm: khungtaskd Not tainted 6.8.0-rc5-syzkaller-00002-gfca7526b7d89 #0
[ 3441.972846][   T29] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024
[ 3441.982897][   T29] Call Trace:
[ 3441.986174][   T29]  <TASK>
[ 3441.989101][   T29]  dump_stack_lvl+0x1e7/0x2e0
[ 3441.993792][   T29]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3441.998988][   T29]  ? __pfx__printk+0x10/0x10
[ 3442.003572][   T29]  ? vprintk_emit+0x607/0x720
[ 3442.008245][   T29]  ? __pfx_vprintk_emit+0x10/0x10
[ 3442.013359][   T29]  nmi_cpu_backtrace+0x49c/0x4d0
[ 3442.018297][   T29]  ? __pfx_nmi_cpu_backtrace+0x10/0x10
[ 3442.023748][   T29]  ? _printk+0xd5/0x120
[ 3442.027898][   T29]  ? __pfx__printk+0x10/0x10
[ 3442.032482][   T29]  ? __wake_up_klogd+0xcc/0x110
[ 3442.037336][   T29]  ? __pfx__printk+0x10/0x10
[ 3442.041928][   T29]  ? __rcu_read_unlock+0xa0/0x110
[ 3442.046949][   T29]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[ 3442.052926][   T29]  nmi_trigger_cpumask_backtrace+0x198/0x320
[ 3442.058908][   T29]  watchdog+0xfaf/0xff0
[ 3442.063074][   T29]  ? watchdog+0x1e9/0xff0
[ 3442.067405][   T29]  ? __pfx_watchdog+0x10/0x10
[ 3442.072078][   T29]  kthread+0x2ef/0x390
[ 3442.076141][   T29]  ? __pfx_watchdog+0x10/0x10
[ 3442.080817][   T29]  ? __pfx_kthread+0x10/0x10
[ 3442.085407][   T29]  ret_from_fork+0x4b/0x80
[ 3442.089821][   T29]  ? __pfx_kthread+0x10/0x10
[ 3442.094414][   T29]  ret_from_fork_asm+0x1b/0x30
[ 3442.099187][   T29]  </TASK>
[ 3442.102623][   T29] Sending NMI from CPU 1 to CPUs 0:
[ 3442.107865][    C0] NMI backtrace for cpu 0
[ 3442.107877][    C0] CPU: 0 PID: 4403 Comm: kworker/0:2 Not tainted 6.8.0-rc5-syzkaller-00002-gfca7526b7d89 #0
[ 3442.107895][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024
[ 3442.107905][    C0] Workqueue:  0x0 (rcu_gp)
[ 3442.107926][    C0] RIP: 0010:validate_chain+0x105/0x58e0
[ 3442.107946][    C0] Code: b6 04 20 84 c0 0f 85 e4 4c 00 00 41 8b 5d 00 89 d8 25 00 80 04 00 3d 00 00 04 00 0f 85 77 04 00 00 81 e3 ff 1f 00 00 48 89 d8 <48> c1 e8 06 48 8d 3c c5 20 c4 c8 92 be 08 00 00 00 e8 95 c3 83 00
[ 3442.107959][    C0] RSP: 0018:ffffc900032ff5c0 EFLAGS: 00000002
[ 3442.107972][    C0] RAX: 000000000000003d RBX: 000000000000003d RCX: 1ffff9200065fed8
[ 3442.107984][    C0] RDX: 0000000000000001 RSI: ffff888023cf4640 RDI: ffff888023cf3b80
[ 3442.107995][    C0] RBP: ffffc900032ff8c0 R08: ffffffff92c8c427 R09: 1ffffffff2591884
[ 3442.108007][    C0] R10: dffffc0000000000 R11: fffffbfff2591885 R12: dffffc0000000000
[ 3442.108019][    C0] R13: ffff888023cf4660 R14: 679a5ab514165fe8 R15: ffff888023cf3b80
[ 3442.108031][    C0] FS:  0000000000000000(0000) GS:ffff8880b9400000(0000) knlGS:0000000000000000
[ 3442.108045][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 3442.108058][    C0] CR2: 0000558220f002f8 CR3: 000000000df32000 CR4: 00000000003506f0
[ 3442.108073][    C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 3442.108083][    C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 3442.108093][    C0] Call Trace:
[ 3442.108099][    C0]  <NMI>
[ 3442.108106][    C0]  ? nmi_cpu_backtrace+0x3c2/0x4d0
[ 3442.108123][    C0]  ? __pfx_lock_acquire+0x10/0x10
[ 3442.108144][    C0]  ? __pfx_nmi_cpu_backtrace+0x10/0x10
[ 3442.108166][    C0]  ? nmi_cpu_backtrace_handler+0xc/0x20
[ 3442.108184][    C0]  ? nmi_handle+0x14f/0x580
[ 3442.108199][    C0]  ? nmi_handle+0x2a/0x580
[ 3442.108214][    C0]  ? validate_chain+0x105/0x58e0
[ 3442.108229][    C0]  ? default_do_nmi+0x63/0x160
[ 3442.108245][    C0]  ? exc_nmi+0x121/0x210
[ 3442.108260][    C0]  ? end_repeat_nmi+0xf/0x60
[ 3442.108286][    C0]  ? validate_chain+0x105/0x58e0
[ 3442.108302][    C0]  ? validate_chain+0x105/0x58e0
[ 3442.108319][    C0]  ? validate_chain+0x105/0x58e0
[ 3442.108335][    C0]  </NMI>
[ 3442.108340][    C0]  <TASK>
[ 3442.108347][    C0]  ? __pfx_validate_chain+0x10/0x10
[ 3442.108362][    C0]  ? validate_chain+0x11b/0x58e0
[ 3442.108379][    C0]  ? __pfx_validate_chain+0x10/0x10
[ 3442.108399][    C0]  ? __pfx_validate_chain+0x10/0x10
[ 3442.108415][    C0]  ? try_to_wake_up+0x901/0x1470
[ 3442.108431][    C0]  ? __pfx_validate_chain+0x10/0x10
[ 3442.108452][    C0]  ? mark_lock+0x9a/0x350
[ 3442.108467][    C0]  ? __lock_acquire+0x1345/0x1fd0
[ 3442.108492][    C0]  ? mark_lock+0x9a/0x350
[ 3442.108507][    C0]  __lock_acquire+0x1345/0x1fd0
[ 3442.108534][    C0]  lock_acquire+0x1e3/0x530
[ 3442.108554][    C0]  ? finish_task_switch+0x1b2/0x850
[ 3442.108574][    C0]  ? __pfx_lock_acquire+0x10/0x10
[ 3442.108597][    C0]  ? __schedule+0x178d/0x49f0
[ 3442.108616][    C0]  ? __pfx_lock_release+0x10/0x10
[ 3442.108638][    C0]  finish_task_switch+0x1c7/0x850
[ 3442.108654][    C0]  ? finish_task_switch+0x1b2/0x850
[ 3442.108673][    C0]  __schedule+0x17d9/0x49f0
[ 3442.108701][    C0]  ? __pfx___schedule+0x10/0x10
[ 3442.108721][    C0]  ? __pfx_lock_release+0x10/0x10
[ 3442.108741][    C0]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3442.108768][    C0]  ? kthread_data+0x52/0xd0
[ 3442.108789][    C0]  ? wq_worker_sleeping+0x66/0x240
[ 3442.108806][    C0]  ? schedule+0x8e/0x260
[ 3442.108823][    C0]  schedule+0x149/0x260
[ 3442.108842][    C0]  worker_thread+0xc26/0x1000
[ 3442.108871][    C0]  ? __pfx_worker_thread+0x10/0x10
[ 3442.108891][    C0]  kthread+0x2ef/0x390
[ 3442.108906][    C0]  ? __pfx_worker_thread+0x10/0x10
[ 3442.108928][    C0]  ? __pfx_kthread+0x10/0x10
[ 3442.108943][    C0]  ret_from_fork+0x4b/0x80
[ 3442.108963][    C0]  ? __pfx_kthread+0x10/0x10
[ 3442.108977][    C0]  ret_from_fork_asm+0x1b/0x30
[ 3442.109002][    C0]  </TASK>
[ 3442.119283][   T29] Kernel panic - not syncing: hung_task: blocked tasks
[ 3442.119296][   T29] CPU: 1 PID: 29 Comm: khungtaskd Not tainted 6.8.0-rc5-syzkaller-00002-gfca7526b7d89 #0
[ 3442.119316][   T29] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024
[ 3442.119326][   T29] Call Trace:
[ 3442.119333][   T29]  <TASK>
[ 3442.119340][   T29]  dump_stack_lvl+0x1e7/0x2e0
[ 3442.119371][   T29]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3442.119395][   T29]  ? __pfx__printk+0x10/0x10
[ 3442.119414][   T29]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3442.119445][   T29]  ? vscnprintf+0x5d/0x90
[ 3442.119465][   T29]  panic+0x349/0x860
[ 3442.119488][   T29]  ? nmi_trigger_cpumask_backtrace+0x244/0x320
[ 3442.119507][   T29]  ? __pfx_panic+0x10/0x10
[ 3442.119525][   T29]  ? tick_nohz_tick_stopped+0x7b/0xc0
[ 3442.119544][   T29]  ? __irq_work_queue_local+0x137/0x3e0
[ 3442.119568][   T29]  ? preempt_schedule_thunk+0x1a/0x30
[ 3442.119587][   T29]  ? nmi_trigger_cpumask_backtrace+0x244/0x320
[ 3442.119605][   T29]  ? nmi_trigger_cpumask_backtrace+0x2d4/0x320
[ 3442.119625][   T29]  ? nmi_trigger_cpumask_backtrace+0x2d9/0x320
[ 3442.119646][   T29]  watchdog+0xfee/0xff0
[ 3442.119672][   T29]  ? watchdog+0x1e9/0xff0
[ 3442.119700][   T29]  ? __pfx_watchdog+0x10/0x10
[ 3442.119722][   T29]  kthread+0x2ef/0x390
[ 3442.119740][   T29]  ? __pfx_watchdog+0x10/0x10
[ 3442.119761][   T29]  ? __pfx_kthread+0x10/0x10
[ 3442.119781][   T29]  ret_from_fork+0x4b/0x80
[ 3442.119803][   T29]  ? __pfx_kthread+0x10/0x10
[ 3442.119821][   T29]  ret_from_fork_asm+0x1b/0x30
[ 3442.119856][   T29]  </TASK>
[ 3442.123612][   T29] Kernel Offset: disabled
[ 3442.639223][   T29] Rebooting in 86400 seconds..