7] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[  977.433139][T12567] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  977.443024][T12567] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[  977.453467][T12567] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  977.464372][T12567] batman_adv: batadv0: Interface activated: batadv_slave_1
[  977.473150][   T77] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  977.482702][   T77] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  977.525612][T12603] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[  977.535863][T12603] CPU: 1 PID: 12603 Comm: syz-executor.0 Not tainted 5.17.0-rc7-syzkaller-00078-g3bf7edc84a9e-dirty #0
[  977.546954][T12603] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  977.556987][T12603] Call Trace:
[  977.560255][T12603]  <TASK>
[  977.563164][T12603]  dump_stack_lvl+0xd6/0x122
[  977.567736][T12603]  dump_stack+0x11/0x1b
[  977.571912][T12603]  dump_header+0x98/0x410
[  977.576220][T12603]  oom_kill_process+0x18e/0x4a0
[  977.581045][T12603]  out_of_memory+0x61d/0x8c0
[  977.585622][T12603]  ? _raw_spin_unlock_irqrestore+0x3d/0x60
[  977.591438][T12603]  memory_max_write+0x32c/0x3d0
[  977.596304][T12603]  ? memory_max_show+0x70/0x70
[  977.601057][T12603]  cgroup_file_write+0x161/0x300
[  977.605968][T12603]  ? __check_object_size+0x22a/0x2d0
[  977.611342][T12603]  ? cgroup_seqfile_stop+0x70/0x70
[  977.616512][T12603]  kernfs_fop_write_iter+0x1d3/0x2d0
[  977.621799][T12603]  vfs_write+0x7f5/0x950
[  977.626082][T12603]  ksys_write+0xd9/0x190
[  977.630336][T12603]  __x64_sys_write+0x3e/0x50
[  977.635008][T12603]  do_syscall_64+0x44/0xd0
[  977.639398][T12603]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  977.645265][T12603] RIP: 0033:0x7f5b91b0c049
[  977.649654][T12603] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  977.669279][T12603] RSP: 002b:00007f5b90c82168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  977.677684][T12603] RAX: ffffffffffffffda RBX: 00007f5b91c1ef60 RCX: 00007f5b91b0c049
[  977.685708][T12603] RDX: 0000000000000012 RSI: 0000000020000080 RDI: 0000000000000073
[  977.693722][T12603] RBP: 00007f5b91b6608d R08: 0000000000000000 R09: 0000000000000000
[  977.701688][T12603] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  977.709633][T12603] R13: 00007ffeb07d6c3f R14: 00007f5b90c82300 R15: 0000000000022000
[  977.717594][T12603]  </TASK>
[  977.720617][T12603] memory: usage 484kB, limit 0kB, failcnt 6209
[  977.726764][T12603] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  977.733608][T12603] Memory cgroup stats for /syz0:
[  977.734057][T12603] anon 90112
[  977.734057][T12603] file 81920
[  977.734057][T12603] kernel_stack 81920
[  977.734057][T12603] pagetables 90112
[  977.734057][T12603] percpu 0
[  977.734057][T12603] sock 0
[  977.734057][T12603] vmalloc 0
[  977.734057][T12603] shmem 77824
[  977.734057][T12603] file_mapped 77824
[  977.734057][T12603] file_dirty 4096
[  977.734057][T12603] file_writeback 0
[  977.734057][T12603] swapcached 0
[  977.734057][T12603] inactive_anon 106496
[  977.734057][T12603] active_anon 61440
[  977.734057][T12603] inactive_file 4096
[  977.734057][T12603] active_file 0
[  977.734057][T12603] unevictable 0
[  977.734057][T12603] slab_reclaimable 18016
[  977.734057][T12603] slab_unreclaimable 97488
[  977.734057][T12603] slab 115504
[  977.734057][T12603] workingset_refault_anon 0
[  977.734057][T12603] workingset_refault_file 1
[  977.734057][T12603] workingset_activate_anon 0
[  977.734057][T12603] workingset_activate_file 0
11:28:13 executing program 0:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
rmdir(&(0x7f00000000c0)='./file0\x00')
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080), 0x12)

11:28:13 executing program 4:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff00000000a800000000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b'], 0x50}}, 0x0)

11:28:13 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x0, 0x0, 0x56)
socket$inet6(0xa, 0x80001, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x80000, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x6000, 0x12)

11:28:13 executing program 2:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x2500, 0x12)

11:28:13 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x4800, 0x12)

11:28:13 executing program 5:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r1, &(0x7f0000000000), 0x10)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff00000000012c000000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b', @ANYRES32], 0x50}}, 0x0)

[  977.734057][T12603] workingset_restore_anon 0
[  977.829465][T12603] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=12602,uid=0
[  977.844729][T12603] Memory cgroup out of memory: Killed process 12602 (syz-executor.0) total-vm:49008kB, anon-rss:372kB, file-rss:14336kB, shmem-rss:0kB, UID:0 pgtables:96kB oom_score_adj:1000
[  977.862906][   T26] oom_reaper: reaped process 12602 (syz-executor.0), now anon-rss:0kB, file-rss:14336kB, shmem-rss:4kB
[  977.904616][T12613] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=0
[  977.914589][T12613] CPU: 0 PID: 12613 Comm: syz-executor.3 Not tainted 5.17.0-rc7-syzkaller-00078-g3bf7edc84a9e-dirty #0
[  977.925626][T12613] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  977.935670][T12613] Call Trace:
[  977.939027][T12613]  <TASK>
[  977.941936][T12613]  dump_stack_lvl+0xd6/0x122
[  977.946511][T12613]  dump_stack+0x11/0x1b
[  977.950730][T12613]  dump_header+0x98/0x410
[  977.955112][T12613]  oom_kill_process+0x18e/0x4a0
[  977.960031][T12613]  out_of_memory+0x61d/0x8c0
[  977.964634][T12613]  ? _raw_spin_unlock_irqrestore+0x3d/0x60
[  977.970419][T12613]  memory_max_write+0x32c/0x3d0
[  977.975276][T12613]  ? memory_max_show+0x70/0x70
[  977.980016][T12613]  cgroup_file_write+0x161/0x300
[  977.985007][T12613]  ? __check_object_size+0x22a/0x2d0
[  977.990349][T12613]  ? cgroup_seqfile_stop+0x70/0x70
[  977.995475][T12613]  kernfs_fop_write_iter+0x1d3/0x2d0
[  978.000857][T12613]  vfs_write+0x7f5/0x950
[  978.005119][T12613]  ksys_write+0xd9/0x190
[  978.009401][T12613]  __x64_sys_write+0x3e/0x50
[  978.013981][T12613]  do_syscall_64+0x44/0xd0
[  978.018433][T12613]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  978.024302][T12613] RIP: 0033:0x7f8cc712a049
[  978.028694][T12613] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  978.048322][T12613] RSP: 002b:00007f8cc62a0168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  978.056721][T12613] RAX: ffffffffffffffda RBX: 00007f8cc723cf60 RCX: 00007f8cc712a049
[  978.064689][T12613] RDX: 0000000000000012 RSI: 0000000020000080 RDI: 000000000000000f
[  978.072720][T12613] RBP: 00007f8cc718408d R08: 0000000000000000 R09: 0000000000000000
[  978.080728][T12613] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  978.088677][T12613] R13: 00007fff26a0d88f R14: 00007f8cc62a0300 R15: 0000000000022000
[  978.096630][T12613]  </TASK>
[  978.099823][T12613] memory: usage 200kB, limit 24kB, failcnt 6214
[  978.106054][T12613] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  978.112933][T12613] Memory cgroup stats for /syz0:
[  978.116917][T12613] anon 40960
[  978.116917][T12613] file 81920
[  978.116917][T12613] kernel_stack 0
[  978.116917][T12613] pagetables 8192
[  978.116917][T12613] percpu 0
[  978.116917][T12613] sock 0
[  978.116917][T12613] vmalloc 0
[  978.116917][T12613] shmem 77824
[  978.116917][T12613] file_mapped 77824
[  978.116917][T12613] file_dirty 4096
[  978.116917][T12613] file_writeback 0
[  978.116917][T12613] swapcached 0
[  978.116917][T12613] inactive_anon 57344
[  978.116917][T12613] active_anon 61440
[  978.116917][T12613] inactive_file 0
[  978.116917][T12613] active_file 0
[  978.116917][T12613] unevictable 0
[  978.116917][T12613] slab_reclaimable 14920
[  978.116917][T12613] slab_unreclaimable 21992
[  978.116917][T12613] slab 36912
[  978.116917][T12613] workingset_refault_anon 0
[  978.116917][T12613] workingset_refault_file 1
[  978.116917][T12613] workingset_activate_anon 0
[  978.116917][T12613] workingset_activate_file 0
[  978.116917][T12613] workingset_restore_anon 0
[  978.211391][T12613] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=12567,uid=0
[  978.226698][T12613] Memory cgroup out of memory: Killed process 12567 (syz-executor.0) total-vm:48480kB, anon-rss:364kB, file-rss:14336kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:0
[  978.245962][   T26] oom_reaper: reaped process 12567 (syz-executor.0), now anon-rss:0kB, file-rss:14336kB, shmem-rss:64kB
[  978.257116][T12616] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[  978.267397][T12616] CPU: 1 PID: 12616 Comm: syz-executor.2 Not tainted 5.17.0-rc7-syzkaller-00078-g3bf7edc84a9e-dirty #0
[  978.278461][T12616] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  978.288493][T12616] Call Trace:
[  978.291750][T12616]  <TASK>
[  978.294669][T12616]  dump_stack_lvl+0xd6/0x122
[  978.299301][T12616]  dump_stack+0x11/0x1b
[  978.303507][T12616]  dump_header+0x98/0x410
[  978.307833][T12616]  out_of_memory+0x65c/0x8c0
[  978.312416][T12616]  ? _raw_spin_unlock_irqrestore+0x3d/0x60
[  978.318201][T12616]  memory_max_write+0x32c/0x3d0
[  978.323034][T12616]  ? memory_max_show+0x70/0x70
[  978.327858][T12616]  cgroup_file_write+0x161/0x300
[  978.332853][T12616]  ? __check_object_size+0x22a/0x2d0
[  978.338136][T12616]  ? cgroup_seqfile_stop+0x70/0x70
[  978.343271][T12616]  kernfs_fop_write_iter+0x1d3/0x2d0
[  978.348551][T12616]  vfs_write+0x7f5/0x950
[  978.352797][T12616]  ksys_write+0xd9/0x190
[  978.357014][T12616]  __x64_sys_write+0x3e/0x50
[  978.361641][T12616]  do_syscall_64+0x44/0xd0
[  978.366034][T12616]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  978.371954][T12616] RIP: 0033:0x7f1d3184b049
[  978.376393][T12616] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  978.395975][T12616] RSP: 002b:00007f1d309c1168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  978.404365][T12616] RAX: ffffffffffffffda RBX: 00007f1d3195df60 RCX: 00007f1d3184b049
[  978.412503][T12616] RDX: 0000000000000012 RSI: 0000000020000080 RDI: 0000000000000006
[  978.420450][T12616] RBP: 00007f1d318a508d R08: 0000000000000000 R09: 0000000000000000
[  978.428493][T12616] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  978.436489][T12616] R13: 00007ffc96a4069f R14: 00007f1d309c1300 R15: 0000000000022000
[  978.444436][T12616]  </TASK>
[  978.447457][T12616] memory: usage 132kB, limit 24kB, failcnt 6277
[  978.453688][T12616] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  978.460536][T12616] Memory cgroup stats for /syz0:
[  978.462056][T12616] anon 0
[  978.462056][T12616] file 81920
[  978.462056][T12616] kernel_stack 0
[  978.462056][T12616] pagetables 0
[  978.462056][T12616] percpu 0
[  978.462056][T12616] sock 0
[  978.462056][T12616] vmalloc 0
[  978.462056][T12616] shmem 77824
[  978.462056][T12616] file_mapped 77824
[  978.462056][T12616] file_dirty 0
[  978.462056][T12616] file_writeback 0
[  978.462056][T12616] swapcached 0
[  978.462056][T12616] inactive_anon 16384
[  978.462056][T12616] active_anon 61440
[  978.462056][T12616] inactive_file 0
[  978.462056][T12616] active_file 4096
[  978.462056][T12616] unevictable 0
[  978.462056][T12616] slab_reclaimable 7584
[  978.462056][T12616] slab_unreclaimable 22864
[  978.462056][T12616] slab 30448
[  978.462056][T12616] workingset_refault_anon 0
[  978.462056][T12616] workingset_refault_file 1
[  978.462056][T12616] workingset_activate_anon 0
[  978.462056][T12616] workingset_activate_file 0
[  978.462056][T12616] workingset_restore_anon 0
11:28:14 executing program 2:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x4, 0x12)

[  978.555887][T12616] Out of memory and no killable processes...
[  978.562080][T12613] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=0
[  978.572040][T12613] CPU: 0 PID: 12613 Comm: syz-executor.3 Not tainted 5.17.0-rc7-syzkaller-00078-g3bf7edc84a9e-dirty #0
[  978.583047][T12613] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  978.593099][T12613] Call Trace:
[  978.596373][T12613]  <TASK>
[  978.599295][T12613]  dump_stack_lvl+0xd6/0x122
[  978.603889][T12613]  dump_stack+0x11/0x1b
[  978.608035][T12613]  dump_header+0x98/0x410
[  978.612416][T12613]  out_of_memory+0x65c/0x8c0
[  978.617002][T12613]  memory_max_write+0x32c/0x3d0
[  978.621950][T12613]  ? memory_max_show+0x70/0x70
[  978.626707][T12613]  cgroup_file_write+0x161/0x300
[  978.631619][T12613]  ? __check_object_size+0x22a/0x2d0
[  978.636891][T12613]  ? cgroup_seqfile_stop+0x70/0x70
[  978.641984][T12613]  kernfs_fop_write_iter+0x1d3/0x2d0
[  978.647246][T12613]  vfs_write+0x7f5/0x950
[  978.651473][T12613]  ksys_write+0xd9/0x190
[  978.655724][T12613]  __x64_sys_write+0x3e/0x50
[  978.660288][T12613]  do_syscall_64+0x44/0xd0
[  978.664679][T12613]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  978.670547][T12613] RIP: 0033:0x7f8cc712a049
[  978.674994][T12613] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  978.694575][T12613] RSP: 002b:00007f8cc62a0168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
11:28:14 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x4b00, 0x12)

[  978.702963][T12613] RAX: ffffffffffffffda RBX: 00007f8cc723cf60 RCX: 00007f8cc712a049
[  978.710907][T12613] RDX: 0000000000000012 RSI: 0000000020000080 RDI: 000000000000000f
[  978.718859][T12613] RBP: 00007f8cc718408d R08: 0000000000000000 R09: 0000000000000000
[  978.726816][T12613] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  978.734799][T12613] R13: 00007fff26a0d88f R14: 00007f8cc62a0300 R15: 0000000000022000
[  978.742793][T12613]  </TASK>
[  978.745896][T12613] memory: usage 108kB, limit 24kB, failcnt 6277
[  978.752191][T12613] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  978.759032][T12613] Memory cgroup stats for /syz0:
[  978.759596][T12613] anon 0
[  978.759596][T12613] file 81920
[  978.759596][T12613] kernel_stack 0
[  978.759596][T12613] pagetables 0
[  978.759596][T12613] percpu 0
[  978.759596][T12613] sock 0
[  978.759596][T12613] vmalloc 0
[  978.759596][T12613] shmem 77824
[  978.759596][T12613] file_mapped 77824
[  978.759596][T12613] file_dirty 0
[  978.759596][T12613] file_writeback 0
[  978.759596][T12613] swapcached 0
[  978.759596][T12613] inactive_anon 16384
[  978.759596][T12613] active_anon 61440
[  978.759596][T12613] inactive_file 0
[  978.759596][T12613] active_file 4096
[  978.759596][T12613] unevictable 0
[  978.759596][T12613] slab_reclaimable 7584
[  978.759596][T12613] slab_unreclaimable 15408
[  978.759596][T12613] slab 22992
[  978.759596][T12613] workingset_refault_anon 0
[  978.759596][T12613] workingset_refault_file 1
[  978.759596][T12613] workingset_activate_anon 0
[  978.759596][T12613] workingset_activate_file 0
[  978.759596][T12613] workingset_restore_anon 0
[  978.853483][T12613] Out of memory and no killable processes...
11:28:14 executing program 4:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff00000000a900000000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b'], 0x50}}, 0x0)

11:28:14 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x0, 0x0, 0x56)
socket$inet6(0xa, 0x80001, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x80000, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x6500, 0x12)

[  978.902452][T12620] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[  978.912673][T12620] CPU: 0 PID: 12620 Comm: syz-executor.1 Not tainted 5.17.0-rc7-syzkaller-00078-g3bf7edc84a9e-dirty #0
[  978.923674][T12620] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  978.933848][T12620] Call Trace:
[  978.937111][T12620]  <TASK>
[  978.940064][T12620]  dump_stack_lvl+0xd6/0x122
[  978.944637][T12620]  dump_stack+0x11/0x1b
[  978.948786][T12620]  dump_header+0x98/0x410
[  978.953092][T12620]  out_of_memory+0x65c/0x8c0
[  978.957661][T12620]  ? _raw_spin_unlock_irqrestore+0x3d/0x60
[  978.963449][T12620]  memory_max_write+0x32c/0x3d0
[  978.968281][T12620]  ? memory_max_show+0x70/0x70
[  978.973018][T12620]  cgroup_file_write+0x161/0x300
[  978.977957][T12620]  ? __check_object_size+0x22a/0x2d0
[  978.983267][T12620]  ? cgroup_seqfile_stop+0x70/0x70
[  978.988448][T12620]  kernfs_fop_write_iter+0x1d3/0x2d0
[  978.993716][T12620]  vfs_write+0x7f5/0x950
[  978.997937][T12620]  ksys_write+0xd9/0x190
[  979.002189][T12620]  __x64_sys_write+0x3e/0x50
[  979.006781][T12620]  do_syscall_64+0x44/0xd0
[  979.011174][T12620]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  979.017114][T12620] RIP: 0033:0x7fd6559cc049
[  979.021558][T12620] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  979.041166][T12620] RSP: 002b:00007fd654b42168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  979.049556][T12620] RAX: ffffffffffffffda RBX: 00007fd655adef60 RCX: 00007fd6559cc049
[  979.057576][T12620] RDX: 0000000000000012 RSI: 0000000020000080 RDI: 0000000000000006
[  979.065540][T12620] RBP: 00007fd655a2608d R08: 0000000000000000 R09: 0000000000000000
[  979.073486][T12620] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  979.081518][T12620] R13: 00007ffda0be2f9f R14: 00007fd654b42300 R15: 0000000000022000
[  979.089494][T12620]  </TASK>
[  979.092528][T12620] memory: usage 108kB, limit 0kB, failcnt 6277
[  979.098673][T12620] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  979.105575][T12620] Memory cgroup stats for /syz0:
[  979.105974][T12620] anon 0
[  979.105974][T12620] file 81920
[  979.105974][T12620] kernel_stack 0
[  979.105974][T12620] pagetables 0
[  979.105974][T12620] percpu 0
[  979.105974][T12620] sock 0
[  979.105974][T12620] vmalloc 0
[  979.105974][T12620] shmem 77824
[  979.105974][T12620] file_mapped 77824
[  979.105974][T12620] file_dirty 0
[  979.105974][T12620] file_writeback 0
[  979.105974][T12620] swapcached 0
[  979.105974][T12620] inactive_anon 16384
[  979.105974][T12620] active_anon 61440
[  979.105974][T12620] inactive_file 0
[  979.105974][T12620] active_file 4096
[  979.105974][T12620] unevictable 0
[  979.105974][T12620] slab_reclaimable 6440
[  979.105974][T12620] slab_unreclaimable 15408
[  979.105974][T12620] slab 21848
[  979.105974][T12620] workingset_refault_anon 0
[  979.105974][T12620] workingset_refault_file 1
[  979.105974][T12620] workingset_activate_anon 0
[  979.105974][T12620] workingset_activate_file 0
[  979.105974][T12620] workingset_restore_anon 0
11:28:15 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x4c00, 0x12)

[  979.199870][T12620] Out of memory and no killable processes...
[  979.206757][T12621] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[  979.216971][T12621] CPU: 1 PID: 12621 Comm: syz-executor.2 Not tainted 5.17.0-rc7-syzkaller-00078-g3bf7edc84a9e-dirty #0
[  979.228006][T12621] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  979.238050][T12621] Call Trace:
[  979.241304][T12621]  <TASK>
[  979.244213][T12621]  dump_stack_lvl+0xd6/0x122
[  979.248815][T12621]  dump_stack+0x11/0x1b
[  979.253027][T12621]  dump_header+0x98/0x410
[  979.257333][T12621]  out_of_memory+0x65c/0x8c0
[  979.261898][T12621]  memory_max_write+0x32c/0x3d0
[  979.266731][T12621]  ? memory_max_show+0x70/0x70
[  979.271595][T12621]  cgroup_file_write+0x161/0x300
[  979.276512][T12621]  ? __check_object_size+0x22a/0x2d0
[  979.281860][T12621]  ? cgroup_seqfile_stop+0x70/0x70
[  979.286999][T12621]  kernfs_fop_write_iter+0x1d3/0x2d0
[  979.292339][T12621]  vfs_write+0x7f5/0x950
[  979.296557][T12621]  ksys_write+0xd9/0x190
[  979.300772][T12621]  __x64_sys_write+0x3e/0x50
[  979.305338][T12621]  do_syscall_64+0x44/0xd0
[  979.309756][T12621]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  979.315631][T12621] RIP: 0033:0x7f1d3184b049
[  979.320020][T12621] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  979.339605][T12621] RSP: 002b:00007f1d309c1168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  979.348015][T12621] RAX: ffffffffffffffda RBX: 00007f1d3195df60 RCX: 00007f1d3184b049
[  979.356038][T12621] RDX: 0000000000000012 RSI: 0000000020000080 RDI: 0000000000000006
[  979.364022][T12621] RBP: 00007f1d318a508d R08: 0000000000000000 R09: 0000000000000000
[  979.371968][T12621] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  979.379920][T12621] R13: 00007ffc96a4069f R14: 00007f1d309c1300 R15: 0000000000022000
[  979.387872][T12621]  </TASK>
[  979.390974][T12621] memory: usage 108kB, limit 0kB, failcnt 6277
[  979.397123][T12621] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  979.403968][T12621] Memory cgroup stats for /syz0:
[  979.404186][T12621] anon 0
[  979.404186][T12621] file 81920
[  979.404186][T12621] kernel_stack 0
[  979.404186][T12621] pagetables 0
[  979.404186][T12621] percpu 0
[  979.404186][T12621] sock 0
[  979.404186][T12621] vmalloc 0
[  979.404186][T12621] shmem 77824
[  979.404186][T12621] file_mapped 77824
[  979.404186][T12621] file_dirty 0
[  979.404186][T12621] file_writeback 0
[  979.404186][T12621] swapcached 0
[  979.404186][T12621] inactive_anon 16384
[  979.404186][T12621] active_anon 61440
[  979.404186][T12621] inactive_file 0
[  979.404186][T12621] active_file 4096
[  979.404186][T12621] unevictable 0
[  979.404186][T12621] slab_reclaimable 6440
[  979.404186][T12621] slab_unreclaimable 15408
[  979.404186][T12621] slab 21848
[  979.404186][T12621] workingset_refault_anon 0
[  979.404186][T12621] workingset_refault_file 1
[  979.404186][T12621] workingset_activate_anon 0
[  979.404186][T12621] workingset_activate_file 0
[  979.404186][T12621] workingset_restore_anon 0
[  979.497975][T12621] Out of memory and no killable processes...
11:28:15 executing program 2:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x0, 0x0, 0x56)
socket$inet6(0xa, 0x80001, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x80000, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x5, 0x12)

[  979.504987][T12625] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=0
[  979.515064][T12625] CPU: 1 PID: 12625 Comm: syz-executor.3 Not tainted 5.17.0-rc7-syzkaller-00078-g3bf7edc84a9e-dirty #0
[  979.526097][T12625] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  979.536197][T12625] Call Trace:
[  979.539473][T12625]  <TASK>
[  979.542396][T12625]  dump_stack_lvl+0xd6/0x122
[  979.547053][T12625]  dump_stack+0x11/0x1b
[  979.551238][T12625]  dump_header+0x98/0x410
[  979.555550][T12625]  out_of_memory+0x65c/0x8c0
[  979.560122][T12625]  memory_max_write+0x32c/0x3d0
[  979.564952][T12625]  ? memory_max_show+0x70/0x70
[  979.569774][T12625]  cgroup_file_write+0x161/0x300
[  979.574693][T12625]  ? __check_object_size+0x22a/0x2d0
[  979.580018][T12625]  ? cgroup_seqfile_stop+0x70/0x70
[  979.585165][T12625]  kernfs_fop_write_iter+0x1d3/0x2d0
[  979.590430][T12625]  vfs_write+0x7f5/0x950
[  979.594710][T12625]  ksys_write+0xd9/0x190
[  979.598938][T12625]  __x64_sys_write+0x3e/0x50
[  979.603598][T12625]  do_syscall_64+0x44/0xd0
[  979.608017][T12625]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  979.613988][T12625] RIP: 0033:0x7f8cc712a049
[  979.618379][T12625] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  979.637972][T12625] RSP: 002b:00007f8cc62a0168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  979.646376][T12625] RAX: ffffffffffffffda RBX: 00007f8cc723cf60 RCX: 00007f8cc712a049
[  979.654329][T12625] RDX: 0000000000000012 RSI: 0000000020000080 RDI: 000000000000000f
[  979.662302][T12625] RBP: 00007f8cc718408d R08: 0000000000000000 R09: 0000000000000000
[  979.670288][T12625] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  979.678305][T12625] R13: 00007fff26a0d88f R14: 00007f8cc62a0300 R15: 0000000000022000
[  979.686274][T12625]  </TASK>
[  979.689315][T12625] memory: usage 108kB, limit 16kB, failcnt 6277
[  979.695539][T12625] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  979.702377][T12625] Memory cgroup stats for /syz0:
[  979.702776][T12625] anon 0
[  979.702776][T12625] file 81920
[  979.702776][T12625] kernel_stack 0
[  979.702776][T12625] pagetables 0
[  979.702776][T12625] percpu 0
[  979.702776][T12625] sock 0
[  979.702776][T12625] vmalloc 0
[  979.702776][T12625] shmem 77824
[  979.702776][T12625] file_mapped 77824
[  979.702776][T12625] file_dirty 0
[  979.702776][T12625] file_writeback 0
[  979.702776][T12625] swapcached 0
[  979.702776][T12625] inactive_anon 16384
[  979.702776][T12625] active_anon 61440
[  979.702776][T12625] inactive_file 0
[  979.702776][T12625] active_file 4096
[  979.702776][T12625] unevictable 0
[  979.702776][T12625] slab_reclaimable 6440
[  979.702776][T12625] slab_unreclaimable 15408
[  979.702776][T12625] slab 21848
[  979.702776][T12625] workingset_refault_anon 0
[  979.702776][T12625] workingset_refault_file 1
[  979.702776][T12625] workingset_activate_anon 0
[  979.702776][T12625] workingset_activate_file 0
[  979.702776][T12625] workingset_restore_anon 0
[  979.796618][T12625] Out of memory and no killable processes...
[  979.806514][T12628] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[  979.816831][T12628] CPU: 1 PID: 12628 Comm: syz-executor.1 Not tainted 5.17.0-rc7-syzkaller-00078-g3bf7edc84a9e-dirty #0
[  979.827888][T12628] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  979.837968][T12628] Call Trace:
[  979.841232][T12628]  <TASK>
[  979.844147][T12628]  dump_stack_lvl+0xd6/0x122
[  979.848734][T12628]  dump_stack+0x11/0x1b
[  979.852925][T12628]  dump_header+0x98/0x410
[  979.857270][T12628]  out_of_memory+0x65c/0x8c0
[  979.861877][T12628]  memory_max_write+0x32c/0x3d0
[  979.866713][T12628]  ? memory_max_show+0x70/0x70
[  979.871459][T12628]  cgroup_file_write+0x161/0x300
[  979.876393][T12628]  ? __check_object_size+0x22a/0x2d0
[  979.881745][T12628]  ? cgroup_seqfile_stop+0x70/0x70
[  979.886838][T12628]  kernfs_fop_write_iter+0x1d3/0x2d0
[  979.892123][T12628]  vfs_write+0x7f5/0x950
[  979.896403][T12628]  ksys_write+0xd9/0x190
[  979.900653][T12628]  __x64_sys_write+0x3e/0x50
[  979.905353][T12628]  do_syscall_64+0x44/0xd0
[  979.909772][T12628]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  979.915697][T12628] RIP: 0033:0x7fd6559cc049
[  979.920148][T12628] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  979.939783][T12628] RSP: 002b:00007fd654b42168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  979.948192][T12628] RAX: ffffffffffffffda RBX: 00007fd655adef60 RCX: 00007fd6559cc049
[  979.956160][T12628] RDX: 0000000000000012 RSI: 0000000020000080 RDI: 0000000000000006
[  979.964152][T12628] RBP: 00007fd655a2608d R08: 0000000000000000 R09: 0000000000000000
[  979.972159][T12628] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  979.980258][T12628] R13: 00007ffda0be2f9f R14: 00007fd654b42300 R15: 0000000000022000
[  979.988285][T12628]  </TASK>
[  979.991317][T12628] memory: usage 108kB, limit 0kB, failcnt 6277
[  979.997470][T12628] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  980.004337][T12628] Memory cgroup stats for /syz0:
[  980.004804][T12628] anon 0
[  980.004804][T12628] file 81920
[  980.004804][T12628] kernel_stack 0
[  980.004804][T12628] pagetables 0
[  980.004804][T12628] percpu 0
[  980.004804][T12628] sock 0
[  980.004804][T12628] vmalloc 0
[  980.004804][T12628] shmem 77824
[  980.004804][T12628] file_mapped 77824
[  980.004804][T12628] file_dirty 0
[  980.004804][T12628] file_writeback 0
[  980.004804][T12628] swapcached 0
[  980.004804][T12628] inactive_anon 16384
[  980.004804][T12628] active_anon 61440
[  980.004804][T12628] inactive_file 0
[  980.004804][T12628] active_file 4096
[  980.004804][T12628] unevictable 0
[  980.004804][T12628] slab_reclaimable 6440
[  980.004804][T12628] slab_unreclaimable 15408
[  980.004804][T12628] slab 21848
[  980.004804][T12628] workingset_refault_anon 0
[  980.004804][T12628] workingset_refault_file 1
[  980.004804][T12628] workingset_activate_anon 0
[  980.004804][T12628] workingset_activate_file 0
[  980.004804][T12628] workingset_restore_anon 0
[  980.098617][T12628] Out of memory and no killable processes...
[  980.105990][T12630] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[  980.116237][T12630] CPU: 1 PID: 12630 Comm: syz-executor.2 Not tainted 5.17.0-rc7-syzkaller-00078-g3bf7edc84a9e-dirty #0
[  980.127324][T12630] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  980.137361][T12630] Call Trace:
[  980.140634][T12630]  <TASK>
[  980.143558][T12630]  dump_stack_lvl+0xd6/0x122
[  980.148174][T12630]  dump_stack+0x11/0x1b
[  980.152372][T12630]  dump_header+0x98/0x410
[  980.156831][T12630]  out_of_memory+0x65c/0x8c0
[  980.161441][T12630]  memory_max_write+0x32c/0x3d0
[  980.166277][T12630]  ? memory_max_show+0x70/0x70
[  980.171075][T12630]  cgroup_file_write+0x161/0x300
[  980.176002][T12630]  ? __check_object_size+0x22a/0x2d0
[  980.181278][T12630]  ? cgroup_seqfile_stop+0x70/0x70
[  980.186415][T12630]  kernfs_fop_write_iter+0x1d3/0x2d0
[  980.191678][T12630]  vfs_write+0x7f5/0x950
[  980.195951][T12630]  ksys_write+0xd9/0x190
[  980.200180][T12630]  __x64_sys_write+0x3e/0x50
[  980.204796][T12630]  do_syscall_64+0x44/0xd0
[  980.209255][T12630]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  980.215139][T12630] RIP: 0033:0x7f1d3184b049
[  980.219537][T12630] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  980.239187][T12630] RSP: 002b:00007f1d309c1168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  980.247577][T12630] RAX: ffffffffffffffda RBX: 00007f1d3195df60 RCX: 00007f1d3184b049
[  980.255550][T12630] RDX: 0000000000000012 RSI: 0000000020000080 RDI: 000000000000000f
[  980.263544][T12630] RBP: 00007f1d318a508d R08: 0000000000000000 R09: 0000000000000000
[  980.271570][T12630] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  980.279515][T12630] R13: 00007ffc96a4069f R14: 00007f1d309c1300 R15: 0000000000022000
[  980.287476][T12630]  </TASK>
[  980.290499][T12630] memory: usage 108kB, limit 0kB, failcnt 6277
[  980.296659][T12630] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  980.303486][T12630] Memory cgroup stats for /syz0:
[  980.303763][T12630] anon 0
[  980.303763][T12630] file 81920
[  980.303763][T12630] kernel_stack 0
[  980.303763][T12630] pagetables 0
[  980.303763][T12630] percpu 0
[  980.303763][T12630] sock 0
[  980.303763][T12630] vmalloc 0
[  980.303763][T12630] shmem 77824
[  980.303763][T12630] file_mapped 77824
[  980.303763][T12630] file_dirty 0
[  980.303763][T12630] file_writeback 0
[  980.303763][T12630] swapcached 0
[  980.303763][T12630] inactive_anon 16384
[  980.303763][T12630] active_anon 61440
[  980.303763][T12630] inactive_file 0
[  980.303763][T12630] active_file 4096
[  980.303763][T12630] unevictable 0
[  980.303763][T12630] slab_reclaimable 6440
[  980.303763][T12630] slab_unreclaimable 15408
[  980.303763][T12630] slab 21848
[  980.303763][T12630] workingset_refault_anon 0
[  980.303763][T12630] workingset_refault_file 1
[  980.303763][T12630] workingset_activate_anon 0
[  980.303763][T12630] workingset_activate_file 0
[  980.303763][T12630] workingset_restore_anon 0
[  980.397584][T12630] Out of memory and no killable processes...
11:28:16 executing program 0:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) (async)
rmdir(&(0x7f00000000c0)='./file0\x00') (async, rerun: 32)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async, rerun: 32)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080), 0x12)

11:28:16 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x4d00, 0x12)

11:28:16 executing program 2:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
socket$inet6(0xa, 0x0, 0x0)
setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x30, 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x0, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080), 0x12) (fail_nth: 1)

11:28:16 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x0, 0x0, 0x56)
socket$inet6(0xa, 0x80001, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x80000, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x6700, 0x12)

11:28:16 executing program 5:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r1, &(0x7f0000000000), 0x10)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff00000000002f000000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b', @ANYRES32], 0x50}}, 0x0)

11:28:16 executing program 0:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
rmdir(&(0x7f00000000c0)='./file0\x00')
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080), 0x12)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) (async)
rmdir(&(0x7f00000000c0)='./file0\x00') (async)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) (async)
openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0) (async)
openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0) (async)
write$cgroup_int(r2, &(0x7f0000000080), 0x12) (async)

[  980.486061][T12634] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[  980.496384][T12634] CPU: 1 PID: 12634 Comm: syz-executor.1 Not tainted 5.17.0-rc7-syzkaller-00078-g3bf7edc84a9e-dirty #0
[  980.507405][T12634] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  980.517498][T12634] Call Trace:
[  980.520773][T12634]  <TASK>
[  980.523768][T12634]  dump_stack_lvl+0xd6/0x122
[  980.528362][T12634]  dump_stack+0x11/0x1b
[  980.532549][T12634]  dump_header+0x98/0x410
[  980.536907][T12634]  out_of_memory+0x65c/0x8c0
[  980.541581][T12634]  memory_max_write+0x32c/0x3d0
[  980.546435][T12634]  ? memory_max_show+0x70/0x70
[  980.551195][T12634]  cgroup_file_write+0x161/0x300
[  980.556131][T12634]  ? __check_object_size+0x22a/0x2d0
[  980.561444][T12634]  ? cgroup_seqfile_stop+0x70/0x70
[  980.566621][T12634]  kernfs_fop_write_iter+0x1d3/0x2d0
[  980.571903][T12634]  vfs_write+0x7f5/0x950
[  980.576216][T12634]  ksys_write+0xd9/0x190
[  980.580454][T12634]  __x64_sys_write+0x3e/0x50
[  980.585159][T12634]  do_syscall_64+0x44/0xd0
[  980.589573][T12634]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  980.595465][T12634] RIP: 0033:0x7fd6559cc049
[  980.599878][T12634] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  980.619512][T12634] RSP: 002b:00007fd654b42168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  980.628006][T12634] RAX: ffffffffffffffda RBX: 00007fd655adef60 RCX: 00007fd6559cc049
[  980.635975][T12634] RDX: 0000000000000012 RSI: 0000000020000080 RDI: 0000000000000006
[  980.643972][T12634] RBP: 00007fd655a2608d R08: 0000000000000000 R09: 0000000000000000
[  980.651937][T12634] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  980.659907][T12634] R13: 00007ffda0be2f9f R14: 00007fd654b42300 R15: 0000000000022000
[  980.667873][T12634]  </TASK>
[  980.670969][T12634] memory: usage 104kB, limit 24kB, failcnt 6277
[  980.677211][T12634] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
11:28:16 executing program 4:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff00000002b900000000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b'], 0x50}}, 0x0)

[  980.684046][T12634] Memory cgroup stats for /syz0:
[  980.687292][T12634] anon 0
[  980.687292][T12634] file 81920
[  980.687292][T12634] kernel_stack 0
[  980.687292][T12634] pagetables 0
[  980.687292][T12634] percpu 0
[  980.687292][T12634] sock 0
[  980.687292][T12634] vmalloc 0
[  980.687292][T12634] shmem 77824
[  980.687292][T12634] file_mapped 77824
[  980.687292][T12634] file_dirty 0
[  980.687292][T12634] file_writeback 0
[  980.687292][T12634] swapcached 0
[  980.687292][T12634] inactive_anon 16384
[  980.687292][T12634] active_anon 61440
[  980.687292][T12634] inactive_file 0
[  980.687292][T12634] active_file 4096
[  980.687292][T12634] unevictable 0
[  980.687292][T12634] slab_reclaimable 6440
[  980.687292][T12634] slab_unreclaimable 15408
[  980.687292][T12634] slab 21848
[  980.687292][T12634] workingset_refault_anon 0
[  980.687292][T12634] workingset_refault_file 1
[  980.687292][T12634] workingset_activate_anon 0
[  980.687292][T12634] workingset_activate_file 0
[  980.687292][T12634] workingset_restore_anon 0
[  980.781219][T12634] Out of memory and no killable processes...
[  980.787378][T12642] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=0
[  980.787626][T12636] FAULT_INJECTION: forcing a failure.
[  980.787626][T12636] name failslab, interval 1, probability 0, space 0, times 0
[  980.797433][T12642] CPU: 0 PID: 12642 Comm: syz-executor.3 Not tainted 5.17.0-rc7-syzkaller-00078-g3bf7edc84a9e-dirty #0
[  980.820953][T12642] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  980.830995][T12642] Call Trace:
[  980.834298][T12642]  <TASK>
[  980.837213][T12642]  dump_stack_lvl+0xd6/0x122
[  980.841792][T12642]  dump_stack+0x11/0x1b
[  980.846009][T12642]  dump_header+0x98/0x410
[  980.850397][T12642]  out_of_memory+0x65c/0x8c0
[  980.854971][T12642]  memory_max_write+0x32c/0x3d0
[  980.859879][T12642]  ? memory_max_show+0x70/0x70
[  980.864710][T12642]  cgroup_file_write+0x161/0x300
[  980.869632][T12642]  ? __check_object_size+0x22a/0x2d0
[  980.874902][T12642]  ? cgroup_seqfile_stop+0x70/0x70
[  980.880000][T12642]  kernfs_fop_write_iter+0x1d3/0x2d0
[  980.885299][T12642]  vfs_write+0x7f5/0x950
[  980.889530][T12642]  ksys_write+0xd9/0x190
[  980.893764][T12642]  __x64_sys_write+0x3e/0x50
[  980.898353][T12642]  do_syscall_64+0x44/0xd0
[  980.902758][T12642]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  980.908638][T12642] RIP: 0033:0x7f8cc712a049
[  980.913056][T12642] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  980.932720][T12642] RSP: 002b:00007f8cc627f168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  980.941163][T12642] RAX: ffffffffffffffda RBX: 00007f8cc723d030 RCX: 00007f8cc712a049
[  980.949121][T12642] RDX: 0000000000000012 RSI: 0000000020000080 RDI: 000000000000000f
[  980.957143][T12642] RBP: 00007f8cc718408d R08: 0000000000000000 R09: 0000000000000000
[  980.965098][T12642] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  980.973092][T12642] R13: 00007fff26a0d88f R14: 00007f8cc627f300 R15: 0000000000022000
[  980.981051][T12642]  </TASK>
[  980.984050][T12636] CPU: 1 PID: 12636 Comm: syz-executor.2 Not tainted 5.17.0-rc7-syzkaller-00078-g3bf7edc84a9e-dirty #0
[  980.984170][T12642] memory: usage 104kB, limit 24kB, failcnt 6277
[  980.995204][T12636] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  980.995215][T12636] Call Trace:
[  980.995222][T12636]  <TASK>
[  980.995228][T12636]  dump_stack_lvl+0xd6/0x122
[  981.001456][T12642] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  981.001468][T12642] Memory cgroup stats for /syz0
[  981.011537][T12636]  dump_stack+0x11/0x1b
[  981.014913][T12642] :
[  981.017712][T12636]  should_fail+0x23c/0x250
[  981.017735][T12636]  ? kernfs_fop_write_iter+0xf0/0x2d0
[  981.050207][T12636]  __should_failslab+0x81/0x90
[  981.055052][T12636]  should_failslab+0x5/0x20
[  981.059577][T12636]  __kmalloc+0x6f/0x370
[  981.063731][T12636]  ? avc_policy_seqno+0x22/0x30
[  981.068595][T12636]  kernfs_fop_write_iter+0xf0/0x2d0
[  981.073793][T12636]  ? iov_iter_init+0xbe/0xf0
[  981.078379][T12636]  vfs_write+0x7f5/0x950
[  981.082617][T12636]  ksys_write+0xd9/0x190
[  981.086853][T12636]  __x64_sys_write+0x3e/0x50
[  981.091439][T12636]  do_syscall_64+0x44/0xd0
[  981.095884][T12636]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  981.101792][T12636] RIP: 0033:0x7f1d3184b049
[  981.106200][T12636] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  981.125870][T12636] RSP: 002b:00007f1d309c1168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
11:28:17 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x5000, 0x12)

[  981.134336][T12636] RAX: ffffffffffffffda RBX: 00007f1d3195df60 RCX: 00007f1d3184b049
[  981.142365][T12636] RDX: 0000000000000012 RSI: 0000000020000080 RDI: 0000000000000006
[  981.150330][T12636] RBP: 00007f1d309c11d0 R08: 0000000000000000 R09: 0000000000000000
[  981.158294][T12636] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  981.166282][T12636] R13: 00007ffc96a4069f R14: 00007f1d309c1300 R15: 0000000000022000
[  981.174345][T12636]  </TASK>
[  981.178733][T12642] anon 0
[  981.178733][T12642] file 81920
[  981.178733][T12642] kernel_stack 0
[  981.178733][T12642] pagetables 0
[  981.178733][T12642] percpu 0
[  981.178733][T12642] sock 0
[  981.178733][T12642] vmalloc 0
[  981.178733][T12642] shmem 77824
[  981.178733][T12642] file_mapped 77824
[  981.178733][T12642] file_dirty 0
[  981.178733][T12642] file_writeback 0
[  981.178733][T12642] swapcached 0
[  981.178733][T12642] inactive_anon 16384
[  981.178733][T12642] active_anon 61440
[  981.178733][T12642] inactive_file 0
[  981.178733][T12642] active_file 4096
[  981.178733][T12642] unevictable 0
[  981.178733][T12642] slab_reclaimable 6440
11:28:17 executing program 2:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
socket$inet6(0xa, 0x0, 0x0)
setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x30, 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x0, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080), 0x12) (fail_nth: 2)

[  981.178733][T12642] slab_unreclaimable 15408
[  981.178733][T12642] slab 21848
[  981.178733][T12642] workingset_refault_anon 0
[  981.178733][T12642] workingset_refault_file 1
[  981.178733][T12642] workingset_activate_anon 0
[  981.178733][T12642] workingset_activate_file 0
[  981.178733][T12642] workingset_restore_anon 0
[  981.267715][T12642] Out of memory and no killable processes...
11:28:17 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x0, 0x0, 0x56)
socket$inet6(0xa, 0x80001, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x80000, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x6800, 0x12)

11:28:17 executing program 5:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r1, &(0x7f0000000000), 0x10)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff000000000030000000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b', @ANYRES32], 0x50}}, 0x0)

11:28:17 executing program 4:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff00000005c300000000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b'], 0x50}}, 0x0)

[  981.310391][T12649] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[  981.320638][T12649] CPU: 1 PID: 12649 Comm: syz-executor.1 Not tainted 5.17.0-rc7-syzkaller-00078-g3bf7edc84a9e-dirty #0
[  981.331655][T12649] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  981.341706][T12649] Call Trace:
[  981.344977][T12649]  <TASK>
[  981.347896][T12649]  dump_stack_lvl+0xd6/0x122
[  981.352509][T12649]  dump_stack+0x11/0x1b
[  981.356734][T12649]  dump_header+0x98/0x410
[  981.361062][T12649]  out_of_memory+0x65c/0x8c0
[  981.365654][T12649]  memory_max_write+0x32c/0x3d0
[  981.370593][T12649]  ? memory_max_show+0x70/0x70
[  981.375352][T12649]  cgroup_file_write+0x161/0x300
[  981.380287][T12649]  ? __check_object_size+0x22a/0x2d0
[  981.385570][T12649]  ? cgroup_seqfile_stop+0x70/0x70
[  981.390691][T12649]  kernfs_fop_write_iter+0x1d3/0x2d0
[  981.395972][T12649]  vfs_write+0x7f5/0x950
[  981.400245][T12649]  ksys_write+0xd9/0x190
[  981.404483][T12649]  __x64_sys_write+0x3e/0x50
[  981.409070][T12649]  do_syscall_64+0x44/0xd0
[  981.413596][T12649]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  981.419488][T12649] RIP: 0033:0x7fd6559cc049
[  981.423911][T12649] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  981.443585][T12649] RSP: 002b:00007fd654b42168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  981.451991][T12649] RAX: ffffffffffffffda RBX: 00007fd655adef60 RCX: 00007fd6559cc049
[  981.459954][T12649] RDX: 0000000000000012 RSI: 0000000020000080 RDI: 0000000000000006
[  981.467968][T12649] RBP: 00007fd655a2608d R08: 0000000000000000 R09: 0000000000000000
[  981.475978][T12649] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  981.483944][T12649] R13: 00007ffda0be2f9f R14: 00007fd654b42300 R15: 0000000000022000
[  981.491977][T12649]  </TASK>
[  981.495023][T12649] memory: usage 104kB, limit 24kB, failcnt 6277
[  981.501309][T12649] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  981.508253][T12649] Memory cgroup stats for /syz0:
[  981.509920][T12649] anon 0
[  981.509920][T12649] file 81920
[  981.509920][T12649] kernel_stack 0
[  981.509920][T12649] pagetables 0
[  981.509920][T12649] percpu 0
[  981.509920][T12649] sock 0
[  981.509920][T12649] vmalloc 0
[  981.509920][T12649] shmem 77824
[  981.509920][T12649] file_mapped 77824
[  981.509920][T12649] file_dirty 0
[  981.509920][T12649] file_writeback 0
[  981.509920][T12649] swapcached 0
[  981.509920][T12649] inactive_anon 16384
[  981.509920][T12649] active_anon 61440
[  981.509920][T12649] inactive_file 0
[  981.509920][T12649] active_file 4096
[  981.509920][T12649] unevictable 0
[  981.509920][T12649] slab_reclaimable 6440
[  981.509920][T12649] slab_unreclaimable 15408
[  981.509920][T12649] slab 21848
[  981.509920][T12649] workingset_refault_anon 0
[  981.509920][T12649] workingset_refault_file 1
[  981.509920][T12649] workingset_activate_anon 0
[  981.509920][T12649] workingset_activate_file 0
[  981.509920][T12649] workingset_restore_anon 0
[  981.525341][T12658] FAULT_INJECTION: forcing a failure.
[  981.525341][T12658] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  981.603755][T12649] Out of memory and no killable processes...
[  981.616699][T12658] CPU: 1 PID: 12658 Comm: syz-executor.2 Not tainted 5.17.0-rc7-syzkaller-00078-g3bf7edc84a9e-dirty #0
[  981.624062][T12655] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=0
[  981.633640][T12658] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  981.633652][T12658] Call Trace:
[  981.633658][T12658]  <TASK>
[  981.633664][T12658]  dump_stack_lvl+0xd6/0x122
[  981.664298][T12658]  dump_stack+0x11/0x1b
[  981.668444][T12658]  should_fail+0x23c/0x250
[  981.672843][T12658]  should_fail_usercopy+0x16/0x20
[  981.677925][T12658]  _copy_from_iter+0x131/0xa00
[  981.682675][T12658]  ? check_stack_object+0x61/0x70
[  981.687686][T12658]  ? __virt_addr_valid+0x15a/0x1a0
[  981.692783][T12658]  ? __check_object_size+0x22a/0x2d0
[  981.698074][T12658]  kernfs_fop_write_iter+0x140/0x2d0
[  981.703368][T12658]  ? iov_iter_init+0xbe/0xf0
[  981.707987][T12658]  vfs_write+0x7f5/0x950
[  981.712286][T12658]  ksys_write+0xd9/0x190
[  981.716578][T12658]  __x64_sys_write+0x3e/0x50
[  981.721148][T12658]  do_syscall_64+0x44/0xd0
[  981.725585][T12658]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  981.731463][T12658] RIP: 0033:0x7f1d3184b049
[  981.735859][T12658] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  981.755456][T12658] RSP: 002b:00007f1d309c1168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  981.763886][T12658] RAX: ffffffffffffffda RBX: 00007f1d3195df60 RCX: 00007f1d3184b049
[  981.771908][T12658] RDX: 0000000000000012 RSI: 0000000020000080 RDI: 0000000000000006
[  981.779936][T12658] RBP: 00007f1d309c11d0 R08: 0000000000000000 R09: 0000000000000000
[  981.787894][T12658] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  981.795954][T12658] R13: 00007ffc96a4069f R14: 00007f1d309c1300 R15: 0000000000022000
[  981.803911][T12658]  </TASK>
11:28:17 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x5400, 0x12)

11:28:17 executing program 2:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
socket$inet6(0xa, 0x0, 0x0)
setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x30, 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x0, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080), 0x12) (fail_nth: 3)

[  981.806923][T12655] CPU: 0 PID: 12655 Comm: syz-executor.3 Not tainted 5.17.0-rc7-syzkaller-00078-g3bf7edc84a9e-dirty #0
[  981.817970][T12655] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  981.828015][T12655] Call Trace:
[  981.831320][T12655]  <TASK>
[  981.834239][T12655]  dump_stack_lvl+0xd6/0x122
[  981.838823][T12655]  dump_stack+0x11/0x1b
[  981.843010][T12655]  dump_header+0x98/0x410
[  981.847358][T12655]  out_of_memory+0x65c/0x8c0
[  981.851982][T12655]  memory_max_write+0x32c/0x3d0
[  981.856812][T12655]  ? memory_max_show+0x70/0x70
[  981.861613][T12655]  cgroup_file_write+0x161/0x300
[  981.866531][T12655]  ? __check_object_size+0x22a/0x2d0
[  981.871793][T12655]  ? cgroup_seqfile_stop+0x70/0x70
[  981.876883][T12655]  kernfs_fop_write_iter+0x1d3/0x2d0
[  981.882207][T12655]  vfs_write+0x7f5/0x950
[  981.886426][T12655]  ksys_write+0xd9/0x190
[  981.890640][T12655]  __x64_sys_write+0x3e/0x50
[  981.895273][T12655]  do_syscall_64+0x44/0xd0
[  981.899792][T12655]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  981.905747][T12655] RIP: 0033:0x7f8cc712a049
[  981.910152][T12655] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  981.929836][T12655] RSP: 002b:00007f8cc62a0168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  981.938231][T12655] RAX: ffffffffffffffda RBX: 00007f8cc723cf60 RCX: 00007f8cc712a049
[  981.946181][T12655] RDX: 0000000000000012 RSI: 0000000020000080 RDI: 000000000000000f
[  981.954129][T12655] RBP: 00007f8cc718408d R08: 0000000000000000 R09: 0000000000000000
[  981.962162][T12655] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  981.970114][T12655] R13: 00007fff26a0d88f R14: 00007f8cc62a0300 R15: 0000000000022000
[  981.978072][T12655]  </TASK>
[  981.981215][T12655] memory: usage 104kB, limit 24kB, failcnt 6277
[  981.987511][T12655] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  981.994339][T12655] Memory cgroup stats for /syz0:
[  981.995271][T12655] anon 0
[  981.995271][T12655] file 81920
[  981.995271][T12655] kernel_stack 0
[  981.995271][T12655] pagetables 0
[  981.995271][T12655] percpu 0
[  981.995271][T12655] sock 0
[  981.995271][T12655] vmalloc 0
[  981.995271][T12655] shmem 77824
[  981.995271][T12655] file_mapped 77824
[  981.995271][T12655] file_dirty 0
[  981.995271][T12655] file_writeback 0
[  981.995271][T12655] swapcached 0
[  981.995271][T12655] inactive_anon 16384
[  981.995271][T12655] active_anon 61440
[  981.995271][T12655] inactive_file 0
[  981.995271][T12655] active_file 4096
[  981.995271][T12655] unevictable 0
[  981.995271][T12655] slab_reclaimable 6440
11:28:18 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x0, 0x0, 0x56)
socket$inet6(0xa, 0x80001, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x80000, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x6b00, 0x12)

[  981.995271][T12655] slab_unreclaimable 15408
[  981.995271][T12655] slab 21848
[  981.995271][T12655] workingset_refault_anon 0
[  981.995271][T12655] workingset_refault_file 1
[  981.995271][T12655] workingset_activate_anon 0
[  981.995271][T12655] workingset_activate_file 0
[  981.995271][T12655] workingset_restore_anon 0
[  982.089073][T12655] Out of memory and no killable processes...
[  982.133593][T12665] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[  982.143811][T12665] CPU: 0 PID: 12665 Comm: syz-executor.1 Not tainted 5.17.0-rc7-syzkaller-00078-g3bf7edc84a9e-dirty #0
[  982.154848][T12665] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  982.164983][T12665] Call Trace:
[  982.168245][T12665]  <TASK>
[  982.171179][T12665]  dump_stack_lvl+0xd6/0x122
[  982.175869][T12665]  dump_stack+0x11/0x1b
[  982.180012][T12665]  dump_header+0x98/0x410
[  982.184328][T12665]  out_of_memory+0x65c/0x8c0
[  982.188929][T12665]  ? _raw_spin_unlock_irqrestore+0x3d/0x60
[  982.194790][T12665]  memory_max_write+0x32c/0x3d0
[  982.199639][T12665]  ? memory_max_show+0x70/0x70
[  982.204462][T12665]  cgroup_file_write+0x161/0x300
[  982.209384][T12665]  ? __check_object_size+0x22a/0x2d0
[  982.214732][T12665]  ? cgroup_seqfile_stop+0x70/0x70
[  982.219835][T12665]  kernfs_fop_write_iter+0x1d3/0x2d0
[  982.225144][T12665]  vfs_write+0x7f5/0x950
[  982.229434][T12665]  ksys_write+0xd9/0x190
[  982.233661][T12665]  __x64_sys_write+0x3e/0x50
[  982.238258][T12665]  do_syscall_64+0x44/0xd0
[  982.242676][T12665]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  982.248573][T12665] RIP: 0033:0x7fd6559cc049
[  982.253041][T12665] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  982.272756][T12665] RSP: 002b:00007fd654b42168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  982.281165][T12665] RAX: ffffffffffffffda RBX: 00007fd655adef60 RCX: 00007fd6559cc049
[  982.289231][T12665] RDX: 0000000000000012 RSI: 0000000020000080 RDI: 0000000000000006
[  982.297265][T12665] RBP: 00007fd655a2608d R08: 0000000000000000 R09: 0000000000000000
[  982.305247][T12665] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  982.313204][T12665] R13: 00007ffda0be2f9f R14: 00007fd654b42300 R15: 0000000000022000
[  982.321176][T12665]  </TASK>
[  982.324218][T12665] memory: usage 104kB, limit 24kB, failcnt 6277
11:28:18 executing program 5:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r1, &(0x7f0000000000), 0x10)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff00000000003a000000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b', @ANYRES32], 0x50}}, 0x0)

[  982.330471][T12665] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  982.337330][T12665] Memory cgroup stats for /syz0:
[  982.345109][T12665] anon 0
[  982.345109][T12665] file 81920
[  982.345109][T12665] kernel_stack 0
[  982.345109][T12665] pagetables 0
[  982.345109][T12665] percpu 0
[  982.345109][T12665] sock 0
[  982.345109][T12665] vmalloc 0
[  982.345109][T12665] shmem 77824
[  982.345109][T12665] file_mapped 77824
[  982.345109][T12665] file_dirty 0
[  982.345109][T12665] file_writeback 0
[  982.345109][T12665] swapcached 0
[  982.345109][T12665] inactive_anon 16384
[  982.345109][T12665] active_anon 61440
[  982.345109][T12665] inactive_file 0
[  982.345109][T12665] active_file 4096
[  982.345109][T12665] unevictable 0
[  982.345109][T12665] slab_reclaimable 6440
[  982.345109][T12665] slab_unreclaimable 15408
[  982.345109][T12665] slab 21848
[  982.345109][T12665] workingset_refault_anon 0
[  982.345109][T12665] workingset_refault_file 1
[  982.345109][T12665] workingset_activate_anon 0
[  982.345109][T12665] workingset_activate_file 0
11:28:18 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x6000, 0x12)

[  982.345109][T12665] workingset_restore_anon 0
[  982.438925][T12665] Out of memory and no killable processes...
[  982.444913][T12668] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=0
[  982.454890][T12668] CPU: 1 PID: 12668 Comm: syz-executor.3 Not tainted 5.17.0-rc7-syzkaller-00078-g3bf7edc84a9e-dirty #0
[  982.465975][T12668] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  982.476079][T12668] Call Trace:
[  982.479347][T12668]  <TASK>
[  982.482357][T12668]  dump_stack_lvl+0xd6/0x122
[  982.487019][T12668]  dump_stack+0x11/0x1b
[  982.491216][T12668]  dump_header+0x98/0x410
[  982.495540][T12668]  out_of_memory+0x65c/0x8c0
[  982.500158][T12668]  memory_max_write+0x32c/0x3d0
[  982.505006][T12668]  ? memory_max_show+0x70/0x70
[  982.509837][T12668]  cgroup_file_write+0x161/0x300
[  982.514844][T12668]  ? __check_object_size+0x22a/0x2d0
[  982.520181][T12668]  ? cgroup_seqfile_stop+0x70/0x70
[  982.525331][T12668]  kernfs_fop_write_iter+0x1d3/0x2d0
[  982.530685][T12668]  vfs_write+0x7f5/0x950
[  982.534927][T12668]  ksys_write+0xd9/0x190
[  982.539163][T12668]  __x64_sys_write+0x3e/0x50
[  982.543811][T12668]  do_syscall_64+0x44/0xd0
[  982.548226][T12668]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  982.554116][T12668] RIP: 0033:0x7f8cc712a049
[  982.558521][T12668] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  982.578126][T12668] RSP: 002b:00007f8cc62a0168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  982.586538][T12668] RAX: ffffffffffffffda RBX: 00007f8cc723cf60 RCX: 00007f8cc712a049
[  982.594503][T12668] RDX: 0000000000000012 RSI: 0000000020000080 RDI: 000000000000000f
[  982.602473][T12668] RBP: 00007f8cc718408d R08: 0000000000000000 R09: 0000000000000000
[  982.610438][T12668] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  982.618390][T12668] R13: 00007fff26a0d88f R14: 00007f8cc62a0300 R15: 0000000000022000
[  982.626356][T12668]  </TASK>
[  982.629390][T12668] memory: usage 104kB, limit 0kB, failcnt 6277
[  982.635526][T12668] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  982.642376][T12668] Memory cgroup stats for /syz0:
[  982.642760][T12668] anon 0
[  982.642760][T12668] file 81920
[  982.642760][T12668] kernel_stack 0
[  982.642760][T12668] pagetables 0
[  982.642760][T12668] percpu 0
[  982.642760][T12668] sock 0
[  982.642760][T12668] vmalloc 0
[  982.642760][T12668] shmem 77824
[  982.642760][T12668] file_mapped 77824
[  982.642760][T12668] file_dirty 0
[  982.642760][T12668] file_writeback 0
[  982.642760][T12668] swapcached 0
[  982.642760][T12668] inactive_anon 16384
[  982.642760][T12668] active_anon 61440
[  982.642760][T12668] inactive_file 0
[  982.642760][T12668] active_file 4096
[  982.642760][T12668] unevictable 0
[  982.642760][T12668] slab_reclaimable 6440
[  982.642760][T12668] slab_unreclaimable 15408
[  982.642760][T12668] slab 21848
[  982.642760][T12668] workingset_refault_anon 0
[  982.642760][T12668] workingset_refault_file 1
[  982.642760][T12668] workingset_activate_anon 0
[  982.642760][T12668] workingset_activate_file 0
[  982.642760][T12668] workingset_restore_anon 0
[  982.736511][T12668] Out of memory and no killable processes...
[  982.744004][T12663] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[  982.754277][T12663] CPU: 0 PID: 12663 Comm: syz-executor.2 Not tainted 5.17.0-rc7-syzkaller-00078-g3bf7edc84a9e-dirty #0
[  982.765331][T12663] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  982.775382][T12663] Call Trace:
[  982.778640][T12663]  <TASK>
[  982.781548][T12663]  dump_stack_lvl+0xd6/0x122
[  982.786211][T12663]  dump_stack+0x11/0x1b
[  982.790424][T12663]  dump_header+0x98/0x410
[  982.794752][T12663]  out_of_memory+0x65c/0x8c0
[  982.799401][T12663]  memory_max_write+0x32c/0x3d0
[  982.804299][T12663]  ? memory_max_show+0x70/0x70
[  982.809046][T12663]  cgroup_file_write+0x161/0x300
[  982.813974][T12663]  ? __check_object_size+0x22a/0x2d0
[  982.819237][T12663]  ? cgroup_seqfile_stop+0x70/0x70
[  982.824357][T12663]  kernfs_fop_write_iter+0x1d3/0x2d0
[  982.829722][T12663]  vfs_write+0x7f5/0x950
[  982.834021][T12663]  ksys_write+0xd9/0x190
[  982.838245][T12663]  __x64_sys_write+0x3e/0x50
[  982.842872][T12663]  do_syscall_64+0x44/0xd0
[  982.847273][T12663]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  982.853223][T12663] RIP: 0033:0x7f1d3184b049
[  982.857625][T12663] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  982.877240][T12663] RSP: 002b:00007f1d309c1168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  982.885635][T12663] RAX: ffffffffffffffda RBX: 00007f1d3195df60 RCX: 00007f1d3184b049
[  982.893588][T12663] RDX: 0000000000000012 RSI: 0000000020000080 RDI: 0000000000000006
[  982.901658][T12663] RBP: 00007f1d309c11d0 R08: 0000000000000000 R09: 0000000000000000
[  982.909608][T12663] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  982.917634][T12663] R13: 00007ffc96a4069f R14: 00007f1d309c1300 R15: 0000000000022000
[  982.925698][T12663]  </TASK>
[  982.928814][T12663] memory: usage 104kB, limit 24kB, failcnt 6277
[  982.935060][T12663] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  982.941935][T12663] Memory cgroup stats for /syz0:
[  982.943420][T12663] FAULT_INJECTION: forcing a failure.
[  982.943420][T12663] name failslab, interval 1, probability 0, space 0, times 0
[  982.961069][T12663] CPU: 0 PID: 12663 Comm: syz-executor.2 Not tainted 5.17.0-rc7-syzkaller-00078-g3bf7edc84a9e-dirty #0
[  982.972110][T12663] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  982.982152][T12663] Call Trace:
[  982.985423][T12663]  <TASK>
[  982.988343][T12663]  dump_stack_lvl+0xd6/0x122
[  982.993023][T12663]  dump_stack+0x11/0x1b
[  982.997165][T12663]  should_fail+0x23c/0x250
[  983.001565][T12663]  ? memory_stat_format+0x58/0x470
[  983.006704][T12663]  __should_failslab+0x81/0x90
[  983.011494][T12663]  should_failslab+0x5/0x20
[  983.016002][T12663]  kmem_cache_alloc_trace+0x52/0x350
[  983.021273][T12663]  ? vprintk_default+0x22/0x30
[  983.026079][T12663]  ? vprintk+0x7f/0x90
[  983.030139][T12663]  memory_stat_format+0x58/0x470
[  983.035108][T12663]  mem_cgroup_print_oom_meminfo+0xfe/0x1d0
[  983.040895][T12663]  dump_header+0xbc/0x410
[  983.045207][T12663]  out_of_memory+0x65c/0x8c0
[  983.049869][T12663]  memory_max_write+0x32c/0x3d0
[  983.054706][T12663]  ? memory_max_show+0x70/0x70
[  983.059443][T12663]  cgroup_file_write+0x161/0x300
[  983.064413][T12663]  ? __check_object_size+0x22a/0x2d0
[  983.069732][T12663]  ? cgroup_seqfile_stop+0x70/0x70
[  983.074857][T12663]  kernfs_fop_write_iter+0x1d3/0x2d0
[  983.080166][T12663]  vfs_write+0x7f5/0x950
[  983.084388][T12663]  ksys_write+0xd9/0x190
[  983.088612][T12663]  __x64_sys_write+0x3e/0x50
[  983.093178][T12663]  do_syscall_64+0x44/0xd0
[  983.097610][T12663]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  983.103560][T12663] RIP: 0033:0x7f1d3184b049
[  983.107996][T12663] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  983.127594][T12663] RSP: 002b:00007f1d309c1168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  983.136079][T12663] RAX: ffffffffffffffda RBX: 00007f1d3195df60 RCX: 00007f1d3184b049
[  983.144049][T12663] RDX: 0000000000000012 RSI: 0000000020000080 RDI: 0000000000000006
[  983.152003][T12663] RBP: 00007f1d309c11d0 R08: 0000000000000000 R09: 0000000000000000
[  983.159981][T12663] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  983.167943][T12663] R13: 00007ffc96a4069f R14: 00007f1d309c1300 R15: 0000000000022000
[  983.175907][T12663]  </TASK>
[  983.178954][T12663] Out of memory and no killable processes...
[  983.191707][T12680] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[  983.201919][T12680] CPU: 0 PID: 12680 Comm: syz-executor.1 Not tainted 5.17.0-rc7-syzkaller-00078-g3bf7edc84a9e-dirty #0
[  983.213012][T12680] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  983.223075][T12680] Call Trace:
[  983.226339][T12680]  <TASK>
[  983.229261][T12680]  dump_stack_lvl+0xd6/0x122
[  983.233916][T12680]  dump_stack+0x11/0x1b
[  983.238066][T12680]  dump_header+0x98/0x410
[  983.242428][T12680]  out_of_memory+0x65c/0x8c0
[  983.247012][T12680]  memory_max_write+0x32c/0x3d0
[  983.251962][T12680]  ? memory_max_show+0x70/0x70
[  983.256718][T12680]  cgroup_file_write+0x161/0x300
[  983.261728][T12680]  ? __check_object_size+0x22a/0x2d0
[  983.267000][T12680]  ? cgroup_seqfile_stop+0x70/0x70
[  983.272099][T12680]  kernfs_fop_write_iter+0x1d3/0x2d0
[  983.277392][T12680]  vfs_write+0x7f5/0x950
[  983.281713][T12680]  ksys_write+0xd9/0x190
[  983.286000][T12680]  __x64_sys_write+0x3e/0x50
[  983.290576][T12680]  do_syscall_64+0x44/0xd0
[  983.294977][T12680]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  983.300864][T12680] RIP: 0033:0x7fd6559cc049
[  983.305311][T12680] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  983.324908][T12680] RSP: 002b:00007fd654b42168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  983.333359][T12680] RAX: ffffffffffffffda RBX: 00007fd655adef60 RCX: 00007fd6559cc049
[  983.341379][T12680] RDX: 0000000000000012 RSI: 0000000020000080 RDI: 0000000000000006
[  983.349370][T12680] RBP: 00007fd655a2608d R08: 0000000000000000 R09: 0000000000000000
[  983.357387][T12680] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  983.365341][T12680] R13: 00007ffda0be2f9f R14: 00007fd654b42300 R15: 0000000000022000
[  983.373313][T12680]  </TASK>
[  983.376467][T12680] memory: usage 104kB, limit 24kB, failcnt 6277
[  983.382704][T12680] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  983.389660][T12680] Memory cgroup stats for /syz0:
[  983.391742][T12680] anon 0
[  983.391742][T12680] file 81920
[  983.391742][T12680] kernel_stack 0
[  983.391742][T12680] pagetables 0
[  983.391742][T12680] percpu 0
[  983.391742][T12680] sock 0
[  983.391742][T12680] vmalloc 0
[  983.391742][T12680] shmem 77824
[  983.391742][T12680] file_mapped 77824
[  983.391742][T12680] file_dirty 0
[  983.391742][T12680] file_writeback 0
[  983.391742][T12680] swapcached 0
[  983.391742][T12680] inactive_anon 16384
[  983.391742][T12680] active_anon 61440
[  983.391742][T12680] inactive_file 0
[  983.391742][T12680] active_file 4096
[  983.391742][T12680] unevictable 0
[  983.391742][T12680] slab_reclaimable 6440
[  983.391742][T12680] slab_unreclaimable 15408
[  983.391742][T12680] slab 21848
[  983.391742][T12680] workingset_refault_anon 0
[  983.391742][T12680] workingset_refault_file 1
[  983.391742][T12680] workingset_activate_anon 0
[  983.391742][T12680] workingset_activate_file 0
[  983.391742][T12680] workingset_restore_anon 0
[  983.475573][T12676] chnl_net:caif_netlink_parms(): no params data found
[  983.485607][T12680] Out of memory and no killable processes...
[  983.536120][T12676] bridge0: port 1(bridge_slave_0) entered blocking state
[  983.543260][T12676] bridge0: port 1(bridge_slave_0) entered disabled state
[  983.551248][T12676] device bridge_slave_0 entered promiscuous mode
[  983.561923][T12676] bridge0: port 2(bridge_slave_1) entered blocking state
[  983.569041][T12676] bridge0: port 2(bridge_slave_1) entered disabled state
[  983.576730][T12676] device bridge_slave_1 entered promiscuous mode
[  983.591923][T12676] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  983.605418][T12676] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  983.623654][T12676] team0: Port device team_slave_0 added
[  983.630169][T12676] team0: Port device team_slave_1 added
[  983.648113][T12676] batman_adv: batadv0: Adding interface: batadv_slave_0
[  983.655041][T12676] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  983.680916][T12676] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  983.692234][T12676] batman_adv: batadv0: Adding interface: batadv_slave_1
[  983.699183][T12676] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  983.725099][T12676] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  983.750348][T12676] device hsr_slave_0 entered promiscuous mode
[  983.757107][T12676] device hsr_slave_1 entered promiscuous mode
[  983.788460][T22349] device hsr_slave_0 left promiscuous mode
[  983.794459][T22349] device hsr_slave_1 left promiscuous mode
[  983.800906][T22349] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  983.808339][T22349] batman_adv: batadv0: Removing interface: batadv_slave_0
[  983.816098][T22349] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  983.823507][T22349] batman_adv: batadv0: Removing interface: batadv_slave_1
[  983.832062][T22349] device bridge_slave_1 left promiscuous mode
[  983.838245][T22349] bridge0: port 2(bridge_slave_1) entered disabled state
[  983.845858][T22349] device bridge_slave_0 left promiscuous mode
[  983.852059][T22349] bridge0: port 1(bridge_slave_0) entered disabled state
[  983.861572][T22349] device veth1_macvtap left promiscuous mode
[  983.867594][T22349] device veth0_macvtap left promiscuous mode
[  983.873600][T22349] device veth1_vlan left promiscuous mode
[  983.879366][T22349] device veth0_vlan left promiscuous mode
[  983.958934][T22349] team0 (unregistering): Port device team_slave_1 removed
[  983.969347][T22349] team0 (unregistering): Port device team_slave_0 removed
[  983.978592][T22349] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  983.990120][T22349] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  984.016878][T22349] bond0 (unregistering): Released all slaves
[  984.065103][T12676] bridge0: port 2(bridge_slave_1) entered blocking state
[  984.072183][T12676] bridge0: port 2(bridge_slave_1) entered forwarding state
[  984.079455][T12676] bridge0: port 1(bridge_slave_0) entered blocking state
[  984.086490][T12676] bridge0: port 1(bridge_slave_0) entered forwarding state
[  984.112994][T12676] 8021q: adding VLAN 0 to HW filter on device bond0
[  984.123237][ T1928] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  984.131028][ T1928] bridge0: port 1(bridge_slave_0) entered disabled state
[  984.140101][ T1928] bridge0: port 2(bridge_slave_1) entered disabled state
[  984.151095][T12676] 8021q: adding VLAN 0 to HW filter on device team0
[  984.161841][ T3625] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  984.170117][ T3625] bridge0: port 1(bridge_slave_0) entered blocking state
[  984.177155][ T3625] bridge0: port 1(bridge_slave_0) entered forwarding state
[  984.188396][ T6848] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  984.196837][ T6848] bridge0: port 2(bridge_slave_1) entered blocking state
[  984.203956][ T6848] bridge0: port 2(bridge_slave_1) entered forwarding state
[  984.216385][ T3625] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  984.224906][ T3625] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  984.237402][ T6848] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  984.245831][ T6848] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  984.256228][ T6845] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  984.265468][T12676] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  984.278077][ T6845] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  984.285446][ T6845] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  984.296050][T12676] 8021q: adding VLAN 0 to HW filter on device batadv0
[  984.389980][ T6845] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  984.455046][T12676] device veth0_vlan entered promiscuous mode
[  984.462460][ T6848] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  984.470732][ T6848] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  984.479492][ T6848] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  984.487417][ T6848] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  984.497768][T12676] device veth1_vlan entered promiscuous mode
[  984.509655][ T3625] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  984.517559][ T3625] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  984.525325][ T3625] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  984.533925][ T3625] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  984.543579][T12676] device veth0_macvtap entered promiscuous mode
[  984.552184][T12676] device veth1_macvtap entered promiscuous mode
[  984.562333][T12676] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[  984.572917][T12676] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  984.582797][T12676] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[  984.593205][T12676] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  984.602999][T12676] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[  984.613405][T12676] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  984.623198][T12676] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[  984.633603][T12676] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  984.643418][T12676] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[  984.653893][T12676] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  984.664656][T12676] batman_adv: batadv0: Interface activated: batadv_slave_0
[  984.672994][   T77] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  984.680946][   T77] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  984.689353][   T77] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  984.697907][   T77] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  984.708540][T12676] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[  984.719075][T12676] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  984.728932][T12676] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[  984.739346][T12676] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  984.749185][T12676] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[  984.759669][T12676] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  984.769486][T12676] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[  984.779897][T12676] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  984.789721][T12676] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[  984.800234][T12676] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
11:28:20 executing program 0:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x80000, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
open(&(0x7f0000000100)='./file0\x00', 0x40000, 0x8)
openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
pipe(&(0x7f0000000200)={<r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(r2)
bind$inet(r2, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10)
connect$inet(r2, &(0x7f0000001280)={0x2, 0x0, @multicast1}, 0x10)
splice(r1, 0x0, r2, 0x0, 0x5, 0x5)
r3 = openat$cgroup_int(r1, &(0x7f00000000c0)='hugetlb.1GB.limit_in_bytes\x00', 0x2, 0x0)
write$cgroup_int(r3, &(0x7f0000000080), 0x12)

11:28:20 executing program 2:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
socket$inet6(0xa, 0x0, 0x0)
setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x30, 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x0, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080), 0x12)

[  984.810928][T12676] batman_adv: batadv0: Interface activated: batadv_slave_1
[  984.819775][ T3625] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  984.828431][ T3625] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
11:28:20 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x0, 0x0, 0x56)
socket$inet6(0xa, 0x80001, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x80000, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x6c00, 0x12)

11:28:20 executing program 4:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff00000005c400000000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b'], 0x50}}, 0x0)

11:28:20 executing program 5:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r1, &(0x7f0000000000), 0x10)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff00000000013a000000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b', @ANYRES32], 0x50}}, 0x0)

11:28:20 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x6500, 0x12)

[  984.896134][T12720] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=0
[  984.906192][T12720] CPU: 0 PID: 12720 Comm: syz-executor.3 Not tainted 5.17.0-rc7-syzkaller-00078-g3bf7edc84a9e-dirty #0
[  984.917356][T12720] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  984.927468][T12720] Call Trace:
[  984.930751][T12720]  <TASK>
[  984.933683][T12720]  dump_stack_lvl+0xd6/0x122
[  984.938286][T12720]  dump_stack+0x11/0x1b
[  984.942517][T12720]  dump_header+0x98/0x410
[  984.946834][T12720]  oom_kill_process+0x18e/0x4a0
[  984.951675][T12720]  out_of_memory+0x61d/0x8c0
[  984.956310][T12720]  ? _raw_spin_unlock_irqrestore+0x3d/0x60
[  984.962194][T12720]  memory_max_write+0x32c/0x3d0
[  984.967076][T12720]  ? memory_max_show+0x70/0x70
[  984.971875][T12720]  cgroup_file_write+0x161/0x300
[  984.976806][T12720]  ? __check_object_size+0x22a/0x2d0
[  984.982119][T12720]  ? cgroup_seqfile_stop+0x70/0x70
[  984.987343][T12720]  kernfs_fop_write_iter+0x1d3/0x2d0
[  984.992621][T12720]  vfs_write+0x7f5/0x950
[  984.996864][T12720]  ksys_write+0xd9/0x190
[  985.001099][T12720]  __x64_sys_write+0x3e/0x50
[  985.005728][T12720]  do_syscall_64+0x44/0xd0
[  985.010127][T12720]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  985.016139][T12720] RIP: 0033:0x7f8cc712a049
[  985.020660][T12720] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  985.040250][T12720] RSP: 002b:00007f8cc62a0168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  985.048747][T12720] RAX: ffffffffffffffda RBX: 00007f8cc723cf60 RCX: 00007f8cc712a049
[  985.056714][T12720] RDX: 0000000000000012 RSI: 0000000020000080 RDI: 000000000000000f
[  985.064728][T12720] RBP: 00007f8cc718408d R08: 0000000000000000 R09: 0000000000000000
[  985.072685][T12720] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  985.080847][T12720] R13: 00007fff26a0d88f R14: 00007f8cc62a0300 R15: 0000000000022000
[  985.088808][T12720]  </TASK>
[  985.091850][T12720] memory: usage 264kB, limit 0kB, failcnt 6314
[  985.098026][T12720] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  985.104876][T12720] Memory cgroup stats for /syz0:
[  985.107947][T12720] anon 36864
[  985.107947][T12720] file 81920
[  985.107947][T12720] kernel_stack 16384
[  985.107947][T12720] pagetables 45056
[  985.107947][T12720] percpu 0
[  985.107947][T12720] sock 0
[  985.107947][T12720] vmalloc 0
[  985.107947][T12720] shmem 77824
[  985.107947][T12720] file_mapped 77824
[  985.107947][T12720] file_dirty 4096
[  985.107947][T12720] file_writeback 0
[  985.107947][T12720] swapcached 0
[  985.107947][T12720] inactive_anon 53248
[  985.107947][T12720] active_anon 61440
[  985.107947][T12720] inactive_file 0
[  985.107947][T12720] active_file 4096
[  985.107947][T12720] unevictable 0
[  985.107947][T12720] slab_reclaimable 22256
[  985.107947][T12720] slab_unreclaimable 36968
[  985.107947][T12720] slab 59224
[  985.107947][T12720] workingset_refault_anon 0
[  985.107947][T12720] workingset_refault_file 1
[  985.107947][T12720] workingset_activate_anon 0
[  985.107947][T12720] workingset_activate_file 0
[  985.107947][T12720] workingset_restore_anon 0
[  985.203194][T12720] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=12676,uid=0
[  985.218528][T12720] Memory cgroup out of memory: Killed process 12676 (syz-executor.0) total-vm:48480kB, anon-rss:364kB, file-rss:14336kB, shmem-rss:0kB, UID:0 pgtables:80kB oom_score_adj:0
[  985.236719][   T26] oom_reaper: reaped process 12676 (syz-executor.0), now anon-rss:0kB, file-rss:14336kB, shmem-rss:64kB
[  985.248768][T12725] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[  985.258985][T12725] CPU: 1 PID: 12725 Comm: syz-executor.2 Not tainted 5.17.0-rc7-syzkaller-00078-g3bf7edc84a9e-dirty #0
[  985.270073][T12725] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  985.280137][T12725] Call Trace:
[  985.283398][T12725]  <TASK>
[  985.286316][T12725]  dump_stack_lvl+0xd6/0x122
[  985.290916][T12725]  dump_stack+0x11/0x1b
[  985.295061][T12725]  dump_header+0x98/0x410
[  985.299442][T12725]  out_of_memory+0x65c/0x8c0
[  985.304128][T12725]  memory_max_write+0x32c/0x3d0
[  985.309037][T12725]  ? memory_max_show+0x70/0x70
[  985.313795][T12725]  cgroup_file_write+0x161/0x300
[  985.318746][T12725]  ? __check_object_size+0x22a/0x2d0
[  985.324016][T12725]  ? cgroup_seqfile_stop+0x70/0x70
[  985.329122][T12725]  kernfs_fop_write_iter+0x1d3/0x2d0
[  985.334441][T12725]  vfs_write+0x7f5/0x950
[  985.338748][T12725]  ksys_write+0xd9/0x190
[  985.342988][T12725]  __x64_sys_write+0x3e/0x50
[  985.347564][T12725]  do_syscall_64+0x44/0xd0
[  985.351963][T12725]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  985.357904][T12725] RIP: 0033:0x7f1d3184b049
[  985.362383][T12725] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  985.382054][T12725] RSP: 002b:00007f1d309c1168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  985.390545][T12725] RAX: ffffffffffffffda RBX: 00007f1d3195df60 RCX: 00007f1d3184b049
[  985.398519][T12725] RDX: 0000000000000012 RSI: 0000000020000080 RDI: 0000000000000006
[  985.406515][T12725] RBP: 00007f1d318a508d R08: 0000000000000000 R09: 0000000000000000
[  985.414508][T12725] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  985.422475][T12725] R13: 00007ffc96a4069f R14: 00007f1d309c1300 R15: 0000000000022000
[  985.430431][T12725]  </TASK>
[  985.433483][T12725] memory: usage 156kB, limit 0kB, failcnt 6314
[  985.439637][T12725] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  985.446483][T12725] Memory cgroup stats for /syz0:
[  985.448246][T12725] anon 0
[  985.448246][T12725] file 81920
[  985.448246][T12725] kernel_stack 0
[  985.448246][T12725] pagetables 0
[  985.448246][T12725] percpu 0
[  985.448246][T12725] sock 0
[  985.448246][T12725] vmalloc 0
[  985.448246][T12725] shmem 77824
[  985.448246][T12725] file_mapped 77824
[  985.448246][T12725] file_dirty 4096
[  985.448246][T12725] file_writeback 0
[  985.448246][T12725] swapcached 0
[  985.448246][T12725] inactive_anon 16384
[  985.448246][T12725] active_anon 61440
[  985.448246][T12725] inactive_file 0
[  985.448246][T12725] active_file 4096
[  985.448246][T12725] unevictable 0
[  985.448246][T12725] slab_reclaimable 7984
[  985.448246][T12725] slab_unreclaimable 20976
[  985.448246][T12725] slab 28960
[  985.448246][T12725] workingset_refault_anon 0
[  985.448246][T12725] workingset_refault_file 1
[  985.448246][T12725] workingset_activate_anon 0
[  985.448246][T12725] workingset_activate_file 0
[  985.448246][T12725] workingset_restore_anon 0
[  985.542488][T12725] Out of memory and no killable processes...
11:28:21 executing program 2:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
socket$inet6(0xa, 0x0, 0x0)
setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x30, 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x0, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x2, 0x12)

[  985.553629][T12720] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=0
[  985.563661][T12720] CPU: 1 PID: 12720 Comm: syz-executor.3 Not tainted 5.17.0-rc7-syzkaller-00078-g3bf7edc84a9e-dirty #0
[  985.574890][T12720] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  985.584940][T12720] Call Trace:
[  985.588200][T12720]  <TASK>
[  985.591136][T12720]  dump_stack_lvl+0xd6/0x122
[  985.595716][T12720]  dump_stack+0x11/0x1b
[  985.599886][T12720]  dump_header+0x98/0x410
[  985.604200][T12720]  out_of_memory+0x65c/0x8c0
[  985.608774][T12720]  memory_max_write+0x32c/0x3d0
[  985.613620][T12720]  ? memory_max_show+0x70/0x70
[  985.618381][T12720]  cgroup_file_write+0x161/0x300
[  985.623300][T12720]  ? __check_object_size+0x22a/0x2d0
[  985.628602][T12720]  ? cgroup_seqfile_stop+0x70/0x70
[  985.633814][T12720]  kernfs_fop_write_iter+0x1d3/0x2d0
[  985.639198][T12720]  vfs_write+0x7f5/0x950
[  985.643421][T12720]  ksys_write+0xd9/0x190
[  985.647649][T12720]  __x64_sys_write+0x3e/0x50
[  985.652234][T12720]  do_syscall_64+0x44/0xd0
[  985.656677][T12720]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  985.662638][T12720] RIP: 0033:0x7f8cc712a049
[  985.667034][T12720] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  985.686696][T12720] RSP: 002b:00007f8cc62a0168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  985.695124][T12720] RAX: ffffffffffffffda RBX: 00007f8cc723cf60 RCX: 00007f8cc712a049
11:28:21 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x6700, 0x12)

[  985.703077][T12720] RDX: 0000000000000012 RSI: 0000000020000080 RDI: 000000000000000f
[  985.711031][T12720] RBP: 00007f8cc718408d R08: 0000000000000000 R09: 0000000000000000
[  985.718988][T12720] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  985.726959][T12720] R13: 00007fff26a0d88f R14: 00007f8cc62a0300 R15: 0000000000022000
[  985.734927][T12720]  </TASK>
[  985.737955][T12720] memory: usage 156kB, limit 0kB, failcnt 6314
[  985.744103][T12720] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  985.750962][T12720] Memory cgroup stats for /syz0:
[  985.751325][T12720] anon 0
[  985.751325][T12720] file 81920
[  985.751325][T12720] kernel_stack 0
[  985.751325][T12720] pagetables 0
[  985.751325][T12720] percpu 0
[  985.751325][T12720] sock 0
[  985.751325][T12720] vmalloc 0
[  985.751325][T12720] shmem 77824
[  985.751325][T12720] file_mapped 77824
[  985.751325][T12720] file_dirty 4096
[  985.751325][T12720] file_writeback 0
[  985.751325][T12720] swapcached 0
[  985.751325][T12720] inactive_anon 16384
[  985.751325][T12720] active_anon 61440
11:28:21 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x0, 0x0, 0x56)
socket$inet6(0xa, 0x80001, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x80000, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x6d00, 0x12)

[  985.751325][T12720] inactive_file 0
[  985.751325][T12720] active_file 4096
[  985.751325][T12720] unevictable 0
[  985.751325][T12720] slab_reclaimable 7984
[  985.751325][T12720] slab_unreclaimable 16328
[  985.751325][T12720] slab 24312
[  985.751325][T12720] workingset_refault_anon 0
[  985.751325][T12720] workingset_refault_file 1
[  985.751325][T12720] workingset_activate_anon 0
[  985.751325][T12720] workingset_activate_file 0
[  985.751325][T12720] workingset_restore_anon 0
[  985.845617][T12720] Out of memory and no killable processes...
[  985.883586][T12733] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[  985.893834][T12733] CPU: 0 PID: 12733 Comm: syz-executor.1 Not tainted 5.17.0-rc7-syzkaller-00078-g3bf7edc84a9e-dirty #0
[  985.904862][T12733] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  985.914921][T12733] Call Trace:
[  985.918207][T12733]  <TASK>
[  985.921137][T12733]  dump_stack_lvl+0xd6/0x122
[  985.925755][T12733]  dump_stack+0x11/0x1b
[  985.930090][T12733]  dump_header+0x98/0x410
[  985.934487][T12733]  out_of_memory+0x65c/0x8c0
[  985.939064][T12733]  memory_max_write+0x32c/0x3d0
[  985.943904][T12733]  ? memory_max_show+0x70/0x70
[  985.948727][T12733]  cgroup_file_write+0x161/0x300
[  985.953659][T12733]  ? __check_object_size+0x22a/0x2d0
[  985.958958][T12733]  ? cgroup_seqfile_stop+0x70/0x70
[  985.964051][T12733]  kernfs_fop_write_iter+0x1d3/0x2d0
[  985.969327][T12733]  vfs_write+0x7f5/0x950
[  985.973685][T12733]  ksys_write+0xd9/0x190
[  985.977910][T12733]  __x64_sys_write+0x3e/0x50
[  985.982482][T12733]  do_syscall_64+0x44/0xd0
[  985.987056][T12733]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  985.992937][T12733] RIP: 0033:0x7fd6559cc049
[  985.997335][T12733] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  986.016959][T12733] RSP: 002b:00007fd654b42168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  986.025365][T12733] RAX: ffffffffffffffda RBX: 00007fd655adef60 RCX: 00007fd6559cc049
[  986.033316][T12733] RDX: 0000000000000012 RSI: 0000000020000080 RDI: 0000000000000006
[  986.041269][T12733] RBP: 00007fd655a2608d R08: 0000000000000000 R09: 0000000000000000
[  986.049275][T12733] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  986.057262][T12733] R13: 00007ffda0be2f9f R14: 00007fd654b42300 R15: 0000000000022000
[  986.065363][T12733]  </TASK>
[  986.068471][T12733] memory: usage 108kB, limit 0kB, failcnt 6314
[  986.074615][T12733] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  986.081547][T12733] Memory cgroup stats for /syz0:
[  986.083353][T12733] anon 0
[  986.083353][T12733] file 81920
[  986.083353][T12733] kernel_stack 0
[  986.083353][T12733] pagetables 0
[  986.083353][T12733] percpu 0
[  986.083353][T12733] sock 0
[  986.083353][T12733] vmalloc 0
[  986.083353][T12733] shmem 77824
[  986.083353][T12733] file_mapped 77824
[  986.083353][T12733] file_dirty 4096
[  986.083353][T12733] file_writeback 0
[  986.083353][T12733] swapcached 0
[  986.083353][T12733] inactive_anon 16384
[  986.083353][T12733] active_anon 61440
[  986.083353][T12733] inactive_file 0
[  986.083353][T12733] active_file 4096
[  986.083353][T12733] unevictable 0
[  986.083353][T12733] slab_reclaimable 7584
[  986.083353][T12733] slab_unreclaimable 15408
[  986.083353][T12733] slab 22992
[  986.083353][T12733] workingset_refault_anon 0
[  986.083353][T12733] workingset_refault_file 1
[  986.083353][T12733] workingset_activate_anon 0
[  986.083353][T12733] workingset_activate_file 0
[  986.083353][T12733] workingset_restore_anon 0
[  986.177475][T12733] Out of memory and no killable processes...
11:28:22 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x6800, 0x12)

[  986.183629][T12730] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[  986.193903][T12730] CPU: 0 PID: 12730 Comm: syz-executor.2 Not tainted 5.17.0-rc7-syzkaller-00078-g3bf7edc84a9e-dirty #0
[  986.205008][T12730] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  986.215069][T12730] Call Trace:
[  986.218327][T12730]  <TASK>
[  986.221243][T12730]  dump_stack_lvl+0xd6/0x122
[  986.225837][T12730]  dump_stack+0x11/0x1b
[  986.230041][T12730]  dump_header+0x98/0x410
[  986.234376][T12730]  out_of_memory+0x65c/0x8c0
[  986.239022][T12730]  memory_max_write+0x32c/0x3d0
[  986.243860][T12730]  ? memory_max_show+0x70/0x70
[  986.248641][T12730]  cgroup_file_write+0x161/0x300
[  986.253664][T12730]  ? __check_object_size+0x22a/0x2d0
[  986.258959][T12730]  ? cgroup_seqfile_stop+0x70/0x70
[  986.264109][T12730]  kernfs_fop_write_iter+0x1d3/0x2d0
[  986.269438][T12730]  vfs_write+0x7f5/0x950
[  986.273781][T12730]  ksys_write+0xd9/0x190
[  986.278003][T12730]  __x64_sys_write+0x3e/0x50
[  986.282644][T12730]  do_syscall_64+0x44/0xd0
[  986.287042][T12730]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  986.292971][T12730] RIP: 0033:0x7f1d3184b049
[  986.297364][T12730] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  986.316971][T12730] RSP: 002b:00007f1d309c1168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  986.325454][T12730] RAX: ffffffffffffffda RBX: 00007f1d3195df60 RCX: 00007f1d3184b049
[  986.333430][T12730] RDX: 0000000000000012 RSI: 0000000020000080 RDI: 0000000000000006
[  986.341385][T12730] RBP: 00007f1d318a508d R08: 0000000000000000 R09: 0000000000000000
[  986.349363][T12730] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  986.357318][T12730] R13: 00007ffc96a4069f R14: 00007f1d309c1300 R15: 0000000000022000
[  986.365283][T12730]  </TASK>
[  986.368327][T12730] memory: usage 108kB, limit 24kB, failcnt 6314
[  986.374559][T12730] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  986.381483][T12730] Memory cgroup stats for /syz0:
[  986.384333][T12730] anon 0
[  986.384333][T12730] file 81920
[  986.384333][T12730] kernel_stack 0
[  986.384333][T12730] pagetables 0
[  986.384333][T12730] percpu 0
[  986.384333][T12730] sock 0
[  986.384333][T12730] vmalloc 0
[  986.384333][T12730] shmem 77824
[  986.384333][T12730] file_mapped 77824
[  986.384333][T12730] file_dirty 4096
[  986.384333][T12730] file_writeback 0
[  986.384333][T12730] swapcached 0
[  986.384333][T12730] inactive_anon 16384
[  986.384333][T12730] active_anon 61440
[  986.384333][T12730] inactive_file 0
[  986.384333][T12730] active_file 4096
[  986.384333][T12730] unevictable 0
[  986.384333][T12730] slab_reclaimable 7584
[  986.384333][T12730] slab_unreclaimable 15408
[  986.384333][T12730] slab 22992
[  986.384333][T12730] workingset_refault_anon 0
[  986.384333][T12730] workingset_refault_file 1
[  986.384333][T12730] workingset_activate_anon 0
[  986.384333][T12730] workingset_activate_file 0
[  986.384333][T12730] workingset_restore_anon 0
[  986.478361][T12730] Out of memory and no killable processes...
11:28:22 executing program 2:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
socket$inet6(0xa, 0x0, 0x0)
setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x30, 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x0, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x3, 0x12)

[  986.484366][T12737] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=0
[  986.494396][T12737] CPU: 0 PID: 12737 Comm: syz-executor.3 Not tainted 5.17.0-rc7-syzkaller-00078-g3bf7edc84a9e-dirty #0
[  986.505417][T12737] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  986.515506][T12737] Call Trace:
[  986.518771][T12737]  <TASK>
[  986.521687][T12737]  dump_stack_lvl+0xd6/0x122
[  986.526303][T12737]  dump_stack+0x11/0x1b
[  986.530489][T12737]  dump_header+0x98/0x410
[  986.534814][T12737]  out_of_memory+0x65c/0x8c0
[  986.539921][T12737]  memory_max_write+0x32c/0x3d0
[  986.544754][T12737]  ? memory_max_show+0x70/0x70
[  986.549570][T12737]  cgroup_file_write+0x161/0x300
[  986.554545][T12737]  ? __check_object_size+0x22a/0x2d0
[  986.559855][T12737]  ? cgroup_seqfile_stop+0x70/0x70
[  986.565065][T12737]  kernfs_fop_write_iter+0x1d3/0x2d0
[  986.570452][T12737]  vfs_write+0x7f5/0x950
[  986.574757][T12737]  ksys_write+0xd9/0x190
[  986.579069][T12737]  __x64_sys_write+0x3e/0x50
[  986.583681][T12737]  do_syscall_64+0x44/0xd0
[  986.588158][T12737]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  986.594092][T12737] RIP: 0033:0x7f8cc712a049
[  986.598489][T12737] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  986.618073][T12737] RSP: 002b:00007f8cc62a0168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  986.626468][T12737] RAX: ffffffffffffffda RBX: 00007f8cc723cf60 RCX: 00007f8cc712a049
[  986.634430][T12737] RDX: 0000000000000012 RSI: 0000000020000080 RDI: 000000000000000f
[  986.642406][T12737] RBP: 00007f8cc718408d R08: 0000000000000000 R09: 0000000000000000
[  986.650361][T12737] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  986.658312][T12737] R13: 00007fff26a0d88f R14: 00007f8cc62a0300 R15: 0000000000022000
[  986.666324][T12737]  </TASK>
[  986.669552][T12737] memory: usage 108kB, limit 24kB, failcnt 6314
[  986.675788][T12737] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
11:28:22 executing program 4:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff00000003da00000000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b'], 0x50}}, 0x0)

[  986.682662][T12737] Memory cgroup stats for /syz0:
[  986.701330][T12737] anon 0
[  986.701330][T12737] file 81920
[  986.701330][T12737] kernel_stack 0
[  986.701330][T12737] pagetables 0
[  986.701330][T12737] percpu 0
[  986.701330][T12737] sock 0
[  986.701330][T12737] vmalloc 0
[  986.701330][T12737] shmem 77824
[  986.701330][T12737] file_mapped 77824
[  986.701330][T12737] file_dirty 4096
[  986.701330][T12737] file_writeback 0
[  986.701330][T12737] swapcached 0
[  986.701330][T12737] inactive_anon 16384
[  986.701330][T12737] active_anon 61440
11:28:22 executing program 0:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x80000, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
open(&(0x7f0000000100)='./file0\x00', 0x40000, 0x8) (async)
openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0) (async)
pipe(&(0x7f0000000200)={<r1=>0xffffffffffffffff}) (async)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(r2) (async)
bind$inet(r2, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10)
connect$inet(r2, &(0x7f0000001280)={0x2, 0x0, @multicast1}, 0x10)
splice(r1, 0x0, r2, 0x0, 0x5, 0x5)
r3 = openat$cgroup_int(r1, &(0x7f00000000c0)='hugetlb.1GB.limit_in_bytes\x00', 0x2, 0x0)
write$cgroup_int(r3, &(0x7f0000000080), 0x12)

[  986.701330][T12737] inactive_file 0
[  986.701330][T12737] active_file 4096
[  986.701330][T12737] unevictable 0
[  986.701330][T12737] slab_reclaimable 7584
[  986.701330][T12737] slab_unreclaimable 15408
[  986.701330][T12737] slab 22992
[  986.701330][T12737] workingset_refault_anon 0
[  986.701330][T12737] workingset_refault_file 1
[  986.701330][T12737] workingset_activate_anon 0
[  986.701330][T12737] workingset_activate_file 0
[  986.701330][T12737] workingset_restore_anon 0
[  986.795575][T12737] Out of memory and no killable processes...
[  986.807435][T12740] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[  986.817648][T12740] CPU: 1 PID: 12740 Comm: syz-executor.1 Not tainted 5.17.0-rc7-syzkaller-00078-g3bf7edc84a9e-dirty #0
[  986.828665][T12740] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  986.838719][T12740] Call Trace:
[  986.842001][T12740]  <TASK>
[  986.845045][T12740]  dump_stack_lvl+0xd6/0x122
[  986.849645][T12740]  dump_stack+0x11/0x1b
[  986.853879][T12740]  dump_header+0x98/0x410
[  986.858247][T12740]  out_of_memory+0x65c/0x8c0
[  986.862838][T12740]  memory_max_write+0x32c/0x3d0
[  986.867693][T12740]  ? memory_max_show+0x70/0x70
[  986.872542][T12740]  cgroup_file_write+0x161/0x300
[  986.877540][T12740]  ? __check_object_size+0x22a/0x2d0
[  986.882868][T12740]  ? cgroup_seqfile_stop+0x70/0x70
[  986.888050][T12740]  kernfs_fop_write_iter+0x1d3/0x2d0
[  986.893351][T12740]  vfs_write+0x7f5/0x950
[  986.897643][T12740]  ksys_write+0xd9/0x190
[  986.901950][T12740]  __x64_sys_write+0x3e/0x50
[  986.906542][T12740]  do_syscall_64+0x44/0xd0
[  986.910991][T12740]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  986.916889][T12740] RIP: 0033:0x7fd6559cc049
[  986.921313][T12740] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  986.941116][T12740] RSP: 002b:00007fd654b42168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  986.949569][T12740] RAX: ffffffffffffffda RBX: 00007fd655adef60 RCX: 00007fd6559cc049
11:28:22 executing program 0:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x80000, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
open(&(0x7f0000000100)='./file0\x00', 0x40000, 0x8) (async)
openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
pipe(&(0x7f0000000200)={<r1=>0xffffffffffffffff}) (async)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(r2)
bind$inet(r2, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10) (async, rerun: 64)
connect$inet(r2, &(0x7f0000001280)={0x2, 0x0, @multicast1}, 0x10) (rerun: 64)
splice(r1, 0x0, r2, 0x0, 0x5, 0x5) (async)
r3 = openat$cgroup_int(r1, &(0x7f00000000c0)='hugetlb.1GB.limit_in_bytes\x00', 0x2, 0x0)
write$cgroup_int(r3, &(0x7f0000000080), 0x12)

[  986.957539][T12740] RDX: 0000000000000012 RSI: 0000000020000080 RDI: 0000000000000006
[  986.965586][T12740] RBP: 00007fd655a2608d R08: 0000000000000000 R09: 0000000000000000
[  986.973556][T12740] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  986.981570][T12740] R13: 00007ffda0be2f9f R14: 00007fd654b42300 R15: 0000000000022000
[  986.989669][T12740]  </TASK>
[  986.992719][T12740] memory: usage 108kB, limit 0kB, failcnt 6314
[  986.998883][T12740] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  987.005723][T12740] Memory cgroup stats for /syz0:
[  987.019753][T12740] anon 0
[  987.019753][T12740] file 81920
[  987.019753][T12740] kernel_stack 0
[  987.019753][T12740] pagetables 0
[  987.019753][T12740] percpu 0
[  987.019753][T12740] sock 0
[  987.019753][T12740] vmalloc 0
[  987.019753][T12740] shmem 77824
[  987.019753][T12740] file_mapped 77824
[  987.019753][T12740] file_dirty 4096
[  987.019753][T12740] file_writeback 0
[  987.019753][T12740] swapcached 0
[  987.019753][T12740] inactive_anon 16384
[  987.019753][T12740] active_anon 61440
11:28:23 executing program 5:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r1, &(0x7f0000000000), 0x10)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff00000000013b000000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b', @ANYRES32], 0x50}}, 0x0)

11:28:23 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x0, 0x0, 0x56)
socket$inet6(0xa, 0x80001, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x80000, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x7000, 0x12)

[  987.019753][T12740] inactive_file 0
[  987.019753][T12740] active_file 4096
[  987.019753][T12740] unevictable 0
[  987.019753][T12740] slab_reclaimable 7584
[  987.019753][T12740] slab_unreclaimable 15408
[  987.019753][T12740] slab 22992
[  987.019753][T12740] workingset_refault_anon 0
[  987.019753][T12740] workingset_refault_file 1
[  987.019753][T12740] workingset_activate_anon 0
[  987.019753][T12740] workingset_activate_file 0
[  987.019753][T12740] workingset_restore_anon 0
[  987.113893][T12740] Out of memory and no killable processes...
[  987.124800][T12742] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[  987.135057][T12742] CPU: 1 PID: 12742 Comm: syz-executor.2 Not tainted 5.17.0-rc7-syzkaller-00078-g3bf7edc84a9e-dirty #0
[  987.146086][T12742] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  987.156189][T12742] Call Trace:
[  987.159472][T12742]  <TASK>
[  987.162468][T12742]  dump_stack_lvl+0xd6/0x122
[  987.167229][T12742]  dump_stack+0x11/0x1b
[  987.171439][T12742]  dump_header+0x98/0x410
[  987.175809][T12742]  out_of_memory+0x65c/0x8c0
[  987.180531][T12742]  memory_max_write+0x32c/0x3d0
[  987.185389][T12742]  ? memory_max_show+0x70/0x70
[  987.190216][T12742]  cgroup_file_write+0x161/0x300
[  987.195179][T12742]  ? __check_object_size+0x22a/0x2d0
[  987.200503][T12742]  ? cgroup_seqfile_stop+0x70/0x70
[  987.205774][T12742]  kernfs_fop_write_iter+0x1d3/0x2d0
[  987.211066][T12742]  vfs_write+0x7f5/0x950
[  987.215334][T12742]  ksys_write+0xd9/0x190
[  987.219582][T12742]  __x64_sys_write+0x3e/0x50
[  987.224216][T12742]  do_syscall_64+0x44/0xd0
[  987.228635][T12742]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  987.234562][T12742] RIP: 0033:0x7f1d3184b049
[  987.239058][T12742] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  987.258676][T12742] RSP: 002b:00007f1d309c1168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  987.267092][T12742] RAX: ffffffffffffffda RBX: 00007f1d3195df60 RCX: 00007f1d3184b049
[  987.275068][T12742] RDX: 0000000000000012 RSI: 0000000020000080 RDI: 0000000000000006
[  987.283038][T12742] RBP: 00007f1d318a508d R08: 0000000000000000 R09: 0000000000000000
[  987.291006][T12742] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  987.298972][T12742] R13: 00007ffc96a4069f R14: 00007f1d309c1300 R15: 0000000000022000
[  987.306943][T12742]  </TASK>
[  987.310103][T12742] memory: usage 104kB, limit 0kB, failcnt 6314
[  987.316305][T12742] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  987.323149][T12742] Memory cgroup stats for /syz0:
[  987.344330][T12742] anon 0
[  987.344330][T12742] file 81920
[  987.344330][T12742] kernel_stack 0
[  987.344330][T12742] pagetables 0
[  987.344330][T12742] percpu 0
[  987.344330][T12742] sock 0
[  987.344330][T12742] vmalloc 0
[  987.344330][T12742] shmem 77824
[  987.344330][T12742] file_mapped 77824
[  987.344330][T12742] file_dirty 4096
[  987.344330][T12742] file_writeback 0
[  987.344330][T12742] swapcached 0
[  987.344330][T12742] inactive_anon 16384
[  987.344330][T12742] active_anon 61440
11:28:23 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x0, 0x0, 0x56)
socket$inet6(0xa, 0x80001, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x80000, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x7400, 0x12)

11:28:23 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x6b00, 0x12)

[  987.344330][T12742] inactive_file 0
[  987.344330][T12742] active_file 4096
[  987.344330][T12742] unevictable 0
[  987.344330][T12742] slab_reclaimable 6440
[  987.344330][T12742] slab_unreclaimable 15408
[  987.344330][T12742] slab 21848
[  987.344330][T12742] workingset_refault_anon 0
[  987.344330][T12742] workingset_refault_file 1
[  987.344330][T12742] workingset_activate_anon 0
[  987.344330][T12742] workingset_activate_file 0
[  987.344330][T12742] workingset_restore_anon 0
[  987.438557][T12742] Out of memory and no killable processes...
11:28:23 executing program 4:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff00000002eb00000000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b'], 0x50}}, 0x0)

[  987.460711][T12760] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[  987.470941][T12760] CPU: 1 PID: 12760 Comm: syz-executor.1 Not tainted 5.17.0-rc7-syzkaller-00078-g3bf7edc84a9e-dirty #0
[  987.482015][T12760] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  987.492109][T12760] Call Trace:
[  987.495383][T12760]  <TASK>
[  987.498309][T12760]  dump_stack_lvl+0xd6/0x122
[  987.502972][T12760]  dump_stack+0x11/0x1b
[  987.507130][T12760]  dump_header+0x98/0x410
[  987.511505][T12760]  out_of_memory+0x65c/0x8c0
[  987.516167][T12760]  ? _raw_spin_unlock_irqrestore+0x3d/0x60
[  987.522003][T12760]  memory_max_write+0x32c/0x3d0
[  987.526917][T12760]  ? memory_max_show+0x70/0x70
[  987.531683][T12760]  cgroup_file_write+0x161/0x300
[  987.536635][T12760]  ? __check_object_size+0x22a/0x2d0
[  987.542711][T12760]  ? cgroup_seqfile_stop+0x70/0x70
[  987.547860][T12760]  kernfs_fop_write_iter+0x1d3/0x2d0
[  987.553226][T12760]  vfs_write+0x7f5/0x950
11:28:23 executing program 2:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
socket$inet6(0xa, 0x0, 0x0)
setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x30, 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x0, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x4, 0x12)

[  987.557471][T12760]  ksys_write+0xd9/0x190
[  987.561774][T12760]  __x64_sys_write+0x3e/0x50
[  987.566366][T12760]  do_syscall_64+0x44/0xd0
[  987.570780][T12760]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  987.576691][T12760] RIP: 0033:0x7fd6559cc049
[  987.581101][T12760] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  987.600769][T12760] RSP: 002b:00007fd654b42168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  987.609178][T12760] RAX: ffffffffffffffda RBX: 00007fd655adef60 RCX: 00007fd6559cc049
[  987.617210][T12760] RDX: 0000000000000012 RSI: 0000000020000080 RDI: 0000000000000006
[  987.625254][T12760] RBP: 00007fd655a2608d R08: 0000000000000000 R09: 0000000000000000
[  987.633206][T12760] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  987.641156][T12760] R13: 00007ffda0be2f9f R14: 00007fd654b42300 R15: 0000000000022000
[  987.649108][T12760]  </TASK>
[  987.652351][T12760] memory: usage 104kB, limit 28kB, failcnt 6314
[  987.658610][T12760] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  987.665448][T12760] Memory cgroup stats for /syz0:
[  987.674722][T12760] anon 0
[  987.674722][T12760] file 81920
[  987.674722][T12760] kernel_stack 0
[  987.674722][T12760] pagetables 0
[  987.674722][T12760] percpu 0
[  987.674722][T12760] sock 0
[  987.674722][T12760] vmalloc 0
[  987.674722][T12760] shmem 77824
[  987.674722][T12760] file_mapped 77824
[  987.674722][T12760] file_dirty 4096
[  987.674722][T12760] file_writeback 0
[  987.674722][T12760] swapcached 0
[  987.674722][T12760] inactive_anon 16384
[  987.674722][T12760] active_anon 61440
[  987.674722][T12760] inactive_file 0
[  987.674722][T12760] active_file 4096
[  987.674722][T12760] unevictable 0
[  987.674722][T12760] slab_reclaimable 6440
[  987.674722][T12760] slab_unreclaimable 15408
[  987.674722][T12760] slab 21848
[  987.674722][T12760] workingset_refault_anon 0
[  987.674722][T12760] workingset_refault_file 1
[  987.674722][T12760] workingset_activate_anon 0
11:28:23 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x6c00, 0x12)

[  987.674722][T12760] workingset_activate_file 0
[  987.674722][T12760] workingset_restore_anon 0
[  987.769209][T12760] Out of memory and no killable processes...
[  987.775926][T12757] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=0
[  987.785874][T12757] CPU: 1 PID: 12757 Comm: syz-executor.3 Not tainted 5.17.0-rc7-syzkaller-00078-g3bf7edc84a9e-dirty #0
[  987.796947][T12757] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  987.807027][T12757] Call Trace:
[  987.810300][T12757]  <TASK>
[  987.813228][T12757]  dump_stack_lvl+0xd6/0x122
[  987.817820][T12757]  dump_stack+0x11/0x1b
[  987.822234][T12757]  dump_header+0x98/0x410
[  987.826634][T12757]  out_of_memory+0x65c/0x8c0
[  987.831222][T12757]  memory_max_write+0x32c/0x3d0
[  987.836088][T12757]  ? memory_max_show+0x70/0x70
[  987.840879][T12757]  cgroup_file_write+0x161/0x300
[  987.845810][T12757]  ? __check_object_size+0x22a/0x2d0
[  987.851085][T12757]  ? cgroup_seqfile_stop+0x70/0x70
[  987.856187][T12757]  kernfs_fop_write_iter+0x1d3/0x2d0
[  987.861463][T12757]  vfs_write+0x7f5/0x950
[  987.865860][T12757]  ksys_write+0xd9/0x190
[  987.870087][T12757]  __x64_sys_write+0x3e/0x50
[  987.874679][T12757]  do_syscall_64+0x44/0xd0
[  987.879078][T12757]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  987.884954][T12757] RIP: 0033:0x7f8cc712a049
[  987.889348][T12757] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  987.908937][T12757] RSP: 002b:00007f8cc62a0168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  987.917481][T12757] RAX: ffffffffffffffda RBX: 00007f8cc723cf60 RCX: 00007f8cc712a049
[  987.925442][T12757] RDX: 0000000000000012 RSI: 0000000020000080 RDI: 000000000000000f
[  987.933445][T12757] RBP: 00007f8cc718408d R08: 0000000000000000 R09: 0000000000000000
[  987.941452][T12757] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  987.949406][T12757] R13: 00007fff26a0d88f R14: 00007f8cc62a0300 R15: 0000000000022000
[  987.957366][T12757]  </TASK>
[  987.960547][T12757] memory: usage 104kB, limit 0kB, failcnt 6314
[  987.966728][T12757] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  987.973653][T12757] Memory cgroup stats for /syz0:
[  987.974827][T12757] anon 0
[  987.974827][T12757] file 81920
[  987.974827][T12757] kernel_stack 0
[  987.974827][T12757] pagetables 0
[  987.974827][T12757] percpu 0
[  987.974827][T12757] sock 0
[  987.974827][T12757] vmalloc 0
[  987.974827][T12757] shmem 77824
[  987.974827][T12757] file_mapped 77824
[  987.974827][T12757] file_dirty 4096
[  987.974827][T12757] file_writeback 0
[  987.974827][T12757] swapcached 0
[  987.974827][T12757] inactive_anon 16384
[  987.974827][T12757] active_anon 61440
[  987.974827][T12757] inactive_file 0
[  987.974827][T12757] active_file 4096
[  987.974827][T12757] unevictable 0
[  987.974827][T12757] slab_reclaimable 6440
[  987.974827][T12757] slab_unreclaimable 15408
[  987.974827][T12757] slab 21848
[  987.974827][T12757] workingset_refault_anon 0
[  987.974827][T12757] workingset_refault_file 1
[  987.974827][T12757] workingset_activate_anon 0
11:28:24 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x0, 0x0, 0x56)
socket$inet6(0xa, 0x80001, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x80000, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x7a00, 0x12)

[  987.974827][T12757] workingset_activate_file 0
[  987.974827][T12757] workingset_restore_anon 0
[  988.069019][T12757] Out of memory and no killable processes...
[  988.075086][T12764] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[  988.085298][T12764] CPU: 0 PID: 12764 Comm: syz-executor.2 Not tainted 5.17.0-rc7-syzkaller-00078-g3bf7edc84a9e-dirty #0
[  988.096306][T12764] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  988.106421][T12764] Call Trace:
[  988.109689][T12764]  <TASK>
[  988.112601][T12764]  dump_stack_lvl+0xd6/0x122
[  988.117201][T12764]  dump_stack+0x11/0x1b
[  988.121375][T12764]  dump_header+0x98/0x410
[  988.125777][T12764]  out_of_memory+0x65c/0x8c0
[  988.130350][T12764]  memory_max_write+0x32c/0x3d0
[  988.135334][T12764]  ? memory_max_show+0x70/0x70
[  988.140242][T12764]  cgroup_file_write+0x161/0x300
[  988.145162][T12764]  ? __check_object_size+0x22a/0x2d0
[  988.150504][T12764]  ? cgroup_seqfile_stop+0x70/0x70
[  988.155596][T12764]  kernfs_fop_write_iter+0x1d3/0x2d0
[  988.160870][T12764]  vfs_write+0x7f5/0x950
[  988.165148][T12764]  ksys_write+0xd9/0x190
[  988.169432][T12764]  __x64_sys_write+0x3e/0x50
[  988.174005][T12764]  do_syscall_64+0x44/0xd0
[  988.178416][T12764]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  988.184307][T12764] RIP: 0033:0x7f1d3184b049
[  988.188738][T12764] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  988.208452][T12764] RSP: 002b:00007f1d309c1168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  988.216914][T12764] RAX: ffffffffffffffda RBX: 00007f1d3195df60 RCX: 00007f1d3184b049
[  988.224865][T12764] RDX: 0000000000000012 RSI: 0000000020000080 RDI: 0000000000000006
[  988.232843][T12764] RBP: 00007f1d318a508d R08: 0000000000000000 R09: 0000000000000000
[  988.240793][T12764] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  988.248809][T12764] R13: 00007ffc96a4069f R14: 00007f1d309c1300 R15: 0000000000022000
[  988.256767][T12764]  </TASK>
[  988.259801][T12764] memory: usage 104kB, limit 24kB, failcnt 6314
[  988.266032][T12764] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  988.272914][T12764] Memory cgroup stats for /syz0:
[  988.274918][T12764] anon 0
[  988.274918][T12764] file 81920
[  988.274918][T12764] kernel_stack 0
[  988.274918][T12764] pagetables 0
[  988.274918][T12764] percpu 0
[  988.274918][T12764] sock 0
[  988.274918][T12764] vmalloc 0
[  988.274918][T12764] shmem 77824
[  988.274918][T12764] file_mapped 77824
[  988.274918][T12764] file_dirty 4096
[  988.274918][T12764] file_writeback 0
[  988.274918][T12764] swapcached 0
[  988.274918][T12764] inactive_anon 16384
[  988.274918][T12764] active_anon 61440
[  988.274918][T12764] inactive_file 0
[  988.274918][T12764] active_file 4096
[  988.274918][T12764] unevictable 0
[  988.274918][T12764] slab_reclaimable 6440
[  988.274918][T12764] slab_unreclaimable 15408
[  988.274918][T12764] slab 21848
[  988.274918][T12764] workingset_refault_anon 0
[  988.274918][T12764] workingset_refault_file 1
[  988.274918][T12764] workingset_activate_anon 0
[  988.274918][T12764] workingset_activate_file 0
11:28:24 executing program 5:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r1, &(0x7f0000000000), 0x10)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff00000000003f000000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b', @ANYRES32], 0x50}}, 0x0)

11:28:24 executing program 2:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
socket$inet6(0xa, 0x0, 0x0)
setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x30, 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x0, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x7, 0x12)

[  988.274918][T12764] workingset_restore_anon 0
[  988.368920][T12764] Out of memory and no killable processes...
[  988.375073][T12769] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[  988.385286][T12769] CPU: 0 PID: 12769 Comm: syz-executor.1 Not tainted 5.17.0-rc7-syzkaller-00078-g3bf7edc84a9e-dirty #0
[  988.396310][T12769] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  988.406362][T12769] Call Trace:
[  988.409623][T12769]  <TASK>
[  988.412537][T12769]  dump_stack_lvl+0xd6/0x122
[  988.417298][T12769]  dump_stack+0x11/0x1b
[  988.421490][T12769]  dump_header+0x98/0x410
[  988.425802][T12769]  out_of_memory+0x65c/0x8c0
[  988.430394][T12769]  memory_max_write+0x32c/0x3d0
[  988.435335][T12769]  ? memory_max_show+0x70/0x70
[  988.440096][T12769]  cgroup_file_write+0x161/0x300
[  988.445016][T12769]  ? __check_object_size+0x22a/0x2d0
[  988.450281][T12769]  ? cgroup_seqfile_stop+0x70/0x70
[  988.455449][T12769]  kernfs_fop_write_iter+0x1d3/0x2d0
[  988.460721][T12769]  vfs_write+0x7f5/0x950
[  988.465062][T12769]  ksys_write+0xd9/0x190
[  988.469385][T12769]  __x64_sys_write+0x3e/0x50
[  988.473955][T12769]  do_syscall_64+0x44/0xd0
[  988.478373][T12769]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  988.484336][T12769] RIP: 0033:0x7fd6559cc049
[  988.488729][T12769] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  988.508316][T12769] RSP: 002b:00007fd654b42168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  988.516719][T12769] RAX: ffffffffffffffda RBX: 00007fd655adef60 RCX: 00007fd6559cc049
[  988.524673][T12769] RDX: 0000000000000012 RSI: 0000000020000080 RDI: 0000000000000006
[  988.532625][T12769] RBP: 00007fd655a2608d R08: 0000000000000000 R09: 0000000000000000
[  988.540604][T12769] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  988.548569][T12769] R13: 00007ffda0be2f9f R14: 00007fd654b42300 R15: 0000000000022000
[  988.556523][T12769]  </TASK>
[  988.559554][T12769] memory: usage 104kB, limit 28kB, failcnt 6314
[  988.565788][T12769] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  988.572652][T12769] Memory cgroup stats for /syz0:
[  988.574646][T12769] anon 0
[  988.574646][T12769] file 81920
[  988.574646][T12769] kernel_stack 0
[  988.574646][T12769] pagetables 0
[  988.574646][T12769] percpu 0
[  988.574646][T12769] sock 0
[  988.574646][T12769] vmalloc 0
[  988.574646][T12769] shmem 77824
[  988.574646][T12769] file_mapped 77824
[  988.574646][T12769] file_dirty 4096
[  988.574646][T12769] file_writeback 0
[  988.574646][T12769] swapcached 0
[  988.574646][T12769] inactive_anon 16384
[  988.574646][T12769] active_anon 61440
[  988.574646][T12769] inactive_file 0
[  988.574646][T12769] active_file 4096
[  988.574646][T12769] unevictable 0
[  988.574646][T12769] slab_reclaimable 6440
[  988.574646][T12769] slab_unreclaimable 15408
[  988.574646][T12769] slab 21848
[  988.574646][T12769] workingset_refault_anon 0
[  988.574646][T12769] workingset_refault_file 1
[  988.574646][T12769] workingset_activate_anon 0
[  988.574646][T12769] workingset_activate_file 0
[  988.574646][T12769] workingset_restore_anon 0
[  988.668846][T12769] Out of memory and no killable processes...
[  988.675584][T12771] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=0
[  988.685554][T12771] CPU: 0 PID: 12771 Comm: syz-executor.3 Not tainted 5.17.0-rc7-syzkaller-00078-g3bf7edc84a9e-dirty #0
[  988.696571][T12771] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  988.706620][T12771] Call Trace:
[  988.709892][T12771]  <TASK>
[  988.712817][T12771]  dump_stack_lvl+0xd6/0x122
[  988.717413][T12771]  dump_stack+0x11/0x1b
[  988.721663][T12771]  dump_header+0x98/0x410
[  988.726083][T12771]  out_of_memory+0x65c/0x8c0
[  988.730678][T12771]  memory_max_write+0x32c/0x3d0
[  988.735534][T12771]  ? memory_max_show+0x70/0x70
[  988.740393][T12771]  cgroup_file_write+0x161/0x300
[  988.745335][T12771]  ? __check_object_size+0x22a/0x2d0
[  988.750693][T12771]  ? cgroup_seqfile_stop+0x70/0x70
[  988.755809][T12771]  kernfs_fop_write_iter+0x1d3/0x2d0
[  988.761105][T12771]  vfs_write+0x7f5/0x950
11:28:24 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x6d00, 0x12)

[  988.765363][T12771]  ksys_write+0xd9/0x190
[  988.769782][T12771]  __x64_sys_write+0x3e/0x50
[  988.774408][T12771]  do_syscall_64+0x44/0xd0
[  988.778812][T12771]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  988.784689][T12771] RIP: 0033:0x7f8cc712a049
[  988.789102][T12771] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  988.808729][T12771] RSP: 002b:00007f8cc62a0168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  988.817240][T12771] RAX: ffffffffffffffda RBX: 00007f8cc723cf60 RCX: 00007f8cc712a049
[  988.825291][T12771] RDX: 0000000000000012 RSI: 0000000020000080 RDI: 000000000000000f
[  988.833253][T12771] RBP: 00007f8cc718408d R08: 0000000000000000 R09: 0000000000000000
[  988.841272][T12771] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  988.849221][T12771] R13: 00007fff26a0d88f R14: 00007f8cc62a0300 R15: 0000000000022000
[  988.857179][T12771]  </TASK>
[  988.860382][T12771] memory: usage 104kB, limit 0kB, failcnt 6314
[  988.866546][T12771] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  988.873394][T12771] Memory cgroup stats for /syz0:
[  988.875322][T12771] anon 0
[  988.875322][T12771] file 81920
[  988.875322][T12771] kernel_stack 0
[  988.875322][T12771] pagetables 0
[  988.875322][T12771] percpu 0
[  988.875322][T12771] sock 0
[  988.875322][T12771] vmalloc 0
[  988.875322][T12771] shmem 77824
[  988.875322][T12771] file_mapped 77824
[  988.875322][T12771] file_dirty 0
[  988.875322][T12771] file_writeback 0
[  988.875322][T12771] swapcached 0
[  988.875322][T12771] inactive_anon 16384
[  988.875322][T12771] active_anon 61440
[  988.875322][T12771] inactive_file 4096
[  988.875322][T12771] active_file 0
[  988.875322][T12771] unevictable 0
[  988.875322][T12771] slab_reclaimable 6440
[  988.875322][T12771] slab_unreclaimable 15408
[  988.875322][T12771] slab 21848
[  988.875322][T12771] workingset_refault_anon 0
[  988.875322][T12771] workingset_refault_file 1
[  988.875322][T12771] workingset_activate_anon 0
[  988.875322][T12771] workingset_activate_file 0
[  988.875322][T12771] workingset_restore_anon 0
[  988.969348][T12771] Out of memory and no killable processes...
[  988.975400][T12776] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[  988.985617][T12776] CPU: 0 PID: 12776 Comm: syz-executor.2 Not tainted 5.17.0-rc7-syzkaller-00078-g3bf7edc84a9e-dirty #0
[  988.996674][T12776] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  989.006714][T12776] Call Trace:
[  989.009976][T12776]  <TASK>
[  989.012889][T12776]  dump_stack_lvl+0xd6/0x122
[  989.017467][T12776]  dump_stack+0x11/0x1b
[  989.021669][T12776]  dump_header+0x98/0x410
[  989.026089][T12776]  out_of_memory+0x65c/0x8c0
[  989.030685][T12776]  memory_max_write+0x32c/0x3d0
[  989.035517][T12776]  ? memory_max_show+0x70/0x70
[  989.040267][T12776]  cgroup_file_write+0x161/0x300
[  989.045209][T12776]  ? __check_object_size+0x22a/0x2d0
[  989.050475][T12776]  ? cgroup_seqfile_stop+0x70/0x70
[  989.055565][T12776]  kernfs_fop_write_iter+0x1d3/0x2d0
[  989.060837][T12776]  vfs_write+0x7f5/0x950
[  989.065177][T12776]  ksys_write+0xd9/0x190
[  989.069513][T12776]  __x64_sys_write+0x3e/0x50
[  989.074083][T12776]  do_syscall_64+0x44/0xd0
[  989.078563][T12776]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  989.084458][T12776] RIP: 0033:0x7f1d3184b049
[  989.088851][T12776] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  989.108495][T12776] RSP: 002b:00007f1d309c1168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  989.116917][T12776] RAX: ffffffffffffffda RBX: 00007f1d3195df60 RCX: 00007f1d3184b049
[  989.124942][T12776] RDX: 0000000000000012 RSI: 0000000020000080 RDI: 0000000000000006
[  989.132944][T12776] RBP: 00007f1d318a508d R08: 0000000000000000 R09: 0000000000000000
[  989.140930][T12776] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  989.148887][T12776] R13: 00007ffc96a4069f R14: 00007f1d309c1300 R15: 0000000000022000
[  989.156866][T12776]  </TASK>
[  989.160025][T12776] memory: usage 104kB, limit 24kB, failcnt 6314
[  989.166298][T12776] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  989.173176][T12776] Memory cgroup stats for /syz0:
[  989.174785][T12776] anon 0
[  989.174785][T12776] file 81920
[  989.174785][T12776] kernel_stack 0
[  989.174785][T12776] pagetables 0
[  989.174785][T12776] percpu 0
[  989.174785][T12776] sock 0
[  989.174785][T12776] vmalloc 0
[  989.174785][T12776] shmem 77824
[  989.174785][T12776] file_mapped 77824
[  989.174785][T12776] file_dirty 0
[  989.174785][T12776] file_writeback 0
[  989.174785][T12776] swapcached 0
[  989.174785][T12776] inactive_anon 16384
[  989.174785][T12776] active_anon 61440
[  989.174785][T12776] inactive_file 0
[  989.174785][T12776] active_file 4096
[  989.174785][T12776] unevictable 0
[  989.174785][T12776] slab_reclaimable 6440
[  989.174785][T12776] slab_unreclaimable 15408
[  989.174785][T12776] slab 21848
[  989.174785][T12776] workingset_refault_anon 0
[  989.174785][T12776] workingset_refault_file 1
[  989.174785][T12776] workingset_activate_anon 0
[  989.174785][T12776] workingset_activate_file 0
[  989.174785][T12776] workingset_restore_anon 0
[  989.268560][T12776] Out of memory and no killable processes...
[  989.274556][T12785] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[  989.284751][T12785] CPU: 0 PID: 12785 Comm: syz-executor.1 Not tainted 5.17.0-rc7-syzkaller-00078-g3bf7edc84a9e-dirty #0
[  989.293062][T12781] chnl_net:caif_netlink_parms(): no params data found
[  989.295798][T12785] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  989.295811][T12785] Call Trace:
[  989.295817][T12785]  <TASK>
[  989.318843][T12785]  dump_stack_lvl+0xd6/0x122
[  989.323444][T12785]  dump_stack+0x11/0x1b
[  989.327608][T12785]  dump_header+0x98/0x410
[  989.331925][T12785]  out_of_memory+0x65c/0x8c0
[  989.336505][T12785]  memory_max_write+0x32c/0x3d0
[  989.341404][T12785]  ? memory_max_show+0x70/0x70
[  989.346158][T12785]  cgroup_file_write+0x161/0x300
[  989.351080][T12785]  ? __check_object_size+0x22a/0x2d0
[  989.356351][T12785]  ? cgroup_seqfile_stop+0x70/0x70
[  989.361506][T12785]  kernfs_fop_write_iter+0x1d3/0x2d0
[  989.366800][T12785]  vfs_write+0x7f5/0x950
[  989.371029][T12785]  ksys_write+0xd9/0x190
[  989.375265][T12785]  __x64_sys_write+0x3e/0x50
[  989.379845][T12785]  do_syscall_64+0x44/0xd0
[  989.384285][T12785]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  989.390194][T12785] RIP: 0033:0x7fd6559cc049
[  989.394653][T12785] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  989.414281][T12785] RSP: 002b:00007fd654b42168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  989.422677][T12785] RAX: ffffffffffffffda RBX: 00007fd655adef60 RCX: 00007fd6559cc049
[  989.430648][T12785] RDX: 0000000000000012 RSI: 0000000020000080 RDI: 0000000000000006
[  989.438648][T12785] RBP: 00007fd655a2608d R08: 0000000000000000 R09: 0000000000000000
[  989.446602][T12785] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  989.454551][T12785] R13: 00007ffda0be2f9f R14: 00007fd654b42300 R15: 0000000000022000
[  989.462547][T12785]  </TASK>
[  989.465683][T12785] memory: usage 104kB, limit 24kB, failcnt 6314
[  989.472033][T12785] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  989.478981][T12785] Memory cgroup stats for /syz0:
[  989.481397][T12785] anon 0
[  989.481397][T12785] file 81920
[  989.481397][T12785] kernel_stack 0
[  989.481397][T12785] pagetables 0
[  989.481397][T12785] percpu 0
[  989.481397][T12785] sock 0
[  989.481397][T12785] vmalloc 0
[  989.481397][T12785] shmem 77824
[  989.481397][T12785] file_mapped 77824
[  989.481397][T12785] file_dirty 0
[  989.481397][T12785] file_writeback 0
[  989.481397][T12785] swapcached 0
[  989.481397][T12785] inactive_anon 16384
[  989.481397][T12785] active_anon 61440
[  989.481397][T12785] inactive_file 0
[  989.481397][T12785] active_file 4096
[  989.481397][T12785] unevictable 0
[  989.481397][T12785] slab_reclaimable 6440
[  989.481397][T12785] slab_unreclaimable 15408
[  989.481397][T12785] slab 21848
[  989.481397][T12785] workingset_refault_anon 0
[  989.481397][T12785] workingset_refault_file 1
[  989.481397][T12785] workingset_activate_anon 0
[  989.481397][T12785] workingset_activate_file 0
[  989.481397][T12785] workingset_restore_anon 0
[  989.575331][T12785] Out of memory and no killable processes...
[  989.601855][T12781] bridge0: port 1(bridge_slave_0) entered blocking state
[  989.608967][T12781] bridge0: port 1(bridge_slave_0) entered disabled state
[  989.616468][T12781] device bridge_slave_0 entered promiscuous mode
[  989.626688][T12781] bridge0: port 2(bridge_slave_1) entered blocking state
[  989.633705][T12781] bridge0: port 2(bridge_slave_1) entered disabled state
[  989.641350][T12781] device bridge_slave_1 entered promiscuous mode
[  989.660704][T12781] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  989.670839][T12781] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  989.688898][T12781] team0: Port device team_slave_0 added
[  989.695088][T12781] team0: Port device team_slave_1 added
[  989.712989][T12781] batman_adv: batadv0: Adding interface: batadv_slave_0
[  989.719965][T12781] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  989.745854][T12781] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  989.756923][T12781] batman_adv: batadv0: Adding interface: batadv_slave_1
[  989.763840][T12781] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  989.789828][T12781] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  989.810815][T12781] device hsr_slave_0 entered promiscuous mode
[  989.817372][T12781] device hsr_slave_1 entered promiscuous mode
[  989.823677][T12781] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  989.831236][T12781] Cannot create hsr debugfs directory
[  989.861274][T12781] bridge0: port 2(bridge_slave_1) entered blocking state
[  989.868392][T12781] bridge0: port 2(bridge_slave_1) entered forwarding state
[  989.875699][T12781] bridge0: port 1(bridge_slave_0) entered blocking state
[  989.882774][T12781] bridge0: port 1(bridge_slave_0) entered forwarding state
[  989.913159][T12781] 8021q: adding VLAN 0 to HW filter on device bond0
[  989.924454][T23294] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  989.932946][T23294] bridge0: port 1(bridge_slave_0) entered disabled state
[  989.940950][T23294] bridge0: port 2(bridge_slave_1) entered disabled state
[  989.955527][T12781] 8021q: adding VLAN 0 to HW filter on device team0
[  989.964720][ T3625] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  989.973124][ T3625] bridge0: port 1(bridge_slave_0) entered blocking state
[  989.980175][ T3625] bridge0: port 1(bridge_slave_0) entered forwarding state
[  989.997979][ T3625] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  990.006377][ T3625] bridge0: port 2(bridge_slave_1) entered blocking state
[  990.013397][ T3625] bridge0: port 2(bridge_slave_1) entered forwarding state
[  990.022176][ T3625] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  990.030949][ T3625] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  990.039510][ T3625] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  990.050115][T22349] device hsr_slave_0 left promiscuous mode
[  990.056137][T22349] device hsr_slave_1 left promiscuous mode
[  990.062354][T22349] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  990.069781][T22349] batman_adv: batadv0: Removing interface: batadv_slave_0
[  990.077731][T22349] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  990.085184][T22349] batman_adv: batadv0: Removing interface: batadv_slave_1
[  990.093695][T22349] device bridge_slave_1 left promiscuous mode
[  990.099830][T22349] bridge0: port 2(bridge_slave_1) entered disabled state
[  990.108319][T22349] device bridge_slave_0 left promiscuous mode
[  990.114462][T22349] bridge0: port 1(bridge_slave_0) entered disabled state
[  990.124140][T22349] device veth1_macvtap left promiscuous mode
[  990.130264][T22349] device veth0_macvtap left promiscuous mode
[  990.136318][T22349] device veth1_vlan left promiscuous mode
[  990.142040][T22349] device veth0_vlan left promiscuous mode
[  990.221368][T22349] team0 (unregistering): Port device team_slave_1 removed
[  990.230859][T22349] team0 (unregistering): Port device team_slave_0 removed
[  990.240332][T22349] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  990.251877][T22349] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  990.279464][T22349] bond0 (unregistering): Released all slaves
[  990.319002][ T3625] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  990.329125][T12781] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  990.340861][ T3625] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  990.349175][ T3625] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  990.362190][ T3625] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  990.369618][ T3625] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  990.379067][T12781] 8021q: adding VLAN 0 to HW filter on device batadv0
[  990.451595][ T6846] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  990.460184][ T6846] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  990.495878][T12781] device veth0_vlan entered promiscuous mode
[  990.502564][ T6848] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  990.510662][ T6848] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  990.526586][ T6848] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  990.534343][ T6848] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  990.543851][T12781] device veth1_vlan entered promiscuous mode
[  990.557735][   T77] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  990.565804][   T77] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  990.574922][   T77] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  990.583365][   T77] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  990.593980][T12781] device veth0_macvtap entered promiscuous mode
[  990.604041][T12781] device veth1_macvtap entered promiscuous mode
[  990.615770][T12781] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[  990.626298][T12781] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  990.636113][T12781] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[  990.646558][T12781] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  990.656376][T12781] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[  990.666787][T12781] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  990.676584][T12781] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[  990.686998][T12781] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  990.696950][T12781] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[  990.707366][T12781] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  990.718174][T12781] batman_adv: batadv0: Interface activated: batadv_slave_0
[  990.727496][T12781] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[  990.738067][T12781] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  990.747887][T12781] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[  990.758369][T12781] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  990.768187][T12781] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[  990.778610][T12781] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  990.788408][T12781] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[  990.798914][T12781] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  990.808769][T12781] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[  990.819193][T12781] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  990.829858][T12781] batman_adv: batadv0: Interface activated: batadv_slave_1
[  990.838947][ T6848] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  990.846971][ T6848] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  990.854843][ T6848] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  990.863843][ T6848] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  990.872572][ T6848] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  990.881238][ T6848] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
11:28:26 executing program 4:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff00000002f100000000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b'], 0x50}}, 0x0)

11:28:26 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x0, 0x0, 0x56)
socket$inet6(0xa, 0x80001, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x80000, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0xfdff, 0x12)

11:28:26 executing program 5:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r1, &(0x7f0000000000), 0x10)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff000000000040000000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b', @ANYRES32], 0x50}}, 0x0)

11:28:26 executing program 2:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
socket$inet6(0xa, 0x0, 0x0)
setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x30, 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x0, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0xa, 0x12)

11:28:26 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x7000, 0x12)

11:28:26 executing program 0:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
r0 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
syz_io_uring_setup(0x3ede, &(0x7f0000000240), &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000100)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd_index=0x5, 0x0, &(0x7f0000000040)=""/18, 0x12}, 0x0)
syz_io_uring_setup(0x3ede, &(0x7f0000000240), &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000100)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000000)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd_index=0x5, 0x0, &(0x7f0000000040)=""/18, 0x12}, 0x0)
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(r3, 0x0, &(0x7f0000000340)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {0xfffd}}, 0x1)
syz_io_uring_submit(r3, r4, &(0x7f0000000300)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd_index=0x8, 0x0, 0x0, 0x0, 0x5, 0x0, {0x0, r5}}, 0x800)
ioctl$AUTOFS_DEV_IOCTL_FAIL(r0, 0xc0189377, &(0x7f00000000c0)={{0x1, 0x1, 0x18, <r6=>r0, {0x38, 0x8000}}, './file0\x00'})
syz_io_uring_submit(r1, r4, &(0x7f0000000280)=@IORING_OP_OPENAT2={0x1c, 0x1, 0x0, r6, &(0x7f0000000100)={0x400000, 0x120}, &(0x7f0000000240)='./file0\x00', 0x18, 0x0, 0x12345}, 0x400)
r7 = syz_io_uring_setup(0x3ede, &(0x7f0000000240), &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(r7, 0x2ff, 0x0, 0x0, 0x0, 0x0)
io_uring_enter(r7, 0x7f34, 0xdf74, 0x1, &(0x7f00000002c0)={[0x401]}, 0x8)
r8 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r9 = openat$cgroup(r8, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r10 = openat$cgroup_int(r9, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r10, &(0x7f0000000080), 0x12)

[  990.969762][T12781] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=0
[  990.979708][T12781] CPU: 0 PID: 12781 Comm: syz-executor.0 Not tainted 5.17.0-rc7-syzkaller-00078-g3bf7edc84a9e-dirty #0
[  990.990857][T12781] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  991.000949][T12781] Call Trace:
[  991.004255][T12781]  <TASK>
[  991.007246][T12781]  dump_stack_lvl+0xd6/0x122
[  991.011905][T12781]  dump_stack+0x11/0x1b
[  991.016125][T12781]  dump_header+0x98/0x410
[  991.020566][T12781]  oom_kill_process+0x18e/0x4a0
[  991.025483][T12781]  out_of_memory+0x61d/0x8c0
[  991.030128][T12781]  ? mem_cgroup_iter+0x29b/0x370
[  991.035050][T12781]  mem_cgroup_oom+0x484/0x520
[  991.039713][T12781]  try_charge_memcg+0x75c/0xa50
[  991.044592][T12781]  ? avc_has_perm_noaudit+0x1c0/0x270
[  991.050024][T12781]  ? __rcu_read_unlock+0x5c/0x290
[  991.055043][T12781]  obj_cgroup_charge_pages+0xac/0x140
[  991.060448][T12781]  obj_cgroup_charge+0xe2/0x1b0
[  991.065288][T12781]  ? sock_alloc_inode+0x23/0x90
[  991.070274][T12781]  kmem_cache_alloc+0x96/0x320
[  991.075038][T12781]  ? sockfs_init_fs_context+0x70/0x70
[  991.080401][T12781]  sock_alloc_inode+0x23/0x90
[  991.085065][T12781]  ? sockfs_init_fs_context+0x70/0x70
[  991.090445][T12781]  new_inode_pseudo+0x38/0x190
[  991.095212][T12781]  __sock_create+0x122/0x4e0
[  991.099798][T12781]  __sys_socket+0xb8/0x200
[  991.104200][T12781]  __x64_sys_socket+0x3b/0x50
[  991.108858][T12781]  do_syscall_64+0x44/0xd0
[  991.113257][T12781]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  991.119133][T12781] RIP: 0033:0x7f39be1f06c7
[  991.123545][T12781] Code: f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 b8 29 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  991.143166][T12781] RSP: 002b:00007fff0c041ce8 EFLAGS: 00000206 ORIG_RAX: 0000000000000029
[  991.151628][T12781] RAX: ffffffffffffffda RBX: 00007fff0c042450 RCX: 00007f39be1f06c7
[  991.159583][T12781] RDX: 0000000000000006 RSI: 0000000000000001 RDI: 0000000000000002
[  991.167584][T12781] RBP: 0000000000000003 R08: 0000000000000000 R09: 00007fff0c042260
[  991.175586][T12781] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000032
[  991.183599][T12781] R13: 00000000000f1ebe R14: 000000000000000f R15: 00007fff0c042490
[  991.191614][T12781]  </TASK>
[  991.194733][T12781] memory: usage 160kB, limit 60kB, failcnt 6333
[  991.200983][T12781] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  991.207847][T12781] Memory cgroup stats for /syz0:
[  991.208280][T12781] anon 40960
[  991.208280][T12781] file 81920
[  991.208280][T12781] kernel_stack 0
[  991.208280][T12781] pagetables 8192
[  991.208280][T12781] percpu 0
[  991.208280][T12781] sock 0
[  991.208280][T12781] vmalloc 0
[  991.208280][T12781] shmem 77824
[  991.208280][T12781] file_mapped 77824
[  991.208280][T12781] file_dirty 4096
[  991.208280][T12781] file_writeback 0
[  991.208280][T12781] swapcached 0
[  991.208280][T12781] inactive_anon 57344
[  991.208280][T12781] active_anon 61440
[  991.208280][T12781] inactive_file 0
[  991.208280][T12781] active_file 4096
[  991.208280][T12781] unevictable 0
[  991.208280][T12781] slab_reclaimable 8184
[  991.208280][T12781] slab_unreclaimable 15912
[  991.208280][T12781] slab 24096
[  991.208280][T12781] workingset_refault_anon 0
[  991.208280][T12781] workingset_refault_file 1
[  991.208280][T12781] workingset_activate_anon 0
[  991.208280][T12781] workingset_activate_file 0
[  991.208280][T12781] workingset_restore_anon 0
[  991.302987][T12781] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=12781,uid=0
[  991.318289][T12781] Memory cgroup out of memory: Killed process 12781 (syz-executor.0) total-vm:48480kB, anon-rss:364kB, file-rss:14336kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:0
[  991.335945][   T26] oom_reaper: reaped process 12781 (syz-executor.0), now anon-rss:0kB, file-rss:13440kB, shmem-rss:0kB
[  991.347036][T12826] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=0
[  991.356767][T12781] socket: no more sockets
[  991.357199][T12826] CPU: 1 PID: 12826 Comm: syz-executor.3 Not tainted 5.17.0-rc7-syzkaller-00078-g3bf7edc84a9e-dirty #0
[  991.372471][T12826] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  991.382511][T12826] Call Trace:
[  991.385798][T12826]  <TASK>
[  991.388708][T12826]  dump_stack_lvl+0xd6/0x122
[  991.393304][T12826]  dump_stack+0x11/0x1b
[  991.397518][T12826]  dump_header+0x98/0x410
[  991.401859][T12826]  out_of_memory+0x65c/0x8c0
[  991.406454][T12826]  ? _raw_spin_unlock_irqrestore+0x3d/0x60
[  991.412387][T12826]  memory_max_write+0x32c/0x3d0
[  991.417223][T12826]  ? memory_max_show+0x70/0x70
[  991.421984][T12826]  cgroup_file_write+0x161/0x300
[  991.426946][T12826]  ? __check_object_size+0x22a/0x2d0
[  991.432318][T12826]  ? cgroup_seqfile_stop+0x70/0x70
[  991.437413][T12826]  kernfs_fop_write_iter+0x1d3/0x2d0
[  991.442682][T12826]  vfs_write+0x7f5/0x950
[  991.446912][T12826]  ksys_write+0xd9/0x190
[  991.451254][T12826]  __x64_sys_write+0x3e/0x50
[  991.455824][T12826]  do_syscall_64+0x44/0xd0
[  991.460258][T12826]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  991.466182][T12826] RIP: 0033:0x7f8cc712a049
[  991.470588][T12826] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  991.490173][T12826] RSP: 002b:00007f8cc62a0168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  991.498596][T12826] RAX: ffffffffffffffda RBX: 00007f8cc723cf60 RCX: 00007f8cc712a049
[  991.506549][T12826] RDX: 0000000000000012 RSI: 0000000020000080 RDI: 000000000000000f
[  991.514522][T12826] RBP: 00007f8cc718408d R08: 0000000000000000 R09: 0000000000000000
[  991.522486][T12826] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  991.530507][T12826] R13: 00007fff26a0d88f R14: 00007f8cc62a0300 R15: 0000000000022000
[  991.538484][T12826]  </TASK>
[  991.541723][T12826] memory: usage 108kB, limit 60kB, failcnt 6350
[  991.547979][T12826] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  991.554853][T12826] Memory cgroup stats for /syz0:
[  991.555104][T12826] anon 0
[  991.555104][T12826] file 81920
[  991.555104][T12826] kernel_stack 0
[  991.555104][T12826] pagetables 0
[  991.555104][T12826] percpu 0
[  991.555104][T12826] sock 0
[  991.555104][T12826] vmalloc 0
[  991.555104][T12826] shmem 77824
[  991.555104][T12826] file_mapped 77824
[  991.555104][T12826] file_dirty 4096
[  991.555104][T12826] file_writeback 0
[  991.555104][T12826] swapcached 0
[  991.555104][T12826] inactive_anon 16384
[  991.555104][T12826] active_anon 61440
[  991.555104][T12826] inactive_file 4096
[  991.555104][T12826] active_file 0
[  991.555104][T12826] unevictable 0
[  991.555104][T12826] slab_reclaimable 8184
[  991.555104][T12826] slab_unreclaimable 15672
[  991.555104][T12826] slab 23856
[  991.555104][T12826] workingset_refault_anon 0
[  991.555104][T12826] workingset_refault_file 1
[  991.555104][T12826] workingset_activate_anon 0
[  991.555104][T12826] workingset_activate_file 0
[  991.555104][T12826] workingset_restore_anon 0
[  991.649339][T12826] Out of memory and no killable processes...
[  991.655444][T12828] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
11:28:27 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x0, 0x0, 0x56)
socket$inet6(0xa, 0x80001, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x80000, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0xfeff, 0x12)

[  991.665770][T12828] CPU: 1 PID: 12828 Comm: syz-executor.1 Not tainted 5.17.0-rc7-syzkaller-00078-g3bf7edc84a9e-dirty #0
[  991.676874][T12828] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  991.686990][T12828] Call Trace:
[  991.690268][T12828]  <TASK>
[  991.693191][T12828]  dump_stack_lvl+0xd6/0x122
[  991.697765][T12828]  dump_stack+0x11/0x1b
[  991.701952][T12828]  dump_header+0x98/0x410
[  991.706272][T12828]  out_of_memory+0x65c/0x8c0
[  991.710995][T12828]  memory_max_write+0x32c/0x3d0
[  991.715863][T12828]  ? memory_max_show+0x70/0x70
[  991.720695][T12828]  cgroup_file_write+0x161/0x300
[  991.725619][T12828]  ? __check_object_size+0x22a/0x2d0
[  991.730897][T12828]  ? cgroup_seqfile_stop+0x70/0x70
[  991.736007][T12828]  kernfs_fop_write_iter+0x1d3/0x2d0
[  991.741290][T12828]  vfs_write+0x7f5/0x950
[  991.745521][T12828]  ksys_write+0xd9/0x190
[  991.749808][T12828]  __x64_sys_write+0x3e/0x50
[  991.754403][T12828]  do_syscall_64+0x44/0xd0
[  991.758885][T12828]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  991.764766][T12828] RIP: 0033:0x7fd6559cc049
11:28:27 executing program 2:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
socket$inet6(0xa, 0x0, 0x0)
setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x30, 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x0, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x10, 0x12)

[  991.769179][T12828] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  991.788774][T12828] RSP: 002b:00007fd654b42168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  991.797207][T12828] RAX: ffffffffffffffda RBX: 00007fd655adef60 RCX: 00007fd6559cc049
[  991.805171][T12828] RDX: 0000000000000012 RSI: 0000000020000080 RDI: 0000000000000006
[  991.813126][T12828] RBP: 00007fd655a2608d R08: 0000000000000000 R09: 0000000000000000
[  991.821083][T12828] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  991.829032][T12828] R13: 00007ffda0be2f9f R14: 00007fd654b42300 R15: 0000000000022000
[  991.837042][T12828]  </TASK>
[  991.840101][T12828] memory: usage 108kB, limit 60kB, failcnt 6350
[  991.846344][T12828] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  991.853181][T12828] Memory cgroup stats for /syz0:
[  991.853372][T12828] anon 0
[  991.853372][T12828] file 81920
[  991.853372][T12828] kernel_stack 0
[  991.853372][T12828] pagetables 0
[  991.853372][T12828] percpu 0
[  991.853372][T12828] sock 0
[  991.853372][T12828] vmalloc 0
[  991.853372][T12828] shmem 77824
[  991.853372][T12828] file_mapped 77824
[  991.853372][T12828] file_dirty 4096
[  991.853372][T12828] file_writeback 0
[  991.853372][T12828] swapcached 0
[  991.853372][T12828] inactive_anon 16384
[  991.853372][T12828] active_anon 61440
[  991.853372][T12828] inactive_file 0
[  991.853372][T12828] active_file 4096
[  991.853372][T12828] unevictable 0
[  991.853372][T12828] slab_reclaimable 7384
[  991.853372][T12828] slab_unreclaimable 15672
11:28:27 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x7400, 0x12)

[  991.853372][T12828] slab 23056
[  991.853372][T12828] workingset_refault_anon 0
[  991.853372][T12828] workingset_refault_file 1
[  991.853372][T12828] workingset_activate_anon 0
[  991.853372][T12828] workingset_activate_file 0
[  991.853372][T12828] workingset_restore_anon 0
[  991.947592][T12828] Out of memory and no killable processes...
[  991.999193][T12835] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=0
[  992.009214][T12835] CPU: 1 PID: 12835 Comm: syz-executor.3 Not tainted 5.17.0-rc7-syzkaller-00078-g3bf7edc84a9e-dirty #0
[  992.020243][T12835] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  992.030281][T12835] Call Trace:
[  992.033541][T12835]  <TASK>
[  992.036458][T12835]  dump_stack_lvl+0xd6/0x122
[  992.041117][T12835]  dump_stack+0x11/0x1b
[  992.045256][T12835]  dump_header+0x98/0x410
[  992.049607][T12835]  out_of_memory+0x65c/0x8c0
[  992.054200][T12835]  ? _raw_spin_unlock_irqrestore+0x3d/0x60
[  992.060008][T12835]  memory_max_write+0x32c/0x3d0
[  992.064860][T12835]  ? memory_max_show+0x70/0x70
[  992.069612][T12835]  cgroup_file_write+0x161/0x300
[  992.074531][T12835]  ? __check_object_size+0x22a/0x2d0
[  992.079847][T12835]  ? cgroup_seqfile_stop+0x70/0x70
[  992.084958][T12835]  kernfs_fop_write_iter+0x1d3/0x2d0
[  992.090251][T12835]  vfs_write+0x7f5/0x950
[  992.094511][T12835]  ksys_write+0xd9/0x190
[  992.098731][T12835]  __x64_sys_write+0x3e/0x50
[  992.103302][T12835]  do_syscall_64+0x44/0xd0
[  992.107700][T12835]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  992.113609][T12835] RIP: 0033:0x7f8cc712a049
[  992.118004][T12835] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  992.137728][T12835] RSP: 002b:00007f8cc62a0168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  992.146127][T12835] RAX: ffffffffffffffda RBX: 00007f8cc723cf60 RCX: 00007f8cc712a049
[  992.154129][T12835] RDX: 0000000000000012 RSI: 0000000020000080 RDI: 000000000000000f
[  992.162134][T12835] RBP: 00007f8cc718408d R08: 0000000000000000 R09: 0000000000000000
[  992.170097][T12835] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  992.178050][T12835] R13: 00007fff26a0d88f R14: 00007f8cc62a0300 R15: 0000000000022000
[  992.186030][T12835]  </TASK>
[  992.189050][T12835] memory: usage 108kB, limit 0kB, failcnt 6350
[  992.195184][T12835] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  992.202034][T12835] Memory cgroup stats for /syz0:
[  992.202414][T12835] anon 0
[  992.202414][T12835] file 81920
[  992.202414][T12835] kernel_stack 0
[  992.202414][T12835] pagetables 0
[  992.202414][T12835] percpu 0
[  992.202414][T12835] sock 0
[  992.202414][T12835] vmalloc 0
[  992.202414][T12835] shmem 77824
[  992.202414][T12835] file_mapped 77824
[  992.202414][T12835] file_dirty 4096
[  992.202414][T12835] file_writeback 0
[  992.202414][T12835] swapcached 0
[  992.202414][T12835] inactive_anon 16384
[  992.202414][T12835] active_anon 61440
[  992.202414][T12835] inactive_file 0
[  992.202414][T12835] active_file 4096
[  992.202414][T12835] unevictable 0
[  992.202414][T12835] slab_reclaimable 7384
[  992.202414][T12835] slab_unreclaimable 15408
[  992.202414][T12835] slab 22792
[  992.202414][T12835] workingset_refault_anon 0
[  992.202414][T12835] workingset_refault_file 1
[  992.202414][T12835] workingset_activate_anon 0
[  992.202414][T12835] workingset_activate_file 0
[  992.202414][T12835] workingset_restore_anon 0
11:28:28 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x0, 0x0, 0x56)
socket$inet6(0xa, 0x80001, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x80000, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0xfffd, 0x12)

[  992.296542][T12835] Out of memory and no killable processes...
[  992.303017][T12838] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[  992.313322][T12838] CPU: 1 PID: 12838 Comm: syz-executor.2 Not tainted 5.17.0-rc7-syzkaller-00078-g3bf7edc84a9e-dirty #0
[  992.324326][T12838] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  992.334414][T12838] Call Trace:
[  992.337735][T12838]  <TASK>
[  992.340651][T12838]  dump_stack_lvl+0xd6/0x122
[  992.345271][T12838]  dump_stack+0x11/0x1b
[  992.349412][T12838]  dump_header+0x98/0x410
[  992.353730][T12838]  out_of_memory+0x65c/0x8c0
[  992.358323][T12838]  memory_max_write+0x32c/0x3d0
[  992.363154][T12838]  ? memory_max_show+0x70/0x70
[  992.367973][T12838]  cgroup_file_write+0x161/0x300
[  992.372892][T12838]  ? __check_object_size+0x22a/0x2d0
[  992.378156][T12838]  ? cgroup_seqfile_stop+0x70/0x70
[  992.383245][T12838]  kernfs_fop_write_iter+0x1d3/0x2d0
[  992.388512][T12838]  vfs_write+0x7f5/0x950
[  992.392812][T12838]  ksys_write+0xd9/0x190
[  992.397046][T12838]  __x64_sys_write+0x3e/0x50
[  992.401639][T12838]  do_syscall_64+0x44/0xd0
[  992.406065][T12838]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  992.411941][T12838] RIP: 0033:0x7f1d3184b049
[  992.416387][T12838] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  992.435994][T12838] RSP: 002b:00007f1d309c1168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  992.444401][T12838] RAX: ffffffffffffffda RBX: 00007f1d3195df60 RCX: 00007f1d3184b049
[  992.452352][T12838] RDX: 0000000000000012 RSI: 0000000020000080 RDI: 0000000000000006
[  992.460304][T12838] RBP: 00007f1d318a508d R08: 0000000000000000 R09: 0000000000000000
[  992.468337][T12838] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  992.476290][T12838] R13: 00007ffc96a4069f R14: 00007f1d309c1300 R15: 0000000000022000
[  992.484256][T12838]  </TASK>
[  992.487407][T12838] memory: usage 108kB, limit 0kB, failcnt 6350
[  992.493559][T12838] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  992.500408][T12838] Memory cgroup stats for /syz0:
[  992.500880][T12838] anon 0
[  992.500880][T12838] file 81920
[  992.500880][T12838] kernel_stack 0
[  992.500880][T12838] pagetables 0
[  992.500880][T12838] percpu 0
[  992.500880][T12838] sock 0
[  992.500880][T12838] vmalloc 0
[  992.500880][T12838] shmem 77824
[  992.500880][T12838] file_mapped 77824
[  992.500880][T12838] file_dirty 4096
[  992.500880][T12838] file_writeback 0
[  992.500880][T12838] swapcached 0
[  992.500880][T12838] inactive_anon 16384
[  992.500880][T12838] active_anon 61440
[  992.500880][T12838] inactive_file 0
[  992.500880][T12838] active_file 4096
[  992.500880][T12838] unevictable 0
[  992.500880][T12838] slab_reclaimable 7384
[  992.500880][T12838] slab_unreclaimable 15408
[  992.500880][T12838] slab 22792
[  992.500880][T12838] workingset_refault_anon 0
[  992.500880][T12838] workingset_refault_file 1
[  992.500880][T12838] workingset_activate_anon 0
[  992.500880][T12838] workingset_activate_file 0
[  992.500880][T12838] workingset_restore_anon 0
[  992.595062][T12838] Out of memory and no killable processes...
11:28:28 executing program 2:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
socket$inet6(0xa, 0x0, 0x0)
setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x30, 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x0, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x28, 0x12)

[  992.603572][T12843] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[  992.613772][T12843] CPU: 0 PID: 12843 Comm: syz-executor.1 Not tainted 5.17.0-rc7-syzkaller-00078-g3bf7edc84a9e-dirty #0
[  992.624827][T12843] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  992.634965][T12843] Call Trace:
[  992.638227][T12843]  <TASK>
[  992.641140][T12843]  dump_stack_lvl+0xd6/0x122
[  992.645749][T12843]  dump_stack+0x11/0x1b
[  992.649884][T12843]  dump_header+0x98/0x410
[  992.654194][T12843]  out_of_memory+0x65c/0x8c0
[  992.658763][T12843]  memory_max_write+0x32c/0x3d0
[  992.663600][T12843]  ? memory_max_show+0x70/0x70
[  992.668494][T12843]  cgroup_file_write+0x161/0x300
[  992.673434][T12843]  ? __check_object_size+0x22a/0x2d0
[  992.678702][T12843]  ? cgroup_seqfile_stop+0x70/0x70
[  992.683918][T12843]  kernfs_fop_write_iter+0x1d3/0x2d0
[  992.689184][T12843]  vfs_write+0x7f5/0x950
[  992.693481][T12843]  ksys_write+0xd9/0x190
[  992.697879][T12843]  __x64_sys_write+0x3e/0x50
[  992.702508][T12843]  do_syscall_64+0x44/0xd0
[  992.706906][T12843]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  992.712910][T12843] RIP: 0033:0x7fd6559cc049
[  992.717304][T12843] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  992.736896][T12843] RSP: 002b:00007fd654b42168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  992.745341][T12843] RAX: ffffffffffffffda RBX: 00007fd655adef60 RCX: 00007fd6559cc049
[  992.753299][T12843] RDX: 0000000000000012 RSI: 0000000020000080 RDI: 0000000000000006
[  992.761337][T12843] RBP: 00007fd655a2608d R08: 0000000000000000 R09: 0000000000000000
[  992.769334][T12843] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  992.777286][T12843] R13: 00007ffda0be2f9f R14: 00007fd654b42300 R15: 0000000000022000
[  992.785299][T12843]  </TASK>
[  992.788385][T12843] memory: usage 108kB, limit 60kB, failcnt 6350
[  992.794618][T12843] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  992.801540][T12843] Memory cgroup stats for /syz0:
[  992.803410][T12843] anon 0
[  992.803410][T12843] file 81920
[  992.803410][T12843] kernel_stack 0
[  992.803410][T12843] pagetables 0
[  992.803410][T12843] percpu 0
[  992.803410][T12843] sock 0
[  992.803410][T12843] vmalloc 0
[  992.803410][T12843] shmem 77824
[  992.803410][T12843] file_mapped 77824
[  992.803410][T12843] file_dirty 4096
[  992.803410][T12843] file_writeback 0
[  992.803410][T12843] swapcached 0
[  992.803410][T12843] inactive_anon 16384
[  992.803410][T12843] active_anon 61440
[  992.803410][T12843] inactive_file 0
[  992.803410][T12843] active_file 4096
[  992.803410][T12843] unevictable 0
[  992.803410][T12843] slab_reclaimable 7384
[  992.803410][T12843] slab_unreclaimable 15408
[  992.803410][T12843] slab 22792
[  992.803410][T12843] workingset_refault_anon 0
[  992.803410][T12843] workingset_refault_file 1
[  992.803410][T12843] workingset_activate_anon 0
[  992.803410][T12843] workingset_activate_file 0
[  992.803410][T12843] workingset_restore_anon 0
[  992.897543][T12843] Out of memory and no killable processes...
11:28:28 executing program 4:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff00000000fa00000000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b'], 0x50}}, 0x0)

11:28:28 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x7a00, 0x12)

[  992.904326][T12845] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=0
[  992.914332][T12845] CPU: 1 PID: 12845 Comm: syz-executor.3 Not tainted 5.17.0-rc7-syzkaller-00078-g3bf7edc84a9e-dirty #0
[  992.925877][T12845] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  992.936037][T12845] Call Trace:
[  992.939319][T12845]  <TASK>
[  992.942254][T12845]  dump_stack_lvl+0xd6/0x122
[  992.946904][T12845]  dump_stack+0x11/0x1b
[  992.951075][T12845]  dump_header+0x98/0x410
[  992.955450][T12845]  out_of_memory+0x65c/0x8c0
[  992.960075][T12845]  memory_max_write+0x32c/0x3d0
[  992.964910][T12845]  ? memory_max_show+0x70/0x70
[  992.969782][T12845]  cgroup_file_write+0x161/0x300
[  992.974738][T12845]  ? __check_object_size+0x22a/0x2d0
[  992.980095][T12845]  ? cgroup_seqfile_stop+0x70/0x70
[  992.985257][T12845]  kernfs_fop_write_iter+0x1d3/0x2d0
[  992.990548][T12845]  vfs_write+0x7f5/0x950
[  992.994784][T12845]  ksys_write+0xd9/0x190
[  992.999050][T12845]  __x64_sys_write+0x3e/0x50
[  993.003625][T12845]  do_syscall_64+0x44/0xd0
[  993.008070][T12845]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  993.013947][T12845] RIP: 0033:0x7f8cc712a049
[  993.018473][T12845] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  993.038122][T12845] RSP: 002b:00007f8cc62a0168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  993.046564][T12845] RAX: ffffffffffffffda RBX: 00007f8cc723cf60 RCX: 00007f8cc712a049
[  993.054563][T12845] RDX: 0000000000000012 RSI: 0000000020000080 RDI: 000000000000000f
[  993.062534][T12845] RBP: 00007f8cc718408d R08: 0000000000000000 R09: 0000000000000000
[  993.070543][T12845] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  993.078510][T12845] R13: 00007fff26a0d88f R14: 00007f8cc62a0300 R15: 0000000000022000
[  993.086511][T12845]  </TASK>
[  993.089657][T12845] memory: usage 108kB, limit 0kB, failcnt 6350
[  993.095801][T12845] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  993.102698][T12845] Memory cgroup stats for /syz0:
[  993.103051][T12845] anon 0
[  993.103051][T12845] file 81920
[  993.103051][T12845] kernel_stack 0
[  993.103051][T12845] pagetables 0
[  993.103051][T12845] percpu 0
[  993.103051][T12845] sock 0
[  993.103051][T12845] vmalloc 0
[  993.103051][T12845] shmem 77824
[  993.103051][T12845] file_mapped 77824
[  993.103051][T12845] file_dirty 4096
[  993.103051][T12845] file_writeback 0
[  993.103051][T12845] swapcached 0
[  993.103051][T12845] inactive_anon 16384
[  993.103051][T12845] active_anon 61440
[  993.103051][T12845] inactive_file 0
[  993.103051][T12845] active_file 4096
[  993.103051][T12845] unevictable 0
[  993.103051][T12845] slab_reclaimable 7384
[  993.103051][T12845] slab_unreclaimable 15408
[  993.103051][T12845] slab 22792
[  993.103051][T12845] workingset_refault_anon 0
[  993.103051][T12845] workingset_refault_file 1
[  993.103051][T12845] workingset_activate_anon 0
[  993.103051][T12845] workingset_activate_file 0
[  993.103051][T12845] workingset_restore_anon 0
[  993.197274][T12845] Out of memory and no killable processes...
11:28:29 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x0, 0x0, 0x56)
socket$inet6(0xa, 0x80001, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x80000, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0xfffe, 0x12)

[  993.204734][T12848] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[  993.215018][T12848] CPU: 0 PID: 12848 Comm: syz-executor.2 Not tainted 5.17.0-rc7-syzkaller-00078-g3bf7edc84a9e-dirty #0
[  993.226035][T12848] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  993.236084][T12848] Call Trace:
[  993.239345][T12848]  <TASK>
[  993.242259][T12848]  dump_stack_lvl+0xd6/0x122
[  993.246875][T12848]  dump_stack+0x11/0x1b
[  993.251012][T12848]  dump_header+0x98/0x410
[  993.255322][T12848]  out_of_memory+0x65c/0x8c0
[  993.259892][T12848]  memory_max_write+0x32c/0x3d0
[  993.264730][T12848]  ? memory_max_show+0x70/0x70
[  993.269559][T12848]  cgroup_file_write+0x161/0x300
[  993.274581][T12848]  ? __check_object_size+0x22a/0x2d0
[  993.279878][T12848]  ? cgroup_seqfile_stop+0x70/0x70
[  993.285002][T12848]  kernfs_fop_write_iter+0x1d3/0x2d0
[  993.290268][T12848]  vfs_write+0x7f5/0x950
[  993.294496][T12848]  ksys_write+0xd9/0x190
[  993.298770][T12848]  __x64_sys_write+0x3e/0x50
[  993.303407][T12848]  do_syscall_64+0x44/0xd0
[  993.307809][T12848]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  993.313731][T12848] RIP: 0033:0x7f1d3184b049
[  993.318145][T12848] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  993.337789][T12848] RSP: 002b:00007f1d309c1168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  993.346194][T12848] RAX: ffffffffffffffda RBX: 00007f1d3195df60 RCX: 00007f1d3184b049
11:28:29 executing program 5:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r1, &(0x7f0000000000), 0x10)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff000000000241000000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b', @ANYRES32], 0x50}}, 0x0)

[  993.354155][T12848] RDX: 0000000000000012 RSI: 0000000020000080 RDI: 0000000000000006
[  993.362145][T12848] RBP: 00007f1d318a508d R08: 0000000000000000 R09: 0000000000000000
[  993.370146][T12848] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  993.378112][T12848] R13: 00007ffc96a4069f R14: 00007f1d309c1300 R15: 0000000000022000
[  993.386072][T12848]  </TASK>
[  993.389164][T12848] memory: usage 108kB, limit 28kB, failcnt 6350
[  993.395485][T12848] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  993.402335][T12848] Memory cgroup stats for /syz0:
[  993.423106][T12848] anon 0
[  993.423106][T12848] file 81920
[  993.423106][T12848] kernel_stack 0
[  993.423106][T12848] pagetables 0
[  993.423106][T12848] percpu 0
[  993.423106][T12848] sock 0
[  993.423106][T12848] vmalloc 0
[  993.423106][T12848] shmem 77824
[  993.423106][T12848] file_mapped 77824
[  993.423106][T12848] file_dirty 4096
[  993.423106][T12848] file_writeback 0
[  993.423106][T12848] swapcached 0
[  993.423106][T12848] inactive_anon 16384
[  993.423106][T12848] active_anon 61440
[  993.423106][T12848] inactive_file 0
[  993.423106][T12848] active_file 4096
[  993.423106][T12848] unevictable 0
[  993.423106][T12848] slab_reclaimable 7384
[  993.423106][T12848] slab_unreclaimable 15408
[  993.423106][T12848] slab 22792
[  993.423106][T12848] workingset_refault_anon 0
[  993.423106][T12848] workingset_refault_file 1
[  993.423106][T12848] workingset_activate_anon 0
[  993.423106][T12848] workingset_activate_file 0
[  993.423106][T12848] workingset_restore_anon 0
[  993.517228][T12848] Out of memory and no killable processes...
11:28:29 executing program 2:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
socket$inet6(0xa, 0x0, 0x0)
setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x30, 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x0, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x42, 0x12)

[  993.524034][T12855] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[  993.534357][T12855] CPU: 1 PID: 12855 Comm: syz-executor.1 Not tainted 5.17.0-rc7-syzkaller-00078-g3bf7edc84a9e-dirty #0
[  993.545410][T12855] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  993.555443][T12855] Call Trace:
[  993.558701][T12855]  <TASK>
[  993.561611][T12855]  dump_stack_lvl+0xd6/0x122
[  993.566277][T12855]  dump_stack+0x11/0x1b
[  993.570430][T12855]  dump_header+0x98/0x410
[  993.574786][T12855]  out_of_memory+0x65c/0x8c0
[  993.579362][T12855]  memory_max_write+0x32c/0x3d0
[  993.584240][T12855]  ? memory_max_show+0x70/0x70
[  993.589035][T12855]  cgroup_file_write+0x161/0x300
[  993.593949][T12855]  ? __check_object_size+0x22a/0x2d0
[  993.599210][T12855]  ? cgroup_seqfile_stop+0x70/0x70
[  993.604461][T12855]  kernfs_fop_write_iter+0x1d3/0x2d0
[  993.609754][T12855]  vfs_write+0x7f5/0x950
[  993.613980][T12855]  ksys_write+0xd9/0x190
[  993.618217][T12855]  __x64_sys_write+0x3e/0x50
[  993.622858][T12855]  do_syscall_64+0x44/0xd0
[  993.627272][T12855]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  993.633159][T12855] RIP: 0033:0x7fd6559cc049
[  993.637562][T12855] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  993.657143][T12855] RSP: 002b:00007fd654b42168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  993.665593][T12855] RAX: ffffffffffffffda RBX: 00007fd655adef60 RCX: 00007fd6559cc049
[  993.673543][T12855] RDX: 0000000000000012 RSI: 0000000020000080 RDI: 0000000000000006
[  993.681603][T12855] RBP: 00007fd655a2608d R08: 0000000000000000 R09: 0000000000000000
[  993.689617][T12855] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  993.697566][T12855] R13: 00007ffda0be2f9f R14: 00007fd654b42300 R15: 0000000000022000
[  993.705520][T12855]  </TASK>
[  993.708554][T12855] memory: usage 108kB, limit 60kB, failcnt 6350
[  993.714904][T12855] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  993.721765][T12855] Memory cgroup stats for /syz0:
[  993.722236][T12855] anon 0
[  993.722236][T12855] file 81920
[  993.722236][T12855] kernel_stack 0
[  993.722236][T12855] pagetables 0
[  993.722236][T12855] percpu 0
[  993.722236][T12855] sock 0
[  993.722236][T12855] vmalloc 0
[  993.722236][T12855] shmem 77824
[  993.722236][T12855] file_mapped 77824
[  993.722236][T12855] file_dirty 4096
[  993.722236][T12855] file_writeback 0
[  993.722236][T12855] swapcached 0
[  993.722236][T12855] inactive_anon 16384
[  993.722236][T12855] active_anon 61440
[  993.722236][T12855] inactive_file 0
[  993.722236][T12855] active_file 4096
[  993.722236][T12855] unevictable 0
[  993.722236][T12855] slab_reclaimable 7384
[  993.722236][T12855] slab_unreclaimable 15408
[  993.722236][T12855] slab 22792
[  993.722236][T12855] workingset_refault_anon 0
[  993.722236][T12855] workingset_refault_file 1
[  993.722236][T12855] workingset_activate_anon 0
[  993.722236][T12855] workingset_activate_file 0
[  993.722236][T12855] workingset_restore_anon 0
[  993.816394][T12855] Out of memory and no killable processes...
[  993.824207][T12859] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=0
[  993.834183][T12859] CPU: 0 PID: 12859 Comm: syz-executor.3 Not tainted 5.17.0-rc7-syzkaller-00078-g3bf7edc84a9e-dirty #0
[  993.845319][T12859] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  993.855357][T12859] Call Trace:
[  993.858620][T12859]  <TASK>
[  993.861529][T12859]  dump_stack_lvl+0xd6/0x122
[  993.866150][T12859]  dump_stack+0x11/0x1b
[  993.870334][T12859]  dump_header+0x98/0x410
[  993.874645][T12859]  out_of_memory+0x65c/0x8c0
[  993.879306][T12859]  memory_max_write+0x32c/0x3d0
[  993.884143][T12859]  ? memory_max_show+0x70/0x70
[  993.888889][T12859]  cgroup_file_write+0x161/0x300
[  993.893805][T12859]  ? __check_object_size+0x22a/0x2d0
[  993.899090][T12859]  ? cgroup_seqfile_stop+0x70/0x70
[  993.904192][T12859]  kernfs_fop_write_iter+0x1d3/0x2d0
[  993.909474][T12859]  vfs_write+0x7f5/0x950
[  993.913702][T12859]  ksys_write+0xd9/0x190
[  993.917926][T12859]  __x64_sys_write+0x3e/0x50
[  993.922497][T12859]  do_syscall_64+0x44/0xd0
[  993.926944][T12859]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  993.932831][T12859] RIP: 0033:0x7f8cc712a049
[  993.937235][T12859] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  993.956827][T12859] RSP: 002b:00007f8cc62a0168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  993.965226][T12859] RAX: ffffffffffffffda RBX: 00007f8cc723cf60 RCX: 00007f8cc712a049
11:28:29 executing program 0:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
r0 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) (async)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
syz_io_uring_setup(0x3ede, &(0x7f0000000240), &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000100)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd_index=0x5, 0x0, &(0x7f0000000040)=""/18, 0x12}, 0x0) (async)
syz_io_uring_setup(0x3ede, &(0x7f0000000240), &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000100)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000000)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd_index=0x5, 0x0, &(0x7f0000000040)=""/18, 0x12}, 0x0)
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(r3, 0x0, &(0x7f0000000340)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {0xfffd}}, 0x1) (async)
syz_io_uring_submit(r3, r4, &(0x7f0000000300)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd_index=0x8, 0x0, 0x0, 0x0, 0x5, 0x0, {0x0, r5}}, 0x800) (async)
ioctl$AUTOFS_DEV_IOCTL_FAIL(r0, 0xc0189377, &(0x7f00000000c0)={{0x1, 0x1, 0x18, <r6=>r0, {0x38, 0x8000}}, './file0\x00'})
syz_io_uring_submit(r1, r4, &(0x7f0000000280)=@IORING_OP_OPENAT2={0x1c, 0x1, 0x0, r6, &(0x7f0000000100)={0x400000, 0x120}, &(0x7f0000000240)='./file0\x00', 0x18, 0x0, 0x12345}, 0x400) (async)
r7 = syz_io_uring_setup(0x3ede, &(0x7f0000000240), &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(r7, 0x2ff, 0x0, 0x0, 0x0, 0x0)
io_uring_enter(r7, 0x7f34, 0xdf74, 0x1, &(0x7f00000002c0)={[0x401]}, 0x8)
r8 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r9 = openat$cgroup(r8, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r10 = openat$cgroup_int(r9, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r10, &(0x7f0000000080), 0x12)

[  993.973179][T12859] RDX: 0000000000000012 RSI: 0000000020000080 RDI: 000000000000000f
[  993.981132][T12859] RBP: 00007f8cc718408d R08: 0000000000000000 R09: 0000000000000000
[  993.989137][T12859] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  993.997103][T12859] R13: 00007fff26a0d88f R14: 00007f8cc62a0300 R15: 0000000000022000
[  994.005066][T12859]  </TASK>
[  994.008258][T12859] memory: usage 108kB, limit 60kB, failcnt 6350
[  994.014486][T12859] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
11:28:29 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0xfeff, 0x12)

[  994.021357][T12859] Memory cgroup stats for /syz0:
[  994.036054][T12859] anon 0
[  994.036054][T12859] file 81920
[  994.036054][T12859] kernel_stack 0
[  994.036054][T12859] pagetables 0
[  994.036054][T12859] percpu 0
[  994.036054][T12859] sock 0
[  994.036054][T12859] vmalloc 0
[  994.036054][T12859] shmem 77824
[  994.036054][T12859] file_mapped 77824
[  994.036054][T12859] file_dirty 4096
[  994.036054][T12859] file_writeback 0
[  994.036054][T12859] swapcached 0
[  994.036054][T12859] inactive_anon 16384
[  994.036054][T12859] active_anon 61440
[  994.036054][T12859] inactive_file 0
[  994.036054][T12859] active_file 4096
[  994.036054][T12859] unevictable 0
[  994.036054][T12859] slab_reclaimable 7384
[  994.036054][T12859] slab_unreclaimable 15408
[  994.036054][T12859] slab 22792
[  994.036054][T12859] workingset_refault_anon 0
[  994.036054][T12859] workingset_refault_file 1
[  994.036054][T12859] workingset_activate_anon 0
[  994.036054][T12859] workingset_activate_file 0
[  994.036054][T12859] workingset_restore_anon 0
[  994.130225][T12859] Out of memory and no killable processes...
11:28:30 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x0, 0x0, 0x56)
socket$inet6(0xa, 0x80001, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x80000, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x40000, 0x12)

[  994.163502][T12864] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[  994.173727][T12864] CPU: 0 PID: 12864 Comm: syz-executor.2 Not tainted 5.17.0-rc7-syzkaller-00078-g3bf7edc84a9e-dirty #0
[  994.184772][T12864] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  994.194841][T12864] Call Trace:
[  994.198118][T12864]  <TASK>
[  994.201040][T12864]  dump_stack_lvl+0xd6/0x122
[  994.205639][T12864]  dump_stack+0x11/0x1b
[  994.209793][T12864]  dump_header+0x98/0x410
[  994.214124][T12864]  out_of_memory+0x65c/0x8c0
[  994.218709][T12864]  memory_max_write+0x32c/0x3d0
[  994.223629][T12864]  ? memory_max_show+0x70/0x70
[  994.228392][T12864]  cgroup_file_write+0x161/0x300
[  994.233328][T12864]  ? __check_object_size+0x22a/0x2d0
[  994.238611][T12864]  ? cgroup_seqfile_stop+0x70/0x70
[  994.243721][T12864]  kernfs_fop_write_iter+0x1d3/0x2d0
[  994.249030][T12864]  vfs_write+0x7f5/0x950
[  994.253268][T12864]  ksys_write+0xd9/0x190
[  994.257508][T12864]  __x64_sys_write+0x3e/0x50
[  994.262138][T12864]  do_syscall_64+0x44/0xd0
[  994.266603][T12864]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  994.272492][T12864] RIP: 0033:0x7f1d3184b049
[  994.276898][T12864] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  994.296532][T12864] RSP: 002b:00007f1d309a0168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  994.304944][T12864] RAX: ffffffffffffffda RBX: 00007f1d3195e030 RCX: 00007f1d3184b049
[  994.312961][T12864] RDX: 0000000000000012 RSI: 0000000020000080 RDI: 0000000000000006
[  994.320931][T12864] RBP: 00007f1d318a508d R08: 0000000000000000 R09: 0000000000000000
[  994.328935][T12864] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  994.336904][T12864] R13: 00007ffc96a4069f R14: 00007f1d309a0300 R15: 0000000000022000
[  994.345187][T12864]  </TASK>
[  994.348393][T12864] memory: usage 104kB, limit 60kB, failcnt 6350
[  994.354657][T12864] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  994.361520][T12864] Memory cgroup stats for /syz0:
[  994.374221][T12864] anon 0
[  994.374221][T12864] file 81920
[  994.374221][T12864] kernel_stack 0
[  994.374221][T12864] pagetables 0
[  994.374221][T12864] percpu 0
[  994.374221][T12864] sock 0
[  994.374221][T12864] vmalloc 0
[  994.374221][T12864] shmem 77824
[  994.374221][T12864] file_mapped 77824
[  994.374221][T12864] file_dirty 4096
[  994.374221][T12864] file_writeback 0
[  994.374221][T12864] swapcached 0
[  994.374221][T12864] inactive_anon 16384
11:28:30 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x0, 0x0, 0x56)
socket$inet6(0xa, 0x80001, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x80000, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x1000000, 0x12)

11:28:30 executing program 4:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff000000fffe00000000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b'], 0x50}}, 0x0)

[  994.374221][T12864] active_anon 61440
[  994.374221][T12864] inactive_file 0
[  994.374221][T12864] active_file 4096
[  994.374221][T12864] unevictable 0
[  994.374221][T12864] slab_reclaimable 6240
[  994.374221][T12864] slab_unreclaimable 15408
[  994.374221][T12864] slab 21648
[  994.374221][T12864] workingset_refault_anon 0
[  994.374221][T12864] workingset_refault_file 1
[  994.374221][T12864] workingset_activate_anon 0
[  994.374221][T12864] workingset_activate_file 0
[  994.374221][T12864] workingset_restore_anon 0
[  994.468321][T12864] Out of memory and no killable processes...
11:28:30 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x0, 0x0, 0x56)
socket$inet6(0xa, 0x80001, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x80000, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x2000000, 0x12)

11:28:30 executing program 5:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r1, &(0x7f0000000000), 0x10)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff000000000048000000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b', @ANYRES32], 0x50}}, 0x0)

11:28:30 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x0, 0x0, 0x56)
socket$inet6(0xa, 0x80001, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x80000, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x3000000, 0x12)

11:28:30 executing program 4:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff0000000fff00000000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b'], 0x50}}, 0x0)

11:28:30 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x0, 0x0, 0x56)
socket$inet6(0xa, 0x80001, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x80000, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x4000000, 0x12)

11:28:30 executing program 5:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r1, &(0x7f0000000000), 0x10)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff00000000004c000000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b', @ANYRES32], 0x50}}, 0x0)

11:28:30 executing program 2:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
socket$inet6(0xa, 0x0, 0x0)
setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x30, 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x0, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x45, 0x12)

[  994.820734][T12867] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[  994.830985][T12867] CPU: 1 PID: 12867 Comm: syz-executor.1 Not tainted 5.17.0-rc7-syzkaller-00078-g3bf7edc84a9e-dirty #0
[  994.842003][T12867] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  994.852037][T12867] Call Trace:
[  994.855293][T12867]  <TASK>
[  994.858200][T12867]  dump_stack_lvl+0xd6/0x122
[  994.862770][T12867]  dump_stack+0x11/0x1b
[  994.866911][T12867]  dump_header+0x98/0x410
[  994.871270][T12867]  out_of_memory+0x65c/0x8c0
[  994.875899][T12867]  memory_max_write+0x32c/0x3d0
[  994.880795][T12867]  ? memory_max_show+0x70/0x70
[  994.885539][T12867]  cgroup_file_write+0x161/0x300
[  994.890664][T12867]  ? __check_object_size+0x22a/0x2d0
[  994.896009][T12867]  ? cgroup_seqfile_stop+0x70/0x70
[  994.901158][T12867]  kernfs_fop_write_iter+0x1d3/0x2d0
[  994.906424][T12867]  vfs_write+0x7f5/0x950
[  994.910749][T12867]  ksys_write+0xd9/0x190
[  994.915022][T12867]  __x64_sys_write+0x3e/0x50
[  994.919591][T12867]  do_syscall_64+0x44/0xd0
[  994.923984][T12867]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  994.930039][T12867] RIP: 0033:0x7fd6559cc049
[  994.934428][T12867] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  994.954044][T12867] RSP: 002b:00007fd654b42168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  994.962448][T12867] RAX: ffffffffffffffda RBX: 00007fd655adef60 RCX: 00007fd6559cc049
[  994.970394][T12867] RDX: 0000000000000012 RSI: 0000000020000080 RDI: 0000000000000006
[  994.978420][T12867] RBP: 00007fd655a2608d R08: 0000000000000000 R09: 0000000000000000
[  994.986368][T12867] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  994.994344][T12867] R13: 00007ffda0be2f9f R14: 00007fd654b42300 R15: 0000000000022000
[  995.002416][T12867]  </TASK>
[  995.005490][T12867] memory: usage 104kB, limit 0kB, failcnt 6350
[  995.011631][T12867] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  995.018475][T12867] Memory cgroup stats for /syz0:
[  995.018823][T12867] anon 0
[  995.018823][T12867] file 81920
[  995.018823][T12867] kernel_stack 0
[  995.018823][T12867] pagetables 0
[  995.018823][T12867] percpu 0
[  995.018823][T12867] sock 0
[  995.018823][T12867] vmalloc 0
[  995.018823][T12867] shmem 77824
[  995.018823][T12867] file_mapped 77824
[  995.018823][T12867] file_dirty 4096
[  995.018823][T12867] file_writeback 0
[  995.018823][T12867] swapcached 0
[  995.018823][T12867] inactive_anon 16384
[  995.018823][T12867] active_anon 61440
[  995.018823][T12867] inactive_file 0
[  995.018823][T12867] active_file 4096
[  995.018823][T12867] unevictable 0
[  995.018823][T12867] slab_reclaimable 6240
[  995.018823][T12867] slab_unreclaimable 15408
[  995.018823][T12867] slab 21648
[  995.018823][T12867] workingset_refault_anon 0
[  995.018823][T12867] workingset_refault_file 1
[  995.018823][T12867] workingset_activate_anon 0
[  995.018823][T12867] workingset_activate_file 0
[  995.018823][T12867] workingset_restore_anon 0
[  995.113001][T12867] Out of memory and no killable processes...
[  995.120543][T12893] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[  995.130823][T12893] CPU: 0 PID: 12893 Comm: syz-executor.2 Not tainted 5.17.0-rc7-syzkaller-00078-g3bf7edc84a9e-dirty #0
[  995.141891][T12893] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  995.151922][T12893] Call Trace:
[  995.155218][T12893]  <TASK>
[  995.158143][T12893]  dump_stack_lvl+0xd6/0x122
[  995.162767][T12893]  dump_stack+0x11/0x1b
[  995.166899][T12893]  dump_header+0x98/0x410
[  995.171210][T12893]  out_of_memory+0x65c/0x8c0
[  995.175847][T12893]  memory_max_write+0x32c/0x3d0
[  995.180746][T12893]  ? memory_max_show+0x70/0x70
[  995.185591][T12893]  cgroup_file_write+0x161/0x300
[  995.190521][T12893]  ? __check_object_size+0x22a/0x2d0
[  995.195806][T12893]  ? cgroup_seqfile_stop+0x70/0x70
[  995.200892][T12893]  kernfs_fop_write_iter+0x1d3/0x2d0
[  995.206152][T12893]  vfs_write+0x7f5/0x950
[  995.210369][T12893]  ksys_write+0xd9/0x190
[  995.214587][T12893]  __x64_sys_write+0x3e/0x50
[  995.219152][T12893]  do_syscall_64+0x44/0xd0
[  995.223573][T12893]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  995.229586][T12893] RIP: 0033:0x7f1d3184b049
[  995.233977][T12893] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  995.253627][T12893] RSP: 002b:00007f1d309c1168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  995.262090][T12893] RAX: ffffffffffffffda RBX: 00007f1d3195df60 RCX: 00007f1d3184b049
[  995.270040][T12893] RDX: 0000000000000012 RSI: 0000000020000080 RDI: 0000000000000006
[  995.277988][T12893] RBP: 00007f1d318a508d R08: 0000000000000000 R09: 0000000000000000
[  995.285932][T12893] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  995.293882][T12893] R13: 00007ffc96a4069f R14: 00007f1d309c1300 R15: 0000000000022000
[  995.301842][T12893]  </TASK>
[  995.304926][T12893] memory: usage 104kB, limit 0kB, failcnt 6350
[  995.311103][T12893] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  995.317980][T12893] Memory cgroup stats for /syz0:
[  995.319877][T12893] anon 0
[  995.319877][T12893] file 81920
[  995.319877][T12893] kernel_stack 0
[  995.319877][T12893] pagetables 0
[  995.319877][T12893] percpu 0
[  995.319877][T12893] sock 0
[  995.319877][T12893] vmalloc 0
[  995.319877][T12893] shmem 77824
[  995.319877][T12893] file_mapped 77824
[  995.319877][T12893] file_dirty 4096
[  995.319877][T12893] file_writeback 0
[  995.319877][T12893] swapcached 0
[  995.319877][T12893] inactive_anon 16384
[  995.319877][T12893] active_anon 61440
[  995.319877][T12893] inactive_file 0
[  995.319877][T12893] active_file 4096
[  995.319877][T12893] unevictable 0
[  995.319877][T12893] slab_reclaimable 6240
[  995.319877][T12893] slab_unreclaimable 15408
[  995.319877][T12893] slab 21648
[  995.319877][T12893] workingset_refault_anon 0
[  995.319877][T12893] workingset_refault_file 1
[  995.319877][T12893] workingset_activate_anon 0
[  995.319877][T12893] workingset_activate_file 0
[  995.319877][T12893] workingset_restore_anon 0
[  995.413902][T12893] Out of memory and no killable processes...
[  995.567833][T22349] device hsr_slave_0 left promiscuous mode
[  995.574089][T22349] device hsr_slave_1 left promiscuous mode
[  995.580319][T22349] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  995.587709][T22349] batman_adv: batadv0: Removing interface: batadv_slave_0
[  995.595287][T22349] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  995.602667][T22349] batman_adv: batadv0: Removing interface: batadv_slave_1
[  995.610310][T22349] device bridge_slave_1 left promiscuous mode
[  995.616503][T22349] bridge0: port 2(bridge_slave_1) entered disabled state
[  995.623814][T22349] device bridge_slave_0 left promiscuous mode
[  995.630039][T22349] bridge0: port 1(bridge_slave_0) entered disabled state
[  995.639578][T22349] device veth1_macvtap left promiscuous mode
[  995.645541][T22349] device veth0_macvtap left promiscuous mode
[  995.651569][T22349] device veth1_vlan left promiscuous mode
[  995.657422][T22349] device veth0_vlan left promiscuous mode
[  995.736026][T22349] team0 (unregistering): Port device team_slave_1 removed
[  995.747094][T22349] team0 (unregistering): Port device team_slave_0 removed
[  995.756432][T22349] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  995.768222][T22349] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  995.798514][T22349] bond0 (unregistering): Released all slaves
[  995.982574][T12898] chnl_net:caif_netlink_parms(): no params data found
[  996.012986][T12898] bridge0: port 1(bridge_slave_0) entered blocking state
[  996.020085][T12898] bridge0: port 1(bridge_slave_0) entered disabled state
[  996.027659][T12898] device bridge_slave_0 entered promiscuous mode
[  996.034841][T12898] bridge0: port 2(bridge_slave_1) entered blocking state
[  996.041965][T12898] bridge0: port 2(bridge_slave_1) entered disabled state
[  996.049504][T12898] device bridge_slave_1 entered promiscuous mode
[  996.064598][T12898] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  996.075260][T12898] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  996.094013][T12898] team0: Port device team_slave_0 added
[  996.100235][T12898] team0: Port device team_slave_1 added
[  996.114589][T12898] batman_adv: batadv0: Adding interface: batadv_slave_0
[  996.121535][T12898] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  996.147543][T12898] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  996.158616][T12898] batman_adv: batadv0: Adding interface: batadv_slave_1
[  996.165537][T12898] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  996.191488][T12898] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  996.216315][T12898] device hsr_slave_0 entered promiscuous mode
[  996.222861][T12898] device hsr_slave_1 entered promiscuous mode
[  996.282748][T12898] bridge0: port 2(bridge_slave_1) entered blocking state
[  996.289816][T12898] bridge0: port 2(bridge_slave_1) entered forwarding state
[  996.297110][T12898] bridge0: port 1(bridge_slave_0) entered blocking state
[  996.304136][T12898] bridge0: port 1(bridge_slave_0) entered forwarding state
[  996.343713][T12898] 8021q: adding VLAN 0 to HW filter on device bond0
[  996.354937][ T1928] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  996.363438][ T1928] bridge0: port 1(bridge_slave_0) entered disabled state
[  996.371427][ T1928] bridge0: port 2(bridge_slave_1) entered disabled state
[  996.382332][T12898] 8021q: adding VLAN 0 to HW filter on device team0
[  996.392478][T23294] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  996.400923][T23294] bridge0: port 1(bridge_slave_0) entered blocking state
[  996.407987][T23294] bridge0: port 1(bridge_slave_0) entered forwarding state
[  996.425931][T12898] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  996.436268][T12898] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  996.451230][ T3625] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  996.459479][ T3625] bridge0: port 2(bridge_slave_1) entered blocking state
[  996.466511][ T3625] bridge0: port 2(bridge_slave_1) entered forwarding state
[  996.475059][ T3625] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  996.483329][ T3625] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  996.491843][ T3625] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  996.500125][ T3625] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  996.508167][ T3625] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  996.515736][ T3625] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  996.528471][T12898] 8021q: adding VLAN 0 to HW filter on device batadv0
[  996.535596][ T3625] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  996.543284][ T3625] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  996.610461][ T6848] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  996.619034][ T6848] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  996.653693][T12898] device veth0_vlan entered promiscuous mode
[  996.660004][T23294] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  996.668311][T23294] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  996.678645][T23294] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  996.686215][T23294] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  996.694895][T12898] device veth1_vlan entered promiscuous mode
[  996.707021][T23294] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  996.714953][T23294] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  996.722977][T23294] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  996.731223][T23294] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  996.740891][T12898] device veth0_macvtap entered promiscuous mode
[  996.749012][T12898] device veth1_macvtap entered promiscuous mode
[  996.759428][T12898] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[  996.769912][T12898] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  996.779709][T12898] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[  996.790095][T12898] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  996.799938][T12898] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[  996.810341][T12898] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  996.820216][T12898] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[  996.830608][T12898] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  996.840527][T12898] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[  996.850925][T12898] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  996.861834][T12898] batman_adv: batadv0: Interface activated: batadv_slave_0
[  996.869115][ T6846] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  996.877335][ T6846] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  996.885057][ T6846] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  996.893645][ T6846] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  996.904083][T12898] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[  996.914561][T12898] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  996.924419][T12898] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[  996.934899][T12898] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  996.944694][T12898] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[  996.955299][T12898] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  996.965180][T12898] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[  996.975599][T12898] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  996.985411][T12898] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[  996.995820][T12898] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
11:28:33 executing program 0:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
r0 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
syz_io_uring_setup(0x3ede, &(0x7f0000000240), &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000100)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd_index=0x5, 0x0, &(0x7f0000000040)=""/18, 0x12}, 0x0)
syz_io_uring_setup(0x3ede, &(0x7f0000000240), &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000100)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000000)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd_index=0x5, 0x0, &(0x7f0000000040)=""/18, 0x12}, 0x0)
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(r3, 0x0, &(0x7f0000000340)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {0xfffd}}, 0x1)
syz_io_uring_submit(r3, r4, &(0x7f0000000300)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd_index=0x8, 0x0, 0x0, 0x0, 0x5, 0x0, {0x0, r5}}, 0x800)
ioctl$AUTOFS_DEV_IOCTL_FAIL(r0, 0xc0189377, &(0x7f00000000c0)={{0x1, 0x1, 0x18, <r6=>r0, {0x38, 0x8000}}, './file0\x00'})
syz_io_uring_submit(r1, r4, &(0x7f0000000280)=@IORING_OP_OPENAT2={0x1c, 0x1, 0x0, r6, &(0x7f0000000100)={0x400000, 0x120}, &(0x7f0000000240)='./file0\x00', 0x18, 0x0, 0x12345}, 0x400)
r7 = syz_io_uring_setup(0x3ede, &(0x7f0000000240), &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(r7, 0x2ff, 0x0, 0x0, 0x0, 0x0)
io_uring_enter(r7, 0x7f34, 0xdf74, 0x1, &(0x7f00000002c0)={[0x401]}, 0x8)
r8 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r9 = openat$cgroup(r8, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r10 = openat$cgroup_int(r9, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r10, &(0x7f0000000080), 0x12)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) (async)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
syz_io_uring_setup(0x3ede, &(0x7f0000000240), &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000100), &(0x7f0000000140)) (async)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd_index=0x5, 0x0, &(0x7f0000000040)=""/18, 0x12}, 0x0) (async)
syz_io_uring_setup(0x3ede, &(0x7f0000000240), &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000100), &(0x7f0000000140)) (async)
syz_io_uring_submit(r3, r4, &(0x7f0000000000)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd_index=0x5, 0x0, &(0x7f0000000040)=""/18, 0x12}, 0x0) (async)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) (async)
syz_io_uring_submit(r3, 0x0, &(0x7f0000000340)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {0xfffd}}, 0x1) (async)
syz_io_uring_submit(r3, r4, &(0x7f0000000300)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd_index=0x8, 0x0, 0x0, 0x0, 0x5, 0x0, {0x0, r5}}, 0x800) (async)
ioctl$AUTOFS_DEV_IOCTL_FAIL(r0, 0xc0189377, &(0x7f00000000c0)={{0x1, 0x1, 0x18, r0, {0x38, 0x8000}}, './file0\x00'}) (async)
syz_io_uring_submit(r1, r4, &(0x7f0000000280)=@IORING_OP_OPENAT2={0x1c, 0x1, 0x0, r6, &(0x7f0000000100)={0x400000, 0x120}, &(0x7f0000000240)='./file0\x00', 0x18, 0x0, 0x12345}, 0x400) (async)
syz_io_uring_setup(0x3ede, &(0x7f0000000240), &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000100), &(0x7f0000000140)) (async)
io_uring_enter(r7, 0x2ff, 0x0, 0x0, 0x0, 0x0) (async)
io_uring_enter(r7, 0x7f34, 0xdf74, 0x1, &(0x7f00000002c0)={[0x401]}, 0x8) (async)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) (async)
openat$cgroup(r8, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0) (async)
openat$cgroup_int(r9, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0) (async)
write$cgroup_int(r10, &(0x7f0000000080), 0x12) (async)

[  997.007514][T12898] batman_adv: batadv0: Interface activated: batadv_slave_1
[  997.015044][ T6846] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  997.023642][ T6846] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
11:28:33 executing program 4:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff0000007fff00000000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b'], 0x50}}, 0x0)

11:28:33 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x0, 0x0, 0x56)
socket$inet6(0xa, 0x80001, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x80000, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x5000000, 0x12)

11:28:33 executing program 5:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r1, &(0x7f0000000000), 0x10)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff000000000159000000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b', @ANYRES32], 0x50}}, 0x0)

11:28:33 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0xfffe, 0x12)

11:28:33 executing program 2:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
socket$inet6(0xa, 0x0, 0x0)
setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x30, 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x0, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x47, 0x12)

[  997.089745][T12947] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[  997.100055][T12947] CPU: 1 PID: 12947 Comm: syz-executor.1 Not tainted 5.17.0-rc7-syzkaller-00078-g3bf7edc84a9e-dirty #0
[  997.111089][T12947] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  997.121140][T12947] Call Trace:
[  997.124411][T12947]  <TASK>
[  997.127339][T12947]  dump_stack_lvl+0xd6/0x122
[  997.132010][T12947]  dump_stack+0x11/0x1b
11:28:33 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x0, 0x0, 0x56)
socket$inet6(0xa, 0x80001, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x80000, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x6000000, 0x12)

[  997.136166][T12947]  dump_header+0x98/0x410
[  997.140497][T12947]  oom_kill_process+0x18e/0x4a0
[  997.145347][T12947]  out_of_memory+0x61d/0x8c0
[  997.149917][T12947]  ? _raw_spin_unlock_irqrestore+0x3d/0x60
[  997.155739][T12947]  memory_max_write+0x32c/0x3d0
[  997.160662][T12947]  ? memory_max_show+0x70/0x70
[  997.165401][T12947]  cgroup_file_write+0x161/0x300
[  997.170326][T12947]  ? __check_object_size+0x22a/0x2d0
[  997.175589][T12947]  ? cgroup_seqfile_stop+0x70/0x70
[  997.180785][T12947]  kernfs_fop_write_iter+0x1d3/0x2d0
[  997.186070][T12947]  vfs_write+0x7f5/0x950
[  997.190336][T12947]  ksys_write+0xd9/0x190
[  997.194558][T12947]  __x64_sys_write+0x3e/0x50
[  997.199199][T12947]  do_syscall_64+0x44/0xd0
[  997.203642][T12947]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  997.209533][T12947] RIP: 0033:0x7fd6559cc049
[  997.213965][T12947] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  997.233605][T12947] RSP: 002b:00007fd654b42168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  997.241990][T12947] RAX: ffffffffffffffda RBX: 00007fd655adef60 RCX: 00007fd6559cc049
[  997.249941][T12947] RDX: 0000000000000012 RSI: 0000000020000080 RDI: 0000000000000006
[  997.257896][T12947] RBP: 00007fd655a2608d R08: 0000000000000000 R09: 0000000000000000
[  997.265856][T12947] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  997.273806][T12947] R13: 00007ffda0be2f9f R14: 00007fd654b42300 R15: 0000000000022000
[  997.281830][T12947]  </TASK>
11:28:33 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x0, 0x0, 0x56)
socket$inet6(0xa, 0x80001, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x80000, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x7000000, 0x12)

[  997.284894][T12947] memory: usage 196kB, limit 0kB, failcnt 6369
[  997.291134][T12947] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  997.297991][T12947] Memory cgroup stats for /syz0:
[  997.299755][T12947] anon 40960
[  997.299755][T12947] file 81920
[  997.299755][T12947] kernel_stack 0
[  997.299755][T12947] pagetables 8192
[  997.299755][T12947] percpu 0
[  997.299755][T12947] sock 0
[  997.299755][T12947] vmalloc 0
[  997.299755][T12947] shmem 77824
[  997.299755][T12947] file_mapped 77824
[  997.299755][T12947] file_dirty 4096
[  997.299755][T12947] file_writeback 0
[  997.299755][T12947] swapcached 0
[  997.299755][T12947] inactive_anon 57344
[  997.299755][T12947] active_anon 61440
[  997.299755][T12947] inactive_file 0
[  997.299755][T12947] active_file 4096
[  997.299755][T12947] unevictable 0
[  997.299755][T12947] slab_reclaimable 20704
[  997.299755][T12947] slab_unreclaimable 19808
[  997.299755][T12947] slab 40512
[  997.299755][T12947] workingset_refault_anon 0
[  997.299755][T12947] workingset_refault_file 1
[  997.299755][T12947] workingset_activate_anon 0
[  997.299755][T12947] workingset_activate_file 0
11:28:33 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x0, 0x0, 0x56)
socket$inet6(0xa, 0x80001, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x80000, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x8000000, 0x12)

[  997.299755][T12947] workingset_restore_anon 0
[  997.394785][T12947] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=12898,uid=0
[  997.410174][T12947] Memory cgroup out of memory: Killed process 12898 (syz-executor.0) total-vm:48480kB, anon-rss:360kB, file-rss:14336kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:0
[  997.427844][   T26] oom_reaper: reaped process 12898 (syz-executor.0), now anon-rss:0kB, file-rss:14336kB, shmem-rss:64kB
11:28:33 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x0, 0x0, 0x56)
socket$inet6(0xa, 0x80001, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x80000, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x9000000, 0x12)

11:28:33 executing program 5:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r1, &(0x7f0000000000), 0x10)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff000000000060000000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b', @ANYRES32], 0x50}}, 0x0)

11:28:33 executing program 4:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff000000feff00000000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b'], 0x50}}, 0x0)

11:28:33 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x0, 0x0, 0x56)
socket$inet6(0xa, 0x80001, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x80000, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0xa000000, 0x12)

11:28:33 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x0, 0x0, 0x56)
socket$inet6(0xa, 0x80001, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x80000, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0xb000000, 0x12)

11:28:33 executing program 0:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
r0 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
close_range(r0, r0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = openat$cgroup(r1, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
pipe(&(0x7f0000000200)={<r3=>0xffffffffffffffff})
r4 = socket$inet_udp(0x2, 0x2, 0x0)
close(r4)
bind$inet(r4, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10)
connect$inet(r4, &(0x7f0000001280)={0x2, 0x0, @multicast1}, 0x10)
splice(r3, 0x0, r4, 0x0, 0x5, 0x5)
openat$cgroup_ro(r3, &(0x7f00000000c0)='memory.events\x00', 0x0, 0x0)
r5 = openat$cgroup_int(r2, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r5, &(0x7f0000000080), 0x12)
r6 = socket(0x10, 0x803, 0x0)
sendmsg$TIPC_NL_MON_GET(r6, &(0x7f0000000500)={&(0x7f00000004c0)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000005c0)={0x0, 0x88}, 0x1, 0x0, 0x0, 0x1}, 0x0)
getsockname$packet(r6, &(0x7f0000000100)={0x11, 0x0, <r7=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0xffffffef, &(0x7f0000000300)={&(0x7f0000000340)=ANY=[@ANYBLOB="8400000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="03a39e906193ec0b9361e27828604b7d015742ba1c6796005c0012800b000100697036746e6cc500004c00028006000f0300fc0013000804000000000000000000", @ANYRES32=r7, @ANYBLOB="0400130014000200fe8000000000000000000000000000bb050009002900000008000a00", @ANYRES32=r7, @ANYBLOB], 0x84}}, 0x4000080)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newaddr={0x28, 0x14, 0x400, 0x70bd26, 0x25dfdbfe, {0x2, 0x0, 0x10, 0xfd, r7}, [@IFA_RT_PRIORITY={0x8, 0x9, 0x1}, @IFA_TARGET_NETNSID={0x8, 0xa, 0x3}]}, 0x28}, 0x1, 0x0, 0x0, 0x4000}, 0x8800)

11:28:33 executing program 5:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r1, &(0x7f0000000000), 0x10)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff000000005865000000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b', @ANYRES32], 0x50}}, 0x0)

11:28:33 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x40000, 0x12)

11:28:33 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x0, 0x0, 0x56)
socket$inet6(0xa, 0x80001, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x80000, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0xc000000, 0x12)

11:28:33 executing program 5:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r1, &(0x7f0000000000), 0x10)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff000000000068000000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b', @ANYRES32], 0x50}}, 0x0)

11:28:33 executing program 4:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff000000000004000000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b'], 0x50}}, 0x0)

11:28:33 executing program 2:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
socket$inet6(0xa, 0x0, 0x0)
setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x30, 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x0, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x4b, 0x12)

11:28:33 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x1000000, 0x12)

11:28:33 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x0, 0x0, 0x56)
socket$inet6(0xa, 0x80001, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x80000, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0xd000000, 0x12)

11:28:34 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x2000000, 0x12)

11:28:34 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x3000000, 0x12)

[  998.039177][T12987] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[  998.049416][T12987] CPU: 1 PID: 12987 Comm: syz-executor.2 Not tainted 5.17.0-rc7-syzkaller-00078-g3bf7edc84a9e-dirty #0
[  998.060525][T12987] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  998.070574][T12987] Call Trace:
[  998.073842][T12987]  <TASK>
[  998.076762][T12987]  dump_stack_lvl+0xd6/0x122
[  998.081431][T12987]  dump_stack+0x11/0x1b
[  998.085624][T12987]  dump_header+0x98/0x410
[  998.089949][T12987]  out_of_memory+0x65c/0x8c0
[  998.094537][T12987]  memory_max_write+0x32c/0x3d0
[  998.099525][T12987]  ? memory_max_show+0x70/0x70
[  998.104287][T12987]  cgroup_file_write+0x161/0x300
[  998.109274][T12987]  ? __check_object_size+0x22a/0x2d0
[  998.114599][T12987]  ? cgroup_seqfile_stop+0x70/0x70
[  998.119708][T12987]  kernfs_fop_write_iter+0x1d3/0x2d0
[  998.125025][T12987]  vfs_write+0x7f5/0x950
[  998.129265][T12987]  ksys_write+0xd9/0x190
[  998.133504][T12987]  __x64_sys_write+0x3e/0x50
[  998.138139][T12987]  do_syscall_64+0x44/0xd0
[  998.142625][T12987]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  998.148539][T12987] RIP: 0033:0x7f1d3184b049
[  998.152983][T12987] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  998.172584][T12987] RSP: 002b:00007f1d309c1168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  998.181017][T12987] RAX: ffffffffffffffda RBX: 00007f1d3195df60 RCX: 00007f1d3184b049
11:28:34 executing program 5:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r1, &(0x7f0000000000), 0x10)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff00000000006c000000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b', @ANYRES32], 0x50}}, 0x0)

[  998.189017][T12987] RDX: 0000000000000012 RSI: 0000000020000080 RDI: 0000000000000006
[  998.196982][T12987] RBP: 00007f1d318a508d R08: 0000000000000000 R09: 0000000000000000
[  998.204943][T12987] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  998.212905][T12987] R13: 00007ffc96a4069f R14: 00007f1d309c1300 R15: 0000000000022000
[  998.220875][T12987]  </TASK>
[  998.223937][T12987] memory: usage 104kB, limit 212992kB, failcnt 6369
[  998.230556][T12987] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[  998.237497][T12987] Memory cgroup stats for /syz0:
[  998.316529][T12987] anon 0
[  998.316529][T12987] file 81920
[  998.316529][T12987] kernel_stack 0
[  998.316529][T12987] pagetables 0
[  998.316529][T12987] percpu 0
[  998.316529][T12987] sock 0
[  998.316529][T12987] vmalloc 0
[  998.316529][T12987] shmem 77824
[  998.316529][T12987] file_mapped 77824
[  998.316529][T12987] file_dirty 4096
[  998.316529][T12987] file_writeback 0
[  998.316529][T12987] swapcached 0
[  998.316529][T12987] inactive_anon 16384
[  998.316529][T12987] active_anon 61440
[  998.316529][T12987] inactive_file 0
[  998.316529][T12987] active_file 4096
[  998.316529][T12987] unevictable 0
[  998.316529][T12987] slab_reclaimable 6240
[  998.316529][T12987] slab_unreclaimable 15408
[  998.316529][T12987] slab 21648
[  998.316529][T12987] workingset_refault_anon 0
[  998.316529][T12987] workingset_refault_file 1
[  998.316529][T12987] workingset_activate_anon 0
[  998.316529][T12987] workingset_activate_file 0
[  998.316529][T12987] workingset_restore_anon 0
[  998.410704][T12987] Out of memory and no killable processes...
[  998.557978][T12949] device hsr_slave_0 left promiscuous mode
[  998.564075][T12949] device hsr_slave_1 left promiscuous mode
[  998.570460][T12949] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  998.577928][T12949] batman_adv: batadv0: Removing interface: batadv_slave_0
[  998.585434][T12949] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  998.592862][T12949] batman_adv: batadv0: Removing interface: batadv_slave_1
[  998.600539][T12949] device bridge_slave_1 left promiscuous mode
[  998.606737][T12949] bridge0: port 2(bridge_slave_1) entered disabled state
[  998.614275][T12949] device bridge_slave_0 left promiscuous mode
[  998.620446][T12949] bridge0: port 1(bridge_slave_0) entered disabled state
[  998.629515][T12949] device veth1_macvtap left promiscuous mode
[  998.635480][T12949] device veth0_macvtap left promiscuous mode
[  998.641539][T12949] device veth1_vlan left promiscuous mode
[  998.647300][T12949] device veth0_vlan left promiscuous mode
[  998.728590][T12949] team0 (unregistering): Port device team_slave_1 removed
[  998.738680][T12949] team0 (unregistering): Port device team_slave_0 removed
[  998.749404][T12949] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  998.760017][T12949] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  998.787791][T12949] bond0 (unregistering): Released all slaves
[  999.510204][T13005] chnl_net:caif_netlink_parms(): no params data found
[  999.538442][T13005] bridge0: port 1(bridge_slave_0) entered blocking state
[  999.545482][T13005] bridge0: port 1(bridge_slave_0) entered disabled state
[  999.553022][T13005] device bridge_slave_0 entered promiscuous mode
[  999.560787][T13005] bridge0: port 2(bridge_slave_1) entered blocking state
[  999.567828][T13005] bridge0: port 2(bridge_slave_1) entered disabled state
[  999.575314][T13005] device bridge_slave_1 entered promiscuous mode
[  999.591693][T13005] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  999.601880][T13005] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  999.619399][T13005] team0: Port device team_slave_0 added
[  999.625720][T13005] team0: Port device team_slave_1 added
[  999.639351][T13005] batman_adv: batadv0: Adding interface: batadv_slave_0
[  999.646346][T13005] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  999.672243][T13005] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  999.683816][T13005] batman_adv: batadv0: Adding interface: batadv_slave_1
[  999.690797][T13005] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  999.716751][T13005] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  999.738418][T13005] device hsr_slave_0 entered promiscuous mode
[  999.744752][T13005] device hsr_slave_1 entered promiscuous mode
[  999.791960][T13005] bridge0: port 2(bridge_slave_1) entered blocking state
[  999.799001][T13005] bridge0: port 2(bridge_slave_1) entered forwarding state
[  999.806229][T13005] bridge0: port 1(bridge_slave_0) entered blocking state
[  999.813254][T13005] bridge0: port 1(bridge_slave_0) entered forwarding state
[  999.839032][T13005] 8021q: adding VLAN 0 to HW filter on device bond0
[  999.848995][ T6849] bridge0: port 1(bridge_slave_0) entered disabled state
[  999.857415][ T6849] bridge0: port 2(bridge_slave_1) entered disabled state
[  999.870343][T13005] 8021q: adding VLAN 0 to HW filter on device team0
[  999.877425][   T77] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  999.885131][   T77] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  999.894158][ T6848] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  999.903411][ T6848] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  999.911815][ T6848] bridge0: port 1(bridge_slave_0) entered blocking state
[  999.918893][ T6848] bridge0: port 1(bridge_slave_0) entered forwarding state
[  999.936398][ T6848] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  999.945088][ T6848] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  999.953606][ T6848] bridge0: port 2(bridge_slave_1) entered blocking state
[  999.960639][ T6848] bridge0: port 2(bridge_slave_1) entered forwarding state
[  999.968368][ T6848] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  999.977371][ T6848] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  999.986098][ T6848] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  999.994607][ T6848] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 1000.003133][ T6848] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 1000.011691][ T6848] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 1000.020083][ T6848] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 1000.028312][ T6848] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1000.036717][ T6848] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 1000.045441][   T77] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 1000.053845][   T77] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1000.064181][T13005] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 1000.075795][ T6848] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 1000.083281][ T6848] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 1000.093386][T13005] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1000.168673][   T77] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 1000.177319][   T77] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1000.214056][T13005] device veth0_vlan entered promiscuous mode
[ 1000.222078][T23294] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 1000.230380][T23294] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1000.239385][T23294] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1000.247243][T23294] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1000.255244][T13005] device veth1_vlan entered promiscuous mode
[ 1000.266972][ T6848] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 1000.275095][ T6848] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 1000.283817][ T6848] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 1000.292238][ T6848] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1000.302549][T13005] device veth0_macvtap entered promiscuous mode
[ 1000.311244][T13005] device veth1_macvtap entered promiscuous mode
[ 1000.322183][T13005] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 1000.332647][T13005] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1000.342470][T13005] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 1000.352951][T13005] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1000.362773][T13005] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 1000.373245][T13005] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1000.383039][T13005] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 1000.393464][T13005] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1000.403307][T13005] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 1000.413736][T13005] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1000.425275][T13005] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1000.433879][   T77] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 1000.442056][   T77] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 1000.450881][   T77] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 1000.459451][   T77] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1000.469906][T13005] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 1000.480335][T13005] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1000.490146][T13005] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 1000.500558][T13005] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1000.510444][T13005] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 1000.520877][T13005] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1000.530688][T13005] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 1000.541102][T13005] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1000.551005][T13005] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 1000.561406][T13005] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1000.572569][T13005] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1000.583104][T23294] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 1000.591453][T23294] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 1000.629357][T13039] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1000.639543][T13039] CPU: 0 PID: 13039 Comm: syz-executor.0 Not tainted 5.17.0-rc7-syzkaller-00078-g3bf7edc84a9e-dirty #0
[ 1000.650558][T13039] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1000.660660][T13039] Call Trace:
[ 1000.663926][T13039]  <TASK>
[ 1000.666838][T13039]  dump_stack_lvl+0xd6/0x122
[ 1000.671408][T13039]  dump_stack+0x11/0x1b
[ 1000.675542][T13039]  dump_header+0x98/0x410
[ 1000.679924][T13039]  oom_kill_process+0x18e/0x4a0
[ 1000.684761][T13039]  out_of_memory+0x61d/0x8c0
[ 1000.689360][T13039]  memory_max_write+0x32c/0x3d0
[ 1000.694225][T13039]  ? memory_max_show+0x70/0x70
[ 1000.698975][T13039]  cgroup_file_write+0x161/0x300
[ 1000.703888][T13039]  ? __check_object_size+0x22a/0x2d0
[ 1000.709265][T13039]  ? cgroup_seqfile_stop+0x70/0x70
[ 1000.714421][T13039]  kernfs_fop_write_iter+0x1d3/0x2d0
[ 1000.719777][T13039]  vfs_write+0x7f5/0x950
[ 1000.723997][T13039]  ksys_write+0xd9/0x190
[ 1000.728220][T13039]  __x64_sys_write+0x3e/0x50
[ 1000.732846][T13039]  do_syscall_64+0x44/0xd0
[ 1000.737242][T13039]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1000.743136][T13039] RIP: 0033:0x7f1c58786049
[ 1000.747526][T13039] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1000.767107][T13039] RSP: 002b:00007f1c578fc168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1000.775508][T13039] RAX: ffffffffffffffda RBX: 00007f1c58898f60 RCX: 00007f1c58786049
[ 1000.783542][T13039] RDX: 0000000000000012 RSI: 0000000020000080 RDI: 000000000000000f
[ 1000.791490][T13039] RBP: 00007f1c587e008d R08: 0000000000000000 R09: 0000000000000000
[ 1000.799475][T13039] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1000.807427][T13039] R13: 00007fff56e8024f R14: 00007f1c578fc300 R15: 0000000000022000
[ 1000.815413][T13039]  </TASK>
[ 1000.818645][T13039] memory: usage 416kB, limit 0kB, failcnt 6369
[ 1000.824789][T13039] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1000.831697][T13039] Memory cgroup stats for /syz0:
[ 1000.831964][T13039] anon 118784
[ 1000.831964][T13039] file 81920
[ 1000.831964][T13039] kernel_stack 32768
[ 1000.831964][T13039] pagetables 90112
[ 1000.831964][T13039] percpu 0
[ 1000.831964][T13039] sock 0
[ 1000.831964][T13039] vmalloc 0
[ 1000.831964][T13039] shmem 77824
[ 1000.831964][T13039] file_mapped 77824
[ 1000.831964][T13039] file_dirty 4096
[ 1000.831964][T13039] file_writeback 0
[ 1000.831964][T13039] swapcached 0
[ 1000.831964][T13039] inactive_anon 135168
[ 1000.831964][T13039] active_anon 61440
[ 1000.831964][T13039] inactive_file 4096
[ 1000.831964][T13039] active_file 0
[ 1000.831964][T13039] unevictable 0
[ 1000.831964][T13039] slab_reclaimable 23856
[ 1000.831964][T13039] slab_unreclaimable 45768
[ 1000.831964][T13039] slab 69624
[ 1000.831964][T13039] workingset_refault_anon 0
[ 1000.831964][T13039] workingset_refault_file 1
[ 1000.831964][T13039] workingset_activate_anon 0
[ 1000.831964][T13039] workingset_activate_file 0
[ 1000.831964][T13039] workingset_restore_anon 0
11:28:36 executing program 0:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
r0 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
close_range(r0, r0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = openat$cgroup(r1, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
pipe(&(0x7f0000000200)={<r3=>0xffffffffffffffff})
r4 = socket$inet_udp(0x2, 0x2, 0x0)
close(r4)
bind$inet(r4, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10)
connect$inet(r4, &(0x7f0000001280)={0x2, 0x0, @multicast1}, 0x10)
splice(r3, 0x0, r4, 0x0, 0x5, 0x5)
openat$cgroup_ro(r3, &(0x7f00000000c0)='memory.events\x00', 0x0, 0x0)
r5 = openat$cgroup_int(r2, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r5, &(0x7f0000000080), 0x12)
r6 = socket(0x10, 0x803, 0x0)
sendmsg$TIPC_NL_MON_GET(r6, &(0x7f0000000500)={&(0x7f00000004c0)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000005c0)={0x0, 0x88}, 0x1, 0x0, 0x0, 0x1}, 0x0)
getsockname$packet(r6, &(0x7f0000000100)={0x11, 0x0, <r7=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0xffffffef, &(0x7f0000000300)={&(0x7f0000000340)=ANY=[@ANYBLOB="8400000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="03a39e906193ec0b9361e27828604b7d015742ba1c6796005c0012800b000100697036746e6cc500004c00028006000f0300fc0013000804000000000000000000", @ANYRES32=r7, @ANYBLOB="0400130014000200fe8000000000000000000000000000bb050009002900000008000a00", @ANYRES32=r7, @ANYBLOB], 0x84}}, 0x4000080)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newaddr={0x28, 0x14, 0x400, 0x70bd26, 0x25dfdbfe, {0x2, 0x0, 0x10, 0xfd, r7}, [@IFA_RT_PRIORITY={0x8, 0x9, 0x1}, @IFA_TARGET_NETNSID={0x8, 0xa, 0x3}]}, 0x28}, 0x1, 0x0, 0x0, 0x4000}, 0x8800)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
close_range(r0, r0, 0x0) (async)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) (async)
openat$cgroup(r1, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0) (async)
pipe(&(0x7f0000000200)) (async)
socket$inet_udp(0x2, 0x2, 0x0) (async)
close(r4) (async)
bind$inet(r4, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10) (async)
connect$inet(r4, &(0x7f0000001280)={0x2, 0x0, @multicast1}, 0x10) (async)
splice(r3, 0x0, r4, 0x0, 0x5, 0x5) (async)
openat$cgroup_ro(r3, &(0x7f00000000c0)='memory.events\x00', 0x0, 0x0) (async)
openat$cgroup_int(r2, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0) (async)
write$cgroup_int(r5, &(0x7f0000000080), 0x12) (async)
socket(0x10, 0x803, 0x0) (async)
sendmsg$TIPC_NL_MON_GET(r6, &(0x7f0000000500)={&(0x7f00000004c0)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000005c0)={0x0, 0x88}, 0x1, 0x0, 0x0, 0x1}, 0x0) (async)
getsockname$packet(r6, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) (async)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0xffffffef, &(0x7f0000000300)={&(0x7f0000000340)=ANY=[@ANYBLOB="8400000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="03a39e906193ec0b9361e27828604b7d015742ba1c6796005c0012800b000100697036746e6cc500004c00028006000f0300fc0013000804000000000000000000", @ANYRES32=r7, @ANYBLOB="0400130014000200fe8000000000000000000000000000bb050009002900000008000a00", @ANYRES32=r7, @ANYBLOB], 0x84}}, 0x4000080) (async)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newaddr={0x28, 0x14, 0x400, 0x70bd26, 0x25dfdbfe, {0x2, 0x0, 0x10, 0xfd, r7}, [@IFA_RT_PRIORITY={0x8, 0x9, 0x1}, @IFA_TARGET_NETNSID={0x8, 0xa, 0x3}]}, 0x28}, 0x1, 0x0, 0x0, 0x4000}, 0x8800) (async)

11:28:36 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x4000000, 0x12)

11:28:36 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x0, 0x0, 0x56)
socket$inet6(0xa, 0x80001, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x80000, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0xe000000, 0x12)

11:28:36 executing program 4:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff000000000008000000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b'], 0x50}}, 0x0)

11:28:36 executing program 2:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
socket$inet6(0xa, 0x0, 0x0)
setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x30, 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x0, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x4d, 0x12)

11:28:36 executing program 5:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r1, &(0x7f0000000000), 0x10)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff000000000074000000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b', @ANYRES32], 0x50}}, 0x0)

[ 1000.927412][T13039] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=13038,uid=0
[ 1000.942640][T13039] Memory cgroup out of memory: Killed process 13038 (syz-executor.0) total-vm:52584kB, anon-rss:368kB, file-rss:14336kB, shmem-rss:0kB, UID:0 pgtables:96kB oom_score_adj:1000
[ 1000.960992][   T26] oom_reaper: reaped process 13038 (syz-executor.0), now anon-rss:0kB, file-rss:14336kB, shmem-rss:12kB
11:28:36 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x5000000, 0x12)

11:28:36 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x0, 0x0, 0x56)
socket$inet6(0xa, 0x80001, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x80000, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x10000000, 0x12)

11:28:37 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x0, 0x0, 0x56)
socket$inet6(0xa, 0x80001, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x80000, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x11000000, 0x12)

11:28:37 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x6000000, 0x12)

11:28:37 executing program 4:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff000000000010000000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b'], 0x50}}, 0x0)

11:28:37 executing program 0:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
r0 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
close_range(r0, r0, 0x0) (async)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = openat$cgroup(r1, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0) (async)
pipe(&(0x7f0000000200)={<r3=>0xffffffffffffffff}) (async)
r4 = socket$inet_udp(0x2, 0x2, 0x0)
close(r4) (async)
bind$inet(r4, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10) (async)
connect$inet(r4, &(0x7f0000001280)={0x2, 0x0, @multicast1}, 0x10)
splice(r3, 0x0, r4, 0x0, 0x5, 0x5) (async)
openat$cgroup_ro(r3, &(0x7f00000000c0)='memory.events\x00', 0x0, 0x0) (async)
r5 = openat$cgroup_int(r2, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r5, &(0x7f0000000080), 0x12) (async)
r6 = socket(0x10, 0x803, 0x0)
sendmsg$TIPC_NL_MON_GET(r6, &(0x7f0000000500)={&(0x7f00000004c0)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000005c0)={0x0, 0x88}, 0x1, 0x0, 0x0, 0x1}, 0x0)
getsockname$packet(r6, &(0x7f0000000100)={0x11, 0x0, <r7=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0xffffffef, &(0x7f0000000300)={&(0x7f0000000340)=ANY=[@ANYBLOB="8400000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="03a39e906193ec0b9361e27828604b7d015742ba1c6796005c0012800b000100697036746e6cc500004c00028006000f0300fc0013000804000000000000000000", @ANYRES32=r7, @ANYBLOB="0400130014000200fe8000000000000000000000000000bb050009002900000008000a00", @ANYRES32=r7, @ANYBLOB], 0x84}}, 0x4000080) (async)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@ipv4_newaddr={0x28, 0x14, 0x400, 0x70bd26, 0x25dfdbfe, {0x2, 0x0, 0x10, 0xfd, r7}, [@IFA_RT_PRIORITY={0x8, 0x9, 0x1}, @IFA_TARGET_NETNSID={0x8, 0xa, 0x3}]}, 0x28}, 0x1, 0x0, 0x0, 0x4000}, 0x8800)

11:28:37 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x7000000, 0x12)

11:28:37 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x0, 0x0, 0x56)
socket$inet6(0xa, 0x80001, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x80000, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x12000000, 0x12)

[ 1001.099273][T13047] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1001.109592][T13047] CPU: 1 PID: 13047 Comm: syz-executor.2 Not tainted 5.17.0-rc7-syzkaller-00078-g3bf7edc84a9e-dirty #0
[ 1001.120614][T13047] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1001.130729][T13047] Call Trace:
[ 1001.133998][T13047]  <TASK>
[ 1001.136922][T13047]  dump_stack_lvl+0xd6/0x122
[ 1001.141518][T13047]  dump_stack+0x11/0x1b
[ 1001.145692][T13047]  dump_header+0x98/0x410
[ 1001.150058][T13047]  oom_kill_process+0x18e/0x4a0
[ 1001.154883][T13047]  out_of_memory+0x61d/0x8c0
[ 1001.159458][T13047]  ? _raw_spin_unlock_irqrestore+0x3d/0x60
[ 1001.165336][T13047]  memory_max_write+0x32c/0x3d0
[ 1001.170179][T13047]  ? memory_max_show+0x70/0x70
[ 1001.174971][T13047]  cgroup_file_write+0x161/0x300
[ 1001.179900][T13047]  ? __check_object_size+0x22a/0x2d0
[ 1001.185164][T13047]  ? cgroup_seqfile_stop+0x70/0x70
[ 1001.190248][T13047]  kernfs_fop_write_iter+0x1d3/0x2d0
[ 1001.195567][T13047]  vfs_write+0x7f5/0x950
[ 1001.199796][T13047]  ksys_write+0xd9/0x190
[ 1001.204011][T13047]  __x64_sys_write+0x3e/0x50
[ 1001.208576][T13047]  do_syscall_64+0x44/0xd0
[ 1001.213077][T13047]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1001.218946][T13047] RIP: 0033:0x7f1d3184b049
[ 1001.223337][T13047] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1001.242918][T13047] RSP: 002b:00007f1d309c1168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1001.251312][T13047] RAX: ffffffffffffffda RBX: 00007f1d3195df60 RCX: 00007f1d3184b049
[ 1001.259258][T13047] RDX: 0000000000000012 RSI: 0000000020000080 RDI: 0000000000000006
[ 1001.267203][T13047] RBP: 00007f1d318a508d R08: 0000000000000000 R09: 0000000000000000
[ 1001.275214][T13047] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1001.283170][T13047] R13: 00007ffc96a4069f R14: 00007f1d309c1300 R15: 0000000000022000
[ 1001.291209][T13047]  </TASK>
11:28:37 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x8000000, 0x12)

[ 1001.294261][T13047] memory: usage 184kB, limit 278528kB, failcnt 6398
[ 1001.300872][T13047] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1001.307726][T13047] Memory cgroup stats for /syz0:
[ 1001.313882][T13047] anon 40960
[ 1001.313882][T13047] file 81920
[ 1001.313882][T13047] kernel_stack 0
[ 1001.313882][T13047] pagetables 8192
[ 1001.313882][T13047] percpu 0
[ 1001.313882][T13047] sock 0
[ 1001.313882][T13047] vmalloc 0
[ 1001.313882][T13047] shmem 77824
[ 1001.313882][T13047] file_mapped 77824
[ 1001.313882][T13047] file_dirty 4096
11:28:37 executing program 0:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
sendmsg$AUDIT_DEL_RULE(0xffffffffffffffff, &(0x7f0000000680)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000100)={&(0x7f0000000240)={0x440, 0x3f4, 0x101, 0x70bd26, 0x25dfdbff, {0x3, 0x2, 0x2f, [0x51, 0x1, 0x6def, 0x4a, 0x6, 0x5, 0xffff8000, 0x8080000, 0x99ba, 0x5, 0x858, 0x8, 0x6b, 0x8, 0x6c1, 0x9, 0x9, 0x7, 0x1, 0x8001, 0x6, 0x5, 0x8000, 0x260, 0x401, 0x8, 0x400, 0x3, 0x54ba7c8c, 0x3, 0x38d, 0x1, 0x2d6, 0x3f, 0x1, 0x8, 0x5, 0xffffffff, 0x81, 0x3, 0xacb, 0x2, 0x2, 0x2, 0xfff, 0x100, 0x8, 0x8, 0x761, 0x46f, 0x1ff, 0x2, 0x8, 0x3, 0x7fffffff, 0x0, 0xe459, 0x525, 0x80000001, 0x0, 0x2, 0x0, 0xffff8000, 0x4], [0x8, 0x9, 0x7, 0x2, 0x7fff, 0x4, 0xfffffffd, 0x7ff, 0x3f, 0x8, 0x74, 0xfff, 0x4, 0x800, 0x4, 0x2, 0x0, 0x10, 0x5, 0x101, 0x9, 0x9, 0x4, 0x6, 0x2, 0x7, 0x4, 0x10000, 0x508, 0x1, 0xfff, 0x7fff, 0x5, 0x1, 0x74b, 0x2e2a, 0x80000001, 0x52180, 0x1, 0x8, 0x1, 0x2f4c, 0x2, 0x5, 0x200, 0x80000000, 0xffff, 0x7, 0x3ff, 0x1a2, 0x6, 0x4, 0x200, 0xee7, 0x1, 0xfffffff9, 0x8, 0x0, 0xffffffff, 0x97e678f, 0x8, 0xffffffff, 0x4, 0xfffeffff], [0x3, 0x4, 0xfffffff8, 0x9, 0x349, 0x9, 0x0, 0x6, 0xfffffffc, 0x3, 0x66, 0xffffffff, 0x7fff, 0x1, 0x3fd, 0x2, 0x9, 0x1, 0x1fffc00, 0xb5, 0x9, 0x1, 0x2, 0xf1, 0x9, 0x2, 0xfa, 0x9, 0x1, 0x7, 0x2, 0x1, 0x3, 0x10000, 0x400000, 0x80000001, 0x3, 0x9, 0x4, 0xfffff801, 0x800, 0x7, 0x8, 0xff, 0xd60, 0x5ee7a6a8, 0xfff, 0x6, 0x0, 0xf24, 0x101, 0x9, 0x8, 0xffffffff, 0x7, 0x1, 0x845, 0x3a, 0xad, 0x10000, 0x0, 0xf8000000, 0x8, 0x200], [0x3ff, 0x3, 0x8, 0x6, 0xfb2, 0x0, 0x7, 0x0, 0x80000001, 0x1, 0x5, 0x3, 0x8, 0x3, 0x1ff, 0x0, 0x7fffffff, 0x5, 0x5, 0x4, 0x2, 0x7fffffff, 0x400, 0x0, 0x3ff, 0x5, 0xff, 0x1, 0x0, 0x3, 0x8, 0x7a12, 0x80000001, 0xa4e, 0x7, 0xfff, 0x3, 0x7ff, 0x7f, 0x3f, 0x1, 0x8, 0xf, 0x239b, 0x8, 0x2ee, 0x3, 0x8, 0x3ff, 0x0, 0x1, 0xfdd0, 0x7, 0xc1f, 0x80, 0x7ff, 0x422a46f6, 0x1ff, 0x1739c2ec, 0x0, 0x100, 0x101, 0x0, 0x6cc], 0x1e, ['\x00', '\x00', 'syz0\x00', '+\'\\\x00', 'memory.max\x00', '&[\x00', 'syz0\x00']}, ["", "", "", "", "", "", ""]}, 0x440}, 0x1, 0x0, 0x0, 0x40}, 0x40240d0)
r2 = syz_open_dev$vcsa(&(0x7f00000006c0), 0x4, 0x405c2)
mkdirat$cgroup(r2, &(0x7f0000000700)='syz1\x00', 0x1ff)
r3 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r3, &(0x7f0000000080), 0x12)

[ 1001.313882][T13047] file_writeback 0
[ 1001.313882][T13047] swapcached 0
[ 1001.313882][T13047] inactive_anon 57344
[ 1001.313882][T13047] active_anon 61440
[ 1001.313882][T13047] inactive_file 0
[ 1001.313882][T13047] active_file 4096
[ 1001.313882][T13047] unevictable 0
[ 1001.313882][T13047] slab_reclaimable 15496
[ 1001.313882][T13047] slab_unreclaimable 27592
[ 1001.313882][T13047] slab 43088
[ 1001.313882][T13047] workingset_refault_anon 0
[ 1001.313882][T13047] workingset_refault_file 1
[ 1001.313882][T13047] workingset_activate_anon 0
[ 1001.313882][T13047] workingset_activate_file 0
[ 1001.313882][T13047] workingset_restore_anon 0
[ 1001.408581][T13047] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=13005,uid=0
[ 1001.423844][T13047] Memory cgroup out of memory: Killed process 13005 (syz-executor.0) total-vm:48480kB, anon-rss:380kB, file-rss:15232kB, shmem-rss:64kB, UID:0 pgtables:84kB oom_score_adj:0
[ 1001.441658][   T26] oom_reaper: reaped process 13005 (syz-executor.0), now anon-rss:0kB, file-rss:14336kB, shmem-rss:64kB
[ 1001.452907][T13047] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1001.463090][T13047] CPU: 1 PID: 13047 Comm: syz-executor.2 Not tainted 5.17.0-rc7-syzkaller-00078-g3bf7edc84a9e-dirty #0
[ 1001.474143][T13047] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1001.484187][T13047] Call Trace:
[ 1001.487443][T13047]  <TASK>
[ 1001.490353][T13047]  dump_stack_lvl+0xd6/0x122
[ 1001.494982][T13047]  dump_stack+0x11/0x1b
[ 1001.499150][T13047]  dump_header+0x98/0x410
[ 1001.503460][T13047]  oom_kill_process+0x18e/0x4a0
[ 1001.508336][T13047]  out_of_memory+0x61d/0x8c0
[ 1001.512918][T13047]  memory_max_write+0x32c/0x3d0
[ 1001.517766][T13047]  ? memory_max_show+0x70/0x70
[ 1001.522615][T13047]  cgroup_file_write+0x161/0x300
[ 1001.527534][T13047]  ? __check_object_size+0x22a/0x2d0
[ 1001.532796][T13047]  ? cgroup_seqfile_stop+0x70/0x70
[ 1001.537901][T13047]  kernfs_fop_write_iter+0x1d3/0x2d0
[ 1001.543163][T13047]  vfs_write+0x7f5/0x950
[ 1001.547384][T13047]  ksys_write+0xd9/0x190
[ 1001.551603][T13047]  __x64_sys_write+0x3e/0x50
[ 1001.556227][T13047]  do_syscall_64+0x44/0xd0
[ 1001.560623][T13047]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1001.566506][T13047] RIP: 0033:0x7f1d3184b049
[ 1001.570896][T13047] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1001.590517][T13047] RSP: 002b:00007f1d309c1168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1001.598905][T13047] RAX: ffffffffffffffda RBX: 00007f1d3195df60 RCX: 00007f1d3184b049
[ 1001.606858][T13047] RDX: 0000000000000012 RSI: 0000000020000080 RDI: 0000000000000006
[ 1001.614994][T13047] RBP: 00007f1d318a508d R08: 0000000000000000 R09: 0000000000000000
[ 1001.623013][T13047] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1001.630961][T13047] R13: 00007ffc96a4069f R14: 00007f1d309c1300 R15: 0000000000022000
[ 1001.638999][T13047]  </TASK>
[ 1001.642130][T13047] memory: usage 236kB, limit 0kB, failcnt 6398
[ 1001.648296][T13047] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1001.655137][T13047] Memory cgroup stats for /syz0:
[ 1001.656146][T13047] anon 0
[ 1001.656146][T13047] file 81920
[ 1001.656146][T13047] kernel_stack 16384
[ 1001.656146][T13047] pagetables 0
[ 1001.656146][T13047] percpu 0
[ 1001.656146][T13047] sock 0
[ 1001.656146][T13047] vmalloc 0
[ 1001.656146][T13047] shmem 77824
[ 1001.656146][T13047] file_mapped 77824
[ 1001.656146][T13047] file_dirty 4096
[ 1001.656146][T13047] file_writeback 0
[ 1001.656146][T13047] swapcached 0
[ 1001.656146][T13047] inactive_anon 16384
[ 1001.656146][T13047] active_anon 61440
[ 1001.656146][T13047] inactive_file 0
[ 1001.656146][T13047] active_file 4096
[ 1001.656146][T13047] unevictable 0
[ 1001.656146][T13047] slab_reclaimable 34048
[ 1001.656146][T13047] slab_unreclaimable 60128
[ 1001.656146][T13047] slab 94176
[ 1001.656146][T13047] workingset_refault_anon 0
[ 1001.656146][T13047] workingset_refault_file 1
[ 1001.656146][T13047] workingset_activate_anon 0
[ 1001.656146][T13047] workingset_activate_file 0
[ 1001.656146][T13047] workingset_restore_anon 0
[ 1001.751068][T13047] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=13100,uid=0
[ 1001.766333][T13047] Memory cgroup out of memory: OOM victim 13100 (syz-executor.0) is already exiting. Skip killing the task
11:28:37 executing program 2:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
socket$inet6(0xa, 0x0, 0x0)
setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x30, 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x0, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x50, 0x12)

11:28:37 executing program 5:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r1, &(0x7f0000000000), 0x10)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff00000000007a000000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b', @ANYRES32], 0x50}}, 0x0)

11:28:37 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x0, 0x0, 0x56)
socket$inet6(0xa, 0x80001, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x80000, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x1c000000, 0x12)

11:28:37 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x9000000, 0x12)

11:28:37 executing program 4:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff000000000000010000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b'], 0x50}}, 0x0)

11:28:37 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0xa000000, 0x12)

11:28:37 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x0, 0x0, 0x56)
socket$inet6(0xa, 0x80001, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x80000, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x20000000, 0x12)

[ 1001.893606][T13105] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1001.903844][T13105] CPU: 1 PID: 13105 Comm: syz-executor.2 Not tainted 5.17.0-rc7-syzkaller-00078-g3bf7edc84a9e-dirty #0
[ 1001.914864][T13105] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1001.925031][T13105] Call Trace:
[ 1001.928295][T13105]  <TASK>
[ 1001.931297][T13105]  dump_stack_lvl+0xd6/0x122
[ 1001.935935][T13105]  dump_stack+0x11/0x1b
[ 1001.940080][T13105]  dump_header+0x98/0x410
[ 1001.944429][T13105]  out_of_memory+0x65c/0x8c0
[ 1001.948997][T13105]  ? _raw_spin_unlock_irqrestore+0x3d/0x60
[ 1001.954782][T13105]  memory_max_write+0x32c/0x3d0
[ 1001.959613][T13105]  ? memory_max_show+0x70/0x70
[ 1001.964426][T13105]  cgroup_file_write+0x161/0x300
[ 1001.969342][T13105]  ? __check_object_size+0x22a/0x2d0
[ 1001.974723][T13105]  ? cgroup_seqfile_stop+0x70/0x70
[ 1001.979832][T13105]  kernfs_fop_write_iter+0x1d3/0x2d0
[ 1001.985097][T13105]  vfs_write+0x7f5/0x950
[ 1001.989372][T13105]  ksys_write+0xd9/0x190
[ 1001.993624][T13105]  __x64_sys_write+0x3e/0x50
[ 1001.998199][T13105]  do_syscall_64+0x44/0xd0
[ 1002.002591][T13105]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1002.008461][T13105] RIP: 0033:0x7f1d3184b049
[ 1002.012855][T13105] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1002.032446][T13105] RSP: 002b:00007f1d309c1168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1002.040921][T13105] RAX: ffffffffffffffda RBX: 00007f1d3195df60 RCX: 00007f1d3184b049
[ 1002.048919][T13105] RDX: 0000000000000012 RSI: 0000000020000080 RDI: 0000000000000006
[ 1002.056865][T13105] RBP: 00007f1d318a508d R08: 0000000000000000 R09: 0000000000000000
[ 1002.064814][T13105] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1002.072768][T13105] R13: 00007ffc96a4069f R14: 00007f1d309c1300 R15: 0000000000022000
[ 1002.080721][T13105]  </TASK>
[ 1002.083781][T13105] memory: usage 140kB, limit 458752kB, failcnt 6398
11:28:38 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0xb000000, 0x12)

11:28:38 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x0, 0x0, 0x56)
socket$inet6(0xa, 0x80001, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x80000, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x25000000, 0x12)

[ 1002.090431][T13105] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1002.097357][T13105] Memory cgroup stats for /syz0:
[ 1002.099313][T13105] anon 0
[ 1002.099313][T13105] file 81920
[ 1002.099313][T13105] kernel_stack 16384
[ 1002.099313][T13105] pagetables 0
[ 1002.099313][T13105] percpu 0
[ 1002.099313][T13105] sock 0
[ 1002.099313][T13105] vmalloc 0
[ 1002.099313][T13105] shmem 77824
[ 1002.099313][T13105] file_mapped 77824
[ 1002.099313][T13105] file_dirty 4096
[ 1002.099313][T13105] file_writeback 0
[ 1002.099313][T13105] swapcached 0
[ 1002.099313][T13105] inactive_anon 16384
[ 1002.099313][T13105] active_anon 61440
[ 1002.099313][T13105] inactive_file 0
[ 1002.099313][T13105] active_file 4096
[ 1002.099313][T13105] unevictable 0
[ 1002.099313][T13105] slab_reclaimable 10888
[ 1002.099313][T13105] slab_unreclaimable 30040
[ 1002.099313][T13105] slab 40928
[ 1002.099313][T13105] workingset_refault_anon 0
[ 1002.099313][T13105] workingset_refault_file 1
[ 1002.099313][T13105] workingset_activate_anon 0
[ 1002.099313][T13105] workingset_activate_file 0
[ 1002.099313][T13105] workingset_restore_anon 0
11:28:38 executing program 2:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
socket$inet6(0xa, 0x0, 0x0)
setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x30, 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x0, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x54, 0x12)

11:28:38 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0xc000000, 0x12)

[ 1002.193782][T13105] Out of memory and no killable processes...
11:28:38 executing program 0:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
sendmsg$AUDIT_DEL_RULE(0xffffffffffffffff, &(0x7f0000000680)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000100)={&(0x7f0000000240)={0x440, 0x3f4, 0x101, 0x70bd26, 0x25dfdbff, {0x3, 0x2, 0x2f, [0x51, 0x1, 0x6def, 0x4a, 0x6, 0x5, 0xffff8000, 0x8080000, 0x99ba, 0x5, 0x858, 0x8, 0x6b, 0x8, 0x6c1, 0x9, 0x9, 0x7, 0x1, 0x8001, 0x6, 0x5, 0x8000, 0x260, 0x401, 0x8, 0x400, 0x3, 0x54ba7c8c, 0x3, 0x38d, 0x1, 0x2d6, 0x3f, 0x1, 0x8, 0x5, 0xffffffff, 0x81, 0x3, 0xacb, 0x2, 0x2, 0x2, 0xfff, 0x100, 0x8, 0x8, 0x761, 0x46f, 0x1ff, 0x2, 0x8, 0x3, 0x7fffffff, 0x0, 0xe459, 0x525, 0x80000001, 0x0, 0x2, 0x0, 0xffff8000, 0x4], [0x8, 0x9, 0x7, 0x2, 0x7fff, 0x4, 0xfffffffd, 0x7ff, 0x3f, 0x8, 0x74, 0xfff, 0x4, 0x800, 0x4, 0x2, 0x0, 0x10, 0x5, 0x101, 0x9, 0x9, 0x4, 0x6, 0x2, 0x7, 0x4, 0x10000, 0x508, 0x1, 0xfff, 0x7fff, 0x5, 0x1, 0x74b, 0x2e2a, 0x80000001, 0x52180, 0x1, 0x8, 0x1, 0x2f4c, 0x2, 0x5, 0x200, 0x80000000, 0xffff, 0x7, 0x3ff, 0x1a2, 0x6, 0x4, 0x200, 0xee7, 0x1, 0xfffffff9, 0x8, 0x0, 0xffffffff, 0x97e678f, 0x8, 0xffffffff, 0x4, 0xfffeffff], [0x3, 0x4, 0xfffffff8, 0x9, 0x349, 0x9, 0x0, 0x6, 0xfffffffc, 0x3, 0x66, 0xffffffff, 0x7fff, 0x1, 0x3fd, 0x2, 0x9, 0x1, 0x1fffc00, 0xb5, 0x9, 0x1, 0x2, 0xf1, 0x9, 0x2, 0xfa, 0x9, 0x1, 0x7, 0x2, 0x1, 0x3, 0x10000, 0x400000, 0x80000001, 0x3, 0x9, 0x4, 0xfffff801, 0x800, 0x7, 0x8, 0xff, 0xd60, 0x5ee7a6a8, 0xfff, 0x6, 0x0, 0xf24, 0x101, 0x9, 0x8, 0xffffffff, 0x7, 0x1, 0x845, 0x3a, 0xad, 0x10000, 0x0, 0xf8000000, 0x8, 0x200], [0x3ff, 0x3, 0x8, 0x6, 0xfb2, 0x0, 0x7, 0x0, 0x80000001, 0x1, 0x5, 0x3, 0x8, 0x3, 0x1ff, 0x0, 0x7fffffff, 0x5, 0x5, 0x4, 0x2, 0x7fffffff, 0x400, 0x0, 0x3ff, 0x5, 0xff, 0x1, 0x0, 0x3, 0x8, 0x7a12, 0x80000001, 0xa4e, 0x7, 0xfff, 0x3, 0x7ff, 0x7f, 0x3f, 0x1, 0x8, 0xf, 0x239b, 0x8, 0x2ee, 0x3, 0x8, 0x3ff, 0x0, 0x1, 0xfdd0, 0x7, 0xc1f, 0x80, 0x7ff, 0x422a46f6, 0x1ff, 0x1739c2ec, 0x0, 0x100, 0x101, 0x0, 0x6cc], 0x1e, ['\x00', '\x00', 'syz0\x00', '+\'\\\x00', 'memory.max\x00', '&[\x00', 'syz0\x00']}, ["", "", "", "", "", "", ""]}, 0x440}, 0x1, 0x0, 0x0, 0x40}, 0x40240d0) (async)
r2 = syz_open_dev$vcsa(&(0x7f00000006c0), 0x4, 0x405c2)
mkdirat$cgroup(r2, &(0x7f0000000700)='syz1\x00', 0x1ff) (async)
r3 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r3, &(0x7f0000000080), 0x12)

11:28:38 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0xd000000, 0x12)

11:28:38 executing program 5:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r1, &(0x7f0000000000), 0x10)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff00000000017e000000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b', @ANYRES32], 0x50}}, 0x0)

11:28:38 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x0, 0x0, 0x56)
socket$inet6(0xa, 0x80001, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x80000, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x28000000, 0x12)

11:28:38 executing program 0:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) (async)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
sendmsg$AUDIT_DEL_RULE(0xffffffffffffffff, &(0x7f0000000680)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000100)={&(0x7f0000000240)={0x440, 0x3f4, 0x101, 0x70bd26, 0x25dfdbff, {0x3, 0x2, 0x2f, [0x51, 0x1, 0x6def, 0x4a, 0x6, 0x5, 0xffff8000, 0x8080000, 0x99ba, 0x5, 0x858, 0x8, 0x6b, 0x8, 0x6c1, 0x9, 0x9, 0x7, 0x1, 0x8001, 0x6, 0x5, 0x8000, 0x260, 0x401, 0x8, 0x400, 0x3, 0x54ba7c8c, 0x3, 0x38d, 0x1, 0x2d6, 0x3f, 0x1, 0x8, 0x5, 0xffffffff, 0x81, 0x3, 0xacb, 0x2, 0x2, 0x2, 0xfff, 0x100, 0x8, 0x8, 0x761, 0x46f, 0x1ff, 0x2, 0x8, 0x3, 0x7fffffff, 0x0, 0xe459, 0x525, 0x80000001, 0x0, 0x2, 0x0, 0xffff8000, 0x4], [0x8, 0x9, 0x7, 0x2, 0x7fff, 0x4, 0xfffffffd, 0x7ff, 0x3f, 0x8, 0x74, 0xfff, 0x4, 0x800, 0x4, 0x2, 0x0, 0x10, 0x5, 0x101, 0x9, 0x9, 0x4, 0x6, 0x2, 0x7, 0x4, 0x10000, 0x508, 0x1, 0xfff, 0x7fff, 0x5, 0x1, 0x74b, 0x2e2a, 0x80000001, 0x52180, 0x1, 0x8, 0x1, 0x2f4c, 0x2, 0x5, 0x200, 0x80000000, 0xffff, 0x7, 0x3ff, 0x1a2, 0x6, 0x4, 0x200, 0xee7, 0x1, 0xfffffff9, 0x8, 0x0, 0xffffffff, 0x97e678f, 0x8, 0xffffffff, 0x4, 0xfffeffff], [0x3, 0x4, 0xfffffff8, 0x9, 0x349, 0x9, 0x0, 0x6, 0xfffffffc, 0x3, 0x66, 0xffffffff, 0x7fff, 0x1, 0x3fd, 0x2, 0x9, 0x1, 0x1fffc00, 0xb5, 0x9, 0x1, 0x2, 0xf1, 0x9, 0x2, 0xfa, 0x9, 0x1, 0x7, 0x2, 0x1, 0x3, 0x10000, 0x400000, 0x80000001, 0x3, 0x9, 0x4, 0xfffff801, 0x800, 0x7, 0x8, 0xff, 0xd60, 0x5ee7a6a8, 0xfff, 0x6, 0x0, 0xf24, 0x101, 0x9, 0x8, 0xffffffff, 0x7, 0x1, 0x845, 0x3a, 0xad, 0x10000, 0x0, 0xf8000000, 0x8, 0x200], [0x3ff, 0x3, 0x8, 0x6, 0xfb2, 0x0, 0x7, 0x0, 0x80000001, 0x1, 0x5, 0x3, 0x8, 0x3, 0x1ff, 0x0, 0x7fffffff, 0x5, 0x5, 0x4, 0x2, 0x7fffffff, 0x400, 0x0, 0x3ff, 0x5, 0xff, 0x1, 0x0, 0x3, 0x8, 0x7a12, 0x80000001, 0xa4e, 0x7, 0xfff, 0x3, 0x7ff, 0x7f, 0x3f, 0x1, 0x8, 0xf, 0x239b, 0x8, 0x2ee, 0x3, 0x8, 0x3ff, 0x0, 0x1, 0xfdd0, 0x7, 0xc1f, 0x80, 0x7ff, 0x422a46f6, 0x1ff, 0x1739c2ec, 0x0, 0x100, 0x101, 0x0, 0x6cc], 0x1e, ['\x00', '\x00', 'syz0\x00', '+\'\\\x00', 'memory.max\x00', '&[\x00', 'syz0\x00']}, ["", "", "", "", "", "", ""]}, 0x440}, 0x1, 0x0, 0x0, 0x40}, 0x40240d0) (async)
r2 = syz_open_dev$vcsa(&(0x7f00000006c0), 0x4, 0x405c2)
mkdirat$cgroup(r2, &(0x7f0000000700)='syz1\x00', 0x1ff)
r3 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r3, &(0x7f0000000080), 0x12)

11:28:38 executing program 4:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff000000000000020000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b'], 0x50}}, 0x0)

11:28:38 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0xe000000, 0x12)

[ 1002.300428][T13129] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1002.310712][T13129] CPU: 1 PID: 13129 Comm: syz-executor.2 Not tainted 5.17.0-rc7-syzkaller-00078-g3bf7edc84a9e-dirty #0
[ 1002.321813][T13129] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1002.331869][T13129] Call Trace:
[ 1002.335141][T13129]  <TASK>
[ 1002.338062][T13129]  dump_stack_lvl+0xd6/0x122
[ 1002.342650][T13129]  dump_stack+0x11/0x1b
[ 1002.346832][T13129]  dump_header+0x98/0x410
[ 1002.351157][T13129]  out_of_memory+0x65c/0x8c0
[ 1002.355744][T13129]  ? _raw_spin_unlock_irqrestore+0x3d/0x60
[ 1002.361552][T13129]  memory_max_write+0x32c/0x3d0
[ 1002.366480][T13129]  ? memory_max_show+0x70/0x70
[ 1002.371248][T13129]  cgroup_file_write+0x161/0x300
[ 1002.376183][T13129]  ? __check_object_size+0x22a/0x2d0
[ 1002.381531][T13129]  ? cgroup_seqfile_stop+0x70/0x70
[ 1002.386694][T13129]  kernfs_fop_write_iter+0x1d3/0x2d0
[ 1002.391983][T13129]  vfs_write+0x7f5/0x950
[ 1002.396249][T13129]  ksys_write+0xd9/0x190
[ 1002.400498][T13129]  __x64_sys_write+0x3e/0x50
[ 1002.405150][T13129]  do_syscall_64+0x44/0xd0
[ 1002.409662][T13129]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1002.415680][T13129] RIP: 0033:0x7f1d3184b049
[ 1002.420134][T13129] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1002.439800][T13129] RSP: 002b:00007f1d309c1168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1002.448217][T13129] RAX: ffffffffffffffda RBX: 00007f1d3195df60 RCX: 00007f1d3184b049
[ 1002.456186][T13129] RDX: 0000000000000012 RSI: 0000000020000080 RDI: 0000000000000006
[ 1002.464154][T13129] RBP: 00007f1d318a508d R08: 0000000000000000 R09: 0000000000000000
[ 1002.472160][T13129] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1002.480127][T13129] R13: 00007ffc96a4069f R14: 00007f1d309c1300 R15: 0000000000022000
[ 1002.488121][T13129]  </TASK>
[ 1002.491460][T13129] memory: usage 108kB, limit 0kB, failcnt 6398
11:28:38 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x10000000, 0x12)

[ 1002.497626][T13129] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1002.504538][T13129] Memory cgroup stats for /syz0:
[ 1002.517960][T13129] anon 0
[ 1002.517960][T13129] file 81920
[ 1002.517960][T13129] kernel_stack 0
[ 1002.517960][T13129] pagetables 0
[ 1002.517960][T13129] percpu 0
[ 1002.517960][T13129] sock 0
[ 1002.517960][T13129] vmalloc 0
[ 1002.517960][T13129] shmem 77824
[ 1002.517960][T13129] file_mapped 77824
[ 1002.517960][T13129] file_dirty 4096
[ 1002.517960][T13129] file_writeback 0
[ 1002.517960][T13129] swapcached 0
[ 1002.517960][T13129] inactive_anon 16384
[ 1002.517960][T13129] active_anon 61440
[ 1002.517960][T13129] inactive_file 0
[ 1002.517960][T13129] active_file 4096
[ 1002.517960][T13129] unevictable 0
[ 1002.517960][T13129] slab_reclaimable 6440
[ 1002.517960][T13129] slab_unreclaimable 16136
[ 1002.517960][T13129] slab 22576
[ 1002.517960][T13129] workingset_refault_anon 0
[ 1002.517960][T13129] workingset_refault_file 1
11:28:38 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x0, 0x0, 0x56)
socket$inet6(0xa, 0x80001, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x80000, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x45000000, 0x12)

11:28:38 executing program 2:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
socket$inet6(0xa, 0x0, 0x0)
setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x30, 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x0, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x65, 0x12)

[ 1002.517960][T13129] workingset_activate_anon 0
[ 1002.517960][T13129] workingset_activate_file 0
[ 1002.517960][T13129] workingset_restore_anon 0
[ 1002.612119][T13129] Out of memory and no killable processes...
11:28:38 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x11000000, 0x12)

11:28:38 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x0, 0x0, 0x56)
socket$inet6(0xa, 0x80001, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x80000, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x47000000, 0x12)

11:28:38 executing program 4:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff000000000000030000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b'], 0x50}}, 0x0)

11:28:38 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x0, 0x0, 0x56)
socket$inet6(0xa, 0x80001, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x80000, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x48000000, 0x12)

11:28:38 executing program 5:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r1, &(0x7f0000000000), 0x10)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff000000000081000000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b', @ANYRES32], 0x50}}, 0x0)

11:28:38 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x12000000, 0x12)

[ 1003.159563][T13062] device hsr_slave_0 left promiscuous mode
[ 1003.165638][T13062] device hsr_slave_1 left promiscuous mode
[ 1003.172673][T13062] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1003.180088][T13062] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1003.188822][T13062] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1003.196244][T13062] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1003.203940][T13062] device bridge_slave_1 left promiscuous mode
[ 1003.210178][T13062] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1003.219295][T13062] device bridge_slave_0 left promiscuous mode
[ 1003.225449][T13062] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1003.235296][T13062] device veth1_macvtap left promiscuous mode
[ 1003.241316][T13062] device veth0_macvtap left promiscuous mode
[ 1003.247330][T13062] device veth1_vlan left promiscuous mode
[ 1003.253051][T13062] device veth0_vlan left promiscuous mode
[ 1003.369919][T13062] team0 (unregistering): Port device team_slave_1 removed
[ 1003.380392][T13062] team0 (unregistering): Port device team_slave_0 removed
[ 1003.391632][T13062] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1003.403242][T13062] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1003.439736][T13062] bond0 (unregistering): Released all slaves
[ 1004.136039][T13174] chnl_net:caif_netlink_parms(): no params data found
[ 1004.165914][T13174] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1004.173043][T13174] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1004.180811][T13174] device bridge_slave_0 entered promiscuous mode
[ 1004.189867][T13174] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1004.196909][T13174] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1004.204483][T13174] device bridge_slave_1 entered promiscuous mode
[ 1004.220250][T13174] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1004.230236][T13174] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1004.247843][T13174] team0: Port device team_slave_0 added
[ 1004.254071][T13174] team0: Port device team_slave_1 added
[ 1004.268486][T13174] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1004.275416][T13174] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1004.301302][T13174] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1004.312384][T13174] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1004.319336][T13174] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1004.345297][T13174] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1004.366808][T13174] device hsr_slave_0 entered promiscuous mode
[ 1004.373139][T13174] device hsr_slave_1 entered promiscuous mode
[ 1004.420557][T13174] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1004.427680][T13174] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1004.434878][T13174] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1004.441953][T13174] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1004.467123][T13174] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1004.477316][ T1928] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1004.485361][ T1928] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1004.493044][ T1928] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1004.504930][T13174] 8021q: adding VLAN 0 to HW filter on device team0
[ 1004.513852][ T6849] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 1004.522312][ T6849] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1004.530624][ T6849] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1004.537682][ T6849] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1004.554756][T13174] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 1004.565087][T13174] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 1004.577246][ T6849] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 1004.585702][ T6849] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1004.593979][ T6849] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1004.601027][ T6849] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1004.609019][ T6849] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 1004.617640][ T6849] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 1004.626429][ T6849] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 1004.634863][ T6849] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 1004.643373][ T6849] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 1004.651744][ T6849] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 1004.660123][ T6849] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 1004.668327][ T6849] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1004.676693][ T6849] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 1004.684918][ T6849] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1004.699574][T13174] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1004.707282][ T6849] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 1004.715519][ T6849] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 1004.723236][ T6849] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 1004.730831][ T6849] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 1004.797692][T23294] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 1004.806308][T23294] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1004.842697][T13174] device veth0_vlan entered promiscuous mode
[ 1004.849102][ T6846] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 1004.857513][ T6846] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1004.866407][ T6846] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1004.874151][ T6846] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1004.883916][T13174] device veth1_vlan entered promiscuous mode
[ 1004.895619][T23294] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 1004.903607][T23294] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 1004.911367][T23294] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 1004.919992][T23294] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1004.929491][T13174] device veth0_macvtap entered promiscuous mode
[ 1004.937274][T13174] device veth1_macvtap entered promiscuous mode
[ 1004.947793][T13174] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 1004.958302][T13174] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1004.968190][T13174] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 1004.978598][T13174] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1004.988388][T13174] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 1004.998791][T13174] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1005.008585][T13174] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 1005.018992][T13174] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1005.028803][T13174] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 1005.039206][T13174] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1005.050047][T13174] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1005.057670][ T6849] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 1005.065739][ T6849] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 1005.073951][ T6849] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 1005.082430][ T6849] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1005.092056][T13174] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 1005.102514][T13174] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1005.112380][T13174] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 1005.122821][T13174] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1005.132617][T13174] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 1005.143038][T13174] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1005.152833][T13174] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 1005.163273][T13174] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1005.173089][T13174] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 1005.183492][T13174] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
11:28:41 executing program 0:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_ADAPTATION_LAYER(r0, 0x84, 0x7, &(0x7f0000000040)={0x10b802b6}, 0x4)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
connect$inet6(r0, &(0x7f00000001c0)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
close_range(r0, r0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = openat$cgroup(r1, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r3 = openat$cgroup_int(r2, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r3, &(0x7f0000000080), 0x12)

[ 1005.194378][T13174] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1005.202569][ T3625] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 1005.211252][ T3625] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
11:28:41 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x0, 0x0, 0x56)
socket$inet6(0xa, 0x80001, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x80000, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x4b000000, 0x12)

11:28:41 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x1a000000, 0x12)

11:28:41 executing program 4:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff000000000000040000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b'], 0x50}}, 0x0)

11:28:41 executing program 5:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r1, &(0x7f0000000000), 0x10)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff0000ffffff81000000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b', @ANYRES32], 0x50}}, 0x0)

11:28:41 executing program 2:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
socket$inet6(0xa, 0x0, 0x0)
setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x30, 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x0, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x67, 0x12)

11:28:41 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x20000000, 0x12)

11:28:41 executing program 0:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_ADAPTATION_LAYER(r0, 0x84, 0x7, &(0x7f0000000040)={0x10b802b6}, 0x4)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
connect$inet6(r0, &(0x7f00000001c0)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
close_range(r0, r0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = openat$cgroup(r1, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r3 = openat$cgroup_int(r2, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r3, &(0x7f0000000080), 0x12)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
socket$inet6_sctp(0xa, 0x1, 0x84) (async)
setsockopt$inet_sctp6_SCTP_ADAPTATION_LAYER(r0, 0x84, 0x7, &(0x7f0000000040)={0x10b802b6}, 0x4) (async)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c) (async)
connect$inet6(r0, &(0x7f00000001c0)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) (async)
close_range(r0, r0, 0x0) (async)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) (async)
openat$cgroup(r1, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0) (async)
openat$cgroup_int(r2, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0) (async)
write$cgroup_int(r3, &(0x7f0000000080), 0x12) (async)

11:28:41 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x0, 0x0, 0x56)
socket$inet6(0xa, 0x80001, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x80000, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x4c000000, 0x12)

11:28:41 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x25000000, 0x12)

11:28:41 executing program 0:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async, rerun: 64)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async, rerun: 64)
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_ADAPTATION_LAYER(r0, 0x84, 0x7, &(0x7f0000000040)={0x10b802b6}, 0x4)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c) (async)
connect$inet6(r0, &(0x7f00000001c0)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
close_range(r0, r0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = openat$cgroup(r1, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r3 = openat$cgroup_int(r2, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r3, &(0x7f0000000080), 0x12)

11:28:41 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x0, 0x0, 0x56)
socket$inet6(0xa, 0x80001, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x80000, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x4d000000, 0x12)

11:28:41 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x28000000, 0x12)

[ 1005.340159][T13232] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1005.350437][T13232] CPU: 1 PID: 13232 Comm: syz-executor.2 Not tainted 5.17.0-rc7-syzkaller-00078-g3bf7edc84a9e-dirty #0
[ 1005.361457][T13232] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1005.371516][T13232] Call Trace:
[ 1005.374790][T13232]  <TASK>
[ 1005.377718][T13232]  dump_stack_lvl+0xd6/0x122
[ 1005.382296][T13232]  dump_stack+0x11/0x1b
[ 1005.386485][T13232]  dump_header+0x98/0x410
[ 1005.390793][T13232]  oom_kill_process+0x18e/0x4a0
[ 1005.395624][T13232]  out_of_memory+0x61d/0x8c0
[ 1005.400190][T13232]  memory_max_write+0x32c/0x3d0
[ 1005.405073][T13232]  ? memory_max_show+0x70/0x70
[ 1005.409856][T13232]  cgroup_file_write+0x161/0x300
[ 1005.414773][T13232]  ? __check_object_size+0x22a/0x2d0
[ 1005.420039][T13232]  ? cgroup_seqfile_stop+0x70/0x70
[ 1005.425124][T13232]  kernfs_fop_write_iter+0x1d3/0x2d0
[ 1005.430461][T13232]  vfs_write+0x7f5/0x950
[ 1005.434766][T13232]  ksys_write+0xd9/0x190
[ 1005.438990][T13232]  __x64_sys_write+0x3e/0x50
[ 1005.443569][T13232]  do_syscall_64+0x44/0xd0
[ 1005.447965][T13232]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1005.453854][T13232] RIP: 0033:0x7f1d3184b049
[ 1005.458251][T13232] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1005.477858][T13232] RSP: 002b:00007f1d309a0168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1005.486296][T13232] RAX: ffffffffffffffda RBX: 00007f1d3195e030 RCX: 00007f1d3184b049
[ 1005.494349][T13232] RDX: 0000000000000012 RSI: 0000000020000080 RDI: 0000000000000006
[ 1005.502335][T13232] RBP: 00007f1d318a508d R08: 0000000000000000 R09: 0000000000000000
[ 1005.510293][T13232] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1005.518262][T13232] R13: 00007ffc96a4069f R14: 00007f1d309a0300 R15: 0000000000022000
[ 1005.526251][T13232]  </TASK>
[ 1005.529385][T13232] memory: usage 252kB, limit 606208kB, failcnt 6398
11:28:41 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x0, 0x0, 0x56)
socket$inet6(0xa, 0x80001, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x80000, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x50000000, 0x12)

[ 1005.535969][T13232] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1005.542831][T13232] Memory cgroup stats for /syz0:
[ 1005.544727][T13232] anon 40960
[ 1005.544727][T13232] file 81920
[ 1005.544727][T13232] kernel_stack 0
[ 1005.544727][T13232] pagetables 8192
[ 1005.544727][T13232] percpu 0
[ 1005.544727][T13232] sock 0
[ 1005.544727][T13232] vmalloc 0
[ 1005.544727][T13232] shmem 77824
[ 1005.544727][T13232] file_mapped 77824
[ 1005.544727][T13232] file_dirty 4096
[ 1005.544727][T13232] file_writeback 0
[ 1005.544727][T13232] swapcached 0
11:28:41 executing program 0:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
r0 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
accept(r0, &(0x7f00000000c0)=@rxrpc=@in6={0x21, 0x0, 0x2, 0x1c, {0xa, 0x0, 0x0, @private1}}, &(0x7f0000000240)=0x80)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = openat$cgroup(r1, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r3 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_ADAPTATION_LAYER(r3, 0x84, 0x7, &(0x7f0000000040)={0x10b802b6}, 0x4)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r3, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
connect$inet6(r3, &(0x7f00000001c0)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendmsg(r3, &(0x7f0000000600)={&(0x7f0000000300)=@qipcrtr={0x2a, 0xffffffff, 0x1}, 0x80, &(0x7f0000000500)=[{&(0x7f0000000380)="a94bbf95616139360bd29ee9dbba7f126b12d26ac74c2c59ebd59a42635fb4ab1d13ef9e72390ec6507cb642f005e6b0d725d99913df11f8b6f8d91bbc14de1e693a62dc6c667a0210345a55c55e3eff3c7d1cb21339de5abc19a93ab07795a8c9c115402a8ca1e9225658ae28521661155c7664e5cadbf1826402ff300e986ae8e2b27e382b50654d3dc88ffecf48abb6ded368782799f1ca9a97e83279a2dc87ae23edbba5ea070a5f7c616b0331c250", 0xb1}, {&(0x7f0000000440)="8d08fe2cae0c4190ec48d679e31667196b6a77e4667a510bf0ae334e4ce35e5bfc2045b5152922f2646378e5bdf1426341bef021859200c0a0ef7054c7a53838e9ee5b3149cc577415de6ddc18939b273f056a98c7874bafefa0bb2f237153ce6072cf4b2d362c2d1aca1f4507d631d0a2dce95aaf49e6f6f83d8c05578ce1ce0dd80b607161635e8e2ebb22d4a44eb1155bd80b71fd0cfd6b6f623d90eae2e20089", 0xa2}], 0x2, &(0x7f0000000540)=[{0x88, 0x1, 0x9, "ca6b89af482982a898d67577e20f2f079f748a25cbeea36a88453a2d79e2155720b763931a8280e85b74f760e4b36470b4883ee2392553000299a91f046c8fa6614db78f6e7f2d643b640086232c777695d99879fa60ab6d176af00184d8808aafdc3d70fb75394b2575db4f0ba2f79c2cf402a53c"}], 0x88}, 0x40008)
r4 = openat$cgroup_int(r2, &(0x7f0000000180)='cpuset.sched_relax_domain_level\x00', 0x2, 0x0)
r5 = openat$cgroup_ro(r2, &(0x7f0000000280)='memory.stat\x00', 0x0, 0x0)
connect$inet(0xffffffffffffffff, &(0x7f0000001280)={0x2, 0x0, @multicast1}, 0x10)
splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x5, 0x5)
r6 = bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f00000008c0)={0xffffffffffffffff, 0x6, 0x18}, 0xc)
bpf$PROG_LOAD(0x5, &(0x7f0000000940)={0x1, 0x2, &(0x7f0000000640)=@raw=[@map_idx], &(0x7f0000000680)='syzkaller\x00', 0x2, 0xf3, &(0x7f00000006c0)=""/243, 0x0, 0x15, '\x00', 0x0, 0xf, 0xffffffffffffffff, 0x8, &(0x7f0000000800)={0x5, 0x1}, 0x8, 0x10, &(0x7f0000000840)={0x0, 0x8, 0x80000000, 0x7}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000900)=[r5, r0, 0xffffffffffffffff, r0, 0xffffffffffffffff, r6, r5]}, 0x80)
write$cgroup_int(r4, &(0x7f0000000080), 0x12)
openat$cgroup_ro(r5, &(0x7f00000002c0)='hugetlb.2MB.rsvd.usage_in_bytes\x00', 0x0, 0x0)

[ 1005.544727][T13232] inactive_anon 57344
[ 1005.544727][T13232] active_anon 61440
[ 1005.544727][T13232] inactive_file 0
[ 1005.544727][T13232] active_file 4096
[ 1005.544727][T13232] unevictable 0
[ 1005.544727][T13232] slab_reclaimable 16840
[ 1005.544727][T13232] slab_unreclaimable 29312
[ 1005.544727][T13232] slab 46152
[ 1005.544727][T13232] workingset_refault_anon 0
[ 1005.544727][T13232] workingset_refault_file 1
[ 1005.544727][T13232] workingset_activate_anon 0
[ 1005.544727][T13232] workingset_activate_file 0
[ 1005.544727][T13232] workingset_restore_anon 0
[ 1005.639546][T13232] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=13174,uid=0
[ 1005.654845][T13232] Memory cgroup out of memory: Killed process 13174 (syz-executor.0) total-vm:48480kB, anon-rss:380kB, file-rss:15240kB, shmem-rss:64kB, UID:0 pgtables:80kB oom_score_adj:0
[ 1005.672635][   T26] oom_reaper: reaped process 13174 (syz-executor.0), now anon-rss:0kB, file-rss:14336kB, shmem-rss:64kB
11:28:41 executing program 4:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff000000000000050000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b'], 0x50}}, 0x0)

11:28:41 executing program 5:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r1, &(0x7f0000000000), 0x10)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff000000004788000000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b', @ANYRES32], 0x50}}, 0x0)

11:28:42 executing program 2:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
socket$inet6(0xa, 0x0, 0x0)
setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x30, 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x0, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x6b, 0x12)

11:28:42 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x3f000000, 0x12)

11:28:42 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x0, 0x0, 0x56)
socket$inet6(0xa, 0x80001, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x80000, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x54000000, 0x12)

11:28:42 executing program 0:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
r0 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
accept(r0, &(0x7f00000000c0)=@rxrpc=@in6={0x21, 0x0, 0x2, 0x1c, {0xa, 0x0, 0x0, @private1}}, &(0x7f0000000240)=0x80) (async)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = openat$cgroup(r1, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r3 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_ADAPTATION_LAYER(r3, 0x84, 0x7, &(0x7f0000000040)={0x10b802b6}, 0x4)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r3, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c) (async)
connect$inet6(r3, &(0x7f00000001c0)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) (async)
sendmsg(r3, &(0x7f0000000600)={&(0x7f0000000300)=@qipcrtr={0x2a, 0xffffffff, 0x1}, 0x80, &(0x7f0000000500)=[{&(0x7f0000000380)="a94bbf95616139360bd29ee9dbba7f126b12d26ac74c2c59ebd59a42635fb4ab1d13ef9e72390ec6507cb642f005e6b0d725d99913df11f8b6f8d91bbc14de1e693a62dc6c667a0210345a55c55e3eff3c7d1cb21339de5abc19a93ab07795a8c9c115402a8ca1e9225658ae28521661155c7664e5cadbf1826402ff300e986ae8e2b27e382b50654d3dc88ffecf48abb6ded368782799f1ca9a97e83279a2dc87ae23edbba5ea070a5f7c616b0331c250", 0xb1}, {&(0x7f0000000440)="8d08fe2cae0c4190ec48d679e31667196b6a77e4667a510bf0ae334e4ce35e5bfc2045b5152922f2646378e5bdf1426341bef021859200c0a0ef7054c7a53838e9ee5b3149cc577415de6ddc18939b273f056a98c7874bafefa0bb2f237153ce6072cf4b2d362c2d1aca1f4507d631d0a2dce95aaf49e6f6f83d8c05578ce1ce0dd80b607161635e8e2ebb22d4a44eb1155bd80b71fd0cfd6b6f623d90eae2e20089", 0xa2}], 0x2, &(0x7f0000000540)=[{0x88, 0x1, 0x9, "ca6b89af482982a898d67577e20f2f079f748a25cbeea36a88453a2d79e2155720b763931a8280e85b74f760e4b36470b4883ee2392553000299a91f046c8fa6614db78f6e7f2d643b640086232c777695d99879fa60ab6d176af00184d8808aafdc3d70fb75394b2575db4f0ba2f79c2cf402a53c"}], 0x88}, 0x40008) (async)
r4 = openat$cgroup_int(r2, &(0x7f0000000180)='cpuset.sched_relax_domain_level\x00', 0x2, 0x0) (async)
r5 = openat$cgroup_ro(r2, &(0x7f0000000280)='memory.stat\x00', 0x0, 0x0) (async)
connect$inet(0xffffffffffffffff, &(0x7f0000001280)={0x2, 0x0, @multicast1}, 0x10) (async)
splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x5, 0x5)
r6 = bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f00000008c0)={0xffffffffffffffff, 0x6, 0x18}, 0xc)
bpf$PROG_LOAD(0x5, &(0x7f0000000940)={0x1, 0x2, &(0x7f0000000640)=@raw=[@map_idx], &(0x7f0000000680)='syzkaller\x00', 0x2, 0xf3, &(0x7f00000006c0)=""/243, 0x0, 0x15, '\x00', 0x0, 0xf, 0xffffffffffffffff, 0x8, &(0x7f0000000800)={0x5, 0x1}, 0x8, 0x10, &(0x7f0000000840)={0x0, 0x8, 0x80000000, 0x7}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000900)=[r5, r0, 0xffffffffffffffff, r0, 0xffffffffffffffff, r6, r5]}, 0x80)
write$cgroup_int(r4, &(0x7f0000000080), 0x12) (async)
openat$cgroup_ro(r5, &(0x7f00000002c0)='hugetlb.2MB.rsvd.usage_in_bytes\x00', 0x0, 0x0)

11:28:42 executing program 5:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r1, &(0x7f0000000000), 0x10)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff000000004888000000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b', @ANYRES32], 0x50}}, 0x0)

11:28:42 executing program 4:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff000000000000060000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b'], 0x50}}, 0x0)

11:28:42 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x45000000, 0x12)

11:28:42 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x0, 0x0, 0x56)
socket$inet6(0xa, 0x80001, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x80000, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x60000000, 0x12)

11:28:42 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x47000000, 0x12)

11:28:42 executing program 4:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff000000000000070000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b'], 0x50}}, 0x0)

11:28:42 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x0, 0x0, 0x56)
socket$inet6(0xa, 0x80001, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x80000, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x65000000, 0x12)

11:28:42 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x48000000, 0x12)

[ 1006.244766][T13278] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1006.254988][T13278] CPU: 0 PID: 13278 Comm: syz-executor.2 Not tainted 5.17.0-rc7-syzkaller-00078-g3bf7edc84a9e-dirty #0
[ 1006.266105][T13278] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1006.276155][T13278] Call Trace:
[ 1006.279429][T13278]  <TASK>
[ 1006.282355][T13278]  dump_stack_lvl+0xd6/0x122
[ 1006.286981][T13278]  dump_stack+0x11/0x1b
[ 1006.291136][T13278]  dump_header+0x98/0x410
[ 1006.295548][T13278]  out_of_memory+0x65c/0x8c0
[ 1006.300133][T13278]  ? _raw_spin_unlock_irqrestore+0x3d/0x60
[ 1006.305947][T13278]  memory_max_write+0x32c/0x3d0
[ 1006.310841][T13278]  ? memory_max_show+0x70/0x70
[ 1006.315642][T13278]  cgroup_file_write+0x161/0x300
[ 1006.320621][T13278]  ? __check_object_size+0x22a/0x2d0
[ 1006.325953][T13278]  ? cgroup_seqfile_stop+0x70/0x70
[ 1006.331070][T13278]  kernfs_fop_write_iter+0x1d3/0x2d0
[ 1006.336358][T13278]  vfs_write+0x7f5/0x950
[ 1006.340653][T13278]  ksys_write+0xd9/0x190
[ 1006.344901][T13278]  __x64_sys_write+0x3e/0x50
[ 1006.349487][T13278]  do_syscall_64+0x44/0xd0
[ 1006.353956][T13278]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1006.359947][T13278] RIP: 0033:0x7f1d3184b049
[ 1006.364357][T13278] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1006.383964][T13278] RSP: 002b:00007f1d309c1168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1006.392421][T13278] RAX: ffffffffffffffda RBX: 00007f1d3195df60 RCX: 00007f1d3184b049
[ 1006.400433][T13278] RDX: 0000000000000012 RSI: 0000000020000080 RDI: 0000000000000006
[ 1006.408415][T13278] RBP: 00007f1d318a508d R08: 0000000000000000 R09: 0000000000000000
[ 1006.416383][T13278] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1006.424347][T13278] R13: 00007ffc96a4069f R14: 00007f1d309c1300 R15: 0000000000022000
[ 1006.432390][T13278]  </TASK>
[ 1006.435506][T13278] memory: usage 104kB, limit 1654784kB, failcnt 6398
[ 1006.442189][T13278] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1006.449058][T13278] Memory cgroup stats for /syz0:
[ 1006.457926][T13278] anon 0
[ 1006.457926][T13278] file 81920
[ 1006.457926][T13278] kernel_stack 0
[ 1006.457926][T13278] pagetables 0
[ 1006.457926][T13278] percpu 0
[ 1006.457926][T13278] sock 0
[ 1006.457926][T13278] vmalloc 0
[ 1006.457926][T13278] shmem 77824
[ 1006.457926][T13278] file_mapped 77824
[ 1006.457926][T13278] file_dirty 4096
[ 1006.457926][T13278] file_writeback 0
[ 1006.457926][T13278] swapcached 0
[ 1006.457926][T13278] inactive_anon 16384
[ 1006.457926][T13278] active_anon 61440
[ 1006.457926][T13278] inactive_file 0
[ 1006.457926][T13278] active_file 4096
[ 1006.457926][T13278] unevictable 0
[ 1006.457926][T13278] slab_reclaimable 6440
[ 1006.457926][T13278] slab_unreclaimable 16136
[ 1006.457926][T13278] slab 22576
[ 1006.457926][T13278] workingset_refault_anon 0
[ 1006.457926][T13278] workingset_refault_file 1
[ 1006.457926][T13278] workingset_activate_anon 0
11:28:42 executing program 2:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
socket$inet6(0xa, 0x0, 0x0)
setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x30, 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x0, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x6d, 0x12)

11:28:42 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x0, 0x0, 0x56)
socket$inet6(0xa, 0x80001, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x80000, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x67000000, 0x12)

11:28:42 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x4b000000, 0x12)

[ 1006.457926][T13278] workingset_activate_file 0
[ 1006.457926][T13278] workingset_restore_anon 0
[ 1006.552055][T13278] Out of memory and no killable processes...
[ 1006.639387][T13062] device hsr_slave_0 left promiscuous mode
[ 1006.647818][T13062] device hsr_slave_1 left promiscuous mode
[ 1006.662663][T13062] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1006.670102][T13062] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1006.681111][T13297] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1006.691322][T13297] CPU: 0 PID: 13297 Comm: syz-executor.2 Not tainted 5.17.0-rc7-syzkaller-00078-g3bf7edc84a9e-dirty #0
[ 1006.702338][T13297] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1006.712453][T13297] Call Trace:
[ 1006.715728][T13297]  <TASK>
[ 1006.718654][T13297]  dump_stack_lvl+0xd6/0x122
[ 1006.723287][T13297]  dump_stack+0x11/0x1b
[ 1006.727549][T13297]  dump_header+0x98/0x410
[ 1006.731882][T13297]  out_of_memory+0x65c/0x8c0
[ 1006.736585][T13297]  ? _raw_spin_unlock_irqrestore+0x3d/0x60
[ 1006.742514][T13297]  memory_max_write+0x32c/0x3d0
[ 1006.747373][T13297]  ? memory_max_show+0x70/0x70
[ 1006.752142][T13297]  cgroup_file_write+0x161/0x300
[ 1006.757107][T13297]  ? __check_object_size+0x22a/0x2d0
[ 1006.762400][T13297]  ? cgroup_seqfile_stop+0x70/0x70
[ 1006.767533][T13297]  kernfs_fop_write_iter+0x1d3/0x2d0
[ 1006.772868][T13297]  vfs_write+0x7f5/0x950
[ 1006.777214][T13297]  ksys_write+0xd9/0x190
[ 1006.781461][T13297]  __x64_sys_write+0x3e/0x50
[ 1006.786095][T13297]  do_syscall_64+0x44/0xd0
[ 1006.790537][T13297]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1006.796427][T13297] RIP: 0033:0x7f1d3184b049
[ 1006.800839][T13297] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1006.820444][T13297] RSP: 002b:00007f1d309c1168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1006.828837][T13297] RAX: ffffffffffffffda RBX: 00007f1d3195df60 RCX: 00007f1d3184b049
[ 1006.836786][T13297] RDX: 0000000000000012 RSI: 0000000020000080 RDI: 0000000000000006
[ 1006.844794][T13297] RBP: 00007f1d318a508d R08: 0000000000000000 R09: 0000000000000000
[ 1006.852753][T13297] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1006.860714][T13297] R13: 00007ffc96a4069f R14: 00007f1d309c1300 R15: 0000000000022000
[ 1006.868668][T13297]  </TASK>
[ 1006.871923][T13297] memory: usage 104kB, limit 0kB, failcnt 6398
[ 1006.872756][T13062] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1006.878085][T13297] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1006.878098][T13297] Memory cgroup stats for 
[ 1006.885520][T13062] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1006.892293][T13297] /syz0:
[ 1006.899737][T13297] anon 0
[ 1006.899737][T13297] file 81920
[ 1006.899737][T13297] kernel_stack 0
[ 1006.899737][T13297] pagetables 0
[ 1006.899737][T13297] percpu 0
[ 1006.899737][T13297] sock 0
[ 1006.899737][T13297] vmalloc 0
[ 1006.899737][T13297] shmem 77824
[ 1006.899737][T13297] file_mapped 77824
[ 1006.899737][T13297] file_dirty 4096
[ 1006.899737][T13297] file_writeback 0
[ 1006.899737][T13297] swapcached 0
[ 1006.899737][T13297] inactive_anon 16384
[ 1006.899737][T13297] active_anon 61440
[ 1006.899737][T13297] inactive_file 0
[ 1006.899737][T13297] active_file 4096
[ 1006.899737][T13297] unevictable 0
[ 1006.899737][T13297] slab_reclaimable 6440
[ 1006.899737][T13297] slab_unreclaimable 16136
[ 1006.899737][T13297] slab 22576
[ 1006.899737][T13297] workingset_refault_anon 0
[ 1006.899737][T13297] workingset_refault_file 1
[ 1006.899737][T13297] workingset_activate_anon 0
[ 1006.899737][T13297] workingset_activate_file 0
[ 1006.899737][T13297] workingset_restore_anon 0
[ 1006.995714][T13297] Out of memory and no killable processes...
[ 1007.002463][T13062] device bridge_slave_1 left promiscuous mode
[ 1007.008736][T13062] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1007.017266][T13062] device bridge_slave_0 left promiscuous mode
[ 1007.023405][T13062] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1007.034856][T13062] device veth1_macvtap left promiscuous mode
[ 1007.040868][T13062] device veth0_macvtap left promiscuous mode
[ 1007.046861][T13062] device veth1_vlan left promiscuous mode
[ 1007.052717][T13062] device veth0_vlan left promiscuous mode
[ 1007.127121][T13062] team0 (unregistering): Port device team_slave_1 removed
[ 1007.137330][T13062] team0 (unregistering): Port device team_slave_0 removed
[ 1007.146612][T13062] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1007.158084][T13062] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1007.185895][T13062] bond0 (unregistering): Released all slaves
[ 1007.986020][T13308] chnl_net:caif_netlink_parms(): no params data found
[ 1008.015811][T13308] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1008.023058][T13308] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1008.030640][T13308] device bridge_slave_0 entered promiscuous mode
[ 1008.037750][T13308] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1008.044761][T13308] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1008.052320][T13308] device bridge_slave_1 entered promiscuous mode
[ 1008.066901][T13308] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1008.077049][T13308] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1008.094731][T13308] team0: Port device team_slave_0 added
[ 1008.101062][T13308] team0: Port device team_slave_1 added
[ 1008.114593][T13308] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1008.121626][T13308] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1008.147547][T13308] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1008.159616][T13308] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1008.166628][T13308] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1008.192564][T13308] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1008.213605][T13308] device hsr_slave_0 entered promiscuous mode
[ 1008.221064][T13308] device hsr_slave_1 entered promiscuous mode
[ 1008.286768][T13308] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1008.297409][T13308] 8021q: adding VLAN 0 to HW filter on device team0
[ 1008.307158][ T6845] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 1008.314878][ T6845] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1008.322676][ T6845] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 1008.331641][ T6845] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1008.339920][ T6845] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1008.346942][ T6845] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1008.354691][ T6845] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 1008.363244][ T6845] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1008.371501][ T6845] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1008.378622][ T6845] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1008.386988][ T6849] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 1008.396569][   T77] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 1008.406744][ T6848] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 1008.416761][ T1928] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 1008.424985][ T1928] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 1008.434310][ T1928] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 1008.446490][ T6848] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 1008.454843][ T6848] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 1008.463250][ T6848] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 1008.471480][ T6848] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1008.479672][ T6848] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 1008.487791][ T6848] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1008.498043][T13308] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 1008.511513][T13308] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1008.519164][ T6846] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 1008.526703][ T6846] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 1008.591919][ T1928] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1008.632435][T13308] device veth0_vlan entered promiscuous mode
[ 1008.640299][ T6848] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1008.648698][ T6848] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1008.656307][ T6848] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1008.665408][T13308] device veth1_vlan entered promiscuous mode
[ 1008.678102][ T1928] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 1008.686201][ T1928] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 1008.695188][ T1928] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1008.704736][T13308] device veth0_macvtap entered promiscuous mode
[ 1008.712799][T13308] device veth1_macvtap entered promiscuous mode
[ 1008.723721][T13308] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 1008.734284][T13308] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1008.744114][T13308] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 1008.754526][T13308] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1008.764352][T13308] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 1008.774757][T13308] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1008.784572][T13308] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 1008.794983][T13308] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1008.804810][T13308] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 1008.815279][T13308] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1008.826932][T13308] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1008.834520][ T6849] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 1008.842839][ T6849] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 1008.851453][ T6849] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1008.861113][T13308] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 1008.871552][T13308] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1008.881388][T13308] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 1008.891821][T13308] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1008.901620][T13308] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 1008.912025][T13308] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1008.921829][T13308] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 1008.932232][T13308] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1008.942088][T13308] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 1008.952504][T13308] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1008.964071][T13308] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1008.971907][ T6848] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 1008.980277][ T6848] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
11:28:44 executing program 0:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async, rerun: 32)
r0 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (rerun: 32)
accept(r0, &(0x7f00000000c0)=@rxrpc=@in6={0x21, 0x0, 0x2, 0x1c, {0xa, 0x0, 0x0, @private1}}, &(0x7f0000000240)=0x80) (async)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) (async)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async, rerun: 32)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) (rerun: 32)
r2 = openat$cgroup(r1, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r3 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_ADAPTATION_LAYER(r3, 0x84, 0x7, &(0x7f0000000040)={0x10b802b6}, 0x4) (async)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r3, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
connect$inet6(r3, &(0x7f00000001c0)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendmsg(r3, &(0x7f0000000600)={&(0x7f0000000300)=@qipcrtr={0x2a, 0xffffffff, 0x1}, 0x80, &(0x7f0000000500)=[{&(0x7f0000000380)="a94bbf95616139360bd29ee9dbba7f126b12d26ac74c2c59ebd59a42635fb4ab1d13ef9e72390ec6507cb642f005e6b0d725d99913df11f8b6f8d91bbc14de1e693a62dc6c667a0210345a55c55e3eff3c7d1cb21339de5abc19a93ab07795a8c9c115402a8ca1e9225658ae28521661155c7664e5cadbf1826402ff300e986ae8e2b27e382b50654d3dc88ffecf48abb6ded368782799f1ca9a97e83279a2dc87ae23edbba5ea070a5f7c616b0331c250", 0xb1}, {&(0x7f0000000440)="8d08fe2cae0c4190ec48d679e31667196b6a77e4667a510bf0ae334e4ce35e5bfc2045b5152922f2646378e5bdf1426341bef021859200c0a0ef7054c7a53838e9ee5b3149cc577415de6ddc18939b273f056a98c7874bafefa0bb2f237153ce6072cf4b2d362c2d1aca1f4507d631d0a2dce95aaf49e6f6f83d8c05578ce1ce0dd80b607161635e8e2ebb22d4a44eb1155bd80b71fd0cfd6b6f623d90eae2e20089", 0xa2}], 0x2, &(0x7f0000000540)=[{0x88, 0x1, 0x9, "ca6b89af482982a898d67577e20f2f079f748a25cbeea36a88453a2d79e2155720b763931a8280e85b74f760e4b36470b4883ee2392553000299a91f046c8fa6614db78f6e7f2d643b640086232c777695d99879fa60ab6d176af00184d8808aafdc3d70fb75394b2575db4f0ba2f79c2cf402a53c"}], 0x88}, 0x40008)
r4 = openat$cgroup_int(r2, &(0x7f0000000180)='cpuset.sched_relax_domain_level\x00', 0x2, 0x0) (async)
r5 = openat$cgroup_ro(r2, &(0x7f0000000280)='memory.stat\x00', 0x0, 0x0)
connect$inet(0xffffffffffffffff, &(0x7f0000001280)={0x2, 0x0, @multicast1}, 0x10) (async)
splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x5, 0x5) (async)
r6 = bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f00000008c0)={0xffffffffffffffff, 0x6, 0x18}, 0xc)
bpf$PROG_LOAD(0x5, &(0x7f0000000940)={0x1, 0x2, &(0x7f0000000640)=@raw=[@map_idx], &(0x7f0000000680)='syzkaller\x00', 0x2, 0xf3, &(0x7f00000006c0)=""/243, 0x0, 0x15, '\x00', 0x0, 0xf, 0xffffffffffffffff, 0x8, &(0x7f0000000800)={0x5, 0x1}, 0x8, 0x10, &(0x7f0000000840)={0x0, 0x8, 0x80000000, 0x7}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000900)=[r5, r0, 0xffffffffffffffff, r0, 0xffffffffffffffff, r6, r5]}, 0x80)
write$cgroup_int(r4, &(0x7f0000000080), 0x12) (async)
openat$cgroup_ro(r5, &(0x7f00000002c0)='hugetlb.2MB.rsvd.usage_in_bytes\x00', 0x0, 0x0)

11:28:44 executing program 5:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r1, &(0x7f0000000000), 0x10)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff0000ffffa888000000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b', @ANYRES32], 0x50}}, 0x0)

11:28:44 executing program 4:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff000000000000080000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b'], 0x50}}, 0x0)

11:28:44 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x4c000000, 0x12)

11:28:44 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x0, 0x0, 0x56)
socket$inet6(0xa, 0x80001, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x80000, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x68000000, 0x12)

11:28:44 executing program 2:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
socket$inet6(0xa, 0x0, 0x0)
setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x30, 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x0, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x70, 0x12)

11:28:45 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x4d000000, 0x12)

11:28:45 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x0, 0x0, 0x56)
socket$inet6(0xa, 0x80001, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x80000, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x6b000000, 0x12)

11:28:45 executing program 0:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000240)='tracefs\x00', 0xc4000, 0x0)
r0 = openat$cgroup(0xffffffffffffffff, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r1 = openat$cgroup_int(r0, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f00000000c0)='pids.current\x00', 0x0, 0x0)
openat$cgroup_int(0xffffffffffffffff, &(0x7f0000000100)='hugetlb.2MB.rsvd.failcnt\x00', 0x2, 0x0)
write$cgroup_int(r1, &(0x7f0000000080), 0x12)

11:28:45 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x50000000, 0x12)

11:28:45 executing program 4:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff000000000000090000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b'], 0x50}}, 0x0)

11:28:45 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x54000000, 0x12)

11:28:45 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x0, 0x0, 0x56)
socket$inet6(0xa, 0x80001, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x80000, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x6c000000, 0x12)

11:28:45 executing program 5:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r1, &(0x7f0000000000), 0x10)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff00000000038e000000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b', @ANYRES32], 0x50}}, 0x0)

11:28:45 executing program 0:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) (async)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000240)='tracefs\x00', 0xc4000, 0x0) (async)
r0 = openat$cgroup(0xffffffffffffffff, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r1 = openat$cgroup_int(r0, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f00000000c0)='pids.current\x00', 0x0, 0x0) (async)
openat$cgroup_int(0xffffffffffffffff, &(0x7f0000000100)='hugetlb.2MB.rsvd.failcnt\x00', 0x2, 0x0) (async)
write$cgroup_int(r1, &(0x7f0000000080), 0x12)

11:28:45 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x60000000, 0x12)

11:28:45 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x0, 0x0, 0x56)
socket$inet6(0xa, 0x80001, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x80000, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x6d000000, 0x12)

11:28:45 executing program 2:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
socket$inet6(0xa, 0x0, 0x0)
setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x30, 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x0, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x74, 0x12)

11:28:45 executing program 4:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff0000000000000a0000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b'], 0x50}}, 0x0)

11:28:45 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x65000000, 0x12)

11:28:45 executing program 0:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) (async)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000240)='tracefs\x00', 0xc4000, 0x0)
r0 = openat$cgroup(0xffffffffffffffff, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r1 = openat$cgroup_int(r0, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f00000000c0)='pids.current\x00', 0x0, 0x0) (async)
openat$cgroup_int(0xffffffffffffffff, &(0x7f0000000100)='hugetlb.2MB.rsvd.failcnt\x00', 0x2, 0x0)
write$cgroup_int(r1, &(0x7f0000000080), 0x12)

11:28:45 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x0, 0x0, 0x56)
socket$inet6(0xa, 0x80001, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x80000, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x70000000, 0x12)

11:28:45 executing program 5:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r1, &(0x7f0000000000), 0x10)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff00000000018f000000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b', @ANYRES32], 0x50}}, 0x0)

11:28:45 executing program 0:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
r0 = open(&(0x7f0000000000)='./file0\x00', 0x580, 0x85)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_ADAPTATION_LAYER(r1, 0x84, 0x7, &(0x7f0000000040)={0x10b802b6}, 0x4)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
connect$inet6(r1, &(0x7f00000001c0)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
close_range(r1, r0, 0x2)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='cgroup2\x00', 0x1008002, 0x0)
r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r3)
mkdir(&(0x7f0000000100)='./file0\x00', 0x8)
openat$cgroup(r2, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
openat$cgroup_int(r2, &(0x7f00000000c0)='hugetlb.1GB.max_usage_in_bytes\x00', 0x2, 0x0)

11:28:45 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x67000000, 0x12)

11:28:45 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x0, 0x0, 0x56)
socket$inet6(0xa, 0x80001, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x80000, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x74000000, 0x12)

11:28:45 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x0, 0x0, 0x56)
socket$inet6(0xa, 0x80001, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x80000, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x7a000000, 0x12)

11:28:45 executing program 0:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
r0 = open(&(0x7f0000000000)='./file0\x00', 0x580, 0x85) (async)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_ADAPTATION_LAYER(r1, 0x84, 0x7, &(0x7f0000000040)={0x10b802b6}, 0x4) (async)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
connect$inet6(r1, &(0x7f00000001c0)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
close_range(r1, r0, 0x2)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='cgroup2\x00', 0x1008002, 0x0)
r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) (async)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r3)
mkdir(&(0x7f0000000100)='./file0\x00', 0x8)
openat$cgroup(r2, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
openat$cgroup_int(r2, &(0x7f00000000c0)='hugetlb.1GB.max_usage_in_bytes\x00', 0x2, 0x0)

11:28:45 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x68000000, 0x12)

[ 1009.999806][T13422] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1010.010184][T13422] CPU: 0 PID: 13422 Comm: syz-executor.2 Not tainted 5.17.0-rc7-syzkaller-00078-g3bf7edc84a9e-dirty #0
[ 1010.021208][T13422] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1010.031258][T13422] Call Trace:
[ 1010.034532][T13422]  <TASK>
[ 1010.037503][T13422]  dump_stack_lvl+0xd6/0x122
[ 1010.042104][T13422]  dump_stack+0x11/0x1b
[ 1010.046260][T13422]  dump_header+0x98/0x410
[ 1010.050590][T13422]  oom_kill_process+0x18e/0x4a0
[ 1010.055418][T13422]  out_of_memory+0x61d/0x8c0
[ 1010.059986][T13422]  memory_max_write+0x32c/0x3d0
[ 1010.064876][T13422]  ? memory_max_show+0x70/0x70
[ 1010.069704][T13422]  cgroup_file_write+0x161/0x300
[ 1010.074618][T13422]  ? __check_object_size+0x22a/0x2d0
[ 1010.079887][T13422]  ? cgroup_seqfile_stop+0x70/0x70
[ 1010.085015][T13422]  kernfs_fop_write_iter+0x1d3/0x2d0
[ 1010.090296][T13422]  vfs_write+0x7f5/0x950
[ 1010.094527][T13422]  ksys_write+0xd9/0x190
[ 1010.098748][T13422]  __x64_sys_write+0x3e/0x50
[ 1010.103334][T13422]  do_syscall_64+0x44/0xd0
[ 1010.107729][T13422]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1010.113666][T13422] RIP: 0033:0x7f1d3184b049
[ 1010.118057][T13422] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1010.137741][T13422] RSP: 002b:00007f1d309a0168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1010.146197][T13422] RAX: ffffffffffffffda RBX: 00007f1d3195e030 RCX: 00007f1d3184b049
[ 1010.154148][T13422] RDX: 0000000000000012 RSI: 0000000020000080 RDI: 0000000000000006
[ 1010.162097][T13422] RBP: 00007f1d318a508d R08: 0000000000000000 R09: 0000000000000000
[ 1010.170048][T13422] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1010.178095][T13422] R13: 00007ffc96a4069f R14: 00007f1d309a0300 R15: 0000000000022000
[ 1010.186052][T13422]  </TASK>
[ 1010.189146][T13422] memory: usage 196kB, limit 1703936kB, failcnt 6398
[ 1010.195811][T13422] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1010.202651][T13422] Memory cgroup stats for /syz0:
[ 1010.205231][T13422] anon 40960
[ 1010.205231][T13422] file 86016
[ 1010.205231][T13422] kernel_stack 0
[ 1010.205231][T13422] pagetables 8192
[ 1010.205231][T13422] percpu 0
[ 1010.205231][T13422] sock 0
[ 1010.205231][T13422] vmalloc 0
[ 1010.205231][T13422] shmem 77824
[ 1010.205231][T13422] file_mapped 77824
[ 1010.205231][T13422] file_dirty 4096
[ 1010.205231][T13422] file_writeback 0
[ 1010.205231][T13422] swapcached 0
[ 1010.205231][T13422] inactive_anon 57344
[ 1010.205231][T13422] active_anon 61440
[ 1010.205231][T13422] inactive_file 0
[ 1010.205231][T13422] active_file 4096
[ 1010.205231][T13422] unevictable 0
[ 1010.205231][T13422] slab_reclaimable 17816
[ 1010.205231][T13422] slab_unreclaimable 34672
[ 1010.205231][T13422] slab 52488
[ 1010.205231][T13422] workingset_refault_anon 0
[ 1010.205231][T13422] workingset_refault_file 2
[ 1010.205231][T13422] workingset_activate_anon 0
[ 1010.205231][T13422] workingset_activate_file 0
[ 1010.205231][T13422] workingset_restore_anon 0
[ 1010.300030][T13422] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=13308,uid=0
[ 1010.315394][T13422] Memory cgroup out of memory: Killed process 13308 (syz-executor.0) total-vm:48480kB, anon-rss:380kB, file-rss:15224kB, shmem-rss:64kB, UID:0 pgtables:84kB oom_score_adj:0
[ 1010.335013][   T26] oom_reaper: reaped process 13308 (syz-executor.0), now anon-rss:0kB, file-rss:14336kB, shmem-rss:64kB
11:28:46 executing program 2:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
socket$inet6(0xa, 0x0, 0x0)
setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x30, 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x0, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0xfe, 0x12)

11:28:46 executing program 4:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff0000000000000b0000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b'], 0x50}}, 0x0)

11:28:46 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x0, 0x0, 0x56)
socket$inet6(0xa, 0x80001, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x80000, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0xfeffffff, 0x12)

11:28:46 executing program 0:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
r0 = open(&(0x7f0000000000)='./file0\x00', 0x580, 0x85)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_ADAPTATION_LAYER(r1, 0x84, 0x7, &(0x7f0000000040)={0x10b802b6}, 0x4)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
connect$inet6(r1, &(0x7f00000001c0)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
close_range(r1, r0, 0x2)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='cgroup2\x00', 0x1008002, 0x0)
r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r3)
mkdir(&(0x7f0000000100)='./file0\x00', 0x8)
openat$cgroup(r2, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
openat$cgroup_int(r2, &(0x7f00000000c0)='hugetlb.1GB.max_usage_in_bytes\x00', 0x2, 0x0)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
open(&(0x7f0000000000)='./file0\x00', 0x580, 0x85) (async)
socket$inet6_sctp(0xa, 0x1, 0x84) (async)
setsockopt$inet_sctp6_SCTP_ADAPTATION_LAYER(r1, 0x84, 0x7, &(0x7f0000000040)={0x10b802b6}, 0x4) (async)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c) (async)
connect$inet6(r1, &(0x7f00000001c0)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) (async)
close_range(r1, r0, 0x2) (async)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='cgroup2\x00', 0x1008002, 0x0) (async)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r3) (async)
mkdir(&(0x7f0000000100)='./file0\x00', 0x8) (async)
openat$cgroup(r2, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0) (async)
openat$cgroup_int(r2, &(0x7f00000000c0)='hugetlb.1GB.max_usage_in_bytes\x00', 0x2, 0x0) (async)

11:28:46 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x6b000000, 0x12)

11:28:46 executing program 5:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r1, &(0x7f0000000000), 0x10)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff00000000059e000000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b', @ANYRES32], 0x50}}, 0x0)

11:28:46 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x6c000000, 0x12)

11:28:46 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x0, 0x0, 0x56)
socket$inet6(0xa, 0x80001, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x80000, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0xfffdffff, 0x12)

11:28:46 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x6d000000, 0x12)

11:28:46 executing program 5:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r1, &(0x7f0000000000), 0x10)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff0000ffffff9e000000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b', @ANYRES32], 0x50}}, 0x0)

[ 1010.890182][T13445] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1010.900437][T13445] CPU: 0 PID: 13445 Comm: syz-executor.2 Not tainted 5.17.0-rc7-syzkaller-00078-g3bf7edc84a9e-dirty #0
[ 1010.911455][T13445] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1010.921589][T13445] Call Trace:
[ 1010.924865][T13445]  <TASK>
[ 1010.927792][T13445]  dump_stack_lvl+0xd6/0x122
[ 1010.932415][T13445]  dump_stack+0x11/0x1b
11:28:46 executing program 4:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff0000000000000c0000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b'], 0x50}}, 0x0)

11:28:46 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x0, 0x0, 0x56)
socket$inet6(0xa, 0x80001, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x80000, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0xfffffdff, 0x12)

[ 1010.936584][T13445]  dump_header+0x98/0x410
[ 1010.941006][T13445]  out_of_memory+0x65c/0x8c0
[ 1010.945637][T13445]  memory_max_write+0x32c/0x3d0
[ 1010.950591][T13445]  ? memory_max_show+0x70/0x70
[ 1010.955351][T13445]  cgroup_file_write+0x161/0x300
[ 1010.960324][T13445]  ? __check_object_size+0x22a/0x2d0
[ 1010.965610][T13445]  ? cgroup_seqfile_stop+0x70/0x70
[ 1010.970740][T13445]  kernfs_fop_write_iter+0x1d3/0x2d0
[ 1010.976071][T13445]  vfs_write+0x7f5/0x950
[ 1010.980313][T13445]  ksys_write+0xd9/0x190
[ 1010.984553][T13445]  __x64_sys_write+0x3e/0x50
[ 1010.989144][T13445]  do_syscall_64+0x44/0xd0
[ 1010.993562][T13445]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1010.999458][T13445] RIP: 0033:0x7f1d3184b049
[ 1011.003873][T13445] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1011.023538][T13445] RSP: 002b:00007f1d309a0168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1011.031948][T13445] RAX: ffffffffffffffda RBX: 00007f1d3195e030 RCX: 00007f1d3184b049
[ 1011.039950][T13445] RDX: 0000000000000012 RSI: 0000000020000080 RDI: 0000000000000006
[ 1011.047992][T13445] RBP: 00007f1d318a508d R08: 0000000000000000 R09: 0000000000000000
[ 1011.055960][T13445] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1011.063929][T13445] R13: 00007ffc96a4069f R14: 00007f1d309a0300 R15: 0000000000022000
[ 1011.071899][T13445]  </TASK>
[ 1011.074949][T13445] memory: usage 108kB, limit 1785856kB, failcnt 6398
[ 1011.081644][T13445] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1011.088492][T13445] Memory cgroup stats for /syz0:
[ 1011.106570][T13445] anon 0
[ 1011.106570][T13445] file 86016
[ 1011.106570][T13445] kernel_stack 0
[ 1011.106570][T13445] pagetables 0
[ 1011.106570][T13445] percpu 0
[ 1011.106570][T13445] sock 0
[ 1011.106570][T13445] vmalloc 0
[ 1011.106570][T13445] shmem 77824
[ 1011.106570][T13445] file_mapped 77824
[ 1011.106570][T13445] file_dirty 4096
[ 1011.106570][T13445] file_writeback 0
[ 1011.106570][T13445] swapcached 0
[ 1011.106570][T13445] inactive_anon 16384
[ 1011.106570][T13445] active_anon 61440
[ 1011.106570][T13445] inactive_file 4096
[ 1011.106570][T13445] active_file 4096
[ 1011.106570][T13445] unevictable 0
[ 1011.106570][T13445] slab_reclaimable 6552
[ 1011.106570][T13445] slab_unreclaimable 16136
[ 1011.106570][T13445] slab 22688
[ 1011.106570][T13445] workingset_refault_anon 0
[ 1011.106570][T13445] workingset_refault_file 2
[ 1011.106570][T13445] workingset_activate_anon 0
[ 1011.106570][T13445] workingset_activate_file 0
[ 1011.106570][T13445] workingset_restore_anon 0
[ 1011.200909][T13445] Out of memory and no killable processes...
11:28:47 executing program 2:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
socket$inet6(0xa, 0x0, 0x0)
setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x30, 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x0, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x300, 0x12)

11:28:47 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x70000000, 0x12)

11:28:47 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x0, 0x0, 0x56)
socket$inet6(0xa, 0x80001, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x80000, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0xfffffffe, 0x12)

[ 1011.281413][T13062] device hsr_slave_0 left promiscuous mode
[ 1011.307140][T13062] device hsr_slave_1 left promiscuous mode
[ 1011.319215][T13465] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1011.329417][T13465] CPU: 0 PID: 13465 Comm: syz-executor.2 Not tainted 5.17.0-rc7-syzkaller-00078-g3bf7edc84a9e-dirty #0
[ 1011.340453][T13465] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1011.350510][T13465] Call Trace:
[ 1011.353785][T13465]  <TASK>
[ 1011.356720][T13465]  dump_stack_lvl+0xd6/0x122
[ 1011.361317][T13465]  dump_stack+0x11/0x1b
[ 1011.365478][T13465]  dump_header+0x98/0x410
[ 1011.369866][T13465]  out_of_memory+0x65c/0x8c0
[ 1011.374472][T13465]  memory_max_write+0x32c/0x3d0
[ 1011.379325][T13465]  ? memory_max_show+0x70/0x70
[ 1011.384111][T13465]  cgroup_file_write+0x161/0x300
[ 1011.389049][T13465]  ? __check_object_size+0x22a/0x2d0
[ 1011.394338][T13465]  ? cgroup_seqfile_stop+0x70/0x70
[ 1011.399540][T13465]  kernfs_fop_write_iter+0x1d3/0x2d0
[ 1011.404824][T13465]  vfs_write+0x7f5/0x950
[ 1011.409063][T13465]  ksys_write+0xd9/0x190
[ 1011.413305][T13465]  __x64_sys_write+0x3e/0x50
[ 1011.417896][T13465]  do_syscall_64+0x44/0xd0
[ 1011.422308][T13465]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1011.428213][T13465] RIP: 0033:0x7f1d3184b049
[ 1011.432668][T13465] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1011.452273][T13465] RSP: 002b:00007f1d309c1168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1011.460687][T13465] RAX: ffffffffffffffda RBX: 00007f1d3195df60 RCX: 00007f1d3184b049
[ 1011.468710][T13465] RDX: 0000000000000012 RSI: 0000000020000080 RDI: 0000000000000006
[ 1011.476680][T13465] RBP: 00007f1d318a508d R08: 0000000000000000 R09: 0000000000000000
[ 1011.484663][T13465] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1011.492613][T13465] R13: 00007ffc96a4069f R14: 00007f1d309c1300 R15: 0000000000022000
[ 1011.500564][T13465]  </TASK>
[ 1011.503714][T13465] memory: usage 104kB, limit 0kB, failcnt 6398
[ 1011.509871][T13465] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1011.516713][T13465] Memory cgroup stats for /syz0:
[ 1011.517175][T13062] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1011.518435][T13465] anon 0
[ 1011.518435][T13465] file 81920
[ 1011.518435][T13465] kernel_stack 0
[ 1011.518435][T13465] pagetables 0
[ 1011.518435][T13465] percpu 0
[ 1011.518435][T13465] sock 0
[ 1011.518435][T13465] vmalloc 0
[ 1011.518435][T13465] shmem 77824
[ 1011.518435][T13465] file_mapped 77824
[ 1011.518435][T13465] file_dirty 4096
[ 1011.518435][T13465] file_writeback 0
[ 1011.518435][T13465] swapcached 0
[ 1011.518435][T13465] inactive_anon 16384
[ 1011.518435][T13465] active_anon 61440
[ 1011.518435][T13465] inactive_file 0
[ 1011.518435][T13465] active_file 4096
[ 1011.518435][T13465] unevictable 0
[ 1011.518435][T13465] slab_reclaimable 6552
[ 1011.518435][T13465] slab_unreclaimable 16136
[ 1011.518435][T13465] slab 22688
[ 1011.518435][T13465] workingset_refault_anon 0
[ 1011.518435][T13465] workingset_refault_file 2
[ 1011.518435][T13465] workingset_activate_anon 0
[ 1011.518435][T13465] workingset_activate_file 0
[ 1011.518435][T13465] workingset_restore_anon 0
[ 1011.522363][T13062] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1011.529720][T13465] Out of memory and no killable processes...
[ 1011.632532][T13062] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1011.640053][T13062] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1011.649445][T13062] device bridge_slave_1 left promiscuous mode
[ 1011.655638][T13062] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1011.663103][T13062] device bridge_slave_0 left promiscuous mode
[ 1011.669349][T13062] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1011.678794][T13062] device veth1_macvtap left promiscuous mode
[ 1011.684763][T13062] device veth0_macvtap left promiscuous mode
[ 1011.690784][T13062] device veth1_vlan left promiscuous mode
[ 1011.696509][T13062] device veth0_vlan left promiscuous mode
[ 1011.775153][T13062] team0 (unregistering): Port device team_slave_1 removed
[ 1011.784544][T13062] team0 (unregistering): Port device team_slave_0 removed
[ 1011.794237][T13062] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1011.804950][T13062] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1011.831759][T13062] bond0 (unregistering): Released all slaves
[ 1012.652296][T13472] chnl_net:caif_netlink_parms(): no params data found
[ 1012.682514][T13472] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1012.689614][T13472] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1012.697368][T13472] device bridge_slave_0 entered promiscuous mode
[ 1012.704347][T13472] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1012.711415][T13472] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1012.719322][T13472] device bridge_slave_1 entered promiscuous mode
[ 1012.734952][T13472] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1012.745131][T13472] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1012.763057][T13472] team0: Port device team_slave_0 added
[ 1012.769220][T13472] team0: Port device team_slave_1 added
[ 1012.782751][T13472] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1012.789712][T13472] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1012.815611][T13472] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1012.827652][T13472] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1012.834574][T13472] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1012.860546][T13472] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1012.881951][T13472] device hsr_slave_0 entered promiscuous mode
[ 1012.888529][T13472] device hsr_slave_1 entered promiscuous mode
[ 1012.956344][T13472] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1012.965637][ T3625] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 1012.973585][ T3625] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1012.983658][T13472] 8021q: adding VLAN 0 to HW filter on device team0
[ 1012.992068][ T6845] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 1013.000788][ T6845] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1013.009006][ T6845] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1013.016070][ T6845] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1013.023942][ T6848] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 1013.033498][ T3625] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 1013.042635][ T3625] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1013.050867][ T3625] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1013.057899][ T3625] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1013.073086][T13472] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 1013.083471][T13472] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 1013.094931][ T3625] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 1013.103571][ T3625] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 1013.112288][ T3625] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 1013.120697][ T3625] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 1013.129549][ T3625] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 1013.137907][ T3625] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 1013.146489][ T3625] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 1013.154852][ T3625] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1013.163300][ T3625] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 1013.171607][ T3625] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1013.181798][ T3625] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 1013.189716][ T3625] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 1013.199800][   T77] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 1013.207201][   T77] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 1013.216606][T13472] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1013.291847][   T77] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 1013.300730][   T77] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1013.339081][ T6845] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 1013.347331][ T6845] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1013.356705][T13472] device veth0_vlan entered promiscuous mode
[ 1013.365042][T13472] device veth1_vlan entered promiscuous mode
[ 1013.371946][ T6848] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 1013.379899][ T6848] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1013.387613][ T6848] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1013.402470][T13472] device veth0_macvtap entered promiscuous mode
[ 1013.409473][ T6845] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 1013.417613][ T6845] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1013.426012][ T6845] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 1013.435363][T13472] device veth1_macvtap entered promiscuous mode
[ 1013.446181][T13472] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 1013.456740][T13472] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1013.466584][T13472] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 1013.476998][T13472] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1013.486801][T13472] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 1013.497221][T13472] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1013.507172][T13472] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 1013.517585][T13472] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1013.527404][T13472] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 1013.537830][T13472] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1013.548690][T13472] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1013.557848][T13472] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 1013.568389][T13472] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1013.578266][T13472] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 1013.588680][T13472] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1013.598483][T13472] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 1013.608887][T13472] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1013.618703][T13472] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 1013.629111][T13472] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1013.638925][T13472] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 1013.649349][T13472] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1013.662223][T13472] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1013.670897][ T3625] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 1013.679425][ T3625] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
11:28:49 executing program 0:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f00000000c0)='./cgroup/syz0\x00', 0x200002, 0x0)
openat$cgroup_devices(r0, &(0x7f0000000100)='devices.deny\x00', 0x2, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000240)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080), 0x12)

11:28:49 executing program 5:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r1, &(0x7f0000000000), 0x10)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff0000000003bd000000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b', @ANYRES32], 0x50}}, 0x0)

11:28:49 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x74000000, 0x12)

11:28:49 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x0, 0x0, 0x56)
socket$inet6(0xa, 0x80001, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x80000, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x10000000000, 0x12)

11:28:49 executing program 4:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff0000000000000d0000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b'], 0x50}}, 0x0)

11:28:49 executing program 2:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
socket$inet6(0xa, 0x0, 0x0)
setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x30, 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x0, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x700, 0x12)

[ 1013.689766][ T3625] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 1013.698436][ T3625] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
11:28:49 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x0, 0x0, 0x56)
socket$inet6(0xa, 0x80001, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x80000, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x1000000000000, 0x12)

11:28:49 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x7a000000, 0x12)

11:28:49 executing program 0:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f00000000c0)='./cgroup/syz0\x00', 0x200002, 0x0)
openat$cgroup_devices(r0, &(0x7f0000000100)='devices.deny\x00', 0x2, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000240)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080), 0x12)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) (async)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f00000000c0)='./cgroup/syz0\x00', 0x200002, 0x0) (async)
openat$cgroup_devices(r0, &(0x7f0000000100)='devices.deny\x00', 0x2, 0x0) (async)
openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0) (async)
openat$cgroup_int(r1, &(0x7f0000000240)='memory.max\x00', 0x2, 0x0) (async)
write$cgroup_int(r2, &(0x7f0000000080), 0x12) (async)

11:28:49 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x0, 0x0, 0x56)
socket$inet6(0xa, 0x80001, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x80000, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x4000000000000, 0x12)

11:28:49 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0xfeffffff, 0x12)

[ 1013.820872][T13517] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1013.831107][T13517] CPU: 0 PID: 13517 Comm: syz-executor.2 Not tainted 5.17.0-rc7-syzkaller-00078-g3bf7edc84a9e-dirty #0
[ 1013.842132][T13517] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1013.852197][T13517] Call Trace:
[ 1013.855474][T13517]  <TASK>
[ 1013.858401][T13517]  dump_stack_lvl+0xd6/0x122
[ 1013.862996][T13517]  dump_stack+0x11/0x1b
[ 1013.867188][T13517]  dump_header+0x98/0x410
[ 1013.871500][T13517]  oom_kill_process+0x18e/0x4a0
[ 1013.876418][T13517]  out_of_memory+0x61d/0x8c0
[ 1013.881070][T13517]  ? _raw_spin_unlock_irqrestore+0x3d/0x60
[ 1013.886877][T13517]  memory_max_write+0x32c/0x3d0
[ 1013.891709][T13517]  ? memory_max_show+0x70/0x70
[ 1013.896529][T13517]  cgroup_file_write+0x161/0x300
[ 1013.901477][T13517]  ? __check_object_size+0x22a/0x2d0
[ 1013.906747][T13517]  ? cgroup_seqfile_stop+0x70/0x70
[ 1013.911851][T13517]  kernfs_fop_write_iter+0x1d3/0x2d0
[ 1013.917128][T13517]  vfs_write+0x7f5/0x950
[ 1013.921367][T13517]  ksys_write+0xd9/0x190
[ 1013.925587][T13517]  __x64_sys_write+0x3e/0x50
[ 1013.930153][T13517]  do_syscall_64+0x44/0xd0
[ 1013.934551][T13517]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1013.940492][T13517] RIP: 0033:0x7f1d3184b049
[ 1013.944917][T13517] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1013.964546][T13517] RSP: 002b:00007f1d309c1168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1013.972939][T13517] RAX: ffffffffffffffda RBX: 00007f1d3195df60 RCX: 00007f1d3184b049
[ 1013.980961][T13517] RDX: 0000000000000012 RSI: 0000000020000080 RDI: 0000000000000006
[ 1013.988910][T13517] RBP: 00007f1d318a508d R08: 0000000000000000 R09: 0000000000000000
[ 1013.996860][T13517] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1014.004822][T13517] R13: 00007ffc96a4069f R14: 00007f1d309c1300 R15: 0000000000022000
[ 1014.012771][T13517]  </TASK>
11:28:50 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x0, 0x0, 0x56)
socket$inet6(0xa, 0x80001, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x80000, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0xf0ffffffffff7f, 0x12)

11:28:50 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0xfffffffe, 0x12)

[ 1014.015899][T13517] memory: usage 396kB, limit 1998848kB, failcnt 6417
[ 1014.022579][T13517] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1014.029444][T13517] Memory cgroup stats for /syz0:
[ 1014.029768][T13517] anon 98304
[ 1014.029768][T13517] file 81920
[ 1014.029768][T13517] kernel_stack 32768
[ 1014.029768][T13517] pagetables 90112
[ 1014.029768][T13517] percpu 0
[ 1014.029768][T13517] sock 0
[ 1014.029768][T13517] vmalloc 0
[ 1014.029768][T13517] shmem 77824
[ 1014.029768][T13517] file_mapped 77824
[ 1014.029768][T13517] file_dirty 4096
[ 1014.029768][T13517] file_writeback 0
[ 1014.029768][T13517] swapcached 0
[ 1014.029768][T13517] inactive_anon 114688
[ 1014.029768][T13517] active_anon 61440
[ 1014.029768][T13517] inactive_file 0
[ 1014.029768][T13517] active_file 4096
[ 1014.029768][T13517] unevictable 0
[ 1014.029768][T13517] slab_reclaimable 29592
[ 1014.029768][T13517] slab_unreclaimable 47672
[ 1014.029768][T13517] slab 77264
[ 1014.029768][T13517] workingset_refault_anon 0
[ 1014.029768][T13517] workingset_refault_file 2
[ 1014.029768][T13517] workingset_activate_anon 0
[ 1014.029768][T13517] workingset_activate_file 0
[ 1014.029768][T13517] workingset_restore_anon 0
[ 1014.125232][T13517] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=13532,uid=0
[ 1014.140607][T13517] Memory cgroup out of memory: Killed process 13532 (syz-executor.0) total-vm:48612kB, anon-rss:384kB, file-rss:14336kB, shmem-rss:0kB, UID:0 pgtables:92kB oom_score_adj:1000
[ 1014.158564][   T26] oom_reaper: reaped process 13532 (syz-executor.0), now anon-rss:0kB, file-rss:14336kB, shmem-rss:4kB
11:28:50 executing program 5:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r1, &(0x7f0000000000), 0x10)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff0000000002c2000000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b', @ANYRES32], 0x50}}, 0x0)

11:28:50 executing program 4:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff0000000000000e0000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b'], 0x50}}, 0x0)

11:28:50 executing program 0:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f00000000c0)='./cgroup/syz0\x00', 0x200002, 0x0)
openat$cgroup_devices(r0, &(0x7f0000000100)='devices.deny\x00', 0x2, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000240)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080), 0x12)

11:28:50 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x10000000000, 0x12)

11:28:50 executing program 2:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
socket$inet6(0xa, 0x0, 0x0)
setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x30, 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x0, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0xa00, 0x12)

11:28:50 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x0, 0x0, 0x56)
socket$inet6(0xa, 0x80001, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x80000, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x100000000000000, 0x12)

11:28:50 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x4000000000000, 0x12)

11:28:50 executing program 0:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
r0 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = openat$cgroup(r1, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, &(0x7f00000000c0)={0x5, 0x7, 0x5})
r3 = dup2(r0, r1)
getsockopt$inet_tcp_buf(r3, 0x6, 0xb, &(0x7f0000000280)=""/4096, &(0x7f0000001280)=0x1000)
r4 = openat$cgroup_int(r2, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
ioctl$TCSETSW(r0, 0x5403, &(0x7f0000000240)={0xffffff65, 0x3598, 0x101, 0x5, 0x7, "ffc1e6e7ae22526eac333e3c476c887841475a"})
openat$cgroup_int(r1, &(0x7f0000000100)='cpuset.memory_spread_page\x00', 0x2, 0x0)
write$cgroup_int(r4, &(0x7f0000000080), 0x12)

11:28:50 executing program 4:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff0000000000000f0000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b'], 0x50}}, 0x0)

11:28:50 executing program 5:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r1, &(0x7f0000000000), 0x10)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff0000000005c3000000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b', @ANYRES32], 0x50}}, 0x0)

11:28:50 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0xf0ffffffffff7f, 0x12)

11:28:50 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x0, 0x0, 0x56)
socket$inet6(0xa, 0x80001, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x80000, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x200000000000000, 0x12)

11:28:50 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x100000000000000, 0x12)

11:28:50 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x0, 0x0, 0x56)
socket$inet6(0xa, 0x80001, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x80000, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x300000000000000, 0x12)

11:28:50 executing program 4:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff000000000000100000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b'], 0x50}}, 0x0)

11:28:50 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x200000000000000, 0x12)

[ 1014.708878][T13559] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1014.719200][T13559] CPU: 0 PID: 13559 Comm: syz-executor.0 Not tainted 5.17.0-rc7-syzkaller-00078-g3bf7edc84a9e-dirty #0
[ 1014.730230][T13559] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1014.740346][T13559] Call Trace:
[ 1014.743686][T13559]  <TASK>
[ 1014.746612][T13559]  dump_stack_lvl+0xd6/0x122
[ 1014.751206][T13559]  dump_stack+0x11/0x1b
[ 1014.755367][T13559]  dump_header+0x98/0x410
[ 1014.759694][T13559]  oom_kill_process+0x18e/0x4a0
[ 1014.764589][T13559]  out_of_memory+0x61d/0x8c0
[ 1014.769235][T13559]  memory_max_write+0x32c/0x3d0
[ 1014.774075][T13559]  ? memory_max_show+0x70/0x70
[ 1014.778840][T13559]  cgroup_file_write+0x161/0x300
[ 1014.783779][T13559]  ? __check_object_size+0x22a/0x2d0
[ 1014.789056][T13559]  ? cgroup_seqfile_stop+0x70/0x70
[ 1014.794196][T13559]  kernfs_fop_write_iter+0x1d3/0x2d0
[ 1014.799466][T13559]  vfs_write+0x7f5/0x950
[ 1014.803736][T13559]  ksys_write+0xd9/0x190
[ 1014.807959][T13559]  __x64_sys_write+0x3e/0x50
[ 1014.812530][T13559]  do_syscall_64+0x44/0xd0
[ 1014.816927][T13559]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1014.822809][T13559] RIP: 0033:0x7fcc195fc049
[ 1014.827215][T13559] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1014.846818][T13559] RSP: 002b:00007fcc18772168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1014.855223][T13559] RAX: ffffffffffffffda RBX: 00007fcc1970ef60 RCX: 00007fcc195fc049
[ 1014.863171][T13559] RDX: 0000000000000012 RSI: 0000000020000080 RDI: 0000000000000006
[ 1014.871202][T13559] RBP: 00007fcc1965608d R08: 0000000000000000 R09: 0000000000000000
[ 1014.879168][T13559] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1014.887175][T13559] R13: 00007fffbbe0364f R14: 00007fcc18772300 R15: 0000000000022000
[ 1014.895152][T13559]  </TASK>
[ 1014.898295][T13559] memory: usage 416kB, limit 140737488355328kB, failcnt 6417
[ 1014.905650][T13559] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1014.912495][T13559] Memory cgroup stats for /syz0:
[ 1014.915069][T13559] anon 139264
[ 1014.915069][T13559] file 81920
[ 1014.915069][T13559] kernel_stack 32768
[ 1014.915069][T13559] pagetables 90112
[ 1014.915069][T13559] percpu 0
[ 1014.915069][T13559] sock 0
[ 1014.915069][T13559] vmalloc 0
[ 1014.915069][T13559] shmem 77824
[ 1014.915069][T13559] file_mapped 77824
[ 1014.915069][T13559] file_dirty 4096
[ 1014.915069][T13559] file_writeback 0
[ 1014.915069][T13559] swapcached 0
[ 1014.915069][T13559] inactive_anon 155648
[ 1014.915069][T13559] active_anon 61440
[ 1014.915069][T13559] inactive_file 0
[ 1014.915069][T13559] active_file 4096
[ 1014.915069][T13559] unevictable 0
[ 1014.915069][T13559] slab_reclaimable 10888
[ 1014.915069][T13559] slab_unreclaimable 43752
[ 1014.915069][T13559] slab 54640
[ 1014.915069][T13559] workingset_refault_anon 0
[ 1014.915069][T13559] workingset_refault_file 2
[ 1014.915069][T13559] workingset_activate_anon 0
[ 1014.915069][T13559] workingset_activate_file 0
[ 1014.915069][T13559] workingset_restore_anon 0
[ 1015.010562][T13559] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=13472,uid=0
[ 1015.025882][T13559] Memory cgroup out of memory: Killed process 13472 (syz-executor.0) total-vm:48480kB, anon-rss:384kB, file-rss:15192kB, shmem-rss:64kB, UID:0 pgtables:80kB oom_score_adj:0
[ 1015.046100][   T26] oom_reaper: reaped process 13472 (syz-executor.0), now anon-rss:0kB, file-rss:14336kB, shmem-rss:64kB
11:28:51 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x300000000000000, 0x12)

11:28:51 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x0, 0x0, 0x56)
socket$inet6(0xa, 0x80001, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x80000, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x400000000000000, 0x12)

11:28:51 executing program 2:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
socket$inet6(0xa, 0x0, 0x0)
setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x30, 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x0, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x2800, 0x12)

11:28:51 executing program 4:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff000000000000110000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b'], 0x50}}, 0x0)

11:28:51 executing program 5:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r1, &(0x7f0000000000), 0x10)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff0000ffffffc3000000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b', @ANYRES32], 0x50}}, 0x0)

11:28:51 executing program 0:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
r0 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) (async)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = openat$cgroup(r1, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0) (async)
ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, &(0x7f00000000c0)={0x5, 0x7, 0x5}) (async)
r3 = dup2(r0, r1)
getsockopt$inet_tcp_buf(r3, 0x6, 0xb, &(0x7f0000000280)=""/4096, &(0x7f0000001280)=0x1000)
r4 = openat$cgroup_int(r2, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0) (async)
ioctl$TCSETSW(r0, 0x5403, &(0x7f0000000240)={0xffffff65, 0x3598, 0x101, 0x5, 0x7, "ffc1e6e7ae22526eac333e3c476c887841475a"}) (async)
openat$cgroup_int(r1, &(0x7f0000000100)='cpuset.memory_spread_page\x00', 0x2, 0x0)
write$cgroup_int(r4, &(0x7f0000000080), 0x12)

11:28:51 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x400000000000000, 0x12)

11:28:51 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x0, 0x0, 0x56)
socket$inet6(0xa, 0x80001, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x80000, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x500000000000000, 0x12)

11:28:51 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x500000000000000, 0x12)

11:28:51 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x0, 0x0, 0x56)
socket$inet6(0xa, 0x80001, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x80000, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x600000000000000, 0x12)

11:28:51 executing program 4:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff000000000000120000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b'], 0x50}}, 0x0)

11:28:51 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x0, 0x0, 0x56)
socket$inet6(0xa, 0x80001, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x80000, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x700000000000000, 0x12)

11:28:51 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x600000000000000, 0x12)

11:28:51 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x700000000000000, 0x12)

[ 1015.798071][T22349] device hsr_slave_0 left promiscuous mode
[ 1015.806741][T22349] device hsr_slave_1 left promiscuous mode
[ 1015.819422][T22349] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1015.826867][T22349] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1015.842143][T22349] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1015.849640][T22349] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1015.875030][T22349] device bridge_slave_1 left promiscuous mode
[ 1015.881311][T22349] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1015.903081][T22349] device bridge_slave_0 left promiscuous mode
[ 1015.909298][T22349] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1015.936557][T22349] device veth1_macvtap left promiscuous mode
[ 1015.942571][T22349] device veth0_macvtap left promiscuous mode
[ 1015.948717][T22349] device veth1_vlan left promiscuous mode
[ 1015.954459][T22349] device veth0_vlan left promiscuous mode
[ 1016.169303][T22349] team0 (unregistering): Port device team_slave_1 removed
[ 1016.179774][T22349] team0 (unregistering): Port device team_slave_0 removed
[ 1016.189886][T22349] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1016.203734][T22349] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1016.234674][T22349] bond0 (unregistering): Released all slaves
11:28:52 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x800000000000000, 0x12)

11:28:52 executing program 5:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r1, &(0x7f0000000000), 0x10)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff0000000005c4000000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b', @ANYRES32], 0x50}}, 0x0)

11:28:52 executing program 2:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
socket$inet6(0xa, 0x0, 0x0)
setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x30, 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x0, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x4200, 0x12)

[ 1016.362438][T13626] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1016.372623][T13626] CPU: 0 PID: 13626 Comm: syz-executor.2 Not tainted 5.17.0-rc7-syzkaller-00078-g3bf7edc84a9e-dirty #0
[ 1016.383640][T13626] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1016.393700][T13626] Call Trace:
[ 1016.396957][T13626]  <TASK>
[ 1016.399865][T13626]  dump_stack_lvl+0xd6/0x122
[ 1016.404451][T13626]  dump_stack+0x11/0x1b
[ 1016.408641][T13626]  dump_header+0x98/0x410
[ 1016.413001][T13626]  out_of_memory+0x65c/0x8c0
[ 1016.417571][T13626]  memory_max_write+0x32c/0x3d0
[ 1016.422402][T13626]  ? memory_max_show+0x70/0x70
[ 1016.427145][T13626]  cgroup_file_write+0x161/0x300
[ 1016.432090][T13626]  ? __check_object_size+0x22a/0x2d0
[ 1016.437354][T13626]  ? cgroup_seqfile_stop+0x70/0x70
[ 1016.442475][T13626]  kernfs_fop_write_iter+0x1d3/0x2d0
[ 1016.447767][T13626]  vfs_write+0x7f5/0x950
[ 1016.452011][T13626]  ksys_write+0xd9/0x190
[ 1016.456281][T13626]  __x64_sys_write+0x3e/0x50
[ 1016.460877][T13626]  do_syscall_64+0x44/0xd0
[ 1016.465278][T13626]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1016.471167][T13626] RIP: 0033:0x7f1d3184b049
[ 1016.475557][T13626] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1016.495299][T13626] RSP: 002b:00007f1d309c1168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1016.503752][T13626] RAX: ffffffffffffffda RBX: 00007f1d3195df60 RCX: 00007f1d3184b049
[ 1016.511706][T13626] RDX: 0000000000000012 RSI: 0000000020000080 RDI: 0000000000000006
[ 1016.519729][T13626] RBP: 00007f1d318a508d R08: 0000000000000000 R09: 0000000000000000
[ 1016.527808][T13626] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1016.535763][T13626] R13: 00007ffc96a4069f R14: 00007f1d309c1300 R15: 0000000000022000
[ 1016.543776][T13626]  </TASK>
[ 1016.546795][T13626] memory: usage 104kB, limit 16kB, failcnt 6417
[ 1016.553149][T13626] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1016.560132][T13626] Memory cgroup stats for /syz0:
[ 1016.561733][T13626] anon 0
[ 1016.561733][T13626] file 81920
[ 1016.561733][T13626] kernel_stack 0
[ 1016.561733][T13626] pagetables 0
[ 1016.561733][T13626] percpu 0
[ 1016.561733][T13626] sock 0
[ 1016.561733][T13626] vmalloc 0
[ 1016.561733][T13626] shmem 77824
[ 1016.561733][T13626] file_mapped 77824
[ 1016.561733][T13626] file_dirty 4096
[ 1016.561733][T13626] file_writeback 0
[ 1016.561733][T13626] swapcached 0
[ 1016.561733][T13626] inactive_anon 16384
[ 1016.561733][T13626] active_anon 61440
[ 1016.561733][T13626] inactive_file 0
[ 1016.561733][T13626] active_file 4096
[ 1016.561733][T13626] unevictable 0
[ 1016.561733][T13626] slab_reclaimable 6440
[ 1016.561733][T13626] slab_unreclaimable 16136
[ 1016.561733][T13626] slab 22576
[ 1016.561733][T13626] workingset_refault_anon 0
[ 1016.561733][T13626] workingset_refault_file 2
[ 1016.561733][T13626] workingset_activate_anon 0
[ 1016.561733][T13626] workingset_activate_file 0
[ 1016.561733][T13626] workingset_restore_anon 0
[ 1016.656099][T13626] Out of memory and no killable processes...
[ 1017.289413][T13631] chnl_net:caif_netlink_parms(): no params data found
[ 1017.319167][T13631] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1017.326198][T13631] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1017.333971][T13631] device bridge_slave_0 entered promiscuous mode
[ 1017.341091][T13631] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1017.348221][T13631] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1017.356521][T13631] device bridge_slave_1 entered promiscuous mode
[ 1017.372399][T13631] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1017.382373][T13631] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1017.399224][T13631] team0: Port device team_slave_0 added
[ 1017.405528][T13631] team0: Port device team_slave_1 added
[ 1017.419524][T13631] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1017.426487][T13631] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1017.452618][T13631] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1017.464858][T13631] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1017.471809][T13631] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1017.497763][T13631] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1017.518793][T13631] device hsr_slave_0 entered promiscuous mode
[ 1017.525339][T13631] device hsr_slave_1 entered promiscuous mode
[ 1017.573908][T13631] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1017.580958][T13631] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1017.588297][T13631] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1017.595315][T13631] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1017.620410][T13631] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1017.630827][ T1928] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1017.638834][ T1928] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1017.647577][ T1928] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1017.656114][ T1928] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
[ 1017.666746][T13631] 8021q: adding VLAN 0 to HW filter on device team0
[ 1017.675867][ T6848] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1017.684452][ T6848] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1017.691475][ T6848] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1017.701676][ T3625] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1017.710884][ T3625] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1017.717924][ T3625] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1017.735747][T13631] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 1017.746101][T13631] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 1017.759602][ T3625] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 1017.768559][ T3625] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 1017.777122][ T3625] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1017.785336][ T3625] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1017.793908][ T3625] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 1017.801413][ T3625] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 1017.815849][T13631] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1017.823122][ T3625] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 1017.830639][ T3625] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 1017.895394][ T3625] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1017.942895][T13631] device veth0_vlan entered promiscuous mode
[ 1017.949910][ T1928] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1017.959426][ T1928] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1017.967459][ T1928] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1017.978229][T13631] device veth1_vlan entered promiscuous mode
[ 1017.991207][ T6848] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 1017.999250][ T6848] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 1018.007633][ T6848] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1018.017571][T13631] device veth0_macvtap entered promiscuous mode
[ 1018.025601][T13631] device veth1_macvtap entered promiscuous mode
[ 1018.036447][T13631] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 1018.047027][T13631] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1018.056926][T13631] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 1018.067342][T13631] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1018.077202][T13631] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 1018.087627][T13631] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1018.097481][T13631] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 1018.107928][T13631] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1018.117742][T13631] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 1018.128237][T13631] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1018.140079][T13631] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1018.148184][ T6845] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1018.157401][ T6845] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 1018.166637][T13631] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 1018.177075][T13631] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1018.186941][T13631] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 1018.197512][T13631] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1018.207315][T13631] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 1018.217725][T13631] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1018.227538][T13631] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
11:28:54 executing program 0:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
r0 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = openat$cgroup(r1, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, &(0x7f00000000c0)={0x5, 0x7, 0x5})
r3 = dup2(r0, r1)
getsockopt$inet_tcp_buf(r3, 0x6, 0xb, &(0x7f0000000280)=""/4096, &(0x7f0000001280)=0x1000)
r4 = openat$cgroup_int(r2, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
ioctl$TCSETSW(r0, 0x5403, &(0x7f0000000240)={0xffffff65, 0x3598, 0x101, 0x5, 0x7, "ffc1e6e7ae22526eac333e3c476c887841475a"})
openat$cgroup_int(r1, &(0x7f0000000100)='cpuset.memory_spread_page\x00', 0x2, 0x0)
write$cgroup_int(r4, &(0x7f0000000080), 0x12)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) (async)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) (async)
openat$cgroup(r1, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0) (async)
ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, &(0x7f00000000c0)={0x5, 0x7, 0x5}) (async)
dup2(r0, r1) (async)
getsockopt$inet_tcp_buf(r3, 0x6, 0xb, &(0x7f0000000280)=""/4096, &(0x7f0000001280)=0x1000) (async)
openat$cgroup_int(r2, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0) (async)
ioctl$TCSETSW(r0, 0x5403, &(0x7f0000000240)={0xffffff65, 0x3598, 0x101, 0x5, 0x7, "ffc1e6e7ae22526eac333e3c476c887841475a"}) (async)
openat$cgroup_int(r1, &(0x7f0000000100)='cpuset.memory_spread_page\x00', 0x2, 0x0) (async)
write$cgroup_int(r4, &(0x7f0000000080), 0x12) (async)

11:28:54 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x0, 0x0, 0x56)
socket$inet6(0xa, 0x80001, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x80000, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x800000000000000, 0x12)

11:28:54 executing program 4:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff000000000000200000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b'], 0x50}}, 0x0)

11:28:54 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x900000000000000, 0x12)

11:28:54 executing program 5:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r1, &(0x7f0000000000), 0x10)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff0000000002cb000000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b', @ANYRES32], 0x50}}, 0x0)

11:28:54 executing program 2:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
socket$inet6(0xa, 0x0, 0x0)
setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x30, 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x0, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x4500, 0x12)

[ 1018.237941][T13631] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1018.247755][T13631] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 1018.258220][T13631] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1018.269546][T13631] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1018.277571][   T77] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
11:28:54 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0xa00000000000000, 0x12)

11:28:54 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x0, 0x0, 0x56)
socket$inet6(0xa, 0x80001, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x80000, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x900000000000000, 0x12)

11:28:54 executing program 4:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff000000000003200000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b'], 0x50}}, 0x0)

[ 1018.417487][T13678] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1018.427732][T13678] CPU: 0 PID: 13678 Comm: syz-executor.2 Not tainted 5.17.0-rc7-syzkaller-00078-g3bf7edc84a9e-dirty #0
[ 1018.438752][T13678] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1018.448886][T13678] Call Trace:
[ 1018.452166][T13678]  <TASK>
[ 1018.455092][T13678]  dump_stack_lvl+0xd6/0x122
[ 1018.459762][T13678]  dump_stack+0x11/0x1b
11:28:54 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0xb00000000000000, 0x12)

11:28:54 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x0, 0x0, 0x56)
socket$inet6(0xa, 0x80001, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x80000, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0xa00000000000000, 0x12)

11:28:54 executing program 0:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
close(r0)
bind$inet(r0, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10)
connect$inet(r0, &(0x7f0000001280)={0x2, 0x0, @multicast1}, 0x10)
splice(0xffffffffffffffff, 0x0, r0, 0x0, 0x5, 0x5)
r1 = socket(0x10, 0x2, 0x0)
getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0, <r2=>0x0}, &(0x7f0000cab000)=0xc)
chown(&(0x7f0000000000)='./control\x00', 0xee00, r2)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000280)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x0, r2}}, './file0\x00'})
r3 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x100)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
syncfs(r3)
move_mount(r3, &(0x7f0000000100)='./file0\x00', 0xffffffffffffffff, &(0x7f0000000240)='./file0\x00', 0x40)
creat(&(0x7f00000000c0)='./file0\x00', 0x10)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r4 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r5 = openat$cgroup(r4, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r6 = openat$cgroup_int(r5, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r6, &(0x7f0000000080), 0x12)

[ 1018.464094][T13678]  dump_header+0x98/0x410
[ 1018.468425][T13678]  oom_kill_process+0x18e/0x4a0
[ 1018.473284][T13678]  out_of_memory+0x61d/0x8c0
[ 1018.477891][T13678]  ? _raw_spin_unlock_irqrestore+0x3d/0x60
[ 1018.483701][T13678]  memory_max_write+0x32c/0x3d0
[ 1018.488560][T13678]  ? memory_max_show+0x70/0x70
[ 1018.493342][T13678]  cgroup_file_write+0x161/0x300
[ 1018.498284][T13678]  ? __check_object_size+0x22a/0x2d0
[ 1018.503587][T13678]  ? cgroup_seqfile_stop+0x70/0x70
[ 1018.508715][T13678]  kernfs_fop_write_iter+0x1d3/0x2d0
[ 1018.513980][T13678]  vfs_write+0x7f5/0x950
[ 1018.518213][T13678]  ksys_write+0xd9/0x190
[ 1018.522482][T13678]  __x64_sys_write+0x3e/0x50
[ 1018.527065][T13678]  do_syscall_64+0x44/0xd0
[ 1018.531473][T13678]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1018.537362][T13678] RIP: 0033:0x7f1d3184b049
[ 1018.541756][T13678] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1018.561358][T13678] RSP: 002b:00007f1d309c1168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1018.569764][T13678] RAX: ffffffffffffffda RBX: 00007f1d3195df60 RCX: 00007f1d3184b049
[ 1018.577714][T13678] RDX: 0000000000000012 RSI: 0000000020000080 RDI: 0000000000000006
[ 1018.585691][T13678] RBP: 00007f1d318a508d R08: 0000000000000000 R09: 0000000000000000
[ 1018.593652][T13678] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1018.601598][T13678] R13: 00007ffc96a4069f R14: 00007f1d309c1300 R15: 0000000000022000
[ 1018.609551][T13678]  </TASK>
11:28:54 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0xc00000000000000, 0x12)

[ 1018.612586][T13678] memory: usage 364kB, limit 633318697598976kB, failcnt 6427
[ 1018.619996][T13678] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1018.626979][T13678] Memory cgroup stats for /syz0:
[ 1018.634632][T13678] anon 49152
[ 1018.634632][T13678] file 81920
[ 1018.634632][T13678] kernel_stack 16384
[ 1018.634632][T13678] pagetables 69632
[ 1018.634632][T13678] percpu 0
[ 1018.634632][T13678] sock 0
[ 1018.634632][T13678] vmalloc 0
[ 1018.634632][T13678] shmem 77824
[ 1018.634632][T13678] file_mapped 77824
11:28:54 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x0, 0x0, 0x56)
socket$inet6(0xa, 0x80001, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x80000, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0xb00000000000000, 0x12)

[ 1018.634632][T13678] file_dirty 4096
[ 1018.634632][T13678] file_writeback 0
[ 1018.634632][T13678] swapcached 0
[ 1018.634632][T13678] inactive_anon 61440
[ 1018.634632][T13678] active_anon 61440
[ 1018.634632][T13678] inactive_file 0
[ 1018.634632][T13678] active_file 4096
[ 1018.634632][T13678] unevictable 0
[ 1018.634632][T13678] slab_reclaimable 20712
[ 1018.634632][T13678] slab_unreclaimable 99088
[ 1018.634632][T13678] slab 119800
[ 1018.634632][T13678] workingset_refault_anon 0
[ 1018.634632][T13678] workingset_refault_file 2
[ 1018.634632][T13678] workingset_activate_anon 0
[ 1018.634632][T13678] workingset_activate_file 0
[ 1018.634632][T13678] workingset_restore_anon 0
[ 1018.729922][T13678] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=13681,uid=0
[ 1018.745154][T13678] Memory cgroup out of memory: OOM victim 13681 (syz-executor.0) is already exiting. Skip killing the task
[ 1018.758166][T13678] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
11:28:54 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x0, 0x0, 0x56)
socket$inet6(0xa, 0x80001, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x80000, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0xc00000000000000, 0x12)

11:28:54 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0xd00000000000000, 0x12)

[ 1018.768387][T13678] CPU: 0 PID: 13678 Comm: syz-executor.2 Not tainted 5.17.0-rc7-syzkaller-00078-g3bf7edc84a9e-dirty #0
[ 1018.779493][T13678] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1018.789553][T13678] Call Trace:
[ 1018.792829][T13678]  <TASK>
[ 1018.795791][T13678]  dump_stack_lvl+0xd6/0x122
[ 1018.800474][T13678]  dump_stack+0x11/0x1b
[ 1018.804621][T13678]  dump_header+0x98/0x410
[ 1018.809002][T13678]  oom_kill_process+0x18e/0x4a0
[ 1018.813887][T13678]  out_of_memory+0x61d/0x8c0
[ 1018.818504][T13678]  memory_max_write+0x32c/0x3d0
[ 1018.823335][T13678]  ? memory_max_show+0x70/0x70
[ 1018.828251][T13678]  cgroup_file_write+0x161/0x300
[ 1018.833170][T13678]  ? __check_object_size+0x22a/0x2d0
[ 1018.838457][T13678]  ? cgroup_seqfile_stop+0x70/0x70
[ 1018.843543][T13678]  kernfs_fop_write_iter+0x1d3/0x2d0
[ 1018.848827][T13678]  vfs_write+0x7f5/0x950
[ 1018.853120][T13678]  ksys_write+0xd9/0x190
[ 1018.857418][T13678]  __x64_sys_write+0x3e/0x50
[ 1018.862039][T13678]  do_syscall_64+0x44/0xd0
[ 1018.866442][T13678]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1018.872386][T13678] RIP: 0033:0x7f1d3184b049
[ 1018.876795][T13678] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1018.896441][T13678] RSP: 002b:00007f1d309c1168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1018.904904][T13678] RAX: ffffffffffffffda RBX: 00007f1d3195df60 RCX: 00007f1d3184b049
[ 1018.912871][T13678] RDX: 0000000000000012 RSI: 0000000020000080 RDI: 0000000000000006
[ 1018.920822][T13678] RBP: 00007f1d318a508d R08: 0000000000000000 R09: 0000000000000000
[ 1018.928777][T13678] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1018.936795][T13678] R13: 00007ffc96a4069f R14: 00007f1d309c1300 R15: 0000000000022000
[ 1018.944801][T13678]  </TASK>
[ 1018.947907][T13678] memory: usage 444kB, limit 844424930131968kB, failcnt 6427
[ 1018.955272][T13678] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
11:28:54 executing program 5:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r1, &(0x7f0000000000), 0x10)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff0000000003e0000000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b', @ANYRES32], 0x50}}, 0x0)

[ 1018.962151][T13678] Memory cgroup stats for /syz0:
[ 1018.969087][T13678] anon 151552
[ 1018.969087][T13678] file 81920
[ 1018.969087][T13678] kernel_stack 32768
[ 1018.969087][T13678] pagetables 94208
[ 1018.969087][T13678] percpu 0
[ 1018.969087][T13678] sock 0
[ 1018.969087][T13678] vmalloc 0
[ 1018.969087][T13678] shmem 77824
[ 1018.969087][T13678] file_mapped 77824
[ 1018.969087][T13678] file_dirty 0
[ 1018.969087][T13678] file_writeback 0
[ 1018.969087][T13678] swapcached 0
[ 1018.969087][T13678] inactive_anon 167936
[ 1018.969087][T13678] active_anon 61440
[ 1018.969087][T13678] inactive_file 0
[ 1018.969087][T13678] active_file 4096
[ 1018.969087][T13678] unevictable 0
[ 1018.969087][T13678] slab_reclaimable 18616
[ 1018.969087][T13678] slab_unreclaimable 45312
[ 1018.969087][T13678] slab 63928
[ 1018.969087][T13678] workingset_refault_anon 0
[ 1018.969087][T13678] workingset_refault_file 2
[ 1018.969087][T13678] workingset_activate_anon 0
[ 1018.969087][T13678] workingset_activate_file 0
[ 1018.969087][T13678] workingset_restore_anon 0
[ 1019.064261][T13678] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=13705,uid=0
[ 1019.079570][T13678] Memory cgroup out of memory: Killed process 13705 (syz-executor.0) total-vm:52452kB, anon-rss:384kB, file-rss:14336kB, shmem-rss:0kB, UID:0 pgtables:100kB oom_score_adj:1000
[ 1019.097862][   T26] oom_reaper: reaped process 13705 (syz-executor.0), now anon-rss:0kB, file-rss:14336kB, shmem-rss:16kB
11:28:55 executing program 2:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
socket$inet6(0xa, 0x0, 0x0)
setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x30, 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x0, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x4700, 0x12)

11:28:55 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x0, 0x0, 0x56)
socket$inet6(0xa, 0x80001, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x80000, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0xd00000000000000, 0x12)

11:28:55 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0xe00000000000000, 0x12)

11:28:55 executing program 4:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff000000000000220000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b'], 0x50}}, 0x0)

11:28:55 executing program 0:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
close(r0) (async)
bind$inet(r0, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10) (async)
connect$inet(r0, &(0x7f0000001280)={0x2, 0x0, @multicast1}, 0x10) (async)
splice(0xffffffffffffffff, 0x0, r0, 0x0, 0x5, 0x5)
r1 = socket(0x10, 0x2, 0x0)
getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0, <r2=>0x0}, &(0x7f0000cab000)=0xc)
chown(&(0x7f0000000000)='./control\x00', 0xee00, r2)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000280)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x0, r2}}, './file0\x00'})
r3 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x100)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) (async)
syncfs(r3) (async)
move_mount(r3, &(0x7f0000000100)='./file0\x00', 0xffffffffffffffff, &(0x7f0000000240)='./file0\x00', 0x40)
creat(&(0x7f00000000c0)='./file0\x00', 0x10)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
r4 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r5 = openat$cgroup(r4, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r6 = openat$cgroup_int(r5, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r6, &(0x7f0000000080), 0x12)

11:28:55 executing program 5:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r1, &(0x7f0000000000), 0x10)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff0000000002e5000000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b', @ANYRES32], 0x50}}, 0x0)

11:28:55 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x0, 0x0, 0x56)
socket$inet6(0xa, 0x80001, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x80000, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0xe00000000000000, 0x12)

11:28:55 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0xfffffffffffffff, 0x12)

11:28:55 executing program 0:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async, rerun: 32)
r0 = socket$inet_udp(0x2, 0x2, 0x0) (rerun: 32)
close(r0)
bind$inet(r0, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10) (async)
connect$inet(r0, &(0x7f0000001280)={0x2, 0x0, @multicast1}, 0x10) (async)
splice(0xffffffffffffffff, 0x0, r0, 0x0, 0x5, 0x5)
r1 = socket(0x10, 0x2, 0x0)
getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0, <r2=>0x0}, &(0x7f0000cab000)=0xc)
chown(&(0x7f0000000000)='./control\x00', 0xee00, r2) (async)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000280)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x0, r2}}, './file0\x00'})
r3 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x100) (async)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
syncfs(r3) (async, rerun: 64)
move_mount(r3, &(0x7f0000000100)='./file0\x00', 0xffffffffffffffff, &(0x7f0000000240)='./file0\x00', 0x40) (rerun: 64)
creat(&(0x7f00000000c0)='./file0\x00', 0x10) (async)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
r4 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r5 = openat$cgroup(r4, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r6 = openat$cgroup_int(r5, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r6, &(0x7f0000000080), 0x12)

11:28:55 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x1000000000000000, 0x12)

11:28:55 executing program 4:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff000000000000250000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b'], 0x50}}, 0x0)

11:28:55 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x0, 0x0, 0x56)
socket$inet6(0xa, 0x80001, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x80000, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0xfffffffffffffff, 0x12)

[ 1019.305393][T13749] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1019.315642][T13749] CPU: 0 PID: 13749 Comm: syz-executor.0 Not tainted 5.17.0-rc7-syzkaller-00078-g3bf7edc84a9e-dirty #0
[ 1019.326663][T13749] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1019.336791][T13749] Call Trace:
[ 1019.340050][T13749]  <TASK>
[ 1019.342961][T13749]  dump_stack_lvl+0xd6/0x122
[ 1019.347533][T13749]  dump_stack+0x11/0x1b
[ 1019.351668][T13749]  dump_header+0x98/0x410
[ 1019.355974][T13749]  oom_kill_process+0x18e/0x4a0
[ 1019.360857][T13749]  out_of_memory+0x61d/0x8c0
[ 1019.365545][T13749]  memory_max_write+0x32c/0x3d0
[ 1019.370374][T13749]  ? memory_max_show+0x70/0x70
[ 1019.375124][T13749]  cgroup_file_write+0x161/0x300
[ 1019.380127][T13749]  ? __check_object_size+0x22a/0x2d0
[ 1019.385469][T13749]  ? cgroup_seqfile_stop+0x70/0x70
[ 1019.390558][T13749]  kernfs_fop_write_iter+0x1d3/0x2d0
[ 1019.395822][T13749]  vfs_write+0x7f5/0x950
[ 1019.400070][T13749]  ksys_write+0xd9/0x190
[ 1019.404302][T13749]  __x64_sys_write+0x3e/0x50
[ 1019.408935][T13749]  do_syscall_64+0x44/0xd0
[ 1019.413330][T13749]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1019.419205][T13749] RIP: 0033:0x7f0977f23049
[ 1019.423599][T13749] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1019.443180][T13749] RSP: 002b:00007f0977078168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1019.451568][T13749] RAX: ffffffffffffffda RBX: 00007f0978036030 RCX: 00007f0977f23049
[ 1019.459531][T13749] RDX: 0000000000000012 RSI: 0000000020000080 RDI: 0000000000000033
[ 1019.467480][T13749] RBP: 00007f0977f7d08d R08: 0000000000000000 R09: 0000000000000000
[ 1019.475426][T13749] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1019.483436][T13749] R13: 00007ffd63642f5f R14: 00007f0977078300 R15: 0000000000022000
[ 1019.491417][T13749]  </TASK>
[ 1019.494566][T13749] memory: usage 560kB, limit 1125899906842620kB, failcnt 6427
[ 1019.502036][T13749] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1019.508885][T13749] Memory cgroup stats for /syz0:
[ 1019.511233][T13749] anon 131072
[ 1019.511233][T13749] file 81920
[ 1019.511233][T13749] kernel_stack 81920
[ 1019.511233][T13749] pagetables 94208
[ 1019.511233][T13749] percpu 0
[ 1019.511233][T13749] sock 0
[ 1019.511233][T13749] vmalloc 0
[ 1019.511233][T13749] shmem 77824
[ 1019.511233][T13749] file_mapped 77824
[ 1019.511233][T13749] file_dirty 0
[ 1019.511233][T13749] file_writeback 0
[ 1019.511233][T13749] swapcached 0
[ 1019.511233][T13749] inactive_anon 147456
[ 1019.511233][T13749] active_anon 61440
[ 1019.511233][T13749] inactive_file 0
[ 1019.511233][T13749] active_file 4096
[ 1019.511233][T13749] unevictable 0
[ 1019.511233][T13749] slab_reclaimable 43096
[ 1019.511233][T13749] slab_unreclaimable 104440
[ 1019.511233][T13749] slab 147536
[ 1019.511233][T13749] workingset_refault_anon 0
[ 1019.511233][T13749] workingset_refault_file 2
[ 1019.511233][T13749] workingset_activate_anon 0
[ 1019.511233][T13749] workingset_activate_file 0
[ 1019.511233][T13749] workingset_restore_anon 0
[ 1019.606590][T13749] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=13631,uid=0
[ 1019.621930][T13749] Memory cgroup out of memory: Killed process 13631 (syz-executor.0) total-vm:48480kB, anon-rss:384kB, file-rss:15200kB, shmem-rss:64kB, UID:0 pgtables:84kB oom_score_adj:0
[ 1019.639948][   T26] oom_reaper: reaped process 13631 (syz-executor.0), now anon-rss:0kB, file-rss:14336kB, shmem-rss:64kB
11:28:56 executing program 2:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
socket$inet6(0xa, 0x0, 0x0)
setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x30, 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x0, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x4b00, 0x12)

11:28:56 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x1100000000000000, 0x12)

11:28:56 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x0, 0x0, 0x56)
socket$inet6(0xa, 0x80001, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x80000, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x1000000000000000, 0x12)

11:28:56 executing program 5:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r1, &(0x7f0000000000), 0x10)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff0000000002e8000000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b', @ANYRES32], 0x50}}, 0x0)

11:28:56 executing program 4:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff0000000000002a0000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b'], 0x50}}, 0x0)

11:28:56 executing program 0:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
umount2(&(0x7f00000000c0)='./file0\x00', 0x2)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080), 0x12)

11:28:56 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x1200000000000000, 0x12)

11:28:56 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x0, 0x0, 0x56)
socket$inet6(0xa, 0x80001, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x80000, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x1100000000000000, 0x12)

11:28:56 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x1a00000000000000, 0x12)

11:28:56 executing program 5:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r1, &(0x7f0000000000), 0x10)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff0000000003ea000000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b', @ANYRES32], 0x50}}, 0x0)

11:28:56 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x2000000000000000, 0x12)

11:28:56 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x0, 0x0, 0x56)
socket$inet6(0xa, 0x80001, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x80000, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x1200000000000000, 0x12)

[ 1020.223477][T13770] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1020.233709][T13770] CPU: 0 PID: 13770 Comm: syz-executor.2 Not tainted 5.17.0-rc7-syzkaller-00078-g3bf7edc84a9e-dirty #0
[ 1020.244749][T13770] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1020.254836][T13770] Call Trace:
[ 1020.258108][T13770]  <TASK>
[ 1020.261032][T13770]  dump_stack_lvl+0xd6/0x122
[ 1020.265719][T13770]  dump_stack+0x11/0x1b
[ 1020.269878][T13770]  dump_header+0x98/0x410
[ 1020.274205][T13770]  out_of_memory+0x65c/0x8c0
[ 1020.278845][T13770]  memory_max_write+0x32c/0x3d0
[ 1020.283696][T13770]  ? memory_max_show+0x70/0x70
[ 1020.288461][T13770]  cgroup_file_write+0x161/0x300
[ 1020.293447][T13770]  ? __check_object_size+0x22a/0x2d0
[ 1020.298777][T13770]  ? cgroup_seqfile_stop+0x70/0x70
[ 1020.303887][T13770]  kernfs_fop_write_iter+0x1d3/0x2d0
[ 1020.309224][T13770]  vfs_write+0x7f5/0x950
[ 1020.313471][T13770]  ksys_write+0xd9/0x190
[ 1020.317733][T13770]  __x64_sys_write+0x3e/0x50
[ 1020.322317][T13770]  do_syscall_64+0x44/0xd0
[ 1020.326733][T13770]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1020.332627][T13770] RIP: 0033:0x7f1d3184b049
[ 1020.337048][T13770] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1020.356729][T13770] RSP: 002b:00007f1d309c1168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1020.365141][T13770] RAX: ffffffffffffffda RBX: 00007f1d3195df60 RCX: 00007f1d3184b049
[ 1020.373115][T13770] RDX: 0000000000000012 RSI: 0000000020000080 RDI: 0000000000000006
[ 1020.381090][T13770] RBP: 00007f1d318a508d R08: 0000000000000000 R09: 0000000000000000
[ 1020.389062][T13770] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1020.397040][T13770] R13: 00007ffc96a4069f R14: 00007f1d309c1300 R15: 0000000000022000
[ 1020.405018][T13770]  </TASK>
[ 1020.408069][T13770] memory: usage 104kB, limit 2251799813685248kB, failcnt 6427
[ 1020.415518][T13770] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1020.422383][T13770] Memory cgroup stats for /syz0:
[ 1020.438989][T13770] anon 0
[ 1020.438989][T13770] file 81920
[ 1020.438989][T13770] kernel_stack 0
[ 1020.438989][T13770] pagetables 0
[ 1020.438989][T13770] percpu 0
[ 1020.438989][T13770] sock 0
[ 1020.438989][T13770] vmalloc 0
[ 1020.438989][T13770] shmem 77824
[ 1020.438989][T13770] file_mapped 77824
[ 1020.438989][T13770] file_dirty 0
[ 1020.438989][T13770] file_writeback 0
[ 1020.438989][T13770] swapcached 0
[ 1020.438989][T13770] inactive_anon 16384
[ 1020.438989][T13770] active_anon 61440
11:28:56 executing program 2:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
socket$inet6(0xa, 0x0, 0x0)
setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x30, 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x0, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x4d00, 0x12)

[ 1020.438989][T13770] inactive_file 0
[ 1020.438989][T13770] active_file 4096
[ 1020.438989][T13770] unevictable 0
[ 1020.438989][T13770] slab_reclaimable 6440
[ 1020.438989][T13770] slab_unreclaimable 16136
[ 1020.438989][T13770] slab 22576
[ 1020.438989][T13770] workingset_refault_anon 0
[ 1020.438989][T13770] workingset_refault_file 2
[ 1020.438989][T13770] workingset_activate_anon 0
[ 1020.438989][T13770] workingset_activate_file 0
[ 1020.438989][T13770] workingset_restore_anon 0
[ 1020.532912][T13770] Out of memory and no killable processes...
11:28:56 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x2500000000000000, 0x12)

11:28:56 executing program 4:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff0000000000002f0000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b'], 0x50}}, 0x0)

11:28:56 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x0, 0x0, 0x56)
socket$inet6(0xa, 0x80001, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x80000, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x1c00000000000000, 0x12)

11:28:56 executing program 5:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r1, &(0x7f0000000000), 0x10)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff0000ffffffea000000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b', @ANYRES32], 0x50}}, 0x0)

[ 1020.698099][T13797] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1020.708332][T13797] CPU: 1 PID: 13797 Comm: syz-executor.2 Not tainted 5.17.0-rc7-syzkaller-00078-g3bf7edc84a9e-dirty #0
[ 1020.719362][T13797] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1020.729426][T13797] Call Trace:
[ 1020.732707][T13797]  <TASK>
[ 1020.735671][T13797]  dump_stack_lvl+0xd6/0x122
[ 1020.740327][T13797]  dump_stack+0x11/0x1b
[ 1020.744545][T13797]  dump_header+0x98/0x410
[ 1020.748879][T13797]  out_of_memory+0x65c/0x8c0
[ 1020.753471][T13797]  ? _raw_spin_unlock_irqrestore+0x3d/0x60
[ 1020.759282][T13797]  memory_max_write+0x32c/0x3d0
[ 1020.764136][T13797]  ? memory_max_show+0x70/0x70
[ 1020.768876][T13797]  cgroup_file_write+0x161/0x300
[ 1020.773847][T13797]  ? __check_object_size+0x22a/0x2d0
[ 1020.779114][T13797]  ? cgroup_seqfile_stop+0x70/0x70
[ 1020.784204][T13797]  kernfs_fop_write_iter+0x1d3/0x2d0
[ 1020.789473][T13797]  vfs_write+0x7f5/0x950
[ 1020.793802][T13797]  ksys_write+0xd9/0x190
[ 1020.798107][T13797]  __x64_sys_write+0x3e/0x50
[ 1020.802677][T13797]  do_syscall_64+0x44/0xd0
[ 1020.807076][T13797]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1020.812950][T13797] RIP: 0033:0x7f1d3184b049
[ 1020.817341][T13797] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1020.836922][T13797] RSP: 002b:00007f1d309c1168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1020.845384][T13797] RAX: ffffffffffffffda RBX: 00007f1d3195df60 RCX: 00007f1d3184b049
[ 1020.853333][T13797] RDX: 0000000000000012 RSI: 0000000020000080 RDI: 0000000000000006
[ 1020.861299][T13797] RBP: 00007f1d318a508d R08: 0000000000000000 R09: 0000000000000000
[ 1020.869251][T13797] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1020.877203][T13797] R13: 00007ffc96a4069f R14: 00007f1d309c1300 R15: 0000000000022000
[ 1020.885183][T13797]  </TASK>
[ 1020.888229][T13797] memory: usage 104kB, limit 16kB, failcnt 6427
[ 1020.894537][T13797] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1020.901450][T13797] Memory cgroup stats for /syz0:
[ 1020.904219][T13797] anon 0
[ 1020.904219][T13797] file 81920
[ 1020.904219][T13797] kernel_stack 0
[ 1020.904219][T13797] pagetables 0
[ 1020.904219][T13797] percpu 0
[ 1020.904219][T13797] sock 0
[ 1020.904219][T13797] vmalloc 0
[ 1020.904219][T13797] shmem 77824
[ 1020.904219][T13797] file_mapped 77824
[ 1020.904219][T13797] file_dirty 0
[ 1020.904219][T13797] file_writeback 0
[ 1020.904219][T13797] swapcached 0
[ 1020.904219][T13797] inactive_anon 16384
[ 1020.904219][T13797] active_anon 61440
[ 1020.904219][T13797] inactive_file 0
[ 1020.904219][T13797] active_file 4096
[ 1020.904219][T13797] unevictable 0
[ 1020.904219][T13797] slab_reclaimable 6440
[ 1020.904219][T13797] slab_unreclaimable 16136
[ 1020.904219][T13797] slab 22576
[ 1020.904219][T13797] workingset_refault_anon 0
[ 1020.904219][T13797] workingset_refault_file 2
[ 1020.904219][T13797] workingset_activate_anon 0
[ 1020.904219][T13797] workingset_activate_file 0
[ 1020.904219][T13797] workingset_restore_anon 0
[ 1020.998011][T13797] Out of memory and no killable processes...
[ 1021.077783][T13062] device hsr_slave_0 left promiscuous mode
[ 1021.083823][T13062] device hsr_slave_1 left promiscuous mode
[ 1021.090975][T13062] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1021.098413][T13062] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1021.105947][T13062] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1021.113361][T13062] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1021.121828][T13062] device bridge_slave_1 left promiscuous mode
[ 1021.128007][T13062] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1021.135575][T13062] device bridge_slave_0 left promiscuous mode
[ 1021.141766][T13062] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1021.151254][T13062] device veth1_macvtap left promiscuous mode
[ 1021.157266][T13062] device veth0_macvtap left promiscuous mode
[ 1021.163274][T13062] device veth1_vlan left promiscuous mode
[ 1021.169093][T13062] device veth0_vlan left promiscuous mode
[ 1021.249426][T13062] team0 (unregistering): Port device team_slave_1 removed
[ 1021.259395][T13062] team0 (unregistering): Port device team_slave_0 removed
[ 1021.269115][T13062] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1021.280225][T13062] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1021.306819][T13062] bond0 (unregistering): Released all slaves
[ 1021.935464][T13805] chnl_net:caif_netlink_parms(): no params data found
[ 1021.964984][T13805] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1021.972079][T13805] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1021.979886][T13805] device bridge_slave_0 entered promiscuous mode
[ 1021.987135][T13805] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1021.994156][T13805] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1022.001673][T13805] device bridge_slave_1 entered promiscuous mode
[ 1022.017539][T13805] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1022.027700][T13805] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1022.044272][T13805] team0: Port device team_slave_0 added
[ 1022.050596][T13805] team0: Port device team_slave_1 added
[ 1022.064168][T13805] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1022.071127][T13805] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1022.097004][T13805] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1022.108111][T13805] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1022.115028][T13805] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1022.140907][T13805] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1022.162745][T13805] device hsr_slave_0 entered promiscuous mode
[ 1022.169353][T13805] device hsr_slave_1 entered promiscuous mode
[ 1022.215643][T13805] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1022.222747][T13805] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1022.230022][T13805] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1022.237062][T13805] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1022.263196][T13805] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1022.272860][ T6849] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1022.282292][ T6849] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1022.290364][ T6849] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1022.299009][ T6849] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
[ 1022.310010][T13805] 8021q: adding VLAN 0 to HW filter on device team0
[ 1022.319501][ T1928] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1022.328178][ T1928] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1022.335205][ T1928] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1022.353312][T13805] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 1022.363682][T13805] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 1022.378387][ T1928] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1022.386877][ T1928] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1022.393945][ T1928] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1022.402508][ T1928] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 1022.411007][ T1928] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 1022.419547][ T1928] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1022.427715][ T1928] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1022.435955][ T1928] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 1022.443581][ T1928] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 1022.454291][ T6848] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 1022.462498][ T6848] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 1022.471991][T13805] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1022.549259][   T77] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1022.588062][T13805] device veth0_vlan entered promiscuous mode
[ 1022.597505][T13805] device veth1_vlan entered promiscuous mode
[ 1022.604559][ T1928] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1022.613104][ T1928] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1022.620796][ T1928] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1022.628438][ T1928] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 1022.643166][T13805] device veth0_macvtap entered promiscuous mode
[ 1022.650177][ T1928] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 1022.658426][ T1928] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1022.666766][ T1928] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 1022.675790][T13805] device veth1_macvtap entered promiscuous mode
[ 1022.687814][T13805] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 1022.698246][T13805] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1022.708096][T13805] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 1022.718521][T13805] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1022.728348][T13805] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 1022.738763][T13805] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1022.748563][T13805] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 1022.758981][T13805] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1022.768818][T13805] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 1022.779243][T13805] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1022.790385][T13805] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1022.798977][ T1928] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1022.809473][T13805] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 1022.819961][T13805] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1022.829760][T13805] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 1022.840187][T13805] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1022.849992][T13805] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 1022.860399][T13805] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1022.870231][T13805] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 1022.880691][T13805] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1022.890529][T13805] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 1022.900947][T13805] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1022.912294][T13805] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1022.920801][ T6848] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 1022.957703][T13839] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1022.968074][T13839] CPU: 1 PID: 13839 Comm: syz-executor.0 Not tainted 5.17.0-rc7-syzkaller-00078-g3bf7edc84a9e-dirty #0
[ 1022.979077][T13839] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1022.989186][T13839] Call Trace:
[ 1022.992441][T13839]  <TASK>
[ 1022.995346][T13839]  dump_stack_lvl+0xd6/0x122
[ 1022.999976][T13839]  dump_stack+0x11/0x1b
[ 1023.004122][T13839]  dump_header+0x98/0x410
[ 1023.008473][T13839]  oom_kill_process+0x18e/0x4a0
[ 1023.013315][T13839]  out_of_memory+0x61d/0x8c0
[ 1023.017882][T13839]  ? _raw_spin_unlock_irqrestore+0x3d/0x60
[ 1023.023757][T13839]  memory_max_write+0x32c/0x3d0
[ 1023.028588][T13839]  ? memory_max_show+0x70/0x70
[ 1023.033345][T13839]  cgroup_file_write+0x161/0x300
[ 1023.038271][T13839]  ? __check_object_size+0x22a/0x2d0
[ 1023.043532][T13839]  ? cgroup_seqfile_stop+0x70/0x70
[ 1023.048697][T13839]  kernfs_fop_write_iter+0x1d3/0x2d0
[ 1023.053958][T13839]  vfs_write+0x7f5/0x950
[ 1023.058212][T13839]  ksys_write+0xd9/0x190
[ 1023.062444][T13839]  __x64_sys_write+0x3e/0x50
[ 1023.067010][T13839]  do_syscall_64+0x44/0xd0
[ 1023.071403][T13839]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1023.077347][T13839] RIP: 0033:0x7f2df73e4049
[ 1023.081781][T13839] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1023.101371][T13839] RSP: 002b:00007f2df655a168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1023.109759][T13839] RAX: ffffffffffffffda RBX: 00007f2df74f6f60 RCX: 00007f2df73e4049
[ 1023.117704][T13839] RDX: 0000000000000012 RSI: 0000000020000080 RDI: 0000000000000006
[ 1023.125662][T13839] RBP: 00007f2df743e08d R08: 0000000000000000 R09: 0000000000000000
[ 1023.133674][T13839] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1023.141652][T13839] R13: 00007fffba7a873f R14: 00007f2df655a300 R15: 0000000000022000
[ 1023.149683][T13839]  </TASK>
[ 1023.152795][T13839] memory: usage 412kB, limit 0kB, failcnt 6427
[ 1023.158941][T13839] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1023.165772][T13839] Memory cgroup stats for /syz0:
[ 1023.166219][T13839] anon 114688
[ 1023.166219][T13839] file 81920
[ 1023.166219][T13839] kernel_stack 32768
[ 1023.166219][T13839] pagetables 90112
[ 1023.166219][T13839] percpu 0
[ 1023.166219][T13839] sock 0
[ 1023.166219][T13839] vmalloc 0
[ 1023.166219][T13839] shmem 77824
[ 1023.166219][T13839] file_mapped 77824
[ 1023.166219][T13839] file_dirty 0
[ 1023.166219][T13839] file_writeback 0
[ 1023.166219][T13839] swapcached 0
[ 1023.166219][T13839] inactive_anon 77824
[ 1023.166219][T13839] active_anon 61440
[ 1023.166219][T13839] inactive_file 0
[ 1023.166219][T13839] active_file 4096
[ 1023.166219][T13839] unevictable 0
[ 1023.166219][T13839] slab_reclaimable 21128
[ 1023.166219][T13839] slab_unreclaimable 47008
[ 1023.166219][T13839] slab 68136
[ 1023.166219][T13839] workingset_refault_anon 0
[ 1023.166219][T13839] workingset_refault_file 2
[ 1023.166219][T13839] workingset_activate_anon 0
[ 1023.166219][T13839] workingset_activate_file 0
11:28:59 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x2800000000000000, 0x12)

11:28:59 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x0, 0x0, 0x56)
socket$inet6(0xa, 0x80001, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x80000, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x2000000000000000, 0x12)

11:28:59 executing program 0:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) (async)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
umount2(&(0x7f00000000c0)='./file0\x00', 0x2) (async)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080), 0x12)

11:28:59 executing program 4:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff000000000001300000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b'], 0x50}}, 0x0)

11:28:59 executing program 5:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r1, &(0x7f0000000000), 0x10)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff0000000002ec000000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b', @ANYRES32], 0x50}}, 0x0)

11:28:59 executing program 2:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
socket$inet6(0xa, 0x0, 0x0)
setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x30, 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x0, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x5000, 0x12)

11:28:59 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x3f00000000000000, 0x12)

[ 1023.166219][T13839] workingset_restore_anon 0
[ 1023.261261][T13839] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=13838,uid=0
[ 1023.276557][T13839] Memory cgroup out of memory: Killed process 13838 (syz-executor.0) total-vm:52452kB, anon-rss:372kB, file-rss:14336kB, shmem-rss:0kB, UID:0 pgtables:96kB oom_score_adj:1000
[ 1023.294933][   T26] oom_reaper: reaped process 13838 (syz-executor.0), now anon-rss:0kB, file-rss:14336kB, shmem-rss:8kB
11:28:59 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x0, 0x0, 0x56)
socket$inet6(0xa, 0x80001, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x80000, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x2500000000000000, 0x12)

11:28:59 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x4500000000000000, 0x12)

11:28:59 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x4700000000000000, 0x12)

11:28:59 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x0, 0x0, 0x56)
socket$inet6(0xa, 0x80001, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x80000, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x2800000000000000, 0x12)

11:28:59 executing program 5:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r1, &(0x7f0000000000), 0x10)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff0000ffffffef000000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b', @ANYRES32], 0x50}}, 0x0)

11:28:59 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x4800000000000000, 0x12)

11:28:59 executing program 4:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff0000000000003a0000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b'], 0x50}}, 0x0)

11:29:00 executing program 0:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) (async, rerun: 32)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async, rerun: 32)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
umount2(&(0x7f00000000c0)='./file0\x00', 0x2) (async, rerun: 32)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0) (rerun: 32)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080), 0x12)

11:29:00 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x4b00000000000000, 0x12)

11:29:00 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x0, 0x0, 0x56)
socket$inet6(0xa, 0x80001, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x80000, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x4500000000000000, 0x12)

11:29:00 executing program 5:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r1, &(0x7f0000000000), 0x10)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff0000fffffff0000000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b', @ANYRES32], 0x50}}, 0x0)

11:29:00 executing program 4:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff0000000000003f0000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b'], 0x50}}, 0x0)

11:29:00 executing program 2:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
socket$inet6(0xa, 0x0, 0x0)
setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x30, 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x0, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x5400, 0x12)

11:29:00 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x4c00000000000000, 0x12)

11:29:00 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x4d00000000000000, 0x12)

11:29:00 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x0, 0x0, 0x56)
socket$inet6(0xa, 0x80001, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x80000, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x4700000000000000, 0x12)

11:29:00 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x5000000000000000, 0x12)

[ 1024.265879][T13892] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1024.276112][T13892] CPU: 0 PID: 13892 Comm: syz-executor.0 Not tainted 5.17.0-rc7-syzkaller-00078-g3bf7edc84a9e-dirty #0
[ 1024.287105][T13892] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1024.297135][T13892] Call Trace:
[ 1024.300420][T13892]  <TASK>
[ 1024.303339][T13892]  dump_stack_lvl+0xd6/0x122
[ 1024.307909][T13892]  dump_stack+0x11/0x1b
[ 1024.312071][T13892]  dump_header+0x98/0x410
[ 1024.316483][T13892]  oom_kill_process+0x18e/0x4a0
[ 1024.321350][T13892]  out_of_memory+0x61d/0x8c0
[ 1024.325917][T13892]  ? _raw_spin_unlock_irqrestore+0x3d/0x60
[ 1024.331775][T13892]  memory_max_write+0x32c/0x3d0
[ 1024.336642][T13892]  ? memory_max_show+0x70/0x70
[ 1024.341394][T13892]  cgroup_file_write+0x161/0x300
[ 1024.346309][T13892]  ? __check_object_size+0x22a/0x2d0
[ 1024.351601][T13892]  ? cgroup_seqfile_stop+0x70/0x70
[ 1024.356689][T13892]  kernfs_fop_write_iter+0x1d3/0x2d0
[ 1024.362035][T13892]  vfs_write+0x7f5/0x950
[ 1024.366308][T13892]  ksys_write+0xd9/0x190
[ 1024.370530][T13892]  __x64_sys_write+0x3e/0x50
[ 1024.375158][T13892]  do_syscall_64+0x44/0xd0
[ 1024.379604][T13892]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1024.385486][T13892] RIP: 0033:0x7f2df73e4049
[ 1024.389929][T13892] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1024.409510][T13892] RSP: 002b:00007f2df6539168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1024.417911][T13892] RAX: ffffffffffffffda RBX: 00007f2df74f7030 RCX: 00007f2df73e4049
[ 1024.425863][T13892] RDX: 0000000000000012 RSI: 0000000020000080 RDI: 0000000000000032
[ 1024.433961][T13892] RBP: 00007f2df743e08d R08: 0000000000000000 R09: 0000000000000000
[ 1024.441909][T13892] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1024.449887][T13892] R13: 00007fffba7a873f R14: 00007f2df6539300 R15: 0000000000022000
[ 1024.457837][T13892]  </TASK>
[ 1024.460858][T13892] memory: usage 460kB, limit 20kB, failcnt 6429
[ 1024.467103][T13892] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1024.473939][T13892] Memory cgroup stats for /syz0:
[ 1024.475400][T13892] anon 110592
[ 1024.475400][T13892] file 81920
[ 1024.475400][T13892] kernel_stack 65536
[ 1024.475400][T13892] pagetables 90112
[ 1024.475400][T13892] percpu 0
[ 1024.475400][T13892] sock 0
[ 1024.475400][T13892] vmalloc 0
[ 1024.475400][T13892] shmem 77824
[ 1024.475400][T13892] file_mapped 77824
[ 1024.475400][T13892] file_dirty 0
[ 1024.475400][T13892] file_writeback 0
[ 1024.475400][T13892] swapcached 0
[ 1024.475400][T13892] inactive_anon 126976
[ 1024.475400][T13892] active_anon 61440
[ 1024.475400][T13892] inactive_file 0
[ 1024.475400][T13892] active_file 4096
[ 1024.475400][T13892] unevictable 0
[ 1024.475400][T13892] slab_reclaimable 18016
[ 1024.475400][T13892] slab_unreclaimable 73720
[ 1024.475400][T13892] slab 91736
[ 1024.475400][T13892] workingset_refault_anon 0
[ 1024.475400][T13892] workingset_refault_file 2
[ 1024.475400][T13892] workingset_activate_anon 0
[ 1024.475400][T13892] workingset_activate_file 0
[ 1024.475400][T13892] workingset_restore_anon 0
[ 1024.570519][T13892] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=13889,uid=0
[ 1024.585817][T13892] Memory cgroup out of memory: Killed process 13889 (syz-executor.0) total-vm:48876kB, anon-rss:384kB, file-rss:14336kB, shmem-rss:0kB, UID:0 pgtables:96kB oom_score_adj:1000
[ 1024.604273][   T26] oom_reaper: reaped process 13889 (syz-executor.0), now anon-rss:0kB, file-rss:14336kB, shmem-rss:4kB
[ 1024.615321][T13885] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1024.625554][T13885] CPU: 1 PID: 13885 Comm: syz-executor.2 Not tainted 5.17.0-rc7-syzkaller-00078-g3bf7edc84a9e-dirty #0
[ 1024.636606][T13885] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1024.646635][T13885] Call Trace:
[ 1024.649892][T13885]  <TASK>
[ 1024.653031][T13885]  dump_stack_lvl+0xd6/0x122
[ 1024.657621][T13885]  dump_stack+0x11/0x1b
[ 1024.661770][T13885]  dump_header+0x98/0x410
[ 1024.666092][T13885]  oom_kill_process+0x18e/0x4a0
[ 1024.671082][T13885]  out_of_memory+0x61d/0x8c0
[ 1024.675717][T13885]  ? _raw_spin_unlock_irqrestore+0x3d/0x60
[ 1024.681509][T13885]  memory_max_write+0x32c/0x3d0
[ 1024.686350][T13885]  ? memory_max_show+0x70/0x70
[ 1024.691219][T13885]  cgroup_file_write+0x161/0x300
[ 1024.696223][T13885]  ? __check_object_size+0x22a/0x2d0
[ 1024.701538][T13885]  ? cgroup_seqfile_stop+0x70/0x70
[ 1024.706638][T13885]  kernfs_fop_write_iter+0x1d3/0x2d0
[ 1024.711917][T13885]  vfs_write+0x7f5/0x950
[ 1024.716159][T13885]  ksys_write+0xd9/0x190
[ 1024.720383][T13885]  __x64_sys_write+0x3e/0x50
[ 1024.725007][T13885]  do_syscall_64+0x44/0xd0
[ 1024.729433][T13885]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1024.735423][T13885] RIP: 0033:0x7f1d3184b049
[ 1024.739887][T13885] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1024.759523][T13885] RSP: 002b:00007f1d309c1168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1024.767916][T13885] RAX: ffffffffffffffda RBX: 00007f1d3195df60 RCX: 00007f1d3184b049
[ 1024.775869][T13885] RDX: 0000000000000012 RSI: 0000000020000080 RDI: 0000000000000006
[ 1024.783897][T13885] RBP: 00007f1d318a508d R08: 0000000000000000 R09: 0000000000000000
[ 1024.791894][T13885] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1024.799845][T13885] R13: 00007ffc96a4069f R14: 00007f1d309c1300 R15: 0000000000022000
[ 1024.807840][T13885]  </TASK>
[ 1024.810926][T13885] memory: usage 372kB, limit 20kB, failcnt 6429
11:29:00 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x5400000000000000, 0x12)

11:29:00 executing program 0:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
openat$cgroup_procs(r0, &(0x7f00000000c0)='cgroup.threads\x00', 0x2, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080), 0x12)

11:29:00 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x0, 0x0, 0x56)
socket$inet6(0xa, 0x80001, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x80000, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x4800000000000000, 0x12)

[ 1024.817244][T13885] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1024.824079][T13885] Memory cgroup stats for /syz0:
[ 1024.837084][T13885] anon 40960
[ 1024.837084][T13885] file 81920
[ 1024.837084][T13885] kernel_stack 16384
[ 1024.837084][T13885] pagetables 90112
[ 1024.837084][T13885] percpu 0
[ 1024.837084][T13885] sock 0
[ 1024.837084][T13885] vmalloc 0
[ 1024.837084][T13885] shmem 77824
[ 1024.837084][T13885] file_mapped 77824
[ 1024.837084][T13885] file_dirty 0
[ 1024.837084][T13885] file_writeback 0
[ 1024.837084][T13885] swapcached 0
[ 1024.837084][T13885] inactive_anon 57344
[ 1024.837084][T13885] active_anon 61440
[ 1024.837084][T13885] inactive_file 0
[ 1024.837084][T13885] active_file 4096
[ 1024.837084][T13885] unevictable 0
[ 1024.837084][T13885] slab_reclaimable 12032
[ 1024.837084][T13885] slab_unreclaimable 55112
[ 1024.837084][T13885] slab 67144
[ 1024.837084][T13885] workingset_refault_anon 0
[ 1024.837084][T13885] workingset_refault_file 2
[ 1024.837084][T13885] workingset_activate_anon 0
[ 1024.837084][T13885] workingset_activate_file 0
[ 1024.837084][T13885] workingset_restore_anon 0
[ 1024.931926][T13885] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=13805,uid=0
[ 1024.947272][T13885] Memory cgroup out of memory: Killed process 13805 (syz-executor.0) total-vm:48480kB, anon-rss:384kB, file-rss:15180kB, shmem-rss:64kB, UID:0 pgtables:84kB oom_score_adj:0
11:29:00 executing program 5:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r1, &(0x7f0000000000), 0x10)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff0000000002f1000000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b', @ANYRES32], 0x50}}, 0x0)

11:29:00 executing program 4:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff000000000000400000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b'], 0x50}}, 0x0)

11:29:00 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x6000000000000000, 0x12)

[ 1024.965096][   T26] oom_reaper: reaped process 13805 (syz-executor.0), now anon-rss:0kB, file-rss:14336kB, shmem-rss:64kB
11:29:00 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x0, 0x0, 0x56)
socket$inet6(0xa, 0x80001, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x80000, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x4b00000000000000, 0x12)

11:29:00 executing program 2:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
socket$inet6(0xa, 0x0, 0x0)
setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x30, 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x0, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x6500, 0x12)

11:29:00 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x6500000000000000, 0x12)

11:29:01 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x0, 0x0, 0x56)
socket$inet6(0xa, 0x80001, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x80000, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x4c00000000000000, 0x12)

11:29:01 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x6700000000000000, 0x12)

11:29:01 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x6800000000000000, 0x12)

11:29:01 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x0, 0x0, 0x56)
socket$inet6(0xa, 0x80001, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x80000, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x4d00000000000000, 0x12)

11:29:01 executing program 0:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) (async, rerun: 32)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (rerun: 32)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
openat$cgroup_procs(r0, &(0x7f00000000c0)='cgroup.threads\x00', 0x2, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080), 0x12)

11:29:01 executing program 0:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
openat$cgroup_procs(r0, &(0x7f00000000c0)='cgroup.threads\x00', 0x2, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080), 0x12)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) (async)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) (async)
openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0) (async)
openat$cgroup_procs(r0, &(0x7f00000000c0)='cgroup.threads\x00', 0x2, 0x0) (async)
openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0) (async)
write$cgroup_int(r2, &(0x7f0000000080), 0x12) (async)

[ 1025.141996][T13920] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1025.152271][T13920] CPU: 1 PID: 13920 Comm: syz-executor.2 Not tainted 5.17.0-rc7-syzkaller-00078-g3bf7edc84a9e-dirty #0
[ 1025.163292][T13920] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1025.173350][T13920] Call Trace:
[ 1025.176625][T13920]  <TASK>
[ 1025.179546][T13920]  dump_stack_lvl+0xd6/0x122
[ 1025.184142][T13920]  dump_stack+0x11/0x1b
[ 1025.188296][T13920]  dump_header+0x98/0x410
[ 1025.192627][T13920]  out_of_memory+0x65c/0x8c0
[ 1025.197216][T13920]  memory_max_write+0x32c/0x3d0
[ 1025.202143][T13920]  ? memory_max_show+0x70/0x70
[ 1025.206903][T13920]  cgroup_file_write+0x161/0x300
[ 1025.211877][T13920]  ? __check_object_size+0x22a/0x2d0
[ 1025.217232][T13920]  ? cgroup_seqfile_stop+0x70/0x70
[ 1025.222341][T13920]  kernfs_fop_write_iter+0x1d3/0x2d0
[ 1025.227698][T13920]  vfs_write+0x7f5/0x950
[ 1025.231935][T13920]  ksys_write+0xd9/0x190
[ 1025.236170][T13920]  __x64_sys_write+0x3e/0x50
[ 1025.240759][T13920]  do_syscall_64+0x44/0xd0
[ 1025.245186][T13920]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1025.251143][T13920] RIP: 0033:0x7f1d3184b049
[ 1025.255549][T13920] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1025.275161][T13920] RSP: 002b:00007f1d309c1168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1025.283570][T13920] RAX: ffffffffffffffda RBX: 00007f1d3195df60 RCX: 00007f1d3184b049
11:29:01 executing program 5:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r1, &(0x7f0000000000), 0x10)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff0000000000fa000000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b', @ANYRES32], 0x50}}, 0x0)

[ 1025.291536][T13920] RDX: 0000000000000012 RSI: 0000000020000080 RDI: 0000000000000006
[ 1025.299504][T13920] RBP: 00007f1d318a508d R08: 0000000000000000 R09: 0000000000000000
[ 1025.307471][T13920] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1025.315436][T13920] R13: 00007ffc96a4069f R14: 00007f1d309c1300 R15: 0000000000022000
[ 1025.323419][T13920]  </TASK>
[ 1025.326555][T13920] memory: usage 112kB, limit 24kB, failcnt 6429
[ 1025.332845][T13920] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1025.339740][T13920] Memory cgroup stats for /syz0:
[ 1025.365498][T13920] anon 0
[ 1025.365498][T13920] file 81920
[ 1025.365498][T13920] kernel_stack 0
[ 1025.365498][T13920] pagetables 0
[ 1025.365498][T13920] percpu 0
[ 1025.365498][T13920] sock 0
[ 1025.365498][T13920] vmalloc 0
[ 1025.365498][T13920] shmem 77824
[ 1025.365498][T13920] file_mapped 77824
[ 1025.365498][T13920] file_dirty 0
[ 1025.365498][T13920] file_writeback 0
[ 1025.365498][T13920] swapcached 0
[ 1025.365498][T13920] inactive_anon 16384
[ 1025.365498][T13920] active_anon 61440
[ 1025.365498][T13920] inactive_file 0
[ 1025.365498][T13920] active_file 4096
[ 1025.365498][T13920] unevictable 0
[ 1025.365498][T13920] slab_reclaimable 7440
[ 1025.365498][T13920] slab_unreclaimable 16400
[ 1025.365498][T13920] slab 23840
[ 1025.365498][T13920] workingset_refault_anon 0
[ 1025.365498][T13920] workingset_refault_file 2
[ 1025.365498][T13920] workingset_activate_anon 0
[ 1025.365498][T13920] workingset_activate_file 0
[ 1025.365498][T13920] workingset_restore_anon 0
[ 1025.459338][T13920] Out of memory and no killable processes...
11:29:01 executing program 4:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff000000000000480000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b'], 0x50}}, 0x0)

11:29:01 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x6b00000000000000, 0x12)

11:29:01 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x0, 0x0, 0x56)
socket$inet6(0xa, 0x80001, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x80000, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x5000000000000000, 0x12)

11:29:01 executing program 2:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
socket$inet6(0xa, 0x0, 0x0)
setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x30, 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x0, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x6700, 0x12)

11:29:01 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x6c00000000000000, 0x12)

11:29:01 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x0, 0x0, 0x56)
socket$inet6(0xa, 0x80001, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x80000, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x5400000000000000, 0x12)

11:29:01 executing program 5:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r1, &(0x7f0000000000), 0x10)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff00000000fffe000000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b', @ANYRES32], 0x50}}, 0x0)

11:29:01 executing program 4:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff0000000000004c0000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b'], 0x50}}, 0x0)

11:29:01 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x6d00000000000000, 0x12)

11:29:01 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x0, 0x0, 0x56)
socket$inet6(0xa, 0x80001, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x80000, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x6000000000000000, 0x12)

[ 1025.750152][T13953] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1025.760415][T13953] CPU: 0 PID: 13953 Comm: syz-executor.2 Not tainted 5.17.0-rc7-syzkaller-00078-g3bf7edc84a9e-dirty #0
[ 1025.771455][T13953] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1025.781485][T13953] Call Trace:
[ 1025.784739][T13953]  <TASK>
[ 1025.787727][T13953]  dump_stack_lvl+0xd6/0x122
[ 1025.792514][T13953]  dump_stack+0x11/0x1b
[ 1025.796717][T13953]  dump_header+0x98/0x410
[ 1025.801059][T13953]  out_of_memory+0x65c/0x8c0
[ 1025.805627][T13953]  memory_max_write+0x32c/0x3d0
[ 1025.810456][T13953]  ? memory_max_show+0x70/0x70
[ 1025.815226][T13953]  cgroup_file_write+0x161/0x300
[ 1025.820263][T13953]  ? __check_object_size+0x22a/0x2d0
[ 1025.825590][T13953]  ? cgroup_seqfile_stop+0x70/0x70
[ 1025.830679][T13953]  kernfs_fop_write_iter+0x1d3/0x2d0
[ 1025.836003][T13953]  vfs_write+0x7f5/0x950
[ 1025.840232][T13953]  ksys_write+0xd9/0x190
[ 1025.844449][T13953]  __x64_sys_write+0x3e/0x50
[ 1025.849059][T13953]  do_syscall_64+0x44/0xd0
[ 1025.853519][T13953]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1025.859429][T13953] RIP: 0033:0x7f1d3184b049
[ 1025.863845][T13953] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1025.883439][T13953] RSP: 002b:00007f1d309c1168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1025.891825][T13953] RAX: ffffffffffffffda RBX: 00007f1d3195df60 RCX: 00007f1d3184b049
[ 1025.899773][T13953] RDX: 0000000000000012 RSI: 0000000020000080 RDI: 0000000000000006
[ 1025.907903][T13953] RBP: 00007f1d318a508d R08: 0000000000000000 R09: 0000000000000000
[ 1025.915851][T13953] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1025.923814][T13953] R13: 00007ffc96a4069f R14: 00007f1d309c1300 R15: 0000000000022000
[ 1025.931964][T13953]  </TASK>
[ 1025.935001][T13953] memory: usage 104kB, limit 6755399441055744kB, failcnt 6429
[ 1025.942456][T13953] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1025.949324][T13953] Memory cgroup stats for /syz0:
[ 1025.951651][T13953] anon 0
[ 1025.951651][T13953] file 81920
[ 1025.951651][T13953] kernel_stack 0
[ 1025.951651][T13953] pagetables 0
[ 1025.951651][T13953] percpu 0
[ 1025.951651][T13953] sock 0
[ 1025.951651][T13953] vmalloc 0
[ 1025.951651][T13953] shmem 77824
[ 1025.951651][T13953] file_mapped 77824
[ 1025.951651][T13953] file_dirty 0
[ 1025.951651][T13953] file_writeback 0
[ 1025.951651][T13953] swapcached 0
[ 1025.951651][T13953] inactive_anon 16384
[ 1025.951651][T13953] active_anon 61440
[ 1025.951651][T13953] inactive_file 0
[ 1025.951651][T13953] active_file 4096
[ 1025.951651][T13953] unevictable 0
[ 1025.951651][T13953] slab_reclaimable 6440
[ 1025.951651][T13953] slab_unreclaimable 16136
[ 1025.951651][T13953] slab 22576
[ 1025.951651][T13953] workingset_refault_anon 0
[ 1025.951651][T13953] workingset_refault_file 2
[ 1025.951651][T13953] workingset_activate_anon 0
[ 1025.951651][T13953] workingset_activate_file 0
[ 1025.951651][T13953] workingset_restore_anon 0
[ 1026.045479][T13953] Out of memory and no killable processes...
[ 1026.238155][T13062] device hsr_slave_0 left promiscuous mode
[ 1026.244224][T13062] device hsr_slave_1 left promiscuous mode
[ 1026.250588][T13062] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1026.257991][T13062] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1026.265482][T13062] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1026.272852][T13062] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1026.280510][T13062] device bridge_slave_1 left promiscuous mode
[ 1026.286699][T13062] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1026.294138][T13062] device bridge_slave_0 left promiscuous mode
[ 1026.300310][T13062] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1026.309732][T13062] device veth1_macvtap left promiscuous mode
[ 1026.315699][T13062] device veth0_macvtap left promiscuous mode
[ 1026.321819][T13062] device veth1_vlan left promiscuous mode
[ 1026.327575][T13062] device veth0_vlan left promiscuous mode
[ 1026.404396][T13062] team0 (unregistering): Port device team_slave_1 removed
[ 1026.415746][T13062] team0 (unregistering): Port device team_slave_0 removed
[ 1026.425273][T13062] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1026.436699][T13062] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1026.463448][T13062] bond0 (unregistering): Released all slaves
[ 1026.908272][T13963] chnl_net:caif_netlink_parms(): no params data found
[ 1026.945184][T13963] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1026.952251][T13963] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1026.959876][T13963] device bridge_slave_0 entered promiscuous mode
[ 1026.967147][T13963] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1026.974292][T13963] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1026.981870][T13963] device bridge_slave_1 entered promiscuous mode
[ 1026.997419][T13963] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1027.008897][T13963] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1027.025904][T13963] team0: Port device team_slave_0 added
[ 1027.033277][T13963] team0: Port device team_slave_1 added
[ 1027.045721][T13963] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1027.052673][T13963] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1027.078570][T13963] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1027.090572][T13963] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1027.097593][T13963] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1027.123604][T13963] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1027.144939][T13963] device hsr_slave_0 entered promiscuous mode
[ 1027.151239][T13963] device hsr_slave_1 entered promiscuous mode
[ 1027.213906][T13963] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1027.224064][T23294] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 1027.232438][T23294] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1027.241744][T13963] 8021q: adding VLAN 0 to HW filter on device team0
[ 1027.250055][ T6846] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 1027.258629][ T6846] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1027.266835][ T6846] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1027.273992][ T6846] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1027.282027][ T6846] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 1027.297790][T23294] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 1027.306147][T23294] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1027.314596][T23294] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1027.321622][T23294] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1027.329376][T23294] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 1027.338068][T23294] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 1027.346845][T23294] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 1027.355140][T23294] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 1027.363816][T23294] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 1027.372304][T23294] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 1027.381237][T23294] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1027.389657][T23294] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 1027.399735][ T6846] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1027.409791][T13963] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 1027.422923][T13963] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1027.430223][ T1928] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 1027.437684][ T1928] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 1027.502156][ T1928] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1027.545719][T13963] device veth0_vlan entered promiscuous mode
[ 1027.552706][ T1928] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1027.561103][ T1928] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1027.568842][ T1928] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1027.579029][T13963] device veth1_vlan entered promiscuous mode
[ 1027.591941][ T6848] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 1027.600724][ T6848] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 1027.608988][ T6848] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1027.619806][T13963] device veth0_macvtap entered promiscuous mode
[ 1027.628025][T13963] device veth1_macvtap entered promiscuous mode
[ 1027.638943][T13963] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 1027.649402][T13963] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1027.659195][T13963] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 1027.669612][T13963] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1027.679405][T13963] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 1027.689817][T13963] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1027.699615][T13963] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 1027.710093][T13963] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1027.719914][T13963] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 1027.730443][T13963] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1027.742030][T13963] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1027.750167][ T6846] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 1027.758447][ T6846] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 1027.768111][ T6846] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1027.777551][T13963] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 1027.788006][T13963] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1027.797838][T13963] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 1027.808261][T13963] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1027.818055][T13963] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 1027.828514][T13963] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1027.838360][T13963] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 1027.848799][T13963] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1027.858612][T13963] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 1027.869052][T13963] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1027.879858][T13963] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1027.888492][ T6848] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 1027.897099][ T6848] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 1027.935356][T13997] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1027.945583][T13997] CPU: 0 PID: 13997 Comm: syz-executor.0 Not tainted 5.17.0-rc7-syzkaller-00078-g3bf7edc84a9e-dirty #0
[ 1027.956699][T13997] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1027.966746][T13997] Call Trace:
[ 1027.970049][T13997]  <TASK>
[ 1027.972966][T13997]  dump_stack_lvl+0xd6/0x122
[ 1027.977582][T13997]  dump_stack+0x11/0x1b
[ 1027.981721][T13997]  dump_header+0x98/0x410
[ 1027.986044][T13997]  oom_kill_process+0x18e/0x4a0
[ 1027.990921][T13997]  out_of_memory+0x61d/0x8c0
[ 1027.995489][T13997]  memory_max_write+0x32c/0x3d0
[ 1028.000323][T13997]  ? memory_max_show+0x70/0x70
[ 1028.005124][T13997]  cgroup_file_write+0x161/0x300
[ 1028.010043][T13997]  ? __check_object_size+0x22a/0x2d0
[ 1028.015306][T13997]  ? cgroup_seqfile_stop+0x70/0x70
[ 1028.020428][T13997]  kernfs_fop_write_iter+0x1d3/0x2d0
[ 1028.025697][T13997]  vfs_write+0x7f5/0x950
[ 1028.029962][T13997]  ksys_write+0xd9/0x190
[ 1028.034179][T13997]  __x64_sys_write+0x3e/0x50
[ 1028.038744][T13997]  do_syscall_64+0x44/0xd0
[ 1028.043137][T13997]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1028.049003][T13997] RIP: 0033:0x7fa834da8049
[ 1028.053393][T13997] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1028.073754][T13997] RSP: 002b:00007fa833f1e168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1028.082142][T13997] RAX: ffffffffffffffda RBX: 00007fa834ebaf60 RCX: 00007fa834da8049
[ 1028.090095][T13997] RDX: 0000000000000012 RSI: 0000000020000080 RDI: 000000000000000f
[ 1028.098042][T13997] RBP: 00007fa834e0208d R08: 0000000000000000 R09: 0000000000000000
[ 1028.106027][T13997] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1028.113974][T13997] R13: 00007fff3bd958af R14: 00007fa833f1e300 R15: 0000000000022000
[ 1028.121922][T13997]  </TASK>
[ 1028.125062][T13997] memory: usage 380kB, limit 0kB, failcnt 6429
[ 1028.131216][T13997] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1028.138070][T13997] Memory cgroup stats for /syz0:
[ 1028.138326][T13997] anon 81920
[ 1028.138326][T13997] file 81920
[ 1028.138326][T13997] kernel_stack 32768
[ 1028.138326][T13997] pagetables 90112
[ 1028.138326][T13997] percpu 0
[ 1028.138326][T13997] sock 0
[ 1028.138326][T13997] vmalloc 0
[ 1028.138326][T13997] shmem 77824
[ 1028.138326][T13997] file_mapped 77824
[ 1028.138326][T13997] file_dirty 0
[ 1028.138326][T13997] file_writeback 0
[ 1028.138326][T13997] swapcached 0
[ 1028.138326][T13997] inactive_anon 98304
[ 1028.138326][T13997] active_anon 61440
[ 1028.138326][T13997] inactive_file 4096
[ 1028.138326][T13997] active_file 0
[ 1028.138326][T13997] unevictable 0
[ 1028.138326][T13997] slab_reclaimable 23280
[ 1028.138326][T13997] slab_unreclaimable 47576
[ 1028.138326][T13997] slab 70856
[ 1028.138326][T13997] workingset_refault_anon 0
[ 1028.138326][T13997] workingset_refault_file 2
[ 1028.138326][T13997] workingset_activate_anon 0
[ 1028.138326][T13997] workingset_activate_file 0
[ 1028.138326][T13997] workingset_restore_anon 0
[ 1028.233307][T13997] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=13996,uid=0
11:29:04 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x0, 0x0, 0x56)
socket$inet6(0xa, 0x80001, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x80000, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x6500000000000000, 0x12)

11:29:04 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x7000000000000000, 0x12)

11:29:04 executing program 5:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r1, &(0x7f0000000000), 0x10)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff0000fffffffe000000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b', @ANYRES32], 0x50}}, 0x0)

11:29:04 executing program 2:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
socket$inet6(0xa, 0x0, 0x0)
setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x30, 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x0, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x6b00, 0x12)

11:29:04 executing program 4:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff000000000000600000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b'], 0x50}}, 0x0)

11:29:04 executing program 0:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
r0 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
lsetxattr$trusted_overlay_origin(&(0x7f0000000380)='./file0\x00', &(0x7f00000003c0), &(0x7f0000000400), 0x2, 0x1)
r1 = syz_io_uring_setup(0x3ede, &(0x7f0000000240), &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000100)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd_index=0x5, 0x0, &(0x7f0000000040)=""/18, 0x12}, 0x0)
syz_io_uring_submit(0x0, r3, &(0x7f0000000100)=@IORING_OP_WRITE_FIXED={0x5, 0x3, 0x4004, @fd_index, 0x8000, 0xfffffffffffffffb, 0x6, 0x14, 0x0, {0x1}}, 0xd0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r4 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
fchmodat(r0, &(0x7f00000000c0)='./file0\x00', 0x0)
r5 = openat$cgroup(r4, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r6 = mmap$IORING_OFF_SQES(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x200000b, 0x50, r0, 0x10000000)
r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
syz_io_uring_submit(r2, r6, &(0x7f0000000340)=@IORING_OP_SYNC_FILE_RANGE={0x8, 0x0, 0x0, @fd=r5, 0x6, 0x0, 0xffffffe1, 0x1, 0x0, {0x0, r7}}, 0x2400)
openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
pselect6(0x40, &(0x7f0000000240), &(0x7f0000000280)={0x9}, 0x0, 0x0, 0x0)
r8 = openat$cgroup_int(r5, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r8, &(0x7f0000000080), 0x12)
r9 = openat$null(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
openat$cgroup_ro(r9, &(0x7f0000000300)='blkio.throttle.io_serviced_recursive\x00', 0x0, 0x0)

11:29:04 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x7400000000000000, 0x12)

[ 1028.248540][T13997] Memory cgroup out of memory: Killed process 13996 (syz-executor.0) total-vm:48744kB, anon-rss:368kB, file-rss:14336kB, shmem-rss:0kB, UID:0 pgtables:92kB oom_score_adj:1000
[ 1028.266586][   T26] oom_reaper: reaped process 13996 (syz-executor.0), now anon-rss:0kB, file-rss:14336kB, shmem-rss:4kB
11:29:04 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x0, 0x0, 0x56)
socket$inet6(0xa, 0x80001, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x80000, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x6700000000000000, 0x12)

11:29:04 executing program 0:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async, rerun: 32)
r0 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (rerun: 32)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) (async)
lsetxattr$trusted_overlay_origin(&(0x7f0000000380)='./file0\x00', &(0x7f00000003c0), &(0x7f0000000400), 0x2, 0x1) (async)
r1 = syz_io_uring_setup(0x3ede, &(0x7f0000000240), &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000100)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd_index=0x5, 0x0, &(0x7f0000000040)=""/18, 0x12}, 0x0) (async)
syz_io_uring_submit(0x0, r3, &(0x7f0000000100)=@IORING_OP_WRITE_FIXED={0x5, 0x3, 0x4004, @fd_index, 0x8000, 0xfffffffffffffffb, 0x6, 0x14, 0x0, {0x1}}, 0xd0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
r4 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
fchmodat(r0, &(0x7f00000000c0)='./file0\x00', 0x0) (async)
r5 = openat$cgroup(r4, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0) (async)
r6 = mmap$IORING_OFF_SQES(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x200000b, 0x50, r0, 0x10000000)
r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
syz_io_uring_submit(r2, r6, &(0x7f0000000340)=@IORING_OP_SYNC_FILE_RANGE={0x8, 0x0, 0x0, @fd=r5, 0x6, 0x0, 0xffffffe1, 0x1, 0x0, {0x0, r7}}, 0x2400)
openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) (async, rerun: 32)
pselect6(0x40, &(0x7f0000000240), &(0x7f0000000280)={0x9}, 0x0, 0x0, 0x0) (rerun: 32)
r8 = openat$cgroup_int(r5, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r8, &(0x7f0000000080), 0x12) (async)
r9 = openat$null(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
openat$cgroup_ro(r9, &(0x7f0000000300)='blkio.throttle.io_serviced_recursive\x00', 0x0, 0x0)

11:29:04 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x7a00000000000000, 0x12)

11:29:04 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x0, 0x0, 0x56)
socket$inet6(0xa, 0x80001, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x80000, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x6800000000000000, 0x12)

11:29:04 executing program 4:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff000000000058650000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b'], 0x50}}, 0x0)

11:29:04 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x7ffffffffffff000, 0x12)

[ 1028.349846][   T24] audit: type=1400 audit(1646911744.286:441): avc:  denied  { map } for  pid=14010 comm="syz-executor.0" path="/root/syzkaller-testdir1821143873/syzkaller.aqLpIV/1/file0" dev="sda1" ino=1162 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_home_t tclass=dir permissive=1
11:29:04 executing program 0:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
r0 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
lsetxattr$trusted_overlay_origin(&(0x7f0000000380)='./file0\x00', &(0x7f00000003c0), &(0x7f0000000400), 0x2, 0x1) (async)
r1 = syz_io_uring_setup(0x3ede, &(0x7f0000000240), &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000100)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd_index=0x5, 0x0, &(0x7f0000000040)=""/18, 0x12}, 0x0)
syz_io_uring_submit(0x0, r3, &(0x7f0000000100)=@IORING_OP_WRITE_FIXED={0x5, 0x3, 0x4004, @fd_index, 0x8000, 0xfffffffffffffffb, 0x6, 0x14, 0x0, {0x1}}, 0xd0) (async)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
r4 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
fchmodat(r0, &(0x7f00000000c0)='./file0\x00', 0x0) (async)
r5 = openat$cgroup(r4, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0) (async)
r6 = mmap$IORING_OFF_SQES(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x200000b, 0x50, r0, 0x10000000) (async)
r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
syz_io_uring_submit(r2, r6, &(0x7f0000000340)=@IORING_OP_SYNC_FILE_RANGE={0x8, 0x0, 0x0, @fd=r5, 0x6, 0x0, 0xffffffe1, 0x1, 0x0, {0x0, r7}}, 0x2400) (async)
openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) (async)
pselect6(0x40, &(0x7f0000000240), &(0x7f0000000280)={0x9}, 0x0, 0x0, 0x0) (async)
r8 = openat$cgroup_int(r5, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r8, &(0x7f0000000080), 0x12)
r9 = openat$null(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
openat$cgroup_ro(r9, &(0x7f0000000300)='blkio.throttle.io_serviced_recursive\x00', 0x0, 0x0)

[ 1028.430107][   T24] audit: type=1400 audit(1646911744.286:442): avc:  denied  { read } for  pid=14010 comm="syz-executor.0" name="vga_arbiter" dev="devtmpfs" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:xserver_misc_device_t tclass=chr_file permissive=1
[ 1028.432498][T14007] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1028.454790][   T24] audit: type=1400 audit(1646911744.286:443): avc:  denied  { open } for  pid=14010 comm="syz-executor.0" path="/dev/vga_arbiter" dev="devtmpfs" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:xserver_misc_device_t tclass=chr_file permissive=1
[ 1028.489768][T14007] CPU: 1 PID: 14007 Comm: syz-executor.2 Not tainted 5.17.0-rc7-syzkaller-00078-g3bf7edc84a9e-dirty #0
[ 1028.500793][T14007] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1028.510826][T14007] Call Trace:
[ 1028.514129][T14007]  <TASK>
[ 1028.517052][T14007]  dump_stack_lvl+0xd6/0x122
[ 1028.521644][T14007]  dump_stack+0x11/0x1b
[ 1028.525779][T14007]  dump_header+0x98/0x410
[ 1028.530089][T14007]  oom_kill_process+0x18e/0x4a0
[ 1028.534919][T14007]  out_of_memory+0x61d/0x8c0
[ 1028.539579][T14007]  memory_max_write+0x32c/0x3d0
[ 1028.544419][T14007]  ? memory_max_show+0x70/0x70
[ 1028.549165][T14007]  cgroup_file_write+0x161/0x300
[ 1028.554165][T14007]  ? __check_object_size+0x22a/0x2d0
[ 1028.559543][T14007]  ? cgroup_seqfile_stop+0x70/0x70
[ 1028.564631][T14007]  kernfs_fop_write_iter+0x1d3/0x2d0
[ 1028.569919][T14007]  vfs_write+0x7f5/0x950
[ 1028.574179][T14007]  ksys_write+0xd9/0x190
[ 1028.578421][T14007]  __x64_sys_write+0x3e/0x50
[ 1028.583074][T14007]  do_syscall_64+0x44/0xd0
[ 1028.587470][T14007]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1028.593491][T14007] RIP: 0033:0x7f1d3184b049
[ 1028.597934][T14007] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1028.617590][T14007] RSP: 002b:00007f1d309c1168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1028.625989][T14007] RAX: ffffffffffffffda RBX: 00007f1d3195df60 RCX: 00007f1d3184b049
[ 1028.634024][T14007] RDX: 0000000000000012 RSI: 0000000020000080 RDI: 0000000000000006
[ 1028.641967][T14007] RBP: 00007f1d318a508d R08: 0000000000000000 R09: 0000000000000000
[ 1028.649925][T14007] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1028.657877][T14007] R13: 00007ffc96a4069f R14: 00007f1d309c1300 R15: 0000000000022000
[ 1028.665909][T14007]  </TASK>
[ 1028.669013][T14007] memory: usage 2264kB, limit 7318349394477056kB, failcnt 6522
[ 1028.676581][T14007] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1028.683418][T14007] Memory cgroup stats for /syz0:
[ 1028.691474][T14007] anon 40960
[ 1028.691474][T14007] file 81920
[ 1028.691474][T14007] kernel_stack 16384
[ 1028.691474][T14007] pagetables 28672
[ 1028.691474][T14007] percpu 0
[ 1028.691474][T14007] sock 0
[ 1028.691474][T14007] vmalloc 0
[ 1028.691474][T14007] shmem 77824
[ 1028.691474][T14007] file_mapped 77824
[ 1028.691474][T14007] file_dirty 0
[ 1028.691474][T14007] file_writeback 0
[ 1028.691474][T14007] swapcached 0
[ 1028.691474][T14007] inactive_anon 57344
[ 1028.691474][T14007] active_anon 61440
[ 1028.691474][T14007] inactive_file 0
[ 1028.691474][T14007] active_file 4096
[ 1028.691474][T14007] unevictable 0
[ 1028.691474][T14007] slab_reclaimable 29656
[ 1028.691474][T14007] slab_unreclaimable 64672
[ 1028.691474][T14007] slab 94328
[ 1028.691474][T14007] workingset_refault_anon 0
[ 1028.691474][T14007] workingset_refault_file 2
[ 1028.691474][T14007] workingset_activate_anon 0
11:29:04 executing program 5:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r1, &(0x7f0000000000), 0x10)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff000000000fff000000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b', @ANYRES32], 0x50}}, 0x0)

[ 1028.691474][T14007] workingset_activate_file 0
[ 1028.691474][T14007] workingset_restore_anon 0
[ 1028.786414][T14007] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=13963,uid=0
[ 1028.801719][T14007] Memory cgroup out of memory: Killed process 13963 (syz-executor.0) total-vm:48480kB, anon-rss:380kB, file-rss:15224kB, shmem-rss:64kB, UID:0 pgtables:80kB oom_score_adj:0
[ 1028.819395][   T26] oom_reaper: reaped process 13963 (syz-executor.0), now anon-rss:0kB, file-rss:14336kB, shmem-rss:64kB
11:29:05 executing program 2:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
socket$inet6(0xa, 0x0, 0x0)
setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x30, 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x0, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x6d00, 0x12)

11:29:05 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0xfeffffffffffffff, 0x12)

11:29:05 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x0, 0x0, 0x56)
socket$inet6(0xa, 0x80001, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x80000, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x6b00000000000000, 0x12)

11:29:05 executing program 0:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
r0 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
close(r1)
chdir(&(0x7f00000000c0)='./file0\x00')
r2 = openat$cgroup(r1, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r3 = openat$cgroup_int(r2, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, <r4=>r3}, './file0\x00'})
ioctl$PPPIOCNEWUNIT(r4, 0xc004743e, &(0x7f0000000240)=0x1)
write$cgroup_int(r3, &(0x7f0000000080), 0x12)

11:29:05 executing program 4:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff000000000000680000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b'], 0x50}}, 0x0)

11:29:05 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x0, 0x0, 0x56)
socket$inet6(0xa, 0x80001, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x80000, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x6c00000000000000, 0x12)

11:29:05 executing program 5:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r1, &(0x7f0000000000), 0x10)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff000000007fff000000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b', @ANYRES32], 0x50}}, 0x0)

11:29:05 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0xffffffff00000000, 0x12)

11:29:05 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x0, 0x0, 0x56)
socket$inet6(0xa, 0x80001, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x80000, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x6d00000000000000, 0x12)

11:29:05 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0xffffffffffffff0f, 0x12)

[ 1029.269940][T14058] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1029.280185][T14058] CPU: 1 PID: 14058 Comm: syz-executor.2 Not tainted 5.17.0-rc7-syzkaller-00078-g3bf7edc84a9e-dirty #0
[ 1029.291212][T14058] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1029.301335][T14058] Call Trace:
[ 1029.304609][T14058]  <TASK>
[ 1029.307535][T14058]  dump_stack_lvl+0xd6/0x122
[ 1029.312131][T14058]  dump_stack+0x11/0x1b
[ 1029.316288][T14058]  dump_header+0x98/0x410
[ 1029.320693][T14058]  out_of_memory+0x65c/0x8c0
[ 1029.325279][T14058]  ? _raw_spin_unlock_irqrestore+0x3d/0x60
[ 1029.331085][T14058]  memory_max_write+0x32c/0x3d0
[ 1029.335947][T14058]  ? memory_max_show+0x70/0x70
[ 1029.340715][T14058]  cgroup_file_write+0x161/0x300
[ 1029.345653][T14058]  ? __check_object_size+0x22a/0x2d0
[ 1029.351130][T14058]  ? cgroup_seqfile_stop+0x70/0x70
[ 1029.356293][T14058]  kernfs_fop_write_iter+0x1d3/0x2d0
[ 1029.361578][T14058]  vfs_write+0x7f5/0x950
[ 1029.365822][T14058]  ksys_write+0xd9/0x190
[ 1029.370063][T14058]  __x64_sys_write+0x3e/0x50
[ 1029.374655][T14058]  do_syscall_64+0x44/0xd0
[ 1029.379215][T14058]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1029.385187][T14058] RIP: 0033:0x7f1d3184b049
[ 1029.389595][T14058] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1029.409259][T14058] RSP: 002b:00007f1d309a0168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1029.417671][T14058] RAX: ffffffffffffffda RBX: 00007f1d3195e030 RCX: 00007f1d3184b049
[ 1029.426186][T14058] RDX: 0000000000000012 RSI: 0000000020000080 RDI: 0000000000000006
[ 1029.434165][T14058] RBP: 00007f1d318a508d R08: 0000000000000000 R09: 0000000000000000
[ 1029.442193][T14058] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1029.450161][T14058] R13: 00007ffc96a4069f R14: 00007f1d309a0300 R15: 0000000000022000
[ 1029.458137][T14058]  </TASK>
[ 1029.461288][T14058] memory: usage 104kB, limit 7670193115365376kB, failcnt 6522
[ 1029.468749][T14058] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1029.475582][T14058] Memory cgroup stats for /syz0:
[ 1029.526807][T14058] anon 0
[ 1029.526807][T14058] file 81920
[ 1029.526807][T14058] kernel_stack 0
[ 1029.526807][T14058] pagetables 0
[ 1029.526807][T14058] percpu 0
[ 1029.526807][T14058] sock 0
[ 1029.526807][T14058] vmalloc 0
[ 1029.526807][T14058] shmem 77824
[ 1029.526807][T14058] file_mapped 77824
[ 1029.526807][T14058] file_dirty 0
[ 1029.526807][T14058] file_writeback 0
[ 1029.526807][T14058] swapcached 0
[ 1029.526807][T14058] inactive_anon 16384
[ 1029.526807][T14058] active_anon 61440
11:29:05 executing program 4:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff0000000000006c0000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b'], 0x50}}, 0x0)

11:29:05 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x0, 0x0, 0x56)
socket$inet6(0xa, 0x80001, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x80000, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x7000000000000000, 0x12)

[ 1029.526807][T14058] inactive_file 0
[ 1029.526807][T14058] active_file 4096
[ 1029.526807][T14058] unevictable 0
[ 1029.526807][T14058] slab_reclaimable 7248
[ 1029.526807][T14058] slab_unreclaimable 16136
[ 1029.526807][T14058] slab 23384
[ 1029.526807][T14058] workingset_refault_anon 0
[ 1029.526807][T14058] workingset_refault_file 2
[ 1029.526807][T14058] workingset_activate_anon 0
[ 1029.526807][T14058] workingset_activate_file 0
[ 1029.526807][T14058] workingset_restore_anon 0
[ 1029.620504][T14058] Out of memory and no killable processes...
11:29:05 executing program 2:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
socket$inet6(0xa, 0x0, 0x0)
setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x30, 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x0, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x7000, 0x12)

11:29:05 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0xfffffffffffffffe, 0x12)

11:29:05 executing program 5:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r1, &(0x7f0000000000), 0x10)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff000088a8ffff000000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b', @ANYRES32], 0x50}}, 0x0)

[ 1029.791850][T14076] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1029.802146][T14076] CPU: 0 PID: 14076 Comm: syz-executor.2 Not tainted 5.17.0-rc7-syzkaller-00078-g3bf7edc84a9e-dirty #0
[ 1029.813206][T14076] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1029.823285][T14076] Call Trace:
[ 1029.826565][T14076]  <TASK>
[ 1029.829484][T14076]  dump_stack_lvl+0xd6/0x122
[ 1029.834055][T14076]  dump_stack+0x11/0x1b
[ 1029.838208][T14076]  dump_header+0x98/0x410
[ 1029.842517][T14076]  out_of_memory+0x65c/0x8c0
[ 1029.847225][T14076]  ? _raw_spin_unlock_irqrestore+0x3d/0x60
[ 1029.853045][T14076]  memory_max_write+0x32c/0x3d0
[ 1029.857875][T14076]  ? memory_max_show+0x70/0x70
[ 1029.862619][T14076]  cgroup_file_write+0x161/0x300
[ 1029.867549][T14076]  ? __check_object_size+0x22a/0x2d0
[ 1029.872821][T14076]  ? cgroup_seqfile_stop+0x70/0x70
[ 1029.877987][T14076]  kernfs_fop_write_iter+0x1d3/0x2d0
[ 1029.883314][T14076]  vfs_write+0x7f5/0x950
[ 1029.887533][T14076]  ksys_write+0xd9/0x190
[ 1029.891762][T14076]  __x64_sys_write+0x3e/0x50
[ 1029.896330][T14076]  do_syscall_64+0x44/0xd0
[ 1029.900725][T14076]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1029.906599][T14076] RIP: 0033:0x7f1d3184b049
[ 1029.910991][T14076] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1029.930699][T14076] RSP: 002b:00007f1d309c1168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1029.939178][T14076] RAX: ffffffffffffffda RBX: 00007f1d3195df60 RCX: 00007f1d3184b049
[ 1029.947181][T14076] RDX: 0000000000000012 RSI: 0000000020000080 RDI: 0000000000000006
[ 1029.955142][T14076] RBP: 00007f1d318a508d R08: 0000000000000000 R09: 0000000000000000
[ 1029.963089][T14076] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1029.971036][T14076] R13: 00007ffc96a4069f R14: 00007f1d309c1300 R15: 0000000000022000
[ 1029.979013][T14076]  </TASK>
[ 1029.982117][T14076] memory: usage 104kB, limit 28kB, failcnt 6522
[ 1029.988425][T14076] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1029.995338][T14076] Memory cgroup stats for /syz0:
[ 1029.996077][T14076] anon 0
[ 1029.996077][T14076] file 81920
[ 1029.996077][T14076] kernel_stack 0
[ 1029.996077][T14076] pagetables 0
[ 1029.996077][T14076] percpu 0
[ 1029.996077][T14076] sock 0
[ 1029.996077][T14076] vmalloc 0
[ 1029.996077][T14076] shmem 77824
[ 1029.996077][T14076] file_mapped 77824
[ 1029.996077][T14076] file_dirty 0
[ 1029.996077][T14076] file_writeback 0
[ 1029.996077][T14076] swapcached 0
[ 1029.996077][T14076] inactive_anon 16384
[ 1029.996077][T14076] active_anon 61440
[ 1029.996077][T14076] inactive_file 0
[ 1029.996077][T14076] active_file 4096
[ 1029.996077][T14076] unevictable 0
[ 1029.996077][T14076] slab_reclaimable 7248
[ 1029.996077][T14076] slab_unreclaimable 16136
[ 1029.996077][T14076] slab 23384
[ 1029.996077][T14076] workingset_refault_anon 0
[ 1029.996077][T14076] workingset_refault_file 2
[ 1029.996077][T14076] workingset_activate_anon 0
[ 1029.996077][T14076] workingset_activate_file 0
[ 1029.996077][T14076] workingset_restore_anon 0
[ 1030.089939][T14076] Out of memory and no killable processes...
[ 1030.127954][T12949] device hsr_slave_0 left promiscuous mode
[ 1030.134010][T12949] device hsr_slave_1 left promiscuous mode
[ 1030.140400][T12949] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1030.147838][T12949] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1030.155445][T12949] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1030.162839][T12949] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1030.171010][T12949] device bridge_slave_1 left promiscuous mode
[ 1030.177182][T12949] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1030.184760][T12949] device bridge_slave_0 left promiscuous mode
[ 1030.191007][T12949] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1030.200165][T12949] device veth1_macvtap left promiscuous mode
[ 1030.206208][T12949] device veth0_macvtap left promiscuous mode
[ 1030.212329][T12949] device veth1_vlan left promiscuous mode
[ 1030.218066][T12949] device veth0_vlan left promiscuous mode
[ 1030.294999][T12949] team0 (unregistering): Port device team_slave_1 removed
[ 1030.304770][T12949] team0 (unregistering): Port device team_slave_0 removed
[ 1030.313900][T12949] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1030.325092][T12949] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1030.353550][T12949] bond0 (unregistering): Released all slaves
[ 1030.921667][T14081] chnl_net:caif_netlink_parms(): no params data found
[ 1030.950907][T14081] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1030.957991][T14081] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1030.965611][T14081] device bridge_slave_0 entered promiscuous mode
[ 1030.972709][T14081] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1030.979747][T14081] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1030.987818][T14081] device bridge_slave_1 entered promiscuous mode
[ 1031.003209][T14081] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1031.013145][T14081] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1031.030299][T14081] team0: Port device team_slave_0 added
[ 1031.036751][T14081] team0: Port device team_slave_1 added
[ 1031.051790][T14081] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1031.058842][T14081] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1031.084708][T14081] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1031.095739][T14081] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1031.102711][T14081] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1031.128680][T14081] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1031.150115][T14081] device hsr_slave_0 entered promiscuous mode
[ 1031.156578][T14081] device hsr_slave_1 entered promiscuous mode
[ 1031.203075][T14081] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1031.210123][T14081] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1031.217360][T14081] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1031.224390][T14081] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1031.250503][T14081] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1031.261047][ T6846] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1031.269022][ T6846] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1031.276911][ T6846] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1031.288979][T14081] 8021q: adding VLAN 0 to HW filter on device team0
[ 1031.298163][T23294] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1031.306711][T23294] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1031.313730][T23294] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1031.325498][   T77] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1031.334157][   T77] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1031.341331][   T77] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1031.352720][ T6849] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 1031.361294][ T6849] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 1031.371939][T23294] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 1031.384347][T14081] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 1031.394747][T14081] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 1031.407515][ T6849] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1031.415948][ T6849] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1031.424390][ T6849] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 1031.438761][T14081] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1031.445785][ T6849] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 1031.453203][ T6849] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 1031.515601][ T6849] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 1031.524302][ T6849] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1031.558822][   T77] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 1031.566960][   T77] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1031.575307][   T77] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1031.583027][   T77] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1031.591755][T14081] device veth0_vlan entered promiscuous mode
[ 1031.600029][T14081] device veth1_vlan entered promiscuous mode
[ 1031.612113][   T77] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 1031.620846][   T77] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 1031.628730][   T77] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 1031.637952][   T77] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1031.647791][T14081] device veth0_macvtap entered promiscuous mode
[ 1031.655639][T14081] device veth1_macvtap entered promiscuous mode
[ 1031.666117][T14081] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 1031.676590][T14081] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1031.686387][T14081] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 1031.696842][T14081] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1031.706631][T14081] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 1031.717037][T14081] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1031.726824][T14081] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 1031.737231][T14081] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1031.747150][T14081] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 1031.757569][T14081] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1031.769324][T14081] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1031.778087][ T6848] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 1031.786018][ T6848] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 1031.793843][ T6848] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 1031.802935][ T6848] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1031.812927][T14081] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 1031.823362][T14081] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1031.833155][T14081] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 1031.843554][T14081] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1031.853425][T14081] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 1031.863840][T14081] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1031.873633][T14081] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 1031.884061][T14081] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1031.893893][T14081] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 1031.904296][T14081] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
11:29:07 executing program 0:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
r0 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
close(r1) (async)
chdir(&(0x7f00000000c0)='./file0\x00') (async)
r2 = openat$cgroup(r1, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r3 = openat$cgroup_int(r2, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, <r4=>r3}, './file0\x00'})
ioctl$PPPIOCNEWUNIT(r4, 0xc004743e, &(0x7f0000000240)=0x1) (async)
write$cgroup_int(r3, &(0x7f0000000080), 0x12)

11:29:07 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x0, 0x0, 0x56)
socket$inet6(0xa, 0x80001, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x80000, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x7400000000000000, 0x12)

[ 1031.915145][T14081] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1031.924733][ T6846] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 1031.933392][ T6846] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
11:29:07 executing program 4:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff0000000000016e0000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b'], 0x50}}, 0x0)

11:29:07 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r2, &(0x7f0000000080), 0x20000092)

11:29:07 executing program 5:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r1, &(0x7f0000000000), 0x10)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff00007fffffff000000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b', @ANYRES32], 0x50}}, 0x0)

11:29:07 executing program 2:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
socket$inet6(0xa, 0x0, 0x0)
setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x30, 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x0, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x7400, 0x12)

11:29:07 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r2, &(0x7f0000000080), 0x7ffff000)

11:29:07 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x0, 0x0, 0x56)
socket$inet6(0xa, 0x80001, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x80000, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x7a00000000000000, 0x12)

11:29:08 executing program 0:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
r0 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
close(r1) (async)
chdir(&(0x7f00000000c0)='./file0\x00') (async)
r2 = openat$cgroup(r1, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r3 = openat$cgroup_int(r2, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, <r4=>r3}, './file0\x00'})
ioctl$PPPIOCNEWUNIT(r4, 0xc004743e, &(0x7f0000000240)=0x1) (async)
write$cgroup_int(r3, &(0x7f0000000080), 0x12)

11:29:08 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
r0 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = openat$cgroup(r1, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r3 = openat$cgroup_int(r2, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r3, &(0x7f0000000080), 0x12)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0xffffffef, &(0x7f0000000300)={&(0x7f0000001bc0)=@newlink={0x84, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x35288}, [@IFLA_LINKINFO={0x5c, 0x12, 0x0, 0x1, @ipip6={{0xb}, {0x4c, 0x2, 0x0, 0x1, [@IFLA_IPTUN_ENCAP_TYPE={0x6}, @IFLA_IPTUN_REMOTE={0x14, 0x3, @private0}, @IFLA_IPTUN_COLLECT_METADATA={0x4}, @IFLA_IPTUN_LINK={0x8}, @IFLA_IPTUN_COLLECT_METADATA={0x4}, @IFLA_IPTUN_LOCAL={0x14, 0x2, @remote}, @IFLA_IPTUN_PROTO={0x5, 0x9, 0x29}]}}}, @IFLA_MASTER={0x8}]}, 0x84}}, 0x4000080)
pipe(&(0x7f0000000200)={<r4=>0xffffffffffffffff})
r5 = socket$inet_udp(0x2, 0x2, 0x0)
close(r5)
bind$inet(r5, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10)
connect$inet(r5, &(0x7f0000001280)={0x2, 0x0, @multicast1}, 0x10)
splice(r4, 0x0, r5, 0x0, 0x5, 0x5)
r6 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000004c0)=@bpf_lsm={0x1d, 0xa, &(0x7f0000000300)=@framed={{0x18, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x7}, [@map_val={0x18, 0x1, 0x2, 0x0, r0, 0x0, 0x0, 0x0, 0x101}, @alu={0x7, 0x1, 0x9, 0x0, 0x2}, @cb_func={0x18, 0x7, 0x4, 0x0, 0x7}, @map_fd={0x18, 0x8, 0x1, 0x0, r0}]}, &(0x7f0000000380)='syzkaller\x00', 0x100, 0x7, &(0x7f00000003c0)=""/7, 0x40f00, 0x0, '\x00', 0x0, 0x1b, r0, 0x8, &(0x7f0000000400)={0x4, 0x4}, 0x8, 0x10, &(0x7f0000000440)={0x3, 0x9, 0x5}, 0x10, 0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000480)=[r0, r0, r0, r0, 0x1, r0, r0]}, 0x80)
pipe(&(0x7f0000000200)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
write$binfmt_misc(r7, &(0x7f0000000080)=ANY=[], 0x5)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000580)=@bpf_ext={0x1c, 0x9, &(0x7f00000000c0)=@raw=[@exit, @exit, @cb_func={0x18, 0x4, 0x4, 0x0, 0x3}, @btf_id={0x18, 0x6, 0x3, 0x0, 0x3}, @generic={0x1, 0x7, 0x7, 0x1f, 0x3f8c}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x3}, @alu={0x4, 0x1, 0xa, 0x9, 0x1, 0x50, 0x4}], &(0x7f0000000240)='syzkaller\x00', 0x5, 0x0, 0x0, 0x40f00, 0x4, '\x00', 0x0, 0x0, r4, 0x8, &(0x7f0000000280)={0x7, 0x5}, 0x8, 0x10, &(0x7f00000002c0)={0x5, 0xa0bb, 0x1, 0x8}, 0x10, 0xd690, r6, 0x0, &(0x7f0000000540)=[r7, r0, r0]}, 0x80)

11:29:08 executing program 0:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
mount(0x0, &(0x7f0000000280)='./file0\x00', &(0x7f0000000040)='jffs2\x00', 0x1a3443, 0x0)
mount(&(0x7f0000000380)=ANY=[@ANYBLOB="2f6465762f6e756c6c623000823ab580bb665216375c15fb927f344debcf1e5a2c22e2d18ea86d30b307bfed25270b2c4746d24d46f34d01e2e5d4156a7eeab311e871f0d22d554c9a74c5bb23e3c31e2f2c82ae4dfafc9cb67c85e398375e007a9d1774a0a7b26b44fa7b53498a7969ed2fb758f96cc021143b3df4b3db40c733e423e520909948457da1106542"], &(0x7f00000002c0)='./file0\x00', &(0x7f0000000300)='selinuxfs\x00', 0x800, &(0x7f0000000340)=']\x00')
symlinkat(&(0x7f0000000000)='./file0\x00', 0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00')
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup.cpu/syz0\x00', 0x200002, 0x0)
write$cgroup_int(r2, &(0x7f0000000080), 0x12)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x4, 0x100010, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r3, 0x0, &(0x7f00000000c0)=@IORING_OP_NOP={0x0, 0x1}, 0xffff)
accept4(0xffffffffffffffff, &(0x7f0000000440)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @dev}, &(0x7f0000000240)=0x80, 0x0)

11:29:08 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x0, 0x0, 0x56)
socket$inet6(0xa, 0x80001, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x80000, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x7ffffffffffff000, 0x12)

11:29:08 executing program 4:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff000000000000740000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b'], 0x50}}, 0x0)

[ 1032.074842][T14122] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1032.085135][T14122] CPU: 0 PID: 14122 Comm: syz-executor.2 Not tainted 5.17.0-rc7-syzkaller-00078-g3bf7edc84a9e-dirty #0
[ 1032.096168][T14122] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1032.106219][T14122] Call Trace:
[ 1032.109546][T14122]  <TASK>
[ 1032.112469][T14122]  dump_stack_lvl+0xd6/0x122
[ 1032.117080][T14122]  dump_stack+0x11/0x1b
[ 1032.121244][T14122]  dump_header+0x98/0x410
[ 1032.125572][T14122]  oom_kill_process+0x18e/0x4a0
[ 1032.130420][T14122]  out_of_memory+0x61d/0x8c0
[ 1032.135008][T14122]  ? _raw_spin_unlock_irqrestore+0x3d/0x60
[ 1032.140795][T14122]  memory_max_write+0x32c/0x3d0
[ 1032.145763][T14122]  ? memory_max_show+0x70/0x70
[ 1032.150529][T14122]  cgroup_file_write+0x161/0x300
[ 1032.155477][T14122]  ? __check_object_size+0x22a/0x2d0
[ 1032.160784][T14122]  ? cgroup_seqfile_stop+0x70/0x70
[ 1032.165942][T14122]  kernfs_fop_write_iter+0x1d3/0x2d0
[ 1032.171211][T14122]  vfs_write+0x7f5/0x950
[ 1032.175483][T14122]  ksys_write+0xd9/0x190
[ 1032.179715][T14122]  __x64_sys_write+0x3e/0x50
[ 1032.184314][T14122]  do_syscall_64+0x44/0xd0
[ 1032.188722][T14122]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1032.194662][T14122] RIP: 0033:0x7f1d3184b049
[ 1032.199052][T14122] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1032.218659][T14122] RSP: 002b:00007f1d309c1168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1032.227046][T14122] RAX: ffffffffffffffda RBX: 00007f1d3195df60 RCX: 00007f1d3184b049
[ 1032.235023][T14122] RDX: 0000000000000012 RSI: 0000000020000080 RDI: 0000000000000006
[ 1032.243049][T14122] RBP: 00007f1d318a508d R08: 0000000000000000 R09: 0000000000000000
[ 1032.251070][T14122] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1032.259020][T14122] R13: 00007ffc96a4069f R14: 00007f1d309c1300 R15: 0000000000022000
[ 1032.266973][T14122]  </TASK>
11:29:08 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x0, 0x0, 0x56)
socket$inet6(0xa, 0x80001, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x80000, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0xfeffffffffffffff, 0x12)

[ 1032.270157][T14122] memory: usage 208kB, limit 0kB, failcnt 6536
[ 1032.276468][T14122] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1032.283322][T14122] Memory cgroup stats for /syz0:
[ 1032.285780][T14122] anon 40960
[ 1032.285780][T14122] file 81920
[ 1032.285780][T14122] kernel_stack 0
[ 1032.285780][T14122] pagetables 8192
[ 1032.285780][T14122] percpu 0
[ 1032.285780][T14122] sock 0
[ 1032.285780][T14122] vmalloc 0
[ 1032.285780][T14122] shmem 77824
[ 1032.285780][T14122] file_mapped 77824
[ 1032.285780][T14122] file_dirty 4096
[ 1032.285780][T14122] file_writeback 0
[ 1032.285780][T14122] swapcached 0
[ 1032.285780][T14122] inactive_anon 57344
[ 1032.285780][T14122] active_anon 61440
[ 1032.285780][T14122] inactive_file 0
[ 1032.285780][T14122] active_file 4096
[ 1032.285780][T14122] unevictable 0
[ 1032.285780][T14122] slab_reclaimable 26952
[ 1032.285780][T14122] slab_unreclaimable 37960
[ 1032.285780][T14122] slab 64912
[ 1032.285780][T14122] workingset_refault_anon 0
[ 1032.285780][T14122] workingset_refault_file 2
[ 1032.285780][T14122] workingset_activate_anon 0
[ 1032.285780][T14122] workingset_activate_file 0
[ 1032.285780][T14122] workingset_restore_anon 0
[ 1032.380625][T14122] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=14081,uid=0
[ 1032.395882][T14122] Memory cgroup out of memory: Killed process 14081 (syz-executor.0) total-vm:48480kB, anon-rss:384kB, file-rss:15168kB, shmem-rss:64kB, UID:0 pgtables:80kB oom_score_adj:0
11:29:08 executing program 5:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r1, &(0x7f0000000000), 0x10)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff000081ffffff000000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b', @ANYRES32], 0x50}}, 0x0)

[ 1032.416112][   T26] oom_reaper: reaped process 14081 (syz-executor.0), now anon-rss:0kB, file-rss:14336kB, shmem-rss:64kB
11:29:08 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x0, 0x0, 0x56)
socket$inet6(0xa, 0x80001, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x80000, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0xfffdffffffffffff, 0x12)

11:29:08 executing program 4:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff0000000000007a0000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b'], 0x50}}, 0x0)

11:29:08 executing program 2:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
socket$inet6(0xa, 0x0, 0x0)
setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x30, 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x0, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0xfeff, 0x12)

11:29:08 executing program 0:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
mount(0x0, &(0x7f0000000280)='./file0\x00', &(0x7f0000000040)='jffs2\x00', 0x1a3443, 0x0)
mount(&(0x7f0000000380)=ANY=[@ANYBLOB="2f6465762f6e756c6c623000823ab580bb665216375c15fb927f344debcf1e5a2c22e2d18ea86d30b307bfed25270b2c4746d24d46f34d01e2e5d4156a7eeab311e871f0d22d554c9a74c5bb23e3c31e2f2c82ae4dfafc9cb67c85e398375e007a9d1774a0a7b26b44fa7b53498a7969ed2fb758f96cc021143b3df4b3db40c733e423e520909948457da1106542"], &(0x7f00000002c0)='./file0\x00', &(0x7f0000000300)='selinuxfs\x00', 0x800, &(0x7f0000000340)=']\x00')
symlinkat(&(0x7f0000000000)='./file0\x00', 0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00')
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup.cpu/syz0\x00', 0x200002, 0x0)
write$cgroup_int(r2, &(0x7f0000000080), 0x12)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x4, 0x100010, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r3, 0x0, &(0x7f00000000c0)=@IORING_OP_NOP={0x0, 0x1}, 0xffff)
accept4(0xffffffffffffffff, &(0x7f0000000440)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @dev}, &(0x7f0000000240)=0x80, 0x0)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) (async)
mount(0x0, &(0x7f0000000280)='./file0\x00', &(0x7f0000000040)='jffs2\x00', 0x1a3443, 0x0) (async)
mount(&(0x7f0000000380)=ANY=[@ANYBLOB="2f6465762f6e756c6c623000823ab580bb665216375c15fb927f344debcf1e5a2c22e2d18ea86d30b307bfed25270b2c4746d24d46f34d01e2e5d4156a7eeab311e871f0d22d554c9a74c5bb23e3c31e2f2c82ae4dfafc9cb67c85e398375e007a9d1774a0a7b26b44fa7b53498a7969ed2fb758f96cc021143b3df4b3db40c733e423e520909948457da1106542"], &(0x7f00000002c0)='./file0\x00', &(0x7f0000000300)='selinuxfs\x00', 0x800, &(0x7f0000000340)=']\x00') (async)
symlinkat(&(0x7f0000000000)='./file0\x00', 0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00') (async)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) (async)
openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0) (async)
openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0) (async)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup.cpu/syz0\x00', 0x200002, 0x0) (async)
write$cgroup_int(r2, &(0x7f0000000080), 0x12) (async)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x4, 0x100010, 0xffffffffffffffff, 0x0) (async)
syz_io_uring_submit(r3, 0x0, &(0x7f00000000c0)=@IORING_OP_NOP={0x0, 0x1}, 0xffff) (async)
accept4(0xffffffffffffffff, &(0x7f0000000440)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @dev}, &(0x7f0000000240)=0x80, 0x0) (async)

11:29:08 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x0, 0x0, 0x56)
socket$inet6(0xa, 0x80001, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x80000, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0xffffffff00000000, 0x12)

11:29:08 executing program 5:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r1, &(0x7f0000000000), 0x10)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff00009effffff000000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b', @ANYRES32], 0x50}}, 0x0)

[ 1032.918588][T14168] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1032.928850][T14168] CPU: 1 PID: 14168 Comm: syz-executor.2 Not tainted 5.17.0-rc7-syzkaller-00078-g3bf7edc84a9e-dirty #0
[ 1032.939956][T14168] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1032.950091][T14168] Call Trace:
[ 1032.953359][T14168]  <TASK>
[ 1032.956302][T14168]  dump_stack_lvl+0xd6/0x122
[ 1032.960918][T14168]  dump_stack+0x11/0x1b
[ 1032.965169][T14168]  dump_header+0x98/0x410
[ 1032.969540][T14168]  out_of_memory+0x65c/0x8c0
[ 1032.974132][T14168]  ? _raw_spin_unlock_irqrestore+0x3d/0x60
[ 1032.979939][T14168]  memory_max_write+0x32c/0x3d0
[ 1032.984792][T14168]  ? memory_max_show+0x70/0x70
[ 1032.989566][T14168]  cgroup_file_write+0x161/0x300
[ 1032.994551][T14168]  ? __check_object_size+0x22a/0x2d0
[ 1032.999839][T14168]  ? cgroup_seqfile_stop+0x70/0x70
[ 1033.004947][T14168]  kernfs_fop_write_iter+0x1d3/0x2d0
[ 1033.010231][T14168]  vfs_write+0x7f5/0x950
[ 1033.014475][T14168]  ksys_write+0xd9/0x190
[ 1033.018710][T14168]  __x64_sys_write+0x3e/0x50
[ 1033.023300][T14168]  do_syscall_64+0x44/0xd0
[ 1033.027715][T14168]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1033.033656][T14168] RIP: 0033:0x7f1d3184b049
[ 1033.038062][T14168] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1033.057764][T14168] RSP: 002b:00007f1d309c1168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1033.066171][T14168] RAX: ffffffffffffffda RBX: 00007f1d3195df60 RCX: 00007f1d3184b049
[ 1033.074134][T14168] RDX: 0000000000000012 RSI: 0000000020000080 RDI: 0000000000000006
[ 1033.082094][T14168] RBP: 00007f1d318a508d R08: 0000000000000000 R09: 0000000000000000
[ 1033.090057][T14168] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1033.098023][T14168] R13: 00007ffc96a4069f R14: 00007f1d309c1300 R15: 0000000000022000
[ 1033.106051][T14168]  </TASK>
[ 1033.109110][T14168] memory: usage 104kB, limit 60kB, failcnt 6555
[ 1033.115339][T14168] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1033.122266][T14168] Memory cgroup stats for /syz0:
[ 1033.125058][T14168] anon 0
[ 1033.125058][T14168] file 81920
[ 1033.125058][T14168] kernel_stack 0
[ 1033.125058][T14168] pagetables 0
[ 1033.125058][T14168] percpu 0
[ 1033.125058][T14168] sock 0
[ 1033.125058][T14168] vmalloc 0
[ 1033.125058][T14168] shmem 77824
[ 1033.125058][T14168] file_mapped 77824
[ 1033.125058][T14168] file_dirty 4096
[ 1033.125058][T14168] file_writeback 0
[ 1033.125058][T14168] swapcached 0
[ 1033.125058][T14168] inactive_anon 16384
[ 1033.125058][T14168] active_anon 61440
[ 1033.125058][T14168] inactive_file 0
[ 1033.125058][T14168] active_file 4096
[ 1033.125058][T14168] unevictable 0
[ 1033.125058][T14168] slab_reclaimable 7248
[ 1033.125058][T14168] slab_unreclaimable 16136
[ 1033.125058][T14168] slab 23384
[ 1033.125058][T14168] workingset_refault_anon 0
[ 1033.125058][T14168] workingset_refault_file 2
[ 1033.125058][T14168] workingset_activate_anon 0
[ 1033.125058][T14168] workingset_activate_file 0
[ 1033.125058][T14168] workingset_restore_anon 0
11:29:09 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
r0 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = openat$cgroup(r1, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r3 = openat$cgroup_int(r2, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r3, &(0x7f0000000080), 0x12)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0xffffffef, &(0x7f0000000300)={&(0x7f0000001bc0)=@newlink={0x84, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x35288}, [@IFLA_LINKINFO={0x5c, 0x12, 0x0, 0x1, @ipip6={{0xb}, {0x4c, 0x2, 0x0, 0x1, [@IFLA_IPTUN_ENCAP_TYPE={0x6}, @IFLA_IPTUN_REMOTE={0x14, 0x3, @private0}, @IFLA_IPTUN_COLLECT_METADATA={0x4}, @IFLA_IPTUN_LINK={0x8}, @IFLA_IPTUN_COLLECT_METADATA={0x4}, @IFLA_IPTUN_LOCAL={0x14, 0x2, @remote}, @IFLA_IPTUN_PROTO={0x5, 0x9, 0x29}]}}}, @IFLA_MASTER={0x8}]}, 0x84}}, 0x4000080)
pipe(&(0x7f0000000200)={<r4=>0xffffffffffffffff})
r5 = socket$inet_udp(0x2, 0x2, 0x0)
close(r5)
bind$inet(r5, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10)
connect$inet(r5, &(0x7f0000001280)={0x2, 0x0, @multicast1}, 0x10)
splice(r4, 0x0, r5, 0x0, 0x5, 0x5)
r6 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000004c0)=@bpf_lsm={0x1d, 0xa, &(0x7f0000000300)=@framed={{0x18, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x7}, [@map_val={0x18, 0x1, 0x2, 0x0, r0, 0x0, 0x0, 0x0, 0x101}, @alu={0x7, 0x1, 0x9, 0x0, 0x2}, @cb_func={0x18, 0x7, 0x4, 0x0, 0x7}, @map_fd={0x18, 0x8, 0x1, 0x0, r0}]}, &(0x7f0000000380)='syzkaller\x00', 0x100, 0x7, &(0x7f00000003c0)=""/7, 0x40f00, 0x0, '\x00', 0x0, 0x1b, r0, 0x8, &(0x7f0000000400)={0x4, 0x4}, 0x8, 0x10, &(0x7f0000000440)={0x3, 0x9, 0x5}, 0x10, 0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000480)=[r0, r0, r0, r0, 0x1, r0, r0]}, 0x80)
pipe(&(0x7f0000000200)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
write$binfmt_misc(r7, &(0x7f0000000080)=ANY=[], 0x5)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000580)=@bpf_ext={0x1c, 0x9, &(0x7f00000000c0)=@raw=[@exit, @exit, @cb_func={0x18, 0x4, 0x4, 0x0, 0x3}, @btf_id={0x18, 0x6, 0x3, 0x0, 0x3}, @generic={0x1, 0x7, 0x7, 0x1f, 0x3f8c}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x3}, @alu={0x4, 0x1, 0xa, 0x9, 0x1, 0x50, 0x4}], &(0x7f0000000240)='syzkaller\x00', 0x5, 0x0, 0x0, 0x40f00, 0x4, '\x00', 0x0, 0x0, r4, 0x8, &(0x7f0000000280)={0x7, 0x5}, 0x8, 0x10, &(0x7f00000002c0)={0x5, 0xa0bb, 0x1, 0x8}, 0x10, 0xd690, r6, 0x0, &(0x7f0000000540)=[r7, r0, r0]}, 0x80)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56) (async)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) (async)
openat$cgroup(r1, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0) (async)
openat$cgroup_int(r2, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) (async)
write$cgroup_int(r3, &(0x7f0000000080), 0x12) (async)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0xffffffef, &(0x7f0000000300)={&(0x7f0000001bc0)=@newlink={0x84, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x35288}, [@IFLA_LINKINFO={0x5c, 0x12, 0x0, 0x1, @ipip6={{0xb}, {0x4c, 0x2, 0x0, 0x1, [@IFLA_IPTUN_ENCAP_TYPE={0x6}, @IFLA_IPTUN_REMOTE={0x14, 0x3, @private0}, @IFLA_IPTUN_COLLECT_METADATA={0x4}, @IFLA_IPTUN_LINK={0x8}, @IFLA_IPTUN_COLLECT_METADATA={0x4}, @IFLA_IPTUN_LOCAL={0x14, 0x2, @remote}, @IFLA_IPTUN_PROTO={0x5, 0x9, 0x29}]}}}, @IFLA_MASTER={0x8}]}, 0x84}}, 0x4000080) (async)
pipe(&(0x7f0000000200)) (async)
socket$inet_udp(0x2, 0x2, 0x0) (async)
close(r5) (async)
bind$inet(r5, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10) (async)
connect$inet(r5, &(0x7f0000001280)={0x2, 0x0, @multicast1}, 0x10) (async)
splice(r4, 0x0, r5, 0x0, 0x5, 0x5) (async)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000004c0)=@bpf_lsm={0x1d, 0xa, &(0x7f0000000300)=@framed={{0x18, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x7}, [@map_val={0x18, 0x1, 0x2, 0x0, r0, 0x0, 0x0, 0x0, 0x101}, @alu={0x7, 0x1, 0x9, 0x0, 0x2}, @cb_func={0x18, 0x7, 0x4, 0x0, 0x7}, @map_fd={0x18, 0x8, 0x1, 0x0, r0}]}, &(0x7f0000000380)='syzkaller\x00', 0x100, 0x7, &(0x7f00000003c0)=""/7, 0x40f00, 0x0, '\x00', 0x0, 0x1b, r0, 0x8, &(0x7f0000000400)={0x4, 0x4}, 0x8, 0x10, &(0x7f0000000440)={0x3, 0x9, 0x5}, 0x10, 0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000480)=[r0, r0, r0, r0, 0x1, r0, r0]}, 0x80) (async)
pipe(&(0x7f0000000200)) (async)
write$binfmt_misc(r7, &(0x7f0000000080)=ANY=[], 0x5) (async)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000580)=@bpf_ext={0x1c, 0x9, &(0x7f00000000c0)=@raw=[@exit, @exit, @cb_func={0x18, 0x4, 0x4, 0x0, 0x3}, @btf_id={0x18, 0x6, 0x3, 0x0, 0x3}, @generic={0x1, 0x7, 0x7, 0x1f, 0x3f8c}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x3}, @alu={0x4, 0x1, 0xa, 0x9, 0x1, 0x50, 0x4}], &(0x7f0000000240)='syzkaller\x00', 0x5, 0x0, 0x0, 0x40f00, 0x4, '\x00', 0x0, 0x0, r4, 0x8, &(0x7f0000000280)={0x7, 0x5}, 0x8, 0x10, &(0x7f00000002c0)={0x5, 0xa0bb, 0x1, 0x8}, 0x10, 0xd690, r6, 0x0, &(0x7f0000000540)=[r7, r0, r0]}, 0x80) (async)

11:29:09 executing program 4:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff000000000001800000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b'], 0x50}}, 0x0)

11:29:09 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x0, 0x0, 0x56)
socket$inet6(0xa, 0x80001, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x80000, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0xfffffffffffffdff, 0x12)

11:29:09 executing program 5:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r1, &(0x7f0000000000), 0x10)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff0000c3ffffff000000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b', @ANYRES32], 0x50}}, 0x0)

11:29:09 executing program 2:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
socket$inet6(0xa, 0x0, 0x0)
setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x30, 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x0, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0xfffe, 0x12)

[ 1033.219108][T14168] Out of memory and no killable processes...
11:29:09 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x0, 0x0, 0x56)
socket$inet6(0xa, 0x80001, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x80000, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0xffffffffffffff0f, 0x12)

11:29:09 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x0, 0x0, 0x56)
socket$inet6(0xa, 0x80001, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x80000, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0xfffffffffffffffe, 0x12)

11:29:09 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
r0 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = openat$cgroup(r1, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r3 = openat$cgroup_int(r2, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r3, &(0x7f0000000080), 0x12)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0xffffffef, &(0x7f0000000300)={&(0x7f0000001bc0)=@newlink={0x84, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x35288}, [@IFLA_LINKINFO={0x5c, 0x12, 0x0, 0x1, @ipip6={{0xb}, {0x4c, 0x2, 0x0, 0x1, [@IFLA_IPTUN_ENCAP_TYPE={0x6}, @IFLA_IPTUN_REMOTE={0x14, 0x3, @private0}, @IFLA_IPTUN_COLLECT_METADATA={0x4}, @IFLA_IPTUN_LINK={0x8}, @IFLA_IPTUN_COLLECT_METADATA={0x4}, @IFLA_IPTUN_LOCAL={0x14, 0x2, @remote}, @IFLA_IPTUN_PROTO={0x5, 0x9, 0x29}]}}}, @IFLA_MASTER={0x8}]}, 0x84}}, 0x4000080)
pipe(&(0x7f0000000200)={<r4=>0xffffffffffffffff})
r5 = socket$inet_udp(0x2, 0x2, 0x0)
close(r5)
bind$inet(r5, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10)
connect$inet(r5, &(0x7f0000001280)={0x2, 0x0, @multicast1}, 0x10)
splice(r4, 0x0, r5, 0x0, 0x5, 0x5)
r6 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000004c0)=@bpf_lsm={0x1d, 0xa, &(0x7f0000000300)=@framed={{0x18, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x7}, [@map_val={0x18, 0x1, 0x2, 0x0, r0, 0x0, 0x0, 0x0, 0x101}, @alu={0x7, 0x1, 0x9, 0x0, 0x2}, @cb_func={0x18, 0x7, 0x4, 0x0, 0x7}, @map_fd={0x18, 0x8, 0x1, 0x0, r0}]}, &(0x7f0000000380)='syzkaller\x00', 0x100, 0x7, &(0x7f00000003c0)=""/7, 0x40f00, 0x0, '\x00', 0x0, 0x1b, r0, 0x8, &(0x7f0000000400)={0x4, 0x4}, 0x8, 0x10, &(0x7f0000000440)={0x3, 0x9, 0x5}, 0x10, 0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000480)=[r0, r0, r0, r0, 0x1, r0, r0]}, 0x80)
pipe(&(0x7f0000000200)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
write$binfmt_misc(r7, &(0x7f0000000080)=ANY=[], 0x5)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000580)=@bpf_ext={0x1c, 0x9, &(0x7f00000000c0)=@raw=[@exit, @exit, @cb_func={0x18, 0x4, 0x4, 0x0, 0x3}, @btf_id={0x18, 0x6, 0x3, 0x0, 0x3}, @generic={0x1, 0x7, 0x7, 0x1f, 0x3f8c}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x3}, @alu={0x4, 0x1, 0xa, 0x9, 0x1, 0x50, 0x4}], &(0x7f0000000240)='syzkaller\x00', 0x5, 0x0, 0x0, 0x40f00, 0x4, '\x00', 0x0, 0x0, r4, 0x8, &(0x7f0000000280)={0x7, 0x5}, 0x8, 0x10, &(0x7f00000002c0)={0x5, 0xa0bb, 0x1, 0x8}, 0x10, 0xd690, r6, 0x0, &(0x7f0000000540)=[r7, r0, r0]}, 0x80)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56) (async)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) (async)
openat$cgroup(r1, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0) (async)
openat$cgroup_int(r2, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) (async)
write$cgroup_int(r3, &(0x7f0000000080), 0x12) (async)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0xffffffef, &(0x7f0000000300)={&(0x7f0000001bc0)=@newlink={0x84, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x35288}, [@IFLA_LINKINFO={0x5c, 0x12, 0x0, 0x1, @ipip6={{0xb}, {0x4c, 0x2, 0x0, 0x1, [@IFLA_IPTUN_ENCAP_TYPE={0x6}, @IFLA_IPTUN_REMOTE={0x14, 0x3, @private0}, @IFLA_IPTUN_COLLECT_METADATA={0x4}, @IFLA_IPTUN_LINK={0x8}, @IFLA_IPTUN_COLLECT_METADATA={0x4}, @IFLA_IPTUN_LOCAL={0x14, 0x2, @remote}, @IFLA_IPTUN_PROTO={0x5, 0x9, 0x29}]}}}, @IFLA_MASTER={0x8}]}, 0x84}}, 0x4000080) (async)
pipe(&(0x7f0000000200)) (async)
socket$inet_udp(0x2, 0x2, 0x0) (async)
close(r5) (async)
bind$inet(r5, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10) (async)
connect$inet(r5, &(0x7f0000001280)={0x2, 0x0, @multicast1}, 0x10) (async)
splice(r4, 0x0, r5, 0x0, 0x5, 0x5) (async)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000004c0)=@bpf_lsm={0x1d, 0xa, &(0x7f0000000300)=@framed={{0x18, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x7}, [@map_val={0x18, 0x1, 0x2, 0x0, r0, 0x0, 0x0, 0x0, 0x101}, @alu={0x7, 0x1, 0x9, 0x0, 0x2}, @cb_func={0x18, 0x7, 0x4, 0x0, 0x7}, @map_fd={0x18, 0x8, 0x1, 0x0, r0}]}, &(0x7f0000000380)='syzkaller\x00', 0x100, 0x7, &(0x7f00000003c0)=""/7, 0x40f00, 0x0, '\x00', 0x0, 0x1b, r0, 0x8, &(0x7f0000000400)={0x4, 0x4}, 0x8, 0x10, &(0x7f0000000440)={0x3, 0x9, 0x5}, 0x10, 0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000480)=[r0, r0, r0, r0, 0x1, r0, r0]}, 0x80) (async)
pipe(&(0x7f0000000200)) (async)
write$binfmt_misc(r7, &(0x7f0000000080)=ANY=[], 0x5) (async)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000580)=@bpf_ext={0x1c, 0x9, &(0x7f00000000c0)=@raw=[@exit, @exit, @cb_func={0x18, 0x4, 0x4, 0x0, 0x3}, @btf_id={0x18, 0x6, 0x3, 0x0, 0x3}, @generic={0x1, 0x7, 0x7, 0x1f, 0x3f8c}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x3}, @alu={0x4, 0x1, 0xa, 0x9, 0x1, 0x50, 0x4}], &(0x7f0000000240)='syzkaller\x00', 0x5, 0x0, 0x0, 0x40f00, 0x4, '\x00', 0x0, 0x0, r4, 0x8, &(0x7f0000000280)={0x7, 0x5}, 0x8, 0x10, &(0x7f00000002c0)={0x5, 0xa0bb, 0x1, 0x8}, 0x10, 0xd690, r6, 0x0, &(0x7f0000000540)=[r7, r0, r0]}, 0x80) (async)

11:29:09 executing program 4:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff000000000000810000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b'], 0x50}}, 0x0)

[ 1033.392216][T14214] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1033.402500][T14214] CPU: 1 PID: 14214 Comm: syz-executor.1 Not tainted 5.17.0-rc7-syzkaller-00078-g3bf7edc84a9e-dirty #0
[ 1033.413514][T14214] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1033.423559][T14214] Call Trace:
[ 1033.426831][T14214]  <TASK>
[ 1033.429755][T14214]  dump_stack_lvl+0xd6/0x122
[ 1033.434345][T14214]  dump_stack+0x11/0x1b
[ 1033.438495][T14214]  dump_header+0x98/0x410
[ 1033.442821][T14214]  out_of_memory+0x65c/0x8c0
[ 1033.447401][T14214]  memory_max_write+0x32c/0x3d0
[ 1033.452249][T14214]  ? memory_max_show+0x70/0x70
[ 1033.457010][T14214]  cgroup_file_write+0x161/0x300
[ 1033.461950][T14214]  ? __check_object_size+0x22a/0x2d0
[ 1033.467260][T14214]  ? cgroup_seqfile_stop+0x70/0x70
[ 1033.472470][T14214]  kernfs_fop_write_iter+0x1d3/0x2d0
[ 1033.477750][T14214]  vfs_write+0x7f5/0x950
[ 1033.481986][T14214]  ksys_write+0xd9/0x190
[ 1033.486225][T14214]  __x64_sys_write+0x3e/0x50
[ 1033.490820][T14214]  do_syscall_64+0x44/0xd0
[ 1033.495272][T14214]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1033.501159][T14214] RIP: 0033:0x7fd6559cc049
[ 1033.505573][T14214] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1033.525207][T14214] RSP: 002b:00007fd654b42168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1033.533615][T14214] RAX: ffffffffffffffda RBX: 00007fd655adef60 RCX: 00007fd6559cc049
[ 1033.541563][T14214] RDX: 0000000000000012 RSI: 0000000020000080 RDI: 0000000000000006
[ 1033.549640][T14214] RBP: 00007fd655a2608d R08: 0000000000000000 R09: 0000000000000000
[ 1033.557661][T14214] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1033.565608][T14214] R13: 00007ffda0be2f9f R14: 00007fd654b42300 R15: 0000000000022000
[ 1033.573562][T14214]  </TASK>
[ 1033.576722][T14214] memory: usage 104kB, limit 60kB, failcnt 6555
[ 1033.583037][T14214] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1033.589935][T14214] Memory cgroup stats for /syz0:
[ 1033.592066][T14214] anon 0
[ 1033.592066][T14214] file 81920
[ 1033.592066][T14214] kernel_stack 0
[ 1033.592066][T14214] pagetables 0
[ 1033.592066][T14214] percpu 0
[ 1033.592066][T14214] sock 0
[ 1033.592066][T14214] vmalloc 0
[ 1033.592066][T14214] shmem 77824
[ 1033.592066][T14214] file_mapped 77824
[ 1033.592066][T14214] file_dirty 4096
[ 1033.592066][T14214] file_writeback 0
[ 1033.592066][T14214] swapcached 0
[ 1033.592066][T14214] inactive_anon 16384
[ 1033.592066][T14214] active_anon 61440
[ 1033.592066][T14214] inactive_file 0
[ 1033.592066][T14214] active_file 4096
[ 1033.592066][T14214] unevictable 0
[ 1033.592066][T14214] slab_reclaimable 7248
[ 1033.592066][T14214] slab_unreclaimable 16136
[ 1033.592066][T14214] slab 23384
[ 1033.592066][T14214] workingset_refault_anon 0
[ 1033.592066][T14214] workingset_refault_file 2
[ 1033.592066][T14214] workingset_activate_anon 0
[ 1033.592066][T14214] workingset_activate_file 0
[ 1033.592066][T14214] workingset_restore_anon 0
[ 1033.686122][T14214] Out of memory and no killable processes...
[ 1033.692402][T14210] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1033.702672][T14210] CPU: 0 PID: 14210 Comm: syz-executor.2 Not tainted 5.17.0-rc7-syzkaller-00078-g3bf7edc84a9e-dirty #0
[ 1033.713679][T14210] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1033.723725][T14210] Call Trace:
[ 1033.726980][T14210]  <TASK>
[ 1033.729889][T14210]  dump_stack_lvl+0xd6/0x122
[ 1033.734512][T14210]  dump_stack+0x11/0x1b
[ 1033.738677][T14210]  dump_header+0x98/0x410
[ 1033.743031][T14210]  out_of_memory+0x65c/0x8c0
[ 1033.747600][T14210]  memory_max_write+0x32c/0x3d0
[ 1033.752443][T14210]  ? memory_max_show+0x70/0x70
[ 1033.757332][T14210]  cgroup_file_write+0x161/0x300
[ 1033.762272][T14210]  ? __check_object_size+0x22a/0x2d0
[ 1033.767572][T14210]  ? cgroup_seqfile_stop+0x70/0x70
[ 1033.772679][T14210]  kernfs_fop_write_iter+0x1d3/0x2d0
[ 1033.777992][T14210]  vfs_write+0x7f5/0x950
[ 1033.782216][T14210]  ksys_write+0xd9/0x190
[ 1033.786450][T14210]  __x64_sys_write+0x3e/0x50
[ 1033.791076][T14210]  do_syscall_64+0x44/0xd0
[ 1033.795490][T14210]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1033.801401][T14210] RIP: 0033:0x7f1d3184b049
[ 1033.805818][T14210] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1033.825472][T14210] RSP: 002b:00007f1d309c1168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1033.833954][T14210] RAX: ffffffffffffffda RBX: 00007f1d3195df60 RCX: 00007f1d3184b049
[ 1033.841902][T14210] RDX: 0000000000000012 RSI: 0000000020000080 RDI: 0000000000000006
[ 1033.849878][T14210] RBP: 00007f1d318a508d R08: 0000000000000000 R09: 0000000000000000
[ 1033.857846][T14210] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1033.865824][T14210] R13: 00007ffc96a4069f R14: 00007f1d309c1300 R15: 0000000000022000
[ 1033.873777][T14210]  </TASK>
[ 1033.876958][T14210] memory: usage 104kB, limit 60kB, failcnt 6555
[ 1033.883927][T14210] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1033.890820][T14210] Memory cgroup stats for /syz0:
[ 1033.891302][T14210] anon 0
[ 1033.891302][T14210] file 81920
[ 1033.891302][T14210] kernel_stack 0
[ 1033.891302][T14210] pagetables 0
[ 1033.891302][T14210] percpu 0
[ 1033.891302][T14210] sock 0
[ 1033.891302][T14210] vmalloc 0
[ 1033.891302][T14210] shmem 77824
[ 1033.891302][T14210] file_mapped 77824
[ 1033.891302][T14210] file_dirty 4096
[ 1033.891302][T14210] file_writeback 0
[ 1033.891302][T14210] swapcached 0
[ 1033.891302][T14210] inactive_anon 16384
[ 1033.891302][T14210] active_anon 61440
[ 1033.891302][T14210] inactive_file 0
[ 1033.891302][T14210] active_file 4096
[ 1033.891302][T14210] unevictable 0
[ 1033.891302][T14210] slab_reclaimable 7248
[ 1033.891302][T14210] slab_unreclaimable 16136
[ 1033.891302][T14210] slab 23384
[ 1033.891302][T14210] workingset_refault_anon 0
[ 1033.891302][T14210] workingset_refault_file 2
[ 1033.891302][T14210] workingset_activate_anon 0
[ 1033.891302][T14210] workingset_activate_file 0
[ 1033.891302][T14210] workingset_restore_anon 0
[ 1033.985395][T14210] Out of memory and no killable processes...
[ 1034.108732][T13062] device hsr_slave_0 left promiscuous mode
[ 1034.114749][T13062] device hsr_slave_1 left promiscuous mode
[ 1034.121453][T13062] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1034.128896][T13062] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1034.136580][T13062] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1034.144003][T13062] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1034.151628][T13062] device bridge_slave_1 left promiscuous mode
[ 1034.157780][T13062] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1034.165223][T13062] device bridge_slave_0 left promiscuous mode
[ 1034.171380][T13062] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1034.180545][T13062] device veth1_macvtap left promiscuous mode
[ 1034.186543][T13062] device veth0_macvtap left promiscuous mode
[ 1034.192554][T13062] device veth1_vlan left promiscuous mode
[ 1034.198374][T13062] device veth0_vlan left promiscuous mode
[ 1034.278136][T13062] team0 (unregistering): Port device team_slave_1 removed
[ 1034.288159][T13062] team0 (unregistering): Port device team_slave_0 removed
[ 1034.297589][T13062] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1034.308832][T13062] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1034.338267][T13062] bond0 (unregistering): Released all slaves
[ 1034.671909][T14238] chnl_net:caif_netlink_parms(): no params data found
[ 1034.712797][T14238] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1034.719893][T14238] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1034.727625][T14238] device bridge_slave_0 entered promiscuous mode
[ 1034.734921][T14238] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1034.741988][T14238] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1034.750205][T14238] device bridge_slave_1 entered promiscuous mode
[ 1034.768529][T14238] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1034.778983][T14238] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1034.798459][T14238] team0: Port device team_slave_0 added
[ 1034.804810][T14238] team0: Port device team_slave_1 added
[ 1034.821477][T14238] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1034.828451][T14238] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1034.854527][T14238] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1034.865869][T14238] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1034.872823][T14238] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1034.898804][T14238] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1034.923324][T14238] device hsr_slave_0 entered promiscuous mode
[ 1034.929947][T14238] device hsr_slave_1 entered promiscuous mode
[ 1034.978415][T14238] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1034.985528][T14238] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1034.992957][T14238] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1034.999989][T14238] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1035.024731][T14238] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1035.034945][ T1928] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1035.043225][ T1928] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1035.051038][ T1928] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1035.062695][T14238] 8021q: adding VLAN 0 to HW filter on device team0
[ 1035.071086][T12912] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 1035.079557][T12912] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1035.087913][T12912] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1035.094932][T12912] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1035.112334][T14238] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 1035.122668][T14238] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 1035.134061][T12912] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 1035.142564][T12912] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1035.150931][T12912] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1035.157966][T12912] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1035.165722][T12912] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 1035.174398][T12912] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 1035.182797][T12912] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 1035.191152][T12912] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 1035.199488][T12912] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 1035.207826][T12912] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 1035.216351][T12912] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 1035.224590][T12912] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1035.233166][T12912] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 1035.241465][T12912] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1035.251676][T12912] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 1035.259483][T12912] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 1035.269756][   T77] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 1035.277183][   T77] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 1035.287408][T14238] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1035.363491][ T6846] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 1035.375762][ T6846] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1035.411522][T14238] device veth0_vlan entered promiscuous mode
[ 1035.418609][ T6845] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 1035.426778][ T6845] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1035.437183][T14238] device veth1_vlan entered promiscuous mode
[ 1035.446545][ T6845] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1035.454075][ T6845] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1035.461956][ T6845] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 1035.469828][ T6845] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 1035.482213][T14238] device veth0_macvtap entered promiscuous mode
[ 1035.489466][ T6846] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 1035.498026][ T6846] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1035.506366][ T6846] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 1035.514946][T14238] device veth1_macvtap entered promiscuous mode
[ 1035.524543][T14238] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 1035.534984][T14238] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1035.544820][T14238] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 1035.555427][T14238] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1035.565232][T14238] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 1035.575672][T14238] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1035.585491][T14238] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 1035.595970][T14238] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1035.605786][T14238] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 1035.616184][T14238] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1035.626805][T14238] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1035.634461][ T6845] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 1035.642384][ T6845] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 1035.650824][ T6845] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1035.660625][T14238] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 1035.671154][T14238] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1035.681021][T14238] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 1035.691464][T14238] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1035.701256][T14238] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 1035.711657][T14238] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1035.721468][T14238] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 1035.731894][T14238] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1035.741763][T14238] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 1035.752228][T14238] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1035.763237][T14238] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1035.772690][ T6846] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 1035.781376][ T6846] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
11:29:11 executing program 0:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) (async, rerun: 64)
mount(0x0, &(0x7f0000000280)='./file0\x00', &(0x7f0000000040)='jffs2\x00', 0x1a3443, 0x0) (async, rerun: 64)
mount(&(0x7f0000000380)=ANY=[@ANYBLOB="2f6465762f6e756c6c623000823ab580bb665216375c15fb927f344debcf1e5a2c22e2d18ea86d30b307bfed25270b2c4746d24d46f34d01e2e5d4156a7eeab311e871f0d22d554c9a74c5bb23e3c31e2f2c82ae4dfafc9cb67c85e398375e007a9d1774a0a7b26b44fa7b53498a7969ed2fb758f96cc021143b3df4b3db40c733e423e520909948457da1106542"], &(0x7f00000002c0)='./file0\x00', &(0x7f0000000300)='selinuxfs\x00', 0x800, &(0x7f0000000340)=']\x00') (async)
symlinkat(&(0x7f0000000000)='./file0\x00', 0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00') (async)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup.cpu/syz0\x00', 0x200002, 0x0) (async)
write$cgroup_int(r2, &(0x7f0000000080), 0x12)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x4, 0x100010, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r3, 0x0, &(0x7f00000000c0)=@IORING_OP_NOP={0x0, 0x1}, 0xffff) (async)
accept4(0xffffffffffffffff, &(0x7f0000000440)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @dev}, &(0x7f0000000240)=0x80, 0x0)

11:29:11 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x0, 0x0, 0x56)
socket$inet6(0xa, 0x80001, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x80000, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080), 0xa)

11:29:11 executing program 1:
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r0=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)={0x3c, 0x0, 0x20, 0x70bd26, 0x25dfdbff, {{}, {@val={0x8, 0x3, r0}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x6e}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x6e}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x1e0}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xf0}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40}, 0x40000840)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
open(&(0x7f0000000300)='./file0\x00', 0x8100, 0x120)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = openat$cgroup(r1, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r3 = openat$cgroup_int(r2, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r3, &(0x7f0000000080), 0x12)

11:29:11 executing program 5:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r1, &(0x7f0000000000), 0x10)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff0000eaffffff000000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b', @ANYRES32], 0x50}}, 0x0)

11:29:11 executing program 2:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
socket$inet6(0xa, 0x0, 0x0)
setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x30, 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x0, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x40000, 0x12)

11:29:11 executing program 4:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff000000ffffff810000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b'], 0x50}}, 0x0)

[ 1035.815133][T14272] selinuxfs: Unknown parameter ']'
[ 1035.821270][T14274] selinuxfs: Unknown parameter ']'
[ 1035.854271][T14280] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
11:29:11 executing program 2:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
socket$inet6(0xa, 0x0, 0x0)
setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x30, 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x0, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x1000000, 0x12)

[ 1035.864527][T14280] CPU: 0 PID: 14280 Comm: syz-executor.1 Not tainted 5.17.0-rc7-syzkaller-00078-g3bf7edc84a9e-dirty #0
[ 1035.875540][T14280] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1035.885591][T14280] Call Trace:
[ 1035.888861][T14280]  <TASK>
[ 1035.891792][T14280]  dump_stack_lvl+0xd6/0x122
[ 1035.896382][T14280]  dump_stack+0x11/0x1b
[ 1035.900584][T14280]  dump_header+0x98/0x410
[ 1035.904913][T14280]  oom_kill_process+0x18e/0x4a0
[ 1035.909831][T14280]  out_of_memory+0x61d/0x8c0
[ 1035.914428][T14280]  ? _raw_spin_unlock_irqrestore+0x3d/0x60
[ 1035.920279][T14280]  memory_max_write+0x32c/0x3d0
[ 1035.925117][T14280]  ? memory_max_show+0x70/0x70
[ 1035.929876][T14280]  cgroup_file_write+0x161/0x300
[ 1035.934800][T14280]  ? __check_object_size+0x22a/0x2d0
[ 1035.940085][T14280]  ? cgroup_seqfile_stop+0x70/0x70
[ 1035.945221][T14280]  kernfs_fop_write_iter+0x1d3/0x2d0
[ 1035.950519][T14280]  vfs_write+0x7f5/0x950
[ 1035.954788][T14280]  ksys_write+0xd9/0x190
[ 1035.959061][T14280]  __x64_sys_write+0x3e/0x50
[ 1035.963626][T14280]  do_syscall_64+0x44/0xd0
[ 1035.968070][T14280]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1035.973942][T14280] RIP: 0033:0x7fd6559cc049
[ 1035.978347][T14280] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1035.998061][T14280] RSP: 002b:00007fd654b42168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1036.006449][T14280] RAX: ffffffffffffffda RBX: 00007fd655adef60 RCX: 00007fd6559cc049
[ 1036.014414][T14280] RDX: 0000000000000012 RSI: 0000000020000080 RDI: 000000000000000f
[ 1036.022375][T14280] RBP: 00007fd655a2608d R08: 0000000000000000 R09: 0000000000000000
[ 1036.030323][T14280] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1036.038318][T14280] R13: 00007ffda0be2f9f R14: 00007fd654b42300 R15: 0000000000022000
[ 1036.046271][T14280]  </TASK>
[ 1036.049330][T14280] memory: usage 200kB, limit 256kB, failcnt 6578
[ 1036.056047][T14280] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1036.062890][T14280] Memory cgroup stats for /syz0:
[ 1036.063305][T14280] anon 40960
[ 1036.063305][T14280] file 81920
[ 1036.063305][T14280] kernel_stack 0
[ 1036.063305][T14280] pagetables 8192
[ 1036.063305][T14280] percpu 0
[ 1036.063305][T14280] sock 0
[ 1036.063305][T14280] vmalloc 0
[ 1036.063305][T14280] shmem 77824
[ 1036.063305][T14280] file_mapped 77824
[ 1036.063305][T14280] file_dirty 4096
[ 1036.063305][T14280] file_writeback 0
[ 1036.063305][T14280] swapcached 0
[ 1036.063305][T14280] inactive_anon 57344
[ 1036.063305][T14280] active_anon 61440
[ 1036.063305][T14280] inactive_file 0
[ 1036.063305][T14280] active_file 4096
[ 1036.063305][T14280] unevictable 0
[ 1036.063305][T14280] slab_reclaimable 21744
[ 1036.063305][T14280] slab_unreclaimable 34544
[ 1036.063305][T14280] slab 56288
[ 1036.063305][T14280] workingset_refault_anon 0
[ 1036.063305][T14280] workingset_refault_file 2
[ 1036.063305][T14280] workingset_activate_anon 0
[ 1036.063305][T14280] workingset_activate_file 0
[ 1036.063305][T14280] workingset_restore_anon 0
11:29:12 executing program 2:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
socket$inet6(0xa, 0x0, 0x0)
setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x30, 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x0, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x2000000, 0x12)

[ 1036.158116][T14280] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=14238,uid=0
[ 1036.173410][T14280] Memory cgroup out of memory: Killed process 14238 (syz-executor.0) total-vm:48480kB, anon-rss:364kB, file-rss:14336kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:0
[ 1036.191163][   T26] oom_reaper: reaped process 14238 (syz-executor.0), now anon-rss:0kB, file-rss:14336kB, shmem-rss:64kB
11:29:12 executing program 5:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r1, &(0x7f0000000000), 0x10)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff0000efffffff000000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b', @ANYRES32], 0x50}}, 0x0)

11:29:12 executing program 4:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff000000000047880000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b'], 0x50}}, 0x0)

11:29:12 executing program 0:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
syz_mount_image$ext4(&(0x7f00000000c0)='ext2\x00', &(0x7f0000000100)='./file0\x00', 0x5, 0x1, &(0x7f0000000340)=[{&(0x7f0000000240)="62c2253cc2720d328e57c52f70c084bb7da281e015339ed80fd029eb096c5c2c1214e12fa772a8fb73f7625213bc8544846b021e5846e240b7af9a8b1b93f0b88a363d7398a6212da8df99dc7c68c0812e31e402d9eebc5d67900e956dc575a8cefa2d14b464fec363ef069f2b9386bec8ddd9639fbd600f8f5a179e79a1468ae326262caf34c6140518e541ef590ec8aae65604d024e5cc748269a309307342264c776a695cc3252aa899f56f18b8e0828a06e8f0c59095155e35a66f77da2813", 0xc1, 0xc000000}], 0x0, &(0x7f0000000380)=ANY=[@ANYBLOB='nobh,smackfstransmute=,func=CREDS_CHECK,uid<', @ANYRESDEC=0xee01, @ANYBLOB="2c66756e633d46494c455f434845434b2c6f626a5f757365723d6d656d6f72792e6d6178002c646566636f6e746578743d756e636f6e66696e65645fee1b4bdc61636b66737472616e736d7574653d6d656d6f72792e6d6178002c00"])
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080), 0x12)
pipe(&(0x7f0000000200)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
write$binfmt_misc(r3, &(0x7f0000000080)=ANY=[], 0x5)
write$RDMA_USER_CM_CMD_RESOLVE_ADDR(r3, &(0x7f0000000440)={0x15, 0x110, 0xfa00, {0xffffffffffffffff, 0x7f, 0x0, 0x0, 0x0, @in6={0xa, 0x4e22, 0xffffffff, @empty, 0x40}, @in6={0xa, 0x4e23, 0x6, @private0, 0xa8b}}}, 0x118)

11:29:12 executing program 2:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
socket$inet6(0xa, 0x0, 0x0)
setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x30, 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x0, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x3000000, 0x12)

11:29:12 executing program 0:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
syz_mount_image$ext4(&(0x7f00000000c0)='ext2\x00', &(0x7f0000000100)='./file0\x00', 0x5, 0x1, &(0x7f0000000340)=[{&(0x7f0000000240)="62c2253cc2720d328e57c52f70c084bb7da281e015339ed80fd029eb096c5c2c1214e12fa772a8fb73f7625213bc8544846b021e5846e240b7af9a8b1b93f0b88a363d7398a6212da8df99dc7c68c0812e31e402d9eebc5d67900e956dc575a8cefa2d14b464fec363ef069f2b9386bec8ddd9639fbd600f8f5a179e79a1468ae326262caf34c6140518e541ef590ec8aae65604d024e5cc748269a309307342264c776a695cc3252aa899f56f18b8e0828a06e8f0c59095155e35a66f77da2813", 0xc1, 0xc000000}], 0x0, &(0x7f0000000380)=ANY=[@ANYBLOB='nobh,smackfstransmute=,func=CREDS_CHECK,uid<', @ANYRESDEC=0xee01, @ANYBLOB="2c66756e633d46494c455f434845434b2c6f626a5f757365723d6d656d6f72792e6d6178002c646566636f6e746578743d756e636f6e66696e65645fee1b4bdc61636b66737472616e736d7574653d6d656d6f72792e6d6178002c00"]) (async)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) (async)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080), 0x12)
pipe(&(0x7f0000000200)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
write$binfmt_misc(r3, &(0x7f0000000080)=ANY=[], 0x5) (async)
write$RDMA_USER_CM_CMD_RESOLVE_ADDR(r3, &(0x7f0000000440)={0x15, 0x110, 0xfa00, {0xffffffffffffffff, 0x7f, 0x0, 0x0, 0x0, @in6={0xa, 0x4e22, 0xffffffff, @empty, 0x40}, @in6={0xa, 0x4e23, 0x6, @private0, 0xa8b}}}, 0x118)

11:29:12 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x0, 0x0, 0x56)
socket$inet6(0xa, 0x80001, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x80000, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080), 0x64)

11:29:12 executing program 2:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
socket$inet6(0xa, 0x0, 0x0)
setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x30, 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x0, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x4000000, 0x12)

11:29:12 executing program 4:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff000000000048880000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b'], 0x50}}, 0x0)

11:29:12 executing program 5:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r1, &(0x7f0000000000), 0x10)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff0000f0ffffff000000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b', @ANYRES32], 0x50}}, 0x0)

11:29:12 executing program 1:
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r0=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)={0x3c, 0x0, 0x20, 0x70bd26, 0x25dfdbff, {{}, {@val={0x8, 0x3, r0}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x6e}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x6e}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x1e0}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xf0}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40}, 0x40000840) (async)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
open(&(0x7f0000000300)='./file0\x00', 0x8100, 0x120) (async)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = openat$cgroup(r1, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r3 = openat$cgroup_int(r2, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) (async)
write$cgroup_int(r3, &(0x7f0000000080), 0x12)

[ 1036.733534][T14324] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1036.743913][T14324] CPU: 0 PID: 14324 Comm: syz-executor.1 Not tainted 5.17.0-rc7-syzkaller-00078-g3bf7edc84a9e-dirty #0
[ 1036.754936][T14324] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1036.764986][T14324] Call Trace:
[ 1036.768259][T14324]  <TASK>
[ 1036.771188][T14324]  dump_stack_lvl+0xd6/0x122
[ 1036.775849][T14324]  dump_stack+0x11/0x1b
[ 1036.780065][T14324]  dump_header+0x98/0x410
[ 1036.784392][T14324]  out_of_memory+0x65c/0x8c0
[ 1036.788978][T14324]  memory_max_write+0x32c/0x3d0
[ 1036.793824][T14324]  ? memory_max_show+0x70/0x70
[ 1036.798643][T14324]  cgroup_file_write+0x161/0x300
[ 1036.803577][T14324]  ? __check_object_size+0x22a/0x2d0
[ 1036.808858][T14324]  ? cgroup_seqfile_stop+0x70/0x70
[ 1036.813958][T14324]  kernfs_fop_write_iter+0x1d3/0x2d0
[ 1036.819248][T14324]  vfs_write+0x7f5/0x950
[ 1036.823555][T14324]  ksys_write+0xd9/0x190
[ 1036.827805][T14324]  __x64_sys_write+0x3e/0x50
[ 1036.832391][T14324]  do_syscall_64+0x44/0xd0
[ 1036.836873][T14324]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1036.842786][T14324] RIP: 0033:0x7fd6559cc049
[ 1036.847199][T14324] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1036.866845][T14324] RSP: 002b:00007fd654b00168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1036.875295][T14324] RAX: ffffffffffffffda RBX: 00007fd655adf100 RCX: 00007fd6559cc049
[ 1036.883258][T14324] RDX: 0000000000000012 RSI: 0000000020000080 RDI: 000000000000000f
[ 1036.891221][T14324] RBP: 00007fd655a2608d R08: 0000000000000000 R09: 0000000000000000
[ 1036.899187][T14324] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1036.907153][T14324] R13: 00007ffda0be2f9f R14: 00007fd654b00300 R15: 0000000000022000
[ 1036.915154][T14324]  </TASK>
[ 1036.918205][T14324] memory: usage 104kB, limit 0kB, failcnt 6578
[ 1036.924348][T14324] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1036.931215][T14324] Memory cgroup stats for /syz0:
[ 1036.935236][T14324] anon 0
[ 1036.935236][T14324] file 81920
[ 1036.935236][T14324] kernel_stack 0
[ 1036.935236][T14324] pagetables 0
[ 1036.935236][T14324] percpu 0
[ 1036.935236][T14324] sock 0
[ 1036.935236][T14324] vmalloc 0
[ 1036.935236][T14324] shmem 77824
[ 1036.935236][T14324] file_mapped 77824
[ 1036.935236][T14324] file_dirty 4096
[ 1036.935236][T14324] file_writeback 0
[ 1036.935236][T14324] swapcached 0
[ 1036.935236][T14324] inactive_anon 16384
[ 1036.935236][T14324] active_anon 61440
11:29:12 executing program 2:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
socket$inet6(0xa, 0x0, 0x0)
setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x30, 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x0, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x7000000, 0x12)

[ 1036.935236][T14324] inactive_file 0
[ 1036.935236][T14324] active_file 4096
[ 1036.935236][T14324] unevictable 0
[ 1036.935236][T14324] slab_reclaimable 6440
[ 1036.935236][T14324] slab_unreclaimable 16136
[ 1036.935236][T14324] slab 22576
[ 1036.935236][T14324] workingset_refault_anon 0
[ 1036.935236][T14324] workingset_refault_file 2
[ 1036.935236][T14324] workingset_activate_anon 0
[ 1036.935236][T14324] workingset_activate_file 0
[ 1036.935236][T14324] workingset_restore_anon 0
[ 1037.029316][T14324] Out of memory and no killable processes...
11:29:13 executing program 4:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff000000ffffa8880000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b'], 0x50}}, 0x0)

11:29:13 executing program 1:
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r0=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)={0x3c, 0x0, 0x20, 0x70bd26, 0x25dfdbff, {{}, {@val={0x8, 0x3, r0}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x6e}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x6e}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x1e0}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xf0}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40}, 0x40000840) (async, rerun: 32)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async, rerun: 32)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async, rerun: 32)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (rerun: 32)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
open(&(0x7f0000000300)='./file0\x00', 0x8100, 0x120) (async)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = openat$cgroup(r1, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r3 = openat$cgroup_int(r2, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) (async)
write$cgroup_int(r3, &(0x7f0000000080), 0x12)

11:29:13 executing program 5:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r1, &(0x7f0000000000), 0x10)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff0000feffffff000000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b', @ANYRES32], 0x50}}, 0x0)

11:29:13 executing program 2:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
socket$inet6(0xa, 0x0, 0x0)
setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x30, 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x0, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0xa000000, 0x12)

11:29:13 executing program 2:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
socket$inet6(0xa, 0x0, 0x0)
setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x30, 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x0, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x10000000, 0x12)

[ 1037.180035][T14312] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=0
[ 1037.190151][T14312] CPU: 1 PID: 14312 Comm: syz-executor.3 Not tainted 5.17.0-rc7-syzkaller-00078-g3bf7edc84a9e-dirty #0
[ 1037.201170][T14312] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1037.211219][T14312] Call Trace:
[ 1037.214496][T14312]  <TASK>
[ 1037.217413][T14312]  dump_stack_lvl+0xd6/0x122
[ 1037.221985][T14312]  dump_stack+0x11/0x1b
[ 1037.226130][T14312]  dump_header+0x98/0x410
[ 1037.230527][T14312]  out_of_memory+0x65c/0x8c0
[ 1037.235117][T14312]  ? _raw_spin_unlock_irqrestore+0x3d/0x60
[ 1037.240898][T14312]  memory_max_write+0x32c/0x3d0
[ 1037.245738][T14312]  ? memory_max_show+0x70/0x70
[ 1037.250541][T14312]  cgroup_file_write+0x161/0x300
[ 1037.255454][T14312]  ? __check_object_size+0x22a/0x2d0
[ 1037.260762][T14312]  ? cgroup_seqfile_stop+0x70/0x70
[ 1037.265855][T14312]  kernfs_fop_write_iter+0x1d3/0x2d0
[ 1037.271145][T14312]  vfs_write+0x7f5/0x950
[ 1037.275388][T14312]  ksys_write+0xd9/0x190
[ 1037.279604][T14312]  __x64_sys_write+0x3e/0x50
[ 1037.284182][T14312]  do_syscall_64+0x44/0xd0
[ 1037.288578][T14312]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1037.294450][T14312] RIP: 0033:0x7f8cc712a049
[ 1037.298864][T14312] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1037.318515][T14312] RSP: 002b:00007f8cc62a0168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1037.326940][T14312] RAX: ffffffffffffffda RBX: 00007f8cc723cf60 RCX: 00007f8cc712a049
[ 1037.334900][T14312] RDX: 0000000000000064 RSI: 0000000020000080 RDI: 000000000000000f
[ 1037.342848][T14312] RBP: 00007f8cc718408d R08: 0000000000000000 R09: 0000000000000000
[ 1037.350825][T14312] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1037.358789][T14312] R13: 00007fff26a0d88f R14: 00007f8cc62a0300 R15: 0000000000022000
[ 1037.366762][T14312]  </TASK>
[ 1037.369802][T14312] memory: usage 104kB, limit 163840kB, failcnt 6578
[ 1037.376429][T14312] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1037.383285][T14312] Memory cgroup stats for /syz0:
[ 1037.387233][T14312] anon 0
[ 1037.387233][T14312] file 81920
[ 1037.387233][T14312] kernel_stack 0
[ 1037.387233][T14312] pagetables 0
[ 1037.387233][T14312] percpu 0
[ 1037.387233][T14312] sock 0
[ 1037.387233][T14312] vmalloc 0
[ 1037.387233][T14312] shmem 77824
[ 1037.387233][T14312] file_mapped 77824
[ 1037.387233][T14312] file_dirty 4096
[ 1037.387233][T14312] file_writeback 0
[ 1037.387233][T14312] swapcached 0
[ 1037.387233][T14312] inactive_anon 16384
[ 1037.387233][T14312] active_anon 61440
[ 1037.387233][T14312] inactive_file 0
[ 1037.387233][T14312] active_file 4096
[ 1037.387233][T14312] unevictable 0
[ 1037.387233][T14312] slab_reclaimable 6440
[ 1037.387233][T14312] slab_unreclaimable 16136
[ 1037.387233][T14312] slab 22576
[ 1037.387233][T14312] workingset_refault_anon 0
[ 1037.387233][T14312] workingset_refault_file 2
[ 1037.387233][T14312] workingset_activate_anon 0
[ 1037.387233][T14312] workingset_activate_file 0
[ 1037.387233][T14312] workingset_restore_anon 0
[ 1037.481388][T14312] Out of memory and no killable processes...
[ 1037.536772][    C0] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[ 1037.548263][T13062] device hsr_slave_0 left promiscuous mode
[ 1037.554442][T13062] device hsr_slave_1 left promiscuous mode
[ 1037.561660][T13062] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1037.569108][T13062] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1037.578124][T13062] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1037.585560][T13062] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1037.598059][T13062] device bridge_slave_1 left promiscuous mode
[ 1037.604262][T13062] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1037.613653][T13062] device bridge_slave_0 left promiscuous mode
[ 1037.619860][T13062] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1037.630939][T13062] device veth1_macvtap left promiscuous mode
[ 1037.636952][T13062] device veth0_macvtap left promiscuous mode
[ 1037.642945][T13062] device veth1_vlan left promiscuous mode
[ 1037.648704][T13062] device veth0_vlan left promiscuous mode
[ 1037.757363][T13062] team0 (unregistering): Port device team_slave_1 removed
[ 1037.769002][T13062] team0 (unregistering): Port device team_slave_0 removed
[ 1037.779659][T13062] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1037.792108][T13062] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1037.825544][T13062] bond0 (unregistering): Released all slaves
[ 1038.291463][T14354] chnl_net:caif_netlink_parms(): no params data found
[ 1038.319909][T14354] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1038.327047][T14354] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1038.334638][T14354] device bridge_slave_0 entered promiscuous mode
[ 1038.341798][T14354] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1038.348850][T14354] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1038.356611][T14354] device bridge_slave_1 entered promiscuous mode
[ 1038.371826][T14354] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1038.381756][T14354] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1038.399112][T14354] team0: Port device team_slave_0 added
[ 1038.405382][T14354] team0: Port device team_slave_1 added
[ 1038.418744][T14354] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1038.425657][T14354] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1038.451535][T14354] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1038.463175][T14354] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1038.470230][T14354] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1038.496191][T14354] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1038.518487][T14354] device hsr_slave_0 entered promiscuous mode
[ 1038.524866][T14354] device hsr_slave_1 entered promiscuous mode
[ 1038.571938][T14354] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1038.578987][T14354] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1038.586221][T14354] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1038.593344][T14354] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1038.601541][ T1928] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1038.609297][ T1928] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1038.638538][T14354] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1038.648103][ T6846] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 1038.655617][ T6846] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1038.664881][T14354] 8021q: adding VLAN 0 to HW filter on device team0
[ 1038.673159][T12912] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 1038.681776][T12912] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1038.690006][T12912] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1038.697081][T12912] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1038.706557][ T6846] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 1038.714859][ T6846] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1038.723247][ T6846] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1038.730277][ T6846] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1038.739560][ T1928] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 1038.755132][T14354] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 1038.765462][T14354] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 1038.777478][ T6846] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 1038.786090][ T6846] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 1038.794640][ T6846] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 1038.803279][ T6846] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 1038.811646][ T6846] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 1038.820138][ T6846] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 1038.828455][ T6846] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1038.836791][ T6846] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 1038.844950][ T6846] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1038.853436][ T6846] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 1038.861494][ T6846] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 1038.875292][T14354] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1038.882451][ T6846] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 1038.889813][ T6846] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 1038.956459][ T6846] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 1038.965061][ T6846] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1039.002138][T14354] device veth0_vlan entered promiscuous mode
[ 1039.008767][T12912] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 1039.016938][T12912] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1039.026069][T12912] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1039.033721][T12912] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1039.042496][T14354] device veth1_vlan entered promiscuous mode
[ 1039.055523][T12912] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 1039.063525][T12912] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 1039.071600][T12912] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 1039.080204][T12912] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1039.089610][T14354] device veth0_macvtap entered promiscuous mode
[ 1039.098081][T14354] device veth1_macvtap entered promiscuous mode
[ 1039.108512][T14354] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 1039.119155][T14354] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1039.128962][T14354] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 1039.139361][T14354] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1039.149149][T14354] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 1039.159559][T14354] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1039.169360][T14354] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 1039.179759][T14354] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1039.189590][T14354] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 1039.199990][T14354] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1039.211372][T14354] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1039.219059][ T1928] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 1039.228280][ T1928] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 1039.236225][ T1928] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 1039.244682][ T1928] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1039.255344][T14354] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 1039.265754][T14354] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1039.275550][T14354] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 1039.285970][T14354] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1039.295811][T14354] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 1039.306290][T14354] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1039.316108][T14354] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 1039.326608][T14354] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1039.336452][T14354] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 1039.346848][T14354] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1039.358071][T14354] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1039.365736][ T6849] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 1039.374363][ T6849] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 1039.407728][T14388] loop0: detected capacity change from 0 to 258048
[ 1039.412126][T14389] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1039.424434][T14389] CPU: 1 PID: 14389 Comm: syz-executor.0 Not tainted 5.17.0-rc7-syzkaller-00078-g3bf7edc84a9e-dirty #0
[ 1039.435513][T14389] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1039.445618][T14389] Call Trace:
[ 1039.448896][T14389]  <TASK>
[ 1039.451864][T14389]  dump_stack_lvl+0xd6/0x122
[ 1039.456434][T14389]  dump_stack+0x11/0x1b
[ 1039.460563][T14389]  dump_header+0x98/0x410
[ 1039.464948][T14389]  oom_kill_process+0x18e/0x4a0
[ 1039.469784][T14389]  out_of_memory+0x61d/0x8c0
[ 1039.474413][T14389]  memory_max_write+0x32c/0x3d0
[ 1039.479239][T14389]  ? memory_max_show+0x70/0x70
[ 1039.483978][T14389]  cgroup_file_write+0x161/0x300
[ 1039.488968][T14389]  ? __check_object_size+0x22a/0x2d0
[ 1039.494301][T14389]  ? cgroup_seqfile_stop+0x70/0x70
[ 1039.499386][T14389]  kernfs_fop_write_iter+0x1d3/0x2d0
[ 1039.504703][T14389]  vfs_write+0x7f5/0x950
[ 1039.508937][T14389]  ksys_write+0xd9/0x190
[ 1039.513156][T14389]  __x64_sys_write+0x3e/0x50
[ 1039.517719][T14389]  do_syscall_64+0x44/0xd0
[ 1039.522166][T14389]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1039.528036][T14389] RIP: 0033:0x7f1810437049
[ 1039.532458][T14389] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1039.552133][T14389] RSP: 002b:00007f180f58c168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1039.560523][T14389] RAX: ffffffffffffffda RBX: 00007f181054a030 RCX: 00007f1810437049
[ 1039.568487][T14389] RDX: 0000000000000012 RSI: 0000000020000080 RDI: 0000000000000010
[ 1039.576484][T14389] RBP: 00007f181049108d R08: 0000000000000000 R09: 0000000000000000
[ 1039.584440][T14389] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1039.592415][T14389] R13: 00007ffcee0562cf R14: 00007f180f58c300 R15: 0000000000022000
[ 1039.600426][T14389]  </TASK>
[ 1039.603556][T14389] memory: usage 468kB, limit 0kB, failcnt 6597
[ 1039.609801][T14389] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1039.616747][T14389] Memory cgroup stats for /syz0:
[ 1039.616970][T14389] anon 98304
[ 1039.616970][T14389] file 86016
[ 1039.616970][T14389] kernel_stack 81920
[ 1039.616970][T14389] pagetables 90112
[ 1039.616970][T14389] percpu 0
[ 1039.616970][T14389] sock 0
[ 1039.616970][T14389] vmalloc 0
[ 1039.616970][T14389] shmem 81920
[ 1039.616970][T14389] file_mapped 77824
[ 1039.616970][T14389] file_dirty 4096
[ 1039.616970][T14389] file_writeback 0
[ 1039.616970][T14389] swapcached 0
[ 1039.616970][T14389] inactive_anon 118784
[ 1039.616970][T14389] active_anon 61440
[ 1039.616970][T14389] inactive_file 0
[ 1039.616970][T14389] active_file 4096
[ 1039.616970][T14389] unevictable 0
[ 1039.616970][T14389] slab_reclaimable 26040
[ 1039.616970][T14389] slab_unreclaimable 63032
[ 1039.616970][T14389] slab 89072
[ 1039.616970][T14389] workingset_refault_anon 0
[ 1039.616970][T14389] workingset_refault_file 2
[ 1039.616970][T14389] workingset_activate_anon 0
[ 1039.616970][T14389] workingset_activate_file 0
[ 1039.616970][T14389] workingset_restore_anon 0
[ 1039.712285][T14389] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=14387,uid=0
[ 1039.727545][T14389] Memory cgroup out of memory: Killed process 14387 (syz-executor.0) total-vm:49008kB, anon-rss:368kB, file-rss:14336kB, shmem-rss:0kB, UID:0 pgtables:96kB oom_score_adj:1000
[ 1039.745617][   T26] oom_reaper: reaped process 14387 (syz-executor.0), now anon-rss:0kB, file-rss:14272kB, shmem-rss:4kB
11:29:15 executing program 0:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
syz_mount_image$ext4(&(0x7f00000000c0)='ext2\x00', &(0x7f0000000100)='./file0\x00', 0x5, 0x1, &(0x7f0000000340)=[{&(0x7f0000000240)="62c2253cc2720d328e57c52f70c084bb7da281e015339ed80fd029eb096c5c2c1214e12fa772a8fb73f7625213bc8544846b021e5846e240b7af9a8b1b93f0b88a363d7398a6212da8df99dc7c68c0812e31e402d9eebc5d67900e956dc575a8cefa2d14b464fec363ef069f2b9386bec8ddd9639fbd600f8f5a179e79a1468ae326262caf34c6140518e541ef590ec8aae65604d024e5cc748269a309307342264c776a695cc3252aa899f56f18b8e0828a06e8f0c59095155e35a66f77da2813", 0xc1, 0xc000000}], 0x0, &(0x7f0000000380)=ANY=[@ANYBLOB='nobh,smackfstransmute=,func=CREDS_CHECK,uid<', @ANYRESDEC=0xee01, @ANYBLOB="2c66756e633d46494c455f434845434b2c6f626a5f757365723d6d656d6f72792e6d6178002c646566636f6e746578743d756e636f6e66696e65645fee1b4bdc61636b66737472616e736d7574653d6d656d6f72792e6d6178002c00"]) (async)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080), 0x12) (async)
pipe(&(0x7f0000000200)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
write$binfmt_misc(r3, &(0x7f0000000080)=ANY=[], 0x5) (async)
write$RDMA_USER_CM_CMD_RESOLVE_ADDR(r3, &(0x7f0000000440)={0x15, 0x110, 0xfa00, {0xffffffffffffffff, 0x7f, 0x0, 0x0, 0x0, @in6={0xa, 0x4e22, 0xffffffff, @empty, 0x40}, @in6={0xa, 0x4e23, 0x6, @private0, 0xa8b}}}, 0x118)

11:29:15 executing program 4:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff0000000000018f0000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b'], 0x50}}, 0x0)

11:29:15 executing program 2:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
socket$inet6(0xa, 0x0, 0x0)
setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x30, 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x0, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x28000000, 0x12)

11:29:15 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x0, 0x0, 0x56)
socket$inet6(0xa, 0x80001, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x80000, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080), 0x20000092)

11:29:15 executing program 5:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r1, &(0x7f0000000000), 0x10)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff000000000000000100000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b', @ANYRES32], 0x50}}, 0x0)

11:29:15 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
pipe(&(0x7f0000000200)={<r2=>0xffffffffffffffff})
r3 = socket$inet_udp(0x2, 0x2, 0x0)
close(r3)
bind$inet(r3, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10)
connect$inet(r3, &(0x7f0000001280)={0x2, 0x0, @multicast1}, 0x10)
splice(r2, 0x0, r3, 0x0, 0x5, 0x5)
write$cgroup_int(r2, &(0x7f0000000080)=0x6, 0x12)

11:29:15 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
pipe(&(0x7f0000000200)={<r2=>0xffffffffffffffff})
r3 = socket$inet_udp(0x2, 0x2, 0x0)
close(r3)
bind$inet(r3, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10)
connect$inet(r3, &(0x7f0000001280)={0x2, 0x0, @multicast1}, 0x10)
splice(r2, 0x0, r3, 0x0, 0x5, 0x5)
write$cgroup_int(r2, &(0x7f0000000080)=0x6, 0x12)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56) (async)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) (async)
openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0) (async)
openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) (async)
pipe(&(0x7f0000000200)) (async)
socket$inet_udp(0x2, 0x2, 0x0) (async)
close(r3) (async)
bind$inet(r3, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10) (async)
connect$inet(r3, &(0x7f0000001280)={0x2, 0x0, @multicast1}, 0x10) (async)
splice(r2, 0x0, r3, 0x0, 0x5, 0x5) (async)
write$cgroup_int(r2, &(0x7f0000000080)=0x6, 0x12) (async)

11:29:15 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x0, 0x0, 0x56)
socket$inet6(0xa, 0x80001, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x80000, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080), 0x7ffff000)

11:29:15 executing program 2:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
socket$inet6(0xa, 0x0, 0x0)
setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x30, 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x0, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x42000000, 0x12)

11:29:15 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async, rerun: 64)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async, rerun: 64)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) (async)
pipe(&(0x7f0000000200)={<r2=>0xffffffffffffffff}) (async)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
close(r3) (async, rerun: 32)
bind$inet(r3, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10) (rerun: 32)
connect$inet(r3, &(0x7f0000001280)={0x2, 0x0, @multicast1}, 0x10)
splice(r2, 0x0, r3, 0x0, 0x5, 0x5)
write$cgroup_int(r2, &(0x7f0000000080)=0x6, 0x12)

11:29:15 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
r0 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x0, 0x0, 0x56)
socket$inet6(0xa, 0x80001, 0x0)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(0xffffffffffffffff, &(0x7f0000000240)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x80000, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
pipe(&(0x7f0000000200)={<r3=>0xffffffffffffffff})
r4 = socket$inet_udp(0x2, 0x2, 0x0)
close(r4)
bind$inet(r4, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10)
connect$inet(r4, &(0x7f0000001280)={0x2, 0x0, @multicast1}, 0x10)
splice(r3, 0x0, r4, 0x0, 0x5, 0x5)
openat$cgroup_ro(r3, &(0x7f00000000c0)='hugetlb.1GB.rsvd.usage_in_bytes\x00', 0x0, 0x0)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
connect$inet6(0xffffffffffffffff, &(0x7f00000001c0)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r0, 0xc0189373, &(0x7f0000000100)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x4}}, './file0\x00'})
write$cgroup_int(r2, &(0x7f0000000080), 0x12)

[ 1039.871525][T14354] syz-executor.0 invoked oom-killer: gfp_mask=0xdc0(GFP_KERNEL|__GFP_ZERO), order=0, oom_score_adj=0
[ 1039.882470][T14354] CPU: 0 PID: 14354 Comm: syz-executor.0 Not tainted 5.17.0-rc7-syzkaller-00078-g3bf7edc84a9e-dirty #0
[ 1039.893489][T14354] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1039.903564][T14354] Call Trace:
[ 1039.906837][T14354]  <TASK>
[ 1039.909761][T14354]  dump_stack_lvl+0xd6/0x122
[ 1039.914437][T14354]  dump_stack+0x11/0x1b
[ 1039.918594][T14354]  dump_header+0x98/0x410
[ 1039.922983][T14354]  oom_kill_process+0x18e/0x4a0
[ 1039.927852][T14354]  out_of_memory+0x61d/0x8c0
[ 1039.932441][T14354]  ? mem_cgroup_iter+0x29b/0x370
[ 1039.937353][T14354]  mem_cgroup_oom+0x484/0x520
[ 1039.942097][T14354]  try_charge_memcg+0x75c/0xa50
[ 1039.946927][T14354]  ? tracing_record_taskinfo+0x77/0x1b0
[ 1039.952450][T14354]  ? __rcu_read_unlock+0x5c/0x290
[ 1039.957452][T14354]  ? ttwu_do_wakeup+0x11f/0x140
[ 1039.962281][T14354]  obj_cgroup_charge_pages+0xac/0x140
[ 1039.967668][T14354]  obj_cgroup_charge+0xe2/0x1b0
[ 1039.972493][T14354]  ? __alloc_file+0x2e/0x1a0
[ 1039.977100][T14354]  kmem_cache_alloc+0x96/0x320
[ 1039.981889][T14354]  __alloc_file+0x2e/0x1a0
[ 1039.986334][T14354]  alloc_empty_file+0xcd/0x1c0
[ 1039.991145][T14354]  path_openat+0x6a/0x1f30
[ 1039.995551][T14354]  ? __rcu_read_unlock+0x5c/0x290
[ 1040.000635][T14354]  ? lockref_get_not_dead+0xf2/0x1a0
[ 1040.005952][T14354]  ? __rcu_read_unlock+0x5c/0x290
[ 1040.010954][T14354]  ? __this_cpu_preempt_check+0x18/0x20
[ 1040.016474][T14354]  ? xfd_validate_state+0x4e/0xf0
[ 1040.021476][T14354]  do_filp_open+0x105/0x220
[ 1040.025959][T14354]  do_sys_openat2+0xb5/0x2b0
[ 1040.030524][T14354]  __x64_sys_openat+0xef/0x110
[ 1040.035281][T14354]  do_syscall_64+0x44/0xd0
[ 1040.039724][T14354]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1040.045591][T14354] RIP: 0033:0x7f1810436b88
[ 1040.049995][T14354] Code: 24 18 31 c0 41 83 e2 40 75 40 89 f0 25 00 00 41 00 3d 00 00 41 00 74 32 44 89 c2 4c 89 ce bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 40 48 8b 4c 24 18 64 48 2b 0c 25 28 00 00 00
[ 1040.069581][T14354] RSP: 002b:00007ffcee0553c0 EFLAGS: 00000287 ORIG_RAX: 0000000000000101
[ 1040.077968][T14354] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007f1810436b88
[ 1040.085915][T14354] RDX: 0000000000090800 RSI: 00007ffcee0565b0 RDI: 00000000ffffff9c
[ 1040.093873][T14354] RBP: 00007ffcee05658c R08: 0000000000090800 R09: 00007ffcee0565b0
[ 1040.101819][T14354] R10: 0000000000000000 R11: 0000000000000287 R12: 00007f18104901ea
[ 1040.109764][T14354] R13: 00007ffcee0565b0 R14: 0000000000000009 R15: 00007ffcee0565f0
[ 1040.117716][T14354]  </TASK>
[ 1040.120748][T14354] memory: usage 156kB, limit 655360kB, failcnt 6747
[ 1040.127361][T14354] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1040.134192][T14354] Memory cgroup stats for /syz0:
[ 1040.134803][T14354] anon 24576
[ 1040.134803][T14354] file 86016
[ 1040.134803][T14354] kernel_stack 0
[ 1040.134803][T14354] pagetables 8192
[ 1040.134803][T14354] percpu 0
[ 1040.134803][T14354] sock 0
[ 1040.134803][T14354] vmalloc 0
[ 1040.134803][T14354] shmem 81920
[ 1040.134803][T14354] file_mapped 77824
[ 1040.134803][T14354] file_dirty 4096
[ 1040.134803][T14354] file_writeback 0
[ 1040.134803][T14354] swapcached 0
[ 1040.134803][T14354] inactive_anon 45056
[ 1040.134803][T14354] active_anon 61440
[ 1040.134803][T14354] inactive_file 0
[ 1040.134803][T14354] active_file 4096
[ 1040.134803][T14354] unevictable 0
[ 1040.134803][T14354] slab_reclaimable 11080
[ 1040.134803][T14354] slab_unreclaimable 17696
[ 1040.134803][T14354] slab 28776
[ 1040.134803][T14354] workingset_refault_anon 0
[ 1040.134803][T14354] workingset_refault_file 2
[ 1040.134803][T14354] workingset_activate_anon 0
[ 1040.134803][T14354] workingset_activate_file 0
[ 1040.134803][T14354] workingset_restore_anon 0
[ 1040.229537][T14354] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=14354,uid=0
[ 1040.244808][T14354] Memory cgroup out of memory: Killed process 14354 (syz-executor.0) total-vm:48480kB, anon-rss:364kB, file-rss:14336kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:0
11:29:16 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
r0 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_VERSION(r0, 0xc0189371, &(0x7f00000000c0)={{0x1, 0x1, 0x18}, './file0\x00'})
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = openat$cgroup(r1, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r3 = openat$cgroup_int(r2, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r3, &(0x7f0000000080), 0x12)

[ 1040.262578][   T26] oom_reaper: reaped process 14354 (syz-executor.0), now anon-rss:0kB, file-rss:13440kB, shmem-rss:0kB
[ 1040.313383][T14439] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1040.323747][T14439] CPU: 1 PID: 14439 Comm: syz-executor.1 Not tainted 5.17.0-rc7-syzkaller-00078-g3bf7edc84a9e-dirty #0
[ 1040.334841][T14439] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1040.344909][T14439] Call Trace:
[ 1040.348173][T14439]  <TASK>
[ 1040.351097][T14439]  dump_stack_lvl+0xd6/0x122
[ 1040.355950][T14439]  dump_stack+0x11/0x1b
[ 1040.360150][T14439]  dump_header+0x98/0x410
[ 1040.364454][T14439]  out_of_memory+0x65c/0x8c0
[ 1040.369023][T14439]  memory_max_write+0x32c/0x3d0
[ 1040.373851][T14439]  ? memory_max_show+0x70/0x70
[ 1040.378638][T14439]  cgroup_file_write+0x161/0x300
[ 1040.383620][T14439]  ? __check_object_size+0x22a/0x2d0
[ 1040.388886][T14439]  ? cgroup_seqfile_stop+0x70/0x70
[ 1040.393982][T14439]  kernfs_fop_write_iter+0x1d3/0x2d0
[ 1040.399252][T14439]  vfs_write+0x7f5/0x950
[ 1040.403534][T14439]  ksys_write+0xd9/0x190
[ 1040.407900][T14439]  __x64_sys_write+0x3e/0x50
[ 1040.412465][T14439]  do_syscall_64+0x44/0xd0
[ 1040.416924][T14439]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1040.422865][T14439] RIP: 0033:0x7fd6559cc049
[ 1040.427258][T14439] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1040.446840][T14439] RSP: 002b:00007fd654b42168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1040.455486][T14439] RAX: ffffffffffffffda RBX: 00007fd655adef60 RCX: 00007fd6559cc049
[ 1040.463433][T14439] RDX: 0000000000000012 RSI: 0000000020000080 RDI: 0000000000000006
[ 1040.471378][T14439] RBP: 00007fd655a2608d R08: 0000000000000000 R09: 0000000000000000
[ 1040.479326][T14439] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1040.487283][T14439] R13: 00007ffda0be2f9f R14: 00007fd654b42300 R15: 0000000000022000
[ 1040.495232][T14439]  </TASK>
[ 1040.498319][T14439] memory: usage 120kB, limit 1081344kB, failcnt 6747
[ 1040.505069][T14439] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1040.511907][T14439] Memory cgroup stats for /syz0:
[ 1040.513174][T14439] anon 0
[ 1040.513174][T14439] file 86016
[ 1040.513174][T14439] kernel_stack 0
[ 1040.513174][T14439] pagetables 0
[ 1040.513174][T14439] percpu 0
[ 1040.513174][T14439] sock 0
[ 1040.513174][T14439] vmalloc 0
[ 1040.513174][T14439] shmem 81920
[ 1040.513174][T14439] file_mapped 77824
[ 1040.513174][T14439] file_dirty 4096
[ 1040.513174][T14439] file_writeback 0
[ 1040.513174][T14439] swapcached 0
[ 1040.513174][T14439] inactive_anon 20480
[ 1040.513174][T14439] active_anon 61440
[ 1040.513174][T14439] inactive_file 0
[ 1040.513174][T14439] active_file 4096
[ 1040.513174][T14439] unevictable 0
[ 1040.513174][T14439] slab_reclaimable 11080
[ 1040.513174][T14439] slab_unreclaimable 17960
[ 1040.513174][T14439] slab 29040
[ 1040.513174][T14439] workingset_refault_anon 0
[ 1040.513174][T14439] workingset_refault_file 2
[ 1040.513174][T14439] workingset_activate_anon 0
[ 1040.513174][T14439] workingset_activate_file 0
[ 1040.513174][T14439] workingset_restore_anon 0
[ 1040.607377][T14439] Out of memory and no killable processes...
11:29:16 executing program 0:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
setxattr$trusted_overlay_redirect(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000100), &(0x7f0000000240)='./file0\x00', 0x8, 0xe2dd76076c3022fa)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000280)='./cgroup/syz1\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080), 0x12)

11:29:16 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
r0 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
set_mempolicy(0x0, 0x0, 0x56) (async)
socket$inet6(0xa, 0x80001, 0x0)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) (async)
r1 = openat$cgroup(0xffffffffffffffff, &(0x7f0000000240)='syz0\x00', 0x200002, 0x0) (async, rerun: 64)
socket(0x0, 0x80000, 0x0) (rerun: 64)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0) (async)
pipe(&(0x7f0000000200)={<r3=>0xffffffffffffffff}) (async)
r4 = socket$inet_udp(0x2, 0x2, 0x0)
close(r4) (async)
bind$inet(r4, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10) (async, rerun: 32)
connect$inet(r4, &(0x7f0000001280)={0x2, 0x0, @multicast1}, 0x10) (async, rerun: 32)
splice(r3, 0x0, r4, 0x0, 0x5, 0x5)
openat$cgroup_ro(r3, &(0x7f00000000c0)='hugetlb.1GB.rsvd.usage_in_bytes\x00', 0x0, 0x0) (async, rerun: 32)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c) (rerun: 32)
connect$inet6(0xffffffffffffffff, &(0x7f00000001c0)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r0, 0xc0189373, &(0x7f0000000100)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x4}}, './file0\x00'}) (async)
write$cgroup_int(r2, &(0x7f0000000080), 0x12)

11:29:16 executing program 2:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
socket$inet6(0xa, 0x0, 0x0)
setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x30, 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x0, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x45000000, 0x12)

11:29:16 executing program 5:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r1, &(0x7f0000000000), 0x10)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff000000000000000400000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b', @ANYRES32], 0x50}}, 0x0)

11:29:16 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async, rerun: 64)
r0 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async, rerun: 64)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_VERSION(r0, 0xc0189371, &(0x7f00000000c0)={{0x1, 0x1, 0x18}, './file0\x00'})
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = openat$cgroup(r1, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r3 = openat$cgroup_int(r2, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) (async, rerun: 64)
write$cgroup_int(r3, &(0x7f0000000080), 0x12) (rerun: 64)

11:29:16 executing program 4:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff0000000000059e0000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b'], 0x50}}, 0x0)

11:29:16 executing program 0:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
setxattr$trusted_overlay_redirect(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000100), &(0x7f0000000240)='./file0\x00', 0x8, 0xe2dd76076c3022fa)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000280)='./cgroup/syz1\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080), 0x12)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) (async)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
setxattr$trusted_overlay_redirect(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000100), &(0x7f0000000240)='./file0\x00', 0x8, 0xe2dd76076c3022fa) (async)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) (async)
openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0) (async)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000280)='./cgroup/syz1\x00', 0x200002, 0x0) (async)
openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0) (async)
write$cgroup_int(r2, &(0x7f0000000080), 0x12) (async)

11:29:16 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async, rerun: 32)
r0 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (rerun: 32)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
ioctl$AUTOFS_DEV_IOCTL_VERSION(r0, 0xc0189371, &(0x7f00000000c0)={{0x1, 0x1, 0x18}, './file0\x00'})
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = openat$cgroup(r1, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r3 = openat$cgroup_int(r2, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r3, &(0x7f0000000080), 0x12)

11:29:16 executing program 5:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r1, &(0x7f0000000000), 0x10)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff000000000000000800000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b', @ANYRES32], 0x50}}, 0x0)

11:29:16 executing program 2:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
socket$inet6(0xa, 0x0, 0x0)
setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x30, 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x0, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x47000000, 0x12)

[ 1040.821654][T14467] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1040.832025][T14467] CPU: 1 PID: 14467 Comm: syz-executor.1 Not tainted 5.17.0-rc7-syzkaller-00078-g3bf7edc84a9e-dirty #0
[ 1040.843036][T14467] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1040.853079][T14467] Call Trace:
[ 1040.856346][T14467]  <TASK>
[ 1040.859268][T14467]  dump_stack_lvl+0xd6/0x122
[ 1040.863890][T14467]  dump_stack+0x11/0x1b
[ 1040.868041][T14467]  dump_header+0x98/0x410
[ 1040.872405][T14467]  out_of_memory+0x65c/0x8c0
[ 1040.876991][T14467]  memory_max_write+0x32c/0x3d0
[ 1040.881854][T14467]  ? memory_max_show+0x70/0x70
[ 1040.886683][T14467]  cgroup_file_write+0x161/0x300
[ 1040.891655][T14467]  ? __check_object_size+0x22a/0x2d0
[ 1040.896987][T14467]  ? cgroup_seqfile_stop+0x70/0x70
[ 1040.902099][T14467]  kernfs_fop_write_iter+0x1d3/0x2d0
[ 1040.907380][T14467]  vfs_write+0x7f5/0x950
[ 1040.911670][T14467]  ksys_write+0xd9/0x190
[ 1040.915913][T14467]  __x64_sys_write+0x3e/0x50
[ 1040.920572][T14467]  do_syscall_64+0x44/0xd0
[ 1040.924990][T14467]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1040.930954][T14467] RIP: 0033:0x7fd6559cc049
[ 1040.935360][T14467] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1040.955006][T14467] RSP: 002b:00007fd654b42168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1040.963413][T14467] RAX: ffffffffffffffda RBX: 00007fd655adef60 RCX: 00007fd6559cc049
[ 1040.971633][T14467] RDX: 0000000000000012 RSI: 0000000020000080 RDI: 0000000000000032
[ 1040.979599][T14467] RBP: 00007fd655a2608d R08: 0000000000000000 R09: 0000000000000000
[ 1040.987560][T14467] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1040.995660][T14467] R13: 00007ffda0be2f9f R14: 00007fd654b42300 R15: 0000000000022000
[ 1041.003714][T14467]  </TASK>
[ 1041.006920][T14467] memory: usage 112kB, limit 1130496kB, failcnt 6747
[ 1041.013681][T14467] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
11:29:17 executing program 4:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff000000ffffff9e0000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b'], 0x50}}, 0x0)

[ 1041.020539][T14467] Memory cgroup stats for /syz0:
[ 1041.096697][T14467] anon 0
[ 1041.096697][T14467] file 86016
[ 1041.096697][T14467] kernel_stack 0
[ 1041.096697][T14467] pagetables 0
[ 1041.096697][T14467] percpu 0
[ 1041.096697][T14467] sock 0
[ 1041.096697][T14467] vmalloc 0
[ 1041.096697][T14467] shmem 81920
[ 1041.096697][T14467] file_mapped 77824
[ 1041.096697][T14467] file_dirty 4096
[ 1041.096697][T14467] file_writeback 0
[ 1041.096697][T14467] swapcached 0
[ 1041.096697][T14467] inactive_anon 20480
[ 1041.096697][T14467] active_anon 61440
[ 1041.096697][T14467] inactive_file 0
[ 1041.096697][T14467] active_file 4096
[ 1041.096697][T14467] unevictable 0
[ 1041.096697][T14467] slab_reclaimable 8392
[ 1041.096697][T14467] slab_unreclaimable 17368
[ 1041.096697][T14467] slab 25760
[ 1041.096697][T14467] workingset_refault_anon 0
[ 1041.096697][T14467] workingset_refault_file 2
[ 1041.096697][T14467] workingset_activate_anon 0
[ 1041.096697][T14467] workingset_activate_file 0
[ 1041.096697][T14467] workingset_restore_anon 0
[ 1041.191303][T14467] Out of memory and no killable processes...
11:29:17 executing program 2:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
socket$inet6(0xa, 0x0, 0x0)
setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x30, 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x0, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x4b000000, 0x12)

11:29:17 executing program 5:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r1, &(0x7f0000000000), 0x10)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff000000000000001000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b', @ANYRES32], 0x50}}, 0x0)

[ 1041.488349][T13062] device hsr_slave_0 left promiscuous mode
[ 1041.494525][T13062] device hsr_slave_1 left promiscuous mode
[ 1041.500973][T13062] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1041.508382][T13062] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1041.515932][T13062] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1041.523360][T13062] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1041.531125][T13062] device bridge_slave_1 left promiscuous mode
11:29:17 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
r0 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x0, 0x0, 0x56)
socket$inet6(0xa, 0x80001, 0x0)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(0xffffffffffffffff, &(0x7f0000000240)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x80000, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
pipe(&(0x7f0000000200)={<r3=>0xffffffffffffffff})
r4 = socket$inet_udp(0x2, 0x2, 0x0)
close(r4)
bind$inet(r4, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10)
connect$inet(r4, &(0x7f0000001280)={0x2, 0x0, @multicast1}, 0x10)
splice(r3, 0x0, r4, 0x0, 0x5, 0x5)
openat$cgroup_ro(r3, &(0x7f00000000c0)='hugetlb.1GB.rsvd.usage_in_bytes\x00', 0x0, 0x0)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
connect$inet6(0xffffffffffffffff, &(0x7f00000001c0)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r0, 0xc0189373, &(0x7f0000000100)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x4}}, './file0\x00'})
write$cgroup_int(r2, &(0x7f0000000080), 0x12)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
set_mempolicy(0x0, 0x0, 0x56) (async)
socket$inet6(0xa, 0x80001, 0x0) (async)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) (async)
openat$cgroup(0xffffffffffffffff, &(0x7f0000000240)='syz0\x00', 0x200002, 0x0) (async)
socket(0x0, 0x80000, 0x0) (async)
openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0) (async)
pipe(&(0x7f0000000200)) (async)
socket$inet_udp(0x2, 0x2, 0x0) (async)
close(r4) (async)
bind$inet(r4, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10) (async)
connect$inet(r4, &(0x7f0000001280)={0x2, 0x0, @multicast1}, 0x10) (async)
splice(r3, 0x0, r4, 0x0, 0x5, 0x5) (async)
openat$cgroup_ro(r3, &(0x7f00000000c0)='hugetlb.1GB.rsvd.usage_in_bytes\x00', 0x0, 0x0) (async)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c) (async)
connect$inet6(0xffffffffffffffff, &(0x7f00000001c0)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) (async)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r0, 0xc0189373, &(0x7f0000000100)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x4}}, './file0\x00'}) (async)
write$cgroup_int(r2, &(0x7f0000000080), 0x12) (async)

11:29:17 executing program 2:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
socket$inet6(0xa, 0x0, 0x0)
setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x30, 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x0, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x4d000000, 0x12)

11:29:17 executing program 4:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff000000000000a80000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b'], 0x50}}, 0x0)

11:29:17 executing program 5:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r1, &(0x7f0000000000), 0x10)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff000000000000000001000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b', @ANYRES32], 0x50}}, 0x0)

11:29:17 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
r0 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r2, &(0x7f0000000080), 0x12)

[ 1041.537335][T13062] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1041.545192][T13062] device bridge_slave_0 left promiscuous mode
[ 1041.551377][T13062] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1041.580558][T13062] device veth1_macvtap left promiscuous mode
[ 1041.586617][T13062] device veth0_macvtap left promiscuous mode
[ 1041.592617][T13062] device veth1_vlan left promiscuous mode
[ 1041.598384][T13062] device veth0_vlan left promiscuous mode
[ 1041.700193][T13062] team0 (unregistering): Port device team_slave_1 removed
[ 1041.710094][T13062] team0 (unregistering): Port device team_slave_0 removed
[ 1041.719427][T13062] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1041.730696][T13062] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1041.759736][T13062] bond0 (unregistering): Released all slaves
[ 1042.589269][T14550] chnl_net:caif_netlink_parms(): no params data found
[ 1042.618399][T14550] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1042.625424][T14550] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1042.634271][T14550] device bridge_slave_0 entered promiscuous mode
[ 1042.641520][T14550] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1042.648720][T14550] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1042.656377][T14550] device bridge_slave_1 entered promiscuous mode
[ 1042.671169][T14550] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1042.681333][T14550] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1042.699060][T14550] team0: Port device team_slave_0 added
[ 1042.705364][T14550] team0: Port device team_slave_1 added
[ 1042.719334][T14550] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1042.726328][T14550] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1042.752288][T14550] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1042.763596][T14550] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1042.770554][T14550] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1042.796539][T14550] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1042.817659][T14550] device hsr_slave_0 entered promiscuous mode
[ 1042.824097][T14550] device hsr_slave_1 entered promiscuous mode
[ 1042.889764][T14550] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1042.899479][ T6849] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 1042.907842][ T6849] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1042.916533][T14550] 8021q: adding VLAN 0 to HW filter on device team0
[ 1042.927442][ T6846] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 1042.935790][ T6846] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1042.944164][ T6846] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1042.951199][ T6846] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1042.959056][ T6846] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 1042.967525][ T6846] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1042.975675][ T6846] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1042.982710][ T6846] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1042.990428][ T6846] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 1042.999757][ T6846] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 1043.008540][   T77] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 1043.023243][T14550] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 1043.033651][T14550] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 1043.045384][   T77] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 1043.053849][   T77] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 1043.062557][   T77] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 1043.071165][   T77] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 1043.079594][   T77] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 1043.087968][   T77] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1043.096398][   T77] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 1043.104650][   T77] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1043.113235][   T77] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 1043.121340][   T77] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 1043.134874][T14550] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1043.142583][ T6849] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 1043.150193][ T6849] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 1043.213091][   T77] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 1043.221866][   T77] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1043.257825][T14550] device veth0_vlan entered promiscuous mode
[ 1043.265986][T14550] device veth1_vlan entered promiscuous mode
[ 1043.272958][T12912] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 1043.281013][T12912] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1043.289907][T12912] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 1043.299586][T12912] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1043.307490][T12912] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1043.315018][T12912] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 1043.329047][T14550] device veth0_macvtap entered promiscuous mode
[ 1043.336727][T14550] device veth1_macvtap entered promiscuous mode
[ 1043.344441][   T77] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 1043.352854][   T77] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1043.363775][   T77] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 1043.373471][T14550] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 1043.383982][T14550] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1043.393776][T14550] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 1043.404214][T14550] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1043.414003][T14550] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 1043.424399][T14550] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1043.434188][T14550] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 1043.444582][T14550] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1043.454385][T14550] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 1043.464786][T14550] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1043.475732][T14550] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1043.484201][ T6846] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 1043.493788][ T6846] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1043.503193][T14550] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 1043.513684][T14550] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1043.523479][T14550] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 1043.533982][T14550] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1043.543772][T14550] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 1043.554171][T14550] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1043.563999][T14550] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 1043.574436][T14550] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1043.584268][T14550] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 1043.594701][T14550] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1043.605666][T14550] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1043.614432][ T6849] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 1043.623019][ T6849] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 1043.699945][T14584] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1043.710131][T14584] CPU: 0 PID: 14584 Comm: syz-executor.0 Not tainted 5.17.0-rc7-syzkaller-00078-g3bf7edc84a9e-dirty #0
[ 1043.721130][T14584] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1043.731164][T14584] Call Trace:
[ 1043.734435][T14584]  <TASK>
[ 1043.737343][T14584]  dump_stack_lvl+0xd6/0x122
[ 1043.741917][T14584]  dump_stack+0x11/0x1b
[ 1043.746049][T14584]  dump_header+0x98/0x410
[ 1043.750366][T14584]  oom_kill_process+0x18e/0x4a0
[ 1043.755470][T14584]  out_of_memory+0x61d/0x8c0
[ 1043.760188][T14584]  memory_max_write+0x32c/0x3d0
[ 1043.765104][T14584]  ? memory_max_show+0x70/0x70
[ 1043.769881][T14584]  cgroup_file_write+0x161/0x300
[ 1043.774811][T14584]  ? __check_object_size+0x22a/0x2d0
[ 1043.780127][T14584]  ? cgroup_seqfile_stop+0x70/0x70
[ 1043.785226][T14584]  kernfs_fop_write_iter+0x1d3/0x2d0
[ 1043.790513][T14584]  vfs_write+0x7f5/0x950
[ 1043.794734][T14584]  ksys_write+0xd9/0x190
[ 1043.798987][T14584]  __x64_sys_write+0x3e/0x50
[ 1043.803553][T14584]  do_syscall_64+0x44/0xd0
[ 1043.807954][T14584]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1043.813838][T14584] RIP: 0033:0x7f50fc5cc049
[ 1043.818314][T14584] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1043.837947][T14584] RSP: 002b:00007f50fb742168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1043.846335][T14584] RAX: ffffffffffffffda RBX: 00007f50fc6def60 RCX: 00007f50fc5cc049
[ 1043.854288][T14584] RDX: 0000000000000012 RSI: 0000000020000080 RDI: 0000000000000006
[ 1043.862232][T14584] RBP: 00007f50fc62608d R08: 0000000000000000 R09: 0000000000000000
[ 1043.870240][T14584] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1043.878186][T14584] R13: 00007ffd30e037af R14: 00007f50fb742300 R15: 0000000000022000
[ 1043.886142][T14584]  </TASK>
[ 1043.889230][T14584] memory: usage 380kB, limit 0kB, failcnt 6766
[ 1043.895383][T14584] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1043.902309][T14584] Memory cgroup stats for /syz0:
[ 1043.902684][T14584] anon 81920
[ 1043.902684][T14584] file 81920
[ 1043.902684][T14584] kernel_stack 32768
[ 1043.902684][T14584] pagetables 90112
[ 1043.902684][T14584] percpu 0
[ 1043.902684][T14584] sock 0
[ 1043.902684][T14584] vmalloc 0
[ 1043.902684][T14584] shmem 77824
[ 1043.902684][T14584] file_mapped 77824
[ 1043.902684][T14584] file_dirty 4096
[ 1043.902684][T14584] file_writeback 0
[ 1043.902684][T14584] swapcached 0
[ 1043.902684][T14584] inactive_anon 98304
[ 1043.902684][T14584] active_anon 61440
[ 1043.902684][T14584] inactive_file 0
[ 1043.902684][T14584] active_file 4096
[ 1043.902684][T14584] unevictable 0
[ 1043.902684][T14584] slab_reclaimable 17272
[ 1043.902684][T14584] slab_unreclaimable 47096
[ 1043.902684][T14584] slab 64368
[ 1043.902684][T14584] workingset_refault_anon 0
[ 1043.902684][T14584] workingset_refault_file 2
[ 1043.902684][T14584] workingset_activate_anon 0
[ 1043.902684][T14584] workingset_activate_file 0
[ 1043.902684][T14584] workingset_restore_anon 0
11:29:19 executing program 0:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
setxattr$trusted_overlay_redirect(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000100), &(0x7f0000000240)='./file0\x00', 0x8, 0xe2dd76076c3022fa)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000280)='./cgroup/syz1\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080), 0x12)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) (async)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
setxattr$trusted_overlay_redirect(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000100), &(0x7f0000000240)='./file0\x00', 0x8, 0xe2dd76076c3022fa) (async)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) (async)
openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0) (async)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000280)='./cgroup/syz1\x00', 0x200002, 0x0) (async)
openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0) (async)
write$cgroup_int(r2, &(0x7f0000000080), 0x12) (async)

11:29:19 executing program 2:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
socket$inet6(0xa, 0x0, 0x0)
setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x30, 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x0, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x50000000, 0x12)

11:29:19 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async, rerun: 32)
r0 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async, rerun: 32)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async, rerun: 64)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56) (async, rerun: 64)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) (async)
write$cgroup_int(r2, &(0x7f0000000080), 0x12)

11:29:19 executing program 3:
socket$nl_route(0x10, 0x3, 0x0)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x0, 0x0, 0x56)
socket$inet6(0xa, 0x1, 0x4003fe)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x80000, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)=@newlink={0x48, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @sit={{0x8}, {0x1c, 0x2, 0x0, 0x1, [@IFLA_IPTUN_PROTO={0x5}, @IFLA_IPTUN_LOCAL={0x8, 0x2, @local}, @IFLA_IPTUN_FWMARK={0x8}]}}}]}, 0x48}}, 0x0)
r4 = socket$netlink(0x10, 0x3, 0x0)
r5 = socket(0x10, 0x803, 0x0)
sendmsg$TIPC_NL_MON_GET(r5, &(0x7f0000000500)={&(0x7f00000004c0)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000005c0)={0x0, 0x88}, 0x1, 0x0, 0x0, 0x1}, 0x0)
getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r4, &(0x7f00000000c0)={0x0, 0xffffffef, &(0x7f0000000300)={&(0x7f0000001bc0)=@newlink={0x84, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x35288}, [@IFLA_LINKINFO={0x5c, 0x12, 0x0, 0x1, @ipip6={{0xb}, {0x4c, 0x2, 0x0, 0x1, [@IFLA_IPTUN_ENCAP_TYPE={0x6}, @IFLA_IPTUN_REMOTE={0x14, 0x3, @private0}, @IFLA_IPTUN_COLLECT_METADATA={0x4}, @IFLA_IPTUN_LINK={0x8, 0x1, r6}, @IFLA_IPTUN_COLLECT_METADATA={0x4}, @IFLA_IPTUN_LOCAL={0x14, 0x2, @remote}, @IFLA_IPTUN_PROTO={0x5, 0x9, 0x29}]}}}, @IFLA_MASTER={0x8, 0xa, r6}]}, 0x84}}, 0x4000080)
sendmsg$nl_route_sched(r3, &(0x7f0000000280)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000240)={&(0x7f0000000100)=@newtfilter={0x34, 0x2c, 0x400, 0x70bd27, 0x25dfdbff, {0x0, 0x0, 0x0, r6, {0xfff3, 0x10}, {0xe, 0x8}, {0x8, 0xb}}, [@TCA_RATE={0x6, 0x5, {0x3, 0x3}}, @TCA_CHAIN={0x8, 0xb, 0x5}]}, 0x34}, 0x1, 0x0, 0x0, 0x4040010}, 0x8000)
write$cgroup_int(r2, &(0x7f0000000080), 0x12)

11:29:19 executing program 4:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff000000000000a90000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b'], 0x50}}, 0x0)

11:29:19 executing program 5:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r1, &(0x7f0000000000), 0x10)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff000000000000000004000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b', @ANYRES32], 0x50}}, 0x0)

11:29:20 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
r0 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r2, &(0x7f0000000080), 0x12)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56) (async)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) (async)
openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0) (async)
openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) (async)
write$cgroup_int(r2, &(0x7f0000000080), 0x12) (async)

[ 1043.998113][T14584] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=14583,uid=0
[ 1044.013418][T14584] Memory cgroup out of memory: Killed process 14583 (syz-executor.0) total-vm:48744kB, anon-rss:372kB, file-rss:14336kB, shmem-rss:0kB, UID:0 pgtables:96kB oom_score_adj:1000
[ 1044.033120][   T26] oom_reaper: reaped process 14583 (syz-executor.0), now anon-rss:0kB, file-rss:14336kB, shmem-rss:4kB
11:29:20 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
r0 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r1 = socket$phonet(0x23, 0x2, 0x1)
recvmmsg(r1, &(0x7f0000001200)=[{{0x0, 0x0, &(0x7f0000001100)=[{&(0x7f0000000cc0)=""/72, 0x48}, {&(0x7f0000000d40)=""/133, 0x85}, {&(0x7f0000000e00)=""/254, 0xfe}, {&(0x7f0000000f00)=""/131, 0x83}, {&(0x7f0000000fc0)=""/13, 0xd}, {&(0x7f0000001000)=""/235, 0xeb}], 0x6, &(0x7f0000001180)=""/84, 0x54}, 0xa3}], 0x1, 0x20000, &(0x7f0000001240)={0x77359400})
r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r3 = openat$cgroup(r2, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
openat2(r0, &(0x7f00000000c0)='.\x00', &(0x7f0000000100)={0x410003, 0x59, 0x10}, 0x18)
syz_mount_image$tmpfs(&(0x7f0000000280), &(0x7f00000002c0)='./file0\x00', 0x1, 0xa, &(0x7f0000000a80)=[{&(0x7f0000000300)="0ce7982afb878d81b1689047bf601728ac9ed370a0870379a6b29f6a28620629c1d5dc2dce348a5f241e3bdb119c", 0x2e}, {&(0x7f0000000340)="a45c583e9c21e413550fc54174b8da59af6ccf2099d2d5eb573bb443b065e1216df125ce5831dbd32c753e87d9c0400522d95cdf71ab9e539635fc299c4fd4c0214fc116cfd26ba84eee5be4ea7f7979d6c2f39a4ae406ff093026dac8248044091549867c24ac80bde7f1ed02040b434f3572893760fb53f334103b6c8a90cf5520cbc0d38811f97bfa1fd9e1b3878c059882cc1c1a2da8aafead64cd2037c62dfec38574329df90b861d6a50d70ab2187194ac56b0312089017464", 0xbc, 0x700000000}, {&(0x7f0000000400)="d57a179f692d99082c2b2ef724d6ae912e898536dbdf0e2ec1e762b72816b799e8f4b3ec48da2ed71328bd1539d1f29b23d89a0f7628a23a015f6a6f55679a92e8ef6e9d77b2ec613d038f1406da73833184a783df63d270456e06010d74ee3365baf91437aeb7dd2685dc9fafe043f53361706b6df8185e83b4873555ee4acdd965b5b8ac83779c1ce21f62087d72e595e0f3fc4106c4d845c0376fa4c50946b50832494aa44b1dbddf5a2cf342be86e2bdccc3a88aa7717a568b9eb0b462", 0xbf, 0x4}, {&(0x7f00000004c0)="f919db73", 0x4, 0x8}, {&(0x7f0000000500)="88288692fa85e17334e252ee1f02238a8ddee1c607428c8be2f9cae3071ca0cc46bf6eaf1201f73557f40d875c5815ba098e82fcbcad76bd57643346651470d6fa89ee7271d2e9ace5d67437f6185a5dc0e79d6d6163dc927fe681331d8f7e4a563668acdd00dba01b9494636ec059bbf9c909639dd46c48ddc20a0ca2b2485a8259d498dbbef14167d8ca4651310128c90c29b1ec4b6b9a41f69383bedc7e7a241b113ce44d8a4dc70ce0195592e25f5cc377942fcef48b51e91194790c85a9eb021979055049eed8877cbb471994caa93502c1837b7cb29e6fa43fc45fdb1ca1606efe", 0xe4, 0x2000000}, {&(0x7f0000000600)="61b6e941022f6467b2807865fb90250e8e17f773a374a049ed9c95d8baca4849798cd716e277e4055bec0ba546896ae62989970f08a1d0670cd0eb0f146984414d4c04a7609d15050278a7297f1194b8110dfdc292382838068dac84fe07389d82cf75830e4c52867039eb6ef604123388056ae54bd12e841358ace445b992c11b4362bd86172ed7e55334062810c4718bdc83ca7ec83138e42da162c96c6188c37122c20132e4eb1d6f5efca0f5e35f8bad00e708c01a0c53fdf81eaa3a58c5732e1064ec6abc61b30bdd46b10bf0b6bbf96c3a9f376acf54f5c03e782f0cf475178879cc66678e4d7eed8e572ecb", 0xef, 0xfffffffffffffc00}, {&(0x7f0000000700)="b99f7d182df8c49615b5981db56b7b36da7efb2c95b6cd51d12157391a8de71c39b5cd53455dff7344cfa3f61a10bc2c0cff9e552cafdd296c89191ca64f2ac6925caf6b4fd020ef5bd3e1b353be8e4667fddf51d2ef67fe1910ac32070f8f5b8e1758dde20158194fb448c68c5104ab8f8560fd75141d26aa56077d932ec5ba538cd98ef9279cc167e731ed8e5dba660d2290ec62595e08dbb112d0870f632fd960bb6381267f7b195e80862b3eee904860e7c8dddc38834c609533d41c90d1f3e496f2b9504020724b6d496b9cac8b397e2c3c39b8a21caa96bd42ec455c7d47a041b47264acaf8403", 0xea, 0x40}, {&(0x7f0000000800)="e12b776777ceeb21558b58a9f5254833df8830f315259ade01b1ff8e02e04c233cf5ac73e8b226f17c6a3fb94242bb9850bf78152a1449b586070f1838054a49475fcb06ea755e49a94764ff95b389bae56fc07a875f6f4b9c982202c836369b74ca2becc150c9d16f0704bd6d93b34fa0ebc2501de75a12db966fc10fd4f312e803f0906f11c258bc66d53ea04067402a46be8da9fec0387f629989b2c5f9d263f9e050265877efd2bdf6698a521c36f971a3a6aa0c8212afe58d12dcd703e0cdf73a378d78dbf1b8af6344", 0xcc, 0x6}, {&(0x7f0000000900)="5e07f8cf6ee1865a8cc9bc62db9a05edd8458a58973e78efaf05381ec4e6cefbd4e57f671cd470c42bafb14ec95279e4ef88334e819808ad87df4e79c93843b43ad99a91ed54397775195321e929c2e8bba1150ca29e1cbe538bfafff75e94bb20a1f817125c38cbf2c520896da34175330f964ee9edf0d7640ef8", 0x7b, 0x7f}, {&(0x7f0000000980)="2aaf10d5b17d8341e0e9b0bad9ebb474d6df8f590dbb68b34fc96c8ec20176e8e686da833a98ec8fe0e457b913223e3e932d697d8bfac4a24658450264d43fb5b873cd23014ba0debc6dda23e8fa3317dddfce8c601c0f7564223319cfacf93a2a43914b3dd088316e09e9d8a1c0bab9b51abf74e9a0f42fe1c2ce4f538642c1a17d09b30fd3019dcad4031ea1095e004d02104c15df5596f1d4c1a2ae402cbc45269b3256bd27c80b263f2c03b0979237a4e3d4f305106cb14a78f85f09e7b3d5acd6f73dd0403542a7157b3786392fc5c170ca4869fdea14a37902082eed82550e3bc94a8c0a273c311736d8ca37", 0xef, 0x4cff}], 0x0, &(0x7f0000000b80)={[{@mode={'mode', 0x3d, 0x3}}, {@huge_always}, {@huge_always}, {@huge_within_size}, {@nr_blocks={'nr_blocks', 0x3d, [0x78]}}, {@nr_blocks={'nr_blocks', 0x3d, [0x37, 0x32, 0x0, 0x34, 0x2d]}}], [{@appraise_type}, {@fsuuid={'fsuuid', 0x3d, {[0x34, 0x31, 0x64, 0x66, 0x38, 0x0, 0x31, 0x65], 0x2d, [0x64, 0x65, 0x39, 0x34], 0x2d, [0x37, 0x35, 0x36, 0x66], 0x2d, [0x36, 0x37, 0x34, 0x63], 0x2d, [0x34, 0x34, 0x32, 0x39, 0x32, 0x62, 0x31, 0x30]}}}, {@obj_role}, {@subj_type={'subj_type', 0x3d, 'cgroup2\x00'}}, {@fsmagic={'fsmagic', 0x3d, 0x1}}, {@dont_measure}]})
r4 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_ADAPTATION_LAYER(r4, 0x84, 0x7, &(0x7f0000000040)={0x10b802b6}, 0x4)
open$dir(&(0x7f0000000c80)='./file0\x00', 0x2000, 0x43)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r4, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
connect$inet6(r4, &(0x7f00000001c0)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
signalfd4(r4, &(0x7f0000000240)={[0x7fffffffffffffff]}, 0x8, 0x800)
openat$cgroup_int(r3, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)

[ 1044.092978][T14550] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=0
[ 1044.101843][T14613] loop1: detected capacity change from 0 to 139264
[ 1044.102946][T14550] CPU: 0 PID: 14550 Comm: syz-executor.0 Not tainted 5.17.0-rc7-syzkaller-00078-g3bf7edc84a9e-dirty #0
[ 1044.110712][T14613] tmpfs: Unsupported parameter 'huge'
[ 1044.120411][T14550] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1044.120424][T14550] Call Trace:
[ 1044.120429][T14550]  <TASK>
11:29:20 executing program 2:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
socket$inet6(0xa, 0x0, 0x0)
setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x30, 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x0, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x54000000, 0x12)

[ 1044.120439][T14550]  dump_stack_lvl+0xd6/0x122
[ 1044.120470][T14550]  dump_stack+0x11/0x1b
[ 1044.150793][T14550]  dump_header+0x98/0x410
[ 1044.155162][T14550]  oom_kill_process+0x18e/0x4a0
[ 1044.160045][T14550]  out_of_memory+0x61d/0x8c0
[ 1044.164613][T14550]  ? mem_cgroup_iter+0x29b/0x370
[ 1044.169524][T14550]  mem_cgroup_oom+0x484/0x520
[ 1044.174267][T14550]  try_charge_memcg+0x75c/0xa50
[ 1044.179107][T14550]  ? __rcu_read_unlock+0x5c/0x290
[ 1044.184173][T14550]  obj_cgroup_charge_pages+0xac/0x140
[ 1044.189593][T14550]  obj_cgroup_charge+0xe2/0x1b0
[ 1044.194451][T14550]  ? __d_alloc+0x36/0x370
[ 1044.198763][T14550]  kmem_cache_alloc+0x96/0x320
[ 1044.203580][T14550]  __d_alloc+0x36/0x370
[ 1044.207791][T14550]  d_alloc_parallel+0x51/0xd00
[ 1044.212565][T14550]  ? __rcu_read_unlock+0x5c/0x290
[ 1044.217614][T14550]  ? lockref_get_not_dead+0xf2/0x1a0
[ 1044.222877][T14550]  ? try_to_unlazy+0x3c1/0x650
[ 1044.227637][T14550]  ? __down_read_common+0x161/0x4b0
[ 1044.232834][T14550]  __lookup_slow+0x80/0x250
[ 1044.237322][T14550]  walk_component+0x2b6/0x360
[ 1044.242078][T14550]  path_lookupat+0x12d/0x3d0
[ 1044.246667][T14550]  filename_lookup+0x130/0x310
[ 1044.251433][T14550]  user_path_at_empty+0x3e/0x110
[ 1044.256347][T14550]  __x64_sys_umount+0x84/0xe0
[ 1044.261003][T14550]  do_syscall_64+0x44/0xd0
[ 1044.265444][T14550]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1044.271338][T14550] RIP: 0033:0x7f50fc5cd4b7
[ 1044.275782][T14550] Code: ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1044.295440][T14550] RSP: 002b:00007ffd30e02908 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 1044.303830][T14550] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f50fc5cd4b7
[ 1044.311779][T14550] RDX: 00007ffd30e029de RSI: 000000000000000a RDI: 00007ffd30e029d0
[ 1044.319725][T14550] RBP: 00007ffd30e029d0 R08: 00000000ffffffff R09: 00007ffd30e027a0
[ 1044.327754][T14550] R10: 0000555556ec2773 R11: 0000000000000246 R12: 00007f50fc6251ea
[ 1044.335704][T14550] R13: 00007ffd30e03a90 R14: 0000555556ec26f0 R15: 00007ffd30e03ad0
[ 1044.343655][T14550]  </TASK>
[ 1044.346697][T14550] memory: usage 160kB, limit 1310720kB, failcnt 6785
[ 1044.353352][T14550] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1044.360211][T14550] Memory cgroup stats for /syz0:
[ 1044.360571][T14550] anon 32768
[ 1044.360571][T14550] file 81920
[ 1044.360571][T14550] kernel_stack 0
[ 1044.360571][T14550] pagetables 8192
[ 1044.360571][T14550] percpu 0
[ 1044.360571][T14550] sock 0
[ 1044.360571][T14550] vmalloc 0
[ 1044.360571][T14550] shmem 77824
[ 1044.360571][T14550] file_mapped 77824
[ 1044.360571][T14550] file_dirty 4096
[ 1044.360571][T14550] file_writeback 0
[ 1044.360571][T14550] swapcached 0
[ 1044.360571][T14550] inactive_anon 49152
[ 1044.360571][T14550] active_anon 61440
[ 1044.360571][T14550] inactive_file 0
[ 1044.360571][T14550] active_file 4096
[ 1044.360571][T14550] unevictable 0
[ 1044.360571][T14550] slab_reclaimable 9864
[ 1044.360571][T14550] slab_unreclaimable 18000
[ 1044.360571][T14550] slab 27864
[ 1044.360571][T14550] workingset_refault_anon 0
[ 1044.360571][T14550] workingset_refault_file 2
[ 1044.360571][T14550] workingset_activate_anon 0
[ 1044.360571][T14550] workingset_activate_file 0
[ 1044.360571][T14550] workingset_restore_anon 0
[ 1044.455265][T14550] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=14550,uid=0
[ 1044.470605][T14550] Memory cgroup out of memory: Killed process 14550 (syz-executor.0) total-vm:48480kB, anon-rss:368kB, file-rss:14336kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:0
11:29:20 executing program 3:
socket$nl_route(0x10, 0x3, 0x0) (async)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0) (async, rerun: 32)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (rerun: 32)
set_mempolicy(0x0, 0x0, 0x56) (async, rerun: 64)
socket$inet6(0xa, 0x1, 0x4003fe) (rerun: 64)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x80000, 0x0) (async, rerun: 32)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0) (async, rerun: 32)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)=@newlink={0x48, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @sit={{0x8}, {0x1c, 0x2, 0x0, 0x1, [@IFLA_IPTUN_PROTO={0x5}, @IFLA_IPTUN_LOCAL={0x8, 0x2, @local}, @IFLA_IPTUN_FWMARK={0x8}]}}}]}, 0x48}}, 0x0)
r4 = socket$netlink(0x10, 0x3, 0x0) (async, rerun: 32)
r5 = socket(0x10, 0x803, 0x0) (rerun: 32)
sendmsg$TIPC_NL_MON_GET(r5, &(0x7f0000000500)={&(0x7f00000004c0)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000005c0)={0x0, 0x88}, 0x1, 0x0, 0x0, 0x1}, 0x0) (async, rerun: 64)
getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) (rerun: 64)
sendmsg$nl_route(r4, &(0x7f00000000c0)={0x0, 0xffffffef, &(0x7f0000000300)={&(0x7f0000001bc0)=@newlink={0x84, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x35288}, [@IFLA_LINKINFO={0x5c, 0x12, 0x0, 0x1, @ipip6={{0xb}, {0x4c, 0x2, 0x0, 0x1, [@IFLA_IPTUN_ENCAP_TYPE={0x6}, @IFLA_IPTUN_REMOTE={0x14, 0x3, @private0}, @IFLA_IPTUN_COLLECT_METADATA={0x4}, @IFLA_IPTUN_LINK={0x8, 0x1, r6}, @IFLA_IPTUN_COLLECT_METADATA={0x4}, @IFLA_IPTUN_LOCAL={0x14, 0x2, @remote}, @IFLA_IPTUN_PROTO={0x5, 0x9, 0x29}]}}}, @IFLA_MASTER={0x8, 0xa, r6}]}, 0x84}}, 0x4000080) (async)
sendmsg$nl_route_sched(r3, &(0x7f0000000280)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000240)={&(0x7f0000000100)=@newtfilter={0x34, 0x2c, 0x400, 0x70bd27, 0x25dfdbff, {0x0, 0x0, 0x0, r6, {0xfff3, 0x10}, {0xe, 0x8}, {0x8, 0xb}}, [@TCA_RATE={0x6, 0x5, {0x3, 0x3}}, @TCA_CHAIN={0x8, 0xb, 0x5}]}, 0x34}, 0x1, 0x0, 0x0, 0x4040010}, 0x8000) (async)
write$cgroup_int(r2, &(0x7f0000000080), 0x12)

[ 1044.488698][   T26] oom_reaper: reaped process 14550 (syz-executor.0), now anon-rss:0kB, file-rss:13480kB, shmem-rss:0kB
[ 1044.509706][ T1905] I/O error, dev loop1, sector 139136 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0
11:29:20 executing program 2:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
socket$inet6(0xa, 0x0, 0x0)
setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x30, 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x0, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x65000000, 0x12)

11:29:20 executing program 4:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff000000000002b90000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b'], 0x50}}, 0x0)

11:29:20 executing program 0:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
r0 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='hostfs\x00', 0x0, 0x0)
r1 = openat$cgroup_ro(r0, &(0x7f00000000c0)='hugetlb.2MB.usage_in_bytes\x00', 0x0, 0x0)
ioctl$sock_bt_hci(r1, 0x400448cc, &(0x7f0000000100)="2686da99135d8225c5cf357bb42d13d802dd32095a7ea93c098d0bbc7910315e90")
r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r3 = openat$cgroup(r2, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r4 = openat$cgroup_int(r3, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
ioctl$BTRFS_IOC_START_SYNC(r3, 0x80089418, &(0x7f0000000240))
write$cgroup_int(r4, &(0x7f0000000080), 0x12)

11:29:20 executing program 2:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
socket$inet6(0xa, 0x0, 0x0)
setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x30, 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x0, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x67000000, 0x12)

11:29:20 executing program 5:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r1, &(0x7f0000000000), 0x10)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff000000000000000008000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b', @ANYRES32], 0x50}}, 0x0)

11:29:20 executing program 2:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
socket$inet6(0xa, 0x0, 0x0)
setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x30, 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x0, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x6b000000, 0x12)

11:29:20 executing program 4:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff000000000005c30000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b'], 0x50}}, 0x0)

11:29:20 executing program 2:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
socket$inet6(0xa, 0x0, 0x0)
setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x30, 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x0, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x6d000000, 0x12)

11:29:20 executing program 5:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r1, &(0x7f0000000000), 0x10)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff000000000000000040000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b', @ANYRES32], 0x50}}, 0x0)

11:29:20 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
r0 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r1 = socket$phonet(0x23, 0x2, 0x1)
recvmmsg(r1, &(0x7f0000001200)=[{{0x0, 0x0, &(0x7f0000001100)=[{&(0x7f0000000cc0)=""/72, 0x48}, {&(0x7f0000000d40)=""/133, 0x85}, {&(0x7f0000000e00)=""/254, 0xfe}, {&(0x7f0000000f00)=""/131, 0x83}, {&(0x7f0000000fc0)=""/13, 0xd}, {&(0x7f0000001000)=""/235, 0xeb}], 0x6, &(0x7f0000001180)=""/84, 0x54}, 0xa3}], 0x1, 0x20000, &(0x7f0000001240)={0x77359400})
r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r3 = openat$cgroup(r2, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
openat2(r0, &(0x7f00000000c0)='.\x00', &(0x7f0000000100)={0x410003, 0x59, 0x10}, 0x18)
syz_mount_image$tmpfs(&(0x7f0000000280), &(0x7f00000002c0)='./file0\x00', 0x1, 0xa, &(0x7f0000000a80)=[{&(0x7f0000000300)="0ce7982afb878d81b1689047bf601728ac9ed370a0870379a6b29f6a28620629c1d5dc2dce348a5f241e3bdb119c", 0x2e}, {&(0x7f0000000340)="a45c583e9c21e413550fc54174b8da59af6ccf2099d2d5eb573bb443b065e1216df125ce5831dbd32c753e87d9c0400522d95cdf71ab9e539635fc299c4fd4c0214fc116cfd26ba84eee5be4ea7f7979d6c2f39a4ae406ff093026dac8248044091549867c24ac80bde7f1ed02040b434f3572893760fb53f334103b6c8a90cf5520cbc0d38811f97bfa1fd9e1b3878c059882cc1c1a2da8aafead64cd2037c62dfec38574329df90b861d6a50d70ab2187194ac56b0312089017464", 0xbc, 0x700000000}, {&(0x7f0000000400)="d57a179f692d99082c2b2ef724d6ae912e898536dbdf0e2ec1e762b72816b799e8f4b3ec48da2ed71328bd1539d1f29b23d89a0f7628a23a015f6a6f55679a92e8ef6e9d77b2ec613d038f1406da73833184a783df63d270456e06010d74ee3365baf91437aeb7dd2685dc9fafe043f53361706b6df8185e83b4873555ee4acdd965b5b8ac83779c1ce21f62087d72e595e0f3fc4106c4d845c0376fa4c50946b50832494aa44b1dbddf5a2cf342be86e2bdccc3a88aa7717a568b9eb0b462", 0xbf, 0x4}, {&(0x7f00000004c0)="f919db73", 0x4, 0x8}, {&(0x7f0000000500)="88288692fa85e17334e252ee1f02238a8ddee1c607428c8be2f9cae3071ca0cc46bf6eaf1201f73557f40d875c5815ba098e82fcbcad76bd57643346651470d6fa89ee7271d2e9ace5d67437f6185a5dc0e79d6d6163dc927fe681331d8f7e4a563668acdd00dba01b9494636ec059bbf9c909639dd46c48ddc20a0ca2b2485a8259d498dbbef14167d8ca4651310128c90c29b1ec4b6b9a41f69383bedc7e7a241b113ce44d8a4dc70ce0195592e25f5cc377942fcef48b51e91194790c85a9eb021979055049eed8877cbb471994caa93502c1837b7cb29e6fa43fc45fdb1ca1606efe", 0xe4, 0x2000000}, {&(0x7f0000000600)="61b6e941022f6467b2807865fb90250e8e17f773a374a049ed9c95d8baca4849798cd716e277e4055bec0ba546896ae62989970f08a1d0670cd0eb0f146984414d4c04a7609d15050278a7297f1194b8110dfdc292382838068dac84fe07389d82cf75830e4c52867039eb6ef604123388056ae54bd12e841358ace445b992c11b4362bd86172ed7e55334062810c4718bdc83ca7ec83138e42da162c96c6188c37122c20132e4eb1d6f5efca0f5e35f8bad00e708c01a0c53fdf81eaa3a58c5732e1064ec6abc61b30bdd46b10bf0b6bbf96c3a9f376acf54f5c03e782f0cf475178879cc66678e4d7eed8e572ecb", 0xef, 0xfffffffffffffc00}, {&(0x7f0000000700)="b99f7d182df8c49615b5981db56b7b36da7efb2c95b6cd51d12157391a8de71c39b5cd53455dff7344cfa3f61a10bc2c0cff9e552cafdd296c89191ca64f2ac6925caf6b4fd020ef5bd3e1b353be8e4667fddf51d2ef67fe1910ac32070f8f5b8e1758dde20158194fb448c68c5104ab8f8560fd75141d26aa56077d932ec5ba538cd98ef9279cc167e731ed8e5dba660d2290ec62595e08dbb112d0870f632fd960bb6381267f7b195e80862b3eee904860e7c8dddc38834c609533d41c90d1f3e496f2b9504020724b6d496b9cac8b397e2c3c39b8a21caa96bd42ec455c7d47a041b47264acaf8403", 0xea, 0x40}, {&(0x7f0000000800)="e12b776777ceeb21558b58a9f5254833df8830f315259ade01b1ff8e02e04c233cf5ac73e8b226f17c6a3fb94242bb9850bf78152a1449b586070f1838054a49475fcb06ea755e49a94764ff95b389bae56fc07a875f6f4b9c982202c836369b74ca2becc150c9d16f0704bd6d93b34fa0ebc2501de75a12db966fc10fd4f312e803f0906f11c258bc66d53ea04067402a46be8da9fec0387f629989b2c5f9d263f9e050265877efd2bdf6698a521c36f971a3a6aa0c8212afe58d12dcd703e0cdf73a378d78dbf1b8af6344", 0xcc, 0x6}, {&(0x7f0000000900)="5e07f8cf6ee1865a8cc9bc62db9a05edd8458a58973e78efaf05381ec4e6cefbd4e57f671cd470c42bafb14ec95279e4ef88334e819808ad87df4e79c93843b43ad99a91ed54397775195321e929c2e8bba1150ca29e1cbe538bfafff75e94bb20a1f817125c38cbf2c520896da34175330f964ee9edf0d7640ef8", 0x7b, 0x7f}, {&(0x7f0000000980)="2aaf10d5b17d8341e0e9b0bad9ebb474d6df8f590dbb68b34fc96c8ec20176e8e686da833a98ec8fe0e457b913223e3e932d697d8bfac4a24658450264d43fb5b873cd23014ba0debc6dda23e8fa3317dddfce8c601c0f7564223319cfacf93a2a43914b3dd088316e09e9d8a1c0bab9b51abf74e9a0f42fe1c2ce4f538642c1a17d09b30fd3019dcad4031ea1095e004d02104c15df5596f1d4c1a2ae402cbc45269b3256bd27c80b263f2c03b0979237a4e3d4f305106cb14a78f85f09e7b3d5acd6f73dd0403542a7157b3786392fc5c170ca4869fdea14a37902082eed82550e3bc94a8c0a273c311736d8ca37", 0xef, 0x4cff}], 0x0, &(0x7f0000000b80)={[{@mode={'mode', 0x3d, 0x3}}, {@huge_always}, {@huge_always}, {@huge_within_size}, {@nr_blocks={'nr_blocks', 0x3d, [0x78]}}, {@nr_blocks={'nr_blocks', 0x3d, [0x37, 0x32, 0x0, 0x34, 0x2d]}}], [{@appraise_type}, {@fsuuid={'fsuuid', 0x3d, {[0x34, 0x31, 0x64, 0x66, 0x38, 0x0, 0x31, 0x65], 0x2d, [0x64, 0x65, 0x39, 0x34], 0x2d, [0x37, 0x35, 0x36, 0x66], 0x2d, [0x36, 0x37, 0x34, 0x63], 0x2d, [0x34, 0x34, 0x32, 0x39, 0x32, 0x62, 0x31, 0x30]}}}, {@obj_role}, {@subj_type={'subj_type', 0x3d, 'cgroup2\x00'}}, {@fsmagic={'fsmagic', 0x3d, 0x1}}, {@dont_measure}]})
r4 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_ADAPTATION_LAYER(r4, 0x84, 0x7, &(0x7f0000000040)={0x10b802b6}, 0x4)
open$dir(&(0x7f0000000c80)='./file0\x00', 0x2000, 0x43)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r4, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
connect$inet6(r4, &(0x7f00000001c0)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
signalfd4(r4, &(0x7f0000000240)={[0x7fffffffffffffff]}, 0x8, 0x800)
openat$cgroup_int(r3, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56) (async)
socket$phonet(0x23, 0x2, 0x1) (async)
recvmmsg(r1, &(0x7f0000001200)=[{{0x0, 0x0, &(0x7f0000001100)=[{&(0x7f0000000cc0)=""/72, 0x48}, {&(0x7f0000000d40)=""/133, 0x85}, {&(0x7f0000000e00)=""/254, 0xfe}, {&(0x7f0000000f00)=""/131, 0x83}, {&(0x7f0000000fc0)=""/13, 0xd}, {&(0x7f0000001000)=""/235, 0xeb}], 0x6, &(0x7f0000001180)=""/84, 0x54}, 0xa3}], 0x1, 0x20000, &(0x7f0000001240)={0x77359400}) (async)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) (async)
openat$cgroup(r2, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0) (async)
openat2(r0, &(0x7f00000000c0)='.\x00', &(0x7f0000000100)={0x410003, 0x59, 0x10}, 0x18) (async)
syz_mount_image$tmpfs(&(0x7f0000000280), &(0x7f00000002c0)='./file0\x00', 0x1, 0xa, &(0x7f0000000a80)=[{&(0x7f0000000300)="0ce7982afb878d81b1689047bf601728ac9ed370a0870379a6b29f6a28620629c1d5dc2dce348a5f241e3bdb119c", 0x2e}, {&(0x7f0000000340)="a45c583e9c21e413550fc54174b8da59af6ccf2099d2d5eb573bb443b065e1216df125ce5831dbd32c753e87d9c0400522d95cdf71ab9e539635fc299c4fd4c0214fc116cfd26ba84eee5be4ea7f7979d6c2f39a4ae406ff093026dac8248044091549867c24ac80bde7f1ed02040b434f3572893760fb53f334103b6c8a90cf5520cbc0d38811f97bfa1fd9e1b3878c059882cc1c1a2da8aafead64cd2037c62dfec38574329df90b861d6a50d70ab2187194ac56b0312089017464", 0xbc, 0x700000000}, {&(0x7f0000000400)="d57a179f692d99082c2b2ef724d6ae912e898536dbdf0e2ec1e762b72816b799e8f4b3ec48da2ed71328bd1539d1f29b23d89a0f7628a23a015f6a6f55679a92e8ef6e9d77b2ec613d038f1406da73833184a783df63d270456e06010d74ee3365baf91437aeb7dd2685dc9fafe043f53361706b6df8185e83b4873555ee4acdd965b5b8ac83779c1ce21f62087d72e595e0f3fc4106c4d845c0376fa4c50946b50832494aa44b1dbddf5a2cf342be86e2bdccc3a88aa7717a568b9eb0b462", 0xbf, 0x4}, {&(0x7f00000004c0)="f919db73", 0x4, 0x8}, {&(0x7f0000000500)="88288692fa85e17334e252ee1f02238a8ddee1c607428c8be2f9cae3071ca0cc46bf6eaf1201f73557f40d875c5815ba098e82fcbcad76bd57643346651470d6fa89ee7271d2e9ace5d67437f6185a5dc0e79d6d6163dc927fe681331d8f7e4a563668acdd00dba01b9494636ec059bbf9c909639dd46c48ddc20a0ca2b2485a8259d498dbbef14167d8ca4651310128c90c29b1ec4b6b9a41f69383bedc7e7a241b113ce44d8a4dc70ce0195592e25f5cc377942fcef48b51e91194790c85a9eb021979055049eed8877cbb471994caa93502c1837b7cb29e6fa43fc45fdb1ca1606efe", 0xe4, 0x2000000}, {&(0x7f0000000600)="61b6e941022f6467b2807865fb90250e8e17f773a374a049ed9c95d8baca4849798cd716e277e4055bec0ba546896ae62989970f08a1d0670cd0eb0f146984414d4c04a7609d15050278a7297f1194b8110dfdc292382838068dac84fe07389d82cf75830e4c52867039eb6ef604123388056ae54bd12e841358ace445b992c11b4362bd86172ed7e55334062810c4718bdc83ca7ec83138e42da162c96c6188c37122c20132e4eb1d6f5efca0f5e35f8bad00e708c01a0c53fdf81eaa3a58c5732e1064ec6abc61b30bdd46b10bf0b6bbf96c3a9f376acf54f5c03e782f0cf475178879cc66678e4d7eed8e572ecb", 0xef, 0xfffffffffffffc00}, {&(0x7f0000000700)="b99f7d182df8c49615b5981db56b7b36da7efb2c95b6cd51d12157391a8de71c39b5cd53455dff7344cfa3f61a10bc2c0cff9e552cafdd296c89191ca64f2ac6925caf6b4fd020ef5bd3e1b353be8e4667fddf51d2ef67fe1910ac32070f8f5b8e1758dde20158194fb448c68c5104ab8f8560fd75141d26aa56077d932ec5ba538cd98ef9279cc167e731ed8e5dba660d2290ec62595e08dbb112d0870f632fd960bb6381267f7b195e80862b3eee904860e7c8dddc38834c609533d41c90d1f3e496f2b9504020724b6d496b9cac8b397e2c3c39b8a21caa96bd42ec455c7d47a041b47264acaf8403", 0xea, 0x40}, {&(0x7f0000000800)="e12b776777ceeb21558b58a9f5254833df8830f315259ade01b1ff8e02e04c233cf5ac73e8b226f17c6a3fb94242bb9850bf78152a1449b586070f1838054a49475fcb06ea755e49a94764ff95b389bae56fc07a875f6f4b9c982202c836369b74ca2becc150c9d16f0704bd6d93b34fa0ebc2501de75a12db966fc10fd4f312e803f0906f11c258bc66d53ea04067402a46be8da9fec0387f629989b2c5f9d263f9e050265877efd2bdf6698a521c36f971a3a6aa0c8212afe58d12dcd703e0cdf73a378d78dbf1b8af6344", 0xcc, 0x6}, {&(0x7f0000000900)="5e07f8cf6ee1865a8cc9bc62db9a05edd8458a58973e78efaf05381ec4e6cefbd4e57f671cd470c42bafb14ec95279e4ef88334e819808ad87df4e79c93843b43ad99a91ed54397775195321e929c2e8bba1150ca29e1cbe538bfafff75e94bb20a1f817125c38cbf2c520896da34175330f964ee9edf0d7640ef8", 0x7b, 0x7f}, {&(0x7f0000000980)="2aaf10d5b17d8341e0e9b0bad9ebb474d6df8f590dbb68b34fc96c8ec20176e8e686da833a98ec8fe0e457b913223e3e932d697d8bfac4a24658450264d43fb5b873cd23014ba0debc6dda23e8fa3317dddfce8c601c0f7564223319cfacf93a2a43914b3dd088316e09e9d8a1c0bab9b51abf74e9a0f42fe1c2ce4f538642c1a17d09b30fd3019dcad4031ea1095e004d02104c15df5596f1d4c1a2ae402cbc45269b3256bd27c80b263f2c03b0979237a4e3d4f305106cb14a78f85f09e7b3d5acd6f73dd0403542a7157b3786392fc5c170ca4869fdea14a37902082eed82550e3bc94a8c0a273c311736d8ca37", 0xef, 0x4cff}], 0x0, &(0x7f0000000b80)={[{@mode={'mode', 0x3d, 0x3}}, {@huge_always}, {@huge_always}, {@huge_within_size}, {@nr_blocks={'nr_blocks', 0x3d, [0x78]}}, {@nr_blocks={'nr_blocks', 0x3d, [0x37, 0x32, 0x0, 0x34, 0x2d]}}], [{@appraise_type}, {@fsuuid={'fsuuid', 0x3d, {[0x34, 0x31, 0x64, 0x66, 0x38, 0x0, 0x31, 0x65], 0x2d, [0x64, 0x65, 0x39, 0x34], 0x2d, [0x37, 0x35, 0x36, 0x66], 0x2d, [0x36, 0x37, 0x34, 0x63], 0x2d, [0x34, 0x34, 0x32, 0x39, 0x32, 0x62, 0x31, 0x30]}}}, {@obj_role}, {@subj_type={'subj_type', 0x3d, 'cgroup2\x00'}}, {@fsmagic={'fsmagic', 0x3d, 0x1}}, {@dont_measure}]}) (async)
socket$inet6_sctp(0xa, 0x1, 0x84) (async)
setsockopt$inet_sctp6_SCTP_ADAPTATION_LAYER(r4, 0x84, 0x7, &(0x7f0000000040)={0x10b802b6}, 0x4) (async)
open$dir(&(0x7f0000000c80)='./file0\x00', 0x2000, 0x43) (async)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r4, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c) (async)
connect$inet6(r4, &(0x7f00000001c0)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) (async)
signalfd4(r4, &(0x7f0000000240)={[0x7fffffffffffffff]}, 0x8, 0x800) (async)
openat$cgroup_int(r3, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) (async)

11:29:20 executing program 4:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff000000ffffffc30000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b'], 0x50}}, 0x0)

[ 1044.968285][T14676] loop1: detected capacity change from 0 to 139264
[ 1044.994136][T14676] tmpfs: Unsupported parameter 'huge'
[ 1045.218023][T22349] device hsr_slave_0 left promiscuous mode
[ 1045.227440][T22349] device hsr_slave_1 left promiscuous mode
[ 1045.240123][T22349] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1045.247566][T22349] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1045.268073][T22349] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1045.275619][T22349] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1045.284974][T22349] device bridge_slave_1 left promiscuous mode
[ 1045.291136][T22349] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1045.299080][T22349] device bridge_slave_0 left promiscuous mode
[ 1045.305285][T22349] bridge0: port 1(bridge_slave_0) entered disabled state
11:29:21 executing program 3:
socket$nl_route(0x10, 0x3, 0x0)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x0, 0x0, 0x56)
socket$inet6(0xa, 0x1, 0x4003fe)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x80000, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)=@newlink={0x48, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @sit={{0x8}, {0x1c, 0x2, 0x0, 0x1, [@IFLA_IPTUN_PROTO={0x5}, @IFLA_IPTUN_LOCAL={0x8, 0x2, @local}, @IFLA_IPTUN_FWMARK={0x8}]}}}]}, 0x48}}, 0x0)
r4 = socket$netlink(0x10, 0x3, 0x0)
r5 = socket(0x10, 0x803, 0x0)
sendmsg$TIPC_NL_MON_GET(r5, &(0x7f0000000500)={&(0x7f00000004c0)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000005c0)={0x0, 0x88}, 0x1, 0x0, 0x0, 0x1}, 0x0)
getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r4, &(0x7f00000000c0)={0x0, 0xffffffef, &(0x7f0000000300)={&(0x7f0000001bc0)=@newlink={0x84, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x35288}, [@IFLA_LINKINFO={0x5c, 0x12, 0x0, 0x1, @ipip6={{0xb}, {0x4c, 0x2, 0x0, 0x1, [@IFLA_IPTUN_ENCAP_TYPE={0x6}, @IFLA_IPTUN_REMOTE={0x14, 0x3, @private0}, @IFLA_IPTUN_COLLECT_METADATA={0x4}, @IFLA_IPTUN_LINK={0x8, 0x1, r6}, @IFLA_IPTUN_COLLECT_METADATA={0x4}, @IFLA_IPTUN_LOCAL={0x14, 0x2, @remote}, @IFLA_IPTUN_PROTO={0x5, 0x9, 0x29}]}}}, @IFLA_MASTER={0x8, 0xa, r6}]}, 0x84}}, 0x4000080)
sendmsg$nl_route_sched(r3, &(0x7f0000000280)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000240)={&(0x7f0000000100)=@newtfilter={0x34, 0x2c, 0x400, 0x70bd27, 0x25dfdbff, {0x0, 0x0, 0x0, r6, {0xfff3, 0x10}, {0xe, 0x8}, {0x8, 0xb}}, [@TCA_RATE={0x6, 0x5, {0x3, 0x3}}, @TCA_CHAIN={0x8, 0xb, 0x5}]}, 0x34}, 0x1, 0x0, 0x0, 0x4040010}, 0x8000)
write$cgroup_int(r2, &(0x7f0000000080), 0x12)
socket$nl_route(0x10, 0x3, 0x0) (async)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
open(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0) (async)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
set_mempolicy(0x0, 0x0, 0x56) (async)
socket$inet6(0xa, 0x1, 0x4003fe) (async)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) (async)
openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0) (async)
socket(0x0, 0x80000, 0x0) (async)
openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0) (async)
socket$nl_route(0x10, 0x3, 0x0) (async)
sendmsg$nl_route(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)=@newlink={0x48, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @sit={{0x8}, {0x1c, 0x2, 0x0, 0x1, [@IFLA_IPTUN_PROTO={0x5}, @IFLA_IPTUN_LOCAL={0x8, 0x2, @local}, @IFLA_IPTUN_FWMARK={0x8}]}}}]}, 0x48}}, 0x0) (async)
socket$netlink(0x10, 0x3, 0x0) (async)
socket(0x10, 0x803, 0x0) (async)
sendmsg$TIPC_NL_MON_GET(r5, &(0x7f0000000500)={&(0x7f00000004c0)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000005c0)={0x0, 0x88}, 0x1, 0x0, 0x0, 0x1}, 0x0) (async)
getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) (async)
sendmsg$nl_route(r4, &(0x7f00000000c0)={0x0, 0xffffffef, &(0x7f0000000300)={&(0x7f0000001bc0)=@newlink={0x84, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x35288}, [@IFLA_LINKINFO={0x5c, 0x12, 0x0, 0x1, @ipip6={{0xb}, {0x4c, 0x2, 0x0, 0x1, [@IFLA_IPTUN_ENCAP_TYPE={0x6}, @IFLA_IPTUN_REMOTE={0x14, 0x3, @private0}, @IFLA_IPTUN_COLLECT_METADATA={0x4}, @IFLA_IPTUN_LINK={0x8, 0x1, r6}, @IFLA_IPTUN_COLLECT_METADATA={0x4}, @IFLA_IPTUN_LOCAL={0x14, 0x2, @remote}, @IFLA_IPTUN_PROTO={0x5, 0x9, 0x29}]}}}, @IFLA_MASTER={0x8, 0xa, r6}]}, 0x84}}, 0x4000080) (async)
sendmsg$nl_route_sched(r3, &(0x7f0000000280)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000240)={&(0x7f0000000100)=@newtfilter={0x34, 0x2c, 0x400, 0x70bd27, 0x25dfdbff, {0x0, 0x0, 0x0, r6, {0xfff3, 0x10}, {0xe, 0x8}, {0x8, 0xb}}, [@TCA_RATE={0x6, 0x5, {0x3, 0x3}}, @TCA_CHAIN={0x8, 0xb, 0x5}]}, 0x34}, 0x1, 0x0, 0x0, 0x4040010}, 0x8000) (async)
write$cgroup_int(r2, &(0x7f0000000080), 0x12) (async)

11:29:21 executing program 2:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
socket$inet6(0xa, 0x0, 0x0)
setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x30, 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x0, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x70000000, 0x12)

11:29:21 executing program 5:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r1, &(0x7f0000000000), 0x10)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff000000000000000080000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b', @ANYRES32], 0x50}}, 0x0)

[ 1045.315683][T22349] device veth1_macvtap left promiscuous mode
[ 1045.321675][T22349] device veth0_macvtap left promiscuous mode
[ 1045.327687][T22349] device veth1_vlan left promiscuous mode
[ 1045.333511][T22349] device veth0_vlan left promiscuous mode
[ 1045.433088][T22349] team0 (unregistering): Port device team_slave_1 removed
[ 1045.442748][T22349] team0 (unregistering): Port device team_slave_0 removed
[ 1045.452431][T22349] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1045.465666][T22349] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1045.494342][T22349] bond0 (unregistering): Released all slaves
[ 1046.479143][T14739] chnl_net:caif_netlink_parms(): no params data found
[ 1046.509606][T14739] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1046.516685][T14739] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1046.524097][T14739] device bridge_slave_0 entered promiscuous mode
[ 1046.531441][T14739] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1046.538545][T14739] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1046.546025][T14739] device bridge_slave_1 entered promiscuous mode
[ 1046.561823][T14739] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1046.571934][T14739] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1046.589493][T14739] team0: Port device team_slave_0 added
[ 1046.595754][T14739] team0: Port device team_slave_1 added
[ 1046.609277][T14739] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1046.616193][T14739] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1046.642061][T14739] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1046.654262][T14739] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1046.661213][T14739] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1046.687076][T14739] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1046.706887][T14739] device hsr_slave_0 entered promiscuous mode
[ 1046.713326][T14739] device hsr_slave_1 entered promiscuous mode
[ 1046.761357][T14739] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1046.768445][T14739] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1046.775678][T14739] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1046.782745][T14739] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1046.808173][T14739] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1046.819650][T14739] 8021q: adding VLAN 0 to HW filter on device team0
[ 1046.827574][T12912] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1046.835788][T12912] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1046.843490][T12912] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1046.855711][   T77] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1046.864017][   T77] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1046.871080][   T77] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1046.881238][ T6846] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1046.889609][ T6846] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1046.896708][ T6846] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1046.912209][   T77] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 1046.921780][   T77] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 1046.931826][   T77] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 1046.940764][   T77] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 1046.951593][T14739] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 1046.962038][T14739] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 1046.973199][   T77] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 1046.981529][   T77] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1046.990055][   T77] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 1046.998330][   T77] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1047.008750][   T77] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 1047.021168][T14739] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1047.028835][ T1928] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 1047.036221][ T1928] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 1047.104655][ T6845] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 1047.113170][ T6845] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1047.151828][T14739] device veth0_vlan entered promiscuous mode
[ 1047.158703][   T77] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 1047.166874][   T77] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1047.176032][   T77] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1047.183671][   T77] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1047.192987][T14739] device veth1_vlan entered promiscuous mode
[ 1047.204928][   T77] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 1047.212812][   T77] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 1047.220789][   T77] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 1047.229128][   T77] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1047.238995][T14739] device veth0_macvtap entered promiscuous mode
[ 1047.247260][T14739] device veth1_macvtap entered promiscuous mode
[ 1047.257782][T14739] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 1047.268211][T14739] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1047.278064][T14739] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 1047.288483][T14739] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1047.298270][T14739] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 1047.308788][T14739] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1047.318615][T14739] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 1047.329011][T14739] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1047.338817][T14739] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 1047.349280][T14739] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1047.360281][T14739] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1047.367935][ T6849] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 1047.375825][ T6849] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 1047.384808][ T6849] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 1047.393416][ T6849] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1047.403908][T14739] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 1047.414383][T14739] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1047.424240][T14739] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 1047.434705][T14739] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1047.444509][T14739] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 1047.454942][T14739] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1047.464796][T14739] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 1047.475268][T14739] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1047.485075][T14739] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 1047.495485][T14739] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
11:29:23 executing program 0:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
r0 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) (async)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='hostfs\x00', 0x0, 0x0) (async)
r1 = openat$cgroup_ro(r0, &(0x7f00000000c0)='hugetlb.2MB.usage_in_bytes\x00', 0x0, 0x0)
ioctl$sock_bt_hci(r1, 0x400448cc, &(0x7f0000000100)="2686da99135d8225c5cf357bb42d13d802dd32095a7ea93c098d0bbc7910315e90") (async)
r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r3 = openat$cgroup(r2, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r4 = openat$cgroup_int(r3, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
ioctl$BTRFS_IOC_START_SYNC(r3, 0x80089418, &(0x7f0000000240)) (async)
write$cgroup_int(r4, &(0x7f0000000080), 0x12)

11:29:23 executing program 4:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff000000000005c40000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b'], 0x50}}, 0x0)

11:29:23 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
r0 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56) (async)
r1 = socket$phonet(0x23, 0x2, 0x1)
recvmmsg(r1, &(0x7f0000001200)=[{{0x0, 0x0, &(0x7f0000001100)=[{&(0x7f0000000cc0)=""/72, 0x48}, {&(0x7f0000000d40)=""/133, 0x85}, {&(0x7f0000000e00)=""/254, 0xfe}, {&(0x7f0000000f00)=""/131, 0x83}, {&(0x7f0000000fc0)=""/13, 0xd}, {&(0x7f0000001000)=""/235, 0xeb}], 0x6, &(0x7f0000001180)=""/84, 0x54}, 0xa3}], 0x1, 0x20000, &(0x7f0000001240)={0x77359400}) (async)
r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r3 = openat$cgroup(r2, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0) (async)
openat2(r0, &(0x7f00000000c0)='.\x00', &(0x7f0000000100)={0x410003, 0x59, 0x10}, 0x18) (async)
syz_mount_image$tmpfs(&(0x7f0000000280), &(0x7f00000002c0)='./file0\x00', 0x1, 0xa, &(0x7f0000000a80)=[{&(0x7f0000000300)="0ce7982afb878d81b1689047bf601728ac9ed370a0870379a6b29f6a28620629c1d5dc2dce348a5f241e3bdb119c", 0x2e}, {&(0x7f0000000340)="a45c583e9c21e413550fc54174b8da59af6ccf2099d2d5eb573bb443b065e1216df125ce5831dbd32c753e87d9c0400522d95cdf71ab9e539635fc299c4fd4c0214fc116cfd26ba84eee5be4ea7f7979d6c2f39a4ae406ff093026dac8248044091549867c24ac80bde7f1ed02040b434f3572893760fb53f334103b6c8a90cf5520cbc0d38811f97bfa1fd9e1b3878c059882cc1c1a2da8aafead64cd2037c62dfec38574329df90b861d6a50d70ab2187194ac56b0312089017464", 0xbc, 0x700000000}, {&(0x7f0000000400)="d57a179f692d99082c2b2ef724d6ae912e898536dbdf0e2ec1e762b72816b799e8f4b3ec48da2ed71328bd1539d1f29b23d89a0f7628a23a015f6a6f55679a92e8ef6e9d77b2ec613d038f1406da73833184a783df63d270456e06010d74ee3365baf91437aeb7dd2685dc9fafe043f53361706b6df8185e83b4873555ee4acdd965b5b8ac83779c1ce21f62087d72e595e0f3fc4106c4d845c0376fa4c50946b50832494aa44b1dbddf5a2cf342be86e2bdccc3a88aa7717a568b9eb0b462", 0xbf, 0x4}, {&(0x7f00000004c0)="f919db73", 0x4, 0x8}, {&(0x7f0000000500)="88288692fa85e17334e252ee1f02238a8ddee1c607428c8be2f9cae3071ca0cc46bf6eaf1201f73557f40d875c5815ba098e82fcbcad76bd57643346651470d6fa89ee7271d2e9ace5d67437f6185a5dc0e79d6d6163dc927fe681331d8f7e4a563668acdd00dba01b9494636ec059bbf9c909639dd46c48ddc20a0ca2b2485a8259d498dbbef14167d8ca4651310128c90c29b1ec4b6b9a41f69383bedc7e7a241b113ce44d8a4dc70ce0195592e25f5cc377942fcef48b51e91194790c85a9eb021979055049eed8877cbb471994caa93502c1837b7cb29e6fa43fc45fdb1ca1606efe", 0xe4, 0x2000000}, {&(0x7f0000000600)="61b6e941022f6467b2807865fb90250e8e17f773a374a049ed9c95d8baca4849798cd716e277e4055bec0ba546896ae62989970f08a1d0670cd0eb0f146984414d4c04a7609d15050278a7297f1194b8110dfdc292382838068dac84fe07389d82cf75830e4c52867039eb6ef604123388056ae54bd12e841358ace445b992c11b4362bd86172ed7e55334062810c4718bdc83ca7ec83138e42da162c96c6188c37122c20132e4eb1d6f5efca0f5e35f8bad00e708c01a0c53fdf81eaa3a58c5732e1064ec6abc61b30bdd46b10bf0b6bbf96c3a9f376acf54f5c03e782f0cf475178879cc66678e4d7eed8e572ecb", 0xef, 0xfffffffffffffc00}, {&(0x7f0000000700)="b99f7d182df8c49615b5981db56b7b36da7efb2c95b6cd51d12157391a8de71c39b5cd53455dff7344cfa3f61a10bc2c0cff9e552cafdd296c89191ca64f2ac6925caf6b4fd020ef5bd3e1b353be8e4667fddf51d2ef67fe1910ac32070f8f5b8e1758dde20158194fb448c68c5104ab8f8560fd75141d26aa56077d932ec5ba538cd98ef9279cc167e731ed8e5dba660d2290ec62595e08dbb112d0870f632fd960bb6381267f7b195e80862b3eee904860e7c8dddc38834c609533d41c90d1f3e496f2b9504020724b6d496b9cac8b397e2c3c39b8a21caa96bd42ec455c7d47a041b47264acaf8403", 0xea, 0x40}, {&(0x7f0000000800)="e12b776777ceeb21558b58a9f5254833df8830f315259ade01b1ff8e02e04c233cf5ac73e8b226f17c6a3fb94242bb9850bf78152a1449b586070f1838054a49475fcb06ea755e49a94764ff95b389bae56fc07a875f6f4b9c982202c836369b74ca2becc150c9d16f0704bd6d93b34fa0ebc2501de75a12db966fc10fd4f312e803f0906f11c258bc66d53ea04067402a46be8da9fec0387f629989b2c5f9d263f9e050265877efd2bdf6698a521c36f971a3a6aa0c8212afe58d12dcd703e0cdf73a378d78dbf1b8af6344", 0xcc, 0x6}, {&(0x7f0000000900)="5e07f8cf6ee1865a8cc9bc62db9a05edd8458a58973e78efaf05381ec4e6cefbd4e57f671cd470c42bafb14ec95279e4ef88334e819808ad87df4e79c93843b43ad99a91ed54397775195321e929c2e8bba1150ca29e1cbe538bfafff75e94bb20a1f817125c38cbf2c520896da34175330f964ee9edf0d7640ef8", 0x7b, 0x7f}, {&(0x7f0000000980)="2aaf10d5b17d8341e0e9b0bad9ebb474d6df8f590dbb68b34fc96c8ec20176e8e686da833a98ec8fe0e457b913223e3e932d697d8bfac4a24658450264d43fb5b873cd23014ba0debc6dda23e8fa3317dddfce8c601c0f7564223319cfacf93a2a43914b3dd088316e09e9d8a1c0bab9b51abf74e9a0f42fe1c2ce4f538642c1a17d09b30fd3019dcad4031ea1095e004d02104c15df5596f1d4c1a2ae402cbc45269b3256bd27c80b263f2c03b0979237a4e3d4f305106cb14a78f85f09e7b3d5acd6f73dd0403542a7157b3786392fc5c170ca4869fdea14a37902082eed82550e3bc94a8c0a273c311736d8ca37", 0xef, 0x4cff}], 0x0, &(0x7f0000000b80)={[{@mode={'mode', 0x3d, 0x3}}, {@huge_always}, {@huge_always}, {@huge_within_size}, {@nr_blocks={'nr_blocks', 0x3d, [0x78]}}, {@nr_blocks={'nr_blocks', 0x3d, [0x37, 0x32, 0x0, 0x34, 0x2d]}}], [{@appraise_type}, {@fsuuid={'fsuuid', 0x3d, {[0x34, 0x31, 0x64, 0x66, 0x38, 0x0, 0x31, 0x65], 0x2d, [0x64, 0x65, 0x39, 0x34], 0x2d, [0x37, 0x35, 0x36, 0x66], 0x2d, [0x36, 0x37, 0x34, 0x63], 0x2d, [0x34, 0x34, 0x32, 0x39, 0x32, 0x62, 0x31, 0x30]}}}, {@obj_role}, {@subj_type={'subj_type', 0x3d, 'cgroup2\x00'}}, {@fsmagic={'fsmagic', 0x3d, 0x1}}, {@dont_measure}]}) (async)
r4 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_ADAPTATION_LAYER(r4, 0x84, 0x7, &(0x7f0000000040)={0x10b802b6}, 0x4)
open$dir(&(0x7f0000000c80)='./file0\x00', 0x2000, 0x43) (async)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r4, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c) (async)
connect$inet6(r4, &(0x7f00000001c0)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
signalfd4(r4, &(0x7f0000000240)={[0x7fffffffffffffff]}, 0x8, 0x800)
openat$cgroup_int(r3, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)

11:29:23 executing program 2:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
socket$inet6(0xa, 0x0, 0x0)
setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x30, 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x0, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x74000000, 0x12)

11:29:23 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000100)='ramfs\x00', 0x1002000, 0x0)
rmdir(&(0x7f00000000c0)='./file0\x00')
set_mempolicy(0x0, 0x0, 0x56)
socket$inet6(0xa, 0x80001, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x80000, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080), 0x12)

11:29:23 executing program 5:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r1, &(0x7f0000000000), 0x10)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff000000800000000080000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b', @ANYRES32], 0x50}}, 0x0)

[ 1047.507326][T14739] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1047.514711][ T6845] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 1047.523213][ T6845] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
11:29:23 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async, rerun: 64)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000100)='ramfs\x00', 0x1002000, 0x0) (async, rerun: 64)
rmdir(&(0x7f00000000c0)='./file0\x00') (async)
set_mempolicy(0x0, 0x0, 0x56) (async)
socket$inet6(0xa, 0x80001, 0x0) (async, rerun: 64)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) (rerun: 64)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x80000, 0x0) (async, rerun: 64)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0) (rerun: 64)
write$cgroup_int(r2, &(0x7f0000000080), 0x12)

11:29:23 executing program 0:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
r0 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='hostfs\x00', 0x0, 0x0)
r1 = openat$cgroup_ro(r0, &(0x7f00000000c0)='hugetlb.2MB.usage_in_bytes\x00', 0x0, 0x0)
ioctl$sock_bt_hci(r1, 0x400448cc, &(0x7f0000000100)="2686da99135d8225c5cf357bb42d13d802dd32095a7ea93c098d0bbc7910315e90")
r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r3 = openat$cgroup(r2, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r4 = openat$cgroup_int(r3, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
ioctl$BTRFS_IOC_START_SYNC(r3, 0x80089418, &(0x7f0000000240))
write$cgroup_int(r4, &(0x7f0000000080), 0x12)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) (async)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='hostfs\x00', 0x0, 0x0) (async)
openat$cgroup_ro(r0, &(0x7f00000000c0)='hugetlb.2MB.usage_in_bytes\x00', 0x0, 0x0) (async)
ioctl$sock_bt_hci(r1, 0x400448cc, &(0x7f0000000100)="2686da99135d8225c5cf357bb42d13d802dd32095a7ea93c098d0bbc7910315e90") (async)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) (async)
openat$cgroup(r2, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0) (async)
openat$cgroup_int(r3, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0) (async)
ioctl$BTRFS_IOC_START_SYNC(r3, 0x80089418, &(0x7f0000000240)) (async)
write$cgroup_int(r4, &(0x7f0000000080), 0x12) (async)

[ 1047.577716][T14782] loop1: detected capacity change from 0 to 139264
[ 1047.613505][T14782] tmpfs: Unsupported parameter 'huge'
11:29:23 executing program 2:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
socket$inet6(0xa, 0x0, 0x0)
setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x30, 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x0, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0xfeffffff, 0x12)

11:29:23 executing program 4:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff000000000003da0000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b'], 0x50}}, 0x0)

11:29:23 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000100)='ramfs\x00', 0x1002000, 0x0) (async)
rmdir(&(0x7f00000000c0)='./file0\x00')
set_mempolicy(0x0, 0x0, 0x56) (async)
socket$inet6(0xa, 0x80001, 0x0) (async, rerun: 32)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) (rerun: 32)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x80000, 0x0) (async)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080), 0x12)

11:29:23 executing program 0:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
pipe(&(0x7f0000000200)={<r0=>0xffffffffffffffff})
r1 = socket$inet_udp(0x2, 0x2, 0x0)
close(r1)
bind$inet(r1, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10)
connect$inet(r1, &(0x7f0000001280)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r1, 0x0, 0x5, 0x5)
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_ADAPTATION_LAYER(r2, 0x84, 0x7, &(0x7f0000000040)={0x10b802b6}, 0x4)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r2, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
connect$inet6(r2, &(0x7f00000001c0)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
mount$9p_fd(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100), 0x1000, &(0x7f0000000340)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB="1e77f0fa3d000087e8ff0f0000f3cc005633cc54", @ANYRESHEX=r2, @ANYBLOB=',msize=0x0000000000000016,msize=0x0000000000000100,afid=0x0000000000000002,nodevmap,mmap,cache=none,cache=none,cache=mmap,loose,dont_appraise,seclabel,mask=MAY_APPEND,fsname=memory.max\x00,\x00'])
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r3 = openat$cgroup_int(0xffffffffffffffff, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r3, &(0x7f0000000080), 0x12)

11:29:23 executing program 5:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r1, &(0x7f0000000000), 0x10)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff000000000000000000010000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b', @ANYRES32], 0x50}}, 0x0)

11:29:23 executing program 0:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) (async)
pipe(&(0x7f0000000200)={<r0=>0xffffffffffffffff}) (async)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
close(r1)
bind$inet(r1, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10)
connect$inet(r1, &(0x7f0000001280)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r1, 0x0, 0x5, 0x5) (async)
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_ADAPTATION_LAYER(r2, 0x84, 0x7, &(0x7f0000000040)={0x10b802b6}, 0x4)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r2, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c) (async, rerun: 64)
connect$inet6(r2, &(0x7f00000001c0)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) (async, rerun: 64)
mount$9p_fd(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100), 0x1000, &(0x7f0000000340)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB="1e77f0fa3d000087e8ff0f0000f3cc005633cc54", @ANYRESHEX=r2, @ANYBLOB=',msize=0x0000000000000016,msize=0x0000000000000100,afid=0x0000000000000002,nodevmap,mmap,cache=none,cache=none,cache=mmap,loose,dont_appraise,seclabel,mask=MAY_APPEND,fsname=memory.max\x00,\x00'])
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r3 = openat$cgroup_int(0xffffffffffffffff, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r3, &(0x7f0000000080), 0x12)

11:29:24 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
mount(&(0x7f00000000c0)=@loop={'/dev/loop', 0x0}, &(0x7f0000000100)='./file0\x00', &(0x7f0000000240)='tracefs\x00', 0x1, &(0x7f0000000280)='(&\xe6,,%-}-\x00')
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r2, &(0x7f0000000080), 0x12)

11:29:24 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x0, 0x0, 0x56)
socket$inet6(0xa, 0x80001, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x80000, 0x0)
symlink(&(0x7f00000000c0)='./file0/file0\x00', &(0x7f0000000100)='./file0\x00')
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080), 0x12)

11:29:24 executing program 2:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
socket$inet6(0xa, 0x0, 0x0)
setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x30, 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x0, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0xfffffffe, 0x12)

11:29:24 executing program 0:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
pipe(&(0x7f0000000200)={<r0=>0xffffffffffffffff}) (async)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
close(r1) (async)
bind$inet(r1, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10)
connect$inet(r1, &(0x7f0000001280)={0x2, 0x0, @multicast1}, 0x10) (async)
splice(r0, 0x0, r1, 0x0, 0x5, 0x5) (async, rerun: 64)
r2 = socket$inet6_sctp(0xa, 0x1, 0x84) (rerun: 64)
setsockopt$inet_sctp6_SCTP_ADAPTATION_LAYER(r2, 0x84, 0x7, &(0x7f0000000040)={0x10b802b6}, 0x4) (async, rerun: 32)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r2, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c) (async, rerun: 32)
connect$inet6(r2, &(0x7f00000001c0)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) (async)
mount$9p_fd(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100), 0x1000, &(0x7f0000000340)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB="1e77f0fa3d000087e8ff0f0000f3cc005633cc54", @ANYRESHEX=r2, @ANYBLOB=',msize=0x0000000000000016,msize=0x0000000000000100,afid=0x0000000000000002,nodevmap,mmap,cache=none,cache=none,cache=mmap,loose,dont_appraise,seclabel,mask=MAY_APPEND,fsname=memory.max\x00,\x00']) (async)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r3 = openat$cgroup_int(0xffffffffffffffff, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r3, &(0x7f0000000080), 0x12)

11:29:24 executing program 4:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff000000ffffffea0000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b'], 0x50}}, 0x0)

11:29:24 executing program 5:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r1, &(0x7f0000000000), 0x10)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff000000000000000000020000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b', @ANYRES32], 0x50}}, 0x0)

11:29:24 executing program 0:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
r0 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = openat$cgroup(r1, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r3 = openat$cgroup_int(r2, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r3, &(0x7f0000000080), 0x12)
r4 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_ADAPTATION_LAYER(r4, 0x84, 0x7, &(0x7f0000000040)={0x10b802b6}, 0x4)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r4, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
connect$inet6(r4, &(0x7f00000001c0)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r5 = syz_clone3(&(0x7f0000001340)={0x40000000, &(0x7f00000000c0), &(0x7f0000000100), &(0x7f0000000240), {0x11}, &(0x7f0000000280)=""/4096, 0x1000, &(0x7f0000001280)=""/65, &(0x7f0000001300)=[0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0], 0x8}, 0x58)
fcntl$setown(r4, 0x8, r5)
write$cgroup_int(r0, &(0x7f00000013c0)=0x7, 0x12)

[ 1048.458792][   T24] audit: type=1400 audit(1646911764.396:444): avc:  denied  { mount } for  pid=14857 comm="syz-executor.1" name="/" dev="tracefs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tracefs_t tclass=filesystem permissive=1
[ 1048.464985][T14854] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=0
[ 1048.491326][T14854] CPU: 1 PID: 14854 Comm: syz-executor.3 Not tainted 5.17.0-rc7-syzkaller-00078-g3bf7edc84a9e-dirty #0
11:29:24 executing program 2:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
socket$inet6(0xa, 0x0, 0x0)
setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x30, 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x0, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x10000000000, 0x12)

[ 1048.502347][T14854] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1048.512396][T14854] Call Trace:
[ 1048.515748][T14854]  <TASK>
[ 1048.518671][T14854]  dump_stack_lvl+0xd6/0x122
[ 1048.523245][T14854]  dump_stack+0x11/0x1b
[ 1048.527407][T14854]  dump_header+0x98/0x410
[ 1048.531745][T14854]  oom_kill_process+0x18e/0x4a0
[ 1048.536646][T14854]  out_of_memory+0x61d/0x8c0
[ 1048.541212][T14854]  memory_max_write+0x32c/0x3d0
[ 1048.546046][T14854]  ? memory_max_show+0x70/0x70
[ 1048.550786][T14854]  cgroup_file_write+0x161/0x300
[ 1048.555781][T14854]  ? __check_object_size+0x22a/0x2d0
[ 1048.561105][T14854]  ? cgroup_seqfile_stop+0x70/0x70
[ 1048.566242][T14854]  kernfs_fop_write_iter+0x1d3/0x2d0
[ 1048.571585][T14854]  vfs_write+0x7f5/0x950
[ 1048.575805][T14854]  ksys_write+0xd9/0x190
[ 1048.580024][T14854]  __x64_sys_write+0x3e/0x50
[ 1048.584591][T14854]  do_syscall_64+0x44/0xd0
[ 1048.588987][T14854]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1048.594976][T14854] RIP: 0033:0x7f8cc712a049
[ 1048.599388][T14854] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1048.618983][T14854] RSP: 002b:00007f8cc62a0168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1048.627368][T14854] RAX: ffffffffffffffda RBX: 00007f8cc723cf60 RCX: 00007f8cc712a049
[ 1048.635409][T14854] RDX: 0000000000000012 RSI: 0000000020000080 RDI: 000000000000000f
[ 1048.643373][T14854] RBP: 00007f8cc718408d R08: 0000000000000000 R09: 0000000000000000
[ 1048.651322][T14854] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1048.659271][T14854] R13: 00007fff26a0d88f R14: 00007f8cc62a0300 R15: 0000000000022000
[ 1048.667230][T14854]  </TASK>
[ 1048.670283][T14854] memory: usage 192kB, limit 4194300kB, failcnt 6785
[ 1048.676979][T14854] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1048.683811][T14854] Memory cgroup stats for /syz0:
[ 1048.685638][T14854] anon 40960
[ 1048.685638][T14854] file 81920
[ 1048.685638][T14854] kernel_stack 0
[ 1048.685638][T14854] pagetables 8192
[ 1048.685638][T14854] percpu 0
[ 1048.685638][T14854] sock 0
[ 1048.685638][T14854] vmalloc 0
[ 1048.685638][T14854] shmem 77824
[ 1048.685638][T14854] file_mapped 77824
[ 1048.685638][T14854] file_dirty 4096
[ 1048.685638][T14854] file_writeback 0
[ 1048.685638][T14854] swapcached 0
[ 1048.685638][T14854] inactive_anon 57344
[ 1048.685638][T14854] active_anon 61440
[ 1048.685638][T14854] inactive_file 0
[ 1048.685638][T14854] active_file 4096
[ 1048.685638][T14854] unevictable 0
[ 1048.685638][T14854] slab_reclaimable 15376
[ 1048.685638][T14854] slab_unreclaimable 16968
[ 1048.685638][T14854] slab 32344
[ 1048.685638][T14854] workingset_refault_anon 0
[ 1048.685638][T14854] workingset_refault_file 2
[ 1048.685638][T14854] workingset_activate_anon 0
[ 1048.685638][T14854] workingset_activate_file 0
[ 1048.685638][T14854] workingset_restore_anon 0
[ 1048.780398][T14854] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=14739,uid=0
[ 1048.795718][T14854] Memory cgroup out of memory: Killed process 14739 (syz-executor.0) total-vm:48480kB, anon-rss:380kB, file-rss:15288kB, shmem-rss:64kB, UID:0 pgtables:76kB oom_score_adj:0
11:29:24 executing program 2:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
socket$inet6(0xa, 0x0, 0x0)
setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x30, 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x0, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x4000000000000, 0x12)

11:29:24 executing program 5:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r1, &(0x7f0000000000), 0x10)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff000000000000000000030000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b', @ANYRES32], 0x50}}, 0x0)

11:29:24 executing program 4:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff000000000002eb0000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b'], 0x50}}, 0x0)

11:29:24 executing program 2:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
socket$inet6(0xa, 0x0, 0x0)
setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x30, 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x0, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0xf0ffffffffff7f, 0x12)

11:29:25 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0) (async)
mount(&(0x7f00000000c0)=@loop={'/dev/loop', 0x0}, &(0x7f0000000100)='./file0\x00', &(0x7f0000000240)='tracefs\x00', 0x1, &(0x7f0000000280)='(&\xe6,,%-}-\x00') (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r2, &(0x7f0000000080), 0x12)

11:29:25 executing program 0:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
r0 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) (async)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = openat$cgroup(r1, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r3 = openat$cgroup_int(r2, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r3, &(0x7f0000000080), 0x12)
r4 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_ADAPTATION_LAYER(r4, 0x84, 0x7, &(0x7f0000000040)={0x10b802b6}, 0x4) (async)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r4, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c) (async)
connect$inet6(r4, &(0x7f00000001c0)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) (async)
r5 = syz_clone3(&(0x7f0000001340)={0x40000000, &(0x7f00000000c0), &(0x7f0000000100), &(0x7f0000000240), {0x11}, &(0x7f0000000280)=""/4096, 0x1000, &(0x7f0000001280)=""/65, &(0x7f0000001300)=[0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0], 0x8}, 0x58)
fcntl$setown(r4, 0x8, r5)
write$cgroup_int(r0, &(0x7f00000013c0)=0x7, 0x12)

11:29:25 executing program 5:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r1, &(0x7f0000000000), 0x10)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff000000000000000000040000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b', @ANYRES32], 0x50}}, 0x0)

11:29:25 executing program 4:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff000000ffffffef0000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b'], 0x50}}, 0x0)

11:29:25 executing program 2:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
socket$inet6(0xa, 0x0, 0x0)
setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x30, 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x0, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x100000000000000, 0x12)

11:29:25 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x0, 0x0, 0x56)
socket$inet6(0xa, 0x80001, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x80000, 0x0)
symlink(&(0x7f00000000c0)='./file0/file0\x00', &(0x7f0000000100)='./file0\x00')
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080), 0x12)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
set_mempolicy(0x0, 0x0, 0x56) (async)
socket$inet6(0xa, 0x80001, 0x0) (async)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) (async)
openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0) (async)
socket(0x0, 0x80000, 0x0) (async)
symlink(&(0x7f00000000c0)='./file0/file0\x00', &(0x7f0000000100)='./file0\x00') (async)
openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0) (async)
write$cgroup_int(r2, &(0x7f0000000080), 0x12) (async)

[ 1049.287209][   T24] audit: type=1400 audit(1646911765.216:445): avc:  denied  { unmount } for  pid=6018 comm="syz-executor.1" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tracefs_t tclass=filesystem permissive=1
[ 1049.360143][T14903] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=0
[ 1049.369026][   T24] audit: type=1400 audit(1646911765.256:446): avc:  denied  { mount } for  pid=14894 comm="syz-executor.1" name="/" dev="tracefs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tracefs_t tclass=filesystem permissive=1
[ 1049.370142][T14903] CPU: 1 PID: 14903 Comm: syz-executor.3 Not tainted 5.17.0-rc7-syzkaller-00078-g3bf7edc84a9e-dirty #0
[ 1049.403590][T14903] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1049.413638][T14903] Call Trace:
[ 1049.416908][T14903]  <TASK>
[ 1049.419828][T14903]  dump_stack_lvl+0xd6/0x122
[ 1049.424425][T14903]  dump_stack+0x11/0x1b
[ 1049.428578][T14903]  dump_header+0x98/0x410
[ 1049.432909][T14903]  out_of_memory+0x65c/0x8c0
[ 1049.437509][T14903]  memory_max_write+0x32c/0x3d0
[ 1049.442359][T14903]  ? memory_max_show+0x70/0x70
[ 1049.447116][T14903]  cgroup_file_write+0x161/0x300
[ 1049.452044][T14903]  ? __check_object_size+0x22a/0x2d0
11:29:25 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
mount(&(0x7f00000000c0)=@loop={'/dev/loop', 0x0}, &(0x7f0000000100)='./file0\x00', &(0x7f0000000240)='tracefs\x00', 0x1, &(0x7f0000000280)='(&\xe6,,%-}-\x00')
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r2, &(0x7f0000000080), 0x12)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56) (async)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) (async)
openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0) (async)
openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0) (async)
mount(&(0x7f00000000c0)=@loop={'/dev/loop', 0x0}, &(0x7f0000000100)='./file0\x00', &(0x7f0000000240)='tracefs\x00', 0x1, &(0x7f0000000280)='(&\xe6,,%-}-\x00') (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) (async)
write$cgroup_int(r2, &(0x7f0000000080), 0x12) (async)

11:29:25 executing program 2:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
socket$inet6(0xa, 0x0, 0x0)
setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x30, 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x0, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x200000000000000, 0x12)

[ 1049.457345][T14903]  ? cgroup_seqfile_stop+0x70/0x70
[ 1049.462505][T14903]  kernfs_fop_write_iter+0x1d3/0x2d0
[ 1049.467788][T14903]  vfs_write+0x7f5/0x950
[ 1049.472083][T14903]  ksys_write+0xd9/0x190
[ 1049.476371][T14903]  __x64_sys_write+0x3e/0x50
[ 1049.481008][T14903]  do_syscall_64+0x44/0xd0
[ 1049.485418][T14903]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1049.491305][T14903] RIP: 0033:0x7f8cc712a049
[ 1049.495737][T14903] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1049.515367][T14903] RSP: 002b:00007f8cc62a0168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1049.523775][T14903] RAX: ffffffffffffffda RBX: 00007f8cc723cf60 RCX: 00007f8cc712a049
[ 1049.531840][T14903] RDX: 0000000000000012 RSI: 0000000020000080 RDI: 000000000000000f
[ 1049.539804][T14903] RBP: 00007f8cc718408d R08: 0000000000000000 R09: 0000000000000000
[ 1049.547821][T14903] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
11:29:25 executing program 5:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r1, &(0x7f0000000000), 0x10)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff000000000000000000050000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b', @ANYRES32], 0x50}}, 0x0)

[ 1049.555856][T14903] R13: 00007fff26a0d88f R14: 00007f8cc62a0300 R15: 0000000000022000
[ 1049.563876][T14903]  </TASK>
[ 1049.566989][T14903] memory: usage 104kB, limit 70368744177664kB, failcnt 6785
[ 1049.574312][T14903] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1049.581170][T14903] Memory cgroup stats for /syz0:
[ 1049.624866][T14903] anon 0
[ 1049.624866][T14903] file 81920
[ 1049.624866][T14903] kernel_stack 0
[ 1049.624866][T14903] pagetables 0
[ 1049.624866][T14903] percpu 0
[ 1049.624866][T14903] sock 0
[ 1049.624866][T14903] vmalloc 0
[ 1049.624866][T14903] shmem 77824
[ 1049.624866][T14903] file_mapped 77824
[ 1049.624866][T14903] file_dirty 4096
[ 1049.624866][T14903] file_writeback 0
[ 1049.624866][T14903] swapcached 0
[ 1049.624866][T14903] inactive_anon 16384
[ 1049.624866][T14903] active_anon 61440
[ 1049.624866][T14903] inactive_file 0
[ 1049.624866][T14903] active_file 4096
[ 1049.624866][T14903] unevictable 0
[ 1049.624866][T14903] slab_reclaimable 5632
[ 1049.624866][T14903] slab_unreclaimable 16136
[ 1049.624866][T14903] slab 21768
[ 1049.624866][T14903] workingset_refault_anon 0
[ 1049.624866][T14903] workingset_refault_file 2
[ 1049.624866][T14903] workingset_activate_anon 0
[ 1049.624866][T14903] workingset_activate_file 0
[ 1049.624866][T14903] workingset_restore_anon 0
[ 1049.718864][T14903] Out of memory and no killable processes...
11:29:25 executing program 2:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
socket$inet6(0xa, 0x0, 0x0)
setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x30, 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x0, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x300000000000000, 0x12)

11:29:25 executing program 4:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff000000fffffff00000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b'], 0x50}}, 0x0)

11:29:25 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x0, 0x0, 0x56) (async)
socket$inet6(0xa, 0x80001, 0x0) (async)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x80000, 0x0)
symlink(&(0x7f00000000c0)='./file0/file0\x00', &(0x7f0000000100)='./file0\x00') (async)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080), 0x12)

[ 1049.727392][   T24] audit: type=1400 audit(1646911765.666:447): avc:  denied  { read } for  pid=14909 comm="syz-executor.1" name="/" dev="tracefs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tracefs_t tclass=dir permissive=1
[ 1049.749365][   T24] audit: type=1400 audit(1646911765.666:448): avc:  denied  { open } for  pid=14909 comm="syz-executor.1" path="/root/syzkaller-testdir3834539907/syzkaller.pO1Qn2/499/file0" dev="tracefs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tracefs_t tclass=dir permissive=1
11:29:25 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000100)='pipefs\x00', 0x840804, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r2, &(0x7f0000000080), 0x12)

[ 1049.845184][T14944] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=0
[ 1049.855167][T14944] CPU: 0 PID: 14944 Comm: syz-executor.3 Not tainted 5.17.0-rc7-syzkaller-00078-g3bf7edc84a9e-dirty #0
[ 1049.866180][T14944] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1049.876229][T14944] Call Trace:
[ 1049.879497][T14944]  <TASK>
[ 1049.882422][T14944]  dump_stack_lvl+0xd6/0x122
[ 1049.887011][T14944]  dump_stack+0x11/0x1b
[ 1049.891174][T14944]  dump_header+0x98/0x410
[ 1049.895502][T14944]  out_of_memory+0x65c/0x8c0
[ 1049.900085][T14944]  ? _raw_spin_unlock_irqrestore+0x3d/0x60
[ 1049.905895][T14944]  memory_max_write+0x32c/0x3d0
[ 1049.910744][T14944]  ? memory_max_show+0x70/0x70
[ 1049.915580][T14944]  cgroup_file_write+0x161/0x300
[ 1049.920564][T14944]  ? __check_object_size+0x22a/0x2d0
[ 1049.925953][T14944]  ? cgroup_seqfile_stop+0x70/0x70
[ 1049.931125][T14944]  kernfs_fop_write_iter+0x1d3/0x2d0
[ 1049.936484][T14944]  vfs_write+0x7f5/0x950
[ 1049.940796][T14944]  ksys_write+0xd9/0x190
[ 1049.945060][T14944]  __x64_sys_write+0x3e/0x50
[ 1049.949644][T14944]  do_syscall_64+0x44/0xd0
[ 1049.954113][T14944]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1049.960004][T14944] RIP: 0033:0x7f8cc712a049
[ 1049.964408][T14944] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1049.984076][T14944] RSP: 002b:00007f8cc627f168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1049.992482][T14944] RAX: ffffffffffffffda RBX: 00007f8cc723d030 RCX: 00007f8cc712a049
[ 1050.000494][T14944] RDX: 0000000000000012 RSI: 0000000020000080 RDI: 000000000000000f
[ 1050.008457][T14944] RBP: 00007f8cc718408d R08: 0000000000000000 R09: 0000000000000000
[ 1050.016421][T14944] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1050.024384][T14944] R13: 00007fff26a0d88f R14: 00007f8cc627f300 R15: 0000000000022000
[ 1050.032351][T14944]  </TASK>
[ 1050.035464][T14944] memory: usage 104kB, limit 211106232532992kB, failcnt 6785
[ 1050.042861][T14944] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1050.049723][T14944] Memory cgroup stats for /syz0:
[ 1050.063000][T14944] anon 0
[ 1050.063000][T14944] file 81920
[ 1050.063000][T14944] kernel_stack 0
[ 1050.063000][T14944] pagetables 0
[ 1050.063000][T14944] percpu 0
[ 1050.063000][T14944] sock 0
[ 1050.063000][T14944] vmalloc 0
[ 1050.063000][T14944] shmem 77824
[ 1050.063000][T14944] file_mapped 77824
[ 1050.063000][T14944] file_dirty 4096
[ 1050.063000][T14944] file_writeback 0
[ 1050.063000][T14944] swapcached 0
[ 1050.063000][T14944] inactive_anon 16384
[ 1050.063000][T14944] active_anon 61440
[ 1050.063000][T14944] inactive_file 0
[ 1050.063000][T14944] active_file 4096
[ 1050.063000][T14944] unevictable 0
[ 1050.063000][T14944] slab_reclaimable 5632
[ 1050.063000][T14944] slab_unreclaimable 16136
[ 1050.063000][T14944] slab 21768
[ 1050.063000][T14944] workingset_refault_anon 0
[ 1050.063000][T14944] workingset_refault_file 2
[ 1050.063000][T14944] workingset_activate_anon 0
[ 1050.063000][T14944] workingset_activate_file 0
[ 1050.063000][T14944] workingset_restore_anon 0
[ 1050.157040][T14944] Out of memory and no killable processes...
[ 1050.257885][T22345] device hsr_slave_0 left promiscuous mode
[ 1050.263850][T22345] device hsr_slave_1 left promiscuous mode
[ 1050.271051][T22345] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1050.278450][T22345] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1050.286623][T22345] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1050.294192][T22345] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1050.301819][T22345] device bridge_slave_1 left promiscuous mode
[ 1050.307938][T22345] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1050.315579][T22345] device bridge_slave_0 left promiscuous mode
[ 1050.321764][T22345] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1050.331062][T22345] device veth1_macvtap left promiscuous mode
[ 1050.337127][T22345] device veth0_macvtap left promiscuous mode
[ 1050.343299][T22345] device veth1_vlan left promiscuous mode
[ 1050.349106][T22345] device veth0_vlan left promiscuous mode
[ 1050.429524][T22345] team0 (unregistering): Port device team_slave_1 removed
[ 1050.439236][T22345] team0 (unregistering): Port device team_slave_0 removed
[ 1050.448880][T22345] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1050.459770][T22345] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1050.488335][T22345] bond0 (unregistering): Released all slaves
[ 1051.258342][T14956] chnl_net:caif_netlink_parms(): no params data found
[ 1051.288488][T14956] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1051.295555][T14956] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1051.303097][T14956] device bridge_slave_0 entered promiscuous mode
[ 1051.310202][T14956] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1051.317299][T14956] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1051.324742][T14956] device bridge_slave_1 entered promiscuous mode
[ 1051.339580][T14956] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1051.349603][T14956] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1051.365487][T14956] team0: Port device team_slave_0 added
[ 1051.371733][T14956] team0: Port device team_slave_1 added
[ 1051.384654][T14956] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1051.391597][T14956] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1051.417502][T14956] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1051.429216][T14956] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1051.436130][T14956] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1051.462044][T14956] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1051.482760][T14956] device hsr_slave_0 entered promiscuous mode
[ 1051.489182][T14956] device hsr_slave_1 entered promiscuous mode
[ 1051.535470][T14956] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1051.542574][T14956] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1051.549864][T14956] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1051.556900][T14956] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1051.582954][T14956] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1051.593562][ T1928] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1051.601704][ T1928] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1051.610833][ T1928] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1051.621574][T14956] 8021q: adding VLAN 0 to HW filter on device team0
[ 1051.631126][T12912] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1051.639418][T12912] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1051.646490][T12912] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1051.655680][ T6846] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1051.665107][ T6846] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1051.672162][ T6846] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1051.690589][T12912] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 1051.700091][T12912] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 1051.708742][T12912] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1051.717766][T12912] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 1051.727796][ T6849] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1051.737398][T14956] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 1051.749088][ T6846] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 1051.756637][ T6846] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 1051.766082][T14956] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1051.840817][ T6846] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1051.880096][T14956] device veth0_vlan entered promiscuous mode
[ 1051.886692][T12912] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1051.895222][T12912] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1051.902870][T12912] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1051.912480][T14956] device veth1_vlan entered promiscuous mode
[ 1051.924848][ T6846] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 1051.932715][ T6846] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 1051.941634][ T6846] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1051.951134][T14956] device veth0_macvtap entered promiscuous mode
[ 1051.959260][T14956] device veth1_macvtap entered promiscuous mode
[ 1051.969742][T14956] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 1051.980215][T14956] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1051.990045][T14956] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 1052.000442][T14956] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1052.010247][T14956] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 1052.020670][T14956] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1052.030461][T14956] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 1052.040895][T14956] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1052.050721][T14956] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 1052.061136][T14956] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1052.072436][T14956] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1052.081597][ T6849] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1052.092624][ T6849] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 1052.102647][T14956] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 1052.113112][T14956] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1052.122917][T14956] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 1052.133471][T14956] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1052.143417][T14956] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 1052.153872][T14956] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1052.163670][T14956] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 1052.174074][T14956] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1052.183880][T14956] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 1052.194281][T14956] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1052.205502][T14956] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1052.215333][ T6849] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 1052.255128][T14991] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1052.265356][T14991] CPU: 1 PID: 14991 Comm: syz-executor.0 Not tainted 5.17.0-rc7-syzkaller-00078-g3bf7edc84a9e-dirty #0
[ 1052.276353][T14991] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1052.286398][T14991] Call Trace:
[ 1052.289659][T14991]  <TASK>
[ 1052.292635][T14991]  dump_stack_lvl+0xd6/0x122
[ 1052.297205][T14991]  dump_stack+0x11/0x1b
[ 1052.301340][T14991]  dump_header+0x98/0x410
[ 1052.305798][T14991]  oom_kill_process+0x18e/0x4a0
[ 1052.310736][T14991]  out_of_memory+0x61d/0x8c0
[ 1052.315305][T14991]  memory_max_write+0x32c/0x3d0
[ 1052.320204][T14991]  ? memory_max_show+0x70/0x70
[ 1052.325015][T14991]  cgroup_file_write+0x161/0x300
[ 1052.329946][T14991]  ? __check_object_size+0x22a/0x2d0
[ 1052.335214][T14991]  ? cgroup_seqfile_stop+0x70/0x70
[ 1052.340304][T14991]  kernfs_fop_write_iter+0x1d3/0x2d0
[ 1052.345566][T14991]  vfs_write+0x7f5/0x950
[ 1052.349790][T14991]  ksys_write+0xd9/0x190
[ 1052.354009][T14991]  __x64_sys_write+0x3e/0x50
[ 1052.358577][T14991]  do_syscall_64+0x44/0xd0
[ 1052.362967][T14991]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1052.368839][T14991] RIP: 0033:0x7fc166b83049
[ 1052.373230][T14991] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1052.392836][T14991] RSP: 002b:00007fc165cf9168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1052.401223][T14991] RAX: ffffffffffffffda RBX: 00007fc166c95f60 RCX: 00007fc166b83049
[ 1052.409175][T14991] RDX: 0000000000000012 RSI: 0000000020000080 RDI: 0000000000000005
[ 1052.417269][T14991] RBP: 00007fc166bdd08d R08: 0000000000000000 R09: 0000000000000000
[ 1052.425227][T14991] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1052.433176][T14991] R13: 00007fffdbd680cf R14: 00007fc165cf9300 R15: 0000000000022000
[ 1052.441125][T14991]  </TASK>
[ 1052.444143][T14991] memory: usage 424kB, limit 0kB, failcnt 6785
[ 1052.450300][T14991] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1052.457151][T14991] Memory cgroup stats for /syz0:
[ 1052.457475][T14991] anon 90112
[ 1052.457475][T14991] file 81920
[ 1052.457475][T14991] kernel_stack 65536
[ 1052.457475][T14991] pagetables 90112
[ 1052.457475][T14991] percpu 0
[ 1052.457475][T14991] sock 0
[ 1052.457475][T14991] vmalloc 0
[ 1052.457475][T14991] shmem 77824
[ 1052.457475][T14991] file_mapped 77824
[ 1052.457475][T14991] file_dirty 4096
[ 1052.457475][T14991] file_writeback 0
[ 1052.457475][T14991] swapcached 0
[ 1052.457475][T14991] inactive_anon 106496
[ 1052.457475][T14991] active_anon 61440
[ 1052.457475][T14991] inactive_file 4096
[ 1052.457475][T14991] active_file 0
[ 1052.457475][T14991] unevictable 0
[ 1052.457475][T14991] slab_reclaimable 22472
[ 1052.457475][T14991] slab_unreclaimable 56912
[ 1052.457475][T14991] slab 79384
[ 1052.457475][T14991] workingset_refault_anon 0
[ 1052.457475][T14991] workingset_refault_file 2
[ 1052.457475][T14991] workingset_activate_anon 0
[ 1052.457475][T14991] workingset_activate_file 0
[ 1052.457475][T14991] workingset_restore_anon 0
11:29:28 executing program 0:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
r0 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) (async)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = openat$cgroup(r1, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r3 = openat$cgroup_int(r2, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r3, &(0x7f0000000080), 0x12)
r4 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_ADAPTATION_LAYER(r4, 0x84, 0x7, &(0x7f0000000040)={0x10b802b6}, 0x4) (async)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r4, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c) (async)
connect$inet6(r4, &(0x7f00000001c0)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r5 = syz_clone3(&(0x7f0000001340)={0x40000000, &(0x7f00000000c0), &(0x7f0000000100), &(0x7f0000000240), {0x11}, &(0x7f0000000280)=""/4096, 0x1000, &(0x7f0000001280)=""/65, &(0x7f0000001300)=[0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0], 0x8}, 0x58)
fcntl$setown(r4, 0x8, r5) (async)
write$cgroup_int(r0, &(0x7f00000013c0)=0x7, 0x12)

11:29:28 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000100)='pipefs\x00', 0x840804, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r2, &(0x7f0000000080), 0x12)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000100)='pipefs\x00', 0x840804, 0x0) (async)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56) (async)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) (async)
openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0) (async)
openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) (async)
write$cgroup_int(r2, &(0x7f0000000080), 0x12) (async)

11:29:28 executing program 5:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r1, &(0x7f0000000000), 0x10)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff000000000000000000060000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b', @ANYRES32], 0x50}}, 0x0)

11:29:28 executing program 2:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
socket$inet6(0xa, 0x0, 0x0)
setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x30, 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x0, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x400000000000000, 0x12)

11:29:28 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
r0 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='hostfs\x00', 0x0, 0x0)
mount(&(0x7f0000000100)=@nbd={'/dev/nbd', 0x0}, &(0x7f0000000240)='./file0\x00', &(0x7f0000000280)='coda\x00', 0x2d0040, &(0x7f00000002c0)='memory.max\x00')
set_mempolicy(0x0, 0x0, 0x56)
socket$inet6(0xa, 0x80001, 0x0)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = openat$cgroup(r1, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f00000000c0)='./cgroup/syz0\x00', 0x200002, 0x0)
socket(0x0, 0x80000, 0x0)
sendmsg$inet6(r0, &(0x7f0000001c40)={&(0x7f0000000300)={0xa, 0x4e20, 0x9, @mcast2}, 0x1c, &(0x7f0000001900)=[{&(0x7f0000000340)="9c40fb5b2dfc89d68cae627e74eb0baa647c5ad614a6c2dabe4f55c4fbe4793a99f84a0f7043a2a2dcc80be090555f07701af5bac82fb1709589919bc979e0345f61e81b8c1870050f00f8c3a744dff716ba1a9b49eac26431fca77956f7a1352efece405aaa5eec967ccb334ae8e45c77775312b344e242a6524936d7f2093bf3d47dfc601ccc86cd47b4d50d650590ba920dd2c0e3c19b90e82adc4d7ebc3ea57ee368aa9bfcf90481fd7ca9c94ec542d5b3992aee09a5554dfccb62c27a7547c906f84174ed05f45e380c0597cdaefab7c88c1d0b5bf75df654d00cdf06c327b4a38955252b84fac7c6de12205cd08ceff3141e", 0xf5}, {&(0x7f0000000440)="b726d759dd2ac2d4cb3b6ae6f33b2703658a356d05254fd7d5a81f7b77b76ac914dc8edd4cb51be8e583919684b25a0c9f5d15b1aa936fe7c169c9813ca0432b4a3331b78230fd2ff3fa913900b118696d90f5384e6171bef66af10d8013c6a58ff0ba1a75cc0e22f2343836393f9104aea4af63f48c4dbeff8b73c5b5a04441ddf580159f06", 0x86}, {&(0x7f0000000500)="9951cf81b3c8e34e3e03c59d98e76f8e7bb259d163058f634e35060d005d2c79684e43d00666b957bbf6034885424c57d5c02faf30143ec9f3240c214742c9ec4169963e8aab3844d02375700fb226db8f19a3a7f5", 0x55}, {&(0x7f0000000580)="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", 0x1000}, {&(0x7f0000001580)="0a0b34584739112a4fcb06713511d7fb2e18bce6c39e83f4e426784a7a957f6dd17119c4d2d783cbc0e4c12b824807a05f26dd2ee216c505e2939606672681510d550a5aaf7b9769e4089d67061812c1fd3be7b55a9626f608ef91e37c528b7d14c0147a46d5b31d94e6d97d2352f4fcc236367da51e2ba8a62a24fded9b2d27342f32f6ac3b52773b0d446d559b50bdff86dcd7bbf3f2caa2ef3320b5625ec6df9a2cc57a83cadc42729ed15918e975c41def06413d", 0xb6}, {&(0x7f0000001640)="bba32f705dc07377112b02fd78fd43ab055cf3f1dc1d4f2db0c27f7faeb423cfc17f11d4db9cfcf9f9741741310b604205ae7059c58343760550ee85abd8b4cd2fa0c428d446c2c5e167d16435de9375dc8542ec0e19fc0f491a334af8d9d38ae029e9fda2071fb95faaa3c5c882de0ce6e385105247265fa27e7d2550c71ebc97405632407355a41726c0e35aa9945248487a3c2de5536c726109aacb3f381b6d6366e5794fc705564ec608f509fae49f50bf59ca2cd9f4e4df59b317c4958fd0e08e886c1566995e37b883c67f12d13aab7798c4de7e8d1768ba77016eba", 0xdf}, {&(0x7f0000001740)="140147eeb82d7e1f5e478f45008cb40e7a56bacc736fa7c889cb23a0e159972faca65f3becab6e00c1c91211f5abcdef9e41f65ae0a6e614a5a0f2911c2306a473dc73439abd9d60bc5542743a45b19fe4ed9462fef96d96c13edd59f48f974c9bd5e95ce8a84955c8b524bc872665032d21623eced517b6b76ec3b1d1283534edb2e4977bc4a3", 0x87}, {&(0x7f0000001800)="77b058deec20123f5324cef8358e5d5b70cdd0d43c89041f047136ba2e12fc32c55cf2a438764c418badbc59a9200919d9271d792f3c9e99ffe4f05ea0caa943bcf68f0321de9977bd757ddfc23d11648ce9ee215ceaca55d938fe4b0da9b23136e3847951fc62d68f0c758d778d1acf49cc62a56740129d1916ecd4977117360f6a52c2ec388d2d1308ecf3153379f46e864eef1d978bcce137e13384210e5e7f4135c7331552ff9b5cfe23e2eba5e0f4bab720cfcbdc3a6e1d8e10d9ddc1e1f369cd2a6873fa0e2c3142209a741caf470c172a78d255474c5b42992633114409", 0xe1}], 0x8, &(0x7f0000001980)=[@hoplimit={{0x14, 0x29, 0x34, 0x8}}, @rthdrdstopts={{0x50, 0x29, 0x37, {0x2b, 0x7, '\x00', [@pad1, @ra={0x5, 0x2, 0x1}, @jumbo={0xc2, 0x4, 0x5}, @generic={0x80, 0x29, "26cacf34c52c8723e958959b80195efef5eddc501ec76c4ccf8f66d10fd682ade3caa247e73b0b1d97"}]}}}, @dstopts={{0x98, 0x29, 0x37, {0x2f, 0xf, '\x00', [@hao={0xc9, 0x10, @private2={0xfc, 0x2, '\x00', 0x1}}, @hao={0xc9, 0x10, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}, @jumbo={0xc2, 0x4, 0x5}, @calipso={0x7, 0x18, {0x1, 0x4, 0x0, 0x5, [0xfffffffffffff000, 0x0]}}, @jumbo={0xc2, 0x4, 0x6}, @generic={0xe9, 0x1b, "b9a82ea34ae5b18cb438717578dd1eabede27c40836c825e36a01c"}, @ra, @hao={0xc9, 0x10, @local}]}}}, @rthdrdstopts={{0xb8, 0x29, 0x37, {0x2e, 0x13, '\x00', [@hao={0xc9, 0x10, @private2={0xfc, 0x2, '\x00', 0x1}}, @hao={0xc9, 0x10, @mcast1}, @calipso={0x7, 0x10, {0x0, 0x2, 0x0, 0x1, [0x100]}}, @ra={0x5, 0x2, 0x9}, @calipso={0x7, 0x58, {0x0, 0x14, 0x7, 0x0, [0x7, 0x4, 0x80000000, 0x2400, 0x8, 0x8, 0x0, 0x6, 0x1000, 0xe4]}}, @padn, @ra={0x5, 0x2, 0x1}]}}}, @rthdr_2292={{0x88, 0x29, 0x39, {0x6, 0xe, 0x1, 0x4, 0x0, [@loopback, @loopback, @mcast1, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @mcast2, @local, @remote]}}}, @tclass={{0x14, 0x29, 0x43, 0x80000001}}, @tclass={{0x14, 0x29, 0x43, 0x9}}, @dontfrag={{0x14, 0x29, 0x3e, 0xe8}}], 0x288}, 0x60004)
r3 = openat$cgroup_int(r2, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r3, &(0x7f0000000080), 0x12)
r4 = syz_open_dev$tty20(0xc, 0x4, 0x0)
r5 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_ADAPTATION_LAYER(r5, 0x84, 0x7, &(0x7f0000000040)={0x10b802b6}, 0x4)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r5, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
connect$inet6(r5, &(0x7f00000001c0)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendfile(r4, r5, 0x0, 0x401)

11:29:28 executing program 4:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff000000000002f10000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b'], 0x50}}, 0x0)

[ 1052.552775][T14991] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=14990,uid=0
[ 1052.568032][T14991] Memory cgroup out of memory: Killed process 14990 (syz-executor.0) total-vm:49008kB, anon-rss:364kB, file-rss:14336kB, shmem-rss:0kB, UID:0 pgtables:92kB oom_score_adj:1000
[ 1052.588724][   T26] oom_reaper: reaped process 14990 (syz-executor.0), now anon-rss:0kB, file-rss:14336kB, shmem-rss:4kB
[ 1052.623945][T14956] syz-executor.0 invoked oom-killer: gfp_mask=0xdc0(GFP_KERNEL|__GFP_ZERO), order=0, oom_score_adj=0
[ 1052.634846][T14956] CPU: 0 PID: 14956 Comm: syz-executor.0 Not tainted 5.17.0-rc7-syzkaller-00078-g3bf7edc84a9e-dirty #0
[ 1052.645938][T14956] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1052.656066][T14956] Call Trace:
[ 1052.659333][T14956]  <TASK>
[ 1052.662253][T14956]  dump_stack_lvl+0xd6/0x122
[ 1052.666910][T14956]  dump_stack+0x11/0x1b
11:29:28 executing program 2:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
socket$inet6(0xa, 0x0, 0x0)
setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x30, 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x0, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x700000000000000, 0x12)

11:29:28 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000100)='pipefs\x00', 0x840804, 0x0) (async)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56) (async)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) (async)
write$cgroup_int(r2, &(0x7f0000000080), 0x12)

11:29:28 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = creat(&(0x7f00000000c0)='./file0\x00', 0x204)
ioctl$FAT_IOCTL_GET_VOLUME_ID(r1, 0x80047213, &(0x7f0000000100))
r2 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r3 = openat$cgroup_int(r2, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r3, &(0x7f0000000080), 0x12)

[ 1052.671100][T14956]  dump_header+0x98/0x410
[ 1052.675425][T14956]  oom_kill_process+0x18e/0x4a0
[ 1052.680271][T14956]  out_of_memory+0x61d/0x8c0
[ 1052.684856][T14956]  ? mem_cgroup_iter+0x29b/0x370
[ 1052.689869][T14956]  mem_cgroup_oom+0x484/0x520
[ 1052.694546][T14956]  try_charge_memcg+0x75c/0xa50
[ 1052.699401][T14956]  ? tracing_record_taskinfo+0x77/0x1b0
[ 1052.704994][T14956]  ? __rcu_read_unlock+0x5c/0x290
[ 1052.710017][T14956]  ? ttwu_do_wakeup+0x11f/0x140
[ 1052.714871][T14956]  obj_cgroup_charge_pages+0xac/0x140
[ 1052.720219][T14956]  obj_cgroup_charge+0xe2/0x1b0
[ 1052.725090][T14956]  ? __alloc_file+0x2e/0x1a0
[ 1052.729673][T14956]  kmem_cache_alloc+0x96/0x320
[ 1052.734514][T14956]  __alloc_file+0x2e/0x1a0
[ 1052.738915][T14956]  alloc_empty_file+0xcd/0x1c0
[ 1052.743658][T14956]  path_openat+0x6a/0x1f30
[ 1052.748053][T14956]  ? __rcu_read_unlock+0x5c/0x290
[ 1052.753057][T14956]  ? lockref_get_not_dead+0xf2/0x1a0
[ 1052.758393][T14956]  ? __rcu_read_unlock+0x5c/0x290
[ 1052.763480][T14956]  ? avc_has_perm_noaudit+0x1c0/0x270
[ 1052.768835][T14956]  do_filp_open+0x105/0x220
[ 1052.773413][T14956]  do_sys_openat2+0xb5/0x2b0
[ 1052.778050][T14956]  __x64_sys_openat+0xef/0x110
[ 1052.782793][T14956]  do_syscall_64+0x44/0xd0
[ 1052.787188][T14956]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1052.793063][T14956] RIP: 0033:0x7fc166b82b88
[ 1052.797455][T14956] Code: 24 18 31 c0 41 83 e2 40 75 40 89 f0 25 00 00 41 00 3d 00 00 41 00 74 32 44 89 c2 4c 89 ce bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 40 48 8b 4c 24 18 64 48 2b 0c 25 28 00 00 00
[ 1052.817044][T14956] RSP: 002b:00007fffdbd671c0 EFLAGS: 00000287 ORIG_RAX: 0000000000000101
[ 1052.825431][T14956] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007fc166b82b88
[ 1052.833380][T14956] RDX: 0000000000090800 RSI: 00007fffdbd683b0 RDI: 00000000ffffff9c
[ 1052.841402][T14956] RBP: 00007fffdbd6838c R08: 0000000000090800 R09: 00007fffdbd683b0
[ 1052.849375][T14956] R10: 0000000000000000 R11: 0000000000000287 R12: 00007fc166bdc1ea
[ 1052.857326][T14956] R13: 00007fffdbd683b0 R14: 0000000000000007 R15: 00007fffdbd683f0
[ 1052.865353][T14956]  </TASK>
[ 1052.868560][T14956] memory: usage 168kB, limit 0kB, failcnt 6842
[ 1052.874700][T14956] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1052.881558][T14956] Memory cgroup stats for /syz0:
[ 1052.884114][T14956] anon 24576
[ 1052.884114][T14956] file 81920
[ 1052.884114][T14956] kernel_stack 0
[ 1052.884114][T14956] pagetables 8192
[ 1052.884114][T14956] percpu 0
[ 1052.884114][T14956] sock 0
[ 1052.884114][T14956] vmalloc 0
[ 1052.884114][T14956] shmem 77824
[ 1052.884114][T14956] file_mapped 77824
[ 1052.884114][T14956] file_dirty 4096
[ 1052.884114][T14956] file_writeback 0
[ 1052.884114][T14956] swapcached 0
[ 1052.884114][T14956] inactive_anon 40960
[ 1052.884114][T14956] active_anon 61440
[ 1052.884114][T14956] inactive_file 0
[ 1052.884114][T14956] active_file 4096
[ 1052.884114][T14956] unevictable 0
[ 1052.884114][T14956] slab_reclaimable 10888
[ 1052.884114][T14956] slab_unreclaimable 17736
[ 1052.884114][T14956] slab 28624
[ 1052.884114][T14956] workingset_refault_anon 0
[ 1052.884114][T14956] workingset_refault_file 2
[ 1052.884114][T14956] workingset_activate_anon 0
[ 1052.884114][T14956] workingset_activate_file 0
[ 1052.884114][T14956] workingset_restore_anon 0
[ 1052.978914][T14956] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=14956,uid=0
[ 1052.994193][T14956] Memory cgroup out of memory: Killed process 14956 (syz-executor.0) total-vm:48480kB, anon-rss:360kB, file-rss:14336kB, shmem-rss:0kB, UID:0 pgtables:80kB oom_score_adj:0
[ 1053.012015][   T26] oom_reaper: reaped process 14956 (syz-executor.0), now anon-rss:0kB, file-rss:13472kB, shmem-rss:0kB
11:29:29 executing program 2:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
socket$inet6(0xa, 0x0, 0x0)
setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x30, 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x0, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0xa00000000000000, 0x12)

[ 1053.017689][T15023] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1053.033310][T15023] CPU: 0 PID: 15023 Comm: syz-executor.1 Not tainted 5.17.0-rc7-syzkaller-00078-g3bf7edc84a9e-dirty #0
[ 1053.044346][T15023] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1053.054392][T15023] Call Trace:
[ 1053.057718][T15023]  <TASK>
[ 1053.060642][T15023]  dump_stack_lvl+0xd6/0x122
[ 1053.065262][T15023]  dump_stack+0x11/0x1b
[ 1053.069414][T15023]  dump_header+0x98/0x410
[ 1053.073721][T15023]  out_of_memory+0x65c/0x8c0
[ 1053.078325][T15023]  memory_max_write+0x32c/0x3d0
[ 1053.083249][T15023]  ? memory_max_show+0x70/0x70
[ 1053.087991][T15023]  cgroup_file_write+0x161/0x300
[ 1053.092952][T15023]  ? __check_object_size+0x22a/0x2d0
[ 1053.098328][T15023]  ? cgroup_seqfile_stop+0x70/0x70
[ 1053.103605][T15023]  kernfs_fop_write_iter+0x1d3/0x2d0
[ 1053.108930][T15023]  vfs_write+0x7f5/0x950
[ 1053.113170][T15023]  ksys_write+0xd9/0x190
[ 1053.117411][T15023]  __x64_sys_write+0x3e/0x50
[ 1053.122068][T15023]  do_syscall_64+0x44/0xd0
[ 1053.126491][T15023]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1053.132421][T15023] RIP: 0033:0x7fd6559cc049
[ 1053.136825][T15023] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1053.156427][T15023] RSP: 002b:00007fd654b42168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1053.164889][T15023] RAX: ffffffffffffffda RBX: 00007fd655adef60 RCX: 00007fd6559cc049
[ 1053.172857][T15023] RDX: 0000000000000012 RSI: 0000000020000080 RDI: 0000000000000006
[ 1053.180806][T15023] RBP: 00007fd655a2608d R08: 0000000000000000 R09: 0000000000000000
[ 1053.188766][T15023] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1053.196758][T15023] R13: 00007ffda0be2f9f R14: 00007fd654b42300 R15: 0000000000022000
[ 1053.204728][T15023]  </TASK>
[ 1053.207839][T15023] memory: usage 112kB, limit 492581209243648kB, failcnt 6859
[ 1053.215194][T15023] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
11:29:29 executing program 2:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
socket$inet6(0xa, 0x0, 0x0)
setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x30, 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x0, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0xfffffffffffffff, 0x12)

[ 1053.222079][T15023] Memory cgroup stats for /syz0:
[ 1053.227361][T15023] anon 0
[ 1053.227361][T15023] file 81920
[ 1053.227361][T15023] kernel_stack 0
[ 1053.227361][T15023] pagetables 0
[ 1053.227361][T15023] percpu 0
[ 1053.227361][T15023] sock 0
[ 1053.227361][T15023] vmalloc 0
[ 1053.227361][T15023] shmem 77824
[ 1053.227361][T15023] file_mapped 77824
[ 1053.227361][T15023] file_dirty 4096
[ 1053.227361][T15023] file_writeback 0
[ 1053.227361][T15023] swapcached 0
[ 1053.227361][T15023] inactive_anon 16384
[ 1053.227361][T15023] active_anon 61440
11:29:29 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = creat(&(0x7f00000000c0)='./file0\x00', 0x204)
ioctl$FAT_IOCTL_GET_VOLUME_ID(r1, 0x80047213, &(0x7f0000000100)) (async)
r2 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r3 = openat$cgroup_int(r2, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r3, &(0x7f0000000080), 0x12)

[ 1053.227361][T15023] inactive_file 0
[ 1053.227361][T15023] active_file 4096
[ 1053.227361][T15023] unevictable 0
[ 1053.227361][T15023] slab_reclaimable 9128
[ 1053.227361][T15023] slab_unreclaimable 17736
[ 1053.227361][T15023] slab 26864
[ 1053.227361][T15023] workingset_refault_anon 0
[ 1053.227361][T15023] workingset_refault_file 2
[ 1053.227361][T15023] workingset_activate_anon 0
[ 1053.227361][T15023] workingset_activate_file 0
[ 1053.227361][T15023] workingset_restore_anon 0
[ 1053.321456][T15023] Out of memory and no killable processes...
11:29:29 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
setsockopt$sock_attach_bpf(r0, 0x1, 0x32, &(0x7f0000000240), 0x4)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
r1 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(r1, 0xc0189378, &(0x7f0000000280)={{0x1, 0x1, 0x18, r0, {<r2=>r0}}, './file0\x00'})
openat$cgroup_int(r2, &(0x7f00000002c0)='hugetlb.2MB.rsvd.failcnt\x00', 0x2, 0x0)
r3 = openat$cgroup_int(0xffffffffffffffff, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
mount$cgroup(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100), 0x800000, &(0x7f0000000200)={[{@none}], [{@smackfstransmute={'smackfstransmute', 0x3d, 'cgroup2\x00'}}, {@smackfsfloor={'smackfsfloor', 0x3d, 'cgroup2\x00'}}]})
write$cgroup_int(r3, &(0x7f0000000080), 0x12)

11:29:29 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = creat(&(0x7f00000000c0)='./file0\x00', 0x204)
ioctl$FAT_IOCTL_GET_VOLUME_ID(r1, 0x80047213, &(0x7f0000000100)) (async)
r2 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r3 = openat$cgroup_int(r2, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) (async)
write$cgroup_int(r3, &(0x7f0000000080), 0x12)

11:29:29 executing program 2:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
socket$inet6(0xa, 0x0, 0x0)
setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x30, 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x0, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x1000000000000000, 0x12)

11:29:29 executing program 4:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff000000000000fa0000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b'], 0x50}}, 0x0)

11:29:29 executing program 5:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r1, &(0x7f0000000000), 0x10)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff000000000000000001060000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b', @ANYRES32], 0x50}}, 0x0)

11:29:29 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
r0 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='hostfs\x00', 0x0, 0x0) (async)
mount(&(0x7f0000000100)=@nbd={'/dev/nbd', 0x0}, &(0x7f0000000240)='./file0\x00', &(0x7f0000000280)='coda\x00', 0x2d0040, &(0x7f00000002c0)='memory.max\x00')
set_mempolicy(0x0, 0x0, 0x56) (async)
socket$inet6(0xa, 0x80001, 0x0) (async)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = openat$cgroup(r1, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f00000000c0)='./cgroup/syz0\x00', 0x200002, 0x0) (async)
socket(0x0, 0x80000, 0x0) (async)
sendmsg$inet6(r0, &(0x7f0000001c40)={&(0x7f0000000300)={0xa, 0x4e20, 0x9, @mcast2}, 0x1c, &(0x7f0000001900)=[{&(0x7f0000000340)="9c40fb5b2dfc89d68cae627e74eb0baa647c5ad614a6c2dabe4f55c4fbe4793a99f84a0f7043a2a2dcc80be090555f07701af5bac82fb1709589919bc979e0345f61e81b8c1870050f00f8c3a744dff716ba1a9b49eac26431fca77956f7a1352efece405aaa5eec967ccb334ae8e45c77775312b344e242a6524936d7f2093bf3d47dfc601ccc86cd47b4d50d650590ba920dd2c0e3c19b90e82adc4d7ebc3ea57ee368aa9bfcf90481fd7ca9c94ec542d5b3992aee09a5554dfccb62c27a7547c906f84174ed05f45e380c0597cdaefab7c88c1d0b5bf75df654d00cdf06c327b4a38955252b84fac7c6de12205cd08ceff3141e", 0xf5}, {&(0x7f0000000440)="b726d759dd2ac2d4cb3b6ae6f33b2703658a356d05254fd7d5a81f7b77b76ac914dc8edd4cb51be8e583919684b25a0c9f5d15b1aa936fe7c169c9813ca0432b4a3331b78230fd2ff3fa913900b118696d90f5384e6171bef66af10d8013c6a58ff0ba1a75cc0e22f2343836393f9104aea4af63f48c4dbeff8b73c5b5a04441ddf580159f06", 0x86}, {&(0x7f0000000500)="9951cf81b3c8e34e3e03c59d98e76f8e7bb259d163058f634e35060d005d2c79684e43d00666b957bbf6034885424c57d5c02faf30143ec9f3240c214742c9ec4169963e8aab3844d02375700fb226db8f19a3a7f5", 0x55}, {&(0x7f0000000580)="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", 0x1000}, {&(0x7f0000001580)="0a0b34584739112a4fcb06713511d7fb2e18bce6c39e83f4e426784a7a957f6dd17119c4d2d783cbc0e4c12b824807a05f26dd2ee216c505e2939606672681510d550a5aaf7b9769e4089d67061812c1fd3be7b55a9626f608ef91e37c528b7d14c0147a46d5b31d94e6d97d2352f4fcc236367da51e2ba8a62a24fded9b2d27342f32f6ac3b52773b0d446d559b50bdff86dcd7bbf3f2caa2ef3320b5625ec6df9a2cc57a83cadc42729ed15918e975c41def06413d", 0xb6}, {&(0x7f0000001640)="bba32f705dc07377112b02fd78fd43ab055cf3f1dc1d4f2db0c27f7faeb423cfc17f11d4db9cfcf9f9741741310b604205ae7059c58343760550ee85abd8b4cd2fa0c428d446c2c5e167d16435de9375dc8542ec0e19fc0f491a334af8d9d38ae029e9fda2071fb95faaa3c5c882de0ce6e385105247265fa27e7d2550c71ebc97405632407355a41726c0e35aa9945248487a3c2de5536c726109aacb3f381b6d6366e5794fc705564ec608f509fae49f50bf59ca2cd9f4e4df59b317c4958fd0e08e886c1566995e37b883c67f12d13aab7798c4de7e8d1768ba77016eba", 0xdf}, {&(0x7f0000001740)="140147eeb82d7e1f5e478f45008cb40e7a56bacc736fa7c889cb23a0e159972faca65f3becab6e00c1c91211f5abcdef9e41f65ae0a6e614a5a0f2911c2306a473dc73439abd9d60bc5542743a45b19fe4ed9462fef96d96c13edd59f48f974c9bd5e95ce8a84955c8b524bc872665032d21623eced517b6b76ec3b1d1283534edb2e4977bc4a3", 0x87}, {&(0x7f0000001800)="77b058deec20123f5324cef8358e5d5b70cdd0d43c89041f047136ba2e12fc32c55cf2a438764c418badbc59a9200919d9271d792f3c9e99ffe4f05ea0caa943bcf68f0321de9977bd757ddfc23d11648ce9ee215ceaca55d938fe4b0da9b23136e3847951fc62d68f0c758d778d1acf49cc62a56740129d1916ecd4977117360f6a52c2ec388d2d1308ecf3153379f46e864eef1d978bcce137e13384210e5e7f4135c7331552ff9b5cfe23e2eba5e0f4bab720cfcbdc3a6e1d8e10d9ddc1e1f369cd2a6873fa0e2c3142209a741caf470c172a78d255474c5b42992633114409", 0xe1}], 0x8, &(0x7f0000001980)=[@hoplimit={{0x14, 0x29, 0x34, 0x8}}, @rthdrdstopts={{0x50, 0x29, 0x37, {0x2b, 0x7, '\x00', [@pad1, @ra={0x5, 0x2, 0x1}, @jumbo={0xc2, 0x4, 0x5}, @generic={0x80, 0x29, "26cacf34c52c8723e958959b80195efef5eddc501ec76c4ccf8f66d10fd682ade3caa247e73b0b1d97"}]}}}, @dstopts={{0x98, 0x29, 0x37, {0x2f, 0xf, '\x00', [@hao={0xc9, 0x10, @private2={0xfc, 0x2, '\x00', 0x1}}, @hao={0xc9, 0x10, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}, @jumbo={0xc2, 0x4, 0x5}, @calipso={0x7, 0x18, {0x1, 0x4, 0x0, 0x5, [0xfffffffffffff000, 0x0]}}, @jumbo={0xc2, 0x4, 0x6}, @generic={0xe9, 0x1b, "b9a82ea34ae5b18cb438717578dd1eabede27c40836c825e36a01c"}, @ra, @hao={0xc9, 0x10, @local}]}}}, @rthdrdstopts={{0xb8, 0x29, 0x37, {0x2e, 0x13, '\x00', [@hao={0xc9, 0x10, @private2={0xfc, 0x2, '\x00', 0x1}}, @hao={0xc9, 0x10, @mcast1}, @calipso={0x7, 0x10, {0x0, 0x2, 0x0, 0x1, [0x100]}}, @ra={0x5, 0x2, 0x9}, @calipso={0x7, 0x58, {0x0, 0x14, 0x7, 0x0, [0x7, 0x4, 0x80000000, 0x2400, 0x8, 0x8, 0x0, 0x6, 0x1000, 0xe4]}}, @padn, @ra={0x5, 0x2, 0x1}]}}}, @rthdr_2292={{0x88, 0x29, 0x39, {0x6, 0xe, 0x1, 0x4, 0x0, [@loopback, @loopback, @mcast1, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @mcast2, @local, @remote]}}}, @tclass={{0x14, 0x29, 0x43, 0x80000001}}, @tclass={{0x14, 0x29, 0x43, 0x9}}, @dontfrag={{0x14, 0x29, 0x3e, 0xe8}}], 0x288}, 0x60004) (async)
r3 = openat$cgroup_int(r2, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r3, &(0x7f0000000080), 0x12) (async)
r4 = syz_open_dev$tty20(0xc, 0x4, 0x0)
r5 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_ADAPTATION_LAYER(r5, 0x84, 0x7, &(0x7f0000000040)={0x10b802b6}, 0x4) (async)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r5, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c) (async)
connect$inet6(r5, &(0x7f00000001c0)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendfile(r4, r5, 0x0, 0x401)

11:29:29 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
setsockopt$sock_attach_bpf(r0, 0x1, 0x32, &(0x7f0000000240), 0x4)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
r1 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(r1, 0xc0189378, &(0x7f0000000280)={{0x1, 0x1, 0x18, r0, {<r2=>r0}}, './file0\x00'})
openat$cgroup_int(r2, &(0x7f00000002c0)='hugetlb.2MB.rsvd.failcnt\x00', 0x2, 0x0)
r3 = openat$cgroup_int(0xffffffffffffffff, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
mount$cgroup(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100), 0x800000, &(0x7f0000000200)={[{@none}], [{@smackfstransmute={'smackfstransmute', 0x3d, 'cgroup2\x00'}}, {@smackfsfloor={'smackfsfloor', 0x3d, 'cgroup2\x00'}}]})
write$cgroup_int(r3, &(0x7f0000000080), 0x12)
socket$nl_route(0x10, 0x3, 0x0) (async)
setsockopt$sock_attach_bpf(r0, 0x1, 0x32, &(0x7f0000000240), 0x4) (async)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) (async)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) (async)
ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(r1, 0xc0189378, &(0x7f0000000280)={{0x1, 0x1, 0x18, r0, {r0}}, './file0\x00'}) (async)
openat$cgroup_int(r2, &(0x7f00000002c0)='hugetlb.2MB.rsvd.failcnt\x00', 0x2, 0x0) (async)
openat$cgroup_int(0xffffffffffffffff, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0) (async)
mount$cgroup(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100), 0x800000, &(0x7f0000000200)={[{@none}], [{@smackfstransmute={'smackfstransmute', 0x3d, 'cgroup2\x00'}}, {@smackfsfloor={'smackfsfloor', 0x3d, 'cgroup2\x00'}}]}) (async)
write$cgroup_int(r3, &(0x7f0000000080), 0x12) (async)

11:29:29 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
creat(&(0x7f00000000c0)='./file0\x00', 0x4)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r2, &(0x7f0000000080), 0x12)

11:29:29 executing program 2:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
socket$inet6(0xa, 0x0, 0x0)
setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x30, 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x0, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x2800000000000000, 0x12)

[ 1053.526871][T15066] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1053.537118][T15066] CPU: 0 PID: 15066 Comm: syz-executor.1 Not tainted 5.17.0-rc7-syzkaller-00078-g3bf7edc84a9e-dirty #0
[ 1053.548249][T15066] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1053.558297][T15066] Call Trace:
[ 1053.561604][T15066]  <TASK>
[ 1053.564528][T15066]  dump_stack_lvl+0xd6/0x122
[ 1053.569122][T15066]  dump_stack+0x11/0x1b
[ 1053.573278][T15066]  dump_header+0x98/0x410
[ 1053.577613][T15066]  out_of_memory+0x65c/0x8c0
[ 1053.582221][T15066]  memory_max_write+0x32c/0x3d0
[ 1053.587084][T15066]  ? memory_max_show+0x70/0x70
[ 1053.591894][T15066]  cgroup_file_write+0x161/0x300
[ 1053.596832][T15066]  ? __check_object_size+0x22a/0x2d0
[ 1053.602117][T15066]  ? cgroup_seqfile_stop+0x70/0x70
[ 1053.607319][T15066]  kernfs_fop_write_iter+0x1d3/0x2d0
[ 1053.612627][T15066]  vfs_write+0x7f5/0x950
[ 1053.616868][T15066]  ksys_write+0xd9/0x190
[ 1053.621109][T15066]  __x64_sys_write+0x3e/0x50
[ 1053.625708][T15066]  do_syscall_64+0x44/0xd0
[ 1053.630175][T15066]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1053.636066][T15066] RIP: 0033:0x7fd6559cc049
[ 1053.640473][T15066] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1053.660076][T15066] RSP: 002b:00007fd654b42168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1053.668545][T15066] RAX: ffffffffffffffda RBX: 00007fd655adef60 RCX: 00007fd6559cc049
[ 1053.676509][T15066] RDX: 0000000000000012 RSI: 0000000020000080 RDI: 0000000000000006
[ 1053.684533][T15066] RBP: 00007fd655a2608d R08: 0000000000000000 R09: 0000000000000000
[ 1053.692495][T15066] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1053.700512][T15066] R13: 00007ffda0be2f9f R14: 00007fd654b42300 R15: 0000000000022000
[ 1053.708482][T15066]  </TASK>
[ 1053.711636][T15066] memory: usage 104kB, limit 0kB, failcnt 6859
[ 1053.717804][T15066] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
11:29:29 executing program 2:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
socket$inet6(0xa, 0x0, 0x0)
setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x30, 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x0, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x4200000000000000, 0x12)

[ 1053.724726][T15066] Memory cgroup stats for /syz0:
[ 1053.767431][T15066] anon 0
[ 1053.767431][T15066] file 81920
[ 1053.767431][T15066] kernel_stack 0
[ 1053.767431][T15066] pagetables 0
[ 1053.767431][T15066] percpu 0
[ 1053.767431][T15066] sock 0
[ 1053.767431][T15066] vmalloc 0
[ 1053.767431][T15066] shmem 77824
[ 1053.767431][T15066] file_mapped 77824
[ 1053.767431][T15066] file_dirty 4096
[ 1053.767431][T15066] file_writeback 0
[ 1053.767431][T15066] swapcached 0
[ 1053.767431][T15066] inactive_anon 16384
[ 1053.767431][T15066] active_anon 61440
[ 1053.767431][T15066] inactive_file 0
[ 1053.767431][T15066] active_file 4096
[ 1053.767431][T15066] unevictable 0
[ 1053.767431][T15066] slab_reclaimable 6440
[ 1053.767431][T15066] slab_unreclaimable 16136
[ 1053.767431][T15066] slab 22576
[ 1053.767431][T15066] workingset_refault_anon 0
[ 1053.767431][T15066] workingset_refault_file 2
[ 1053.767431][T15066] workingset_activate_anon 0
[ 1053.767431][T15066] workingset_activate_file 0
[ 1053.767431][T15066] workingset_restore_anon 0
[ 1053.861688][T15066] Out of memory and no killable processes...
11:29:29 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async, rerun: 32)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (rerun: 32)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
creat(&(0x7f00000000c0)='./file0\x00', 0x4) (async, rerun: 64)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0) (rerun: 64)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r2, &(0x7f0000000080), 0x12)

11:29:29 executing program 4:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff0000000000fffe0000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b'], 0x50}}, 0x0)

11:29:29 executing program 5:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r1, &(0x7f0000000000), 0x10)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff000000000000000000070000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b', @ANYRES32], 0x50}}, 0x0)

[ 1053.956764][T15081] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1053.966984][T15081] CPU: 1 PID: 15081 Comm: syz-executor.1 Not tainted 5.17.0-rc7-syzkaller-00078-g3bf7edc84a9e-dirty #0
[ 1053.978063][T15081] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1053.988112][T15081] Call Trace:
[ 1053.991381][T15081]  <TASK>
[ 1053.994398][T15081]  dump_stack_lvl+0xd6/0x122
[ 1053.999073][T15081]  dump_stack+0x11/0x1b
11:29:29 executing program 2:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
socket$inet6(0xa, 0x0, 0x0)
setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x30, 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x0, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x4500000000000000, 0x12)

[ 1054.003224][T15081]  dump_header+0x98/0x410
[ 1054.007550][T15081]  out_of_memory+0x65c/0x8c0
[ 1054.012227][T15081]  memory_max_write+0x32c/0x3d0
[ 1054.017074][T15081]  ? memory_max_show+0x70/0x70
[ 1054.021913][T15081]  cgroup_file_write+0x161/0x300
[ 1054.026846][T15081]  ? __check_object_size+0x22a/0x2d0
[ 1054.032151][T15081]  ? cgroup_seqfile_stop+0x70/0x70
[ 1054.037258][T15081]  kernfs_fop_write_iter+0x1d3/0x2d0
[ 1054.042558][T15081]  vfs_write+0x7f5/0x950
[ 1054.046868][T15081]  ksys_write+0xd9/0x190
[ 1054.051101][T15081]  __x64_sys_write+0x3e/0x50
[ 1054.055682][T15081]  do_syscall_64+0x44/0xd0
[ 1054.060153][T15081]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1054.066119][T15081] RIP: 0033:0x7fd6559cc049
[ 1054.070528][T15081] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1054.090184][T15081] RSP: 002b:00007fd654b21168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1054.098644][T15081] RAX: ffffffffffffffda RBX: 00007fd655adf030 RCX: 00007fd6559cc049
[ 1054.106608][T15081] RDX: 0000000000000012 RSI: 0000000020000080 RDI: 0000000000000052
[ 1054.114571][T15081] RBP: 00007fd655a2608d R08: 0000000000000000 R09: 0000000000000000
[ 1054.122564][T15081] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1054.130532][T15081] R13: 00007ffda0be2f9f R14: 00007fd654b21300 R15: 0000000000022000
[ 1054.138499][T15081]  </TASK>
[ 1054.141613][T15081] memory: usage 104kB, limit 4644337115725824kB, failcnt 6859
[ 1054.149143][T15081] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1054.155984][T15081] Memory cgroup stats for /syz0:
[ 1054.157790][T15081] anon 0
[ 1054.157790][T15081] file 81920
[ 1054.157790][T15081] kernel_stack 0
[ 1054.157790][T15081] pagetables 0
[ 1054.157790][T15081] percpu 0
[ 1054.157790][T15081] sock 0
[ 1054.157790][T15081] vmalloc 0
[ 1054.157790][T15081] shmem 77824
[ 1054.157790][T15081] file_mapped 77824
[ 1054.157790][T15081] file_dirty 4096
[ 1054.157790][T15081] file_writeback 0
[ 1054.157790][T15081] swapcached 0
[ 1054.157790][T15081] inactive_anon 16384
[ 1054.157790][T15081] active_anon 61440
11:29:30 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56) (async)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
creat(&(0x7f00000000c0)='./file0\x00', 0x4) (async, rerun: 32)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0) (rerun: 32)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r2, &(0x7f0000000080), 0x12)

[ 1054.157790][T15081] inactive_file 0
[ 1054.157790][T15081] active_file 4096
[ 1054.157790][T15081] unevictable 0
[ 1054.157790][T15081] slab_reclaimable 6440
[ 1054.157790][T15081] slab_unreclaimable 16136
[ 1054.157790][T15081] slab 22576
[ 1054.157790][T15081] workingset_refault_anon 0
[ 1054.157790][T15081] workingset_refault_file 2
[ 1054.157790][T15081] workingset_activate_anon 0
[ 1054.157790][T15081] workingset_activate_file 0
[ 1054.157790][T15081] workingset_restore_anon 0
[ 1054.251929][T15081] Out of memory and no killable processes...
11:29:30 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
r0 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
chroot(&(0x7f0000000240)='./file0\x00')
r2 = openat$cgroup(r1, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r3 = openat$cgroup_int(r2, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write(r1, &(0x7f00000000c0)="9bb3e969f96e9fb7d25566397a2caf24015d0bdc40d42548e8c209387e14e4dab2ce9665b75a4876e5d0080c525ae5", 0x2f)
mkdirat$cgroup(r0, &(0x7f0000000100)='syz1\x00', 0x1ff)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r3, &(0x7f0000000080), 0x12)

11:29:30 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
r0 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='hostfs\x00', 0x0, 0x0) (async)
mount(&(0x7f0000000100)=@nbd={'/dev/nbd', 0x0}, &(0x7f0000000240)='./file0\x00', &(0x7f0000000280)='coda\x00', 0x2d0040, &(0x7f00000002c0)='memory.max\x00') (async)
set_mempolicy(0x0, 0x0, 0x56)
socket$inet6(0xa, 0x80001, 0x0)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = openat$cgroup(r1, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f00000000c0)='./cgroup/syz0\x00', 0x200002, 0x0) (async)
socket(0x0, 0x80000, 0x0) (async)
sendmsg$inet6(r0, &(0x7f0000001c40)={&(0x7f0000000300)={0xa, 0x4e20, 0x9, @mcast2}, 0x1c, &(0x7f0000001900)=[{&(0x7f0000000340)="9c40fb5b2dfc89d68cae627e74eb0baa647c5ad614a6c2dabe4f55c4fbe4793a99f84a0f7043a2a2dcc80be090555f07701af5bac82fb1709589919bc979e0345f61e81b8c1870050f00f8c3a744dff716ba1a9b49eac26431fca77956f7a1352efece405aaa5eec967ccb334ae8e45c77775312b344e242a6524936d7f2093bf3d47dfc601ccc86cd47b4d50d650590ba920dd2c0e3c19b90e82adc4d7ebc3ea57ee368aa9bfcf90481fd7ca9c94ec542d5b3992aee09a5554dfccb62c27a7547c906f84174ed05f45e380c0597cdaefab7c88c1d0b5bf75df654d00cdf06c327b4a38955252b84fac7c6de12205cd08ceff3141e", 0xf5}, {&(0x7f0000000440)="b726d759dd2ac2d4cb3b6ae6f33b2703658a356d05254fd7d5a81f7b77b76ac914dc8edd4cb51be8e583919684b25a0c9f5d15b1aa936fe7c169c9813ca0432b4a3331b78230fd2ff3fa913900b118696d90f5384e6171bef66af10d8013c6a58ff0ba1a75cc0e22f2343836393f9104aea4af63f48c4dbeff8b73c5b5a04441ddf580159f06", 0x86}, {&(0x7f0000000500)="9951cf81b3c8e34e3e03c59d98e76f8e7bb259d163058f634e35060d005d2c79684e43d00666b957bbf6034885424c57d5c02faf30143ec9f3240c214742c9ec4169963e8aab3844d02375700fb226db8f19a3a7f5", 0x55}, {&(0x7f0000000580)="dee5659ca5be557d87fd7eea81b2564961b7ebc1a9751c664af5751080ca40dfdb3d2db09ca81941ef2c98ff7637651f9e13585da534ac94841fb40c0efc897bd0e017e6ab4de3624a876af6acb9dad341dce61ce5bbe9565792c90e62ace67e33dce4eccedbf0c80250cf5eba1583649583dd31226f923d36b4aecd8e39aafe405f68f28d560efef2c51f0a09e95354f16e2e058077729f4d0a4dddfb194f540468aa476ec7e7b7499ae4095842210ae9d5116bfe0ea8114b5419fe33245e6cdfdacc3f7dcc47d076963e71426915905b12dd4aecf873e79404972d926b98b5fe344cfaeaba704a25151bda0d1daabb95266ef505a4b94040541dda21cc518b8d06fa687a4ba6fa598c7ac0747cec7aafb4f3caa13578e78b59be61ac1c433e733e05697de71b9b4ab3a0110d79cec1dd57e7f7ff61eaeff4895786091b8db21b69751bd81b7c759a7d6129f913f0e7b3dde5aeb359489a2bd6a57652a317d02711e8c623a8e29dfae0e8ee3ae7a6ae4411ef05489e67dfbb166e14e441cdaa3cee6007f3f63bcda81da8eaf5919f3434ae648e41642bb61e6e3cd774d2fe2fe2cfbae421695cf531e38eff3707b9ad69b6123eb755885080cbd7854c838d543ba05842682e01a3a28554cb169c91ef6218292db03bc3b1c284165137e8f8054a7588a9580eeaa71fcb3ed7be971a3c656129d948a9b9fbbeebcbbb1e4ffba03baac6752dfcf9539210d5d0a3041a908f53a3924fead921acb25ddec503df3ab0b5c1f328ceafe135ce2ac4c86573fe3476868aacca3ff05c7962d0254c42c1e6e9792f3ac84d2c598bc8e131415f5dd591da85cdfef60b8f3d2456482c0ececd18798b6d08d7cf98a9c12728a8ed788712d2923b400f2d9370f168b97bc781ec71c28bad62e0570c5415e44c49606bbd944c063b9f8abfec5d29b7e67f0c70154b950fdb24c7763e8965e9914ea53f0bc9eba09f0abfb488faf2f0ab1e85ed894da2e019a71d8aa04f29929ad0e822d719d17ab1fa6b38575152e205c19bd24ecb0ab684be3ab576e18e203a8b3cea74797b0921cbae38b16da839f10eeb1ea40fa997a02f600396a3f423fd3f59e4764d16c484d60e44a8ab0e08f40271fa6a5b93215f96bb50b8eb239f47db933a4d8d00adeb9bb644e5cdfcbc2f601b7233817171441c14650577536fedd007d8e855de7fd4f4098e807666e9ad83cded64d0fa55d074f94f9709fd99d234a7be82c0e31bc1e5ef6229560b6e446be760b78c7c507a57db59e03381ffe1873da4d9d469c1ec9852d4e163db1e00d9fc7cd533b02521b814253c4d8623cbd666bf4dfafa486924bff24de3ffb88da81ecd50f48f0f4982a7b99471e82dd851cdc9ff7852eb7f8187d8a00f640ed3677a24113820c471ecc71456003b4874a4f5cf81b2594c1baf745824b3b902f239ba1fb92e5d9c727dc1df1c406ce041aabb55d4b74e60ec297fe1ce6e2841a78b949584ce8f7ef28679b1cafc7625a486f1d4139489435d22487dd4cf3c5b873fe0deb0d53659bcd643d60f23a4bb54499c80d35d5bb91afe18d350d03271bfe8704383aecb0c7cce489b9e55470aedc8135c4108634940aa95a601f5e7c39db26f577443b40bea70c62530531ad3d4b86a1cd73e16281bb94738d24304a64b2449238d5304a38a3ac4ab60a9440d606037d10eb0b87e2417c3a46361a4cf50d9a534d8c785675140f3579c0e0b28617a21a6df2387cb4f58af3b2986daa1a89fd3b93bc203004e5fd9932db6f4b05734d337b95d3e5c64fcacb47180b722c780140b1a16c23570e325b2e2899d4a519878c6e9a5cffda731314ad90e3118ffc69844a27798680709b32030f800c2118fad6cae564941785ebed1021cdf7ce740593f9f1e4b0d0197d7bf5f62ef77e6c42a55572cde57246a0ef543b85d95c93f6840907cf4fce87b01af7645f430b118cde79099734fe28a13f046ad5e3b0c5fc37eb8d429c2e0fbfa4e9124952e9e31edbde474f19fa7a1b5acf22d104a33ef2a9d9e48af5b452f1e4daf26b3f27753fc32796cd2d89793c84421c792f2902e4d9ba2080589f21d665bad61fb7704f89827f5bbe3464c41a31dada77d4f9448dbd8335c7401232bb1906eaa86bb29e543ad8da583ef99a034baf608d5f48a53b1a86a6a835f147921e901f7a482f92e3f6205145f2b5930d67296e1422af37065c9bb79b4187f4febc6bbc23c096acc9097bdf56317e98fe2542f9406d42a8cb4bea4cf1bba2d407215d13e655320dd0fdaf2f86a66bd76f0fc731965e2b0a0e4e383b4c951d5e54a2a35b0999e4085953cf7dfdde125685ccf1e9e869bbb45ae51b5201766d55b3cddecbdd303c2fd33d612421786e42979ce1dce801c6e7f0f9d931bcdae75ea77c5d097e86494cf70fefbf902ca5a5e026e1ee29872dbe89680e144784fa6df2e679a68d180baa38a8fa30552463387c4675195249829734f0c6ba9c7cdb71366d470c87b5107fe65b3174a858fba6a6384d37351d1e07209d10091480d2a5e4b95633b153654c125bf5823e8a776d81d854aa6c7f55c9e6218298b7bb06c4c877281a10aa3a4141645ec424403712f8a154d9564e5a83d85cc59c1f6b177c222100b23455e08fdc46e1ce32b7fb6daf4e49689612cd435e829f1b42ddb4ae329d2861063b77a2967cd8853b17083072f233967c89865d8ca38b49047e4ebd9888cc71f61982b69b15da8fe6190c4942d3efacc39ba431c3dd3f55d50191ebce8d9310d4666e198d466c97173f21984e0bb7d2d2db2a4fc10017af0f6ea455b0d78b41212498ba8cf271955935bdab9cf7515f9a4dedf7e224363ccc833412dd6558ce6c4c3c9163133815d486e6e6cbf59018013ae41319c03fbc7a6cabfd8b812aa8665c924dda5823dd36ae0a1f2a36c5cf62da564a25cc8c85eacdac5dd34cbe6451dcbedf4c657d40cd2c8f10f6a351afef19eec80ed4aa16143682e23bff9c0d3518dcaeceb1371ddb09052ac7d1918e018cfb2baa62fd8a04240f8d7c3f6dc3a0b5a5a1497ee3e50df870b2055bfb4c83a5627e0f222463d6c31bf6eceebe575703264f670872d17a73174ce2eb721cef38c25df28562cc4b88fd137a9fe7d5f205a9752f72fcb5fc40d8f0fb95bf297f0f707c57c581b93c249d863af166b16cc6e37393908e058d11c52a22b2b173aaece8f39fa854731bb68b61696bc33e9fc67db135434857b53ad5cbbfcf4240c033243d8b4c44f4f0bbe59e6318ff1eae5a77eb22f97fdfe910029c247d6f443f841b1bb5d86c6b62210c0cf5a3ed52e76e849ef3200ce1ba4e062894585600bde473e3c0131009bda8adb58e3dafe954ff89c5133049427f1fed392a7936c12a53200d4bdeba5baebdaee9d41e0552e166d90d77afe52c047b919165c0e9ca33067f8bd2cc079ba014cd39392d761bf6bdf6b3e25df648b41dd604a841c814a5a1970eac2c94824c81ff397de39db662cfc8ae94d453958446f69c51b3f88de8cf490807ce8e3f93b0ef0b8e23f6b564e6b206e9305accd0345500887e87d33af31470171ed98283dbdf6db2ff34b78d3d9374196a384a9c280fde45590896da4408318e64a92d694726944942e016a73e5cb183e7e36c241244239a1afbd1e9c89a48fb3aa87f3e8d75b363bfbe9078d83e981e277dc5a11fcca90457037790c56666b3295cc964ee50e38dfd16c25cea75d7070828e490948f79bb2e55b1144912a38542fcc3af2b0d78ba4521ad2dbca0fa656fbbe0f9b8ccd910a9ed782d47a0feda0425cff9a0c974de14354ba6e1d5cbf1500cd4c82f25b3ec9add5525d575f5989c741a8f37001204344f0d2d725065bfd34a6f9b41bcb70b0f71af336deb6301825e57c993c472cbcf77a9339e708276eba39c380462f46789707a6ad764b1390d94218fec3b41ff36d5eee661328b7899f044059b18b249350c13e05f8b86098c3673c3893b8a7e3d2f0aac83c937a48b2aa57e32481239f87c5f2627aaa47705a11f90b1988f1500dc6898dd3c3dd98940359103b798762523697d51cbde40629a897c3c813614c785a34e1e86abba0b8102043aba10a2c03de7058127f1234bfd29a07632f292aa3cf40b9c2435ad0512d5e3b1b721e62999613138d856d2d1db2e1205b5b28cfe0cc4e6a1d6941ed6e5e00dffd95dcd3424e3201ad5a5ef0159ba7d75d4b3f18c742254bfaa9935e1def32a6c602a9b3af569504d8f9c447a3ef91d4a3b90c5106253060c6b6302e6ae62d36b253a43b589baafb32a435e8e7743a0f54dac21dda56738518b571f2f56583f65e0d383b74b7b908d7feeb80d1c4cd5f4c486a5e6eb7ed3b8fe206a5d11cabaca259d3e76bb17c9e58bc0f632bace566d4dd64620bdd145d82e83d4c1c27153f5c210fdace4075bbd4d535ca30bc40160617a87aaecb0a700d5e54878ad36b18c0ac68f2d6e6fe7464005005338ea492adf036382e6e5155232abe906b8113be4a9dd1d8e8c26bca5d52f605574516359752ae1a4ba12397fd0f67e40977c4deeaeba099075ad8a4d0899cd7ba04ade6ed3674ae3f671dd95f1dcbe07f5fa5f0cef9fe2573d987b77633fdc22a58e1e37d52a7fbce81325f147e50c006b38a1ea234c4ab2888f9ab70b356738b6a8139cd0034e78f1309c858f1b935b634f72d6b92a36ff32cb3cbe5713e39339e58f3f77f507d2c478fde0e32fc1f27cb78e82bbdf9617861edcbf1bffa2c8a4eb5e8f3ce15cb61feea63a7802aca9cef2d2b951b55fb69b18b8aa99679178e3525d8f47b157c38bca789e38b5ed4cf7115f1a22baaf93becd002286df617eec70bfed0678f3ae280ae3a07df4902af8b72c914d090bdfe21d0ccff6b9b18a1648d2d473cedde9f724f3f8d3aea8b08b15552af1eb50051e2774054e115918da03a8cf14c3819f33b3bc00e8b2a54e7da485888f763788dafbf305971528ab21966091ff723a2f4b39249fad1034ff08893fc569cb44092e195bfe481ac6d72e7d3e679cb04a47777f31714b2a0c4d18c497ecfaad37736c114b622b6e1cfd15d0b5478aaab6bb21978ae7478cf5b2866451ff6a03300d3c14c68d8d37a9f0fb9a01ca1370fff87a9c1b38222ee6512b785673b97096e670bfa1c08dc69123ed6fe820558392f51dd36a43f1b886f7c122b84e52cb78a33f1c47e88ce0c30989cd162390d8a18b0292860e52f13c8339974ad58a44efaeb5e1f06f7174274af94f146a678329b9b127e53b53db7b83fb6a3e94f5617bb1f152d2314c2051b4748c75c69589863cc5b53849ea868a064f8b8fa38593e0ffff2b09fc15f905de38c6df548be3092e6df05e35a1801bd0cc6d8b1a6f1d00c64607def9bf1d65b9506bd2a4e04b7ffe2b57892ce4c66b5e436c5bed21a640cfe501bc3a0b1895bc97e7336b5445913de539a73d4ed97612e764dda4e77d01f4439d0efe1723bfab40a49c2729d9c0181052161e7289380529ad7425066e3388880543267d89579cf93f15367707f998170d3520dc1111f4636046915a9c72d5c05a81c167d54bc0dd506220336a9e3d2c3d0d3b084ee33fb1185fc20336f037a9ef4191fdf5b9e16e882677c6d70b0f9d5c2c68621e1de64dcc08761fc739c4c269c27e92e5546ed658f976564d35078c69f10af7297d48c5d3a6a871351d44f9d5e7cf294c0576870f78962c893208fad2cb87e0a6240e9555681c6d87b2eb3b7ab044ef530a3219af31fee94cf6f7eb49f0b2a857cdf0cea586d49030509e259f5cc74e4ddf355", 0x1000}, {&(0x7f0000001580)="0a0b34584739112a4fcb06713511d7fb2e18bce6c39e83f4e426784a7a957f6dd17119c4d2d783cbc0e4c12b824807a05f26dd2ee216c505e2939606672681510d550a5aaf7b9769e4089d67061812c1fd3be7b55a9626f608ef91e37c528b7d14c0147a46d5b31d94e6d97d2352f4fcc236367da51e2ba8a62a24fded9b2d27342f32f6ac3b52773b0d446d559b50bdff86dcd7bbf3f2caa2ef3320b5625ec6df9a2cc57a83cadc42729ed15918e975c41def06413d", 0xb6}, {&(0x7f0000001640)="bba32f705dc07377112b02fd78fd43ab055cf3f1dc1d4f2db0c27f7faeb423cfc17f11d4db9cfcf9f9741741310b604205ae7059c58343760550ee85abd8b4cd2fa0c428d446c2c5e167d16435de9375dc8542ec0e19fc0f491a334af8d9d38ae029e9fda2071fb95faaa3c5c882de0ce6e385105247265fa27e7d2550c71ebc97405632407355a41726c0e35aa9945248487a3c2de5536c726109aacb3f381b6d6366e5794fc705564ec608f509fae49f50bf59ca2cd9f4e4df59b317c4958fd0e08e886c1566995e37b883c67f12d13aab7798c4de7e8d1768ba77016eba", 0xdf}, {&(0x7f0000001740)="140147eeb82d7e1f5e478f45008cb40e7a56bacc736fa7c889cb23a0e159972faca65f3becab6e00c1c91211f5abcdef9e41f65ae0a6e614a5a0f2911c2306a473dc73439abd9d60bc5542743a45b19fe4ed9462fef96d96c13edd59f48f974c9bd5e95ce8a84955c8b524bc872665032d21623eced517b6b76ec3b1d1283534edb2e4977bc4a3", 0x87}, {&(0x7f0000001800)="77b058deec20123f5324cef8358e5d5b70cdd0d43c89041f047136ba2e12fc32c55cf2a438764c418badbc59a9200919d9271d792f3c9e99ffe4f05ea0caa943bcf68f0321de9977bd757ddfc23d11648ce9ee215ceaca55d938fe4b0da9b23136e3847951fc62d68f0c758d778d1acf49cc62a56740129d1916ecd4977117360f6a52c2ec388d2d1308ecf3153379f46e864eef1d978bcce137e13384210e5e7f4135c7331552ff9b5cfe23e2eba5e0f4bab720cfcbdc3a6e1d8e10d9ddc1e1f369cd2a6873fa0e2c3142209a741caf470c172a78d255474c5b42992633114409", 0xe1}], 0x8, &(0x7f0000001980)=[@hoplimit={{0x14, 0x29, 0x34, 0x8}}, @rthdrdstopts={{0x50, 0x29, 0x37, {0x2b, 0x7, '\x00', [@pad1, @ra={0x5, 0x2, 0x1}, @jumbo={0xc2, 0x4, 0x5}, @generic={0x80, 0x29, "26cacf34c52c8723e958959b80195efef5eddc501ec76c4ccf8f66d10fd682ade3caa247e73b0b1d97"}]}}}, @dstopts={{0x98, 0x29, 0x37, {0x2f, 0xf, '\x00', [@hao={0xc9, 0x10, @private2={0xfc, 0x2, '\x00', 0x1}}, @hao={0xc9, 0x10, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}, @jumbo={0xc2, 0x4, 0x5}, @calipso={0x7, 0x18, {0x1, 0x4, 0x0, 0x5, [0xfffffffffffff000, 0x0]}}, @jumbo={0xc2, 0x4, 0x6}, @generic={0xe9, 0x1b, "b9a82ea34ae5b18cb438717578dd1eabede27c40836c825e36a01c"}, @ra, @hao={0xc9, 0x10, @local}]}}}, @rthdrdstopts={{0xb8, 0x29, 0x37, {0x2e, 0x13, '\x00', [@hao={0xc9, 0x10, @private2={0xfc, 0x2, '\x00', 0x1}}, @hao={0xc9, 0x10, @mcast1}, @calipso={0x7, 0x10, {0x0, 0x2, 0x0, 0x1, [0x100]}}, @ra={0x5, 0x2, 0x9}, @calipso={0x7, 0x58, {0x0, 0x14, 0x7, 0x0, [0x7, 0x4, 0x80000000, 0x2400, 0x8, 0x8, 0x0, 0x6, 0x1000, 0xe4]}}, @padn, @ra={0x5, 0x2, 0x1}]}}}, @rthdr_2292={{0x88, 0x29, 0x39, {0x6, 0xe, 0x1, 0x4, 0x0, [@loopback, @loopback, @mcast1, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @mcast2, @local, @remote]}}}, @tclass={{0x14, 0x29, 0x43, 0x80000001}}, @tclass={{0x14, 0x29, 0x43, 0x9}}, @dontfrag={{0x14, 0x29, 0x3e, 0xe8}}], 0x288}, 0x60004) (async)
r3 = openat$cgroup_int(r2, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r3, &(0x7f0000000080), 0x12) (async)
r4 = syz_open_dev$tty20(0xc, 0x4, 0x0) (async)
r5 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_ADAPTATION_LAYER(r5, 0x84, 0x7, &(0x7f0000000040)={0x10b802b6}, 0x4)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r5, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c) (async)
connect$inet6(r5, &(0x7f00000001c0)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendfile(r4, r5, 0x0, 0x401)

11:29:30 executing program 4:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff000000fffffffe0000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b'], 0x50}}, 0x0)

[ 1054.336330][T15096] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1054.346526][T15096] CPU: 0 PID: 15096 Comm: syz-executor.1 Not tainted 5.17.0-rc7-syzkaller-00078-g3bf7edc84a9e-dirty #0
[ 1054.357539][T15096] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1054.367588][T15096] Call Trace:
[ 1054.370865][T15096]  <TASK>
[ 1054.373776][T15096]  dump_stack_lvl+0xd6/0x122
[ 1054.378392][T15096]  dump_stack+0x11/0x1b
[ 1054.382573][T15096]  dump_header+0x98/0x410
[ 1054.386879][T15096]  out_of_memory+0x65c/0x8c0
[ 1054.391447][T15096]  memory_max_write+0x32c/0x3d0
[ 1054.396276][T15096]  ? memory_max_show+0x70/0x70
[ 1054.401029][T15096]  cgroup_file_write+0x161/0x300
[ 1054.405945][T15096]  ? __check_object_size+0x22a/0x2d0
[ 1054.411229][T15096]  ? cgroup_seqfile_stop+0x70/0x70
[ 1054.416347][T15096]  kernfs_fop_write_iter+0x1d3/0x2d0
[ 1054.421609][T15096]  vfs_write+0x7f5/0x950
[ 1054.425826][T15096]  ksys_write+0xd9/0x190
[ 1054.430044][T15096]  __x64_sys_write+0x3e/0x50
[ 1054.434699][T15096]  do_syscall_64+0x44/0xd0
[ 1054.439097][T15096]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1054.445016][T15096] RIP: 0033:0x7fd6559cc049
[ 1054.449406][T15096] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1054.469016][T15096] RSP: 002b:00007fd654b42168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1054.477483][T15096] RAX: ffffffffffffffda RBX: 00007fd655adef60 RCX: 00007fd6559cc049
[ 1054.485442][T15096] RDX: 0000000000000012 RSI: 0000000020000080 RDI: 0000000000000006
[ 1054.493387][T15096] RBP: 00007fd655a2608d R08: 0000000000000000 R09: 0000000000000000
[ 1054.501337][T15096] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1054.509285][T15096] R13: 00007ffda0be2f9f R14: 00007fd654b42300 R15: 0000000000022000
[ 1054.517235][T15096]  </TASK>
[ 1054.520380][T15096] memory: usage 104kB, limit 0kB, failcnt 6859
[ 1054.526541][T15096] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1054.533378][T15096] Memory cgroup stats for /syz0:
[ 1054.535083][T15096] anon 0
[ 1054.535083][T15096] file 81920
[ 1054.535083][T15096] kernel_stack 0
[ 1054.535083][T15096] pagetables 0
[ 1054.535083][T15096] percpu 0
[ 1054.535083][T15096] sock 0
[ 1054.535083][T15096] vmalloc 0
[ 1054.535083][T15096] shmem 77824
[ 1054.535083][T15096] file_mapped 77824
[ 1054.535083][T15096] file_dirty 4096
[ 1054.535083][T15096] file_writeback 0
[ 1054.535083][T15096] swapcached 0
[ 1054.535083][T15096] inactive_anon 16384
[ 1054.535083][T15096] active_anon 61440
[ 1054.535083][T15096] inactive_file 0
[ 1054.535083][T15096] active_file 4096
[ 1054.535083][T15096] unevictable 0
[ 1054.535083][T15096] slab_reclaimable 6440
[ 1054.535083][T15096] slab_unreclaimable 16136
[ 1054.535083][T15096] slab 22576
[ 1054.535083][T15096] workingset_refault_anon 0
[ 1054.535083][T15096] workingset_refault_file 2
[ 1054.535083][T15096] workingset_activate_anon 0
[ 1054.535083][T15096] workingset_activate_file 0
[ 1054.535083][T15096] workingset_restore_anon 0
[ 1054.629102][T15096] Out of memory and no killable processes...
[ 1055.028003][T12949] device hsr_slave_0 left promiscuous mode
[ 1055.034048][T12949] device hsr_slave_1 left promiscuous mode
[ 1055.040130][T12949] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1055.047528][T12949] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1055.055068][T12949] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1055.062473][T12949] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1055.070038][T12949] device bridge_slave_1 left promiscuous mode
[ 1055.076162][T12949] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1055.083812][T12949] device bridge_slave_0 left promiscuous mode
[ 1055.090004][T12949] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1055.100379][T12949] device veth1_macvtap left promiscuous mode
[ 1055.106427][T12949] device veth0_macvtap left promiscuous mode
[ 1055.112449][T12949] device veth1_vlan left promiscuous mode
[ 1055.118228][T12949] device veth0_vlan left promiscuous mode
[ 1055.213231][T12949] team0 (unregistering): Port device team_slave_1 removed
[ 1055.223329][T12949] team0 (unregistering): Port device team_slave_0 removed
[ 1055.233608][T12949] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1055.244888][T12949] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1055.279537][T12949] bond0 (unregistering): Released all slaves
[ 1055.389257][T15107] chnl_net:caif_netlink_parms(): no params data found
[ 1055.419357][T15107] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1055.426488][T15107] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1055.433947][T15107] device bridge_slave_0 entered promiscuous mode
[ 1055.441056][T15107] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1055.448136][T15107] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1055.455830][T15107] device bridge_slave_1 entered promiscuous mode
[ 1055.471067][T15107] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1055.481241][T15107] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1055.499019][T15107] team0: Port device team_slave_0 added
[ 1055.505329][T15107] team0: Port device team_slave_1 added
[ 1055.520152][T15107] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1055.527131][T15107] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1055.553064][T15107] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1055.564839][T15107] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1055.571789][T15107] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1055.597675][T15107] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1055.621213][T15107] device hsr_slave_0 entered promiscuous mode
[ 1055.627833][T15107] device hsr_slave_1 entered promiscuous mode
[ 1055.707716][T15107] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1055.719239][T15107] 8021q: adding VLAN 0 to HW filter on device team0
[ 1055.726804][ T6846] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 1055.734329][ T6846] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1055.744053][T12912] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 1055.753365][T12912] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1055.761550][T12912] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1055.768569][T12912] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1055.776625][ T1928] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 1055.786050][ T6846] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 1055.795067][ T6846] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1055.804439][ T6846] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1055.811489][ T6846] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1055.827517][ T6845] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 1055.835977][ T6845] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 1055.844578][ T6845] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 1055.852883][ T6845] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 1055.861318][ T6845] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 1055.869565][ T6845] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 1055.878276][ T6845] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 1055.886509][ T6845] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1055.894658][ T6845] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 1055.903026][ T6845] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1055.911307][ T6846] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 1055.920317][T15107] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 1055.934135][T15107] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1055.941889][ T6845] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 1055.949491][ T6845] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 1056.016123][ T6845] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 1056.025068][ T6845] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1056.063657][T15107] device veth0_vlan entered promiscuous mode
[ 1056.071768][T23294] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 1056.079974][T23294] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1056.088429][T23294] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1056.096011][T23294] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1056.105905][T15107] device veth1_vlan entered promiscuous mode
[ 1056.118056][ T6845] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 1056.126101][ T6845] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 1056.134791][ T6845] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1056.143742][T15107] device veth0_macvtap entered promiscuous mode
[ 1056.152693][T15107] device veth1_macvtap entered promiscuous mode
[ 1056.165182][T15107] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 1056.175606][T15107] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1056.185437][T15107] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 1056.195854][T15107] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1056.205664][T15107] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 1056.216066][T15107] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1056.225878][T15107] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 1056.236355][T15107] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1056.246140][T15107] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 1056.256574][T15107] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1056.267894][T15107] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1056.275845][T12912] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 1056.284140][T12912] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 1056.293484][T12912] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1056.303571][T15107] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 1056.314035][T15107] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1056.323941][T15107] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 1056.334415][T15107] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1056.344244][T15107] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 1056.354734][T15107] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1056.364540][T15107] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 1056.375009][T15107] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1056.384908][T15107] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 1056.395345][T15107] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1056.406238][T15107] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1056.413622][T23294] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 1056.422356][T23294] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 1056.456754][T15142] cgroup: Unknown subsys name 'smackfstransmute'
[ 1056.463658][T15142] cgroup: Unknown subsys name 'smackfstransmute'
11:29:32 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
setsockopt$sock_attach_bpf(r0, 0x1, 0x32, &(0x7f0000000240), 0x4)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
r1 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) (async, rerun: 64)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (rerun: 64)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(r1, 0xc0189378, &(0x7f0000000280)={{0x1, 0x1, 0x18, r0, {<r2=>r0}}, './file0\x00'})
openat$cgroup_int(r2, &(0x7f00000002c0)='hugetlb.2MB.rsvd.failcnt\x00', 0x2, 0x0)
r3 = openat$cgroup_int(0xffffffffffffffff, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0) (async)
mount$cgroup(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100), 0x800000, &(0x7f0000000200)={[{@none}], [{@smackfstransmute={'smackfstransmute', 0x3d, 'cgroup2\x00'}}, {@smackfsfloor={'smackfsfloor', 0x3d, 'cgroup2\x00'}}]})
write$cgroup_int(r3, &(0x7f0000000080), 0x12)

11:29:32 executing program 2:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
socket$inet6(0xa, 0x0, 0x0)
setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x30, 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x0, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x4700000000000000, 0x12)

11:29:32 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
r0 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
chroot(&(0x7f0000000240)='./file0\x00')
r2 = openat$cgroup(r1, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r3 = openat$cgroup_int(r2, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write(r1, &(0x7f00000000c0)="9bb3e969f96e9fb7d25566397a2caf24015d0bdc40d42548e8c209387e14e4dab2ce9665b75a4876e5d0080c525ae5", 0x2f)
mkdirat$cgroup(r0, &(0x7f0000000100)='syz1\x00', 0x1ff)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r3, &(0x7f0000000080), 0x12)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56) (async)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) (async)
chroot(&(0x7f0000000240)='./file0\x00') (async)
openat$cgroup(r1, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0) (async)
openat$cgroup_int(r2, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0) (async)
write(r1, &(0x7f00000000c0)="9bb3e969f96e9fb7d25566397a2caf24015d0bdc40d42548e8c209387e14e4dab2ce9665b75a4876e5d0080c525ae5", 0x2f) (async)
mkdirat$cgroup(r0, &(0x7f0000000100)='syz1\x00', 0x1ff) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) (async)
write$cgroup_int(r3, &(0x7f0000000080), 0x12) (async)

11:29:32 executing program 5:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r1, &(0x7f0000000000), 0x10)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff000000000000000000080000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b', @ANYRES32], 0x50}}, 0x0)

11:29:32 executing program 4:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff00000000000fff0000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b'], 0x50}}, 0x0)

11:29:32 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
chdir(&(0x7f00000000c0)='./file0\x00')
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000040)='rpc_pipefs\x00', 0x0, 0x0)
set_mempolicy(0x0, 0x0, 0x56)
socket$inet6(0xa, 0x80001, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x80000, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080), 0x12)

11:29:32 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
chdir(&(0x7f00000000c0)='./file0\x00')
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000040)='rpc_pipefs\x00', 0x0, 0x0)
set_mempolicy(0x0, 0x0, 0x56)
socket$inet6(0xa, 0x80001, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0) (async)
socket(0x0, 0x80000, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080), 0x12)

11:29:32 executing program 2:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
socket$inet6(0xa, 0x0, 0x0)
setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x30, 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x0, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x4b00000000000000, 0x12)

[ 1056.517024][T15154] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1056.527299][T15154] CPU: 1 PID: 15154 Comm: syz-executor.1 Not tainted 5.17.0-rc7-syzkaller-00078-g3bf7edc84a9e-dirty #0
[ 1056.538316][T15154] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1056.543895][T15166] cgroup: Unknown subsys name 'smackfstransmute'
[ 1056.548357][T15154] Call Trace:
[ 1056.548364][T15154]  <TASK>
[ 1056.548371][T15154]  dump_stack_lvl+0xd6/0x122
11:29:32 executing program 0:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
statx(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x400, 0x400, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, <r0=>0x0})
quotactl(0xfffffffffffffffc, &(0x7f0000000240)='./file0\x00', r0, &(0x7f00000003c0)="1151191a3c6fa2e4f25f95cfe68417c9a2f189c0fa8cfd810d0fbf0e75fe4de6e7350a403ed59163e099f9e7f06c4bc2c79a2e47467f726a95b09179b50433106be118872368e72a16ecb30bdf874a109f371f9d55a86ede1e62d4d3f42d982a3dfb8cff2b1c994cecbd22a9c46c79fe3ce4f6e2ccd805db06d0e48181632210c67aaee05525fb1d0a93150ade7ac0d2a2d5a72261b3ae6ee8ff8c7ecdd4779b7e3e192b169844e412dd815e59fedbdf287721e9a9")
r1 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000100)='ns/cgroup\x00')
close_range(r1, r2, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r4 = openat$cgroup(r3, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r5 = openat$cgroup_int(r4, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r5, &(0x7f00000000c0), 0x12)
pipe(&(0x7f0000000200)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
write$binfmt_misc(r6, &(0x7f0000000080)=ANY=[], 0x5)
openat$cgroup_ro(r6, &(0x7f0000000080)='cpuacct.usage_percpu_sys\x00', 0x0, 0x0)

11:29:32 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
chdir(&(0x7f00000000c0)='./file0\x00') (async)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000040)='rpc_pipefs\x00', 0x0, 0x0) (async)
set_mempolicy(0x0, 0x0, 0x56)
socket$inet6(0xa, 0x80001, 0x0) (async)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x80000, 0x0) (async)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080), 0x12)

11:29:32 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
r0 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
socket$inet6(0xa, 0x80001, 0x0)
read(r0, &(0x7f00000000c0)=""/118, 0x76)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = openat$cgroup(r1, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x80000, 0x0)
r3 = openat$cgroup_int(r2, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r3, &(0x7f0000000080), 0x12)

[ 1056.565431][T15154]  dump_stack+0x11/0x1b
[ 1056.569673][T15154]  dump_header+0x98/0x410
[ 1056.574024][T15154]  oom_kill_process+0x18e/0x4a0
[ 1056.578940][T15154]  out_of_memory+0x61d/0x8c0
[ 1056.583648][T15154]  ? _raw_spin_unlock_irqrestore+0x3d/0x60
[ 1056.589451][T15154]  memory_max_write+0x32c/0x3d0
[ 1056.594349][T15154]  ? memory_max_show+0x70/0x70
[ 1056.599176][T15154]  cgroup_file_write+0x161/0x300
[ 1056.604180][T15154]  ? __check_object_size+0x22a/0x2d0
[ 1056.609484][T15154]  ? cgroup_seqfile_stop+0x70/0x70
[ 1056.614950][T15154]  kernfs_fop_write_iter+0x1d3/0x2d0
[ 1056.620227][T15154]  vfs_write+0x7f5/0x950
[ 1056.624495][T15154]  ksys_write+0xd9/0x190
[ 1056.628727][T15154]  __x64_sys_write+0x3e/0x50
[ 1056.633372][T15154]  do_syscall_64+0x44/0xd0
[ 1056.637910][T15154]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1056.643791][T15154] RIP: 0033:0x7fd6559cc049
[ 1056.648192][T15154] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1056.667772][T15154] RSP: 002b:00007fd654b42168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1056.676168][T15154] RAX: ffffffffffffffda RBX: 00007fd655adef60 RCX: 00007fd6559cc049
[ 1056.684114][T15154] RDX: 0000000000000012 RSI: 0000000020000080 RDI: 0000000000000006
[ 1056.692076][T15154] RBP: 00007fd655a2608d R08: 0000000000000000 R09: 0000000000000000
[ 1056.700434][T15154] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1056.708384][T15154] R13: 00007ffda0be2f9f R14: 00007fd654b42300 R15: 0000000000022000
[ 1056.716339][T15154]  </TASK>
[ 1056.719393][T15154] memory: usage 240kB, limit 0kB, failcnt 6864
[ 1056.725588][T15154] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1056.732456][T15154] Memory cgroup stats for /syz0:
[ 1056.741172][T15154] anon 45056
[ 1056.741172][T15154] file 81920
[ 1056.741172][T15154] kernel_stack 0
[ 1056.741172][T15154] pagetables 8192
[ 1056.741172][T15154] percpu 0
[ 1056.741172][T15154] sock 0
[ 1056.741172][T15154] vmalloc 0
11:29:32 executing program 2:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
socket$inet6(0xa, 0x0, 0x0)
setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x30, 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x0, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x4d00000000000000, 0x12)

[ 1056.741172][T15154] shmem 77824
[ 1056.741172][T15154] file_mapped 77824
[ 1056.741172][T15154] file_dirty 4096
[ 1056.741172][T15154] file_writeback 0
[ 1056.741172][T15154] swapcached 0
[ 1056.741172][T15154] inactive_anon 61440
[ 1056.741172][T15154] active_anon 61440
[ 1056.741172][T15154] inactive_file 0
[ 1056.741172][T15154] active_file 4096
[ 1056.741172][T15154] unevictable 0
[ 1056.741172][T15154] slab_reclaimable 20344
[ 1056.741172][T15154] slab_unreclaimable 63784
[ 1056.741172][T15154] slab 84128
[ 1056.741172][T15154] workingset_refault_anon 0
[ 1056.741172][T15154] workingset_refault_file 2
[ 1056.741172][T15154] workingset_activate_anon 0
[ 1056.741172][T15154] workingset_activate_file 0
[ 1056.741172][T15154] workingset_restore_anon 0
[ 1056.835921][T15154] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=15107,uid=0
[ 1056.851221][T15154] Memory cgroup out of memory: Killed process 15107 (syz-executor.0) total-vm:48480kB, anon-rss:360kB, file-rss:14336kB, shmem-rss:0kB, UID:0 pgtables:76kB oom_score_adj:0
11:29:32 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
r0 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
chroot(&(0x7f0000000240)='./file0\x00')
r2 = openat$cgroup(r1, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r3 = openat$cgroup_int(r2, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write(r1, &(0x7f00000000c0)="9bb3e969f96e9fb7d25566397a2caf24015d0bdc40d42548e8c209387e14e4dab2ce9665b75a4876e5d0080c525ae5", 0x2f)
mkdirat$cgroup(r0, &(0x7f0000000100)='syz1\x00', 0x1ff)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r3, &(0x7f0000000080), 0x12)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56) (async)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) (async)
chroot(&(0x7f0000000240)='./file0\x00') (async)
openat$cgroup(r1, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0) (async)
openat$cgroup_int(r2, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0) (async)
write(r1, &(0x7f00000000c0)="9bb3e969f96e9fb7d25566397a2caf24015d0bdc40d42548e8c209387e14e4dab2ce9665b75a4876e5d0080c525ae5", 0x2f) (async)
mkdirat$cgroup(r0, &(0x7f0000000100)='syz1\x00', 0x1ff) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) (async)
write$cgroup_int(r3, &(0x7f0000000080), 0x12) (async)

[ 1056.869019][   T26] oom_reaper: reaped process 15107 (syz-executor.0), now anon-rss:0kB, file-rss:14336kB, shmem-rss:64kB
11:29:32 executing program 2:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
socket$inet6(0xa, 0x0, 0x0)
setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x30, 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x0, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x5000000000000000, 0x12)

[ 1056.919552][T15180] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=0
[ 1056.929682][T15180] CPU: 1 PID: 15180 Comm: syz-executor.3 Not tainted 5.17.0-rc7-syzkaller-00078-g3bf7edc84a9e-dirty #0
[ 1056.940700][T15180] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1056.950749][T15180] Call Trace:
[ 1056.954007][T15180]  <TASK>
[ 1056.956923][T15180]  dump_stack_lvl+0xd6/0x122
[ 1056.961512][T15180]  dump_stack+0x11/0x1b
[ 1056.965678][T15180]  dump_header+0x98/0x410
[ 1056.970020][T15180]  out_of_memory+0x65c/0x8c0
[ 1056.974585][T15180]  memory_max_write+0x32c/0x3d0
[ 1056.979453][T15180]  ? memory_max_show+0x70/0x70
[ 1056.984245][T15180]  cgroup_file_write+0x161/0x300
[ 1056.989161][T15180]  ? __check_object_size+0x22a/0x2d0
[ 1056.994422][T15180]  ? cgroup_seqfile_stop+0x70/0x70
[ 1056.999508][T15180]  kernfs_fop_write_iter+0x1d3/0x2d0
[ 1057.004838][T15180]  vfs_write+0x7f5/0x950
[ 1057.009059][T15180]  ksys_write+0xd9/0x190
[ 1057.013295][T15180]  __x64_sys_write+0x3e/0x50
[ 1057.017903][T15180]  do_syscall_64+0x44/0xd0
[ 1057.022301][T15180]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1057.028255][T15180] RIP: 0033:0x7f8cc712a049
[ 1057.032650][T15180] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1057.052232][T15180] RSP: 002b:00007f8cc62a0168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1057.060628][T15180] RAX: ffffffffffffffda RBX: 00007f8cc723cf60 RCX: 00007f8cc712a049
[ 1057.068579][T15180] RDX: 0000000000000012 RSI: 0000000020000080 RDI: 000000000000000f
[ 1057.076538][T15180] RBP: 00007f8cc718408d R08: 0000000000000000 R09: 0000000000000000
[ 1057.084496][T15180] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1057.092490][T15180] R13: 00007fff26a0d88f R14: 00007f8cc62a0300 R15: 0000000000022000
[ 1057.100441][T15180]  </TASK>
[ 1057.103482][T15180] memory: usage 112kB, limit 5418393301680128kB, failcnt 6883
[ 1057.110956][T15180] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
11:29:33 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
pipe(&(0x7f0000000200)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
write$binfmt_misc(r0, &(0x7f0000000080)=ANY=[], 0x5)
r1 = signalfd4(0xffffffffffffffff, &(0x7f0000000280)={[0xffff]}, 0x8, 0x0)
fsconfig$FSCONFIG_SET_PATH(r0, 0x3, &(0x7f0000000100)='cgroup2\x00', &(0x7f0000000240)='\x00', r1)
r2 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
write$9p(r2, &(0x7f00000000c0)="9e74fbf777fac87573f60d133f29a05f10f4171f5e1ab505c7f332c8", 0x1c)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r4 = openat$cgroup(r3, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r5 = openat$cgroup_int(r4, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r5, &(0x7f0000000080), 0x12)

[ 1057.117841][T15180] Memory cgroup stats for /syz0:
[ 1057.119305][T15180] anon 0
[ 1057.119305][T15180] file 81920
[ 1057.119305][T15180] kernel_stack 0
[ 1057.119305][T15180] pagetables 0
[ 1057.119305][T15180] percpu 0
[ 1057.119305][T15180] sock 0
[ 1057.119305][T15180] vmalloc 0
[ 1057.119305][T15180] shmem 77824
[ 1057.119305][T15180] file_mapped 77824
[ 1057.119305][T15180] file_dirty 4096
[ 1057.119305][T15180] file_writeback 0
[ 1057.119305][T15180] swapcached 0
[ 1057.119305][T15180] inactive_anon 16384
[ 1057.119305][T15180] active_anon 61440
[ 1057.119305][T15180] inactive_file 0
[ 1057.119305][T15180] active_file 4096
[ 1057.119305][T15180] unevictable 0
[ 1057.119305][T15180] slab_reclaimable 9128
[ 1057.119305][T15180] slab_unreclaimable 16400
[ 1057.119305][T15180] slab 25528
[ 1057.119305][T15180] workingset_refault_anon 0
[ 1057.119305][T15180] workingset_refault_file 2
[ 1057.119305][T15180] workingset_activate_anon 0
[ 1057.119305][T15180] workingset_activate_file 0
[ 1057.119305][T15180] workingset_restore_anon 0
[ 1057.213321][T15180] Out of memory and no killable processes...
[ 1057.249613][T15224] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1057.259850][T15224] CPU: 0 PID: 15224 Comm: syz-executor.1 Not tainted 5.17.0-rc7-syzkaller-00078-g3bf7edc84a9e-dirty #0
[ 1057.270862][T15224] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1057.280892][T15224] Call Trace:
[ 1057.284146][T15224]  <TASK>
[ 1057.287055][T15224]  dump_stack_lvl+0xd6/0x122
[ 1057.291643][T15224]  dump_stack+0x11/0x1b
[ 1057.295845][T15224]  dump_header+0x98/0x410
[ 1057.300155][T15224]  out_of_memory+0x65c/0x8c0
[ 1057.304726][T15224]  memory_max_write+0x32c/0x3d0
[ 1057.309558][T15224]  ? memory_max_show+0x70/0x70
[ 1057.314300][T15224]  cgroup_file_write+0x161/0x300
[ 1057.319270][T15224]  ? __check_object_size+0x22a/0x2d0
[ 1057.324563][T15224]  ? cgroup_seqfile_stop+0x70/0x70
[ 1057.329651][T15224]  kernfs_fop_write_iter+0x1d3/0x2d0
[ 1057.334916][T15224]  vfs_write+0x7f5/0x950
[ 1057.339198][T15224]  ksys_write+0xd9/0x190
[ 1057.343417][T15224]  __x64_sys_write+0x3e/0x50
[ 1057.347981][T15224]  do_syscall_64+0x44/0xd0
[ 1057.352377][T15224]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1057.358308][T15224] RIP: 0033:0x7fd6559cc049
[ 1057.362695][T15224] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1057.382306][T15224] RSP: 002b:00007fd654b42168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1057.390690][T15224] RAX: ffffffffffffffda RBX: 00007fd655adef60 RCX: 00007fd6559cc049
[ 1057.398638][T15224] RDX: 0000000000000012 RSI: 0000000020000080 RDI: 0000000000000013
[ 1057.406602][T15224] RBP: 00007fd655a2608d R08: 0000000000000000 R09: 0000000000000000
[ 1057.414561][T15224] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1057.422535][T15224] R13: 00007ffda0be2f9f R14: 00007fd654b42300 R15: 0000000000022000
[ 1057.430486][T15224]  </TASK>
[ 1057.433740][T15224] memory: usage 112kB, limit 0kB, failcnt 6883
[ 1057.439895][T15224] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1057.446732][T15224] Memory cgroup stats for /syz0:
[ 1057.449086][T15224] anon 0
[ 1057.449086][T15224] file 81920
[ 1057.449086][T15224] kernel_stack 0
[ 1057.449086][T15224] pagetables 0
[ 1057.449086][T15224] percpu 0
[ 1057.449086][T15224] sock 0
[ 1057.449086][T15224] vmalloc 0
[ 1057.449086][T15224] shmem 77824
[ 1057.449086][T15224] file_mapped 77824
[ 1057.449086][T15224] file_dirty 4096
[ 1057.449086][T15224] file_writeback 0
[ 1057.449086][T15224] swapcached 0
[ 1057.449086][T15224] inactive_anon 16384
[ 1057.449086][T15224] active_anon 61440
11:29:33 executing program 5:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r1, &(0x7f0000000000), 0x10)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff000000000000000000090000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b', @ANYRES32], 0x50}}, 0x0)

11:29:33 executing program 4:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff00000000007fff0000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b'], 0x50}}, 0x0)

11:29:33 executing program 2:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
socket$inet6(0xa, 0x0, 0x0)
setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x30, 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x0, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x5400000000000000, 0x12)

11:29:33 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
r0 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
socket$inet6(0xa, 0x80001, 0x0)
read(r0, &(0x7f00000000c0)=""/118, 0x76)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = openat$cgroup(r1, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x80000, 0x0)
r3 = openat$cgroup_int(r2, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r3, &(0x7f0000000080), 0x12)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
socket$inet6(0xa, 0x80001, 0x0) (async)
read(r0, &(0x7f00000000c0)=""/118, 0x76) (async)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) (async)
openat$cgroup(r1, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0) (async)
socket(0x0, 0x80000, 0x0) (async)
openat$cgroup_int(r2, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0) (async)
write$cgroup_int(r3, &(0x7f0000000080), 0x12) (async)

11:29:33 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
pipe(&(0x7f0000000200)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
write$binfmt_misc(r0, &(0x7f0000000080)=ANY=[], 0x5)
r1 = signalfd4(0xffffffffffffffff, &(0x7f0000000280)={[0xffff]}, 0x8, 0x0)
fsconfig$FSCONFIG_SET_PATH(r0, 0x3, &(0x7f0000000100)='cgroup2\x00', &(0x7f0000000240)='\x00', r1)
r2 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
write$9p(r2, &(0x7f00000000c0)="9e74fbf777fac87573f60d133f29a05f10f4171f5e1ab505c7f332c8", 0x1c) (async)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56) (async)
r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r4 = openat$cgroup(r3, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r5 = openat$cgroup_int(r4, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r5, &(0x7f0000000080), 0x12)

[ 1057.449086][T15224] inactive_file 0
[ 1057.449086][T15224] active_file 4096
[ 1057.449086][T15224] unevictable 0
[ 1057.449086][T15224] slab_reclaimable 8928
[ 1057.449086][T15224] slab_unreclaimable 16400
[ 1057.449086][T15224] slab 25328
[ 1057.449086][T15224] workingset_refault_anon 0
[ 1057.449086][T15224] workingset_refault_file 2
[ 1057.449086][T15224] workingset_activate_anon 0
[ 1057.449086][T15224] workingset_activate_file 0
[ 1057.449086][T15224] workingset_restore_anon 0
[ 1057.543071][T15224] Out of memory and no killable processes...
[ 1057.592706][T15235] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1057.602920][T15235] CPU: 0 PID: 15235 Comm: syz-executor.1 Not tainted 5.17.0-rc7-syzkaller-00078-g3bf7edc84a9e-dirty #0
[ 1057.613939][T15235] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1057.623985][T15235] Call Trace:
[ 1057.627253][T15235]  <TASK>
[ 1057.630215][T15235]  dump_stack_lvl+0xd6/0x122
[ 1057.634796][T15235]  dump_stack+0x11/0x1b
[ 1057.638934][T15235]  dump_header+0x98/0x410
[ 1057.643345][T15235]  out_of_memory+0x65c/0x8c0
[ 1057.647919][T15235]  memory_max_write+0x32c/0x3d0
[ 1057.652756][T15235]  ? memory_max_show+0x70/0x70
[ 1057.657501][T15235]  cgroup_file_write+0x161/0x300
[ 1057.662477][T15235]  ? __check_object_size+0x22a/0x2d0
[ 1057.667745][T15235]  ? cgroup_seqfile_stop+0x70/0x70
[ 1057.672836][T15235]  kernfs_fop_write_iter+0x1d3/0x2d0
[ 1057.678145][T15235]  vfs_write+0x7f5/0x950
[ 1057.682370][T15235]  ksys_write+0xd9/0x190
[ 1057.686592][T15235]  __x64_sys_write+0x3e/0x50
[ 1057.691208][T15235]  do_syscall_64+0x44/0xd0
[ 1057.695612][T15235]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1057.701541][T15235] RIP: 0033:0x7fd6559cc049
[ 1057.705936][T15235] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1057.725559][T15235] RSP: 002b:00007fd654b42168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1057.733958][T15235] RAX: ffffffffffffffda RBX: 00007fd655adef60 RCX: 00007fd6559cc049
[ 1057.741972][T15235] RDX: 0000000000000012 RSI: 0000000020000080 RDI: 0000000000000013
[ 1057.749980][T15235] RBP: 00007fd655a2608d R08: 0000000000000000 R09: 0000000000000000
[ 1057.757932][T15235] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1057.765893][T15235] R13: 00007ffda0be2f9f R14: 00007fd654b42300 R15: 0000000000022000
[ 1057.773882][T15235]  </TASK>
[ 1057.776928][T15235] memory: usage 112kB, limit 5910974510923776kB, failcnt 6883
[ 1057.784377][T15235] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1057.791239][T15235] Memory cgroup stats for /syz0:
[ 1057.796567][T15235] anon 0
[ 1057.796567][T15235] file 81920
[ 1057.796567][T15235] kernel_stack 0
[ 1057.796567][T15235] pagetables 0
[ 1057.796567][T15235] percpu 0
[ 1057.796567][T15235] sock 0
[ 1057.796567][T15235] vmalloc 0
[ 1057.796567][T15235] shmem 77824
[ 1057.796567][T15235] file_mapped 77824
[ 1057.796567][T15235] file_dirty 4096
[ 1057.796567][T15235] file_writeback 0
[ 1057.796567][T15235] swapcached 0
[ 1057.796567][T15235] inactive_anon 16384
[ 1057.796567][T15235] active_anon 61440
[ 1057.796567][T15235] inactive_file 0
[ 1057.796567][T15235] active_file 4096
[ 1057.796567][T15235] unevictable 0
[ 1057.796567][T15235] slab_reclaimable 8928
[ 1057.796567][T15235] slab_unreclaimable 16400
[ 1057.796567][T15235] slab 25328
[ 1057.796567][T15235] workingset_refault_anon 0
[ 1057.796567][T15235] workingset_refault_file 2
[ 1057.796567][T15235] workingset_activate_anon 0
[ 1057.796567][T15235] workingset_activate_file 0
[ 1057.796567][T15235] workingset_restore_anon 0
[ 1057.890596][T15235] Out of memory and no killable processes...
11:29:33 executing program 0:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
statx(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x400, 0x400, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, <r0=>0x0})
quotactl(0xfffffffffffffffc, &(0x7f0000000240)='./file0\x00', r0, &(0x7f00000003c0)="1151191a3c6fa2e4f25f95cfe68417c9a2f189c0fa8cfd810d0fbf0e75fe4de6e7350a403ed59163e099f9e7f06c4bc2c79a2e47467f726a95b09179b50433106be118872368e72a16ecb30bdf874a109f371f9d55a86ede1e62d4d3f42d982a3dfb8cff2b1c994cecbd22a9c46c79fe3ce4f6e2ccd805db06d0e48181632210c67aaee05525fb1d0a93150ade7ac0d2a2d5a72261b3ae6ee8ff8c7ecdd4779b7e3e192b169844e412dd815e59fedbdf287721e9a9") (async)
r1 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000100)='ns/cgroup\x00')
close_range(r1, r2, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r4 = openat$cgroup(r3, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r5 = openat$cgroup_int(r4, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r5, &(0x7f00000000c0), 0x12) (async)
pipe(&(0x7f0000000200)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
write$binfmt_misc(r6, &(0x7f0000000080)=ANY=[], 0x5) (async, rerun: 64)
openat$cgroup_ro(r6, &(0x7f0000000080)='cpuacct.usage_percpu_sys\x00', 0x0, 0x0) (rerun: 64)

11:29:33 executing program 2:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
socket$inet6(0xa, 0x0, 0x0)
setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x30, 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x0, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x6500000000000000, 0x12)

11:29:33 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
r0 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
socket$inet6(0xa, 0x80001, 0x0)
read(r0, &(0x7f00000000c0)=""/118, 0x76) (async)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = openat$cgroup(r1, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x80000, 0x0) (async)
r3 = openat$cgroup_int(r2, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r3, &(0x7f0000000080), 0x12)

11:29:33 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
pipe(&(0x7f0000000200)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
write$binfmt_misc(r0, &(0x7f0000000080)=ANY=[], 0x5) (async)
r1 = signalfd4(0xffffffffffffffff, &(0x7f0000000280)={[0xffff]}, 0x8, 0x0)
fsconfig$FSCONFIG_SET_PATH(r0, 0x3, &(0x7f0000000100)='cgroup2\x00', &(0x7f0000000240)='\x00', r1)
r2 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
write$9p(r2, &(0x7f00000000c0)="9e74fbf777fac87573f60d133f29a05f10f4171f5e1ab505c7f332c8", 0x1c) (async, rerun: 64)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async, rerun: 64)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56) (async)
r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r4 = openat$cgroup(r3, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r5 = openat$cgroup_int(r4, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r5, &(0x7f0000000080), 0x12)

11:29:33 executing program 0:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
statx(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x400, 0x400, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, <r0=>0x0})
quotactl(0xfffffffffffffffc, &(0x7f0000000240)='./file0\x00', r0, &(0x7f00000003c0)="1151191a3c6fa2e4f25f95cfe68417c9a2f189c0fa8cfd810d0fbf0e75fe4de6e7350a403ed59163e099f9e7f06c4bc2c79a2e47467f726a95b09179b50433106be118872368e72a16ecb30bdf874a109f371f9d55a86ede1e62d4d3f42d982a3dfb8cff2b1c994cecbd22a9c46c79fe3ce4f6e2ccd805db06d0e48181632210c67aaee05525fb1d0a93150ade7ac0d2a2d5a72261b3ae6ee8ff8c7ecdd4779b7e3e192b169844e412dd815e59fedbdf287721e9a9")
r1 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000100)='ns/cgroup\x00')
close_range(r1, r2, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r4 = openat$cgroup(r3, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r5 = openat$cgroup_int(r4, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r5, &(0x7f00000000c0), 0x12)
pipe(&(0x7f0000000200)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
write$binfmt_misc(r6, &(0x7f0000000080)=ANY=[], 0x5)
openat$cgroup_ro(r6, &(0x7f0000000080)='cpuacct.usage_percpu_sys\x00', 0x0, 0x0)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
statx(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x400, 0x400, &(0x7f00000002c0)) (async)
quotactl(0xfffffffffffffffc, &(0x7f0000000240)='./file0\x00', r0, &(0x7f00000003c0)="1151191a3c6fa2e4f25f95cfe68417c9a2f189c0fa8cfd810d0fbf0e75fe4de6e7350a403ed59163e099f9e7f06c4bc2c79a2e47467f726a95b09179b50433106be118872368e72a16ecb30bdf874a109f371f9d55a86ede1e62d4d3f42d982a3dfb8cff2b1c994cecbd22a9c46c79fe3ce4f6e2ccd805db06d0e48181632210c67aaee05525fb1d0a93150ade7ac0d2a2d5a72261b3ae6ee8ff8c7ecdd4779b7e3e192b169844e412dd815e59fedbdf287721e9a9") (async)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
syz_open_procfs$namespace(0x0, &(0x7f0000000100)='ns/cgroup\x00') (async)
close_range(r1, r2, 0x0) (async)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) (async)
openat$cgroup(r3, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0) (async)
openat$cgroup_int(r4, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0) (async)
write$cgroup_int(r5, &(0x7f00000000c0), 0x12) (async)
pipe(&(0x7f0000000200)) (async)
write$binfmt_misc(r6, &(0x7f0000000080)=ANY=[], 0x5) (async)
openat$cgroup_ro(r6, &(0x7f0000000080)='cpuacct.usage_percpu_sys\x00', 0x0, 0x0) (async)

[ 1057.966203][T15260] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1057.976498][T15260] CPU: 0 PID: 15260 Comm: syz-executor.1 Not tainted 5.17.0-rc7-syzkaller-00078-g3bf7edc84a9e-dirty #0
[ 1057.987513][T15260] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1057.997655][T15260] Call Trace:
[ 1058.000930][T15260]  <TASK>
[ 1058.003849][T15260]  dump_stack_lvl+0xd6/0x122
[ 1058.008447][T15260]  dump_stack+0x11/0x1b
[ 1058.012606][T15260]  dump_header+0x98/0x410
[ 1058.016937][T15260]  out_of_memory+0x65c/0x8c0
[ 1058.021540][T15260]  memory_max_write+0x32c/0x3d0
[ 1058.026392][T15260]  ? memory_max_show+0x70/0x70
[ 1058.031150][T15260]  cgroup_file_write+0x161/0x300
[ 1058.036090][T15260]  ? __check_object_size+0x22a/0x2d0
[ 1058.041362][T15260]  ? cgroup_seqfile_stop+0x70/0x70
[ 1058.046454][T15260]  kernfs_fop_write_iter+0x1d3/0x2d0
[ 1058.051762][T15260]  vfs_write+0x7f5/0x950
[ 1058.056019][T15260]  ksys_write+0xd9/0x190
[ 1058.060278][T15260]  __x64_sys_write+0x3e/0x50
[ 1058.064849][T15260]  do_syscall_64+0x44/0xd0
[ 1058.069248][T15260]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1058.075170][T15260] RIP: 0033:0x7fd6559cc049
[ 1058.079622][T15260] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1058.099214][T15260] RSP: 002b:00007fd654b42168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1058.107609][T15260] RAX: ffffffffffffffda RBX: 00007fd655adef60 RCX: 00007fd6559cc049
[ 1058.115562][T15260] RDX: 0000000000000012 RSI: 0000000020000080 RDI: 0000000000000013
[ 1058.123517][T15260] RBP: 00007fd655a2608d R08: 0000000000000000 R09: 0000000000000000
[ 1058.131473][T15260] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1058.139437][T15260] R13: 00007ffda0be2f9f R14: 00007fd654b42300 R15: 0000000000022000
[ 1058.147410][T15260]  </TASK>
[ 1058.150442][T15260] memory: usage 104kB, limit 0kB, failcnt 6883
[ 1058.156660][T15260] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1058.163619][T15260] Memory cgroup stats for /syz0:
[ 1058.172972][T15260] anon 0
[ 1058.172972][T15260] file 81920
[ 1058.172972][T15260] kernel_stack 0
[ 1058.172972][T15260] pagetables 0
[ 1058.172972][T15260] percpu 0
[ 1058.172972][T15260] sock 0
[ 1058.172972][T15260] vmalloc 0
[ 1058.172972][T15260] shmem 77824
[ 1058.172972][T15260] file_mapped 77824
[ 1058.172972][T15260] file_dirty 4096
[ 1058.172972][T15260] file_writeback 0
[ 1058.172972][T15260] swapcached 0
[ 1058.172972][T15260] inactive_anon 16384
[ 1058.172972][T15260] active_anon 61440
11:29:34 executing program 4:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff00000088a8ffff0000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b'], 0x50}}, 0x0)

11:29:34 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x0, 0x0, 0x56)
socket$inet6(0xa, 0x80001, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x1d, 0x80000, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080), 0x12)

11:29:34 executing program 5:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r1, &(0x7f0000000000), 0x10)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff0000000000000000000a0000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b', @ANYRES32], 0x50}}, 0x0)

11:29:34 executing program 2:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
socket$inet6(0xa, 0x0, 0x0)
setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x30, 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x0, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x6700000000000000, 0x12)

[ 1058.172972][T15260] inactive_file 0
[ 1058.172972][T15260] active_file 4096
[ 1058.172972][T15260] unevictable 0
[ 1058.172972][T15260] slab_reclaimable 8928
[ 1058.172972][T15260] slab_unreclaimable 16136
[ 1058.172972][T15260] slab 25064
[ 1058.172972][T15260] workingset_refault_anon 0
[ 1058.172972][T15260] workingset_refault_file 2
[ 1058.172972][T15260] workingset_activate_anon 0
[ 1058.172972][T15260] workingset_activate_file 0
[ 1058.172972][T15260] workingset_restore_anon 0
[ 1058.267068][T15260] Out of memory and no killable processes...
[ 1058.320637][T15270] can: request_module (can-proto-0) failed.
[ 1058.349497][T15270] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=0
[ 1058.359450][T15270] CPU: 0 PID: 15270 Comm: syz-executor.3 Not tainted 5.17.0-rc7-syzkaller-00078-g3bf7edc84a9e-dirty #0
11:29:34 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r2, &(0x7f0000000080), 0x12)
openat$cgroup_subtree(0xffffffffffffffff, &(0x7f00000000c0), 0x2, 0x0)

[ 1058.370522][T15270] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1058.380576][T15270] Call Trace:
[ 1058.383853][T15270]  <TASK>
[ 1058.386783][T15270]  dump_stack_lvl+0xd6/0x122
[ 1058.391381][T15270]  dump_stack+0x11/0x1b
[ 1058.395648][T15270]  dump_header+0x98/0x410
[ 1058.400039][T15270]  out_of_memory+0x65c/0x8c0
[ 1058.404631][T15270]  ? _raw_spin_unlock_irqrestore+0x3d/0x60
[ 1058.410532][T15270]  memory_max_write+0x32c/0x3d0
[ 1058.415384][T15270]  ? memory_max_show+0x70/0x70
[ 1058.420476][T15270]  cgroup_file_write+0x161/0x300
[ 1058.425415][T15270]  ? __check_object_size+0x22a/0x2d0
[ 1058.430747][T15270]  ? cgroup_seqfile_stop+0x70/0x70
[ 1058.435857][T15270]  kernfs_fop_write_iter+0x1d3/0x2d0
[ 1058.441175][T15270]  vfs_write+0x7f5/0x950
[ 1058.445420][T15270]  ksys_write+0xd9/0x190
[ 1058.449672][T15270]  __x64_sys_write+0x3e/0x50
[ 1058.454319][T15270]  do_syscall_64+0x44/0xd0
[ 1058.458775][T15270]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1058.464665][T15270] RIP: 0033:0x7f8cc712a049
[ 1058.469145][T15270] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1058.488764][T15270] RSP: 002b:00007f8cc62a0168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1058.497198][T15270] RAX: ffffffffffffffda RBX: 00007f8cc723cf60 RCX: 00007f8cc712a049
[ 1058.505169][T15270] RDX: 0000000000000012 RSI: 0000000020000080 RDI: 000000000000000f
[ 1058.513193][T15270] RBP: 00007f8cc718408d R08: 0000000000000000 R09: 0000000000000000
11:29:34 executing program 5:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r1, &(0x7f0000000000), 0x10)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff0000000000000000000b0000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b', @ANYRES32], 0x50}}, 0x0)

[ 1058.521165][T15270] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1058.529177][T15270] R13: 00007fff26a0d88f R14: 00007f8cc62a0300 R15: 0000000000022000
[ 1058.537190][T15270]  </TASK>
[ 1058.540380][T15270] memory: usage 104kB, limit 0kB, failcnt 6883
[ 1058.546543][T15270] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1058.553427][T15270] Memory cgroup stats for /syz0:
[ 1058.575099][T15270] anon 0
[ 1058.575099][T15270] file 81920
[ 1058.575099][T15270] kernel_stack 0
[ 1058.575099][T15270] pagetables 0
[ 1058.575099][T15270] percpu 0
[ 1058.575099][T15270] sock 0
[ 1058.575099][T15270] vmalloc 0
[ 1058.575099][T15270] shmem 77824
[ 1058.575099][T15270] file_mapped 77824
[ 1058.575099][T15270] file_dirty 4096
[ 1058.575099][T15270] file_writeback 0
[ 1058.575099][T15270] swapcached 0
[ 1058.575099][T15270] inactive_anon 16384
[ 1058.575099][T15270] active_anon 61440
11:29:34 executing program 2:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
socket$inet6(0xa, 0x0, 0x0)
setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x30, 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x0, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x6b00000000000000, 0x12)

[ 1058.575099][T15270] inactive_file 0
[ 1058.575099][T15270] active_file 4096
[ 1058.575099][T15270] unevictable 0
[ 1058.575099][T15270] slab_reclaimable 6440
[ 1058.575099][T15270] slab_unreclaimable 16136
[ 1058.575099][T15270] slab 22576
[ 1058.575099][T15270] workingset_refault_anon 0
[ 1058.575099][T15270] workingset_refault_file 2
[ 1058.575099][T15270] workingset_activate_anon 0
[ 1058.575099][T15270] workingset_activate_file 0
[ 1058.575099][T15270] workingset_restore_anon 0
[ 1058.669222][T15270] Out of memory and no killable processes...
[ 1058.675206][T15285] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1058.685458][T15285] CPU: 1 PID: 15285 Comm: syz-executor.1 Not tainted 5.17.0-rc7-syzkaller-00078-g3bf7edc84a9e-dirty #0
[ 1058.696472][T15285] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1058.706624][T15285] Call Trace:
[ 1058.709908][T15285]  <TASK>
[ 1058.712911][T15285]  dump_stack_lvl+0xd6/0x122
[ 1058.717507][T15285]  dump_stack+0x11/0x1b
[ 1058.721666][T15285]  dump_header+0x98/0x410
[ 1058.726001][T15285]  out_of_memory+0x65c/0x8c0
[ 1058.730595][T15285]  memory_max_write+0x32c/0x3d0
[ 1058.735525][T15285]  ? memory_max_show+0x70/0x70
[ 1058.740285][T15285]  cgroup_file_write+0x161/0x300
[ 1058.745230][T15285]  ? __check_object_size+0x22a/0x2d0
[ 1058.750519][T15285]  ? cgroup_seqfile_stop+0x70/0x70
[ 1058.755664][T15285]  kernfs_fop_write_iter+0x1d3/0x2d0
[ 1058.760956][T15285]  vfs_write+0x7f5/0x950
[ 1058.765232][T15285]  ksys_write+0xd9/0x190
[ 1058.769470][T15285]  __x64_sys_write+0x3e/0x50
11:29:34 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async, rerun: 32)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async, rerun: 32)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
set_mempolicy(0x0, 0x0, 0x56) (async)
socket$inet6(0xa, 0x80001, 0x0) (async)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x1d, 0x80000, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080), 0x12)

[ 1058.774055][T15285]  do_syscall_64+0x44/0xd0
[ 1058.778485][T15285]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1058.784377][T15285] RIP: 0033:0x7fd6559cc049
[ 1058.788828][T15285] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1058.808495][T15285] RSP: 002b:00007fd654b21168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1058.816899][T15285] RAX: ffffffffffffffda RBX: 00007fd655adf030 RCX: 00007fd6559cc049
[ 1058.824865][T15285] RDX: 0000000000000012 RSI: 0000000020000080 RDI: 0000000000000005
[ 1058.832835][T15285] RBP: 00007fd655a2608d R08: 0000000000000000 R09: 0000000000000000
[ 1058.840791][T15285] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1058.848822][T15285] R13: 00007ffda0be2f9f R14: 00007fd654b21300 R15: 0000000000022000
[ 1058.856823][T15285]  </TASK>
[ 1058.860078][T15285] memory: usage 104kB, limit 0kB, failcnt 6883
[ 1058.866222][T15285] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
11:29:34 executing program 2:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
socket$inet6(0xa, 0x0, 0x0)
setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x30, 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x0, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x6d00000000000000, 0x12)

[ 1058.873085][T15285] Memory cgroup stats for /syz0:
[ 1058.873627][T15285] anon 0
[ 1058.873627][T15285] file 81920
[ 1058.873627][T15285] kernel_stack 0
[ 1058.873627][T15285] pagetables 0
[ 1058.873627][T15285] percpu 0
[ 1058.873627][T15285] sock 0
[ 1058.873627][T15285] vmalloc 0
[ 1058.873627][T15285] shmem 77824
[ 1058.873627][T15285] file_mapped 77824
[ 1058.873627][T15285] file_dirty 4096
[ 1058.873627][T15285] file_writeback 0
[ 1058.873627][T15285] swapcached 0
[ 1058.873627][T15285] inactive_anon 16384
[ 1058.873627][T15285] active_anon 61440
[ 1058.873627][T15285] inactive_file 0
[ 1058.873627][T15285] active_file 4096
[ 1058.873627][T15285] unevictable 0
[ 1058.873627][T15285] slab_reclaimable 6440
[ 1058.873627][T15285] slab_unreclaimable 16136
[ 1058.873627][T15285] slab 22576
[ 1058.873627][T15285] workingset_refault_anon 0
[ 1058.873627][T15285] workingset_refault_file 2
[ 1058.873627][T15285] workingset_activate_anon 0
[ 1058.873627][T15285] workingset_activate_file 0
[ 1058.873627][T15285] workingset_restore_anon 0
[ 1058.967861][T15285] Out of memory and no killable processes...
11:29:34 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async, rerun: 64)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (rerun: 64)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56) (async)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r2, &(0x7f0000000080), 0x12) (async)
openat$cgroup_subtree(0xffffffffffffffff, &(0x7f00000000c0), 0x2, 0x0)

11:29:34 executing program 4:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff0000007fffffff0000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b'], 0x50}}, 0x0)

[ 1059.002773][T15293] can: request_module (can-proto-0) failed.
[ 1059.388196][T13062] device hsr_slave_0 left promiscuous mode
[ 1059.394458][T13062] device hsr_slave_1 left promiscuous mode
[ 1059.400577][T13062] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1059.407984][T13062] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1059.415572][T13062] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1059.422957][T13062] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1059.431733][T13062] device bridge_slave_1 left promiscuous mode
[ 1059.437937][T13062] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1059.445387][T13062] device bridge_slave_0 left promiscuous mode
[ 1059.451528][T13062] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1059.461654][T13062] device veth1_macvtap left promiscuous mode
[ 1059.467668][T13062] device veth0_macvtap left promiscuous mode
[ 1059.473656][T13062] device veth1_vlan left promiscuous mode
[ 1059.479412][T13062] device veth0_vlan left promiscuous mode
[ 1059.559967][T13062] team0 (unregistering): Port device team_slave_1 removed
[ 1059.569841][T13062] team0 (unregistering): Port device team_slave_0 removed
[ 1059.579498][T13062] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1059.590688][T13062] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1059.618161][T13062] bond0 (unregistering): Released all slaves
[ 1059.971982][T15313] chnl_net:caif_netlink_parms(): no params data found
[ 1060.002148][T15313] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1060.009244][T15313] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1060.016855][T15313] device bridge_slave_0 entered promiscuous mode
[ 1060.023946][T15313] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1060.031075][T15313] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1060.038499][T15313] device bridge_slave_1 entered promiscuous mode
[ 1060.057916][T15313] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1060.068226][T15313] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1060.086756][T15313] team0: Port device team_slave_0 added
[ 1060.093216][T15313] team0: Port device team_slave_1 added
[ 1060.109724][T15313] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1060.116691][T15313] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1060.142675][T15313] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1060.153896][T15313] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1060.160922][T15313] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1060.186814][T15313] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1060.211816][T15313] device hsr_slave_0 entered promiscuous mode
[ 1060.218467][T15313] device hsr_slave_1 entered promiscuous mode
[ 1060.271113][T15313] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1060.278215][T15313] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1060.285446][T15313] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1060.292466][T15313] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1060.318491][T15313] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1060.329263][ T6846] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1060.337401][ T6846] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1060.349917][T15313] 8021q: adding VLAN 0 to HW filter on device team0
[ 1060.356869][ T1928] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 1060.364335][ T1928] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1060.376332][ T1928] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 1060.384865][ T1928] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1060.393318][ T1928] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1060.400402][ T1928] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1060.408215][ T1928] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 1060.416588][ T1928] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1060.424806][ T1928] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1060.431834][ T1928] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1060.439402][ T1928] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 1060.451190][T23294] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 1060.459700][T23294] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 1060.468114][T23294] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 1060.476766][T23294] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 1060.486096][ T6846] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 1060.495508][ T6846] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 1060.506707][ T6846] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 1060.515062][ T6846] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1060.523150][ T6846] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 1060.531344][ T6846] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1060.540777][T15313] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 1060.554934][T15313] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1060.562566][ T6849] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 1060.570068][ T6849] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 1060.638511][ T6849] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 1060.647255][ T6849] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1060.684146][T15313] device veth0_vlan entered promiscuous mode
[ 1060.690778][ T6846] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 1060.699043][ T6846] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1060.708499][ T6846] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1060.716055][ T6846] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1060.725576][T15313] device veth1_vlan entered promiscuous mode
[ 1060.737921][ T6846] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 1060.745924][ T6846] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 1060.753809][ T6846] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 1060.762092][ T6846] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1060.771874][T15313] device veth0_macvtap entered promiscuous mode
[ 1060.782509][T15313] device veth1_macvtap entered promiscuous mode
[ 1060.793557][T15313] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 1060.803995][T15313] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1060.813866][T15313] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 1060.824384][T15313] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1060.834267][T15313] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 1060.844683][T15313] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1060.854472][T15313] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 1060.864876][T15313] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1060.874705][T15313] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 1060.885118][T15313] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1060.896081][T15313] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1060.904692][T15313] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 1060.915141][T15313] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1060.925047][T15313] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 1060.935483][T15313] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1060.945305][T15313] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 1060.955712][T15313] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1060.965514][T15313] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 1060.975954][T15313] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1060.985800][T15313] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 1060.996392][T15313] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1061.008632][T15313] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1061.015924][T12912] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 1061.023996][T12912] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 1061.032812][T12912] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 1061.041207][T12912] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1061.050560][T12912] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 1061.059112][T12912] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 1061.080083][ T6846] ==================================================================
[ 1061.088157][ T6846] BUG: KCSAN: data-race in free_kthread_struct / kthread_is_per_cpu
[ 1061.096116][ T6846] 
[ 1061.098417][ T6846] write to 0xffff88810a188968 of 8 bytes by task 15345 on cpu 0:
[ 1061.106154][ T6846]  free_kthread_struct+0x5f/0xa0
[ 1061.111116][ T6846]  begin_new_exec+0xf57/0x1430
[ 1061.115856][ T6846]  load_elf_binary+0x55a/0x26f0
[ 1061.120681][ T6846]  exec_binprm+0x1d9/0x720
[ 1061.125116][ T6846]  bprm_execve+0x3b5/0x520
[ 1061.129511][ T6846]  kernel_execve+0x61b/0x640
[ 1061.134075][ T6846]  call_usermodehelper_exec_async+0x1a6/0x250
[ 1061.140117][ T6846]  ret_from_fork+0x1f/0x30
[ 1061.144509][ T6846] 
[ 1061.146810][ T6846] read to 0xffff88810a188968 of 8 bytes by task 6846 on cpu 1:
[ 1061.154326][ T6846]  kthread_is_per_cpu+0x18/0x80
[ 1061.159213][ T6846]  can_migrate_task+0xf/0x180
[ 1061.163864][ T6846]  detach_tasks+0xab/0x3a0
[ 1061.168268][ T6846]  load_balance+0x7d3/0xcf0
[ 1061.172745][ T6846]  newidle_balance+0x174/0x350
[ 1061.177485][ T6846]  pick_next_task_fair+0x37/0x260
[ 1061.182486][ T6846]  __schedule+0x267/0x690
[ 1061.186793][ T6846]  schedule+0x81/0xb0
[ 1061.190751][ T6846]  worker_thread+0x8f4/0xa70
[ 1061.195318][ T6846]  kthread+0x1bf/0x1e0
[ 1061.199359][ T6846]  ret_from_fork+0x1f/0x30
[ 1061.203751][ T6846] 
[ 1061.206091][ T6846] value changed: 0xffff888133050000 -> 0x0000000000000000
[ 1061.213275][ T6846] 
[ 1061.215577][ T6846] Reported by Kernel Concurrency Sanitizer on:
[ 1061.221699][ T6846] CPU: 1 PID: 6846 Comm: kworker/1:12 Not tainted 5.17.0-rc7-syzkaller-00078-g3bf7edc84a9e-dirty #0
[ 1061.232428][ T6846] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1061.242458][ T6846] Workqueue:  0x0 (wg-kex-wg2)
[ 1061.247203][ T6846] ==================================================================
[ 1061.276426][T15348] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1061.286725][T15348] CPU: 0 PID: 15348 Comm: syz-executor.0 Not tainted 5.17.0-rc7-syzkaller-00078-g3bf7edc84a9e-dirty #0
[ 1061.297790][T15348] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1061.307823][T15348] Call Trace:
[ 1061.311083][T15348]  <TASK>
[ 1061.314063][T15348]  dump_stack_lvl+0xd6/0x122
[ 1061.318656][T15348]  dump_stack+0x11/0x1b
[ 1061.322789][T15348]  dump_header+0x98/0x410
[ 1061.327097][T15348]  oom_kill_process+0x18e/0x4a0
[ 1061.331939][T15348]  out_of_memory+0x61d/0x8c0
[ 1061.336510][T15348]  memory_max_write+0x32c/0x3d0
[ 1061.341358][T15348]  ? memory_max_show+0x70/0x70
[ 1061.346144][T15348]  cgroup_file_write+0x161/0x300
[ 1061.351118][T15348]  ? __check_object_size+0x22a/0x2d0
[ 1061.356429][T15348]  ? cgroup_seqfile_stop+0x70/0x70
[ 1061.361522][T15348]  kernfs_fop_write_iter+0x1d3/0x2d0
[ 1061.366787][T15348]  vfs_write+0x7f5/0x950
[ 1061.371027][T15348]  ksys_write+0xd9/0x190
[ 1061.375245][T15348]  __x64_sys_write+0x3e/0x50
[ 1061.379823][T15348]  do_syscall_64+0x44/0xd0
[ 1061.384240][T15348]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1061.390110][T15348] RIP: 0033:0x7fe921acc049
[ 1061.394518][T15348] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1061.414102][T15348] RSP: 002b:00007fe920c42168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1061.422494][T15348] RAX: ffffffffffffffda RBX: 00007fe921bdef60 RCX: 00007fe921acc049
[ 1061.430442][T15348] RDX: 0000000000000012 RSI: 00000000200000c0 RDI: 0000000000000005
[ 1061.438401][T15348] RBP: 00007fe921b2608d R08: 0000000000000000 R09: 0000000000000000
[ 1061.446351][T15348] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1061.454311][T15348] R13: 00007ffc4531e0bf R14: 00007fe920c42300 R15: 0000000000022000
[ 1061.462371][T15348]  </TASK>
[ 1061.465411][T15348] memory: usage 376kB, limit 0kB, failcnt 6883
[ 1061.471559][T15348] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1061.478496][T15348] Memory cgroup stats for /syz0:
[ 1061.483606][T15348] anon 86016
[ 1061.483606][T15348] file 81920
[ 1061.483606][T15348] kernel_stack 32768
[ 1061.483606][T15348] pagetables 86016
[ 1061.483606][T15348] percpu 0
[ 1061.483606][T15348] sock 0
[ 1061.483606][T15348] vmalloc 0
[ 1061.483606][T15348] shmem 77824
[ 1061.483606][T15348] file_mapped 77824
[ 1061.483606][T15348] file_dirty 0
[ 1061.483606][T15348] file_writeback 0
[ 1061.483606][T15348] swapcached 0
[ 1061.483606][T15348] inactive_anon 102400
[ 1061.483606][T15348] active_anon 61440
[ 1061.483606][T15348] inactive_file 4096
[ 1061.483606][T15348] active_file 0
[ 1061.483606][T15348] unevictable 0
[ 1061.483606][T15348] slab_reclaimable 25848
[ 1061.483606][T15348] slab_unreclaimable 44736
[ 1061.483606][T15348] slab 70584
[ 1061.483606][T15348] workingset_refault_anon 0
[ 1061.483606][T15348] workingset_refault_file 2
[ 1061.483606][T15348] workingset_activate_anon 0
[ 1061.483606][T15348] workingset_activate_file 0
[ 1061.483606][T15348] workingset_restore_anon 0
11:29:37 executing program 0:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
r0 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
openat2(r0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)={0x40881, 0x40, 0x8}, 0x18)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = openat$cgroup(r1, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r3 = openat$cgroup_int(r2, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r3, &(0x7f0000000080), 0x12)

11:29:37 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
set_mempolicy(0x0, 0x0, 0x56) (async)
socket$inet6(0xa, 0x80001, 0x0) (async)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x1d, 0x80000, 0x0) (async)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080), 0x12)

11:29:37 executing program 5:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r1, &(0x7f0000000000), 0x10)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff0000000000000000000c0000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b', @ANYRES32], 0x50}}, 0x0)

11:29:37 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r2, &(0x7f0000000080), 0x12)
openat$cgroup_subtree(0xffffffffffffffff, &(0x7f00000000c0), 0x2, 0x0)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56) (async)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) (async)
openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0) (async)
openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) (async)
write$cgroup_int(r2, &(0x7f0000000080), 0x12) (async)
openat$cgroup_subtree(0xffffffffffffffff, &(0x7f00000000c0), 0x2, 0x0) (async)

11:29:37 executing program 2:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
socket$inet6(0xa, 0x0, 0x0)
setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x30, 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x0, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x7000000000000000, 0x12)

11:29:37 executing program 4:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff00000081ffffff0000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b'], 0x50}}, 0x0)

[ 1061.578836][T15348] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=15347,uid=0
[ 1061.594127][T15348] Memory cgroup out of memory: Killed process 15347 (syz-executor.0) total-vm:48744kB, anon-rss:368kB, file-rss:14336kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000
[ 1061.612174][   T26] oom_reaper: reaped process 15347 (syz-executor.0), now anon-rss:0kB, file-rss:14336kB, shmem-rss:4kB
11:29:37 executing program 2:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
socket$inet6(0xa, 0x0, 0x0)
setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x30, 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x0, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x7400000000000000, 0x12)

[ 1061.649310][T15355] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1061.659679][T15355] CPU: 0 PID: 15355 Comm: syz-executor.1 Not tainted 5.17.0-rc7-syzkaller-00078-g3bf7edc84a9e-dirty #0
[ 1061.670729][T15355] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1061.680778][T15355] Call Trace:
[ 1061.684039][T15355]  <TASK>
[ 1061.686960][T15355]  dump_stack_lvl+0xd6/0x122
[ 1061.691556][T15355]  dump_stack+0x11/0x1b
[ 1061.695711][T15355]  dump_header+0x98/0x410
[ 1061.700038][T15355]  oom_kill_process+0x18e/0x4a0
[ 1061.704924][T15355]  out_of_memory+0x61d/0x8c0
[ 1061.709499][T15355]  ? _raw_spin_unlock_irqrestore+0x3d/0x60
[ 1061.715438][T15355]  memory_max_write+0x32c/0x3d0
[ 1061.720273][T15355]  ? memory_max_show+0x70/0x70
[ 1061.725016][T15355]  cgroup_file_write+0x161/0x300
[ 1061.730018][T15355]  ? __check_object_size+0x22a/0x2d0
[ 1061.735286][T15355]  ? cgroup_seqfile_stop+0x70/0x70
[ 1061.740389][T15355]  kernfs_fop_write_iter+0x1d3/0x2d0
[ 1061.743230][T15351] can: request_module (can-proto-0) failed.
[ 1061.745672][T15355]  vfs_write+0x7f5/0x950
[ 1061.755785][T15355]  ksys_write+0xd9/0x190
[ 1061.760125][T15355]  __x64_sys_write+0x3e/0x50
[ 1061.764695][T15355]  do_syscall_64+0x44/0xd0
[ 1061.769236][T15355]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1061.775112][T15355] RIP: 0033:0x7fd6559cc049
[ 1061.779517][T15355] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1061.799103][T15355] RSP: 002b:00007fd654b42168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1061.807549][T15355] RAX: ffffffffffffffda RBX: 00007fd655adef60 RCX: 00007fd6559cc049
[ 1061.815528][T15355] RDX: 0000000000000012 RSI: 0000000020000080 RDI: 0000000000000006
[ 1061.823482][T15355] RBP: 00007fd655a2608d R08: 0000000000000000 R09: 0000000000000000
[ 1061.831493][T15355] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1061.839437][T15355] R13: 00007ffda0be2f9f R14: 00007fd654b42300 R15: 0000000000022000
[ 1061.847481][T15355]  </TASK>
[ 1061.850588][T15355] memory: usage 176kB, limit 7881299347898368kB, failcnt 6933
[ 1061.858124][T15355] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1061.864960][T15355] Memory cgroup stats for /syz0:
[ 1061.867413][T15355] anon 36864
[ 1061.867413][T15355] file 81920
[ 1061.867413][T15355] kernel_stack 0
[ 1061.867413][T15355] pagetables 8192
[ 1061.867413][T15355] percpu 0
[ 1061.867413][T15355] sock 0
[ 1061.867413][T15355] vmalloc 0
[ 1061.867413][T15355] shmem 77824
[ 1061.867413][T15355] file_mapped 77824
[ 1061.867413][T15355] file_dirty 0
[ 1061.867413][T15355] file_writeback 0
[ 1061.867413][T15355] swapcached 0
[ 1061.867413][T15355] inactive_anon 53248
[ 1061.867413][T15355] active_anon 61440
[ 1061.867413][T15355] inactive_file 0
[ 1061.867413][T15355] active_file 4096
[ 1061.867413][T15355] unevictable 0
[ 1061.867413][T15355] slab_reclaimable 13160
[ 1061.867413][T15355] slab_unreclaimable 24256
[ 1061.867413][T15355] slab 37416
[ 1061.867413][T15355] workingset_refault_anon 0
[ 1061.867413][T15355] workingset_refault_file 2
[ 1061.867413][T15355] workingset_activate_anon 0
[ 1061.867413][T15355] workingset_activate_file 0
[ 1061.867413][T15355] workingset_restore_anon 0
[ 1061.962026][T15355] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=15313,uid=0
[ 1061.977316][T15355] Memory cgroup out of memory: Killed process 15313 (syz-executor.0) total-vm:48480kB, anon-rss:364kB, file-rss:14336kB, shmem-rss:0kB, UID:0 pgtables:76kB oom_score_adj:0
11:29:37 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
set_mempolicy(0x0, &(0x7f00000000c0)=0xee, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r2, &(0x7f0000000080), 0x12)

[ 1061.994883][   T26] oom_reaper: reaped process 15313 (syz-executor.0), now anon-rss:0kB, file-rss:14336kB, shmem-rss:64kB
[ 1062.006072][T15359] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=0
[ 1062.016054][T15359] CPU: 0 PID: 15359 Comm: syz-executor.3 Not tainted 5.17.0-rc7-syzkaller-00078-g3bf7edc84a9e-dirty #0
[ 1062.027072][T15359] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1062.037127][T15359] Call Trace:
[ 1062.040398][T15359]  <TASK>
[ 1062.043321][T15359]  dump_stack_lvl+0xd6/0x122
11:29:38 executing program 2:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
socket$inet6(0xa, 0x0, 0x0)
setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x30, 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x0, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x7ffffffffffff000, 0x12)

[ 1062.048015][T15359]  dump_stack+0x11/0x1b
[ 1062.052174][T15359]  dump_header+0x98/0x410
[ 1062.056516][T15359]  oom_kill_process+0x18e/0x4a0
[ 1062.061360][T15359]  out_of_memory+0x61d/0x8c0
[ 1062.066037][T15359]  memory_max_write+0x32c/0x3d0
[ 1062.070882][T15359]  ? memory_max_show+0x70/0x70
[ 1062.075652][T15359]  cgroup_file_write+0x161/0x300
[ 1062.080573][T15359]  ? __check_object_size+0x22a/0x2d0
[ 1062.085890][T15359]  ? cgroup_seqfile_stop+0x70/0x70
[ 1062.091075][T15359]  kernfs_fop_write_iter+0x1d3/0x2d0
[ 1062.096368][T15359]  vfs_write+0x7f5/0x950
[ 1062.100590][T15359]  ksys_write+0xd9/0x190
[ 1062.104808][T15359]  __x64_sys_write+0x3e/0x50
[ 1062.109415][T15359]  do_syscall_64+0x44/0xd0
[ 1062.113806][T15359]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1062.119819][T15359] RIP: 0033:0x7f8cc712a049
[ 1062.124207][T15359] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1062.143878][T15359] RSP: 002b:00007f8cc627f168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1062.152266][T15359] RAX: ffffffffffffffda RBX: 00007f8cc723d030 RCX: 00007f8cc712a049
[ 1062.160229][T15359] RDX: 0000000000000012 RSI: 0000000020000080 RDI: 000000000000000f
[ 1062.168196][T15359] RBP: 00007f8cc718408d R08: 0000000000000000 R09: 0000000000000000
[ 1062.176210][T15359] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1062.184232][T15359] R13: 00007fff26a0d88f R14: 00007f8cc627f300 R15: 0000000000022000
[ 1062.192263][T15359]  </TASK>
[ 1062.195363][T15359] memory: usage 160kB, limit 8162774324609024kB, failcnt 6933
[ 1062.202834][T15359] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1062.209686][T15359] Memory cgroup stats for /syz0:
[ 1062.211530][T15359] anon 0
[ 1062.211530][T15359] file 81920
[ 1062.211530][T15359] kernel_stack 16384
[ 1062.211530][T15359] pagetables 0
[ 1062.211530][T15359] percpu 0
[ 1062.211530][T15359] sock 0
[ 1062.211530][T15359] vmalloc 0
[ 1062.211530][T15359] shmem 77824
[ 1062.211530][T15359] file_mapped 77824
[ 1062.211530][T15359] file_dirty 0
[ 1062.211530][T15359] file_writeback 0
11:29:38 executing program 2:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
socket$inet6(0xa, 0x0, 0x0)
setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x30, 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x0, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0xfeffffffffffffff, 0x12)

[ 1062.211530][T15359] swapcached 0
[ 1062.211530][T15359] inactive_anon 16384
[ 1062.211530][T15359] active_anon 61440
[ 1062.211530][T15359] inactive_file 0
[ 1062.211530][T15359] active_file 4096
[ 1062.211530][T15359] unevictable 0
[ 1062.211530][T15359] slab_reclaimable 27432
[ 1062.211530][T15359] slab_unreclaimable 32456
[ 1062.211530][T15359] slab 59888
[ 1062.211530][T15359] workingset_refault_anon 0
[ 1062.211530][T15359] workingset_refault_file 2
[ 1062.211530][T15359] workingset_activate_anon 0
[ 1062.211530][T15359] workingset_activate_file 0
[ 1062.211530][T15359] workingset_restore_anon 0
[ 1062.305671][T15359] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=15367,uid=0
[ 1062.320957][T15359] Memory cgroup out of memory: OOM victim 15367 (syz-executor.0) is already exiting. Skip killing the task
[ 1062.333983][T15359] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=0
[ 1062.343989][T15359] CPU: 0 PID: 15359 Comm: syz-executor.3 Not tainted 5.17.0-rc7-syzkaller-00078-g3bf7edc84a9e-dirty #0
[ 1062.355025][T15359] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1062.365058][T15359] Call Trace:
[ 1062.368314][T15359]  <TASK>
[ 1062.371229][T15359]  dump_stack_lvl+0xd6/0x122
[ 1062.375814][T15359]  dump_stack+0x11/0x1b
[ 1062.380083][T15359]  dump_header+0x98/0x410
[ 1062.384468][T15359]  out_of_memory+0x65c/0x8c0
[ 1062.389112][T15359]  memory_max_write+0x32c/0x3d0
[ 1062.393943][T15359]  ? memory_max_show+0x70/0x70
[ 1062.398685][T15359]  cgroup_file_write+0x161/0x300
[ 1062.403662][T15359]  ? __check_object_size+0x22a/0x2d0
[ 1062.408933][T15359]  ? cgroup_seqfile_stop+0x70/0x70
[ 1062.414182][T15359]  kernfs_fop_write_iter+0x1d3/0x2d0
[ 1062.419472][T15359]  vfs_write+0x7f5/0x950
[ 1062.423696][T15359]  ksys_write+0xd9/0x190
[ 1062.427974][T15359]  __x64_sys_write+0x3e/0x50
[ 1062.432549][T15359]  do_syscall_64+0x44/0xd0
[ 1062.437016][T15359]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1062.442920][T15359] RIP: 0033:0x7f8cc712a049
[ 1062.447326][T15359] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1062.466966][T15359] RSP: 002b:00007f8cc627f168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1062.475380][T15359] RAX: ffffffffffffffda RBX: 00007f8cc723d030 RCX: 00007f8cc712a049
[ 1062.483344][T15359] RDX: 0000000000000012 RSI: 0000000020000080 RDI: 000000000000000f
[ 1062.491297][T15359] RBP: 00007f8cc718408d R08: 0000000000000000 R09: 0000000000000000
[ 1062.499251][T15359] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1062.507214][T15359] R13: 00007fff26a0d88f R14: 00007f8cc627f300 R15: 0000000000022000
[ 1062.515181][T15359]  </TASK>
[ 1062.518310][T15359] memory: usage 140kB, limit 0kB, failcnt 6933
[ 1062.524455][T15359] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1062.531321][T15359] Memory cgroup stats for /syz0:
[ 1062.534006][T15359] anon 0
[ 1062.534006][T15359] file 81920
[ 1062.534006][T15359] kernel_stack 16384
[ 1062.534006][T15359] pagetables 0
[ 1062.534006][T15359] percpu 0
[ 1062.534006][T15359] sock 0
[ 1062.534006][T15359] vmalloc 0
[ 1062.534006][T15359] shmem 77824
[ 1062.534006][T15359] file_mapped 77824
[ 1062.534006][T15359] file_dirty 4096
[ 1062.534006][T15359] file_writeback 0
[ 1062.534006][T15359] swapcached 0
[ 1062.534006][T15359] inactive_anon 16384
[ 1062.534006][T15359] active_anon 61440
[ 1062.534006][T15359] inactive_file 0
[ 1062.534006][T15359] active_file 4096
[ 1062.534006][T15359] unevictable 0
[ 1062.534006][T15359] slab_reclaimable 9128
[ 1062.534006][T15359] slab_unreclaimable 30016
[ 1062.534006][T15359] slab 39144
[ 1062.534006][T15359] workingset_refault_anon 0
[ 1062.534006][T15359] workingset_refault_file 2
[ 1062.534006][T15359] workingset_activate_anon 0
[ 1062.534006][T15359] workingset_activate_file 0
[ 1062.534006][T15359] workingset_restore_anon 0
[ 1062.628449][T15359] Out of memory and no killable processes...
11:29:38 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
r0 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x0, 0x0, 0x56)
socket$inet6(0xa, 0x80001, 0x0)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = openat$cgroup(r1, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x80000, 0x0)
r3 = openat$cgroup_int(r2, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r3, &(0x7f0000000080), 0x12)
write$tun(r0, &(0x7f00000000c0)={@void, @void, @eth={@remote, @local, @void, {@ipv4={0x800, @tipc={{0xc, 0x4, 0x2, 0x7, 0x54, 0x66, 0x0, 0x1, 0x6, 0x0, @remote, @dev={0xac, 0x14, 0x14, 0x2a}, {[@rr={0x7, 0x13, 0x9c, [@empty, @private=0xa010102, @loopback, @dev={0xac, 0x14, 0x14, 0x1e}]}, @generic={0x89, 0x9, "a140661148443b"}]}}, @payload_direct={{{{0x24, 0x0, 0x1, 0x0, 0x1, 0x8, 0x0, 0x2, 0x2, 0x0, 0x2, 0x1, 0x4, 0x3, 0x5, 0x8, 0x1, 0x4e22, 0x4e21}, 0x0, 0x2}}, [0x0, 0x0, 0x0, 0x0]}}}}}}, 0x62)
r4 = memfd_secret(0x0)
r5 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_ADAPTATION_LAYER(r5, 0x84, 0x7, &(0x7f0000000040)={0x10b802b6}, 0x4)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r5, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
connect$inet6(r5, &(0x7f00000001c0)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
close(r0)
epoll_ctl$EPOLL_CTL_ADD(r4, 0x1, r5, &(0x7f0000000240)={0x20000001})

11:29:38 executing program 2:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
socket$inet6(0xa, 0x0, 0x0)
setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x30, 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x0, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0xffffffff00000000, 0x12)

[ 1062.646536][T15389] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1062.656797][T15389] CPU: 1 PID: 15389 Comm: syz-executor.1 Not tainted 5.17.0-rc7-syzkaller-00078-g3bf7edc84a9e-dirty #0
[ 1062.667900][T15389] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1062.677953][T15389] Call Trace:
[ 1062.681223][T15389]  <TASK>
[ 1062.684146][T15389]  dump_stack_lvl+0xd6/0x122
[ 1062.688807][T15389]  dump_stack+0x11/0x1b
[ 1062.692970][T15389]  dump_header+0x98/0x410
[ 1062.697303][T15389]  out_of_memory+0x65c/0x8c0
[ 1062.701899][T15389]  memory_max_write+0x32c/0x3d0
[ 1062.706835][T15389]  ? memory_max_show+0x70/0x70
[ 1062.711650][T15389]  cgroup_file_write+0x161/0x300
[ 1062.716585][T15389]  ? __check_object_size+0x22a/0x2d0
[ 1062.722023][T15389]  ? cgroup_seqfile_stop+0x70/0x70
[ 1062.727123][T15389]  kernfs_fop_write_iter+0x1d3/0x2d0
[ 1062.732405][T15389]  vfs_write+0x7f5/0x950
[ 1062.736634][T15389]  ksys_write+0xd9/0x190
[ 1062.740862][T15389]  __x64_sys_write+0x3e/0x50
[ 1062.745432][T15389]  do_syscall_64+0x44/0xd0
[ 1062.749888][T15389]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1062.755780][T15389] RIP: 0033:0x7fd6559cc049
[ 1062.760173][T15389] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1062.779779][T15389] RSP: 002b:00007fd654b42168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1062.788198][T15389] RAX: ffffffffffffffda RBX: 00007fd655adef60 RCX: 00007fd6559cc049
[ 1062.796150][T15389] RDX: 0000000000000012 RSI: 0000000020000080 RDI: 0000000000000006
[ 1062.804098][T15389] RBP: 00007fd655a2608d R08: 0000000000000000 R09: 0000000000000000
[ 1062.812045][T15389] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1062.820059][T15389] R13: 00007ffda0be2f9f R14: 00007fd654b42300 R15: 0000000000022000
[ 1062.828026][T15389]  </TASK>
[ 1062.831053][T15389] memory: usage 140kB, limit 9007199254740988kB, failcnt 6933
[ 1062.838506][T15389] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1062.845346][T15389] Memory cgroup stats for /syz0:
[ 1062.845823][T15389] anon 0
[ 1062.845823][T15389] file 81920
[ 1062.845823][T15389] kernel_stack 16384
[ 1062.845823][T15389] pagetables 0
[ 1062.845823][T15389] percpu 0
[ 1062.845823][T15389] sock 0
[ 1062.845823][T15389] vmalloc 0
[ 1062.845823][T15389] shmem 77824
[ 1062.845823][T15389] file_mapped 77824
[ 1062.845823][T15389] file_dirty 4096
[ 1062.845823][T15389] file_writeback 0
[ 1062.845823][T15389] swapcached 0
[ 1062.845823][T15389] inactive_anon 16384
[ 1062.845823][T15389] active_anon 61440
[ 1062.845823][T15389] inactive_file 0
[ 1062.845823][T15389] active_file 4096
[ 1062.845823][T15389] unevictable 0
[ 1062.845823][T15389] slab_reclaimable 9128
[ 1062.845823][T15389] slab_unreclaimable 29776
[ 1062.845823][T15389] slab 38904
[ 1062.845823][T15389] workingset_refault_anon 0
[ 1062.845823][T15389] workingset_refault_file 2
[ 1062.845823][T15389] workingset_activate_anon 0
[ 1062.845823][T15389] workingset_activate_file 0
[ 1062.845823][T15389] workingset_restore_anon 0
[ 1062.940179][T15389] Out of memory and no killable processes...
[ 1062.998501][T15402] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=0
[ 1063.008535][T15402] CPU: 0 PID: 15402 Comm: syz-executor.3 Not tainted 5.17.0-rc7-syzkaller-00078-g3bf7edc84a9e-dirty #0
[ 1063.019584][T15402] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1063.029637][T15402] Call Trace:
[ 1063.032905][T15402]  <TASK>
[ 1063.035828][T15402]  dump_stack_lvl+0xd6/0x122
[ 1063.040535][T15402]  dump_stack+0x11/0x1b
11:29:38 executing program 0:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
r0 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
openat2(r0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)={0x40881, 0x40, 0x8}, 0x18)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = openat$cgroup(r1, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r3 = openat$cgroup_int(r2, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r3, &(0x7f0000000080), 0x12)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
openat2(r0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)={0x40881, 0x40, 0x8}, 0x18) (async)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) (async)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) (async)
openat$cgroup(r1, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0) (async)
openat$cgroup_int(r2, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0) (async)
write$cgroup_int(r3, &(0x7f0000000080), 0x12) (async)

11:29:38 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
set_mempolicy(0x0, &(0x7f00000000c0)=0xee, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) (async)
write$cgroup_int(r2, &(0x7f0000000080), 0x12)

11:29:38 executing program 2:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
socket$inet6(0xa, 0x0, 0x0)
setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x30, 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x0, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0xffffffffffffff0f, 0x12)

11:29:38 executing program 4:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff0000009effffff0000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b'], 0x50}}, 0x0)

11:29:38 executing program 5:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r1, &(0x7f0000000000), 0x10)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff0000000000000000000d0000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b', @ANYRES32], 0x50}}, 0x0)

[ 1063.044697][T15402]  dump_header+0x98/0x410
[ 1063.049097][T15402]  out_of_memory+0x65c/0x8c0
[ 1063.053782][T15402]  ? _raw_spin_unlock_irqrestore+0x3d/0x60
[ 1063.059595][T15402]  memory_max_write+0x32c/0x3d0
[ 1063.064451][T15402]  ? memory_max_show+0x70/0x70
[ 1063.069302][T15402]  cgroup_file_write+0x161/0x300
[ 1063.074239][T15402]  ? __check_object_size+0x22a/0x2d0
[ 1063.079578][T15402]  ? cgroup_seqfile_stop+0x70/0x70
[ 1063.084686][T15402]  kernfs_fop_write_iter+0x1d3/0x2d0
[ 1063.089971][T15402]  vfs_write+0x7f5/0x950
[ 1063.094266][T15402]  ksys_write+0xd9/0x190
11:29:39 executing program 2:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
socket$inet6(0xa, 0x0, 0x0)
setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x30, 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x0, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0xfffffffffffffffe, 0x12)

[ 1063.098507][T15402]  __x64_sys_write+0x3e/0x50
[ 1063.103099][T15402]  do_syscall_64+0x44/0xd0
[ 1063.107513][T15402]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1063.113410][T15402] RIP: 0033:0x7f8cc712a049
[ 1063.117815][T15402] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1063.137447][T15402] RSP: 002b:00007f8cc62a0168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1063.145861][T15402] RAX: ffffffffffffffda RBX: 00007f8cc723cf60 RCX: 00007f8cc712a049
[ 1063.153853][T15402] RDX: 0000000000000012 RSI: 0000000020000080 RDI: 000000000000000f
[ 1063.161821][T15402] RBP: 00007f8cc718408d R08: 0000000000000000 R09: 0000000000000000
[ 1063.169791][T15402] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1063.177778][T15402] R13: 00007fff26a0d88f R14: 00007f8cc62a0300 R15: 0000000000022000
[ 1063.185802][T15402]  </TASK>
[ 1063.188848][T15402] memory: usage 116kB, limit 9007199254740988kB, failcnt 6933
11:29:39 executing program 4:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff000000c3ffffff0000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b'], 0x50}}, 0x0)

11:29:39 executing program 5:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r1, &(0x7f0000000000), 0x10)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff0000000000000000000e0000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b', @ANYRES32], 0x50}}, 0x0)

11:29:39 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
set_mempolicy(0x0, &(0x7f00000000c0)=0xee, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r2, &(0x7f0000000080), 0x12)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56) (async)
set_mempolicy(0x0, &(0x7f00000000c0)=0xee, 0x0) (async)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) (async)
openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0) (async)
openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) (async)
write$cgroup_int(r2, &(0x7f0000000080), 0x12) (async)

[ 1063.196311][T15402] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1063.203148][T15402] Memory cgroup stats for /syz0:
[ 1063.215934][T15402] anon 0
[ 1063.215934][T15402] file 81920
[ 1063.215934][T15402] kernel_stack 0
[ 1063.215934][T15402] pagetables 0
[ 1063.215934][T15402] percpu 0
[ 1063.215934][T15402] sock 0
[ 1063.215934][T15402] vmalloc 0
[ 1063.215934][T15402] shmem 77824
[ 1063.215934][T15402] file_mapped 77824
[ 1063.215934][T15402] file_dirty 4096
[ 1063.215934][T15402] file_writeback 0
[ 1063.215934][T15402] swapcached 0
[ 1063.215934][T15402] inactive_anon 16384
[ 1063.215934][T15402] active_anon 61440
[ 1063.215934][T15402] inactive_file 0
[ 1063.215934][T15402] active_file 4096
[ 1063.215934][T15402] unevictable 0
[ 1063.215934][T15402] slab_reclaimable 9128
[ 1063.215934][T15402] slab_unreclaimable 27528
[ 1063.215934][T15402] slab 36656
[ 1063.215934][T15402] workingset_refault_anon 0
[ 1063.215934][T15402] workingset_refault_file 2
[ 1063.215934][T15402] workingset_activate_anon 0
[ 1063.215934][T15402] workingset_activate_file 0
[ 1063.215934][T15402] workingset_restore_anon 0
[ 1063.309949][T15402] Out of memory and no killable processes...
[ 1063.326283][T15430] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1063.336496][T15430] CPU: 0 PID: 15430 Comm: syz-executor.1 Not tainted 5.17.0-rc7-syzkaller-00078-g3bf7edc84a9e-dirty #0
[ 1063.347623][T15430] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1063.357684][T15430] Call Trace:
[ 1063.360962][T15430]  <TASK>
[ 1063.363891][T15430]  dump_stack_lvl+0xd6/0x122
[ 1063.368518][T15430]  dump_stack+0x11/0x1b
[ 1063.372754][T15430]  dump_header+0x98/0x410
[ 1063.377083][T15430]  out_of_memory+0x65c/0x8c0
[ 1063.381669][T15430]  ? _raw_spin_unlock_irqrestore+0x3d/0x60
[ 1063.387501][T15430]  memory_max_write+0x32c/0x3d0
[ 1063.392350][T15430]  ? memory_max_show+0x70/0x70
11:29:39 executing program 2:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
socket$inet6(0xa, 0x0, 0x0)
setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x30, 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x0, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080), 0x20000092)

[ 1063.397147][T15430]  cgroup_file_write+0x161/0x300
[ 1063.402149][T15430]  ? __check_object_size+0x22a/0x2d0
[ 1063.407453][T15430]  ? cgroup_seqfile_stop+0x70/0x70
[ 1063.412644][T15430]  kernfs_fop_write_iter+0x1d3/0x2d0
[ 1063.417972][T15430]  vfs_write+0x7f5/0x950
[ 1063.422210][T15430]  ksys_write+0xd9/0x190
[ 1063.426533][T15430]  __x64_sys_write+0x3e/0x50
[ 1063.431120][T15430]  do_syscall_64+0x44/0xd0
[ 1063.435533][T15430]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1063.441485][T15430] RIP: 0033:0x7fd6559cc049
[ 1063.445890][T15430] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1063.465517][T15430] RSP: 002b:00007fd654b42168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1063.473924][T15430] RAX: ffffffffffffffda RBX: 00007fd655adef60 RCX: 00007fd6559cc049
[ 1063.481924][T15430] RDX: 0000000000000012 RSI: 0000000020000080 RDI: 0000000000000006
[ 1063.489887][T15430] RBP: 00007fd655a2608d R08: 0000000000000000 R09: 0000000000000000
[ 1063.497852][T15430] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1063.505819][T15430] R13: 00007ffda0be2f9f R14: 00007fd654b42300 R15: 0000000000022000
[ 1063.513820][T15430]  </TASK>
[ 1063.516856][T15430] memory: usage 104kB, limit 0kB, failcnt 6933
[ 1063.522997][T15430] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1063.529850][T15430] Memory cgroup stats for /syz0:
[ 1063.534828][T15430] anon 0
[ 1063.534828][T15430] file 81920
[ 1063.534828][T15430] kernel_stack 0
[ 1063.534828][T15430] pagetables 0
[ 1063.534828][T15430] percpu 0
[ 1063.534828][T15430] sock 0
[ 1063.534828][T15430] vmalloc 0
[ 1063.534828][T15430] shmem 77824
[ 1063.534828][T15430] file_mapped 77824
[ 1063.534828][T15430] file_dirty 4096
[ 1063.534828][T15430] file_writeback 0
[ 1063.534828][T15430] swapcached 0
[ 1063.534828][T15430] inactive_anon 16384
[ 1063.534828][T15430] active_anon 61440
[ 1063.534828][T15430] inactive_file 0
[ 1063.534828][T15430] active_file 4096
[ 1063.534828][T15430] unevictable 0
[ 1063.534828][T15430] slab_reclaimable 6440
[ 1063.534828][T15430] slab_unreclaimable 16376
[ 1063.534828][T15430] slab 22816
[ 1063.534828][T15430] workingset_refault_anon 0
[ 1063.534828][T15430] workingset_refault_file 2
[ 1063.534828][T15430] workingset_activate_anon 0
[ 1063.534828][T15430] workingset_activate_file 0
[ 1063.534828][T15430] workingset_restore_anon 0
[ 1063.629000][T15430] Out of memory and no killable processes...
11:29:39 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
r0 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x0, 0x0, 0x56) (async)
socket$inet6(0xa, 0x80001, 0x0)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = openat$cgroup(r1, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0) (async)
socket(0x0, 0x80000, 0x0)
r3 = openat$cgroup_int(r2, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r3, &(0x7f0000000080), 0x12)
write$tun(r0, &(0x7f00000000c0)={@void, @void, @eth={@remote, @local, @void, {@ipv4={0x800, @tipc={{0xc, 0x4, 0x2, 0x7, 0x54, 0x66, 0x0, 0x1, 0x6, 0x0, @remote, @dev={0xac, 0x14, 0x14, 0x2a}, {[@rr={0x7, 0x13, 0x9c, [@empty, @private=0xa010102, @loopback, @dev={0xac, 0x14, 0x14, 0x1e}]}, @generic={0x89, 0x9, "a140661148443b"}]}}, @payload_direct={{{{0x24, 0x0, 0x1, 0x0, 0x1, 0x8, 0x0, 0x2, 0x2, 0x0, 0x2, 0x1, 0x4, 0x3, 0x5, 0x8, 0x1, 0x4e22, 0x4e21}, 0x0, 0x2}}, [0x0, 0x0, 0x0, 0x0]}}}}}}, 0x62) (async)
r4 = memfd_secret(0x0) (async)
r5 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_ADAPTATION_LAYER(r5, 0x84, 0x7, &(0x7f0000000040)={0x10b802b6}, 0x4) (async)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r5, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c) (async)
connect$inet6(r5, &(0x7f00000001c0)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) (async)
close(r0)
epoll_ctl$EPOLL_CTL_ADD(r4, 0x1, r5, &(0x7f0000000240)={0x20000001})

11:29:39 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
r0 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x0, &(0x7f0000000100), 0x100000000056)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
ioctl$TCSETSW(r0, 0x5403, &(0x7f00000000c0)={0xd1, 0x400, 0xc0, 0xd23, 0x12, "54201d2ff00c5ea2fd945561679547a4c2302d"})
r2 = openat$cgroup(r1, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
pipe(&(0x7f0000000200)={<r3=>0xffffffffffffffff})
r4 = socket$inet_udp(0x2, 0x2, 0x0)
close(r4)
bind$inet(r4, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10)
connect$inet(r4, &(0x7f0000001280)={0x2, 0x0, @multicast1}, 0x10)
splice(r3, 0x0, r4, 0x0, 0x5, 0x5)
openat$cgroup_ro(r3, &(0x7f0000000240)='blkio.bfq.io_wait_time\x00', 0x0, 0x0)
r5 = openat$cgroup_int(r2, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r5, &(0x7f0000000080), 0x12)

[ 1063.807275][T15449] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1063.817476][T15449] CPU: 0 PID: 15449 Comm: syz-executor.1 Not tainted 5.17.0-rc7-syzkaller-00078-g3bf7edc84a9e-dirty #0
[ 1063.828831][T15449] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1063.838867][T15449] Call Trace:
[ 1063.842124][T15449]  <TASK>
[ 1063.845036][T15449]  dump_stack_lvl+0xd6/0x122
[ 1063.849606][T15449]  dump_stack+0x11/0x1b
[ 1063.853742][T15449]  dump_header+0x98/0x410
[ 1063.858050][T15449]  out_of_memory+0x65c/0x8c0
[ 1063.862619][T15449]  memory_max_write+0x32c/0x3d0
[ 1063.867458][T15449]  ? memory_max_show+0x70/0x70
[ 1063.872198][T15449]  cgroup_file_write+0x161/0x300
[ 1063.877115][T15449]  ? __check_object_size+0x22a/0x2d0
[ 1063.882465][T15449]  ? cgroup_seqfile_stop+0x70/0x70
[ 1063.887575][T15449]  kernfs_fop_write_iter+0x1d3/0x2d0
[ 1063.892840][T15449]  vfs_write+0x7f5/0x950
[ 1063.897079][T15449]  ksys_write+0xd9/0x190
[ 1063.901302][T15449]  __x64_sys_write+0x3e/0x50
[ 1063.905873][T15449]  do_syscall_64+0x44/0xd0
[ 1063.910326][T15449]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1063.916200][T15449] RIP: 0033:0x7fd6559cc049
[ 1063.920594][T15449] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1063.940270][T15449] RSP: 002b:00007fd654b42168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1063.948739][T15449] RAX: ffffffffffffffda RBX: 00007fd655adef60 RCX: 00007fd6559cc049
[ 1063.956706][T15449] RDX: 0000000000000012 RSI: 0000000020000080 RDI: 0000000000000010
[ 1063.964661][T15449] RBP: 00007fd655a2608d R08: 0000000000000000 R09: 0000000000000000
[ 1063.972614][T15449] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1063.980565][T15449] R13: 00007ffda0be2f9f R14: 00007fd654b42300 R15: 0000000000022000
[ 1063.988578][T15449]  </TASK>
[ 1063.991732][T15449] memory: usage 104kB, limit 0kB, failcnt 6933
[ 1063.997884][T15449] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1064.004704][T15449] Memory cgroup stats for /syz0:
[ 1064.006377][T15449] anon 0
[ 1064.006377][T15449] file 81920
[ 1064.006377][T15449] kernel_stack 0
[ 1064.006377][T15449] pagetables 0
[ 1064.006377][T15449] percpu 0
[ 1064.006377][T15449] sock 0
[ 1064.006377][T15449] vmalloc 0
[ 1064.006377][T15449] shmem 77824
[ 1064.006377][T15449] file_mapped 77824
[ 1064.006377][T15449] file_dirty 4096
[ 1064.006377][T15449] file_writeback 0
[ 1064.006377][T15449] swapcached 0
[ 1064.006377][T15449] inactive_anon 16384
[ 1064.006377][T15449] active_anon 61440
[ 1064.006377][T15449] inactive_file 0
[ 1064.006377][T15449] active_file 4096
[ 1064.006377][T15449] unevictable 0
[ 1064.006377][T15449] slab_reclaimable 6440
[ 1064.006377][T15449] slab_unreclaimable 16136
[ 1064.006377][T15449] slab 22576
[ 1064.006377][T15449] workingset_refault_anon 0
[ 1064.006377][T15449] workingset_refault_file 2
[ 1064.006377][T15449] workingset_activate_anon 0
[ 1064.006377][T15449] workingset_activate_file 0
[ 1064.006377][T15449] workingset_restore_anon 0
[ 1064.100386][T15449] Out of memory and no killable processes...
[ 1064.378311][T13062] device hsr_slave_0 left promiscuous mode
[ 1064.384328][T13062] device hsr_slave_1 left promiscuous mode
[ 1064.390535][T13062] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1064.397925][T13062] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1064.405439][T13062] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1064.412849][T13062] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1064.420625][T13062] device bridge_slave_1 left promiscuous mode
[ 1064.426781][T13062] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1064.434331][T13062] device bridge_slave_0 left promiscuous mode
[ 1064.440600][T13062] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1064.450783][T13062] device veth1_macvtap left promiscuous mode
[ 1064.456853][T13062] device veth0_macvtap left promiscuous mode
[ 1064.462841][T13062] device veth1_vlan left promiscuous mode
[ 1064.468612][T13062] device veth0_vlan left promiscuous mode
[ 1064.551206][T13062] team0 (unregistering): Port device team_slave_1 removed
[ 1064.562123][T13062] team0 (unregistering): Port device team_slave_0 removed
[ 1064.571475][T13062] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1064.582465][T13062] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1064.609637][T13062] bond0 (unregistering): Released all slaves
[ 1064.968217][T15459] chnl_net:caif_netlink_parms(): no params data found
[ 1065.019452][T15459] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1065.026579][T15459] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1065.034163][T15459] device bridge_slave_0 entered promiscuous mode
[ 1065.041366][T15459] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1065.048449][T15459] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1065.055913][T15459] device bridge_slave_1 entered promiscuous mode
[ 1065.072589][T15459] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1065.083114][T15459] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1065.103261][T15459] team0: Port device team_slave_0 added
[ 1065.110823][T15459] team0: Port device team_slave_1 added
[ 1065.128159][T15459] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1065.135094][T15459] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1065.160990][T15459] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1065.172136][T15459] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1065.179110][T15459] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1065.204985][T15459] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1065.227496][T15459] device hsr_slave_0 entered promiscuous mode
[ 1065.233983][T15459] device hsr_slave_1 entered promiscuous mode
[ 1065.296192][T15459] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1065.307230][T23294] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 1065.314738][T23294] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1065.323723][T15459] 8021q: adding VLAN 0 to HW filter on device team0
[ 1065.333388][T23294] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 1065.341974][T23294] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1065.350193][T23294] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1065.357274][T23294] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1065.374571][T15459] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 1065.384951][T15459] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 1065.397597][ T1928] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 1065.405376][ T1928] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 1065.414244][ T1928] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1065.422459][ T1928] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1065.429552][ T1928] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1065.437293][ T1928] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 1065.445873][ T1928] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 1065.454524][ T1928] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 1065.463211][ T1928] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 1065.471859][ T1928] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 1065.480221][ T1928] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 1065.488628][ T1928] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1065.496902][ T1928] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1065.510428][T15459] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1065.520624][T23294] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 1065.528386][T23294] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 1065.536526][T23294] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 1065.544037][T23294] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 1065.608454][T23294] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1065.648817][T15459] device veth0_vlan entered promiscuous mode
[ 1065.656620][ T6849] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1065.665012][ T6849] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1065.672778][ T6849] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1065.681595][T15459] device veth1_vlan entered promiscuous mode
[ 1065.694509][T23294] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 1065.703360][T23294] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 1065.711451][T23294] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1065.721725][T15459] device veth0_macvtap entered promiscuous mode
[ 1065.729886][T15459] device veth1_macvtap entered promiscuous mode
[ 1065.743203][T15459] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 1065.753680][T15459] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1065.763532][T15459] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 1065.773951][T15459] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1065.783760][T15459] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 1065.794174][T15459] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1065.803968][T15459] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 1065.814458][T15459] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1065.824264][T15459] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 1065.834675][T15459] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1065.845638][T15459] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1065.854418][T12912] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 1065.863314][T12912] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 1065.871742][T12912] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1065.882258][T15459] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 1065.892905][T15459] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1065.902764][T15459] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 1065.913184][T15459] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1065.923081][T15459] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 1065.933525][T15459] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1065.943348][T15459] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 1065.953764][T15459] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1065.963720][T15459] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 1065.974126][T15459] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1065.985101][T15459] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1065.992529][ T6846] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 1066.001161][ T6846] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 1066.037497][T15493] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1066.047746][T15493] CPU: 1 PID: 15493 Comm: syz-executor.0 Not tainted 5.17.0-rc7-syzkaller-00078-g3bf7edc84a9e-dirty #0
[ 1066.058763][T15493] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1066.068839][T15493] Call Trace:
[ 1066.072153][T15493]  <TASK>
[ 1066.075064][T15493]  dump_stack_lvl+0xd6/0x122
[ 1066.079635][T15493]  dump_stack+0x11/0x1b
[ 1066.083820][T15493]  dump_header+0x98/0x410
[ 1066.088128][T15493]  oom_kill_process+0x18e/0x4a0
[ 1066.092972][T15493]  out_of_memory+0x61d/0x8c0
[ 1066.097695][T15493]  ? _raw_spin_unlock_irqrestore+0x3d/0x60
[ 1066.103479][T15493]  memory_max_write+0x32c/0x3d0
[ 1066.108317][T15493]  ? memory_max_show+0x70/0x70
[ 1066.113119][T15493]  cgroup_file_write+0x161/0x300
[ 1066.118034][T15493]  ? __check_object_size+0x22a/0x2d0
[ 1066.123305][T15493]  ? cgroup_seqfile_stop+0x70/0x70
[ 1066.128445][T15493]  kernfs_fop_write_iter+0x1d3/0x2d0
[ 1066.133707][T15493]  vfs_write+0x7f5/0x950
[ 1066.137997][T15493]  ksys_write+0xd9/0x190
[ 1066.142230][T15493]  __x64_sys_write+0x3e/0x50
[ 1066.146834][T15493]  do_syscall_64+0x44/0xd0
[ 1066.151288][T15493]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1066.157159][T15493] RIP: 0033:0x7f23d75df049
[ 1066.161550][T15493] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1066.181260][T15493] RSP: 002b:00007f23d6755168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1066.189648][T15493] RAX: ffffffffffffffda RBX: 00007f23d76f1f60 RCX: 00007f23d75df049
[ 1066.197598][T15493] RDX: 0000000000000012 RSI: 0000000020000080 RDI: 0000000000000006
[ 1066.205561][T15493] RBP: 00007f23d763908d R08: 0000000000000000 R09: 0000000000000000
[ 1066.213523][T15493] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1066.221509][T15493] R13: 00007ffd7fbe11df R14: 00007f23d6755300 R15: 0000000000022000
[ 1066.229475][T15493]  </TASK>
[ 1066.232528][T15493] memory: usage 380kB, limit 0kB, failcnt 6933
[ 1066.238696][T15493] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1066.245529][T15493] Memory cgroup stats for /syz0:
[ 1066.245718][T15493] anon 86016
[ 1066.245718][T15493] file 81920
[ 1066.245718][T15493] kernel_stack 32768
[ 1066.245718][T15493] pagetables 90112
[ 1066.245718][T15493] percpu 0
[ 1066.245718][T15493] sock 0
[ 1066.245718][T15493] vmalloc 0
[ 1066.245718][T15493] shmem 77824
[ 1066.245718][T15493] file_mapped 77824
[ 1066.245718][T15493] file_dirty 4096
[ 1066.245718][T15493] file_writeback 0
[ 1066.245718][T15493] swapcached 0
[ 1066.245718][T15493] inactive_anon 102400
[ 1066.245718][T15493] active_anon 61440
[ 1066.245718][T15493] inactive_file 0
[ 1066.245718][T15493] active_file 4096
[ 1066.245718][T15493] unevictable 0
[ 1066.245718][T15493] slab_reclaimable 16264
[ 1066.245718][T15493] slab_unreclaimable 44840
[ 1066.245718][T15493] slab 61104
[ 1066.245718][T15493] workingset_refault_anon 0
[ 1066.245718][T15493] workingset_refault_file 2
[ 1066.245718][T15493] workingset_activate_anon 0
[ 1066.245718][T15493] workingset_activate_file 0
[ 1066.245718][T15493] workingset_restore_anon 0
11:29:42 executing program 0:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
r0 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
openat2(r0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)={0x40881, 0x40, 0x8}, 0x18)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = openat$cgroup(r1, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r3 = openat$cgroup_int(r2, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r3, &(0x7f0000000080), 0x12)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
openat2(r0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)={0x40881, 0x40, 0x8}, 0x18) (async)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) (async)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) (async)
openat$cgroup(r1, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0) (async)
openat$cgroup_int(r2, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0) (async)
write$cgroup_int(r3, &(0x7f0000000080), 0x12) (async)

11:29:42 executing program 5:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r1, &(0x7f0000000000), 0x10)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff0000000000000000000f0000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b', @ANYRES32], 0x50}}, 0x0)

11:29:42 executing program 2:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
socket$inet6(0xa, 0x0, 0x0)
setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x30, 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x0, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000080), 0x7ffff000)

11:29:42 executing program 4:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="5000000010001fff000000eaffffff0000000000", @ANYRES32=0x0, @ANYBLOB="0320000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\b'], 0x50}}, 0x0)

11:29:42 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
r0 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x0, &(0x7f0000000100), 0x100000000056) (async)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
ioctl$TCSETSW(r0, 0x5403, &(0x7f00000000c0)={0xd1, 0x400, 0xc0, 0xd23, 0x12, "54201d2ff00c5ea2fd945561679547a4c2302d"}) (async)
r2 = openat$cgroup(r1, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
pipe(&(0x7f0000000200)={<r3=>0xffffffffffffffff})
r4 = socket$inet_udp(0x2, 0x2, 0x0)
close(r4) (async)
bind$inet(r4, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10)
connect$inet(r4, &(0x7f0000001280)={0x2, 0x0, @multicast1}, 0x10) (async)
splice(r3, 0x0, r4, 0x0, 0x5, 0x5) (async)
openat$cgroup_ro(r3, &(0x7f0000000240)='blkio.bfq.io_wait_time\x00', 0x0, 0x0)
r5 = openat$cgroup_int(r2, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) (async)
write$cgroup_int(r5, &(0x7f0000000080), 0x12)

11:29:42 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
r0 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
set_mempolicy(0x0, 0x0, 0x56) (async)
socket$inet6(0xa, 0x80001, 0x0) (async)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = openat$cgroup(r1, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
socket(0x0, 0x80000, 0x0) (async)
r3 = openat$cgroup_int(r2, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r3, &(0x7f0000000080), 0x12) (async, rerun: 32)
write$tun(r0, &(0x7f00000000c0)={@void, @void, @eth={@remote, @local, @void, {@ipv4={0x800, @tipc={{0xc, 0x4, 0x2, 0x7, 0x54, 0x66, 0x0, 0x1, 0x6, 0x0, @remote, @dev={0xac, 0x14, 0x14, 0x2a}, {[@rr={0x7, 0x13, 0x9c, [@empty, @private=0xa010102, @loopback, @dev={0xac, 0x14, 0x14, 0x1e}]}, @generic={0x89, 0x9, "a140661148443b"}]}}, @payload_direct={{{{0x24, 0x0, 0x1, 0x0, 0x1, 0x8, 0x0, 0x2, 0x2, 0x0, 0x2, 0x1, 0x4, 0x3, 0x5, 0x8, 0x1, 0x4e22, 0x4e21}, 0x0, 0x2}}, [0x0, 0x0, 0x0, 0x0]}}}}}}, 0x62) (rerun: 32)
r4 = memfd_secret(0x0) (async, rerun: 32)
r5 = socket$inet6_sctp(0xa, 0x1, 0x84) (rerun: 32)
setsockopt$inet_sctp6_SCTP_ADAPTATION_LAYER(r5, 0x84, 0x7, &(0x7f0000000040)={0x10b802b6}, 0x4)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r5, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
connect$inet6(r5, &(0x7f00000001c0)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) (async)
close(r0) (async, rerun: 64)
epoll_ctl$EPOLL_CTL_ADD(r4, 0x1, r5, &(0x7f0000000240)={0x20000001}) (rerun: 64)

[ 1066.340974][T15493] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=15492,uid=0
[ 1066.356277][T15493] Memory cgroup out of memory: Killed process 15492 (syz-executor.0) total-vm:48744kB, anon-rss:368kB, file-rss:14336kB, shmem-rss:0kB, UID:0 pgtables:96kB oom_score_adj:1000
[ 1066.374275][   T26] oom_reaper: reaped process 15492 (syz-executor.0), now anon-rss:0kB, file-rss:13536kB, shmem-rss:0kB
11:29:42 executing program 2:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r0 = socket(0xa, 0x2, 0x0)
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000caaffb)={0x0, <r1=>0x0}, &(0x7f0000cab000)=0xa)
setresuid(0x0, r1, 0x0)
mount$cgroup(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100), 0x3202010, &(0x7f0000000240)={[{@xattr}, {@release_agent={'release_agent', 0x3d, './file0'}}, {@noprefix}, {@release_agent={'release_agent', 0x3d, './file0'}}], [{@fowner_eq={'fowner', 0x3d, r1}}]})
socket$inet6(0xa, 0x0, 0x0)
setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x30, 0x0, 0x0)
r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r3 = openat$cgroup(r2, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
syz_mount_image$tmpfs(&(0x7f00000002c0), &(0x7f0000000300)='./file0\x00', 0x4, 0x3, &(0x7f0000001480)=[{&(0x7f0000000340)="15cc7083f170c3d729434d07d13c847878aa298cd104e3ad17d1e1386cf7f603b6d085e8eee5d0ff4a8eefb147ab67bf6a34eba10caadc3261da80a9de46dd8b1c2ff02b36f45ad24bacdfcd139cb3c0700560383897eacab3bcb409abc3f96b1774b638acb5ac392255afdf0f753e6ff500d5092eec872793658e4d9a21ddeb93bfa452df4ee66ea5c2daae08827d46c7aba4d34ce74896028a50b3e0ded3d166dcd6ea761efd168722ac5be52ff433e1b6d4decad9ec52ba19cf21462cff9e0173f018609d0f57c1c5988553ab14b8549ae41a6a19f061fa", 0xd9, 0x5}, {&(0x7f0000000440)="d8f9fd489c819c0080d6f4f0fa6ca56038edff4fdee0aa85edfbded397be85", 0x1f, 0xef34}, {&(0x7f0000000480)="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", 0x1000, 0x6}], 0x40, &(0x7f0000001500)={[{@mode={'mode', 0x3d, 0x72ab}}], [{@defcontext={'defcontext', 0x3d, 'staff_u'}}, {@dont_appraise}, {@audit}, {@func={'func', 0x3d, 'FILE_MMAP'}}, {@defcontext={'defcontext', 0x3d, 'user_u'}}, {@smackfsroot={'smackfsroot', 0x3d, '#'}}, {@smackfsdef={'smackfsdef', 0x3d, 'cgroup2\x00'}}, {@subj_type={'subj_type', 0x3d, 'noprefix'}}]})
socket(0x0, 0x0, 0x0)
r4 = openat$cgroup_int(r3, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r4, &(0x7f0000000080), 0x12)

11:29:42 executing program 1:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
r0 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async, rerun: 32)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (rerun: 32)
set_mempolicy(0x0, &(0x7f0000000100), 0x100000000056) (async)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
ioctl$TCSETSW(r0, 0x5403, &(0x7f00000000c0)={0xd1, 0x400, 0xc0, 0xd23, 0x12, "54201d2ff00c5ea2fd945561679547a4c2302d"}) (async)
r2 = openat$cgroup(r1, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0) (async)
pipe(&(0x7f0000000200)={<r3=>0xffffffffffffffff}) (async)
r4 = socket$inet_udp(0x2, 0x2, 0x0)
close(r4)
bind$inet(r4, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10) (async)
connect$inet(r4, &(0x7f0000001280)={0x2, 0x0, @multicast1}, 0x10) (async)
splice(r3, 0x0, r4, 0x0, 0x5, 0x5) (async)
openat$cgroup_ro(r3, &(0x7f0000000240)='blkio.bfq.io_wait_time\x00', 0x0, 0x0) (async)
r5 = openat$cgroup_int(r2, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) (async, rerun: 64)
write$cgroup_int(r5, &(0x7f0000000080), 0x12) (rerun: 64)

[ 1066.439362][T15509] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=0
[ 1066.449398][T15509] CPU: 0 PID: 15509 Comm: syz-executor.3 Not tainted 5.17.0-rc7-syzkaller-00078-g3bf7edc84a9e-dirty #0
[ 1066.460433][T15509] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1066.470469][T15509] Call Trace:
[ 1066.473740][T15509]  <TASK>
[ 1066.476664][T15509]  dump_stack_lvl+0xd6/0x122
[ 1066.481319][T15509]  dump_stack+0x11/0x1b
[ 1066.485503][T15509]  dump_header+0x98/0x410
[ 1066.489928][T15509]  oom_kill_process+0x18e/0x4a0
[ 1066.494818][T15509]  out_of_memory+0x61d/0x8c0
[ 1066.499386][T15509]  ? _raw_spin_unlock_irqrestore+0x3d/0x60
[ 1066.505171][T15509]  memory_max_write+0x32c/0x3d0
[ 1066.510073][T15509]  ? memory_max_show+0x70/0x70
[ 1066.514868][T15509]  cgroup_file_write+0x161/0x300
[ 1066.519866][T15509]  ? __check_object_size+0x22a/0x2d0
[ 1066.525130][T15509]  ? cgroup_seqfile_stop+0x70/0x70
[ 1066.530218][T15509]  kernfs_fop_write_iter+0x1d3/0x2d0
[ 1066.535502][T15509]  vfs_write+0x7f5/0x950
[ 1066.539721][T15509]  ksys_write+0xd9/0x190
[ 1066.543938][T15509]  __x64_sys_write+0x3e/0x50
[ 1066.548606][T15509]  do_syscall_64+0x44/0xd0
[ 1066.553069][T15509]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1066.558972][T15509] RIP: 0033:0x7f8cc712a049
[ 1066.563364][T15509] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1066.582977][T15509] RSP: 002b:00007f8cc627f168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1066.591389][T15509] RAX: ffffffffffffffda RBX: 00007f8cc723d030 RCX: 00007f8cc712a049
[ 1066.599460][T15509] RDX: 0000000000000012 RSI: 0000000020000080 RDI: 000000000000000f
[ 1066.607460][T15509] RBP: 00007f8cc718408d R08: 0000000000000000 R09: 0000000000000000
[ 1066.615434][T15509] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1066.623381][T15509] R13: 00007fff26a0d88f R14: 00007f8cc627f300 R15: 0000000000022000
[ 1066.631330][T15509]  </TASK>
11:29:42 executing program 2:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r0 = socket(0xa, 0x2, 0x0)
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000caaffb)={0x0, <r1=>0x0}, &(0x7f0000cab000)=0xa)
setresuid(0x0, r1, 0x0)
mount$cgroup(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100), 0x3202010, &(0x7f0000000240)={[{@xattr}, {@release_agent={'release_agent', 0x3d, './file0'}}, {@noprefix}, {@release_agent={'release_agent', 0x3d, './file0'}}], [{@fowner_eq={'fowner', 0x3d, r1}}]})
socket$inet6(0xa, 0x0, 0x0)
setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x30, 0x0, 0x0)
r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r3 = openat$cgroup(r2, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
syz_mount_image$tmpfs(&(0x7f00000002c0), &(0x7f0000000300)='./file0\x00', 0x4, 0x3, &(0x7f0000001480)=[{&(0x7f0000000340)="15cc7083f170c3d729434d07d13c847878aa298cd104e3ad17d1e1386cf7f603b6d085e8eee5d0ff4a8eefb147ab67bf6a34eba10caadc3261da80a9de46dd8b1c2ff02b36f45ad24bacdfcd139cb3c0700560383897eacab3bcb409abc3f96b1774b638acb5ac392255afdf0f753e6ff500d5092eec872793658e4d9a21ddeb93bfa452df4ee66ea5c2daae08827d46c7aba4d34ce74896028a50b3e0ded3d166dcd6ea761efd168722ac5be52ff433e1b6d4decad9ec52ba19cf21462cff9e0173f018609d0f57c1c5988553ab14b8549ae41a6a19f061fa", 0xd9, 0x5}, {&(0x7f0000000440)="d8f9fd489c819c0080d6f4f0fa6ca56038edff4fdee0aa85edfbded397be85", 0x1f, 0xef34}, {&(0x7f0000000480)="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", 0x1000, 0x6}], 0x40, &(0x7f0000001500)={[{@mode={'mode', 0x3d, 0x72ab}}], [{@defcontext={'defcontext', 0x3d, 'staff_u'}}, {@dont_appraise}, {@audit}, {@func={'func', 0x3d, 'FILE_MMAP'}}, {@defcontext={'defcontext', 0x3d, 'user_u'}}, {@smackfsroot={'smackfsroot', 0x3d, '#'}}, {@smackfsdef={'smackfsdef', 0x3d, 'cgroup2\x00'}}, {@subj_type={'subj_type', 0x3d, 'noprefix'}}]})
socket(0x0, 0x0, 0x0)
r4 = openat$cgroup_int(r3, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r4, &(0x7f0000000080), 0x12)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56) (async)
socket(0xa, 0x2, 0x0) (async)
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000caaffb), &(0x7f0000cab000)=0xa) (async)
setresuid(0x0, r1, 0x0) (async)
mount$cgroup(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100), 0x3202010, &(0x7f0000000240)={[{@xattr}, {@release_agent={'release_agent', 0x3d, './file0'}}, {@noprefix}, {@release_agent={'release_agent', 0x3d, './file0'}}], [{@fowner_eq={'fowner', 0x3d, r1}}]}) (async)
socket$inet6(0xa, 0x0, 0x0) (async)
setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x30, 0x0, 0x0) (async)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) (async)
openat$cgroup(r2, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0) (async)
syz_mount_image$tmpfs(&(0x7f00000002c0), &(0x7f0000000300)='./file0\x00', 0x4, 0x3, &(0x7f0000001480)=[{&(0x7f0000000340)="15cc7083f170c3d729434d07d13c847878aa298cd104e3ad17d1e1386cf7f603b6d085e8eee5d0ff4a8eefb147ab67bf6a34eba10caadc3261da80a9de46dd8b1c2ff02b36f45ad24bacdfcd139cb3c0700560383897eacab3bcb409abc3f96b1774b638acb5ac392255afdf0f753e6ff500d5092eec872793658e4d9a21ddeb93bfa452df4ee66ea5c2daae08827d46c7aba4d34ce74896028a50b3e0ded3d166dcd6ea761efd168722ac5be52ff433e1b6d4decad9ec52ba19cf21462cff9e0173f018609d0f57c1c5988553ab14b8549ae41a6a19f061fa", 0xd9, 0x5}, {&(0x7f0000000440)="d8f9fd489c819c0080d6f4f0fa6ca56038edff4fdee0aa85edfbded397be85", 0x1f, 0xef34}, {&(0x7f0000000480)="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", 0x1000, 0x6}], 0x40, &(0x7f0000001500)={[{@mode={'mode', 0x3d, 0x72ab}}], [{@defcontext={'defcontext', 0x3d, 'staff_u'}}, {@dont_appraise}, {@audit}, {@func={'func', 0x3d, 'FILE_MMAP'}}, {@defcontext={'defcontext', 0x3d, 'user_u'}}, {@smackfsroot={'smackfsroot', 0x3d, '#'}}, {@smackfsdef={'smackfsdef', 0x3d, 'cgroup2\x00'}}, {@subj_type={'subj_type', 0x3d, 'noprefix'}}]}) (async)
socket(0x0, 0x0, 0x0) (async)
openat$cgroup_int(r3, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0) (async)
write$cgroup_int(r4, &(0x7f0000000080), 0x12) (async)

[ 1066.634380][T15509] memory: usage 168kB, limit 0kB, failcnt 7093
[ 1066.640541][T15509] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1066.647420][T15509] Memory cgroup stats for /syz0:
[ 1066.657966][T15509] anon 36864
[ 1066.657966][T15509] file 81920
[ 1066.657966][T15509] kernel_stack 0
[ 1066.657966][T15509] pagetables 8192
[ 1066.657966][T15509] percpu 0
[ 1066.657966][T15509] sock 0
[ 1066.657966][T15509] vmalloc 0
[ 1066.657966][T15509] shmem 77824
[ 1066.657966][T15509] file_mapped 77824
[ 1066.657966][T15509] file_dirty 4096
[ 1066.657966][T15509] file_writeback 0
[ 1066.657966][T15509] swapcached 0
[ 1066.657966][T15509] inactive_anon 53248
[ 1066.657966][T15509] active_anon 61440
[ 1066.657966][T15509] inactive_file 0
[ 1066.657966][T15509] active_file 4096
[ 1066.657966][T15509] unevictable 0
[ 1066.657966][T15509] slab_reclaimable 8928
[ 1066.657966][T15509] slab_unreclaimable 17672
[ 1066.657966][T15509] slab 26600
[ 1066.657966][T15509] workingset_refault_anon 0
[ 1066.657966][T15509] workingset_refault_file 2
[ 1066.657966][T15509] workingset_activate_anon 0
[ 1066.657966][T15509] workingset_activate_file 0
[ 1066.657966][T15509] workingset_restore_anon 0
[ 1066.752844][T15509] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=15459,uid=0
[ 1066.768211][T15509] Memory cgroup out of memory: Killed process 15459 (syz-executor.0) total-vm:48480kB, anon-rss:364kB, file-rss:14336kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:0
[ 1066.785909][   T26] oom_reaper: reaped process 15459 (syz-executor.0), now anon-rss:0kB, file-rss:14336kB, shmem-rss:64kB
[ 1066.789110][T15519] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1066.807296][T15519] CPU: 0 PID: 15519 Comm: syz-executor.1 Not tainted 5.17.0-rc7-syzkaller-00078-g3bf7edc84a9e-dirty #0
[ 1066.818383][T15519] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1066.828432][T15519] Call Trace:
[ 1066.831703][T15519]  <TASK>
[ 1066.834623][T15519]  dump_stack_lvl+0xd6/0x122
[ 1066.839224][T15519]  dump_stack+0x11/0x1b
[ 1066.843358][T15519]  dump_header+0x98/0x410
[ 1066.847757][T15519]  out_of_memory+0x65c/0x8c0
[ 1066.852323][T15519]  memory_max_write+0x32c/0x3d0
[ 1066.857248][T15519]  ? memory_max_show+0x70/0x70
[ 1066.860161][T15531] loop2: detected capacity change from 0 to 239
[ 1066.861988][T15519]  cgroup_file_write+0x161/0x300
[ 1066.862012][T15519]  ? __check_object_size+0x22a/0x2d0
[ 1066.869446][T15531] SELinux:  duplicate or incompatible mount options
[ 1066.873144][T15519]  ? cgroup_seqfile_stop+0x70/0x70
[ 1066.873166][T15519]  kernfs_fop_write_iter+0x1d3/0x2d0
[ 1066.873188][T15519]  vfs_write+0x7f5/0x950
[ 1066.899675][T15519]  ksys_write+0xd9/0x190
[ 1066.903897][T15519]  __x64_sys_write+0x3e/0x50
[ 1066.908545][T15519]  do_syscall_64+0x44/0xd0
[ 1066.912941][T15519]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1066.918816][T15519] RIP: 0033:0x7fd6559cc049
[ 1066.923207][T15519] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1066.942936][T15519] RSP: 002b:00007fd654b21168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1066.951351][T15519] RAX: ffffffffffffffda RBX: 00007fd655adf030 RCX: 00007fd6559cc049
[ 1066.959386][T15519] RDX: 0000000000000012 RSI: 0000000020000080 RDI: 0000000000000034
[ 1066.967335][T15519] RBP: 00007fd655a2608d R08: 0000000000000000 R09: 0000000000000000
[ 1066.975290][T15519] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1066.983413][T15519] R13: 00007ffda0be2f9f R14: 00007fd654b21300 R15: 0000000000022000
11:29:42 executing program 2:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r0 = socket(0xa, 0x2, 0x0)
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000caaffb)={0x0, <r1=>0x0}, &(0x7f0000cab000)=0xa)
setresuid(0x0, r1, 0x0)
mount$cgroup(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100), 0x3202010, &(0x7f0000000240)={[{@xattr}, {@release_agent={'release_agent', 0x3d, './file0'}}, {@noprefix}, {@release_agent={'release_agent', 0x3d, './file0'}}], [{@fowner_eq={'fowner', 0x3d, r1}}]})
socket$inet6(0xa, 0x0, 0x0)
setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x30, 0x0, 0x0)
r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r3 = openat$cgroup(r2, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
syz_mount_image$tmpfs(&(0x7f00000002c0), &(0x7f0000000300)='./file0\x00', 0x4, 0x3, &(0x7f0000001480)=[{&(0x7f0000000340)="15cc7083f170c3d729434d07d13c847878aa298cd104e3ad17d1e1386cf7f603b6d085e8eee5d0ff4a8eefb147ab67bf6a34eba10caadc3261da80a9de46dd8b1c2ff02b36f45ad24bacdfcd139cb3c0700560383897eacab3bcb409abc3f96b1774b638acb5ac392255afdf0f753e6ff500d5092eec872793658e4d9a21ddeb93bfa452df4ee66ea5c2daae08827d46c7aba4d34ce74896028a50b3e0ded3d166dcd6ea761efd168722ac5be52ff433e1b6d4decad9ec52ba19cf21462cff9e0173f018609d0f57c1c5988553ab14b8549ae41a6a19f061fa", 0xd9, 0x5}, {&(0x7f0000000440)="d8f9fd489c819c0080d6f4f0fa6ca56038edff4fdee0aa85edfbded397be85", 0x1f, 0xef34}, {&(0x7f0000000480)="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", 0x1000, 0x6}], 0x40, &(0x7f0000001500)={[{@mode={'mode', 0x3d, 0x72ab}}], [{@defcontext={'defcontext', 0x3d, 'staff_u'}}, {@dont_appraise}, {@audit}, {@func={'func', 0x3d, 'FILE_MMAP'}}, {@defcontext={'defcontext', 0x3d, 'user_u'}}, {@smackfsroot={'smackfsroot', 0x3d, '#'}}, {@smackfsdef={'smackfsdef', 0x3d, 'cgroup2\x00'}}, {@subj_type={'subj_type', 0x3d, 'noprefix'}}]})
socket(0x0, 0x0, 0x0)
r4 = openat$cgroup_int(r3, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r4, &(0x7f0000000080), 0x12)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56) (async)
socket(0xa, 0x2, 0x0) (async)
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000caaffb), &(0x7f0000cab000)=0xa) (async)
setresuid(0x0, r1, 0x0) (async)
mount$cgroup(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100), 0x3202010, &(0x7f0000000240)={[{@xattr}, {@release_agent={'release_agent', 0x3d, './file0'}}, {@noprefix}, {@release_agent={'release_agent', 0x3d, './file0'}}], [{@fowner_eq={'fowner', 0x3d, r1}}]}) (async)
socket$inet6(0xa, 0x0, 0x0) (async)
setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x30, 0x0, 0x0) (async)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) (async)
openat$cgroup(r2, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0) (async)
syz_mount_image$tmpfs(&(0x7f00000002c0), &(0x7f0000000300)='./file0\x00', 0x4, 0x3, &(0x7f0000001480)=[{&(0x7f0000000340)="15cc7083f170c3d729434d07d13c847878aa298cd104e3ad17d1e1386cf7f603b6d085e8eee5d0ff4a8eefb147ab67bf6a34eba10caadc3261da80a9de46dd8b1c2ff02b36f45ad24bacdfcd139cb3c0700560383897eacab3bcb409abc3f96b1774b638acb5ac392255afdf0f753e6ff500d5092eec872793658e4d9a21ddeb93bfa452df4ee66ea5c2daae08827d46c7aba4d34ce74896028a50b3e0ded3d166dcd6ea761efd168722ac5be52ff433e1b6d4decad9ec52ba19cf21462cff9e0173f018609d0f57c1c5988553ab14b8549ae41a6a19f061fa", 0xd9, 0x5}, {&(0x7f0000000440)="d8f9fd489c819c0080d6f4f0fa6ca56038edff4fdee0aa85edfbded397be85", 0x1f, 0xef34}, {&(0x7f0000000480)="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", 0x1000, 0x6}], 0x40, &(0x7f0000001500)={[{@mode={'mode', 0x3d, 0x72ab}}], [{@defcontext={'defcontext', 0x3d, 'staff_u'}}, {@dont_appraise}, {@audit}, {@func={'func', 0x3d, 'FILE_MMAP'}}, {@defcontext={'defcontext', 0x3d, 'user_u'}}, {@smackfsroot={'smackfsroot', 0x3d, '#'}}, {@smackfsdef={'smackfsdef', 0x3d, 'cgroup2\x00'}}, {@subj_type={'subj_type', 0x3d, 'noprefix'}}]}) (async)
socket(0x0, 0x0, 0x0) (async)
openat$cgroup_int(r3, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0) (async)
write$cgroup_int(r4, &(0x7f0000000080), 0x12) (async)

[ 1066.991384][T15519]  </TASK>
[ 1066.994425][T15519] memory: usage 116kB, limit 0kB, failcnt 7110
[ 1067.000584][T15519] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1067.007432][T15519] Memory cgroup stats for /syz0:
[ 1067.022474][T15519] anon 0
[ 1067.022474][T15519] file 81920
[ 1067.022474][T15519] kernel_stack 0
[ 1067.022474][T15519] pagetables 0
[ 1067.022474][T15519] percpu 0
[ 1067.022474][T15519] sock 0
[ 1067.022474][T15519] vmalloc 0
[ 1067.022474][T15519] shmem 77824
[ 1067.022474][T15519] file_mapped 77824
[ 1067.022474][T15519] file_dirty 4096
[ 1067.022474][T15519] file_writeback 0
[ 1067.022474][T15519] swapcached 0
[ 1067.022474][T15519] inactive_anon 16384
[ 1067.022474][T15519] active_anon 61440
[ 1067.022474][T15519] inactive_file 0
[ 1067.022474][T15519] active_file 4096
[ 1067.022474][T15519] unevictable 0
[ 1067.022474][T15519] slab_reclaimable 8928
[ 1067.022474][T15519] slab_unreclaimable 16400
[ 1067.022474][T15519] slab 25328
[ 1067.022474][T15519] workingset_refault_anon 0
[ 1067.022474][T15519] workingset_refault_file 2
[ 1067.022474][T15519] workingset_activate_anon 0
[ 1067.022474][T15519] workingset_activate_file 0
[ 1067.022474][T15519] workingset_restore_anon 0
[ 1067.117993][T15519] Out of memory and no killable processes...
[ 1067.124396][T15509] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=0
[ 1067.134322][T15509] CPU: 0 PID: 15509 Comm: syz-executor.3 Not tainted 5.17.0-rc7-syzkaller-00078-g3bf7edc84a9e-dirty #0
[ 1067.145389][T15509] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1067.155420][T15509] Call Trace:
[ 1067.158677][T15509]  <TASK>
[ 1067.161639][T15509]  dump_stack_lvl+0xd6/0x122
[ 1067.166267][T15509]  dump_stack+0x11/0x1b
[ 1067.170407][T15509]  dump_header+0x98/0x410
[ 1067.174771][T15509]  out_of_memory+0x65c/0x8c0
[ 1067.179337][T15509]  memory_max_write+0x32c/0x3d0
[ 1067.184166][T15509]  ? memory_max_show+0x70/0x70
[ 1067.188982][T15509]  cgroup_file_write+0x161/0x300
[ 1067.193920][T15509]  ? __check_object_size+0x22a/0x2d0
[ 1067.199284][T15509]  ? cgroup_seqfile_stop+0x70/0x70
[ 1067.204438][T15509]  kernfs_fop_write_iter+0x1d3/0x2d0
[ 1067.209787][T15509]  vfs_write+0x7f5/0x950
[ 1067.214011][T15509]  ksys_write+0xd9/0x190
[ 1067.218302][T15509]  __x64_sys_write+0x3e/0x50
[ 1067.222904][T15509]  do_syscall_64+0x44/0xd0
[ 1067.227316][T15509]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1067.233243][T15509] RIP: 0033:0x7f8cc712a049
[ 1067.237672][T15509] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1067.257329][T15509] RSP: 002b:00007f8cc627f168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1067.265780][T15509] RAX: ffffffffffffffda RBX: 00007f8cc723d030 RCX: 00007f8cc712a049
[ 1067.273729][T15509] RDX: 0000000000000012 RSI: 0000000020000080 RDI: 000000000000000f
[ 1067.281755][T15509] RBP: 00007f8cc718408d R08: 0000000000000000 R09: 0000000000000000
[ 1067.289746][T15509] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1067.297786][T15509] R13: 00007fff26a0d88f R14: 00007f8cc627f300 R15: 0000000000022000
[ 1067.305763][T15509]  </TASK>
[ 1067.308904][T15509] memory: usage 112kB, limit 0kB, failcnt 7110
[ 1067.315089][T15509] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1067.321948][T15509] Memory cgroup stats for /syz0:
[ 1067.325901][T15509] anon 0
[ 1067.325901][T15509] file 81920
[ 1067.325901][T15509] kernel_stack 0
[ 1067.325901][T15509] pagetables 0
11:29:43 executing program 1:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_ADAPTATION_LAYER(r0, 0x84, 0x7, &(0x7f0000000040)={0x10b802b6}, 0x4)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
connect$inet6(r0, &(0x7f00000001c0)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
flock(r0, 0x1)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
r1 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x81, 0x56)
r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f00000000c0)='./cgroup.net/syz0\x00', 0x200002, 0x0)
r3 = openat$cgroup(r2, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r4 = openat$full(0xffffffffffffff9c, &(0x7f0000000100), 0x20400, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r1, 0xc0189375, &(0x7f0000000300)={{0x1, 0x1, 0x18, <r5=>r3}, './file0\x00'})
accept$unix(r5, &(0x7f0000000340)=@abs, &(0x7f00000003c0)=0x6e)
openat$cgroup_netprio_ifpriomap(r4, &(0x7f0000000240), 0x2, 0x0)
r6 = openat$cgroup_int(r3, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
ioctl$int_out(r1, 0x2, &(0x7f00000002c0))
chroot(&(0x7f0000000280)='./file0\x00')
write$cgroup_int(r6, &(0x7f0000000080), 0x12)

[ 1067.325901][T15509] percpu 0
[ 1067.325901][T15509]