ease bring it up to get a fully working HSR network
[ 2666.077435][T31786] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2666.118937][T31786] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2666.149680][T31786] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2666.180820][T31786] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2666.217985][T31786] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2666.236480][T31786] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2666.275888][T31786] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 2666.313827][T17500] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 2666.322731][T17500] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 2666.339648][T17500] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 2666.358640][T17500] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 2666.367373][T17500] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 2666.385735][T17500] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 2666.397533][T17500] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 2666.414647][T23289] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 2666.441623][T31786] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2666.479853][T31786] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2666.508811][T31786] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2666.531049][T31786] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2666.568944][T31786] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2666.601362][T31786] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2666.628938][T31782] memory: usage 10500kB, limit 0kB, failcnt 590
[ 2666.635246][T31782] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2666.651069][T31786] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 2666.698162][T31782] Memory cgroup stats for /syz0:
[ 2666.698358][T31782] anon 53248
[ 2666.698358][T31782] file 10448896
[ 2666.698358][T31782] kernel 249856
[ 2666.698358][T31782] kernel_stack 32768
[ 2666.698358][T31782] pagetables 57344
[ 2666.698358][T31782] sec_pagetables 0
[ 2666.698358][T31782] percpu 128
[ 2666.698358][T31782] sock 0
[ 2666.698358][T31782] vmalloc 0
[ 2666.698358][T31782] shmem 10448896
[ 2666.698358][T31782] zswap 0
[ 2666.698358][T31782] zswapped 0
[ 2666.698358][T31782] file_mapped 315392
[ 2666.698358][T31782] file_dirty 0
[ 2666.698358][T31782] file_writeback 0
[ 2666.698358][T31782] swapcached 0
[ 2666.698358][T31782] anon_thp 0
[ 2666.698358][T31782] file_thp 0
[ 2666.698358][T31782] shmem_thp 0
[ 2666.698358][T31782] inactive_anon 53248
[ 2666.698358][T31782] active_anon 10448896
[ 2666.698358][T31782] inactive_file 0
[ 2666.698358][T31782] active_file 0
[ 2666.698358][T31782] unevictable 0
[ 2666.698358][T31782] slab_reclaimable 32480
[ 2666.698358][T31782] slab_unreclaimable 99480
[ 2666.698358][T31782] slab 131960
[ 2666.796816][ T9919] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 2666.819355][ T9919] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 2666.828240][ T9919] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 2666.849228][ T9919] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 2666.861919][T31786] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 2666.884982][T31786] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 2666.886283][T31782] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null)
[ 2666.901136][T31786] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 2666.906414][T31782] ,cpuset=
[ 2666.908036][T31786] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 2666.922204][T31782] syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=31782,uid=0
[ 2666.949066][T31782] Memory cgroup out of memory: Killed process 31782 (syz-executor.0) total-vm:50568kB, anon-rss:364kB, file-rss:8960kB, shmem-rss:0kB, UID:0 pgtables:68kB oom_score_adj:0
[ 2666.979932][T31802] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 2667.180568][T17514] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2667.188678][T17514] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2667.368714][ T4735] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 2667.379945][T14860] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2667.389389][T23289] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 2667.396899][T23289] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 2667.405582][T14860] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2667.423127][T31813] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 2667.473851][ T4735] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 2667.933800][T32031] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2667.988423][T32031] CPU: 1 PID: 32031 Comm: syz-executor.3 Not tainted 6.2.0-rc2-syzkaller-00431-g0164776a2ce7 #0
[ 2667.998911][T32031] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 2668.009001][T32031] Call Trace:
[ 2668.012322][T32031]  <TASK>
[ 2668.015284][T32031]  dump_stack_lvl+0xd1/0x138
[ 2668.019931][T32031]  dump_header+0x10b/0x85f
[ 2668.024398][T32031]  oom_kill_process.cold+0x10/0x15
[ 2668.029560][T32031]  out_of_memory+0x35c/0x14a0
[ 2668.034288][T32031]  ? oom_killer_disable+0x280/0x280
[ 2668.039530][T32031]  ? mark_held_locks+0x9f/0xe0
[ 2668.044334][T32031]  mem_cgroup_out_of_memory+0x206/0x270
[ 2668.049920][T32031]  ? mem_cgroup_margin+0x130/0x130
[ 2668.055095][T32031]  memory_max_write+0x2f9/0x3c0
[ 2668.059994][T32031]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 2668.066111][T32031]  ? lock_release+0x810/0x810
[ 2668.070835][T32031]  cgroup_file_write+0x1e2/0x770
[ 2668.075831][T32031]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 2668.081953][T32031]  ? kill_css+0x370/0x370
[ 2668.086341][T32031]  ? __virt_addr_valid+0x61/0x2e0
[ 2668.091438][T32031]  ? kill_css+0x370/0x370
[ 2668.095814][T32031]  kernfs_fop_write_iter+0x3f1/0x600
[ 2668.101162][T32031]  vfs_write+0x9ed/0xdd0
[ 2668.105455][T32031]  ? kernel_write+0x630/0x630
[ 2668.110188][T32031]  ? __fget_files+0x26a/0x440
[ 2668.114935][T32031]  ksys_write+0x12b/0x250
[ 2668.119400][T32031]  ? __ia32_sys_read+0xb0/0xb0
[ 2668.124215][T32031]  ? syscall_enter_from_user_mode+0x26/0xb0
[ 2668.130166][T32031]  do_syscall_64+0x39/0xb0
[ 2668.134641][T32031]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2668.140581][T32031] RIP: 0033:0x7ff3b408c0c9
[ 2668.145032][T32031] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 2668.164681][T32031] RSP: 002b:00007ff3b4e24168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 2668.173142][T32031] RAX: ffffffffffffffda RBX: 00007ff3b41abf80 RCX: 00007ff3b408c0c9
[ 2668.181158][T32031] RDX: 0000000000000012 RSI: 0000000020000040 RDI: 0000000000000005
[ 2668.189170][T32031] RBP: 00007ff3b40e7ae9 R08: 0000000000000000 R09: 0000000000000000
[ 2668.197172][T32031] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2668.205175][T32031] R13: 00007ffca4b9180f R14: 00007ff3b4e24300 R15: 0000000000022000
[ 2668.213207][T32031]  </TASK>
[ 2668.275891][ T9919] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 2668.295066][ T9919] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 2668.387216][T23935] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 2668.405984][T23935] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 2668.441996][T31802] device veth0_vlan entered promiscuous mode
[ 2668.472139][ T4735] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 2668.487251][ T4735] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 2668.513891][T31802] device veth1_vlan entered promiscuous mode
[ 2668.634338][ T9919] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 2668.650987][ T9919] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 2668.681335][ T9919] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 2668.713904][ T9919] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 2668.755169][T31802] device veth0_macvtap entered promiscuous mode
[ 2668.805562][T31802] device veth1_macvtap entered promiscuous mode
[ 2668.842979][T23935] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 2668.854884][ T5120] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 2668.857116][T23935] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 2668.870484][ T5120] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 2668.879249][ T5120] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 2668.891487][ T5120] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 2668.901254][ T5120] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[ 2668.909561][ T5120] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 2668.917435][T32031] memory: usage 10620kB, limit 0kB, failcnt 704
[ 2668.924675][T23935] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 2668.925277][T32031] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2668.940584][T32031] Memory cgroup stats for /syz3:
[ 2668.940888][T32031] anon 114688
[ 2668.940888][T32031] file 10448896
[ 2668.940888][T32031] kernel 274432
[ 2668.940888][T32031] kernel_stack 32768
[ 2668.940888][T32031] pagetables 81920
[ 2668.940888][T32031] sec_pagetables 0
[ 2668.940888][T32031] percpu 64
[ 2668.940888][T32031] sock 0
[ 2668.940888][T32031] vmalloc 0
[ 2668.940888][T32031] shmem 10448896
[ 2668.940888][T32031] zswap 0
[ 2668.940888][T32031] zswapped 0
[ 2668.940888][T32031] file_mapped 331776
[ 2668.940888][T32031] file_dirty 0
[ 2668.940888][T32031] file_writeback 0
[ 2668.940888][T32031] swapcached 0
[ 2668.940888][T32031] anon_thp 0
[ 2668.940888][T32031] file_thp 0
[ 2668.940888][T32031] shmem_thp 0
[ 2668.940888][T32031] inactive_anon 2211840
[ 2668.940888][T32031] active_anon 8351744
[ 2668.940888][T32031] inactive_file 0
[ 2668.940888][T32031] active_file 0
[ 2668.940888][T32031] unevictable 0
[ 2668.940888][T32031] slab_reclaimable 37864
[ 2668.940888][T32031] slab_unreclaimable 99816
[ 2668.940888][T32031] slab 137680
[ 2668.967691][T23935] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 2669.073911][T32031] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=32030,uid=0
[ 2669.105253][T31802] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2669.154404][T31802] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2669.164448][T31802] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2669.175125][T31802] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2669.197923][T31802] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2669.229685][T31802] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2669.240459][T32031] Memory cgroup out of memory: Killed process 32031 (syz-executor.3) total-vm:54540kB, anon-rss:372kB, file-rss:8960kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
21:25:38 executing program 3:
openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0)
openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
perf_event_open(0x0, 0xffffffffffffffff, 0xb, 0xffffffffffffffff, 0x0)
r1 = openat$cgroup_int(r0, &(0x7f00000000c0)='memory.max\x00', 0x2, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x1f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='blkio.bfq.io_service_time\x00', 0x26e1, 0x0)
write$cgroup_int(r2, &(0x7f0000000040), 0x12)
close(r2)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000280)='host1x_cdma_push_wide\x00'}, 0x10)
write$cgroup_int(r1, &(0x7f0000000040), 0x12)

[ 2669.273303][T31802] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2669.310847][T31802] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2669.321921][T31786] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=0
[ 2669.333026][T31786] CPU: 1 PID: 31786 Comm: syz-executor.3 Not tainted 6.2.0-rc2-syzkaller-00431-g0164776a2ce7 #0
[ 2669.343297][T31802] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 2669.343457][T31786] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 2669.360727][T31786] Call Trace:
[ 2669.364021][T31786]  <TASK>
[ 2669.366970][T31786]  dump_stack_lvl+0xd1/0x138
[ 2669.371600][T31786]  dump_header+0x10b/0x85f
[ 2669.376046][T31786]  oom_kill_process.cold+0x10/0x15
[ 2669.381206][T31786]  out_of_memory+0x35c/0x14a0
[ 2669.385919][T31786]  ? find_held_lock+0x2d/0x110
[ 2669.390723][T31786]  ? oom_killer_disable+0x280/0x280
[ 2669.395955][T31786]  ? find_held_lock+0x2d/0x110
[ 2669.400801][T31786]  mem_cgroup_out_of_memory+0x206/0x270
[ 2669.404790][T31813] device veth0_vlan entered promiscuous mode
[ 2669.406370][T31786]  ? mem_cgroup_margin+0x130/0x130
[ 2669.417467][T31786]  ? lock_downgrade+0x6e0/0x6e0
[ 2669.422368][T31786]  try_charge_memcg+0xefb/0x12f0
[ 2669.427363][T31786]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 2669.433389][T31786]  ? get_mem_cgroup_from_objcg+0xa1/0x260
[ 2669.436783][T31813] device veth1_vlan entered promiscuous mode
[ 2669.439123][T31786]  ? lock_downgrade+0x6e0/0x6e0
[ 2669.439156][T31786]  ? lock_downgrade+0x6e0/0x6e0
[ 2669.439193][T31786]  __memcg_kmem_charge_page+0x16e/0x3b0
[ 2669.460424][T31786]  memcg_charge_kernel_stack.part.0+0x6c/0x150
[ 2669.466630][T31786]  copy_process+0x4e3/0x7520
[ 2669.471268][T31786]  ? _raw_spin_unlock+0x28/0x40
[ 2669.476165][T31786]  ? wp_page_reuse+0x197/0x570
[ 2669.480981][T31786]  ? do_wp_page+0x844/0x3370
[ 2669.485626][T31786]  ? __cleanup_sighand+0xb0/0xb0
[ 2669.490603][T31786]  ? finish_mkwrite_fault+0x3d0/0x3d0
[ 2669.496022][T31786]  ? rwlock_bug.part.0+0x90/0x90
[ 2669.501018][T31786]  ? lock_chain_count+0x20/0x20
[ 2669.505918][T31786]  kernel_clone+0xeb/0x990
[ 2669.510383][T31786]  ? create_io_thread+0xf0/0xf0
[ 2669.511035][T31813] device veth0_macvtap entered promiscuous mode
[ 2669.515262][T31786]  ? find_held_lock+0x2d/0x110
[ 2669.526315][T31786]  __do_sys_clone+0xba/0x100
[ 2669.530944][T31786]  ? kernel_clone+0x990/0x990
[ 2669.535672][T31786]  ? syscall_enter_from_user_mode+0x26/0xb0
[ 2669.541617][T31786]  do_syscall_64+0x39/0xb0
[ 2669.546081][T31786]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2669.552014][T31786] RIP: 0033:0x7ff3b4089dfb
[ 2669.556463][T31786] Code: ed 0f 85 60 01 00 00 64 4c 8b 0c 25 10 00 00 00 45 31 c0 4d 8d 91 d0 02 00 00 31 d2 31 f6 bf 11 00 20 01 b8 38 00 00 00 0f 05 <48> 3d 00 f0 ff ff 0f 87 89 00 00 00 41 89 c5 85 c0 0f 85 90 00 00
[ 2669.576110][T31786] RSP: 002b:00007ffca4b91a50 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[ 2669.584563][T31786] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007ff3b4089dfb
[ 2669.592565][T31786] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011
[ 2669.600570][T31786] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000555556517400
[ 2669.608662][T31786] R10: 00005555565176d0 R11: 0000000000000246 R12: 0000000000000001
[ 2669.616668][T31786] R13: 0000000000000000 R14: 0000000000000001 R15: 00007ffca4b91b30
[ 2669.624695][T31786]  </TASK>
[ 2669.635803][ T4735] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 2669.649619][ T4735] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 2669.658582][ T4735] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 2669.699173][ T4735] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 2669.707909][ T4735] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 2669.726418][ T4735] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 2669.736288][ T4735] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 2669.756962][ T4735] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 2669.767006][T23935] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 2669.786289][T23935] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 2669.797685][T23935] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 2669.840064][T31813] device veth1_macvtap entered promiscuous mode
[ 2669.864497][T31802] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2669.866129][T31786] memory: usage 10420kB, limit 0kB, failcnt 723
[ 2669.891488][T31786] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2669.893414][T31802] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2669.898364][T31786] Memory cgroup stats for /syz3:
[ 2669.898540][T31786] anon 36864
[ 2669.898540][T31786] file 10448896
[ 2669.898540][T31786] kernel 143360
[ 2669.898540][T31786] kernel_stack 0
[ 2669.898540][T31786] pagetables 8192
[ 2669.898540][T31786] sec_pagetables 0
[ 2669.898540][T31786] percpu 64
[ 2669.898540][T31786] sock 0
[ 2669.898540][T31786] vmalloc 0
[ 2669.898540][T31786] shmem 10448896
[ 2669.898540][T31786] zswap 0
[ 2669.898540][T31786] zswapped 0
[ 2669.898540][T31786] file_mapped 315392
[ 2669.898540][T31786] file_dirty 0
[ 2669.898540][T31786] file_writeback 0
[ 2669.898540][T31786] swapcached 0
[ 2669.898540][T31786] anon_thp 0
[ 2669.898540][T31786] file_thp 0
[ 2669.898540][T31786] shmem_thp 0
[ 2669.898540][T31786] inactive_anon 2134016
[ 2669.898540][T31786] active_anon 8351744
[ 2669.898540][T31786] inactive_file 0
[ 2669.898540][T31786] active_file 0
[ 2669.898540][T31786] unevictable 0
[ 2669.898540][T31786] slab_reclaimable 35504
[ 2669.898540][T31786] slab_unreclaimable 82176
[ 2669.898540][T31786] slab 117680
[ 2669.940525][T31802] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2670.050298][T31802] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2670.067084][T31802] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2670.096329][T31802] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2670.125562][T31786] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=31786,uid=0
[ 2670.130045][T31802] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2670.162006][T31786] Memory cgroup out of memory: Killed process 31786 (syz-executor.3) total-vm:50568kB, anon-rss:364kB, file-rss:8928kB, shmem-rss:0kB, UID:0 pgtables:68kB oom_score_adj:0
[ 2670.205848][T31802] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2670.228216][T31802] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 2670.263270][T31802] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 2670.297097][T31802] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 2670.317245][T31802] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 2670.347875][T31802] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 2670.383842][T23289] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 2670.401877][T23289] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 2670.596341][T31813] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2670.622266][T31813] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2670.636504][T31813] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2670.647501][T31813] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2670.658998][T31813] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2670.670229][T31813] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2670.681114][T31813] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2670.695795][T31813] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2670.708322][T31813] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2670.727672][T31813] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2670.759528][T31813] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 2670.774896][T17500] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 2670.792993][T17500] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 2670.827874][T31813] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2670.855338][T31813] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2670.892532][T31813] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2670.925482][T31813] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2670.970717][T31813] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2670.984198][T31813] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2670.998358][T31813] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2671.017053][T31813] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2671.027046][T31813] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2671.045354][T31813] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2671.069574][T31813] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 2671.076991][T17500] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 2671.087092][T17500] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 2671.116782][T32048] chnl_net:caif_netlink_parms(): no params data found
[ 2671.129175][ T5120] Bluetooth: hci0: command 0x0409 tx timeout
[ 2671.151060][T31813] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 2671.185841][T31813] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 2671.194860][T31813] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 2671.203797][T31813] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 2671.302432][T14860] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2671.332884][T14860] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2671.380099][T20562] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2671.388307][T20562] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2671.432506][T23940] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 2671.450429][T23940] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 2671.492353][T32048] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2671.499680][T32048] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2671.507885][T32048] device bridge_slave_0 entered promiscuous mode
[ 2671.547480][T14860] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2671.557037][T32048] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2671.576725][T32048] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2671.584215][T14860] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2671.598624][T32048] device bridge_slave_1 entered promiscuous mode
[ 2671.656437][T14991] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 2671.667912][T32084] syz-executor.4 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2671.686429][T32084] CPU: 0 PID: 32084 Comm: syz-executor.4 Not tainted 6.2.0-rc2-syzkaller-00431-g0164776a2ce7 #0
[ 2671.696913][T32084] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 2671.707007][T32084] Call Trace:
[ 2671.710295][T32084]  <TASK>
[ 2671.713232][T32084]  dump_stack_lvl+0xd1/0x138
[ 2671.717873][T32084]  dump_header+0x10b/0x85f
[ 2671.722326][T32084]  oom_kill_process.cold+0x10/0x15
[ 2671.727456][T32084]  out_of_memory+0x35c/0x14a0
[ 2671.732156][T32084]  ? oom_killer_disable+0x280/0x280
[ 2671.737387][T32084]  ? find_held_lock+0x2d/0x110
[ 2671.742179][T32084]  mem_cgroup_out_of_memory+0x206/0x270
[ 2671.747752][T32084]  ? mem_cgroup_margin+0x130/0x130
[ 2671.752927][T32084]  ? _raw_spin_unlock_irqrestore+0x54/0x70
[ 2671.758847][T32084]  memory_max_write+0x2f9/0x3c0
[ 2671.763716][T32084]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 2671.769819][T32084]  ? lock_release+0x810/0x810
[ 2671.774514][T32084]  cgroup_file_write+0x1e2/0x770
[ 2671.779470][T32084]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 2671.785561][T32084]  ? kill_css+0x370/0x370
[ 2671.789908][T32084]  ? __virt_addr_valid+0x61/0x2e0
[ 2671.794962][T32084]  ? kill_css+0x370/0x370
[ 2671.799305][T32084]  kernfs_fop_write_iter+0x3f1/0x600
[ 2671.804636][T32084]  vfs_write+0x9ed/0xdd0
[ 2671.808908][T32084]  ? kernel_write+0x630/0x630
[ 2671.813611][T32084]  ? __fget_files+0x26a/0x440
[ 2671.818317][T32084]  ksys_write+0x12b/0x250
[ 2671.822664][T32084]  ? __ia32_sys_read+0xb0/0xb0
[ 2671.827443][T32084]  ? syscall_enter_from_user_mode+0x26/0xb0
[ 2671.833359][T32084]  do_syscall_64+0x39/0xb0
[ 2671.837797][T32084]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2671.843705][T32084] RIP: 0033:0x7ff1cd28c0c9
[ 2671.848127][T32084] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 2671.867741][T32084] RSP: 002b:00007ff1ce04e168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 2671.876168][T32084] RAX: ffffffffffffffda RBX: 00007ff1cd3abf80 RCX: 00007ff1cd28c0c9
[ 2671.884150][T32084] RDX: 0000000000000012 RSI: 0000000020000040 RDI: 0000000000000004
[ 2671.892128][T32084] RBP: 00007ff1cd2e7ae9 R08: 0000000000000000 R09: 0000000000000000
[ 2671.900125][T32084] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2671.908100][T32084] R13: 00007ffd39399f3f R14: 00007ff1ce04e300 R15: 0000000000022000
[ 2671.916100][T32084]  </TASK>
[ 2671.925711][T14861] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2671.941378][T32048] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 2671.961258][T14861] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2671.964871][T32084] memory: usage 8576kB, limit 0kB, failcnt 606
[ 2671.991748][T17500] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 2671.993873][T32084] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2672.006512][T32084] Memory cgroup stats for /syz4:
[ 2672.006723][T32084] anon 118784
[ 2672.006723][T32084] file 8355840
[ 2672.006723][T32084] kernel 290816
[ 2672.006723][T32084] kernel_stack 65536
[ 2672.006723][T32084] pagetables 81920
[ 2672.006723][T32084] sec_pagetables 0
[ 2672.006723][T32084] percpu 64
[ 2672.006723][T32084] sock 0
[ 2672.006723][T32084] vmalloc 0
[ 2672.006723][T32084] shmem 8351744
[ 2672.006723][T32084] zswap 0
[ 2672.006723][T32084] zswapped 0
[ 2672.006723][T32084] file_mapped 290816
[ 2672.006723][T32084] file_dirty 4096
[ 2672.006723][T32084] file_writeback 0
[ 2672.006723][T32084] swapcached 0
[ 2672.006723][T32084] anon_thp 0
[ 2672.006723][T32084] file_thp 0
[ 2672.006723][T32084] shmem_thp 0
[ 2672.006723][T32084] inactive_anon 118784
[ 2672.006723][T32084] active_anon 8351744
[ 2672.006723][T32084] inactive_file 4096
[ 2672.006723][T32084] active_file 0
[ 2672.006723][T32084] unevictable 0
[ 2672.006723][T32084] slab_reclaimable 42952
[ 2672.006723][T32084] slab_unreclaimable 75696
[ 2672.006723][T32084] slab 118648
[ 2672.106728][T32048] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 2672.213123][T32084] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0-1,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=32082,uid=0
[ 2672.234736][T32048] team0: Port device team_slave_0 added
[ 2672.296375][T32084] Memory cgroup out of memory: Killed process 32082 (syz-executor.4) total-vm:54540kB, anon-rss:500kB, file-rss:8960kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
21:25:41 executing program 4:
openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_int(r0, &(0x7f00000000c0)='memory.max\x00', 0x2, 0x0)
getpid()
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x1f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000300)='cpuacct.usage_all\x00', 0x0, 0x0)
bpf$ITER_CREATE(0x21, &(0x7f00000002c0)={r2}, 0x8)
getpid()
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='blkio.bfq.io_service_time\x00', 0x26e1, 0x0)
write$cgroup_int(r3, &(0x7f0000000040), 0x12)
close(r3)
syz_open_procfs$namespace(0x0, 0x0)
write$cgroup_int(r1, &(0x7f0000000040), 0x12)

[ 2672.412057][T10995] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2672.449903][T32090] syz-executor.5 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2672.478851][T32090] CPU: 1 PID: 32090 Comm: syz-executor.5 Not tainted 6.2.0-rc2-syzkaller-00431-g0164776a2ce7 #0
[ 2672.489342][T32090] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 2672.499435][T32090] Call Trace:
[ 2672.502742][T32090]  <TASK>
[ 2672.505703][T32090]  dump_stack_lvl+0xd1/0x138
[ 2672.510346][T32090]  dump_header+0x10b/0x85f
[ 2672.514804][T32090]  oom_kill_process.cold+0x10/0x15
[ 2672.519961][T32090]  out_of_memory+0x35c/0x14a0
[ 2672.524689][T32090]  ? oom_killer_disable+0x280/0x280
[ 2672.529931][T32090]  ? mark_held_locks+0x9f/0xe0
[ 2672.534754][T32090]  mem_cgroup_out_of_memory+0x206/0x270
[ 2672.540349][T32090]  ? mem_cgroup_margin+0x130/0x130
[ 2672.545610][T32090]  memory_max_write+0x2f9/0x3c0
[ 2672.550507][T32090]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 2672.556623][T32090]  ? lock_release+0x810/0x810
[ 2672.561343][T32090]  cgroup_file_write+0x1e2/0x770
[ 2672.566322][T32090]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 2672.572437][T32090]  ? kill_css+0x370/0x370
[ 2672.576903][T32090]  ? __virt_addr_valid+0x61/0x2e0
[ 2672.581990][T32090]  ? kill_css+0x370/0x370
[ 2672.586349][T32090]  kernfs_fop_write_iter+0x3f1/0x600
[ 2672.591668][T32090]  vfs_write+0x9ed/0xdd0
[ 2672.595933][T32090]  ? kernel_write+0x630/0x630
[ 2672.600634][T32090]  ? __fget_files+0x26a/0x440
[ 2672.605340][T32090]  ksys_write+0x12b/0x250
[ 2672.609686][T32090]  ? __ia32_sys_read+0xb0/0xb0
[ 2672.614466][T32090]  ? syscall_enter_from_user_mode+0x26/0xb0
[ 2672.620383][T32090]  do_syscall_64+0x39/0xb0
[ 2672.624821][T32090]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2672.630740][T32090] RIP: 0033:0x7f5bc3a8c0c9
[ 2672.635167][T32090] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 2672.654804][T32090] RSP: 002b:00007f5bc4868168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 2672.663236][T32090] RAX: ffffffffffffffda RBX: 00007f5bc3babf80 RCX: 00007f5bc3a8c0c9
[ 2672.671217][T32090] RDX: 0000000000000012 RSI: 0000000020000040 RDI: 0000000000000005
[ 2672.679197][T32090] RBP: 00007f5bc3ae7ae9 R08: 0000000000000000 R09: 0000000000000000
[ 2672.687175][T32090] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2672.695150][T32090] R13: 00007ffc4396f9cf R14: 00007f5bc4868300 R15: 0000000000022000
[ 2672.703153][T32090]  </TASK>
[ 2672.719569][T32048] team0: Port device team_slave_1 added
[ 2672.739334][T32090] memory: usage 10604kB, limit 0kB, failcnt 720
[ 2672.761101][T32090] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2672.773591][T32090] Memory cgroup stats for /syz5:
[ 2672.776906][T32090] anon 114688
[ 2672.776906][T32090] file 10432512
[ 2672.776906][T32090] kernel 290816
[ 2672.776906][T32090] kernel_stack 65536
[ 2672.776906][T32090] pagetables 81920
[ 2672.776906][T32090] sec_pagetables 0
[ 2672.776906][T32090] percpu 64
[ 2672.776906][T32090] sock 0
[ 2672.776906][T32090] vmalloc 0
[ 2672.776906][T32090] shmem 10432512
[ 2672.776906][T32090] zswap 0
[ 2672.776906][T32090] zswapped 0
[ 2672.776906][T32090] file_mapped 249856
[ 2672.776906][T32090] file_dirty 0
[ 2672.776906][T32090] file_writeback 0
[ 2672.776906][T32090] swapcached 0
[ 2672.776906][T32090] anon_thp 0
[ 2672.776906][T32090] file_thp 0
[ 2672.776906][T32090] shmem_thp 0
[ 2672.776906][T32090] inactive_anon 2211840
[ 2672.776906][T32090] active_anon 8335360
[ 2672.776906][T32090] inactive_file 0
[ 2672.776906][T32090] active_file 0
[ 2672.776906][T32090] unevictable 0
[ 2672.776906][T32090] slab_reclaimable 40112
[ 2672.776906][T32090] slab_unreclaimable 75048
[ 2672.776906][T32090] slab 115160
[ 2672.886320][T32048] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 2672.898048][T32048] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2672.929298][T32090] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz5,mems_allowed=0-1,oom_memcg=/syz5,task_memcg=/syz5,task=syz-executor.5,pid=32089,uid=0
[ 2672.957179][T32090] Memory cgroup out of memory: Killed process 32089 (syz-executor.5) total-vm:54540kB, anon-rss:500kB, file-rss:8960kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000
[ 2672.998878][T32048] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 2673.011627][T31802] syz-executor.4 invoked oom-killer: gfp_mask=0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), order=0, oom_score_adj=0
[ 2673.027071][T31802] CPU: 1 PID: 31802 Comm: syz-executor.4 Not tainted 6.2.0-rc2-syzkaller-00431-g0164776a2ce7 #0
[ 2673.037551][T31802] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 2673.047637][T31802] Call Trace:
[ 2673.050936][T31802]  <TASK>
[ 2673.053890][T31802]  dump_stack_lvl+0xd1/0x138
[ 2673.058532][T31802]  dump_header+0x10b/0x85f
[ 2673.062992][T31802]  oom_kill_process.cold+0x10/0x15
[ 2673.068142][T31802]  out_of_memory+0x35c/0x14a0
[ 2673.072863][T31802]  ? oom_killer_disable+0x280/0x280
[ 2673.078108][T31802]  ? find_held_lock+0x2d/0x110
[ 2673.082924][T31802]  mem_cgroup_out_of_memory+0x206/0x270
[ 2673.088507][T31802]  ? mem_cgroup_margin+0x130/0x130
[ 2673.093647][T31802]  ? lock_downgrade+0x6e0/0x6e0
[ 2673.098553][T31802]  try_charge_memcg+0xefb/0x12f0
[ 2673.103542][T31802]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 2673.109557][T31802]  ? get_mem_cgroup_from_objcg+0xa1/0x260
[ 2673.115317][T31802]  ? lock_downgrade+0x6e0/0x6e0
[ 2673.120219][T31802]  ? lock_downgrade+0x6e0/0x6e0
[ 2673.125119][T31802]  __memcg_kmem_charge_page+0x16e/0x3b0
[ 2673.130707][T31802]  __alloc_pages+0x1f3/0x5b0
[ 2673.135340][T31802]  ? __alloc_pages_slowpath.constprop.0+0x23d0/0x23d0
[ 2673.142169][T31802]  ? find_held_lock+0x2d/0x110
[ 2673.146988][T31802]  alloc_pages+0x1aa/0x270
[ 2673.151440][T31802]  pte_alloc_one+0x1a/0x230
[ 2673.155989][T31802]  __pte_alloc+0x6d/0x260
[ 2673.160366][T31802]  ? pmd_install+0x160/0x160
[ 2673.165046][T31802]  ? _raw_spin_unlock+0x28/0x40
[ 2673.169918][T31802]  ? __pmd_alloc+0x30c/0x5d0
[ 2673.174532][T31802]  copy_page_range+0x17a8/0x3b40
[ 2673.179524][T31802]  ? mas_store+0x206/0x2e0
[ 2673.183956][T31802]  ? handle_mm_fault+0x850/0x850
[ 2673.188929][T31802]  ? anon_vma_fork+0xba/0x630
[ 2673.193632][T31802]  dup_mmap+0xc10/0x10b0
[ 2673.197898][T31802]  ? replace_mm_exe_file+0x4b0/0x4b0
[ 2673.203202][T31802]  ? lock_downgrade+0x6e0/0x6e0
[ 2673.208070][T31802]  ? _raw_spin_unlock_irqrestore+0x54/0x70
[ 2673.213936][T31802]  ? mm_init+0x8e0/0xc10
[ 2673.218199][T31802]  copy_process+0x440f/0x7520
[ 2673.222891][T31802]  ? _raw_spin_unlock+0x28/0x40
[ 2673.227760][T31802]  ? wp_page_reuse+0x197/0x570
[ 2673.232559][T31802]  ? __cleanup_sighand+0xb0/0xb0
[ 2673.237519][T31802]  ? finish_mkwrite_fault+0x3d0/0x3d0
[ 2673.242915][T31802]  ? rwlock_bug.part.0+0x90/0x90
[ 2673.247863][T31802]  ? lock_chain_count+0x20/0x20
[ 2673.252740][T31802]  kernel_clone+0xeb/0x990
[ 2673.257196][T31802]  ? create_io_thread+0xf0/0xf0
[ 2673.262082][T31802]  ? find_held_lock+0x2d/0x110
[ 2673.266894][T31802]  __do_sys_clone+0xba/0x100
[ 2673.271513][T31802]  ? kernel_clone+0x990/0x990
[ 2673.276223][T31802]  ? syscall_enter_from_user_mode+0x26/0xb0
[ 2673.282154][T31802]  do_syscall_64+0x39/0xb0
[ 2673.286596][T31802]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2673.292505][T31802] RIP: 0033:0x7ff1cd289dfb
[ 2673.296928][T31802] Code: ed 0f 85 60 01 00 00 64 4c 8b 0c 25 10 00 00 00 45 31 c0 4d 8d 91 d0 02 00 00 31 d2 31 f6 bf 11 00 20 01 b8 38 00 00 00 0f 05 <48> 3d 00 f0 ff ff 0f 87 89 00 00 00 41 89 c5 85 c0 0f 85 90 00 00
[ 2673.316543][T31802] RSP: 002b:00007ffd3939a180 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[ 2673.324963][T31802] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007ff1cd289dfb
[ 2673.332942][T31802] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011
[ 2673.340920][T31802] RBP: 0000000000000001 R08: 0000000000000000 R09: 00005555563cd400
21:25:42 executing program 5:
openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0)
openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
perf_event_open(0x0, 0xffffffffffffffff, 0xb, 0xffffffffffffffff, 0x0)
r1 = openat$cgroup_int(r0, &(0x7f00000000c0)='memory.max\x00', 0x2, 0x0)
getpid()
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x1f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000300)='cpuacct.usage_all\x00', 0x0, 0x0)
bpf$ITER_CREATE(0x21, &(0x7f00000002c0)={r2}, 0x8)
getpid()
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='blkio.bfq.io_service_time\x00', 0x26e1, 0x0)
close(r3)
syz_open_procfs$namespace(0x0, 0x0)
write$cgroup_int(r1, &(0x7f0000000040), 0x12)

21:25:42 executing program 0:
openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0)
openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
perf_event_open(0x0, 0xffffffffffffffff, 0xb, 0xffffffffffffffff, 0x0)
getpid()
r0 = bpf$ITER_CREATE(0x21, &(0x7f0000000340), 0x8)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='blkio.bfq.io_service_time\x00', 0x26e1, 0x0)
write$cgroup_int(r1, &(0x7f0000000040), 0x12)
close(r1)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000280)='host1x_cdma_push_wide\x00', r0}, 0x10)
write$cgroup_int(0xffffffffffffffff, &(0x7f0000000040), 0x12)

21:25:42 executing program 1:
r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0)
perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x6, 0x401}, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000180)={0x0, 0x80, 0x0, 0x7c, 0x4, 0xd2, 0x0, 0x5, 0x0, 0x74d4e3ef7733d4ea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x26, 0x0, @perf_bp={0x0}, 0x210, 0x0, 0x1f, 0x3, 0x0, 0x0, 0xffff}, 0x0, 0x0, 0xffffffffffffffff, 0x9)
openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
perf_event_open(&(0x7f0000000200)={0x4, 0x80, 0x9, 0x0, 0x0, 0x5, 0x0, 0xffffffff, 0x800, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x2, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x2, 0x2, @perf_bp={&(0x7f0000000100), 0x5}, 0x0, 0x100000000, 0x2a, 0x0, 0x8, 0x40, 0x0, 0x0, 0x3f, 0x0, 0x4000000000000000}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f00000002c0)='cpuacct.usage_percpu_sys\x00', 0x0, 0x0)
perf_event_open$cgroup(&(0x7f00000003c0)={0x4, 0x80, 0x1, 0xff, 0x1, 0x5, 0x0, 0x800000000000008, 0x21001, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x3, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0xffff0000, 0x4, @perf_bp={&(0x7f0000000380), 0x8}, 0x40ae, 0xe, 0x78d8, 0x5, 0x7, 0x7, 0x1ff}, 0xffffffffffffffff, 0xc, r0, 0xc)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000018c00)={0x18, 0x3, &(0x7f0000000780)=ANY=[@ANYBLOB="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"], &(0x7f0000000440)='syzkaller\x00', 0x4, 0xb0, &(0x7f0000000480)=""/176, 0x0, 0x0, '\x00', 0x0, 0x0, r1, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
r3 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='rcu_utilization\x00', r2}, 0x10)
r4 = perf_event_open$cgroup(&(0x7f0000000080)={0x4, 0x80, 0x81, 0x5, 0x6, 0x0, 0x0, 0x8000000000000000, 0x848, 0x4, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x3, 0x0, @perf_config_ext={0x912410d}, 0x8800, 0xffffffff, 0x7, 0x6, 0x3f, 0x7, 0x8dd, 0x0, 0x5, 0x0, 0x1}, 0xffffffffffffffff, 0xb, 0xffffffffffffffff, 0x9)
ioctl$PERF_EVENT_IOC_SET_OUTPUT(0xffffffffffffffff, 0x2405, r4)
r5 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000540)='./cgroup.cpu/syz1\x00', 0x200002, 0x0)
openat$cgroup_ro(r5, &(0x7f0000000640)='cgroup.stat\x00', 0x0, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r4, 0x40082404, &(0x7f0000000580)=0xffffffffffffff7f)
r6 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000000)='cpuacct.usage_percpu_sys\x00', 0x26e1, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r6, 0x40086607, &(0x7f0000000040))
r7 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x26e1, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000018c00)={0x18, 0x3, &(0x7f0000000300)=ANY=[@ANYRES64=r1], 0x0, 0x4, 0xb0, &(0x7f0000000480)=""/176, 0x40f00, 0x5, '\x00', 0x0, 0x0, r7, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x0, 0x204d, &(0x7f00000005c0)=ANY=[@ANYRES32], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x18, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000740)={0x0, 0x3}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000002c0)=[0xffffffffffffffff, r7, 0xffffffffffffffff]}, 0x80)
write$cgroup_int(r7, &(0x7f0000000280)=0x1ff, 0x12)
r8 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000001e00)={&(0x7f0000001dc0)='./file0\x00', 0x0, 0x10}, 0x10)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000001e80)=@bpf_lsm={0x1d, 0x2, &(0x7f0000000700)=@raw=[@map_idx={0x18, 0x4}], &(0x7f0000002340)='GPL\x00', 0x5, 0x33, &(0x7f0000002380)=""/51, 0x41100, 0x2, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f00000023c0)={0x5, 0x4}, 0x8, 0x10, &(0x7f0000002400)={0x3, 0xa, 0x6, 0xae2e}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000002500)=[r0, r8, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}, 0x80)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={0xffffffffffffffff, 0x18000000000002a0, 0x0, 0x0, &(0x7f00000001c0), 0x0, 0x0, 0xe8030000, 0x0, 0x0, 0x0, 0x0}, 0x48)
ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x89f2, &(0x7f0000000080)='ip6tnl0\x00')
socketpair(0x1e, 0x5, 0x20, &(0x7f0000000600))
socketpair(0x1, 0x1, 0x0, &(0x7f0000000740)={0xffffffffffffffff, <r9=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r9, 0x89f1, &(0x7f0000000080))
close(r3)

21:25:42 executing program 3:
openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0)
openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
perf_event_open(0x0, 0xffffffffffffffff, 0xb, 0xffffffffffffffff, 0x0)
r1 = openat$cgroup_int(r0, &(0x7f00000000c0)='memory.max\x00', 0x2, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x1f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='blkio.bfq.io_service_time\x00', 0x26e1, 0x0)
write$cgroup_int(r2, &(0x7f0000000040), 0x12)
close(r2)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000280)='host1x_cdma_push_wide\x00'}, 0x10)
write$cgroup_int(r1, &(0x7f0000000040), 0x12)

[ 2673.348898][T31802] R10: 00005555563cd6d0 R11: 0000000000000246 R12: 0000000000000001
[ 2673.356875][T31802] R13: 0000000000000000 R14: 0000000000000001 R15: 00007ffd3939a260
[ 2673.364870][T31802]  </TASK>
[ 2673.370031][ T5120] Bluetooth: hci0: command 0x041b tx timeout
[ 2673.438930][T31802] memory: usage 8360kB, limit 0kB, failcnt 625
[ 2673.446434][T31802] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2673.473987][T31802] Memory cgroup stats for /syz4:
[ 2673.474175][T31802] anon 40960
[ 2673.474175][T31802] file 8351744
[ 2673.474175][T31802] kernel 167936
[ 2673.474175][T31802] kernel_stack 32768
[ 2673.474175][T31802] pagetables 12288
[ 2673.474175][T31802] sec_pagetables 0
[ 2673.474175][T31802] percpu 128
[ 2673.474175][T31802] sock 0
[ 2673.474175][T31802] vmalloc 0
[ 2673.474175][T31802] shmem 8351744
[ 2673.474175][T31802] zswap 0
[ 2673.474175][T31802] zswapped 0
[ 2673.474175][T31802] file_mapped 266240
[ 2673.474175][T31802] file_dirty 0
[ 2673.474175][T31802] file_writeback 0
[ 2673.474175][T31802] swapcached 0
[ 2673.474175][T31802] anon_thp 0
[ 2673.474175][T31802] file_thp 0
[ 2673.474175][T31802] shmem_thp 0
[ 2673.474175][T31802] inactive_anon 40960
[ 2673.474175][T31802] active_anon 8351744
[ 2673.474175][T31802] inactive_file 0
[ 2673.474175][T31802] active_file 0
[ 2673.474175][T31802] unevictable 0
[ 2673.474175][T31802] slab_reclaimable 33272
[ 2673.474175][T31802] slab_unreclaimable 65648
[ 2673.474175][T31802] slab 98920
[ 2673.577847][T10995] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2673.620031][T32048] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 2673.627890][T32048] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2673.748817][T32048] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 2673.757370][T31802] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0-1,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=31802,uid=0
[ 2673.789038][T31802] Memory cgroup out of memory: Killed process 31802 (syz-executor.4) total-vm:50568kB, anon-rss:364kB, file-rss:8960kB, shmem-rss:0kB, UID:0 pgtables:68kB oom_score_adj:0
[ 2673.825935][T10995] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2673.849567][T31813] syz-executor.5 invoked oom-killer: gfp_mask=0x400cc0(GFP_KERNEL_ACCOUNT), order=0, oom_score_adj=0
[ 2673.876214][T31813] CPU: 1 PID: 31813 Comm: syz-executor.5 Not tainted 6.2.0-rc2-syzkaller-00431-g0164776a2ce7 #0
[ 2673.886698][T31813] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 2673.896784][T31813] Call Trace:
[ 2673.900089][T31813]  <TASK>
[ 2673.903041][T31813]  dump_stack_lvl+0xd1/0x138
[ 2673.907675][T31813]  dump_header+0x10b/0x85f
[ 2673.912127][T31813]  oom_kill_process.cold+0x10/0x15
[ 2673.917280][T31813]  out_of_memory+0x35c/0x14a0
[ 2673.921997][T31813]  ? oom_killer_disable+0x280/0x280
[ 2673.927232][T31813]  ? find_held_lock+0x2d/0x110
[ 2673.932050][T31813]  mem_cgroup_out_of_memory+0x206/0x270
[ 2673.937632][T31813]  ? mem_cgroup_margin+0x130/0x130
[ 2673.942782][T31813]  ? lock_downgrade+0x6e0/0x6e0
[ 2673.947682][T31813]  try_charge_memcg+0xefb/0x12f0
[ 2673.952669][T31813]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 2673.958687][T31813]  ? get_mem_cgroup_from_objcg+0xa1/0x260
[ 2673.964435][T31813]  ? lock_downgrade+0x6e0/0x6e0
[ 2673.969321][T31813]  ? lock_downgrade+0x6e0/0x6e0
[ 2673.974200][T31813]  ? rcu_read_unlock+0x9/0x60
[ 2673.978937][T31813]  obj_cgroup_charge+0x2af/0x5e0
[ 2673.983919][T31813]  __kmem_cache_alloc_node+0xb2/0x430
[ 2673.989339][T31813]  ? kvmalloc_node+0xa2/0x1a0
[ 2673.994057][T31813]  ? kvmalloc_node+0xa2/0x1a0
[ 2673.998772][T31813]  __kmalloc_node+0x4d/0xd0
[ 2674.003324][T31813]  kvmalloc_node+0xa2/0x1a0
[ 2674.007873][T31813]  alloc_fdtable+0x160/0x2a0
[ 2674.012499][T31813]  dup_fd+0x722/0xcb0
[ 2674.016520][T31813]  copy_process+0x24ea/0x7520
[ 2674.021230][T31813]  ? _raw_spin_unlock+0x28/0x40
[ 2674.026128][T31813]  ? wp_page_reuse+0x197/0x570
[ 2674.030941][T31813]  ? __cleanup_sighand+0xb0/0xb0
[ 2674.035920][T31813]  ? finish_mkwrite_fault+0x3d0/0x3d0
[ 2674.041339][T31813]  ? rwlock_bug.part.0+0x90/0x90
[ 2674.046321][T31813]  ? lock_chain_count+0x20/0x20
[ 2674.051210][T31813]  kernel_clone+0xeb/0x990
[ 2674.055657][T31813]  ? create_io_thread+0xf0/0xf0
[ 2674.060547][T31813]  ? find_held_lock+0x2d/0x110
[ 2674.065361][T31813]  __do_sys_clone+0xba/0x100
[ 2674.069986][T31813]  ? kernel_clone+0x990/0x990
[ 2674.074709][T31813]  ? syscall_enter_from_user_mode+0x26/0xb0
[ 2674.080641][T31813]  do_syscall_64+0x39/0xb0
[ 2674.085100][T31813]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2674.091116][T31813] RIP: 0033:0x7f5bc3a89dfb
[ 2674.095555][T31813] Code: ed 0f 85 60 01 00 00 64 4c 8b 0c 25 10 00 00 00 45 31 c0 4d 8d 91 d0 02 00 00 31 d2 31 f6 bf 11 00 20 01 b8 38 00 00 00 0f 05 <48> 3d 00 f0 ff ff 0f 87 89 00 00 00 41 89 c5 85 c0 0f 85 90 00 00
[ 2674.115296][T31813] RSP: 002b:00007ffc4396fc10 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[ 2674.123743][T31813] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f5bc3a89dfb
[ 2674.131747][T31813] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011
[ 2674.139746][T31813] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000555555baf400
[ 2674.147748][T31813] R10: 0000555555baf6d0 R11: 0000000000000246 R12: 0000000000000001
[ 2674.155759][T31813] R13: 0000000000000000 R14: 0000000000000001 R15: 00007ffc4396fcf0
[ 2674.163785][T31813]  </TASK>
[ 2674.334129][T10995] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2674.411105][T32048] device hsr_slave_0 entered promiscuous mode
[ 2674.438020][T32048] device hsr_slave_1 entered promiscuous mode
[ 2674.468208][T32048] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 2674.489239][T32048] Cannot create hsr debugfs directory
21:25:43 executing program 4:
openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_int(r0, &(0x7f00000000c0)='memory.max\x00', 0x2, 0x0)
getpid()
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x1f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000300)='cpuacct.usage_all\x00', 0x0, 0x0)
bpf$ITER_CREATE(0x21, &(0x7f00000002c0)={r2}, 0x8)
getpid()
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='blkio.bfq.io_service_time\x00', 0x26e1, 0x0)
write$cgroup_int(r3, &(0x7f0000000040), 0x12)
close(r3)
syz_open_procfs$namespace(0x0, 0x0)
write$cgroup_int(r1, &(0x7f0000000040), 0x12)

[ 2674.708868][T31813] memory: usage 10368kB, limit 0kB, failcnt 758
[ 2674.746790][T31813] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2674.798856][T31813] Memory cgroup stats for /syz5:
[ 2674.799050][T31813] anon 40960
[ 2674.799050][T31813] file 10432512
[ 2674.799050][T31813] kernel 143360
[ 2674.799050][T31813] kernel_stack 32768
[ 2674.799050][T31813] pagetables 8192
[ 2674.799050][T31813] sec_pagetables 0
[ 2674.799050][T31813] percpu 64
[ 2674.799050][T31813] sock 0
[ 2674.799050][T31813] vmalloc 0
[ 2674.799050][T31813] shmem 10432512
[ 2674.799050][T31813] zswap 0
[ 2674.799050][T31813] zswapped 0
[ 2674.799050][T31813] file_mapped 233472
[ 2674.799050][T31813] file_dirty 0
21:25:43 executing program 4:
openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_int(r0, &(0x7f00000000c0)='memory.max\x00', 0x2, 0x0)
getpid()
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x1f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000300)='cpuacct.usage_all\x00', 0x0, 0x0)
bpf$ITER_CREATE(0x21, &(0x7f00000002c0)={r2}, 0x8)
getpid()
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='blkio.bfq.io_service_time\x00', 0x26e1, 0x0)
write$cgroup_int(r3, &(0x7f0000000040), 0x12)
close(r3)
syz_open_procfs$namespace(0x0, 0x0)
write$cgroup_int(r1, &(0x7f0000000040), 0x12)

[ 2674.799050][T31813] file_writeback 0
[ 2674.799050][T31813] swapcached 0
[ 2674.799050][T31813] anon_thp 0
[ 2674.799050][T31813] file_thp 0
[ 2674.799050][T31813] shmem_thp 0
[ 2674.799050][T31813] inactive_anon 2138112
[ 2674.799050][T31813] active_anon 8335360
[ 2674.799050][T31813] inactive_file 0
[ 2674.799050][T31813] active_file 0
[ 2674.799050][T31813] unevictable 0
[ 2674.799050][T31813] slab_reclaimable 32864
[ 2674.799050][T31813] slab_unreclaimable 57088
[ 2674.799050][T31813] slab 89952
[ 2674.912084][T31813] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz5,mems_allowed=0-1,oom_memcg=/syz5,task_memcg=/syz5,task=syz-executor.5,pid=31813,uid=0
[ 2674.954551][T10995] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2674.956109][T31813] Memory cgroup out of memory: Killed process 31813 (syz-executor.5) total-vm:50568kB, anon-rss:364kB, file-rss:8960kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:0
[ 2675.149661][T10995] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2675.226431][T10995] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2675.343383][T32048] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2675.401227][T10995] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
21:25:44 executing program 5:
openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0)
openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
perf_event_open(0x0, 0xffffffffffffffff, 0xb, 0xffffffffffffffff, 0x0)
r1 = openat$cgroup_int(r0, &(0x7f00000000c0)='memory.max\x00', 0x2, 0x0)
getpid()
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x1f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000300)='cpuacct.usage_all\x00', 0x0, 0x0)
bpf$ITER_CREATE(0x21, &(0x7f00000002c0)={r2}, 0x8)
getpid()
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='blkio.bfq.io_service_time\x00', 0x26e1, 0x0)
close(r3)
syz_open_procfs$namespace(0x0, 0x0)
write$cgroup_int(r1, &(0x7f0000000040), 0x12)

[ 2675.455461][ T5120] Bluetooth: hci0: command 0x040f tx timeout
[ 2675.562959][T32048] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2675.594314][T14879] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 2675.603641][T14879] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 2675.612939][T14879] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 2675.620572][T14879] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[ 2675.627906][T14879] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 2675.774900][T32048] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2675.897786][T32048] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2676.609826][ T5120] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 2676.620189][ T5120] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 2676.628240][ T5120] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 2676.636834][ T5120] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 2676.644920][ T5120] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[ 2676.653994][ T5120] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 2676.723379][T32048] netdevsim netdevsim2 netdevsim0: renamed from eth0
[ 2676.754264][T32048] netdevsim netdevsim2 netdevsim1: renamed from eth1
[ 2676.811429][T32048] netdevsim netdevsim2 netdevsim2: renamed from eth2
[ 2676.851759][T32104] chnl_net:caif_netlink_parms(): no params data found
[ 2676.926696][T32048] netdevsim netdevsim2 netdevsim3: renamed from eth3
[ 2677.136820][T17544] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[ 2677.147903][T17544] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[ 2677.157295][T14879] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[ 2677.165764][T14879] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[ 2677.173554][T17544] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[ 2677.259678][T32104] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2677.266825][T32104] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2677.275932][T32104] device bridge_slave_0 entered promiscuous mode
[ 2677.285680][T32104] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2677.294957][T32104] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2677.303937][T32104] device bridge_slave_1 entered promiscuous mode
[ 2677.399665][T32104] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 2677.479754][T32104] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 2677.533530][ T5120] Bluetooth: hci0: command 0x0419 tx timeout
[ 2677.689798][ T5120] Bluetooth: hci2: command 0x0409 tx timeout
[ 2677.721191][T32104] team0: Port device team_slave_0 added
[ 2677.796979][T32048] 8021q: adding VLAN 0 to HW filter on device bond0
[ 2677.884997][T32104] team0: Port device team_slave_1 added
[ 2677.978197][T32048] 8021q: adding VLAN 0 to HW filter on device team0
[ 2678.004384][T17544] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[ 2678.017993][T17544] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[ 2678.031362][T17544] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[ 2678.039808][T17544] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[ 2678.047402][T17544] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[ 2678.055376][T17544] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[ 2678.064134][T12179] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 2678.072464][T12179] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 2678.088611][T32104] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 2678.098968][T32104] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2678.126567][T32104] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 2678.151475][T32104] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 2678.158479][T32104] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2678.186894][T32104] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 2678.254871][T23289] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 2678.264200][T23289] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 2678.272807][T23289] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2678.279947][T23289] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 2678.328824][T14991] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 2678.337741][T14991] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 2678.359744][T14991] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 2678.368316][T14991] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2678.375506][T14991] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 2678.383356][T14991] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
21:25:47 executing program 1:
r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0)
perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x6, 0x401}, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000180)={0x0, 0x80, 0x0, 0x7c, 0x4, 0xd2, 0x0, 0x5, 0x0, 0x74d4e3ef7733d4ea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x26, 0x0, @perf_bp={0x0}, 0x210, 0x0, 0x1f, 0x3, 0x0, 0x0, 0xffff}, 0x0, 0x0, 0xffffffffffffffff, 0x9)
openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
recvmsg(0xffffffffffffffff, 0x0, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f00000002c0)='cpuacct.usage_percpu_sys\x00', 0x0, 0x0)
perf_event_open$cgroup(&(0x7f00000003c0)={0x4, 0x80, 0x1, 0xff, 0x1, 0x5, 0x0, 0x800000000000008, 0x21001, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x3, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0xffff0000, 0x4, @perf_bp={&(0x7f0000000380), 0x8}, 0x40ae, 0xe, 0x78d8, 0x5, 0x7, 0x7, 0x1ff}, 0xffffffffffffffff, 0xc, r0, 0xc)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000018c00)={0x18, 0x3, &(0x7f0000000780)=ANY=[@ANYBLOB="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"], &(0x7f0000000440)='syzkaller\x00', 0x4, 0xb0, &(0x7f0000000480)=""/176, 0x0, 0x0, '\x00', 0x0, 0x0, r1, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
r3 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='rcu_utilization\x00', r2}, 0x10)
r4 = perf_event_open$cgroup(&(0x7f0000000080)={0x4, 0x80, 0x81, 0x5, 0x6, 0x0, 0x0, 0x8000000000000000, 0x848, 0x4, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x3, 0x0, @perf_config_ext={0x912410d}, 0x8800, 0xffffffff, 0x7, 0x6, 0x3f, 0x7, 0x8dd, 0x0, 0x5, 0x0, 0x1}, 0xffffffffffffffff, 0xb, 0xffffffffffffffff, 0x9)
ioctl$PERF_EVENT_IOC_SET_OUTPUT(0xffffffffffffffff, 0x2405, r4)
r5 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000540)='./cgroup.cpu/syz1\x00', 0x200002, 0x0)
openat$cgroup_ro(r5, &(0x7f0000000640)='cgroup.stat\x00', 0x0, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r4, 0x40082404, &(0x7f0000000580)=0xffffffffffffff7f)
r6 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000000)='cpuacct.usage_percpu_sys\x00', 0x26e1, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r6, 0x40086607, &(0x7f0000000040))
r7 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x26e1, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000018c00)={0x18, 0x3, &(0x7f0000000300)=ANY=[@ANYRES64=r1], 0x0, 0x4, 0xb0, &(0x7f0000000480)=""/176, 0x40f00, 0x5, '\x00', 0x0, 0x0, r7, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x0, 0x204d, &(0x7f00000005c0)=ANY=[@ANYRES32], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x18, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000740)={0x0, 0x3}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000002c0)=[0xffffffffffffffff, r7, 0xffffffffffffffff]}, 0x80)
write$cgroup_int(r7, &(0x7f0000000280)=0x1ff, 0x12)
r8 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000001e00)={&(0x7f0000001dc0)='./file0\x00', 0x0, 0x10}, 0x10)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000001e80)=@bpf_lsm={0x1d, 0x2, &(0x7f0000000700)=@raw=[@map_idx={0x18, 0x4}], &(0x7f0000002340)='GPL\x00', 0x5, 0x33, &(0x7f0000002380)=""/51, 0x41100, 0x2, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f00000023c0)={0x5, 0x4}, 0x8, 0x10, &(0x7f0000002400)={0x3, 0xa, 0x6, 0xae2e}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000002500)=[r0, r8, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}, 0x80)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={0xffffffffffffffff, 0x18000000000002a0, 0x0, 0x0, &(0x7f00000001c0), 0x0, 0x0, 0xe8030000, 0x0, 0x0, 0x0, 0x0}, 0x48)
ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x89f2, &(0x7f0000000080)='ip6tnl0\x00')
socketpair(0x1e, 0x5, 0x20, &(0x7f0000000600))
socketpair(0x1, 0x1, 0x0, &(0x7f0000000740)={0xffffffffffffffff, <r9=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r9, 0x89f1, &(0x7f0000000080))
close(r3)

[ 2678.452100][T32110] chnl_net:caif_netlink_parms(): no params data found
[ 2678.528465][T32104] device hsr_slave_0 entered promiscuous mode
[ 2678.550766][T32104] device hsr_slave_1 entered promiscuous mode
[ 2678.569769][T32104] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 2678.577499][T32104] Cannot create hsr debugfs directory
[ 2678.592063][T23940] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 2678.606189][T23940] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 2678.616524][T23940] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 2678.626650][T23940] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 2678.635837][T23940] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 2678.646014][T23940] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 2678.685889][T32048] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 2678.707392][T32048] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 2678.738992][ T5120] Bluetooth: hci3: command 0x0409 tx timeout
[ 2678.766456][T20569] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 2678.775332][T20569] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 2679.097235][T32110] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2679.119089][T32110] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2679.127453][T32110] device bridge_slave_0 entered promiscuous mode
[ 2679.206653][T32110] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2679.217328][ T5120] Bluetooth: hci4: command 0x0409 tx timeout
[ 2679.239982][T32110] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2679.253671][T32110] device bridge_slave_1 entered promiscuous mode
[ 2679.321891][T32125] chnl_net:caif_netlink_parms(): no params data found
[ 2679.371020][T30559] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 2679.378558][T30559] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 2679.459452][T32048] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 2679.473304][T10995] device hsr_slave_0 left promiscuous mode
[ 2679.495682][T10995] device hsr_slave_1 left promiscuous mode
[ 2679.516313][T10995] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 2679.524326][T10995] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 2679.534278][T10995] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 2679.542236][T10995] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 2679.552097][T10995] device bridge_slave_1 left promiscuous mode
[ 2679.558342][T10995] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2679.571175][T10995] device bridge_slave_0 left promiscuous mode
[ 2679.577435][T10995] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2679.592094][T10995] device hsr_slave_0 left promiscuous mode
[ 2679.598470][T10995] device hsr_slave_1 left promiscuous mode
[ 2679.605341][T10995] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 2679.613634][T10995] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 2679.623397][T10995] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 2679.631196][T10995] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 2679.640448][T10995] device bridge_slave_1 left promiscuous mode
[ 2679.646623][T10995] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2679.655650][T10995] device bridge_slave_0 left promiscuous mode
[ 2679.662275][T10995] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2679.678944][T10995] device hsr_slave_0 left promiscuous mode
[ 2679.685389][T10995] device hsr_slave_1 left promiscuous mode
[ 2679.698098][T10995] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 2679.707707][T10995] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 2679.717835][T10995] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 2679.725620][T10995] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 2679.735390][T10995] device bridge_slave_1 left promiscuous mode
[ 2679.742859][T10995] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2679.752045][T10995] device bridge_slave_0 left promiscuous mode
[ 2679.758244][T10995] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2679.768904][ T5120] Bluetooth: hci2: command 0x041b tx timeout
[ 2679.783273][T10995] device veth1_macvtap left promiscuous mode
[ 2679.790681][T10995] device veth0_macvtap left promiscuous mode
[ 2679.796803][T10995] device veth1_vlan left promiscuous mode
[ 2679.803234][T10995] device veth0_vlan left promiscuous mode
[ 2679.810975][T10995] device veth1_macvtap left promiscuous mode
[ 2679.817020][T10995] device veth0_macvtap left promiscuous mode
[ 2679.824078][T10995] device veth1_vlan left promiscuous mode
[ 2679.830344][T10995] device veth0_vlan left promiscuous mode
[ 2679.837270][T10995] device veth1_macvtap left promiscuous mode
[ 2679.844040][T10995] device veth0_macvtap left promiscuous mode
[ 2679.852603][T10995] device veth1_vlan left promiscuous mode
[ 2679.858466][T10995] device veth0_vlan left promiscuous mode
[ 2680.099061][ T5120] Bluetooth: hci5: command 0x0409 tx timeout
[ 2680.258466][T10995] team0 (unregistering): Port device team_slave_1 removed
[ 2680.278131][T10995] team0 (unregistering): Port device team_slave_0 removed
[ 2680.294414][T10995] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 2680.307654][T10995] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 2680.384944][T10995] bond0 (unregistering): Released all slaves
[ 2680.544716][T10995] team0 (unregistering): Port device team_slave_1 removed
[ 2680.558378][T10995] team0 (unregistering): Port device team_slave_0 removed
[ 2680.576820][T10995] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 2680.615875][T10995] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 2680.741155][T10995] bond0 (unregistering): Released all slaves
[ 2680.809040][ T5120] Bluetooth: hci3: command 0x041b tx timeout
[ 2680.887246][T10995] team0 (unregistering): Port device team_slave_1 removed
[ 2680.911990][T10995] team0 (unregistering): Port device team_slave_0 removed
[ 2680.926925][T10995] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 2680.941968][T10995] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 2681.023753][T10995] bond0 (unregistering): Released all slaves
[ 2681.097389][T32110] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 2681.123107][T32142] chnl_net:caif_netlink_parms(): no params data found
[ 2681.139791][T14991] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 2681.148602][T14991] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
21:25:50 executing program 1:
r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0)
perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x6, 0x401}, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000180)={0x0, 0x80, 0x0, 0x7c, 0x4, 0xd2, 0x0, 0x5, 0x0, 0x74d4e3ef7733d4ea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x26, 0x0, @perf_bp={0x0}, 0x210, 0x0, 0x1f, 0x3, 0x0, 0x0, 0xffff}, 0x0, 0x0, 0xffffffffffffffff, 0x9)
openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
recvmsg(0xffffffffffffffff, 0x0, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f00000002c0)='cpuacct.usage_percpu_sys\x00', 0x0, 0x0)
perf_event_open$cgroup(&(0x7f00000003c0)={0x4, 0x80, 0x1, 0xff, 0x1, 0x5, 0x0, 0x800000000000008, 0x21001, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x3, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0xffff0000, 0x4, @perf_bp={&(0x7f0000000380), 0x8}, 0x40ae, 0xe, 0x78d8, 0x5, 0x7, 0x7, 0x1ff}, 0xffffffffffffffff, 0xc, r0, 0xc)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000018c00)={0x18, 0x3, &(0x7f0000000780)=ANY=[@ANYBLOB="180000000000000000000000000000009500d9000000000012cc19280a01380b46cf1da1b96dbb895c000000007e2e299e5a868a2c93b82330a6fab908000000912b2b9c326f8af5e837e85559448b689fb549252e5fba00ac459ebc2e606df21feaa75ec5419c426e744676ce082947384476151eafe83fb3ba69f79cb713d0fdc6892ed01fdde50ba180e802b8c9febf9fdb97bef0bde9a5198be5c32bc6b82fbc64fb23882645114f593b9d4213b57a342973347080ccfb8d8a930f1f000000001336d4b50015d3c236dd6ff90aaf2f7532177f0686079a76404f9e81340df32375ed5cabc996fbe49d0cddfb0e06560bf56f338ae1b4c8dfe3c60f0baa1960460ac4675e1e66db2bbbfd8513558fea85416d5ab4c72cbc0d3181547ecab7ea44a4bdb7a444795f798ff9f4e7be75c804e01467f8ffd414c159e9db857d38cdfce34211ab786b58e1ca764b1769d012cdcc972e2e0348cb15130708258429a26e18f88b57d9249702cb23a4aaad81cfdbfa5da603313ac3a82dae68635064b17b949efa41b5f946258bb95a742ec9f7f6818b00c8a5aa45da89a87d1aa3ae808ae66b00000011e50b5748177ec9dfe98b1dbb48687b4f5c00000fd116d22ef9ed9a3957017087ba0c8836f1ec3e512671374797195ec9ab5783f2d9a2e41a8b61c813e7e48e498649d68f29252b9d3d21d6ae0a86ac9c3d93630b0c65bcc59c62496fec7ea7d089f76bebcb1bf4b9cc013cb273f65239688527589917c8f385a4ee628372082889f7fd88ab93c44824fb106b9adbf615eee13a03f68ed0429b03340785fdbb3625d1ea014a1e206dabd3f2a850676996898a1a755075ce85f6084e23f1e062b73eb5da256acb61d64ecac3e916ff80ff108891306217ccf2d3c727e98f654010ab3f2312157d7af4f8b20ea1e238e5d3c83789f2dc3de1060b0512cb3400d8b78a24470836b384ab1cc4d3c50b3e494d5775eba6a81cc17e53239eec26cf0a78b207ae45687aa11571556829d38144a05e8a7afb818f9aaa1436324d83fbf9073dc684a5bb9cba9c33200d8013bb3b439a42b70e45961af5eceba01a48c9b89ec24186a65298eb7a461ce50209284bc0ae804458ef1b6c638d74b40da9a9f377bd50054b13007878207386f8a65b295a9c4c862c1f938e5cc981"], &(0x7f0000000440)='syzkaller\x00', 0x4, 0xb0, &(0x7f0000000480)=""/176, 0x0, 0x0, '\x00', 0x0, 0x0, r1, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
r3 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='rcu_utilization\x00', r2}, 0x10)
r4 = perf_event_open$cgroup(&(0x7f0000000080)={0x4, 0x80, 0x81, 0x5, 0x6, 0x0, 0x0, 0x8000000000000000, 0x848, 0x4, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x3, 0x0, @perf_config_ext={0x912410d}, 0x8800, 0xffffffff, 0x7, 0x6, 0x3f, 0x7, 0x8dd, 0x0, 0x5, 0x0, 0x1}, 0xffffffffffffffff, 0xb, 0xffffffffffffffff, 0x9)
ioctl$PERF_EVENT_IOC_SET_OUTPUT(0xffffffffffffffff, 0x2405, r4)
r5 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000540)='./cgroup.cpu/syz1\x00', 0x200002, 0x0)
openat$cgroup_ro(r5, &(0x7f0000000640)='cgroup.stat\x00', 0x0, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r4, 0x40082404, &(0x7f0000000580)=0xffffffffffffff7f)
r6 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000000)='cpuacct.usage_percpu_sys\x00', 0x26e1, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r6, 0x40086607, &(0x7f0000000040))
r7 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x26e1, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000018c00)={0x18, 0x3, &(0x7f0000000300)=ANY=[@ANYRES64=r1], 0x0, 0x4, 0xb0, &(0x7f0000000480)=""/176, 0x40f00, 0x5, '\x00', 0x0, 0x0, r7, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x0, 0x204d, &(0x7f00000005c0)=ANY=[@ANYRES32], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x18, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000740)={0x0, 0x3}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000002c0)=[0xffffffffffffffff, r7, 0xffffffffffffffff]}, 0x80)
write$cgroup_int(r7, &(0x7f0000000280)=0x1ff, 0x12)
r8 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000001e00)={&(0x7f0000001dc0)='./file0\x00', 0x0, 0x10}, 0x10)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000001e80)=@bpf_lsm={0x1d, 0x2, &(0x7f0000000700)=@raw=[@map_idx={0x18, 0x4}], &(0x7f0000002340)='GPL\x00', 0x5, 0x33, &(0x7f0000002380)=""/51, 0x41100, 0x2, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f00000023c0)={0x5, 0x4}, 0x8, 0x10, &(0x7f0000002400)={0x3, 0xa, 0x6, 0xae2e}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000002500)=[r0, r8, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}, 0x80)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={0xffffffffffffffff, 0x18000000000002a0, 0x0, 0x0, &(0x7f00000001c0), 0x0, 0x0, 0xe8030000, 0x0, 0x0, 0x0, 0x0}, 0x48)
ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x89f2, &(0x7f0000000080)='ip6tnl0\x00')
socketpair(0x1e, 0x5, 0x20, &(0x7f0000000600))
socketpair(0x1, 0x1, 0x0, &(0x7f0000000740)={0xffffffffffffffff, <r9=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r9, 0x89f1, &(0x7f0000000080))
close(r3)

[ 2681.194529][T32110] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 2681.289837][ T5120] Bluetooth: hci4: command 0x041b tx timeout
[ 2681.368000][T32048] device veth0_vlan entered promiscuous mode
[ 2681.395223][T32110] team0: Port device team_slave_0 added
[ 2681.422327][T32125] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2681.430450][T32125] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2681.438846][T32125] device bridge_slave_0 entered promiscuous mode
[ 2681.460727][T32125] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2681.467928][T32125] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2681.489730][T32125] device bridge_slave_1 entered promiscuous mode
[ 2681.520988][T14991] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 2681.529938][T14991] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 2681.633200][T32110] team0: Port device team_slave_1 added
[ 2681.729651][T14991] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 2681.737631][T14991] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 2681.825264][T32125] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 2681.858915][ T5120] Bluetooth: hci2: command 0x040f tx timeout
[ 2681.924444][T32048] device veth1_vlan entered promiscuous mode
[ 2681.961977][T32125] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 2682.022187][T32110] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 2682.031726][T32110] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2682.119435][T32110] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 2682.179021][ T5120] Bluetooth: hci5: command 0x041b tx timeout
[ 2682.250944][T32142] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2682.258074][T32142] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2682.290233][T32142] device bridge_slave_0 entered promiscuous mode
[ 2682.322257][T32110] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 2682.329891][T32110] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2682.366499][T32110] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 2682.390131][T23289] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 2682.400711][T23289] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 2682.519588][T32142] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2682.526727][T32142] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2682.571859][T32142] device bridge_slave_1 entered promiscuous mode
[ 2682.598626][T32125] team0: Port device team_slave_0 added
[ 2682.612530][T30559] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 2682.622647][T30559] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 2682.633777][T32048] device veth0_macvtap entered promiscuous mode
[ 2682.688235][T32125] team0: Port device team_slave_1 added
[ 2682.778588][T32110] device hsr_slave_0 entered promiscuous mode
[ 2682.817850][T32110] device hsr_slave_1 entered promiscuous mode
[ 2682.836346][T32142] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 2682.893806][T32048] device veth1_macvtap entered promiscuous mode
[ 2682.901148][ T5120] Bluetooth: hci3: command 0x040f tx timeout
[ 2682.917734][T32125] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 2682.936695][T32125] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2682.966850][T32125] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 2682.999083][T32142] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 2683.074340][T32125] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 2683.083721][T32125] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2683.141112][T32125] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 2683.305882][T32142] team0: Port device team_slave_0 added
[ 2683.330963][T32048] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2683.369064][T32048] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2683.370004][ T5120] Bluetooth: hci4: command 0x040f tx timeout
[ 2683.385185][T32048] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2683.404125][T32048] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2683.414204][T32048] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2683.455275][T32048] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2683.482628][T32048] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 2683.589531][T32142] team0: Port device team_slave_1 added
[ 2683.597599][T24529] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 2683.606727][T24529] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 2683.711737][T24529] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 2683.720755][T24529] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 2683.744617][T32048] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2683.770186][T32048] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2683.791504][T32048] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2683.813167][T32048] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2683.830092][T32048] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2683.857925][T32048] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2683.870298][T32048] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 2683.881381][T32125] device hsr_slave_0 entered promiscuous mode
[ 2683.889417][T32125] device hsr_slave_1 entered promiscuous mode
[ 2683.896199][T32125] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 2683.906277][T32125] Cannot create hsr debugfs directory
[ 2683.928901][ T5120] Bluetooth: hci2: command 0x0419 tx timeout
[ 2683.950347][T32104] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 2683.964490][T24529] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 2683.974012][T24529] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 2683.995623][T32142] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 2684.003538][T32142] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2684.035597][T32142] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 2684.047552][T32104] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 2684.060359][T32048] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 2684.071007][T32048] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 2684.080119][T32048] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 2684.089308][T32048] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 2684.112876][T32142] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 2684.128865][T32142] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2684.174839][T32142] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 2684.192940][T32104] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 2684.203560][T32104] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 2684.258905][ T5120] Bluetooth: hci5: command 0x040f tx timeout
[ 2684.447100][T32142] device hsr_slave_0 entered promiscuous mode
[ 2684.489486][T32142] device hsr_slave_1 entered promiscuous mode
[ 2684.509137][T32142] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 2684.516928][T32142] Cannot create hsr debugfs directory
[ 2684.900194][T17514] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2684.908581][T17514] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2684.969862][ T5120] Bluetooth: hci3: command 0x0419 tx timeout
[ 2685.038443][T14991] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 2685.140949][T32025] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2685.173069][T32025] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2685.229434][T32104] 8021q: adding VLAN 0 to HW filter on device bond0
[ 2685.261229][T12179] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 2685.291652][T12179] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 2685.330095][T12179] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 2685.375256][T32104] 8021q: adding VLAN 0 to HW filter on device team0
[ 2685.431566][T24529] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 2685.431858][T32244] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2685.450203][T17544] Bluetooth: hci4: command 0x0419 tx timeout
[ 2685.459528][T32244] CPU: 0 PID: 32244 Comm: syz-executor.2 Not tainted 6.2.0-rc2-syzkaller-00431-g0164776a2ce7 #0
[ 2685.469991][T32244] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 2685.480072][T32244] Call Trace:
[ 2685.483371][T32244]  <TASK>
[ 2685.486321][T32244]  dump_stack_lvl+0xd1/0x138
[ 2685.490954][T32244]  dump_header+0x10b/0x85f
[ 2685.495403][T32244]  oom_kill_process.cold+0x10/0x15
[ 2685.500567][T32244]  out_of_memory+0x35c/0x14a0
[ 2685.505300][T32244]  ? oom_killer_disable+0x280/0x280
[ 2685.510565][T32244]  mem_cgroup_out_of_memory+0x206/0x270
[ 2685.516148][T32244]  ? mem_cgroup_margin+0x130/0x130
[ 2685.521315][T32244]  memory_max_write+0x2f9/0x3c0
[ 2685.526202][T32244]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 2685.532310][T32244]  ? lock_release+0x810/0x810
[ 2685.537020][T32244]  cgroup_file_write+0x1e2/0x770
[ 2685.541994][T32244]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 2685.548098][T32244]  ? kill_css+0x370/0x370
[ 2685.552461][T32244]  ? __virt_addr_valid+0x61/0x2e0
[ 2685.557536][T32244]  ? kill_css+0x370/0x370
[ 2685.561900][T32244]  kernfs_fop_write_iter+0x3f1/0x600
[ 2685.567254][T32244]  vfs_write+0x9ed/0xdd0
[ 2685.571549][T32244]  ? kernel_write+0x630/0x630
[ 2685.576263][T32244]  ? __fget_files+0x26a/0x440
[ 2685.581166][T32244]  ksys_write+0x12b/0x250
[ 2685.585547][T32244]  ? __ia32_sys_read+0xb0/0xb0
[ 2685.590341][T32244]  ? syscall_enter_from_user_mode+0x26/0xb0
[ 2685.596352][T32244]  do_syscall_64+0x39/0xb0
[ 2685.600795][T32244]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2685.606707][T32244] RIP: 0033:0x7f7fd408c0c9
[ 2685.611137][T32244] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 2685.630770][T32244] RSP: 002b:00007f7fd4d29168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 2685.639228][T32244] RAX: ffffffffffffffda RBX: 00007f7fd41abf80 RCX: 00007f7fd408c0c9
[ 2685.647216][T32244] RDX: 0000000000000012 RSI: 0000000020000040 RDI: 0000000000000004
[ 2685.655205][T32244] RBP: 00007f7fd40e7ae9 R08: 0000000000000000 R09: 0000000000000000
[ 2685.663186][T32244] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2685.671288][T32244] R13: 00007ffd3f7a8eff R14: 00007f7fd4d29300 R15: 0000000000022000
[ 2685.679297][T32244]  </TASK>
[ 2685.699597][T24529] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 2685.729078][T24529] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2685.736236][T24529] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 2685.739044][T32244] memory: usage 10648kB, limit 0kB, failcnt 1064
[ 2685.759037][T32244] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2685.769375][T32244] Memory cgroup stats for /syz2:
[ 2685.769587][T32244] anon 118784
[ 2685.769587][T32244] file 10444800
[ 2685.769587][T32244] kernel 319488
[ 2685.769587][T32244] kernel_stack 65536
[ 2685.769587][T32244] pagetables 77824
[ 2685.769587][T32244] sec_pagetables 0
[ 2685.769587][T32244] percpu 64
[ 2685.769587][T32244] sock 0
[ 2685.769587][T32244] vmalloc 0
[ 2685.769587][T32244] shmem 10440704
[ 2685.769587][T32244] zswap 0
[ 2685.769587][T32244] zswapped 0
[ 2685.769587][T32244] file_mapped 192512
[ 2685.769587][T32244] file_dirty 4096
[ 2685.769587][T32244] file_writeback 0
[ 2685.769587][T32244] swapcached 0
[ 2685.769587][T32244] anon_thp 0
[ 2685.769587][T32244] file_thp 0
[ 2685.769587][T32244] shmem_thp 0
[ 2685.769587][T32244] inactive_anon 110592
[ 2685.769587][T32244] active_anon 10440704
[ 2685.769587][T32244] inactive_file 0
[ 2685.769587][T32244] active_file 4096
[ 2685.769587][T32244] unevictable 0
[ 2685.769587][T32244] slab_reclaimable 47792
[ 2685.769587][T32244] slab_unreclaimable 104352
[ 2685.777173][T24529] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 2685.979718][T24529] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 2685.988297][T24529] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2685.995503][T24529] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 2686.090372][T32244] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=32243,uid=0
[ 2686.095187][T23289] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 2686.129547][T23289] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 2686.138476][T23289] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 2686.140144][T32244] Memory cgroup out of memory: Killed process 32243 (syz-executor.2) total-vm:54540kB, anon-rss:372kB, file-rss:8960kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 2686.164656][T23289] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 2686.191255][T23289] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 2686.224898][T32104] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
21:25:55 executing program 2:
openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0)
openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_int(r0, &(0x7f00000000c0)='memory.max\x00', 0x2, 0x0)
r2 = bpf$ITER_CREATE(0x21, &(0x7f0000000340), 0x8)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='blkio.bfq.io_service_time\x00', 0x26e1, 0x0)
write$cgroup_int(r3, 0x0, 0x0)
close(r3)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000280)='host1x_cdma_push_wide\x00', r2}, 0x10)
syz_open_procfs$namespace(0x0, 0x0)
write$cgroup_int(r1, &(0x7f0000000040), 0x12)

21:25:55 executing program 1:
r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0)
perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x6, 0x401}, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000180)={0x0, 0x80, 0x0, 0x7c, 0x4, 0xd2, 0x0, 0x5, 0x0, 0x74d4e3ef7733d4ea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x26, 0x0, @perf_bp={0x0}, 0x210, 0x0, 0x1f, 0x3, 0x0, 0x0, 0xffff}, 0x0, 0x0, 0xffffffffffffffff, 0x9)
openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
recvmsg(0xffffffffffffffff, 0x0, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f00000002c0)='cpuacct.usage_percpu_sys\x00', 0x0, 0x0)
perf_event_open$cgroup(&(0x7f00000003c0)={0x4, 0x80, 0x1, 0xff, 0x1, 0x5, 0x0, 0x800000000000008, 0x21001, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x3, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0xffff0000, 0x4, @perf_bp={&(0x7f0000000380), 0x8}, 0x40ae, 0xe, 0x78d8, 0x5, 0x7, 0x7, 0x1ff}, 0xffffffffffffffff, 0xc, r0, 0xc)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000018c00)={0x18, 0x3, &(0x7f0000000780)=ANY=[@ANYBLOB="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"], &(0x7f0000000440)='syzkaller\x00', 0x4, 0xb0, &(0x7f0000000480)=""/176, 0x0, 0x0, '\x00', 0x0, 0x0, r1, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
r3 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='rcu_utilization\x00', r2}, 0x10)
r4 = perf_event_open$cgroup(&(0x7f0000000080)={0x4, 0x80, 0x81, 0x5, 0x6, 0x0, 0x0, 0x8000000000000000, 0x848, 0x4, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x3, 0x0, @perf_config_ext={0x912410d}, 0x8800, 0xffffffff, 0x7, 0x6, 0x3f, 0x7, 0x8dd, 0x0, 0x5, 0x0, 0x1}, 0xffffffffffffffff, 0xb, 0xffffffffffffffff, 0x9)
ioctl$PERF_EVENT_IOC_SET_OUTPUT(0xffffffffffffffff, 0x2405, r4)
r5 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000540)='./cgroup.cpu/syz1\x00', 0x200002, 0x0)
openat$cgroup_ro(r5, &(0x7f0000000640)='cgroup.stat\x00', 0x0, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r4, 0x40082404, &(0x7f0000000580)=0xffffffffffffff7f)
r6 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000000)='cpuacct.usage_percpu_sys\x00', 0x26e1, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r6, 0x40086607, &(0x7f0000000040))
r7 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x26e1, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000018c00)={0x18, 0x3, &(0x7f0000000300)=ANY=[@ANYRES64=r1], 0x0, 0x4, 0xb0, &(0x7f0000000480)=""/176, 0x40f00, 0x5, '\x00', 0x0, 0x0, r7, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x0, 0x204d, &(0x7f00000005c0)=ANY=[@ANYRES32], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x18, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000740)={0x0, 0x3}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000002c0)=[0xffffffffffffffff, r7, 0xffffffffffffffff]}, 0x80)
write$cgroup_int(r7, &(0x7f0000000280)=0x1ff, 0x12)
r8 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000001e00)={&(0x7f0000001dc0)='./file0\x00', 0x0, 0x10}, 0x10)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000001e80)=@bpf_lsm={0x1d, 0x2, &(0x7f0000000700)=@raw=[@map_idx={0x18, 0x4}], &(0x7f0000002340)='GPL\x00', 0x5, 0x33, &(0x7f0000002380)=""/51, 0x41100, 0x2, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f00000023c0)={0x5, 0x4}, 0x8, 0x10, &(0x7f0000002400)={0x3, 0xa, 0x6, 0xae2e}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000002500)=[r0, r8, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}, 0x80)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={0xffffffffffffffff, 0x18000000000002a0, 0x0, 0x0, &(0x7f00000001c0), 0x0, 0x0, 0xe8030000, 0x0, 0x0, 0x0, 0x0}, 0x48)
ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x89f2, &(0x7f0000000080)='ip6tnl0\x00')
socketpair(0x1e, 0x5, 0x20, &(0x7f0000000600))
socketpair(0x1, 0x1, 0x0, &(0x7f0000000740)={0xffffffffffffffff, <r9=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r9, 0x89f1, &(0x7f0000000080))
close(r3)

[ 2686.279308][T32104] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 2686.329053][T17544] Bluetooth: hci5: command 0x0419 tx timeout
[ 2686.414627][T32048] syz-executor.2 invoked oom-killer: gfp_mask=0xdc0(GFP_KERNEL|__GFP_ZERO), order=0, oom_score_adj=0
[ 2686.468929][T32048] CPU: 0 PID: 32048 Comm: syz-executor.2 Not tainted 6.2.0-rc2-syzkaller-00431-g0164776a2ce7 #0
[ 2686.479409][T32048] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 2686.489493][T32048] Call Trace:
[ 2686.492798][T32048]  <TASK>
[ 2686.495746][T32048]  dump_stack_lvl+0xd1/0x138
[ 2686.500374][T32048]  dump_header+0x10b/0x85f
[ 2686.504818][T32048]  oom_kill_process.cold+0x10/0x15
[ 2686.509960][T32048]  out_of_memory+0x35c/0x14a0
[ 2686.514669][T32048]  ? find_held_lock+0x2d/0x110
[ 2686.519469][T32048]  ? oom_killer_disable+0x280/0x280
[ 2686.524697][T32048]  ? find_held_lock+0x2d/0x110
[ 2686.529505][T32048]  mem_cgroup_out_of_memory+0x206/0x270
[ 2686.535084][T32048]  ? mem_cgroup_margin+0x130/0x130
[ 2686.540215][T32048]  ? lock_downgrade+0x6e0/0x6e0
[ 2686.545118][T32048]  try_charge_memcg+0xefb/0x12f0
[ 2686.550094][T32048]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 2686.556112][T32048]  ? get_mem_cgroup_from_objcg+0xa1/0x260
[ 2686.561864][T32048]  ? lock_downgrade+0x6e0/0x6e0
[ 2686.566754][T32048]  ? lock_downgrade+0x6e0/0x6e0
[ 2686.571643][T32048]  ? rcu_read_unlock+0x9/0x60
[ 2686.576376][T32048]  obj_cgroup_charge+0x2af/0x5e0
[ 2686.581358][T32048]  ? __alloc_file+0x21/0x270
[ 2686.585984][T32048]  kmem_cache_alloc+0xb5/0x430
[ 2686.590779][T32048]  ? d_instantiate+0x79/0xa0
[ 2686.595403][T32048]  __alloc_file+0x21/0x270
[ 2686.599860][T32048]  alloc_empty_file+0x71/0x170
[ 2686.604668][T32048]  alloc_file+0x59/0x800
[ 2686.608958][T32048]  alloc_file_pseudo+0x169/0x250
[ 2686.613943][T32048]  ? alloc_file+0x800/0x800
[ 2686.618486][T32048]  ? alloc_fd+0x2d8/0x6d0
[ 2686.622856][T32048]  sock_alloc_file+0x53/0x190
[ 2686.627577][T32048]  __sys_socket+0x1a8/0x250
[ 2686.632122][T32048]  ? __sys_socket_file+0x1f0/0x1f0
[ 2686.637300][T32048]  __x64_sys_socket+0x73/0xb0
[ 2686.642033][T32048]  do_syscall_64+0x39/0xb0
[ 2686.646504][T32048]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2686.652450][T32048] RIP: 0033:0x7f7fd408d747
[ 2686.656917][T32048] Code: f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 b8 29 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 2686.676570][T32048] RSP: 002b:00007ffd3f7a8aa8 EFLAGS: 00000202 ORIG_RAX: 0000000000000029
[ 2686.685033][T32048] RAX: ffffffffffffffda RBX: 00007ffd3f7a91e0 RCX: 00007f7fd408d747
[ 2686.693038][T32048] RDX: 0000000000000006 RSI: 0000000000000001 RDI: 0000000000000002
[ 2686.701040][T32048] RBP: 0000000000000003 R08: 0000000000000000 R09: 00007ffd3f7a8b20
[ 2686.709046][T32048] R10: 0000000000000010 R11: 0000000000000202 R12: 0000000000000032
[ 2686.717053][T32048] R13: 000000000028f9b0 R14: 000000000000000b R15: 00007ffd3f7a9220
[ 2686.725084][T32048]  </TASK>
[ 2686.743584][T32125] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2686.775380][T32110] netdevsim netdevsim3 netdevsim0: renamed from eth0
[ 2686.785821][T32048] memory: usage 10376kB, limit 0kB, failcnt 1083
[ 2686.792477][T32048] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2686.804384][T23289] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 2686.808849][T32048] Memory cgroup stats for /syz2:
[ 2686.811798][T32048] anon 36864
[ 2686.811798][T32048] file 10444800
[ 2686.811798][T32048] kernel 139264
[ 2686.811798][T32048] kernel_stack 0
[ 2686.811798][T32048] pagetables 8192
[ 2686.811798][T32048] sec_pagetables 0
[ 2686.811798][T32048] percpu 64
[ 2686.811798][T32048] sock 0
[ 2686.811798][T32048] vmalloc 0
[ 2686.811798][T32048] shmem 10440704
[ 2686.811798][T32048] zswap 0
[ 2686.811798][T32048] zswapped 0
[ 2686.811798][T32048] file_mapped 184320
[ 2686.811798][T32048] file_dirty 4096
[ 2686.811798][T32048] file_writeback 0
[ 2686.811798][T32048] swapcached 0
[ 2686.811798][T32048] anon_thp 0
[ 2686.811798][T32048] file_thp 0
[ 2686.811798][T32048] shmem_thp 0
[ 2686.811798][T32048] inactive_anon 36864
[ 2686.811798][T32048] active_anon 10440704
[ 2686.811798][T32048] inactive_file 0
[ 2686.811798][T32048] active_file 4096
[ 2686.811798][T32048] unevictable 0
[ 2686.811798][T32048] slab_reclaimable 41432
[ 2686.811798][T32048] slab_unreclaimable 75232
[ 2686.811798][T32048] slab 116664
[ 2686.816051][T23289] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 2686.816844][T32048] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=
[ 2686.921184][T23289] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 2686.937850][T32048] syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=32048,uid=0
[ 2686.939117][T23289] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 2686.948303][T32048] Memory cgroup out of memory: Killed process 32048 (syz-executor.2) total-vm:50568kB, anon-rss:364kB, file-rss:8960kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:0
[ 2686.966987][T23289] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 2686.988510][T32110] netdevsim netdevsim3 netdevsim1: renamed from eth1
[ 2687.035551][T32125] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2687.080386][T30559] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 2687.098913][T32110] netdevsim netdevsim3 netdevsim2: renamed from eth2
[ 2687.219538][T32110] netdevsim netdevsim3 netdevsim3: renamed from eth3
[ 2687.261001][T32125] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
21:25:56 executing program 2:
openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0)
openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_int(r0, &(0x7f00000000c0)='memory.max\x00', 0x2, 0x0)
r2 = bpf$ITER_CREATE(0x21, &(0x7f0000000340), 0x8)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='blkio.bfq.io_service_time\x00', 0x26e1, 0x0)
write$cgroup_int(r3, &(0x7f0000000040), 0x12)
close(0xffffffffffffffff)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000280)='host1x_cdma_push_wide\x00', r2}, 0x10)
syz_open_procfs$namespace(0x0, 0x0)
write$cgroup_int(r1, &(0x7f0000000040), 0x12)

[ 2687.442172][T32125] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
21:25:56 executing program 2:
openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0)
openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_int(r0, &(0x7f00000000c0)='memory.max\x00', 0x2, 0x0)
r2 = bpf$ITER_CREATE(0x21, &(0x7f0000000340), 0x8)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='blkio.bfq.io_service_time\x00', 0x26e1, 0x0)
write$cgroup_int(r3, &(0x7f0000000040), 0x12)
close(0xffffffffffffffff)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000280)='host1x_cdma_push_wide\x00', r2}, 0x10)
syz_open_procfs$namespace(0x0, 0x0)
write$cgroup_int(r1, &(0x7f0000000040), 0x12)

[ 2687.601444][T32110] 8021q: adding VLAN 0 to HW filter on device bond0
[ 2687.730088][T10995] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2687.764174][T32110] 8021q: adding VLAN 0 to HW filter on device team0
[ 2687.834595][T24529] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 2687.849841][T24529] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 2687.876608][T24529] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 2687.907826][T24529] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 2687.970797][T10995] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2688.093984][T32104] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 2688.140321][T20569] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 2688.149852][T20569] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 2688.158402][T20569] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2688.165575][T20569] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 2688.239433][T20569] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 2688.289250][T20569] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 2688.297811][T20569] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2688.304991][T20569] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 2688.325084][T20569] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 2688.351217][T20569] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 2688.409978][T10995] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2688.630517][T30559] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 2688.638885][T30559] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 2688.660710][T30559] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 2688.678289][T30559] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 2688.693883][T30559] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 2688.715625][T30559] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 2688.735073][T30559] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 2688.750028][T30559] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 2688.773368][T32110] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 2688.820619][T32110] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 2688.890241][T10995] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2688.946854][T20569] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 2688.965030][T20569] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 2688.999935][T32125] netdevsim netdevsim4 netdevsim0: renamed from eth0
[ 2689.150050][T32142] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2689.209103][T32125] netdevsim netdevsim4 netdevsim1: renamed from eth1
[ 2689.272767][T32104] device veth0_vlan entered promiscuous mode
[ 2689.299551][T21233] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 2689.319524][T21233] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 2689.330279][T21233] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 2689.352702][T21233] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 2689.381228][T32125] netdevsim netdevsim4 netdevsim2: renamed from eth2
[ 2689.428317][T32142] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2689.474930][T32104] device veth1_vlan entered promiscuous mode
[ 2689.521647][T32125] netdevsim netdevsim4 netdevsim3: renamed from eth3
[ 2689.580093][T21233] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 2689.606651][T32142] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2689.789642][T32142] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2689.837751][T32110] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 2689.864343][ T5120] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 2689.873465][ T5120] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 2689.893180][ T5120] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 2689.893709][T32104] device veth0_macvtap entered promiscuous mode
[ 2689.902519][ T5120] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[ 2689.920080][ T5120] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 2689.945901][T24529] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 2689.955728][T24529] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 2689.964391][T24529] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 2689.975061][T24529] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 2690.000196][T32104] device veth1_macvtap entered promiscuous mode
[ 2690.026721][T14991] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 2690.036295][T14991] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 2690.150559][T30559] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 2690.170682][T30559] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 2690.197873][T32110] device veth0_vlan entered promiscuous mode
[ 2690.217476][T32104] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2690.242683][T32104] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2690.259610][T32104] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2690.279026][T32104] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2690.298779][T32104] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2690.323371][T32104] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2690.348785][T32104] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2690.368779][T32104] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2690.391633][T32104] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 2690.459230][T14991] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 2690.467943][T14991] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 2690.478087][T14991] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 2690.487526][T14991] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 2690.503633][T32110] device veth1_vlan entered promiscuous mode
[ 2690.533302][T32104] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2690.559515][T32104] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2690.588788][T32104] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2690.608809][T32104] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2690.618679][T32104] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2690.668849][T32104] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2690.688596][T32104] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2690.712676][T32104] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2690.731079][T32104] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 2690.739631][T17500] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 2690.750654][T17500] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 2690.758711][T17500] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 2690.776487][T17500] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 2690.796993][T17500] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 2690.961060][T32104] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 2690.975802][T32104] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 2690.984970][T32104] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 2690.997423][T32104] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 2691.149981][T32125] 8021q: adding VLAN 0 to HW filter on device bond0
[ 2691.273501][T21233] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 2691.294679][T21233] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 2691.316065][T32110] device veth0_macvtap entered promiscuous mode
[ 2691.418501][T32125] 8021q: adding VLAN 0 to HW filter on device team0
[ 2691.444028][T32110] device veth1_macvtap entered promiscuous mode
[ 2691.479935][T30559] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 2691.488442][T30559] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 2691.497511][T30559] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 2691.505997][T30559] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 2691.514353][T30559] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 2691.523623][T30559] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 2691.532879][T30559] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2691.540047][T30559] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 2691.587246][T20569] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 2691.595936][T20569] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 2691.605666][T20569] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 2691.616184][T20569] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2691.623346][T20569] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 2691.650318][T32142] netdevsim netdevsim5 netdevsim0: renamed from eth0
[ 2691.669748][T20562] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2691.693839][T20562] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2691.727239][T20569] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 2691.739141][T20569] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 2691.746949][T20569] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 2691.757933][T20569] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 2691.773257][T20569] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 2691.797088][T32142] netdevsim netdevsim5 netdevsim1: renamed from eth1
[ 2691.813355][T32110] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2691.824640][T32110] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2691.834636][T32110] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2691.845512][T32110] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2691.857118][T32110] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2691.880208][T32110] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2691.891350][T32110] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2691.902447][T32110] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2691.913373][T32110] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2691.924253][T32110] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2691.936266][T32110] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 2691.971862][ T9919] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 2691.980298][ T9919] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 2691.989362][ T9919] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 2691.998050][ T9919] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 2692.007012][ T9919] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 2692.009447][T17544] Bluetooth: hci0: command 0x0409 tx timeout
[ 2692.016887][ T9919] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 2692.029876][ T9919] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 2692.045718][T32142] netdevsim netdevsim5 netdevsim2: renamed from eth2
[ 2692.062044][T32142] netdevsim netdevsim5 netdevsim3: renamed from eth3
[ 2692.062967][T14861] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2692.077455][T14861] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2692.086694][T32110] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2692.101999][T32110] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2692.112084][T32110] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2692.122766][T32110] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2692.132688][T32110] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2692.143301][T32110] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2692.153500][T32110] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2692.168582][T32110] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2692.182015][T32110] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2692.193036][T32110] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2692.204343][T32110] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 2692.214948][T32125] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 2692.245401][T21233] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 2692.254504][T21233] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 2692.265447][T21233] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 2692.280577][T32110] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 2692.290115][T32110] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 2692.301432][T32110] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 2692.310590][T32110] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 2692.486892][T32286] chnl_net:caif_netlink_parms(): no params data found
21:26:01 executing program 0:
openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0)
openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
perf_event_open(0x0, 0xffffffffffffffff, 0xb, 0xffffffffffffffff, 0x0)
getpid()
r0 = bpf$ITER_CREATE(0x21, &(0x7f0000000340), 0x8)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='blkio.bfq.io_service_time\x00', 0x26e1, 0x0)
write$cgroup_int(r1, &(0x7f0000000040), 0x12)
close(r1)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000280)='host1x_cdma_push_wide\x00', r0}, 0x10)
write$cgroup_int(0xffffffffffffffff, &(0x7f0000000040), 0x12)

21:26:01 executing program 0:
openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0)
openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
perf_event_open(0x0, 0xffffffffffffffff, 0xb, 0xffffffffffffffff, 0x0)
getpid()
r0 = bpf$ITER_CREATE(0x21, &(0x7f0000000340), 0x8)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='blkio.bfq.io_service_time\x00', 0x26e1, 0x0)
write$cgroup_int(r1, &(0x7f0000000040), 0x12)
close(r1)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000280)='host1x_cdma_push_wide\x00', r0}, 0x10)
write$cgroup_int(0xffffffffffffffff, &(0x7f0000000040), 0x12)

[ 2692.932016][T20562] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2692.956865][T20562] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2692.979183][T17500] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 2693.132216][T20562] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2693.158885][T20562] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2693.179627][T32286] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2693.197770][T32286] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2693.215608][T32286] device bridge_slave_0 entered promiscuous mode
[ 2693.227068][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 2693.256787][T32286] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2693.275310][T32286] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2693.303682][T32286] device bridge_slave_1 entered promiscuous mode
[ 2693.368398][T32142] 8021q: adding VLAN 0 to HW filter on device bond0
[ 2693.467880][T32142] 8021q: adding VLAN 0 to HW filter on device team0
[ 2693.508152][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 2693.527082][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 2693.553367][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 2693.580477][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 2693.610920][T32125] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 2693.630855][T32341] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2693.641311][T32286] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 2693.644485][T32286] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 2693.653005][T32341] CPU: 0 PID: 32341 Comm: syz-executor.3 Not tainted 6.2.0-rc2-syzkaller-00431-g0164776a2ce7 #0
[ 2693.670986][T32341] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 2693.681072][T32341] Call Trace:
[ 2693.684378][T32341]  <TASK>
[ 2693.687336][T32341]  dump_stack_lvl+0xd1/0x138
[ 2693.691979][T32341]  dump_header+0x10b/0x85f
[ 2693.696468][T32341]  oom_kill_process.cold+0x10/0x15
[ 2693.701624][T32341]  out_of_memory+0x35c/0x14a0
[ 2693.706318][T32341]  ? lockdep_hardirqs_on+0x7d/0x100
[ 2693.711538][T32341]  ? oom_killer_disable+0x280/0x280
[ 2693.716746][T32341]  ? mem_cgroup_out_of_memory+0x199/0x270
[ 2693.722481][T32341]  mem_cgroup_out_of_memory+0x206/0x270
[ 2693.728034][T32341]  ? mem_cgroup_margin+0x130/0x130
[ 2693.733169][T32341]  memory_max_write+0x2f9/0x3c0
[ 2693.738119][T32341]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 2693.744202][T32341]  ? lock_release+0x810/0x810
[ 2693.748891][T32341]  cgroup_file_write+0x1e2/0x770
[ 2693.753844][T32341]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 2693.759921][T32341]  ? kill_css+0x370/0x370
[ 2693.764310][T32341]  ? kill_css+0x370/0x370
[ 2693.768651][T32341]  kernfs_fop_write_iter+0x3f1/0x600
[ 2693.773966][T32341]  vfs_write+0x9ed/0xdd0
[ 2693.778228][T32341]  ? kernel_write+0x630/0x630
[ 2693.782924][T32341]  ? __fget_files+0x26a/0x440
[ 2693.787644][T32341]  ksys_write+0x12b/0x250
[ 2693.792012][T32341]  ? __ia32_sys_read+0xb0/0xb0
[ 2693.796805][T32341]  ? syscall_enter_from_user_mode+0x26/0xb0
[ 2693.802730][T32341]  do_syscall_64+0x39/0xb0
[ 2693.807171][T32341]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2693.813078][T32341] RIP: 0033:0x7fda0a28c0c9
[ 2693.817497][T32341] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 2693.837109][T32341] RSP: 002b:00007fda0af67168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 2693.845552][T32341] RAX: ffffffffffffffda RBX: 00007fda0a3abf80 RCX: 00007fda0a28c0c9
[ 2693.853536][T32341] RDX: 0000000000000012 RSI: 0000000020000040 RDI: 0000000000000005
[ 2693.861519][T32341] RBP: 00007fda0a2e7ae9 R08: 0000000000000000 R09: 0000000000000000
[ 2693.869497][T32341] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2693.877472][T32341] R13: 00007fffeba041cf R14: 00007fda0af67300 R15: 0000000000022000
[ 2693.885475][T32341]  </TASK>
[ 2693.949379][T32341] memory: usage 10616kB, limit 0kB, failcnt 723
[ 2693.956188][T32341] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2693.970585][T32341] Memory cgroup stats for /syz3:
[ 2693.978423][T32341] anon 114688
[ 2693.978423][T32341] file 10452992
[ 2693.978423][T32341] kernel 286720
[ 2693.978423][T32341] kernel_stack 65536
[ 2693.978423][T32341] pagetables 77824
[ 2693.978423][T32341] sec_pagetables 0
[ 2693.978423][T32341] percpu 64
[ 2693.978423][T32341] sock 0
[ 2693.978423][T32341] vmalloc 0
[ 2693.978423][T32341] shmem 10448896
[ 2693.978423][T32341] zswap 0
[ 2693.978423][T32341] zswapped 0
[ 2693.978423][T32341] file_mapped 331776
[ 2693.978423][T32341] file_dirty 4096
[ 2693.978423][T32341] file_writeback 0
[ 2693.978423][T32341] swapcached 0
[ 2693.978423][T32341] anon_thp 0
[ 2693.978423][T32341] file_thp 0
[ 2693.978423][T32341] shmem_thp 0
[ 2693.978423][T32341] inactive_anon 2211840
[ 2693.978423][T32341] active_anon 8351744
[ 2693.978423][T32341] inactive_file 4096
[ 2693.978423][T32341] active_file 0
[ 2693.978423][T32341] unevictable 0
[ 2693.978423][T32341] slab_reclaimable 43256
[ 2693.978423][T32341] slab_unreclaimable 73104
[ 2693.978423][T32341] slab 116360
[ 2694.088903][T17544] Bluetooth: hci0: command 0x041b tx timeout
[ 2694.097892][T32341] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=32340,uid=0
[ 2694.117964][T32341] Memory cgroup out of memory: Killed process 32340 (syz-executor.3) total-vm:54540kB, anon-rss:372kB, file-rss:8960kB, shmem-rss:0kB, UID:0 pgtables:80kB oom_score_adj:1000
21:26:03 executing program 0:
openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0)
openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_int(r0, &(0x7f00000000c0)='memory.max\x00', 0x2, 0x0)
getpid()
r2 = bpf$ITER_CREATE(0x21, &(0x7f0000000340), 0x8)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='blkio.bfq.io_service_time\x00', 0x26e1, 0x0)
write$cgroup_int(r3, &(0x7f0000000040), 0x12)
close(r3)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000280)='host1x_cdma_push_wide\x00', r2}, 0x10)
write$cgroup_int(r1, &(0x7f0000000040), 0x12)

21:26:03 executing program 3:
openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0)
openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
perf_event_open(0x0, 0xffffffffffffffff, 0xb, 0xffffffffffffffff, 0x0)
r1 = openat$cgroup_int(r0, &(0x7f00000000c0)='memory.max\x00', 0x2, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x1f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='blkio.bfq.io_service_time\x00', 0x26e1, 0x0)
write$cgroup_int(r2, &(0x7f0000000040), 0x12)
close(r2)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000280)='host1x_cdma_push_wide\x00'}, 0x10)
write$cgroup_int(r1, &(0x7f0000000040), 0x12)

[ 2694.179978][T21233] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 2694.209704][T21233] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 2694.218223][T21233] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2694.225414][T21233] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 2694.283821][T32110] syz-executor.3 invoked oom-killer: gfp_mask=0x400cc0(GFP_KERNEL_ACCOUNT), order=0, oom_score_adj=0
[ 2694.303207][T21233] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 2694.312483][T21233] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 2694.320666][T32110] CPU: 1 PID: 32110 Comm: syz-executor.3 Not tainted 6.2.0-rc2-syzkaller-00431-g0164776a2ce7 #0
[ 2694.331127][T32110] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 2694.341212][T32110] Call Trace:
[ 2694.344496][T32110]  <TASK>
[ 2694.347435][T32110]  dump_stack_lvl+0xd1/0x138
[ 2694.352051][T32110]  dump_header+0x10b/0x85f
[ 2694.356505][T32110]  oom_kill_process.cold+0x10/0x15
[ 2694.361630][T32110]  out_of_memory+0x35c/0x14a0
[ 2694.366321][T32110]  ? find_held_lock+0x2d/0x110
[ 2694.371103][T32110]  ? oom_killer_disable+0x280/0x280
[ 2694.376336][T32110]  ? find_held_lock+0x2d/0x110
[ 2694.381125][T32110]  mem_cgroup_out_of_memory+0x206/0x270
[ 2694.386685][T32110]  ? mem_cgroup_margin+0x130/0x130
[ 2694.391798][T32110]  ? lock_downgrade+0x6e0/0x6e0
[ 2694.396691][T32110]  try_charge_memcg+0xefb/0x12f0
[ 2694.401662][T32110]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 2694.407753][T32110]  ? get_mem_cgroup_from_objcg+0xa1/0x260
[ 2694.413486][T32110]  ? lock_downgrade+0x6e0/0x6e0
[ 2694.418362][T32110]  ? lock_downgrade+0x6e0/0x6e0
[ 2694.423217][T32110]  ? rcu_read_unlock+0x9/0x60
[ 2694.427918][T32110]  obj_cgroup_charge+0x2af/0x5e0
[ 2694.432875][T32110]  __kmem_cache_alloc_node+0xb2/0x430
[ 2694.438271][T32110]  ? kvmalloc_node+0xa2/0x1a0
[ 2694.442967][T32110]  ? kvmalloc_node+0xa2/0x1a0
[ 2694.447654][T32110]  __kmalloc_node+0x4d/0xd0
[ 2694.452178][T32110]  kvmalloc_node+0xa2/0x1a0
[ 2694.456695][T32110]  xt_alloc_table_info+0x40/0xa0
[ 2694.461644][T32110]  do_ipt_set_ctl+0x514/0xb10
[ 2694.466394][T32110]  ? trace_contention_end+0x153/0x1e0
[ 2694.471791][T32110]  ? __mutex_lock+0x231/0x1360
[ 2694.476583][T32110]  ? compat_do_replace.constprop.0+0x400/0x400
[ 2694.482770][T32110]  ? do_ip_setsockopt+0x231/0x3a10
[ 2694.487933][T32110]  ? wait_for_completion_io_timeout+0x20/0x20
[ 2694.494035][T32110]  ? nf_sockopt_find.constprop.0+0x22d/0x2a0
[ 2694.500042][T32110]  nf_setsockopt+0x87/0xe0
[ 2694.504473][T32110]  ip_setsockopt+0xf2/0x110
[ 2694.509008][T32110]  tcp_setsockopt+0x9f/0x100
[ 2694.513606][T32110]  ? sock_common_recvmsg+0x190/0x190
[ 2694.518903][T32110]  __sys_setsockopt+0x2c6/0x5b0
[ 2694.523772][T32110]  ? __ia32_sys_recv+0x100/0x100
[ 2694.528739][T32110]  __x64_sys_setsockopt+0xbe/0x160
[ 2694.533957][T32110]  ? syscall_enter_from_user_mode+0x26/0xb0
[ 2694.539863][T32110]  do_syscall_64+0x39/0xb0
[ 2694.544319][T32110]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2694.550223][T32110] RIP: 0033:0x7fda0a28d71a
[ 2694.554706][T32110] Code: 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 49 89 ca b8 36 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 2694.574360][T32110] RSP: 002b:00007fffeba03d38 EFLAGS: 00000202 ORIG_RAX: 0000000000000036
[ 2694.582788][T32110] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fda0a28d71a
[ 2694.590880][T32110] RDX: 0000000000000040 RSI: 0000000000000000 RDI: 0000000000000003
[ 2694.598852][T32110] RBP: 00007fffeba03d60 R08: 00000000000002d8 R09: ffff000000000000
[ 2694.606826][T32110] R10: 00007fda0a387880 R11: 0000000000000202 R12: 00007fffeba03dc0
[ 2694.614801][T32110] R13: 0000000000000003 R14: 00007fffeba03d5c R15: 00007fda0a387820
[ 2694.622792][T32110]  </TASK>
[ 2694.666018][T21233] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2694.673250][T21233] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 2694.739012][T32110] memory: usage 10348kB, limit 0kB, failcnt 742
[ 2694.745323][T32110] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2694.754454][T21233] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 2694.778923][T32110] Memory cgroup stats for /syz3:
[ 2694.779109][T32110] anon 40960
[ 2694.779109][T32110] file 10448896
[ 2694.779109][T32110] kernel 106496
[ 2694.779109][T32110] kernel_stack 0
[ 2694.779109][T32110] pagetables 8192
[ 2694.779109][T32110] sec_pagetables 0
[ 2694.779109][T32110] percpu 64
[ 2694.779109][T32110] sock 0
[ 2694.779109][T32110] vmalloc 0
[ 2694.779109][T32110] shmem 10448896
[ 2694.779109][T32110] zswap 0
[ 2694.779109][T32110] zswapped 0
[ 2694.779109][T32110] file_mapped 315392
[ 2694.779109][T32110] file_dirty 0
[ 2694.779109][T32110] file_writeback 0
[ 2694.779109][T32110] swapcached 0
[ 2694.779109][T32110] anon_thp 0
[ 2694.779109][T32110] file_thp 0
[ 2694.779109][T32110] shmem_thp 0
[ 2694.779109][T32110] inactive_anon 2138112
[ 2694.779109][T32110] active_anon 8351744
[ 2694.779109][T32110] inactive_file 0
[ 2694.779109][T32110] active_file 0
[ 2694.779109][T32110] unevictable 0
[ 2694.779109][T32110] slab_reclaimable 35120
[ 2694.779109][T32110] slab_unreclaimable 47872
[ 2694.779109][T32110] slab 82992
[ 2694.812340][T21233] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 2694.894794][T32286] team0: Port device team_slave_0 added
[ 2694.905615][T32286] team0: Port device team_slave_1 added
[ 2694.927675][T32110] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=32110,uid=0
[ 2694.944023][T32110] Memory cgroup out of memory: Killed process 32110 (syz-executor.3) total-vm:50568kB, anon-rss:364kB, file-rss:8960kB, shmem-rss:0kB, UID:0 pgtables:68kB oom_score_adj:0
[ 2694.992219][T32352] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2695.014964][T32352] CPU: 1 PID: 32352 Comm: syz-executor.0 Not tainted 6.2.0-rc2-syzkaller-00431-g0164776a2ce7 #0
[ 2695.025451][T32352] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 2695.035545][T32352] Call Trace:
[ 2695.038851][T32352]  <TASK>
[ 2695.041897][T32352]  dump_stack_lvl+0xd1/0x138
[ 2695.046630][T32352]  dump_header+0x10b/0x85f
[ 2695.051093][T32352]  oom_kill_process.cold+0x10/0x15
[ 2695.056248][T32352]  out_of_memory+0x35c/0x14a0
[ 2695.060976][T32352]  ? oom_killer_disable+0x280/0x280
[ 2695.066215][T32352]  ? find_held_lock+0x2d/0x110
[ 2695.071035][T32352]  mem_cgroup_out_of_memory+0x206/0x270
[ 2695.076617][T32352]  ? mem_cgroup_margin+0x130/0x130
[ 2695.081777][T32352]  ? _raw_spin_unlock_irqrestore+0x54/0x70
[ 2695.087640][T32352]  memory_max_write+0x2f9/0x3c0
[ 2695.092541][T32352]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 2695.098656][T32352]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 2695.104779][T32352]  cgroup_file_write+0x1e2/0x770
[ 2695.109767][T32352]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 2695.115889][T32352]  ? kill_css+0x370/0x370
[ 2695.120266][T32352]  ? lock_is_held_type+0x103/0x140
[ 2695.125421][T32352]  ? kill_css+0x370/0x370
[ 2695.129786][T32352]  kernfs_fop_write_iter+0x3f1/0x600
[ 2695.135119][T32352]  vfs_write+0x9ed/0xdd0
[ 2695.139403][T32352]  ? kernel_write+0x630/0x630
[ 2695.144127][T32352]  ? __fget_files+0x26a/0x440
[ 2695.148855][T32352]  ksys_write+0x12b/0x250
[ 2695.153223][T32352]  ? __ia32_sys_read+0xb0/0xb0
[ 2695.158027][T32352]  ? syscall_enter_from_user_mode+0x26/0xb0
[ 2695.163976][T32352]  do_syscall_64+0x39/0xb0
[ 2695.168441][T32352]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2695.174375][T32352] RIP: 0033:0x7f5dcec8c0c9
[ 2695.178817][T32352] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 2695.198456][T32352] RSP: 002b:00007f5dcfa6f168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 2695.206911][T32352] RAX: ffffffffffffffda RBX: 00007f5dcedabf80 RCX: 00007f5dcec8c0c9
[ 2695.214914][T32352] RDX: 0000000000000012 RSI: 0000000020000040 RDI: 0000000000000005
[ 2695.222913][T32352] RBP: 00007f5dcece7ae9 R08: 0000000000000000 R09: 0000000000000000
[ 2695.230915][T32352] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2695.238913][T32352] R13: 00007ffe52cc804f R14: 00007f5dcfa6f300 R15: 0000000000022000
[ 2695.246919][T32352]  </TASK>
[ 2695.256729][T32286] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 2695.257450][T32352] memory: usage 10620kB, limit 0kB, failcnt 658
[ 2695.270889][T32352] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2695.277767][T32352] Memory cgroup stats for /syz0:
[ 2695.277985][T32352] anon 139264
[ 2695.277985][T32352] file 10448896
[ 2695.277985][T32352] kernel 253952
[ 2695.277985][T32352] kernel_stack 32768
[ 2695.277985][T32352] pagetables 81920
[ 2695.277985][T32352] sec_pagetables 0
[ 2695.277985][T32352] percpu 64
[ 2695.277985][T32352] sock 0
[ 2695.277985][T32352] vmalloc 0
[ 2695.277985][T32352] shmem 10448896
[ 2695.277985][T32352] zswap 0
[ 2695.277985][T32352] zswapped 0
[ 2695.277985][T32352] file_mapped 331776
[ 2695.277985][T32352] file_dirty 0
[ 2695.277985][T32352] file_writeback 0
[ 2695.277985][T32352] swapcached 0
[ 2695.277985][T32352] anon_thp 0
[ 2695.277985][T32352] file_thp 0
[ 2695.277985][T32352] shmem_thp 0
[ 2695.277985][T32352] inactive_anon 139264
[ 2695.277985][T32352] active_anon 10448896
[ 2695.277985][T32352] inactive_file 0
[ 2695.277985][T32352] active_file 0
[ 2695.277985][T32352] unevictable 0
[ 2695.277985][T32352] slab_reclaimable 36768
[ 2695.277985][T32352] slab_unreclaimable 73104
[ 2695.277985][T32352] slab 109872
[ 2695.280919][T32286] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2695.283968][T32352] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null)
[ 2695.378389][T32286] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 2695.420601][T23289] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 2695.432842][T23289] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 2695.443550][T23289] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 2695.447019][T32352] ,cpuset=
[ 2695.454162][T23289] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 2695.458080][T32352] syz0
[ 2695.466041][T23289] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 2695.476212][T32352] ,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=32351,uid=0
[ 2695.487056][T32352] Memory cgroup out of memory: Killed process 32352 (syz-executor.0) total-vm:54540kB, anon-rss:504kB, file-rss:8960kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000
[ 2695.563681][T32142] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 2695.575948][T32142] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 2695.604999][T32286] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 2695.628933][T32286] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2695.665134][T32286] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 2695.677207][T30559] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 2695.686497][T30559] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 2695.709469][T30559] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 2695.783353][T10995] device hsr_slave_0 left promiscuous mode
[ 2695.790119][T10995] device hsr_slave_1 left promiscuous mode
[ 2695.796481][T10995] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 2695.804192][T10995] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 2695.820099][T10995] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 2695.827574][T10995] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 2695.836276][T10995] device bridge_slave_1 left promiscuous mode
[ 2695.843587][T10995] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2695.852932][T10995] device bridge_slave_0 left promiscuous mode
[ 2695.859508][T10995] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2695.870825][T10995] device hsr_slave_0 left promiscuous mode
[ 2695.877139][T10995] device hsr_slave_1 left promiscuous mode
[ 2695.884035][T10995] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 2695.891734][T10995] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 2695.901840][T10995] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 2695.911514][T10995] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 2695.921481][T10995] device bridge_slave_1 left promiscuous mode
[ 2695.927713][T10995] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2695.937318][T10995] device bridge_slave_0 left promiscuous mode
[ 2695.948471][T10995] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2695.974746][T10995] device hsr_slave_0 left promiscuous mode
[ 2695.989433][T10995] device hsr_slave_1 left promiscuous mode
[ 2695.998380][T10995] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 2696.015761][T10995] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 2696.048325][T10995] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 2696.059900][T10995] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 2696.069717][T10995] device bridge_slave_1 left promiscuous mode
[ 2696.075905][T10995] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2696.084791][T10995] device bridge_slave_0 left promiscuous mode
[ 2696.094979][T10995] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2696.115998][T10995] device veth1_macvtap left promiscuous mode
[ 2696.122089][T10995] device veth0_macvtap left promiscuous mode
[ 2696.128129][T10995] device veth1_vlan left promiscuous mode
[ 2696.134400][T10995] device veth0_vlan left promiscuous mode
[ 2696.147296][T10995] device veth1_macvtap left promiscuous mode
[ 2696.154153][T10995] device veth0_macvtap left promiscuous mode
[ 2696.162380][T10995] device veth1_vlan left promiscuous mode
[ 2696.168238][T10995] device veth0_vlan left promiscuous mode
[ 2696.171458][T17544] Bluetooth: hci0: command 0x040f tx timeout
[ 2696.181884][T10995] device veth1_macvtap left promiscuous mode
[ 2696.187951][T10995] device veth0_macvtap left promiscuous mode
[ 2696.194574][T10995] device veth1_vlan left promiscuous mode
[ 2696.200516][T10995] device veth0_vlan left promiscuous mode
[ 2696.586342][T10995] team0 (unregistering): Port device team_slave_1 removed
[ 2696.602457][T10995] team0 (unregistering): Port device team_slave_0 removed
[ 2696.617160][T10995] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 2696.633191][T10995] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 2696.707915][T10995] bond0 (unregistering): Released all slaves
[ 2696.841617][T10995] team0 (unregistering): Port device team_slave_1 removed
[ 2696.855339][T10995] team0 (unregistering): Port device team_slave_0 removed
[ 2696.867809][T10995] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 2696.886386][T10995] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 2696.955189][T10995] bond0 (unregistering): Released all slaves
[ 2697.095537][T10995] team0 (unregistering): Port device team_slave_1 removed
[ 2697.107742][T10995] team0 (unregistering): Port device team_slave_0 removed
[ 2697.122084][T10995] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 2697.137426][T10995] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 2697.212880][T10995] bond0 (unregistering): Released all slaves
[ 2697.366745][T23289] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 2697.377977][T23289] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 2697.435544][T24529] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 2697.451602][T24529] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 2697.473840][T32125] device veth0_vlan entered promiscuous mode
[ 2697.497998][T32286] device hsr_slave_0 entered promiscuous mode
[ 2697.504926][T32286] device hsr_slave_1 entered promiscuous mode
[ 2697.512521][T32286] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 2697.521918][T32286] Cannot create hsr debugfs directory
[ 2697.534605][T20569] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 2697.542894][T20569] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 2697.556890][T32125] device veth1_vlan entered promiscuous mode
[ 2697.657431][T32125] device veth0_macvtap entered promiscuous mode
[ 2697.666537][T30051] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 2697.676142][T30051] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 2697.700579][T30051] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 2697.719530][T30051] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 2697.745601][T32125] device veth1_macvtap entered promiscuous mode
[ 2697.760546][T30051] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 2697.778158][T30051] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 2697.827143][T32125] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2697.837951][T32125] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2697.867653][T32125] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2697.888827][T32125] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2697.908877][T32125] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2697.928818][T32125] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2697.952116][T32125] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 2697.972996][T32125] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2697.993960][T32125] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2698.017334][T32125] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2698.039208][T32125] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2698.049921][T32125] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2698.060705][T32125] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2698.072582][T32125] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 2698.089686][ T9919] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 2698.098296][ T9919] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 2698.116127][ T9919] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 2698.127761][ T9919] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 2698.140598][ T9919] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 2698.160494][ T9919] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 2698.205368][T32125] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 2698.214708][T32125] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 2698.223887][T32125] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 2698.233389][T32125] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 2698.249145][T17544] Bluetooth: hci0: command 0x0419 tx timeout
[ 2698.320529][T32142] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 2698.620078][T32321] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2698.628242][T32321] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2698.848475][T17500] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 2698.863455][T14860] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2698.881353][T14860] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2698.936176][T21233] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 2699.321015][T32286] netdevsim netdevsim2 netdevsim0: renamed from eth0
[ 2699.430834][T32286] netdevsim netdevsim2 netdevsim1: renamed from eth1
[ 2699.477620][T32286] netdevsim netdevsim2 netdevsim2: renamed from eth2
[ 2699.498159][T32286] netdevsim netdevsim2 netdevsim3: renamed from eth3
[ 2699.502146][T32391] syz-executor.4 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2699.529612][T32391] CPU: 0 PID: 32391 Comm: syz-executor.4 Not tainted 6.2.0-rc2-syzkaller-00431-g0164776a2ce7 #0
[ 2699.540089][T32391] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 2699.550173][T32391] Call Trace:
[ 2699.553479][T32391]  <TASK>
[ 2699.556434][T32391]  dump_stack_lvl+0xd1/0x138
[ 2699.561090][T32391]  dump_header+0x10b/0x85f
[ 2699.565541][T32391]  oom_kill_process.cold+0x10/0x15
[ 2699.570697][T32391]  out_of_memory+0x35c/0x14a0
[ 2699.575413][T32391]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 2699.581630][T32391]  ? oom_killer_disable+0x280/0x280
[ 2699.586863][T32391]  ? mem_cgroup_margin+0x1b/0x130
[ 2699.591919][T32391]  ? mem_cgroup_margin+0x66/0x130
[ 2699.596990][T32391]  mem_cgroup_out_of_memory+0x206/0x270
[ 2699.602576][T32391]  ? mem_cgroup_margin+0x130/0x130
[ 2699.607742][T32391]  memory_max_write+0x2f9/0x3c0
[ 2699.612639][T32391]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 2699.618763][T32391]  cgroup_file_write+0x1e2/0x770
[ 2699.623740][T32391]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 2699.629849][T32391]  ? kill_css+0x370/0x370
[ 2699.634222][T32391]  ? __virt_addr_valid+0x61/0x2e0
[ 2699.639304][T32391]  ? kill_css+0x370/0x370
[ 2699.643684][T32391]  kernfs_fop_write_iter+0x3f1/0x600
[ 2699.649033][T32391]  vfs_write+0x9ed/0xdd0
[ 2699.653327][T32391]  ? kernel_write+0x630/0x630
[ 2699.658054][T32391]  ? __fget_files+0x26a/0x440
[ 2699.662791][T32391]  ksys_write+0x12b/0x250
[ 2699.667157][T32391]  ? __ia32_sys_read+0xb0/0xb0
[ 2699.671960][T32391]  ? syscall_enter_from_user_mode+0x26/0xb0
[ 2699.677907][T32391]  do_syscall_64+0x39/0xb0
[ 2699.682380][T32391]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2699.686859][T32286] 8021q: adding VLAN 0 to HW filter on device bond0
[ 2699.688289][T32391] RIP: 0033:0x7f74faa8c0c9
[ 2699.699313][T32391] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 2699.718965][T32391] RSP: 002b:00007f74fb8d6168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 2699.727418][T32391] RAX: ffffffffffffffda RBX: 00007f74fababf80 RCX: 00007f74faa8c0c9
[ 2699.735424][T32391] RDX: 0000000000000012 RSI: 0000000020000040 RDI: 0000000000000005
[ 2699.743425][T32391] RBP: 00007f74faae7ae9 R08: 0000000000000000 R09: 0000000000000000
[ 2699.751426][T32391] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2699.757206][T32286] 8021q: adding VLAN 0 to HW filter on device team0
[ 2699.759409][T32391] R13: 00007fffc480e10f R14: 00007f74fb8d6300 R15: 0000000000022000
[ 2699.759451][T32391]  </TASK>
[ 2699.789069][T32391] memory: usage 8584kB, limit 0kB, failcnt 642
[ 2699.795998][T32391] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2699.814676][T32391] Memory cgroup stats for /syz4:
[ 2699.816910][T32391] anon 118784
[ 2699.816910][T32391] file 8351744
[ 2699.816910][T32391] kernel 315392
[ 2699.816910][T32391] kernel_stack 65536
[ 2699.816910][T32391] pagetables 81920
[ 2699.816910][T32391] sec_pagetables 0
[ 2699.816910][T32391] percpu 64
[ 2699.816910][T32391] sock 0
[ 2699.816910][T32391] vmalloc 0
[ 2699.816910][T32391] shmem 8351744
[ 2699.816910][T32391] zswap 0
[ 2699.816910][T32391] zswapped 0
[ 2699.816910][T32391] file_mapped 290816
[ 2699.816910][T32391] file_dirty 0
[ 2699.816910][T32391] file_writeback 0
[ 2699.816910][T32391] swapcached 0
[ 2699.816910][T32391] anon_thp 0
[ 2699.816910][T32391] file_thp 0
[ 2699.816910][T32391] shmem_thp 0
[ 2699.816910][T32391] inactive_anon 118784
[ 2699.816910][T32391] active_anon 8351744
[ 2699.816910][T32391] inactive_file 0
[ 2699.816910][T32391] active_file 0
[ 2699.816910][T32391] unevictable 0
[ 2699.816910][T32391] slab_reclaimable 37944
[ 2699.816910][T32391] slab_unreclaimable 99816
[ 2699.816910][T32391] slab 137760
[ 2699.918127][T32391] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0-1,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=32389,uid=0
21:26:08 executing program 4:
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_int(r0, &(0x7f00000000c0)='memory.max\x00', 0x2, 0x0)
getpid()
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x1f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000300)='cpuacct.usage_all\x00', 0x0, 0x0)
bpf$ITER_CREATE(0x21, &(0x7f00000002c0)={r2}, 0x8)
getpid()
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='blkio.bfq.io_service_time\x00', 0x26e1, 0x0)
write$cgroup_int(r3, &(0x7f0000000040), 0x12)
close(r3)
syz_open_procfs$namespace(0x0, 0x0)
write$cgroup_int(r1, &(0x7f0000000040), 0x12)

[ 2699.928860][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 2699.939965][T32391] Memory cgroup out of memory: Killed process 32389 (syz-executor.4) total-vm:54540kB, anon-rss:500kB, file-rss:8960kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000
[ 2699.977529][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 2700.020474][T32125] syz-executor.4 invoked oom-killer: gfp_mask=0x400cc0(GFP_KERNEL_ACCOUNT), order=1, oom_score_adj=0
[ 2700.039325][T32125] CPU: 1 PID: 32125 Comm: syz-executor.4 Not tainted 6.2.0-rc2-syzkaller-00431-g0164776a2ce7 #0
[ 2700.049802][T32125] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 2700.059906][T32125] Call Trace:
[ 2700.063205][T32125]  <TASK>
[ 2700.066156][T32125]  dump_stack_lvl+0xd1/0x138
[ 2700.070790][T32125]  dump_header+0x10b/0x85f
[ 2700.075244][T32125]  oom_kill_process.cold+0x10/0x15
[ 2700.080389][T32125]  out_of_memory+0x35c/0x14a0
[ 2700.085114][T32125]  ? find_held_lock+0x2d/0x110
[ 2700.089933][T32125]  ? oom_killer_disable+0x280/0x280
[ 2700.095174][T32125]  ? find_held_lock+0x2d/0x110
[ 2700.099989][T32125]  mem_cgroup_out_of_memory+0x206/0x270
[ 2700.105565][T32125]  ? mem_cgroup_margin+0x130/0x130
[ 2700.110700][T32125]  ? lock_downgrade+0x6e0/0x6e0
[ 2700.115596][T32125]  try_charge_memcg+0xefb/0x12f0
[ 2700.120576][T32125]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 2700.126589][T32125]  ? get_mem_cgroup_from_objcg+0xa1/0x260
[ 2700.132337][T32125]  ? lock_downgrade+0x6e0/0x6e0
[ 2700.137217][T32125]  ? lock_downgrade+0x6e0/0x6e0
[ 2700.142098][T32125]  ? rcu_read_unlock+0x9/0x60
[ 2700.146828][T32125]  obj_cgroup_charge+0x2af/0x5e0
[ 2700.151813][T32125]  __kmem_cache_alloc_node+0xb2/0x430
[ 2700.157208][T32125]  ? kvmalloc_node+0xa2/0x1a0
[ 2700.161928][T32125]  ? kvmalloc_node+0xa2/0x1a0
[ 2700.166726][T32125]  __kmalloc_node+0x4d/0xd0
[ 2700.171271][T32125]  kvmalloc_node+0xa2/0x1a0
[ 2700.175809][T32125]  alloc_fdtable+0xf4/0x2a0
[ 2700.180340][T32125]  dup_fd+0x722/0xcb0
[ 2700.184368][T32125]  copy_process+0x24ea/0x7520
[ 2700.189076][T32125]  ? _raw_spin_unlock+0x28/0x40
[ 2700.193956][T32125]  ? wp_page_reuse+0x197/0x570
[ 2700.198771][T32125]  ? __cleanup_sighand+0xb0/0xb0
[ 2700.203735][T32125]  ? finish_mkwrite_fault+0x3d0/0x3d0
[ 2700.209154][T32125]  ? rwlock_bug.part.0+0x90/0x90
[ 2700.214116][T32125]  ? lock_chain_count+0x20/0x20
[ 2700.218998][T32125]  kernel_clone+0xeb/0x990
[ 2700.223446][T32125]  ? create_io_thread+0xf0/0xf0
[ 2700.228329][T32125]  ? find_held_lock+0x2d/0x110
[ 2700.233141][T32125]  __do_sys_clone+0xba/0x100
[ 2700.237761][T32125]  ? kernel_clone+0x990/0x990
[ 2700.242485][T32125]  ? syscall_enter_from_user_mode+0x26/0xb0
[ 2700.248415][T32125]  do_syscall_64+0x39/0xb0
[ 2700.252873][T32125]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2700.258811][T32125] RIP: 0033:0x7f74faa89dfb
[ 2700.263254][T32125] Code: ed 0f 85 60 01 00 00 64 4c 8b 0c 25 10 00 00 00 45 31 c0 4d 8d 91 d0 02 00 00 31 d2 31 f6 bf 11 00 20 01 b8 38 00 00 00 0f 05 <48> 3d 00 f0 ff ff 0f 87 89 00 00 00 41 89 c5 85 c0 0f 85 90 00 00
[ 2700.282901][T32125] RSP: 002b:00007fffc480e350 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[ 2700.291346][T32125] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f74faa89dfb
[ 2700.299342][T32125] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011
[ 2700.307337][T32125] RBP: 0000000000000001 R08: 0000000000000000 R09: 00005555556ad400
[ 2700.315329][T32125] R10: 00005555556ad6d0 R11: 0000000000000246 R12: 0000000000000001
[ 2700.323321][T32125] R13: 0000000000000000 R14: 0000000000000001 R15: 00007fffc480e430
[ 2700.331340][T32125]  </TASK>
[ 2700.345956][T17500] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 2700.367305][T32125] memory: usage 8404kB, limit 0kB, failcnt 661
[ 2700.369500][T17500] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 2700.376548][T32125] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2700.389267][T32125] Memory cgroup stats for /syz4:
[ 2700.389461][T32125] anon 45056
[ 2700.389461][T32125] file 8351744
[ 2700.389461][T32125] kernel 167936
[ 2700.389461][T32125] kernel_stack 32768
[ 2700.389461][T32125] pagetables 8192
[ 2700.389461][T32125] sec_pagetables 0
[ 2700.389461][T32125] percpu 64
[ 2700.389461][T32125] sock 0
[ 2700.389461][T32125] vmalloc 0
[ 2700.389461][T32125] shmem 8351744
[ 2700.389461][T32125] zswap 0
[ 2700.389461][T32125] zswapped 0
[ 2700.389461][T32125] file_mapped 266240
[ 2700.389461][T32125] file_dirty 0
[ 2700.389461][T32125] file_writeback 0
[ 2700.389461][T32125] swapcached 0
[ 2700.389461][T32125] anon_thp 0
[ 2700.389461][T32125] file_thp 0
[ 2700.389461][T32125] shmem_thp 0
[ 2700.389461][T32125] inactive_anon 45056
[ 2700.389461][T32125] active_anon 8351744
[ 2700.389461][T32125] inactive_file 0
[ 2700.389461][T32125] active_file 0
[ 2700.389461][T32125] unevictable 0
[ 2700.389461][T32125] slab_reclaimable 35584
[ 2700.389461][T32125] slab_unreclaimable 79696
[ 2700.389461][T32125] slab 115280
[ 2700.419290][T17500] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2700.491930][T17500] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 2700.609324][T17500] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 2700.618295][T17500] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 2700.626292][T32125] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0-1,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=32125,uid=0
[ 2700.653292][T32142] device veth0_vlan entered promiscuous mode
[ 2700.680560][T32125] Memory cgroup out of memory: Killed process 32125 (syz-executor.4) total-vm:50568kB, anon-rss:364kB, file-rss:8960kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:0
[ 2700.682200][T24529] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 2700.729724][T24529] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 2700.738603][T24529] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 2700.760778][T24529] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2700.767905][T24529] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 2700.787182][T24529] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 2700.807388][T24529] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 2700.829738][T24529] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 2700.876351][T32142] device veth1_vlan entered promiscuous mode
[ 2700.986886][T30559] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 2700.995062][T30559] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 2701.037354][T30559] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 2701.046105][T30559] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 2701.080086][T30559] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 2701.120892][T30559] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 2701.159473][T30559] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 2701.167550][T30559] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 2701.190128][T30559] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 2701.198561][T30559] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 2701.214542][T30559] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 2701.226397][T32286] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 2701.261720][T23935] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 2701.279704][T23935] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 2701.294650][T32142] device veth0_macvtap entered promiscuous mode
[ 2701.313410][T32142] device veth1_macvtap entered promiscuous mode
[ 2701.385154][T32142] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2701.438998][T32142] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2701.467460][T32142] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2701.486766][T32142] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2701.502424][T32142] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2701.529152][T32142] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2701.548988][T32142] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2701.568997][T32142] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2701.590419][T32142] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 2701.598451][T30051] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 2701.610269][T30051] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 2701.637417][T30051] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 2701.646629][T30051] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 2701.677412][T32142] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2701.714517][T32142] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2701.748913][T32142] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2701.788866][T32142] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2701.815541][T32142] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2701.839010][T32142] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2701.858816][T32142] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2701.878882][T32142] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2701.902970][T32142] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 2701.921070][T23935] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 2701.939835][T23935] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 2701.956937][T23935] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 2701.964797][T23935] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 2701.983557][T32142] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 2702.003371][T32142] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 2702.017377][T32142] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 2702.038111][T32142] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 2702.061504][T32286] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 2702.159197][T23935] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 2702.167968][T23935] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 2702.250184][ T9919] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 2702.261289][ T9919] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 2702.289181][T23855] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2702.297955][T23855] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2702.308320][T32286] device veth0_vlan entered promiscuous mode
[ 2702.320424][T23289] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 2702.329230][T23289] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 2702.356873][T32286] device veth1_vlan entered promiscuous mode
[ 2702.359954][T17514] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2702.384200][ T9919] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 2702.389202][T17514] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2702.392851][ T9919] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 2702.434387][T23935] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 2702.452743][T23935] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 2702.519138][T32286] device veth0_macvtap entered promiscuous mode
[ 2702.529452][ T9919] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 2702.538221][ T9919] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 2702.561203][T32286] device veth1_macvtap entered promiscuous mode
[ 2702.573954][ T9919] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 2702.599595][ T9919] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 2702.617906][T32286] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2702.648774][T32286] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2702.659671][T32286] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2702.682981][T32286] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2702.705035][T32286] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2702.716721][T32286] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2702.726929][T32286] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2702.739344][T32286] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2702.749505][T32286] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2702.760244][T32286] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2702.780526][T32286] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 2702.819122][ T9919] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 2702.827881][ T9919] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 2702.854996][T32286] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2702.874126][T32286] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2702.885051][T32286] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2702.902597][T32286] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2702.914236][T32286] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2702.932977][T32286] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2702.946777][T32286] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2702.963083][T32286] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2702.975390][T32286] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2702.985929][T32286] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2703.047624][T32286] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 2703.090605][T30051] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 2703.119681][T30051] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 2703.181175][T32286] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 2703.208979][T32286] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 2703.234775][T32440] syz-executor.5 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2703.240029][T32286] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 2703.246137][T32440] CPU: 1 PID: 32440 Comm: syz-executor.5 Not tainted 6.2.0-rc2-syzkaller-00431-g0164776a2ce7 #0
[ 2703.264352][T32440] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 2703.271862][T32286] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 2703.274408][T32440] Call Trace:
[ 2703.274420][T32440]  <TASK>
[ 2703.274431][T32440]  dump_stack_lvl+0xd1/0x138
[ 2703.293938][T32440]  dump_header+0x10b/0x85f
[ 2703.298397][T32440]  oom_kill_process.cold+0x10/0x15
[ 2703.303526][T32440]  out_of_memory+0x35c/0x14a0
[ 2703.308224][T32440]  ? oom_killer_disable+0x280/0x280
[ 2703.313434][T32440]  ? mark_held_locks+0x9f/0xe0
[ 2703.318205][T32440]  mem_cgroup_out_of_memory+0x206/0x270
[ 2703.323769][T32440]  ? mem_cgroup_margin+0x130/0x130
[ 2703.328898][T32440]  memory_max_write+0x2f9/0x3c0
[ 2703.333761][T32440]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 2703.339866][T32440]  ? lock_release+0x810/0x810
[ 2703.344551][T32440]  cgroup_file_write+0x1e2/0x770
[ 2703.349501][T32440]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 2703.355584][T32440]  ? kill_css+0x370/0x370
[ 2703.359921][T32440]  ? __virt_addr_valid+0x61/0x2e0
[ 2703.364981][T32440]  ? kill_css+0x370/0x370
[ 2703.369323][T32440]  kernfs_fop_write_iter+0x3f1/0x600
[ 2703.374630][T32440]  vfs_write+0x9ed/0xdd0
[ 2703.378888][T32440]  ? kernel_write+0x630/0x630
[ 2703.383578][T32440]  ? __fget_files+0x26a/0x440
[ 2703.388281][T32440]  ksys_write+0x12b/0x250
[ 2703.392617][T32440]  ? __ia32_sys_read+0xb0/0xb0
[ 2703.397390][T32440]  ? syscall_enter_from_user_mode+0x26/0xb0
[ 2703.403297][T32440]  do_syscall_64+0x39/0xb0
[ 2703.407729][T32440]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2703.413639][T32440] RIP: 0033:0x7f26aba8c0c9
[ 2703.418074][T32440] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 2703.437704][T32440] RSP: 002b:00007f26ac860168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 2703.446144][T32440] RAX: ffffffffffffffda RBX: 00007f26abbabf80 RCX: 00007f26aba8c0c9
[ 2703.454118][T32440] RDX: 0000000000000012 RSI: 0000000020000040 RDI: 0000000000000005
[ 2703.462090][T32440] RBP: 00007f26abae7ae9 R08: 0000000000000000 R09: 0000000000000000
[ 2703.470063][T32440] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2703.478037][T32440] R13: 00007ffc9ada706f R14: 00007f26ac860300 R15: 0000000000022000
[ 2703.486045][T32440]  </TASK>
[ 2703.609450][T32440] memory: usage 10700kB, limit 0kB, failcnt 762
[ 2703.618659][T32440] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2703.633642][T23855] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2703.659132][T23855] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2703.668307][T32440] Memory cgroup stats for 
[ 2703.677739][T32440] /syz5:
[ 2703.681979][T32440] anon 126976
[ 2703.681979][T32440] file 10432512
[ 2703.681979][T32440] kernel 372736
[ 2703.681979][T32440] kernel_stack 131072
[ 2703.681979][T32440] pagetables 81920
[ 2703.681979][T32440] sec_pagetables 0
[ 2703.681979][T32440] percpu 64
[ 2703.681979][T32440] sock 0
[ 2703.681979][T32440] vmalloc 0
[ 2703.681979][T32440] shmem 10432512
[ 2703.681979][T32440] zswap 0
[ 2703.681979][T32440] zswapped 0
[ 2703.681979][T32440] file_mapped 249856
[ 2703.681979][T32440] file_dirty 0
[ 2703.681979][T32440] file_writeback 0
[ 2703.681979][T32440] swapcached 0
[ 2703.681979][T32440] anon_thp 0
[ 2703.681979][T32440] file_thp 0
[ 2703.681979][T32440] shmem_thp 0
[ 2703.681979][T32440] inactive_anon 2224128
[ 2703.681979][T32440] active_anon 8335360
[ 2703.681979][T32440] inactive_file 0
[ 2703.681979][T32440] active_file 0
[ 2703.681979][T32440] unevictable 0
[ 2703.681979][T32440] slab_reclaimable 40112
[ 2703.681979][T32440] slab_unreclaimable 91776
[ 2703.681979][T32440] slab 131888
[ 2703.814785][T10995] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2703.848638][T23935] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 2703.883161][T14861] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2703.904577][T14861] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2703.919634][T10995] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2703.946929][T23940] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 2704.010283][T10995] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2704.044485][T32440] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz5,mems_allowed=0-1,oom_memcg=/syz5,task_memcg=/syz5,task=syz-executor.5,pid=32439,uid=0
[ 2704.061129][T32440] Memory cgroup out of memory: Killed process 32439 (syz-executor.5) total-vm:54804kB, anon-rss:372kB, file-rss:8960kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000
21:26:13 executing program 5:
openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0)
openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
perf_event_open(0x0, 0xffffffffffffffff, 0xb, 0xffffffffffffffff, 0x0)
r1 = openat$cgroup_int(r0, &(0x7f00000000c0)='memory.max\x00', 0x2, 0x0)
getpid()
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x1f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000300)='cpuacct.usage_all\x00', 0x0, 0x0)
bpf$ITER_CREATE(0x21, &(0x7f00000002c0)={r2}, 0x8)
getpid()
write$cgroup_int(0xffffffffffffffff, &(0x7f0000000040), 0x12)
close(0xffffffffffffffff)
syz_open_procfs$namespace(0x0, 0x0)
write$cgroup_int(r1, &(0x7f0000000040), 0x12)

21:26:13 executing program 1:
r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0)
perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x6, 0x401}, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000180)={0x0, 0x80, 0x0, 0x7c, 0x4, 0xd2, 0x0, 0x5, 0x0, 0x74d4e3ef7733d4ea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x26, 0x0, @perf_bp={0x0}, 0x210, 0x0, 0x1f, 0x3, 0x0, 0x0, 0xffff}, 0x0, 0x0, 0xffffffffffffffff, 0x9)
perf_event_open(&(0x7f0000000200)={0x4, 0x80, 0x9, 0x0, 0x0, 0x5, 0x0, 0xffffffff, 0x800, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x2, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x2, 0x2, @perf_bp={&(0x7f0000000100), 0x5}, 0x0, 0x100000000, 0x2a, 0x0, 0x8, 0x40, 0x0, 0x0, 0x3f, 0x0, 0x4000000000000000}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
recvmsg(0xffffffffffffffff, 0x0, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f00000002c0)='cpuacct.usage_percpu_sys\x00', 0x0, 0x0)
perf_event_open$cgroup(&(0x7f00000003c0)={0x4, 0x80, 0x1, 0xff, 0x1, 0x5, 0x0, 0x800000000000008, 0x21001, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x3, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0xffff0000, 0x4, @perf_bp={&(0x7f0000000380), 0x8}, 0x40ae, 0xe, 0x78d8, 0x5, 0x7, 0x7, 0x1ff}, 0xffffffffffffffff, 0xc, r0, 0xc)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000018c00)={0x18, 0x3, &(0x7f0000000780)=ANY=[@ANYBLOB="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"], &(0x7f0000000440)='syzkaller\x00', 0x4, 0xb0, &(0x7f0000000480)=""/176, 0x0, 0x0, '\x00', 0x0, 0x0, r1, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
r3 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='rcu_utilization\x00', r2}, 0x10)
r4 = perf_event_open$cgroup(&(0x7f0000000080)={0x4, 0x80, 0x81, 0x5, 0x6, 0x0, 0x0, 0x8000000000000000, 0x848, 0x4, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x3, 0x0, @perf_config_ext={0x912410d}, 0x8800, 0xffffffff, 0x7, 0x6, 0x3f, 0x7, 0x8dd, 0x0, 0x5, 0x0, 0x1}, 0xffffffffffffffff, 0xb, 0xffffffffffffffff, 0x9)
ioctl$PERF_EVENT_IOC_SET_OUTPUT(0xffffffffffffffff, 0x2405, r4)
r5 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000540)='./cgroup.cpu/syz1\x00', 0x200002, 0x0)
openat$cgroup_ro(r5, &(0x7f0000000640)='cgroup.stat\x00', 0x0, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r4, 0x40082404, &(0x7f0000000580)=0xffffffffffffff7f)
r6 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000000)='cpuacct.usage_percpu_sys\x00', 0x26e1, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r6, 0x40086607, &(0x7f0000000040))
r7 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x26e1, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000018c00)={0x18, 0x3, &(0x7f0000000300)=ANY=[@ANYRES64=r1], 0x0, 0x4, 0xb0, &(0x7f0000000480)=""/176, 0x40f00, 0x5, '\x00', 0x0, 0x0, r7, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x0, 0x204d, &(0x7f00000005c0)=ANY=[@ANYRES32], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x18, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000740)={0x0, 0x3}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000002c0)=[0xffffffffffffffff, r7, 0xffffffffffffffff]}, 0x80)
write$cgroup_int(r7, &(0x7f0000000280)=0x1ff, 0x12)
r8 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000001e00)={&(0x7f0000001dc0)='./file0\x00', 0x0, 0x10}, 0x10)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000001e80)=@bpf_lsm={0x1d, 0x2, &(0x7f0000000700)=@raw=[@map_idx={0x18, 0x4}], &(0x7f0000002340)='GPL\x00', 0x5, 0x33, &(0x7f0000002380)=""/51, 0x41100, 0x2, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f00000023c0)={0x5, 0x4}, 0x8, 0x10, &(0x7f0000002400)={0x3, 0xa, 0x6, 0xae2e}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000002500)=[r0, r8, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}, 0x80)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={0xffffffffffffffff, 0x18000000000002a0, 0x0, 0x0, &(0x7f00000001c0), 0x0, 0x0, 0xe8030000, 0x0, 0x0, 0x0, 0x0}, 0x48)
ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x89f2, &(0x7f0000000080)='ip6tnl0\x00')
socketpair(0x1e, 0x5, 0x20, &(0x7f0000000600))
socketpair(0x1, 0x1, 0x0, &(0x7f0000000740)={0xffffffffffffffff, <r9=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r9, 0x89f1, &(0x7f0000000080))
close(r3)

21:26:13 executing program 0:
openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0)
openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r0 = openat$cgroup_int(0xffffffffffffffff, &(0x7f00000000c0)='memory.max\x00', 0x2, 0x0)
getpid()
r1 = bpf$ITER_CREATE(0x21, &(0x7f0000000340), 0x8)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='blkio.bfq.io_service_time\x00', 0x26e1, 0x0)
write$cgroup_int(r2, &(0x7f0000000040), 0x12)
close(r2)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000280)='host1x_cdma_push_wide\x00', r1}, 0x10)
write$cgroup_int(r0, &(0x7f0000000040), 0x12)

21:26:13 executing program 3:
openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0)
openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
perf_event_open(0x0, 0xffffffffffffffff, 0xb, 0xffffffffffffffff, 0x0)
getpid()
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x1f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='blkio.bfq.io_service_time\x00', 0x26e1, 0x0)
write$cgroup_int(r0, &(0x7f0000000040), 0x12)
close(r0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000280)='host1x_cdma_push_wide\x00'}, 0x10)
write$cgroup_int(0xffffffffffffffff, &(0x7f0000000040), 0x12)

21:26:13 executing program 4:
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_int(r0, &(0x7f00000000c0)='memory.max\x00', 0x2, 0x0)
getpid()
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x1f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000300)='cpuacct.usage_all\x00', 0x0, 0x0)
bpf$ITER_CREATE(0x21, &(0x7f00000002c0)={r2}, 0x8)
getpid()
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='blkio.bfq.io_service_time\x00', 0x26e1, 0x0)
write$cgroup_int(r3, &(0x7f0000000040), 0x12)
close(r3)
syz_open_procfs$namespace(0x0, 0x0)
write$cgroup_int(r1, &(0x7f0000000040), 0x12)

[ 2704.126476][T32104] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=1, oom_score_adj=0
[ 2704.146718][T10995] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2704.191283][T32104] CPU: 1 PID: 32104 Comm: syz-executor.0 Not tainted 6.2.0-rc2-syzkaller-00431-g0164776a2ce7 #0
[ 2704.201763][T32104] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 2704.211928][T32104] Call Trace:
[ 2704.215221][T32104]  <TASK>
[ 2704.218178][T32104]  dump_stack_lvl+0xd1/0x138
[ 2704.222817][T32104]  dump_header+0x10b/0x85f
[ 2704.227278][T32104]  oom_kill_process.cold+0x10/0x15
[ 2704.232422][T32104]  out_of_memory+0x35c/0x14a0
[ 2704.237309][T32104]  ? find_held_lock+0x2d/0x110
[ 2704.242123][T32104]  ? oom_killer_disable+0x280/0x280
[ 2704.247361][T32104]  ? find_held_lock+0x2d/0x110
[ 2704.252177][T32104]  mem_cgroup_out_of_memory+0x206/0x270
[ 2704.257749][T32104]  ? mem_cgroup_margin+0x130/0x130
[ 2704.262868][T32104]  ? lock_downgrade+0x6e0/0x6e0
[ 2704.267743][T32104]  try_charge_memcg+0xefb/0x12f0
[ 2704.272702][T32104]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 2704.278691][T32104]  ? get_mem_cgroup_from_objcg+0xa1/0x260
[ 2704.284420][T32104]  ? lock_downgrade+0x6e0/0x6e0
[ 2704.289280][T32104]  ? lock_downgrade+0x6e0/0x6e0
[ 2704.294135][T32104]  ? rcu_read_unlock+0x9/0x60
[ 2704.298842][T32104]  obj_cgroup_charge+0x2af/0x5e0
[ 2704.303802][T32104]  ? copy_process+0x3aa/0x7520
[ 2704.308570][T32104]  kmem_cache_alloc_node+0xb7/0x460
[ 2704.313782][T32104]  copy_process+0x3aa/0x7520
[ 2704.318379][T32104]  ? _raw_spin_unlock+0x28/0x40
[ 2704.323246][T32104]  ? wp_page_reuse+0x197/0x570
[ 2704.328023][T32104]  ? do_wp_page+0x844/0x3370
[ 2704.332633][T32104]  ? __cleanup_sighand+0xb0/0xb0
[ 2704.337592][T32104]  ? finish_mkwrite_fault+0x3d0/0x3d0
[ 2704.342987][T32104]  ? rwlock_bug.part.0+0x90/0x90
[ 2704.347934][T32104]  ? lock_chain_count+0x20/0x20
[ 2704.352818][T32104]  kernel_clone+0xeb/0x990
[ 2704.357263][T32104]  ? create_io_thread+0xf0/0xf0
[ 2704.362143][T32104]  ? find_held_lock+0x2d/0x110
[ 2704.366935][T32104]  __do_sys_clone+0xba/0x100
[ 2704.371537][T32104]  ? kernel_clone+0x990/0x990
[ 2704.376241][T32104]  ? syscall_enter_from_user_mode+0x26/0xb0
[ 2704.382154][T32104]  do_syscall_64+0x39/0xb0
[ 2704.386588][T32104]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2704.392494][T32104] RIP: 0033:0x7f5dcec89dfb
[ 2704.396913][T32104] Code: ed 0f 85 60 01 00 00 64 4c 8b 0c 25 10 00 00 00 45 31 c0 4d 8d 91 d0 02 00 00 31 d2 31 f6 bf 11 00 20 01 b8 38 00 00 00 0f 05 <48> 3d 00 f0 ff ff 0f 87 89 00 00 00 41 89 c5 85 c0 0f 85 90 00 00
[ 2704.416522][T32104] RSP: 002b:00007ffe52cc8290 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[ 2704.424939][T32104] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f5dcec89dfb
[ 2704.432910][T32104] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011
[ 2704.440881][T32104] RBP: 0000000000000001 R08: 0000000000000000 R09: 00005555569a9400
[ 2704.448864][T32104] R10: 00005555569a96d0 R11: 0000000000000246 R12: 0000000000000001
[ 2704.456848][T32104] R13: 0000000000000000 R14: 0000000000000001 R15: 00007ffe52cc8370
[ 2704.464862][T32104]  </TASK>
[ 2704.550547][T32104] memory: usage 10328kB, limit 0kB, failcnt 677
[ 2704.558549][T32104] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2704.573436][T32104] Memory cgroup stats for /syz0:
[ 2704.573659][T32104] anon 45056
[ 2704.573659][T32104] file 10448896
[ 2704.573659][T32104] kernel 81920
[ 2704.573659][T32104] kernel_stack 0
[ 2704.573659][T32104] pagetables 8192
[ 2704.573659][T32104] sec_pagetables 0
[ 2704.573659][T32104] percpu 0
[ 2704.573659][T32104] sock 0
[ 2704.573659][T32104] vmalloc 0
[ 2704.573659][T32104] shmem 10448896
[ 2704.573659][T32104] zswap 0
[ 2704.573659][T32104] zswapped 0
[ 2704.573659][T32104] file_mapped 315392
[ 2704.573659][T32104] file_dirty 0
[ 2704.573659][T32104] file_writeback 0
[ 2704.573659][T32104] swapcached 0
[ 2704.573659][T32104] anon_thp 0
[ 2704.573659][T32104] file_thp 0
[ 2704.573659][T32104] shmem_thp 0
[ 2704.573659][T32104] inactive_anon 45056
[ 2704.573659][T32104] active_anon 10448896
[ 2704.573659][T32104] inactive_file 0
[ 2704.573659][T32104] active_file 0
[ 2704.573659][T32104] unevictable 0
[ 2704.573659][T32104] slab_reclaimable 29904
[ 2704.573659][T32104] slab_unreclaimable 32296
[ 2704.573659][T32104] slab 62200
21:26:13 executing program 2:
openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0)
openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_int(r0, &(0x7f00000000c0)='memory.max\x00', 0x2, 0x0)
r2 = bpf$ITER_CREATE(0x21, &(0x7f0000000340), 0x8)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='blkio.bfq.io_service_time\x00', 0x26e1, 0x0)
write$cgroup_int(r3, &(0x7f0000000040), 0x12)
close(0xffffffffffffffff)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000280)='host1x_cdma_push_wide\x00', r2}, 0x10)
syz_open_procfs$namespace(0x0, 0x0)
write$cgroup_int(r1, &(0x7f0000000040), 0x12)

[ 2704.854240][T10995] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2704.945655][T32104] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=32104,uid=0
[ 2705.005538][T32104] Memory cgroup out of memory: Killed process 32104 (syz-executor.0) total-vm:50568kB, anon-rss:364kB, file-rss:9088kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:0
[ 2705.050429][T32142] syz-executor.5 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=1, oom_score_adj=0
[ 2705.065103][T10995] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2705.095335][T32142] CPU: 0 PID: 32142 Comm: syz-executor.5 Not tainted 6.2.0-rc2-syzkaller-00431-g0164776a2ce7 #0
[ 2705.105813][T32142] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 2705.115898][T32142] Call Trace:
[ 2705.119211][T32142]  <TASK>
[ 2705.122175][T32142]  dump_stack_lvl+0xd1/0x138
[ 2705.126817][T32142]  dump_header+0x10b/0x85f
[ 2705.131279][T32142]  oom_kill_process.cold+0x10/0x15
[ 2705.136432][T32142]  out_of_memory+0x35c/0x14a0
[ 2705.141152][T32142]  ? oom_killer_disable+0x280/0x280
[ 2705.146400][T32142]  ? find_held_lock+0x2d/0x110
[ 2705.151215][T32142]  mem_cgroup_out_of_memory+0x206/0x270
[ 2705.156798][T32142]  ? mem_cgroup_margin+0x130/0x130
[ 2705.161939][T32142]  ? lock_downgrade+0x6e0/0x6e0
[ 2705.166837][T32142]  try_charge_memcg+0xefb/0x12f0
[ 2705.171815][T32142]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 2705.177836][T32142]  ? get_mem_cgroup_from_objcg+0xa1/0x260
[ 2705.183588][T32142]  ? lock_downgrade+0x6e0/0x6e0
[ 2705.188453][T32142]  ? lock_downgrade+0x6e0/0x6e0
[ 2705.193323][T32142]  ? rcu_read_unlock+0x9/0x60
[ 2705.198047][T32142]  obj_cgroup_charge+0x2af/0x5e0
[ 2705.203022][T32142]  ? copy_process+0x3aa/0x7520
[ 2705.207814][T32142]  kmem_cache_alloc_node+0xb7/0x460
[ 2705.213040][T32142]  copy_process+0x3aa/0x7520
[ 2705.217652][T32142]  ? _raw_spin_unlock+0x28/0x40
[ 2705.222520][T32142]  ? wp_page_reuse+0x197/0x570
[ 2705.227302][T32142]  ? do_wp_page+0x844/0x3370
[ 2705.231915][T32142]  ? __cleanup_sighand+0xb0/0xb0
[ 2705.236862][T32142]  ? finish_mkwrite_fault+0x3d0/0x3d0
[ 2705.242253][T32142]  ? rwlock_bug.part.0+0x90/0x90
[ 2705.247198][T32142]  ? lock_chain_count+0x20/0x20
[ 2705.252061][T32142]  kernel_clone+0xeb/0x990
[ 2705.256525][T32142]  ? create_io_thread+0xf0/0xf0
[ 2705.261390][T32142]  ? find_held_lock+0x2d/0x110
[ 2705.266182][T32142]  __do_sys_clone+0xba/0x100
[ 2705.270799][T32142]  ? kernel_clone+0x990/0x990
[ 2705.275778][T32142]  ? syscall_enter_from_user_mode+0x26/0xb0
[ 2705.281702][T32142]  do_syscall_64+0x39/0xb0
[ 2705.286140][T32142]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2705.292132][T32142] RIP: 0033:0x7f26aba89dfb
[ 2705.296561][T32142] Code: ed 0f 85 60 01 00 00 64 4c 8b 0c 25 10 00 00 00 45 31 c0 4d 8d 91 d0 02 00 00 31 d2 31 f6 bf 11 00 20 01 b8 38 00 00 00 0f 05 <48> 3d 00 f0 ff ff 0f 87 89 00 00 00 41 89 c5 85 c0 0f 85 90 00 00
[ 2705.316172][T32142] RSP: 002b:00007ffc9ada72b0 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[ 2705.324596][T32142] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f26aba89dfb
[ 2705.332569][T32142] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011
[ 2705.340542][T32142] RBP: 0000000000000001 R08: 0000000000000000 R09: 00005555559b6400
[ 2705.348515][T32142] R10: 00005555559b66d0 R11: 0000000000000246 R12: 0000000000000001
[ 2705.356488][T32142] R13: 0000000000000000 R14: 0000000000000001 R15: 00007ffc9ada7390
[ 2705.364481][T32142]  </TASK>
[ 2705.379752][T32142] memory: usage 10328kB, limit 0kB, failcnt 781
[ 2705.386050][T32142] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2705.401114][T32142] Memory cgroup stats for /syz5:
[ 2705.401320][T32142] anon 40960
[ 2705.401320][T32142] file 10432512
[ 2705.401320][T32142] kernel 102400
[ 2705.401320][T32142] kernel_stack 0
[ 2705.401320][T32142] pagetables 8192
[ 2705.401320][T32142] sec_pagetables 0
[ 2705.401320][T32142] percpu 64
[ 2705.401320][T32142] sock 0
[ 2705.401320][T32142] vmalloc 0
[ 2705.401320][T32142] shmem 10432512
[ 2705.401320][T32142] zswap 0
[ 2705.401320][T32142] zswapped 0
[ 2705.401320][T32142] file_mapped 233472
[ 2705.401320][T32142] file_dirty 0
[ 2705.401320][T32142] file_writeback 0
[ 2705.401320][T32142] swapcached 0
[ 2705.401320][T32142] anon_thp 0
[ 2705.401320][T32142] file_thp 0
[ 2705.401320][T32142] shmem_thp 0
[ 2705.401320][T32142] inactive_anon 2138112
[ 2705.401320][T32142] active_anon 8335360
[ 2705.401320][T32142] inactive_file 0
[ 2705.401320][T32142] active_file 0
[ 2705.401320][T32142] unevictable 0
[ 2705.401320][T32142] slab_reclaimable 32864
[ 2705.401320][T32142] slab_unreclaimable 44080
[ 2705.401320][T32142] slab 76944
[ 2705.511727][T32142] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz5,mems_allowed=0-1,oom_memcg=/syz5,task_memcg=/syz5,task=syz-executor.5,pid=32142,uid=0
[ 2705.569265][T32142] Memory cgroup out of memory: Killed process 32142 (syz-executor.5) total-vm:50568kB, anon-rss:364kB, file-rss:8960kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:0
[ 2705.628385][T32286] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=0
[ 2705.660338][T32286] CPU: 1 PID: 32286 Comm: syz-executor.2 Not tainted 6.2.0-rc2-syzkaller-00431-g0164776a2ce7 #0
[ 2705.670820][T32286] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 2705.680921][T32286] Call Trace:
[ 2705.684228][T32286]  <TASK>
[ 2705.687183][T32286]  dump_stack_lvl+0xd1/0x138
[ 2705.691822][T32286]  dump_header+0x10b/0x85f
[ 2705.696274][T32286]  oom_kill_process.cold+0x10/0x15
[ 2705.701427][T32286]  out_of_memory+0x35c/0x14a0
[ 2705.706166][T32286]  ? oom_killer_disable+0x280/0x280
[ 2705.711413][T32286]  ? find_held_lock+0x2d/0x110
[ 2705.716239][T32286]  mem_cgroup_out_of_memory+0x206/0x270
[ 2705.721836][T32286]  ? mem_cgroup_margin+0x130/0x130
[ 2705.726994][T32286]  ? lock_downgrade+0x6e0/0x6e0
[ 2705.731915][T32286]  try_charge_memcg+0xefb/0x12f0
[ 2705.736929][T32286]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 2705.743487][T32286]  ? get_mem_cgroup_from_objcg+0xa1/0x260
[ 2705.749253][T32286]  ? lock_downgrade+0x6e0/0x6e0
[ 2705.754620][T32286]  obj_cgroup_charge+0x2af/0x5e0
[ 2705.759600][T32286]  ? vm_area_dup+0x7d/0x380
[ 2705.764153][T32286]  kmem_cache_alloc+0xb5/0x430
[ 2705.768994][T32286]  vm_area_dup+0x7d/0x380
[ 2705.773363][T32286]  ? copy_page_range+0x1dfe/0x3b40
[ 2705.778551][T32286]  ? mas_node_count_gfp+0x88/0x140
[ 2705.783719][T32286]  ? mas_next_nentry+0x610/0xab0
[ 2705.788688][T32286]  ? vm_area_alloc+0x100/0x100
[ 2705.793515][T32286]  ? percpu_counter_add_batch+0xc1/0x180
[ 2705.799191][T32286]  ? __vm_enough_memory+0x188/0x390
[ 2705.804442][T32286]  ? security_vm_enough_memory_mm+0x89/0xb0
[ 2705.810453][T32286]  dup_mmap+0x655/0x10b0
[ 2705.814746][T32286]  ? replace_mm_exe_file+0x4b0/0x4b0
[ 2705.820071][T32286]  ? lock_downgrade+0x6e0/0x6e0
[ 2705.824971][T32286]  ? _raw_spin_unlock_irqrestore+0x54/0x70
[ 2705.830845][T32286]  ? mm_init+0x8e0/0xc10
[ 2705.835131][T32286]  copy_process+0x440f/0x7520
[ 2705.839841][T32286]  ? _raw_spin_unlock+0x28/0x40
[ 2705.844737][T32286]  ? wp_page_reuse+0x197/0x570
[ 2705.849563][T32286]  ? __cleanup_sighand+0xb0/0xb0
[ 2705.854557][T32286]  ? finish_mkwrite_fault+0x3d0/0x3d0
[ 2705.860009][T32286]  ? rwlock_bug.part.0+0x90/0x90
[ 2705.864979][T32286]  ? lock_chain_count+0x20/0x20
[ 2705.869862][T32286]  kernel_clone+0xeb/0x990
[ 2705.874315][T32286]  ? create_io_thread+0xf0/0xf0
[ 2705.879206][T32286]  ? find_held_lock+0x2d/0x110
[ 2705.884017][T32286]  __do_sys_clone+0xba/0x100
[ 2705.888650][T32286]  ? kernel_clone+0x990/0x990
[ 2705.893388][T32286]  ? syscall_enter_from_user_mode+0x26/0xb0
[ 2705.899347][T32286]  do_syscall_64+0x39/0xb0
[ 2705.903808][T32286]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2705.909739][T32286] RIP: 0033:0x7f099b889dfb
[ 2705.914186][T32286] Code: ed 0f 85 60 01 00 00 64 4c 8b 0c 25 10 00 00 00 45 31 c0 4d 8d 91 d0 02 00 00 31 d2 31 f6 bf 11 00 20 01 b8 38 00 00 00 0f 05 <48> 3d 00 f0 ff ff 0f 87 89 00 00 00 41 89 c5 85 c0 0f 85 90 00 00
[ 2705.933998][T32286] RSP: 002b:00007ffefbe42e40 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[ 2705.942455][T32286] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f099b889dfb
[ 2705.950486][T32286] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011
[ 2705.958482][T32286] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000555557093400
[ 2705.966498][T32286] R10: 00005555570936d0 R11: 0000000000000246 R12: 0000000000000001
[ 2705.974501][T32286] R13: 0000000000000000 R14: 0000000000000001 R15: 00007ffefbe42f20
[ 2705.982534][T32286]  </TASK>
21:26:15 executing program 0:
openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0)
openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r0 = openat$cgroup_int(0xffffffffffffffff, &(0x7f00000000c0)='memory.max\x00', 0x2, 0x0)
getpid()
r1 = bpf$ITER_CREATE(0x21, &(0x7f0000000340), 0x8)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='blkio.bfq.io_service_time\x00', 0x26e1, 0x0)
write$cgroup_int(r2, &(0x7f0000000040), 0x12)
close(r2)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000280)='host1x_cdma_push_wide\x00', r1}, 0x10)
write$cgroup_int(r0, &(0x7f0000000040), 0x12)

[ 2706.099897][T10995] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
21:26:15 executing program 0:
openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0)
openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r0 = openat$cgroup_int(0xffffffffffffffff, &(0x7f00000000c0)='memory.max\x00', 0x2, 0x0)
getpid()
r1 = bpf$ITER_CREATE(0x21, &(0x7f0000000340), 0x8)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='blkio.bfq.io_service_time\x00', 0x26e1, 0x0)
write$cgroup_int(r2, &(0x7f0000000040), 0x12)
close(r2)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000280)='host1x_cdma_push_wide\x00', r1}, 0x10)
write$cgroup_int(r0, &(0x7f0000000040), 0x12)

[ 2706.316964][T32286] memory: usage 10380kB, limit 0kB, failcnt 1102
[ 2706.323870][T32286] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2706.344018][T32286] Memory cgroup stats for /syz2:
[ 2706.344205][T32286] anon 36864
[ 2706.344205][T32286] file 10444800
[ 2706.344205][T32286] kernel 147456
[ 2706.344205][T32286] kernel_stack 32768
[ 2706.344205][T32286] pagetables 8192
[ 2706.344205][T32286] sec_pagetables 0
[ 2706.344205][T32286] percpu 64
[ 2706.344205][T32286] sock 0
[ 2706.344205][T32286] vmalloc 0
[ 2706.344205][T32286] shmem 10440704
[ 2706.344205][T32286] zswap 0
[ 2706.344205][T32286] zswapped 0
[ 2706.344205][T32286] file_mapped 184320
[ 2706.344205][T32286] file_dirty 4096
[ 2706.344205][T32286] file_writeback 0
[ 2706.344205][T32286] swapcached 0
[ 2706.344205][T32286] anon_thp 0
[ 2706.344205][T32286] file_thp 0
[ 2706.344205][T32286] shmem_thp 0
[ 2706.344205][T32286] inactive_anon 36864
21:26:15 executing program 5:
openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0)
openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
perf_event_open(0x0, 0xffffffffffffffff, 0xb, 0xffffffffffffffff, 0x0)
r1 = openat$cgroup_int(r0, &(0x7f00000000c0)='memory.max\x00', 0x2, 0x0)
getpid()
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x1f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000300)='cpuacct.usage_all\x00', 0x0, 0x0)
bpf$ITER_CREATE(0x21, &(0x7f00000002c0)={r2}, 0x8)
getpid()
write$cgroup_int(0xffffffffffffffff, &(0x7f0000000040), 0x12)
close(0xffffffffffffffff)
syz_open_procfs$namespace(0x0, 0x0)
write$cgroup_int(r1, &(0x7f0000000040), 0x12)

[ 2706.344205][T32286] active_anon 10440704
[ 2706.344205][T32286] inactive_file 0
[ 2706.344205][T32286] active_file 4096
[ 2706.344205][T32286] unevictable 0
[ 2706.344205][T32286] slab_reclaimable 37192
[ 2706.344205][T32286] slab_unreclaimable 52296
[ 2706.344205][T32286] slab 89488
[ 2706.446311][T10995] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
21:26:15 executing program 5:
openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0)
openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
perf_event_open(0x0, 0xffffffffffffffff, 0xb, 0xffffffffffffffff, 0x0)
r1 = openat$cgroup_int(r0, &(0x7f00000000c0)='memory.max\x00', 0x2, 0x0)
getpid()
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x1f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000300)='cpuacct.usage_all\x00', 0x0, 0x0)
bpf$ITER_CREATE(0x21, &(0x7f00000002c0)={r2}, 0x8)
getpid()
write$cgroup_int(0xffffffffffffffff, &(0x7f0000000040), 0x12)
close(0xffffffffffffffff)
syz_open_procfs$namespace(0x0, 0x0)
write$cgroup_int(r1, &(0x7f0000000040), 0x12)

[ 2706.768187][T32286] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=32286,uid=0
[ 2706.833382][T32286] Memory cgroup out of memory: Killed process 32286 (syz-executor.2) total-vm:50568kB, anon-rss:364kB, file-rss:8960kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:0
21:26:16 executing program 2:
openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0)
openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_int(r0, &(0x7f00000000c0)='memory.max\x00', 0x2, 0x0)
bpf$ITER_CREATE(0x21, &(0x7f0000000340), 0x8)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='blkio.bfq.io_service_time\x00', 0x26e1, 0x0)
write$cgroup_int(r2, &(0x7f0000000040), 0x12)
close(r2)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_open_procfs$namespace(0x0, 0x0)
write$cgroup_int(r1, &(0x7f0000000040), 0x12)

[ 2707.399463][T17544] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 2707.413408][T17544] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 2707.424860][T17544] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 2707.439588][T17544] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
21:26:16 executing program 2:
openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0)
openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_int(r0, &(0x7f00000000c0)='memory.max\x00', 0x2, 0x0)
bpf$ITER_CREATE(0x21, &(0x7f0000000340), 0x8)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='blkio.bfq.io_service_time\x00', 0x26e1, 0x0)
write$cgroup_int(r2, &(0x7f0000000040), 0x12)
close(r2)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_open_procfs$namespace(0x0, 0x0)
write$cgroup_int(r1, &(0x7f0000000040), 0x12)

[ 2707.447986][T17544] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 2708.055661][ T5120] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 2708.070455][ T5120] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 2708.080682][ T5120] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 2708.100397][ T5120] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[ 2708.119590][ T5120] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 2708.240883][T32479] chnl_net:caif_netlink_parms(): no params data found
[ 2708.662433][T32479] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2708.670944][T32479] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2708.709575][T32479] device bridge_slave_0 entered promiscuous mode
[ 2708.750433][T32479] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2708.757569][T32479] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2708.780778][T32479] device bridge_slave_1 entered promiscuous mode
[ 2708.870522][T14879] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 2708.879917][T14879] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 2708.884275][T32479] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 2708.889002][T14879] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 2708.912655][T14879] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[ 2708.929207][T17544] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 2708.975687][T32479] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 2709.091994][T10995] device hsr_slave_0 left promiscuous mode
[ 2709.124553][T10995] device hsr_slave_1 left promiscuous mode
[ 2709.151038][T10995] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 2709.179016][T10995] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 2709.201322][T10995] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 2709.208982][T10995] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 2709.218494][T10995] device bridge_slave_1 left promiscuous mode
[ 2709.229202][T10995] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2709.238381][T10995] device bridge_slave_0 left promiscuous mode
[ 2709.255050][T10995] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2709.281854][T10995] device hsr_slave_0 left promiscuous mode
[ 2709.299031][T10995] device hsr_slave_1 left promiscuous mode
[ 2709.306509][T10995] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 2709.329131][T10995] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 2709.338706][T10995] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 2709.346785][T10995] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 2709.392076][T10995] device bridge_slave_1 left promiscuous mode
[ 2709.398324][T10995] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2709.420219][T10995] device bridge_slave_0 left promiscuous mode
[ 2709.426476][T10995] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2709.456995][ T5120] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[ 2709.477949][ T5120] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[ 2709.486618][ T5120] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[ 2709.495197][ T5120] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[ 2709.504073][ T5120] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[ 2709.513052][ T5120] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[ 2709.513081][T10995] device veth1_macvtap left promiscuous mode
[ 2709.539337][T14879] Bluetooth: hci0: command 0x0409 tx timeout
[ 2709.561734][T10995] device veth0_macvtap left promiscuous mode
[ 2709.568519][T10995] device veth1_vlan left promiscuous mode
[ 2709.575829][T10995] device veth0_vlan left promiscuous mode
[ 2709.585429][T10995] device veth1_macvtap left promiscuous mode
[ 2709.592008][T10995] device veth0_macvtap left promiscuous mode
[ 2709.598147][T10995] device veth1_vlan left promiscuous mode
[ 2709.604491][T10995] device veth0_vlan left promiscuous mode
[ 2710.081612][T14879] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[ 2710.094116][T14879] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[ 2710.108160][T14879] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[ 2710.116692][T14879] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[ 2710.125786][T14879] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[ 2710.169068][T14879] Bluetooth: hci2: command 0x0409 tx timeout
[ 2710.223404][T10995] team0 (unregistering): Port device team_slave_1 removed
[ 2710.235790][T10995] team0 (unregistering): Port device team_slave_0 removed
[ 2710.247611][T10995] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 2710.267786][T10995] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 2710.341821][T10995] bond0 (unregistering): Released all slaves
[ 2710.493284][T10995] team0 (unregistering): Port device team_slave_1 removed
[ 2710.507325][T10995] team0 (unregistering): Port device team_slave_0 removed
[ 2710.523578][T10995] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 2710.539465][T10995] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 2710.619013][T10995] bond0 (unregistering): Released all slaves
[ 2710.694189][T32479] team0: Port device team_slave_0 added
[ 2710.726057][T32479] team0: Port device team_slave_1 added
[ 2710.744340][T32493] chnl_net:caif_netlink_parms(): no params data found
[ 2710.832057][T32479] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 2710.848838][T32479] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2710.885366][T32479] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 2710.926001][T32479] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 2710.935760][T32479] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2710.962931][T32479] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 2710.973634][T14879] Bluetooth: hci3: command 0x0409 tx timeout
[ 2711.190728][T32479] device hsr_slave_0 entered promiscuous mode
[ 2711.203550][T32479] device hsr_slave_1 entered promiscuous mode
[ 2711.244625][T32493] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2711.251917][T32493] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2711.260681][T32493] device bridge_slave_0 entered promiscuous mode
[ 2711.304602][T32493] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2711.325562][T32493] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2711.355615][T32493] device bridge_slave_1 entered promiscuous mode
[ 2711.464788][T32504] chnl_net:caif_netlink_parms(): no params data found
[ 2711.512490][T32493] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 2711.600879][T32493] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 2711.610270][T17544] Bluetooth: hci0: command 0x041b tx timeout
[ 2711.616962][T17544] Bluetooth: hci4: command 0x0409 tx timeout
[ 2711.765313][T32530] chnl_net:caif_netlink_parms(): no params data found
[ 2711.824108][T32493] team0: Port device team_slave_0 added
[ 2711.985987][T32493] team0: Port device team_slave_1 added
[ 2712.055125][T32519] chnl_net:caif_netlink_parms(): no params data found
[ 2712.082802][T32504] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2712.103328][T32504] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2712.129476][T32504] device bridge_slave_0 entered promiscuous mode
[ 2712.168949][T17544] Bluetooth: hci5: command 0x0409 tx timeout
[ 2712.248978][T17544] Bluetooth: hci2: command 0x041b tx timeout
[ 2712.319226][T32504] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2712.326369][T32504] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2712.336596][T32504] device bridge_slave_1 entered promiscuous mode
[ 2712.420468][T32493] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 2712.427458][T32493] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2712.496863][T32493] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 2712.514391][T32493] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 2712.521457][T32493] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2712.578846][T32493] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 2712.936520][T32530] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2712.947370][T32530] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2712.990083][T32530] device bridge_slave_0 entered promiscuous mode
[ 2713.011818][T32504] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 2713.049502][T17544] Bluetooth: hci3: command 0x041b tx timeout
[ 2713.093279][T32530] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2713.102043][T32530] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2713.111422][T32530] device bridge_slave_1 entered promiscuous mode
[ 2713.131222][ T1211] ieee802154 phy0 wpan0: encryption failed: -22
[ 2713.137571][ T1211] ieee802154 phy1 wpan1: encryption failed: -22
21:26:22 executing program 1:
r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0)
perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x6, 0x401}, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000180)={0x0, 0x80, 0x0, 0x7c, 0x4, 0xd2, 0x0, 0x5, 0x0, 0x74d4e3ef7733d4ea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x26, 0x0, @perf_bp={0x0}, 0x210, 0x0, 0x1f, 0x3, 0x0, 0x0, 0xffff}, 0x0, 0x0, 0xffffffffffffffff, 0x9)
perf_event_open(&(0x7f0000000200)={0x4, 0x80, 0x9, 0x0, 0x0, 0x5, 0x0, 0xffffffff, 0x800, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x2, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x2, 0x2, @perf_bp={&(0x7f0000000100), 0x5}, 0x0, 0x100000000, 0x2a, 0x0, 0x8, 0x40, 0x0, 0x0, 0x3f, 0x0, 0x4000000000000000}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
recvmsg(0xffffffffffffffff, 0x0, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f00000002c0)='cpuacct.usage_percpu_sys\x00', 0x0, 0x0)
perf_event_open$cgroup(&(0x7f00000003c0)={0x4, 0x80, 0x1, 0xff, 0x1, 0x5, 0x0, 0x800000000000008, 0x21001, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x3, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0xffff0000, 0x4, @perf_bp={&(0x7f0000000380), 0x8}, 0x40ae, 0xe, 0x78d8, 0x5, 0x7, 0x7, 0x1ff}, 0xffffffffffffffff, 0xc, r0, 0xc)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000018c00)={0x18, 0x3, &(0x7f0000000780)=ANY=[@ANYBLOB="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"], &(0x7f0000000440)='syzkaller\x00', 0x4, 0xb0, &(0x7f0000000480)=""/176, 0x0, 0x0, '\x00', 0x0, 0x0, r1, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
r3 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='rcu_utilization\x00', r2}, 0x10)
r4 = perf_event_open$cgroup(&(0x7f0000000080)={0x4, 0x80, 0x81, 0x5, 0x6, 0x0, 0x0, 0x8000000000000000, 0x848, 0x4, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x3, 0x0, @perf_config_ext={0x912410d}, 0x8800, 0xffffffff, 0x7, 0x6, 0x3f, 0x7, 0x8dd, 0x0, 0x5, 0x0, 0x1}, 0xffffffffffffffff, 0xb, 0xffffffffffffffff, 0x9)
ioctl$PERF_EVENT_IOC_SET_OUTPUT(0xffffffffffffffff, 0x2405, r4)
r5 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000540)='./cgroup.cpu/syz1\x00', 0x200002, 0x0)
openat$cgroup_ro(r5, &(0x7f0000000640)='cgroup.stat\x00', 0x0, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r4, 0x40082404, &(0x7f0000000580)=0xffffffffffffff7f)
r6 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000000)='cpuacct.usage_percpu_sys\x00', 0x26e1, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r6, 0x40086607, &(0x7f0000000040))
r7 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x26e1, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000018c00)={0x18, 0x3, &(0x7f0000000300)=ANY=[@ANYRES64=r1], 0x0, 0x4, 0xb0, &(0x7f0000000480)=""/176, 0x40f00, 0x5, '\x00', 0x0, 0x0, r7, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x0, 0x204d, &(0x7f00000005c0)=ANY=[@ANYRES32], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x18, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000740)={0x0, 0x3}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000002c0)=[0xffffffffffffffff, r7, 0xffffffffffffffff]}, 0x80)
write$cgroup_int(r7, &(0x7f0000000280)=0x1ff, 0x12)
r8 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000001e00)={&(0x7f0000001dc0)='./file0\x00', 0x0, 0x10}, 0x10)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000001e80)=@bpf_lsm={0x1d, 0x2, &(0x7f0000000700)=@raw=[@map_idx={0x18, 0x4}], &(0x7f0000002340)='GPL\x00', 0x5, 0x33, &(0x7f0000002380)=""/51, 0x41100, 0x2, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f00000023c0)={0x5, 0x4}, 0x8, 0x10, &(0x7f0000002400)={0x3, 0xa, 0x6, 0xae2e}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000002500)=[r0, r8, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}, 0x80)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={0xffffffffffffffff, 0x18000000000002a0, 0x0, 0x0, &(0x7f00000001c0), 0x0, 0x0, 0xe8030000, 0x0, 0x0, 0x0, 0x0}, 0x48)
ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x89f2, &(0x7f0000000080)='ip6tnl0\x00')
socketpair(0x1e, 0x5, 0x20, &(0x7f0000000600))
socketpair(0x1, 0x1, 0x0, &(0x7f0000000740)={0xffffffffffffffff, <r9=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r9, 0x89f1, &(0x7f0000000080))
close(r3)

[ 2713.145057][T32504] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 2713.166372][T32493] device hsr_slave_0 entered promiscuous mode
[ 2713.177887][T32493] device hsr_slave_1 entered promiscuous mode
[ 2713.219730][T32493] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 2713.227338][T32493] Cannot create hsr debugfs directory
21:26:22 executing program 1:
r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0)
perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x6, 0x401}, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000180)={0x0, 0x80, 0x0, 0x7c, 0x4, 0xd2, 0x0, 0x5, 0x0, 0x74d4e3ef7733d4ea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x26, 0x0, @perf_bp={0x0}, 0x210, 0x0, 0x1f, 0x3, 0x0, 0x0, 0xffff}, 0x0, 0x0, 0xffffffffffffffff, 0x9)
perf_event_open(&(0x7f0000000200)={0x4, 0x80, 0x9, 0x0, 0x0, 0x5, 0x0, 0xffffffff, 0x800, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x2, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x2, 0x2, @perf_bp={&(0x7f0000000100), 0x5}, 0x0, 0x100000000, 0x2a, 0x0, 0x8, 0x40, 0x0, 0x0, 0x3f, 0x0, 0x4000000000000000}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
recvmsg(0xffffffffffffffff, 0x0, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f00000002c0)='cpuacct.usage_percpu_sys\x00', 0x0, 0x0)
perf_event_open$cgroup(&(0x7f00000003c0)={0x4, 0x80, 0x1, 0xff, 0x1, 0x5, 0x0, 0x800000000000008, 0x21001, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x3, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0xffff0000, 0x4, @perf_bp={&(0x7f0000000380), 0x8}, 0x40ae, 0xe, 0x78d8, 0x5, 0x7, 0x7, 0x1ff}, 0xffffffffffffffff, 0xc, r0, 0xc)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000018c00)={0x18, 0x3, &(0x7f0000000780)=ANY=[@ANYBLOB="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"], &(0x7f0000000440)='syzkaller\x00', 0x4, 0xb0, &(0x7f0000000480)=""/176, 0x0, 0x0, '\x00', 0x0, 0x0, r1, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
r3 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='rcu_utilization\x00', r2}, 0x10)
r4 = perf_event_open$cgroup(&(0x7f0000000080)={0x4, 0x80, 0x81, 0x5, 0x6, 0x0, 0x0, 0x8000000000000000, 0x848, 0x4, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x3, 0x0, @perf_config_ext={0x912410d}, 0x8800, 0xffffffff, 0x7, 0x6, 0x3f, 0x7, 0x8dd, 0x0, 0x5, 0x0, 0x1}, 0xffffffffffffffff, 0xb, 0xffffffffffffffff, 0x9)
ioctl$PERF_EVENT_IOC_SET_OUTPUT(0xffffffffffffffff, 0x2405, r4)
r5 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000540)='./cgroup.cpu/syz1\x00', 0x200002, 0x0)
openat$cgroup_ro(r5, &(0x7f0000000640)='cgroup.stat\x00', 0x0, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r4, 0x40082404, &(0x7f0000000580)=0xffffffffffffff7f)
r6 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000000)='cpuacct.usage_percpu_sys\x00', 0x26e1, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r6, 0x40086607, &(0x7f0000000040))
r7 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x26e1, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000018c00)={0x18, 0x3, &(0x7f0000000300)=ANY=[@ANYRES64=r1], 0x0, 0x4, 0xb0, &(0x7f0000000480)=""/176, 0x40f00, 0x5, '\x00', 0x0, 0x0, r7, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x0, 0x204d, &(0x7f00000005c0)=ANY=[@ANYRES32], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x18, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000740)={0x0, 0x3}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000002c0)=[0xffffffffffffffff, r7, 0xffffffffffffffff]}, 0x80)
write$cgroup_int(r7, &(0x7f0000000280)=0x1ff, 0x12)
r8 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000001e00)={&(0x7f0000001dc0)='./file0\x00', 0x0, 0x10}, 0x10)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000001e80)=@bpf_lsm={0x1d, 0x2, &(0x7f0000000700)=@raw=[@map_idx={0x18, 0x4}], &(0x7f0000002340)='GPL\x00', 0x5, 0x33, &(0x7f0000002380)=""/51, 0x41100, 0x2, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f00000023c0)={0x5, 0x4}, 0x8, 0x10, &(0x7f0000002400)={0x3, 0xa, 0x6, 0xae2e}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000002500)=[r0, r8, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}, 0x80)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={0xffffffffffffffff, 0x18000000000002a0, 0x0, 0x0, &(0x7f00000001c0), 0x0, 0x0, 0xe8030000, 0x0, 0x0, 0x0, 0x0}, 0x48)
ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x89f2, &(0x7f0000000080)='ip6tnl0\x00')
socketpair(0x1e, 0x5, 0x20, &(0x7f0000000600))
socketpair(0x1, 0x1, 0x0, &(0x7f0000000740)={0xffffffffffffffff, <r9=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r9, 0x89f1, &(0x7f0000000080))
close(r3)

[ 2713.500707][T32519] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2713.539037][T32519] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2713.549709][T32519] device bridge_slave_0 entered promiscuous mode
[ 2713.688996][T17544] Bluetooth: hci4: command 0x041b tx timeout
[ 2713.695078][T17544] Bluetooth: hci0: command 0x040f tx timeout
[ 2713.740398][T32504] team0: Port device team_slave_0 added
[ 2713.747461][T32519] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2713.771999][T32519] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2713.820205][T32519] device bridge_slave_1 entered promiscuous mode
[ 2713.836458][T32530] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 2713.865126][T32504] team0: Port device team_slave_1 added
[ 2713.976548][T32530] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 2714.066178][T32519] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 2714.110648][T32479] netdevsim netdevsim3 netdevsim0: renamed from eth0
[ 2714.123417][T32519] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 2714.151550][T32504] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 2714.158547][T32504] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2714.187249][T32504] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 2714.215358][T32530] team0: Port device team_slave_0 added
[ 2714.222065][T32479] netdevsim netdevsim3 netdevsim1: renamed from eth1
[ 2714.248913][T17544] Bluetooth: hci5: command 0x041b tx timeout
[ 2714.258384][T32504] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 2714.265653][T32504] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2714.294361][T32504] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 2714.313462][T32530] team0: Port device team_slave_1 added
[ 2714.328627][T32479] netdevsim netdevsim3 netdevsim2: renamed from eth2
[ 2714.338879][T17544] Bluetooth: hci2: command 0x040f tx timeout
[ 2714.392995][T32479] netdevsim netdevsim3 netdevsim3: renamed from eth3
[ 2714.407038][T32519] team0: Port device team_slave_0 added
[ 2714.417860][T32519] team0: Port device team_slave_1 added
[ 2714.500773][T32530] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 2714.507770][T32530] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2714.547007][T32530] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 2714.620233][T32530] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 2714.627414][T32530] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2714.655972][T32530] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 2714.690068][T32519] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 2714.697061][T32519] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2714.724111][T32519] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 2714.740581][T32504] device hsr_slave_0 entered promiscuous mode
[ 2714.757360][T32504] device hsr_slave_1 entered promiscuous mode
[ 2714.791603][T32504] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 2714.807243][T32504] Cannot create hsr debugfs directory
[ 2715.120862][T10995] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2715.132619][T17544] Bluetooth: hci3: command 0x040f tx timeout
[ 2715.202738][T32519] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 2715.218836][T32519] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2715.308876][T32519] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 2715.768904][T17544] Bluetooth: hci0: command 0x0419 tx timeout
[ 2715.773076][T14879] Bluetooth: hci4: command 0x040f tx timeout
[ 2715.823021][T10995] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2716.065256][T32530] device hsr_slave_0 entered promiscuous mode
[ 2716.099357][T32530] device hsr_slave_1 entered promiscuous mode
[ 2716.118901][T32530] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 2716.127280][T32530] Cannot create hsr debugfs directory
[ 2716.199869][T10995] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2716.339808][T14879] Bluetooth: hci5: command 0x040f tx timeout
[ 2716.419151][T14879] Bluetooth: hci2: command 0x0419 tx timeout
[ 2716.560133][T10995] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
21:26:25 executing program 1:
r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0)
perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x6, 0x401}, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
perf_event_open(&(0x7f0000000200)={0x4, 0x80, 0x9, 0x0, 0x0, 0x5, 0x0, 0xffffffff, 0x800, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x2, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x2, 0x2, @perf_bp={&(0x7f0000000100), 0x5}, 0x0, 0x100000000, 0x2a, 0x0, 0x8, 0x40, 0x0, 0x0, 0x3f, 0x0, 0x4000000000000000}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
recvmsg(0xffffffffffffffff, 0x0, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f00000002c0)='cpuacct.usage_percpu_sys\x00', 0x0, 0x0)
perf_event_open$cgroup(&(0x7f00000003c0)={0x4, 0x80, 0x1, 0xff, 0x1, 0x5, 0x0, 0x800000000000008, 0x21001, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x3, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0xffff0000, 0x4, @perf_bp={&(0x7f0000000380), 0x8}, 0x40ae, 0xe, 0x78d8, 0x5, 0x7, 0x7, 0x1ff}, 0xffffffffffffffff, 0xc, r0, 0xc)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000018c00)={0x18, 0x3, &(0x7f0000000780)=ANY=[@ANYBLOB="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"], &(0x7f0000000440)='syzkaller\x00', 0x4, 0xb0, &(0x7f0000000480)=""/176, 0x0, 0x0, '\x00', 0x0, 0x0, r1, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
r3 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='rcu_utilization\x00', r2}, 0x10)
r4 = perf_event_open$cgroup(&(0x7f0000000080)={0x4, 0x80, 0x81, 0x5, 0x6, 0x0, 0x0, 0x8000000000000000, 0x848, 0x4, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x3, 0x0, @perf_config_ext={0x912410d}, 0x8800, 0xffffffff, 0x7, 0x6, 0x3f, 0x7, 0x8dd, 0x0, 0x5, 0x0, 0x1}, 0xffffffffffffffff, 0xb, 0xffffffffffffffff, 0x9)
ioctl$PERF_EVENT_IOC_SET_OUTPUT(0xffffffffffffffff, 0x2405, r4)
r5 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000540)='./cgroup.cpu/syz1\x00', 0x200002, 0x0)
openat$cgroup_ro(r5, &(0x7f0000000640)='cgroup.stat\x00', 0x0, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r4, 0x40082404, &(0x7f0000000580)=0xffffffffffffff7f)
r6 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000000)='cpuacct.usage_percpu_sys\x00', 0x26e1, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r6, 0x40086607, &(0x7f0000000040))
r7 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x26e1, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000018c00)={0x18, 0x3, &(0x7f0000000300)=ANY=[@ANYRES64=r1], 0x0, 0x4, 0xb0, &(0x7f0000000480)=""/176, 0x40f00, 0x5, '\x00', 0x0, 0x0, r7, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x0, 0x204d, &(0x7f00000005c0)=ANY=[@ANYRES32], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x18, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000740)={0x0, 0x3}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000002c0)=[0xffffffffffffffff, r7, 0xffffffffffffffff]}, 0x80)
write$cgroup_int(r7, &(0x7f0000000280)=0x1ff, 0x12)
r8 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000001e00)={&(0x7f0000001dc0)='./file0\x00', 0x0, 0x10}, 0x10)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000001e80)=@bpf_lsm={0x1d, 0x2, &(0x7f0000000700)=@raw=[@map_idx={0x18, 0x4}], &(0x7f0000002340)='GPL\x00', 0x5, 0x33, &(0x7f0000002380)=""/51, 0x41100, 0x2, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f00000023c0)={0x5, 0x4}, 0x8, 0x10, &(0x7f0000002400)={0x3, 0xa, 0x6, 0xae2e}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000002500)=[r0, r8, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}, 0x80)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={0xffffffffffffffff, 0x18000000000002a0, 0x0, 0x0, &(0x7f00000001c0), 0x0, 0x0, 0xe8030000, 0x0, 0x0, 0x0, 0x0}, 0x48)
ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x89f2, &(0x7f0000000080)='ip6tnl0\x00')
socketpair(0x1e, 0x5, 0x20, &(0x7f0000000600))
socketpair(0x1, 0x1, 0x0, &(0x7f0000000740)={0xffffffffffffffff, <r9=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r9, 0x89f1, &(0x7f0000000080))
close(r3)

[ 2716.627054][T32479] 8021q: adding VLAN 0 to HW filter on device bond0
[ 2716.672408][T32519] device hsr_slave_0 entered promiscuous mode
[ 2716.702530][T32519] device hsr_slave_1 entered promiscuous mode
[ 2716.719645][T32519] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 2716.727259][T32519] Cannot create hsr debugfs directory
[ 2716.879325][T32479] 8021q: adding VLAN 0 to HW filter on device team0
[ 2716.909391][T30559] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 2716.919878][T30559] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 2717.058510][T12179] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 2717.079889][T12179] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 2717.088430][T12179] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2717.095606][T12179] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 2717.114900][T12179] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 2717.137273][T12179] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 2717.159376][T12179] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2717.166515][T12179] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 2717.186949][T12179] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 2717.218933][T14879] Bluetooth: hci3: command 0x0419 tx timeout
[ 2717.242693][T23935] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 2717.259933][T23935] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 2717.269301][T23935] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 2717.283471][T23935] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 2717.311478][T32493] netdevsim netdevsim4 netdevsim0: renamed from eth0
[ 2717.408471][ T9919] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 2717.422999][ T9919] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 2717.441705][ T9919] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 2717.459887][T32493] netdevsim netdevsim4 netdevsim1: renamed from eth1
[ 2717.513746][T32504] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2717.605245][T10995] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2717.662385][T32493] netdevsim netdevsim4 netdevsim2: renamed from eth2
[ 2717.701242][T21233] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 2717.719637][T21233] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 2717.742096][T32479] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 2717.767792][T32504] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2717.808940][T32493] netdevsim netdevsim4 netdevsim3: renamed from eth3
[ 2717.848922][T14879] Bluetooth: hci4: command 0x0419 tx timeout
[ 2717.864043][T10995] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2717.930197][T32504] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2717.978196][T10995] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2718.075341][T32504] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2718.145896][T10995] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2718.377737][T32493] 8021q: adding VLAN 0 to HW filter on device bond0
[ 2718.411878][T14879] Bluetooth: hci5: command 0x0419 tx timeout
[ 2718.456240][T32493] 8021q: adding VLAN 0 to HW filter on device team0
[ 2718.502116][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 2718.511174][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 2718.551977][ T4735] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 2718.561115][ T4735] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 2718.571168][ T4735] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2718.578302][ T4735] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 2718.599290][ T4735] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 2718.608243][ T4735] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 2718.620217][ T4735] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2718.627335][ T4735] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 2718.654406][T21233] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 2718.759254][T30051] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 2718.769146][T30051] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 2718.830098][T30051] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 2718.837659][T30051] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 2718.946985][T30051] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 2718.957246][T30051] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 2719.112328][T32504] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 2719.187540][T32504] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 2719.253416][T32479] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 2719.267712][T17605] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 2719.280598][T17605] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 2719.309545][T17605] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 2719.423987][T32493] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 2719.449747][T32493] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 2719.469807][T32504] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 2719.720112][T12179] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 2719.739342][T12179] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 2719.773548][T32504] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 2719.989259][T17605] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 2720.004997][T17605] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 2720.283600][T17605] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 2720.299712][T17605] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 2720.380535][T32479] device veth0_vlan entered promiscuous mode
[ 2720.388404][T17605] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 2720.409812][T17605] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 2720.454500][T32479] device veth1_vlan entered promiscuous mode
[ 2720.680388][T32530] netdevsim netdevsim2 netdevsim0: renamed from eth0
[ 2720.741642][T30051] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 2720.749343][T30051] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 2720.765702][T32493] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 2720.789669][T32530] netdevsim netdevsim2 netdevsim1: renamed from eth1
[ 2720.885077][T32504] 8021q: adding VLAN 0 to HW filter on device bond0
[ 2720.938858][T24529] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 2720.947587][T24529] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 2720.970552][T32530] netdevsim netdevsim2 netdevsim2: renamed from eth2
[ 2721.004965][T32530] netdevsim netdevsim2 netdevsim3: renamed from eth3
[ 2721.105041][T32479] device veth0_macvtap entered promiscuous mode
[ 2721.164211][T32504] 8021q: adding VLAN 0 to HW filter on device team0
[ 2721.245761][T32479] device veth1_macvtap entered promiscuous mode
[ 2721.253501][T30559] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 2721.262744][T30559] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 2721.289635][T30559] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 2721.297504][T30559] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 2721.411374][T30559] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 2721.426019][T30559] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 2721.441969][T30559] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2721.449152][T30559] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 2721.503814][T30559] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 2721.530119][T30559] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 2721.538614][T30559] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2721.545784][T30559] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 2721.584921][T32479] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2721.618030][T32479] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2721.638892][T32479] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2721.668815][T32479] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2721.688815][T32479] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2721.708786][T32479] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2721.720281][T32479] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2721.743499][T32479] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2721.756629][T32479] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 2721.812819][T23289] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 2721.829625][T23289] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 2721.849578][T23289] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 2721.879901][T23289] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 2721.895023][T23289] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 2721.919838][T23289] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 2721.944182][T32479] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2721.960878][T32479] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2721.988879][T32479] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2722.007138][T32479] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2722.025277][T32479] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2722.038379][T32479] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2722.062767][T32479] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2722.073591][T32479] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2722.102630][T32479] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 2722.156661][T23289] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 2722.165450][T23289] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 2722.188156][T23289] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 2722.198398][T23289] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 2722.209825][T23289] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 2722.218314][T23289] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 2722.227761][T23289] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 2722.236695][T23289] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 2722.261552][T32479] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 2722.282989][T32479] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 2722.292158][T32479] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 2722.306829][T32479] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 2722.321821][T32504] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 2722.420009][T23935] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 2722.439518][T23935] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 2722.497642][T32530] 8021q: adding VLAN 0 to HW filter on device bond0
[ 2722.646267][T32530] 8021q: adding VLAN 0 to HW filter on device team0
[ 2722.665828][T32493] device veth0_vlan entered promiscuous mode
[ 2722.686575][T12179] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 2722.701923][T12179] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 2722.729874][T12179] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 2722.738354][T12179] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 2722.844978][T32493] device veth1_vlan entered promiscuous mode
[ 2722.891473][T12179] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 2722.910990][T12179] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 2722.929101][T12179] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 2722.937424][T12179] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 2722.957704][T12179] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 2722.983419][T12179] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2722.990643][T12179] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 2723.075722][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 2723.089879][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 2723.098683][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 2723.129435][   T22] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2723.136569][   T22] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 2723.159349][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 2723.168340][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 2723.204007][T32519] netdevsim netdevsim5 netdevsim0: renamed from eth0
[ 2723.255763][T23855] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2723.275241][T32519] netdevsim netdevsim5 netdevsim1: renamed from eth1
[ 2723.288221][T23855] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2723.302657][T17605] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 2723.322301][T17605] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 2723.340959][T17605] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 2723.360102][T17605] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 2723.379518][T17605] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 2723.447425][T32519] netdevsim netdevsim5 netdevsim2: renamed from eth2
[ 2723.457843][T17605] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 2723.471121][T17605] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 2723.489983][T17605] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 2723.498472][T17605] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 2723.519429][T32493] device veth0_macvtap entered promiscuous mode
[ 2723.532017][T32530] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 2723.544596][T32519] netdevsim netdevsim5 netdevsim3: renamed from eth3
[ 2723.570029][T24529] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 2723.588360][T24529] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 2723.603079][T24529] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 2723.626345][T23855] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2723.633258][T32493] device veth1_macvtap entered promiscuous mode
[ 2723.638800][T23855] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2723.708673][T10995] device hsr_slave_0 left promiscuous mode
[ 2723.718230][T10995] device hsr_slave_1 left promiscuous mode
[ 2723.738068][T10995] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 2723.778589][T10995] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 2723.801822][T10995] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 2723.826705][T10995] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 2723.846188][T10995] device bridge_slave_1 left promiscuous mode
[ 2723.853461][T10995] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2723.864086][T10995] device bridge_slave_0 left promiscuous mode
[ 2723.872821][T10995] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2723.887716][T10995] device hsr_slave_0 left promiscuous mode
[ 2723.903411][T10995] device hsr_slave_1 left promiscuous mode
[ 2723.920253][T10995] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 2723.927768][T10995] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 2723.958506][T10995] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 2723.966565][T10995] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 2723.977974][T10995] device bridge_slave_1 left promiscuous mode
[ 2723.986662][T10995] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2724.007084][T10995] device bridge_slave_0 left promiscuous mode
[ 2724.028998][T10995] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2724.046158][T10995] device hsr_slave_0 left promiscuous mode
[ 2724.065522][T10995] device hsr_slave_1 left promiscuous mode
[ 2724.077344][T10995] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 2724.086301][T10995] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 2724.101851][T10995] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 2724.110349][T10995] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 2724.120634][T10995] device bridge_slave_1 left promiscuous mode
[ 2724.126888][T10995] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2724.136308][T10995] device bridge_slave_0 left promiscuous mode
[ 2724.143032][T10995] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2724.164377][T10995] device veth1_macvtap left promiscuous mode
[ 2724.170843][T10995] device veth0_macvtap left promiscuous mode
[ 2724.176980][T10995] device veth1_vlan left promiscuous mode
[ 2724.183497][T10995] device veth0_vlan left promiscuous mode
[ 2724.196067][T10995] device veth1_macvtap left promiscuous mode
[ 2724.205344][T10995] device veth0_macvtap left promiscuous mode
[ 2724.212232][T10995] device veth1_vlan left promiscuous mode
[ 2724.218124][T10995] device veth0_vlan left promiscuous mode
[ 2724.238925][T10995] device veth1_macvtap left promiscuous mode
[ 2724.245027][T10995] device veth0_macvtap left promiscuous mode
[ 2724.258965][T10995] device veth1_vlan left promiscuous mode
[ 2724.264863][T10995] device veth0_vlan left promiscuous mode
[ 2724.804972][T10995] team0 (unregistering): Port device team_slave_1 removed
[ 2724.828175][T10995] team0 (unregistering): Port device team_slave_0 removed
[ 2724.841605][T10995] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 2724.858548][T10995] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 2724.936346][T10995] bond0 (unregistering): Released all slaves
[ 2725.090563][T10995] team0 (unregistering): Port device team_slave_1 removed
[ 2725.106709][T10995] team0 (unregistering): Port device team_slave_0 removed
[ 2725.127571][T10995] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 2725.145673][T10995] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 2725.216211][T10995] bond0 (unregistering): Released all slaves
[ 2725.344675][T10995] team0 (unregistering): Port device team_slave_1 removed
[ 2725.359547][T10995] team0 (unregistering): Port device team_slave_0 removed
[ 2725.374831][T10995] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 2725.387970][T10995] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 2725.458478][T10995] bond0 (unregistering): Released all slaves
[ 2725.514146][T14599] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 2725.522440][T14599] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 2725.530402][T14599] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 2725.537848][T14599] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 2725.552119][T32504] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 2725.584102][T32493] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2725.594727][T32493] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2725.605420][T32493] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2725.616575][T32493] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2725.631240][T32493] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 2725.667063][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 2725.681361][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 2725.731354][T32493] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2725.769682][T32493] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2725.784170][T32493] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2725.798603][T32493] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2725.858260][T32493] batman_adv: batadv0: Interface activated: batadv_slave_1
21:26:34 executing program 3:
openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0)
openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
perf_event_open(0x0, 0xffffffffffffffff, 0xb, 0xffffffffffffffff, 0x0)
getpid()
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x1f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='blkio.bfq.io_service_time\x00', 0x26e1, 0x0)
write$cgroup_int(r0, &(0x7f0000000040), 0x12)
close(r0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000280)='host1x_cdma_push_wide\x00'}, 0x10)
write$cgroup_int(0xffffffffffffffff, &(0x7f0000000040), 0x12)

[ 2725.909867][T20569] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 2725.918635][T20569] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 2725.941479][T20569] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 2725.959727][T20569] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 2725.982858][T32493] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 2726.001205][T32493] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 2726.020335][T32493] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 2726.041044][T32493] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 2726.099820][T32530] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 2726.119233][T30559] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 2726.128238][T30559] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 2726.136999][T30559] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 2726.156121][T30559] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 2726.185714][T32504] device veth0_vlan entered promiscuous mode
[ 2726.202161][T30559] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 2726.221357][T30559] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 2726.246098][T32519] 8021q: adding VLAN 0 to HW filter on device bond0
[ 2726.274621][T32504] device veth1_vlan entered promiscuous mode
[ 2726.320671][T32519] 8021q: adding VLAN 0 to HW filter on device team0
[ 2726.387602][T17500] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 2726.406008][T17500] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 2726.424239][T17500] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 2726.437624][T17500] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 2726.451759][T17500] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 2726.461220][T17500] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 2726.479122][T23935] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 2726.487921][T23935] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 2726.509570][T23935] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2726.516710][T23935] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 2726.524991][T23935] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 2726.534472][T23935] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 2726.543448][T23935] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2726.550622][T23935] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 2726.616164][T14599] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 2726.624865][T14599] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 2726.634103][T14599] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 2726.655805][T14599] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 2726.676976][T14599] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 2726.688713][T14599] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 2726.708284][T14599] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 2726.728178][T14599] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 2726.773799][T32530] device veth0_vlan entered promiscuous mode
[ 2726.790644][T32504] device veth0_macvtap entered promiscuous mode
[ 2726.808613][T32519] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 2726.821543][T32519] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 2726.837329][T14599] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 2726.850311][T14599] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 2726.869465][T14599] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 2726.878195][T14599] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 2726.886985][T14599] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 2726.910118][T14599] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 2726.919235][T14599] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 2726.927897][T14599] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 2726.936556][T14599] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 2726.960666][T14599] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 2726.972385][T32504] device veth1_macvtap entered promiscuous mode
[ 2726.980653][T20562] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2727.009485][T20562] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2727.042651][T32530] device veth1_vlan entered promiscuous mode
[ 2727.064801][T14833] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2727.066269][T32504] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2727.075185][T14833] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2727.128786][T32504] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2727.140138][T32504] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2727.159222][T32504] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2727.191729][T32504] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2727.219790][T32504] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2727.231840][T32504] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 2727.240045][T30559] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 2727.259032][T30559] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 2727.267107][T30559] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 2727.283359][T30559] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 2727.336033][T32504] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2727.358882][T32504] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2727.371026][T32504] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2727.388840][T32504] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2727.398705][T32504] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2727.409934][T32504] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2727.434983][T32504] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 2727.477211][T32530] device veth0_macvtap entered promiscuous mode
[ 2727.498355][T20569] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 2727.519994][T20569] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 2727.541656][T20569] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 2727.558095][T20569] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 2727.582320][T32504] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 2727.609095][T32504] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 2727.617849][T32504] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 2727.647729][T32504] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 2727.677652][T32530] device veth1_macvtap entered promiscuous mode
[ 2727.700874][T24529] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 2727.710412][T24529] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 2727.753898][  T313] syz-executor.4 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2727.756971][T32519] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 2727.776240][  T313] CPU: 1 PID: 313 Comm: syz-executor.4 Not tainted 6.2.0-rc2-syzkaller-00431-g0164776a2ce7 #0
[ 2727.786543][  T313] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 2727.796640][  T313] Call Trace:
[ 2727.799947][  T313]  <TASK>
[ 2727.802909][  T313]  dump_stack_lvl+0xd1/0x138
[ 2727.807559][  T313]  dump_header+0x10b/0x85f
[ 2727.812022][  T313]  oom_kill_process.cold+0x10/0x15
[ 2727.817196][  T313]  out_of_memory+0x35c/0x14a0
[ 2727.821922][  T313]  ? oom_killer_disable+0x280/0x280
[ 2727.827164][  T313]  ? find_held_lock+0x2d/0x110
[ 2727.831990][  T313]  mem_cgroup_out_of_memory+0x206/0x270
[ 2727.837582][  T313]  ? mem_cgroup_margin+0x130/0x130
[ 2727.842745][  T313]  ? _raw_spin_unlock_irqrestore+0x54/0x70
[ 2727.848610][  T313]  memory_max_write+0x2f9/0x3c0
[ 2727.853513][  T313]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 2727.859629][  T313]  ? lock_release+0x810/0x810
[ 2727.864366][  T313]  cgroup_file_write+0x1e2/0x770
[ 2727.869351][  T313]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 2727.875467][  T313]  ? kill_css+0x370/0x370
[ 2727.879837][  T313]  ? __virt_addr_valid+0x61/0x2e0
[ 2727.884953][  T313]  ? kill_css+0x370/0x370
[ 2727.889336][  T313]  kernfs_fop_write_iter+0x3f1/0x600
[ 2727.894689][  T313]  vfs_write+0x9ed/0xdd0
[ 2727.898986][  T313]  ? kernel_write+0x630/0x630
[ 2727.903723][  T313]  ? __fget_files+0x26a/0x440
[ 2727.908467][  T313]  ksys_write+0x12b/0x250
[ 2727.912843][  T313]  ? __ia32_sys_read+0xb0/0xb0
[ 2727.917653][  T313]  ? syscall_enter_from_user_mode+0x26/0xb0
[ 2727.923604][  T313]  do_syscall_64+0x39/0xb0
[ 2727.928082][  T313]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2727.934020][  T313] RIP: 0033:0x7f5010c8c0c9
[ 2727.938482][  T313] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 2727.958125][  T313] RSP: 002b:00007f501194c168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 2727.966582][  T313] RAX: ffffffffffffffda RBX: 00007f5010dac120 RCX: 00007f5010c8c0c9
[ 2727.974596][  T313] RDX: 0000000000000012 RSI: 0000000020000040 RDI: 0000000000000005
[ 2727.982606][  T313] RBP: 00007f5010ce7ae9 R08: 0000000000000000 R09: 0000000000000000
[ 2727.990624][  T313] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2727.998629][  T313] R13: 00007fffe372e8ff R14: 00007f501194c300 R15: 0000000000022000
[ 2728.006666][  T313]  </TASK>
[ 2728.041133][T32530] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2728.078780][T32530] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2728.088642][T32530] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2728.092338][  T313] memory: usage 8656kB, limit 0kB, failcnt 687
[ 2728.111700][  T313] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2728.118690][  T313] Memory cgroup stats for /syz4:
[ 2728.119272][  T313] anon 126976
[ 2728.119272][  T313] file 8351744
[ 2728.119272][  T313] kernel 368640
[ 2728.119272][  T313] kernel_stack 131072
[ 2728.119272][  T313] pagetables 77824
[ 2728.119272][  T313] sec_pagetables 0
[ 2728.119272][  T313] percpu 64
[ 2728.119272][  T313] sock 0
[ 2728.119272][  T313] vmalloc 0
[ 2728.119272][  T313] shmem 8351744
[ 2728.119272][  T313] zswap 0
[ 2728.119272][  T313] zswapped 0
[ 2728.119272][  T313] file_mapped 290816
[ 2728.119272][  T313] file_dirty 0
[ 2728.119272][  T313] file_writeback 0
[ 2728.119272][  T313] swapcached 0
[ 2728.119272][  T313] anon_thp 0
[ 2728.119272][  T313] file_thp 0
[ 2728.119272][  T313] shmem_thp 0
[ 2728.119272][  T313] inactive_anon 126976
[ 2728.119272][  T313] active_anon 8351744
[ 2728.119272][  T313] inactive_file 0
[ 2728.119272][  T313] active_file 0
[ 2728.119272][  T313] unevictable 0
[ 2728.119272][  T313] slab_reclaimable 42328
[ 2728.119272][  T313] slab_unreclaimable 91776
[ 2728.119272][  T313] slab 134104
[ 2728.126311][T32530] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2728.218845][  T313] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0-1,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=308,uid=0
[ 2728.236309][T32530] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2728.262403][T32530] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2728.272563][T32530] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2728.283358][T32530] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2728.294739][  T313] Memory cgroup out of memory: Killed process 308 (syz-executor.4) total-vm:54804kB, anon-rss:500kB, file-rss:8960kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 2728.295278][T32530] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 2728.321777][ T9919] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 2728.339364][ T9919] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 2728.346901][ T9919] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 2728.356802][ T9919] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
21:26:37 executing program 4:
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_int(r0, &(0x7f00000000c0)='memory.max\x00', 0x2, 0x0)
getpid()
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x1f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000300)='cpuacct.usage_all\x00', 0x0, 0x0)
bpf$ITER_CREATE(0x21, &(0x7f00000002c0)={r2}, 0x8)
getpid()
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='blkio.bfq.io_service_time\x00', 0x26e1, 0x0)
write$cgroup_int(r3, &(0x7f0000000040), 0x12)
close(r3)
syz_open_procfs$namespace(0x0, 0x0)
write$cgroup_int(r1, &(0x7f0000000040), 0x12)

21:26:37 executing program 3:
openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0)
openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
perf_event_open(0x0, 0xffffffffffffffff, 0xb, 0xffffffffffffffff, 0x0)
getpid()
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x1f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='blkio.bfq.io_service_time\x00', 0x26e1, 0x0)
write$cgroup_int(r0, &(0x7f0000000040), 0x12)
close(r0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000280)='host1x_cdma_push_wide\x00'}, 0x10)
write$cgroup_int(0xffffffffffffffff, &(0x7f0000000040), 0x12)

21:26:37 executing program 1:
r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0)
perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x6, 0x401}, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
perf_event_open(&(0x7f0000000200)={0x4, 0x80, 0x9, 0x0, 0x0, 0x5, 0x0, 0xffffffff, 0x800, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x2, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x2, 0x2, @perf_bp={&(0x7f0000000100), 0x5}, 0x0, 0x100000000, 0x2a, 0x0, 0x8, 0x40, 0x0, 0x0, 0x3f, 0x0, 0x4000000000000000}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
recvmsg(0xffffffffffffffff, 0x0, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f00000002c0)='cpuacct.usage_percpu_sys\x00', 0x0, 0x0)
perf_event_open$cgroup(&(0x7f00000003c0)={0x4, 0x80, 0x1, 0xff, 0x1, 0x5, 0x0, 0x800000000000008, 0x21001, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x3, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0xffff0000, 0x4, @perf_bp={&(0x7f0000000380), 0x8}, 0x40ae, 0xe, 0x78d8, 0x5, 0x7, 0x7, 0x1ff}, 0xffffffffffffffff, 0xc, r0, 0xc)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000018c00)={0x18, 0x3, &(0x7f0000000780)=ANY=[@ANYBLOB="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"], &(0x7f0000000440)='syzkaller\x00', 0x4, 0xb0, &(0x7f0000000480)=""/176, 0x0, 0x0, '\x00', 0x0, 0x0, r1, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
r3 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='rcu_utilization\x00', r2}, 0x10)
r4 = perf_event_open$cgroup(&(0x7f0000000080)={0x4, 0x80, 0x81, 0x5, 0x6, 0x0, 0x0, 0x8000000000000000, 0x848, 0x4, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x3, 0x0, @perf_config_ext={0x912410d}, 0x8800, 0xffffffff, 0x7, 0x6, 0x3f, 0x7, 0x8dd, 0x0, 0x5, 0x0, 0x1}, 0xffffffffffffffff, 0xb, 0xffffffffffffffff, 0x9)
ioctl$PERF_EVENT_IOC_SET_OUTPUT(0xffffffffffffffff, 0x2405, r4)
r5 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000540)='./cgroup.cpu/syz1\x00', 0x200002, 0x0)
openat$cgroup_ro(r5, &(0x7f0000000640)='cgroup.stat\x00', 0x0, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r4, 0x40082404, &(0x7f0000000580)=0xffffffffffffff7f)
r6 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000000)='cpuacct.usage_percpu_sys\x00', 0x26e1, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r6, 0x40086607, &(0x7f0000000040))
r7 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x26e1, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000018c00)={0x18, 0x3, &(0x7f0000000300)=ANY=[@ANYRES64=r1], 0x0, 0x4, 0xb0, &(0x7f0000000480)=""/176, 0x40f00, 0x5, '\x00', 0x0, 0x0, r7, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x0, 0x204d, &(0x7f00000005c0)=ANY=[@ANYRES32], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x18, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000740)={0x0, 0x3}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000002c0)=[0xffffffffffffffff, r7, 0xffffffffffffffff]}, 0x80)
write$cgroup_int(r7, &(0x7f0000000280)=0x1ff, 0x12)
r8 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000001e00)={&(0x7f0000001dc0)='./file0\x00', 0x0, 0x10}, 0x10)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000001e80)=@bpf_lsm={0x1d, 0x2, &(0x7f0000000700)=@raw=[@map_idx={0x18, 0x4}], &(0x7f0000002340)='GPL\x00', 0x5, 0x33, &(0x7f0000002380)=""/51, 0x41100, 0x2, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f00000023c0)={0x5, 0x4}, 0x8, 0x10, &(0x7f0000002400)={0x3, 0xa, 0x6, 0xae2e}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000002500)=[r0, r8, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}, 0x80)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={0xffffffffffffffff, 0x18000000000002a0, 0x0, 0x0, &(0x7f00000001c0), 0x0, 0x0, 0xe8030000, 0x0, 0x0, 0x0, 0x0}, 0x48)
ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x89f2, &(0x7f0000000080)='ip6tnl0\x00')
socketpair(0x1e, 0x5, 0x20, &(0x7f0000000600))
socketpair(0x1, 0x1, 0x0, &(0x7f0000000740)={0xffffffffffffffff, <r9=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r9, 0x89f1, &(0x7f0000000080))
close(r3)

[ 2728.387901][T32530] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2728.444237][T32493] syz-executor.4 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=1, oom_score_adj=0
[ 2728.450724][T32530] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2728.454404][T32493] CPU: 0 PID: 32493 Comm: syz-executor.4 Not tainted 6.2.0-rc2-syzkaller-00431-g0164776a2ce7 #0
[ 2728.474397][T32493] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 2728.484480][T32493] Call Trace:
[ 2728.487773][T32493]  <TASK>
[ 2728.490735][T32493]  dump_stack_lvl+0xd1/0x138
[ 2728.495366][T32493]  dump_header+0x10b/0x85f
[ 2728.499798][T32493]  oom_kill_process.cold+0x10/0x15
[ 2728.504938][T32493]  out_of_memory+0x35c/0x14a0
[ 2728.509643][T32493]  ? find_held_lock+0x2d/0x110
[ 2728.514444][T32493]  ? oom_killer_disable+0x280/0x280
[ 2728.519666][T32493]  ? find_held_lock+0x2d/0x110
[ 2728.524468][T32493]  mem_cgroup_out_of_memory+0x206/0x270
[ 2728.530035][T32493]  ? mem_cgroup_margin+0x130/0x130
[ 2728.535161][T32493]  ? lock_downgrade+0x6e0/0x6e0
[ 2728.540051][T32493]  try_charge_memcg+0xefb/0x12f0
[ 2728.545033][T32493]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 2728.551136][T32493]  ? get_mem_cgroup_from_objcg+0xa1/0x260
[ 2728.556887][T32493]  ? lock_downgrade+0x6e0/0x6e0
[ 2728.561770][T32493]  ? lock_downgrade+0x6e0/0x6e0
[ 2728.566653][T32493]  ? rcu_read_unlock+0x9/0x60
[ 2728.571391][T32493]  obj_cgroup_charge+0x2af/0x5e0
[ 2728.576374][T32493]  ? copy_process+0x3aa/0x7520
[ 2728.581170][T32493]  kmem_cache_alloc_node+0xb7/0x460
[ 2728.586399][T32493]  copy_process+0x3aa/0x7520
[ 2728.591026][T32493]  ? _raw_spin_unlock+0x28/0x40
[ 2728.595924][T32493]  ? wp_page_reuse+0x197/0x570
[ 2728.600742][T32493]  ? do_wp_page+0x844/0x3370
[ 2728.605377][T32493]  ? __cleanup_sighand+0xb0/0xb0
[ 2728.610424][T32493]  ? finish_mkwrite_fault+0x3d0/0x3d0
[ 2728.615831][T32493]  ? rwlock_bug.part.0+0x90/0x90
[ 2728.620789][T32493]  ? lock_chain_count+0x20/0x20
[ 2728.625664][T32493]  kernel_clone+0xeb/0x990
[ 2728.630113][T32493]  ? create_io_thread+0xf0/0xf0
[ 2728.635011][T32493]  ? find_held_lock+0x2d/0x110
[ 2728.639832][T32493]  __do_sys_clone+0xba/0x100
[ 2728.644456][T32493]  ? kernel_clone+0x990/0x990
[ 2728.649180][T32493]  ? syscall_enter_from_user_mode+0x26/0xb0
[ 2728.655110][T32493]  do_syscall_64+0x39/0xb0
[ 2728.659563][T32493]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2728.665481][T32493] RIP: 0033:0x7f5010c89dfb
[ 2728.669912][T32493] Code: ed 0f 85 60 01 00 00 64 4c 8b 0c 25 10 00 00 00 45 31 c0 4d 8d 91 d0 02 00 00 31 d2 31 f6 bf 11 00 20 01 b8 38 00 00 00 0f 05 <48> 3d 00 f0 ff ff 0f 87 89 00 00 00 41 89 c5 85 c0 0f 85 90 00 00
[ 2728.689553][T32493] RSP: 002b:00007fffe372eb40 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[ 2728.698014][T32493] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f5010c89dfb
[ 2728.706008][T32493] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011
[ 2728.714084][T32493] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000555556b2f400
[ 2728.722077][T32493] R10: 0000555556b2f6d0 R11: 0000000000000246 R12: 0000000000000001
[ 2728.730064][T32493] R13: 0000000000000000 R14: 0000000000000001 R15: 00007fffe372ec20
[ 2728.738077][T32493]  </TASK>
[ 2728.748289][T32493] memory: usage 8336kB, limit 0kB, failcnt 706
[ 2728.754592][T32493] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2728.761606][T32493] Memory cgroup stats for /syz4:
[ 2728.761806][T32493] anon 40960
[ 2728.761806][T32493] file 8351744
[ 2728.761806][T32493] kernel 143360
[ 2728.761806][T32493] kernel_stack 0
[ 2728.761806][T32493] pagetables 8192
[ 2728.761806][T32493] sec_pagetables 0
[ 2728.761806][T32493] percpu 64
[ 2728.761806][T32493] sock 0
[ 2728.761806][T32493] vmalloc 0
[ 2728.761806][T32493] shmem 8351744
[ 2728.761806][T32493] zswap 0
[ 2728.761806][T32493] zswapped 0
[ 2728.761806][T32493] file_mapped 266240
[ 2728.761806][T32493] file_dirty 0
[ 2728.761806][T32493] file_writeback 0
[ 2728.761806][T32493] swapcached 0
[ 2728.761806][T32493] anon_thp 0
[ 2728.761806][T32493] file_thp 0
[ 2728.761806][T32493] shmem_thp 0
[ 2728.761806][T32493] inactive_anon 40960
[ 2728.761806][T32493] active_anon 8351744
[ 2728.761806][T32493] inactive_file 0
[ 2728.761806][T32493] active_file 0
[ 2728.761806][T32493] unevictable 0
[ 2728.761806][T32493] slab_reclaimable 61112
[ 2728.761806][T32493] slab_unreclaimable 58712
[ 2728.761806][T32493] slab 119824
[ 2728.860587][T32493] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0-1,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=32493,uid=0
[ 2728.888882][T32530] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2728.908916][T32493] Memory cgroup out of memory: Killed process 32493 (syz-executor.4) total-vm:50568kB, anon-rss:364kB, file-rss:8960kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:0
[ 2728.926569][T32530] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2728.968554][T32530] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2729.001357][T32530] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2729.030001][T32530] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2729.049112][T32530] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2729.073194][T32530] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 2729.101554][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 2729.113570][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 2729.138149][T32530] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 2729.148616][T32530] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 2729.158405][T32530] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 2729.167488][T32530] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 2729.249372][T23855] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2729.267832][T23855] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2729.355579][T14599] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 2729.407159][T14833] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2729.445217][T14833] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2729.458540][T14599] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 2729.475252][T14599] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 2729.547708][T30051] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 2729.619114][T14833] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2729.627275][T14833] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
21:26:38 executing program 0:
openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0)
openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_int(r0, &(0x7f00000000c0)='memory.max\x00', 0x2, 0x0)
getpid()
r2 = bpf$ITER_CREATE(0x21, &(0x7f0000000340), 0x8)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='blkio.bfq.io_service_time\x00', 0x26e1, 0x0)
write$cgroup_int(r3, &(0x7f0000000040), 0x12)
close(r3)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000280)='host1x_cdma_push_wide\x00', r2}, 0x10)
write$cgroup_int(r1, &(0x7f0000000040), 0x12)

21:26:38 executing program 3:
openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0)
openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_int(r0, &(0x7f00000000c0)='memory.max\x00', 0x2, 0x0)
getpid()
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x1f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='blkio.bfq.io_service_time\x00', 0x26e1, 0x0)
write$cgroup_int(r2, &(0x7f0000000040), 0x12)
close(r2)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000280)='host1x_cdma_push_wide\x00'}, 0x10)
write$cgroup_int(r1, &(0x7f0000000040), 0x12)

[ 2729.676127][T14599] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 2729.684916][T14599] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 2729.706975][T14599] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 2729.738684][T32519] device veth0_vlan entered promiscuous mode
[ 2729.774583][T30051] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 2729.799969][T30051] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 2729.837664][T32519] device veth1_vlan entered promiscuous mode
[ 2729.897366][T32321] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2729.919470][T32321] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2729.980392][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 2729.998021][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 2730.015638][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 2730.063872][T32519] device veth0_macvtap entered promiscuous mode
[ 2730.104192][T23935] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 2730.123531][  T336] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2730.124750][T23935] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 2730.159035][  T336] CPU: 0 PID: 336 Comm: syz-executor.3 Not tainted 6.2.0-rc2-syzkaller-00431-g0164776a2ce7 #0
[ 2730.169364][  T336] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 2730.179478][  T336] Call Trace:
[ 2730.182783][  T336]  <TASK>
[ 2730.185739][  T336]  dump_stack_lvl+0xd1/0x138
[ 2730.190383][  T336]  dump_header+0x10b/0x85f
[ 2730.194854][  T336]  oom_kill_process.cold+0x10/0x15
[ 2730.200013][  T336]  out_of_memory+0x35c/0x14a0
[ 2730.201627][T32519] device veth1_macvtap entered promiscuous mode
[ 2730.204720][  T336]  ? oom_killer_disable+0x280/0x280
[ 2730.216161][  T336]  ? mark_held_locks+0x9f/0xe0
[ 2730.220977][  T336]  mem_cgroup_out_of_memory+0x206/0x270
[ 2730.226579][  T336]  ? mem_cgroup_margin+0x130/0x130
[ 2730.231767][  T336]  ? _raw_spin_unlock_irqrestore+0x3c/0x70
[ 2730.237619][  T336]  memory_max_write+0x2f9/0x3c0
[ 2730.242505][  T336]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 2730.248594][  T336]  ? cgroup_file_write+0x8e/0x770
[ 2730.253659][  T336]  cgroup_file_write+0x1e2/0x770
[ 2730.258647][  T336]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 2730.264744][  T336]  ? kill_css+0x370/0x370
[ 2730.269110][  T336]  ? kill_css+0x370/0x370
[ 2730.273452][  T336]  kernfs_fop_write_iter+0x3f1/0x600
[ 2730.278777][  T336]  vfs_write+0x9ed/0xdd0
[ 2730.283035][  T336]  ? kernel_write+0x630/0x630
[ 2730.287727][  T336]  ? __fget_files+0x26a/0x440
[ 2730.292431][  T336]  ksys_write+0x12b/0x250
[ 2730.296787][  T336]  ? __ia32_sys_read+0xb0/0xb0
[ 2730.301565][  T336]  ? syscall_enter_from_user_mode+0x26/0xb0
[ 2730.307477][  T336]  do_syscall_64+0x39/0xb0
[ 2730.311941][  T336]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2730.317846][  T336] RIP: 0033:0x7f5fefa8c0c9
[ 2730.322270][  T336] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 2730.341902][  T336] RSP: 002b:00007f5ff0728168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 2730.350341][  T336] RAX: ffffffffffffffda RBX: 00007f5fefbabf80 RCX: 00007f5fefa8c0c9
[ 2730.358338][  T336] RDX: 0000000000000012 RSI: 0000000020000040 RDI: 0000000000000005
[ 2730.366315][  T336] RBP: 00007f5fefae7ae9 R08: 0000000000000000 R09: 0000000000000000
[ 2730.374288][  T336] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2730.382261][  T336] R13: 00007ffdd88c2d6f R14: 00007f5ff0728300 R15: 0000000000022000
[ 2730.390285][  T336]  </TASK>
[ 2730.425509][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 2730.462802][T32519] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2730.482750][T32519] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2730.516488][T32519] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2730.534255][T32519] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2730.548564][T32519] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2730.562126][T32519] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2730.584673][T32519] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2730.611048][T32519] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2730.621074][T32519] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2730.631796][T32519] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2730.646581][T32519] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 2730.656360][T17500] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 2730.667400][T17500] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 2730.686560][T32519] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2730.744543][T32519] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2730.757843][T32519] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2730.769577][T32519] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2730.779840][T32519] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2730.790984][T32519] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2730.809379][T32519] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2730.822360][T32519] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2730.832916][T32519] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2730.844997][T32519] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2730.857458][T32519] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 2730.873684][T32519] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 2730.883016][T32519] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 2730.892568][T32519] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 2730.901748][T32519] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 2730.918471][T24529] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 2730.928448][T24529] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 2730.951567][  T336] memory: usage 10628kB, limit 0kB, failcnt 759
[ 2730.991742][  T336] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2731.035045][  T336] Memory cgroup stats for /syz3:
[ 2731.035266][  T336] anon 139264
[ 2731.035266][  T336] file 10452992
[ 2731.035266][  T336] kernel 253952
[ 2731.035266][  T336] kernel_stack 32768
[ 2731.035266][  T336] pagetables 77824
[ 2731.035266][  T336] sec_pagetables 0
[ 2731.035266][  T336] percpu 64
[ 2731.035266][  T336] sock 0
[ 2731.035266][  T336] vmalloc 0
[ 2731.035266][  T336] shmem 10448896
[ 2731.035266][  T336] zswap 0
[ 2731.035266][  T336] zswapped 0
[ 2731.035266][  T336] file_mapped 331776
[ 2731.035266][  T336] file_dirty 0
[ 2731.035266][  T336] file_writeback 0
[ 2731.035266][  T336] swapcached 0
[ 2731.035266][  T336] anon_thp 0
[ 2731.035266][  T336] file_thp 0
[ 2731.035266][  T336] shmem_thp 0
[ 2731.035266][  T336] inactive_anon 2236416
[ 2731.035266][  T336] active_anon 8351744
[ 2731.035266][  T336] inactive_file 4096
[ 2731.035266][  T336] active_file 0
[ 2731.035266][  T336] unevictable 0
[ 2731.035266][  T336] slab_reclaimable 42872
[ 2731.035266][  T336] slab_unreclaimable 73104
[ 2731.035266][  T336] slab 115976
[ 2731.146747][  T336] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=335,uid=0
[ 2731.163286][T20562] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2731.170642][  T336] Memory cgroup out of memory: Killed process 336 (syz-executor.3) total-vm:54540kB, anon-rss:376kB, file-rss:8960kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 2731.177000][T20562] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2731.249587][T23289] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 2731.261234][T32321] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2731.269882][T32321] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2731.297535][T23289] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 2731.629656][  T345] syz-executor.5 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2731.640971][  T345] CPU: 0 PID: 345 Comm: syz-executor.5 Not tainted 6.2.0-rc2-syzkaller-00431-g0164776a2ce7 #0
[ 2731.651249][  T345] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 2731.661328][  T345] Call Trace:
[ 2731.664658][  T345]  <TASK>
[ 2731.667605][  T345]  dump_stack_lvl+0xd1/0x138
[ 2731.672234][  T345]  dump_header+0x10b/0x85f
[ 2731.676685][  T345]  oom_kill_process.cold+0x10/0x15
[ 2731.681826][  T345]  out_of_memory+0x35c/0x14a0
[ 2731.686539][  T345]  ? lockdep_hardirqs_on+0x7d/0x100
[ 2731.691785][  T345]  ? oom_killer_disable+0x280/0x280
[ 2731.697031][  T345]  mem_cgroup_out_of_memory+0x206/0x270
[ 2731.702608][  T345]  ? mem_cgroup_margin+0x130/0x130
[ 2731.707793][  T345]  memory_max_write+0x2f9/0x3c0
[ 2731.712666][  T345]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 2731.718755][  T345]  ? lock_release+0x810/0x810
[ 2731.723481][  T345]  cgroup_file_write+0x1e2/0x770
[ 2731.728435][  T345]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 2731.734611][  T345]  ? kill_css+0x370/0x370
[ 2731.738955][  T345]  ? __virt_addr_valid+0x61/0x2e0
[ 2731.744008][  T345]  ? kill_css+0x370/0x370
[ 2731.748347][  T345]  kernfs_fop_write_iter+0x3f1/0x600
[ 2731.753658][  T345]  vfs_write+0x9ed/0xdd0
[ 2731.757917][  T345]  ? kernel_write+0x630/0x630
[ 2731.762608][  T345]  ? lockdep_hardirqs_on+0x7d/0x100
[ 2731.767905][  T345]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 2731.774093][  T345]  ksys_write+0x12b/0x250
[ 2731.778433][  T345]  ? __ia32_sys_read+0xb0/0xb0
[ 2731.783211][  T345]  ? syscall_enter_from_user_mode+0x26/0xb0
[ 2731.789137][  T345]  do_syscall_64+0x39/0xb0
[ 2731.793582][  T345]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2731.799490][  T345] RIP: 0033:0x7f607188c0c9
[ 2731.803911][  T345] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 2731.823526][  T345] RSP: 002b:00007f60725c6168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 2731.831951][  T345] RAX: ffffffffffffffda RBX: 00007f60719abf80 RCX: 00007f607188c0c9
[ 2731.839924][  T345] RDX: 0000000000000012 RSI: 0000000020000040 RDI: 0000000000000005
[ 2731.847899][  T345] RBP: 00007f60718e7ae9 R08: 0000000000000000 R09: 0000000000000000
[ 2731.855869][  T345] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2731.863842][  T345] R13: 00007ffcecf4f16f R14: 00007f60725c6300 R15: 0000000000022000
[ 2731.871834][  T345]  </TASK>
[ 2731.891692][  T345] memory: usage 10628kB, limit 0kB, failcnt 798
[ 2731.898176][  T345] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2731.906000][  T345] Memory cgroup stats for /syz5:
[ 2731.907479][  T345] anon 118784
[ 2731.907479][  T345] file 10432512
[ 2731.907479][  T345] kernel 315392
[ 2731.907479][  T345] kernel_stack 65536
[ 2731.907479][  T345] pagetables 77824
[ 2731.907479][  T345] sec_pagetables 0
[ 2731.907479][  T345] percpu 64
[ 2731.907479][  T345] sock 0
[ 2731.907479][  T345] vmalloc 0
[ 2731.907479][  T345] shmem 10432512
[ 2731.907479][  T345] zswap 0
[ 2731.907479][  T345] zswapped 0
[ 2731.907479][  T345] file_mapped 249856
[ 2731.907479][  T345] file_dirty 0
[ 2731.907479][  T345] file_writeback 0
[ 2731.907479][  T345] swapcached 0
[ 2731.907479][  T345] anon_thp 0
[ 2731.907479][  T345] file_thp 0
[ 2731.907479][  T345] shmem_thp 0
[ 2731.907479][  T345] inactive_anon 2158592
[ 2731.907479][  T345] active_anon 8335360
[ 2731.907479][  T345] inactive_file 0
[ 2731.907479][  T345] active_file 0
[ 2731.907479][  T345] unevictable 0
[ 2731.907479][  T345] slab_reclaimable 40112
[ 2731.907479][  T345] slab_unreclaimable 99816
[ 2731.907479][  T345] slab 139928
[ 2732.019123][  T345] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz5,mems_allowed=0-1,oom_memcg=/syz5,task_memcg=/syz5,task=syz-executor.5,pid=344,uid=0
[ 2732.037259][  T345] Memory cgroup out of memory: Killed process 344 (syz-executor.5) total-vm:54540kB, anon-rss:500kB, file-rss:8960kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
21:26:41 executing program 5:
openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0)
openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
perf_event_open(0x0, 0xffffffffffffffff, 0xb, 0xffffffffffffffff, 0x0)
r1 = openat$cgroup_int(r0, &(0x7f00000000c0)='memory.max\x00', 0x2, 0x0)
getpid()
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x1f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000300)='cpuacct.usage_all\x00', 0x0, 0x0)
bpf$ITER_CREATE(0x21, &(0x7f00000002c0)={r2}, 0x8)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='blkio.bfq.io_service_time\x00', 0x26e1, 0x0)
write$cgroup_int(r3, &(0x7f0000000040), 0x12)
close(r3)
syz_open_procfs$namespace(0x0, 0x0)
write$cgroup_int(r1, &(0x7f0000000040), 0x12)

21:26:41 executing program 4:
openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_int(r0, &(0x7f00000000c0)='memory.max\x00', 0x2, 0x0)
getpid()
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x1f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000300)='cpuacct.usage_all\x00', 0x0, 0x0)
bpf$ITER_CREATE(0x21, &(0x7f00000002c0)={r2}, 0x8)
getpid()
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='blkio.bfq.io_service_time\x00', 0x26e1, 0x0)
write$cgroup_int(r3, &(0x7f0000000040), 0x12)
close(r3)
syz_open_procfs$namespace(0x0, 0x0)
write$cgroup_int(r1, &(0x7f0000000040), 0x12)

21:26:41 executing program 2:
openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0)
openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
openat$cgroup_int(r0, &(0x7f00000000c0)='memory.max\x00', 0x2, 0x0)
bpf$ITER_CREATE(0x21, &(0x7f0000000340), 0x8)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='blkio.bfq.io_service_time\x00', 0x26e1, 0x0)
write$cgroup_int(r1, &(0x7f0000000040), 0x12)
close(r1)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_open_procfs$namespace(0x0, 0x0)
write$cgroup_int(0xffffffffffffffff, &(0x7f0000000040), 0x12)

21:26:41 executing program 0:
openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0)
openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_int(r0, &(0x7f00000000c0)='memory.max\x00', 0x2, 0x0)
getpid()
r2 = bpf$ITER_CREATE(0x21, &(0x7f0000000340), 0x8)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='blkio.bfq.io_service_time\x00', 0x26e1, 0x0)
write$cgroup_int(r3, &(0x7f0000000040), 0x12)
close(r3)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000280)='host1x_cdma_push_wide\x00', r2}, 0x10)
write$cgroup_int(r1, &(0x7f0000000040), 0x12)

21:26:41 executing program 3:
openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0)
openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_int(r0, &(0x7f00000000c0)='memory.max\x00', 0x2, 0x0)
getpid()
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x1f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='blkio.bfq.io_service_time\x00', 0x26e1, 0x0)
write$cgroup_int(r2, &(0x7f0000000040), 0x12)
close(r2)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000280)='host1x_cdma_push_wide\x00'}, 0x10)
write$cgroup_int(r1, &(0x7f0000000040), 0x12)

[ 2732.122919][T32479] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=1, oom_score_adj=0
[ 2732.169575][T32479] CPU: 0 PID: 32479 Comm: syz-executor.3 Not tainted 6.2.0-rc2-syzkaller-00431-g0164776a2ce7 #0
[ 2732.180049][T32479] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 2732.190135][T32479] Call Trace:
[ 2732.193448][T32479]  <TASK>
[ 2732.196415][T32479]  dump_stack_lvl+0xd1/0x138
[ 2732.201072][T32479]  dump_header+0x10b/0x85f
[ 2732.205526][T32479]  oom_kill_process.cold+0x10/0x15
[ 2732.210665][T32479]  out_of_memory+0x35c/0x14a0
[ 2732.215360][T32479]  ? find_held_lock+0x2d/0x110
[ 2732.220138][T32479]  ? oom_killer_disable+0x280/0x280
[ 2732.225432][T32479]  ? find_held_lock+0x2d/0x110
[ 2732.230213][T32479]  mem_cgroup_out_of_memory+0x206/0x270
[ 2732.235764][T32479]  ? mem_cgroup_margin+0x130/0x130
[ 2732.240899][T32479]  ? lock_downgrade+0x6e0/0x6e0
[ 2732.245772][T32479]  try_charge_memcg+0xefb/0x12f0
[ 2732.250724][T32479]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 2732.256720][T32479]  ? get_mem_cgroup_from_objcg+0xa1/0x260
[ 2732.262450][T32479]  ? lock_downgrade+0x6e0/0x6e0
[ 2732.267308][T32479]  ? lock_downgrade+0x6e0/0x6e0
[ 2732.272262][T32479]  ? rcu_read_unlock+0x9/0x60
[ 2732.276966][T32479]  obj_cgroup_charge+0x2af/0x5e0
[ 2732.281919][T32479]  ? copy_process+0x3aa/0x7520
[ 2732.286690][T32479]  kmem_cache_alloc_node+0xb7/0x460
[ 2732.291904][T32479]  copy_process+0x3aa/0x7520
[ 2732.296513][T32479]  ? _raw_spin_unlock+0x28/0x40
[ 2732.301384][T32479]  ? wp_page_reuse+0x197/0x570
[ 2732.306164][T32479]  ? do_wp_page+0x844/0x3370
[ 2732.310774][T32479]  ? __cleanup_sighand+0xb0/0xb0
[ 2732.315716][T32479]  ? finish_mkwrite_fault+0x3d0/0x3d0
[ 2732.321112][T32479]  ? rwlock_bug.part.0+0x90/0x90
[ 2732.326054][T32479]  ? lock_chain_count+0x20/0x20
[ 2732.330918][T32479]  kernel_clone+0xeb/0x990
[ 2732.335347][T32479]  ? create_io_thread+0xf0/0xf0
[ 2732.340212][T32479]  ? find_held_lock+0x2d/0x110
[ 2732.345005][T32479]  __do_sys_clone+0xba/0x100
[ 2732.349605][T32479]  ? kernel_clone+0x990/0x990
[ 2732.354304][T32479]  ? syscall_enter_from_user_mode+0x26/0xb0
[ 2732.360212][T32479]  do_syscall_64+0x39/0xb0
[ 2732.364646][T32479]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2732.370551][T32479] RIP: 0033:0x7f5fefa89dfb
[ 2732.374970][T32479] Code: ed 0f 85 60 01 00 00 64 4c 8b 0c 25 10 00 00 00 45 31 c0 4d 8d 91 d0 02 00 00 31 d2 31 f6 bf 11 00 20 01 b8 38 00 00 00 0f 05 <48> 3d 00 f0 ff ff 0f 87 89 00 00 00 41 89 c5 85 c0 0f 85 90 00 00
[ 2732.394582][T32479] RSP: 002b:00007ffdd88c2fb0 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[ 2732.402999][T32479] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f5fefa89dfb
[ 2732.410986][T32479] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011
[ 2732.418970][T32479] RBP: 0000000000000001 R08: 0000000000000000 R09: 000055555725e400
[ 2732.426957][T32479] R10: 000055555725e6d0 R11: 0000000000000246 R12: 0000000000000001
[ 2732.434937][T32479] R13: 0000000000000000 R14: 0000000000000001 R15: 00007ffdd88c3090
[ 2732.442929][T32479]  </TASK>
21:26:41 executing program 0:
openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0)
openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_int(r0, &(0x7f00000000c0)='memory.max\x00', 0x2, 0x0)
getpid()
r2 = bpf$ITER_CREATE(0x21, &(0x7f0000000340), 0x8)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='blkio.bfq.io_service_time\x00', 0x26e1, 0x0)
write$cgroup_int(r3, &(0x7f0000000040), 0x12)
close(r3)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000280)='host1x_cdma_push_wide\x00', r2}, 0x10)
write$cgroup_int(r1, &(0x7f0000000040), 0x12)

21:26:41 executing program 0:
openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0)
openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_int(r0, &(0x7f00000000c0)='memory.max\x00', 0x2, 0x0)
getpid()
r2 = bpf$ITER_CREATE(0x21, &(0x7f0000000340), 0x8)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='blkio.bfq.io_service_time\x00', 0x26e1, 0x0)
write$cgroup_int(r3, &(0x7f0000000040), 0x12)
close(r3)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000280)='host1x_cdma_push_wide\x00', r2}, 0x10)
write$cgroup_int(r1, &(0x7f0000000040), 0x12)

21:26:41 executing program 1:
r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0)
perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x6, 0x401}, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
perf_event_open(&(0x7f0000000200)={0x4, 0x80, 0x9, 0x0, 0x0, 0x5, 0x0, 0xffffffff, 0x800, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x2, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x2, 0x2, @perf_bp={&(0x7f0000000100), 0x5}, 0x0, 0x100000000, 0x2a, 0x0, 0x8, 0x40, 0x0, 0x0, 0x3f, 0x0, 0x4000000000000000}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
recvmsg(0xffffffffffffffff, 0x0, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f00000002c0)='cpuacct.usage_percpu_sys\x00', 0x0, 0x0)
perf_event_open$cgroup(&(0x7f00000003c0)={0x4, 0x80, 0x1, 0xff, 0x1, 0x5, 0x0, 0x800000000000008, 0x21001, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x3, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0xffff0000, 0x4, @perf_bp={&(0x7f0000000380), 0x8}, 0x40ae, 0xe, 0x78d8, 0x5, 0x7, 0x7, 0x1ff}, 0xffffffffffffffff, 0xc, r0, 0xc)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000018c00)={0x18, 0x3, &(0x7f0000000780)=ANY=[@ANYBLOB="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"], &(0x7f0000000440)='syzkaller\x00', 0x4, 0xb0, &(0x7f0000000480)=""/176, 0x0, 0x0, '\x00', 0x0, 0x0, r1, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
r3 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='rcu_utilization\x00', r2}, 0x10)
r4 = perf_event_open$cgroup(&(0x7f0000000080)={0x4, 0x80, 0x81, 0x5, 0x6, 0x0, 0x0, 0x8000000000000000, 0x848, 0x4, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x3, 0x0, @perf_config_ext={0x912410d}, 0x8800, 0xffffffff, 0x7, 0x6, 0x3f, 0x7, 0x8dd, 0x0, 0x5, 0x0, 0x1}, 0xffffffffffffffff, 0xb, 0xffffffffffffffff, 0x9)
ioctl$PERF_EVENT_IOC_SET_OUTPUT(0xffffffffffffffff, 0x2405, r4)
r5 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000540)='./cgroup.cpu/syz1\x00', 0x200002, 0x0)
openat$cgroup_ro(r5, &(0x7f0000000640)='cgroup.stat\x00', 0x0, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r4, 0x40082404, &(0x7f0000000580)=0xffffffffffffff7f)
r6 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000000)='cpuacct.usage_percpu_sys\x00', 0x26e1, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r6, 0x40086607, &(0x7f0000000040))
r7 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x26e1, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000018c00)={0x18, 0x3, &(0x7f0000000300)=ANY=[@ANYRES64=r1], 0x0, 0x4, 0xb0, &(0x7f0000000480)=""/176, 0x40f00, 0x5, '\x00', 0x0, 0x0, r7, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x0, 0x204d, &(0x7f00000005c0)=ANY=[@ANYRES32], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x18, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000740)={0x0, 0x3}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000002c0)=[0xffffffffffffffff, r7, 0xffffffffffffffff]}, 0x80)
write$cgroup_int(r7, &(0x7f0000000280)=0x1ff, 0x12)
r8 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000001e00)={&(0x7f0000001dc0)='./file0\x00', 0x0, 0x10}, 0x10)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000001e80)=@bpf_lsm={0x1d, 0x2, &(0x7f0000000700)=@raw=[@map_idx={0x18, 0x4}], &(0x7f0000002340)='GPL\x00', 0x5, 0x33, &(0x7f0000002380)=""/51, 0x41100, 0x2, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f00000023c0)={0x5, 0x4}, 0x8, 0x10, &(0x7f0000002400)={0x3, 0xa, 0x6, 0xae2e}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000002500)=[r0, r8, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}, 0x80)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={0xffffffffffffffff, 0x18000000000002a0, 0x0, 0x0, &(0x7f00000001c0), 0x0, 0x0, 0xe8030000, 0x0, 0x0, 0x0, 0x0}, 0x48)
ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x89f2, &(0x7f0000000080)='ip6tnl0\x00')
socketpair(0x1e, 0x5, 0x20, &(0x7f0000000600))
socketpair(0x1, 0x1, 0x0, &(0x7f0000000740)={0xffffffffffffffff, <r9=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r9, 0x89f1, &(0x7f0000000080))
close(r3)

[ 2732.959340][T32479] memory: usage 10344kB, limit 0kB, failcnt 778
[ 2732.965729][T32479] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2732.975968][T32479] Memory cgroup stats for /syz3:
[ 2732.976248][T32479] anon 45056
[ 2732.976248][T32479] file 10448896
[ 2732.976248][T32479] kernel 98304
[ 2732.976248][T32479] kernel_stack 0
[ 2732.976248][T32479] pagetables 8192
[ 2732.976248][T32479] sec_pagetables 0
[ 2732.976248][T32479] percpu 64
[ 2732.976248][T32479] sock 0
[ 2732.976248][T32479] vmalloc 0
[ 2732.976248][T32479] shmem 10448896
[ 2732.976248][T32479] zswap 0
[ 2732.976248][T32479] zswapped 0
[ 2732.976248][T32479] file_mapped 315392
[ 2732.976248][T32479] file_dirty 0
[ 2732.976248][T32479] file_writeback 0
[ 2732.976248][T32479] swapcached 0
[ 2732.976248][T32479] anon_thp 0
[ 2732.976248][T32479] file_thp 0
[ 2732.976248][T32479] shmem_thp 0
[ 2732.976248][T32479] inactive_anon 2142208
[ 2732.976248][T32479] active_anon 8351744
[ 2732.976248][T32479] inactive_file 0
[ 2732.976248][T32479] active_file 0
[ 2732.976248][T32479] unevictable 0
[ 2732.976248][T32479] slab_reclaimable 33192
[ 2732.976248][T32479] slab_unreclaimable 44080
[ 2732.976248][T32479] slab 77272
[ 2733.096478][T32479] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=32479,uid=0
[ 2733.114248][T32479] Memory cgroup out of memory: Killed process 32479 (syz-executor.3) total-vm:50568kB, anon-rss:364kB, file-rss:8960kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:0
[ 2733.134569][T32530] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=1, oom_score_adj=0
[ 2733.144921][T32530] CPU: 1 PID: 32530 Comm: syz-executor.2 Not tainted 6.2.0-rc2-syzkaller-00431-g0164776a2ce7 #0
[ 2733.155384][T32530] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 2733.165450][T32530] Call Trace:
[ 2733.168825][T32530]  <TASK>
[ 2733.171763][T32530]  dump_stack_lvl+0xd1/0x138
[ 2733.176381][T32530]  dump_header+0x10b/0x85f
[ 2733.180811][T32530]  oom_kill_process.cold+0x10/0x15
[ 2733.185958][T32530]  out_of_memory+0x35c/0x14a0
[ 2733.190704][T32530]  ? oom_killer_disable+0x280/0x280
[ 2733.195923][T32530]  ? find_held_lock+0x2d/0x110
[ 2733.200734][T32530]  mem_cgroup_out_of_memory+0x206/0x270
[ 2733.206302][T32530]  ? mem_cgroup_margin+0x130/0x130
[ 2733.211419][T32530]  ? lock_downgrade+0x6e0/0x6e0
[ 2733.216320][T32530]  try_charge_memcg+0xefb/0x12f0
[ 2733.221275][T32530]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 2733.227268][T32530]  ? get_mem_cgroup_from_objcg+0xa1/0x260
[ 2733.233021][T32530]  ? lock_downgrade+0x6e0/0x6e0
[ 2733.237885][T32530]  ? lock_downgrade+0x6e0/0x6e0
[ 2733.242746][T32530]  ? rcu_read_unlock+0x9/0x60
[ 2733.247544][T32530]  obj_cgroup_charge+0x2af/0x5e0
[ 2733.252506][T32530]  ? copy_process+0x3aa/0x7520
[ 2733.257280][T32530]  kmem_cache_alloc_node+0xb7/0x460
[ 2733.262495][T32530]  copy_process+0x3aa/0x7520
[ 2733.267097][T32530]  ? _raw_spin_unlock+0x28/0x40
[ 2733.271962][T32530]  ? wp_page_reuse+0x197/0x570
[ 2733.276756][T32530]  ? do_wp_page+0x844/0x3370
[ 2733.281376][T32530]  ? __cleanup_sighand+0xb0/0xb0
[ 2733.286336][T32530]  ? finish_mkwrite_fault+0x3d0/0x3d0
[ 2733.291729][T32530]  ? rwlock_bug.part.0+0x90/0x90
[ 2733.296706][T32530]  ? lock_chain_count+0x20/0x20
[ 2733.301592][T32530]  kernel_clone+0xeb/0x990
[ 2733.306046][T32530]  ? create_io_thread+0xf0/0xf0
[ 2733.310914][T32530]  ? find_held_lock+0x2d/0x110
[ 2733.315732][T32530]  __do_sys_clone+0xba/0x100
[ 2733.320347][T32530]  ? kernel_clone+0x990/0x990
[ 2733.325055][T32530]  ? syscall_enter_from_user_mode+0x26/0xb0
[ 2733.330972][T32530]  do_syscall_64+0x39/0xb0
[ 2733.335413][T32530]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2733.341324][T32530] RIP: 0033:0x7efcb1889dfb
[ 2733.345746][T32530] Code: ed 0f 85 60 01 00 00 64 4c 8b 0c 25 10 00 00 00 45 31 c0 4d 8d 91 d0 02 00 00 31 d2 31 f6 bf 11 00 20 01 b8 38 00 00 00 0f 05 <48> 3d 00 f0 ff ff 0f 87 89 00 00 00 41 89 c5 85 c0 0f 85 90 00 00
[ 2733.365353][T32530] RSP: 002b:00007fff542ea1a0 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[ 2733.373771][T32530] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007efcb1889dfb
[ 2733.381746][T32530] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011
[ 2733.389718][T32530] RBP: 0000000000000001 R08: 0000000000000000 R09: 000055555617b400
[ 2733.397691][T32530] R10: 000055555617b6d0 R11: 0000000000000246 R12: 0000000000000001
[ 2733.405664][T32530] R13: 0000000000000000 R14: 0000000000000001 R15: 00007fff542ea280
[ 2733.413656][T32530]  </TASK>
[ 2733.434855][T32530] memory: usage 10324kB, limit 0kB, failcnt 1138
[ 2733.442238][T32530] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2733.451152][T32530] Memory cgroup stats for /syz2:
[ 2733.451343][T32530] anon 40960
[ 2733.451343][T32530] file 10444800
[ 2733.451343][T32530] kernel 86016
[ 2733.451343][T32530] kernel_stack 0
[ 2733.451343][T32530] pagetables 8192
[ 2733.451343][T32530] sec_pagetables 0
[ 2733.451343][T32530] percpu 0
[ 2733.451343][T32530] sock 0
[ 2733.451343][T32530] vmalloc 0
[ 2733.451343][T32530] shmem 10440704
[ 2733.451343][T32530] zswap 0
[ 2733.451343][T32530] zswapped 0
[ 2733.451343][T32530] file_mapped 184320
[ 2733.451343][T32530] file_dirty 0
[ 2733.451343][T32530] file_writeback 0
[ 2733.451343][T32530] swapcached 0
[ 2733.451343][T32530] anon_thp 0
[ 2733.451343][T32530] file_thp 0
[ 2733.451343][T32530] shmem_thp 0
[ 2733.451343][T32530] inactive_anon 40960
[ 2733.451343][T32530] active_anon 10440704
[ 2733.451343][T32530] inactive_file 0
[ 2733.451343][T32530] active_file 4096
[ 2733.451343][T32530] unevictable 0
[ 2733.451343][T32530] slab_reclaimable 37192
[ 2733.451343][T32530] slab_unreclaimable 32296
[ 2733.451343][T32530] slab 69488
[ 2733.562980][T32530] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=32530,uid=0
21:26:42 executing program 0:
openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0)
openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_int(r0, &(0x7f00000000c0)='memory.max\x00', 0x2, 0x0)
getpid()
r2 = bpf$ITER_CREATE(0x21, &(0x7f0000000340), 0x8)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='blkio.bfq.io_service_time\x00', 0x26e1, 0x0)
write$cgroup_int(r3, &(0x7f0000000040), 0x12)
close(r3)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000280)='host1x_cdma_push_wide\x00', r2}, 0x10)
write$cgroup_int(r1, &(0x7f0000000040), 0x12)

[ 2733.579054][T32530] Memory cgroup out of memory: Killed process 32530 (syz-executor.2) total-vm:50568kB, anon-rss:364kB, file-rss:9088kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:0
[ 2733.603533][T32519] syz-executor.5 invoked oom-killer: gfp_mask=0x400cc0(GFP_KERNEL_ACCOUNT), order=0, oom_score_adj=0
[ 2733.624768][T32519] CPU: 0 PID: 32519 Comm: syz-executor.5 Not tainted 6.2.0-rc2-syzkaller-00431-g0164776a2ce7 #0
[ 2733.635255][T32519] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 2733.645346][T32519] Call Trace:
[ 2733.648650][T32519]  <TASK>
[ 2733.651595][T32519]  dump_stack_lvl+0xd1/0x138
[ 2733.656208][T32519]  dump_header+0x10b/0x85f
[ 2733.660635][T32519]  oom_kill_process.cold+0x10/0x15
[ 2733.665764][T32519]  out_of_memory+0x35c/0x14a0
[ 2733.670452][T32519]  ? oom_killer_disable+0x280/0x280
[ 2733.675657][T32519]  ? find_held_lock+0x2d/0x110
[ 2733.680443][T32519]  mem_cgroup_out_of_memory+0x206/0x270
[ 2733.685991][T32519]  ? mem_cgroup_margin+0x130/0x130
[ 2733.691133][T32519]  ? lock_downgrade+0x6e0/0x6e0
[ 2733.696012][T32519]  try_charge_memcg+0xefb/0x12f0
[ 2733.700980][T32519]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 2733.706972][T32519]  ? get_mem_cgroup_from_objcg+0xa1/0x260
[ 2733.712702][T32519]  ? lock_downgrade+0x6e0/0x6e0
[ 2733.717559][T32519]  ? lock_downgrade+0x6e0/0x6e0
[ 2733.722412][T32519]  ? rcu_read_unlock+0x9/0x60
[ 2733.727117][T32519]  obj_cgroup_charge+0x2af/0x5e0
[ 2733.732072][T32519]  __kmem_cache_alloc_node+0xb2/0x430
[ 2733.737625][T32519]  ? kvmalloc_node+0xa2/0x1a0
[ 2733.742321][T32519]  ? kvmalloc_node+0xa2/0x1a0
[ 2733.747008][T32519]  __kmalloc_node+0x4d/0xd0
[ 2733.751528][T32519]  kvmalloc_node+0xa2/0x1a0
[ 2733.756063][T32519]  xt_alloc_table_info+0x40/0xa0
[ 2733.761025][T32519]  do_ip6t_set_ctl+0x514/0xb30
[ 2733.765832][T32519]  ? trace_contention_end+0x153/0x1e0
[ 2733.771233][T32519]  ? __mutex_lock+0x231/0x1360
[ 2733.776018][T32519]  ? compat_do_replace.constprop.0+0x410/0x410
[ 2733.782191][T32519]  ? wait_for_completion_io_timeout+0x20/0x20
[ 2733.788268][T32519]  ? finish_mkwrite_fault+0x3d0/0x3d0
[ 2733.793699][T32519]  ? nf_sockopt_find.constprop.0+0x22d/0x2a0
[ 2733.799695][T32519]  nf_setsockopt+0x87/0xe0
[ 2733.805603][T32519]  ipv6_setsockopt+0x12b/0x190
[ 2733.810380][T32519]  tcp_setsockopt+0x9f/0x100
[ 2733.814978][T32519]  ? sock_common_recvmsg+0x190/0x190
[ 2733.820276][T32519]  __sys_setsockopt+0x2c6/0x5b0
[ 2733.825134][T32519]  ? __ia32_sys_recv+0x100/0x100
[ 2733.830080][T32519]  ? restore_fpregs_from_fpstate+0xc1/0x1c0
[ 2733.836010][T32519]  __x64_sys_setsockopt+0xbe/0x160
[ 2733.841128][T32519]  ? syscall_enter_from_user_mode+0x26/0xb0
[ 2733.847053][T32519]  do_syscall_64+0x39/0xb0
[ 2733.851486][T32519]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2733.857393][T32519] RIP: 0033:0x7f607188d71a
[ 2733.861828][T32519] Code: 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 49 89 ca b8 36 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 2733.881455][T32519] RSP: 002b:00007ffcecf4ecd8 EFLAGS: 00000206 ORIG_RAX: 0000000000000036
[ 2733.889874][T32519] RAX: ffffffffffffffda RBX: 0000000000000029 RCX: 00007f607188d71a
[ 2733.897860][T32519] RDX: 0000000000000040 RSI: 0000000000000029 RDI: 0000000000000003
[ 2733.905856][T32519] RBP: 00007ffcecf4ed00 R08: 00000000000003b8 R09: ffffffffff000000
[ 2733.913827][T32519] R10: 00007f6071983bc0 R11: 0000000000000206 R12: 00007ffcecf4ed60
[ 2733.921801][T32519] R13: 0000000000000003 R14: 00007ffcecf4ecfc R15: 00007f6071983b60
[ 2733.929789][T32519]  </TASK>
[ 2733.975750][T32519] memory: usage 10336kB, limit 0kB, failcnt 817
[ 2733.982394][T32519] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2734.021327][T32519] Memory cgroup stats for /syz5:
[ 2734.021555][T32519] anon 45056
[ 2734.021555][T32519] file 10432512
[ 2734.021555][T32519] kernel 106496
[ 2734.021555][T32519] kernel_stack 0
[ 2734.021555][T32519] pagetables 8192
[ 2734.021555][T32519] sec_pagetables 0
[ 2734.021555][T32519] percpu 64
[ 2734.021555][T32519] sock 0
[ 2734.021555][T32519] vmalloc 0
[ 2734.021555][T32519] shmem 10432512
[ 2734.021555][T32519] zswap 0
[ 2734.021555][T32519] zswapped 0
[ 2734.021555][T32519] file_mapped 233472
[ 2734.021555][T32519] file_dirty 0
21:26:42 executing program 3:
openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0)
openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_int(r0, &(0x7f00000000c0)='memory.max\x00', 0x2, 0x0)
getpid()
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x1f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='blkio.bfq.io_service_time\x00', 0x26e1, 0x0)
write$cgroup_int(r2, &(0x7f0000000040), 0x12)
close(r2)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000280)='host1x_cdma_push_wide\x00'}, 0x10)
write$cgroup_int(r1, &(0x7f0000000040), 0x12)

[ 2734.021555][T32519] file_writeback 0
[ 2734.021555][T32519] swapcached 0
[ 2734.021555][T32519] anon_thp 0
[ 2734.021555][T32519] file_thp 0
[ 2734.021555][T32519] shmem_thp 0
[ 2734.021555][T32519] inactive_anon 2142208
[ 2734.021555][T32519] active_anon 8335360
[ 2734.021555][T32519] inactive_file 0
[ 2734.021555][T32519] active_file 0
[ 2734.021555][T32519] unevictable 0
[ 2734.021555][T32519] slab_reclaimable 34792
[ 2734.021555][T32519] slab_unreclaimable 48000
[ 2734.021555][T32519] slab 82792
[ 2734.161702][T10995] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
21:26:43 executing program 3:
openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0)
openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
perf_event_open(0x0, 0xffffffffffffffff, 0xb, 0xffffffffffffffff, 0x0)
r0 = openat$cgroup_int(0xffffffffffffffff, &(0x7f00000000c0)='memory.max\x00', 0x2, 0x0)
getpid()
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x1f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='blkio.bfq.io_service_time\x00', 0x26e1, 0x0)
write$cgroup_int(r1, &(0x7f0000000040), 0x12)
close(r1)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000280)='host1x_cdma_push_wide\x00'}, 0x10)
write$cgroup_int(r0, &(0x7f0000000040), 0x12)

[ 2734.343791][T10995] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
21:26:43 executing program 2:
openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0)
openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
openat$cgroup_int(r0, &(0x7f00000000c0)='memory.max\x00', 0x2, 0x0)
bpf$ITER_CREATE(0x21, &(0x7f0000000340), 0x8)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='blkio.bfq.io_service_time\x00', 0x26e1, 0x0)
write$cgroup_int(r1, &(0x7f0000000040), 0x12)
close(r1)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_open_procfs$namespace(0x0, 0x0)
write$cgroup_int(0xffffffffffffffff, &(0x7f0000000040), 0x12)

[ 2734.421022][ T5120] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 2734.434036][ T5120] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 2734.442650][ T5120] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 2734.455181][ T5120] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 2734.464660][T10995] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2734.479448][ T5120] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[ 2734.490095][ T5120] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 2734.678862][T32519] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz5,mems_allowed=0-1,oom_memcg=/syz5,task_memcg=/syz5,task=syz-executor.5,pid=32519,uid=0
[ 2734.705735][T32519] Memory cgroup out of memory: Killed process 32519 (syz-executor.5) total-vm:50568kB, anon-rss:364kB, file-rss:9088kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:0
[ 2734.723859][T10995] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2734.742010][T32504] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=0
[ 2734.766693][T32504] CPU: 1 PID: 32504 Comm: syz-executor.0 Not tainted 6.2.0-rc2-syzkaller-00431-g0164776a2ce7 #0
[ 2734.777262][T32504] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 2734.787350][T32504] Call Trace:
[ 2734.790653][T32504]  <TASK>
[ 2734.793610][T32504]  dump_stack_lvl+0xd1/0x138
[ 2734.798243][T32504]  dump_header+0x10b/0x85f
[ 2734.802682][T32504]  oom_kill_process.cold+0x10/0x15
[ 2734.807810][T32504]  out_of_memory+0x35c/0x14a0
[ 2734.812524][T32504]  ? oom_killer_disable+0x280/0x280
[ 2734.817737][T32504]  ? find_held_lock+0x2d/0x110
[ 2734.822533][T32504]  mem_cgroup_out_of_memory+0x206/0x270
[ 2734.828110][T32504]  ? mem_cgroup_margin+0x130/0x130
[ 2734.833316][T32504]  ? lock_downgrade+0x6e0/0x6e0
[ 2734.838193][T32504]  try_charge_memcg+0xefb/0x12f0
[ 2734.843152][T32504]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 2734.849145][T32504]  ? get_mem_cgroup_from_objcg+0xa1/0x260
[ 2734.854876][T32504]  ? lock_downgrade+0x6e0/0x6e0
[ 2734.859736][T32504]  ? lock_downgrade+0x6e0/0x6e0
[ 2734.864593][T32504]  ? rcu_read_unlock+0x9/0x60
[ 2734.869297][T32504]  obj_cgroup_charge+0x2af/0x5e0
[ 2734.874251][T32504]  ? prepare_creds+0x43/0x7b0
[ 2734.878962][T32504]  kmem_cache_alloc+0xb5/0x430
[ 2734.883739][T32504]  ? __validate_process_creds+0x210/0x370
[ 2734.889481][T32504]  prepare_creds+0x43/0x7b0
[ 2734.894007][T32504]  copy_creds+0xa7/0xd50
[ 2734.898271][T32504]  copy_process+0xd60/0x7520
[ 2734.902875][T32504]  ? _raw_spin_unlock+0x28/0x40
[ 2734.907742][T32504]  ? wp_page_reuse+0x197/0x570
[ 2734.912538][T32504]  ? do_wp_page+0x844/0x3370
[ 2734.917152][T32504]  ? __cleanup_sighand+0xb0/0xb0
[ 2734.922097][T32504]  ? finish_mkwrite_fault+0x3d0/0x3d0
[ 2734.927490][T32504]  ? rwlock_bug.part.0+0x90/0x90
[ 2734.932442][T32504]  ? lock_chain_count+0x20/0x20
[ 2734.937306][T32504]  kernel_clone+0xeb/0x990
[ 2734.941738][T32504]  ? create_io_thread+0xf0/0xf0
[ 2734.946608][T32504]  ? find_held_lock+0x2d/0x110
[ 2734.951400][T32504]  __do_sys_clone+0xba/0x100
[ 2734.956016][T32504]  ? kernel_clone+0x990/0x990
[ 2734.960717][T32504]  ? syscall_enter_from_user_mode+0x26/0xb0
[ 2734.966630][T32504]  do_syscall_64+0x39/0xb0
[ 2734.971068][T32504]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2734.977015][T32504] RIP: 0033:0x7f1b58289dfb
[ 2734.981461][T32504] Code: ed 0f 85 60 01 00 00 64 4c 8b 0c 25 10 00 00 00 45 31 c0 4d 8d 91 d0 02 00 00 31 d2 31 f6 bf 11 00 20 01 b8 38 00 00 00 0f 05 <48> 3d 00 f0 ff ff 0f 87 89 00 00 00 41 89 c5 85 c0 0f 85 90 00 00
[ 2735.001085][T32504] RSP: 002b:00007ffed99e65d0 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[ 2735.009512][T32504] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f1b58289dfb
[ 2735.017505][T32504] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011
[ 2735.025501][T32504] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000555556060400
[ 2735.033478][T32504] R10: 00005555560606d0 R11: 0000000000000246 R12: 0000000000000001
[ 2735.041456][T32504] R13: 0000000000000000 R14: 0000000000000001 R15: 00007ffed99e66b0
[ 2735.049452][T32504]  </TASK>
[ 2735.093546][T32504] memory: usage 10368kB, limit 0kB, failcnt 713
[ 2735.099962][T32504] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2735.106995][T32504] Memory cgroup stats for /syz0:
[ 2735.107160][T32504] anon 45056
[ 2735.107160][T32504] file 10448896
[ 2735.107160][T32504] kernel 122880
[ 2735.107160][T32504] kernel_stack 32768
[ 2735.107160][T32504] pagetables 8192
[ 2735.107160][T32504] sec_pagetables 0
[ 2735.107160][T32504] percpu 0
[ 2735.107160][T32504] sock 0
[ 2735.107160][T32504] vmalloc 0
[ 2735.107160][T32504] shmem 10448896
[ 2735.107160][T32504] zswap 0
[ 2735.107160][T32504] zswapped 0
[ 2735.107160][T32504] file_mapped 315392
[ 2735.107160][T32504] file_dirty 0
[ 2735.107160][T32504] file_writeback 0
[ 2735.107160][T32504] swapcached 0
[ 2735.107160][T32504] anon_thp 0
[ 2735.107160][T32504] file_thp 0
[ 2735.107160][T32504] shmem_thp 0
[ 2735.107160][T32504] inactive_anon 45056
[ 2735.107160][T32504] active_anon 10448896
[ 2735.107160][T32504] inactive_file 0
[ 2735.107160][T32504] active_file 0
[ 2735.107160][T32504] unevictable 0
[ 2735.107160][T32504] slab_reclaimable 32480
[ 2735.107160][T32504] slab_unreclaimable 39792
[ 2735.107160][T32504] slab 72272
[ 2735.215735][T32504] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=32504,uid=0
[ 2735.231799][T32504] Memory cgroup out of memory: Killed process 32504 (syz-executor.0) total-vm:50568kB, anon-rss:364kB, file-rss:8960kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:0
21:26:44 executing program 5:
openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0)
openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
perf_event_open(0x0, 0xffffffffffffffff, 0xb, 0xffffffffffffffff, 0x0)
r1 = openat$cgroup_int(r0, &(0x7f00000000c0)='memory.max\x00', 0x2, 0x0)
getpid()
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x1f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000300)='cpuacct.usage_all\x00', 0x0, 0x0)
bpf$ITER_CREATE(0x21, &(0x7f00000002c0)={r2}, 0x8)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='blkio.bfq.io_service_time\x00', 0x26e1, 0x0)
write$cgroup_int(r3, &(0x7f0000000040), 0x12)
close(r3)
syz_open_procfs$namespace(0x0, 0x0)
write$cgroup_int(r1, &(0x7f0000000040), 0x12)

[ 2735.760711][  T355] chnl_net:caif_netlink_parms(): no params data found
[ 2736.147939][  T355] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2736.160359][  T355] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2736.168618][  T355] device bridge_slave_0 entered promiscuous mode
[ 2736.194486][  T355] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2736.210418][  T355] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2736.218545][  T355] device bridge_slave_1 entered promiscuous mode
[ 2736.274342][  T355] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 2736.288493][  T355] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 2736.379052][  T355] team0: Port device team_slave_0 added
[ 2736.387457][  T355] team0: Port device team_slave_1 added
[ 2736.490482][  T355] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 2736.498178][  T355] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2736.558965][  T355] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 2736.579397][T14879] Bluetooth: hci0: command 0x0409 tx timeout
[ 2736.603773][  T355] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 2736.610970][  T355] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2736.669476][  T355] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 2736.819302][ T5120] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 2736.829431][ T5120] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 2736.837607][ T5120] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 2736.845623][ T5120] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 2736.853955][ T5120] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[ 2736.861435][ T5120] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 2736.888324][  T355] device hsr_slave_0 entered promiscuous mode
[ 2736.898113][  T355] device hsr_slave_1 entered promiscuous mode
[ 2736.905390][  T355] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 2736.915259][  T355] Cannot create hsr debugfs directory
[ 2737.170754][T10995] device hsr_slave_0 left promiscuous mode
[ 2737.179652][T10995] device hsr_slave_1 left promiscuous mode
[ 2737.194649][T10995] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 2737.202243][T10995] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 2737.212358][T10995] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 2737.223848][T10995] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 2737.234300][T10995] device bridge_slave_1 left promiscuous mode
[ 2737.241089][T10995] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2737.250597][T10995] device bridge_slave_0 left promiscuous mode
[ 2737.256843][T10995] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2737.272067][T10995] device veth1_macvtap left promiscuous mode
[ 2737.278160][T10995] device veth0_macvtap left promiscuous mode
[ 2737.284800][T10995] device veth1_vlan left promiscuous mode
[ 2737.291164][T10995] device veth0_vlan left promiscuous mode
[ 2737.493134][T14879] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 2737.506753][T14879] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 2737.515348][T14879] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 2737.524880][T14879] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 2737.533345][T14879] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[ 2737.541163][T14879] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 2737.604383][T10995] team0 (unregistering): Port device team_slave_1 removed
[ 2737.617845][T10995] team0 (unregistering): Port device team_slave_0 removed
[ 2737.632392][T10995] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 2737.646393][T10995] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 2737.725610][T10995] bond0 (unregistering): Released all slaves
[ 2738.111658][  T380] chnl_net:caif_netlink_parms(): no params data found
[ 2738.553567][  T389] chnl_net:caif_netlink_parms(): no params data found
[ 2738.649109][T14879] Bluetooth: hci0: command 0x041b tx timeout
[ 2738.710036][  T380] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2738.717167][  T380] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2738.760278][  T380] device bridge_slave_0 entered promiscuous mode
[ 2738.840184][  T380] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2738.847330][  T380] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2738.870033][  T380] device bridge_slave_1 entered promiscuous mode
[ 2738.889216][T14879] Bluetooth: hci2: command 0x0409 tx timeout
[ 2738.983153][  T380] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 2739.112254][  T380] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 2739.144246][  T389] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2739.153581][  T389] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2739.180183][  T389] device bridge_slave_0 entered promiscuous mode
[ 2739.295005][  T389] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2739.329073][  T389] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2739.337392][  T389] device bridge_slave_1 entered promiscuous mode
[ 2739.350169][  T355] netdevsim netdevsim4 netdevsim0: renamed from eth0
[ 2739.375244][  T380] team0: Port device team_slave_0 added
[ 2739.389581][  T380] team0: Port device team_slave_1 added
[ 2739.427562][  T355] netdevsim netdevsim4 netdevsim1: renamed from eth1
[ 2739.494867][  T389] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 2739.514064][  T355] netdevsim netdevsim4 netdevsim2: renamed from eth2
[ 2739.531647][  T380] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 2739.538637][  T380] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2739.580632][  T380] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 2739.602023][  T389] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 2739.611697][T14879] Bluetooth: hci3: command 0x0409 tx timeout
[ 2739.652724][  T355] netdevsim netdevsim4 netdevsim3: renamed from eth3
[ 2739.692700][  T380] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 2739.708800][  T380] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2739.754630][  T380] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 2739.837959][  T389] team0: Port device team_slave_0 added
[ 2739.892654][  T389] team0: Port device team_slave_1 added
[ 2739.910977][  T380] device hsr_slave_0 entered promiscuous mode
[ 2739.934085][  T380] device hsr_slave_1 entered promiscuous mode
[ 2739.946723][  T380] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 2739.968862][  T380] Cannot create hsr debugfs directory
[ 2740.058911][  T389] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 2740.065902][  T389] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2740.131831][  T389] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 2740.204354][  T389] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 2740.218279][  T389] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2740.283931][  T389] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 2740.428297][  T389] device hsr_slave_0 entered promiscuous mode
[ 2740.448471][  T389] device hsr_slave_1 entered promiscuous mode
[ 2740.463966][  T389] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 2740.472870][  T389] Cannot create hsr debugfs directory
[ 2740.486991][  T355] 8021q: adding VLAN 0 to HW filter on device bond0
[ 2740.578999][T17601] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 2740.586949][T17601] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 2740.640476][  T355] 8021q: adding VLAN 0 to HW filter on device team0
[ 2740.684845][T17601] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 2740.695180][T17601] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 2740.705360][T17601] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2740.712552][T17601] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 2740.720777][T17601] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 2740.729914][T17601] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 2740.738461][T17601] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2740.739149][T14879] Bluetooth: hci0: command 0x040f tx timeout
[ 2740.745678][T17601] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 2740.860325][  T380] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2740.978884][ T5120] Bluetooth: hci2: command 0x041b tx timeout
[ 2740.991047][T23940] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 2740.999814][T23940] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 2741.053305][  T380] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2741.106671][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 2741.120130][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 2741.140106][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 2741.167814][  T355] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 2741.215464][  T355] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 2741.319784][  T380] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2741.351778][T17601] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 2741.370390][T17601] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 2741.389438][T17601] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 2741.399986][T17601] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 2741.419819][T17601] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 2741.499895][  T380] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2741.559637][T17601] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 2741.698780][ T5120] Bluetooth: hci3: command 0x041b tx timeout
[ 2741.740648][  T389] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2741.860001][T10995] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2742.009860][  T389] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2742.121834][T10995] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2742.209739][  T389] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2742.366962][  T355] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 2742.421113][T10995] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2742.610758][  T389] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2742.659299][T17605] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 2742.666884][T17605] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 2742.749619][T10995] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2742.808855][ T5120] Bluetooth: hci0: command 0x0419 tx timeout
[ 2743.048973][ T5120] Bluetooth: hci2: command 0x040f tx timeout
[ 2743.132892][T10995] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2743.187663][  T389] netdevsim netdevsim2 netdevsim0: renamed from eth0
[ 2743.215042][  T389] netdevsim netdevsim2 netdevsim1: renamed from eth1
[ 2743.266852][T10995] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2743.361419][  T389] netdevsim netdevsim2 netdevsim2: renamed from eth2
[ 2743.379884][T23935] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 2743.390342][T23935] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 2743.426215][  T355] device veth0_vlan entered promiscuous mode
[ 2743.455146][T10995] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2743.469965][  T389] netdevsim netdevsim2 netdevsim3: renamed from eth3
[ 2743.480880][T17601] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 2743.490693][T17601] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 2743.525706][  T355] device veth1_vlan entered promiscuous mode
[ 2743.546074][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 2743.560261][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 2743.570610][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 2743.584731][T10995] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2743.619395][  T380] netdevsim netdevsim3 netdevsim0: renamed from eth0
[ 2743.636504][  T380] netdevsim netdevsim3 netdevsim1: renamed from eth1
[ 2743.668212][  T380] netdevsim netdevsim3 netdevsim2: renamed from eth2
[ 2743.692852][  T380] netdevsim netdevsim3 netdevsim3: renamed from eth3
[ 2743.746601][T17500] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 2743.757745][T17500] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 2743.775464][T17500] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 2743.788782][ T5120] Bluetooth: hci3: command 0x040f tx timeout
[ 2743.811518][  T355] device veth0_macvtap entered promiscuous mode
[ 2743.893140][  T355] device veth1_macvtap entered promiscuous mode
[ 2744.009768][  T389] 8021q: adding VLAN 0 to HW filter on device bond0
[ 2744.053256][  T355] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2744.086137][  T355] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2744.108228][  T355] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2744.128815][  T355] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2744.138685][  T355] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2744.149920][  T355] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2744.169535][  T355] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2744.181378][  T355] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2744.191465][  T355] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2744.202223][  T355] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2744.226316][  T355] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 2744.256105][  T483] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 2744.270277][  T483] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 2744.278481][  T483] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 2744.299367][  T483] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 2744.316127][  T389] 8021q: adding VLAN 0 to HW filter on device team0
[ 2744.348312][  T355] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2744.371650][  T355] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2744.389485][  T355] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2744.412297][  T355] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2744.433611][  T355] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2744.455349][  T355] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2744.476244][  T355] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2744.506665][  T355] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2744.527426][  T355] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2744.548586][  T355] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2744.571373][  T355] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 2744.606369][T21233] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 2744.620233][T21233] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 2744.628222][T21233] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 2744.650730][T21233] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 2744.672392][  T380] 8021q: adding VLAN 0 to HW filter on device bond0
[ 2744.693248][  T355] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 2744.702341][  T355] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 2744.712469][  T355] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 2744.721590][  T355] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 2744.734216][T18311] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 2744.743966][T18311] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 2744.753223][T18311] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 2744.762258][T18311] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 2744.771313][T18311] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2744.778391][T18311] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 2744.786855][T18311] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 2744.799606][  T380] 8021q: adding VLAN 0 to HW filter on device team0
[ 2744.872189][T17500] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 2744.885335][T17500] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 2744.895156][T17500] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2744.902347][T17500] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 2744.964400][ T9919] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 2744.973520][ T9919] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 2744.982501][ T9919] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 2744.991113][ T9919] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2744.998198][ T9919] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 2745.007157][ T9919] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 2745.015917][ T9919] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 2745.024890][ T9919] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 2745.033532][ T9919] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2745.040729][ T9919] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 2745.130068][ T5120] Bluetooth: hci2: command 0x0419 tx timeout
[ 2745.144731][ T9919] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 2745.160690][ T9919] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 2745.170753][ T9919] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 2745.180167][ T9919] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 2745.237387][ T9919] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 2745.246865][ T9919] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 2745.255725][ T9919] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 2745.264749][ T9919] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 2745.348819][ T9919] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 2745.358392][ T9919] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 2745.367621][ T9919] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 2745.376222][ T9919] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 2745.385589][ T9919] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 2745.394397][ T9919] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 2745.460979][  T389] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 2745.483820][ T9919] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 2745.497136][  T380] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 2745.529706][  T380] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 2745.557928][T17514] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2745.566654][T18311] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 2745.595978][T18311] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 2745.610490][T17514] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2745.717905][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 2745.849405][ T5120] Bluetooth: hci3: command 0x0419 tx timeout
[ 2745.864702][T14861] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2745.893407][T14861] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2746.050071][T18311] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 2746.182719][T18311] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 2746.189125][  T518] syz-executor.4 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2746.199026][T18311] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 2746.216149][  T380] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 2746.219435][  T518] CPU: 0 PID: 518 Comm: syz-executor.4 Not tainted 6.2.0-rc2-syzkaller-00431-g0164776a2ce7 #0
[ 2746.233209][  T518] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 2746.243305][  T518] Call Trace:
[ 2746.246716][  T518]  <TASK>
[ 2746.249676][  T518]  dump_stack_lvl+0xd1/0x138
[ 2746.254312][  T518]  dump_header+0x10b/0x85f
[ 2746.258770][  T518]  oom_kill_process.cold+0x10/0x15
[ 2746.263928][  T518]  out_of_memory+0x35c/0x14a0
[ 2746.268648][  T518]  ? oom_killer_disable+0x280/0x280
[ 2746.273893][  T518]  mem_cgroup_out_of_memory+0x206/0x270
[ 2746.279467][  T518]  ? mem_cgroup_margin+0x130/0x130
[ 2746.284614][  T518]  memory_max_write+0x2f9/0x3c0
[ 2746.289488][  T518]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 2746.295579][  T518]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 2746.301760][  T518]  cgroup_file_write+0x1e2/0x770
[ 2746.306717][  T518]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 2746.312804][  T518]  ? kill_css+0x370/0x370
[ 2746.317176][  T518]  ? kill_css+0x370/0x370
[ 2746.321526][  T518]  kernfs_fop_write_iter+0x3f1/0x600
[ 2746.326840][  T518]  vfs_write+0x9ed/0xdd0
[ 2746.331106][  T518]  ? kernel_write+0x630/0x630
[ 2746.335807][  T518]  ? __fget_files+0x26a/0x440
[ 2746.340537][  T518]  ksys_write+0x12b/0x250
[ 2746.344887][  T518]  ? __ia32_sys_read+0xb0/0xb0
[ 2746.349686][  T518]  ? syscall_enter_from_user_mode+0x26/0xb0
[ 2746.355606][  T518]  do_syscall_64+0x39/0xb0
[ 2746.360050][  T518]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2746.365974][  T518] RIP: 0033:0x7fdc9208c0c9
[ 2746.370413][  T518] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 2746.390381][  T518] RSP: 002b:00007fdc92d8e168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 2746.398920][  T518] RAX: ffffffffffffffda RBX: 00007fdc921abf80 RCX: 00007fdc9208c0c9
[ 2746.407012][  T518] RDX: 0000000000000012 RSI: 0000000020000040 RDI: 0000000000000004
[ 2746.415036][  T518] RBP: 00007fdc920e7ae9 R08: 0000000000000000 R09: 0000000000000000
[ 2746.423053][  T518] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2746.431079][  T518] R13: 00007ffc8d8d9d7f R14: 00007fdc92d8e300 R15: 0000000000022000
[ 2746.439088][  T518]  </TASK>
[ 2746.476263][T21233] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 2746.478636][  T518] memory: usage 8552kB, limit 0kB, failcnt 723
[ 2746.491325][  T518] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2746.498393][  T518] Memory cgroup stats for /syz4:
[ 2746.498592][  T518] anon 118784
[ 2746.498592][  T518] file 8355840
[ 2746.498592][  T518] kernel 282624
[ 2746.498592][  T518] kernel_stack 65536
[ 2746.498592][  T518] pagetables 77824
[ 2746.498592][  T518] sec_pagetables 0
[ 2746.498592][  T518] percpu 64
[ 2746.498592][  T518] sock 0
[ 2746.498592][  T518] vmalloc 0
[ 2746.498592][  T518] shmem 8351744
[ 2746.498592][  T518] zswap 0
[ 2746.498592][  T518] zswapped 0
[ 2746.498592][  T518] file_mapped 290816
[ 2746.498592][  T518] file_dirty 0
[ 2746.498592][  T518] file_writeback 0
[ 2746.498592][  T518] swapcached 0
[ 2746.498592][  T518] anon_thp 0
[ 2746.498592][  T518] file_thp 0
[ 2746.498592][  T518] shmem_thp 0
[ 2746.498592][  T518] inactive_anon 118784
[ 2746.498592][  T518] active_anon 8351744
[ 2746.498592][  T518] inactive_file 4096
[ 2746.498592][  T518] active_file 0
[ 2746.498592][  T518] unevictable 0
[ 2746.498592][  T518] slab_reclaimable 40136
[ 2746.498592][  T518] slab_unreclaimable 72456
[ 2746.498592][  T518] slab 112592
[ 2746.499863][T21233] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 2746.507175][  T518] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0-1,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=517,uid=0
[ 2746.622910][  T518] Memory cgroup out of memory: Killed process 517 (syz-executor.4) total-vm:54540kB, anon-rss:500kB, file-rss:8960kB, shmem-rss:0kB, UID:0 pgtables:80kB oom_score_adj:1000
[ 2746.666877][T21233] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
21:26:55 executing program 4:
openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_int(r0, &(0x7f00000000c0)='memory.max\x00', 0x2, 0x0)
getpid()
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x1f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000300)='cpuacct.usage_all\x00', 0x0, 0x0)
bpf$ITER_CREATE(0x21, &(0x7f00000002c0)={r2}, 0x8)
getpid()
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='blkio.bfq.io_service_time\x00', 0x26e1, 0x0)
write$cgroup_int(r3, &(0x7f0000000040), 0x12)
close(r3)
syz_open_procfs$namespace(0x0, 0x0)
write$cgroup_int(r1, &(0x7f0000000040), 0x12)

21:26:55 executing program 0:
openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0)
openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_int(r0, &(0x7f00000000c0)='memory.max\x00', 0x2, 0x0)
getpid()
r2 = bpf$ITER_CREATE(0x21, &(0x7f0000000340), 0x8)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='blkio.bfq.io_service_time\x00', 0x26e1, 0x0)
write$cgroup_int(r3, &(0x7f0000000040), 0x12)
close(r3)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000280)='host1x_cdma_push_wide\x00', r2}, 0x10)
write$cgroup_int(r1, &(0x7f0000000040), 0x12)

21:26:55 executing program 5:
openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0)
openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
perf_event_open(0x0, 0xffffffffffffffff, 0xb, 0xffffffffffffffff, 0x0)
r1 = openat$cgroup_int(r0, &(0x7f00000000c0)='memory.max\x00', 0x2, 0x0)
getpid()
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x1f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000300)='cpuacct.usage_all\x00', 0x0, 0x0)
bpf$ITER_CREATE(0x21, &(0x7f00000002c0)={r2}, 0x8)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='blkio.bfq.io_service_time\x00', 0x26e1, 0x0)
write$cgroup_int(r3, &(0x7f0000000040), 0x12)
close(r3)
syz_open_procfs$namespace(0x0, 0x0)
write$cgroup_int(r1, &(0x7f0000000040), 0x12)

21:26:55 executing program 1:
r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0)
perf_event_open(&(0x7f0000000180)={0x0, 0x80, 0x0, 0x7c, 0x4, 0xd2, 0x0, 0x5, 0x0, 0x74d4e3ef7733d4ea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x26, 0x0, @perf_bp={0x0}, 0x210, 0x0, 0x1f, 0x3, 0x0, 0x0, 0xffff}, 0x0, 0x0, 0xffffffffffffffff, 0x9)
openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
perf_event_open(&(0x7f0000000200)={0x4, 0x80, 0x9, 0x0, 0x0, 0x5, 0x0, 0xffffffff, 0x800, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x2, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x2, 0x2, @perf_bp={&(0x7f0000000100), 0x5}, 0x0, 0x100000000, 0x2a, 0x0, 0x8, 0x40, 0x0, 0x0, 0x3f, 0x0, 0x4000000000000000}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
recvmsg(0xffffffffffffffff, 0x0, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f00000002c0)='cpuacct.usage_percpu_sys\x00', 0x0, 0x0)
perf_event_open$cgroup(&(0x7f00000003c0)={0x4, 0x80, 0x1, 0xff, 0x1, 0x5, 0x0, 0x800000000000008, 0x21001, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x3, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0xffff0000, 0x4, @perf_bp={&(0x7f0000000380), 0x8}, 0x40ae, 0xe, 0x78d8, 0x5, 0x7, 0x7, 0x1ff}, 0xffffffffffffffff, 0xc, r0, 0xc)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000018c00)={0x18, 0x3, &(0x7f0000000780)=ANY=[@ANYBLOB="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"], &(0x7f0000000440)='syzkaller\x00', 0x4, 0xb0, &(0x7f0000000480)=""/176, 0x0, 0x0, '\x00', 0x0, 0x0, r1, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
r3 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='rcu_utilization\x00', r2}, 0x10)
r4 = perf_event_open$cgroup(&(0x7f0000000080)={0x4, 0x80, 0x81, 0x5, 0x6, 0x0, 0x0, 0x8000000000000000, 0x848, 0x4, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x3, 0x0, @perf_config_ext={0x912410d}, 0x8800, 0xffffffff, 0x7, 0x6, 0x3f, 0x7, 0x8dd, 0x0, 0x5, 0x0, 0x1}, 0xffffffffffffffff, 0xb, 0xffffffffffffffff, 0x9)
ioctl$PERF_EVENT_IOC_SET_OUTPUT(0xffffffffffffffff, 0x2405, r4)
r5 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000540)='./cgroup.cpu/syz1\x00', 0x200002, 0x0)
openat$cgroup_ro(r5, &(0x7f0000000640)='cgroup.stat\x00', 0x0, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r4, 0x40082404, &(0x7f0000000580)=0xffffffffffffff7f)
r6 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000000)='cpuacct.usage_percpu_sys\x00', 0x26e1, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r6, 0x40086607, &(0x7f0000000040))
r7 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x26e1, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000018c00)={0x18, 0x3, &(0x7f0000000300)=ANY=[@ANYRES64=r1], 0x0, 0x4, 0xb0, &(0x7f0000000480)=""/176, 0x40f00, 0x5, '\x00', 0x0, 0x0, r7, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x0, 0x204d, &(0x7f00000005c0)=ANY=[@ANYRES32], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x18, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000740)={0x0, 0x3}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000002c0)=[0xffffffffffffffff, r7, 0xffffffffffffffff]}, 0x80)
write$cgroup_int(r7, &(0x7f0000000280)=0x1ff, 0x12)
r8 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000001e00)={&(0x7f0000001dc0)='./file0\x00', 0x0, 0x10}, 0x10)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000001e80)=@bpf_lsm={0x1d, 0x2, &(0x7f0000000700)=@raw=[@map_idx={0x18, 0x4}], &(0x7f0000002340)='GPL\x00', 0x5, 0x33, &(0x7f0000002380)=""/51, 0x41100, 0x2, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f00000023c0)={0x5, 0x4}, 0x8, 0x10, &(0x7f0000002400)={0x3, 0xa, 0x6, 0xae2e}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000002500)=[r0, r8, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}, 0x80)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={0xffffffffffffffff, 0x18000000000002a0, 0x0, 0x0, &(0x7f00000001c0), 0x0, 0x0, 0xe8030000, 0x0, 0x0, 0x0, 0x0}, 0x48)
ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x89f2, &(0x7f0000000080)='ip6tnl0\x00')
socketpair(0x1e, 0x5, 0x20, &(0x7f0000000600))
socketpair(0x1, 0x1, 0x0, &(0x7f0000000740)={0xffffffffffffffff, <r9=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r9, 0x89f1, &(0x7f0000000080))
close(r3)

[ 2746.687579][T21233] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 2746.717492][  T355] syz-executor.4 invoked oom-killer: gfp_mask=0x400cc0(GFP_KERNEL_ACCOUNT), order=0, oom_score_adj=0
[ 2746.758874][  T355] CPU: 0 PID: 355 Comm: syz-executor.4 Not tainted 6.2.0-rc2-syzkaller-00431-g0164776a2ce7 #0
[ 2746.769185][  T355] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 2746.779267][  T355] Call Trace:
[ 2746.782557][  T355]  <TASK>
[ 2746.785511][  T355]  dump_stack_lvl+0xd1/0x138
[ 2746.790134][  T355]  dump_header+0x10b/0x85f
[ 2746.794616][  T355]  oom_kill_process.cold+0x10/0x15
[ 2746.799754][  T355]  out_of_memory+0x35c/0x14a0
[ 2746.804448][  T355]  ? find_held_lock+0x2d/0x110
[ 2746.809251][  T355]  ? oom_killer_disable+0x280/0x280
[ 2746.814496][  T355]  ? find_held_lock+0x2d/0x110
[ 2746.819286][  T355]  mem_cgroup_out_of_memory+0x206/0x270
[ 2746.824862][  T355]  ? mem_cgroup_margin+0x130/0x130
[ 2746.829975][  T355]  ? lock_downgrade+0x6e0/0x6e0
[ 2746.834844][  T355]  try_charge_memcg+0xefb/0x12f0
[ 2746.839796][  T355]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 2746.845868][  T355]  ? get_mem_cgroup_from_objcg+0xa1/0x260
[ 2746.851593][  T355]  ? lock_downgrade+0x6e0/0x6e0
[ 2746.856446][  T355]  ? lock_downgrade+0x6e0/0x6e0
[ 2746.861303][  T355]  ? rcu_read_unlock+0x9/0x60
[ 2746.866001][  T355]  obj_cgroup_charge+0x2af/0x5e0
[ 2746.870968][  T355]  __kmem_cache_alloc_node+0xb2/0x430
[ 2746.876364][  T355]  ? kvmalloc_node+0xa2/0x1a0
[ 2746.881060][  T355]  ? kvmalloc_node+0xa2/0x1a0
[ 2746.885743][  T355]  __kmalloc_node+0x4d/0xd0
[ 2746.890262][  T355]  kvmalloc_node+0xa2/0x1a0
[ 2746.894776][  T355]  xt_alloc_table_info+0x40/0xa0
[ 2746.899716][  T355]  do_ip6t_set_ctl+0x514/0xb30
[ 2746.904537][  T355]  ? trace_contention_end+0x153/0x1e0
[ 2746.909953][  T355]  ? __mutex_lock+0x231/0x1360
[ 2746.914739][  T355]  ? compat_do_replace.constprop.0+0x410/0x410
[ 2746.920998][  T355]  ? wait_for_completion_io_timeout+0x20/0x20
[ 2746.927073][  T355]  ? finish_mkwrite_fault+0x3d0/0x3d0
[ 2746.932491][  T355]  ? nf_sockopt_find.constprop.0+0x22d/0x2a0
[ 2746.938503][  T355]  nf_setsockopt+0x87/0xe0
[ 2746.942936][  T355]  ipv6_setsockopt+0x12b/0x190
[ 2746.947720][  T355]  tcp_setsockopt+0x9f/0x100
[ 2746.952319][  T355]  ? sock_common_recvmsg+0x190/0x190
[ 2746.957629][  T355]  __sys_setsockopt+0x2c6/0x5b0
[ 2746.962483][  T355]  ? __ia32_sys_recv+0x100/0x100
[ 2746.967424][  T355]  ? up_write+0x520/0x520
[ 2746.971772][  T355]  ? handle_mm_fault+0x25b/0x850
[ 2746.976734][  T355]  __x64_sys_setsockopt+0xbe/0x160
[ 2746.981847][  T355]  ? syscall_enter_from_user_mode+0x26/0xb0
[ 2746.987823][  T355]  do_syscall_64+0x39/0xb0
[ 2746.992280][  T355]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2746.998190][  T355] RIP: 0033:0x7fdc9208d71a
[ 2747.002622][  T355] Code: 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 49 89 ca b8 36 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 2747.022229][  T355] RSP: 002b:00007ffc8d8d98e8 EFLAGS: 00000202 ORIG_RAX: 0000000000000036
[ 2747.030661][  T355] RAX: ffffffffffffffda RBX: 0000000000000029 RCX: 00007fdc9208d71a
[ 2747.038647][  T355] RDX: 0000000000000040 RSI: 0000000000000029 RDI: 0000000000000003
[ 2747.046623][  T355] RBP: 00007ffc8d8d9910 R08: 00000000000002e8 R09: ffffffffff000000
[ 2747.054593][  T355] R10: 00007fdc92185000 R11: 0000000000000202 R12: 00007ffc8d8d9970
[ 2747.062562][  T355] R13: 0000000000000003 R14: 00007ffc8d8d990c R15: 00007fdc92184fa0
[ 2747.070567][  T355]  </TASK>
[ 2747.078707][  T389] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 2747.104268][  T380] device veth0_vlan entered promiscuous mode
[ 2747.129110][  T355] memory: usage 8304kB, limit 0kB, failcnt 742
[ 2747.145161][  T355] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2747.158930][  T355] Memory cgroup stats for /syz4:
[ 2747.160609][T18311] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 2747.173993][  T355] anon 45056
[ 2747.173993][  T355] file 8351744
[ 2747.173993][  T355] kernel 106496
[ 2747.173993][  T355] kernel_stack 0
[ 2747.173993][  T355] pagetables 8192
[ 2747.173993][  T355] sec_pagetables 0
[ 2747.173993][  T355] percpu 64
[ 2747.173993][  T355] sock 0
[ 2747.173993][  T355] vmalloc 0
[ 2747.173993][  T355] shmem 8351744
[ 2747.173993][  T355] zswap 0
[ 2747.173993][  T355] zswapped 0
[ 2747.173993][  T355] file_mapped 266240
[ 2747.173993][  T355] file_dirty 0
[ 2747.173993][  T355] file_writeback 0
[ 2747.173993][  T355] swapcached 0
[ 2747.173993][  T355] anon_thp 0
[ 2747.173993][  T355] file_thp 0
[ 2747.173993][  T355] shmem_thp 0
[ 2747.173993][  T355] inactive_anon 45056
[ 2747.173993][  T355] active_anon 8351744
[ 2747.173993][  T355] inactive_file 0
[ 2747.173993][  T355] active_file 0
[ 2747.173993][  T355] unevictable 0
[ 2747.173993][  T355] slab_reclaimable 35968
[ 2747.173993][  T355] slab_unreclaimable 48000
[ 2747.173993][  T355] slab 83968
[ 2747.294455][T18311] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 2747.374746][  T380] device veth1_vlan entered promiscuous mode
[ 2747.391884][T21233] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 2747.409556][T21233] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 2747.488902][T30559] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 2747.497838][T30559] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 2747.577035][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 2747.595896][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 2747.606747][  T355] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0-1,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=355,uid=0
[ 2747.634501][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 2747.646260][  T355] Memory cgroup out of memory: Killed process 355 (syz-executor.4) total-vm:50568kB, anon-rss:364kB, file-rss:9088kB, shmem-rss:0kB, UID:0 pgtables:68kB oom_score_adj:0
[ 2747.676623][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 2747.710324][  T380] device veth0_macvtap entered promiscuous mode
[ 2747.722194][  T389] device veth0_vlan entered promiscuous mode
[ 2747.770621][T21233] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 2747.778642][T21233] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 2747.807439][T21233] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 2747.822848][  T380] device veth1_macvtap entered promiscuous mode
[ 2747.944759][  T389] device veth1_vlan entered promiscuous mode
[ 2747.973845][  T380] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2747.998053][  T380] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2748.021863][  T380] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2748.049207][  T380] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2748.069050][  T380] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2748.088940][  T380] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2748.109271][  T380] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2748.130924][  T380] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2748.143243][  T380] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2748.162632][  T380] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2748.174519][  T380] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2748.185151][  T380] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2748.196781][  T380] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 2748.213887][  T380] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2748.224771][  T380] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2748.235344][  T380] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2748.245927][  T380] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2748.256784][  T380] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2748.268188][  T380] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2748.278909][  T380] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2748.289638][  T380] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2748.299677][  T380] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2748.310438][  T380] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2748.320478][  T380] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2748.331623][  T380] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2748.343632][  T380] batman_adv: batadv0: Interface activated: batadv_slave_1
21:26:57 executing program 4:
openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_int(r0, &(0x7f00000000c0)='memory.max\x00', 0x2, 0x0)
getpid()
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x1f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000300)='cpuacct.usage_all\x00', 0x0, 0x0)
bpf$ITER_CREATE(0x21, &(0x7f00000002c0)={r2}, 0x8)
getpid()
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='blkio.bfq.io_service_time\x00', 0x26e1, 0x0)
write$cgroup_int(r3, &(0x7f0000000040), 0x12)
close(r3)
syz_open_procfs$namespace(0x0, 0x0)
write$cgroup_int(r1, &(0x7f0000000040), 0x12)

[ 2748.362293][  T380] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 2748.372874][  T380] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 2748.383110][  T380] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 2748.392240][  T380] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 2748.405789][T18311] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 2748.429588][T18311] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 2748.437621][T18311] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 2748.459856][T18311] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 2748.468454][T18311] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
21:26:57 executing program 4:
openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0)
perf_event_open(&(0x7f0000000100)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_int(r0, &(0x7f00000000c0)='memory.max\x00', 0x2, 0x0)
getpid()
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x1f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000300)='cpuacct.usage_all\x00', 0x0, 0x0)
bpf$ITER_CREATE(0x21, &(0x7f00000002c0)={r2}, 0x8)
getpid()
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='blkio.bfq.io_service_time\x00', 0x26e1, 0x0)
write$cgroup_int(r3, &(0x7f0000000040), 0x12)
close(r3)
syz_open_procfs$namespace(0x0, 0x0)
write$cgroup_int(r1, &(0x7f0000000040), 0x12)

[ 2748.492050][T18311] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 2748.509654][T18311] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 2748.588101][T30559] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 2748.619651][T30559] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 2748.630514][  T389] device veth0_macvtap entered promiscuous mode
[ 2748.734588][  T389] device veth1_macvtap entered promiscuous mode
[ 2748.821130][T14860] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2748.833139][  T389] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2748.846671][T14860] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2748.871907][  T389] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2748.908804][  T389] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2748.967599][  T389] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2748.998782][  T389] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2749.029006][  T389] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2749.068777][  T389] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2749.108785][  T389] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2749.118646][  T389] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2749.168772][  T389] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2749.178642][  T389] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2749.228825][  T389] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2749.238686][  T389] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2749.308792][  T389] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2749.331706][  T389] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 2749.353618][T23989] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 2749.364746][T23989] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 2749.373183][T23989] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 2749.381183][T14879] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 2749.390668][T14879] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 2749.399224][T23989] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 2749.407684][T14879] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 2749.415702][T14879] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[ 2749.423228][T14879] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 2749.432330][T23989] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 2749.493255][  T389] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2749.529292][  T389] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2749.548509][  T389] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2749.559717][  T389] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2749.588799][  T389] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2749.605524][  T389] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2749.628828][  T389] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2749.649813][  T389] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2749.675900][  T389] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2749.697323][  T389] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2749.709750][ T5120] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[ 2749.718304][  T389] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2749.729073][ T5120] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[ 2749.737484][ T5120] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[ 2749.746110][ T5120] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[ 2749.753534][  T389] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2749.763856][ T5120] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[ 2749.776669][ T5120] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[ 2749.778877][  T389] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2749.797849][  T389] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2749.822746][  T389] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 2749.834078][T23989] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 2749.843569][T23989] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 2749.883678][  T389] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 2749.903776][  T389] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 2749.925017][  T389] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 2749.936133][  T389] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 2749.999087][T14861] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2750.028920][T14861] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2750.039646][T30559] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
21:26:59 executing program 3:
openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0)
openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
perf_event_open(0x0, 0xffffffffffffffff, 0xb, 0xffffffffffffffff, 0x0)
r0 = openat$cgroup_int(0xffffffffffffffff, &(0x7f00000000c0)='memory.max\x00', 0x2, 0x0)
getpid()
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x1f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='blkio.bfq.io_service_time\x00', 0x26e1, 0x0)
write$cgroup_int(r1, &(0x7f0000000040), 0x12)
close(r1)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000280)='host1x_cdma_push_wide\x00'}, 0x10)
write$cgroup_int(r0, &(0x7f0000000040), 0x12)

[ 2750.250298][T23855] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2750.258489][T23855] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
21:26:59 executing program 3:
openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0)
openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
perf_event_open(0x0, 0xffffffffffffffff, 0xb, 0xffffffffffffffff, 0x0)
r0 = openat$cgroup_int(0xffffffffffffffff, &(0x7f00000000c0)='memory.max\x00', 0x2, 0x0)
getpid()
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x1f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='blkio.bfq.io_service_time\x00', 0x26e1, 0x0)
write$cgroup_int(r1, &(0x7f0000000040), 0x12)
close(r1)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000280)='host1x_cdma_push_wide\x00'}, 0x10)
write$cgroup_int(r0, &(0x7f0000000040), 0x12)

[ 2750.527739][ T9919] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 2750.573736][T14860] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2750.625850][T14860] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
21:26:59 executing program 3:
openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0)
openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
perf_event_open(0x0, 0xffffffffffffffff, 0xb, 0xffffffffffffffff, 0x0)
r1 = openat$cgroup_int(r0, &(0x7f00000000c0)='memory.max\x00', 0x2, 0x0)
getpid()
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x1f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='blkio.bfq.io_service_time\x00', 0x26e1, 0x0)
write$cgroup_int(r2, &(0x7f0000000040), 0x12)
close(r2)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000280)='host1x_cdma_push_wide\x00'}, 0x10)
write$cgroup_int(r1, &(0x7f0000000040), 0x12)

[ 2750.719522][T14879] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[ 2750.738522][T14879] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[ 2750.746819][ T9919] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 2750.755474][T14879] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[ 2750.764047][T14879] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[ 2750.771908][T14879] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[ 2750.790132][T10995] device hsr_slave_0 left promiscuous mode
[ 2750.801181][T10995] device hsr_slave_1 left promiscuous mode
21:26:59 executing program 3:
openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0)
openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
perf_event_open(0x0, 0xffffffffffffffff, 0xb, 0xffffffffffffffff, 0x0)
r1 = openat$cgroup_int(r0, &(0x7f00000000c0)='memory.max\x00', 0x2, 0x0)
getpid()
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x1f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='blkio.bfq.io_service_time\x00', 0x26e1, 0x0)
write$cgroup_int(r2, &(0x7f0000000040), 0x12)
close(r2)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000280)='host1x_cdma_push_wide\x00'}, 0x10)
write$cgroup_int(r1, &(0x7f0000000040), 0x12)

[ 2750.822495][T10995] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 2750.830437][T10995] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 2750.842123][T10995] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 2750.856949][T10995] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 2750.877404][T10995] device bridge_slave_1 left promiscuous mode
[ 2750.885873][T10995] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2750.917485][T10995] device bridge_slave_0 left promiscuous mode
[ 2750.923867][T10995] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2750.945057][T10995] device hsr_slave_0 left promiscuous mode
[ 2750.955859][T10995] device hsr_slave_1 left promiscuous mode
[ 2750.964662][T10995] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 2750.976853][T10995] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 2750.988336][T10995] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 2750.998896][T10995] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 2751.007686][T10995] device bridge_slave_1 left promiscuous mode
[ 2751.014409][T10995] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2751.026501][T10995] device bridge_slave_0 left promiscuous mode
[ 2751.033570][T10995] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2751.047278][T10995] device hsr_slave_0 left promiscuous mode
[ 2751.053853][T10995] device hsr_slave_1 left promiscuous mode
[ 2751.060703][T10995] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 2751.068132][T10995] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 2751.076879][T10995] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 2751.084661][T10995] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 2751.095327][T10995] device bridge_slave_1 left promiscuous mode
[ 2751.101899][T10995] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2751.111212][T10995] device bridge_slave_0 left promiscuous mode
[ 2751.117398][T10995] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2751.132488][T10995] device hsr_slave_0 left promiscuous mode
[ 2751.138904][T10995] device hsr_slave_1 left promiscuous mode
[ 2751.146249][T10995] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 2751.153950][T10995] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 2751.162766][T10995] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 2751.170850][T10995] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 2751.180391][T10995] device bridge_slave_1 left promiscuous mode
[ 2751.186544][T10995] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2751.194871][T10995] device bridge_slave_0 left promiscuous mode
[ 2751.202432][T10995] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2751.220907][T10995] device veth1_macvtap left promiscuous mode
[ 2751.226988][T10995] device veth0_macvtap left promiscuous mode
[ 2751.233461][T10995] device veth1_vlan left promiscuous mode
[ 2751.239416][T10995] device veth0_vlan left promiscuous mode
[ 2751.246576][T10995] device veth1_macvtap left promiscuous mode
[ 2751.252851][T10995] device veth0_macvtap left promiscuous mode
[ 2751.259301][T10995] device veth1_vlan left promiscuous mode
[ 2751.265097][T10995] device veth0_vlan left promiscuous mode
[ 2751.272605][T10995] device veth1_macvtap left promiscuous mode
[ 2751.278625][T10995] device veth0_macvtap left promiscuous mode
[ 2751.284972][T10995] device veth1_vlan left promiscuous mode
[ 2751.291674][T10995] device veth0_vlan left promiscuous mode
[ 2751.298599][T10995] device veth1_macvtap left promiscuous mode
[ 2751.305430][T10995] device veth0_macvtap left promiscuous mode
[ 2751.312288][T10995] device veth1_vlan left promiscuous mode
[ 2751.318081][T10995] device veth0_vlan left promiscuous mode
[ 2751.449906][T14879] Bluetooth: hci0: command 0x0409 tx timeout
[ 2751.801261][T10995] team0 (unregistering): Port device team_slave_1 removed
[ 2751.822738][T10995] team0 (unregistering): Port device team_slave_0 removed
[ 2751.841492][T10995] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 2751.858551][ T5120] Bluetooth: hci4: command 0x0409 tx timeout
[ 2751.872175][T10995] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 2751.940823][T10995] bond0 (unregistering): Released all slaves
[ 2752.074652][T10995] team0 (unregistering): Port device team_slave_1 removed
[ 2752.087842][T10995] team0 (unregistering): Port device team_slave_0 removed
[ 2752.106231][T10995] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 2752.120465][T10995] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 2752.206156][T10995] bond0 (unregistering): Released all slaves
[ 2752.331725][T10995] team0 (unregistering): Port device team_slave_1 removed
[ 2752.349809][T10995] team0 (unregistering): Port device team_slave_0 removed
[ 2752.363271][T10995] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 2752.385842][T10995] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 2752.454864][T10995] bond0 (unregistering): Released all slaves
[ 2752.584669][T10995] team0 (unregistering): Port device team_slave_1 removed
[ 2752.598457][T10995] team0 (unregistering): Port device team_slave_0 removed
[ 2752.618054][T10995] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 2752.640229][T10995] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 2752.714267][T10995] bond0 (unregistering): Released all slaves
[ 2752.809526][ T5120] Bluetooth: hci5: command 0x0409 tx timeout
21:27:01 executing program 2:
openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0)
openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
openat$cgroup_int(r0, &(0x7f00000000c0)='memory.max\x00', 0x2, 0x0)
bpf$ITER_CREATE(0x21, &(0x7f0000000340), 0x8)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='blkio.bfq.io_service_time\x00', 0x26e1, 0x0)
write$cgroup_int(r1, &(0x7f0000000040), 0x12)
close(r1)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_open_procfs$namespace(0x0, 0x0)
write$cgroup_int(0xffffffffffffffff, &(0x7f0000000040), 0x12)

21:27:01 executing program 3:
openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0)
openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
perf_event_open(0x0, 0xffffffffffffffff, 0xb, 0xffffffffffffffff, 0x0)
r1 = openat$cgroup_int(r0, &(0x7f00000000c0)='memory.max\x00', 0x2, 0x0)
getpid()
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x1f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='blkio.bfq.io_service_time\x00', 0x26e1, 0x0)
write$cgroup_int(r2, &(0x7f0000000040), 0x12)
close(r2)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000280)='host1x_cdma_push_wide\x00'}, 0x10)
write$cgroup_int(r1, &(0x7f0000000040), 0x12)

21:27:01 executing program 3:
openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0)
openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
perf_event_open(0x0, 0xffffffffffffffff, 0xb, 0xffffffffffffffff, 0x0)
r1 = openat$cgroup_int(r0, &(0x7f00000000c0)='memory.max\x00', 0x2, 0x0)
getpid()
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x1f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='blkio.bfq.io_service_time\x00', 0x26e1, 0x0)
write$cgroup_int(r2, &(0x7f0000000040), 0x12)
close(r2)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000280)='host1x_cdma_push_wide\x00'}, 0x10)
write$cgroup_int(r1, &(0x7f0000000040), 0x12)

[ 2753.106533][  T536] chnl_net:caif_netlink_parms(): no params data found
[ 2753.173816][  T544] chnl_net:caif_netlink_parms(): no params data found
[ 2753.241519][  T586] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2753.259293][  T586] CPU: 0 PID: 586 Comm: syz-executor.3 Not tainted 6.2.0-rc2-syzkaller-00431-g0164776a2ce7 #0
[ 2753.262257][  T565] chnl_net:caif_netlink_parms(): no params data found
[ 2753.269577][  T586] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 2753.269594][  T586] Call Trace:
[ 2753.269601][  T586]  <TASK>
[ 2753.269611][  T586]  dump_stack_lvl+0xd1/0x138
[ 2753.269650][  T586]  dump_header+0x10b/0x85f
[ 2753.269679][  T586]  oom_kill_process.cold+0x10/0x15
[ 2753.269708][  T586]  out_of_memory+0x35c/0x14a0
[ 2753.311563][  T586]  ? oom_killer_disable+0x280/0x280
[ 2753.316793][  T586]  mem_cgroup_out_of_memory+0x206/0x270
[ 2753.322373][  T586]  ? mem_cgroup_margin+0x130/0x130
[ 2753.327514][  T586]  memory_max_write+0x2f9/0x3c0
[ 2753.332385][  T586]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 2753.338468][  T586]  ? lock_release+0x810/0x810
[ 2753.343163][  T586]  cgroup_file_write+0x1e2/0x770
[ 2753.348120][  T586]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 2753.354202][  T586]  ? kill_css+0x370/0x370
[ 2753.358553][  T586]  ? __virt_addr_valid+0x61/0x2e0
[ 2753.363614][  T586]  ? kill_css+0x370/0x370
[ 2753.367957][  T586]  kernfs_fop_write_iter+0x3f1/0x600
[ 2753.373275][  T586]  vfs_write+0x9ed/0xdd0
[ 2753.377538][  T586]  ? kernel_write+0x630/0x630
[ 2753.382240][  T586]  ? __fget_files+0x26a/0x440
[ 2753.386947][  T586]  ksys_write+0x12b/0x250
[ 2753.391288][  T586]  ? __ia32_sys_read+0xb0/0xb0
[ 2753.396071][  T586]  ? syscall_enter_from_user_mode+0x26/0xb0
[ 2753.401992][  T586]  do_syscall_64+0x39/0xb0
[ 2753.406450][  T586]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2753.412376][  T586] RIP: 0033:0x7f7fd3e8c0c9
[ 2753.416801][  T586] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 2753.436433][  T586] RSP: 002b:00007f7fd4b6b168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 2753.445028][  T586] RAX: ffffffffffffffda RBX: 00007f7fd3fabf80 RCX: 00007f7fd3e8c0c9
[ 2753.453005][  T586] RDX: 0000000000000012 RSI: 0000000020000040 RDI: 0000000000000004
[ 2753.460988][  T586] RBP: 00007f7fd3ee7ae9 R08: 0000000000000000 R09: 0000000000000000
[ 2753.468967][  T586] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2753.476968][  T586] R13: 00007ffc22bbde1f R14: 00007f7fd4b6b300 R15: 0000000000022000
[ 2753.484964][  T586]  </TASK>
[ 2753.494142][  T536] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2753.519323][  T536] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2753.521650][  T586] memory: usage 10668kB, limit 0kB, failcnt 795
[ 2753.527611][  T536] device bridge_slave_0 entered promiscuous mode
[ 2753.549124][ T5120] Bluetooth: hci0: command 0x041b tx timeout
[ 2753.555642][  T586] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2753.569687][  T586] Memory cgroup stats for /syz3:
[ 2753.569903][  T586] anon 139264
[ 2753.569903][  T586] file 10448896
[ 2753.569903][  T586] kernel 311296
[ 2753.569903][  T586] kernel_stack 65536
[ 2753.569903][  T586] pagetables 77824
[ 2753.569903][  T586] sec_pagetables 0
[ 2753.569903][  T586] percpu 64
[ 2753.569903][  T586] sock 0
[ 2753.569903][  T586] vmalloc 0
[ 2753.569903][  T586] shmem 10448896
[ 2753.569903][  T586] zswap 0
[ 2753.569903][  T586] zswapped 0
[ 2753.569903][  T586] file_mapped 331776
[ 2753.569903][  T586] file_dirty 0
[ 2753.569903][  T586] file_writeback 0
[ 2753.569903][  T586] swapcached 0
[ 2753.569903][  T586] anon_thp 0
[ 2753.569903][  T586] file_thp 0
[ 2753.569903][  T586] shmem_thp 0
[ 2753.569903][  T586] inactive_anon 2236416
[ 2753.569903][  T586] active_anon 8351744
[ 2753.569903][  T586] inactive_file 0
[ 2753.569903][  T586] active_file 0
[ 2753.569903][  T586] unevictable 0
[ 2753.569903][  T586] slab_reclaimable 37480
[ 2753.569903][  T586] slab_unreclaimable 99472
[ 2753.569903][  T586] slab 136952
[ 2753.674572][  T586] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=585,uid=0
[ 2753.690885][  T586] Memory cgroup out of memory: Killed process 585 (syz-executor.3) total-vm:54540kB, anon-rss:504kB, file-rss:8960kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 2753.722527][  T536] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2753.730024][  T536] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2753.737801][  T536] device bridge_slave_1 entered promiscuous mode
[ 2753.824867][  T536] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 2753.857496][  T536] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 2753.929456][ T5120] Bluetooth: hci4: command 0x041b tx timeout
[ 2753.971679][  T565] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2753.988526][  T565] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2754.002721][  T565] device bridge_slave_0 entered promiscuous mode
[ 2754.053748][  T536] team0: Port device team_slave_0 added
[ 2754.061149][  T565] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2754.068287][  T565] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2754.080116][  T565] device bridge_slave_1 entered promiscuous mode
[ 2754.087306][  T544] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2754.096524][  T544] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2754.112266][  T544] device bridge_slave_0 entered promiscuous mode
[ 2754.121776][  T536] team0: Port device team_slave_1 added
[ 2754.170562][  T544] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2754.177717][  T544] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2754.190249][  T544] device bridge_slave_1 entered promiscuous mode
[ 2754.212227][  T565] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 2754.254186][  T565] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 2754.305137][  T536] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 2754.315567][  T536] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2754.342626][  T536] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 2754.378219][  T544] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 2754.388032][  T536] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 2754.405581][  T536] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2754.432228][  T536] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 2754.464773][  T565] team0: Port device team_slave_0 added
[ 2754.474928][  T544] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 2754.493145][  T565] team0: Port device team_slave_1 added
[ 2754.611701][  T565] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 2754.618700][  T565] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2754.645894][  T565] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 2754.662705][  T544] team0: Port device team_slave_0 added
[ 2754.684955][  T565] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 2754.692797][  T565] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2754.721219][  T565] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 2754.742889][  T544] team0: Port device team_slave_1 added
[ 2754.816025][  T536] device hsr_slave_0 entered promiscuous mode
[ 2754.829311][  T536] device hsr_slave_1 entered promiscuous mode
[ 2754.889000][ T5120] Bluetooth: hci5: command 0x041b tx timeout
[ 2754.917655][  T544] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 2754.934995][  T544] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2754.963452][  T544] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 2755.008301][  T565] device hsr_slave_0 entered promiscuous mode
[ 2755.016295][  T565] device hsr_slave_1 entered promiscuous mode
[ 2755.023659][  T565] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 2755.033175][  T565] Cannot create hsr debugfs directory
[ 2755.049449][  T544] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 2755.056446][  T544] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2755.083192][  T544] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 2755.246817][  T544] device hsr_slave_0 entered promiscuous mode
[ 2755.265703][  T544] device hsr_slave_1 entered promiscuous mode
[ 2755.272725][  T544] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 2755.280856][  T544] Cannot create hsr debugfs directory
[ 2755.395328][  T565] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2755.564436][  T565] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2755.609082][ T5120] Bluetooth: hci0: command 0x040f tx timeout
[ 2755.685739][  T565] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2755.867182][  T565] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2756.013637][ T5120] Bluetooth: hci4: command 0x040f tx timeout
[ 2756.969094][ T5120] Bluetooth: hci5: command 0x040f tx timeout
[ 2757.372413][  T565] netdevsim netdevsim4 netdevsim0: renamed from eth0
[ 2757.391904][  T565] netdevsim netdevsim4 netdevsim1: renamed from eth1
[ 2757.412089][  T565] netdevsim netdevsim4 netdevsim2: renamed from eth2
[ 2757.432571][  T565] netdevsim netdevsim4 netdevsim3: renamed from eth3
[ 2757.577659][  T536] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 2757.610011][  T536] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 2757.662085][  T536] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 2757.689147][ T5120] Bluetooth: hci0: command 0x0419 tx timeout
[ 2757.734795][  T536] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 2757.840640][  T544] netdevsim netdevsim5 netdevsim0: renamed from eth0
[ 2757.870801][  T544] netdevsim netdevsim5 netdevsim1: renamed from eth1
[ 2757.915536][  T565] 8021q: adding VLAN 0 to HW filter on device bond0
[ 2757.931066][  T544] netdevsim netdevsim5 netdevsim2: renamed from eth2
[ 2757.988927][  T565] 8021q: adding VLAN 0 to HW filter on device team0
[ 2757.999598][  T544] netdevsim netdevsim5 netdevsim3: renamed from eth3
[ 2758.019123][T21233] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 2758.028277][T21233] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 2758.059736][T24529] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 2758.068550][T24529] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 2758.078399][T24529] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2758.085575][T24529] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 2758.093531][ T5120] Bluetooth: hci4: command 0x0419 tx timeout
[ 2758.100346][T24529] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 2758.111216][T24529] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 2758.120145][T24529] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2758.127259][T24529] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 2758.147058][  T536] 8021q: adding VLAN 0 to HW filter on device bond0
[ 2758.183638][T17500] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 2758.200640][T17500] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 2758.219875][T17500] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 2758.233430][T17500] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 2758.268113][  T565] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 2758.292097][  T565] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 2758.308007][  T536] 8021q: adding VLAN 0 to HW filter on device team0
[ 2758.317615][T17500] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 2758.326664][T17500] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 2758.335174][T17500] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 2758.343815][T17500] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 2758.353532][T17500] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 2758.362649][T17500] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 2758.371944][T17500] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 2758.380988][T17500] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 2758.434672][T17500] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 2758.449784][T17500] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 2758.458589][T17500] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 2758.481264][T17500] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2758.488418][T17500] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 2758.509416][T17500] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 2758.529187][T17500] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 2758.537715][T17500] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2758.544904][T17500] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 2758.606331][T30559] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 2758.616510][T30559] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 2758.642038][T30559] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 2758.652602][T30559] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 2758.694002][T30559] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 2758.705368][T30559] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 2758.715154][T30559] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 2758.724845][T30559] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 2758.745305][  T536] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 2758.766641][  T536] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 2758.809315][T14991] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 2758.817942][T14991] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 2758.848347][  T544] 8021q: adding VLAN 0 to HW filter on device bond0
[ 2758.896970][T30559] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 2758.920398][T30559] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 2758.983991][  T544] 8021q: adding VLAN 0 to HW filter on device team0
[ 2759.014146][T30559] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 2759.024407][T30559] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 2759.049084][ T5120] Bluetooth: hci5: command 0x0419 tx timeout
[ 2759.064974][  T565] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 2759.075880][T30559] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 2759.086233][T30559] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 2759.095476][T30559] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2759.102669][T30559] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 2759.111595][T30559] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 2759.120640][T30559] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 2759.130413][T30559] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2759.137535][T30559] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 2759.147428][T30559] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 2759.190488][T14991] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 2759.200165][T14991] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 2759.212774][T14991] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 2759.249663][T23989] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 2759.257800][T23989] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 2759.276451][T23989] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 2759.286100][T23989] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 2759.295258][T23989] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 2759.304222][T23989] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 2759.365613][  T544] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 2759.590298][  T536] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 2759.598231][T30559] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 2759.620941][T30559] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 2759.684283][T30559] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 2759.700490][T30559] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 2759.767028][T14991] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 2759.790433][T14991] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 2759.810229][  T536] device veth0_vlan entered promiscuous mode
[ 2759.830058][T30559] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 2759.838044][T30559] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 2759.871956][  T536] device veth1_vlan entered promiscuous mode
[ 2759.994786][  T544] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 2760.026647][T14991] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 2760.040124][T14991] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 2760.050750][T14991] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 2760.058298][T14991] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 2760.089115][T14991] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 2760.097864][T14991] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 2760.138988][T23940] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 2760.147853][T23940] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 2760.171467][  T536] device veth0_macvtap entered promiscuous mode
[ 2760.229757][  T536] device veth1_macvtap entered promiscuous mode
[ 2760.260277][T23289] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 2760.279022][T23289] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 2760.320701][  T565] device veth0_vlan entered promiscuous mode
[ 2760.336845][T23289] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 2760.345059][T23289] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 2760.373582][  T536] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2760.390920][  T536] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2760.418846][  T536] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2760.430013][  T536] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2760.446724][  T536] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2760.466951][  T536] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2760.477253][  T536] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2760.496198][  T536] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2760.508294][  T536] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 2760.526209][  T565] device veth1_vlan entered promiscuous mode
[ 2760.554562][T30559] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 2760.575640][T30559] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 2760.589844][T30559] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 2760.604304][  T536] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2760.627777][  T536] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2760.659657][  T536] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2760.678778][  T536] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2760.688646][  T536] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2760.709088][  T536] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2760.727999][  T536] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2760.748897][  T536] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2760.765924][  T536] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 2760.799668][T30559] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 2760.807949][T30559] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 2760.817847][T30559] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 2760.831930][T10995] device hsr_slave_0 left promiscuous mode
[ 2760.838389][T10995] device hsr_slave_1 left promiscuous mode
[ 2760.846510][T10995] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 2760.857410][T10995] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 2760.867430][T10995] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 2760.883419][T10995] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 2760.903564][T10995] device bridge_slave_1 left promiscuous mode
[ 2760.919347][T10995] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2760.928619][T10995] device bridge_slave_0 left promiscuous mode
[ 2760.946045][T10995] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2760.966191][T10995] device veth1_macvtap left promiscuous mode
[ 2760.999025][T10995] device veth0_macvtap left promiscuous mode
[ 2761.005230][T10995] device veth1_vlan left promiscuous mode
[ 2761.011574][T10995] device veth0_vlan left promiscuous mode
[ 2761.421281][T10995] team0 (unregistering): Port device team_slave_1 removed
[ 2761.437519][T10995] team0 (unregistering): Port device team_slave_0 removed
[ 2761.458035][T10995] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 2761.485203][T10995] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 2761.611402][T10995] bond0 (unregistering): Released all slaves
[ 2761.667868][  T536] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 2761.677664][  T536] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 2761.689676][  T536] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 2761.698424][  T536] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 2761.728585][T24529] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 2761.745560][T24529] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 2761.783781][  T565] device veth0_macvtap entered promiscuous mode
[ 2761.795754][T24529] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 2761.804930][T24529] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 2761.814630][T24529] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 2761.845581][  T565] device veth1_macvtap entered promiscuous mode
[ 2761.901446][  T544] device veth0_vlan entered promiscuous mode
[ 2761.926393][  T565] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2761.947880][  T565] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2761.958195][  T565] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2761.969081][  T565] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2761.979012][  T565] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2761.989513][  T565] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2761.999962][  T565] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2762.013094][  T565] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2762.025068][  T565] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 2762.036616][T14991] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 2762.045620][T14991] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 2762.054187][T14991] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 2762.063401][T14991] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 2762.092667][T14991] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 2762.102542][T14991] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 2762.121893][  T544] device veth1_vlan entered promiscuous mode
[ 2762.152531][  T565] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2762.163897][  T565] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2762.175351][  T565] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2762.186988][  T565] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2762.197072][  T565] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2762.207711][  T565] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2762.217711][  T565] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2762.228515][  T565] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2762.240243][  T565] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 2762.272118][T21233] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 2762.272572][T14860] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2762.289657][T21233] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 2762.296077][T14860] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2762.313655][T21233] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 2762.327836][T21233] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 2762.337455][T21233] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 2762.357848][  T565] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 2762.374779][  T565] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 2762.386276][  T565] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 2762.404298][  T565] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 2762.446708][  T483] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 2762.456450][  T483] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 2762.488646][T17514] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2762.502856][  T544] device veth0_macvtap entered promiscuous mode
[ 2762.513246][T17514] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2762.534853][  T544] device veth1_macvtap entered promiscuous mode
[ 2762.543155][T23935] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 2762.552714][T23935] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 2762.561379][T23935] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 2762.645501][  T544] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2762.678907][  T544] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2762.698851][  T544] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2762.741285][  T739] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2762.748870][  T544] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2762.768890][  T739] CPU: 1 PID: 739 Comm: syz-executor.0 Not tainted 6.2.0-rc2-syzkaller-00431-g0164776a2ce7 #0
[ 2762.779197][  T739] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 2762.780599][  T544] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2762.789286][  T739] Call Trace:
[ 2762.789297][  T739]  <TASK>
[ 2762.789307][  T739]  dump_stack_lvl+0xd1/0x138
[ 2762.789365][  T739]  dump_header+0x10b/0x85f
[ 2762.815009][  T739]  oom_kill_process.cold+0x10/0x15
[ 2762.815596][  T544] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2762.820141][  T739]  out_of_memory+0x35c/0x14a0
[ 2762.820181][  T739]  ? oom_killer_disable+0x280/0x280
[ 2762.839892][  T739]  mem_cgroup_out_of_memory+0x206/0x270
[ 2762.845481][  T739]  ? mem_cgroup_margin+0x130/0x130
[ 2762.850725][  T739]  memory_max_write+0x2f9/0x3c0
[ 2762.855654][  T739]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 2762.858824][  T544] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2762.861748][  T739]  ? lock_release+0x810/0x810
[ 2762.876878][  T739]  cgroup_file_write+0x1e2/0x770
[ 2762.881857][  T739]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 2762.887964][  T739]  ? kill_css+0x370/0x370
[ 2762.892330][  T739]  ? __virt_addr_valid+0x61/0x2e0
[ 2762.897407][  T739]  ? kill_css+0x370/0x370
[ 2762.898761][  T544] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2762.901751][  T739]  kernfs_fop_write_iter+0x3f1/0x600
[ 2762.916862][  T739]  vfs_write+0x9ed/0xdd0
[ 2762.918010][  T544] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2762.921125][  T739]  ? kernel_write+0x630/0x630
[ 2762.921166][  T739]  ? __fget_files+0x26a/0x440
[ 2762.940951][  T739]  ksys_write+0x12b/0x250
[ 2762.945317][  T739]  ? __ia32_sys_read+0xb0/0xb0
[ 2762.950114][  T739]  ? syscall_enter_from_user_mode+0x26/0xb0
[ 2762.956048][  T739]  do_syscall_64+0x39/0xb0
[ 2762.958759][  T544] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2762.960487][  T739]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2762.976192][  T739] RIP: 0033:0x7fe31fa8c0c9
[ 2762.980635][  T739] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 2762.998064][  T544] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 2763.000284][  T739] RSP: 002b:00007fe320783168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 2763.000313][  T739] RAX: ffffffffffffffda RBX: 00007fe31fbabf80 RCX: 00007fe31fa8c0c9
[ 2763.000329][  T739] RDX: 0000000000000012 RSI: 0000000020000040 RDI: 0000000000000004
[ 2763.000344][  T739] RBP: 00007fe31fae7ae9 R08: 0000000000000000 R09: 0000000000000000
[ 2763.023847][  T544] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2763.023894][  T739] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2763.058274][  T739] R13: 00007ffc71fb28af R14: 00007fe320783300 R15: 0000000000022000
[ 2763.058761][  T544] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2763.066300][  T739]  </TASK>
[ 2763.093565][  T544] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2763.104466][  T544] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2763.114494][  T544] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2763.126183][  T544] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2763.136605][  T544] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2763.147240][  T544] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2763.157216][  T544] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2763.167783][  T544] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2763.181695][  T544] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 2763.186218][  T739] memory: usage 10620kB, limit 0kB, failcnt 730
[ 2763.196659][  T739] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2763.217595][  T739] Memory cgroup stats for /syz0:
[ 2763.217813][  T739] anon 114688
[ 2763.217813][  T739] file 10448896
[ 2763.217813][  T739] kernel 303104
[ 2763.217813][  T739] kernel_stack 65536
[ 2763.217813][  T739] pagetables 77824
[ 2763.217813][  T739] sec_pagetables 0
[ 2763.217813][  T739] percpu 64
[ 2763.217813][  T739] sock 0
[ 2763.217813][  T739] vmalloc 0
[ 2763.217813][  T739] shmem 10448896
[ 2763.217813][  T739] zswap 0
[ 2763.217813][  T739] zswapped 0
[ 2763.217813][  T739] file_mapped 331776
[ 2763.217813][  T739] file_dirty 0
[ 2763.217813][  T739] file_writeback 0
[ 2763.217813][  T739] swapcached 0
[ 2763.217813][  T739] anon_thp 0
[ 2763.217813][  T739] file_thp 0
[ 2763.217813][  T739] shmem_thp 0
[ 2763.217813][  T739] inactive_anon 114688
[ 2763.217813][  T739] active_anon 10448896
[ 2763.217813][  T739] inactive_file 0
[ 2763.217813][  T739] active_file 0
[ 2763.217813][  T739] unevictable 0
[ 2763.217813][  T739] slab_reclaimable 59480
[ 2763.217813][  T739] slab_unreclaimable 76344
[ 2763.217813][  T739] slab 135824
[ 2763.320275][  T483] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 2763.336516][  T483] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 2763.339859][  T739] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=738,uid=0
[ 2763.365856][  T483] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 2763.368368][  T739] Memory cgroup out of memory: Killed process 738 (syz-executor.0) total-vm:54540kB, anon-rss:500kB, file-rss:8960kB, shmem-rss:0kB, UID:0 pgtables:80kB oom_score_adj:1000
21:27:12 executing program 0:
openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_int(r0, &(0x7f00000000c0)='memory.max\x00', 0x2, 0x0)
getpid()
r2 = bpf$ITER_CREATE(0x21, &(0x7f0000000340), 0x8)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='blkio.bfq.io_service_time\x00', 0x26e1, 0x0)
write$cgroup_int(r3, &(0x7f0000000040), 0x12)
close(r3)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000280)='host1x_cdma_push_wide\x00', r2}, 0x10)
write$cgroup_int(r1, &(0x7f0000000040), 0x12)

[ 2763.395208][  T483] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 2763.427230][  T544] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 2763.465964][  T536] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=0
[ 2763.496501][  T544] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 2763.505312][  T536] CPU: 0 PID: 536 Comm: syz-executor.0 Not tainted 6.2.0-rc2-syzkaller-00431-g0164776a2ce7 #0
[ 2763.515674][  T536] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 2763.525749][  T536] Call Trace:
[ 2763.529050][  T536]  <TASK>
[ 2763.530942][  T544] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 2763.531982][  T536]  dump_stack_lvl+0xd1/0x138
[ 2763.532022][  T536]  dump_header+0x10b/0x85f
[ 2763.532049][  T536]  oom_kill_process.cold+0x10/0x15
[ 2763.532076][  T536]  out_of_memory+0x35c/0x14a0
[ 2763.532107][  T536]  ? find_held_lock+0x2d/0x110
[ 2763.532143][  T536]  ? oom_killer_disable+0x280/0x280
[ 2763.532171][  T536]  ? find_held_lock+0x2d/0x110
[ 2763.552101][  T544] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 2763.554912][  T536]  mem_cgroup_out_of_memory+0x206/0x270
[ 2763.588626][  T536]  ? mem_cgroup_margin+0x130/0x130
[ 2763.593768][  T536]  ? lock_downgrade+0x6e0/0x6e0
[ 2763.598691][  T536]  try_charge_memcg+0xefb/0x12f0
[ 2763.603666][  T536]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 2763.609682][  T536]  ? get_mem_cgroup_from_objcg+0xa1/0x260
[ 2763.615433][  T536]  ? lock_downgrade+0x6e0/0x6e0
[ 2763.620316][  T536]  ? lock_downgrade+0x6e0/0x6e0
[ 2763.625196][  T536]  ? rcu_read_unlock+0x9/0x60
[ 2763.629927][  T536]  obj_cgroup_charge+0x2af/0x5e0
[ 2763.634907][  T536]  ? copy_process+0x43a0/0x7520
[ 2763.639801][  T536]  kmem_cache_alloc+0xb5/0x430
[ 2763.644607][  T536]  copy_process+0x43a0/0x7520
[ 2763.649327][  T536]  ? _raw_spin_unlock+0x28/0x40
[ 2763.654216][  T536]  ? wp_page_reuse+0x197/0x570
[ 2763.659039][  T536]  ? __cleanup_sighand+0xb0/0xb0
[ 2763.664003][  T536]  ? finish_mkwrite_fault+0x3d0/0x3d0
[ 2763.669425][  T536]  ? rwlock_bug.part.0+0x90/0x90
[ 2763.674391][  T536]  ? lock_chain_count+0x20/0x20
[ 2763.679276][  T536]  kernel_clone+0xeb/0x990
[ 2763.683731][  T536]  ? create_io_thread+0xf0/0xf0
[ 2763.688638][  T536]  ? find_held_lock+0x2d/0x110
[ 2763.693483][  T536]  __do_sys_clone+0xba/0x100
[ 2763.698108][  T536]  ? kernel_clone+0x990/0x990
[ 2763.702857][  T536]  ? syscall_enter_from_user_mode+0x26/0xb0
[ 2763.708794][  T536]  do_syscall_64+0x39/0xb0
[ 2763.713262][  T536]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2763.719278][  T536] RIP: 0033:0x7fe31fa89dfb
[ 2763.723718][  T536] Code: ed 0f 85 60 01 00 00 64 4c 8b 0c 25 10 00 00 00 45 31 c0 4d 8d 91 d0 02 00 00 31 d2 31 f6 bf 11 00 20 01 b8 38 00 00 00 0f 05 <48> 3d 00 f0 ff ff 0f 87 89 00 00 00 41 89 c5 85 c0 0f 85 90 00 00
[ 2763.743376][  T536] RSP: 002b:00007ffc71fb2af0 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[ 2763.751914][  T536] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fe31fa89dfb
[ 2763.759923][  T536] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011
[ 2763.767936][  T536] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000555556222400
[ 2763.775945][  T536] R10: 00005555562226d0 R11: 0000000000000246 R12: 0000000000000001
[ 2763.783960][  T536] R13: 0000000000000000 R14: 0000000000000001 R15: 00007ffc71fb2bd0
[ 2763.791999][  T536]  </TASK>
[ 2763.803028][  T536] memory: usage 10432kB, limit 0kB, failcnt 749
[ 2763.814028][  T536] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2763.821043][  T536] Memory cgroup stats for /syz0:
[ 2763.821235][  T536] anon 40960
[ 2763.821235][  T536] file 10448896
[ 2763.821235][  T536] kernel 151552
[ 2763.821235][  T536] kernel_stack 32768
[ 2763.821235][  T536] pagetables 8192
[ 2763.821235][  T536] sec_pagetables 0
[ 2763.821235][  T536] percpu 64
[ 2763.821235][  T536] sock 0
[ 2763.821235][  T536] vmalloc 0
[ 2763.821235][  T536] shmem 10448896
[ 2763.821235][  T536] zswap 0
[ 2763.821235][  T536] zswapped 0
[ 2763.821235][  T536] file_mapped 315392
[ 2763.821235][  T536] file_dirty 0
[ 2763.821235][  T536] file_writeback 0
[ 2763.821235][  T536] swapcached 0
[ 2763.821235][  T536] anon_thp 0
[ 2763.821235][  T536] file_thp 0
[ 2763.821235][  T536] shmem_thp 0
[ 2763.821235][  T536] inactive_anon 40960
[ 2763.821235][  T536] active_anon 10448896
[ 2763.821235][  T536] inactive_file 0
[ 2763.821235][  T536] active_file 0
[ 2763.821235][  T536] unevictable 0
[ 2763.821235][  T536] slab_reclaimable 34792
[ 2763.821235][  T536] slab_unreclaimable 61600
[ 2763.821235][  T536] slab 96392
[ 2763.970459][T14833] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2763.978621][T14833] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2764.060162][  T536] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=536,uid=0
[ 2764.086498][T14991] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 2764.103338][T17514] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2764.118594][  T536] Memory cgroup out of memory: Killed process 536 (syz-executor.0) total-vm:50568kB, anon-rss:364kB, file-rss:9088kB, shmem-rss:0kB, UID:0 pgtables:68kB oom_score_adj:0
[ 2764.137711][T14860] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2764.158119][T17514] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2764.171162][T23855] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2764.188788][T14860] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2764.199305][T14991] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 2764.209165][T23855] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2764.219538][T14991] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 2764.228421][T14991] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 2764.498043][  T753] syz-executor.4 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2764.546127][  T753] CPU: 0 PID: 753 Comm: syz-executor.4 Not tainted 6.2.0-rc2-syzkaller-00431-g0164776a2ce7 #0
[ 2764.556447][  T753] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 2764.566537][  T753] Call Trace:
[ 2764.569846][  T753]  <TASK>
[ 2764.572800][  T753]  dump_stack_lvl+0xd1/0x138
[ 2764.577435][  T753]  dump_header+0x10b/0x85f
[ 2764.581886][  T753]  oom_kill_process.cold+0x10/0x15
[ 2764.587038][  T753]  out_of_memory+0x35c/0x14a0
[ 2764.591764][  T753]  ? oom_killer_disable+0x280/0x280
[ 2764.597012][  T753]  mem_cgroup_out_of_memory+0x206/0x270
[ 2764.602590][  T753]  ? mem_cgroup_margin+0x130/0x130
[ 2764.607754][  T753]  memory_max_write+0x2f9/0x3c0
[ 2764.612643][  T753]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 2764.618747][  T753]  ? lock_release+0x810/0x810
[ 2764.623460][  T753]  cgroup_file_write+0x1e2/0x770
[ 2764.628437][  T753]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 2764.634554][  T753]  ? kill_css+0x370/0x370
[ 2764.638928][  T753]  ? __virt_addr_valid+0x61/0x2e0
[ 2764.644005][  T753]  ? kill_css+0x370/0x370
[ 2764.648369][  T753]  kernfs_fop_write_iter+0x3f1/0x600
[ 2764.653715][  T753]  vfs_write+0x9ed/0xdd0
[ 2764.658005][  T753]  ? kernel_write+0x630/0x630
[ 2764.662726][  T753]  ? __fget_files+0x26a/0x440
[ 2764.667466][  T753]  ksys_write+0x12b/0x250
[ 2764.671832][  T753]  ? __ia32_sys_read+0xb0/0xb0
[ 2764.676637][  T753]  ? syscall_enter_from_user_mode+0x26/0xb0
[ 2764.682627][  T753]  do_syscall_64+0x39/0xb0
[ 2764.687101][  T753]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2764.693035][  T753] RIP: 0033:0x7fb04f68c0c9
[ 2764.697478][  T753] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 2764.717157][  T753] RSP: 002b:00007fb050447168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 2764.725608][  T753] RAX: ffffffffffffffda RBX: 00007fb04f7abf80 RCX: 00007fb04f68c0c9
[ 2764.733616][  T753] RDX: 0000000000000012 RSI: 0000000020000040 RDI: 0000000000000004
[ 2764.741619][  T753] RBP: 00007fb04f6e7ae9 R08: 0000000000000000 R09: 0000000000000000
[ 2764.749623][  T753] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2764.757627][  T753] R13: 00007ffef29f29bf R14: 00007fb050447300 R15: 0000000000022000
[ 2764.765653][  T753]  </TASK>
[ 2764.939318][  T753] memory: usage 8600kB, limit 0kB, failcnt 759
[ 2764.945755][  T753] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2764.984672][  T753] Memory cgroup stats for /syz4:
[ 2764.984941][  T753] anon 118784
[ 2764.984941][  T753] file 8355840
[ 2764.984941][  T753] kernel 311296
[ 2764.984941][  T753] kernel_stack 65536
[ 2764.984941][  T753] pagetables 81920
[ 2764.984941][  T753] sec_pagetables 0
[ 2764.984941][  T753] percpu 64
[ 2764.984941][  T753] sock 0
[ 2764.984941][  T753] vmalloc 0
[ 2764.984941][  T753] shmem 8351744
[ 2764.984941][  T753] zswap 0
[ 2764.984941][  T753] zswapped 0
[ 2764.984941][  T753] file_mapped 290816
[ 2764.984941][  T753] file_dirty 0
[ 2764.984941][  T753] file_writeback 0
[ 2764.984941][  T753] swapcached 0
[ 2764.984941][  T753] anon_thp 0
[ 2764.984941][  T753] file_thp 0
[ 2764.984941][  T753] shmem_thp 0
[ 2764.984941][  T753] inactive_anon 118784
[ 2764.984941][  T753] active_anon 8351744
[ 2764.984941][  T753] inactive_file 0
[ 2764.984941][  T753] active_file 4096
[ 2764.984941][  T753] unevictable 0
[ 2764.984941][  T753] slab_reclaimable 37800
[ 2764.984941][  T753] slab_unreclaimable 102408
[ 2764.984941][  T753] slab 140208
[ 2765.094030][  T753] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0-1,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=751,uid=0
[ 2765.117795][  T753] Memory cgroup out of memory: Killed process 751 (syz-executor.4) total-vm:54540kB, anon-rss:372kB, file-rss:8960kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 2765.153496][  T754] syz-executor.5 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2765.185485][  T754] CPU: 1 PID: 754 Comm: syz-executor.5 Not tainted 6.2.0-rc2-syzkaller-00431-g0164776a2ce7 #0
[ 2765.195785][  T754] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 2765.205880][  T754] Call Trace:
[ 2765.209201][  T754]  <TASK>
[ 2765.212158][  T754]  dump_stack_lvl+0xd1/0x138
[ 2765.216799][  T754]  dump_header+0x10b/0x85f
[ 2765.221263][  T754]  oom_kill_process.cold+0x10/0x15
[ 2765.226418][  T754]  out_of_memory+0x35c/0x14a0
[ 2765.231132][  T754]  ? lockdep_hardirqs_on+0x7d/0x100
[ 2765.236382][  T754]  ? oom_killer_disable+0x280/0x280
[ 2765.241637][  T754]  mem_cgroup_out_of_memory+0x206/0x270
[ 2765.247229][  T754]  ? mem_cgroup_margin+0x130/0x130
[ 2765.252408][  T754]  memory_max_write+0x2f9/0x3c0
[ 2765.257303][  T754]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 2765.263400][  T754]  cgroup_file_write+0x1e2/0x770
[ 2765.268354][  T754]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 2765.274434][  T754]  ? kill_css+0x370/0x370
[ 2765.278790][  T754]  ? kill_css+0x370/0x370
[ 2765.283146][  T754]  kernfs_fop_write_iter+0x3f1/0x600
[ 2765.288459][  T754]  vfs_write+0x9ed/0xdd0
[ 2765.292719][  T754]  ? kernel_write+0x630/0x630
[ 2765.297413][  T754]  ? lockdep_hardirqs_on+0x7d/0x100
[ 2765.302622][  T754]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 2765.308805][  T754]  ksys_write+0x12b/0x250
[ 2765.313154][  T754]  ? __ia32_sys_read+0xb0/0xb0
[ 2765.317951][  T754]  ? syscall_enter_from_user_mode+0x30/0xb0
[ 2765.323879][  T754]  do_syscall_64+0x39/0xb0
[ 2765.328316][  T754]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2765.334310][  T754] RIP: 0033:0x7f7233a8c0c9
[ 2765.338737][  T754] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 2765.358358][  T754] RSP: 002b:00007f72348d7168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 2765.366779][  T754] RAX: ffffffffffffffda RBX: 00007f7233babf80 RCX: 00007f7233a8c0c9
[ 2765.374754][  T754] RDX: 0000000000000012 RSI: 0000000020000040 RDI: 0000000000000005
[ 2765.382727][  T754] RBP: 00007f7233ae7ae9 R08: 0000000000000000 R09: 0000000000000000
[ 2765.390700][  T754] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2765.398681][  T754] R13: 00007ffd07d0e16f R14: 00007f72348d7300 R15: 0000000000022000
[ 2765.406674][  T754]  </TASK>
[ 2765.441812][  T754] memory: usage 10584kB, limit 0kB, failcnt 817
[ 2765.448222][  T754] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2765.472695][  T754] Memory cgroup stats for /syz5:
[ 2765.482722][  T754] anon 118784
[ 2765.482722][  T754] file 10432512
[ 2765.482722][  T754] kernel 286720
[ 2765.482722][  T754] kernel_stack 65536
[ 2765.482722][  T754] pagetables 81920
[ 2765.482722][  T754] sec_pagetables 0
[ 2765.482722][  T754] percpu 64
[ 2765.482722][  T754] sock 0
[ 2765.482722][  T754] vmalloc 0
[ 2765.482722][  T754] shmem 10432512
[ 2765.482722][  T754] zswap 0
[ 2765.482722][  T754] zswapped 0
[ 2765.482722][  T754] file_mapped 249856
[ 2765.482722][  T754] file_dirty 0
[ 2765.482722][  T754] file_writeback 0
[ 2765.482722][  T754] swapcached 0
[ 2765.482722][  T754] anon_thp 0
[ 2765.482722][  T754] file_thp 0
[ 2765.482722][  T754] shmem_thp 0
[ 2765.482722][  T754] inactive_anon 2215936
[ 2765.482722][  T754] active_anon 8335360
[ 2765.482722][  T754] inactive_file 0
[ 2765.482722][  T754] active_file 0
[ 2765.482722][  T754] unevictable 0
[ 2765.482722][  T754] slab_reclaimable 37152
[ 2765.482722][  T754] slab_unreclaimable 73104
[ 2765.482722][  T754] slab 110256
[ 2765.647705][  T754] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz5,mems_allowed=0-1,oom_memcg=/syz5,task_memcg=/syz5,task=syz-executor.5,pid=752,uid=0
[ 2765.683355][  T754] Memory cgroup out of memory: Killed process 754 (syz-executor.5) total-vm:54540kB, anon-rss:500kB, file-rss:8960kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000
21:27:14 executing program 5:
openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0)
openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
perf_event_open(0x0, 0xffffffffffffffff, 0xb, 0xffffffffffffffff, 0x0)
r1 = openat$cgroup_int(r0, &(0x7f00000000c0)='memory.max\x00', 0x2, 0x0)
getpid()
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x1f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000300)='cpuacct.usage_all\x00', 0x0, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='blkio.bfq.io_service_time\x00', 0x26e1, 0x0)
write$cgroup_int(r2, &(0x7f0000000040), 0x12)
close(r2)
syz_open_procfs$namespace(0x0, 0x0)
write$cgroup_int(r1, &(0x7f0000000040), 0x12)

[ 2765.811570][  T544] syz-executor.5 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=0
[ 2765.832918][  T544] CPU: 1 PID: 544 Comm: syz-executor.5 Not tainted 6.2.0-rc2-syzkaller-00431-g0164776a2ce7 #0
[ 2765.843225][  T544] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 2765.853314][  T544] Call Trace:
[ 2765.856620][  T544]  <TASK>
[ 2765.859574][  T544]  dump_stack_lvl+0xd1/0x138
[ 2765.864206][  T544]  dump_header+0x10b/0x85f
[ 2765.868661][  T544]  oom_kill_process.cold+0x10/0x15
[ 2765.873820][  T544]  out_of_memory+0x35c/0x14a0
[ 2765.878541][  T544]  ? find_held_lock+0x2d/0x110
[ 2765.883354][  T544]  ? oom_killer_disable+0x280/0x280
[ 2765.888587][  T544]  ? find_held_lock+0x2d/0x110
[ 2765.893394][  T544]  mem_cgroup_out_of_memory+0x206/0x270
[ 2765.898980][  T544]  ? mem_cgroup_margin+0x130/0x130
[ 2765.904127][  T544]  ? lock_downgrade+0x6e0/0x6e0
[ 2765.909035][  T544]  try_charge_memcg+0xefb/0x12f0
[ 2765.914026][  T544]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 2765.920060][  T544]  ? lock_downgrade+0x6e0/0x6e0
[ 2765.924970][  T544]  charge_memcg+0x90/0x3b0
[ 2765.929442][  T544]  __mem_cgroup_charge+0x2b/0x90
[ 2765.934409][  T544]  ? _compound_head+0x5d/0x150
[ 2765.939193][  T544]  __handle_mm_fault+0x187d/0x3c90
[ 2765.944330][  T544]  ? vm_iomap_memory+0x190/0x190
[ 2765.949311][  T544]  handle_mm_fault+0x1b6/0x850
[ 2765.954121][  T544]  do_user_addr_fault+0x475/0x1210
[ 2765.959254][  T544]  ? rcu_read_lock_sched_held+0x3e/0x70
[ 2765.964830][  T544]  exc_page_fault+0x98/0x170
[ 2765.969436][  T544]  asm_exc_page_fault+0x26/0x30
[ 2765.974302][  T544] RIP: 0033:0x7f7233a5a7d5
[ 2765.978750][  T544] Code: e8 4b 8d 0c 2f 48 8b 6c 24 18 48 39 d3 48 89 4b 60 0f 95 c2 48 83 c8 01 0f b6 d2 48 c1 e2 02 4c 09 ea 48 83 ca 01 49 89 57 08 <48> 89 41 08 49 83 c7 10 eb b3 48 8d 3d 6a 0d 0a 00 e8 75 c9 ff ff
[ 2765.998376][  T544] RSP: 002b:00007ffd07d0d110 EFLAGS: 00010206
[ 2766.004471][  T544] RAX: 00000000000187c1 RBX: 00007f7233b885e0 RCX: 0000555555924840
[ 2766.012448][  T544] RDX: 0000000000008041 RSI: 0000000000000000 RDI: 0000000000000004
[ 2766.020442][  T544] RBP: 0000000000008030 R08: 0000000000000003 R09: 00007f7233b88640
[ 2766.028416][  T544] R10: 0000000000000231 R11: 0000000000000000 R12: 0000000000000802
[ 2766.036477][  T544] R13: 0000000000008040 R14: 0000000000000804 R15: 000055555591c800
[ 2766.044492][  T544]  </TASK>
[ 2766.066440][  T544] memory: usage 10336kB, limit 0kB, failcnt 836
[ 2766.073190][  T544] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2766.080428][  T544] Memory cgroup stats for /syz5:
[ 2766.080622][  T544] anon 36864
[ 2766.080622][  T544] file 10432512
[ 2766.080622][  T544] kernel 102400
[ 2766.080622][  T544] kernel_stack 0
[ 2766.080622][  T544] pagetables 8192
[ 2766.080622][  T544] sec_pagetables 0
[ 2766.080622][  T544] percpu 64
[ 2766.080622][  T544] sock 0
[ 2766.080622][  T544] vmalloc 0
21:27:15 executing program 1:
r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0)
perf_event_open(&(0x7f0000000180)={0x0, 0x80, 0x0, 0x7c, 0x4, 0xd2, 0x0, 0x5, 0x0, 0x74d4e3ef7733d4ea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x26, 0x0, @perf_bp={0x0}, 0x210, 0x0, 0x1f, 0x3, 0x0, 0x0, 0xffff}, 0x0, 0x0, 0xffffffffffffffff, 0x9)
openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
perf_event_open(&(0x7f0000000200)={0x4, 0x80, 0x9, 0x0, 0x0, 0x5, 0x0, 0xffffffff, 0x800, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x2, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x2, 0x2, @perf_bp={&(0x7f0000000100), 0x5}, 0x0, 0x100000000, 0x2a, 0x0, 0x8, 0x40, 0x0, 0x0, 0x3f, 0x0, 0x4000000000000000}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
recvmsg(0xffffffffffffffff, 0x0, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f00000002c0)='cpuacct.usage_percpu_sys\x00', 0x0, 0x0)
perf_event_open$cgroup(&(0x7f00000003c0)={0x4, 0x80, 0x1, 0xff, 0x1, 0x5, 0x0, 0x800000000000008, 0x21001, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x3, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0xffff0000, 0x4, @perf_bp={&(0x7f0000000380), 0x8}, 0x40ae, 0xe, 0x78d8, 0x5, 0x7, 0x7, 0x1ff}, 0xffffffffffffffff, 0xc, r0, 0xc)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000018c00)={0x18, 0x3, &(0x7f0000000780)=ANY=[@ANYBLOB="180000000000000000000000000000009500d9000000000012cc19280a01380b46cf1da1b96dbb895c000000007e2e299e5a868a2c93b82330a6fab908000000912b2b9c326f8af5e837e85559448b689fb549252e5fba00ac459ebc2e606df21feaa75ec5419c426e744676ce082947384476151eafe83fb3ba69f79cb713d0fdc6892ed01fdde50ba180e802b8c9febf9fdb97bef0bde9a5198be5c32bc6b82fbc64fb23882645114f593b9d4213b57a342973347080ccfb8d8a930f1f000000001336d4b50015d3c236dd6ff90aaf2f7532177f0686079a76404f9e81340df32375ed5cabc996fbe49d0cddfb0e06560bf56f338ae1b4c8dfe3c60f0baa1960460ac4675e1e66db2bbbfd8513558fea85416d5ab4c72cbc0d3181547ecab7ea44a4bdb7a444795f798ff9f4e7be75c804e01467f8ffd414c159e9db857d38cdfce34211ab786b58e1ca764b1769d012cdcc972e2e0348cb15130708258429a26e18f88b57d9249702cb23a4aaad81cfdbfa5da603313ac3a82dae68635064b17b949efa41b5f946258bb95a742ec9f7f6818b00c8a5aa45da89a87d1aa3ae808ae66b00000011e50b5748177ec9dfe98b1dbb48687b4f5c00000fd116d22ef9ed9a3957017087ba0c8836f1ec3e512671374797195ec9ab5783f2d9a2e41a8b61c813e7e48e498649d68f29252b9d3d21d6ae0a86ac9c3d93630b0c65bcc59c62496fec7ea7d089f76bebcb1bf4b9cc013cb273f65239688527589917c8f385a4ee628372082889f7fd88ab93c44824fb106b9adbf615eee13a03f68ed0429b03340785fdbb3625d1ea014a1e206dabd3f2a850676996898a1a755075ce85f6084e23f1e062b73eb5da256acb61d64ecac3e916ff80ff108891306217ccf2d3c727e98f654010ab3f2312157d7af4f8b20ea1e238e5d3c83789f2dc3de1060b0512cb3400d8b78a24470836b384ab1cc4d3c50b3e494d5775eba6a81cc17e53239eec26cf0a78b207ae45687aa11571556829d38144a05e8a7afb818f9aaa1436324d83fbf9073dc684a5bb9cba9c33200d8013bb3b439a42b70e45961af5eceba01a48c9b89ec24186a65298eb7a461ce50209284bc0ae804458ef1b6c638d74b40da9a9f377bd50054b13007878207386f8a65b295a9c4c862c1f938e5cc981"], &(0x7f0000000440)='syzkaller\x00', 0x4, 0xb0, &(0x7f0000000480)=""/176, 0x0, 0x0, '\x00', 0x0, 0x0, r1, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
r3 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='rcu_utilization\x00', r2}, 0x10)
r4 = perf_event_open$cgroup(&(0x7f0000000080)={0x4, 0x80, 0x81, 0x5, 0x6, 0x0, 0x0, 0x8000000000000000, 0x848, 0x4, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x3, 0x0, @perf_config_ext={0x912410d}, 0x8800, 0xffffffff, 0x7, 0x6, 0x3f, 0x7, 0x8dd, 0x0, 0x5, 0x0, 0x1}, 0xffffffffffffffff, 0xb, 0xffffffffffffffff, 0x9)
ioctl$PERF_EVENT_IOC_SET_OUTPUT(0xffffffffffffffff, 0x2405, r4)
r5 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000540)='./cgroup.cpu/syz1\x00', 0x200002, 0x0)
openat$cgroup_ro(r5, &(0x7f0000000640)='cgroup.stat\x00', 0x0, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r4, 0x40082404, &(0x7f0000000580)=0xffffffffffffff7f)
r6 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000000)='cpuacct.usage_percpu_sys\x00', 0x26e1, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r6, 0x40086607, &(0x7f0000000040))
r7 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x26e1, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000018c00)={0x18, 0x3, &(0x7f0000000300)=ANY=[@ANYRES64=r1], 0x0, 0x4, 0xb0, &(0x7f0000000480)=""/176, 0x40f00, 0x5, '\x00', 0x0, 0x0, r7, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x0, 0x204d, &(0x7f00000005c0)=ANY=[@ANYRES32], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x18, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000740)={0x0, 0x3}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000002c0)=[0xffffffffffffffff, r7, 0xffffffffffffffff]}, 0x80)
write$cgroup_int(r7, &(0x7f0000000280)=0x1ff, 0x12)
r8 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000001e00)={&(0x7f0000001dc0)='./file0\x00', 0x0, 0x10}, 0x10)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000001e80)=@bpf_lsm={0x1d, 0x2, &(0x7f0000000700)=@raw=[@map_idx={0x18, 0x4}], &(0x7f0000002340)='GPL\x00', 0x5, 0x33, &(0x7f0000002380)=""/51, 0x41100, 0x2, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f00000023c0)={0x5, 0x4}, 0x8, 0x10, &(0x7f0000002400)={0x3, 0xa, 0x6, 0xae2e}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000002500)=[r0, r8, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}, 0x80)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={0xffffffffffffffff, 0x18000000000002a0, 0x0, 0x0, &(0x7f00000001c0), 0x0, 0x0, 0xe8030000, 0x0, 0x0, 0x0, 0x0}, 0x48)
ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x89f2, &(0x7f0000000080)='ip6tnl0\x00')
socketpair(0x1e, 0x5, 0x20, &(0x7f0000000600))
socketpair(0x1, 0x1, 0x0, &(0x7f0000000740)={0xffffffffffffffff, <r9=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r9, 0x89f1, &(0x7f0000000080))
close(r3)

21:27:15 executing program 2:
openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0)
openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_int(r0, &(0x7f00000000c0)='memory.max\x00', 0x2, 0x0)
bpf$ITER_CREATE(0x21, &(0x7f0000000340), 0x8)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='blkio.bfq.io_service_time\x00', 0x26e1, 0x0)
write$cgroup_int(r2, &(0x7f0000000040), 0x12)
close(r2)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_open_procfs$namespace(0x0, 0x0)
write$cgroup_int(r1, 0x0, 0x0)

21:27:15 executing program 3:
openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0)
openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
perf_event_open(0x0, 0xffffffffffffffff, 0xb, 0xffffffffffffffff, 0x0)
r1 = openat$cgroup_int(r0, &(0x7f00000000c0)='memory.max\x00', 0x2, 0x0)
getpid()
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x1f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='blkio.bfq.io_service_time\x00', 0x26e1, 0x0)
write$cgroup_int(r2, &(0x7f0000000040), 0x12)
close(r2)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000280)='host1x_cdma_push_wide\x00'}, 0x10)
write$cgroup_int(r1, &(0x7f0000000040), 0x12)

21:27:15 executing program 4:
openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0)
perf_event_open(&(0x7f0000000100)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_int(r0, &(0x7f00000000c0)='memory.max\x00', 0x2, 0x0)
getpid()
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x1f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000300)='cpuacct.usage_all\x00', 0x0, 0x0)
bpf$ITER_CREATE(0x21, &(0x7f00000002c0)={r2}, 0x8)
getpid()
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='blkio.bfq.io_service_time\x00', 0x26e1, 0x0)
write$cgroup_int(r3, &(0x7f0000000040), 0x12)
close(r3)
syz_open_procfs$namespace(0x0, 0x0)
write$cgroup_int(r1, &(0x7f0000000040), 0x12)

21:27:15 executing program 0:
openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_int(r0, &(0x7f00000000c0)='memory.max\x00', 0x2, 0x0)
getpid()
r2 = bpf$ITER_CREATE(0x21, &(0x7f0000000340), 0x8)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='blkio.bfq.io_service_time\x00', 0x26e1, 0x0)
write$cgroup_int(r3, &(0x7f0000000040), 0x12)
close(r3)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000280)='host1x_cdma_push_wide\x00', r2}, 0x10)
write$cgroup_int(r1, &(0x7f0000000040), 0x12)

[ 2766.080622][  T544] shmem 10432512
[ 2766.080622][  T544] zswap 0
[ 2766.080622][  T544] zswapped 0
[ 2766.080622][  T544] file_mapped 233472
[ 2766.080622][  T544] file_dirty 0
[ 2766.080622][  T544] file_writeback 0
[ 2766.080622][  T544] swapcached 0
[ 2766.080622][  T544] anon_thp 0
[ 2766.080622][  T544] file_thp 0
[ 2766.080622][  T544] shmem_thp 0
[ 2766.080622][  T544] inactive_anon 2134016
[ 2766.080622][  T544] active_anon 8335360
[ 2766.080622][  T544] inactive_file 0
[ 2766.080622][  T544] active_file 0
[ 2766.080622][  T544] unevictable 0
[ 2766.080622][  T544] slab_reclaimable 36768
[ 2766.080622][  T544] slab_unreclaimable 45704
[ 2766.080622][  T544] slab 82472
[ 2766.205044][  T544] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz5,mems_allowed=0-1,oom_memcg=/syz5,task_memcg=/syz5,task=syz-executor.5,pid=544,uid=0
21:27:15 executing program 2:
openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0)
openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_int(r0, &(0x7f00000000c0)='memory.max\x00', 0x2, 0x0)
bpf$ITER_CREATE(0x21, &(0x7f0000000340), 0x8)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='blkio.bfq.io_service_time\x00', 0x26e1, 0x0)
write$cgroup_int(r2, &(0x7f0000000040), 0x12)
close(r2)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_open_procfs$namespace(0x0, 0x0)
write$cgroup_int(r1, 0x0, 0x0)

[ 2766.274086][T10995] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2766.289688][  T544] Memory cgroup out of memory: Killed process 544 (syz-executor.5) total-vm:50568kB, anon-rss:364kB, file-rss:9088kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:0
[ 2766.372262][  T380] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=1, oom_score_adj=0
[ 2766.393460][  T380] CPU: 1 PID: 380 Comm: syz-executor.3 Not tainted 6.2.0-rc2-syzkaller-00431-g0164776a2ce7 #0
[ 2766.403777][  T380] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 2766.413867][  T380] Call Trace:
[ 2766.417175][  T380]  <TASK>
[ 2766.420135][  T380]  dump_stack_lvl+0xd1/0x138
[ 2766.424790][  T380]  dump_header+0x10b/0x85f
[ 2766.429261][  T380]  oom_kill_process.cold+0x10/0x15
[ 2766.434429][  T380]  out_of_memory+0x35c/0x14a0
[ 2766.439163][  T380]  ? oom_killer_disable+0x280/0x280
[ 2766.444407][  T380]  ? find_held_lock+0x2d/0x110
[ 2766.449224][  T380]  mem_cgroup_out_of_memory+0x206/0x270
[ 2766.454809][  T380]  ? mem_cgroup_margin+0x130/0x130
[ 2766.459944][  T380]  ? lock_downgrade+0x6e0/0x6e0
[ 2766.464849][  T380]  try_charge_memcg+0xefb/0x12f0
[ 2766.469815][  T380]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 2766.475807][  T380]  ? get_mem_cgroup_from_objcg+0xa1/0x260
[ 2766.481536][  T380]  ? lock_downgrade+0x6e0/0x6e0
[ 2766.486394][  T380]  ? lock_downgrade+0x6e0/0x6e0
[ 2766.491253][  T380]  ? rcu_read_unlock+0x9/0x60
[ 2766.495960][  T380]  obj_cgroup_charge+0x2af/0x5e0
[ 2766.500924][  T380]  ? copy_process+0x3aa/0x7520
[ 2766.505707][  T380]  kmem_cache_alloc_node+0xb7/0x460
[ 2766.510934][  T380]  copy_process+0x3aa/0x7520
[ 2766.515535][  T380]  ? _raw_spin_unlock+0x28/0x40
[ 2766.520398][  T380]  ? wp_page_reuse+0x197/0x570
[ 2766.525180][  T380]  ? do_wp_page+0x844/0x3370
[ 2766.529801][  T380]  ? __cleanup_sighand+0xb0/0xb0
[ 2766.534765][  T380]  ? finish_mkwrite_fault+0x3d0/0x3d0
[ 2766.540156][  T380]  ? rwlock_bug.part.0+0x90/0x90
[ 2766.545103][  T380]  ? lock_chain_count+0x20/0x20
[ 2766.549965][  T380]  kernel_clone+0xeb/0x990
[ 2766.554399][  T380]  ? create_io_thread+0xf0/0xf0
[ 2766.559269][  T380]  ? find_held_lock+0x2d/0x110
[ 2766.564060][  T380]  __do_sys_clone+0xba/0x100
[ 2766.568660][  T380]  ? kernel_clone+0x990/0x990
[ 2766.573366][  T380]  ? syscall_enter_from_user_mode+0x26/0xb0
[ 2766.579279][  T380]  do_syscall_64+0x39/0xb0
[ 2766.583744][  T380]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2766.589673][  T380] RIP: 0033:0x7f7fd3e89dfb
[ 2766.594104][  T380] Code: ed 0f 85 60 01 00 00 64 4c 8b 0c 25 10 00 00 00 45 31 c0 4d 8d 91 d0 02 00 00 31 d2 31 f6 bf 11 00 20 01 b8 38 00 00 00 0f 05 <48> 3d 00 f0 ff ff 0f 87 89 00 00 00 41 89 c5 85 c0 0f 85 90 00 00
[ 2766.613752][  T380] RSP: 002b:00007ffc22bbe060 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[ 2766.622178][  T380] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f7fd3e89dfb
[ 2766.630155][  T380] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011
[ 2766.638167][  T380] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000555555727400
[ 2766.646143][  T380] R10: 00005555557276d0 R11: 0000000000000246 R12: 0000000000000001
[ 2766.654141][  T380] R13: 0000000000000000 R14: 0000000000000001 R15: 00007ffc22bbe140
[ 2766.662143][  T380]  </TASK>
21:27:15 executing program 2:
openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0)
openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_int(r0, &(0x7f00000000c0)='memory.max\x00', 0x2, 0x0)
bpf$ITER_CREATE(0x21, &(0x7f0000000340), 0x8)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='blkio.bfq.io_service_time\x00', 0x26e1, 0x0)
write$cgroup_int(r2, &(0x7f0000000040), 0x12)
close(r2)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_open_procfs$namespace(0x0, 0x0)
write$cgroup_int(r1, 0x0, 0x0)

21:27:15 executing program 2:
openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0)
openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
perf_event_open(0x0, 0xffffffffffffffff, 0xb, 0xffffffffffffffff, 0x0)
r1 = openat$cgroup_int(r0, &(0x7f00000000c0)='memory.max\x00', 0x2, 0x0)
getpid()
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x1f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000300)='cpuacct.usage_all\x00', 0x0, 0x0)
bpf$ITER_CREATE(0x21, &(0x7f00000002c0)={r2}, 0x8)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='blkio.bfq.io_service_time\x00', 0x26e1, 0x0)
write$cgroup_int(r3, &(0x7f0000000040), 0x12)
close(r3)
syz_open_procfs$namespace(0x0, 0x0)
write$cgroup_int(r1, &(0x7f0000000040), 0x12)

[ 2766.837743][T10995] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2766.946550][T10995] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2767.040019][T10995] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
21:27:16 executing program 5:
openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0)
openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
perf_event_open(0x0, 0xffffffffffffffff, 0xb, 0xffffffffffffffff, 0x0)
r1 = openat$cgroup_int(r0, &(0x7f00000000c0)='memory.max\x00', 0x2, 0x0)
getpid()
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x1f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000300)='cpuacct.usage_all\x00', 0x0, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='blkio.bfq.io_service_time\x00', 0x26e1, 0x0)
write$cgroup_int(r2, &(0x7f0000000040), 0x12)
close(r2)
syz_open_procfs$namespace(0x0, 0x0)
write$cgroup_int(r1, &(0x7f0000000040), 0x12)

[ 2767.422635][  T380] memory: usage 10328kB, limit 0kB, failcnt 814
[ 2767.458918][  T380] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2767.492282][  T380] Memory cgroup stats for /syz3:
[ 2767.499180][  T380] anon 45056
[ 2767.499180][  T380] file 10448896
[ 2767.499180][  T380] kernel 81920
[ 2767.499180][  T380] kernel_stack 0
[ 2767.499180][  T380] pagetables 8192
[ 2767.499180][  T380] sec_pagetables 0
[ 2767.499180][  T380] percpu 0
[ 2767.499180][  T380] sock 0
[ 2767.499180][  T380] vmalloc 0
[ 2767.499180][  T380] shmem 10448896
[ 2767.499180][  T380] zswap 0
[ 2767.499180][  T380] zswapped 0
[ 2767.499180][  T380] file_mapped 315392
[ 2767.499180][  T380] file_dirty 0
[ 2767.499180][  T380] file_writeback 0
[ 2767.499180][  T380] swapcached 0
[ 2767.499180][  T380] anon_thp 0
[ 2767.499180][  T380] file_thp 0
[ 2767.499180][  T380] shmem_thp 0
[ 2767.499180][  T380] inactive_anon 2142208
[ 2767.499180][  T380] active_anon 8351744
[ 2767.499180][  T380] inactive_file 0
[ 2767.499180][  T380] active_file 0
[ 2767.499180][  T380] unevictable 0
[ 2767.499180][  T380] slab_reclaimable 30616
[ 2767.499180][  T380] slab_unreclaimable 32296
[ 2767.499180][  T380] slab 62912
[ 2767.830143][  T380] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=380,uid=0
[ 2767.878079][  T380] Memory cgroup out of memory: Killed process 380 (syz-executor.3) total-vm:50568kB, anon-rss:364kB, file-rss:8960kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:0
[ 2767.920357][  T565] syz-executor.4 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=1, oom_score_adj=0
[ 2767.954016][  T565] CPU: 1 PID: 565 Comm: syz-executor.4 Not tainted 6.2.0-rc2-syzkaller-00431-g0164776a2ce7 #0
[ 2767.964331][  T565] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 2767.974394][  T565] Call Trace:
[ 2767.977703][  T565]  <TASK>
[ 2767.980638][  T565]  dump_stack_lvl+0xd1/0x138
[ 2767.985248][  T565]  dump_header+0x10b/0x85f
[ 2767.989675][  T565]  oom_kill_process.cold+0x10/0x15
[ 2767.994824][  T565]  out_of_memory+0x35c/0x14a0
[ 2767.999592][  T565]  ? oom_killer_disable+0x280/0x280
[ 2768.004818][  T565]  ? find_held_lock+0x2d/0x110
[ 2768.009622][  T565]  mem_cgroup_out_of_memory+0x206/0x270
[ 2768.015207][  T565]  ? mem_cgroup_margin+0x130/0x130
[ 2768.020337][  T565]  ? lock_downgrade+0x6e0/0x6e0
[ 2768.025213][  T565]  try_charge_memcg+0xefb/0x12f0
[ 2768.030209][  T565]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 2768.036204][  T565]  ? get_mem_cgroup_from_objcg+0xa1/0x260
[ 2768.041946][  T565]  ? lock_downgrade+0x6e0/0x6e0
[ 2768.046808][  T565]  ? lock_downgrade+0x6e0/0x6e0
[ 2768.051673][  T565]  ? rcu_read_unlock+0x9/0x60
[ 2768.056391][  T565]  obj_cgroup_charge+0x2af/0x5e0
[ 2768.061342][  T565]  ? copy_process+0x3aa/0x7520
[ 2768.066133][  T565]  kmem_cache_alloc_node+0xb7/0x460
[ 2768.071348][  T565]  copy_process+0x3aa/0x7520
[ 2768.075950][  T565]  ? _raw_spin_unlock+0x28/0x40
[ 2768.080812][  T565]  ? wp_page_reuse+0x197/0x570
[ 2768.085602][  T565]  ? do_wp_page+0x844/0x3370
[ 2768.090213][  T565]  ? __cleanup_sighand+0xb0/0xb0
[ 2768.095162][  T565]  ? finish_mkwrite_fault+0x3d0/0x3d0
[ 2768.100554][  T565]  ? rwlock_bug.part.0+0x90/0x90
[ 2768.105502][  T565]  ? lock_chain_count+0x20/0x20
[ 2768.110363][  T565]  kernel_clone+0xeb/0x990
[ 2768.114791][  T565]  ? create_io_thread+0xf0/0xf0
[ 2768.119672][  T565]  ? find_held_lock+0x2d/0x110
[ 2768.124461][  T565]  __do_sys_clone+0xba/0x100
[ 2768.129063][  T565]  ? kernel_clone+0x990/0x990
[ 2768.133762][  T565]  ? syscall_enter_from_user_mode+0x26/0xb0
[ 2768.139668][  T565]  do_syscall_64+0x39/0xb0
[ 2768.144099][  T565]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2768.150003][  T565] RIP: 0033:0x7fb04f689dfb
[ 2768.154422][  T565] Code: ed 0f 85 60 01 00 00 64 4c 8b 0c 25 10 00 00 00 45 31 c0 4d 8d 91 d0 02 00 00 31 d2 31 f6 bf 11 00 20 01 b8 38 00 00 00 0f 05 <48> 3d 00 f0 ff ff 0f 87 89 00 00 00 41 89 c5 85 c0 0f 85 90 00 00
[ 2768.174030][  T565] RSP: 002b:00007ffef29f2c00 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[ 2768.182447][  T565] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fb04f689dfb
[ 2768.190439][  T565] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011
[ 2768.198424][  T565] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000555555b88400
[ 2768.206398][  T565] R10: 0000555555b886d0 R11: 0000000000000246 R12: 0000000000000001
[ 2768.214383][  T565] R13: 0000000000000000 R14: 0000000000000001 R15: 00007ffef29f2ce0
[ 2768.222377][  T565]  </TASK>
21:27:17 executing program 3:
openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0)
openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
perf_event_open(0x0, 0xffffffffffffffff, 0xb, 0xffffffffffffffff, 0x0)
r1 = openat$cgroup_int(r0, &(0x7f00000000c0)='memory.max\x00', 0x2, 0x0)
getpid()
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x1f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='blkio.bfq.io_service_time\x00', 0x26e1, 0x0)
write$cgroup_int(r2, &(0x7f0000000040), 0x12)
close(r2)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000280)='host1x_cdma_push_wide\x00'}, 0x10)
write$cgroup_int(r1, &(0x7f0000000040), 0x12)

21:27:17 executing program 3:
openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
perf_event_open(0x0, 0xffffffffffffffff, 0xb, 0xffffffffffffffff, 0x0)
r1 = openat$cgroup_int(r0, &(0x7f00000000c0)='memory.max\x00', 0x2, 0x0)
getpid()
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x1f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='blkio.bfq.io_service_time\x00', 0x26e1, 0x0)
write$cgroup_int(r2, &(0x7f0000000040), 0x12)
close(r2)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000280)='host1x_cdma_push_wide\x00'}, 0x10)
write$cgroup_int(r1, &(0x7f0000000040), 0x12)

[ 2768.822192][T10995] device hsr_slave_0 left promiscuous mode
[ 2768.828958][  T565] memory: usage 8280kB, limit 0kB, failcnt 778
[ 2768.835481][  T565] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2768.835515][T10995] device hsr_slave_1 left promiscuous mode
[ 2768.865739][  T565] Memory cgroup stats for /syz4:
[ 2768.865943][  T565] anon 36864
[ 2768.865943][  T565] file 8355840
[ 2768.865943][  T565] kernel 86016
[ 2768.865943][  T565] kernel_stack 0
[ 2768.865943][  T565] pagetables 8192
[ 2768.865943][  T565] sec_pagetables 0
[ 2768.865943][  T565] percpu 0
[ 2768.865943][  T565] sock 0
[ 2768.865943][  T565] vmalloc 0
[ 2768.865943][  T565] shmem 8351744
[ 2768.865943][  T565] zswap 0
[ 2768.865943][  T565] zswapped 0
[ 2768.865943][  T565] file_mapped 266240
[ 2768.865943][  T565] file_dirty 0
[ 2768.865943][  T565] file_writeback 0
[ 2768.865943][  T565] swapcached 0
21:27:17 executing program 2:
openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0)
openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
perf_event_open(0x0, 0xffffffffffffffff, 0xb, 0xffffffffffffffff, 0x0)
r1 = openat$cgroup_int(r0, &(0x7f00000000c0)='memory.max\x00', 0x2, 0x0)
getpid()
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x1f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000300)='cpuacct.usage_all\x00', 0x0, 0x0)
bpf$ITER_CREATE(0x21, &(0x7f00000002c0)={r2}, 0x8)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='blkio.bfq.io_service_time\x00', 0x26e1, 0x0)
write$cgroup_int(r3, &(0x7f0000000040), 0x12)
close(r3)
syz_open_procfs$namespace(0x0, 0x0)
write$cgroup_int(r1, &(0x7f0000000040), 0x12)

[ 2768.865943][  T565] anon_thp 0
[ 2768.865943][  T565] file_thp 0
[ 2768.865943][  T565] shmem_thp 0
[ 2768.865943][  T565] inactive_anon 36864
[ 2768.865943][  T565] active_anon 8351744
[ 2768.865943][  T565] inactive_file 0
[ 2768.865943][  T565] active_file 4096
[ 2768.865943][  T565] unevictable 0
[ 2768.865943][  T565] slab_reclaimable 33512
[ 2768.865943][  T565] slab_unreclaimable 32296
[ 2768.865943][  T565] slab 65808
[ 2769.005208][T10995] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 2769.019743][T10995] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 2769.068419][T10995] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 2769.079258][T10995] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 2769.121939][T10995] device bridge_slave_1 left promiscuous mode
[ 2769.128204][T10995] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2769.164589][T10995] device bridge_slave_0 left promiscuous mode
[ 2769.183781][T10995] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2769.244385][T10995] device veth1_macvtap left promiscuous mode
[ 2769.248690][  T565] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0-1,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=565,uid=0
[ 2769.271634][T10995] device veth0_macvtap left promiscuous mode
[ 2769.293660][T14879] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 2769.303723][T14879] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 2769.324462][T14879] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 2769.326489][T10995] device veth1_vlan left promiscuous mode
[ 2769.332364][T14879] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 2769.337485][  T565] Memory cgroup out of memory: Killed process 565 (syz-executor.4) total-vm:50568kB, anon-rss:364kB, file-rss:8960kB, shmem-rss:0kB, UID:0 pgtables:68kB oom_score_adj:0
[ 2769.364191][T14879] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[ 2769.379112][T14879] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 2769.383944][T10995] device veth0_vlan left promiscuous mode
[ 2769.413325][  T389] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=0
[ 2769.428997][  T389] CPU: 1 PID: 389 Comm: syz-executor.2 Not tainted 6.2.0-rc2-syzkaller-00431-g0164776a2ce7 #0
[ 2769.439305][  T389] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 2769.449394][  T389] Call Trace:
[ 2769.452737][  T389]  <TASK>
[ 2769.455701][  T389]  dump_stack_lvl+0xd1/0x138
[ 2769.460340][  T389]  dump_header+0x10b/0x85f
[ 2769.464802][  T389]  oom_kill_process.cold+0x10/0x15
[ 2769.469965][  T389]  out_of_memory+0x35c/0x14a0
[ 2769.474684][  T389]  ? oom_killer_disable+0x280/0x280
[ 2769.479924][  T389]  ? find_held_lock+0x2d/0x110
[ 2769.484738][  T389]  mem_cgroup_out_of_memory+0x206/0x270
[ 2769.490317][  T389]  ? mem_cgroup_margin+0x130/0x130
[ 2769.495463][  T389]  ? lock_downgrade+0x6e0/0x6e0
[ 2769.500385][  T389]  try_charge_memcg+0xefb/0x12f0
[ 2769.505378][  T389]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 2769.511399][  T389]  ? get_mem_cgroup_from_objcg+0xa1/0x260
[ 2769.517165][  T389]  ? lock_downgrade+0x6e0/0x6e0
[ 2769.522067][  T389]  ? lock_downgrade+0x6e0/0x6e0
[ 2769.526970][  T389]  __memcg_kmem_charge_page+0x16e/0x3b0
[ 2769.532565][  T389]  memcg_charge_kernel_stack.part.0+0x6c/0x150
[ 2769.538769][  T389]  copy_process+0x4e3/0x7520
[ 2769.543401][  T389]  ? _raw_spin_unlock+0x28/0x40
[ 2769.548293][  T389]  ? wp_page_reuse+0x197/0x570
[ 2769.553114][  T389]  ? do_wp_page+0x844/0x3370
[ 2769.557756][  T389]  ? __cleanup_sighand+0xb0/0xb0
[ 2769.562730][  T389]  ? finish_mkwrite_fault+0x3d0/0x3d0
[ 2769.568154][  T389]  ? rwlock_bug.part.0+0x90/0x90
[ 2769.573131][  T389]  ? lock_chain_count+0x20/0x20
[ 2769.578029][  T389]  kernel_clone+0xeb/0x990
[ 2769.582498][  T389]  ? create_io_thread+0xf0/0xf0
[ 2769.587398][  T389]  ? find_held_lock+0x2d/0x110
[ 2769.592224][  T389]  __do_sys_clone+0xba/0x100
[ 2769.596850][  T389]  ? kernel_clone+0x990/0x990
[ 2769.601585][  T389]  ? syscall_enter_from_user_mode+0x26/0xb0
[ 2769.607535][  T389]  do_syscall_64+0x39/0xb0
[ 2769.612008][  T389]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2769.617963][  T389] RIP: 0033:0x7fbde8489dfb
[ 2769.622416][  T389] Code: ed 0f 85 60 01 00 00 64 4c 8b 0c 25 10 00 00 00 45 31 c0 4d 8d 91 d0 02 00 00 31 d2 31 f6 bf 11 00 20 01 b8 38 00 00 00 0f 05 <48> 3d 00 f0 ff ff 0f 87 89 00 00 00 41 89 c5 85 c0 0f 85 90 00 00
[ 2769.642068][  T389] RSP: 002b:00007ffdbca7d8f0 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[ 2769.650522][  T389] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fbde8489dfb
[ 2769.658536][  T389] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011
[ 2769.666548][  T389] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000555555c76400
[ 2769.674561][  T389] R10: 0000555555c766d0 R11: 0000000000000246 R12: 0000000000000001
[ 2769.682568][  T389] R13: 0000000000000000 R14: 0000000000000001 R15: 00007ffdbca7d9d0
[ 2769.690596][  T389]  </TASK>
[ 2769.783035][  T389] memory: usage 10392kB, limit 0kB, failcnt 1214
[ 2769.789781][  T389] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2769.796761][  T389] Memory cgroup stats for /syz2:
[ 2769.796963][  T389] anon 45056
[ 2769.796963][  T389] file 10444800
[ 2769.796963][  T389] kernel 110592
[ 2769.796963][  T389] kernel_stack 0
[ 2769.796963][  T389] pagetables 8192
[ 2769.796963][  T389] sec_pagetables 0
[ 2769.796963][  T389] percpu 0
[ 2769.796963][  T389] sock 0
[ 2769.796963][  T389] vmalloc 0
[ 2769.796963][  T389] shmem 10440704
[ 2769.796963][  T389] zswap 0
[ 2769.796963][  T389] zswapped 0
[ 2769.796963][  T389] file_mapped 184320
[ 2769.796963][  T389] file_dirty 0
[ 2769.796963][  T389] file_writeback 0
[ 2769.796963][  T389] swapcached 0
[ 2769.796963][  T389] anon_thp 0
[ 2769.796963][  T389] file_thp 0
[ 2769.796963][  T389] shmem_thp 0
[ 2769.796963][  T389] inactive_anon 45056
[ 2769.796963][  T389] active_anon 10440704
[ 2769.796963][  T389] inactive_file 0
[ 2769.796963][  T389] active_file 4096
[ 2769.796963][  T389] unevictable 0
[ 2769.796963][  T389] slab_reclaimable 39504
[ 2769.796963][  T389] slab_unreclaimable 39792
[ 2769.796963][  T389] slab 79296
[ 2769.894251][  T389] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=389,uid=0
[ 2769.909816][  T389] Memory cgroup out of memory: Killed process 389 (syz-executor.2) total-vm:50568kB, anon-rss:364kB, file-rss:8960kB, shmem-rss:0kB, UID:0 pgtables:68kB oom_score_adj:0
[ 2770.096908][T10995] team0 (unregistering): Port device team_slave_1 removed
[ 2770.125010][T10995] team0 (unregistering): Port device team_slave_0 removed
[ 2770.147909][T10995] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 2770.176046][T10995] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 2770.296132][ T5120] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 2770.305987][ T5120] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 2770.320531][ T5120] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 2770.328639][T10995] bond0 (unregistering): Released all slaves
[ 2770.345205][ T5120] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[ 2770.352652][ T5120] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 2770.915047][  T810] chnl_net:caif_netlink_parms(): no params data found
[ 2771.016726][  T805] chnl_net:caif_netlink_parms(): no params data found
[ 2771.177278][  T810] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2771.189135][  T810] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2771.198375][  T810] device bridge_slave_0 entered promiscuous mode
[ 2771.272401][  T810] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2771.289397][  T810] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2771.317175][  T810] device bridge_slave_1 entered promiscuous mode
[ 2771.410039][T14879] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 2771.421748][T14879] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 2771.430990][T14879] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 2771.439520][T14879] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 2771.447138][T14879] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[ 2771.455009][T14879] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 2771.459033][T17544] Bluetooth: hci0: command 0x0409 tx timeout
[ 2771.542432][  T810] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 2771.579430][  T805] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2771.586576][  T805] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2771.604932][  T805] device bridge_slave_0 entered promiscuous mode
[ 2771.643321][  T810] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 2771.659084][  T805] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2771.666219][  T805] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2771.675483][  T805] device bridge_slave_1 entered promiscuous mode
[ 2771.777176][  T805] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 2771.795956][  T810] team0: Port device team_slave_0 added
[ 2771.819846][  T805] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 2771.832806][  T810] team0: Port device team_slave_1 added
[ 2771.898136][  T805] team0: Port device team_slave_0 added
[ 2771.961690][  T805] team0: Port device team_slave_1 added
[ 2771.980055][  T810] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 2771.987042][  T810] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2772.044390][  T810] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 2772.138304][  T810] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 2772.163109][  T810] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2772.204529][  T810] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 2772.261729][  T805] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 2772.278896][  T805] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2772.314571][  T805] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 2772.418912][T17544] Bluetooth: hci2: command 0x0409 tx timeout
[ 2772.438240][  T805] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 2772.450913][  T805] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2772.555142][  T805] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 2772.592635][  T810] device hsr_slave_0 entered promiscuous mode
[ 2772.609297][  T810] device hsr_slave_1 entered promiscuous mode
[ 2772.652773][  T832] chnl_net:caif_netlink_parms(): no params data found
[ 2772.720470][  T805] device hsr_slave_0 entered promiscuous mode
[ 2772.749250][  T805] device hsr_slave_1 entered promiscuous mode
[ 2772.756009][  T805] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 2772.778839][  T805] Cannot create hsr debugfs directory
[ 2772.964537][  T832] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2772.971870][  T832] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2772.991330][  T832] device bridge_slave_0 entered promiscuous mode
[ 2773.001290][  T832] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2773.008550][  T832] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2773.017099][  T832] device bridge_slave_1 entered promiscuous mode
[ 2773.129458][  T832] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 2773.143121][  T832] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 2773.269836][  T810] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2773.342189][T10995] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2773.395372][  T832] team0: Port device team_slave_0 added
[ 2773.477771][  T810] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2773.512958][  T832] team0: Port device team_slave_1 added
[ 2773.529225][T17544] Bluetooth: hci3: command 0x0409 tx timeout
[ 2773.535906][T17544] Bluetooth: hci0: command 0x041b tx timeout
[ 2773.583540][T10995] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2773.686989][  T810] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2773.781354][  T832] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 2773.788354][  T832] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2773.889073][  T832] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 2773.963555][T10995] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2774.069724][  T810] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2774.110351][  T832] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 2774.117349][  T832] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2774.195962][  T832] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 2774.246779][T10995] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2774.403496][  T832] device hsr_slave_0 entered promiscuous mode
[ 2774.449268][  T832] device hsr_slave_1 entered promiscuous mode
[ 2774.457724][  T832] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 2774.474731][  T832] Cannot create hsr debugfs directory
[ 2774.499891][T17544] Bluetooth: hci2: command 0x041b tx timeout
[ 2774.576104][ T1211] ieee802154 phy0 wpan0: encryption failed: -22
[ 2774.582791][ T1211] ieee802154 phy1 wpan1: encryption failed: -22
[ 2774.754916][  T810] netdevsim netdevsim5 netdevsim0: renamed from eth0
[ 2774.837444][T10995] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2774.963936][  T810] netdevsim netdevsim5 netdevsim1: renamed from eth1
[ 2775.079885][T10995] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2775.123865][  T810] netdevsim netdevsim5 netdevsim2: renamed from eth2
[ 2775.197809][  T810] netdevsim netdevsim5 netdevsim3: renamed from eth3
[ 2775.261053][T10995] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
21:27:24 executing program 1:
r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0)
perf_event_open(&(0x7f0000000180)={0x0, 0x80, 0x0, 0x7c, 0x4, 0xd2, 0x0, 0x5, 0x0, 0x74d4e3ef7733d4ea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x26, 0x0, @perf_bp={0x0}, 0x210, 0x0, 0x1f, 0x3, 0x0, 0x0, 0xffff}, 0x0, 0x0, 0xffffffffffffffff, 0x9)
openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
perf_event_open(&(0x7f0000000200)={0x4, 0x80, 0x9, 0x0, 0x0, 0x5, 0x0, 0xffffffff, 0x800, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x2, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x2, 0x2, @perf_bp={&(0x7f0000000100), 0x5}, 0x0, 0x100000000, 0x2a, 0x0, 0x8, 0x40, 0x0, 0x0, 0x3f, 0x0, 0x4000000000000000}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
recvmsg(0xffffffffffffffff, 0x0, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f00000002c0)='cpuacct.usage_percpu_sys\x00', 0x0, 0x0)
perf_event_open$cgroup(&(0x7f00000003c0)={0x4, 0x80, 0x1, 0xff, 0x1, 0x5, 0x0, 0x800000000000008, 0x21001, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x3, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0xffff0000, 0x4, @perf_bp={&(0x7f0000000380), 0x8}, 0x40ae, 0xe, 0x78d8, 0x5, 0x7, 0x7, 0x1ff}, 0xffffffffffffffff, 0xc, r0, 0xc)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000018c00)={0x18, 0x3, &(0x7f0000000780)=ANY=[@ANYBLOB="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"], &(0x7f0000000440)='syzkaller\x00', 0x4, 0xb0, &(0x7f0000000480)=""/176, 0x0, 0x0, '\x00', 0x0, 0x0, r1, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
r3 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='rcu_utilization\x00', r2}, 0x10)
r4 = perf_event_open$cgroup(&(0x7f0000000080)={0x4, 0x80, 0x81, 0x5, 0x6, 0x0, 0x0, 0x8000000000000000, 0x848, 0x4, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x3, 0x0, @perf_config_ext={0x912410d}, 0x8800, 0xffffffff, 0x7, 0x6, 0x3f, 0x7, 0x8dd, 0x0, 0x5, 0x0, 0x1}, 0xffffffffffffffff, 0xb, 0xffffffffffffffff, 0x9)
ioctl$PERF_EVENT_IOC_SET_OUTPUT(0xffffffffffffffff, 0x2405, r4)
r5 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000540)='./cgroup.cpu/syz1\x00', 0x200002, 0x0)
openat$cgroup_ro(r5, &(0x7f0000000640)='cgroup.stat\x00', 0x0, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r4, 0x40082404, &(0x7f0000000580)=0xffffffffffffff7f)
r6 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000000)='cpuacct.usage_percpu_sys\x00', 0x26e1, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r6, 0x40086607, &(0x7f0000000040))
r7 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x26e1, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000018c00)={0x18, 0x3, &(0x7f0000000300)=ANY=[@ANYRES64=r1], 0x0, 0x4, 0xb0, &(0x7f0000000480)=""/176, 0x40f00, 0x5, '\x00', 0x0, 0x0, r7, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x0, 0x204d, &(0x7f00000005c0)=ANY=[@ANYRES32], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x18, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000740)={0x0, 0x3}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000002c0)=[0xffffffffffffffff, r7, 0xffffffffffffffff]}, 0x80)
write$cgroup_int(r7, &(0x7f0000000280)=0x1ff, 0x12)
r8 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000001e00)={&(0x7f0000001dc0)='./file0\x00', 0x0, 0x10}, 0x10)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000001e80)=@bpf_lsm={0x1d, 0x2, &(0x7f0000000700)=@raw=[@map_idx={0x18, 0x4}], &(0x7f0000002340)='GPL\x00', 0x5, 0x33, &(0x7f0000002380)=""/51, 0x41100, 0x2, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f00000023c0)={0x5, 0x4}, 0x8, 0x10, &(0x7f0000002400)={0x3, 0xa, 0x6, 0xae2e}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000002500)=[r0, r8, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}, 0x80)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={0xffffffffffffffff, 0x18000000000002a0, 0x0, 0x0, &(0x7f00000001c0), 0x0, 0x0, 0xe8030000, 0x0, 0x0, 0x0, 0x0}, 0x48)
ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x89f2, &(0x7f0000000080)='ip6tnl0\x00')
socketpair(0x1e, 0x5, 0x20, &(0x7f0000000600))
socketpair(0x1, 0x1, 0x0, &(0x7f0000000740)={0xffffffffffffffff, <r9=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r9, 0x89f1, &(0x7f0000000080))
close(r3)

21:27:24 executing program 4:
openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0)
perf_event_open(&(0x7f0000000100)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_int(r0, &(0x7f00000000c0)='memory.max\x00', 0x2, 0x0)
getpid()
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x1f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000300)='cpuacct.usage_all\x00', 0x0, 0x0)
bpf$ITER_CREATE(0x21, &(0x7f00000002c0)={r2}, 0x8)
getpid()
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='blkio.bfq.io_service_time\x00', 0x26e1, 0x0)
write$cgroup_int(r3, &(0x7f0000000040), 0x12)
close(r3)
syz_open_procfs$namespace(0x0, 0x0)
write$cgroup_int(r1, &(0x7f0000000040), 0x12)

21:27:24 executing program 2:
openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0)
openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
perf_event_open(0x0, 0xffffffffffffffff, 0xb, 0xffffffffffffffff, 0x0)
r1 = openat$cgroup_int(r0, &(0x7f00000000c0)='memory.max\x00', 0x2, 0x0)
getpid()
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x1f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000300)='cpuacct.usage_all\x00', 0x0, 0x0)
bpf$ITER_CREATE(0x21, &(0x7f00000002c0)={r2}, 0x8)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='blkio.bfq.io_service_time\x00', 0x26e1, 0x0)
write$cgroup_int(r3, &(0x7f0000000040), 0x12)
close(r3)
syz_open_procfs$namespace(0x0, 0x0)
write$cgroup_int(r1, &(0x7f0000000040), 0x12)

[ 2775.428246][T10995] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2775.608913][T17544] Bluetooth: hci0: command 0x040f tx timeout
[ 2775.615965][T17544] Bluetooth: hci3: command 0x041b tx timeout
[ 2775.669989][  T832] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2775.889705][  T832] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2775.953913][  T810] 8021q: adding VLAN 0 to HW filter on device bond0
[ 2776.079836][  T832] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2776.137563][T23989] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 2776.146463][T23989] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 2776.166417][  T810] 8021q: adding VLAN 0 to HW filter on device team0
[ 2776.193686][  T832] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2776.260399][ T9919] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 2776.277944][ T9919] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 2776.286768][ T9919] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2776.293986][ T9919] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 2776.302394][ T9919] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 2776.311488][ T9919] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 2776.320423][ T9919] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2776.327590][ T9919] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 2776.349538][ T9919] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 2776.381660][ T9919] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 2776.398076][ T9919] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 2776.407486][ T9919] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 2776.426810][ T9919] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 2776.478103][T23989] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 2776.488039][T23989] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 2776.510381][T23989] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 2776.519414][T23989] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 2776.528603][T23989] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 2776.542142][  T810] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 2776.584863][T17544] Bluetooth: hci2: command 0x040f tx timeout
[ 2776.790396][  T832] netdevsim netdevsim3 netdevsim0: renamed from eth0
[ 2776.857713][  T832] netdevsim netdevsim3 netdevsim1: renamed from eth1
[ 2776.916240][  T832] netdevsim netdevsim3 netdevsim2: renamed from eth2
[ 2776.965798][  T832] netdevsim netdevsim3 netdevsim3: renamed from eth3
[ 2777.074891][  T805] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 2777.139272][  T805] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 2777.160479][  T805] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 2777.184428][  T805] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 2777.501991][  T832] 8021q: adding VLAN 0 to HW filter on device bond0
[ 2777.525635][  T810] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 2777.549370][ T9919] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 2777.561114][ T9919] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 2777.588200][  T832] 8021q: adding VLAN 0 to HW filter on device team0
[ 2777.686423][T30559] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 2777.694087][T17544] Bluetooth: hci3: command 0x040f tx timeout
[ 2777.700480][ T5120] Bluetooth: hci0: command 0x0419 tx timeout
[ 2777.709928][T30559] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 2777.746586][T17544] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[ 2777.757250][T17544] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[ 2777.767383][T17544] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[ 2777.779175][T17544] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[ 2777.787365][T17544] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[ 2777.795490][T17544] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[ 2777.872529][  T805] 8021q: adding VLAN 0 to HW filter on device bond0
[ 2777.890003][T24529] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 2777.911685][T24529] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 2777.921072][T24529] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2777.928187][T24529] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 2777.936281][T24529] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 2777.945467][T24529] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 2777.954080][T24529] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2777.961230][T24529] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 2777.972162][T24529] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 2778.000975][  T805] 8021q: adding VLAN 0 to HW filter on device team0
[ 2778.080229][T30559] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 2778.088190][T30559] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 2778.109627][T30559] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 2778.120321][T30559] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 2778.139749][T30559] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 2778.151612][T30559] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 2778.272016][T17500] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 2778.290848][T17500] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 2778.311677][T17500] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 2778.329351][T17500] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2778.336495][T17500] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 2778.354619][T17500] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 2778.367607][T17500] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 2778.388168][T17500] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2778.395387][T17500] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 2778.421311][T17500] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 2778.430672][T17500] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 2778.450195][T17500] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 2778.469360][T17500] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 2778.493821][  T832] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 2778.518975][  T832] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 2778.575184][T14879] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[ 2778.586003][T14879] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[ 2778.594603][T14879] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[ 2778.602771][T14879] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[ 2778.610673][T14879] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[ 2778.658908][T14879] Bluetooth: hci2: command 0x0419 tx timeout
[ 2778.659339][ T9919] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 2778.681689][ T9919] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 2778.714857][ T9919] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 2778.737194][ T9919] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 2778.913460][T30559] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 2778.922033][T30559] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 2778.940201][T30559] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 2778.948976][T30559] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 2778.957455][T30559] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 2778.966358][T30559] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 2778.976317][  T805] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 2779.185419][  T483] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 2779.209808][  T483] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 2779.253744][  T810] device veth0_vlan entered promiscuous mode
[ 2779.273733][T21233] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 2779.287537][T21233] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 2779.331187][  T810] device veth1_vlan entered promiscuous mode
[ 2779.347522][  T483] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 2779.369675][  T483] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 2779.377668][  T483] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 2779.409060][T23989] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 2779.419922][T23989] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 2779.492010][  T832] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 2779.669273][ T9919] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 2779.682933][ T9919] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 2779.704389][ T9919] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 2779.769012][ T5120] Bluetooth: hci3: command 0x0419 tx timeout
[ 2779.777670][  T810] device veth0_macvtap entered promiscuous mode
21:27:28 executing program 1:
perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x6, 0x401}, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000180)={0x0, 0x80, 0x0, 0x7c, 0x4, 0xd2, 0x0, 0x5, 0x0, 0x74d4e3ef7733d4ea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x26, 0x0, @perf_bp={0x0}, 0x210, 0x0, 0x1f, 0x3, 0x0, 0x0, 0xffff}, 0x0, 0x0, 0xffffffffffffffff, 0x9)
openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
perf_event_open(&(0x7f0000000200)={0x4, 0x80, 0x9, 0x0, 0x0, 0x5, 0x0, 0xffffffff, 0x800, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x2, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x2, 0x2, @perf_bp={&(0x7f0000000100), 0x5}, 0x0, 0x100000000, 0x2a, 0x0, 0x8, 0x40, 0x0, 0x0, 0x3f, 0x0, 0x4000000000000000}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
recvmsg(0xffffffffffffffff, 0x0, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f00000002c0)='cpuacct.usage_percpu_sys\x00', 0x0, 0x0)
perf_event_open$cgroup(&(0x7f00000003c0)={0x4, 0x80, 0x1, 0xff, 0x1, 0x5, 0x0, 0x800000000000008, 0x21001, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x3, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0xffff0000, 0x4, @perf_bp={&(0x7f0000000380), 0x8}, 0x40ae, 0xe, 0x78d8, 0x5, 0x7, 0x7, 0x1ff}, 0xffffffffffffffff, 0xc, 0xffffffffffffffff, 0xc)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000018c00)={0x18, 0x3, &(0x7f0000000780)=ANY=[@ANYBLOB="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"], &(0x7f0000000440)='syzkaller\x00', 0x4, 0xb0, &(0x7f0000000480)=""/176, 0x0, 0x0, '\x00', 0x0, 0x0, r0, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='rcu_utilization\x00', r1}, 0x10)
r3 = perf_event_open$cgroup(&(0x7f0000000080)={0x4, 0x80, 0x81, 0x5, 0x6, 0x0, 0x0, 0x8000000000000000, 0x848, 0x4, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x3, 0x0, @perf_config_ext={0x912410d}, 0x8800, 0xffffffff, 0x7, 0x6, 0x3f, 0x7, 0x8dd, 0x0, 0x5, 0x0, 0x1}, 0xffffffffffffffff, 0xb, 0xffffffffffffffff, 0x9)
ioctl$PERF_EVENT_IOC_SET_OUTPUT(0xffffffffffffffff, 0x2405, r3)
r4 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000540)='./cgroup.cpu/syz1\x00', 0x200002, 0x0)
openat$cgroup_ro(r4, &(0x7f0000000640)='cgroup.stat\x00', 0x0, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r3, 0x40082404, &(0x7f0000000580)=0xffffffffffffff7f)
r5 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000000)='cpuacct.usage_percpu_sys\x00', 0x26e1, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r5, 0x40086607, &(0x7f0000000040))
r6 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x26e1, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000018c00)={0x18, 0x3, &(0x7f0000000300)=ANY=[@ANYRES64=r0], 0x0, 0x4, 0xb0, &(0x7f0000000480)=""/176, 0x40f00, 0x5, '\x00', 0x0, 0x0, r6, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x0, 0x204d, &(0x7f00000005c0)=ANY=[@ANYRES32], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x18, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000740)={0x0, 0x3}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000002c0)=[0xffffffffffffffff, r6, 0xffffffffffffffff]}, 0x80)
write$cgroup_int(r6, &(0x7f0000000280)=0x1ff, 0x12)
r7 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000001e00)={&(0x7f0000001dc0)='./file0\x00', 0x0, 0x10}, 0x10)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000001e80)=@bpf_lsm={0x1d, 0x2, &(0x7f0000000700)=@raw=[@map_idx={0x18, 0x4}], &(0x7f0000002340)='GPL\x00', 0x5, 0x33, &(0x7f0000002380)=""/51, 0x41100, 0x2, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f00000023c0)={0x5, 0x4}, 0x8, 0x10, &(0x7f0000002400)={0x3, 0xa, 0x6, 0xae2e}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000002500)=[0xffffffffffffffff, r7, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}, 0x80)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={0xffffffffffffffff, 0x18000000000002a0, 0x0, 0x0, &(0x7f00000001c0), 0x0, 0x0, 0xe8030000, 0x0, 0x0, 0x0, 0x0}, 0x48)
ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x89f2, &(0x7f0000000080)='ip6tnl0\x00')
socketpair(0x1e, 0x5, 0x20, &(0x7f0000000600))
socketpair(0x1, 0x1, 0x0, &(0x7f0000000740)={0xffffffffffffffff, <r8=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r8, 0x89f1, &(0x7f0000000080))
close(r2)

[ 2779.811182][  T928] chnl_net:caif_netlink_parms(): no params data found
[ 2779.849130][T14879] Bluetooth: hci4: command 0x0409 tx timeout
[ 2779.932480][  T805] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 2779.953999][T17500] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 2779.962472][T17500] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 2779.971437][T17500] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 2779.980634][T17500] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 2779.988188][T17500] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 2779.998121][  T810] device veth1_macvtap entered promiscuous mode
[ 2780.209773][  T832] device veth0_vlan entered promiscuous mode
[ 2780.222872][T21233] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 2780.250044][T21233] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 2780.260451][T21233] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 2780.279543][T21233] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 2780.325211][  T810] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2780.341239][  T810] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2780.369099][  T810] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2780.388809][  T810] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2780.398660][  T810] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2780.469141][  T810] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2780.489203][  T810] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2780.529449][  T810] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2780.551728][  T810] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2780.562622][  T810] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2780.574898][  T810] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 2780.658994][T14879] Bluetooth: hci5: command 0x0409 tx timeout
[ 2780.716328][T23935] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 2780.735830][T23935] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 2780.769706][T23935] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 2780.778499][T23935] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 2780.812316][  T832] device veth1_vlan entered promiscuous mode
[ 2780.854729][  T805] device veth0_vlan entered promiscuous mode
[ 2780.877349][  T942] chnl_net:caif_netlink_parms(): no params data found
[ 2780.900480][  T810] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2780.929050][  T810] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2780.939157][  T810] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2780.949906][  T810] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2780.965737][  T810] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2780.977518][  T810] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2780.987742][  T810] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2781.005268][  T810] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2781.015343][  T810] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2781.026281][  T810] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2781.037561][  T810] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 2781.046131][T30559] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 2781.055629][T30559] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 2781.064504][T30559] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 2781.073394][T30559] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 2781.118663][  T810] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 2781.133886][  T810] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 2781.145324][  T810] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 2781.154274][  T810] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 2781.170576][T30559] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 2781.178328][T30559] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 2781.201624][  T805] device veth1_vlan entered promiscuous mode
[ 2781.250401][  T928] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2781.257540][  T928] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2781.266536][  T928] device bridge_slave_0 entered promiscuous mode
[ 2781.284097][T21233] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 2781.292791][T21233] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 2781.301893][T21233] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 2781.334335][  T832] device veth0_macvtap entered promiscuous mode
[ 2781.353083][  T928] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2781.364679][  T928] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2781.375227][  T928] device bridge_slave_1 entered promiscuous mode
[ 2781.461965][  T928] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 2781.477721][  T928] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 2781.508355][  T805] device veth0_macvtap entered promiscuous mode
[ 2781.517211][  T942] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2781.525075][  T942] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2781.533822][  T942] device bridge_slave_0 entered promiscuous mode
[ 2781.554679][  T832] device veth1_macvtap entered promiscuous mode
[ 2781.583194][T23935] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 2781.592480][T23935] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 2781.601006][T23935] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 2781.613985][T23935] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 2781.622899][T23935] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 2781.632063][T23935] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 2781.641977][  T805] device veth1_macvtap entered promiscuous mode
[ 2781.657755][  T942] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2781.665259][  T942] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2781.673942][  T942] device bridge_slave_1 entered promiscuous mode
[ 2781.706103][  T928] team0: Port device team_slave_0 added
[ 2781.724887][T23935] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 2781.757464][  T832] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2781.781812][  T832] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2781.806001][  T832] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2781.829096][  T832] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2781.849208][  T832] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2781.860812][  T832] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2781.871037][  T832] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2781.881767][  T832] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2781.891663][  T832] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2781.902197][  T832] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2781.912174][  T832] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2781.929271][T14879] Bluetooth: hci4: command 0x041b tx timeout
[ 2781.935404][  T832] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2781.947732][  T832] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 2781.957567][  T928] team0: Port device team_slave_1 added
[ 2781.975985][  T805] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2782.000760][  T805] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2782.017838][  T805] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2782.031854][  T805] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2782.043016][  T805] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2782.053856][  T805] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2782.075837][  T805] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2782.086448][  T805] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2782.096519][  T805] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2782.107217][  T805] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2782.128863][  T805] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2782.148779][  T805] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2782.158654][  T805] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2782.181475][  T805] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2782.193375][  T805] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 2782.211877][T23935] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 2782.230588][T23935] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 2782.250342][T23935] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 2782.275205][T23935] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 2782.286780][  T832] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2782.299074][  T832] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2782.309052][  T832] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2782.320704][  T832] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2782.338901][  T832] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2782.365624][  T832] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2782.381870][  T832] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2782.403399][  T832] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2782.414676][  T832] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2782.425979][  T832] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2782.436464][  T832] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2782.449064][  T832] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2782.462395][  T832] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 2782.487862][  T805] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2782.499056][  T805] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2782.509412][  T805] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2782.519926][  T805] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2782.529866][  T805] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2782.540373][  T805] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2782.550293][  T805] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2782.560852][  T805] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2782.583258][  T805] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2782.593912][  T805] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2782.603961][  T805] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2782.619047][  T805] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2782.628961][  T805] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2782.639486][  T805] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2782.651124][  T805] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 2782.662360][  T942] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 2782.673151][T24529] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 2782.697258][T24529] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 2782.707010][T24529] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 2782.716209][T24529] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 2782.729459][T14879] Bluetooth: hci5: command 0x041b tx timeout
[ 2782.749577][T10995] device hsr_slave_0 left promiscuous mode
[ 2782.756093][T10995] device hsr_slave_1 left promiscuous mode
[ 2782.777529][T10995] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 2782.791562][T10995] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 2782.815388][T10995] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 2782.836758][T10995] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 2782.851444][T10995] device bridge_slave_1 left promiscuous mode
[ 2782.857731][T10995] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2782.886476][T10995] device bridge_slave_0 left promiscuous mode
[ 2782.902862][T10995] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2782.913682][T10995] device hsr_slave_0 left promiscuous mode
[ 2782.921033][T10995] device hsr_slave_1 left promiscuous mode
[ 2782.927660][T10995] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 2782.935200][T10995] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 2782.944442][T10995] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 2782.952278][T10995] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 2782.962122][T10995] device bridge_slave_1 left promiscuous mode
[ 2782.968289][T10995] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2782.976933][T10995] device bridge_slave_0 left promiscuous mode
[ 2782.983662][T10995] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2782.996819][T10995] device hsr_slave_0 left promiscuous mode
[ 2783.003571][T10995] device hsr_slave_1 left promiscuous mode
[ 2783.010024][T10995] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 2783.017436][T10995] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 2783.029859][T10995] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 2783.037324][T10995] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 2783.047060][T10995] device bridge_slave_1 left promiscuous mode
[ 2783.053406][T10995] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2783.062514][T10995] device bridge_slave_0 left promiscuous mode
[ 2783.069108][T10995] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2783.082361][T10995] device hsr_slave_0 left promiscuous mode
[ 2783.088686][T10995] device hsr_slave_1 left promiscuous mode
[ 2783.101616][T10995] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 2783.110767][T10995] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 2783.120518][T10995] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 2783.127970][T10995] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 2783.138027][T10995] device bridge_slave_1 left promiscuous mode
[ 2783.144333][T10995] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2783.153300][T10995] device bridge_slave_0 left promiscuous mode
[ 2783.159889][T10995] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2783.183843][T10995] device veth1_macvtap left promiscuous mode
[ 2783.190166][T10995] device veth0_macvtap left promiscuous mode
[ 2783.196304][T10995] device veth1_vlan left promiscuous mode
[ 2783.202271][T10995] device veth0_vlan left promiscuous mode
[ 2783.210322][T10995] device veth1_macvtap left promiscuous mode
[ 2783.216397][T10995] device veth0_macvtap left promiscuous mode
[ 2783.223089][T10995] device veth1_vlan left promiscuous mode
[ 2783.229025][T10995] device veth0_vlan left promiscuous mode
[ 2783.238021][T10995] device veth1_macvtap left promiscuous mode
[ 2783.244598][T10995] device veth0_macvtap left promiscuous mode
[ 2783.251027][T10995] device veth1_vlan left promiscuous mode
[ 2783.256893][T10995] device veth0_vlan left promiscuous mode
[ 2783.264233][T10995] device veth1_macvtap left promiscuous mode
[ 2783.270572][T10995] device veth0_macvtap left promiscuous mode
[ 2783.276821][T10995] device veth1_vlan left promiscuous mode
[ 2783.282900][T10995] device veth0_vlan left promiscuous mode
[ 2783.792601][T10995] team0 (unregistering): Port device team_slave_1 removed
[ 2783.804793][T10995] team0 (unregistering): Port device team_slave_0 removed
[ 2783.824116][T10995] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 2783.838131][T10995] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 2783.909592][T10995] bond0 (unregistering): Released all slaves
[ 2784.008965][T14879] Bluetooth: hci4: command 0x040f tx timeout
[ 2784.070620][T10995] team0 (unregistering): Port device team_slave_1 removed
[ 2784.086491][T10995] team0 (unregistering): Port device team_slave_0 removed
[ 2784.105498][T10995] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 2784.126768][T10995] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 2784.207037][T10995] bond0 (unregistering): Released all slaves
[ 2784.354734][T10995] team0 (unregistering): Port device team_slave_1 removed
[ 2784.368678][T10995] team0 (unregistering): Port device team_slave_0 removed
[ 2784.385927][T10995] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 2784.404875][T10995] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 2784.476026][T10995] bond0 (unregistering): Released all slaves
[ 2784.597764][T10995] team0 (unregistering): Port device team_slave_1 removed
[ 2784.612760][T10995] team0 (unregistering): Port device team_slave_0 removed
[ 2784.629389][T10995] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 2784.645448][T10995] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 2784.717800][T10995] bond0 (unregistering): Released all slaves
[ 2784.766186][  T832] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 2784.775363][  T832] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 2784.784562][  T832] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 2784.793730][  T832] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 2784.809229][T14879] Bluetooth: hci5: command 0x040f tx timeout
[ 2784.818640][  T805] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 2784.833701][  T805] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 2784.845643][  T805] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 2784.857366][  T805] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 2784.870616][  T942] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 2784.910768][  T928] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 2784.917766][  T928] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2784.924415][T14860] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2784.951989][  T928] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 2784.971452][  T928] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 2784.978566][  T928] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2784.980272][T14860] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2785.004967][  T928] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 2785.099982][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 2785.135139][  T942] team0: Port device team_slave_0 added
[ 2785.205994][T14860] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2785.222647][  T942] team0: Port device team_slave_1 added
[ 2785.222746][T14860] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2785.257250][  T928] device hsr_slave_0 entered promiscuous mode
[ 2785.264517][  T928] device hsr_slave_1 entered promiscuous mode
[ 2785.286341][  T928] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 2785.294551][  T928] Cannot create hsr debugfs directory
[ 2785.334846][T24529] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 2785.471242][  T942] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 2785.478243][  T942] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2785.505729][  T942] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 2785.519282][  T942] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 2785.526371][  T942] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2785.553482][  T942] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 2785.569580][T14860] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2785.578498][T14833] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2785.621871][T14833] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2785.642025][T14860] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2785.731224][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 2785.745039][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 2785.789890][T20562] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2785.798028][T20562] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2785.856232][T14833] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2785.864790][ T1034] syz-executor.5 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2785.874172][T14833] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2785.885196][ T1034] CPU: 0 PID: 1034 Comm: syz-executor.5 Not tainted 6.2.0-rc2-syzkaller-00431-g0164776a2ce7 #0
[ 2785.888405][  T942] device hsr_slave_0 entered promiscuous mode
[ 2785.895548][ T1034] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 2785.895565][ T1034] Call Trace:
[ 2785.895574][ T1034]  <TASK>
[ 2785.895584][ T1034]  dump_stack_lvl+0xd1/0x138
[ 2785.895623][ T1034]  dump_header+0x10b/0x85f
[ 2785.895651][ T1034]  oom_kill_process.cold+0x10/0x15
[ 2785.895682][ T1034]  out_of_memory+0x35c/0x14a0
[ 2785.895708][ T1034]  ? lockdep_hardirqs_on+0x7d/0x100
[ 2785.941996][ T1034]  ? oom_killer_disable+0x280/0x280
[ 2785.947221][ T1034]  ? mem_cgroup_out_of_memory+0x199/0x270
[ 2785.952969][ T1034]  mem_cgroup_out_of_memory+0x206/0x270
[ 2785.958530][ T1034]  ? mem_cgroup_margin+0x130/0x130
[ 2785.963679][ T1034]  memory_max_write+0x2f9/0x3c0
[ 2785.968549][ T1034]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 2785.974637][ T1034]  cgroup_file_write+0x1e2/0x770
[ 2785.979591][ T1034]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 2785.985672][ T1034]  ? kill_css+0x370/0x370
[ 2785.990029][ T1034]  ? kill_css+0x370/0x370
[ 2785.994373][ T1034]  kernfs_fop_write_iter+0x3f1/0x600
[ 2785.999688][ T1034]  vfs_write+0x9ed/0xdd0
[ 2786.003960][ T1034]  ? kernel_write+0x630/0x630
[ 2786.008659][ T1034]  ? __fget_files+0x26a/0x440
[ 2786.013363][ T1034]  ksys_write+0x12b/0x250
[ 2786.017708][ T1034]  ? __ia32_sys_read+0xb0/0xb0
[ 2786.022485][ T1034]  ? syscall_enter_from_user_mode+0x26/0xb0
[ 2786.028397][ T1034]  do_syscall_64+0x39/0xb0
[ 2786.032837][ T1034]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2786.038750][ T1034] RIP: 0033:0x7f2f2a08c0c9
[ 2786.043175][ T1034] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 2786.062789][ T1034] RSP: 002b:00007f2f2add7168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 2786.071214][ T1034] RAX: ffffffffffffffda RBX: 00007f2f2a1abf80 RCX: 00007f2f2a08c0c9
[ 2786.079190][ T1034] RDX: 0000000000000012 RSI: 0000000020000040 RDI: 0000000000000005
[ 2786.087174][ T1034] RBP: 00007f2f2a0e7ae9 R08: 0000000000000000 R09: 0000000000000000
[ 2786.095150][ T1034] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2786.103126][ T1034] R13: 00007ffdd9da09df R14: 00007f2f2add7300 R15: 0000000000022000
[ 2786.111124][ T1034]  </TASK>
[ 2786.117601][T14879] Bluetooth: hci4: command 0x0419 tx timeout
[ 2786.163836][  T942] device hsr_slave_1 entered promiscuous mode
[ 2786.180179][ T1034] memory: usage 10628kB, limit 0kB, failcnt 853
[ 2786.186852][ T1034] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2786.194561][  T942] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 2786.204000][ T1034] Memory cgroup stats for /syz5:
[ 2786.205429][ T1034] anon 114688
[ 2786.205429][ T1034] file 10436608
[ 2786.205429][ T1034] kernel 315392
[ 2786.205429][ T1034] kernel_stack 65536
[ 2786.205429][ T1034] pagetables 77824
[ 2786.205429][ T1034] sec_pagetables 0
[ 2786.205429][ T1034] percpu 64
[ 2786.205429][ T1034] sock 0
[ 2786.205429][ T1034] vmalloc 0
[ 2786.205429][ T1034] shmem 10432512
[ 2786.205429][ T1034] zswap 0
[ 2786.205429][ T1034] zswapped 0
[ 2786.205429][ T1034] file_mapped 249856
[ 2786.205429][ T1034] file_dirty 4096
[ 2786.205429][ T1034] file_writeback 0
[ 2786.205429][ T1034] swapcached 0
[ 2786.205429][ T1034] anon_thp 0
[ 2786.205429][ T1034] file_thp 0
[ 2786.205429][ T1034] shmem_thp 0
[ 2786.205429][ T1034] inactive_anon 2211840
[ 2786.205429][ T1034] active_anon 8335360
[ 2786.205429][ T1034] inactive_file 4096
[ 2786.205429][ T1034] active_file 0
[ 2786.205429][ T1034] unevictable 0
[ 2786.205429][ T1034] slab_reclaimable 45504
[ 2786.205429][ T1034] slab_unreclaimable 101760
[ 2786.223927][  T942] Cannot create hsr debugfs directory
[ 2786.313238][ T1034] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz5,mems_allowed=0-1,oom_memcg=/syz5,task_memcg=/syz5,task=syz-executor.5,pid=1033,uid=0
[ 2786.329625][ T1034] Memory cgroup out of memory: Killed process 1033 (syz-executor.5) total-vm:54540kB, anon-rss:372kB, file-rss:8960kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 2786.393977][T17500] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 2786.406021][T17500] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 2786.821714][ T1043] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2786.889039][T14879] Bluetooth: hci5: command 0x0419 tx timeout
[ 2786.899318][ T1043] CPU: 1 PID: 1043 Comm: syz-executor.3 Not tainted 6.2.0-rc2-syzkaller-00431-g0164776a2ce7 #0
[ 2786.909799][ T1043] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 2786.919893][ T1043] Call Trace:
[ 2786.923196][ T1043]  <TASK>
[ 2786.926147][ T1043]  dump_stack_lvl+0xd1/0x138
[ 2786.930800][ T1043]  dump_header+0x10b/0x85f
[ 2786.935264][ T1043]  oom_kill_process.cold+0x10/0x15
[ 2786.940435][ T1043]  out_of_memory+0x35c/0x14a0
[ 2786.945156][ T1043]  ? oom_killer_disable+0x280/0x280
[ 2786.950387][ T1043]  ? find_held_lock+0x2d/0x110
[ 2786.955198][ T1043]  mem_cgroup_out_of_memory+0x206/0x270
[ 2786.960779][ T1043]  ? mem_cgroup_margin+0x130/0x130
[ 2786.965938][ T1043]  ? _raw_spin_unlock_irqrestore+0x54/0x70
[ 2786.971798][ T1043]  memory_max_write+0x2f9/0x3c0
[ 2786.976694][ T1043]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 2786.982810][ T1043]  ? lock_release+0x810/0x810
[ 2786.987544][ T1043]  cgroup_file_write+0x1e2/0x770
[ 2786.992550][ T1043]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 2786.998673][ T1043]  ? kill_css+0x370/0x370
[ 2787.003128][ T1043]  ? __virt_addr_valid+0x61/0x2e0
[ 2787.008220][ T1043]  ? kill_css+0x370/0x370
[ 2787.012594][ T1043]  kernfs_fop_write_iter+0x3f1/0x600
[ 2787.017941][ T1043]  vfs_write+0x9ed/0xdd0
[ 2787.022233][ T1043]  ? kernel_write+0x630/0x630
[ 2787.026966][ T1043]  ? __fget_files+0x26a/0x440
[ 2787.031702][ T1043]  ksys_write+0x12b/0x250
[ 2787.036074][ T1043]  ? __ia32_sys_read+0xb0/0xb0
[ 2787.040881][ T1043]  ? syscall_enter_from_user_mode+0x26/0xb0
[ 2787.046828][ T1043]  do_syscall_64+0x39/0xb0
[ 2787.051297][ T1043]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2787.057225][ T1043] RIP: 0033:0x7f365188c0c9
[ 2787.061671][ T1043] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 2787.081321][ T1043] RSP: 002b:00007f36525b4168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 2787.089778][ T1043] RAX: ffffffffffffffda RBX: 00007f36519abf80 RCX: 00007f365188c0c9
[ 2787.097777][ T1043] RDX: 0000000000000012 RSI: 0000000020000040 RDI: 0000000000000005
[ 2787.105777][ T1043] RBP: 00007f36518e7ae9 R08: 0000000000000000 R09: 0000000000000000
[ 2787.113782][ T1043] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2787.121777][ T1043] R13: 00007fff75f1426f R14: 00007f36525b4300 R15: 0000000000022000
[ 2787.129803][ T1043]  </TASK>
[ 2787.142854][ T1043] memory: usage 10648kB, limit 0kB, failcnt 831
[ 2787.150268][ T1043] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2787.163187][ T1043] Memory cgroup stats for /syz3:
[ 2787.164012][ T1043] anon 114688
[ 2787.164012][ T1043] file 10452992
[ 2787.164012][ T1043] kernel 315392
[ 2787.164012][ T1043] kernel_stack 65536
[ 2787.164012][ T1043] pagetables 77824
[ 2787.164012][ T1043] sec_pagetables 0
[ 2787.164012][ T1043] percpu 64
[ 2787.164012][ T1043] sock 0
[ 2787.164012][ T1043] vmalloc 0
[ 2787.164012][ T1043] shmem 10448896
[ 2787.164012][ T1043] zswap 0
[ 2787.164012][ T1043] zswapped 0
[ 2787.164012][ T1043] file_mapped 331776
[ 2787.164012][ T1043] file_dirty 4096
[ 2787.164012][ T1043] file_writeback 0
[ 2787.164012][ T1043] swapcached 0
[ 2787.164012][ T1043] anon_thp 0
[ 2787.164012][ T1043] file_thp 0
[ 2787.164012][ T1043] shmem_thp 0
[ 2787.164012][ T1043] inactive_anon 2211840
[ 2787.164012][ T1043] active_anon 8351744
[ 2787.164012][ T1043] inactive_file 4096
[ 2787.164012][ T1043] active_file 0
[ 2787.164012][ T1043] unevictable 0
[ 2787.164012][ T1043] slab_reclaimable 43256
[ 2787.164012][ T1043] slab_unreclaimable 100464
21:27:36 executing program 0:
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_int(r0, &(0x7f00000000c0)='memory.max\x00', 0x2, 0x0)
getpid()
r2 = bpf$ITER_CREATE(0x21, &(0x7f0000000340), 0x8)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='blkio.bfq.io_service_time\x00', 0x26e1, 0x0)
write$cgroup_int(r3, &(0x7f0000000040), 0x12)
close(r3)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000280)='host1x_cdma_push_wide\x00', r2}, 0x10)
write$cgroup_int(r1, &(0x7f0000000040), 0x12)

21:27:36 executing program 1:
perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x6, 0x401}, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000180)={0x0, 0x80, 0x0, 0x7c, 0x4, 0xd2, 0x0, 0x5, 0x0, 0x74d4e3ef7733d4ea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x26, 0x0, @perf_bp={0x0}, 0x210, 0x0, 0x1f, 0x3, 0x0, 0x0, 0xffff}, 0x0, 0x0, 0xffffffffffffffff, 0x9)
openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
perf_event_open(&(0x7f0000000200)={0x4, 0x80, 0x9, 0x0, 0x0, 0x5, 0x0, 0xffffffff, 0x800, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x2, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x2, 0x2, @perf_bp={&(0x7f0000000100), 0x5}, 0x0, 0x100000000, 0x2a, 0x0, 0x8, 0x40, 0x0, 0x0, 0x3f, 0x0, 0x4000000000000000}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
recvmsg(0xffffffffffffffff, 0x0, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f00000002c0)='cpuacct.usage_percpu_sys\x00', 0x0, 0x0)
perf_event_open$cgroup(&(0x7f00000003c0)={0x4, 0x80, 0x1, 0xff, 0x1, 0x5, 0x0, 0x800000000000008, 0x21001, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x3, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0xffff0000, 0x4, @perf_bp={&(0x7f0000000380), 0x8}, 0x40ae, 0xe, 0x78d8, 0x5, 0x7, 0x7, 0x1ff}, 0xffffffffffffffff, 0xc, 0xffffffffffffffff, 0xc)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000018c00)={0x18, 0x3, &(0x7f0000000780)=ANY=[@ANYBLOB="180000000000000000000000000000009500d9000000000012cc19280a01380b46cf1da1b96dbb895c000000007e2e299e5a868a2c93b82330a6fab908000000912b2b9c326f8af5e837e85559448b689fb549252e5fba00ac459ebc2e606df21feaa75ec5419c426e744676ce082947384476151eafe83fb3ba69f79cb713d0fdc6892ed01fdde50ba180e802b8c9febf9fdb97bef0bde9a5198be5c32bc6b82fbc64fb23882645114f593b9d4213b57a342973347080ccfb8d8a930f1f000000001336d4b50015d3c236dd6ff90aaf2f7532177f0686079a76404f9e81340df32375ed5cabc996fbe49d0cddfb0e06560bf56f338ae1b4c8dfe3c60f0baa1960460ac4675e1e66db2bbbfd8513558fea85416d5ab4c72cbc0d3181547ecab7ea44a4bdb7a444795f798ff9f4e7be75c804e01467f8ffd414c159e9db857d38cdfce34211ab786b58e1ca764b1769d012cdcc972e2e0348cb15130708258429a26e18f88b57d9249702cb23a4aaad81cfdbfa5da603313ac3a82dae68635064b17b949efa41b5f946258bb95a742ec9f7f6818b00c8a5aa45da89a87d1aa3ae808ae66b00000011e50b5748177ec9dfe98b1dbb48687b4f5c00000fd116d22ef9ed9a3957017087ba0c8836f1ec3e512671374797195ec9ab5783f2d9a2e41a8b61c813e7e48e498649d68f29252b9d3d21d6ae0a86ac9c3d93630b0c65bcc59c62496fec7ea7d089f76bebcb1bf4b9cc013cb273f65239688527589917c8f385a4ee628372082889f7fd88ab93c44824fb106b9adbf615eee13a03f68ed0429b03340785fdbb3625d1ea014a1e206dabd3f2a850676996898a1a755075ce85f6084e23f1e062b73eb5da256acb61d64ecac3e916ff80ff108891306217ccf2d3c727e98f654010ab3f2312157d7af4f8b20ea1e238e5d3c83789f2dc3de1060b0512cb3400d8b78a24470836b384ab1cc4d3c50b3e494d5775eba6a81cc17e53239eec26cf0a78b207ae45687aa11571556829d38144a05e8a7afb818f9aaa1436324d83fbf9073dc684a5bb9cba9c33200d8013bb3b439a42b70e45961af5eceba01a48c9b89ec24186a65298eb7a461ce50209284bc0ae804458ef1b6c638d74b40da9a9f377bd50054b13007878207386f8a65b295a9c4c862c1f938e5cc981"], &(0x7f0000000440)='syzkaller\x00', 0x4, 0xb0, &(0x7f0000000480)=""/176, 0x0, 0x0, '\x00', 0x0, 0x0, r0, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='rcu_utilization\x00', r1}, 0x10)
r3 = perf_event_open$cgroup(&(0x7f0000000080)={0x4, 0x80, 0x81, 0x5, 0x6, 0x0, 0x0, 0x8000000000000000, 0x848, 0x4, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x3, 0x0, @perf_config_ext={0x912410d}, 0x8800, 0xffffffff, 0x7, 0x6, 0x3f, 0x7, 0x8dd, 0x0, 0x5, 0x0, 0x1}, 0xffffffffffffffff, 0xb, 0xffffffffffffffff, 0x9)
ioctl$PERF_EVENT_IOC_SET_OUTPUT(0xffffffffffffffff, 0x2405, r3)
r4 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000540)='./cgroup.cpu/syz1\x00', 0x200002, 0x0)
openat$cgroup_ro(r4, &(0x7f0000000640)='cgroup.stat\x00', 0x0, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r3, 0x40082404, &(0x7f0000000580)=0xffffffffffffff7f)
r5 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000000)='cpuacct.usage_percpu_sys\x00', 0x26e1, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r5, 0x40086607, &(0x7f0000000040))
r6 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x26e1, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000018c00)={0x18, 0x3, &(0x7f0000000300)=ANY=[@ANYRES64=r0], 0x0, 0x4, 0xb0, &(0x7f0000000480)=""/176, 0x40f00, 0x5, '\x00', 0x0, 0x0, r6, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x0, 0x204d, &(0x7f00000005c0)=ANY=[@ANYRES32], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x18, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000740)={0x0, 0x3}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000002c0)=[0xffffffffffffffff, r6, 0xffffffffffffffff]}, 0x80)
write$cgroup_int(r6, &(0x7f0000000280)=0x1ff, 0x12)
r7 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000001e00)={&(0x7f0000001dc0)='./file0\x00', 0x0, 0x10}, 0x10)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000001e80)=@bpf_lsm={0x1d, 0x2, &(0x7f0000000700)=@raw=[@map_idx={0x18, 0x4}], &(0x7f0000002340)='GPL\x00', 0x5, 0x33, &(0x7f0000002380)=""/51, 0x41100, 0x2, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f00000023c0)={0x5, 0x4}, 0x8, 0x10, &(0x7f0000002400)={0x3, 0xa, 0x6, 0xae2e}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000002500)=[0xffffffffffffffff, r7, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}, 0x80)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={0xffffffffffffffff, 0x18000000000002a0, 0x0, 0x0, &(0x7f00000001c0), 0x0, 0x0, 0xe8030000, 0x0, 0x0, 0x0, 0x0}, 0x48)
ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x89f2, &(0x7f0000000080)='ip6tnl0\x00')
socketpair(0x1e, 0x5, 0x20, &(0x7f0000000600))
socketpair(0x1, 0x1, 0x0, &(0x7f0000000740)={0xffffffffffffffff, <r8=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r8, 0x89f1, &(0x7f0000000080))
close(r2)

21:27:36 executing program 5:
openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0)
openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
perf_event_open(0x0, 0xffffffffffffffff, 0xb, 0xffffffffffffffff, 0x0)
r1 = openat$cgroup_int(r0, &(0x7f00000000c0)='memory.max\x00', 0x2, 0x0)
getpid()
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x1f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000300)='cpuacct.usage_all\x00', 0x0, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='blkio.bfq.io_service_time\x00', 0x26e1, 0x0)
write$cgroup_int(r2, &(0x7f0000000040), 0x12)
close(r2)
syz_open_procfs$namespace(0x0, 0x0)
write$cgroup_int(r1, &(0x7f0000000040), 0x12)

[ 2787.478081][ T1043] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=1042,uid=0
[ 2787.512152][ T1043] Memory cgroup out of memory: Killed process 1043 (syz-executor.3) total-vm:54540kB, anon-rss:372kB, file-rss:8960kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
21:27:36 executing program 3:
openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
perf_event_open(0x0, 0xffffffffffffffff, 0xb, 0xffffffffffffffff, 0x0)
r1 = openat$cgroup_int(r0, &(0x7f00000000c0)='memory.max\x00', 0x2, 0x0)
getpid()
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x1f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='blkio.bfq.io_service_time\x00', 0x26e1, 0x0)
write$cgroup_int(r2, &(0x7f0000000040), 0x12)
close(r2)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000280)='host1x_cdma_push_wide\x00'}, 0x10)
write$cgroup_int(r1, &(0x7f0000000040), 0x12)

[ 2787.553253][  T810] syz-executor.5 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=1, oom_score_adj=0
[ 2787.571047][  T810] CPU: 1 PID: 810 Comm: syz-executor.5 Not tainted 6.2.0-rc2-syzkaller-00431-g0164776a2ce7 #0
[ 2787.581346][  T810] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 2787.591431][  T810] Call Trace:
[ 2787.594734][  T810]  <TASK>
[ 2787.597692][  T810]  dump_stack_lvl+0xd1/0x138
[ 2787.602327][  T810]  dump_header+0x10b/0x85f
[ 2787.606779][  T810]  oom_kill_process.cold+0x10/0x15
[ 2787.611928][  T810]  out_of_memory+0x35c/0x14a0
[ 2787.616640][  T810]  ? oom_killer_disable+0x280/0x280
[ 2787.621878][  T810]  ? find_held_lock+0x2d/0x110
[ 2787.626690][  T810]  mem_cgroup_out_of_memory+0x206/0x270
[ 2787.632277][  T810]  ? mem_cgroup_margin+0x130/0x130
[ 2787.637421][  T810]  ? lock_downgrade+0x6e0/0x6e0
[ 2787.642319][  T810]  try_charge_memcg+0xefb/0x12f0
[ 2787.647288][  T810]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 2787.653286][  T810]  ? get_mem_cgroup_from_objcg+0xa1/0x260
[ 2787.659012][  T810]  ? lock_downgrade+0x6e0/0x6e0
[ 2787.663871][  T810]  ? lock_downgrade+0x6e0/0x6e0
[ 2787.668729][  T810]  ? rcu_read_unlock+0x9/0x60
[ 2787.673431][  T810]  obj_cgroup_charge+0x2af/0x5e0
[ 2787.678382][  T810]  ? copy_process+0x3aa/0x7520
[ 2787.683153][  T810]  kmem_cache_alloc_node+0xb7/0x460
[ 2787.688364][  T810]  copy_process+0x3aa/0x7520
[ 2787.692962][  T810]  ? _raw_spin_unlock+0x28/0x40
[ 2787.697827][  T810]  ? wp_page_reuse+0x197/0x570
[ 2787.702607][  T810]  ? do_wp_page+0x844/0x3370
[ 2787.707240][  T810]  ? __cleanup_sighand+0xb0/0xb0
[ 2787.712184][  T810]  ? finish_mkwrite_fault+0x3d0/0x3d0
[ 2787.717577][  T810]  ? rwlock_bug.part.0+0x90/0x90
[ 2787.722523][  T810]  ? lock_chain_count+0x20/0x20
[ 2787.727383][  T810]  kernel_clone+0xeb/0x990
[ 2787.731809][  T810]  ? create_io_thread+0xf0/0xf0
[ 2787.736675][  T810]  ? find_held_lock+0x2d/0x110
[ 2787.741464][  T810]  __do_sys_clone+0xba/0x100
[ 2787.746060][  T810]  ? kernel_clone+0x990/0x990
[ 2787.750757][  T810]  ? syscall_enter_from_user_mode+0x26/0xb0
[ 2787.756667][  T810]  do_syscall_64+0x39/0xb0
[ 2787.761104][  T810]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2787.767013][  T810] RIP: 0033:0x7f2f2a089dfb
[ 2787.771430][  T810] Code: ed 0f 85 60 01 00 00 64 4c 8b 0c 25 10 00 00 00 45 31 c0 4d 8d 91 d0 02 00 00 31 d2 31 f6 bf 11 00 20 01 b8 38 00 00 00 0f 05 <48> 3d 00 f0 ff ff 0f 87 89 00 00 00 41 89 c5 85 c0 0f 85 90 00 00
[ 2787.791045][  T810] RSP: 002b:00007ffdd9da0c20 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[ 2787.799466][  T810] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f2f2a089dfb
[ 2787.807443][  T810] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011
[ 2787.815414][  T810] RBP: 0000000000000001 R08: 0000000000000000 R09: 00005555562e8400
[ 2787.823387][  T810] R10: 00005555562e86d0 R11: 0000000000000246 R12: 0000000000000001
[ 2787.831375][  T810] R13: 0000000000000000 R14: 0000000000000001 R15: 00007ffdd9da0d00
[ 2787.839378][  T810]  </TASK>
[ 2787.932366][  T928] netdevsim netdevsim2 netdevsim0: renamed from eth0
[ 2787.951859][  T928] netdevsim netdevsim2 netdevsim1: renamed from eth1
[ 2787.959203][  T810] memory: usage 10352kB, limit 0kB, failcnt 872
[ 2787.965486][  T810] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2787.999168][  T810] Memory cgroup stats for /syz5:
[ 2787.999349][  T810] anon 40960
[ 2787.999349][  T810] file 10432512
[ 2787.999349][  T810] kernel 122880
[ 2787.999349][  T810] kernel_stack 0
[ 2787.999349][  T810] pagetables 8192
[ 2787.999349][  T810] sec_pagetables 0
[ 2787.999349][  T810] percpu 64
[ 2787.999349][  T810] sock 0
[ 2787.999349][  T810] vmalloc 0
[ 2787.999349][  T810] shmem 10432512
[ 2787.999349][  T810] zswap 0
[ 2787.999349][  T810] zswapped 0
[ 2787.999349][  T810] file_mapped 233472
[ 2787.999349][  T810] file_dirty 0
[ 2787.999349][  T810] file_writeback 0
[ 2787.999349][  T810] swapcached 0
[ 2787.999349][  T810] anon_thp 0
[ 2787.999349][  T810] file_thp 0
[ 2787.999349][  T810] shmem_thp 0
[ 2787.999349][  T810] inactive_anon 2138112
[ 2787.999349][  T810] active_anon 8335360
[ 2787.999349][  T810] inactive_file 0
[ 2787.999349][  T810] active_file 0
[ 2787.999349][  T810] unevictable 0
[ 2787.999349][  T810] slab_reclaimable 33632
[ 2787.999349][  T810] slab_unreclaimable 70792
[ 2787.999349][  T810] slab 104424
[ 2788.001150][  T928] netdevsim netdevsim2 netdevsim2: renamed from eth2
[ 2788.024503][  T810] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz5,mems_allowed=0-1,oom_memcg=/syz5,task_memcg=/syz5,task=syz-executor.5,pid=810,uid=0
[ 2788.151599][  T810] Memory cgroup out of memory: Killed process 810 (syz-executor.5) total-vm:50568kB, anon-rss:364kB, file-rss:8960kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:0
[ 2788.169652][  T805] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=0
[ 2788.185727][  T805] CPU: 0 PID: 805 Comm: syz-executor.0 Not tainted 6.2.0-rc2-syzkaller-00431-g0164776a2ce7 #0
[ 2788.196007][  T805] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 2788.206089][  T805] Call Trace:
[ 2788.209389][  T805]  <TASK>
[ 2788.212345][  T805]  dump_stack_lvl+0xd1/0x138
[ 2788.216978][  T805]  dump_header+0x10b/0x85f
[ 2788.221429][  T805]  oom_kill_process.cold+0x10/0x15
[ 2788.226572][  T805]  out_of_memory+0x35c/0x14a0
[ 2788.231282][  T805]  ? oom_killer_disable+0x280/0x280
[ 2788.236507][  T805]  ? find_held_lock+0x2d/0x110
[ 2788.241318][  T805]  mem_cgroup_out_of_memory+0x206/0x270
[ 2788.246896][  T805]  ? mem_cgroup_margin+0x130/0x130
[ 2788.252036][  T805]  ? lock_downgrade+0x6e0/0x6e0
[ 2788.256946][  T805]  try_charge_memcg+0xefb/0x12f0
[ 2788.261923][  T805]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 2788.267930][  T805]  ? get_mem_cgroup_from_objcg+0xa1/0x260
[ 2788.273671][  T805]  ? lock_downgrade+0x6e0/0x6e0
[ 2788.278573][  T805]  obj_cgroup_charge+0x2af/0x5e0
[ 2788.283551][  T805]  kmem_cache_alloc_lru+0x145/0x760
[ 2788.288776][  T805]  ? __d_alloc+0x32/0x980
[ 2788.293144][  T805]  __d_alloc+0x32/0x980
[ 2788.297325][  T805]  ? __lock_acquire+0x166e/0x56d0
[ 2788.302374][  T805]  d_alloc+0x4e/0x240
[ 2788.306387][  T805]  d_alloc_parallel+0xe8/0x1410
[ 2788.311284][  T805]  ? lockdep_hardirqs_on_prepare+0x410/0x410
[ 2788.317381][  T805]  ? __d_lookup_rcu+0x4c0/0x4c0
[ 2788.322270][  T805]  ? lockdep_init_map_type+0x21e/0x800
[ 2788.327754][  T805]  ? lockdep_init_map_type+0x21e/0x800
[ 2788.333257][  T805]  __lookup_slow+0x193/0x460
[ 2788.337889][  T805]  ? __lookup_hash+0x180/0x180
[ 2788.342696][  T805]  ? azx_position_ok.cold+0x1ae/0x281
[ 2788.348113][  T805]  ? azx_position_ok.cold+0x1ae/0x281
[ 2788.353519][  T805]  ? lookup_fast+0x14e/0x520
[ 2788.358150][  T805]  walk_component+0x33f/0x5a0
[ 2788.362864][  T805]  path_lookupat+0x1ba/0x840
[ 2788.367511][  T805]  filename_lookup+0x1d2/0x590
[ 2788.372311][  T805]  ? may_linkat+0x500/0x500
[ 2788.376842][  T805]  ? __might_fault+0xd9/0x180
[ 2788.381561][  T805]  ? __phys_addr_symbol+0x30/0x70
[ 2788.386614][  T805]  ? __check_object_size+0x2e2/0x5a0
[ 2788.391951][  T805]  ? strncpy_from_user+0x28b/0x3c0
[ 2788.397103][  T805]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2788.402521][  T805]  user_path_at_empty+0x46/0x60
[ 2788.407409][  T805]  __x64_sys_umount+0xfc/0x190
[ 2788.412207][  T805]  ? path_umount+0x10b0/0x10b0
[ 2788.417005][  T805]  ? syscall_enter_from_user_mode+0x26/0xb0
[ 2788.422942][  T805]  do_syscall_64+0x39/0xb0
[ 2788.427399][  T805]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2788.433319][  T805] RIP: 0033:0x7fd71088d537
[ 2788.437754][  T805] Code: ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 2788.457390][  T805] RSP: 002b:00007ffcf9f3da68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 2788.465833][  T805] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fd71088d537
[ 2788.473835][  T805] RDX: 00007ffcf9f3db4d RSI: 000000000000000a RDI: 00007ffcf9f3db30
[ 2788.481831][  T805] RBP: 00007ffcf9f3db30 R08: 000000000000ffff R09: 00007ffcf9f3d900
[ 2788.489824][  T805] R10: 0000555555b35903 R11: 0000000000000246 R12: 00007fd7108e6b24
[ 2788.497817][  T805] R13: 00007ffcf9f3ebf0 R14: 0000555555b35810 R15: 00007ffcf9f3ec30
[ 2788.505832][  T805]  </TASK>
[ 2788.549009][  T928] netdevsim netdevsim2 netdevsim3: renamed from eth3
[ 2788.553889][  T805] memory: usage 10328kB, limit 0kB, failcnt 768
[ 2788.609465][  T805] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2788.616393][  T805] Memory cgroup stats for /syz0:
[ 2788.616597][  T805] anon 40960
[ 2788.616597][  T805] file 10448896
[ 2788.616597][  T805] kernel 86016
[ 2788.616597][  T805] kernel_stack 0
[ 2788.616597][  T805] pagetables 8192
[ 2788.616597][  T805] sec_pagetables 0
[ 2788.616597][  T805] percpu 0
[ 2788.616597][  T805] sock 0
[ 2788.616597][  T805] vmalloc 0
[ 2788.616597][  T805] shmem 10448896
[ 2788.616597][  T805] zswap 0
[ 2788.616597][  T805] zswapped 0
[ 2788.616597][  T805] file_mapped 315392
[ 2788.616597][  T805] file_dirty 0
[ 2788.616597][  T805] file_writeback 0
[ 2788.616597][  T805] swapcached 0
[ 2788.616597][  T805] anon_thp 0
[ 2788.616597][  T805] file_thp 0
[ 2788.616597][  T805] shmem_thp 0
[ 2788.616597][  T805] inactive_anon 40960
[ 2788.616597][  T805] active_anon 10448896
[ 2788.616597][  T805] inactive_file 0
[ 2788.616597][  T805] active_file 0
[ 2788.616597][  T805] unevictable 0
[ 2788.616597][  T805] slab_reclaimable 32864
[ 2788.616597][  T805] slab_unreclaimable 32944
[ 2788.616597][  T805] slab 65808
[ 2788.717316][  T805] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=805,uid=0
[ 2788.734582][  T805] Memory cgroup out of memory: Killed process 805 (syz-executor.0) total-vm:50568kB, anon-rss:364kB, file-rss:8960kB, shmem-rss:0kB, UID:0 pgtables:68kB oom_score_adj:0
[ 2788.752791][  T832] syz-executor.3 invoked oom-killer: gfp_mask=0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), order=0, oom_score_adj=0
[ 2788.798330][  T832] CPU: 0 PID: 832 Comm: syz-executor.3 Not tainted 6.2.0-rc2-syzkaller-00431-g0164776a2ce7 #0
[ 2788.808632][  T832] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 2788.818717][  T832] Call Trace:
[ 2788.822007][  T832]  <TASK>
[ 2788.824944][  T832]  dump_stack_lvl+0xd1/0x138
[ 2788.829560][  T832]  dump_header+0x10b/0x85f
[ 2788.833987][  T832]  oom_kill_process.cold+0x10/0x15
[ 2788.839109][  T832]  out_of_memory+0x35c/0x14a0
[ 2788.843802][  T832]  ? oom_killer_disable+0x280/0x280
[ 2788.849010][  T832]  ? find_held_lock+0x2d/0x110
[ 2788.853814][  T832]  mem_cgroup_out_of_memory+0x206/0x270
[ 2788.859367][  T832]  ? mem_cgroup_margin+0x130/0x130
[ 2788.864482][  T832]  ? lock_downgrade+0x6e0/0x6e0
[ 2788.869351][  T832]  try_charge_memcg+0xefb/0x12f0
[ 2788.874306][  T832]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 2788.880298][  T832]  ? get_mem_cgroup_from_objcg+0xa1/0x260
[ 2788.886043][  T832]  ? lock_downgrade+0x6e0/0x6e0
[ 2788.890901][  T832]  ? lock_downgrade+0x6e0/0x6e0
[ 2788.895770][  T832]  __memcg_kmem_charge_page+0x16e/0x3b0
[ 2788.901330][  T832]  __alloc_pages+0x1f3/0x5b0
[ 2788.905951][  T832]  ? __alloc_pages_slowpath.constprop.0+0x23d0/0x23d0
[ 2788.912740][  T832]  ? memcg_slab_post_alloc_hook+0x249/0x480
[ 2788.918653][  T832]  alloc_pages+0x1aa/0x270
[ 2788.923086][  T832]  __get_free_pages+0xc/0x40
[ 2788.927686][  T832]  pgd_alloc+0x29/0x260
[ 2788.931860][  T832]  mm_init+0x63b/0xc10
[ 2788.935941][  T832]  copy_process+0x43f6/0x7520
[ 2788.940626][  T832]  ? _raw_spin_unlock+0x28/0x40
[ 2788.945495][  T832]  ? wp_page_reuse+0x197/0x570
[ 2788.950285][  T832]  ? __cleanup_sighand+0xb0/0xb0
[ 2788.955229][  T832]  ? finish_mkwrite_fault+0x3d0/0x3d0
[ 2788.960649][  T832]  ? rwlock_bug.part.0+0x90/0x90
[ 2788.965594][  T832]  ? lock_chain_count+0x20/0x20
[ 2788.970456][  T832]  kernel_clone+0xeb/0x990
[ 2788.974889][  T832]  ? create_io_thread+0xf0/0xf0
[ 2788.979756][  T832]  ? find_held_lock+0x2d/0x110
[ 2788.984582][  T832]  __do_sys_clone+0xba/0x100
[ 2788.989187][  T832]  ? kernel_clone+0x990/0x990
[ 2788.993890][  T832]  ? syscall_enter_from_user_mode+0x26/0xb0
[ 2788.999800][  T832]  do_syscall_64+0x39/0xb0
[ 2789.004235][  T832]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2789.010140][  T832] RIP: 0033:0x7f3651889dfb
[ 2789.014585][  T832] Code: ed 0f 85 60 01 00 00 64 4c 8b 0c 25 10 00 00 00 45 31 c0 4d 8d 91 d0 02 00 00 31 d2 31 f6 bf 11 00 20 01 b8 38 00 00 00 0f 05 <48> 3d 00 f0 ff ff 0f 87 89 00 00 00 41 89 c5 85 c0 0f 85 90 00 00
[ 2789.034198][  T832] RSP: 002b:00007fff75f144b0 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[ 2789.042644][  T832] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f3651889dfb
[ 2789.050618][  T832] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011
[ 2789.058600][  T832] RBP: 0000000000000001 R08: 0000000000000000 R09: 000055555613e400
[ 2789.066578][  T832] R10: 000055555613e6d0 R11: 0000000000000246 R12: 0000000000000001
[ 2789.074556][  T832] R13: 0000000000000000 R14: 0000000000000001 R15: 00007fff75f14590
[ 2789.082546][  T832]  </TASK>
21:27:38 executing program 5:
openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0)
openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
perf_event_open(0x0, 0xffffffffffffffff, 0xb, 0xffffffffffffffff, 0x0)
r1 = openat$cgroup_int(r0, &(0x7f00000000c0)='memory.max\x00', 0x2, 0x0)
getpid()
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x1f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
bpf$ITER_CREATE(0x21, &(0x7f00000002c0)={r2}, 0x8)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='blkio.bfq.io_service_time\x00', 0x26e1, 0x0)
write$cgroup_int(r3, &(0x7f0000000040), 0x12)
close(r3)
syz_open_procfs$namespace(0x0, 0x0)
write$cgroup_int(r1, &(0x7f0000000040), 0x12)

21:27:38 executing program 0:
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_int(r0, &(0x7f00000000c0)='memory.max\x00', 0x2, 0x0)
getpid()
r2 = bpf$ITER_CREATE(0x21, &(0x7f0000000340), 0x8)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='blkio.bfq.io_service_time\x00', 0x26e1, 0x0)
write$cgroup_int(r3, &(0x7f0000000040), 0x12)
close(r3)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000280)='host1x_cdma_push_wide\x00', r2}, 0x10)
write$cgroup_int(r1, &(0x7f0000000040), 0x12)

21:27:38 executing program 5:
openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0)
openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
perf_event_open(0x0, 0xffffffffffffffff, 0xb, 0xffffffffffffffff, 0x0)
r1 = openat$cgroup_int(r0, &(0x7f00000000c0)='memory.max\x00', 0x2, 0x0)
getpid()
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x1f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
bpf$ITER_CREATE(0x21, &(0x7f00000002c0)={r2}, 0x8)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='blkio.bfq.io_service_time\x00', 0x26e1, 0x0)
write$cgroup_int(r3, &(0x7f0000000040), 0x12)
close(r3)
syz_open_procfs$namespace(0x0, 0x0)
write$cgroup_int(r1, &(0x7f0000000040), 0x12)

21:27:38 executing program 0:
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_int(r0, &(0x7f00000000c0)='memory.max\x00', 0x2, 0x0)
getpid()
r2 = bpf$ITER_CREATE(0x21, &(0x7f0000000340), 0x8)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='blkio.bfq.io_service_time\x00', 0x26e1, 0x0)
write$cgroup_int(r3, &(0x7f0000000040), 0x12)
close(r3)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000280)='host1x_cdma_push_wide\x00', r2}, 0x10)
write$cgroup_int(r1, &(0x7f0000000040), 0x12)

[ 2789.777068][  T928] 8021q: adding VLAN 0 to HW filter on device bond0
[ 2789.852881][ T9919] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 2789.861353][ T9919] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 2789.913604][  T928] 8021q: adding VLAN 0 to HW filter on device team0
[ 2789.948988][  T832] memory: usage 10404kB, limit 0kB, failcnt 850
[ 2789.959147][  T832] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2789.978967][  T832] Memory cgroup stats for /syz3:
[ 2789.979190][  T832] anon 40960
[ 2789.979190][  T832] file 10448896
[ 2789.979190][  T832] kernel 163840
[ 2789.979190][  T832] kernel_stack 32768
[ 2789.979190][  T832] pagetables 8192
[ 2789.979190][  T832] sec_pagetables 0
[ 2789.979190][  T832] percpu 0
[ 2789.979190][  T832] sock 0
[ 2789.979190][  T832] vmalloc 0
[ 2789.979190][  T832] shmem 10448896
[ 2789.979190][  T832] zswap 0
[ 2789.979190][  T832] zswapped 0
[ 2789.979190][  T832] file_mapped 315392
[ 2789.979190][  T832] file_dirty 0
[ 2789.979190][  T832] file_writeback 0
[ 2789.979190][  T832] swapcached 0
[ 2789.979190][  T832] anon_thp 0
[ 2789.979190][  T832] file_thp 0
[ 2789.979190][  T832] shmem_thp 0
[ 2789.979190][  T832] inactive_anon 2138112
[ 2789.979190][  T832] active_anon 8351744
[ 2789.979190][  T832] inactive_file 0
[ 2789.979190][  T832] active_file 0
[ 2789.979190][  T832] unevictable 0
[ 2789.979190][  T832] slab_reclaimable 33192
[ 2789.979190][  T832] slab_unreclaimable 81328
[ 2789.979190][  T832] slab 114520
[ 2790.035677][ T9919] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 2790.216764][ T9919] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 2790.233826][ T9919] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2790.241015][ T9919] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 2790.258542][ T9919] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 2790.279611][ T9919] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 2790.299136][ T9919] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2790.306281][ T9919] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 2790.319190][  T832] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=832,uid=0
[ 2790.358942][  T832] Memory cgroup out of memory: Killed process 832 (syz-executor.3) total-vm:50568kB, anon-rss:364kB, file-rss:8960kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:0
[ 2790.384128][ T9919] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 2790.409096][  T942] netdevsim netdevsim4 netdevsim0: renamed from eth0
[ 2790.425757][T17500] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 2790.442076][T17500] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 2790.482611][T17500] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 2790.493208][T17500] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 2790.509229][  T942] netdevsim netdevsim4 netdevsim1: renamed from eth1
[ 2790.525668][  T942] netdevsim netdevsim4 netdevsim2: renamed from eth2
[ 2790.564109][T14991] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 2790.589963][T14991] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 2790.609482][T14991] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 2790.629328][T14991] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 2790.669295][T14991] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 2790.679834][  T928] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 2790.688797][  T942] netdevsim netdevsim4 netdevsim3: renamed from eth3
21:27:39 executing program 3:
openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
perf_event_open(0x0, 0xffffffffffffffff, 0xb, 0xffffffffffffffff, 0x0)
r1 = openat$cgroup_int(r0, &(0x7f00000000c0)='memory.max\x00', 0x2, 0x0)
getpid()
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x1f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='blkio.bfq.io_service_time\x00', 0x26e1, 0x0)
write$cgroup_int(r2, &(0x7f0000000040), 0x12)
close(r2)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000280)='host1x_cdma_push_wide\x00'}, 0x10)
write$cgroup_int(r1, &(0x7f0000000040), 0x12)

[ 2791.046971][  T942] 8021q: adding VLAN 0 to HW filter on device bond0
[ 2791.166550][  T942] 8021q: adding VLAN 0 to HW filter on device team0
[ 2791.212320][T17500] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 2791.221332][T17500] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 2791.271328][ T9919] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 2791.280741][ T9919] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 2791.320976][ T9919] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2791.328126][ T9919] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 2791.389198][ T9919] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 2791.398004][ T9919] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 2791.469482][ T9919] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2791.476639][ T9919] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 2791.519284][ T9919] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 2791.536663][ T9919] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 2791.592033][T30559] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 2791.618333][T30559] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 2791.662780][T30559] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 2791.692869][T30559] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 2791.718087][T30559] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 2791.748599][  T928] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 2791.794701][T24529] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 2791.808206][T24529] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 2791.837489][T24529] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 2791.861496][  T942] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 2791.891611][  T942] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 2791.936568][T14991] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 2791.952232][T14991] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 2792.007622][T24529] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 2792.022321][T24529] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 2792.094771][T14991] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 2792.114632][T14991] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 2792.140862][  T928] device veth0_vlan entered promiscuous mode
[ 2792.172183][T24529] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 2792.187001][T24529] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 2792.225452][  T928] device veth1_vlan entered promiscuous mode
[ 2792.311881][T14991] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 2792.323665][T14991] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 2792.341214][T14991] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 2792.368026][T14991] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 2792.399667][  T928] device veth0_macvtap entered promiscuous mode
[ 2792.425749][ T5120] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 2792.438894][ T5120] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 2792.446780][ T5120] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 2792.455033][ T5120] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[ 2792.462461][ T5120] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 2792.501352][  T928] device veth1_macvtap entered promiscuous mode
[ 2792.620266][  T928] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2792.652543][  T928] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2792.684933][  T928] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2792.719029][  T928] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2792.753136][  T928] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2792.778864][  T928] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2792.803333][  T928] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2792.836571][  T928] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2792.862622][  T928] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 2792.881674][T14991] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 2792.894032][T14991] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 2792.912653][T14991] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 2792.933585][T14991] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 2792.960702][  T928] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2792.991026][  T928] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2793.012208][  T928] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2793.035883][  T928] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2793.056988][  T928] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2793.075584][  T928] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2793.099299][T14879] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 2793.108264][T14879] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 2793.118645][T14879] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 2793.128132][  T928] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2793.140376][T14879] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 2793.147980][T14879] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[ 2793.155506][T14879] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 2793.163921][  T928] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2793.177965][  T928] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 2793.202485][T14991] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 2793.212701][T14991] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 2793.231590][  T942] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 2793.245063][  T928] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 2793.254661][  T928] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 2793.278879][  T928] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 2793.287637][  T928] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 2793.309754][T24529] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 2793.317322][T24529] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 2793.610549][T14861] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2793.633800][T14861] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2793.696983][T17605] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 2793.838656][T14861] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2793.854292][T14861] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2793.910569][T23935] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 2794.216613][ T1091] chnl_net:caif_netlink_parms(): no params data found
[ 2794.291910][ T1106] chnl_net:caif_netlink_parms(): no params data found
[ 2794.391005][ T5120] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 2794.407772][ T5120] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 2794.426333][ T5120] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 2794.438390][ T5120] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 2794.446841][ T5120] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[ 2794.454287][ T5120] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 2794.489081][T14879] Bluetooth: hci0: command 0x0409 tx timeout
[ 2794.653114][ T1128] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2794.668359][ T1128] CPU: 1 PID: 1128 Comm: syz-executor.2 Not tainted 6.2.0-rc2-syzkaller-00431-g0164776a2ce7 #0
[ 2794.678840][ T1128] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 2794.688929][ T1128] Call Trace:
[ 2794.692326][ T1128]  <TASK>
[ 2794.695294][ T1128]  dump_stack_lvl+0xd1/0x138
[ 2794.699940][ T1128]  dump_header+0x10b/0x85f
[ 2794.704410][ T1128]  oom_kill_process.cold+0x10/0x15
[ 2794.709565][ T1128]  out_of_memory+0x35c/0x14a0
[ 2794.714301][ T1128]  ? oom_killer_disable+0x280/0x280
[ 2794.719541][ T1128]  ? mark_held_locks+0x9f/0xe0
[ 2794.724361][ T1128]  mem_cgroup_out_of_memory+0x206/0x270
[ 2794.729948][ T1128]  ? mem_cgroup_margin+0x130/0x130
[ 2794.735120][ T1128]  memory_max_write+0x2f9/0x3c0
[ 2794.740026][ T1128]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 2794.746145][ T1128]  ? lock_release+0x810/0x810
[ 2794.750870][ T1128]  cgroup_file_write+0x1e2/0x770
[ 2794.755860][ T1128]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 2794.761977][ T1128]  ? kill_css+0x370/0x370
[ 2794.766372][ T1128]  ? kill_css+0x370/0x370
[ 2794.770748][ T1128]  kernfs_fop_write_iter+0x3f1/0x600
[ 2794.776095][ T1128]  vfs_write+0x9ed/0xdd0
[ 2794.780389][ T1128]  ? kernel_write+0x630/0x630
[ 2794.785113][ T1128]  ? __fget_files+0x26a/0x440
[ 2794.789845][ T1128]  ksys_write+0x12b/0x250
[ 2794.794218][ T1128]  ? __ia32_sys_read+0xb0/0xb0
[ 2794.799075][ T1128]  ? syscall_enter_from_user_mode+0x26/0xb0
[ 2794.805023][ T1128]  do_syscall_64+0x39/0xb0
[ 2794.809492][ T1128]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2794.815437][ T1128] RIP: 0033:0x7f6a82a8c0c9
[ 2794.819892][ T1128] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 2794.839539][ T1128] RSP: 002b:00007f6a83805168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 2794.847995][ T1128] RAX: ffffffffffffffda RBX: 00007f6a82babf80 RCX: 00007f6a82a8c0c9
[ 2794.856005][ T1128] RDX: 0000000000000012 RSI: 0000000020000040 RDI: 0000000000000005
[ 2794.864015][ T1128] RBP: 00007f6a82ae7ae9 R08: 0000000000000000 R09: 0000000000000000
[ 2794.872026][ T1128] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2794.880038][ T1128] R13: 00007ffc7f3db15f R14: 00007f6a83805300 R15: 0000000000022000
[ 2794.888082][ T1128]  </TASK>
[ 2794.931728][ T1128] memory: usage 10604kB, limit 0kB, failcnt 1214
[ 2794.939080][ T1128] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2794.948109][ T1106] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2794.955654][ T1106] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2794.964096][ T1106] device bridge_slave_0 entered promiscuous mode
[ 2794.976935][ T1128] Memory cgroup stats for /syz2:
[ 2794.978635][ T1128] anon 118784
[ 2794.978635][ T1128] file 10444800
[ 2794.978635][ T1128] kernel 294912
[ 2794.978635][ T1128] kernel_stack 65536
[ 2794.978635][ T1128] pagetables 81920
[ 2794.978635][ T1128] sec_pagetables 0
[ 2794.978635][ T1128] percpu 64
[ 2794.978635][ T1128] sock 0
[ 2794.978635][ T1128] vmalloc 0
[ 2794.978635][ T1128] shmem 10440704
[ 2794.978635][ T1128] zswap 0
[ 2794.978635][ T1128] zswapped 0
[ 2794.978635][ T1128] file_mapped 192512
[ 2794.978635][ T1128] file_dirty 0
[ 2794.978635][ T1128] file_writeback 0
[ 2794.978635][ T1128] swapcached 0
[ 2794.978635][ T1128] anon_thp 0
[ 2794.978635][ T1128] file_thp 0
[ 2794.978635][ T1128] shmem_thp 0
[ 2794.978635][ T1128] inactive_anon 118784
[ 2794.978635][ T1128] active_anon 10440704
[ 2794.978635][ T1128] inactive_file 4096
[ 2794.978635][ T1128] active_file 0
[ 2794.978635][ T1128] unevictable 0
[ 2794.978635][ T1128] slab_reclaimable 41864
[ 2794.978635][ T1128] slab_unreclaimable 73104
[ 2794.978635][ T1128] slab 114968
[ 2795.083044][ T1128] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=1127,uid=0
[ 2795.099201][ T1128] Memory cgroup out of memory: Killed process 1127 (syz-executor.2) total-vm:56588kB, anon-rss:500kB, file-rss:8960kB, shmem-rss:128kB, UID:0 pgtables:88kB oom_score_adj:1000
[ 2795.134178][ T1106] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2795.157864][ T1106] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2795.170002][ T1106] device bridge_slave_1 entered promiscuous mode
[ 2795.208944][T14879] Bluetooth: hci2: command 0x0409 tx timeout
[ 2795.267397][ T1091] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2795.276986][ T1091] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2795.287371][  T928] syz-executor.2 invoked oom-killer: gfp_mask=0x400cc0(GFP_KERNEL_ACCOUNT), order=0, oom_score_adj=0
[ 2795.300328][ T1091] device bridge_slave_0 entered promiscuous mode
[ 2795.303276][  T928] CPU: 0 PID: 928 Comm: syz-executor.2 Not tainted 6.2.0-rc2-syzkaller-00431-g0164776a2ce7 #0
[ 2795.309112][ T1091] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2795.316928][  T928] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 2795.324027][ T1091] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2795.334007][  T928] Call Trace:
[ 2795.334018][  T928]  <TASK>
[ 2795.334027][  T928]  dump_stack_lvl+0xd1/0x138
[ 2795.334065][  T928]  dump_header+0x10b/0x85f
[ 2795.334092][  T928]  oom_kill_process.cold+0x10/0x15
[ 2795.334120][  T928]  out_of_memory+0x35c/0x14a0
[ 2795.334149][  T928]  ? find_held_lock+0x2d/0x110
[ 2795.343009][ T1091] device bridge_slave_1 entered promiscuous mode
[ 2795.344436][  T928]  ? oom_killer_disable+0x280/0x280
[ 2795.382515][  T928]  ? find_held_lock+0x2d/0x110
[ 2795.387336][  T928]  mem_cgroup_out_of_memory+0x206/0x270
[ 2795.392925][  T928]  ? mem_cgroup_margin+0x130/0x130
[ 2795.398070][  T928]  ? lock_downgrade+0x6e0/0x6e0
[ 2795.402981][  T928]  try_charge_memcg+0xefb/0x12f0
[ 2795.407975][  T928]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 2795.413997][  T928]  ? get_mem_cgroup_from_objcg+0xa1/0x260
[ 2795.419762][  T928]  ? lock_downgrade+0x6e0/0x6e0
[ 2795.424639][  T928]  ? lock_downgrade+0x6e0/0x6e0
[ 2795.429500][  T928]  ? rcu_read_unlock+0x9/0x60
[ 2795.434207][  T928]  obj_cgroup_charge+0x2af/0x5e0
[ 2795.439167][  T928]  __kmem_cache_alloc_node+0xb2/0x430
[ 2795.444566][  T928]  ? kvmalloc_node+0xa2/0x1a0
[ 2795.449283][  T928]  ? kvmalloc_node+0xa2/0x1a0
[ 2795.453990][  T928]  __kmalloc_node+0x4d/0xd0
[ 2795.458545][  T928]  kvmalloc_node+0xa2/0x1a0
[ 2795.463073][  T928]  xt_alloc_table_info+0x40/0xa0
[ 2795.468025][  T928]  do_ip6t_set_ctl+0x514/0xb30
[ 2795.472799][  T928]  ? trace_contention_end+0x153/0x1e0
[ 2795.478188][  T928]  ? __mutex_lock+0x231/0x1360
[ 2795.482968][  T928]  ? compat_do_replace.constprop.0+0x410/0x410
[ 2795.489233][  T928]  ? wait_for_completion_io_timeout+0x20/0x20
[ 2795.495310][  T928]  ? finish_mkwrite_fault+0x3d0/0x3d0
[ 2795.500739][  T928]  ? nf_sockopt_find.constprop.0+0x22d/0x2a0
[ 2795.506788][  T928]  nf_setsockopt+0x87/0xe0
[ 2795.511245][  T928]  ipv6_setsockopt+0x12b/0x190
[ 2795.516128][  T928]  tcp_setsockopt+0x9f/0x100
[ 2795.520732][  T928]  ? sock_common_recvmsg+0x190/0x190
[ 2795.526030][  T928]  __sys_setsockopt+0x2c6/0x5b0
[ 2795.530916][  T928]  ? __ia32_sys_recv+0x100/0x100
[ 2795.535860][  T928]  ? up_write+0x520/0x520
[ 2795.540206][  T928]  ? handle_mm_fault+0x25b/0x850
[ 2795.545177][  T928]  __x64_sys_setsockopt+0xbe/0x160
[ 2795.550294][  T928]  ? syscall_enter_from_user_mode+0x26/0xb0
[ 2795.556198][  T928]  do_syscall_64+0x39/0xb0
[ 2795.560632][  T928]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2795.566535][  T928] RIP: 0033:0x7f6a82a8d71a
[ 2795.570956][  T928] Code: 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 49 89 ca b8 36 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 2795.590571][  T928] RSP: 002b:00007ffc7f3dacc8 EFLAGS: 00000202 ORIG_RAX: 0000000000000036
[ 2795.598991][  T928] RAX: ffffffffffffffda RBX: 0000000000000029 RCX: 00007f6a82a8d71a
[ 2795.606980][  T928] RDX: 0000000000000040 RSI: 0000000000000029 RDI: 0000000000000003
[ 2795.614956][  T928] RBP: 00007ffc7f3dacf0 R08: 00000000000003b8 R09: ffffffffff000000
[ 2795.622931][  T928] R10: 00007f6a82b83bc0 R11: 0000000000000202 R12: 00007ffc7f3dad50
[ 2795.630926][  T928] R13: 0000000000000003 R14: 00007ffc7f3dacec R15: 00007f6a82b83b60
[ 2795.638938][  T928]  </TASK>
[ 2795.661880][  T928] memory: usage 10352kB, limit 0kB, failcnt 1233
[ 2795.668266][  T928] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2795.677710][  T928] Memory cgroup stats for /syz2:
[ 2795.677884][  T928] anon 45056
[ 2795.677884][  T928] file 10444800
[ 2795.677884][  T928] kernel 110592
[ 2795.677884][  T928] kernel_stack 0
[ 2795.677884][  T928] pagetables 8192
[ 2795.677884][  T928] sec_pagetables 0
[ 2795.677884][  T928] percpu 64
[ 2795.677884][  T928] sock 0
[ 2795.677884][  T928] vmalloc 0
[ 2795.677884][  T928] shmem 10440704
[ 2795.677884][  T928] zswap 0
[ 2795.677884][  T928] zswapped 0
[ 2795.677884][  T928] file_mapped 184320
[ 2795.677884][  T928] file_dirty 0
[ 2795.677884][  T928] file_writeback 0
[ 2795.677884][  T928] swapcached 0
[ 2795.677884][  T928] anon_thp 0
[ 2795.677884][  T928] file_thp 0
[ 2795.677884][  T928] shmem_thp 0
[ 2795.677884][  T928] inactive_anon 45056
[ 2795.677884][  T928] active_anon 10440704
[ 2795.677884][  T928] inactive_file 0
[ 2795.677884][  T928] active_file 4096
[ 2795.677884][  T928] unevictable 0
[ 2795.677884][  T928] slab_reclaimable 39888
[ 2795.677884][  T928] slab_unreclaimable 48000
[ 2795.677884][  T928] slab 87888
[ 2795.843261][T20562] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2795.875536][  T928] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=928,uid=0
[ 2795.893764][  T928] Memory cgroup out of memory: Killed process 928 (syz-executor.2) total-vm:50568kB, anon-rss:364kB, file-rss:8960kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:0
[ 2795.932551][ T1106] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 2795.960440][  T483] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 2795.979492][  T483] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 2796.001775][ T1091] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 2796.060871][ T1091] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 2796.105088][T20562] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2796.133563][ T1106] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 2796.159030][  T942] device veth0_vlan entered promiscuous mode
[ 2796.179689][T23940] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 2796.188167][T23940] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 2796.323998][  T942] device veth1_vlan entered promiscuous mode
[ 2796.369820][T20562] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2796.393588][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 2796.418636][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 2796.489139][T14879] Bluetooth: hci3: command 0x0409 tx timeout
[ 2796.503439][ T1106] team0: Port device team_slave_0 added
[ 2796.555896][T20562] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2796.568811][T14879] Bluetooth: hci0: command 0x041b tx timeout
[ 2796.640558][ T1091] team0: Port device team_slave_0 added
[ 2796.650957][ T1106] team0: Port device team_slave_1 added
[ 2796.784286][ T1091] team0: Port device team_slave_1 added
[ 2796.822117][ T1106] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 2796.838950][ T1106] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2796.877079][ T1106] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 2796.899430][T17500] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 2796.908210][T17500] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 2796.945652][  T942] device veth0_macvtap entered promiscuous mode
[ 2796.957363][ T1106] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 2796.976076][ T1106] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2797.037296][ T1106] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 2797.131803][ T1091] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 2797.148877][ T1091] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2797.229609][ T1091] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 2797.270220][  T942] device veth1_macvtap entered promiscuous mode
[ 2797.289315][T14879] Bluetooth: hci2: command 0x041b tx timeout
[ 2797.309243][T17500] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 2797.317511][T17500] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 2797.331956][ T1133] chnl_net:caif_netlink_parms(): no params data found
[ 2797.371442][ T1091] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 2797.378431][ T1091] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2797.424288][ T1091] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 2797.526876][T20562] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2797.572727][  T942] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2797.597095][  T942] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2797.615543][  T942] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2797.626497][  T942] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2797.637190][  T942] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2797.648126][  T942] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2797.658520][  T942] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2797.669354][  T942] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2797.689933][  T942] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2797.708787][  T942] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2797.730474][  T942] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 2797.802764][ T1106] device hsr_slave_0 entered promiscuous mode
[ 2797.819801][ T1106] device hsr_slave_1 entered promiscuous mode
[ 2797.829192][ T1106] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 2797.837270][ T1106] Cannot create hsr debugfs directory
[ 2797.866131][T20562] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2797.899421][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 2797.908262][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 2797.930028][  T942] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2797.943344][  T942] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2797.953998][  T942] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2797.964810][  T942] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2797.975059][  T942] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2797.986269][  T942] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2797.996467][  T942] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2798.007313][  T942] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2798.017918][  T942] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2798.028699][  T942] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2798.042481][  T942] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 2798.085465][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 2798.096831][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 2798.111864][T20562] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2798.147017][  T942] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 2798.156862][  T942] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 2798.166607][  T942] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 2798.176005][  T942] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 2798.190528][ T1091] device hsr_slave_0 entered promiscuous mode
[ 2798.200865][ T1091] device hsr_slave_1 entered promiscuous mode
[ 2798.207772][ T1091] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 2798.215462][ T1091] Cannot create hsr debugfs directory
[ 2798.295495][T20562] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2798.452777][ T1133] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2798.460525][ T1133] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2798.469658][ T1133] device bridge_slave_0 entered promiscuous mode
[ 2798.515600][ T1133] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2798.523078][ T1133] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2798.534023][ T1133] device bridge_slave_1 entered promiscuous mode
[ 2798.569546][T14879] Bluetooth: hci3: command 0x041b tx timeout
[ 2798.594950][ T1133] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 2798.609848][ T1133] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 2798.649583][T14879] Bluetooth: hci0: command 0x040f tx timeout
[ 2798.754665][T14861] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2798.781601][ T1133] team0: Port device team_slave_0 added
[ 2798.823997][T14861] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2798.860773][T20562] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2798.952226][ T1133] team0: Port device team_slave_1 added
[ 2799.030593][T30559] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 2799.082380][T20562] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2799.139988][T14860] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2799.158774][T14860] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2799.181099][ T1133] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 2799.188145][ T1133] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2799.278814][ T1133] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 2799.359727][T20562] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2799.378923][T14879] Bluetooth: hci2: command 0x040f tx timeout
[ 2799.439467][ T9919] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 2799.580137][T20562] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2799.656324][ T1133] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 2799.659705][ T1201] syz-executor.4 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2799.665857][ T1133] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2799.718915][ T1201] CPU: 1 PID: 1201 Comm: syz-executor.4 Not tainted 6.2.0-rc2-syzkaller-00431-g0164776a2ce7 #0
[ 2799.729323][ T1201] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 2799.739392][ T1201] Call Trace:
[ 2799.742678][ T1201]  <TASK>
[ 2799.745615][ T1201]  dump_stack_lvl+0xd1/0x138
[ 2799.750234][ T1201]  dump_header+0x10b/0x85f
[ 2799.754666][ T1201]  oom_kill_process.cold+0x10/0x15
[ 2799.759795][ T1201]  out_of_memory+0x35c/0x14a0
[ 2799.764494][ T1201]  ? oom_killer_disable+0x280/0x280
[ 2799.769714][ T1201]  ? find_held_lock+0x2d/0x110
[ 2799.774511][ T1201]  mem_cgroup_out_of_memory+0x206/0x270
[ 2799.780069][ T1201]  ? mem_cgroup_margin+0x130/0x130
[ 2799.785200][ T1201]  ? _raw_spin_unlock_irqrestore+0x54/0x70
[ 2799.791044][ T1201]  memory_max_write+0x2f9/0x3c0
[ 2799.795915][ T1201]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 2799.802000][ T1201]  ? lock_release+0x810/0x810
[ 2799.806702][ T1201]  cgroup_file_write+0x1e2/0x770
[ 2799.811660][ T1201]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 2799.817741][ T1201]  ? kill_css+0x370/0x370
[ 2799.822085][ T1201]  ? __virt_addr_valid+0x61/0x2e0
[ 2799.827138][ T1201]  ? kill_css+0x370/0x370
[ 2799.831484][ T1201]  kernfs_fop_write_iter+0x3f1/0x600
[ 2799.836800][ T1201]  vfs_write+0x9ed/0xdd0
[ 2799.841063][ T1201]  ? kernel_write+0x630/0x630
[ 2799.845758][ T1201]  ? __fget_files+0x26a/0x440
[ 2799.850465][ T1201]  ksys_write+0x12b/0x250
[ 2799.854810][ T1201]  ? __ia32_sys_read+0xb0/0xb0
[ 2799.859612][ T1201]  ? syscall_enter_from_user_mode+0x26/0xb0
[ 2799.865529][ T1201]  do_syscall_64+0x39/0xb0
[ 2799.869970][ T1201]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2799.875877][ T1201] RIP: 0033:0x7f7814a8c0c9
[ 2799.880300][ T1201] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 2799.899918][ T1201] RSP: 002b:00007f7815755168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 2799.908346][ T1201] RAX: ffffffffffffffda RBX: 00007f7814babf80 RCX: 00007f7814a8c0c9
[ 2799.916326][ T1201] RDX: 0000000000000012 RSI: 0000000020000040 RDI: 0000000000000004
[ 2799.924304][ T1201] RBP: 00007f7814ae7ae9 R08: 0000000000000000 R09: 0000000000000000
[ 2799.932280][ T1201] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2799.940254][ T1201] R13: 00007fff5eba846f R14: 00007f7815755300 R15: 0000000000022000
[ 2799.948255][ T1201]  </TASK>
[ 2800.028853][ T1133] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 2800.203169][ T1133] device hsr_slave_0 entered promiscuous mode
[ 2800.239239][ T1133] device hsr_slave_1 entered promiscuous mode
[ 2800.246143][ T1133] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 2800.278452][ T1133] Cannot create hsr debugfs directory
[ 2800.303149][ T1201] memory: usage 8572kB, limit 0kB, failcnt 795
[ 2800.309560][ T1201] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2800.316460][ T1201] Memory cgroup stats for /syz4:
[ 2800.316674][ T1201] anon 118784
[ 2800.316674][ T1201] file 8351744
[ 2800.316674][ T1201] kernel 286720
[ 2800.316674][ T1201] kernel_stack 65536
[ 2800.316674][ T1201] pagetables 77824
[ 2800.316674][ T1201] sec_pagetables 0
[ 2800.316674][ T1201] percpu 64
[ 2800.316674][ T1201] sock 0
[ 2800.316674][ T1201] vmalloc 0
[ 2800.316674][ T1201] shmem 8351744
[ 2800.316674][ T1201] zswap 0
[ 2800.316674][ T1201] zswapped 0
[ 2800.316674][ T1201] file_mapped 290816
[ 2800.316674][ T1201] file_dirty 0
[ 2800.316674][ T1201] file_writeback 0
[ 2800.316674][ T1201] swapcached 0
[ 2800.316674][ T1201] anon_thp 0
[ 2800.316674][ T1201] file_thp 0
[ 2800.316674][ T1201] shmem_thp 0
[ 2800.316674][ T1201] inactive_anon 118784
[ 2800.316674][ T1201] active_anon 8351744
[ 2800.316674][ T1201] inactive_file 0
[ 2800.316674][ T1201] active_file 0
[ 2800.316674][ T1201] unevictable 0
[ 2800.316674][ T1201] slab_reclaimable 37560
[ 2800.316674][ T1201] slab_unreclaimable 75048
[ 2800.316674][ T1201] slab 112608
[ 2800.426588][ T1201] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0-1,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=1200,uid=0
[ 2800.458571][ T1201] Memory cgroup out of memory: Killed process 1200 (syz-executor.4) total-vm:54540kB, anon-rss:372kB, file-rss:8960kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
21:27:49 executing program 1:
perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x6, 0x401}, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000180)={0x0, 0x80, 0x0, 0x7c, 0x4, 0xd2, 0x0, 0x5, 0x0, 0x74d4e3ef7733d4ea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x26, 0x0, @perf_bp={0x0}, 0x210, 0x0, 0x1f, 0x3, 0x0, 0x0, 0xffff}, 0x0, 0x0, 0xffffffffffffffff, 0x9)
openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
perf_event_open(&(0x7f0000000200)={0x4, 0x80, 0x9, 0x0, 0x0, 0x5, 0x0, 0xffffffff, 0x800, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x2, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x2, 0x2, @perf_bp={&(0x7f0000000100), 0x5}, 0x0, 0x100000000, 0x2a, 0x0, 0x8, 0x40, 0x0, 0x0, 0x3f, 0x0, 0x4000000000000000}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
recvmsg(0xffffffffffffffff, 0x0, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f00000002c0)='cpuacct.usage_percpu_sys\x00', 0x0, 0x0)
perf_event_open$cgroup(&(0x7f00000003c0)={0x4, 0x80, 0x1, 0xff, 0x1, 0x5, 0x0, 0x800000000000008, 0x21001, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x3, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0xffff0000, 0x4, @perf_bp={&(0x7f0000000380), 0x8}, 0x40ae, 0xe, 0x78d8, 0x5, 0x7, 0x7, 0x1ff}, 0xffffffffffffffff, 0xc, 0xffffffffffffffff, 0xc)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000018c00)={0x18, 0x3, &(0x7f0000000780)=ANY=[@ANYBLOB="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"], &(0x7f0000000440)='syzkaller\x00', 0x4, 0xb0, &(0x7f0000000480)=""/176, 0x0, 0x0, '\x00', 0x0, 0x0, r0, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='rcu_utilization\x00', r1}, 0x10)
r3 = perf_event_open$cgroup(&(0x7f0000000080)={0x4, 0x80, 0x81, 0x5, 0x6, 0x0, 0x0, 0x8000000000000000, 0x848, 0x4, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x3, 0x0, @perf_config_ext={0x912410d}, 0x8800, 0xffffffff, 0x7, 0x6, 0x3f, 0x7, 0x8dd, 0x0, 0x5, 0x0, 0x1}, 0xffffffffffffffff, 0xb, 0xffffffffffffffff, 0x9)
ioctl$PERF_EVENT_IOC_SET_OUTPUT(0xffffffffffffffff, 0x2405, r3)
r4 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000540)='./cgroup.cpu/syz1\x00', 0x200002, 0x0)
openat$cgroup_ro(r4, &(0x7f0000000640)='cgroup.stat\x00', 0x0, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r3, 0x40082404, &(0x7f0000000580)=0xffffffffffffff7f)
r5 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000000)='cpuacct.usage_percpu_sys\x00', 0x26e1, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r5, 0x40086607, &(0x7f0000000040))
r6 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x26e1, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000018c00)={0x18, 0x3, &(0x7f0000000300)=ANY=[@ANYRES64=r0], 0x0, 0x4, 0xb0, &(0x7f0000000480)=""/176, 0x40f00, 0x5, '\x00', 0x0, 0x0, r6, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x0, 0x204d, &(0x7f00000005c0)=ANY=[@ANYRES32], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x18, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000740)={0x0, 0x3}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000002c0)=[0xffffffffffffffff, r6, 0xffffffffffffffff]}, 0x80)
write$cgroup_int(r6, &(0x7f0000000280)=0x1ff, 0x12)
r7 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000001e00)={&(0x7f0000001dc0)='./file0\x00', 0x0, 0x10}, 0x10)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000001e80)=@bpf_lsm={0x1d, 0x2, &(0x7f0000000700)=@raw=[@map_idx={0x18, 0x4}], &(0x7f0000002340)='GPL\x00', 0x5, 0x33, &(0x7f0000002380)=""/51, 0x41100, 0x2, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f00000023c0)={0x5, 0x4}, 0x8, 0x10, &(0x7f0000002400)={0x3, 0xa, 0x6, 0xae2e}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000002500)=[0xffffffffffffffff, r7, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}, 0x80)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={0xffffffffffffffff, 0x18000000000002a0, 0x0, 0x0, &(0x7f00000001c0), 0x0, 0x0, 0xe8030000, 0x0, 0x0, 0x0, 0x0}, 0x48)
ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x89f2, &(0x7f0000000080)='ip6tnl0\x00')
socketpair(0x1e, 0x5, 0x20, &(0x7f0000000600))
socketpair(0x1, 0x1, 0x0, &(0x7f0000000740)={0xffffffffffffffff, <r8=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r8, 0x89f1, &(0x7f0000000080))
close(r2)

21:27:49 executing program 4:
openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0)
perf_event_open(&(0x7f0000000100)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_int(r0, &(0x7f00000000c0)='memory.max\x00', 0x2, 0x0)
getpid()
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x1f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000300)='cpuacct.usage_all\x00', 0x0, 0x0)
bpf$ITER_CREATE(0x21, &(0x7f00000002c0)={r2}, 0x8)
getpid()
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='blkio.bfq.io_service_time\x00', 0x26e1, 0x0)
write$cgroup_int(r3, &(0x7f0000000040), 0x12)
close(r3)
syz_open_procfs$namespace(0x0, 0x0)
write$cgroup_int(r1, &(0x7f0000000040), 0x12)

21:27:49 executing program 2:
openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_int(r0, &(0x7f00000000c0)='memory.max\x00', 0x2, 0x0)
getpid()
r2 = bpf$ITER_CREATE(0x21, &(0x7f0000000340), 0x8)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='blkio.bfq.io_service_time\x00', 0x26e1, 0x0)
write$cgroup_int(r3, &(0x7f0000000040), 0x12)
close(r3)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000280)='host1x_cdma_push_wide\x00', r2}, 0x10)
write$cgroup_int(r1, &(0x7f0000000040), 0x12)

[ 2800.602972][  T942] syz-executor.4 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=0
[ 2800.649134][T14879] Bluetooth: hci3: command 0x040f tx timeout
[ 2800.665315][  T942] CPU: 1 PID: 942 Comm: syz-executor.4 Not tainted 6.2.0-rc2-syzkaller-00431-g0164776a2ce7 #0
[ 2800.675623][  T942] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 2800.685717][  T942] Call Trace:
[ 2800.689024][  T942]  <TASK>
[ 2800.691985][  T942]  dump_stack_lvl+0xd1/0x138
[ 2800.696631][  T942]  dump_header+0x10b/0x85f
[ 2800.701099][  T942]  oom_kill_process.cold+0x10/0x15
[ 2800.706262][  T942]  out_of_memory+0x35c/0x14a0
[ 2800.710992][  T942]  ? find_held_lock+0x2d/0x110
[ 2800.715806][  T942]  ? oom_killer_disable+0x280/0x280
[ 2800.721050][  T942]  ? find_held_lock+0x2d/0x110
[ 2800.725857][  T942]  mem_cgroup_out_of_memory+0x206/0x270
[ 2800.731431][  T942]  ? mem_cgroup_margin+0x130/0x130
[ 2800.736565][  T942]  ? lock_downgrade+0x6e0/0x6e0
[ 2800.741466][  T942]  try_charge_memcg+0xefb/0x12f0
[ 2800.746458][  T942]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 2800.752490][  T942]  ? lock_downgrade+0x6e0/0x6e0
[ 2800.757488][  T942]  charge_memcg+0x90/0x3b0
[ 2800.759052][T14879] Bluetooth: hci0: command 0x0419 tx timeout
[ 2800.761928][  T942]  __mem_cgroup_charge+0x2b/0x90
[ 2800.761960][  T942]  ? _compound_head+0x5d/0x150
[ 2800.777640][  T942]  __handle_mm_fault+0x187d/0x3c90
[ 2800.782810][  T942]  ? vm_iomap_memory+0x190/0x190
[ 2800.787823][  T942]  handle_mm_fault+0x1b6/0x850
[ 2800.792641][  T942]  do_user_addr_fault+0x475/0x1210
[ 2800.797797][  T942]  ? rcu_read_lock_sched_held+0x3e/0x70
[ 2800.803396][  T942]  exc_page_fault+0x98/0x170
[ 2800.808042][  T942]  asm_exc_page_fault+0x26/0x30
[ 2800.812948][  T942] RIP: 0033:0x7f7814a5a7d5
[ 2800.817394][  T942] Code: e8 4b 8d 0c 2f 48 8b 6c 24 18 48 39 d3 48 89 4b 60 0f 95 c2 48 83 c8 01 0f b6 d2 48 c1 e2 02 4c 09 ea 48 83 ca 01 49 89 57 08 <48> 89 41 08 49 83 c7 10 eb b3 48 8d 3d 6a 0d 0a 00 e8 75 c9 ff ff
[ 2800.837038][  T942] RSP: 002b:00007fff5eba7410 EFLAGS: 00010206
[ 2800.843144][  T942] RAX: 00000000000187c1 RBX: 00007f7814b885e0 RCX: 000055555615d840
[ 2800.851155][  T942] RDX: 0000000000008041 RSI: 0000000000000000 RDI: 0000000000000004
[ 2800.859154][  T942] RBP: 0000000000008030 R08: 0000000000000003 R09: 00007f7814b88640
[ 2800.867154][  T942] R10: 0000000000000231 R11: 0000000000000000 R12: 0000000000000802
[ 2800.875162][  T942] R13: 0000000000008040 R14: 0000000000000804 R15: 0000555556155800
[ 2800.883189][  T942]  </TASK>
[ 2800.998991][  T942] memory: usage 8288kB, limit 0kB, failcnt 814
[ 2801.005342][  T942] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2801.028083][ T1106] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 2801.049096][  T942] Memory cgroup stats for /syz4:
[ 2801.049288][  T942] anon 32768
[ 2801.049288][  T942] file 8351744
[ 2801.049288][  T942] kernel 102400
[ 2801.049288][  T942] kernel_stack 0
[ 2801.049288][  T942] pagetables 8192
[ 2801.049288][  T942] sec_pagetables 0
[ 2801.049288][  T942] percpu 64
[ 2801.049288][  T942] sock 0
[ 2801.049288][  T942] vmalloc 0
[ 2801.049288][  T942] shmem 8351744
[ 2801.049288][  T942] zswap 0
[ 2801.049288][  T942] zswapped 0
[ 2801.049288][  T942] file_mapped 266240
[ 2801.049288][  T942] file_dirty 0
[ 2801.049288][  T942] file_writeback 0
[ 2801.049288][  T942] swapcached 0
[ 2801.049288][  T942] anon_thp 0
[ 2801.049288][  T942] file_thp 0
[ 2801.049288][  T942] shmem_thp 0
[ 2801.049288][  T942] inactive_anon 32768
[ 2801.049288][  T942] active_anon 8351744
[ 2801.049288][  T942] inactive_file 0
[ 2801.049288][  T942] active_file 0
[ 2801.049288][  T942] unevictable 0
[ 2801.049288][  T942] slab_reclaimable 33656
[ 2801.049288][  T942] slab_unreclaimable 44728
[ 2801.049288][  T942] slab 78384
[ 2801.060355][ T1106] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 2801.398846][  T942] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0-1,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=942,uid=0
[ 2801.459220][ T5120] Bluetooth: hci2: command 0x0419 tx timeout
[ 2801.477358][  T942] Memory cgroup out of memory: Killed process 942 (syz-executor.4) total-vm:50568kB, anon-rss:364kB, file-rss:8960kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:0
[ 2801.561763][ T1106] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 2801.615049][ T1106] netdevsim netdevsim0 netdevsim3: renamed from eth3
21:27:50 executing program 4:
openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0)
perf_event_open(&(0x7f0000000100)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_int(r0, &(0x7f00000000c0)='memory.max\x00', 0x2, 0x0)
getpid()
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x1f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000300)='cpuacct.usage_all\x00', 0x0, 0x0)
bpf$ITER_CREATE(0x21, &(0x7f00000002c0)={r2}, 0x8)
getpid()
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='blkio.bfq.io_service_time\x00', 0x26e1, 0x0)
write$cgroup_int(r3, &(0x7f0000000040), 0x12)
close(r3)
syz_open_procfs$namespace(0x0, 0x0)
write$cgroup_int(r1, &(0x7f0000000040), 0x12)

[ 2802.187028][ T1106] 8021q: adding VLAN 0 to HW filter on device bond0
[ 2802.194906][ T1091] netdevsim netdevsim5 netdevsim0: renamed from eth0
21:27:51 executing program 4:
openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0)
perf_event_open(&(0x7f0000000100)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_int(r0, &(0x7f00000000c0)='memory.max\x00', 0x2, 0x0)
getpid()
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x1f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000300)='cpuacct.usage_all\x00', 0x0, 0x0)
bpf$ITER_CREATE(0x21, &(0x7f00000002c0)={r2}, 0x8)
getpid()
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='blkio.bfq.io_service_time\x00', 0x26e1, 0x0)
write$cgroup_int(r3, &(0x7f0000000040), 0x12)
close(r3)
syz_open_procfs$namespace(0x0, 0x0)
write$cgroup_int(r1, &(0x7f0000000040), 0x12)

[ 2802.451299][ T1091] netdevsim netdevsim5 netdevsim1: renamed from eth1
[ 2802.499315][ T1106] 8021q: adding VLAN 0 to HW filter on device team0
[ 2802.506317][T30559] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 2802.529660][T30559] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 2802.631805][ T1091] netdevsim netdevsim5 netdevsim2: renamed from eth2
[ 2802.668684][T21233] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 2802.678064][T21233] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 2802.709366][T21233] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2802.716521][T21233] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 2802.730442][T14879] Bluetooth: hci3: command 0x0419 tx timeout
[ 2802.769397][ T1091] netdevsim netdevsim5 netdevsim3: renamed from eth3
[ 2802.974391][T17605] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 2803.009654][T17605] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 2803.018487][T17605] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 2803.069496][T17605] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2803.076636][T17605] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 2803.104016][T17605] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 2803.119810][T17605] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 2803.236821][  T483] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 2803.248551][T14879] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[ 2803.257704][  T483] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 2803.258566][T14879] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[ 2803.278445][  T483] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 2803.290076][T14879] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[ 2803.298053][T14879] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[ 2803.305983][T14879] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[ 2803.313851][T14879] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[ 2803.338466][  T483] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 2803.363114][  T483] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 2803.394587][ T1106] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 2803.419878][ T1106] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 2803.478246][T21233] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 2803.529785][T21233] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 2803.938492][ T1091] 8021q: adding VLAN 0 to HW filter on device bond0
[ 2803.946263][ T1133] netdevsim netdevsim3 netdevsim0: renamed from eth0
[ 2804.016521][ T1091] 8021q: adding VLAN 0 to HW filter on device team0
[ 2804.026995][ T1133] netdevsim netdevsim3 netdevsim1: renamed from eth1
[ 2804.048117][T30559] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 2804.056779][T30559] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 2804.159142][ T1133] netdevsim netdevsim3 netdevsim2: renamed from eth2
[ 2804.179488][T17500] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 2804.199502][T17500] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 2804.208089][T17500] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2804.215286][T17500] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 2804.238368][T17500] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 2804.249425][T17500] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 2804.258026][T17500] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2804.265182][T17500] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 2804.309154][T17500] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 2804.339628][ T1133] netdevsim netdevsim3 netdevsim3: renamed from eth3
[ 2804.380922][T23289] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 2804.399672][T23289] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 2804.419774][T23289] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 2804.439698][T23289] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 2804.459059][T23289] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 2804.479082][T23289] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 2804.523445][T30559] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 2804.540455][T30559] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 2804.555160][T30559] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 2804.558022][ T5120] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[ 2804.569004][T30559] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 2804.580264][ T5120] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[ 2804.586318][T30559] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 2804.588634][ T5120] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[ 2804.605603][ T5120] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[ 2804.614044][ T5120] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[ 2804.647116][ T1091] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 2804.660743][ T1226] chnl_net:caif_netlink_parms(): no params data found
[ 2804.673637][ T1106] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 2804.824052][T23940] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 2804.834927][T23940] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 2804.926713][ T1106] device veth0_vlan entered promiscuous mode
[ 2804.949743][T20562] device hsr_slave_0 left promiscuous mode
[ 2804.969935][T20562] device hsr_slave_1 left promiscuous mode
[ 2804.989301][T20562] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 2804.996784][T20562] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 2805.021028][T20562] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 2805.028515][T20562] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 2805.071311][T20562] device bridge_slave_1 left promiscuous mode
[ 2805.077602][T20562] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2805.100614][T20562] device bridge_slave_0 left promiscuous mode
[ 2805.115776][T20562] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2805.145431][T20562] device hsr_slave_0 left promiscuous mode
[ 2805.158372][T20562] device hsr_slave_1 left promiscuous mode
[ 2805.172861][T20562] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 2805.189702][T20562] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 2805.211480][T20562] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 2805.228072][T20562] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 2805.249101][T20562] device bridge_slave_1 left promiscuous mode
[ 2805.262111][T20562] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2805.281387][T20562] device bridge_slave_0 left promiscuous mode
[ 2805.294637][T20562] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2805.324575][T20562] device hsr_slave_0 left promiscuous mode
[ 2805.331313][T20562] device hsr_slave_1 left promiscuous mode
[ 2805.338047][T20562] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 2805.346989][T20562] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 2805.368997][ T5120] Bluetooth: hci4: command 0x0409 tx timeout
[ 2805.370688][T20562] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 2805.387470][T20562] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 2805.401137][T20562] device bridge_slave_1 left promiscuous mode
[ 2805.407431][T20562] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2805.435595][T20562] device bridge_slave_0 left promiscuous mode
[ 2805.449284][T20562] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2805.496753][T20562] device veth1_macvtap left promiscuous mode
[ 2805.503103][T20562] device veth0_macvtap left promiscuous mode
[ 2805.519785][T20562] device veth1_vlan left promiscuous mode
[ 2805.525685][T20562] device veth0_vlan left promiscuous mode
[ 2805.543288][T20562] device veth1_macvtap left promiscuous mode
[ 2805.559524][T20562] device veth0_macvtap left promiscuous mode
[ 2805.565690][T20562] device veth1_vlan left promiscuous mode
[ 2805.583903][T20562] device veth0_vlan left promiscuous mode
[ 2805.608525][T20562] device veth1_macvtap left promiscuous mode
[ 2805.629990][T20562] device veth0_macvtap left promiscuous mode
[ 2805.636102][T20562] device veth1_vlan left promiscuous mode
[ 2805.642213][T20562] device veth0_vlan left promiscuous mode
[ 2806.515587][T20562] team0 (unregistering): Port device team_slave_1 removed
[ 2806.533750][T20562] team0 (unregistering): Port device team_slave_0 removed
[ 2806.560956][T20562] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 2806.593351][T20562] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 2806.649320][ T5120] Bluetooth: hci5: command 0x0409 tx timeout
[ 2806.684626][T20562] bond0 (unregistering): Released all slaves
[ 2806.822914][T20562] team0 (unregistering): Port device team_slave_1 removed
[ 2806.839736][T20562] team0 (unregistering): Port device team_slave_0 removed
[ 2806.859739][T20562] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 2806.876350][T20562] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 2806.965503][T20562] bond0 (unregistering): Released all slaves
[ 2807.091183][T20562] team0 (unregistering): Port device team_slave_1 removed
[ 2807.115239][T20562] team0 (unregistering): Port device team_slave_0 removed
[ 2807.127893][T20562] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 2807.151677][T20562] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 2807.333669][T20562] bond0 (unregistering): Released all slaves
[ 2807.383457][T20569] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 2807.398897][T20569] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 2807.407712][T20569] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 2807.415829][T20569] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 2807.449272][ T5120] Bluetooth: hci4: command 0x041b tx timeout
[ 2807.450016][ T1106] device veth1_vlan entered promiscuous mode
21:27:56 executing program 1:
r0 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x26e1, 0x0)
perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x6, 0x401}, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000180)={0x0, 0x80, 0x0, 0x7c, 0x4, 0xd2, 0x0, 0x5, 0x0, 0x74d4e3ef7733d4ea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x26, 0x0, @perf_bp={0x0}, 0x210, 0x0, 0x1f, 0x3, 0x0, 0x0, 0xffff}, 0x0, 0x0, 0xffffffffffffffff, 0x9)
openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
perf_event_open(&(0x7f0000000200)={0x4, 0x80, 0x9, 0x0, 0x0, 0x5, 0x0, 0xffffffff, 0x800, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x2, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x2, 0x2, @perf_bp={&(0x7f0000000100), 0x5}, 0x0, 0x100000000, 0x2a, 0x0, 0x8, 0x40, 0x0, 0x0, 0x3f, 0x0, 0x4000000000000000}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
recvmsg(0xffffffffffffffff, 0x0, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f00000002c0)='cpuacct.usage_percpu_sys\x00', 0x0, 0x0)
perf_event_open$cgroup(&(0x7f00000003c0)={0x4, 0x80, 0x1, 0xff, 0x1, 0x5, 0x0, 0x800000000000008, 0x21001, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x3, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0xffff0000, 0x4, @perf_bp={&(0x7f0000000380), 0x8}, 0x40ae, 0xe, 0x78d8, 0x5, 0x7, 0x7, 0x1ff}, 0xffffffffffffffff, 0xc, r0, 0xc)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000018c00)={0x18, 0x3, &(0x7f0000000780)=ANY=[@ANYBLOB="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"], &(0x7f0000000440)='syzkaller\x00', 0x4, 0xb0, &(0x7f0000000480)=""/176, 0x0, 0x0, '\x00', 0x0, 0x0, r1, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
r3 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='rcu_utilization\x00', r2}, 0x10)
r4 = perf_event_open$cgroup(&(0x7f0000000080)={0x4, 0x80, 0x81, 0x5, 0x6, 0x0, 0x0, 0x8000000000000000, 0x848, 0x4, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x3, 0x0, @perf_config_ext={0x912410d}, 0x8800, 0xffffffff, 0x7, 0x6, 0x3f, 0x7, 0x8dd, 0x0, 0x5, 0x0, 0x1}, 0xffffffffffffffff, 0xb, 0xffffffffffffffff, 0x9)
ioctl$PERF_EVENT_IOC_SET_OUTPUT(0xffffffffffffffff, 0x2405, r4)
r5 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000540)='./cgroup.cpu/syz1\x00', 0x200002, 0x0)
openat$cgroup_ro(r5, &(0x7f0000000640)='cgroup.stat\x00', 0x0, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r4, 0x40082404, &(0x7f0000000580)=0xffffffffffffff7f)
r6 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000000)='cpuacct.usage_percpu_sys\x00', 0x26e1, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r6, 0x40086607, &(0x7f0000000040))
r7 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x26e1, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000018c00)={0x18, 0x3, &(0x7f0000000300)=ANY=[@ANYRES64=r1], 0x0, 0x4, 0xb0, &(0x7f0000000480)=""/176, 0x40f00, 0x5, '\x00', 0x0, 0x0, r7, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x0, 0x204d, &(0x7f00000005c0)=ANY=[@ANYRES32], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x18, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000740)={0x0, 0x3}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000002c0)=[0xffffffffffffffff, r7, 0xffffffffffffffff]}, 0x80)
write$cgroup_int(r7, &(0x7f0000000280)=0x1ff, 0x12)
r8 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000001e00)={&(0x7f0000001dc0)='./file0\x00', 0x0, 0x10}, 0x10)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000001e80)=@bpf_lsm={0x1d, 0x2, &(0x7f0000000700)=@raw=[@map_idx={0x18, 0x4}], &(0x7f0000002340)='GPL\x00', 0x5, 0x33, &(0x7f0000002380)=""/51, 0x41100, 0x2, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f00000023c0)={0x5, 0x4}, 0x8, 0x10, &(0x7f0000002400)={0x3, 0xa, 0x6, 0xae2e}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000002500)=[r0, r8, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}, 0x80)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={0xffffffffffffffff, 0x18000000000002a0, 0x0, 0x0, &(0x7f00000001c0), 0x0, 0x0, 0xe8030000, 0x0, 0x0, 0x0, 0x0}, 0x48)
ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x89f2, &(0x7f0000000080)='ip6tnl0\x00')
socketpair(0x1e, 0x5, 0x20, &(0x7f0000000600))
socketpair(0x1, 0x1, 0x0, &(0x7f0000000740)={0xffffffffffffffff, <r9=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r9, 0x89f1, &(0x7f0000000080))
close(r3)

[ 2807.547381][ T1226] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2807.590168][ T1226] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2807.651756][ T1226] device bridge_slave_0 entered promiscuous mode
[ 2807.692215][ T1133] 8021q: adding VLAN 0 to HW filter on device bond0
[ 2807.709227][ T1226] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2807.721614][ T1226] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2807.736626][ T1226] device bridge_slave_1 entered promiscuous mode
[ 2807.773543][ T1091] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 2807.781504][T17605] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 2807.791239][T17605] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 2807.800053][T17605] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 2807.809844][T17605] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 2807.822786][ T1133] 8021q: adding VLAN 0 to HW filter on device team0
[ 2807.852385][ T1106] device veth0_macvtap entered promiscuous mode
[ 2807.943266][T23289] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 2807.955326][T23289] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 2807.974589][T23289] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 2807.986809][ T1106] device veth1_macvtap entered promiscuous mode
[ 2808.010685][ T1226] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 2808.033314][T23289] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 2808.059281][T23289] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 2808.079838][T23289] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 2808.098524][T23289] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2808.105780][T23289] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 2808.131523][T23989] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 2808.185779][ T1226] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 2808.203036][T23940] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 2808.228956][T23940] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 2808.237533][T23940] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2808.244686][T23940] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 2808.256367][T23940] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 2808.269916][T23940] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 2808.281281][ T1106] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2808.295928][ T1106] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2808.305942][ T1106] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2808.317479][ T1106] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2808.338546][ T1106] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2808.359287][ T1106] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2808.371639][ T1106] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 2808.411320][T23989] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 2808.430822][T23989] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 2808.450348][T23989] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 2808.503478][ T1106] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2808.515642][ T1106] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2808.538958][ T1106] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2808.560407][ T1106] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2808.578905][ T1106] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2808.605358][ T1106] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2808.630075][ T1106] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 2808.647757][ T1226] team0: Port device team_slave_0 added
[ 2808.663633][T23289] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 2808.681807][T23289] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 2808.691960][T23289] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 2808.702864][T23289] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 2808.715706][T23289] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 2808.729169][ T5120] Bluetooth: hci5: command 0x041b tx timeout
[ 2808.746136][T23289] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 2808.791309][ T1133] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 2808.815545][ T1133] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 2808.845808][ T1226] team0: Port device team_slave_1 added
[ 2808.883740][T23940] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 2808.895450][T23940] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 2808.904105][T23940] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 2808.913150][T23940] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 2808.922027][T23940] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 2808.930644][T23940] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 2808.981604][ T1106] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 2808.999993][ T1106] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 2809.014697][ T1106] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 2809.035493][ T1106] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 2809.062493][ T1091] device veth0_vlan entered promiscuous mode
[ 2809.080980][ T1226] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 2809.089070][ T1226] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2809.120073][ T1226] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 2809.133092][T23940] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 2809.151291][T23940] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 2809.187659][ T1091] device veth1_vlan entered promiscuous mode
[ 2809.219844][ T1226] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 2809.231910][ T1226] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2809.271015][ T1226] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 2809.312813][ T1253] chnl_net:caif_netlink_parms(): no params data found
[ 2809.438445][ T1091] device veth0_macvtap entered promiscuous mode
[ 2809.477140][T21233] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 2809.487313][T21233] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 2809.507971][T21233] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 2809.530396][T21233] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 2809.539099][ T5120] Bluetooth: hci4: command 0x040f tx timeout
[ 2809.586077][ T1226] device hsr_slave_0 entered promiscuous mode
[ 2809.597891][ T1226] device hsr_slave_1 entered promiscuous mode
[ 2809.621380][T21233] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 2809.640975][T17514] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2809.679961][T17514] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2809.718513][ T1091] device veth1_macvtap entered promiscuous mode
[ 2809.751607][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 2809.782753][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 2809.796937][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 2809.838154][ T1133] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 2809.876781][T10995] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2809.890274][T10995] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2809.928281][ T1091] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2809.950792][ T1091] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2809.961058][ T1091] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2809.971872][ T1091] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2809.985963][ T1091] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2810.015036][ T1091] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2810.032640][ T1091] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2810.043554][ T1091] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2810.055417][ T1091] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 2810.066336][ T1253] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2810.074592][ T1253] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2810.083522][ T1253] device bridge_slave_0 entered promiscuous mode
[ 2810.097382][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 2810.120821][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 2810.139670][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 2810.155112][ T1091] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2810.178382][ T1091] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2810.198852][ T1091] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2810.209617][ T1091] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2810.219775][ T1091] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2810.237765][ T1091] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2810.250714][ T1091] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2810.265451][ T1091] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2810.292749][ T1091] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 2810.318361][ T1253] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2810.347181][ T1253] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2810.372291][ T1253] device bridge_slave_1 entered promiscuous mode
[ 2810.420907][T23989] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 2810.436860][T23989] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 2810.458643][ T1091] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 2810.474339][ T1091] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 2810.506483][ T1091] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 2810.520350][ T1091] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
21:27:59 executing program 1:
r0 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x26e1, 0x0)
perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x6, 0x401}, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000180)={0x0, 0x80, 0x0, 0x7c, 0x4, 0xd2, 0x0, 0x5, 0x0, 0x74d4e3ef7733d4ea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x26, 0x0, @perf_bp={0x0}, 0x210, 0x0, 0x1f, 0x3, 0x0, 0x0, 0xffff}, 0x0, 0x0, 0xffffffffffffffff, 0x9)
openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
perf_event_open(&(0x7f0000000200)={0x4, 0x80, 0x9, 0x0, 0x0, 0x5, 0x0, 0xffffffff, 0x800, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x2, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x2, 0x2, @perf_bp={&(0x7f0000000100), 0x5}, 0x0, 0x100000000, 0x2a, 0x0, 0x8, 0x40, 0x0, 0x0, 0x3f, 0x0, 0x4000000000000000}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
recvmsg(0xffffffffffffffff, 0x0, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f00000002c0)='cpuacct.usage_percpu_sys\x00', 0x0, 0x0)
perf_event_open$cgroup(&(0x7f00000003c0)={0x4, 0x80, 0x1, 0xff, 0x1, 0x5, 0x0, 0x800000000000008, 0x21001, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x3, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0xffff0000, 0x4, @perf_bp={&(0x7f0000000380), 0x8}, 0x40ae, 0xe, 0x78d8, 0x5, 0x7, 0x7, 0x1ff}, 0xffffffffffffffff, 0xc, r0, 0xc)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000018c00)={0x18, 0x3, &(0x7f0000000780)=ANY=[@ANYBLOB="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"], &(0x7f0000000440)='syzkaller\x00', 0x4, 0xb0, &(0x7f0000000480)=""/176, 0x0, 0x0, '\x00', 0x0, 0x0, r1, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
r3 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='rcu_utilization\x00', r2}, 0x10)
r4 = perf_event_open$cgroup(&(0x7f0000000080)={0x4, 0x80, 0x81, 0x5, 0x6, 0x0, 0x0, 0x8000000000000000, 0x848, 0x4, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x3, 0x0, @perf_config_ext={0x912410d}, 0x8800, 0xffffffff, 0x7, 0x6, 0x3f, 0x7, 0x8dd, 0x0, 0x5, 0x0, 0x1}, 0xffffffffffffffff, 0xb, 0xffffffffffffffff, 0x9)
ioctl$PERF_EVENT_IOC_SET_OUTPUT(0xffffffffffffffff, 0x2405, r4)
r5 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000540)='./cgroup.cpu/syz1\x00', 0x200002, 0x0)
openat$cgroup_ro(r5, &(0x7f0000000640)='cgroup.stat\x00', 0x0, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r4, 0x40082404, &(0x7f0000000580)=0xffffffffffffff7f)
r6 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000000)='cpuacct.usage_percpu_sys\x00', 0x26e1, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r6, 0x40086607, &(0x7f0000000040))
r7 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x26e1, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000018c00)={0x18, 0x3, &(0x7f0000000300)=ANY=[@ANYRES64=r1], 0x0, 0x4, 0xb0, &(0x7f0000000480)=""/176, 0x40f00, 0x5, '\x00', 0x0, 0x0, r7, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x0, 0x204d, &(0x7f00000005c0)=ANY=[@ANYRES32], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x18, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000740)={0x0, 0x3}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000002c0)=[0xffffffffffffffff, r7, 0xffffffffffffffff]}, 0x80)
write$cgroup_int(r7, &(0x7f0000000280)=0x1ff, 0x12)
r8 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000001e00)={&(0x7f0000001dc0)='./file0\x00', 0x0, 0x10}, 0x10)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000001e80)=@bpf_lsm={0x1d, 0x2, &(0x7f0000000700)=@raw=[@map_idx={0x18, 0x4}], &(0x7f0000002340)='GPL\x00', 0x5, 0x33, &(0x7f0000002380)=""/51, 0x41100, 0x2, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f00000023c0)={0x5, 0x4}, 0x8, 0x10, &(0x7f0000002400)={0x3, 0xa, 0x6, 0xae2e}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000002500)=[r0, r8, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}, 0x80)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={0xffffffffffffffff, 0x18000000000002a0, 0x0, 0x0, &(0x7f00000001c0), 0x0, 0x0, 0xe8030000, 0x0, 0x0, 0x0, 0x0}, 0x48)
ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x89f2, &(0x7f0000000080)='ip6tnl0\x00')
socketpair(0x1e, 0x5, 0x20, &(0x7f0000000600))
socketpair(0x1, 0x1, 0x0, &(0x7f0000000740)={0xffffffffffffffff, <r9=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r9, 0x89f1, &(0x7f0000000080))
close(r3)

[ 2810.587754][T20569] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 2810.610198][T20569] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 2810.688007][ T1363] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2810.709568][ T1363] CPU: 0 PID: 1363 Comm: syz-executor.0 Not tainted 6.2.0-rc2-syzkaller-00431-g0164776a2ce7 #0
[ 2810.719986][ T1363] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 2810.730076][ T1363] Call Trace:
[ 2810.733364][ T1363]  <TASK>
[ 2810.736304][ T1363]  dump_stack_lvl+0xd1/0x138
[ 2810.740926][ T1363]  dump_header+0x10b/0x85f
[ 2810.745365][ T1363]  oom_kill_process.cold+0x10/0x15
[ 2810.750492][ T1363]  out_of_memory+0x35c/0x14a0
[ 2810.755193][ T1363]  ? oom_killer_disable+0x280/0x280
[ 2810.760421][ T1363]  ? mark_held_locks+0x9f/0xe0
[ 2810.765214][ T1363]  mem_cgroup_out_of_memory+0x206/0x270
[ 2810.770791][ T1363]  ? mem_cgroup_margin+0x130/0x130
[ 2810.775925][ T1363]  ? _raw_spin_unlock_irqrestore+0x3c/0x70
[ 2810.781756][ T1363]  memory_max_write+0x2f9/0x3c0
[ 2810.786630][ T1363]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 2810.792731][ T1363]  ? lock_release+0x810/0x810
[ 2810.797424][ T1363]  cgroup_file_write+0x1e2/0x770
[ 2810.802378][ T1363]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 2810.808461][ T1363]  ? kill_css+0x370/0x370
[ 2810.812824][ T1363]  ? __virt_addr_valid+0x61/0x2e0
[ 2810.817880][ T1363]  ? kill_css+0x370/0x370
[ 2810.822234][ T1363]  kernfs_fop_write_iter+0x3f1/0x600
[ 2810.827573][ T1363]  vfs_write+0x9ed/0xdd0
[ 2810.831849][ T1363]  ? kernel_write+0x630/0x630
[ 2810.836573][ T1363]  ? __fget_files+0x26a/0x440
[ 2810.841289][ T1363]  ksys_write+0x12b/0x250
[ 2810.845639][ T1363]  ? __ia32_sys_read+0xb0/0xb0
[ 2810.850423][ T1363]  ? syscall_enter_from_user_mode+0x30/0xb0
[ 2810.856336][ T1363]  do_syscall_64+0x39/0xb0
[ 2810.860775][ T1363]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2810.866687][ T1363] RIP: 0033:0x7f2caa88c0c9
[ 2810.871109][ T1363] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 2810.890728][ T1363] RSP: 002b:00007f2ca93fe168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 2810.899152][ T1363] RAX: ffffffffffffffda RBX: 00007f2caa9abf80 RCX: 00007f2caa88c0c9
[ 2810.907133][ T1363] RDX: 0000000000000012 RSI: 0000000020000040 RDI: 0000000000000005
[ 2810.915108][ T1363] RBP: 00007f2caa8e7ae9 R08: 0000000000000000 R09: 0000000000000000
[ 2810.923083][ T1363] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2810.931060][ T1363] R13: 00007ffce9c1c50f R14: 00007f2ca93fe300 R15: 0000000000022000
[ 2810.939059][ T1363]  </TASK>
[ 2810.943752][ T5120] Bluetooth: hci5: command 0x040f tx timeout
[ 2810.956741][ T1363] memory: usage 10624kB, limit 0kB, failcnt 785
[ 2810.971568][ T1253] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 2811.054404][ T1253] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 2811.082837][T23989] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 2811.099649][T23989] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 2811.116547][T23989] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 2811.118950][ T1363] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2811.129860][T23989] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 2811.150541][ T1133] device veth0_vlan entered promiscuous mode
[ 2811.162421][ T1363] Memory cgroup stats for /syz0:
[ 2811.166161][ T1363] anon 114688
[ 2811.166161][ T1363] file 10448896
[ 2811.166161][ T1363] kernel 315392
[ 2811.166161][ T1363] kernel_stack 65536
[ 2811.166161][ T1363] pagetables 81920
[ 2811.166161][ T1363] sec_pagetables 0
[ 2811.166161][ T1363] percpu 64
[ 2811.166161][ T1363] sock 0
[ 2811.166161][ T1363] vmalloc 0
[ 2811.166161][ T1363] shmem 10448896
[ 2811.166161][ T1363] zswap 0
[ 2811.166161][ T1363] zswapped 0
[ 2811.166161][ T1363] file_mapped 331776
[ 2811.166161][ T1363] file_dirty 0
[ 2811.166161][ T1363] file_writeback 0
[ 2811.166161][ T1363] swapcached 0
[ 2811.166161][ T1363] anon_thp 0
[ 2811.166161][ T1363] file_thp 0
[ 2811.166161][ T1363] shmem_thp 0
[ 2811.166161][ T1363] inactive_anon 114688
[ 2811.166161][ T1363] active_anon 10448896
[ 2811.166161][ T1363] inactive_file 0
[ 2811.166161][ T1363] active_file 0
[ 2811.166161][ T1363] unevictable 0
[ 2811.166161][ T1363] slab_reclaimable 38456
[ 2811.166161][ T1363] slab_unreclaimable 99816
[ 2811.166161][ T1363] slab 138272
[ 2811.323651][ T1133] device veth1_vlan entered promiscuous mode
[ 2811.362254][ T1226] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2811.379468][ T1363] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=1362,uid=0
[ 2811.409278][ T1363] Memory cgroup out of memory: Killed process 1362 (syz-executor.0) total-vm:54540kB, anon-rss:372kB, file-rss:8960kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000
[ 2811.436256][ T1253] team0: Port device team_slave_0 added
[ 2811.472630][ T1253] team0: Port device team_slave_1 added
[ 2811.479101][T10995] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2811.487190][T10995] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
21:28:00 executing program 0:
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_int(r0, &(0x7f00000000c0)='memory.max\x00', 0x2, 0x0)
getpid()
r2 = bpf$ITER_CREATE(0x21, &(0x7f0000000340), 0x8)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='blkio.bfq.io_service_time\x00', 0x26e1, 0x0)
write$cgroup_int(r3, &(0x7f0000000040), 0x12)
close(r3)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000280)='host1x_cdma_push_wide\x00', r2}, 0x10)
write$cgroup_int(r1, &(0x7f0000000040), 0x12)

[ 2811.608902][ T5120] Bluetooth: hci4: command 0x0419 tx timeout
[ 2811.617187][ T1226] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2811.643798][ T1106] syz-executor.0 invoked oom-killer: gfp_mask=0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), order=0, oom_score_adj=0
[ 2811.674874][T14991] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 2811.687044][T14991] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 2811.695862][ T1106] CPU: 0 PID: 1106 Comm: syz-executor.0 Not tainted 6.2.0-rc2-syzkaller-00431-g0164776a2ce7 #0
[ 2811.706233][ T1106] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 2811.716314][ T1106] Call Trace:
[ 2811.719610][ T1106]  <TASK>
[ 2811.722558][ T1106]  dump_stack_lvl+0xd1/0x138
[ 2811.727200][ T1106]  dump_header+0x10b/0x85f
[ 2811.731649][ T1106]  oom_kill_process.cold+0x10/0x15
[ 2811.736790][ T1106]  out_of_memory+0x35c/0x14a0
[ 2811.741502][ T1106]  ? find_held_lock+0x2d/0x110
[ 2811.746306][ T1106]  ? oom_killer_disable+0x280/0x280
[ 2811.751539][ T1106]  ? find_held_lock+0x2d/0x110
[ 2811.756343][ T1106]  mem_cgroup_out_of_memory+0x206/0x270
[ 2811.761918][ T1106]  ? mem_cgroup_margin+0x130/0x130
[ 2811.767049][ T1106]  ? lock_downgrade+0x6e0/0x6e0
[ 2811.771953][ T1106]  try_charge_memcg+0xefb/0x12f0
[ 2811.776940][ T1106]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 2811.782969][ T1106]  ? get_mem_cgroup_from_objcg+0xa1/0x260
[ 2811.788724][ T1106]  ? lock_downgrade+0x6e0/0x6e0
[ 2811.793598][ T1106]  ? lock_downgrade+0x6e0/0x6e0
[ 2811.798490][ T1106]  __memcg_kmem_charge_page+0x16e/0x3b0
[ 2811.804070][ T1106]  __alloc_pages+0x1f3/0x5b0
[ 2811.808701][ T1106]  ? __alloc_pages_slowpath.constprop.0+0x23d0/0x23d0
[ 2811.815494][ T1106]  ? lock_chain_count+0x20/0x20
[ 2811.820399][ T1106]  alloc_pages+0x1aa/0x270
[ 2811.824850][ T1106]  pte_alloc_one+0x1a/0x230
[ 2811.829387][ T1106]  __pte_alloc+0x6d/0x260
[ 2811.833760][ T1106]  ? pmd_install+0x160/0x160
[ 2811.838394][ T1106]  copy_page_range+0x17a8/0x3b40
[ 2811.843414][ T1106]  ? mas_store+0x206/0x2e0
[ 2811.847863][ T1106]  ? handle_mm_fault+0x850/0x850
[ 2811.852857][ T1106]  ? up_write+0x1b0/0x520
[ 2811.857226][ T1106]  dup_mmap+0xc10/0x10b0
[ 2811.861513][ T1106]  ? replace_mm_exe_file+0x4b0/0x4b0
[ 2811.866826][ T1106]  ? lock_downgrade+0x6e0/0x6e0
[ 2811.871716][ T1106]  ? _raw_spin_unlock_irqrestore+0x54/0x70
[ 2811.877578][ T1106]  ? mm_init+0x8e0/0xc10
[ 2811.881855][ T1106]  copy_process+0x440f/0x7520
[ 2811.886557][ T1106]  ? _raw_spin_unlock+0x28/0x40
[ 2811.891445][ T1106]  ? wp_page_reuse+0x197/0x570
[ 2811.896265][ T1106]  ? __cleanup_sighand+0xb0/0xb0
[ 2811.901228][ T1106]  ? finish_mkwrite_fault+0x3d0/0x3d0
[ 2811.906646][ T1106]  ? rwlock_bug.part.0+0x90/0x90
[ 2811.911612][ T1106]  ? lock_chain_count+0x20/0x20
[ 2811.916497][ T1106]  kernel_clone+0xeb/0x990
[ 2811.920946][ T1106]  ? create_io_thread+0xf0/0xf0
[ 2811.925861][ T1106]  ? find_held_lock+0x2d/0x110
[ 2811.930675][ T1106]  __do_sys_clone+0xba/0x100
[ 2811.935316][ T1106]  ? kernel_clone+0x990/0x990
[ 2811.940046][ T1106]  ? syscall_enter_from_user_mode+0x26/0xb0
[ 2811.945982][ T1106]  do_syscall_64+0x39/0xb0
[ 2811.950443][ T1106]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2811.956367][ T1106] RIP: 0033:0x7f2caa889dfb
[ 2811.960810][ T1106] Code: ed 0f 85 60 01 00 00 64 4c 8b 0c 25 10 00 00 00 45 31 c0 4d 8d 91 d0 02 00 00 31 d2 31 f6 bf 11 00 20 01 b8 38 00 00 00 0f 05 <48> 3d 00 f0 ff ff 0f 87 89 00 00 00 41 89 c5 85 c0 0f 85 90 00 00
[ 2811.980449][ T1106] RSP: 002b:00007ffce9c1c750 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[ 2811.988891][ T1106] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f2caa889dfb
[ 2811.996883][ T1106] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011
[ 2812.004874][ T1106] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000555556abd400
[ 2812.012897][ T1106] R10: 0000555556abd6d0 R11: 0000000000000246 R12: 0000000000000001
[ 2812.020896][ T1106] R13: 0000000000000000 R14: 0000000000000001 R15: 00007ffce9c1c830
[ 2812.028912][ T1106]  </TASK>
[ 2812.071803][ T1106] memory: usage 10456kB, limit 0kB, failcnt 812
[ 2812.078114][ T1106] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2812.085765][ T1106] Memory cgroup stats for /syz0:
[ 2812.085966][ T1106] anon 40960
[ 2812.085966][ T1106] file 10448896
[ 2812.085966][ T1106] kernel 217088
[ 2812.085966][ T1106] kernel_stack 32768
[ 2812.085966][ T1106] pagetables 28672
[ 2812.085966][ T1106] sec_pagetables 0
[ 2812.085966][ T1106] percpu 128
[ 2812.085966][ T1106] sock 0
[ 2812.085966][ T1106] vmalloc 0
[ 2812.085966][ T1106] shmem 10448896
[ 2812.085966][ T1106] zswap 0
[ 2812.085966][ T1106] zswapped 0
[ 2812.085966][ T1106] file_mapped 315392
[ 2812.085966][ T1106] file_dirty 0
[ 2812.085966][ T1106] file_writeback 0
[ 2812.085966][ T1106] swapcached 0
[ 2812.085966][ T1106] anon_thp 0
[ 2812.085966][ T1106] file_thp 0
[ 2812.085966][ T1106] shmem_thp 0
[ 2812.085966][ T1106] inactive_anon 40960
[ 2812.085966][ T1106] active_anon 10448896
[ 2812.085966][ T1106] inactive_file 0
[ 2812.085966][ T1106] active_file 0
[ 2812.085966][ T1106] unevictable 0
[ 2812.085966][ T1106] slab_reclaimable 32480
[ 2812.085966][ T1106] slab_unreclaimable 93808
[ 2812.085966][ T1106] slab 126288
[ 2812.200182][T14991] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 2812.219416][T14991] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 2812.232852][T14991] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 2812.242548][ T1253] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 2812.248867][ T1106] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=1106,uid=0
[ 2812.253810][ T1253] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2812.292435][ T1253] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 2812.309827][ T1253] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 2812.316831][ T1253] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2812.355367][ T1106] Memory cgroup out of memory: Killed process 1106 (syz-executor.0) total-vm:50568kB, anon-rss:364kB, file-rss:8960kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:0
[ 2812.384617][ T1253] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 2812.449535][ T1133] device veth0_macvtap entered promiscuous mode
[ 2812.464084][ T1133] device veth1_macvtap entered promiscuous mode
[ 2812.579797][ T1226] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2812.834643][ T1253] device hsr_slave_0 entered promiscuous mode
[ 2812.850156][ T1253] device hsr_slave_1 entered promiscuous mode
[ 2812.868797][ T1253] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 2812.876458][ T1253] Cannot create hsr debugfs directory
21:28:01 executing program 0:
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_int(r0, &(0x7f00000000c0)='memory.max\x00', 0x2, 0x0)
getpid()
r2 = bpf$ITER_CREATE(0x21, &(0x7f0000000340), 0x8)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='blkio.bfq.io_service_time\x00', 0x26e1, 0x0)
write$cgroup_int(r3, &(0x7f0000000040), 0x12)
close(r3)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000280)='host1x_cdma_push_wide\x00', r2}, 0x10)
write$cgroup_int(r1, &(0x7f0000000040), 0x12)

[ 2812.892440][ T1226] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2812.959378][T14991] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 2812.969595][ T5120] Bluetooth: hci5: command 0x0419 tx timeout
[ 2812.976977][T14861] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2813.020706][T14861] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2813.070304][ T1133] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2813.088009][ T1133] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2813.110025][ T1133] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2813.161261][ T1133] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2813.219217][ T1133] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2813.252727][ T1133] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2813.283334][ T1133] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2813.308893][ T1133] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2813.328865][ T1133] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2813.358762][ T1133] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2813.380605][ T1133] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 2813.440009][T14991] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 2813.449663][T14991] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 2813.458474][T14991] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 2813.501354][ T1133] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2813.519336][ T1133] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2813.530345][ T1133] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2813.541150][ T1133] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2813.551514][ T1133] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2813.562263][ T1133] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2813.572542][ T1133] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2813.583256][ T1133] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2813.593513][ T1133] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2813.605842][ T1133] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2813.639825][ T1133] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 2813.663484][T20569] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 2813.695081][T20569] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 2813.711742][ T1133] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 2813.722520][ T1133] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 2813.733018][ T1133] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 2813.744941][ T1133] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 2813.893697][ T1371] syz-executor.5 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2813.904965][ T1371] CPU: 1 PID: 1371 Comm: syz-executor.5 Not tainted 6.2.0-rc2-syzkaller-00431-g0164776a2ce7 #0
[ 2813.915346][ T1371] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 2813.925442][ T1371] Call Trace:
[ 2813.928751][ T1371]  <TASK>
[ 2813.931719][ T1371]  dump_stack_lvl+0xd1/0x138
[ 2813.936370][ T1371]  dump_header+0x10b/0x85f
[ 2813.940833][ T1371]  oom_kill_process.cold+0x10/0x15
[ 2813.945989][ T1371]  out_of_memory+0x35c/0x14a0
[ 2813.950736][ T1371]  ? oom_killer_disable+0x280/0x280
[ 2813.955991][ T1371]  mem_cgroup_out_of_memory+0x206/0x270
[ 2813.957267][ T1226] netdevsim netdevsim2 netdevsim0: renamed from eth0
[ 2813.961553][ T1371]  ? mem_cgroup_margin+0x130/0x130
[ 2813.961602][ T1371]  memory_max_write+0x2f9/0x3c0
[ 2813.961634][ T1371]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 2813.961669][ T1371]  ? lock_release+0x810/0x810
[ 2813.961701][ T1371]  cgroup_file_write+0x1e2/0x770
[ 2813.961746][ T1371]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 2813.961774][ T1371]  ? kill_css+0x370/0x370
[ 2813.961803][ T1371]  ? __virt_addr_valid+0x61/0x2e0
[ 2813.961849][ T1371]  ? kill_css+0x370/0x370
[ 2813.961878][ T1371]  kernfs_fop_write_iter+0x3f1/0x600
[ 2813.961926][ T1371]  vfs_write+0x9ed/0xdd0
[ 2813.961963][ T1371]  ? kernel_write+0x630/0x630
[ 2813.962000][ T1371]  ? __fget_files+0x26a/0x440
[ 2813.962048][ T1371]  ksys_write+0x12b/0x250
[ 2813.962078][ T1371]  ? __ia32_sys_read+0xb0/0xb0
[ 2813.962111][ T1371]  ? syscall_enter_from_user_mode+0x26/0xb0
[ 2813.962153][ T1371]  do_syscall_64+0x39/0xb0
[ 2813.962194][ T1371]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2813.962223][ T1371] RIP: 0033:0x7f595508c0c9
[ 2813.962243][ T1371] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 2813.962267][ T1371] RSP: 002b:00007f5955e16168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 2814.090767][ T1371] RAX: ffffffffffffffda RBX: 00007f59551ac050 RCX: 00007f595508c0c9
[ 2814.098747][ T1371] RDX: 0000000000000012 RSI: 0000000020000040 RDI: 0000000000000005
[ 2814.106767][ T1371] RBP: 00007f59550e7ae9 R08: 0000000000000000 R09: 0000000000000000
[ 2814.114754][ T1371] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2814.122749][ T1371] R13: 00007ffc91f5927f R14: 00007f5955e16300 R15: 0000000000022000
[ 2814.130744][ T1371]  </TASK>
[ 2814.137639][ T1371] memory: usage 10660kB, limit 0kB, failcnt 889
[ 2814.157200][ T1371] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2814.180670][ T1371] Memory cgroup stats for /syz5:
[ 2814.180870][ T1371] anon 122880
[ 2814.180870][ T1371] file 10436608
[ 2814.180870][ T1371] kernel 335872
[ 2814.180870][ T1371] kernel_stack 98304
[ 2814.180870][ T1371] pagetables 81920
[ 2814.180870][ T1371] sec_pagetables 0
[ 2814.180870][ T1371] percpu 64
[ 2814.180870][ T1371] sock 0
[ 2814.180870][ T1371] vmalloc 0
[ 2814.180870][ T1371] shmem 10432512
[ 2814.180870][ T1371] zswap 0
[ 2814.180870][ T1371] zswapped 0
[ 2814.180870][ T1371] file_mapped 249856
[ 2814.180870][ T1371] file_dirty 4096
[ 2814.180870][ T1371] file_writeback 0
[ 2814.180870][ T1371] swapcached 0
[ 2814.180870][ T1371] anon_thp 0
[ 2814.180870][ T1371] file_thp 0
[ 2814.180870][ T1371] shmem_thp 0
[ 2814.180870][ T1371] inactive_anon 2162688
[ 2814.180870][ T1371] active_anon 8335360
[ 2814.180870][ T1371] inactive_file 0
[ 2814.180870][ T1371] active_file 0
[ 2814.180870][ T1371] unevictable 0
[ 2814.180870][ T1371] slab_reclaimable 42928
[ 2814.180870][ T1371] slab_unreclaimable 82440
[ 2814.180870][ T1371] slab 125368
[ 2814.290084][ T1226] netdevsim netdevsim2 netdevsim1: renamed from eth1
[ 2814.298885][ T1371] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz5,mems_allowed=0-1,oom_memcg=/syz5,task_memcg=/syz5,task=syz-executor.5,pid=1369,uid=0
[ 2814.356749][ T1253] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2814.368990][ T1371] Memory cgroup out of memory: Killed process 1369 (syz-executor.5) total-vm:54672kB, anon-rss:372kB, file-rss:8960kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000
[ 2814.416642][ T1226] netdevsim netdevsim2 netdevsim2: renamed from eth2
[ 2814.463173][ T1226] netdevsim netdevsim2 netdevsim3: renamed from eth3
[ 2814.560629][ T1253] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
21:28:03 executing program 5:
openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0)
openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
perf_event_open(0x0, 0xffffffffffffffff, 0xb, 0xffffffffffffffff, 0x0)
r1 = openat$cgroup_int(r0, &(0x7f00000000c0)='memory.max\x00', 0x2, 0x0)
getpid()
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x1f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
bpf$ITER_CREATE(0x21, &(0x7f00000002c0)={r2}, 0x8)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='blkio.bfq.io_service_time\x00', 0x26e1, 0x0)
write$cgroup_int(r3, &(0x7f0000000040), 0x12)
close(r3)
syz_open_procfs$namespace(0x0, 0x0)
write$cgroup_int(r1, &(0x7f0000000040), 0x12)

21:28:03 executing program 0:
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_int(r0, &(0x7f00000000c0)='memory.max\x00', 0x2, 0x0)
getpid()
r2 = bpf$ITER_CREATE(0x21, &(0x7f0000000340), 0x8)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='blkio.bfq.io_service_time\x00', 0x26e1, 0x0)
write$cgroup_int(r3, &(0x7f0000000040), 0x12)
close(r3)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000280)='host1x_cdma_push_wide\x00', r2}, 0x10)
write$cgroup_int(r1, &(0x7f0000000040), 0x12)

[ 2814.700261][T20562] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2814.732316][T14860] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2814.740848][T14860] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2814.799644][ T1091] syz-executor.5 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=0
[ 2814.817069][ T1091] CPU: 1 PID: 1091 Comm: syz-executor.5 Not tainted 6.2.0-rc2-syzkaller-00431-g0164776a2ce7 #0
[ 2814.827460][ T1091] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 2814.837547][ T1091] Call Trace:
[ 2814.840851][ T1091]  <TASK>
[ 2814.843798][ T1091]  dump_stack_lvl+0xd1/0x138
[ 2814.848430][ T1091]  dump_header+0x10b/0x85f
[ 2814.852888][ T1091]  oom_kill_process.cold+0x10/0x15
[ 2814.858040][ T1091]  out_of_memory+0x35c/0x14a0
[ 2814.862757][ T1091]  ? find_held_lock+0x2d/0x110
[ 2814.867560][ T1091]  ? oom_killer_disable+0x280/0x280
[ 2814.872807][ T1091]  ? find_held_lock+0x2d/0x110
[ 2814.877627][ T1091]  mem_cgroup_out_of_memory+0x206/0x270
[ 2814.883214][ T1091]  ? mem_cgroup_margin+0x130/0x130
[ 2814.888363][ T1091]  ? lock_downgrade+0x6e0/0x6e0
[ 2814.893276][ T1091]  try_charge_memcg+0xefb/0x12f0
[ 2814.898263][ T1091]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 2814.904283][ T1091]  ? get_mem_cgroup_from_objcg+0xa1/0x260
[ 2814.910431][ T1091]  ? lock_downgrade+0x6e0/0x6e0
[ 2814.915329][ T1091]  ? lock_downgrade+0x6e0/0x6e0
[ 2814.920267][ T1091]  __memcg_kmem_charge_page+0x16e/0x3b0
[ 2814.925869][ T1091]  memcg_charge_kernel_stack.part.0+0x6c/0x150
[ 2814.932064][ T1091]  copy_process+0x4e3/0x7520
[ 2814.936687][ T1091]  ? _raw_spin_unlock+0x28/0x40
[ 2814.941582][ T1091]  ? wp_page_reuse+0x197/0x570
[ 2814.946390][ T1091]  ? do_wp_page+0x844/0x3370
[ 2814.951022][ T1091]  ? __cleanup_sighand+0xb0/0xb0
[ 2814.955997][ T1091]  ? finish_mkwrite_fault+0x3d0/0x3d0
[ 2814.961418][ T1091]  ? rwlock_bug.part.0+0x90/0x90
[ 2814.962488][T32321] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2814.966367][ T1091]  ? lock_chain_count+0x20/0x20
[ 2814.966402][ T1091]  kernel_clone+0xeb/0x990
[ 2814.966434][ T1091]  ? create_io_thread+0xf0/0xf0
[ 2814.988541][ T1091]  ? find_held_lock+0x2d/0x110
[ 2814.993397][ T1091]  __do_sys_clone+0xba/0x100
[ 2814.998032][ T1091]  ? kernel_clone+0x990/0x990
[ 2815.002765][ T1091]  ? syscall_enter_from_user_mode+0x26/0xb0
[ 2815.008725][ T1091]  do_syscall_64+0x39/0xb0
[ 2815.013210][ T1091]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2815.019157][ T1091] RIP: 0033:0x7f5955089dfb
[ 2815.023608][ T1091] Code: ed 0f 85 60 01 00 00 64 4c 8b 0c 25 10 00 00 00 45 31 c0 4d 8d 91 d0 02 00 00 31 d2 31 f6 bf 11 00 20 01 b8 38 00 00 00 0f 05 <48> 3d 00 f0 ff ff 0f 87 89 00 00 00 41 89 c5 85 c0 0f 85 90 00 00
[ 2815.035194][T32321] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2815.043257][ T1091] RSP: 002b:00007ffc91f594c0 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[ 2815.043286][ T1091] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f5955089dfb
[ 2815.043303][ T1091] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011
[ 2815.043317][ T1091] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000555555f5e400
[ 2815.043330][ T1091] R10: 0000555555f5e6d0 R11: 0000000000000246 R12: 0000000000000001
[ 2815.043345][ T1091] R13: 0000000000000000 R14: 0000000000000001 R15: 00007ffc91f595a0
[ 2815.043378][ T1091]  </TASK>
[ 2815.103313][ T1091] memory: usage 10384kB, limit 0kB, failcnt 917
[ 2815.114464][ T1091] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2815.127775][ T1091] Memory cgroup stats for /syz5:
[ 2815.127986][ T1091] anon 45056
[ 2815.127986][ T1091] file 10432512
[ 2815.127986][ T1091] kernel 122880
[ 2815.127986][ T1091] kernel_stack 0
[ 2815.127986][ T1091] pagetables 8192
[ 2815.127986][ T1091] sec_pagetables 0
[ 2815.127986][ T1091] percpu 64
[ 2815.127986][ T1091] sock 0
[ 2815.127986][ T1091] vmalloc 0
[ 2815.127986][ T1091] shmem 10432512
[ 2815.127986][ T1091] zswap 0
[ 2815.127986][ T1091] zswapped 0
[ 2815.127986][ T1091] file_mapped 233472
[ 2815.127986][ T1091] file_dirty 0
[ 2815.127986][ T1091] file_writeback 0
[ 2815.127986][ T1091] swapcached 0
[ 2815.127986][ T1091] anon_thp 0
[ 2815.127986][ T1091] file_thp 0
[ 2815.127986][ T1091] shmem_thp 0
[ 2815.127986][ T1091] inactive_anon 2142208
[ 2815.127986][ T1091] active_anon 8335360
[ 2815.127986][ T1091] inactive_file 0
[ 2815.127986][ T1091] active_file 0
[ 2815.127986][ T1091] unevictable 0
[ 2815.127986][ T1091] slab_reclaimable 35176
[ 2815.127986][ T1091] slab_unreclaimable 51576
[ 2815.127986][ T1091] slab 86752
[ 2815.240673][ T1253] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2815.258226][ T1091] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz5,mems_allowed=0-1,oom_memcg=/syz5,task_memcg=/syz5,task=syz-executor.5,pid=1091,uid=0
[ 2815.283471][ T1091] Memory cgroup out of memory: Killed process 1091 (syz-executor.5) total-vm:50568kB, anon-rss:364kB, file-rss:8960kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:0
[ 2815.315034][T20562] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2815.357957][T23935] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 2815.379780][T23935] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 2815.438487][ T1253] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2815.490577][T20562] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2815.736587][T20562] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2815.930215][ T1373] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2815.941299][ T1373] CPU: 0 PID: 1373 Comm: syz-executor.3 Not tainted 6.2.0-rc2-syzkaller-00431-g0164776a2ce7 #0
[ 2815.951686][ T1373] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 2815.961778][ T1373] Call Trace:
[ 2815.965083][ T1373]  <TASK>
[ 2815.968042][ T1373]  dump_stack_lvl+0xd1/0x138
[ 2815.972686][ T1373]  dump_header+0x10b/0x85f
[ 2815.977145][ T1373]  oom_kill_process.cold+0x10/0x15
[ 2815.982311][ T1373]  out_of_memory+0x35c/0x14a0
[ 2815.987037][ T1373]  ? oom_killer_disable+0x280/0x280
[ 2815.992278][ T1373]  ? mark_held_locks+0x9f/0xe0
[ 2815.996497][ T1226] 8021q: adding VLAN 0 to HW filter on device bond0
[ 2815.997068][ T1373]  mem_cgroup_out_of_memory+0x206/0x270
[ 2816.009221][ T1373]  ? mem_cgroup_margin+0x130/0x130
[ 2816.014397][ T1373]  memory_max_write+0x2f9/0x3c0
[ 2816.019292][ T1373]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 2816.025385][ T1373]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 2816.031494][ T1373]  cgroup_file_write+0x1e2/0x770
[ 2816.036453][ T1373]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 2816.042538][ T1373]  ? kill_css+0x370/0x370
[ 2816.046904][ T1373]  ? __virt_addr_valid+0x61/0x2e0
[ 2816.051967][ T1373]  ? kill_css+0x370/0x370
[ 2816.056311][ T1373]  kernfs_fop_write_iter+0x3f1/0x600
[ 2816.061625][ T1373]  vfs_write+0x9ed/0xdd0
[ 2816.065895][ T1373]  ? kernel_write+0x630/0x630
[ 2816.070608][ T1373]  ? __fget_files+0x26a/0x440
[ 2816.075315][ T1373]  ksys_write+0x12b/0x250
[ 2816.079660][ T1373]  ? __ia32_sys_read+0xb0/0xb0
[ 2816.084439][ T1373]  ? syscall_enter_from_user_mode+0x26/0xb0
[ 2816.090357][ T1373]  do_syscall_64+0x39/0xb0
[ 2816.094795][ T1373]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2816.100704][ T1373] RIP: 0033:0x7f6d3fe8c0c9
[ 2816.105132][ T1373] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 2816.124751][ T1373] RSP: 002b:00007f6d40bed168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 2816.133177][ T1373] RAX: ffffffffffffffda RBX: 00007f6d3ffabf80 RCX: 00007f6d3fe8c0c9
[ 2816.141156][ T1373] RDX: 0000000000000012 RSI: 0000000020000040 RDI: 0000000000000005
[ 2816.149158][ T1373] RBP: 00007f6d3fee7ae9 R08: 0000000000000000 R09: 0000000000000000
[ 2816.157156][ T1373] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2816.165137][ T1373] R13: 00007ffdabf5665f R14: 00007f6d40bed300 R15: 0000000000022000
[ 2816.173137][ T1373]  </TASK>
[ 2816.249311][ T1373] memory: usage 10604kB, limit 0kB, failcnt 867
[ 2816.305758][ T1373] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2816.368673][ T1226] 8021q: adding VLAN 0 to HW filter on device team0
[ 2816.395655][T30778] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 2816.406396][ T1373] Memory cgroup stats for /syz3:
[ 2816.406617][ T1373] anon 114688
[ 2816.406617][ T1373] file 10448896
[ 2816.406617][ T1373] kernel 290816
[ 2816.406617][ T1373] kernel_stack 65536
[ 2816.406617][ T1373] pagetables 81920
[ 2816.406617][ T1373] sec_pagetables 0
[ 2816.406617][ T1373] percpu 64
[ 2816.406617][ T1373] sock 0
[ 2816.406617][ T1373] vmalloc 0
[ 2816.406617][ T1373] shmem 10448896
[ 2816.406617][ T1373] zswap 0
[ 2816.406617][ T1373] zswapped 0
[ 2816.406617][ T1373] file_mapped 331776
[ 2816.406617][ T1373] file_dirty 0
[ 2816.406617][ T1373] file_writeback 0
[ 2816.406617][ T1373] swapcached 0
[ 2816.406617][ T1373] anon_thp 0
[ 2816.406617][ T1373] file_thp 0
[ 2816.406617][ T1373] shmem_thp 0
[ 2816.406617][ T1373] inactive_anon 2211840
[ 2816.406617][ T1373] active_anon 8351744
[ 2816.406617][ T1373] inactive_file 0
[ 2816.406617][ T1373] active_file 0
[ 2816.406617][ T1373] unevictable 0
[ 2816.406617][ T1373] slab_reclaimable 37864
[ 2816.406617][ T1373] slab_unreclaimable 73104
[ 2816.406617][ T1373] slab 110968
[ 2816.509457][T30778] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 2816.549100][ T1373] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=1133,uid=0
[ 2816.594237][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 2816.603090][ T1373] Memory cgroup out of memory: Killed process 1133 (syz-executor.3) total-vm:50568kB, anon-rss:364kB, file-rss:9088kB, shmem-rss:0kB, UID:0 pgtables:76kB oom_score_adj:0
[ 2816.622637][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 2816.631898][   T22] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2816.639067][   T22] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 2816.655436][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 2816.664396][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 2816.673492][   T22] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2816.680698][   T22] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 2816.700392][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 2816.709654][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 2816.718688][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 2816.739690][ T1253] netdevsim netdevsim4 netdevsim0: renamed from eth0
[ 2816.865585][T23935] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 2816.874048][T23935] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 2816.894294][T23935] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 2816.904030][T23935] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 2816.913483][T23935] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 2816.924731][ T1253] netdevsim netdevsim4 netdevsim1: renamed from eth1
[ 2816.953349][ T1226] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 2816.979855][ T1226] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 2817.101612][T21233] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 2817.120158][T21233] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 2817.128622][ T1253] netdevsim netdevsim4 netdevsim2: renamed from eth2
21:28:06 executing program 3:
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
perf_event_open(0x0, 0xffffffffffffffff, 0xb, 0xffffffffffffffff, 0x0)
r1 = openat$cgroup_int(r0, &(0x7f00000000c0)='memory.max\x00', 0x2, 0x0)
getpid()
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x1f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='blkio.bfq.io_service_time\x00', 0x26e1, 0x0)
write$cgroup_int(r2, &(0x7f0000000040), 0x12)
close(r2)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000280)='host1x_cdma_push_wide\x00'}, 0x10)
write$cgroup_int(r1, &(0x7f0000000040), 0x12)

21:28:06 executing program 1:
r0 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x26e1, 0x0)
perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x6, 0x401}, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000180)={0x0, 0x80, 0x0, 0x7c, 0x4, 0xd2, 0x0, 0x5, 0x0, 0x74d4e3ef7733d4ea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x26, 0x0, @perf_bp={0x0}, 0x210, 0x0, 0x1f, 0x3, 0x0, 0x0, 0xffff}, 0x0, 0x0, 0xffffffffffffffff, 0x9)
openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
perf_event_open(&(0x7f0000000200)={0x4, 0x80, 0x9, 0x0, 0x0, 0x5, 0x0, 0xffffffff, 0x800, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x2, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x2, 0x2, @perf_bp={&(0x7f0000000100), 0x5}, 0x0, 0x100000000, 0x2a, 0x0, 0x8, 0x40, 0x0, 0x0, 0x3f, 0x0, 0x4000000000000000}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
recvmsg(0xffffffffffffffff, 0x0, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f00000002c0)='cpuacct.usage_percpu_sys\x00', 0x0, 0x0)
perf_event_open$cgroup(&(0x7f00000003c0)={0x4, 0x80, 0x1, 0xff, 0x1, 0x5, 0x0, 0x800000000000008, 0x21001, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x3, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0xffff0000, 0x4, @perf_bp={&(0x7f0000000380), 0x8}, 0x40ae, 0xe, 0x78d8, 0x5, 0x7, 0x7, 0x1ff}, 0xffffffffffffffff, 0xc, r0, 0xc)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000018c00)={0x18, 0x3, &(0x7f0000000780)=ANY=[@ANYBLOB="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"], &(0x7f0000000440)='syzkaller\x00', 0x4, 0xb0, &(0x7f0000000480)=""/176, 0x0, 0x0, '\x00', 0x0, 0x0, r1, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
r3 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='rcu_utilization\x00', r2}, 0x10)
r4 = perf_event_open$cgroup(&(0x7f0000000080)={0x4, 0x80, 0x81, 0x5, 0x6, 0x0, 0x0, 0x8000000000000000, 0x848, 0x4, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x3, 0x0, @perf_config_ext={0x912410d}, 0x8800, 0xffffffff, 0x7, 0x6, 0x3f, 0x7, 0x8dd, 0x0, 0x5, 0x0, 0x1}, 0xffffffffffffffff, 0xb, 0xffffffffffffffff, 0x9)
ioctl$PERF_EVENT_IOC_SET_OUTPUT(0xffffffffffffffff, 0x2405, r4)
r5 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000540)='./cgroup.cpu/syz1\x00', 0x200002, 0x0)
openat$cgroup_ro(r5, &(0x7f0000000640)='cgroup.stat\x00', 0x0, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r4, 0x40082404, &(0x7f0000000580)=0xffffffffffffff7f)
r6 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000000)='cpuacct.usage_percpu_sys\x00', 0x26e1, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r6, 0x40086607, &(0x7f0000000040))
r7 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x26e1, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000018c00)={0x18, 0x3, &(0x7f0000000300)=ANY=[@ANYRES64=r1], 0x0, 0x4, 0xb0, &(0x7f0000000480)=""/176, 0x40f00, 0x5, '\x00', 0x0, 0x0, r7, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x0, 0x204d, &(0x7f00000005c0)=ANY=[@ANYRES32], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x18, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000740)={0x0, 0x3}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000002c0)=[0xffffffffffffffff, r7, 0xffffffffffffffff]}, 0x80)
write$cgroup_int(r7, &(0x7f0000000280)=0x1ff, 0x12)
r8 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000001e00)={&(0x7f0000001dc0)='./file0\x00', 0x0, 0x10}, 0x10)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000001e80)=@bpf_lsm={0x1d, 0x2, &(0x7f0000000700)=@raw=[@map_idx={0x18, 0x4}], &(0x7f0000002340)='GPL\x00', 0x5, 0x33, &(0x7f0000002380)=""/51, 0x41100, 0x2, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f00000023c0)={0x5, 0x4}, 0x8, 0x10, &(0x7f0000002400)={0x3, 0xa, 0x6, 0xae2e}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000002500)=[r0, r8, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}, 0x80)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={0xffffffffffffffff, 0x18000000000002a0, 0x0, 0x0, &(0x7f00000001c0), 0x0, 0x0, 0xe8030000, 0x0, 0x0, 0x0, 0x0}, 0x48)
ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x89f2, &(0x7f0000000080)='ip6tnl0\x00')
socketpair(0x1e, 0x5, 0x20, &(0x7f0000000600))
socketpair(0x1, 0x1, 0x0, &(0x7f0000000740)={0xffffffffffffffff, <r9=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r9, 0x89f1, &(0x7f0000000080))
close(r3)

21:28:06 executing program 5:
openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0)
openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
perf_event_open(0x0, 0xffffffffffffffff, 0xb, 0xffffffffffffffff, 0x0)
r1 = openat$cgroup_int(r0, &(0x7f00000000c0)='memory.max\x00', 0x2, 0x0)
getpid()
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x1f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000300)='cpuacct.usage_all\x00', 0x0, 0x0)
bpf$ITER_CREATE(0x21, &(0x7f00000002c0), 0x8)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='blkio.bfq.io_service_time\x00', 0x26e1, 0x0)
write$cgroup_int(r2, &(0x7f0000000040), 0x12)
close(r2)
syz_open_procfs$namespace(0x0, 0x0)
write$cgroup_int(r1, &(0x7f0000000040), 0x12)

[ 2817.150804][ T1253] netdevsim netdevsim4 netdevsim3: renamed from eth3
[ 2817.516788][T14879] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 2817.526887][T14879] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 2817.534968][T14879] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 2817.543353][T14879] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[ 2817.550754][T14879] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 2817.739469][ T1253] 8021q: adding VLAN 0 to HW filter on device bond0
[ 2818.004400][ T1253] 8021q: adding VLAN 0 to HW filter on device team0
[ 2818.030070][T17500] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 2818.038121][T17500] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 2818.141809][T30778] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 2818.149928][T30778] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 2818.157368][T30778] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 2818.166593][T30778] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 2818.175652][T30778] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2818.182812][T30778] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 2818.190868][T30778] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 2818.199762][T30778] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 2818.208123][T30778] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2818.215260][T30778] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 2818.223950][T30778] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 2818.236481][ T1226] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 2818.289362][T30778] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 2818.353760][T14991] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 2818.374664][T14991] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 2818.387220][T14991] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 2818.438696][T17500] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 2818.447360][T17500] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 2818.456348][T17500] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 2818.467340][T17500] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 2818.476087][T17500] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 2818.496613][ T1253] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 2818.510937][ T1253] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 2818.532502][ T1226] device veth0_vlan entered promiscuous mode
[ 2818.542602][T23940] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 2818.551387][T23940] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 2818.561380][T23940] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 2818.570193][T23940] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 2818.612947][T23935] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 2818.629616][T23935] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 2818.644055][ T1226] device veth1_vlan entered promiscuous mode
[ 2818.754350][ T1394] chnl_net:caif_netlink_parms(): no params data found
[ 2818.774019][T17605] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 2818.791457][T17605] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 2818.828654][ T1226] device veth0_macvtap entered promiscuous mode
[ 2818.866319][ T1226] device veth1_macvtap entered promiscuous mode
[ 2819.042640][ T1226] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2819.078771][ T1226] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2819.088632][ T1226] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2819.135310][ T1226] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2819.158862][ T1226] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2819.183463][ T1226] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2819.200304][ T1226] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2819.219548][ T1226] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2819.241166][ T1226] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2819.264604][ T1226] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2819.280089][ T1226] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2819.299087][T14879] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 2819.308576][T14879] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 2819.313401][ T1226] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2819.319456][T14879] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 2819.341744][ T1226] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 2819.361722][T14879] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 2819.373087][T14879] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[ 2819.381482][T14879] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 2819.514911][T21233] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 2819.523442][T21233] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 2819.532102][T21233] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 2819.541069][T21233] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 2819.553421][ T1226] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2819.567792][ T1226] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2819.577793][ T1226] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2819.588924][ T1226] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2819.600367][ T1226] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2819.611040][T17544] Bluetooth: hci0: command 0x0409 tx timeout
[ 2819.611624][ T1226] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2819.627674][ T1226] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2819.638594][ T1226] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2819.649371][ T1226] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2819.660215][ T1226] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2819.672001][ T1226] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2819.682893][ T1226] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2819.695399][ T1226] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 2819.737083][ T1394] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2819.758916][ T1394] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2819.779159][ T1394] device bridge_slave_0 entered promiscuous mode
[ 2819.811926][T21233] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 2819.821332][T21233] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 2819.840929][ T1226] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 2819.868946][ T1226] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 2819.890454][ T1226] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 2819.908868][ T1226] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 2819.969170][ T1394] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2819.976324][ T1394] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2819.997535][ T1394] device bridge_slave_1 entered promiscuous mode
[ 2820.018522][T21233] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 2820.026699][T21233] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 2820.060773][ T1253] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 2820.183536][ T1394] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 2820.222071][T20562] device hsr_slave_0 left promiscuous mode
[ 2820.248257][T20562] device hsr_slave_1 left promiscuous mode
[ 2820.258708][T20562] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 2820.267040][T20562] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 2820.282379][T20562] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 2820.291895][T20562] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 2820.301295][T20562] device bridge_slave_1 left promiscuous mode
[ 2820.307471][T20562] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2820.316116][T20562] device bridge_slave_0 left promiscuous mode
[ 2820.322656][T20562] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2820.335917][T20562] device hsr_slave_0 left promiscuous mode
[ 2820.342382][T20562] device hsr_slave_1 left promiscuous mode
[ 2820.348614][T20562] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 2820.357130][T20562] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 2820.366779][T20562] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 2820.374571][T20562] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 2820.383914][T20562] device bridge_slave_1 left promiscuous mode
[ 2820.390636][T20562] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2820.400321][T20562] device bridge_slave_0 left promiscuous mode
[ 2820.406546][T20562] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2820.417529][T20562] device hsr_slave_0 left promiscuous mode
[ 2820.424344][T20562] device hsr_slave_1 left promiscuous mode
[ 2820.431024][T20562] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 2820.438478][T20562] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 2820.447213][T20562] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 2820.454768][T20562] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 2820.466683][T20562] device bridge_slave_1 left promiscuous mode
[ 2820.473260][T20562] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2820.482476][T20562] device bridge_slave_0 left promiscuous mode
[ 2820.488649][T20562] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2820.517256][T20562] device veth1_macvtap left promiscuous mode
[ 2820.523710][T20562] device veth0_macvtap left promiscuous mode
[ 2820.531329][T20562] device veth1_vlan left promiscuous mode
[ 2820.537131][T20562] device veth0_vlan left promiscuous mode
[ 2820.545018][T20562] device veth1_macvtap left promiscuous mode
[ 2820.551274][T20562] device veth0_macvtap left promiscuous mode
[ 2820.557347][T20562] device veth1_vlan left promiscuous mode
[ 2820.563437][T20562] device veth0_vlan left promiscuous mode
[ 2820.573721][T20562] device veth1_macvtap left promiscuous mode
[ 2820.580098][T20562] device veth0_macvtap left promiscuous mode
[ 2820.586321][T20562] device veth1_vlan left promiscuous mode
[ 2820.592856][T20562] device veth0_vlan left promiscuous mode
[ 2820.988212][T20562] team0 (unregistering): Port device team_slave_1 removed
[ 2821.003829][T20562] team0 (unregistering): Port device team_slave_0 removed
[ 2821.016905][T20562] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 2821.037640][T20562] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 2821.108547][T20562] bond0 (unregistering): Released all slaves
[ 2821.263334][T20562] team0 (unregistering): Port device team_slave_1 removed
[ 2821.275677][T20562] team0 (unregistering): Port device team_slave_0 removed
[ 2821.297754][T20562] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 2821.316218][T20562] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 2821.395716][T20562] bond0 (unregistering): Released all slaves
[ 2821.449533][T14879] Bluetooth: hci2: command 0x0409 tx timeout
[ 2821.564373][T20562] team0 (unregistering): Port device team_slave_1 removed
[ 2821.577988][T20562] team0 (unregistering): Port device team_slave_0 removed
[ 2821.595034][T20562] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 2821.608198][T20562] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 2821.685070][T20562] bond0 (unregistering): Released all slaves
[ 2821.699117][T14879] Bluetooth: hci0: command 0x041b tx timeout
[ 2821.751827][ T1394] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 2821.811653][T14860] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2821.835894][T14860] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2821.837632][ T1394] team0: Port device team_slave_0 added
[ 2821.884527][ T1394] team0: Port device team_slave_1 added
[ 2821.900989][T30465] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 2822.052653][T10995] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2822.053355][ T1394] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 2822.068267][T10995] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2822.077267][ T1394] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2822.104348][ T1394] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 2822.144776][T30559] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 2822.167327][ T1394] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 2822.176445][ T1394] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2822.204665][ T1394] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 2822.398688][ T1394] device hsr_slave_0 entered promiscuous mode
[ 2822.410707][ T1394] device hsr_slave_1 entered promiscuous mode
[ 2822.480126][ T1394] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 2822.490798][ T1394] Cannot create hsr debugfs directory
[ 2822.501899][ T1427] chnl_net:caif_netlink_parms(): no params data found
[ 2822.622651][ T1456] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2822.639715][ T1456] CPU: 0 PID: 1456 Comm: syz-executor.2 Not tainted 6.2.0-rc2-syzkaller-00431-g0164776a2ce7 #0
[ 2822.650113][ T1456] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 2822.660208][ T1456] Call Trace:
[ 2822.663513][ T1456]  <TASK>
[ 2822.666471][ T1456]  dump_stack_lvl+0xd1/0x138
[ 2822.671115][ T1456]  dump_header+0x10b/0x85f
[ 2822.675574][ T1456]  oom_kill_process.cold+0x10/0x15
[ 2822.680742][ T1456]  out_of_memory+0x35c/0x14a0
[ 2822.685475][ T1456]  ? oom_killer_disable+0x280/0x280
[ 2822.690714][ T1456]  ? mark_held_locks+0x9f/0xe0
[ 2822.695524][ T1456]  mem_cgroup_out_of_memory+0x206/0x270
[ 2822.701114][ T1456]  ? mem_cgroup_margin+0x130/0x130
[ 2822.706285][ T1456]  memory_max_write+0x2f9/0x3c0
[ 2822.711185][ T1456]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 2822.717300][ T1456]  ? lock_release+0x810/0x810
[ 2822.722027][ T1456]  cgroup_file_write+0x1e2/0x770
[ 2822.727015][ T1456]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 2822.733132][ T1456]  ? kill_css+0x370/0x370
[ 2822.737511][ T1456]  ? __virt_addr_valid+0x61/0x2e0
[ 2822.742684][ T1456]  ? kill_css+0x370/0x370
[ 2822.747064][ T1456]  kernfs_fop_write_iter+0x3f1/0x600
[ 2822.752416][ T1456]  vfs_write+0x9ed/0xdd0
[ 2822.756718][ T1456]  ? kernel_write+0x630/0x630
[ 2822.761463][ T1456]  ? kasan_check_range+0x34/0x190
[ 2822.766549][ T1456]  ksys_write+0x12b/0x250
[ 2822.770918][ T1456]  ? __ia32_sys_read+0xb0/0xb0
[ 2822.775730][ T1456]  ? syscall_enter_from_user_mode+0x26/0xb0
[ 2822.781678][ T1456]  do_syscall_64+0x39/0xb0
[ 2822.786155][ T1456]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2822.792093][ T1456] RIP: 0033:0x7febfde8c0c9
[ 2822.796539][ T1456] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 2822.816189][ T1456] RSP: 002b:00007febfec26168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 2822.824650][ T1456] RAX: ffffffffffffffda RBX: 00007febfdfabf80 RCX: 00007febfde8c0c9
[ 2822.832666][ T1456] RDX: 0000000000000012 RSI: 0000000020000040 RDI: 0000000000000005
[ 2822.840679][ T1456] RBP: 00007febfdee7ae9 R08: 0000000000000000 R09: 0000000000000000
[ 2822.848697][ T1456] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2822.856705][ T1456] R13: 00007fffced9eedf R14: 00007febfec26300 R15: 0000000000022000
[ 2822.864747][ T1456]  </TASK>
[ 2822.895710][ T1456] memory: usage 10636kB, limit 0kB, failcnt 1250
[ 2822.903678][ T1456] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2822.913627][ T1456] Memory cgroup stats for /syz2:
[ 2822.915302][ T1456] anon 114688
[ 2822.915302][ T1456] file 10444800
[ 2822.915302][ T1456] kernel 315392
[ 2822.915302][ T1456] kernel_stack 65536
[ 2822.915302][ T1456] pagetables 81920
[ 2822.915302][ T1456] sec_pagetables 0
[ 2822.915302][ T1456] percpu 64
[ 2822.915302][ T1456] sock 0
[ 2822.915302][ T1456] vmalloc 0
[ 2822.915302][ T1456] shmem 10440704
[ 2822.915302][ T1456] zswap 0
[ 2822.915302][ T1456] zswapped 0
[ 2822.915302][ T1456] file_mapped 192512
[ 2822.915302][ T1456] file_dirty 0
[ 2822.915302][ T1456] file_writeback 0
[ 2822.915302][ T1456] swapcached 0
[ 2822.915302][ T1456] anon_thp 0
[ 2822.915302][ T1456] file_thp 0
[ 2822.915302][ T1456] shmem_thp 0
[ 2822.915302][ T1456] inactive_anon 114688
[ 2822.915302][ T1456] active_anon 10440704
[ 2822.915302][ T1456] inactive_file 0
[ 2822.915302][ T1456] active_file 4096
[ 2822.915302][ T1456] unevictable 0
[ 2822.915302][ T1456] slab_reclaimable 41480
[ 2822.915302][ T1456] slab_unreclaimable 99816
[ 2822.915302][ T1456] slab 141296
[ 2823.018311][ T1427] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2823.031651][ T1427] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2823.033570][ T1456] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=1455,uid=0
[ 2823.050177][ T1427] device bridge_slave_0 entered promiscuous mode
[ 2823.084717][ T1456] Memory cgroup out of memory: Killed process 1455 (syz-executor.2) total-vm:56588kB, anon-rss:500kB, file-rss:8960kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
21:28:12 executing program 2:
openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
perf_event_open(0x0, 0xffffffffffffffff, 0xb, 0xffffffffffffffff, 0x0)
r1 = openat$cgroup_int(r0, &(0x7f00000000c0)='memory.max\x00', 0x2, 0x0)
getpid()
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x1f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='blkio.bfq.io_service_time\x00', 0x26e1, 0x0)
write$cgroup_int(r2, &(0x7f0000000040), 0x12)
close(r2)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000280)='host1x_cdma_push_wide\x00'}, 0x10)
write$cgroup_int(r1, &(0x7f0000000040), 0x12)

21:28:12 executing program 3:
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
perf_event_open(0x0, 0xffffffffffffffff, 0xb, 0xffffffffffffffff, 0x0)
r1 = openat$cgroup_int(r0, &(0x7f00000000c0)='memory.max\x00', 0x2, 0x0)
getpid()
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x1f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='blkio.bfq.io_service_time\x00', 0x26e1, 0x0)
write$cgroup_int(r2, &(0x7f0000000040), 0x12)
close(r2)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000280)='host1x_cdma_push_wide\x00'}, 0x10)
write$cgroup_int(r1, &(0x7f0000000040), 0x12)

[ 2823.122373][ T1427] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2823.153369][ T1427] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2823.201063][ T1427] device bridge_slave_1 entered promiscuous mode
[ 2823.227776][T17500] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 2823.259700][T17500] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 2823.282327][ T1226] syz-executor.2 invoked oom-killer: gfp_mask=0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), order=0, oom_score_adj=0
[ 2823.312077][ T1226] CPU: 0 PID: 1226 Comm: syz-executor.2 Not tainted 6.2.0-rc2-syzkaller-00431-g0164776a2ce7 #0
[ 2823.322469][ T1226] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 2823.332556][ T1226] Call Trace:
[ 2823.335861][ T1226]  <TASK>
[ 2823.338822][ T1226]  dump_stack_lvl+0xd1/0x138
[ 2823.343457][ T1226]  dump_header+0x10b/0x85f
[ 2823.347913][ T1226]  oom_kill_process.cold+0x10/0x15
[ 2823.353064][ T1226]  out_of_memory+0x35c/0x14a0
[ 2823.357785][ T1226]  ? find_held_lock+0x2d/0x110
[ 2823.362595][ T1226]  ? oom_killer_disable+0x280/0x280
[ 2823.367845][ T1226]  ? find_held_lock+0x2d/0x110
[ 2823.372670][ T1226]  mem_cgroup_out_of_memory+0x206/0x270
[ 2823.378255][ T1226]  ? mem_cgroup_margin+0x130/0x130
[ 2823.383401][ T1226]  ? lock_downgrade+0x6e0/0x6e0
[ 2823.388308][ T1226]  try_charge_memcg+0xefb/0x12f0
[ 2823.393296][ T1226]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 2823.399317][ T1226]  ? get_mem_cgroup_from_objcg+0xa1/0x260
[ 2823.405075][ T1226]  ? lock_downgrade+0x6e0/0x6e0
[ 2823.409976][ T1226]  ? lock_downgrade+0x6e0/0x6e0
[ 2823.414894][ T1226]  __memcg_kmem_charge_page+0x16e/0x3b0
[ 2823.420482][ T1226]  __alloc_pages+0x1f3/0x5b0
[ 2823.425114][ T1226]  ? __alloc_pages_slowpath.constprop.0+0x23d0/0x23d0
[ 2823.431935][ T1226]  ? copy_page_range+0x1ff7/0x3b40
[ 2823.437104][ T1226]  alloc_pages+0x1aa/0x270
[ 2823.441561][ T1226]  get_zeroed_page+0x14/0x40
[ 2823.446185][ T1226]  __pud_alloc+0x3b/0x180
[ 2823.450556][ T1226]  copy_page_range+0x246b/0x3b40
[ 2823.455545][ T1226]  ? mas_wr_modify+0x2da/0x16d0
[ 2823.460456][ T1226]  ? mas_store+0x206/0x2e0
[ 2823.464905][ T1226]  ? handle_mm_fault+0x850/0x850
[ 2823.469915][ T1226]  ? anon_vma_fork+0xba/0x630
[ 2823.474667][ T1226]  dup_mmap+0xc10/0x10b0
[ 2823.478954][ T1226]  ? replace_mm_exe_file+0x4b0/0x4b0
[ 2823.484271][ T1226]  ? lock_downgrade+0x6e0/0x6e0
[ 2823.489159][ T1226]  ? _raw_spin_unlock_irqrestore+0x54/0x70
[ 2823.495046][ T1226]  ? mm_init+0x8e0/0xc10
[ 2823.499319][ T1226]  copy_process+0x440f/0x7520
[ 2823.504030][ T1226]  ? _raw_spin_unlock+0x28/0x40
[ 2823.508911][ T1226]  ? wp_page_reuse+0x197/0x570
[ 2823.513723][ T1226]  ? __cleanup_sighand+0xb0/0xb0
[ 2823.518700][ T1226]  ? finish_mkwrite_fault+0x3d0/0x3d0
[ 2823.524124][ T1226]  ? rwlock_bug.part.0+0x90/0x90
[ 2823.528942][T14879] Bluetooth: hci2: command 0x041b tx timeout
[ 2823.529072][ T1226]  ? lock_chain_count+0x20/0x20
[ 2823.539922][ T1226]  kernel_clone+0xeb/0x990
[ 2823.544379][ T1226]  ? create_io_thread+0xf0/0xf0
[ 2823.549274][ T1226]  ? find_held_lock+0x2d/0x110
[ 2823.554095][ T1226]  __do_sys_clone+0xba/0x100
[ 2823.558727][ T1226]  ? kernel_clone+0x990/0x990
[ 2823.563457][ T1226]  ? syscall_enter_from_user_mode+0x26/0xb0
[ 2823.569393][ T1226]  do_syscall_64+0x39/0xb0
[ 2823.573853][ T1226]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2823.579776][ T1226] RIP: 0033:0x7febfde89dfb
[ 2823.584214][ T1226] Code: ed 0f 85 60 01 00 00 64 4c 8b 0c 25 10 00 00 00 45 31 c0 4d 8d 91 d0 02 00 00 31 d2 31 f6 bf 11 00 20 01 b8 38 00 00 00 0f 05 <48> 3d 00 f0 ff ff 0f 87 89 00 00 00 41 89 c5 85 c0 0f 85 90 00 00
[ 2823.603864][ T1226] RSP: 002b:00007fffced9f120 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[ 2823.612318][ T1226] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007febfde89dfb
[ 2823.620323][ T1226] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011
[ 2823.628324][ T1226] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000555555fdd400
[ 2823.636325][ T1226] R10: 0000555555fdd6d0 R11: 0000000000000246 R12: 0000000000000001
[ 2823.644324][ T1226] R13: 0000000000000000 R14: 0000000000000001 R15: 00007fffced9f200
[ 2823.652345][ T1226]  </TASK>
[ 2823.690139][ T1226] memory: usage 10424kB, limit 0kB, failcnt 1278
[ 2823.696660][ T1226] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2823.703894][ T1226] Memory cgroup stats for /syz2:
[ 2823.704085][ T1226] anon 40960
[ 2823.704085][ T1226] file 10444800
[ 2823.704085][ T1226] kernel 188416
[ 2823.704085][ T1226] kernel_stack 32768
[ 2823.704085][ T1226] pagetables 8192
[ 2823.704085][ T1226] sec_pagetables 0
[ 2823.704085][ T1226] percpu 128
[ 2823.704085][ T1226] sock 0
[ 2823.704085][ T1226] vmalloc 0
[ 2823.704085][ T1226] shmem 10440704
[ 2823.704085][ T1226] zswap 0
[ 2823.704085][ T1226] zswapped 0
[ 2823.704085][ T1226] file_mapped 184320
[ 2823.704085][ T1226] file_dirty 0
[ 2823.704085][ T1226] file_writeback 0
[ 2823.704085][ T1226] swapcached 0
[ 2823.704085][ T1226] anon_thp 0
[ 2823.704085][ T1226] file_thp 0
[ 2823.704085][ T1226] shmem_thp 0
[ 2823.704085][ T1226] inactive_anon 40960
[ 2823.704085][ T1226] active_anon 10440704
[ 2823.704085][ T1226] inactive_file 0
[ 2823.704085][ T1226] active_file 4096
[ 2823.704085][ T1226] unevictable 0
[ 2823.704085][ T1226] slab_reclaimable 37192
[ 2823.704085][ T1226] slab_unreclaimable 92360
[ 2823.704085][ T1226] slab 129552
[ 2823.714482][T30559] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 2823.811178][T17544] Bluetooth: hci0: command 0x040f tx timeout
[ 2823.846562][ T1226] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=1226,uid=0
[ 2823.864007][ T1226] Memory cgroup out of memory: Killed process 1226 (syz-executor.2) total-vm:50568kB, anon-rss:364kB, file-rss:8960kB, shmem-rss:0kB, UID:0 pgtables:68kB oom_score_adj:0
[ 2823.954875][T30559] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 2823.977910][ T1427] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 2824.001996][ T1253] device veth0_vlan entered promiscuous mode
[ 2824.075366][T30778] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 2824.092137][T30778] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 2824.109591][ T1427] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 2824.300065][ T1253] device veth1_vlan entered promiscuous mode
[ 2824.473404][ T1427] team0: Port device team_slave_0 added
[ 2824.607621][ T1427] team0: Port device team_slave_1 added
[ 2824.678592][ T1253] device veth0_macvtap entered promiscuous mode
[ 2824.922620][ T1427] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 2824.929968][ T1427] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2824.998819][ T1427] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 2825.023763][T23935] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 2825.037906][T23935] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 2825.050165][T23935] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 2825.063058][ T1253] device veth1_macvtap entered promiscuous mode
[ 2825.089778][ T1427] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 2825.096812][ T1427] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2825.198961][ T1427] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 2825.240080][T21233] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 2825.301928][ T1253] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2825.321430][ T1253] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2825.339091][ T1253] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2825.358437][T14879] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 2825.367915][T14879] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 2825.370133][ T1253] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2825.376492][T14879] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 2825.401649][ T1253] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2825.401660][T14879] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 2825.412774][T14879] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[ 2825.426640][T14879] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 2825.440093][ T1253] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2825.457662][ T1253] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2825.468401][ T1253] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2825.482352][ T1253] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 2825.518841][T30559] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 2825.540228][T30559] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 2825.590635][ T1427] device hsr_slave_0 entered promiscuous mode
[ 2825.611226][T14879] Bluetooth: hci2: command 0x040f tx timeout
[ 2825.619326][ T1427] device hsr_slave_1 entered promiscuous mode
[ 2825.638695][ T1427] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 2825.646639][ T1427] Cannot create hsr debugfs directory
[ 2825.711874][ T1253] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2825.728814][ T1253] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2825.738655][ T1253] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2825.792347][ T1253] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2825.821939][ T1253] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2825.842387][ T1253] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2825.848843][T14879] Bluetooth: hci0: command 0x0419 tx timeout
[ 2825.868815][ T1253] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2825.908765][ T1253] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2825.960936][ T1253] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 2825.994718][T30778] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 2826.029707][T30778] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 2826.047338][ T1253] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 2826.078827][ T1253] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 2826.087610][ T1253] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 2826.128812][ T1253] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 2826.414005][ T1394] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 2826.505045][ T1394] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 2826.555220][ T1394] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 2826.598442][ T1394] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 2826.649621][T14833] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2826.657725][T14833] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2826.817265][ T1427] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2826.881044][T14991] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 2826.903141][ T1492] chnl_net:caif_netlink_parms(): no params data found
[ 2826.943909][T23855] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2826.963379][ T1427] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2826.968841][T23855] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2827.017201][T17500] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 2827.152703][ T1427] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2827.349745][ T1427] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2827.450331][T14879] Bluetooth: hci3: command 0x0409 tx timeout
[ 2827.460698][ T1519] syz-executor.4 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2827.489096][ T1519] CPU: 0 PID: 1519 Comm: syz-executor.4 Not tainted 6.2.0-rc2-syzkaller-00431-g0164776a2ce7 #0
[ 2827.499496][ T1519] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 2827.509587][ T1519] Call Trace:
[ 2827.512885][ T1519]  <TASK>
[ 2827.515838][ T1519]  dump_stack_lvl+0xd1/0x138
[ 2827.520477][ T1519]  dump_header+0x10b/0x85f
[ 2827.524926][ T1519]  oom_kill_process.cold+0x10/0x15
[ 2827.530055][ T1519]  out_of_memory+0x35c/0x14a0
[ 2827.534754][ T1519]  ? oom_killer_disable+0x280/0x280
[ 2827.539975][ T1519]  mem_cgroup_out_of_memory+0x206/0x270
[ 2827.545537][ T1519]  ? mem_cgroup_margin+0x130/0x130
[ 2827.550674][ T1519]  memory_max_write+0x2f9/0x3c0
[ 2827.555543][ T1519]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 2827.561645][ T1519]  ? lock_release+0x810/0x810
[ 2827.566341][ T1519]  cgroup_file_write+0x1e2/0x770
[ 2827.571316][ T1519]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 2827.577424][ T1519]  ? kill_css+0x370/0x370
[ 2827.581783][ T1519]  ? __virt_addr_valid+0x61/0x2e0
[ 2827.586861][ T1519]  ? kill_css+0x370/0x370
[ 2827.591203][ T1519]  kernfs_fop_write_iter+0x3f1/0x600
[ 2827.596526][ T1519]  vfs_write+0x9ed/0xdd0
[ 2827.600813][ T1519]  ? kernel_write+0x630/0x630
[ 2827.605529][ T1519]  ? __fget_files+0x26a/0x440
[ 2827.610241][ T1519]  ksys_write+0x12b/0x250
[ 2827.614587][ T1519]  ? __ia32_sys_read+0xb0/0xb0
[ 2827.619368][ T1519]  ? syscall_enter_from_user_mode+0x26/0xb0
[ 2827.625302][ T1519]  do_syscall_64+0x39/0xb0
[ 2827.629746][ T1519]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2827.635680][ T1519] RIP: 0033:0x7f784e28c0c9
[ 2827.640119][ T1519] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 2827.659745][ T1519] RSP: 002b:00007f784f00a168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 2827.668175][ T1519] RAX: ffffffffffffffda RBX: 00007f784e3abf80 RCX: 00007f784e28c0c9
[ 2827.676157][ T1519] RDX: 0000000000000012 RSI: 0000000020000040 RDI: 0000000000000004
[ 2827.684135][ T1519] RBP: 00007f784e2e7ae9 R08: 0000000000000000 R09: 0000000000000000
[ 2827.692109][ T1519] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2827.700085][ T1519] R13: 00007ffccf43497f R14: 00007f784f00a300 R15: 0000000000022000
[ 2827.708081][ T1519]  </TASK>
[ 2827.713355][T14879] Bluetooth: hci2: command 0x0419 tx timeout
[ 2827.748389][ T1519] memory: usage 8596kB, limit 0kB, failcnt 831
[ 2827.765549][ T1519] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2827.775488][ T1519] Memory cgroup stats for /syz4:
[ 2827.775695][ T1519] anon 118784
[ 2827.775695][ T1519] file 8351744
[ 2827.775695][ T1519] kernel 319488
[ 2827.775695][ T1519] kernel_stack 65536
[ 2827.775695][ T1519] pagetables 81920
[ 2827.775695][ T1519] sec_pagetables 0
[ 2827.775695][ T1519] percpu 64
[ 2827.775695][ T1519] sock 0
[ 2827.775695][ T1519] vmalloc 0
[ 2827.775695][ T1519] shmem 8351744
[ 2827.775695][ T1519] zswap 0
[ 2827.775695][ T1519] zswapped 0
[ 2827.775695][ T1519] file_mapped 290816
[ 2827.775695][ T1519] file_dirty 0
[ 2827.775695][ T1519] file_writeback 0
[ 2827.775695][ T1519] swapcached 0
[ 2827.775695][ T1519] anon_thp 0
[ 2827.775695][ T1519] file_thp 0
[ 2827.775695][ T1519] shmem_thp 0
[ 2827.775695][ T1519] inactive_anon 118784
[ 2827.775695][ T1519] active_anon 8351744
[ 2827.775695][ T1519] inactive_file 0
[ 2827.775695][ T1519] active_file 0
[ 2827.775695][ T1519] unevictable 0
[ 2827.775695][ T1519] slab_reclaimable 42952
[ 2827.775695][ T1519] slab_unreclaimable 101760
[ 2827.775695][ T1519] slab 144712
[ 2827.876077][ T1519] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0-1,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=1253,uid=0
[ 2827.906765][ T1492] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2827.916887][ T1519] Memory cgroup out of memory: Killed process 1253 (syz-executor.4) total-vm:50568kB, anon-rss:364kB, file-rss:9088kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:0
[ 2827.928832][ T1492] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2827.977525][ T1492] device bridge_slave_0 entered promiscuous mode
[ 2828.021043][ T1492] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2828.028187][ T1492] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2828.091520][ T1492] device bridge_slave_1 entered promiscuous mode
[ 2828.321757][ T1394] 8021q: adding VLAN 0 to HW filter on device bond0
[ 2828.372877][ T1492] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 2828.407746][T17605] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 2828.430140][T17605] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 2828.468088][ T1394] 8021q: adding VLAN 0 to HW filter on device team0
21:28:17 executing program 4:
openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0)
perf_event_open(&(0x7f0000000100)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_int(r0, &(0x7f00000000c0)='memory.max\x00', 0x2, 0x0)
getpid()
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x1f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000300)='cpuacct.usage_all\x00', 0x0, 0x0)
bpf$ITER_CREATE(0x21, &(0x7f00000002c0)={r2}, 0x8)
getpid()
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='blkio.bfq.io_service_time\x00', 0x26e1, 0x0)
write$cgroup_int(r3, &(0x7f0000000040), 0x12)
close(r3)
syz_open_procfs$namespace(0x0, 0x0)
write$cgroup_int(r1, &(0x7f0000000040), 0x12)

21:28:17 executing program 1:
r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000180)={0x0, 0x80, 0x0, 0x7c, 0x4, 0xd2, 0x0, 0x5, 0x0, 0x74d4e3ef7733d4ea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x26, 0x0, @perf_bp={0x0}, 0x210, 0x0, 0x1f, 0x3, 0x0, 0x0, 0xffff}, 0x0, 0x0, 0xffffffffffffffff, 0x9)
openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
perf_event_open(&(0x7f0000000200)={0x4, 0x80, 0x9, 0x0, 0x0, 0x5, 0x0, 0xffffffff, 0x800, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x2, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x2, 0x2, @perf_bp={&(0x7f0000000100), 0x5}, 0x0, 0x100000000, 0x2a, 0x0, 0x8, 0x40, 0x0, 0x0, 0x3f, 0x0, 0x4000000000000000}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
recvmsg(0xffffffffffffffff, 0x0, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f00000002c0)='cpuacct.usage_percpu_sys\x00', 0x0, 0x0)
perf_event_open$cgroup(&(0x7f00000003c0)={0x4, 0x80, 0x1, 0xff, 0x1, 0x5, 0x0, 0x800000000000008, 0x21001, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x3, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0xffff0000, 0x4, @perf_bp={&(0x7f0000000380), 0x8}, 0x40ae, 0xe, 0x78d8, 0x5, 0x7, 0x7, 0x1ff}, 0xffffffffffffffff, 0xc, r0, 0xc)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000018c00)={0x18, 0x3, &(0x7f0000000780)=ANY=[@ANYBLOB="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"], &(0x7f0000000440)='syzkaller\x00', 0x4, 0xb0, &(0x7f0000000480)=""/176, 0x0, 0x0, '\x00', 0x0, 0x0, r1, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
r3 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='rcu_utilization\x00', r2}, 0x10)
r4 = perf_event_open$cgroup(&(0x7f0000000080)={0x4, 0x80, 0x81, 0x5, 0x6, 0x0, 0x0, 0x8000000000000000, 0x848, 0x4, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x3, 0x0, @perf_config_ext={0x912410d}, 0x8800, 0xffffffff, 0x7, 0x6, 0x3f, 0x7, 0x8dd, 0x0, 0x5, 0x0, 0x1}, 0xffffffffffffffff, 0xb, 0xffffffffffffffff, 0x9)
ioctl$PERF_EVENT_IOC_SET_OUTPUT(0xffffffffffffffff, 0x2405, r4)
r5 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000540)='./cgroup.cpu/syz1\x00', 0x200002, 0x0)
openat$cgroup_ro(r5, &(0x7f0000000640)='cgroup.stat\x00', 0x0, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r4, 0x40082404, &(0x7f0000000580)=0xffffffffffffff7f)
r6 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000000)='cpuacct.usage_percpu_sys\x00', 0x26e1, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r6, 0x40086607, &(0x7f0000000040))
r7 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x26e1, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000018c00)={0x18, 0x3, &(0x7f0000000300)=ANY=[@ANYRES64=r1], 0x0, 0x4, 0xb0, &(0x7f0000000480)=""/176, 0x40f00, 0x5, '\x00', 0x0, 0x0, r7, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x0, 0x204d, &(0x7f00000005c0)=ANY=[@ANYRES32], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x18, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000740)={0x0, 0x3}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000002c0)=[0xffffffffffffffff, r7, 0xffffffffffffffff]}, 0x80)
write$cgroup_int(r7, &(0x7f0000000280)=0x1ff, 0x12)
r8 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000001e00)={&(0x7f0000001dc0)='./file0\x00', 0x0, 0x10}, 0x10)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000001e80)=@bpf_lsm={0x1d, 0x2, &(0x7f0000000700)=@raw=[@map_idx={0x18, 0x4}], &(0x7f0000002340)='GPL\x00', 0x5, 0x33, &(0x7f0000002380)=""/51, 0x41100, 0x2, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f00000023c0)={0x5, 0x4}, 0x8, 0x10, &(0x7f0000002400)={0x3, 0xa, 0x6, 0xae2e}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000002500)=[r0, r8, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}, 0x80)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={0xffffffffffffffff, 0x18000000000002a0, 0x0, 0x0, &(0x7f00000001c0), 0x0, 0x0, 0xe8030000, 0x0, 0x0, 0x0, 0x0}, 0x48)
ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x89f2, &(0x7f0000000080)='ip6tnl0\x00')
socketpair(0x1e, 0x5, 0x20, &(0x7f0000000600))
socketpair(0x1, 0x1, 0x0, &(0x7f0000000740)={0xffffffffffffffff, <r9=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r9, 0x89f1, &(0x7f0000000080))
close(r3)

21:28:17 executing program 2:
openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
perf_event_open(0x0, 0xffffffffffffffff, 0xb, 0xffffffffffffffff, 0x0)
r1 = openat$cgroup_int(r0, &(0x7f00000000c0)='memory.max\x00', 0x2, 0x0)
getpid()
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x1f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='blkio.bfq.io_service_time\x00', 0x26e1, 0x0)
write$cgroup_int(r2, &(0x7f0000000040), 0x12)
close(r2)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000280)='host1x_cdma_push_wide\x00'}, 0x10)
write$cgroup_int(r1, &(0x7f0000000040), 0x12)

[ 2828.490842][ T1492] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 2828.802940][T17605] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 2828.829570][T17605] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
21:28:17 executing program 4:
openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0)
perf_event_open(&(0x7f0000000100)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_int(r0, &(0x7f00000000c0)='memory.max\x00', 0x2, 0x0)
getpid()
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x1f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000300)='cpuacct.usage_all\x00', 0x0, 0x0)
bpf$ITER_CREATE(0x21, &(0x7f00000002c0)={r2}, 0x8)
getpid()
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='blkio.bfq.io_service_time\x00', 0x26e1, 0x0)
write$cgroup_int(r3, &(0x7f0000000040), 0x12)
close(r3)
syz_open_procfs$namespace(0x0, 0x0)
write$cgroup_int(r1, &(0x7f0000000040), 0x12)

[ 2828.858586][T17605] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2828.865796][T17605] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 2828.921566][ T1492] team0: Port device team_slave_0 added
[ 2828.951601][ T1492] team0: Port device team_slave_1 added
[ 2828.958470][ T1427] netdevsim netdevsim5 netdevsim0: renamed from eth0
[ 2829.002485][  T483] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 2829.023489][  T483] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 2829.053987][  T483] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 2829.084188][  T483] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2829.091426][  T483] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 2829.109960][  T483] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 2829.127481][  T483] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 2829.150873][ T1427] netdevsim netdevsim5 netdevsim1: renamed from eth1
[ 2829.167505][ T1427] netdevsim netdevsim5 netdevsim2: renamed from eth2
[ 2829.223509][ T1427] netdevsim netdevsim5 netdevsim3: renamed from eth3
[ 2829.259085][T23289] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 2829.268654][T23289] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 2829.339663][ T1492] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 2829.346660][ T1492] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2829.415332][ T1492] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 2829.444731][T30778] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 2829.453939][T30778] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 2829.479394][T30778] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 2829.513786][ T1394] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 2829.529639][T14879] Bluetooth: hci3: command 0x041b tx timeout
[ 2829.540071][ T1394] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 2829.550100][ T1492] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 2829.557074][ T1492] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2829.648828][ T1492] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 2829.693055][T30778] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 2829.709488][T30778] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 2829.824678][T20562] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2830.001199][T20562] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2830.082295][ T1492] device hsr_slave_0 entered promiscuous mode
[ 2830.114418][ T1492] device hsr_slave_1 entered promiscuous mode
[ 2830.149457][ T1492] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 2830.157068][ T1492] Cannot create hsr debugfs directory
[ 2830.230601][T20562] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2830.375485][T20562] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2830.428016][ T1427] 8021q: adding VLAN 0 to HW filter on device bond0
[ 2830.647714][ T1394] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 2830.672683][ T1427] 8021q: adding VLAN 0 to HW filter on device team0
[ 2830.703280][T21233] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 2830.715471][T21233] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 2830.735471][T21233] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 2830.743620][T21233] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 2830.758566][T17544] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[ 2830.767620][T17544] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[ 2830.776494][T17544] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[ 2830.797122][T17544] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[ 2830.805878][T17544] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[ 2830.821910][T17544] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[ 2830.898285][T30778] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 2830.923736][T30778] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 2830.959311][T30778] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2830.966495][T30778] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 2831.087200][ T1492] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2831.195215][T14991] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 2831.205574][T14991] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 2831.230517][T14991] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 2831.249399][T14991] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2831.256557][T14991] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 2831.309268][T14991] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 2831.329749][T14991] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 2831.440828][T17544] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[ 2831.459734][ T5120] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[ 2831.468030][ T5120] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[ 2831.477301][ T5120] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[ 2831.488466][ T5120] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[ 2831.497518][ T5120] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[ 2831.523819][ T1492] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2831.550225][T23940] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 2831.559709][T23940] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 2831.585460][ T1492] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2831.609110][T14879] Bluetooth: hci3: command 0x040f tx timeout
[ 2831.667893][T20562] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2831.799818][ T1492] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2831.865805][ T1394] device veth0_vlan entered promiscuous mode
[ 2831.889740][  T483] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 2831.900317][  T483] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 2831.910589][  T483] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 2831.928558][  T483] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 2831.938220][  T483] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 2831.957691][  T483] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 2831.967897][  T483] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 2831.988124][  T483] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 2832.008342][  T483] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 2832.018347][  T483] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 2832.039557][  T483] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 2832.105986][T20562] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2832.136460][ T1427] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 2832.165135][ T1394] device veth1_vlan entered promiscuous mode
[ 2832.245374][T20562] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2832.384750][ T1394] device veth0_macvtap entered promiscuous mode
[ 2832.463870][T20562] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2832.496359][T23940] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 2832.505541][T23940] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 2832.525804][T23940] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 2832.586764][ T1394] device veth1_macvtap entered promiscuous mode
[ 2832.654761][ T1394] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2832.688791][ T1394] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2832.698663][ T1394] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2832.748844][ T1394] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2832.787831][ T1394] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2832.810968][ T1394] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2832.828769][ T1394] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2832.857154][ T1394] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2832.867502][ T1394] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2832.889147][T14879] Bluetooth: hci4: command 0x0409 tx timeout
[ 2832.897676][ T1394] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2832.921485][ T1394] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 2832.960517][ T1559] chnl_net:caif_netlink_parms(): no params data found
[ 2832.985733][  T483] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 2832.999949][  T483] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 2833.017692][  T483] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 2833.052111][ T1394] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2833.067999][ T1394] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2833.078392][ T1394] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2833.089177][ T1394] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2833.099247][ T1394] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2833.109879][ T1394] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2833.119932][ T1394] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2833.131319][ T1394] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2833.151067][ T1394] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2833.172836][ T1394] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
21:28:22 executing program 1:
r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000180)={0x0, 0x80, 0x0, 0x7c, 0x4, 0xd2, 0x0, 0x5, 0x0, 0x74d4e3ef7733d4ea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x26, 0x0, @perf_bp={0x0}, 0x210, 0x0, 0x1f, 0x3, 0x0, 0x0, 0xffff}, 0x0, 0x0, 0xffffffffffffffff, 0x9)
openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
perf_event_open(&(0x7f0000000200)={0x4, 0x80, 0x9, 0x0, 0x0, 0x5, 0x0, 0xffffffff, 0x800, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x2, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x2, 0x2, @perf_bp={&(0x7f0000000100), 0x5}, 0x0, 0x100000000, 0x2a, 0x0, 0x8, 0x40, 0x0, 0x0, 0x3f, 0x0, 0x4000000000000000}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
recvmsg(0xffffffffffffffff, 0x0, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f00000002c0)='cpuacct.usage_percpu_sys\x00', 0x0, 0x0)
perf_event_open$cgroup(&(0x7f00000003c0)={0x4, 0x80, 0x1, 0xff, 0x1, 0x5, 0x0, 0x800000000000008, 0x21001, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x3, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0xffff0000, 0x4, @perf_bp={&(0x7f0000000380), 0x8}, 0x40ae, 0xe, 0x78d8, 0x5, 0x7, 0x7, 0x1ff}, 0xffffffffffffffff, 0xc, r0, 0xc)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000018c00)={0x18, 0x3, &(0x7f0000000780)=ANY=[@ANYBLOB="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"], &(0x7f0000000440)='syzkaller\x00', 0x4, 0xb0, &(0x7f0000000480)=""/176, 0x0, 0x0, '\x00', 0x0, 0x0, r1, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
r3 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='rcu_utilization\x00', r2}, 0x10)
r4 = perf_event_open$cgroup(&(0x7f0000000080)={0x4, 0x80, 0x81, 0x5, 0x6, 0x0, 0x0, 0x8000000000000000, 0x848, 0x4, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x3, 0x0, @perf_config_ext={0x912410d}, 0x8800, 0xffffffff, 0x7, 0x6, 0x3f, 0x7, 0x8dd, 0x0, 0x5, 0x0, 0x1}, 0xffffffffffffffff, 0xb, 0xffffffffffffffff, 0x9)
ioctl$PERF_EVENT_IOC_SET_OUTPUT(0xffffffffffffffff, 0x2405, r4)
r5 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000540)='./cgroup.cpu/syz1\x00', 0x200002, 0x0)
openat$cgroup_ro(r5, &(0x7f0000000640)='cgroup.stat\x00', 0x0, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r4, 0x40082404, &(0x7f0000000580)=0xffffffffffffff7f)
r6 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000000)='cpuacct.usage_percpu_sys\x00', 0x26e1, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r6, 0x40086607, &(0x7f0000000040))
r7 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x26e1, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000018c00)={0x18, 0x3, &(0x7f0000000300)=ANY=[@ANYRES64=r1], 0x0, 0x4, 0xb0, &(0x7f0000000480)=""/176, 0x40f00, 0x5, '\x00', 0x0, 0x0, r7, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x0, 0x204d, &(0x7f00000005c0)=ANY=[@ANYRES32], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x18, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000740)={0x0, 0x3}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000002c0)=[0xffffffffffffffff, r7, 0xffffffffffffffff]}, 0x80)
write$cgroup_int(r7, &(0x7f0000000280)=0x1ff, 0x12)
r8 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000001e00)={&(0x7f0000001dc0)='./file0\x00', 0x0, 0x10}, 0x10)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000001e80)=@bpf_lsm={0x1d, 0x2, &(0x7f0000000700)=@raw=[@map_idx={0x18, 0x4}], &(0x7f0000002340)='GPL\x00', 0x5, 0x33, &(0x7f0000002380)=""/51, 0x41100, 0x2, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f00000023c0)={0x5, 0x4}, 0x8, 0x10, &(0x7f0000002400)={0x3, 0xa, 0x6, 0xae2e}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000002500)=[r0, r8, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}, 0x80)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={0xffffffffffffffff, 0x18000000000002a0, 0x0, 0x0, &(0x7f00000001c0), 0x0, 0x0, 0xe8030000, 0x0, 0x0, 0x0, 0x0}, 0x48)
ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x89f2, &(0x7f0000000080)='ip6tnl0\x00')
socketpair(0x1e, 0x5, 0x20, &(0x7f0000000600))
socketpair(0x1, 0x1, 0x0, &(0x7f0000000740)={0xffffffffffffffff, <r9=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r9, 0x89f1, &(0x7f0000000080))
close(r3)

[ 2833.196686][ T1394] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 2833.276570][T17605] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 2833.284321][T17605] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 2833.299063][T17605] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 2833.307902][T17605] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 2833.350043][ T1427] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 2833.364505][ T1394] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 2833.418864][ T1394] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 2833.427626][ T1394] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 2833.498860][ T1394] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 2833.529199][T14879] Bluetooth: hci5: command 0x0409 tx timeout
[ 2833.619312][ T1492] netdevsim netdevsim3 netdevsim0: renamed from eth0
[ 2833.651833][ T1492] netdevsim netdevsim3 netdevsim1: renamed from eth1
[ 2833.689249][T14879] Bluetooth: hci3: command 0x0419 tx timeout
[ 2833.743991][ T1492] netdevsim netdevsim3 netdevsim2: renamed from eth2
[ 2833.900185][ T1492] netdevsim netdevsim3 netdevsim3: renamed from eth3
[ 2833.974234][ T1571] chnl_net:caif_netlink_parms(): no params data found
[ 2834.003964][ T1559] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2834.012355][ T1559] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2834.030208][ T1559] device bridge_slave_0 entered promiscuous mode
[ 2834.095032][ T1559] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2834.109478][ T1559] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2834.117774][ T1559] device bridge_slave_1 entered promiscuous mode
[ 2834.424424][T10995] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2834.445111][T10995] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2834.532174][ T1559] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 2834.544695][T21233] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 2834.571020][T21233] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 2834.589655][T21233] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 2834.712997][ T1559] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 2834.725591][T10995] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2834.749908][ T1571] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2834.757144][ T1571] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2834.759160][T10995] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2834.774456][ T1571] device bridge_slave_0 entered promiscuous mode
[ 2834.852259][ T1492] 8021q: adding VLAN 0 to HW filter on device bond0
[ 2834.908602][T21233] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 2834.916785][T21233] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 2834.925604][T21233] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 2834.935839][ T1571] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2834.944406][ T1571] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2834.953007][ T1571] device bridge_slave_1 entered promiscuous mode
[ 2834.969319][T14879] Bluetooth: hci4: command 0x041b tx timeout
[ 2834.972065][ T1559] team0: Port device team_slave_0 added
[ 2835.011980][T21233] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 2835.029599][T21233] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 2835.077852][ T1631] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2835.091553][ T1631] CPU: 0 PID: 1631 Comm: syz-executor.0 Not tainted 6.2.0-rc2-syzkaller-00431-g0164776a2ce7 #0
[ 2835.101942][ T1631] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 2835.112033][ T1631] Call Trace:
[ 2835.115336][ T1631]  <TASK>
[ 2835.118305][ T1631]  dump_stack_lvl+0xd1/0x138
[ 2835.122950][ T1631]  dump_header+0x10b/0x85f
[ 2835.127407][ T1631]  oom_kill_process.cold+0x10/0x15
[ 2835.132566][ T1631]  out_of_memory+0x35c/0x14a0
[ 2835.137294][ T1631]  ? oom_killer_disable+0x280/0x280
[ 2835.142534][ T1631]  ? find_held_lock+0x2d/0x110
[ 2835.147336][ T1631]  mem_cgroup_out_of_memory+0x206/0x270
[ 2835.152897][ T1631]  ? mem_cgroup_margin+0x130/0x130
[ 2835.158059][ T1631]  ? _raw_spin_unlock_irqrestore+0x54/0x70
[ 2835.163904][ T1631]  memory_max_write+0x2f9/0x3c0
[ 2835.168830][ T1631]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 2835.175038][ T1631]  ? lock_release+0x810/0x810
[ 2835.179759][ T1631]  cgroup_file_write+0x1e2/0x770
[ 2835.184737][ T1631]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 2835.190846][ T1631]  ? kill_css+0x370/0x370
[ 2835.195212][ T1631]  ? __virt_addr_valid+0x61/0x2e0
[ 2835.200302][ T1631]  ? kill_css+0x370/0x370
[ 2835.204711][ T1631]  kernfs_fop_write_iter+0x3f1/0x600
[ 2835.210064][ T1631]  vfs_write+0x9ed/0xdd0
[ 2835.214367][ T1631]  ? kernel_write+0x630/0x630
[ 2835.219100][ T1631]  ? __fget_files+0x26a/0x440
[ 2835.223921][ T1631]  ksys_write+0x12b/0x250
[ 2835.228276][ T1631]  ? __ia32_sys_read+0xb0/0xb0
[ 2835.233060][ T1631]  ? syscall_enter_from_user_mode+0x26/0xb0
[ 2835.239001][ T1631]  do_syscall_64+0x39/0xb0
[ 2835.243465][ T1631]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2835.249481][ T1631] RIP: 0033:0x7f1e5c28c0c9
[ 2835.253925][ T1631] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 2835.273569][ T1631] RSP: 002b:00007f1e5cfe4168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 2835.282112][ T1631] RAX: ffffffffffffffda RBX: 00007f1e5c3abf80 RCX: 00007f1e5c28c0c9
[ 2835.290120][ T1631] RDX: 0000000000000012 RSI: 0000000020000040 RDI: 0000000000000004
[ 2835.298110][ T1631] RBP: 00007f1e5c2e7ae9 R08: 0000000000000000 R09: 0000000000000000
[ 2835.306100][ T1631] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2835.314106][ T1631] R13: 00007ffffc93beef R14: 00007f1e5cfe4300 R15: 0000000000022000
[ 2835.322138][ T1631]  </TASK>
[ 2835.334061][ T1571] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 2835.339454][ T1631] memory: usage 10628kB, limit 0kB, failcnt 829
[ 2835.350299][ T1631] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2835.357196][ T1631] Memory cgroup stats for /syz0:
[ 2835.357387][ T1631] anon 114688
[ 2835.357387][ T1631] file 10452992
[ 2835.357387][ T1631] kernel 286720
[ 2835.357387][ T1631] kernel_stack 65536
[ 2835.357387][ T1631] pagetables 77824
[ 2835.357387][ T1631] sec_pagetables 0
[ 2835.357387][ T1631] percpu 64
[ 2835.357387][ T1631] sock 0
[ 2835.357387][ T1631] vmalloc 0
[ 2835.357387][ T1631] shmem 10448896
[ 2835.357387][ T1631] zswap 0
[ 2835.357387][ T1631] zswapped 0
[ 2835.357387][ T1631] file_mapped 331776
[ 2835.357387][ T1631] file_dirty 4096
[ 2835.357387][ T1631] file_writeback 0
[ 2835.357387][ T1631] swapcached 0
[ 2835.357387][ T1631] anon_thp 0
[ 2835.357387][ T1631] file_thp 0
[ 2835.357387][ T1631] shmem_thp 0
[ 2835.357387][ T1631] inactive_anon 61440
[ 2835.357387][ T1631] active_anon 10448896
[ 2835.357387][ T1631] inactive_file 0
[ 2835.357387][ T1631] active_file 0
[ 2835.357387][ T1631] unevictable 0
[ 2835.357387][ T1631] slab_reclaimable 44864
[ 2835.357387][ T1631] slab_unreclaimable 74400
[ 2835.357387][ T1631] slab 119264
[ 2835.372047][ T1559] team0: Port device team_slave_1 added
[ 2835.464529][ T1427] device veth0_vlan entered promiscuous mode
[ 2835.465064][ T1631] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=1394,uid=0
[ 2835.491224][T21233] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 2835.500101][T21233] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 2835.512496][ T1631] Memory cgroup out of memory: Killed process 1394 (syz-executor.0) total-vm:50568kB, anon-rss:364kB, file-rss:9088kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:0
[ 2835.593379][ T1571] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 2835.603375][ T1631] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2835.614133][T14879] Bluetooth: hci5: command 0x041b tx timeout
[ 2835.621770][ T1631] CPU: 1 PID: 1631 Comm: syz-executor.0 Not tainted 6.2.0-rc2-syzkaller-00431-g0164776a2ce7 #0
[ 2835.632144][ T1631] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 2835.642307][ T1631] Call Trace:
[ 2835.645588][ T1631]  <TASK>
[ 2835.648528][ T1631]  dump_stack_lvl+0xd1/0x138
[ 2835.653123][ T1631]  dump_header+0x10b/0x85f
[ 2835.657534][ T1631]  oom_kill_process.cold+0x10/0x15
[ 2835.662638][ T1631]  out_of_memory+0x35c/0x14a0
[ 2835.667328][ T1631]  ? oom_killer_disable+0x280/0x280
[ 2835.672534][ T1631]  ? find_held_lock+0x2d/0x110
[ 2835.677297][ T1631]  mem_cgroup_out_of_memory+0x206/0x270
[ 2835.682858][ T1631]  ? mem_cgroup_margin+0x130/0x130
[ 2835.688010][ T1631]  ? _raw_spin_unlock_irqrestore+0x54/0x70
[ 2835.693854][ T1631]  memory_max_write+0x2f9/0x3c0
[ 2835.698703][ T1631]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 2835.704810][ T1631]  ? lock_release+0x810/0x810
[ 2835.709570][ T1631]  cgroup_file_write+0x1e2/0x770
[ 2835.714528][ T1631]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 2835.720593][ T1631]  ? kill_css+0x370/0x370
[ 2835.724923][ T1631]  ? __virt_addr_valid+0x61/0x2e0
[ 2835.729985][ T1631]  ? kill_css+0x370/0x370
[ 2835.734361][ T1631]  kernfs_fop_write_iter+0x3f1/0x600
[ 2835.739708][ T1631]  vfs_write+0x9ed/0xdd0
[ 2835.744000][ T1631]  ? kernel_write+0x630/0x630
[ 2835.748707][ T1631]  ? __fget_files+0x26a/0x440
[ 2835.753412][ T1631]  ksys_write+0x12b/0x250
[ 2835.757741][ T1631]  ? __ia32_sys_read+0xb0/0xb0
[ 2835.762530][ T1631]  ? syscall_enter_from_user_mode+0x26/0xb0
[ 2835.768424][ T1631]  do_syscall_64+0x39/0xb0
[ 2835.772840][ T1631]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2835.778743][ T1631] RIP: 0033:0x7f1e5c28c0c9
[ 2835.783197][ T1631] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 2835.802851][ T1631] RSP: 002b:00007f1e5cfe4168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 2835.811259][ T1631] RAX: ffffffffffffffda RBX: 00007f1e5c3abf80 RCX: 00007f1e5c28c0c9
[ 2835.819225][ T1631] RDX: 0000000000000012 RSI: 0000000020000040 RDI: 0000000000000004
[ 2835.827198][ T1631] RBP: 00007f1e5c2e7ae9 R08: 0000000000000000 R09: 0000000000000000
[ 2835.835180][ T1631] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2835.843172][ T1631] R13: 00007ffffc93beef R14: 00007f1e5cfe4300 R15: 0000000000022000
[ 2835.851157][ T1631]  </TASK>
[ 2835.856784][ T1631] memory: usage 10584kB, limit 0kB, failcnt 829
[ 2835.863287][ T1492] 8021q: adding VLAN 0 to HW filter on device team0
[ 2835.891648][ T1631] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2835.897710][ T1427] device veth1_vlan entered promiscuous mode
[ 2835.899156][ T1631] Memory cgroup stats for /syz0:
[ 2835.904745][ T1631] anon 94208
[ 2835.904745][ T1631] file 10452992
[ 2835.904745][ T1631] kernel 241664
[ 2835.904745][ T1631] kernel_stack 32768
[ 2835.904745][ T1631] pagetables 69632
[ 2835.904745][ T1631] sec_pagetables 0
[ 2835.904745][ T1631] percpu 64
[ 2835.904745][ T1631] sock 0
[ 2835.904745][ T1631] vmalloc 0
[ 2835.904745][ T1631] shmem 10448896
[ 2835.904745][ T1631] zswap 0
[ 2835.904745][ T1631] zswapped 0
[ 2835.904745][ T1631] file_mapped 331776
[ 2835.904745][ T1631] file_dirty 4096
[ 2835.904745][ T1631] file_writeback 0
[ 2835.904745][ T1631] swapcached 0
[ 2835.904745][ T1631] anon_thp 0
[ 2835.904745][ T1631] file_thp 0
[ 2835.904745][ T1631] shmem_thp 0
[ 2835.904745][ T1631] inactive_anon 94208
[ 2835.904745][ T1631] active_anon 10448896
[ 2835.904745][ T1631] inactive_file 4096
[ 2835.904745][ T1631] active_file 0
[ 2835.904745][ T1631] unevictable 0
[ 2835.904745][ T1631] slab_reclaimable 44864
[ 2835.904745][ T1631] slab_unreclaimable 74400
[ 2835.904745][ T1631] slab 119264
[ 2836.008969][ T1631] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=1630,uid=0
[ 2836.026660][ T1211] ieee802154 phy0 wpan0: encryption failed: -22
[ 2836.026711][ T1211] ieee802154 phy1 wpan1: encryption failed: -22
[ 2836.030717][ T1571] team0: Port device team_slave_0 added
[ 2836.039684][ T1631] Memory cgroup out of memory: Killed process 1631 (syz-executor.0) total-vm:54540kB, anon-rss:500kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 2836.072376][T21233] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 2836.084366][T21233] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 2836.093699][T21233] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2836.100913][T21233] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 2836.109651][T21233] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 2836.118615][T21233] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 2836.127431][T21233] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2836.134548][T21233] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 2836.191511][ T1571] team0: Port device team_slave_1 added
[ 2836.224915][T23935] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 2836.239323][T23935] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 2836.247843][T23935] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 2836.257831][T23935] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
21:28:25 executing program 1:
r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000180)={0x0, 0x80, 0x0, 0x7c, 0x4, 0xd2, 0x0, 0x5, 0x0, 0x74d4e3ef7733d4ea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x26, 0x0, @perf_bp={0x0}, 0x210, 0x0, 0x1f, 0x3, 0x0, 0x0, 0xffff}, 0x0, 0x0, 0xffffffffffffffff, 0x9)
openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
perf_event_open(&(0x7f0000000200)={0x4, 0x80, 0x9, 0x0, 0x0, 0x5, 0x0, 0xffffffff, 0x800, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x2, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x2, 0x2, @perf_bp={&(0x7f0000000100), 0x5}, 0x0, 0x100000000, 0x2a, 0x0, 0x8, 0x40, 0x0, 0x0, 0x3f, 0x0, 0x4000000000000000}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
recvmsg(0xffffffffffffffff, 0x0, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f00000002c0)='cpuacct.usage_percpu_sys\x00', 0x0, 0x0)
perf_event_open$cgroup(&(0x7f00000003c0)={0x4, 0x80, 0x1, 0xff, 0x1, 0x5, 0x0, 0x800000000000008, 0x21001, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x3, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0xffff0000, 0x4, @perf_bp={&(0x7f0000000380), 0x8}, 0x40ae, 0xe, 0x78d8, 0x5, 0x7, 0x7, 0x1ff}, 0xffffffffffffffff, 0xc, r0, 0xc)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000018c00)={0x18, 0x3, &(0x7f0000000780)=ANY=[@ANYBLOB="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"], &(0x7f0000000440)='syzkaller\x00', 0x4, 0xb0, &(0x7f0000000480)=""/176, 0x0, 0x0, '\x00', 0x0, 0x0, r1, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
r3 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='rcu_utilization\x00', r2}, 0x10)
r4 = perf_event_open$cgroup(&(0x7f0000000080)={0x4, 0x80, 0x81, 0x5, 0x6, 0x0, 0x0, 0x8000000000000000, 0x848, 0x4, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x3, 0x0, @perf_config_ext={0x912410d}, 0x8800, 0xffffffff, 0x7, 0x6, 0x3f, 0x7, 0x8dd, 0x0, 0x5, 0x0, 0x1}, 0xffffffffffffffff, 0xb, 0xffffffffffffffff, 0x9)
ioctl$PERF_EVENT_IOC_SET_OUTPUT(0xffffffffffffffff, 0x2405, r4)
r5 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000540)='./cgroup.cpu/syz1\x00', 0x200002, 0x0)
openat$cgroup_ro(r5, &(0x7f0000000640)='cgroup.stat\x00', 0x0, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r4, 0x40082404, &(0x7f0000000580)=0xffffffffffffff7f)
r6 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000000)='cpuacct.usage_percpu_sys\x00', 0x26e1, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r6, 0x40086607, &(0x7f0000000040))
r7 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x26e1, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000018c00)={0x18, 0x3, &(0x7f0000000300)=ANY=[@ANYRES64=r1], 0x0, 0x4, 0xb0, &(0x7f0000000480)=""/176, 0x40f00, 0x5, '\x00', 0x0, 0x0, r7, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x0, 0x204d, &(0x7f00000005c0)=ANY=[@ANYRES32], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x18, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000740)={0x0, 0x3}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000002c0)=[0xffffffffffffffff, r7, 0xffffffffffffffff]}, 0x80)
write$cgroup_int(r7, &(0x7f0000000280)=0x1ff, 0x12)
r8 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000001e00)={&(0x7f0000001dc0)='./file0\x00', 0x0, 0x10}, 0x10)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000001e80)=@bpf_lsm={0x1d, 0x2, &(0x7f0000000700)=@raw=[@map_idx={0x18, 0x4}], &(0x7f0000002340)='GPL\x00', 0x5, 0x33, &(0x7f0000002380)=""/51, 0x41100, 0x2, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f00000023c0)={0x5, 0x4}, 0x8, 0x10, &(0x7f0000002400)={0x3, 0xa, 0x6, 0xae2e}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000002500)=[r0, r8, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}, 0x80)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={0xffffffffffffffff, 0x18000000000002a0, 0x0, 0x0, &(0x7f00000001c0), 0x0, 0x0, 0xe8030000, 0x0, 0x0, 0x0, 0x0}, 0x48)
ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x89f2, &(0x7f0000000080)='ip6tnl0\x00')
socketpair(0x1e, 0x5, 0x20, &(0x7f0000000600))
socketpair(0x1, 0x1, 0x0, &(0x7f0000000740)={0xffffffffffffffff, <r9=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r9, 0x89f1, &(0x7f0000000080))
close(r3)

[ 2836.283410][ T1559] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 2836.292426][ T1559] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2836.320922][ T1559] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
21:28:25 executing program 0:
perf_event_open(&(0x7f0000000100)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_int(r0, &(0x7f00000000c0)='memory.max\x00', 0x2, 0x0)
getpid()
r2 = bpf$ITER_CREATE(0x21, &(0x7f0000000340), 0x8)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='blkio.bfq.io_service_time\x00', 0x26e1, 0x0)
write$cgroup_int(r3, &(0x7f0000000040), 0x12)
close(r3)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000280)='host1x_cdma_push_wide\x00', r2}, 0x10)
write$cgroup_int(r1, &(0x7f0000000040), 0x12)

[ 2836.395715][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 2836.404170][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 2836.413726][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 2836.422718][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 2836.442733][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 2836.451652][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 2836.468012][ T1427] device veth0_macvtap entered promiscuous mode
[ 2836.485610][ T1559] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 2836.493613][ T1559] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2836.520598][ T1559] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
21:28:25 executing program 0:
perf_event_open(&(0x7f0000000100)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_int(r0, &(0x7f00000000c0)='memory.max\x00', 0x2, 0x0)
getpid()
r2 = bpf$ITER_CREATE(0x21, &(0x7f0000000340), 0x8)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='blkio.bfq.io_service_time\x00', 0x26e1, 0x0)
write$cgroup_int(r3, &(0x7f0000000040), 0x12)
close(r3)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000280)='host1x_cdma_push_wide\x00', r2}, 0x10)
write$cgroup_int(r1, &(0x7f0000000040), 0x12)

[ 2836.551518][ T1492] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 2836.634558][T30051] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 2836.661884][T30051] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 2836.697653][ T1427] device veth1_macvtap entered promiscuous mode
[ 2836.725759][ T1571] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 2836.733891][ T1571] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2836.788853][ T1571] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 2836.824300][T17605] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 2836.860756][ T1571] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 2836.867755][ T1571] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2836.935137][ T1571] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 2837.001823][ T1427] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2837.032994][ T1427] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2837.048086][ T1427] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2837.059891][T14879] Bluetooth: hci4: command 0x040f tx timeout
[ 2837.078813][ T1427] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2837.090927][ T1427] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2837.111851][ T1427] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2837.139900][ T1427] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2837.167020][ T1427] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2837.180623][ T1427] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2837.191446][ T1427] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2837.201583][ T1427] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2837.212561][ T1427] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2837.224556][ T1427] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 2837.257187][T17605] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 2837.266946][T17605] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 2837.291956][ T1427] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2837.338796][ T1427] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2837.348669][ T1427] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2837.390744][ T1427] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2837.427545][ T1427] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2837.442056][ T1427] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2837.478862][ T1427] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2837.499037][ T1427] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2837.518833][ T1427] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2837.538832][ T1427] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2837.548699][ T1427] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2837.583243][ T1427] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2837.602897][ T1427] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 2837.628037][ T1559] device hsr_slave_0 entered promiscuous mode
[ 2837.649537][ T1559] device hsr_slave_1 entered promiscuous mode
[ 2837.656402][ T1559] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 2837.669661][ T1559] Cannot create hsr debugfs directory
[ 2837.688403][T14991] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 2837.688957][T14879] Bluetooth: hci5: command 0x040f tx timeout
[ 2837.703595][T14991] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 2837.726267][ T1427] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 2837.738215][ T1427] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 2837.753675][ T1427] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 2837.763099][ T1427] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 2837.851501][T30559] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 2837.869304][T30559] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 2837.892733][ T1571] device hsr_slave_0 entered promiscuous mode
[ 2837.909922][ T1571] device hsr_slave_1 entered promiscuous mode
[ 2837.930270][ T1571] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 2837.937885][ T1571] Cannot create hsr debugfs directory
[ 2838.003818][ T1492] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 2838.232409][T14861] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2838.251243][T14861] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2838.351441][T17500] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 2838.362481][T17500] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 2838.372756][T17500] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 2838.469884][T14833] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2838.478387][T14833] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2838.508370][ T5120] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 2838.517807][T17601] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 2838.518329][ T5120] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 2838.541314][T17544] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 2838.551550][T17544] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 2838.560855][T17601] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 2838.566652][T17544] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[ 2838.576469][ T1492] device veth0_vlan entered promiscuous mode
[ 2838.586037][T17544] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 2838.704177][ T1492] device veth1_vlan entered promiscuous mode
[ 2838.719086][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 2838.742860][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 2838.763391][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 2838.780712][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 2839.129194][T14879] Bluetooth: hci4: command 0x0419 tx timeout
[ 2839.340244][T30559] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 2839.350731][ T1675] syz-executor.5 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2839.364951][T30559] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 2839.380991][ T1675] CPU: 0 PID: 1675 Comm: syz-executor.5 Not tainted 6.2.0-rc2-syzkaller-00431-g0164776a2ce7 #0
[ 2839.391374][ T1675] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 2839.401463][ T1675] Call Trace:
[ 2839.404764][ T1675]  <TASK>
[ 2839.407724][ T1675]  dump_stack_lvl+0xd1/0x138
[ 2839.412369][ T1675]  dump_header+0x10b/0x85f
[ 2839.416824][ T1675]  oom_kill_process.cold+0x10/0x15
[ 2839.421977][ T1675]  out_of_memory+0x35c/0x14a0
[ 2839.426710][ T1675]  ? oom_killer_disable+0x280/0x280
[ 2839.431949][ T1675]  ? find_held_lock+0x2d/0x110
[ 2839.436770][ T1675]  mem_cgroup_out_of_memory+0x206/0x270
[ 2839.442347][ T1675]  ? mem_cgroup_margin+0x130/0x130
[ 2839.447513][ T1675]  ? _raw_spin_unlock_irqrestore+0x54/0x70
[ 2839.453371][ T1675]  memory_max_write+0x2f9/0x3c0
[ 2839.458268][ T1675]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 2839.464379][ T1675]  ? lock_release+0x810/0x810
[ 2839.469103][ T1675]  cgroup_file_write+0x1e2/0x770
[ 2839.474075][ T1675]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 2839.480161][ T1675]  ? kill_css+0x370/0x370
[ 2839.484505][ T1675]  ? __virt_addr_valid+0x61/0x2e0
[ 2839.489558][ T1675]  ? kill_css+0x370/0x370
[ 2839.493912][ T1675]  kernfs_fop_write_iter+0x3f1/0x600
[ 2839.499224][ T1675]  vfs_write+0x9ed/0xdd0
[ 2839.503485][ T1675]  ? kernel_write+0x630/0x630
[ 2839.508180][ T1675]  ? __fget_files+0x26a/0x440
[ 2839.512892][ T1675]  ksys_write+0x12b/0x250
[ 2839.517235][ T1675]  ? __ia32_sys_read+0xb0/0xb0
[ 2839.522018][ T1675]  ? syscall_enter_from_user_mode+0x26/0xb0
[ 2839.527936][ T1675]  do_syscall_64+0x39/0xb0
[ 2839.532375][ T1675]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2839.538288][ T1675] RIP: 0033:0x7fb381c8c0c9
[ 2839.542710][ T1675] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 2839.562323][ T1675] RSP: 002b:00007fb382a97168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 2839.570832][ T1675] RAX: ffffffffffffffda RBX: 00007fb381dabf80 RCX: 00007fb381c8c0c9
[ 2839.578812][ T1675] RDX: 0000000000000012 RSI: 0000000020000040 RDI: 0000000000000005
[ 2839.586789][ T1675] RBP: 00007fb381ce7ae9 R08: 0000000000000000 R09: 0000000000000000
[ 2839.594765][ T1675] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2839.603020][ T1675] R13: 00007ffd8d60ba9f R14: 00007fb382a97300 R15: 0000000000022000
[ 2839.611045][ T1675]  </TASK>
[ 2839.626191][ T1492] device veth0_macvtap entered promiscuous mode
[ 2839.687815][T20562] device hsr_slave_0 left promiscuous mode
[ 2839.710871][T20562] device hsr_slave_1 left promiscuous mode
[ 2839.729382][ T1675] memory: usage 10632kB, limit 0kB, failcnt 917
[ 2839.736043][ T1675] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2839.743951][T20562] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 2839.756121][T20562] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 2839.758963][ T1675] Memory cgroup stats for 
[ 2839.766631][T20562] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 2839.769358][T17544] Bluetooth: hci5: command 0x0419 tx timeout
[ 2839.771783][T20562] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 2839.792130][ T1675] /syz5:
[ 2839.793278][ T1675] anon 114688
[ 2839.793278][ T1675] file 10432512
[ 2839.793278][ T1675] kernel 311296
[ 2839.793278][ T1675] kernel_stack 65536
[ 2839.793278][ T1675] pagetables 81920
[ 2839.793278][ T1675] sec_pagetables 0
[ 2839.793278][ T1675] percpu 64
[ 2839.793278][ T1675] sock 0
[ 2839.793278][ T1675] vmalloc 0
[ 2839.793278][ T1675] shmem 10432512
[ 2839.793278][ T1675] zswap 0
[ 2839.793278][ T1675] zswapped 0
[ 2839.793278][ T1675] file_mapped 249856
[ 2839.793278][ T1675] file_dirty 0
[ 2839.793278][ T1675] file_writeback 0
[ 2839.793278][ T1675] swapcached 0
[ 2839.793278][ T1675] anon_thp 0
[ 2839.793278][ T1675] file_thp 0
[ 2839.793278][ T1675] shmem_thp 0
[ 2839.793278][ T1675] inactive_anon 2211840
[ 2839.793278][ T1675] active_anon 8335360
[ 2839.793278][ T1675] inactive_file 0
[ 2839.793278][ T1675] active_file 0
[ 2839.793278][ T1675] unevictable 0
[ 2839.793278][ T1675] slab_reclaimable 40112
[ 2839.793278][ T1675] slab_unreclaimable 101760
[ 2839.793278][ T1675] slab 141872
[ 2839.896229][T20562] device bridge_slave_1 left promiscuous mode
[ 2839.909145][T20562] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2839.918167][T20562] device bridge_slave_0 left promiscuous mode
[ 2839.949131][T20562] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2839.968901][T20562] device hsr_slave_0 left promiscuous mode
[ 2839.989211][T20562] device hsr_slave_1 left promiscuous mode
[ 2840.001307][T20562] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 2840.018847][T20562] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 2840.035539][T20562] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 2840.052474][ T1675] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz5,mems_allowed=0-1,oom_memcg=/syz5,task_memcg=/syz5,task=syz-executor.5,pid=1427,uid=0
[ 2840.063405][T20562] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 2840.098249][ T1675] Memory cgroup out of memory: Killed process 1427 (syz-executor.5) total-vm:50568kB, anon-rss:364kB, file-rss:9088kB, shmem-rss:0kB, UID:0 pgtables:68kB oom_score_adj:0
[ 2840.100553][T20562] device bridge_slave_1 left promiscuous mode
[ 2840.142188][T20562] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2840.161569][T20562] device bridge_slave_0 left promiscuous mode
[ 2840.167875][T20562] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2840.243473][T20562] device hsr_slave_0 left promiscuous mode
[ 2840.279069][T20562] device hsr_slave_1 left promiscuous mode
[ 2840.289403][T20562] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 2840.296877][T20562] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 2840.346638][T20562] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 2840.359054][T20562] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 2840.378132][T20562] device bridge_slave_1 left promiscuous mode
[ 2840.400676][T20562] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2840.440594][T20562] device bridge_slave_0 left promiscuous mode
[ 2840.446903][T20562] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2840.510155][T20562] device hsr_slave_0 left promiscuous mode
[ 2840.529244][T20562] device hsr_slave_1 left promiscuous mode
[ 2840.549357][T20562] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 2840.556873][T20562] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 2840.581709][T20562] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 2840.603607][T20562] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 2840.613473][T20562] device bridge_slave_1 left promiscuous mode
[ 2840.629221][T20562] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2840.649095][T17544] Bluetooth: hci0: command 0x0409 tx timeout
[ 2840.658952][T20562] device bridge_slave_0 left promiscuous mode
[ 2840.665200][T20562] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2840.724176][T20562] device veth1_macvtap left promiscuous mode
[ 2840.737616][T20562] device veth0_macvtap left promiscuous mode
[ 2840.751999][T20562] device veth1_vlan left promiscuous mode
[ 2840.764751][T20562] device veth0_vlan left promiscuous mode
[ 2840.781166][T20562] device veth1_macvtap left promiscuous mode
[ 2840.787863][T20562] device veth0_macvtap left promiscuous mode
[ 2840.801142][T20562] device veth1_vlan left promiscuous mode
[ 2840.814062][T20562] device veth0_vlan left promiscuous mode
[ 2840.829344][T20562] device veth1_macvtap left promiscuous mode
[ 2840.846401][T20562] device veth0_macvtap left promiscuous mode
[ 2840.860776][T20562] device veth1_vlan left promiscuous mode
[ 2840.872574][T20562] device veth0_vlan left promiscuous mode
[ 2840.887042][T20562] device veth1_macvtap left promiscuous mode
[ 2840.899979][T20562] device veth0_macvtap left promiscuous mode
[ 2840.906410][T20562] device veth1_vlan left promiscuous mode
[ 2840.920239][T20562] device veth0_vlan left promiscuous mode
[ 2842.498398][T20562] team0 (unregistering): Port device team_slave_1 removed
[ 2842.517365][T20562] team0 (unregistering): Port device team_slave_0 removed
[ 2842.535104][T20562] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 2842.551992][T20562] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 2842.674130][T20562] bond0 (unregistering): Released all slaves
[ 2842.729079][T17544] Bluetooth: hci0: command 0x041b tx timeout
[ 2843.021916][T20562] team0 (unregistering): Port device team_slave_1 removed
[ 2843.049511][T20562] team0 (unregistering): Port device team_slave_0 removed
[ 2843.085493][T20562] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 2843.119416][T20562] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 2843.274949][T20562] bond0 (unregistering): Released all slaves
[ 2843.487820][T20562] team0 (unregistering): Port device team_slave_1 removed
[ 2843.504428][T20562] team0 (unregistering): Port device team_slave_0 removed
[ 2843.547418][T20562] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 2843.579909][T20562] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 2843.670703][T20562] bond0 (unregistering): Released all slaves
[ 2843.924452][T20562] team0 (unregistering): Port device team_slave_1 removed
[ 2843.941331][T20562] team0 (unregistering): Port device team_slave_0 removed
[ 2843.957441][T20562] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 2843.988225][T20562] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 2844.146921][T20562] bond0 (unregistering): Released all slaves
[ 2844.310641][ T1492] device veth1_macvtap entered promiscuous mode
[ 2844.332842][T30778] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 2844.342295][T30778] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
21:28:33 executing program 1:
r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0)
perf_event_open(&(0x7f0000000180)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x6, 0x401}, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000180)={0x0, 0x80, 0x0, 0x7c, 0x4, 0xd2, 0x0, 0x5, 0x0, 0x74d4e3ef7733d4ea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x26, 0x0, @perf_bp={0x0}, 0x210, 0x0, 0x1f, 0x3, 0x0, 0x0, 0xffff}, 0x0, 0x0, 0xffffffffffffffff, 0x9)
openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
perf_event_open(&(0x7f0000000200)={0x4, 0x80, 0x9, 0x0, 0x0, 0x5, 0x0, 0xffffffff, 0x800, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x2, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x2, 0x2, @perf_bp={&(0x7f0000000100), 0x5}, 0x0, 0x100000000, 0x2a, 0x0, 0x8, 0x40, 0x0, 0x0, 0x3f, 0x0, 0x4000000000000000}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
recvmsg(0xffffffffffffffff, 0x0, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f00000002c0)='cpuacct.usage_percpu_sys\x00', 0x0, 0x0)
perf_event_open$cgroup(&(0x7f00000003c0)={0x4, 0x80, 0x1, 0xff, 0x1, 0x5, 0x0, 0x800000000000008, 0x21001, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x3, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0xffff0000, 0x4, @perf_bp={&(0x7f0000000380), 0x8}, 0x40ae, 0xe, 0x78d8, 0x5, 0x7, 0x7, 0x1ff}, 0xffffffffffffffff, 0xc, r0, 0xc)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000018c00)={0x18, 0x3, &(0x7f0000000780)=ANY=[@ANYBLOB="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"], &(0x7f0000000440)='syzkaller\x00', 0x4, 0xb0, &(0x7f0000000480)=""/176, 0x0, 0x0, '\x00', 0x0, 0x0, r1, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
r3 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='rcu_utilization\x00', r2}, 0x10)
r4 = perf_event_open$cgroup(&(0x7f0000000080)={0x4, 0x80, 0x81, 0x5, 0x6, 0x0, 0x0, 0x8000000000000000, 0x848, 0x4, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x3, 0x0, @perf_config_ext={0x912410d}, 0x8800, 0xffffffff, 0x7, 0x6, 0x3f, 0x7, 0x8dd, 0x0, 0x5, 0x0, 0x1}, 0xffffffffffffffff, 0xb, 0xffffffffffffffff, 0x9)
ioctl$PERF_EVENT_IOC_SET_OUTPUT(0xffffffffffffffff, 0x2405, r4)
r5 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000540)='./cgroup.cpu/syz1\x00', 0x200002, 0x0)
openat$cgroup_ro(r5, &(0x7f0000000640)='cgroup.stat\x00', 0x0, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r4, 0x40082404, &(0x7f0000000580)=0xffffffffffffff7f)
r6 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000000)='cpuacct.usage_percpu_sys\x00', 0x26e1, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r6, 0x40086607, &(0x7f0000000040))
r7 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x26e1, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000018c00)={0x18, 0x3, &(0x7f0000000300)=ANY=[@ANYRES64=r1], 0x0, 0x4, 0xb0, &(0x7f0000000480)=""/176, 0x40f00, 0x5, '\x00', 0x0, 0x0, r7, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x0, 0x204d, &(0x7f00000005c0)=ANY=[@ANYRES32], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x18, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000740)={0x0, 0x3}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000002c0)=[0xffffffffffffffff, r7, 0xffffffffffffffff]}, 0x80)
write$cgroup_int(r7, &(0x7f0000000280)=0x1ff, 0x12)
r8 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000001e00)={&(0x7f0000001dc0)='./file0\x00', 0x0, 0x10}, 0x10)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000001e80)=@bpf_lsm={0x1d, 0x2, &(0x7f0000000700)=@raw=[@map_idx={0x18, 0x4}], &(0x7f0000002340)='GPL\x00', 0x5, 0x33, &(0x7f0000002380)=""/51, 0x41100, 0x2, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f00000023c0)={0x5, 0x4}, 0x8, 0x10, &(0x7f0000002400)={0x3, 0xa, 0x6, 0xae2e}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000002500)=[r0, r8, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}, 0x80)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={0xffffffffffffffff, 0x18000000000002a0, 0x0, 0x0, &(0x7f00000001c0), 0x0, 0x0, 0xe8030000, 0x0, 0x0, 0x0, 0x0}, 0x48)
ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x89f2, &(0x7f0000000080)='ip6tnl0\x00')
socketpair(0x1e, 0x5, 0x20, &(0x7f0000000600))
socketpair(0x1, 0x1, 0x0, &(0x7f0000000740)={0xffffffffffffffff, <r9=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r9, 0x89f1, &(0x7f0000000080))
close(r3)

[ 2844.420142][ T1492] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2844.444416][ T1492] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2844.454601][ T1492] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2844.465152][ T1492] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2844.475098][ T1492] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2844.485799][ T1492] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
21:28:33 executing program 5:
openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0)
openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
perf_event_open(0x0, 0xffffffffffffffff, 0xb, 0xffffffffffffffff, 0x0)
r1 = openat$cgroup_int(r0, &(0x7f00000000c0)='memory.max\x00', 0x2, 0x0)
getpid()
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000300)='cpuacct.usage_all\x00', 0x0, 0x0)
bpf$ITER_CREATE(0x21, &(0x7f00000002c0), 0x8)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='blkio.bfq.io_service_time\x00', 0x26e1, 0x0)
write$cgroup_int(r2, &(0x7f0000000040), 0x12)
close(r2)
syz_open_procfs$namespace(0x0, 0x0)
write$cgroup_int(r1, &(0x7f0000000040), 0x12)

[ 2844.513672][ T1492] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 2844.547764][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 2844.577917][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 2844.615797][ T1492] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2844.644124][ T1492] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2844.667692][ T1492] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2844.684501][ T1492] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2844.702797][ T1492] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2844.725017][ T1492] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2844.750419][ T1492] batman_adv: batadv0: Interface activated: batadv_slave_1
21:28:33 executing program 5:
openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0)
openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
perf_event_open(0x0, 0xffffffffffffffff, 0xb, 0xffffffffffffffff, 0x0)
r1 = openat$cgroup_int(r0, &(0x7f00000000c0)='memory.max\x00', 0x2, 0x0)
getpid()
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000300)='cpuacct.usage_all\x00', 0x0, 0x0)
bpf$ITER_CREATE(0x21, &(0x7f00000002c0), 0x8)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='blkio.bfq.io_service_time\x00', 0x26e1, 0x0)
write$cgroup_int(r2, &(0x7f0000000040), 0x12)
close(r2)
syz_open_procfs$namespace(0x0, 0x0)
write$cgroup_int(r1, &(0x7f0000000040), 0x12)

[ 2844.811034][T17544] Bluetooth: hci0: command 0x040f tx timeout
[ 2844.811251][T14991] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 2844.860279][T14991] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 2844.901788][ T1492] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 2844.940104][ T1492] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 2844.978098][ T1492] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 2845.008877][ T1492] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 2845.526597][ T1663] chnl_net:caif_netlink_parms(): no params data found
[ 2845.561113][T17514] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2845.579164][T17514] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2845.732953][T14991] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 2845.791791][T14833] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2845.820333][T14833] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2845.862666][ T1663] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2845.873993][ T1663] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2845.890087][ T1663] device bridge_slave_0 entered promiscuous mode
[ 2845.910721][T30778] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 2845.931818][ T1663] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2845.948970][ T1663] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2845.978112][ T1663] device bridge_slave_1 entered promiscuous mode
[ 2846.100145][ T1663] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 2846.162079][ T1663] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 2846.246117][ T1710] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2846.265403][ T1710] CPU: 0 PID: 1710 Comm: syz-executor.3 Not tainted 6.2.0-rc2-syzkaller-00431-g0164776a2ce7 #0
[ 2846.275801][ T1710] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 2846.285889][ T1710] Call Trace:
[ 2846.289195][ T1710]  <TASK>
[ 2846.292146][ T1710]  dump_stack_lvl+0xd1/0x138
[ 2846.296784][ T1710]  dump_header+0x10b/0x85f
[ 2846.301245][ T1710]  oom_kill_process.cold+0x10/0x15
[ 2846.306411][ T1710]  out_of_memory+0x35c/0x14a0
[ 2846.311131][ T1710]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 2846.317340][ T1710]  ? oom_killer_disable+0x280/0x280
[ 2846.322575][ T1710]  ? mark_held_locks+0x9f/0xe0
[ 2846.327384][ T1710]  mem_cgroup_out_of_memory+0x206/0x270
[ 2846.332965][ T1710]  ? mem_cgroup_margin+0x130/0x130
[ 2846.338130][ T1710]  memory_max_write+0x2f9/0x3c0
[ 2846.343040][ T1710]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 2846.349130][ T1710]  ? lock_release+0x810/0x810
[ 2846.353864][ T1710]  cgroup_file_write+0x1e2/0x770
[ 2846.358869][ T1710]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 2846.364972][ T1710]  ? kill_css+0x370/0x370
[ 2846.369322][ T1710]  ? __virt_addr_valid+0x61/0x2e0
[ 2846.374410][ T1710]  ? kill_css+0x370/0x370
[ 2846.378778][ T1710]  kernfs_fop_write_iter+0x3f1/0x600
[ 2846.384099][ T1710]  vfs_write+0x9ed/0xdd0
[ 2846.388372][ T1710]  ? kernel_write+0x630/0x630
[ 2846.393070][ T1710]  ? lockdep_hardirqs_on+0x7d/0x100
[ 2846.398282][ T1710]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 2846.404468][ T1710]  ? __fdget_pos+0x84/0x100
[ 2846.408997][ T1710]  ksys_write+0x12b/0x250
[ 2846.413341][ T1710]  ? __ia32_sys_read+0xb0/0xb0
[ 2846.418137][ T1710]  do_syscall_64+0x39/0xb0
[ 2846.422580][ T1710]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2846.428506][ T1710] RIP: 0033:0x7f2cdc68c0c9
[ 2846.432930][ T1710] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 2846.452588][ T1710] RSP: 002b:00007f2cdd3dd168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 2846.461023][ T1710] RAX: ffffffffffffffda RBX: 00007f2cdc7abf80 RCX: 00007f2cdc68c0c9
[ 2846.469008][ T1710] RDX: 0000000000000012 RSI: 0000000020000040 RDI: 0000000000000005
[ 2846.476989][ T1710] RBP: 00007f2cdc6e7ae9 R08: 0000000000000000 R09: 0000000000000000
[ 2846.484972][ T1710] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2846.492969][ T1710] R13: 00007ffc8f4000df R14: 00007f2cdd3dd300 R15: 0000000000022000
[ 2846.500971][ T1710]  </TASK>
[ 2846.642656][ T1663] team0: Port device team_slave_0 added
[ 2846.652619][ T1710] memory: usage 10632kB, limit 0kB, failcnt 867
[ 2846.669188][ T1710] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2846.689646][ T1663] team0: Port device team_slave_1 added
[ 2846.708488][ T1710] Memory cgroup stats for /syz3:
[ 2846.713687][ T1710] anon 114688
[ 2846.713687][ T1710] file 10452992
[ 2846.713687][ T1710] kernel 319488
[ 2846.713687][ T1710] kernel_stack 65536
[ 2846.713687][ T1710] pagetables 81920
[ 2846.713687][ T1710] sec_pagetables 0
[ 2846.713687][ T1710] percpu 64
[ 2846.713687][ T1710] sock 0
[ 2846.713687][ T1710] vmalloc 0
[ 2846.713687][ T1710] shmem 10448896
[ 2846.713687][ T1710] zswap 0
[ 2846.713687][ T1710] zswapped 0
[ 2846.713687][ T1710] file_mapped 331776
[ 2846.713687][ T1710] file_dirty 0
[ 2846.713687][ T1710] file_writeback 0
[ 2846.713687][ T1710] swapcached 0
[ 2846.713687][ T1710] anon_thp 0
[ 2846.713687][ T1710] file_thp 0
[ 2846.713687][ T1710] shmem_thp 0
[ 2846.713687][ T1710] inactive_anon 2211840
[ 2846.713687][ T1710] active_anon 8351744
[ 2846.713687][ T1710] inactive_file 4096
[ 2846.713687][ T1710] active_file 0
[ 2846.713687][ T1710] unevictable 0
[ 2846.713687][ T1710] slab_reclaimable 40440
[ 2846.713687][ T1710] slab_unreclaimable 100464
[ 2846.713687][ T1710] slab 140904
[ 2846.889905][T17544] Bluetooth: hci0: command 0x0419 tx timeout
[ 2846.918687][ T1663] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 2846.925839][ T1663] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2846.957375][ T1663] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 2846.989242][ T1571] netdevsim netdevsim4 netdevsim0: renamed from eth0
[ 2847.022647][ T1663] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 2847.030774][ T1663] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2847.057943][ T1663] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 2847.118385][ T1571] netdevsim netdevsim4 netdevsim1: renamed from eth1
[ 2847.204681][ T1571] netdevsim netdevsim4 netdevsim2: renamed from eth2
[ 2847.280649][ T1663] device hsr_slave_0 entered promiscuous mode
[ 2847.296991][ T1663] device hsr_slave_1 entered promiscuous mode
[ 2847.328546][ T1710] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=1709,uid=0
[ 2847.367200][T14879] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 2847.375722][ T1571] netdevsim netdevsim4 netdevsim3: renamed from eth3
[ 2847.388220][T14879] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 2847.394192][ T1710] Memory cgroup out of memory: Killed process 1710 (syz-executor.3) total-vm:54540kB, anon-rss:500kB, file-rss:8960kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000
[ 2847.415885][ T5120] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
21:28:36 executing program 3:
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
perf_event_open(0x0, 0xffffffffffffffff, 0xb, 0xffffffffffffffff, 0x0)
r1 = openat$cgroup_int(r0, &(0x7f00000000c0)='memory.max\x00', 0x2, 0x0)
getpid()
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x1f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='blkio.bfq.io_service_time\x00', 0x26e1, 0x0)
write$cgroup_int(r2, &(0x7f0000000040), 0x12)
close(r2)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000280)='host1x_cdma_push_wide\x00'}, 0x10)
write$cgroup_int(r1, &(0x7f0000000040), 0x12)

[ 2847.428003][ T5120] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 2847.436508][ T5120] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[ 2847.444349][ T5120] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 2847.492778][ T1492] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=0
[ 2847.499846][ T1559] netdevsim netdevsim2 netdevsim0: renamed from eth0
[ 2847.504437][ T1492] CPU: 0 PID: 1492 Comm: syz-executor.3 Not tainted 6.2.0-rc2-syzkaller-00431-g0164776a2ce7 #0
[ 2847.519763][ T1492] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 2847.529835][ T1492] Call Trace:
[ 2847.533121][ T1492]  <TASK>
[ 2847.536060][ T1492]  dump_stack_lvl+0xd1/0x138
[ 2847.540687][ T1492]  dump_header+0x10b/0x85f
[ 2847.545133][ T1492]  oom_kill_process.cold+0x10/0x15
[ 2847.550269][ T1492]  out_of_memory+0x35c/0x14a0
[ 2847.554998][ T1492]  ? find_held_lock+0x2d/0x110
[ 2847.559786][ T1492]  ? oom_killer_disable+0x280/0x280
[ 2847.564999][ T1492]  ? find_held_lock+0x2d/0x110
[ 2847.569787][ T1492]  mem_cgroup_out_of_memory+0x206/0x270
[ 2847.575361][ T1492]  ? mem_cgroup_margin+0x130/0x130
[ 2847.580476][ T1492]  ? lock_downgrade+0x6e0/0x6e0
[ 2847.585350][ T1492]  try_charge_memcg+0xefb/0x12f0
[ 2847.590307][ T1492]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 2847.596297][ T1492]  ? get_mem_cgroup_from_objcg+0xa1/0x260
[ 2847.602041][ T1492]  ? lock_downgrade+0x6e0/0x6e0
[ 2847.606935][ T1492]  obj_cgroup_charge+0x2af/0x5e0
[ 2847.611903][ T1492]  kmem_cache_alloc_lru+0x145/0x760
[ 2847.617125][ T1492]  ? __d_alloc+0x32/0x980
[ 2847.621477][ T1492]  __d_alloc+0x32/0x980
[ 2847.625645][ T1492]  ? __lock_acquire+0x166e/0x56d0
[ 2847.630681][ T1492]  d_alloc+0x4e/0x240
[ 2847.634684][ T1492]  d_alloc_parallel+0xe8/0x1410
[ 2847.639559][ T1492]  ? lockdep_hardirqs_on_prepare+0x410/0x410
[ 2847.645551][ T1492]  ? __d_lookup_rcu+0x4c0/0x4c0
[ 2847.650419][ T1492]  ? lockdep_init_map_type+0x21e/0x800
[ 2847.655886][ T1492]  ? lockdep_init_map_type+0x21e/0x800
[ 2847.661361][ T1492]  __lookup_slow+0x193/0x460
[ 2847.665986][ T1492]  ? __lookup_hash+0x180/0x180
[ 2847.670772][ T1492]  ? azx_position_ok.cold+0x1ae/0x281
[ 2847.676169][ T1492]  ? azx_position_ok.cold+0x1ae/0x281
[ 2847.681578][ T1492]  ? lookup_fast+0x14e/0x520
[ 2847.686186][ T1492]  walk_component+0x33f/0x5a0
[ 2847.690882][ T1492]  path_lookupat+0x1ba/0x840
[ 2847.695497][ T1492]  filename_lookup+0x1d2/0x590
[ 2847.700279][ T1492]  ? may_linkat+0x500/0x500
[ 2847.704796][ T1492]  ? __might_fault+0xd9/0x180
[ 2847.709497][ T1492]  ? __phys_addr_symbol+0x30/0x70
[ 2847.714533][ T1492]  ? __check_object_size+0x2e2/0x5a0
[ 2847.719838][ T1492]  ? strncpy_from_user+0x28b/0x3c0
[ 2847.724970][ T1492]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2847.730391][ T1492]  user_path_at_empty+0x46/0x60
[ 2847.735264][ T1492]  __x64_sys_umount+0xfc/0x190
[ 2847.740047][ T1492]  ? path_umount+0x10b0/0x10b0
[ 2847.744838][ T1492]  ? syscall_enter_from_user_mode+0x26/0xb0
[ 2847.750769][ T1492]  do_syscall_64+0x39/0xb0
[ 2847.755206][ T1492]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2847.761109][ T1492] RIP: 0033:0x7f2cdc68d537
[ 2847.765530][ T1492] Code: ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 2847.785161][ T1492] RSP: 002b:00007ffc8f3ff238 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 2847.793631][ T1492] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f2cdc68d537
[ 2847.801620][ T1492] RDX: 00007ffc8f3ff30e RSI: 000000000000000a RDI: 00007ffc8f3ff300
[ 2847.809602][ T1492] RBP: 00007ffc8f3ff300 R08: 00000000ffffffff R09: 00007ffc8f3ff0d0
[ 2847.817582][ T1492] R10: 00005555556e28e3 R11: 0000000000000246 R12: 00007f2cdc6e6b24
[ 2847.825556][ T1492] R13: 00007ffc8f4003c0 R14: 00005555556e2810 R15: 00007ffc8f400400
[ 2847.833551][ T1492]  </TASK>
[ 2847.844367][ T1492] memory: usage 10464kB, limit 0kB, failcnt 886
[ 2847.851545][ T1492] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2847.858970][ T1492] Memory cgroup stats for /syz3:
[ 2847.859167][ T1492] anon 45056
[ 2847.859167][ T1492] file 10448896
[ 2847.859167][ T1492] kernel 126976
[ 2847.859167][ T1492] kernel_stack 0
[ 2847.859167][ T1492] pagetables 8192
[ 2847.859167][ T1492] sec_pagetables 0
[ 2847.859167][ T1492] percpu 64
[ 2847.859167][ T1492] sock 0
[ 2847.859167][ T1492] vmalloc 0
[ 2847.859167][ T1492] shmem 10448896
[ 2847.859167][ T1492] zswap 0
[ 2847.859167][ T1492] zswapped 0
[ 2847.859167][ T1492] file_mapped 315392
[ 2847.859167][ T1492] file_dirty 0
[ 2847.859167][ T1492] file_writeback 0
[ 2847.859167][ T1492] swapcached 0
[ 2847.859167][ T1492] anon_thp 0
[ 2847.859167][ T1492] file_thp 0
[ 2847.859167][ T1492] shmem_thp 0
[ 2847.859167][ T1492] inactive_anon 2142208
[ 2847.859167][ T1492] active_anon 8351744
[ 2847.859167][ T1492] inactive_file 0
[ 2847.859167][ T1492] active_file 0
[ 2847.859167][ T1492] unevictable 0
[ 2847.859167][ T1492] slab_reclaimable 37304
[ 2847.859167][ T1492] slab_unreclaimable 71440
[ 2847.859167][ T1492] slab 108744
[ 2847.960654][ T1559] netdevsim netdevsim2 netdevsim1: renamed from eth1
[ 2847.967772][ T1492] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=1492,uid=0
[ 2847.986182][ T1559] netdevsim netdevsim2 netdevsim2: renamed from eth2
[ 2847.997069][ T1559] netdevsim netdevsim2 netdevsim3: renamed from eth3
[ 2848.004315][ T1492] Memory cgroup out of memory: Killed process 1492 (syz-executor.3) total-vm:50568kB, anon-rss:364kB, file-rss:9088kB, shmem-rss:0kB, UID:0 pgtables:76kB oom_score_adj:0
21:28:37 executing program 3:
openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
perf_event_open(0x0, 0xffffffffffffffff, 0xb, 0xffffffffffffffff, 0x0)
r1 = openat$cgroup_int(r0, &(0x7f00000000c0)='memory.max\x00', 0x2, 0x0)
getpid()
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x1f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='blkio.bfq.io_service_time\x00', 0x26e1, 0x0)
write$cgroup_int(r2, &(0x7f0000000040), 0x12)
close(r2)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000280)='host1x_cdma_push_wide\x00'}, 0x10)
write$cgroup_int(r1, &(0x7f0000000040), 0x12)

21:28:37 executing program 3:
openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
perf_event_open(0x0, 0xffffffffffffffff, 0xb, 0xffffffffffffffff, 0x0)
r1 = openat$cgroup_int(r0, &(0x7f00000000c0)='memory.max\x00', 0x2, 0x0)
getpid()
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x1f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='blkio.bfq.io_service_time\x00', 0x26e1, 0x0)
write$cgroup_int(r2, &(0x7f0000000040), 0x12)
close(r2)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000280)='host1x_cdma_push_wide\x00'}, 0x10)
write$cgroup_int(r1, &(0x7f0000000040), 0x12)

[ 2848.621795][ T1571] 8021q: adding VLAN 0 to HW filter on device bond0
[ 2848.710409][ T1663] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2848.800279][ T1559] 8021q: adding VLAN 0 to HW filter on device bond0
[ 2848.840418][T14991] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 2848.848617][T14991] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 2848.883075][ T1571] 8021q: adding VLAN 0 to HW filter on device team0
[ 2848.952199][ T1663] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2848.989915][T17500] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 2849.029376][T17500] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 2849.052236][ T1559] 8021q: adding VLAN 0 to HW filter on device team0
[ 2849.097644][ T1721] chnl_net:caif_netlink_parms(): no params data found
[ 2849.143254][ T1663] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2849.218458][T14991] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 2849.240813][T14991] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 2849.269536][T14991] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2849.276696][T14991] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 2849.329255][T14991] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 2849.338049][T14991] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 2849.399935][T14991] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2849.407065][T14991] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 2849.459204][T14991] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 2849.489157][T14991] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 2849.529533][T17544] Bluetooth: hci2: command 0x0409 tx timeout
[ 2849.593860][ T1663] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2849.666519][T23289] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 2849.679814][T23289] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 2849.709771][T23289] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 2849.739314][T23289] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 2849.747961][T23289] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 2849.787308][T23289] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 2849.808638][T23289] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 2849.829359][T23289] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2849.836484][T23289] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 2849.879237][T23289] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 2849.888107][T23289] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 2849.929486][T23289] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2849.936628][T23289] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 2850.021916][ T1571] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 2850.050210][ T1571] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 2850.080212][T30778] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 2850.088389][T30778] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 2850.109882][T30778] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 2850.129762][T30778] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 2850.149021][T30778] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 2850.191815][T17605] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 2850.246220][T23289] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 2850.400284][T14991] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 2850.408405][T14991] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 2850.450757][T14991] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 2850.477595][T14991] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 2850.509625][T14991] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 2850.518172][T14991] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 2850.630140][ T1721] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2850.637287][ T1721] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2850.690160][ T1721] device bridge_slave_0 entered promiscuous mode
[ 2850.763666][ T1559] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 2850.780515][ T1721] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2850.809099][ T1721] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2850.817535][ T1721] device bridge_slave_1 entered promiscuous mode
[ 2850.997329][ T1721] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 2851.049815][  T483] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 2851.057379][  T483] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 2851.092480][ T1663] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 2851.116585][ T1721] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 2851.144547][ T1571] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 2851.159578][ T1663] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 2851.163003][ T5120] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 2851.176887][ T5120] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 2851.186257][ T5120] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 2851.194972][ T5120] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 2851.202584][ T5120] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[ 2851.211023][ T5120] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 2851.403254][ T1663] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 2851.445366][ T1721] team0: Port device team_slave_0 added
[ 2851.471339][ T1721] team0: Port device team_slave_1 added
[ 2851.489545][ T1663] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 2851.581396][ T1721] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 2851.588398][ T1721] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2851.619453][T17544] Bluetooth: hci2: command 0x041b tx timeout
[ 2851.673792][ T1721] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 2851.744050][ T1721] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 2851.751851][ T1721] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2851.849280][ T1721] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 2851.959319][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 2851.966868][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 2852.007408][ T1559] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 2852.045364][ T1721] device hsr_slave_0 entered promiscuous mode
[ 2852.070371][ T1721] device hsr_slave_1 entered promiscuous mode
[ 2852.079525][ T1721] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 2852.087173][ T1721] Cannot create hsr debugfs directory
[ 2852.252481][ T1663] 8021q: adding VLAN 0 to HW filter on device bond0
[ 2852.352024][  T483] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 2852.369791][  T483] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 2852.379380][  T483] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 2852.387389][  T483] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 2852.456316][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 2852.470137][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 2852.511699][ T1663] 8021q: adding VLAN 0 to HW filter on device team0
[ 2852.536343][ T1571] device veth0_vlan entered promiscuous mode
[ 2852.576823][T14991] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 2852.588323][T14991] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 2852.620025][T14991] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 2852.628536][T14991] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 2852.649567][T14991] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 2852.658393][T14991] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 2852.679570][T14991] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2852.686718][T14991] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 2852.704933][T14827] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 2852.713367][T14827] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 2852.736287][T14827] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 2852.750064][T14827] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 2852.758145][T14827] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 2852.781415][ T1559] device veth0_vlan entered promiscuous mode
[ 2852.793723][ T1571] device veth1_vlan entered promiscuous mode
[ 2852.833857][ T1769] chnl_net:caif_netlink_parms(): no params data found
[ 2852.876325][ T1559] device veth1_vlan entered promiscuous mode
[ 2852.909404][T17601] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 2852.917726][T17601] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 2852.934867][T17601] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 2852.949387][T17601] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 2852.958015][T17601] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2852.965232][T17601] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 2852.973742][T17601] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 2852.994866][T17601] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 2853.016324][T17601] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 2853.044312][T17601] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 2853.154273][T17500] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 2853.169588][T17500] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 2853.177933][T17500] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 2853.195636][ T1663] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 2853.223759][ T1663] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 2853.289937][T17544] Bluetooth: hci3: command 0x0409 tx timeout
[ 2853.305251][T14827] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 2853.320087][T14827] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 2853.337868][T14827] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 2853.354285][T14827] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 2853.384448][ T1559] device veth0_macvtap entered promiscuous mode
[ 2853.461803][T30778] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 2853.504101][T30778] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 2853.515464][T30778] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 2853.570522][T30778] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 2853.579712][T30778] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 2853.633722][T20562] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2853.669870][ T1559] device veth1_macvtap entered promiscuous mode
[ 2853.688906][T17544] Bluetooth: hci2: command 0x040f tx timeout
[ 2853.709578][ T1571] device veth0_macvtap entered promiscuous mode
[ 2853.727627][T30778] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 2853.749624][T30778] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 2853.793312][T20562] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2853.876565][ T1721] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2853.907384][ T1559] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2853.929992][ T1559] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2853.948773][ T1559] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2853.972116][ T1559] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2853.988869][ T1559] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2854.011212][ T1559] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2854.038926][ T1559] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2854.061580][ T1559] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2854.109819][ T1559] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 2854.117616][ T1769] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2854.128251][ T1769] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2854.156317][ T1769] device bridge_slave_0 entered promiscuous mode
[ 2854.173747][T20562] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2854.202369][ T1571] device veth1_macvtap entered promiscuous mode
[ 2854.220084][T17500] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 2854.229277][T17500] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 2854.280236][ T1721] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2854.310787][ T1769] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2854.317917][ T1769] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2854.327413][ T1769] device bridge_slave_1 entered promiscuous mode
[ 2854.359563][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 2854.367531][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 2854.396223][T20562] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2854.431075][ T1559] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2854.453031][ T1559] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2854.477321][ T1559] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2854.500227][ T1559] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2854.518802][ T1559] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2854.540347][ T1559] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2854.559027][ T1559] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2854.588893][ T1559] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2854.611780][ T1559] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 2854.635990][ T1721] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2854.692363][ T1663] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 2854.725041][  T483] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 2854.739927][  T483] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 2854.761580][ T1559] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 2854.779480][ T1559] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 2854.788236][ T1559] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 2854.838800][ T1559] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 2854.881508][ T1721] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2854.913712][ T1571] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2854.928861][ T1571] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2854.958828][ T1571] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2854.975003][ T1571] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2855.001867][ T1571] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2855.012740][ T1571] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2855.026993][ T1571] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2855.037925][ T1571] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2855.059102][ T1571] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2855.078799][ T1571] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2855.109040][ T1571] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 2855.122065][  T483] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 2855.139584][  T483] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 2855.183091][ T1769] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 2855.369076][T17544] Bluetooth: hci3: command 0x041b tx timeout
[ 2855.378637][ T1571] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2855.398946][ T1571] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2855.429043][ T1571] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2855.478920][ T1571] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2855.508943][ T1571] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2855.528967][ T1571] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2855.548806][ T1571] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2855.568871][ T1571] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2855.588904][ T1571] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2855.609058][ T1571] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2855.630515][ T1571] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 2855.640498][ T1769] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 2855.742916][T17601] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 2855.752868][T17601] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 2855.762152][T17601] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 2855.770949][T17544] Bluetooth: hci2: command 0x0419 tx timeout
[ 2855.778143][T17601] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 2855.790449][ T1571] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 2855.818858][ T1571] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 2855.827607][ T1571] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 2855.850103][ T1571] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 2855.938475][T10995] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2855.992013][T10995] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2856.007974][ T1769] team0: Port device team_slave_0 added
[ 2856.050096][ T1769] team0: Port device team_slave_1 added
[ 2856.194899][T14827] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 2856.204081][T14827] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 2856.225969][T14827] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 2856.249931][ T1663] device veth0_vlan entered promiscuous mode
[ 2856.274061][T14833] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2856.298798][T14833] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2856.361937][ T1769] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 2856.388973][ T1769] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2856.448862][ T1769] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 2856.470361][T14827] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 2856.478356][T14827] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 2856.519561][T14827] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 2856.765110][ T1769] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 2856.787953][ T1769] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2856.868878][ T1769] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 2856.895205][ T1663] device veth1_vlan entered promiscuous mode
[ 2856.942766][T30465] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 2857.091501][ T1721] netdevsim netdevsim5 netdevsim0: renamed from eth0
[ 2857.169626][T10995] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2857.177783][T10995] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2857.201329][ T1769] device hsr_slave_0 entered promiscuous mode
[ 2857.231633][ T1769] device hsr_slave_1 entered promiscuous mode
[ 2857.251974][ T1769] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 2857.277737][ T1769] Cannot create hsr debugfs directory
[ 2857.302345][ T1721] netdevsim netdevsim5 netdevsim1: renamed from eth1
[ 2857.328156][ T1663] device veth0_macvtap entered promiscuous mode
[ 2857.395004][ T1863] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2857.410822][ T1863] CPU: 0 PID: 1863 Comm: syz-executor.2 Not tainted 6.2.0-rc2-syzkaller-00431-g0164776a2ce7 #0
[ 2857.421225][ T1863] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 2857.431402][ T1863] Call Trace:
[ 2857.434712][ T1863]  <TASK>
[ 2857.437673][ T1863]  dump_stack_lvl+0xd1/0x138
[ 2857.442320][ T1863]  dump_header+0x10b/0x85f
[ 2857.446785][ T1863]  oom_kill_process.cold+0x10/0x15
[ 2857.449582][ T5120] Bluetooth: hci3: command 0x040f tx timeout
[ 2857.451922][ T1863]  out_of_memory+0x35c/0x14a0
[ 2857.462627][ T1863]  ? lockdep_hardirqs_on+0x7d/0x100
[ 2857.467898][ T1863]  ? oom_killer_disable+0x280/0x280
[ 2857.473140][ T1863]  ? mem_cgroup_out_of_memory+0x8d/0x270
[ 2857.478821][ T1863]  mem_cgroup_out_of_memory+0x206/0x270
[ 2857.484430][ T1863]  ? mem_cgroup_margin+0x130/0x130
[ 2857.489578][ T1863]  memory_max_write+0x2f9/0x3c0
[ 2857.494473][ T1863]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 2857.500559][ T1863]  ? cgroup_file_write+0x8e/0x770
[ 2857.505615][ T1863]  cgroup_file_write+0x1e2/0x770
[ 2857.510570][ T1863]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 2857.516677][ T1863]  ? kill_css+0x370/0x370
[ 2857.521052][ T1863]  ? __virt_addr_valid+0x61/0x2e0
[ 2857.526118][ T1863]  ? kill_css+0x370/0x370
[ 2857.530470][ T1863]  kernfs_fop_write_iter+0x3f1/0x600
[ 2857.535788][ T1863]  vfs_write+0x9ed/0xdd0
[ 2857.540071][ T1863]  ? kernel_write+0x630/0x630
[ 2857.544768][ T1863]  ? __fget_files+0x26a/0x440
[ 2857.549474][ T1863]  ksys_write+0x12b/0x250
[ 2857.553817][ T1863]  ? __ia32_sys_read+0xb0/0xb0
[ 2857.558616][ T1863]  ? syscall_enter_from_user_mode+0x26/0xb0
[ 2857.564547][ T1863]  do_syscall_64+0x39/0xb0
[ 2857.568986][ T1863]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2857.574893][ T1863] RIP: 0033:0x7f508dc8c0c9
[ 2857.579317][ T1863] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 2857.598949][ T1863] RSP: 002b:00007f508ea63168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 2857.607391][ T1863] RAX: ffffffffffffffda RBX: 00007f508ddabf80 RCX: 00007f508dc8c0c9
[ 2857.615374][ T1863] RDX: 0000000000000012 RSI: 0000000020000040 RDI: 0000000000000005
[ 2857.623353][ T1863] RBP: 00007f508dce7ae9 R08: 0000000000000000 R09: 0000000000000000
[ 2857.631329][ T1863] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2857.639324][ T1863] R13: 00007ffdce56cbaf R14: 00007f508ea63300 R15: 0000000000022000
[ 2857.647343][ T1863]  </TASK>
[ 2857.680978][ T1863] memory: usage 10612kB, limit 0kB, failcnt 1295
[ 2857.681356][T23935] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 2857.687892][ T1863] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2857.703143][ T1863] Memory cgroup stats for /syz2:
[ 2857.704656][ T1863] anon 110592
[ 2857.704656][ T1863] file 10444800
[ 2857.704656][ T1863] kernel 294912
[ 2857.704656][ T1863] kernel_stack 65536
[ 2857.704656][ T1863] pagetables 81920
[ 2857.704656][ T1863] sec_pagetables 0
[ 2857.704656][ T1863] percpu 64
[ 2857.704656][ T1863] sock 0
[ 2857.704656][ T1863] vmalloc 0
[ 2857.704656][ T1863] shmem 10440704
[ 2857.704656][ T1863] zswap 0
[ 2857.704656][ T1863] zswapped 0
[ 2857.704656][ T1863] file_mapped 192512
[ 2857.704656][ T1863] file_dirty 0
[ 2857.704656][ T1863] file_writeback 0
[ 2857.704656][ T1863] swapcached 0
[ 2857.704656][ T1863] anon_thp 0
[ 2857.704656][ T1863] file_thp 0
[ 2857.704656][ T1863] shmem_thp 0
[ 2857.704656][ T1863] inactive_anon 110592
[ 2857.704656][ T1863] active_anon 10440704
[ 2857.704656][ T1863] inactive_file 0
[ 2857.704656][ T1863] active_file 4096
[ 2857.704656][ T1863] unevictable 0
[ 2857.704656][ T1863] slab_reclaimable 41864
[ 2857.704656][ T1863] slab_unreclaimable 73752
[ 2857.704656][ T1863] slab 115616
[ 2857.706044][T23935] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 2857.716348][ T1863] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null)
[ 2857.806084][T23935] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 2857.809587][T21233] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 2857.843928][ T1863] ,cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=1862,uid=0
[ 2857.859873][ T1863] Memory cgroup out of memory: Killed process 1862 (syz-executor.2) total-vm:56588kB, anon-rss:372kB, file-rss:8960kB, shmem-rss:128kB, UID:0 pgtables:88kB oom_score_adj:1000
21:28:46 executing program 2:
openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
perf_event_open(0x0, 0xffffffffffffffff, 0xb, 0xffffffffffffffff, 0x0)
r1 = openat$cgroup_int(r0, &(0x7f00000000c0)='memory.max\x00', 0x2, 0x0)
getpid()
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x1f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='blkio.bfq.io_service_time\x00', 0x26e1, 0x0)
write$cgroup_int(r2, &(0x7f0000000040), 0x12)
close(r2)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000280)='host1x_cdma_push_wide\x00'}, 0x10)
write$cgroup_int(r1, &(0x7f0000000040), 0x12)

[ 2857.896501][ T1721] netdevsim netdevsim5 netdevsim2: renamed from eth2
[ 2857.906789][ T1721] netdevsim netdevsim5 netdevsim3: renamed from eth3
[ 2857.984836][ T1663] device veth1_macvtap entered promiscuous mode
[ 2857.997655][T10995] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2858.010976][T10995] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2858.031572][T17601] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 2858.045942][ T1559] syz-executor.2 invoked oom-killer: gfp_mask=0x400cc0(GFP_KERNEL_ACCOUNT), order=1, oom_score_adj=0
[ 2858.070213][T17601] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 2858.119034][ T1559] CPU: 1 PID: 1559 Comm: syz-executor.2 Not tainted 6.2.0-rc2-syzkaller-00431-g0164776a2ce7 #0
[ 2858.129433][ T1559] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 2858.139521][ T1559] Call Trace:
[ 2858.142834][ T1559]  <TASK>
[ 2858.145790][ T1559]  dump_stack_lvl+0xd1/0x138
[ 2858.150430][ T1559]  dump_header+0x10b/0x85f
[ 2858.154888][ T1559]  oom_kill_process.cold+0x10/0x15
[ 2858.160042][ T1559]  out_of_memory+0x35c/0x14a0
[ 2858.164762][ T1559]  ? find_held_lock+0x2d/0x110
[ 2858.169573][ T1559]  ? oom_killer_disable+0x280/0x280
[ 2858.174809][ T1559]  ? find_held_lock+0x2d/0x110
[ 2858.179625][ T1559]  mem_cgroup_out_of_memory+0x206/0x270
[ 2858.185210][ T1559]  ? mem_cgroup_margin+0x130/0x130
[ 2858.190352][ T1559]  ? lock_downgrade+0x6e0/0x6e0
[ 2858.195251][ T1559]  try_charge_memcg+0xefb/0x12f0
[ 2858.200232][ T1559]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 2858.206248][ T1559]  ? get_mem_cgroup_from_objcg+0xa1/0x260
[ 2858.212094][ T1559]  ? lock_downgrade+0x6e0/0x6e0
[ 2858.216981][ T1559]  ? lock_downgrade+0x6e0/0x6e0
[ 2858.221864][ T1559]  ? rcu_read_unlock+0x9/0x60
[ 2858.226636][ T1559]  obj_cgroup_charge+0x2af/0x5e0
[ 2858.231625][ T1559]  __kmem_cache_alloc_node+0xb2/0x430
[ 2858.237037][ T1559]  ? kvmalloc_node+0xa2/0x1a0
[ 2858.241758][ T1559]  ? kvmalloc_node+0xa2/0x1a0
[ 2858.246473][ T1559]  __kmalloc_node+0x4d/0xd0
[ 2858.251024][ T1559]  kvmalloc_node+0xa2/0x1a0
[ 2858.255575][ T1559]  alloc_fdtable+0xf4/0x2a0
[ 2858.260119][ T1559]  dup_fd+0x722/0xcb0
[ 2858.264149][ T1559]  copy_process+0x24ea/0x7520
[ 2858.268885][ T1559]  ? _raw_spin_unlock+0x28/0x40
[ 2858.273778][ T1559]  ? wp_page_reuse+0x197/0x570
[ 2858.278606][ T1559]  ? __cleanup_sighand+0xb0/0xb0
[ 2858.283589][ T1559]  ? finish_mkwrite_fault+0x3d0/0x3d0
[ 2858.289018][ T1559]  ? rwlock_bug.part.0+0x90/0x90
[ 2858.293998][ T1559]  ? lock_chain_count+0x20/0x20
[ 2858.298899][ T1559]  kernel_clone+0xeb/0x990
[ 2858.303390][ T1559]  ? create_io_thread+0xf0/0xf0
[ 2858.308290][ T1559]  ? find_held_lock+0x2d/0x110
[ 2858.313113][ T1559]  __do_sys_clone+0xba/0x100
[ 2858.317743][ T1559]  ? kernel_clone+0x990/0x990
[ 2858.322494][ T1559]  ? syscall_enter_from_user_mode+0x26/0xb0
[ 2858.328433][ T1559]  do_syscall_64+0x39/0xb0
[ 2858.332898][ T1559]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2858.338830][ T1559] RIP: 0033:0x7f508dc89dfb
[ 2858.343273][ T1559] Code: ed 0f 85 60 01 00 00 64 4c 8b 0c 25 10 00 00 00 45 31 c0 4d 8d 91 d0 02 00 00 31 d2 31 f6 bf 11 00 20 01 b8 38 00 00 00 0f 05 <48> 3d 00 f0 ff ff 0f 87 89 00 00 00 41 89 c5 85 c0 0f 85 90 00 00
[ 2858.362917][ T1559] RSP: 002b:00007ffdce56cdf0 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[ 2858.371371][ T1559] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f508dc89dfb
[ 2858.379368][ T1559] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011
[ 2858.387397][ T1559] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000555556b94400
[ 2858.395402][ T1559] R10: 0000555556b946d0 R11: 0000000000000246 R12: 0000000000000001
[ 2858.403404][ T1559] R13: 0000000000000000 R14: 0000000000000001 R15: 00007ffdce56ced0
[ 2858.411431][ T1559]  </TASK>
[ 2858.445791][ T1559] memory: usage 10380kB, limit 0kB, failcnt 1319
[ 2858.457505][ T1559] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2858.464891][ T1559] Memory cgroup stats for /syz2:
[ 2858.465086][ T1559] anon 36864
[ 2858.465086][ T1559] file 10444800
[ 2858.465086][ T1559] kernel 147456
[ 2858.465086][ T1559] kernel_stack 32768
[ 2858.465086][ T1559] pagetables 8192
[ 2858.465086][ T1559] sec_pagetables 0
[ 2858.465086][ T1559] percpu 64
[ 2858.465086][ T1559] sock 0
[ 2858.465086][ T1559] vmalloc 0
[ 2858.465086][ T1559] shmem 10440704
[ 2858.465086][ T1559] zswap 0
[ 2858.465086][ T1559] zswapped 0
[ 2858.465086][ T1559] file_mapped 184320
[ 2858.465086][ T1559] file_dirty 0
[ 2858.465086][ T1559] file_writeback 0
[ 2858.465086][ T1559] swapcached 0
[ 2858.465086][ T1559] anon_thp 0
[ 2858.465086][ T1559] file_thp 0
[ 2858.465086][ T1559] shmem_thp 0
[ 2858.465086][ T1559] inactive_anon 36864
[ 2858.465086][ T1559] active_anon 10440704
[ 2858.465086][ T1559] inactive_file 0
[ 2858.465086][ T1559] active_file 4096
[ 2858.465086][ T1559] unevictable 0
[ 2858.465086][ T1559] slab_reclaimable 39504
[ 2858.465086][ T1559] slab_unreclaimable 53632
[ 2858.465086][ T1559] slab 93136
[ 2858.587836][ T1663] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2858.598402][ T1559] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=1559,uid=0
[ 2858.598638][ T1559] Memory cgroup out of memory: Killed process 1559 (syz-executor.2) total-vm:50568kB, anon-rss:364kB, file-rss:8960kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:0
[ 2858.634859][ T1663] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2858.644785][ T1663] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2858.655956][ T1663] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2858.667490][ T1663] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2858.678006][ T1663] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2858.688639][ T1663] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2858.699268][ T1663] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2858.709181][ T1663] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2858.719700][ T1663] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2858.738956][ T1663] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2858.750420][ T1663] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2858.773582][ T1663] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 2858.864372][T30778] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 2858.877078][T30778] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 2858.892628][ T1881] syz-executor.4 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2858.904943][ T1881] CPU: 1 PID: 1881 Comm: syz-executor.4 Not tainted 6.2.0-rc2-syzkaller-00431-g0164776a2ce7 #0
[ 2858.915321][ T1881] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 2858.925418][ T1881] Call Trace:
[ 2858.928721][ T1881]  <TASK>
[ 2858.931676][ T1881]  dump_stack_lvl+0xd1/0x138
[ 2858.936320][ T1881]  dump_header+0x10b/0x85f
[ 2858.940784][ T1881]  oom_kill_process.cold+0x10/0x15
[ 2858.945942][ T1881]  out_of_memory+0x35c/0x14a0
[ 2858.950670][ T1881]  ? oom_killer_disable+0x280/0x280
[ 2858.955923][ T1881]  mem_cgroup_out_of_memory+0x206/0x270
[ 2858.961598][ T1881]  ? mem_cgroup_margin+0x130/0x130
[ 2858.966769][ T1881]  memory_max_write+0x2f9/0x3c0
[ 2858.971671][ T1881]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 2858.977795][ T1881]  ? lock_release+0x810/0x810
[ 2858.982622][ T1881]  cgroup_file_write+0x1e2/0x770
[ 2858.987607][ T1881]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 2858.993730][ T1881]  ? kill_css+0x370/0x370
[ 2858.998107][ T1881]  ? __virt_addr_valid+0x61/0x2e0
[ 2859.003192][ T1881]  ? kill_css+0x370/0x370
[ 2859.007562][ T1881]  kernfs_fop_write_iter+0x3f1/0x600
[ 2859.012896][ T1881]  vfs_write+0x9ed/0xdd0
[ 2859.017161][ T1881]  ? kernel_write+0x630/0x630
[ 2859.021859][ T1881]  ? __fget_files+0x26a/0x440
[ 2859.026567][ T1881]  ksys_write+0x12b/0x250
[ 2859.030912][ T1881]  ? __ia32_sys_read+0xb0/0xb0
[ 2859.035690][ T1881]  ? syscall_enter_from_user_mode+0x26/0xb0
[ 2859.041608][ T1881]  do_syscall_64+0x39/0xb0
[ 2859.046048][ T1881]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2859.051962][ T1881] RIP: 0033:0x7fa7e828c0c9
[ 2859.056409][ T1881] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 2859.076061][ T1881] RSP: 002b:00007fa7e901f168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 2859.084512][ T1881] RAX: ffffffffffffffda RBX: 00007fa7e83abf80 RCX: 00007fa7e828c0c9
[ 2859.092508][ T1881] RDX: 0000000000000012 RSI: 0000000020000040 RDI: 0000000000000004
[ 2859.100604][ T1881] RBP: 00007fa7e82e7ae9 R08: 0000000000000000 R09: 0000000000000000
[ 2859.108598][ T1881] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2859.116587][ T1881] R13: 00007fffde3e899f R14: 00007fa7e901f300 R15: 0000000000022000
[ 2859.124595][ T1881]  </TASK>
[ 2859.131611][ T1881] memory: usage 8572kB, limit 0kB, failcnt 831
[ 2859.137820][ T1881] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2859.144843][ T1881] Memory cgroup stats for /syz4:
[ 2859.145050][ T1881] anon 118784
[ 2859.145050][ T1881] file 8351744
[ 2859.145050][ T1881] kernel 286720
[ 2859.145050][ T1881] kernel_stack 65536
[ 2859.145050][ T1881] pagetables 81920
[ 2859.145050][ T1881] sec_pagetables 0
[ 2859.145050][ T1881] percpu 64
[ 2859.145050][ T1881] sock 0
[ 2859.145050][ T1881] vmalloc 0
[ 2859.145050][ T1881] shmem 8351744
[ 2859.145050][ T1881] zswap 0
[ 2859.145050][ T1881] zswapped 0
[ 2859.145050][ T1881] file_mapped 290816
[ 2859.145050][ T1881] file_dirty 0
[ 2859.145050][ T1881] file_writeback 0
[ 2859.145050][ T1881] swapcached 0
[ 2859.145050][ T1881] anon_thp 0
[ 2859.145050][ T1881] file_thp 0
[ 2859.145050][ T1881] shmem_thp 0
[ 2859.145050][ T1881] inactive_anon 118784
[ 2859.145050][ T1881] active_anon 8351744
[ 2859.145050][ T1881] inactive_file 0
[ 2859.145050][ T1881] active_file 0
[ 2859.145050][ T1881] unevictable 0
[ 2859.145050][ T1881] slab_reclaimable 37560
[ 2859.145050][ T1881] slab_unreclaimable 75048
[ 2859.145050][ T1881] slab 112608
[ 2859.244297][ T1881] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0-1,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=1880,uid=0
[ 2859.259932][ T1881] Memory cgroup out of memory: Killed process 1880 (syz-executor.4) total-vm:54540kB, anon-rss:372kB, file-rss:8960kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
21:28:48 executing program 4:
openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0)
perf_event_open(&(0x7f0000000100)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_int(r0, &(0x7f00000000c0)='memory.max\x00', 0x2, 0x0)
getpid()
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x1f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000300)='cpuacct.usage_all\x00', 0x0, 0x0)
bpf$ITER_CREATE(0x21, &(0x7f00000002c0)={r2}, 0x8)
getpid()
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='blkio.bfq.io_service_time\x00', 0x26e1, 0x0)
write$cgroup_int(r3, &(0x7f0000000040), 0x12)
close(r3)
syz_open_procfs$namespace(0x0, 0x0)
write$cgroup_int(r1, &(0x7f0000000040), 0x12)

21:28:48 executing program 1:
r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0)
perf_event_open(&(0x7f0000000180)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x6, 0x401}, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000180)={0x0, 0x80, 0x0, 0x7c, 0x4, 0xd2, 0x0, 0x5, 0x0, 0x74d4e3ef7733d4ea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x26, 0x0, @perf_bp={0x0}, 0x210, 0x0, 0x1f, 0x3, 0x0, 0x0, 0xffff}, 0x0, 0x0, 0xffffffffffffffff, 0x9)
openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
perf_event_open(&(0x7f0000000200)={0x4, 0x80, 0x9, 0x0, 0x0, 0x5, 0x0, 0xffffffff, 0x800, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x2, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x2, 0x2, @perf_bp={&(0x7f0000000100), 0x5}, 0x0, 0x100000000, 0x2a, 0x0, 0x8, 0x40, 0x0, 0x0, 0x3f, 0x0, 0x4000000000000000}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
recvmsg(0xffffffffffffffff, 0x0, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f00000002c0)='cpuacct.usage_percpu_sys\x00', 0x0, 0x0)
perf_event_open$cgroup(&(0x7f00000003c0)={0x4, 0x80, 0x1, 0xff, 0x1, 0x5, 0x0, 0x800000000000008, 0x21001, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x3, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0xffff0000, 0x4, @perf_bp={&(0x7f0000000380), 0x8}, 0x40ae, 0xe, 0x78d8, 0x5, 0x7, 0x7, 0x1ff}, 0xffffffffffffffff, 0xc, r0, 0xc)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000018c00)={0x18, 0x3, &(0x7f0000000780)=ANY=[@ANYBLOB="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"], &(0x7f0000000440)='syzkaller\x00', 0x4, 0xb0, &(0x7f0000000480)=""/176, 0x0, 0x0, '\x00', 0x0, 0x0, r1, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
r3 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='rcu_utilization\x00', r2}, 0x10)
r4 = perf_event_open$cgroup(&(0x7f0000000080)={0x4, 0x80, 0x81, 0x5, 0x6, 0x0, 0x0, 0x8000000000000000, 0x848, 0x4, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x3, 0x0, @perf_config_ext={0x912410d}, 0x8800, 0xffffffff, 0x7, 0x6, 0x3f, 0x7, 0x8dd, 0x0, 0x5, 0x0, 0x1}, 0xffffffffffffffff, 0xb, 0xffffffffffffffff, 0x9)
ioctl$PERF_EVENT_IOC_SET_OUTPUT(0xffffffffffffffff, 0x2405, r4)
r5 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000540)='./cgroup.cpu/syz1\x00', 0x200002, 0x0)
openat$cgroup_ro(r5, &(0x7f0000000640)='cgroup.stat\x00', 0x0, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r4, 0x40082404, &(0x7f0000000580)=0xffffffffffffff7f)
r6 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000000)='cpuacct.usage_percpu_sys\x00', 0x26e1, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r6, 0x40086607, &(0x7f0000000040))
r7 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x26e1, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000018c00)={0x18, 0x3, &(0x7f0000000300)=ANY=[@ANYRES64=r1], 0x0, 0x4, 0xb0, &(0x7f0000000480)=""/176, 0x40f00, 0x5, '\x00', 0x0, 0x0, r7, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x0, 0x204d, &(0x7f00000005c0)=ANY=[@ANYRES32], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x18, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000740)={0x0, 0x3}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000002c0)=[0xffffffffffffffff, r7, 0xffffffffffffffff]}, 0x80)
write$cgroup_int(r7, &(0x7f0000000280)=0x1ff, 0x12)
r8 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000001e00)={&(0x7f0000001dc0)='./file0\x00', 0x0, 0x10}, 0x10)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000001e80)=@bpf_lsm={0x1d, 0x2, &(0x7f0000000700)=@raw=[@map_idx={0x18, 0x4}], &(0x7f0000002340)='GPL\x00', 0x5, 0x33, &(0x7f0000002380)=""/51, 0x41100, 0x2, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f00000023c0)={0x5, 0x4}, 0x8, 0x10, &(0x7f0000002400)={0x3, 0xa, 0x6, 0xae2e}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000002500)=[r0, r8, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}, 0x80)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={0xffffffffffffffff, 0x18000000000002a0, 0x0, 0x0, &(0x7f00000001c0), 0x0, 0x0, 0xe8030000, 0x0, 0x0, 0x0, 0x0}, 0x48)
ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x89f2, &(0x7f0000000080)='ip6tnl0\x00')
socketpair(0x1e, 0x5, 0x20, &(0x7f0000000600))
socketpair(0x1, 0x1, 0x0, &(0x7f0000000740)={0xffffffffffffffff, <r9=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r9, 0x89f1, &(0x7f0000000080))
close(r3)

[ 2859.315238][ T1663] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2859.338829][ T1663] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2859.368879][ T1663] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2859.383716][ T1571] syz-executor.4 invoked oom-killer: gfp_mask=0xc40(GFP_NOFS), order=0, oom_score_adj=0
[ 2859.398911][ T1663] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2859.415845][ T1571] CPU: 1 PID: 1571 Comm: syz-executor.4 Not tainted 6.2.0-rc2-syzkaller-00431-g0164776a2ce7 #0
[ 2859.416122][ T1663] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2859.426194][ T1571] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 2859.426209][ T1571] Call Trace:
[ 2859.426216][ T1571]  <TASK>
[ 2859.426225][ T1571]  dump_stack_lvl+0xd1/0x138
[ 2859.426265][ T1571]  dump_header+0x10b/0x85f
[ 2859.436677][ T1663] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2859.446693][ T1571]  oom_kill_process.cold+0x10/0x15
[ 2859.446726][ T1571]  out_of_memory+0x35c/0x14a0
[ 2859.450011][ T1663] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2859.452906][ T1571]  ? find_held_lock+0x2d/0x110
[ 2859.457462][ T1663] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2859.461855][ T1571]  ? oom_killer_disable+0x280/0x280
[ 2859.461885][ T1571]  ? find_held_lock+0x2d/0x110
[ 2859.461921][ T1571]  mem_cgroup_out_of_memory+0x206/0x270
[ 2859.461945][ T1571]  ? mem_cgroup_margin+0x130/0x130
[ 2859.461964][ T1571]  ? lock_downgrade+0x6e0/0x6e0
[ 2859.462004][ T1571]  try_charge_memcg+0xefb/0x12f0
[ 2859.462046][ T1571]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 2859.462072][ T1571]  ? get_mem_cgroup_from_objcg+0xa1/0x260
[ 2859.462095][ T1571]  ? lock_downgrade+0x6e0/0x6e0
[ 2859.462139][ T1571]  obj_cgroup_charge+0x2af/0x5e0
[ 2859.462174][ T1571]  kmem_cache_alloc_lru+0x145/0x760
[ 2859.462201][ T1571]  ? ext4_alloc_inode+0x28/0x680
[ 2859.462234][ T1571]  ? ext4_free_in_core_inode+0x70/0x70
[ 2859.462266][ T1571]  ext4_alloc_inode+0x28/0x680
[ 2859.462294][ T1571]  ? ext4_free_in_core_inode+0x70/0x70
[ 2859.462321][ T1571]  alloc_inode+0x61/0x230
[ 2859.462354][ T1571]  iget_locked+0x1bb/0x700
[ 2859.462393][ T1571]  __ext4_iget+0x3af/0x4230
[ 2859.597604][ T1571]  ? ext4_get_projid+0x190/0x190
[ 2859.602564][ T1571]  ? ext4_fname_prepare_lookup+0x163/0x200
[ 2859.608382][ T1571]  ? ext4_fname_setup_filename+0x110/0x110
[ 2859.614209][ T1571]  ? rcu_read_lock_sched_held+0x3e/0x70
[ 2859.619779][ T1571]  ext4_lookup+0x387/0x700
[ 2859.624207][ T1571]  ? ext4_resetent+0x2d0/0x2d0
[ 2859.629000][ T1571]  __lookup_slow+0x24c/0x460
[ 2859.633627][ T1571]  ? __lookup_hash+0x180/0x180
[ 2859.638433][ T1571]  ? azx_position_ok.cold+0x1ae/0x281
[ 2859.643836][ T1571]  ? azx_position_ok.cold+0x1ae/0x281
[ 2859.649232][ T1571]  ? lookup_fast+0x14e/0x520
[ 2859.653845][ T1571]  walk_component+0x33f/0x5a0
[ 2859.658544][ T1571]  path_lookupat+0x1ba/0x840
[ 2859.663157][ T1571]  filename_lookup+0x1d2/0x590
[ 2859.667938][ T1571]  ? may_linkat+0x500/0x500
[ 2859.672458][ T1571]  ? __might_fault+0xd9/0x180
[ 2859.677159][ T1571]  ? __phys_addr_symbol+0x30/0x70
[ 2859.682196][ T1571]  ? __check_object_size+0x2e2/0x5a0
[ 2859.687503][ T1571]  ? strncpy_from_user+0x28b/0x3c0
[ 2859.692653][ T1571]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2859.698078][ T1571]  user_path_at_empty+0x46/0x60
[ 2859.702967][ T1571]  __x64_sys_umount+0xfc/0x190
[ 2859.707759][ T1571]  ? path_umount+0x10b0/0x10b0
[ 2859.712544][ T1571]  ? syscall_enter_from_user_mode+0x26/0xb0
[ 2859.718457][ T1571]  do_syscall_64+0x39/0xb0
[ 2859.722896][ T1571]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2859.728802][ T1571] RIP: 0033:0x7fa7e828d537
[ 2859.733220][ T1571] Code: ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 2859.752837][ T1571] RSP: 002b:00007fffde3e7af8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 2859.761256][ T1571] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fa7e828d537
[ 2859.769231][ T1571] RDX: 00007fffde3e7bce RSI: 000000000000000a RDI: 00007fffde3e7bc0
[ 2859.777204][ T1571] RBP: 00007fffde3e7bc0 R08: 00000000ffffffff R09: 00007fffde3e7990
[ 2859.785177][ T1571] R10: 000055555642d8e3 R11: 0000000000000246 R12: 00007fa7e82e6b24
[ 2859.793151][ T1571] R13: 00007fffde3e8c80 R14: 000055555642d810 R15: 00007fffde3e8cc0
[ 2859.801142][ T1571]  </TASK>
[ 2859.807289][ T5120] Bluetooth: hci3: command 0x0419 tx timeout
[ 2859.825006][ T1571] memory: usage 8312kB, limit 0kB, failcnt 850
[ 2859.825032][ T1663] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2859.831238][ T1571] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2859.831256][ T1571] Memory cgroup stats for /syz4:
[ 2859.849566][ T1571] anon 36864
[ 2859.849566][ T1571] file 8351744
[ 2859.849566][ T1571] kernel 122880
[ 2859.849566][ T1571] kernel_stack 0
[ 2859.849566][ T1571] pagetables 8192
[ 2859.849566][ T1571] sec_pagetables 0
[ 2859.849566][ T1571] percpu 64
[ 2859.849566][ T1571] sock 0
[ 2859.849566][ T1571] vmalloc 0
[ 2859.849566][ T1571] shmem 8351744
[ 2859.849566][ T1571] zswap 0
[ 2859.849566][ T1571] zswapped 0
[ 2859.849566][ T1571] file_mapped 266240
[ 2859.849566][ T1571] file_dirty 0
[ 2859.849566][ T1571] file_writeback 0
[ 2859.849566][ T1571] swapcached 0
[ 2859.849566][ T1571] anon_thp 0
[ 2859.849566][ T1571] file_thp 0
[ 2859.849566][ T1571] shmem_thp 0
[ 2859.849566][ T1571] inactive_anon 32768
[ 2859.849566][ T1571] active_anon 8351744
[ 2859.849566][ T1571] inactive_file 0
[ 2859.849566][ T1571] active_file 0
[ 2859.849566][ T1571] unevictable 0
[ 2859.849566][ T1571] slab_reclaimable 46440
[ 2859.849566][ T1571] slab_unreclaimable 54824
[ 2859.849566][ T1571] slab 101264
[ 2859.858961][ T1663] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2859.951427][ T1571] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0-1,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=1571,uid=0
[ 2859.974431][ T1571] Memory cgroup out of memory: Killed process 1571 (syz-executor.4) total-vm:50568kB, anon-rss:364kB, file-rss:8960kB, shmem-rss:0kB, UID:0 pgtables:68kB oom_score_adj:0
[ 2859.997282][ T1663] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2860.012383][ T1663] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2860.037988][ T1663] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 2860.080870][T30465] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 2860.090679][T30465] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 2860.165416][ T1663] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 2860.174914][ T1663] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 2860.184258][ T1663] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 2860.193153][ T1663] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
21:28:49 executing program 2:
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
perf_event_open(0x0, 0xffffffffffffffff, 0xb, 0xffffffffffffffff, 0x0)
r1 = openat$cgroup_int(r0, &(0x7f00000000c0)='memory.max\x00', 0x2, 0x0)
getpid()
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x1f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='blkio.bfq.io_service_time\x00', 0x26e1, 0x0)
write$cgroup_int(r2, &(0x7f0000000040), 0x12)
close(r2)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000280)='host1x_cdma_push_wide\x00'}, 0x10)
write$cgroup_int(r1, &(0x7f0000000040), 0x12)

21:28:49 executing program 4:
openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0)
perf_event_open(&(0x7f0000000100)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_int(r0, &(0x7f00000000c0)='memory.max\x00', 0x2, 0x0)
getpid()
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x1f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000300)='cpuacct.usage_all\x00', 0x0, 0x0)
bpf$ITER_CREATE(0x21, &(0x7f00000002c0)={r2}, 0x8)
getpid()
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='blkio.bfq.io_service_time\x00', 0x26e1, 0x0)
write$cgroup_int(r3, &(0x7f0000000040), 0x12)
close(r3)
syz_open_procfs$namespace(0x0, 0x0)
write$cgroup_int(r1, &(0x7f0000000040), 0x12)

[ 2860.549717][ T1721] 8021q: adding VLAN 0 to HW filter on device bond0
[ 2860.685479][T14833] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2860.730187][T14833] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2860.759174][T17605] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 2860.770237][T17605] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 2860.804101][ T1721] 8021q: adding VLAN 0 to HW filter on device team0
[ 2860.820198][T17605] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 2860.844164][T23855] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2860.855699][T23855] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2860.932194][T21233] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 2860.949682][T21233] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 2860.958552][T21233] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 2860.971478][T21233] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2860.978601][T21233] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 2860.986924][T21233] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 2860.997233][T21233] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 2861.022612][T21233] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2861.029843][T21233] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 2861.038688][T21233] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 2861.056157][T17601] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 2861.081962][T21233] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 2861.117146][T21233] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 2861.183721][T17605] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 2861.183960][ T1902] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2861.199884][T17605] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 2861.245588][T30778] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 2861.255511][T30778] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 2861.264237][ T1902] CPU: 1 PID: 1902 Comm: syz-executor.0 Not tainted 6.2.0-rc2-syzkaller-00431-g0164776a2ce7 #0
[ 2861.274625][ T1902] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 2861.284717][ T1902] Call Trace:
[ 2861.288023][ T1902]  <TASK>
[ 2861.290982][ T1902]  dump_stack_lvl+0xd1/0x138
[ 2861.295623][ T1902]  dump_header+0x10b/0x85f
[ 2861.300088][ T1902]  oom_kill_process.cold+0x10/0x15
[ 2861.305322][ T1902]  out_of_memory+0x35c/0x14a0
[ 2861.310046][ T1902]  ? oom_killer_disable+0x280/0x280
[ 2861.315302][ T1902]  mem_cgroup_out_of_memory+0x206/0x270
[ 2861.320892][ T1902]  ? mem_cgroup_margin+0x130/0x130
[ 2861.326061][ T1902]  memory_max_write+0x2f9/0x3c0
[ 2861.330962][ T1902]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 2861.337081][ T1902]  ? lock_release+0x810/0x810
[ 2861.341798][ T1902]  cgroup_file_write+0x1e2/0x770
[ 2861.346783][ T1902]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 2861.352890][ T1902]  ? kill_css+0x370/0x370
[ 2861.357265][ T1902]  ? __virt_addr_valid+0x61/0x2e0
[ 2861.362349][ T1902]  ? kill_css+0x370/0x370
[ 2861.366701][ T1902]  kernfs_fop_write_iter+0x3f1/0x600
[ 2861.372019][ T1902]  vfs_write+0x9ed/0xdd0
[ 2861.376302][ T1902]  ? kernel_write+0x630/0x630
[ 2861.381002][ T1902]  ? __fget_files+0x26a/0x440
[ 2861.385709][ T1902]  ksys_write+0x12b/0x250
[ 2861.390049][ T1902]  ? __ia32_sys_read+0xb0/0xb0
[ 2861.394827][ T1902]  ? syscall_enter_from_user_mode+0x26/0xb0
[ 2861.400742][ T1902]  do_syscall_64+0x39/0xb0
[ 2861.405180][ T1902]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2861.412043][ T1902] RIP: 0033:0x7f6e61a8c0c9
[ 2861.416465][ T1902] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 2861.436085][ T1902] RSP: 002b:00007f6e627fd168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 2861.444510][ T1902] RAX: ffffffffffffffda RBX: 00007f6e61babf80 RCX: 00007f6e61a8c0c9
[ 2861.452485][ T1902] RDX: 0000000000000012 RSI: 0000000020000040 RDI: 0000000000000004
[ 2861.460466][ T1902] RBP: 00007f6e61ae7ae9 R08: 0000000000000000 R09: 0000000000000000
[ 2861.468440][ T1902] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2861.476412][ T1902] R13: 00007ffd88f1f13f R14: 00007f6e627fd300 R15: 0000000000022000
[ 2861.484410][ T1902]  </TASK>
[ 2861.508839][ T1902] memory: usage 10616kB, limit 0kB, failcnt 829
[ 2861.513647][ T1721] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 2861.515116][ T1902] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2861.550157][ T1721] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 2861.557540][ T1902] Memory cgroup stats for /syz0:
[ 2861.557765][ T1902] anon 114688
[ 2861.557765][ T1902] file 10448896
[ 2861.557765][ T1902] kernel 307200
[ 2861.557765][ T1902] kernel_stack 65536
[ 2861.557765][ T1902] pagetables 77824
[ 2861.557765][ T1902] sec_pagetables 0
[ 2861.557765][ T1902] percpu 64
[ 2861.557765][ T1902] sock 0
[ 2861.557765][ T1902] vmalloc 0
[ 2861.557765][ T1902] shmem 10448896
[ 2861.557765][ T1902] zswap 0
[ 2861.557765][ T1902] zswapped 0
[ 2861.557765][ T1902] file_mapped 331776
[ 2861.557765][ T1902] file_dirty 0
[ 2861.557765][ T1902] file_writeback 0
[ 2861.557765][ T1902] swapcached 0
[ 2861.557765][ T1902] anon_thp 0
[ 2861.557765][ T1902] file_thp 0
[ 2861.557765][ T1902] shmem_thp 0
[ 2861.557765][ T1902] inactive_anon 114688
[ 2861.557765][ T1902] active_anon 10448896
[ 2861.557765][ T1902] inactive_file 0
[ 2861.557765][ T1902] active_file 0
[ 2861.557765][ T1902] unevictable 0
[ 2861.557765][ T1902] slab_reclaimable 36384
[ 2861.557765][ T1902] slab_unreclaimable 98520
[ 2861.557765][ T1902] slab 134904
[ 2861.667784][ T1902] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=1900,uid=0
[ 2861.689150][  T483] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
21:28:50 executing program 0:
perf_event_open(&(0x7f0000000100)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_int(r0, &(0x7f00000000c0)='memory.max\x00', 0x2, 0x0)
getpid()
r2 = bpf$ITER_CREATE(0x21, &(0x7f0000000340), 0x8)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='blkio.bfq.io_service_time\x00', 0x26e1, 0x0)
write$cgroup_int(r3, &(0x7f0000000040), 0x12)
close(r3)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000280)='host1x_cdma_push_wide\x00', r2}, 0x10)
write$cgroup_int(r1, &(0x7f0000000040), 0x12)

21:28:50 executing program 2:
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
perf_event_open(0x0, 0xffffffffffffffff, 0xb, 0xffffffffffffffff, 0x0)
r1 = openat$cgroup_int(r0, &(0x7f00000000c0)='memory.max\x00', 0x2, 0x0)
getpid()
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x1f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='blkio.bfq.io_service_time\x00', 0x26e1, 0x0)
write$cgroup_int(r2, &(0x7f0000000040), 0x12)
close(r2)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000280)='host1x_cdma_push_wide\x00'}, 0x10)
write$cgroup_int(r1, &(0x7f0000000040), 0x12)

21:28:50 executing program 4:
openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0)
perf_event_open(&(0x7f0000000100)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_int(r0, &(0x7f00000000c0)='memory.max\x00', 0x2, 0x0)
getpid()
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x1f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000300)='cpuacct.usage_all\x00', 0x0, 0x0)
bpf$ITER_CREATE(0x21, &(0x7f00000002c0)={r2}, 0x8)
getpid()
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='blkio.bfq.io_service_time\x00', 0x26e1, 0x0)
write$cgroup_int(r3, &(0x7f0000000040), 0x12)
close(r3)
syz_open_procfs$namespace(0x0, 0x0)
write$cgroup_int(r1, &(0x7f0000000040), 0x12)

[ 2861.695209][ T1902] Memory cgroup out of memory: Killed process 1900 (syz-executor.0) total-vm:54540kB, anon-rss:372kB, file-rss:8960kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 2861.697671][  T483] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 2861.793553][ T1663] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=0
[ 2861.879726][ T1663] CPU: 0 PID: 1663 Comm: syz-executor.0 Not tainted 6.2.0-rc2-syzkaller-00431-g0164776a2ce7 #0
[ 2861.890105][ T1663] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 2861.900195][ T1663] Call Trace:
[ 2861.903494][ T1663]  <TASK>
[ 2861.906439][ T1663]  dump_stack_lvl+0xd1/0x138
[ 2861.911072][ T1663]  dump_header+0x10b/0x85f
[ 2861.915521][ T1663]  oom_kill_process.cold+0x10/0x15
[ 2861.920673][ T1663]  out_of_memory+0x35c/0x14a0
[ 2861.925389][ T1663]  ? find_held_lock+0x2d/0x110
[ 2861.930204][ T1663]  ? oom_killer_disable+0x280/0x280
[ 2861.935436][ T1663]  ? find_held_lock+0x2d/0x110
[ 2861.940244][ T1663]  mem_cgroup_out_of_memory+0x206/0x270
[ 2861.945821][ T1663]  ? mem_cgroup_margin+0x130/0x130
[ 2861.950964][ T1663]  ? lock_downgrade+0x6e0/0x6e0
[ 2861.955859][ T1663]  try_charge_memcg+0xefb/0x12f0
[ 2861.960839][ T1663]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 2861.966856][ T1663]  ? get_mem_cgroup_from_objcg+0xa1/0x260
[ 2861.972603][ T1663]  ? lock_downgrade+0x6e0/0x6e0
[ 2861.977482][ T1663]  ? lock_downgrade+0x6e0/0x6e0
[ 2861.982380][ T1663]  obj_cgroup_charge+0x2af/0x5e0
[ 2861.987367][ T1663]  kmem_cache_alloc_lru+0x145/0x760
[ 2861.992602][ T1663]  ? sock_alloc_inode+0x27/0x1d0
[ 2861.997582][ T1663]  sock_alloc_inode+0x27/0x1d0
[ 2862.002384][ T1663]  ? sock_free_inode+0x30/0x30
[ 2862.007184][ T1663]  alloc_inode+0x61/0x230
[ 2862.011550][ T1663]  new_inode_pseudo+0x17/0x80
[ 2862.016267][ T1663]  sock_alloc+0x40/0x260
[ 2862.020549][ T1663]  __sock_create+0xbd/0x790
[ 2862.025099][ T1663]  __sys_socket+0x133/0x250
[ 2862.029731][ T1663]  ? __sys_socket_file+0x1f0/0x1f0
[ 2862.034890][ T1663]  __x64_sys_socket+0x73/0xb0
[ 2862.039600][ T1663]  do_syscall_64+0x39/0xb0
[ 2862.044064][ T1663]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2862.049995][ T1663] RIP: 0033:0x7f6e61a8d747
[ 2862.054434][ T1663] Code: f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 b8 29 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 2862.073331][ T1769] netdevsim netdevsim3 netdevsim0: renamed from eth0
[ 2862.074048][ T1663] RSP: 002b:00007ffd88f1ecb8 EFLAGS: 00000206 ORIG_RAX: 0000000000000029
[ 2862.089156][ T1663] RAX: ffffffffffffffda RBX: 00007ffd88f1f420 RCX: 00007f6e61a8d747
[ 2862.097165][ T1663] RDX: 0000000000000006 RSI: 0000000000000001 RDI: 0000000000000002
[ 2862.105168][ T1663] RBP: 0000000000000003 R08: 0000000000000000 R09: 00007ffd88f1f230
[ 2862.113164][ T1663] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000032
[ 2862.121157][ T1663] R13: 00000000002ba841 R14: 000000000000000a R15: 00007ffd88f1f460
[ 2862.129181][ T1663]  </TASK>
[ 2862.141207][ T1769] netdevsim netdevsim3 netdevsim1: renamed from eth1
[ 2862.230969][ T1769] netdevsim netdevsim3 netdevsim2: renamed from eth2
[ 2862.242426][ T1663] memory: usage 10372kB, limit 0kB, failcnt 848
[ 2862.253915][ T1769] netdevsim netdevsim3 netdevsim3: renamed from eth3
[ 2862.276787][ T1663] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2862.308810][ T1663] Memory cgroup stats for /syz0:
[ 2862.308990][ T1663] anon 45056
[ 2862.308990][ T1663] file 10448896
[ 2862.308990][ T1663] kernel 126976
[ 2862.308990][ T1663] kernel_stack 0
[ 2862.308990][ T1663] pagetables 8192
[ 2862.308990][ T1663] sec_pagetables 0
[ 2862.308990][ T1663] percpu 64
[ 2862.308990][ T1663] sock 0
[ 2862.308990][ T1663] vmalloc 0
[ 2862.308990][ T1663] shmem 10448896
[ 2862.308990][ T1663] zswap 0
[ 2862.308990][ T1663] zswapped 0
[ 2862.308990][ T1663] file_mapped 315392
[ 2862.308990][ T1663] file_dirty 0
[ 2862.308990][ T1663] file_writeback 0
[ 2862.308990][ T1663] swapcached 0
[ 2862.308990][ T1663] anon_thp 0
[ 2862.308990][ T1663] file_thp 0
[ 2862.308990][ T1663] shmem_thp 0
[ 2862.308990][ T1663] inactive_anon 45056
[ 2862.308990][ T1663] active_anon 10448896
[ 2862.308990][ T1663] inactive_file 0
[ 2862.308990][ T1663] active_file 0
[ 2862.308990][ T1663] unevictable 0
[ 2862.308990][ T1663] slab_reclaimable 33248
[ 2862.308990][ T1663] slab_unreclaimable 71440
[ 2862.308990][ T1663] slab 104688
[ 2862.574206][ T1769] 8021q: adding VLAN 0 to HW filter on device bond0
[ 2862.646927][T24529] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 2862.664343][T24529] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 2862.698919][ T1663] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=1663,uid=0
[ 2862.719413][T20562] device hsr_slave_0 left promiscuous mode
[ 2862.726763][ T1663] Memory cgroup out of memory: Killed process 1663 (syz-executor.0) total-vm:50568kB, anon-rss:364kB, file-rss:8960kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:0
[ 2862.752935][ T1663] socket: no more sockets
[ 2862.759389][T20562] device hsr_slave_1 left promiscuous mode
[ 2862.776215][T20562] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 2862.809137][T20562] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 2862.837896][T20562] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 2862.845726][T20562] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 2862.860552][T20562] device bridge_slave_1 left promiscuous mode
[ 2862.866815][T20562] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2862.876026][T20562] device bridge_slave_0 left promiscuous mode
[ 2862.882605][T20562] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2862.903634][T20562] device hsr_slave_0 left promiscuous mode
[ 2862.919462][T20562] device hsr_slave_1 left promiscuous mode
[ 2862.929501][T20562] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 2862.936965][T20562] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 2862.969634][T20562] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 2862.977119][T20562] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 2863.000752][T20562] device bridge_slave_1 left promiscuous mode
[ 2863.006988][T20562] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2863.039975][T20562] device bridge_slave_0 left promiscuous mode
[ 2863.046248][T20562] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2863.080569][T20562] device hsr_slave_0 left promiscuous mode
[ 2863.098973][T20562] device hsr_slave_1 left promiscuous mode
[ 2863.108979][T20562] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 2863.116450][T20562] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 2863.140886][T20562] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 2863.148364][T20562] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 2863.183708][T20562] device bridge_slave_1 left promiscuous mode
[ 2863.198945][T20562] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2863.207975][T20562] device bridge_slave_0 left promiscuous mode
[ 2863.224895][T20562] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2863.245444][T20562] device veth1_macvtap left promiscuous mode
[ 2863.251656][T20562] device veth0_macvtap left promiscuous mode
[ 2863.257785][T20562] device veth1_vlan left promiscuous mode
[ 2863.263773][T20562] device veth0_vlan left promiscuous mode
[ 2863.272483][T20562] device veth1_macvtap left promiscuous mode
[ 2863.278505][T20562] device veth0_macvtap left promiscuous mode
[ 2863.284983][T20562] device veth1_vlan left promiscuous mode
[ 2863.292457][T20562] device veth0_vlan left promiscuous mode
[ 2863.300530][T20562] device veth1_macvtap left promiscuous mode
[ 2863.306596][T20562] device veth0_macvtap left promiscuous mode
[ 2863.312880][T20562] device veth1_vlan left promiscuous mode
[ 2863.318668][T20562] device veth0_vlan left promiscuous mode
[ 2863.710040][T20562] team0 (unregistering): Port device team_slave_1 removed
[ 2863.727264][T20562] team0 (unregistering): Port device team_slave_0 removed
[ 2863.741038][T20562] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 2863.787665][T20562] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 2863.956145][ T5120] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 2863.967116][T20562] bond0 (unregistering): Released all slaves
[ 2863.968537][ T5120] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 2863.982183][ T5120] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 2863.992528][ T5120] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[ 2864.000281][ T5120] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 2864.128275][T20562] team0 (unregistering): Port device team_slave_1 removed
[ 2864.146156][T20562] team0 (unregistering): Port device team_slave_0 removed
[ 2864.163118][T20562] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 2864.183631][T20562] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 2864.309745][T20562] bond0 (unregistering): Released all slaves
[ 2864.446586][T17544] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[ 2864.457566][T17544] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[ 2864.465785][T17544] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[ 2864.473572][T17544] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[ 2864.482203][T17544] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[ 2864.567587][T20562] team0 (unregistering): Port device team_slave_1 removed
[ 2864.584882][T20562] team0 (unregistering): Port device team_slave_0 removed
[ 2864.601919][T20562] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 2864.615744][T20562] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 2864.691084][T20562] bond0 (unregistering): Released all slaves
[ 2864.772835][ T1769] 8021q: adding VLAN 0 to HW filter on device team0
[ 2864.821640][T30465] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 2864.830208][T30465] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 2864.854776][ T1721] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 2864.869067][T17605] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 2864.885588][T17605] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 2864.902613][T17605] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2864.909795][T17605] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 2864.931168][T17605] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 2865.041678][T21233] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 2865.051765][T21233] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 2865.060688][T21233] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2865.067790][T21233] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 2865.088345][T30778] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 2865.195235][T17500] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 2865.205227][T17500] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 2865.216314][T17500] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 2865.229972][T17500] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 2865.255790][T30778] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 2865.264500][T30778] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 2865.273674][T30778] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 2865.282974][T30778] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 2865.354282][ T1769] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 2865.551754][ T1917] chnl_net:caif_netlink_parms(): no params data found
[ 2865.686731][T21233] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 2865.699969][T21233] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 2865.718387][ T1920] chnl_net:caif_netlink_parms(): no params data found
[ 2865.841500][ T1721] device veth0_vlan entered promiscuous mode
[ 2865.899621][T17601] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 2865.928698][T17601] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 2865.970570][ T1917] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2866.001811][ T1917] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2866.027576][ T1917] device bridge_slave_0 entered promiscuous mode
[ 2866.075282][T21233] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 2866.084168][T21233] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 2866.092001][ T5120] Bluetooth: hci0: command 0x0409 tx timeout
[ 2866.119121][ T1917] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2866.126256][ T1917] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2866.156108][ T1917] device bridge_slave_1 entered promiscuous mode
[ 2866.201998][ T1721] device veth1_vlan entered promiscuous mode
[ 2866.219635][ T1920] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2866.226859][ T1920] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2866.235740][ T1920] device bridge_slave_0 entered promiscuous mode
[ 2866.245667][T14991] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 2866.257492][T14991] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 2866.270392][ T1769] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 2866.310718][ T1920] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2866.318497][ T1920] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2866.345039][ T1920] device bridge_slave_1 entered promiscuous mode
[ 2866.358632][ T1917] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 2866.416134][ T1917] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 2866.436331][T14991] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 2866.451510][T14991] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 2866.490703][ T1721] device veth0_macvtap entered promiscuous mode
[ 2866.556773][ T1917] team0: Port device team_slave_0 added
[ 2866.563756][T21233] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 2866.575985][T17544] Bluetooth: hci4: command 0x0409 tx timeout
[ 2866.594848][T21233] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 2866.606825][T21233] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 2866.623708][ T1920] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 2866.642435][ T1721] device veth1_macvtap entered promiscuous mode
[ 2866.659191][ T1917] team0: Port device team_slave_1 added
[ 2866.696751][ T1920] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 2866.727855][ T1769] device veth0_vlan entered promiscuous mode
[ 2866.767837][ T1917] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 2866.783112][ T1917] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2866.836086][ T1917] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 2866.920098][T21233] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 2866.941256][T21233] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 2866.959893][T21233] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 2866.974915][ T1769] device veth1_vlan entered promiscuous mode
[ 2866.999337][ T1917] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 2867.006427][ T1917] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2867.043722][ T1917] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 2867.068014][ T1920] team0: Port device team_slave_0 added
[ 2867.075458][T21233] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 2867.089792][T21233] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 2867.109988][ T1721] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2867.133471][ T1721] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2867.150959][ T1721] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2867.163928][ T1721] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2867.174348][ T1721] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2867.185512][ T1721] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2867.195943][ T1721] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2867.206799][ T1721] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2867.234494][ T1721] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 2867.298404][ T1920] team0: Port device team_slave_1 added
[ 2867.307999][T21233] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 2867.317114][T21233] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 2867.339757][ T1721] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2867.366141][ T1721] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2867.390214][ T1721] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2867.401422][ T1721] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2867.411692][ T1721] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2867.422553][ T1721] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2867.432773][ T1721] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2867.443633][ T1721] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2867.456613][ T1721] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 2867.503139][T24529] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 2867.515662][T24529] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 2867.541440][ T1721] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 2867.558232][ T1721] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 2867.582796][ T1721] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 2867.591816][ T1721] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 2867.606082][ T1917] device hsr_slave_0 entered promiscuous mode
[ 2867.615238][ T1917] device hsr_slave_1 entered promiscuous mode
[ 2867.623755][ T1917] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 2867.631712][ T1917] Cannot create hsr debugfs directory
[ 2867.647941][ T1769] device veth0_macvtap entered promiscuous mode
[ 2867.667087][T30778] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 2867.677041][T30778] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 2867.710991][T30778] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 2867.771204][ T1920] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 2867.783549][ T1920] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2867.824806][ T1920] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 2867.842182][ T1920] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 2867.858892][ T1920] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2867.896658][ T1920] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 2867.920972][ T1769] device veth1_macvtap entered promiscuous mode
[ 2867.973204][T24529] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 2868.093937][ T1920] device hsr_slave_0 entered promiscuous mode
[ 2868.113309][ T1920] device hsr_slave_1 entered promiscuous mode
[ 2868.126979][ T1920] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 2868.134824][ T1920] Cannot create hsr debugfs directory
[ 2868.169053][T17544] Bluetooth: hci0: command 0x041b tx timeout
[ 2868.175965][ T1769] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2868.200624][ T1769] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2868.220900][ T1769] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2868.238947][ T1769] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2868.252491][ T1769] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2868.263515][ T1769] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2868.273869][ T1769] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2868.285456][ T1769] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2868.295953][ T1769] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2868.306731][ T1769] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2868.319100][ T1769] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 2868.344786][T30559] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 2868.353970][T30559] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 2868.397050][ T1769] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2868.408388][ T1769] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2868.429990][ T1769] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2868.441030][ T1769] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2868.451184][ T1769] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2868.462232][ T1769] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2868.472348][ T1769] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2868.483083][ T1769] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2868.493991][ T1769] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2868.504790][ T1769] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2868.516559][ T1769] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 2868.532641][ T1769] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 2868.541877][ T1769] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 2868.552134][ T1769] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 2868.561087][ T1769] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 2868.575046][T14861] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2868.584802][T14991] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 2868.594101][T14861] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2868.601319][T14991] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 2868.637508][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 2868.659330][T17544] Bluetooth: hci4: command 0x041b tx timeout
[ 2868.796097][ T1917] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2868.858295][T32025] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2868.886720][T32025] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2868.940074][ T1917] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2868.961716][T30559] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 2869.017077][T32025] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2869.038293][T32025] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2869.100192][ T1917] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2869.269857][T20562] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2869.304322][T14991] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 2869.326126][ T1969] syz-executor.5 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2869.358884][ T1969] CPU: 0 PID: 1969 Comm: syz-executor.5 Not tainted 6.2.0-rc2-syzkaller-00431-g0164776a2ce7 #0
[ 2869.369278][ T1969] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 2869.379362][ T1969] Call Trace:
[ 2869.382659][ T1969]  <TASK>
[ 2869.385612][ T1969]  dump_stack_lvl+0xd1/0x138
[ 2869.390251][ T1969]  dump_header+0x10b/0x85f
[ 2869.394706][ T1969]  oom_kill_process.cold+0x10/0x15
[ 2869.399855][ T1969]  out_of_memory+0x35c/0x14a0
[ 2869.404569][ T1969]  ? oom_killer_disable+0x280/0x280
[ 2869.409798][ T1969]  ? find_held_lock+0x2d/0x110
[ 2869.414612][ T1969]  mem_cgroup_out_of_memory+0x206/0x270
[ 2869.420194][ T1969]  ? mem_cgroup_margin+0x130/0x130
[ 2869.425349][ T1969]  ? _raw_spin_unlock_irqrestore+0x54/0x70
[ 2869.431203][ T1969]  memory_max_write+0x2f9/0x3c0
[ 2869.436097][ T1969]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 2869.442202][ T1969]  ? lock_release+0x810/0x810
[ 2869.446917][ T1969]  cgroup_file_write+0x1e2/0x770
[ 2869.451890][ T1969]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 2869.457989][ T1969]  ? kill_css+0x370/0x370
[ 2869.462346][ T1969]  ? __virt_addr_valid+0x61/0x2e0
[ 2869.467423][ T1969]  ? kill_css+0x370/0x370
[ 2869.471784][ T1969]  kernfs_fop_write_iter+0x3f1/0x600
[ 2869.477120][ T1969]  vfs_write+0x9ed/0xdd0
[ 2869.481402][ T1969]  ? kernel_write+0x630/0x630
[ 2869.486122][ T1969]  ? __fget_files+0x26a/0x440
[ 2869.490851][ T1969]  ksys_write+0x12b/0x250
[ 2869.495218][ T1969]  ? __ia32_sys_read+0xb0/0xb0
[ 2869.500019][ T1969]  ? syscall_enter_from_user_mode+0x26/0xb0
[ 2869.505953][ T1969]  do_syscall_64+0x39/0xb0
[ 2869.510411][ T1969]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2869.516338][ T1969] RIP: 0033:0x7fb88348c0c9
[ 2869.520777][ T1969] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 2869.540414][ T1969] RSP: 002b:00007fb88418f168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 2869.548863][ T1969] RAX: ffffffffffffffda RBX: 00007fb8835abf80 RCX: 00007fb88348c0c9
[ 2869.556857][ T1969] RDX: 0000000000000012 RSI: 0000000020000040 RDI: 0000000000000005
[ 2869.564849][ T1969] RBP: 00007fb8834e7ae9 R08: 0000000000000000 R09: 0000000000000000
[ 2869.572846][ T1969] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2869.580843][ T1969] R13: 00007ffc6532d17f R14: 00007fb88418f300 R15: 0000000000022000
[ 2869.588866][ T1969]  </TASK>
[ 2869.629727][ T1917] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2869.681004][T20562] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2869.722826][T32025] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2869.754344][T32025] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2869.765692][ T1969] memory: usage 10600kB, limit 0kB, failcnt 917
[ 2869.775596][ T1969] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2869.800381][T20562] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2869.819257][ T1969] Memory cgroup stats for /syz5:
[ 2869.820518][ T1969] anon 118784
[ 2869.820518][ T1969] file 10436608
[ 2869.820518][ T1969] kernel 286720
[ 2869.820518][ T1969] kernel_stack 65536
[ 2869.820518][ T1969] pagetables 77824
[ 2869.820518][ T1969] sec_pagetables 0
[ 2869.820518][ T1969] percpu 64
[ 2869.820518][ T1969] sock 0
[ 2869.820518][ T1969] vmalloc 0
[ 2869.820518][ T1969] shmem 10432512
[ 2869.820518][ T1969] zswap 0
[ 2869.820518][ T1969] zswapped 0
[ 2869.820518][ T1969] file_mapped 249856
[ 2869.820518][ T1969] file_dirty 4096
[ 2869.820518][ T1969] file_writeback 0
[ 2869.820518][ T1969] swapcached 0
[ 2869.820518][ T1969] anon_thp 0
[ 2869.820518][ T1969] file_thp 0
[ 2869.820518][ T1969] shmem_thp 0
[ 2869.820518][ T1969] inactive_anon 2195456
[ 2869.820518][ T1969] active_anon 8335360
[ 2869.820518][ T1969] inactive_file 0
[ 2869.820518][ T1969] active_file 0
[ 2869.820518][ T1969] unevictable 0
[ 2869.820518][ T1969] slab_reclaimable 45120
[ 2869.820518][ T1969] slab_unreclaimable 73752
[ 2869.820518][ T1969] slab 118872
[ 2869.925199][T24529] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 2869.979710][ T1969] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz5,mems_allowed=0-1,oom_memcg=/syz5,task_memcg=/syz5,task=syz-executor.5,pid=1968,uid=0
[ 2870.033543][T20562] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2870.064531][ T1969] Memory cgroup out of memory: Killed process 1969 (syz-executor.5) total-vm:54540kB, anon-rss:372kB, file-rss:8960kB, shmem-rss:0kB, UID:0 pgtables:80kB oom_score_adj:1000
[ 2870.093204][ T1971] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2870.131257][ T1971] CPU: 1 PID: 1971 Comm: syz-executor.3 Not tainted 6.2.0-rc2-syzkaller-00431-g0164776a2ce7 #0
[ 2870.141667][ T1971] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 2870.151755][ T1971] Call Trace:
[ 2870.155054][ T1971]  <TASK>
[ 2870.158009][ T1971]  dump_stack_lvl+0xd1/0x138
[ 2870.162657][ T1971]  dump_header+0x10b/0x85f
[ 2870.167106][ T1971]  oom_kill_process.cold+0x10/0x15
[ 2870.172254][ T1971]  out_of_memory+0x35c/0x14a0
[ 2870.176972][ T1971]  ? oom_killer_disable+0x280/0x280
[ 2870.182209][ T1971]  mem_cgroup_out_of_memory+0x206/0x270
[ 2870.187781][ T1971]  ? mem_cgroup_margin+0x130/0x130
[ 2870.192942][ T1971]  memory_max_write+0x2f9/0x3c0
[ 2870.197830][ T1971]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 2870.203940][ T1971]  ? lock_release+0x810/0x810
[ 2870.208659][ T1971]  cgroup_file_write+0x1e2/0x770
[ 2870.213628][ T1971]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 2870.219731][ T1971]  ? kill_css+0x370/0x370
[ 2870.224091][ T1971]  ? __virt_addr_valid+0x61/0x2e0
[ 2870.229164][ T1971]  ? kill_css+0x370/0x370
[ 2870.233530][ T1971]  kernfs_fop_write_iter+0x3f1/0x600
[ 2870.238866][ T1971]  vfs_write+0x9ed/0xdd0
[ 2870.243145][ T1971]  ? kernel_write+0x630/0x630
[ 2870.247860][ T1971]  ? __fget_files+0x26a/0x440
[ 2870.252588][ T1971]  ksys_write+0x12b/0x250
[ 2870.256956][ T1971]  ? __ia32_sys_read+0xb0/0xb0
[ 2870.261754][ T1971]  ? syscall_enter_from_user_mode+0x26/0xb0
[ 2870.267690][ T1971]  do_syscall_64+0x39/0xb0
[ 2870.272143][ T1971]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2870.278066][ T1971] RIP: 0033:0x7f7e38c8c0c9
[ 2870.278873][T17544] Bluetooth: hci0: command 0x040f tx timeout
[ 2870.282484][ T1971] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 2870.308087][ T1971] RSP: 002b:00007f7e3993b168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 2870.316527][ T1971] RAX: ffffffffffffffda RBX: 00007f7e38dabf80 RCX: 00007f7e38c8c0c9
[ 2870.324522][ T1971] RDX: 0000000000000012 RSI: 0000000020000040 RDI: 0000000000000004
[ 2870.332513][ T1971] RBP: 00007f7e38ce7ae9 R08: 0000000000000000 R09: 0000000000000000
21:28:59 executing program 5:
openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0)
openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
perf_event_open(0x0, 0xffffffffffffffff, 0xb, 0xffffffffffffffff, 0x0)
r1 = openat$cgroup_int(r0, &(0x7f00000000c0)='memory.max\x00', 0x2, 0x0)
getpid()
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000300)='cpuacct.usage_all\x00', 0x0, 0x0)
bpf$ITER_CREATE(0x21, &(0x7f00000002c0), 0x8)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='blkio.bfq.io_service_time\x00', 0x26e1, 0x0)
write$cgroup_int(r2, &(0x7f0000000040), 0x12)
close(r2)
syz_open_procfs$namespace(0x0, 0x0)
write$cgroup_int(r1, &(0x7f0000000040), 0x12)

21:28:59 executing program 0:
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_int(r0, &(0x7f00000000c0)='memory.max\x00', 0x2, 0x0)
getpid()
r2 = bpf$ITER_CREATE(0x21, &(0x7f0000000340), 0x8)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='blkio.bfq.io_service_time\x00', 0x26e1, 0x0)
write$cgroup_int(r3, &(0x7f0000000040), 0x12)
close(r3)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000280)='host1x_cdma_push_wide\x00', r2}, 0x10)
write$cgroup_int(r1, &(0x7f0000000040), 0x12)

[ 2870.340510][ T1971] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2870.348504][ T1971] R13: 00007ffdae3d3dbf R14: 00007f7e3993b300 R15: 0000000000022000
[ 2870.356523][ T1971]  </TASK>
21:28:59 executing program 1:
r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0)
perf_event_open(&(0x7f0000000180)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x6, 0x401}, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000180)={0x0, 0x80, 0x0, 0x7c, 0x4, 0xd2, 0x0, 0x5, 0x0, 0x74d4e3ef7733d4ea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x26, 0x0, @perf_bp={0x0}, 0x210, 0x0, 0x1f, 0x3, 0x0, 0x0, 0xffff}, 0x0, 0x0, 0xffffffffffffffff, 0x9)
openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
perf_event_open(&(0x7f0000000200)={0x4, 0x80, 0x9, 0x0, 0x0, 0x5, 0x0, 0xffffffff, 0x800, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x2, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x2, 0x2, @perf_bp={&(0x7f0000000100), 0x5}, 0x0, 0x100000000, 0x2a, 0x0, 0x8, 0x40, 0x0, 0x0, 0x3f, 0x0, 0x4000000000000000}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
recvmsg(0xffffffffffffffff, 0x0, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f00000002c0)='cpuacct.usage_percpu_sys\x00', 0x0, 0x0)
perf_event_open$cgroup(&(0x7f00000003c0)={0x4, 0x80, 0x1, 0xff, 0x1, 0x5, 0x0, 0x800000000000008, 0x21001, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x3, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0xffff0000, 0x4, @perf_bp={&(0x7f0000000380), 0x8}, 0x40ae, 0xe, 0x78d8, 0x5, 0x7, 0x7, 0x1ff}, 0xffffffffffffffff, 0xc, r0, 0xc)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000018c00)={0x18, 0x3, &(0x7f0000000780)=ANY=[@ANYBLOB="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"], &(0x7f0000000440)='syzkaller\x00', 0x4, 0xb0, &(0x7f0000000480)=""/176, 0x0, 0x0, '\x00', 0x0, 0x0, r1, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
r3 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='rcu_utilization\x00', r2}, 0x10)
r4 = perf_event_open$cgroup(&(0x7f0000000080)={0x4, 0x80, 0x81, 0x5, 0x6, 0x0, 0x0, 0x8000000000000000, 0x848, 0x4, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x3, 0x0, @perf_config_ext={0x912410d}, 0x8800, 0xffffffff, 0x7, 0x6, 0x3f, 0x7, 0x8dd, 0x0, 0x5, 0x0, 0x1}, 0xffffffffffffffff, 0xb, 0xffffffffffffffff, 0x9)
ioctl$PERF_EVENT_IOC_SET_OUTPUT(0xffffffffffffffff, 0x2405, r4)
r5 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000540)='./cgroup.cpu/syz1\x00', 0x200002, 0x0)
openat$cgroup_ro(r5, &(0x7f0000000640)='cgroup.stat\x00', 0x0, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r4, 0x40082404, &(0x7f0000000580)=0xffffffffffffff7f)
r6 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000000)='cpuacct.usage_percpu_sys\x00', 0x26e1, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r6, 0x40086607, &(0x7f0000000040))
r7 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x26e1, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000018c00)={0x18, 0x3, &(0x7f0000000300)=ANY=[@ANYRES64=r1], 0x0, 0x4, 0xb0, &(0x7f0000000480)=""/176, 0x40f00, 0x5, '\x00', 0x0, 0x0, r7, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x0, 0x204d, &(0x7f00000005c0)=ANY=[@ANYRES32], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x18, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000740)={0x0, 0x3}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000002c0)=[0xffffffffffffffff, r7, 0xffffffffffffffff]}, 0x80)
write$cgroup_int(r7, &(0x7f0000000280)=0x1ff, 0x12)
r8 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000001e00)={&(0x7f0000001dc0)='./file0\x00', 0x0, 0x10}, 0x10)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000001e80)=@bpf_lsm={0x1d, 0x2, &(0x7f0000000700)=@raw=[@map_idx={0x18, 0x4}], &(0x7f0000002340)='GPL\x00', 0x5, 0x33, &(0x7f0000002380)=""/51, 0x41100, 0x2, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f00000023c0)={0x5, 0x4}, 0x8, 0x10, &(0x7f0000002400)={0x3, 0xa, 0x6, 0xae2e}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000002500)=[r0, r8, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}, 0x80)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={0xffffffffffffffff, 0x18000000000002a0, 0x0, 0x0, &(0x7f00000001c0), 0x0, 0x0, 0xe8030000, 0x0, 0x0, 0x0, 0x0}, 0x48)
ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x89f2, &(0x7f0000000080)='ip6tnl0\x00')
socketpair(0x1e, 0x5, 0x20, &(0x7f0000000600))
socketpair(0x1, 0x1, 0x0, &(0x7f0000000740)={0xffffffffffffffff, <r9=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r9, 0x89f1, &(0x7f0000000080))
close(r3)

[ 2870.431150][ T1971] memory: usage 10600kB, limit 0kB, failcnt 886
[ 2870.438567][ T1971] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2870.450198][ T1920] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2870.468925][ T1971] Memory cgroup stats for /syz3:
[ 2870.469100][ T1971] anon 114688
[ 2870.469100][ T1971] file 10452992
[ 2870.469100][ T1971] kernel 286720
[ 2870.469100][ T1971] kernel_stack 65536
[ 2870.469100][ T1971] pagetables 77824
[ 2870.469100][ T1971] sec_pagetables 0
[ 2870.469100][ T1971] percpu 64
[ 2870.469100][ T1971] sock 0
[ 2870.469100][ T1971] vmalloc 0
[ 2870.469100][ T1971] shmem 10448896
[ 2870.469100][ T1971] zswap 0
[ 2870.469100][ T1971] zswapped 0
[ 2870.469100][ T1971] file_mapped 331776
[ 2870.469100][ T1971] file_dirty 0
[ 2870.469100][ T1971] file_writeback 0
[ 2870.469100][ T1971] swapcached 0
[ 2870.469100][ T1971] anon_thp 0
[ 2870.469100][ T1971] file_thp 0
[ 2870.469100][ T1971] shmem_thp 0
[ 2870.469100][ T1971] inactive_anon 2211840
[ 2870.469100][ T1971] active_anon 8351744
[ 2870.469100][ T1971] inactive_file 4096
[ 2870.469100][ T1971] active_file 0
[ 2870.469100][ T1971] unevictable 0
[ 2870.469100][ T1971] slab_reclaimable 40296
[ 2870.469100][ T1971] slab_unreclaimable 72456
[ 2870.469100][ T1971] slab 112752
[ 2870.611018][ T1917] netdevsim netdevsim2 netdevsim0: renamed from eth0
[ 2870.700099][ T1920] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2870.721419][ T1917] netdevsim netdevsim2 netdevsim1: renamed from eth1
[ 2870.729334][T17544] Bluetooth: hci4: command 0x040f tx timeout
[ 2870.788221][ T1917] netdevsim netdevsim2 netdevsim2: renamed from eth2
[ 2870.815007][ T1920] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2870.834321][ T1971] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=1970,uid=0
[ 2870.851186][ T1917] netdevsim netdevsim2 netdevsim3: renamed from eth3
[ 2870.957296][ T1971] Memory cgroup out of memory: Killed process 1970 (syz-executor.3) total-vm:54540kB, anon-rss:500kB, file-rss:8960kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 2870.985579][ T1920] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2871.035490][ T1721] syz-executor.5 invoked oom-killer: gfp_mask=0xdc0(GFP_KERNEL|__GFP_ZERO), order=0, oom_score_adj=0
[ 2871.075932][ T1721] CPU: 0 PID: 1721 Comm: syz-executor.5 Not tainted 6.2.0-rc2-syzkaller-00431-g0164776a2ce7 #0
[ 2871.086321][ T1721] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 2871.096405][ T1721] Call Trace:
[ 2871.099702][ T1721]  <TASK>
[ 2871.102658][ T1721]  dump_stack_lvl+0xd1/0x138
[ 2871.107296][ T1721]  dump_header+0x10b/0x85f
[ 2871.111748][ T1721]  oom_kill_process.cold+0x10/0x15
[ 2871.116889][ T1721]  out_of_memory+0x35c/0x14a0
[ 2871.121604][ T1721]  ? oom_killer_disable+0x280/0x280
[ 2871.126834][ T1721]  ? find_held_lock+0x2d/0x110
[ 2871.131635][ T1721]  mem_cgroup_out_of_memory+0x206/0x270
[ 2871.137209][ T1721]  ? mem_cgroup_margin+0x130/0x130
[ 2871.142346][ T1721]  ? lock_downgrade+0x6e0/0x6e0
[ 2871.147245][ T1721]  try_charge_memcg+0xefb/0x12f0
[ 2871.152223][ T1721]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 2871.158229][ T1721]  ? get_mem_cgroup_from_objcg+0xa1/0x260
[ 2871.163979][ T1721]  ? lock_downgrade+0x6e0/0x6e0
[ 2871.168862][ T1721]  ? lock_downgrade+0x6e0/0x6e0
[ 2871.173738][ T1721]  ? rcu_read_unlock+0x9/0x60
[ 2871.178466][ T1721]  obj_cgroup_charge+0x2af/0x5e0
[ 2871.183443][ T1721]  ? __alloc_file+0x21/0x270
[ 2871.188067][ T1721]  kmem_cache_alloc+0xb5/0x430
[ 2871.192865][ T1721]  __alloc_file+0x21/0x270
[ 2871.197316][ T1721]  alloc_empty_file+0x71/0x170
[ 2871.202115][ T1721]  path_openat+0xe1/0x2a50
[ 2871.206571][ T1721]  ? finish_task_switch.isra.0+0x2b5/0xc80
[ 2871.212423][ T1721]  ? __switch_to+0x5d0/0x10a0
[ 2871.217135][ T1721]  ? __schedule+0xb92/0x5450
[ 2871.221755][ T1721]  ? path_lookupat+0x840/0x840
[ 2871.226564][ T1721]  do_filp_open+0x1ba/0x410
[ 2871.231115][ T1721]  ? may_open_dev+0xf0/0xf0
[ 2871.235655][ T1721]  ? io_schedule_timeout+0x150/0x150
[ 2871.240982][ T1721]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 2871.247165][ T1721]  ? lockdep_hardirqs_on+0x7d/0x100
[ 2871.252415][ T1721]  do_sys_openat2+0x16d/0x4c0
[ 2871.257119][ T1721]  ? path_umount+0x6b8/0x10b0
[ 2871.261825][ T1721]  ? putname+0x102/0x140
[ 2871.266103][ T1721]  ? build_open_flags+0x6f0/0x6f0
[ 2871.271158][ T1721]  ? xfd_validate_state+0x5d/0x180
[ 2871.276311][ T1721]  __x64_sys_openat+0x143/0x1f0
[ 2871.281193][ T1721]  ? __ia32_sys_open+0x1c0/0x1c0
[ 2871.286166][ T1721]  ? syscall_enter_from_user_mode+0x26/0xb0
[ 2871.292094][ T1721]  do_syscall_64+0x39/0xb0
[ 2871.296549][ T1721]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2871.302485][ T1721] RIP: 0033:0x7fb88348bc38
[ 2871.306921][ T1721] Code: 24 18 31 c0 41 83 e2 40 75 40 89 f0 25 00 00 41 00 3d 00 00 41 00 74 32 44 89 c2 4c 89 ce bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 40 48 8b 4c 24 18 64 48 2b 0c 25 28 00 00 00
[ 2871.326556][ T1721] RSP: 002b:00007ffc6532c270 EFLAGS: 00000287 ORIG_RAX: 0000000000000101
[ 2871.335012][ T1721] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007fb88348bc38
[ 2871.343003][ T1721] RDX: 0000000000090800 RSI: 00007ffc6532d460 RDI: 00000000ffffff9c
[ 2871.350995][ T1721] RBP: 00007ffc6532d43c R08: 0000000000090800 R09: 00007ffc6532d460
[ 2871.358996][ T1721] R10: 0000000000000000 R11: 0000000000000287 R12: 00007fb8834e6b24
[ 2871.367000][ T1721] R13: 00007ffc6532d460 R14: 0000000000000010 R15: 00007ffc6532d4a0
21:29:00 executing program 3:
openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
perf_event_open(0x0, 0xffffffffffffffff, 0xb, 0xffffffffffffffff, 0x0)
r1 = openat$cgroup_int(r0, &(0x7f00000000c0)='memory.max\x00', 0x2, 0x0)
getpid()
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x1f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='blkio.bfq.io_service_time\x00', 0x26e1, 0x0)
write$cgroup_int(r2, &(0x7f0000000040), 0x12)
close(r2)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000280)='host1x_cdma_push_wide\x00'}, 0x10)
write$cgroup_int(r1, &(0x7f0000000040), 0x12)

[ 2871.375039][ T1721]  </TASK>
[ 2871.409340][ T1917] 8021q: adding VLAN 0 to HW filter on device bond0
[ 2871.423801][ T1721] memory: usage 10324kB, limit 0kB, failcnt 936
[ 2871.431533][ T1721] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2871.438420][ T1721] Memory cgroup stats for /syz5:
[ 2871.438610][ T1721] anon 36864
[ 2871.438610][ T1721] file 10436608
[ 2871.438610][ T1721] kernel 98304
[ 2871.438610][ T1721] kernel_stack 0
[ 2871.438610][ T1721] pagetables 8192
[ 2871.438610][ T1721] sec_pagetables 0
[ 2871.438610][ T1721] percpu 64
[ 2871.438610][ T1721] sock 0
[ 2871.438610][ T1721] vmalloc 0
[ 2871.438610][ T1721] shmem 10432512
[ 2871.438610][ T1721] zswap 0
[ 2871.438610][ T1721] zswapped 0
[ 2871.438610][ T1721] file_mapped 233472
[ 2871.438610][ T1721] file_dirty 0
[ 2871.438610][ T1721] file_writeback 0
[ 2871.438610][ T1721] swapcached 0
[ 2871.438610][ T1721] anon_thp 0
[ 2871.438610][ T1721] file_thp 0
[ 2871.438610][ T1721] shmem_thp 0
[ 2871.438610][ T1721] inactive_anon 2134016
[ 2871.438610][ T1721] active_anon 8335360
[ 2871.438610][ T1721] inactive_file 4096
[ 2871.438610][ T1721] active_file 0
[ 2871.438610][ T1721] unevictable 0
[ 2871.438610][ T1721] slab_reclaimable 32864
[ 2871.438610][ T1721] slab_unreclaimable 44080
[ 2871.438610][ T1721] slab 76944
[ 2871.473254][T17500] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 2871.535543][ T1721] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null)
[ 2871.542721][T20562] ------------[ cut here ]------------
[ 2871.543224][ T1721] ,cpuset=
[ 2871.549564][T20562] DEBUG_LOCKS_WARN_ON(1)
[ 2871.549633][T20562] WARNING: CPU: 0 PID: 20562 at kernel/locking/lockdep.c:231 __lock_acquire+0xecf/0x56d0
[ 2871.555031][ T1721] syz5
[ 2871.558025][T20562] Modules linked in:
[ 2871.562261][ T1721] ,mems_allowed=0-1
[ 2871.572006][T20562] CPU: 0 PID: 20562 Comm: kworker/u4:3 Not tainted 6.2.0-rc2-syzkaller-00431-g0164776a2ce7 #0
[ 2871.572030][T20562] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 2871.572043][T20562] Workqueue: netns cleanup_net
[ 2871.572096][T20562] RIP: 0010:__lock_acquire+0xecf/0x56d0
[ 2871.572118][T20562] Code: e8 1c 73 8e e8 42 04 6c 00 8b 05 94 82 0f 0d 85 c0 0f 85 79 f8 ff ff 48 c7 c6 40 51 4c 8a 48 c7 c7 a0 4a 4c 8a e8 91 27 5c 08 <0f> 0b 31 c0 e9 73 f7 ff ff 48 63 5c 24 18 be 08 00 00 00 48 89 d8
[ 2871.572139][T20562] RSP: 0018:ffffc9000378f5e0 EFLAGS: 00010086
[ 2871.572155][T20562] RAX: 0000000000000000 RBX: 000000000000095a RCX: 0000000000000000
[ 2871.572170][T20562] RDX: ffff888051f53a80 RSI: ffffffff8166710c RDI: fffff520006f1eae
[ 2871.572185][T20562] RBP: 0000000000000003 R08: 0000000000000005 R09: 0000000000000000
[ 2871.572198][T20562] R10: 0000000080000002 R11: 0000000000000001 R12: 0000000000000003
[ 2871.572212][T20562] R13: ffff888051f53a80 R14: ffff888051f544b8 R15: dffffc0000000000
[ 2871.572227][T20562] FS:  0000000000000000(0000) GS:ffff8880b9800000(0000) knlGS:0000000000000000
[ 2871.572249][T20562] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 2871.572265][T20562] CR2: 00007ffe36aa82d8 CR3: 000000000c48e000 CR4: 00000000003506f0
[ 2871.572280][T20562] DR0: fffffffffffffffc DR1: fffffffffffffffc DR2: 0000000000000000
[ 2871.572295][T20562] DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000600
[ 2871.572309][T20562] Call Trace:
[ 2871.572316][T20562]  <TASK>
[ 2871.572331][T20562]  ? lockdep_hardirqs_on_prepare+0x410/0x410
[ 2871.572354][T20562]  ? find_held_lock+0x2d/0x110
[ 2871.572392][T20562]  lock_acquire+0x1e3/0x630
[ 2871.572413][T20562]  ? finish_task_switch.isra.0+0x130/0xc80
[ 2871.572449][T20562]  ? lock_release+0x810/0x810
[ 2871.572466][T20562]  ? find_held_lock+0x2d/0x110
[ 2871.572494][T20562]  ? __schedule+0xb02/0x5450
[ 2871.572515][T20562]  ? lock_downgrade+0x6e0/0x6e0
[ 2871.572536][T20562]  finish_task_switch.isra.0+0x192/0xc80
[ 2871.575563][ T1721] ,oom_memcg=
[ 2871.579069][T20562]  ? finish_task_switch.isra.0+0x130/0xc80
[ 2871.582875][ T1721] /syz5
[ 2871.593072][T20562]  ? __switch_to+0x5d0/0x10a0
[ 2871.603129][ T1721] ,task_memcg=
[ 2871.607839][T20562]  ? __switch_to_asm+0x3e/0x60
[ 2871.794727][T20562]  __schedule+0xb92/0x5450
[ 2871.799151][T20562]  ? lockdep_hardirqs_on_prepare+0x410/0x410
[ 2871.805121][T20562]  ? io_schedule_timeout+0x150/0x150
[ 2871.810389][T20562]  ? __mutex_lock+0xa43/0x1360
[ 2871.815140][T20562]  schedule+0xde/0x1b0
[ 2871.819203][T20562]  schedule_preempt_disabled+0x13/0x20
[ 2871.824645][T20562]  __mutex_lock+0xa48/0x1360
[ 2871.829221][T20562]  ? devlink_pernet_pre_exit+0x10a/0x220
[ 2871.834928][T20562]  ? mutex_lock_io_nested+0x11a0/0x11a0
[ 2871.840459][T20562]  ? lock_downgrade+0x6e0/0x6e0
[ 2871.845294][T20562]  ? devlink_try_get+0x15d/0x1e0
[ 2871.850226][T20562]  devlink_pernet_pre_exit+0x10a/0x220
[ 2871.855698][T20562]  ? devlinks_xa_find_get+0x220/0x220
[ 2871.861103][T20562]  ? cttimeout_net_pre_exit+0x10d/0x500
[ 2871.866677][T20562]  ? devlinks_xa_find_get+0x220/0x220
[ 2871.872036][T20562]  cleanup_net+0x455/0xb10
[ 2871.876441][T20562]  ? unregister_pernet_device+0x80/0x80
[ 2871.881975][T20562]  process_one_work+0x9bf/0x1710
[ 2871.886902][T20562]  ? pwq_dec_nr_in_flight+0x2a0/0x2a0
[ 2871.892262][T20562]  ? rwlock_bug.part.0+0x90/0x90
[ 2871.897182][T20562]  ? _raw_spin_lock_irq+0x45/0x50
[ 2871.902196][T20562]  worker_thread+0x669/0x1090
[ 2871.906859][T20562]  ? process_one_work+0x1710/0x1710
[ 2871.912055][T20562]  kthread+0x2e8/0x3a0
[ 2871.916105][T20562]  ? kthread_complete_and_exit+0x40/0x40
[ 2871.921725][T20562]  ret_from_fork+0x1f/0x30
[ 2871.926133][T20562]  </TASK>
[ 2871.929137][T20562] Kernel panic - not syncing: kernel: panic_on_warn set ...
[ 2871.936492][T20562] CPU: 0 PID: 20562 Comm: kworker/u4:3 Not tainted 6.2.0-rc2-syzkaller-00431-g0164776a2ce7 #0
[ 2871.946710][T20562] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 2871.956748][T20562] Workqueue: netns cleanup_net
[ 2871.961500][T20562] Call Trace:
[ 2871.964761][T20562]  <TASK>
[ 2871.967677][T20562]  dump_stack_lvl+0xd1/0x138
[ 2871.972258][T20562]  panic+0x2cc/0x626
[ 2871.976176][T20562]  ? panic_print_sys_info.part.0+0x110/0x110
[ 2871.982150][T20562]  ? __lock_acquire+0xecf/0x56d0
[ 2871.987071][T20562]  check_panic_on_warn.cold+0x19/0x35
[ 2871.992444][T20562]  __warn+0xf2/0x1a0
[ 2871.996328][T20562]  ? __wake_up_klogd.part.0+0x99/0xf0
[ 2872.001685][T20562]  ? __lock_acquire+0xecf/0x56d0
[ 2872.006616][T20562]  report_bug+0x1c0/0x210
[ 2872.010949][T20562]  handle_bug+0x3c/0x70
[ 2872.015101][T20562]  exc_invalid_op+0x18/0x50
[ 2872.019587][T20562]  asm_exc_invalid_op+0x1a/0x20
[ 2872.024426][T20562] RIP: 0010:__lock_acquire+0xecf/0x56d0
[ 2872.029954][T20562] Code: e8 1c 73 8e e8 42 04 6c 00 8b 05 94 82 0f 0d 85 c0 0f 85 79 f8 ff ff 48 c7 c6 40 51 4c 8a 48 c7 c7 a0 4a 4c 8a e8 91 27 5c 08 <0f> 0b 31 c0 e9 73 f7 ff ff 48 63 5c 24 18 be 08 00 00 00 48 89 d8
[ 2872.049546][T20562] RSP: 0018:ffffc9000378f5e0 EFLAGS: 00010086
[ 2872.055594][T20562] RAX: 0000000000000000 RBX: 000000000000095a RCX: 0000000000000000
[ 2872.063558][T20562] RDX: ffff888051f53a80 RSI: ffffffff8166710c RDI: fffff520006f1eae
[ 2872.071524][T20562] RBP: 0000000000000003 R08: 0000000000000005 R09: 0000000000000000
[ 2872.079523][T20562] R10: 0000000080000002 R11: 0000000000000001 R12: 0000000000000003
[ 2872.087496][T20562] R13: ffff888051f53a80 R14: ffff888051f544b8 R15: dffffc0000000000
[ 2872.095480][T20562]  ? vprintk+0x8c/0xa0
[ 2872.099540][T20562]  ? lockdep_hardirqs_on_prepare+0x410/0x410
[ 2872.105519][T20562]  ? find_held_lock+0x2d/0x110
[ 2872.110274][T20562]  lock_acquire+0x1e3/0x630
[ 2872.114761][T20562]  ? finish_task_switch.isra.0+0x130/0xc80
[ 2872.120561][T20562]  ? lock_release+0x810/0x810
[ 2872.125310][T20562]  ? find_held_lock+0x2d/0x110
[ 2872.130064][T20562]  ? __schedule+0xb02/0x5450
[ 2872.134637][T20562]  ? lock_downgrade+0x6e0/0x6e0
[ 2872.139476][T20562]  finish_task_switch.isra.0+0x192/0xc80
[ 2872.145099][T20562]  ? finish_task_switch.isra.0+0x130/0xc80
[ 2872.150910][T20562]  ? __switch_to+0x5d0/0x10a0
[ 2872.155584][T20562]  ? __switch_to_asm+0x3e/0x60
[ 2872.160375][T20562]  __schedule+0xb92/0x5450
[ 2872.164792][T20562]  ? lockdep_hardirqs_on_prepare+0x410/0x410
[ 2872.170768][T20562]  ? io_schedule_timeout+0x150/0x150
[ 2872.176036][T20562]  ? __mutex_lock+0xa43/0x1360
[ 2872.180805][T20562]  schedule+0xde/0x1b0
[ 2872.184886][T20562]  schedule_preempt_disabled+0x13/0x20
[ 2872.190347][T20562]  __mutex_lock+0xa48/0x1360
[ 2872.194931][T20562]  ? devlink_pernet_pre_exit+0x10a/0x220
[ 2872.200563][T20562]  ? mutex_lock_io_nested+0x11a0/0x11a0
[ 2872.206097][T20562]  ? lock_downgrade+0x6e0/0x6e0
[ 2872.211037][T20562]  ? devlink_try_get+0x15d/0x1e0
[ 2872.215997][T20562]  devlink_pernet_pre_exit+0x10a/0x220
[ 2872.221473][T20562]  ? devlinks_xa_find_get+0x220/0x220
[ 2872.226839][T20562]  ? cttimeout_net_pre_exit+0x10d/0x500
[ 2872.232455][T20562]  ? devlinks_xa_find_get+0x220/0x220
[ 2872.237844][T20562]  cleanup_net+0x455/0xb10
[ 2872.242266][T20562]  ? unregister_pernet_device+0x80/0x80
[ 2872.247805][T20562]  process_one_work+0x9bf/0x1710
[ 2872.252732][T20562]  ? pwq_dec_nr_in_flight+0x2a0/0x2a0
[ 2872.258264][T20562]  ? rwlock_bug.part.0+0x90/0x90
[ 2872.263198][T20562]  ? _raw_spin_lock_irq+0x45/0x50
[ 2872.268212][T20562]  worker_thread+0x669/0x1090
[ 2872.272892][T20562]  ? process_one_work+0x1710/0x1710
[ 2872.278077][T20562]  kthread+0x2e8/0x3a0
[ 2872.282128][T20562]  ? kthread_complete_and_exit+0x40/0x40
[ 2872.287743][T20562]  ret_from_fork+0x1f/0x30
[ 2872.292163][T20562]  </TASK>
[ 2873.360944][T20562] Shutting down cpus with NMI
[ 2873.365816][T20562] Kernel Offset: disabled
[ 2873.370138][T20562] Rebooting in 86400 seconds..