l_memsw_limit 9223372036854771712
[ 3238.008545][ T5119] total_cache 0
[ 3238.012256][ T5119] total_rss 4096
[ 3238.016030][ T5119] total_rss_huge 0
[ 3238.020751][ T5119] total_shmem 0
[ 3238.024796][ T5119] total_mapped_file 0
[ 3238.029627][ T5119] total_dirty 0
[ 3238.033335][ T5119] total_writeback 0
[ 3238.037953][ T5119] total_workingset_refault_anon 52345
[ 3238.043807][ T5119] total_workingset_refault_file 0
[ 3238.049586][ T5119] total_swap 749568
[ 3238.053611][ T5119] total_swapcached 0
[ 3238.058363][ T5119] total_pgpgin 246557
[ 3238.062570][ T5119] total_pgpgout 246556
[ 3238.067513][ T5119] total_pgfault 574211
[ 3238.071808][ T5119] total_pgmajfault 51126
[ 3238.076258][ T5119] total_inactive_anon 0
[ 3238.082668][ T5119] total_active_anon 4096
[ 3238.112400][ T5119] total_inactive_file 0
[ 3238.122822][ T5119] total_active_file 0
[ 3238.132874][ T5119] total_unevictable 0
[ 3238.142485][ T5119] anon_cost 0
[ 3238.149594][ T5119] file_cost 0
[ 3238.157122][ T5119] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=25436,uid=0
[ 3238.187624][ T5119] Memory cgroup out of memory: Killed process 25436 (syz-executor.0) total-vm:54344kB, anon-rss:308kB, file-rss:8704kB, shmem-rss:0kB, UID:0 pgtables:64kB oom_score_adj:1000
[ 3238.242218][T25438] syz-executor.4 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3238.258855][T25438] CPU: 0 PID: 25438 Comm: syz-executor.4 Not tainted 6.8.0-rc7-syzkaller-00250-g137e0ec05aeb #0
[ 3238.269353][T25438] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3238.279469][T25438] Call Trace:
[ 3238.282815][T25438]  <TASK>
[ 3238.285783][T25438]  dump_stack_lvl+0x1e7/0x2e0
[ 3238.290528][T25438]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3238.295784][T25438]  ? __pfx__printk+0x10/0x10
[ 3238.300421][T25438]  ? ___ratelimit+0x4c4/0x670
[ 3238.305162][T25438]  ? __pfx____ratelimit+0x10/0x10
[ 3238.310254][T25438]  dump_header+0xda/0x6a0
[ 3238.314656][T25438]  oom_kill_process+0x3a7/0x930
[ 3238.319574][T25438]  out_of_memory+0xf67/0x1320
[ 3238.324322][T25438]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3238.330015][T25438]  ? __pfx___mutex_lock+0x10/0x10
[ 3238.335107][T25438]  ? __pfx_out_of_memory+0x10/0x10
[ 3238.340284][T25438]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3238.345887][T25438]  ? __pfx_lock_release+0x10/0x10
[ 3238.350978][T25438]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3238.357112][T25438]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3238.362377][T25438]  ? mem_cgroup_iter+0x3e9/0x560
[ 3238.367385][T25438]  try_charge_memcg+0xda2/0x18a0
[ 3238.372410][T25438]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3238.377829][T25438]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3238.383573][T25438]  ? __pfx_lock_release+0x10/0x10
[ 3238.388620][T25438]  ? memcg_account_kmem+0x1e7/0x210
[ 3238.393843][T25438]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3238.399666][T25438]  __memcg_kmem_charge_page+0xe1/0x250
[ 3238.405147][T25438]  memcg_charge_kernel_stack+0x304/0x550
[ 3238.410805][T25438]  dup_task_struct+0x15d/0x7d0
[ 3238.415587][T25438]  copy_process+0x5d5/0x3fc0
[ 3238.420199][T25438]  ? __might_fault+0xa9/0x120
[ 3238.424893][T25438]  ? __pfx_lock_release+0x10/0x10
[ 3238.429940][T25438]  ? __pfx_copy_process+0x10/0x10
[ 3238.434977][T25438]  ? __might_fault+0xc5/0x120
[ 3238.439676][T25438]  ? __asan_memset+0x23/0x50
[ 3238.444290][T25438]  kernel_clone+0x21d/0x8d0
[ 3238.448817][T25438]  ? __pfx_kernel_clone+0x10/0x10
[ 3238.453885][T25438]  ? __pfx___might_resched+0x10/0x10
[ 3238.459188][T25438]  __se_sys_clone3+0x2cb/0x350
[ 3238.463972][T25438]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3238.469302][T25438]  ? int80_emulation+0xea/0x210
[ 3238.474187][T25438]  int80_emulation+0x129/0x210
[ 3238.478977][T25438]  asm_int80_emulation+0x1a/0x20
[ 3238.483925][T25438] RIP: 0023:0xf737c060
[ 3238.488002][T25438] Code: 4c 24 04 85 c9 0f 84 df 0d fe ff 8b 54 24 0c 85 d2 0f 84 d3 0d fe ff 53 56 8b 74 24 18 89 cb 8b 4c 24 10 b8 b3 01 00 00 cd 80 <85> c0 74 09 5e 5b 0f 8c b4 0d fe ff c3 31 ed 83 e4 f0 83 ec 0c 56
[ 3238.507631][T25438] RSP: 002b:00000000f75938e4 EFLAGS: 00000282 ORIG_RAX: 00000000000001b3
[ 3238.516060][T25438] RAX: ffffffffffffffda RBX: 00000000f7593950 RCX: 0000000000000058
[ 3238.524045][T25438] RDX: 00000000f732ceb0 RSI: 00000000f5eecb40 RDI: 00000000ffffffd8
[ 3238.532029][T25438] RBP: 000000000000000b R08: 0000000000000000 R09: 0000000000000000
[ 3238.540009][T25438] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 3238.547992][T25438] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 3238.555987][T25438]  </TASK>
06:21:55 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x888, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x858, 0x2, [@TCA_BASIC_POLICE={0x854, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}, @TCA_POLICE_PEAKRATE64={0xc}]}]}}]}, 0x888}}, 0x0)

06:21:55 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x87c, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x84c, 0x2, [@TCA_BASIC_POLICE={0x848, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa000000]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}]}]}}]}, 0x87c}}, 0x0)

[ 3238.641391][T25438] memory: usage 307200kB, limit 307200kB, failcnt 189484
[ 3238.666944][T25438] memory+swap: usage 307416kB, limit 9007199254740988kB, failcnt 0
[ 3238.675145][T25438] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0
[ 3238.689285][T25438] Memory cgroup stats for /syz4:
[ 3238.689449][T25438] cache 0
[ 3238.699636][T25438] rss 12288
[ 3238.703424][T25438] rss_huge 0
[ 3238.709369][T25438] shmem 0
[ 3238.712609][T25438] mapped_file 0
[ 3238.719474][T25438] dirty 0
[ 3238.722769][T25438] writeback 0
[ 3238.730326][T25438] workingset_refault_anon 80840
[ 3238.739571][T25438] workingset_refault_file 0
[ 3238.749108][T25438] swap 221184
[ 3238.752692][T25438] swapcached 8192
[ 3238.761041][T25438] pgpgin 276198
[ 3238.764801][T25438] pgpgout 276195
[ 3238.770300][T25438] pgfault 632157
[ 3238.774397][T25438] pgmajfault 77894
[ 3238.789172][T25438] inactive_anon 0
[ 3238.794772][T25438] active_anon 12288
[ 3238.805738][T25438] inactive_file 0
[ 3238.813250][T25438] active_file 0
[ 3238.823610][T25438] unevictable 0
[ 3238.831293][T25438] hierarchical_memory_limit 314572800
[ 3238.848025][T25438] hierarchical_memsw_limit 9223372036854771712
[ 3238.856232][T25438] total_cache 0
[ 3238.864268][T25438] total_rss 12288
[ 3238.868571][T25438] total_rss_huge 0
[ 3238.872338][T25438] total_shmem 0
[ 3238.875825][T25438] total_mapped_file 0
[ 3238.879956][T25438] total_dirty 0
[ 3238.883445][T25438] total_writeback 0
[ 3238.887349][T25438] total_workingset_refault_anon 80840
[ 3238.892756][T25438] total_workingset_refault_file 0
[ 3238.897923][T25438] total_swap 221184
[ 3238.901748][T25438] total_swapcached 8192
[ 3238.906186][T25438] total_pgpgin 276198
[ 3238.910769][T25438] total_pgpgout 276195
[ 3238.915031][T25438] total_pgfault 632157
[ 3238.922674][T25438] total_pgmajfault 77894
[ 3238.927234][T25438] total_inactive_anon 0
[ 3238.931493][T25438] total_active_anon 12288
[ 3238.935895][T25438] total_inactive_file 0
[ 3238.940482][T25438] total_active_file 0
[ 3238.944584][T25438] total_unevictable 0
06:21:55 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x888, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x858, 0x2, [@TCA_BASIC_POLICE={0x854, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf0ffffff]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}, @TCA_POLICE_PEAKRATE64={0xc}]}]}}]}, 0x888}}, 0x0)

[ 3238.949747][T25438] anon_cost 0
[ 3238.953063][T25438] file_cost 0
[ 3238.956491][T25438] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0-1,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=25438,uid=0
[ 3238.972134][T25438] Memory cgroup out of memory: Killed process 25438 (syz-executor.4) total-vm:54344kB, anon-rss:316kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:64kB oom_score_adj:1000
[ 3238.989758][T25442] syz-executor.3 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[ 3239.002863][T25442] CPU: 1 PID: 25442 Comm: syz-executor.3 Not tainted 6.8.0-rc7-syzkaller-00250-g137e0ec05aeb #0
[ 3239.013340][T25442] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3239.023439][T25442] Call Trace:
[ 3239.026794][T25442]  <TASK>
[ 3239.029760][T25442]  dump_stack_lvl+0x1e7/0x2e0
[ 3239.034498][T25442]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3239.039754][T25442]  ? __pfx__printk+0x10/0x10
[ 3239.044392][T25442]  ? ___ratelimit+0x4c4/0x670
[ 3239.049120][T25442]  ? __pfx____ratelimit+0x10/0x10
[ 3239.054206][T25442]  dump_header+0xda/0x6a0
[ 3239.058587][T25442]  oom_kill_process+0x3a7/0x930
[ 3239.063464][T25442]  out_of_memory+0xf67/0x1320
[ 3239.068163][T25442]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3239.073811][T25442]  ? __pfx___mutex_lock+0x10/0x10
[ 3239.078850][T25442]  ? __pfx_out_of_memory+0x10/0x10
[ 3239.083983][T25442]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3239.089543][T25442]  ? __pfx_lock_release+0x10/0x10
[ 3239.094584][T25442]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3239.100668][T25442]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3239.105902][T25442]  ? mem_cgroup_iter+0x3e9/0x560
[ 3239.110862][T25442]  try_charge_memcg+0xda2/0x18a0
[ 3239.115819][T25442]  ? mark_lock+0x9a/0x350
[ 3239.120181][T25442]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3239.125589][T25442]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 3239.131752][T25442]  charge_memcg+0xa2/0x160
[ 3239.136193][T25442]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 3239.142275][T25442]  __read_swap_cache_async+0x480/0x8b0
[ 3239.147928][T25442]  ? mark_lock+0x9a/0x350
[ 3239.152278][T25442]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 3239.158281][T25442]  ? blk_start_plug+0x6f/0x1b0
[ 3239.163065][T25442]  swap_cluster_readahead+0x398/0x810
[ 3239.168481][T25442]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 3239.174420][T25442]  ? __pfx_lock_release+0x10/0x10
[ 3239.179503][T25442]  ? xas_descend+0x37e/0x470
[ 3239.184127][T25442]  swapin_readahead+0x1ea/0x1070
[ 3239.189090][T25442]  ? filemap_get_entry+0x127/0x4e0
[ 3239.194235][T25442]  ? __pfx_swapin_readahead+0x10/0x10
[ 3239.199638][T25442]  ? __filemap_get_folio+0x935/0xbc0
[ 3239.204948][T25442]  ? swap_cache_get_folio+0x9f/0x570
[ 3239.210276][T25442]  do_swap_page+0x791/0x3f40
[ 3239.214890][T25442]  ? rcu_is_watching+0x15/0xb0
[ 3239.219684][T25442]  ? do_swap_page+0x154/0x3f40
[ 3239.224823][T25442]  ? __pfx_do_swap_page+0x10/0x10
[ 3239.229881][T25442]  ? pte_offset_map_nolock+0x137/0x1f0
[ 3239.235372][T25442]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 3239.241225][T25442]  __handle_mm_fault+0x15e8/0x72d0
[ 3239.246418][T25442]  ? reacquire_held_locks+0x3eb/0x690
[ 3239.251821][T25442]  ? __pfx___handle_mm_fault+0x10/0x10
[ 3239.257312][T25442]  ? __pfx_reacquire_held_locks+0x10/0x10
[ 3239.263066][T25442]  ? mtree_range_walk+0x6fd/0x8e0
[ 3239.268107][T25442]  ? lock_vma_under_rcu+0x18a/0x730
[ 3239.273321][T25442]  ? __pfx_lock_release+0x10/0x10
[ 3239.278367][T25442]  ? lock_vma_under_rcu+0x2f9/0x730
[ 3239.283600][T25442]  ? lock_vma_under_rcu+0x18a/0x730
[ 3239.288837][T25442]  ? __pfx_lock_vma_under_rcu+0x10/0x10
[ 3239.294507][T25442]  handle_mm_fault+0x3c1/0x8a0
[ 3239.299327][T25442]  exc_page_fault+0x456/0x870
[ 3239.304086][T25442]  asm_exc_page_fault+0x26/0x30
[ 3239.308964][T25442] RIP: 0023:0xf736c778
[ 3239.313050][T25442] Code: 00 83 ec 3c 89 5c 24 14 8b 48 08 89 c3 85 c9 0f 85 fd 01 00 00 8b 40 0c 85 c0 0f 84 f2 01 00 00 80 7b 1c 00 0f 84 e8 01 00 00 <8b> 73 5c 83 fe ff 75 40 89 d8 ba 01 00 00 00 e8 74 fc ff ff e8 9f
[ 3239.332690][T25442] RSP: 002b:00000000f75efac0 EFLAGS: 00010202
[ 3239.338782][T25442] RAX: 0000000000000001 RBX: 00000000f74cafc0 RCX: 0000000000000000
06:21:56 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x888, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x858, 0x2, [@TCA_BASIC_POLICE={0x854, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000000]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}, @TCA_POLICE_PEAKRATE64={0xc}]}]}}]}, 0x888}}, 0x0)

[ 3239.346767][T25442] RDX: 0000000000000000 RSI: 00000000f75efcc0 RDI: 0000000000000000
[ 3239.354750][T25442] RBP: 00000000f74cafcc R08: 0000000000000000 R09: 0000000000000000
[ 3239.362751][T25442] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 3239.370755][T25442] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 3239.378761][T25442]  </TASK>
[ 3239.389025][T25442] memory: usage 307200kB, limit 307200kB, failcnt 140780
[ 3239.408929][T25442] memory+swap: usage 307912kB, limit 9007199254740988kB, failcnt 0
[ 3239.439525][T25442] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[ 3239.466161][T25442] Memory cgroup stats for /syz0:
[ 3239.466538][T25442] cache 0
[ 3239.476522][T25442] rss 4096
[ 3239.479711][T25442] rss_huge 0
[ 3239.482970][T25442] shmem 0
[ 3239.485934][T25442] mapped_file 0
[ 3239.490799][T25442] dirty 0
[ 3239.493883][T25442] writeback 0
[ 3239.499379][T25442] workingset_refault_anon 52412
[ 3239.504387][T25442] workingset_refault_file 0
[ 3239.513016][T25442] swap 720896
[ 3239.520290][T25442] swapcached 4096
[ 3239.529588][T25442] pgpgin 246649
[ 3239.533273][T25442] pgpgout 246647
[ 3239.537596][T25442] pgfault 574344
[ 3239.541352][T25442] pgmajfault 51191
[ 3239.545271][T25442] inactive_anon 0
[ 3239.549974][T25442] active_anon 0
[ 3239.553668][T25442] inactive_file 0
[ 3239.558160][T25442] active_file 0
[ 3239.561846][T25442] unevictable 0
[ 3239.565518][T25442] hierarchical_memory_limit 314572800
[ 3239.571598][T25442] hierarchical_memsw_limit 9223372036854771712
[ 3239.578716][T25442] total_cache 0
[ 3239.582411][T25442] total_rss 4096
[ 3239.586163][T25442] total_rss_huge 0
[ 3239.590773][T25442] total_shmem 0
[ 3239.594457][T25442] total_mapped_file 0
[ 3239.599550][T25442] total_dirty 0
[ 3239.603223][T25442] total_writeback 0
[ 3239.609341][T25442] total_workingset_refault_anon 52412
[ 3239.614949][T25442] total_workingset_refault_file 0
[ 3239.621687][T25442] total_swap 720896
[ 3239.625699][T25442] total_swapcached 4096
[ 3239.630678][T25442] total_pgpgin 246649
[ 3239.634880][T25442] total_pgpgout 246647
[ 3239.639766][T25442] total_pgfault 574344
[ 3239.644051][T25442] total_pgmajfault 51191
[ 3239.649014][T25442] total_inactive_anon 0
[ 3239.653324][T25442] total_active_anon 0
[ 3239.658802][T25442] total_inactive_file 0
[ 3239.663153][T25442] total_active_file 0
[ 3239.667864][T25442] total_unevictable 0
[ 3239.672057][T25442] anon_cost 0
[ 3239.675541][T25442] file_cost 0
[ 3239.679829][T25442] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=25443,uid=0
[ 3239.695889][T25442] Memory cgroup out of memory: Killed process 25443 (syz-executor.0) total-vm:54344kB, anon-rss:308kB, file-rss:8704kB, shmem-rss:0kB, UID:0 pgtables:64kB oom_score_adj:1000
06:21:56 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x87c, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x84c, 0x2, [@TCA_BASIC_POLICE={0x848, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb000000]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}]}]}}]}, 0x87c}}, 0x0)

[ 3239.732813][T25446] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3239.750768][T25446] CPU: 1 PID: 25446 Comm: syz-executor.2 Not tainted 6.8.0-rc7-syzkaller-00250-g137e0ec05aeb #0
[ 3239.761264][T25446] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3239.771366][T25446] Call Trace:
[ 3239.774705][T25446]  <TASK>
[ 3239.777676][T25446]  dump_stack_lvl+0x1e7/0x2e0
[ 3239.782418][T25446]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3239.787765][T25446]  ? __pfx__printk+0x10/0x10
[ 3239.792420][T25446]  ? ___ratelimit+0x4c4/0x670
[ 3239.797160][T25446]  ? __pfx____ratelimit+0x10/0x10
[ 3239.802249][T25446]  dump_header+0xda/0x6a0
[ 3239.806639][T25446]  oom_kill_process+0x3a7/0x930
[ 3239.811545][T25446]  out_of_memory+0xf67/0x1320
[ 3239.816290][T25446]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3239.821977][T25446]  ? __pfx___mutex_lock+0x10/0x10
[ 3239.827059][T25446]  ? __pfx_out_of_memory+0x10/0x10
[ 3239.832245][T25446]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3239.837852][T25446]  ? __pfx_lock_release+0x10/0x10
[ 3239.842934][T25446]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3239.849053][T25446]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3239.854295][T25446]  ? mem_cgroup_iter+0x3e9/0x560
[ 3239.859347][T25446]  try_charge_memcg+0xda2/0x18a0
[ 3239.864336][T25446]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3239.869742][T25446]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3239.875487][T25446]  ? __pfx_lock_release+0x10/0x10
[ 3239.880530][T25446]  ? memcg_account_kmem+0x1e7/0x210
[ 3239.885748][T25446]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3239.891567][T25446]  __memcg_kmem_charge_page+0xe1/0x250
[ 3239.897052][T25446]  memcg_charge_kernel_stack+0x304/0x550
[ 3239.902722][T25446]  dup_task_struct+0x40d/0x7d0
[ 3239.907506][T25446]  copy_process+0x5d5/0x3fc0
[ 3239.912126][T25446]  ? __might_fault+0xa9/0x120
[ 3239.916821][T25446]  ? __pfx_lock_release+0x10/0x10
[ 3239.921873][T25446]  ? __pfx_copy_process+0x10/0x10
[ 3239.926911][T25446]  ? __might_fault+0xc5/0x120
[ 3239.931603][T25446]  ? __asan_memset+0x23/0x50
[ 3239.936211][T25446]  kernel_clone+0x21d/0x8d0
[ 3239.940731][T25446]  ? __pfx_kernel_clone+0x10/0x10
[ 3239.945772][T25446]  ? __pfx___might_resched+0x10/0x10
[ 3239.951076][T25446]  __se_sys_clone3+0x2cb/0x350
[ 3239.955858][T25446]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3239.961193][T25446]  ? int80_emulation+0xea/0x210
[ 3239.966065][T25446]  int80_emulation+0x129/0x210
[ 3239.970852][T25446]  asm_int80_emulation+0x1a/0x20
[ 3239.975809][T25446] RIP: 0023:0xf7376060
[ 3239.979886][T25446] Code: 4c 24 04 85 c9 0f 84 df 0d fe ff 8b 54 24 0c 85 d2 0f 84 d3 0d fe ff 53 56 8b 74 24 18 89 cb 8b 4c 24 10 b8 b3 01 00 00 cd 80 <85> c0 74 09 5e 5b 0f 8c b4 0d fe ff c3 31 ed 83 e4 f0 83 ec 0c 56
[ 3239.999503][T25446] RSP: 002b:00000000f758d8e4 EFLAGS: 00000282 ORIG_RAX: 00000000000001b3
[ 3240.007934][T25446] RAX: ffffffffffffffda RBX: 00000000f758d950 RCX: 0000000000000058
[ 3240.015920][T25446] RDX: 00000000f7326eb0 RSI: 00000000f5ee6b40 RDI: 00000000ffffffd8
[ 3240.023901][T25446] RBP: 000000000000000b R08: 0000000000000000 R09: 0000000000000000
[ 3240.031880][T25446] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 3240.039873][T25446] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 3240.047875][T25446]  </TASK>
[ 3240.054402][T25446] memory: usage 307200kB, limit 307200kB, failcnt 112821
[ 3240.079214][T25446] memory+swap: usage 307656kB, limit 9007199254740988kB, failcnt 0
[ 3240.103691][T25446] kmem: usage 307176kB, limit 9007199254740988kB, failcnt 0
[ 3240.120722][T25446] Memory cgroup stats for /syz2:
[ 3240.120899][T25446] cache 0
[ 3240.139554][T25446] rss 4096
[ 3240.145171][T25446] rss_huge 0
[ 3240.159616][T25446] shmem 0
[ 3240.168219][T25446] mapped_file 0
[ 3240.176031][T25446] dirty 0
[ 3240.184357][T25446] writeback 0
[ 3240.191068][T25446] workingset_refault_anon 40862
[ 3240.202961][T25446] workingset_refault_file 0
[ 3240.213111][T25446] swap 471040
[ 3240.223134][T25446] swapcached 20480
[ 3240.243139][T25446] pgpgin 245051
[ 3240.254608][T25446] pgpgout 245046
[ 3240.264959][T25446] pgfault 585175
[ 3240.276099][T25446] pgmajfault 40539
[ 3240.286797][T25446] inactive_anon 4096
[ 3240.293530][T25446] active_anon 12288
[ 3240.320501][T25446] inactive_file 0
[ 3240.332924][T25446] active_file 0
[ 3240.343540][T25446] unevictable 0
[ 3240.356137][T25446] hierarchical_memory_limit 314572800
[ 3240.363509][T25446] hierarchical_memsw_limit 9223372036854771712
[ 3240.386569][T25446] total_cache 0
[ 3240.405247][T25446] total_rss 4096
[ 3240.409490][T25446] total_rss_huge 0
[ 3240.413376][T25446] total_shmem 0
[ 3240.417438][T25446] total_mapped_file 0
[ 3240.421487][T25446] total_dirty 0
[ 3240.424969][T25446] total_writeback 0
[ 3240.428856][T25446] total_workingset_refault_anon 40862
[ 3240.434249][T25446] total_workingset_refault_file 0
[ 3240.439444][T25446] total_swap 471040
[ 3240.443594][T25446] total_swapcached 20480
[ 3240.447978][T25446] total_pgpgin 245051
[ 3240.451990][T25446] total_pgpgout 245046
[ 3240.456056][T25446] total_pgfault 585175
[ 3240.462353][T25446] total_pgmajfault 40539
[ 3240.467280][T25446] total_inactive_anon 4096
[ 3240.471905][T25446] total_active_anon 12288
[ 3240.476658][T25446] total_inactive_file 0
[ 3240.485524][T25446] total_active_file 0
[ 3240.491258][T25446] total_unevictable 0
[ 3240.495543][T25446] anon_cost 0
[ 3240.499414][T25446] file_cost 0
[ 3240.502972][T25446] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=25446,uid=0
[ 3240.519414][T25446] Memory cgroup out of memory: Killed process 25446 (syz-executor.2) total-vm:54344kB, anon-rss:312kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:64kB oom_score_adj:1000
[ 3240.542783][ T5120] syz-executor.4 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[ 3240.567838][ T5120] CPU: 0 PID: 5120 Comm: syz-executor.4 Not tainted 6.8.0-rc7-syzkaller-00250-g137e0ec05aeb #0
[ 3240.578250][ T5120] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3240.588365][ T5120] Call Trace:
[ 3240.591683][ T5120]  <TASK>
[ 3240.594651][ T5120]  dump_stack_lvl+0x1e7/0x2e0
[ 3240.599474][ T5120]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3240.604744][ T5120]  ? __pfx__printk+0x10/0x10
[ 3240.609379][ T5120]  ? ___ratelimit+0x4c4/0x670
[ 3240.614115][ T5120]  ? __pfx____ratelimit+0x10/0x10
[ 3240.619182][ T5120]  dump_header+0xda/0x6a0
[ 3240.623532][ T5120]  oom_kill_process+0x3a7/0x930
[ 3240.628412][ T5120]  out_of_memory+0xf67/0x1320
[ 3240.633130][ T5120]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3240.638783][ T5120]  ? __pfx___mutex_lock+0x10/0x10
[ 3240.643833][ T5120]  ? __pfx_out_of_memory+0x10/0x10
[ 3240.648968][ T5120]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3240.654531][ T5120]  ? __pfx_lock_release+0x10/0x10
[ 3240.659576][ T5120]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3240.665748][ T5120]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3240.670964][ T5120]  ? mem_cgroup_iter+0x3e9/0x560
[ 3240.675926][ T5120]  try_charge_memcg+0xda2/0x18a0
[ 3240.680880][ T5120]  ? mark_lock+0x9a/0x350
[ 3240.685242][ T5120]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3240.690654][ T5120]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 3240.696915][ T5120]  charge_memcg+0xa2/0x160
[ 3240.701351][ T5120]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 3240.707436][ T5120]  __read_swap_cache_async+0x480/0x8b0
[ 3240.712915][ T5120]  ? mark_lock+0x9a/0x350
[ 3240.717266][ T5120]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 3240.723272][ T5120]  ? blk_start_plug+0x6f/0x1b0
[ 3240.728082][ T5120]  swap_cluster_readahead+0x398/0x810
[ 3240.733487][ T5120]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 3240.739403][ T5120]  ? __pfx_lock_release+0x10/0x10
[ 3240.744446][ T5120]  ? xas_descend+0x37e/0x470
[ 3240.749066][ T5120]  swapin_readahead+0x1ea/0x1070
[ 3240.754026][ T5120]  ? filemap_get_entry+0x127/0x4e0
[ 3240.759181][ T5120]  ? __pfx_swapin_readahead+0x10/0x10
[ 3240.764599][ T5120]  ? __filemap_get_folio+0x935/0xbc0
[ 3240.769916][ T5120]  ? swap_cache_get_folio+0x9f/0x570
[ 3240.775229][ T5120]  do_swap_page+0x791/0x3f40
[ 3240.779839][ T5120]  ? rcu_is_watching+0x15/0xb0
[ 3240.784646][ T5120]  ? do_swap_page+0x154/0x3f40
[ 3240.789459][ T5120]  ? __pfx_do_swap_page+0x10/0x10
[ 3240.794497][ T5120]  ? pte_offset_map_nolock+0x137/0x1f0
[ 3240.799976][ T5120]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 3240.805811][ T5120]  __handle_mm_fault+0x15e8/0x72d0
[ 3240.810966][ T5120]  ? reacquire_held_locks+0x3eb/0x690
[ 3240.816353][ T5120]  ? __pfx___handle_mm_fault+0x10/0x10
[ 3240.821838][ T5120]  ? __pfx_reacquire_held_locks+0x10/0x10
[ 3240.827612][ T5120]  ? mtree_range_walk+0x6fd/0x8e0
[ 3240.832654][ T5120]  ? lock_vma_under_rcu+0x18a/0x730
[ 3240.837876][ T5120]  ? __pfx_lock_release+0x10/0x10
[ 3240.842917][ T5120]  ? lock_vma_under_rcu+0x2f9/0x730
[ 3240.848147][ T5120]  ? lock_vma_under_rcu+0x18a/0x730
[ 3240.853363][ T5120]  ? __pfx_lock_vma_under_rcu+0x10/0x10
[ 3240.858959][ T5120]  handle_mm_fault+0x3c1/0x8a0
[ 3240.863747][ T5120]  exc_page_fault+0x456/0x870
[ 3240.868466][ T5120]  asm_exc_page_fault+0x26/0x30
[ 3240.873324][ T5120] RIP: 0023:0xf72f2579
[ 3240.877406][ T5120] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[ 3240.897030][ T5120] RSP: 002b:00000000f7593c80 EFLAGS: 00010206
[ 3240.903114][ T5120] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00000000f72f2579
[ 3240.911112][ T5120] RDX: 00000000f7593cb4 RSI: 00000000f7593cac RDI: 00000000f7593cb4
[ 3240.919096][ T5120] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 3240.927109][ T5120] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 3240.935114][ T5120] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 3240.943118][ T5120]  </TASK>
06:21:57 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x888, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x858, 0x2, [@TCA_BASIC_POLICE={0x854, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffff7f]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}, @TCA_POLICE_PEAKRATE64={0xc}]}]}}]}, 0x888}}, 0x0)

[ 3240.967961][ T5120] memory: usage 307200kB, limit 307200kB, failcnt 189673
[ 3240.985279][ T5120] memory+swap: usage 307428kB, limit 9007199254740988kB, failcnt 0
[ 3240.993360][ T5120] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[ 3241.006878][ T5120] Memory cgroup stats for /syz4:
[ 3241.007024][ T5120] cache 0
[ 3241.014989][ T5120] rss 0
[ 3241.043721][ T5120] rss_huge 0
[ 3241.050419][ T5120] shmem 0
[ 3241.053533][ T5120] mapped_file 0
[ 3241.060012][ T5120] dirty 0
[ 3241.063133][ T5120] writeback 0
[ 3241.072215][ T5120] workingset_refault_anon 80868
[ 3241.078059][ T5120] workingset_refault_file 0
[ 3241.082734][ T5120] swap 233472
[ 3241.086147][ T5120] swapcached 0
[ 3241.090003][ T5120] pgpgin 276264
[ 3241.093610][ T5120] pgpgout 276264
[ 3241.097604][ T5120] pgfault 632254
[ 3241.101194][ T5120] pgmajfault 77931
[ 3241.104919][ T5120] inactive_anon 0
[ 3241.109180][ T5120] active_anon 0
[ 3241.112722][ T5120] inactive_file 0
[ 3241.116906][ T5120] active_file 0
[ 3241.120430][ T5120] unevictable 0
[ 3241.123885][ T5120] hierarchical_memory_limit 314572800
[ 3241.130139][ T5120] hierarchical_memsw_limit 9223372036854771712
[ 3241.136456][ T5120] total_cache 0
[ 3241.139946][ T5120] total_rss 0
[ 3241.143248][ T5120] total_rss_huge 0
[ 3241.147142][ T5120] total_shmem 0
[ 3241.150687][ T5120] total_mapped_file 0
[ 3241.154705][ T5120] total_dirty 0
[ 3241.159055][ T5120] total_writeback 0
[ 3241.163101][ T5120] total_workingset_refault_anon 80868
[ 3241.169121][ T5120] total_workingset_refault_file 0
[ 3241.174307][ T5120] total_swap 233472
[ 3241.180717][ T5120] total_swapcached 0
[ 3241.184804][ T5120] total_pgpgin 276264
[ 3241.189516][ T5120] total_pgpgout 276264
[ 3241.193741][ T5120] total_pgfault 632254
[ 3241.198579][ T5120] total_pgmajfault 77931
[ 3241.202981][ T5120] total_inactive_anon 0
[ 3241.207701][ T5120] total_active_anon 0
[ 3241.211800][ T5120] total_inactive_file 0
[ 3241.216041][ T5120] total_active_file 0
[ 3241.220966][ T5120] total_unevictable 0
[ 3241.225581][ T5120] anon_cost 0
[ 3241.229428][ T5120] file_cost 0
[ 3241.232839][ T5120] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0-1,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=25447,uid=0
[ 3241.248969][ T5120] Memory cgroup out of memory: Killed process 25447 (syz-executor.4) total-vm:54344kB, anon-rss:316kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:64kB oom_score_adj:1000
[ 3241.267398][T25442] syz-executor.3 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[ 3241.281084][T25442] CPU: 1 PID: 25442 Comm: syz-executor.3 Not tainted 6.8.0-rc7-syzkaller-00250-g137e0ec05aeb #0
[ 3241.291551][T25442] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3241.301623][T25442] Call Trace:
[ 3241.304914][T25442]  <TASK>
[ 3241.307871][T25442]  dump_stack_lvl+0x1e7/0x2e0
[ 3241.312594][T25442]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3241.317811][T25442]  ? __pfx__printk+0x10/0x10
[ 3241.322418][T25442]  ? ___ratelimit+0x4c4/0x670
[ 3241.327119][T25442]  ? __pfx____ratelimit+0x10/0x10
[ 3241.332173][T25442]  dump_header+0xda/0x6a0
[ 3241.336534][T25442]  oom_kill_process+0x3a7/0x930
[ 3241.341433][T25442]  out_of_memory+0xf67/0x1320
[ 3241.346154][T25442]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3241.351825][T25442]  ? __pfx___mutex_lock+0x10/0x10
[ 3241.356902][T25442]  ? __pfx_out_of_memory+0x10/0x10
[ 3241.362051][T25442]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3241.367628][T25442]  ? __pfx_lock_release+0x10/0x10
[ 3241.372675][T25442]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3241.378784][T25442]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3241.383998][T25442]  ? mem_cgroup_iter+0x3e9/0x560
[ 3241.388959][T25442]  try_charge_memcg+0xda2/0x18a0
[ 3241.393941][T25442]  ? mark_lock+0x9a/0x350
[ 3241.398304][T25442]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3241.403745][T25442]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 3241.409914][T25442]  charge_memcg+0xa2/0x160
[ 3241.414354][T25442]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 3241.420436][T25442]  __read_swap_cache_async+0x480/0x8b0
[ 3241.425913][T25442]  ? mark_lock+0x9a/0x350
[ 3241.430270][T25442]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 3241.436275][T25442]  ? blk_start_plug+0x6f/0x1b0
[ 3241.441111][T25442]  swap_cluster_readahead+0x398/0x810
[ 3241.446543][T25442]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 3241.452483][T25442]  ? __pfx_lock_release+0x10/0x10
[ 3241.457541][T25442]  ? xas_descend+0x37e/0x470
[ 3241.462164][T25442]  swapin_readahead+0x1ea/0x1070
[ 3241.467120][T25442]  ? filemap_get_entry+0x127/0x4e0
[ 3241.472264][T25442]  ? __pfx_swapin_readahead+0x10/0x10
[ 3241.477663][T25442]  ? __filemap_get_folio+0x935/0xbc0
[ 3241.482971][T25442]  ? swap_cache_get_folio+0x9f/0x570
[ 3241.488278][T25442]  do_swap_page+0x791/0x3f40
[ 3241.492891][T25442]  ? rcu_is_watching+0x15/0xb0
[ 3241.497702][T25442]  ? do_swap_page+0x154/0x3f40
[ 3241.502523][T25442]  ? __pfx_do_swap_page+0x10/0x10
[ 3241.507577][T25442]  ? pte_offset_map_nolock+0x137/0x1f0
[ 3241.513077][T25442]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 3241.518946][T25442]  __handle_mm_fault+0x15e8/0x72d0
[ 3241.524106][T25442]  ? reacquire_held_locks+0x3eb/0x690
[ 3241.529490][T25442]  ? __pfx___handle_mm_fault+0x10/0x10
[ 3241.534975][T25442]  ? __pfx_reacquire_held_locks+0x10/0x10
[ 3241.540722][T25442]  ? mtree_range_walk+0x6fd/0x8e0
[ 3241.545763][T25442]  ? lock_vma_under_rcu+0x18a/0x730
[ 3241.550976][T25442]  ? __pfx_lock_release+0x10/0x10
[ 3241.556018][T25442]  ? lock_vma_under_rcu+0x2f9/0x730
[ 3241.561249][T25442]  ? lock_vma_under_rcu+0x18a/0x730
[ 3241.566470][T25442]  ? __pfx_lock_vma_under_rcu+0x10/0x10
[ 3241.572033][T25442]  handle_mm_fault+0x3c1/0x8a0
[ 3241.576826][T25442]  exc_page_fault+0x456/0x870
[ 3241.581528][T25442]  asm_exc_page_fault+0x26/0x30
[ 3241.586402][T25442] RIP: 0023:0xf735efcc
[ 3241.590482][T25442] Code: 8b 9a d4 05 b5 00 8b b2 cc 05 b5 00 8b 82 d0 05 b5 00 01 de 39 d8 72 15 39 f0 73 11 89 08 8d 48 04 89 8a d0 05 b5 00 83 c4 04 <5b> 5e c3 83 ec 0c 56 53 50 8d 82 2c 01 f5 ff 50 8d 82 42 01 f5 ff
[ 3241.610101][T25442] RSP: 002b:00000000f75efa34 EFLAGS: 00010282
[ 3241.616184][T25442] RAX: 0000000032720060 RBX: 0000000032720000 RCX: 0000000032720064
[ 3241.624171][T25442] RDX: 00000000f74a4ff4 RSI: 0000000032b20000 RDI: 000000008b5bcad3
[ 3241.632153][T25442] RBP: 000000000000000f R08: 0000000000000000 R09: 0000000000000000
[ 3241.640136][T25442] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 3241.648205][T25442] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 3241.656207][T25442]  </TASK>
[ 3241.676457][T25442] memory: usage 307200kB, limit 307200kB, failcnt 141049
06:21:58 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x888, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x858, 0x2, [@TCA_BASIC_POLICE={0x854, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x11000000]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}, @TCA_POLICE_PEAKRATE64={0xc}]}]}}]}, 0x888}}, 0x0)

[ 3241.690234][T25442] memory+swap: usage 307932kB, limit 9007199254740988kB, failcnt 0
[ 3241.698960][T25442] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[ 3241.706525][T25442] Memory cgroup stats for /syz0:
[ 3241.706680][T25442] cache 0
[ 3241.714713][T25442] rss 12288
[ 3241.718046][T25442] rss_huge 0
[ 3241.721396][T25442] shmem 0
[ 3241.724477][T25442] mapped_file 0
[ 3241.728147][T25442] dirty 0
[ 3241.731222][T25442] writeback 0
[ 3241.734645][T25442] workingset_refault_anon 52477
[ 3241.740904][T25442] workingset_refault_file 0
[ 3241.745557][T25442] swap 737280
[ 3241.749125][T25442] swapcached 12288
[ 3241.752978][T25442] pgpgin 246749
[ 3241.756613][T25442] pgpgout 246746
[ 3241.763885][T25442] pgfault 574498
[ 3241.769426][T25442] pgmajfault 51270
[ 3241.773630][T25442] inactive_anon 12288
[ 3241.778614][T25442] active_anon 0
[ 3241.782287][T25442] inactive_file 0
[ 3241.786012][T25442] active_file 0
[ 3241.795602][T25442] unevictable 0
[ 3241.806712][T25442] hierarchical_memory_limit 314572800
[ 3241.812137][T25442] hierarchical_memsw_limit 9223372036854771712
[ 3241.819755][T25442] total_cache 0
[ 3241.823679][T25442] total_rss 12288
[ 3241.827959][T25442] total_rss_huge 0
[ 3241.831717][T25442] total_shmem 0
[ 3241.835187][T25442] total_mapped_file 0
[ 3241.839675][T25442] total_dirty 0
[ 3241.843160][T25442] total_writeback 0
[ 3241.847089][T25442] total_workingset_refault_anon 52477
[ 3241.852473][T25442] total_workingset_refault_file 0
[ 3241.857809][T25442] total_swap 737280
[ 3241.861638][T25442] total_swapcached 12288
[ 3241.865895][T25442] total_pgpgin 246749
[ 3241.869998][T25442] total_pgpgout 246746
[ 3241.874093][T25442] total_pgfault 574498
[ 3241.878641][T25442] total_pgmajfault 51270
[ 3241.882933][T25442] total_inactive_anon 12288
[ 3241.888952][T25442] total_active_anon 0
[ 3241.892971][T25442] total_inactive_file 0
[ 3241.897515][T25442] total_active_file 0
[ 3241.901524][T25442] total_unevictable 0
[ 3241.905502][T25442] anon_cost 0
[ 3241.908971][T25442] file_cost 0
[ 3241.912278][T25442] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=25448,uid=0
[ 3241.928100][T25442] Memory cgroup out of memory: Killed process 25448 (syz-executor.0) total-vm:54344kB, anon-rss:312kB, file-rss:8704kB, shmem-rss:0kB, UID:0 pgtables:64kB oom_score_adj:1000
06:21:58 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x87c, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x84c, 0x2, [@TCA_BASIC_POLICE={0x848, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000000]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}]}]}}]}, 0x87c}}, 0x0)

06:21:58 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x888, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x858, 0x2, [@TCA_BASIC_POLICE={0x854, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5000000]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}, @TCA_POLICE_PEAKRATE64={0xc}]}]}}]}, 0x888}}, 0x0)

06:21:58 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x40, 0x4, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x395}}}]}]}}]}, 0x74}}, 0x0)

[ 3241.959418][T25450] syz-executor.4 invoked oom-killer: gfp_mask=0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), order=0, oom_score_adj=1000
[ 3242.017491][T25450] CPU: 1 PID: 25450 Comm: syz-executor.4 Not tainted 6.8.0-rc7-syzkaller-00250-g137e0ec05aeb #0
[ 3242.028003][T25450] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3242.038099][T25450] Call Trace:
[ 3242.041426][T25450]  <TASK>
[ 3242.044398][T25450]  dump_stack_lvl+0x1e7/0x2e0
[ 3242.049144][T25450]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3242.054402][T25450]  ? __pfx__printk+0x10/0x10
[ 3242.059048][T25450]  ? ___ratelimit+0x4c4/0x670
[ 3242.063796][T25450]  ? __pfx____ratelimit+0x10/0x10
[ 3242.068885][T25450]  dump_header+0xda/0x6a0
[ 3242.073283][T25450]  oom_kill_process+0x3a7/0x930
[ 3242.078195][T25450]  out_of_memory+0xf67/0x1320
[ 3242.082932][T25450]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3242.088640][T25450]  ? __pfx___mutex_lock+0x10/0x10
[ 3242.093724][T25450]  ? __pfx_out_of_memory+0x10/0x10
[ 3242.098921][T25450]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3242.104549][T25450]  ? __pfx_lock_release+0x10/0x10
[ 3242.109634][T25450]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3242.115797][T25450]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3242.121066][T25450]  ? mem_cgroup_iter+0x3e9/0x560
[ 3242.126507][T25450]  try_charge_memcg+0xda2/0x18a0
[ 3242.131540][T25450]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3242.136978][T25450]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3242.142762][T25450]  ? __pfx_lock_release+0x10/0x10
[ 3242.147858][T25450]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3242.153914][T25450]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3242.159694][T25450]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3242.165569][T25450]  obj_cgroup_charge+0x389/0x630
[ 3242.170591][T25450]  ? obj_cgroup_charge+0x121/0x630
[ 3242.175767][T25450]  ? __pfx_obj_cgroup_charge+0x10/0x10
[ 3242.181292][T25450]  ? kmalloc_trace+0x4e/0x360
[ 3242.186019][T25450]  ? __pfx___might_resched+0x10/0x10
[ 3242.191365][T25450]  __memcg_slab_pre_alloc_hook+0x28d/0x2b0
[ 3242.197247][T25450]  ? copy_semundo+0xb5/0x240
[ 3242.201886][T25450]  kmalloc_trace+0x216/0x360
[ 3242.206513][T25450]  ? __asan_memcpy+0x40/0x70
[ 3242.211253][T25450]  copy_semundo+0xb5/0x240
[ 3242.215732][T25450]  copy_process+0x1bc3/0x3fc0
[ 3242.220492][T25450]  ? copy_process+0x9c3/0x3fc0
[ 3242.225320][T25450]  ? __pfx_copy_process+0x10/0x10
[ 3242.230398][T25450]  ? __might_fault+0xc5/0x120
[ 3242.235128][T25450]  ? __asan_memset+0x23/0x50
[ 3242.239803][T25450]  kernel_clone+0x21d/0x8d0
[ 3242.244370][T25450]  ? __pfx_kernel_clone+0x10/0x10
[ 3242.249453][T25450]  ? __pfx___might_resched+0x10/0x10
[ 3242.254792][T25450]  __se_sys_clone3+0x2cb/0x350
[ 3242.259605][T25450]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3242.265006][T25450]  ? int80_emulation+0xea/0x210
[ 3242.269926][T25450]  int80_emulation+0x129/0x210
[ 3242.274834][T25450]  asm_int80_emulation+0x1a/0x20
[ 3242.279860][T25450] RIP: 0023:0xf737c060
[ 3242.283975][T25450] Code: 4c 24 04 85 c9 0f 84 df 0d fe ff 8b 54 24 0c 85 d2 0f 84 d3 0d fe ff 53 56 8b 74 24 18 89 cb 8b 4c 24 10 b8 b3 01 00 00 cd 80 <85> c0 74 09 5e 5b 0f 8c b4 0d fe ff c3 31 ed 83 e4 f0 83 ec 0c 56
[ 3242.303633][T25450] RSP: 002b:00000000f75938e4 EFLAGS: 00000282 ORIG_RAX: 00000000000001b3
[ 3242.312111][T25450] RAX: ffffffffffffffda RBX: 00000000f7593950 RCX: 0000000000000058
[ 3242.320141][T25450] RDX: 00000000f732ceb0 RSI: 00000000f5eecb40 RDI: 00000000ffffffd8
[ 3242.328170][T25450] RBP: 000000000000000b R08: 0000000000000000 R09: 0000000000000000
[ 3242.336196][T25450] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 3242.344228][T25450] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 3242.352271][T25450]  </TASK>
[ 3242.544728][T25450] memory: usage 307200kB, limit 307200kB, failcnt 189826
[ 3242.558167][T25450] memory+swap: usage 307452kB, limit 9007199254740988kB, failcnt 0
[ 3242.566131][T25450] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[ 3242.589139][T25450] Memory cgroup stats for /syz4:
[ 3242.589322][T25450] cache 0
[ 3242.610985][T25450] rss 0
[ 3242.617392][T25450] rss_huge 0
[ 3242.624169][T25450] shmem 0
[ 3242.631347][T25450] mapped_file 0
[ 3242.639631][T25450] dirty 0
[ 3242.651838][T25450] writeback 0
[ 3242.655193][T25450] workingset_refault_anon 80900
[ 3242.669898][T25450] workingset_refault_file 0
[ 3242.679501][T25450] swap 258048
[ 3242.687669][T25450] swapcached 0
[ 3242.695742][T25450] pgpgin 276318
[ 3242.719866][T25450] pgpgout 276318
[ 3242.730328][T25450] pgfault 632338
[ 3242.734994][T25450] pgmajfault 77965
[ 3242.756590][T25450] inactive_anon 0
[ 3242.760305][T25450] active_anon 0
[ 3242.763809][T25450] inactive_file 0
[ 3242.775652][T25450] active_file 0
[ 3242.796447][T25450] unevictable 0
[ 3242.799981][T25450] hierarchical_memory_limit 314572800
[ 3242.805390][T25450] hierarchical_memsw_limit 9223372036854771712
[ 3242.818360][T25450] total_cache 0
[ 3242.821891][T25450] total_rss 0
[ 3242.825208][T25450] total_rss_huge 0
[ 3242.839289][T25450] total_shmem 0
[ 3242.842816][T25450] total_mapped_file 0
[ 3242.853881][T25450] total_dirty 0
[ 3242.860642][T25450] total_writeback 0
[ 3242.864517][T25450] total_workingset_refault_anon 80900
[ 3242.878851][T25450] total_workingset_refault_file 0
[ 3242.883969][T25450] total_swap 258048
[ 3242.896917][T25450] total_swapcached 0
[ 3242.901231][T25450] total_pgpgin 276318
[ 3242.905269][T25450] total_pgpgout 276318
[ 3242.921913][T25450] total_pgfault 632338
[ 3242.926056][T25450] total_pgmajfault 77965
[ 3242.940673][T25450] total_inactive_anon 0
[ 3242.944919][T25450] total_active_anon 0
[ 3242.957384][T25450] total_inactive_file 0
[ 3242.961621][T25450] total_active_file 0
[ 3242.965648][T25450] total_unevictable 0
[ 3242.983910][T25450] anon_cost 0
[ 3242.987749][T25450] file_cost 0
[ 3242.991085][T25450] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0-1,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=25450,uid=0
[ 3243.007633][T25450] Memory cgroup out of memory: Killed process 25450 (syz-executor.4) total-vm:54344kB, anon-rss:316kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:64kB oom_score_adj:1000
[ 3243.026165][ T5119] syz-executor.0 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[ 3243.039030][ T5119] CPU: 1 PID: 5119 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00250-g137e0ec05aeb #0
[ 3243.049426][ T5119] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3243.059535][ T5119] Call Trace:
[ 3243.062854][ T5119]  <TASK>
[ 3243.065831][ T5119]  dump_stack_lvl+0x1e7/0x2e0
[ 3243.070580][ T5119]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3243.075847][ T5119]  ? __pfx__printk+0x10/0x10
[ 3243.080501][ T5119]  ? ___ratelimit+0x4c4/0x670
[ 3243.085300][ T5119]  ? __pfx____ratelimit+0x10/0x10
[ 3243.090488][ T5119]  dump_header+0xda/0x6a0
[ 3243.094887][ T5119]  oom_kill_process+0x3a7/0x930
[ 3243.099804][ T5119]  out_of_memory+0xf67/0x1320
[ 3243.104556][ T5119]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3243.110247][ T5119]  ? __pfx___mutex_lock+0x10/0x10
[ 3243.115337][ T5119]  ? __pfx_out_of_memory+0x10/0x10
[ 3243.120525][ T5119]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3243.126655][ T5119]  ? __pfx_lock_release+0x10/0x10
[ 3243.131749][ T5119]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3243.137891][ T5119]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3243.143138][ T5119]  ? mem_cgroup_iter+0x3e9/0x560
[ 3243.148222][ T5119]  try_charge_memcg+0xda2/0x18a0
[ 3243.153237][ T5119]  ? mark_lock+0x9a/0x350
[ 3243.157661][ T5119]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3243.163123][ T5119]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 3243.169330][ T5119]  charge_memcg+0xa2/0x160
[ 3243.173823][ T5119]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 3243.179947][ T5119]  __read_swap_cache_async+0x480/0x8b0
[ 3243.185478][ T5119]  ? mark_lock+0x9a/0x350
[ 3243.189883][ T5119]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 3243.195937][ T5119]  ? blk_start_plug+0x6f/0x1b0
[ 3243.200761][ T5119]  swap_cluster_readahead+0x398/0x810
[ 3243.206210][ T5119]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 3243.212168][ T5119]  ? __pfx_lock_release+0x10/0x10
[ 3243.217254][ T5119]  ? xas_descend+0x37e/0x470
[ 3243.221917][ T5119]  swapin_readahead+0x1ea/0x1070
[ 3243.226913][ T5119]  ? filemap_get_entry+0x127/0x4e0
[ 3243.232101][ T5119]  ? __pfx_swapin_readahead+0x10/0x10
[ 3243.237545][ T5119]  ? __filemap_get_folio+0x935/0xbc0
[ 3243.242908][ T5119]  ? swap_cache_get_folio+0x9f/0x570
[ 3243.248270][ T5119]  do_swap_page+0x791/0x3f40
[ 3243.252944][ T5119]  ? rcu_is_watching+0x15/0xb0
[ 3243.257784][ T5119]  ? do_swap_page+0x154/0x3f40
[ 3243.262599][ T5119]  ? __pfx_do_swap_page+0x10/0x10
[ 3243.267708][ T5119]  ? pte_offset_map_nolock+0x137/0x1f0
[ 3243.273227][ T5119]  ? mark_lock+0x9a/0x350
[ 3243.277613][ T5119]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 3243.283512][ T5119]  ? __pfx_validate_chain+0x10/0x10
[ 3243.288763][ T5119]  __handle_mm_fault+0x15e8/0x72d0
[ 3243.293932][ T5119]  ? __pfx___handle_mm_fault+0x10/0x10
[ 3243.299465][ T5119]  ? mt_find+0x226/0x850
[ 3243.303739][ T5119]  ? __pfx_lock_release+0x10/0x10
[ 3243.308801][ T5119]  ? mt_find+0x62d/0x850
[ 3243.313063][ T5119]  ? mt_find+0x226/0x850
[ 3243.317344][ T5119]  ? find_vma+0x142/0x1c0
[ 3243.321694][ T5119]  ? __pfx_find_vma+0x10/0x10
[ 3243.326430][ T5119]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3243.332472][ T5119]  handle_mm_fault+0x3c1/0x8a0
[ 3243.337274][ T5119]  exc_page_fault+0x2ad/0x870
[ 3243.341977][ T5119]  asm_exc_page_fault+0x26/0x30
[ 3243.346838][ T5119] RIP: 0010:__get_user_8+0x11/0x20
[ 3243.351967][ T5119] Code: ca c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 89 c2 48 c1 fa 3f 48 09 d0 0f 01 cb <48> 8b 10 31 c0 0f 01 ca c3 cc cc cc cc 66 90 90 90 90 90 90 90 90
[ 3243.371581][ T5119] RSP: 0018:ffffc90003b9fd58 EFLAGS: 00050202
[ 3243.377682][ T5119] RAX: 000000005810e8a8 RBX: ffff88801c38d0b8 RCX: ffffc90003b9fc03
[ 3243.385681][ T5119] RDX: 0000000000000000 RSI: ffffffff8baac7e0 RDI: ffffffff8bfe6da0
[ 3243.393681][ T5119] RBP: ffffc90003b9fe98 R08: ffffffff8f856cef R09: 1ffffffff1f0ad9d
[ 3243.401680][ T5119] R10: dffffc0000000000 R11: fffffbfff1f0ad9e R12: ffffc90003b9fd60
[ 3243.409681][ T5119] R13: ffffc90003b9ffd8 R14: dffffc0000000000 R15: ffff88801c38bb80
[ 3243.417683][ T5119]  __rseq_handle_notify_resume+0x158/0x1490
[ 3243.423612][ T5119]  ? __pfx_hrtimer_wakeup+0x10/0x10
[ 3243.428830][ T5119]  ? __pfx___rseq_handle_notify_resume+0x10/0x10
[ 3243.435190][ T5119]  ? syscall_exit_to_user_mode+0xa2/0x360
[ 3243.440932][ T5119]  syscall_exit_to_user_mode+0x113/0x360
[ 3243.446591][ T5119]  __do_fast_syscall_32+0xcf/0x120
[ 3243.451726][ T5119]  ? exc_page_fault+0x587/0x870
[ 3243.456599][ T5119]  do_fast_syscall_32+0x33/0x70
[ 3243.461469][ T5119]  entry_SYSENTER_compat_after_hwframe+0x7c/0x86
[ 3243.467810][ T5119] RIP: 0023:0xf72e8579
[ 3243.471886][ T5119] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[ 3243.491518][ T5119] RSP: 002b:00000000f7589c80 EFLAGS: 00000206 ORIG_RAX: 000000000000010b
[ 3243.499962][ T5119] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000
[ 3243.507954][ T5119] RDX: 00000000f7589cb4 RSI: 00000000f7589cac RDI: 00000000f7589cb4
[ 3243.515934][ T5119] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 3243.523910][ T5119] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 3243.531912][ T5119] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 3243.539907][ T5119]  </TASK>
[ 3243.556739][ T5119] memory: usage 307200kB, limit 307200kB, failcnt 141235
[ 3243.571230][ T5119] memory+swap: usage 307912kB, limit 9007199254740988kB, failcnt 0
[ 3243.594301][ T5119] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[ 3243.628347][ T5119] Memory cgroup stats for /syz0:
[ 3243.628514][ T5119] cache 0
[ 3243.645993][ T5119] rss 12288
[ 3243.649741][ T5119] rss_huge 0
[ 3243.654744][ T5119] shmem 0
[ 3243.658994][ T5119] mapped_file 0
[ 3243.663952][ T5119] dirty 0
[ 3243.671263][ T5119] writeback 0
[ 3243.674707][ T5119] workingset_refault_anon 52530
[ 3243.685730][ T5119] workingset_refault_file 0
[ 3243.696693][ T5119] swap 716800
[ 3243.700302][ T5119] swapcached 12288
[ 3243.704065][ T5119] pgpgin 246825
[ 3243.713050][ T5119] pgpgout 246822
[ 3243.717114][ T5119] pgfault 574612
[ 3243.720707][ T5119] pgmajfault 51328
[ 3243.724454][ T5119] inactive_anon 0
[ 3243.729229][ T5119] active_anon 12288
[ 3243.733080][ T5119] inactive_file 0
[ 3243.741914][ T5119] active_file 0
[ 3243.745430][ T5119] unevictable 0
[ 3243.749575][ T5119] hierarchical_memory_limit 314572800
[ 3243.754985][ T5119] hierarchical_memsw_limit 9223372036854771712
[ 3243.766542][ T5119] total_cache 0
[ 3243.771190][ T5119] total_rss 12288
[ 3243.774911][ T5119] total_rss_huge 0
[ 3243.782944][ T5119] total_shmem 0
[ 3243.791325][ T5119] total_mapped_file 0
[ 3243.795476][ T5119] total_dirty 0
[ 3243.803276][ T5119] total_writeback 0
[ 3243.809546][ T5119] total_workingset_refault_anon 52530
[ 3243.815089][ T5119] total_workingset_refault_file 0
[ 3243.824647][ T5119] total_swap 716800
[ 3243.831065][ T5119] total_swapcached 12288
[ 3243.846746][ T5119] total_pgpgin 246825
[ 3243.850806][ T5119] total_pgpgout 246822
[ 3243.854922][ T5119] total_pgfault 574612
[ 3243.864089][ T5119] total_pgmajfault 51328
[ 3243.868867][ T5119] total_inactive_anon 0
[ 3243.873092][ T5119] total_active_anon 12288
[ 3243.883932][ T5119] total_inactive_file 0
[ 3243.888788][ T5119] total_active_file 0
[ 3243.892832][ T5119] total_unevictable 0
[ 3243.903602][ T5119] anon_cost 0
[ 3243.907414][ T5119] file_cost 0
[ 3243.910748][ T5119] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=25455,uid=0
[ 3243.928755][ T5119] Memory cgroup out of memory: Killed process 25455 (syz-executor.0) total-vm:54344kB, anon-rss:316kB, file-rss:8704kB, shmem-rss:0kB, UID:0 pgtables:64kB oom_score_adj:1000
06:22:00 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x87c, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x84c, 0x2, [@TCA_BASIC_POLICE={0x848, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x11000000]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}]}]}}]}, 0x87c}}, 0x0)

[ 3243.977011][T25452] syz-executor.2 invoked oom-killer: gfp_mask=0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), order=0, oom_score_adj=1000
[ 3244.016529][T25452] CPU: 0 PID: 25452 Comm: syz-executor.2 Not tainted 6.8.0-rc7-syzkaller-00250-g137e0ec05aeb #0
[ 3244.027025][T25452] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3244.037128][T25452] Call Trace:
[ 3244.040451][T25452]  <TASK>
[ 3244.043419][T25452]  dump_stack_lvl+0x1e7/0x2e0
[ 3244.048160][T25452]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3244.053418][T25452]  ? __pfx__printk+0x10/0x10
[ 3244.058067][T25452]  ? ___ratelimit+0x4c4/0x670
[ 3244.062820][T25452]  ? __pfx____ratelimit+0x10/0x10
[ 3244.067910][T25452]  dump_header+0xda/0x6a0
[ 3244.072299][T25452]  oom_kill_process+0x3a7/0x930
[ 3244.077211][T25452]  out_of_memory+0xf67/0x1320
[ 3244.081951][T25452]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3244.087642][T25452]  ? __pfx___mutex_lock+0x10/0x10
[ 3244.092716][T25452]  ? __pfx_out_of_memory+0x10/0x10
[ 3244.097895][T25452]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3244.103495][T25452]  ? __pfx_lock_release+0x10/0x10
[ 3244.108576][T25452]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3244.114720][T25452]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3244.119995][T25452]  ? mem_cgroup_iter+0x3e9/0x560
[ 3244.124994][T25452]  try_charge_memcg+0xda2/0x18a0
[ 3244.130015][T25452]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3244.135447][T25452]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3244.141225][T25452]  ? __pfx_lock_release+0x10/0x10
[ 3244.146329][T25452]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3244.152396][T25452]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3244.158171][T25452]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3244.164038][T25452]  obj_cgroup_charge+0x389/0x630
[ 3244.169048][T25452]  ? obj_cgroup_charge+0x121/0x630
[ 3244.174225][T25452]  ? __pfx_obj_cgroup_charge+0x10/0x10
[ 3244.179775][T25452]  ? kmalloc_trace+0x4e/0x360
[ 3244.184512][T25452]  ? __pfx___might_resched+0x10/0x10
[ 3244.189861][T25452]  __memcg_slab_pre_alloc_hook+0x28d/0x2b0
[ 3244.195759][T25452]  ? copy_semundo+0xb5/0x240
[ 3244.200415][T25452]  kmalloc_trace+0x216/0x360
[ 3244.205068][T25452]  ? __asan_memcpy+0x40/0x70
[ 3244.209723][T25452]  copy_semundo+0xb5/0x240
[ 3244.214210][T25452]  copy_process+0x1bc3/0x3fc0
[ 3244.218958][T25452]  ? copy_process+0x9c3/0x3fc0
[ 3244.223782][T25452]  ? __pfx_copy_process+0x10/0x10
[ 3244.228865][T25452]  ? __might_fault+0xc5/0x120
[ 3244.233610][T25452]  ? __asan_memset+0x23/0x50
[ 3244.238263][T25452]  kernel_clone+0x21d/0x8d0
[ 3244.242837][T25452]  ? __pfx_kernel_clone+0x10/0x10
[ 3244.247929][T25452]  ? __pfx___might_resched+0x10/0x10
[ 3244.253298][T25452]  __se_sys_clone3+0x2cb/0x350
[ 3244.258131][T25452]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3244.263504][T25452]  ? int80_emulation+0xea/0x210
[ 3244.268426][T25452]  int80_emulation+0x129/0x210
[ 3244.273271][T25452]  asm_int80_emulation+0x1a/0x20
[ 3244.278390][T25452] RIP: 0023:0xf7376060
[ 3244.282520][T25452] Code: 4c 24 04 85 c9 0f 84 df 0d fe ff 8b 54 24 0c 85 d2 0f 84 d3 0d fe ff 53 56 8b 74 24 18 89 cb 8b 4c 24 10 b8 b3 01 00 00 cd 80 <85> c0 74 09 5e 5b 0f 8c b4 0d fe ff c3 31 ed 83 e4 f0 83 ec 0c 56
[ 3244.302279][T25452] RSP: 002b:00000000f758d8e4 EFLAGS: 00000282 ORIG_RAX: 00000000000001b3
[ 3244.310752][T25452] RAX: ffffffffffffffda RBX: 00000000f758d950 RCX: 0000000000000058
[ 3244.318790][T25452] RDX: 00000000f7326eb0 RSI: 00000000f5ee6b40 RDI: 00000000ffffffd8
[ 3244.326815][T25452] RBP: 000000000000000b R08: 0000000000000000 R09: 0000000000000000
[ 3244.334835][T25452] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 3244.342859][T25452] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 3244.350978][T25452]  </TASK>
[ 3244.393360][T25452] memory: usage 307200kB, limit 307200kB, failcnt 113293
[ 3244.400921][T25452] memory+swap: usage 307668kB, limit 9007199254740988kB, failcnt 0
[ 3244.409507][T25452] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0
[ 3244.417398][T25452] Memory cgroup stats for /syz2:
[ 3244.417555][T25452] cache 0
[ 3244.425630][T25452] rss 0
[ 3244.429298][T25452] rss_huge 0
[ 3244.432641][T25452] shmem 0
[ 3244.435719][T25452] mapped_file 0
[ 3244.450683][T25452] dirty 0
[ 3244.458296][T25452] writeback 0
[ 3244.461654][T25452] workingset_refault_anon 41012
[ 3244.475474][T25452] workingset_refault_file 0
[ 3244.487372][T25452] swap 479232
[ 3244.494220][T25452] swapcached 12288
[ 3244.502894][T25452] pgpgin 245239
[ 3244.511602][T25452] pgpgout 245236
[ 3244.519856][T25452] pgfault 585435
[ 3244.523467][T25452] pgmajfault 40684
[ 3244.536004][T25452] inactive_anon 0
[ 3244.544694][T25452] active_anon 12288
[ 3244.553703][T25452] inactive_file 0
[ 3244.564892][T25452] active_file 0
[ 3244.573489][T25452] unevictable 0
[ 3244.586160][T25452] hierarchical_memory_limit 314572800
[ 3244.602163][T25452] hierarchical_memsw_limit 9223372036854771712
[ 3244.617776][T25452] total_cache 0
[ 3244.622352][T25452] total_rss 0
[ 3244.625779][T25452] total_rss_huge 0
[ 3244.630517][T25452] total_shmem 0
[ 3244.634126][T25452] total_mapped_file 0
[ 3244.639270][T25452] total_dirty 0
[ 3244.642975][T25452] total_writeback 0
[ 3244.647559][T25452] total_workingset_refault_anon 41012
[ 3244.652992][T25452] total_workingset_refault_file 0
[ 3244.660119][T25452] total_swap 479232
[ 3244.664009][T25452] total_swapcached 12288
[ 3244.668989][T25452] total_pgpgin 245239
[ 3244.673138][T25452] total_pgpgout 245236
[ 3244.678508][T25452] total_pgfault 585435
[ 3244.682711][T25452] total_pgmajfault 40684
[ 3244.687737][T25452] total_inactive_anon 0
[ 3244.691958][T25452] total_active_anon 12288
[ 3244.699035][T25452] total_inactive_file 0
[ 3244.703247][T25452] total_active_file 0
[ 3244.708399][T25452] total_unevictable 0
[ 3244.712540][T25452] anon_cost 0
[ 3244.715971][T25452] file_cost 0
[ 3244.720247][T25452] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=25452,uid=0
[ 3244.736531][T25452] Memory cgroup out of memory: Killed process 25452 (syz-executor.2) total-vm:54344kB, anon-rss:304kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:64kB oom_score_adj:1000
06:22:01 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x888, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x858, 0x2, [@TCA_BASIC_POLICE={0x854, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x14000000]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}, @TCA_POLICE_PEAKRATE64={0xc}]}]}}]}, 0x888}}, 0x0)

[ 3244.763166][ T5119] syz-executor.0 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[ 3244.809790][ T5119] CPU: 1 PID: 5119 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00250-g137e0ec05aeb #0
[ 3244.820197][ T5119] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3244.830308][ T5119] Call Trace:
[ 3244.833639][ T5119]  <TASK>
[ 3244.836607][ T5119]  dump_stack_lvl+0x1e7/0x2e0
[ 3244.841364][ T5119]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3244.846619][ T5119]  ? __pfx__printk+0x10/0x10
[ 3244.851262][ T5119]  ? ___ratelimit+0x4c4/0x670
[ 3244.855990][ T5119]  ? __pfx____ratelimit+0x10/0x10
[ 3244.861076][ T5119]  dump_header+0xda/0x6a0
[ 3244.865460][ T5119]  oom_kill_process+0x3a7/0x930
[ 3244.870348][ T5119]  out_of_memory+0xf67/0x1320
[ 3244.875040][ T5119]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3244.880713][ T5119]  ? __pfx___mutex_lock+0x10/0x10
[ 3244.885793][ T5119]  ? __pfx_out_of_memory+0x10/0x10
[ 3244.890974][ T5119]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3244.896580][ T5119]  ? __pfx_lock_release+0x10/0x10
[ 3244.901674][ T5119]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3244.907804][ T5119]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3244.913058][ T5119]  ? mem_cgroup_iter+0x3e9/0x560
[ 3244.918067][ T5119]  try_charge_memcg+0xda2/0x18a0
[ 3244.923057][ T5119]  ? mark_lock+0x9a/0x350
[ 3244.927462][ T5119]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3244.932939][ T5119]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 3244.939147][ T5119]  charge_memcg+0xa2/0x160
[ 3244.943624][ T5119]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 3244.949784][ T5119]  __read_swap_cache_async+0x480/0x8b0
[ 3244.955311][ T5119]  ? mark_lock+0x9a/0x350
[ 3244.959709][ T5119]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 3244.965761][ T5119]  ? blk_start_plug+0x6f/0x1b0
[ 3244.970585][ T5119]  swap_cluster_readahead+0x398/0x810
[ 3244.976033][ T5119]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 3244.982023][ T5119]  ? __pfx_lock_release+0x10/0x10
[ 3244.987115][ T5119]  ? xas_descend+0x37e/0x470
[ 3244.991778][ T5119]  swapin_readahead+0x1ea/0x1070
[ 3244.996779][ T5119]  ? filemap_get_entry+0x127/0x4e0
[ 3245.001970][ T5119]  ? __pfx_swapin_readahead+0x10/0x10
[ 3245.007424][ T5119]  ? __filemap_get_folio+0x935/0xbc0
[ 3245.012777][ T5119]  ? swap_cache_get_folio+0x9f/0x570
[ 3245.018146][ T5119]  do_swap_page+0x791/0x3f40
[ 3245.022807][ T5119]  ? rcu_is_watching+0x15/0xb0
[ 3245.027662][ T5119]  ? do_swap_page+0x154/0x3f40
[ 3245.032483][ T5119]  ? __pfx_do_swap_page+0x10/0x10
[ 3245.037608][ T5119]  ? pte_offset_map_nolock+0x137/0x1f0
[ 3245.043132][ T5119]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 3245.049014][ T5119]  __handle_mm_fault+0x15e8/0x72d0
[ 3245.054227][ T5119]  ? reacquire_held_locks+0x3eb/0x690
[ 3245.059664][ T5119]  ? __pfx___handle_mm_fault+0x10/0x10
[ 3245.065200][ T5119]  ? __pfx_reacquire_held_locks+0x10/0x10
[ 3245.071013][ T5119]  ? mtree_range_walk+0x6fd/0x8e0
[ 3245.076101][ T5119]  ? lock_vma_under_rcu+0x18a/0x730
[ 3245.081361][ T5119]  ? __pfx_lock_release+0x10/0x10
[ 3245.086454][ T5119]  ? lock_vma_under_rcu+0x2f9/0x730
[ 3245.091737][ T5119]  ? lock_vma_under_rcu+0x18a/0x730
[ 3245.096994][ T5119]  ? __pfx_lock_vma_under_rcu+0x10/0x10
[ 3245.102605][ T5119]  handle_mm_fault+0x3c1/0x8a0
[ 3245.107447][ T5119]  exc_page_fault+0x456/0x870
[ 3245.112194][ T5119]  asm_exc_page_fault+0x26/0x30
[ 3245.117112][ T5119] RIP: 0023:0xf73084d3
[ 3245.121227][ T5119] Code: ff 74 24 28 6a ff e8 1c 7d 03 00 83 c4 10 39 44 24 08 0f 84 cb 01 00 00 83 ec 0c 68 e8 03 00 00 e8 12 c6 03 00 b8 03 00 00 00 <f7> a7 a4 05 b5 00 8b b7 a8 05 b5 00 8d 34 76 89 c1 89 d3 58 b8 cd
[ 3245.140882][ T5119] RSP: 002b:00000000f7589d60 EFLAGS: 00010282
[ 3245.147001][ T5119] RAX: 0000000000000003 RBX: 00000000f743eff4 RCX: 0000000000000000
[ 3245.155017][ T5119] RDX: 0000000000000000 RSI: 0000000000b505a8 RDI: 00000000f743eff4
[ 3245.163035][ T5119] RBP: 0000000000000bb8 R08: 0000000000000000 R09: 0000000000000000
[ 3245.171054][ T5119] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 3245.179075][ T5119] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 3245.187118][ T5119]  </TASK>
[ 3245.199113][ T5119] memory: usage 307200kB, limit 307200kB, failcnt 141406
[ 3245.226770][ T5119] memory+swap: usage 307940kB, limit 9007199254740988kB, failcnt 0
[ 3245.234759][ T5119] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[ 3245.270480][ T5119] Memory cgroup stats for /syz0:
[ 3245.270648][ T5119] cache 0
[ 3245.279311][ T5119] rss 12288
[ 3245.282481][ T5119] rss_huge 0
[ 3245.285802][ T5119] shmem 0
[ 3245.297378][ T5119] mapped_file 0
[ 3245.301125][ T5119] dirty 0
[ 3245.304249][ T5119] writeback 0
[ 3245.313181][ T5119] workingset_refault_anon 52570
06:22:02 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x888, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x858, 0x2, [@TCA_BASIC_POLICE={0x854, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6000000]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}, @TCA_POLICE_PEAKRATE64={0xc}]}]}}]}, 0x888}}, 0x0)

06:22:02 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x40, 0x4, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x39d}}}]}]}}]}, 0x74}}, 0x0)

[ 3245.319092][ T5119] workingset_refault_file 0
[ 3245.323775][ T5119] swap 745472
[ 3245.358712][ T5119] swapcached 0
[ 3245.363948][ T5119] pgpgin 246892
[ 3245.376931][ T5119] pgpgout 246889
[ 3245.380534][ T5119] pgfault 574707
[ 3245.384131][ T5119] pgmajfault 51378
[ 3245.397299][ T5119] inactive_anon 0
[ 3245.400994][ T5119] active_anon 12288
[ 3245.404831][ T5119] inactive_file 0
[ 3245.417918][ T5119] active_file 0
[ 3245.421563][ T5119] unevictable 0
[ 3245.425173][ T5119] hierarchical_memory_limit 314572800
[ 3245.430737][ T5119] hierarchical_memsw_limit 9223372036854771712
[ 3245.437173][ T5119] total_cache 0
[ 3245.441650][ T5119] total_rss 12288
[ 3245.445437][ T5119] total_rss_huge 0
[ 3245.451641][ T5119] total_shmem 0
[ 3245.455252][ T5119] total_mapped_file 0
[ 3245.461000][ T5119] total_dirty 0
[ 3245.466839][ T5119] total_writeback 0
[ 3245.472407][ T5119] total_workingset_refault_anon 52570
[ 3245.484209][ T5119] total_workingset_refault_file 0
[ 3245.489442][ T5119] total_swap 745472
[ 3245.493500][ T5119] total_swapcached 0
[ 3245.497667][ T5119] total_pgpgin 246892
[ 3245.501792][ T5119] total_pgpgout 246889
[ 3245.505995][ T5119] total_pgfault 574707
[ 3245.510282][ T5119] total_pgmajfault 51378
[ 3245.514664][ T5119] total_inactive_anon 0
[ 3245.520707][ T5119] total_active_anon 12288
[ 3245.525194][ T5119] total_inactive_file 0
[ 3245.532253][ T5119] total_active_file 0
[ 3245.539857][ T5119] total_unevictable 0
[ 3245.547660][ T5119] anon_cost 0
[ 3245.554414][ T5119] file_cost 0
[ 3245.560773][ T5119] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=25459,uid=0
06:22:02 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x888, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x858, 0x2, [@TCA_BASIC_POLICE={0x854, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffff0]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}, @TCA_POLICE_PEAKRATE64={0xc}]}]}}]}, 0x888}}, 0x0)

[ 3245.585688][ T5119] Memory cgroup out of memory: Killed process 25459 (syz-executor.0) total-vm:54344kB, anon-rss:316kB, file-rss:8704kB, shmem-rss:0kB, UID:0 pgtables:64kB oom_score_adj:1000
06:22:02 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x87c, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x84c, 0x2, [@TCA_BASIC_POLICE={0x848, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x14000000]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}]}]}}]}, 0x87c}}, 0x0)

[ 3246.170714][T25467] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3246.205989][T25467] CPU: 0 PID: 25467 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00250-g137e0ec05aeb #0
[ 3246.216485][T25467] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3246.226588][T25467] Call Trace:
[ 3246.229910][T25467]  <TASK>
[ 3246.232888][T25467]  dump_stack_lvl+0x1e7/0x2e0
[ 3246.237637][T25467]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3246.242907][T25467]  ? __pfx__printk+0x10/0x10
[ 3246.247574][T25467]  ? ___ratelimit+0x4c4/0x670
[ 3246.252311][T25467]  ? __pfx____ratelimit+0x10/0x10
[ 3246.257407][T25467]  dump_header+0xda/0x6a0
[ 3246.261806][T25467]  oom_kill_process+0x3a7/0x930
[ 3246.266733][T25467]  out_of_memory+0xf67/0x1320
[ 3246.271480][T25467]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3246.277171][T25467]  ? __pfx___mutex_lock+0x10/0x10
[ 3246.282253][T25467]  ? __pfx_out_of_memory+0x10/0x10
[ 3246.287437][T25467]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3246.293049][T25467]  ? __pfx_lock_release+0x10/0x10
[ 3246.298138][T25467]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3246.304273][T25467]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3246.309543][T25467]  ? mem_cgroup_iter+0x3e9/0x560
[ 3246.314551][T25467]  try_charge_memcg+0xda2/0x18a0
[ 3246.319579][T25467]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3246.325019][T25467]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3246.330802][T25467]  ? __pfx_lock_release+0x10/0x10
[ 3246.335897][T25467]  ? memcg_account_kmem+0x1e7/0x210
[ 3246.341184][T25467]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3246.347060][T25467]  __memcg_kmem_charge_page+0xe1/0x250
[ 3246.352591][T25467]  memcg_charge_kernel_stack+0x37e/0x550
[ 3246.358289][T25467]  dup_task_struct+0x40d/0x7d0
[ 3246.363111][T25467]  copy_process+0x5d5/0x3fc0
[ 3246.367787][T25467]  ? __might_fault+0xa9/0x120
[ 3246.372535][T25467]  ? __pfx_lock_release+0x10/0x10
[ 3246.377647][T25467]  ? __pfx_copy_process+0x10/0x10
[ 3246.382728][T25467]  ? __might_fault+0xc5/0x120
[ 3246.387480][T25467]  ? __asan_memset+0x23/0x50
[ 3246.392154][T25467]  kernel_clone+0x21d/0x8d0
[ 3246.396728][T25467]  ? __pfx_kernel_clone+0x10/0x10
[ 3246.401831][T25467]  ? __pfx___might_resched+0x10/0x10
[ 3246.407183][T25467]  __se_sys_clone3+0x2cb/0x350
[ 3246.412010][T25467]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3246.417397][T25467]  ? int80_emulation+0xea/0x210
[ 3246.422319][T25467]  int80_emulation+0x129/0x210
[ 3246.427157][T25467]  asm_int80_emulation+0x1a/0x20
[ 3246.432150][T25467] RIP: 0023:0xf7372060
[ 3246.436274][T25467] Code: 4c 24 04 85 c9 0f 84 df 0d fe ff 8b 54 24 0c 85 d2 0f 84 d3 0d fe ff 53 56 8b 74 24 18 89 cb 8b 4c 24 10 b8 b3 01 00 00 cd 80 <85> c0 74 09 5e 5b 0f 8c b4 0d fe ff c3 31 ed 83 e4 f0 83 ec 0c 56
[ 3246.455930][T25467] RSP: 002b:00000000f75898e4 EFLAGS: 00000282 ORIG_RAX: 00000000000001b3
[ 3246.464421][T25467] RAX: ffffffffffffffda RBX: 00000000f7589950 RCX: 0000000000000058
[ 3246.472439][T25467] RDX: 00000000f7322eb0 RSI: 00000000f5ee2b40 RDI: 00000000ffffffd8
[ 3246.480457][T25467] RBP: 000000000000000b R08: 0000000000000000 R09: 0000000000000000
[ 3246.488474][T25467] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 3246.496500][T25467] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 3246.504535][T25467]  </TASK>
[ 3246.562806][T25467] memory: usage 307200kB, limit 307200kB, failcnt 141672
[ 3246.570234][T25467] memory+swap: usage 307908kB, limit 9007199254740988kB, failcnt 0
[ 3246.582953][T25467] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[ 3246.590453][T25467] Memory cgroup stats for /syz0:
[ 3246.590597][T25467] cache 0
[ 3246.603383][T25467] rss 0
[ 3246.606218][T25467] rss_huge 0
[ 3246.609591][T25467] shmem 0
[ 3246.612570][T25467] mapped_file 0
[ 3246.616064][T25467] dirty 0
[ 3246.619361][T25467] writeback 0
[ 3246.622685][T25467] workingset_refault_anon 52637
[ 3246.633414][T25467] workingset_refault_file 0
[ 3246.639972][T25467] swap 724992
[ 3246.643313][T25467] swapcached 0
[ 3246.652184][T25467] pgpgin 246998
[ 3246.655715][T25467] pgpgout 246998
[ 3246.659694][T25467] pgfault 574856
[ 3246.663296][T25467] pgmajfault 51459
[ 3246.672205][T25467] inactive_anon 0
[ 3246.675895][T25467] active_anon 0
[ 3246.679781][T25467] inactive_file 0
[ 3246.683461][T25467] active_file 0
[ 3246.687551][T25467] unevictable 0
[ 3246.691058][T25467] hierarchical_memory_limit 314572800
[ 3246.706691][T25467] hierarchical_memsw_limit 9223372036854771712
[ 3246.712919][T25467] total_cache 0
[ 3246.718677][T25467] total_rss 0
[ 3246.722023][T25467] total_rss_huge 0
[ 3246.725792][T25467] total_shmem 0
[ 3246.730855][T25467] total_mapped_file 0
[ 3246.738238][T25467] total_dirty 0
[ 3246.741761][T25467] total_writeback 0
[ 3246.745596][T25467] total_workingset_refault_anon 52637
[ 3246.764704][T25467] total_workingset_refault_file 0
[ 3246.773693][T25467] total_swap 724992
[ 3246.784183][T25467] total_swapcached 0
[ 3246.791827][T25467] total_pgpgin 246998
[ 3246.795864][T25467] total_pgpgout 246998
[ 3246.806964][T25467] total_pgfault 574856
[ 3246.811102][T25467] total_pgmajfault 51459
[ 3246.815379][T25467] total_inactive_anon 0
[ 3246.831933][T25467] total_active_anon 0
[ 3246.836069][T25467] total_inactive_file 0
[ 3246.847265][T25467] total_active_file 0
[ 3246.851315][T25467] total_unevictable 0
[ 3246.855339][T25467] anon_cost 0
[ 3246.870935][T25467] file_cost 0
[ 3246.874285][T25467] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=25467,uid=0
[ 3246.903638][T25467] Memory cgroup out of memory: Killed process 25467 (syz-executor.0) total-vm:54344kB, anon-rss:308kB, file-rss:8704kB, shmem-rss:0kB, UID:0 pgtables:64kB oom_score_adj:1000
06:22:03 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x87c, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x84c, 0x2, [@TCA_BASIC_POLICE={0x848, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x15000000]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}]}]}}]}, 0x87c}}, 0x0)

[ 3246.971079][T25462] syz-executor.1 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[ 3247.006182][T25462] CPU: 0 PID: 25462 Comm: syz-executor.1 Not tainted 6.8.0-rc7-syzkaller-00250-g137e0ec05aeb #0
[ 3247.016717][T25462] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3247.026823][T25462] Call Trace:
[ 3247.030144][T25462]  <TASK>
[ 3247.033118][T25462]  dump_stack_lvl+0x1e7/0x2e0
[ 3247.037865][T25462]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3247.043130][T25462]  ? __pfx__printk+0x10/0x10
[ 3247.047779][T25462]  ? ___ratelimit+0x4c4/0x670
[ 3247.052535][T25462]  ? __pfx____ratelimit+0x10/0x10
[ 3247.057642][T25462]  dump_header+0xda/0x6a0
[ 3247.062063][T25462]  oom_kill_process+0x3a7/0x930
[ 3247.066980][T25462]  out_of_memory+0xf67/0x1320
[ 3247.071733][T25462]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3247.077427][T25462]  ? __pfx___mutex_lock+0x10/0x10
[ 3247.082518][T25462]  ? __pfx_out_of_memory+0x10/0x10
[ 3247.087709][T25462]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3247.093315][T25462]  ? __pfx_lock_release+0x10/0x10
[ 3247.098423][T25462]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3247.104571][T25462]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3247.109831][T25462]  ? mem_cgroup_iter+0x3e9/0x560
[ 3247.114831][T25462]  try_charge_memcg+0xda2/0x18a0
[ 3247.119816][T25462]  ? mark_lock+0x9a/0x350
[ 3247.124223][T25462]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3247.129683][T25462]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 3247.135893][T25462]  charge_memcg+0xa2/0x160
[ 3247.140373][T25462]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 3247.146497][T25462]  __read_swap_cache_async+0x480/0x8b0
[ 3247.152011][T25462]  ? mark_lock+0x9a/0x350
[ 3247.156425][T25462]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 3247.162475][T25462]  ? blk_start_plug+0x6f/0x1b0
[ 3247.167324][T25462]  swap_cluster_readahead+0x398/0x810
[ 3247.172774][T25462]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 3247.178737][T25462]  ? __pfx_lock_release+0x10/0x10
[ 3247.183828][T25462]  ? xas_descend+0x37e/0x470
[ 3247.188494][T25462]  swapin_readahead+0x1ea/0x1070
[ 3247.193504][T25462]  ? filemap_get_entry+0x127/0x4e0
[ 3247.198710][T25462]  ? __pfx_swapin_readahead+0x10/0x10
[ 3247.204163][T25462]  ? __filemap_get_folio+0x935/0xbc0
[ 3247.209531][T25462]  ? swap_cache_get_folio+0x9f/0x570
[ 3247.214890][T25462]  do_swap_page+0x791/0x3f40
[ 3247.219538][T25462]  ? rcu_is_watching+0x15/0xb0
[ 3247.224358][T25462]  ? do_swap_page+0x154/0x3f40
[ 3247.229187][T25462]  ? __pfx_do_swap_page+0x10/0x10
[ 3247.234254][T25462]  ? pte_offset_map_nolock+0x137/0x1f0
[ 3247.239733][T25462]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 3247.245597][T25462]  __handle_mm_fault+0x15e8/0x72d0
[ 3247.250747][T25462]  ? reacquire_held_locks+0x3eb/0x690
[ 3247.256131][T25462]  ? __pfx___handle_mm_fault+0x10/0x10
[ 3247.261619][T25462]  ? __pfx_reacquire_held_locks+0x10/0x10
[ 3247.267372][T25462]  ? mtree_range_walk+0x6fd/0x8e0
[ 3247.272416][T25462]  ? lock_vma_under_rcu+0x18a/0x730
[ 3247.277630][T25462]  ? __pfx_lock_release+0x10/0x10
[ 3247.282672][T25462]  ? lock_vma_under_rcu+0x2f9/0x730
[ 3247.287942][T25462]  ? lock_vma_under_rcu+0x18a/0x730
[ 3247.293158][T25462]  ? __pfx_lock_vma_under_rcu+0x10/0x10
[ 3247.298721][T25462]  handle_mm_fault+0x3c1/0x8a0
[ 3247.303527][T25462]  exc_page_fault+0x456/0x870
[ 3247.308238][T25462]  asm_exc_page_fault+0x26/0x30
[ 3247.313120][T25462] RIP: 0023:0xf72adde4
[ 3247.317220][T25462] Code: 0f 00 00 83 f1 3d 8d 14 c9 89 d0 c1 e8 04 31 d0 69 c0 2d eb d4 27 89 c2 c1 ea 0f 31 d0 31 f8 25 ff 0f 00 00 09 c3 8b 44 24 04 <80> b8 b5 05 b5 00 00 0f 85 4f ff ff ff 0f b6 44 24 1f 8b 4c 24 04
[ 3247.336868][T25462] RSP: 002b:00000000f752da40 EFLAGS: 00010286
[ 3247.342954][T25462] RAX: 00000000f73e2ff4 RBX: 0000000081d145ee RCX: 0000000000000514
[ 3247.350955][T25462] RDX: 000000000000b8fe RSI: 0000000000002cc7 RDI: 0000000081d14693
[ 3247.358958][T25462] RBP: 00000000ffffffff R08: 0000000000000000 R09: 0000000000000000
[ 3247.366960][T25462] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 3247.374943][T25462] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 3247.382945][T25462]  </TASK>
[ 3247.393263][T25462] memory: usage 307200kB, limit 307200kB, failcnt 190357
[ 3247.400445][T25462] memory+swap: usage 307444kB, limit 9007199254740988kB, failcnt 0
[ 3247.408701][T25462] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[ 3247.416042][T25462] Memory cgroup stats for /syz4:
[ 3247.416146][T25462] cache 0
[ 3247.424284][T25462] rss 0
[ 3247.427169][T25462] rss_huge 0
[ 3247.430385][T25462] shmem 0
[ 3247.433335][T25462] mapped_file 0
[ 3247.436927][T25462] dirty 0
[ 3247.439891][T25462] writeback 0
[ 3247.443215][T25462] workingset_refault_anon 81048
[ 3247.448195][T25462] workingset_refault_file 0
[ 3247.452711][T25462] swap 249856
[ 3247.455998][T25462] swapcached 0
[ 3247.459505][T25462] pgpgin 276533
[ 3247.462979][T25462] pgpgout 276533
[ 3247.466627][T25462] pgfault 632637
[ 3247.470204][T25462] pgmajfault 78134
[ 3247.473951][T25462] inactive_anon 0
[ 3247.477712][T25462] active_anon 0
[ 3247.481193][T25462] inactive_file 0
[ 3247.484833][T25462] active_file 0
[ 3247.488453][T25462] unevictable 0
[ 3247.491932][T25462] hierarchical_memory_limit 314572800
[ 3247.498914][T25462] hierarchical_memsw_limit 9223372036854771712
[ 3247.505115][T25462] total_cache 0
[ 3247.508679][T25462] total_rss 0
[ 3247.511996][T25462] total_rss_huge 0
[ 3247.515741][T25462] total_shmem 0
[ 3247.519327][T25462] total_mapped_file 0
[ 3247.523331][T25462] total_dirty 0
[ 3247.526984][T25462] total_writeback 0
[ 3247.530820][T25462] total_workingset_refault_anon 81048
[ 3247.536204][T25462] total_workingset_refault_file 0
[ 3247.541330][T25462] total_swap 249856
[ 3247.545151][T25462] total_swapcached 0
[ 3247.549173][T25462] total_pgpgin 276533
[ 3247.553168][T25462] total_pgpgout 276533
[ 3247.557378][T25462] total_pgfault 632637
[ 3247.561469][T25462] total_pgmajfault 78134
[ 3247.565754][T25462] total_inactive_anon 0
[ 3247.570011][T25462] total_active_anon 0
[ 3247.574008][T25462] total_inactive_file 0
[ 3247.578658][T25462] total_active_file 0
[ 3247.582666][T25462] total_unevictable 0
[ 3247.586848][T25462] anon_cost 0
[ 3247.590166][T25462] file_cost 0
[ 3247.593479][T25462] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=25464,uid=0
[ 3247.609626][T25462] Memory cgroup out of memory: Killed process 25464 (syz-executor.4) total-vm:54476kB, anon-rss:308kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:64kB oom_score_adj:1000
[ 3247.627549][ T5120] syz-executor.4 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[ 3247.642880][ T5120] CPU: 1 PID: 5120 Comm: syz-executor.4 Not tainted 6.8.0-rc7-syzkaller-00250-g137e0ec05aeb #0
[ 3247.653263][ T5120] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3247.663351][ T5120] Call Trace:
[ 3247.666660][ T5120]  <TASK>
[ 3247.669636][ T5120]  dump_stack_lvl+0x1e7/0x2e0
[ 3247.674336][ T5120]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3247.679555][ T5120]  ? __pfx__printk+0x10/0x10
[ 3247.684179][ T5120]  ? ___ratelimit+0x4c4/0x670
[ 3247.688880][ T5120]  ? __pfx____ratelimit+0x10/0x10
[ 3247.693924][ T5120]  dump_header+0xda/0x6a0
[ 3247.698274][ T5120]  oom_kill_process+0x3a7/0x930
[ 3247.703153][ T5120]  out_of_memory+0xf67/0x1320
[ 3247.707851][ T5120]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3247.713622][ T5120]  ? __pfx___mutex_lock+0x10/0x10
[ 3247.718682][ T5120]  ? __pfx_out_of_memory+0x10/0x10
[ 3247.723903][ T5120]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3247.729481][ T5120]  ? __pfx_lock_release+0x10/0x10
[ 3247.734538][ T5120]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3247.740649][ T5120]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3247.745885][ T5120]  ? mem_cgroup_iter+0x3e9/0x560
[ 3247.750855][ T5120]  try_charge_memcg+0xda2/0x18a0
[ 3247.755812][ T5120]  ? mark_lock+0x9a/0x350
[ 3247.760175][ T5120]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3247.765588][ T5120]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 3247.771758][ T5120]  charge_memcg+0xa2/0x160
[ 3247.776198][ T5120]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 3247.782279][ T5120]  __read_swap_cache_async+0x480/0x8b0
[ 3247.787757][ T5120]  ? mark_lock+0x9a/0x350
[ 3247.792104][ T5120]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 3247.798110][ T5120]  swap_cluster_readahead+0x67c/0x810
[ 3247.803513][ T5120]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 3247.809440][ T5120]  ? __pfx_lock_release+0x10/0x10
[ 3247.814490][ T5120]  ? xas_descend+0x37e/0x470
[ 3247.819105][ T5120]  swapin_readahead+0x1ea/0x1070
[ 3247.824057][ T5120]  ? filemap_get_entry+0x127/0x4e0
[ 3247.829197][ T5120]  ? __pfx_swapin_readahead+0x10/0x10
[ 3247.834609][ T5120]  ? __filemap_get_folio+0x935/0xbc0
[ 3247.839917][ T5120]  ? swap_cache_get_folio+0x9f/0x570
[ 3247.845224][ T5120]  do_swap_page+0x791/0x3f40
[ 3247.849829][ T5120]  ? rcu_is_watching+0x15/0xb0
[ 3247.854618][ T5120]  ? __lock_acquire+0x1345/0x1fd0
[ 3247.859656][ T5120]  ? do_swap_page+0x154/0x3f40
[ 3247.864526][ T5120]  ? __pfx_do_swap_page+0x10/0x10
[ 3247.869560][ T5120]  ? pte_offset_map_nolock+0x137/0x1f0
[ 3247.875205][ T5120]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 3247.881046][ T5120]  __handle_mm_fault+0x15e8/0x72d0
[ 3247.886294][ T5120]  ? reacquire_held_locks+0x3eb/0x690
[ 3247.891704][ T5120]  ? __pfx___handle_mm_fault+0x10/0x10
[ 3247.897190][ T5120]  ? __pfx_reacquire_held_locks+0x10/0x10
[ 3247.903031][ T5120]  ? mtree_range_walk+0x6fd/0x8e0
[ 3247.908080][ T5120]  ? lock_vma_under_rcu+0x18a/0x730
[ 3247.913301][ T5120]  ? __pfx_lock_release+0x10/0x10
[ 3247.918349][ T5120]  ? lock_vma_under_rcu+0x2f9/0x730
[ 3247.923575][ T5120]  ? lock_vma_under_rcu+0x18a/0x730
[ 3247.928787][ T5120]  ? __pfx_lock_vma_under_rcu+0x10/0x10
[ 3247.934361][ T5120]  handle_mm_fault+0x3c1/0x8a0
[ 3247.939152][ T5120]  exc_page_fault+0x456/0x870
[ 3247.943878][ T5120]  asm_exc_page_fault+0x26/0x30
[ 3247.948748][ T5120] RIP: 0023:0xf73124d3
[ 3247.952823][ T5120] Code: ff 74 24 28 6a ff e8 1c 7d 03 00 83 c4 10 39 44 24 08 0f 84 cb 01 00 00 83 ec 0c 68 e8 03 00 00 e8 12 c6 03 00 b8 03 00 00 00 <f7> a7 a4 05 b5 00 8b b7 a8 05 b5 00 8d 34 76 89 c1 89 d3 58 b8 cd
[ 3247.972529][ T5120] RSP: 002b:00000000f7593d60 EFLAGS: 00010282
[ 3247.978616][ T5120] RAX: 0000000000000003 RBX: 00000000f7448ff4 RCX: 0000000000000000
[ 3247.986597][ T5120] RDX: 0000000000000000 RSI: 0000000000b505a8 RDI: 00000000f7448ff4
[ 3247.994589][ T5120] RBP: 0000000000000bb8 R08: 0000000000000000 R09: 0000000000000000
[ 3248.002569][ T5120] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 3248.010556][ T5120] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 3248.018554][ T5120]  </TASK>
[ 3248.040666][ T5120] memory: usage 307200kB, limit 307200kB, failcnt 190393
[ 3248.052364][ T5120] memory+swap: usage 307436kB, limit 9007199254740988kB, failcnt 0
[ 3248.060860][ T5120] kmem: usage 307152kB, limit 9007199254740988kB, failcnt 0
[ 3248.068836][ T5120] Memory cgroup stats for /syz4:
[ 3248.068995][ T5120] cache 0
[ 3248.077548][ T5120] rss 0
[ 3248.080492][ T5120] rss_huge 0
[ 3248.083913][ T5120] shmem 0
[ 3248.087645][ T5120] mapped_file 0
[ 3248.091258][ T5120] dirty 0
[ 3248.094395][ T5120] writeback 0
[ 3248.098562][ T5120] workingset_refault_anon 81048
[ 3248.103565][ T5120] workingset_refault_file 0
[ 3248.108612][ T5120] swap 249856
[ 3248.112052][ T5120] swapcached 0
[ 3248.115655][ T5120] pgpgin 276533
[ 3248.119403][ T5120] pgpgout 276533
[ 3248.124377][ T5120] pgfault 632637
[ 3248.130331][ T5120] pgmajfault 78134
[ 3248.134224][ T5120] inactive_anon 0
[ 3248.143244][ T5120] active_anon 0
[ 3248.147242][ T5120] inactive_file 0
[ 3248.151047][ T5120] active_file 0
[ 3248.154733][ T5120] unevictable 0
[ 3248.162019][ T5120] hierarchical_memory_limit 314572800
[ 3248.170389][ T5120] hierarchical_memsw_limit 9223372036854771712
[ 3248.179717][ T5120] total_cache 0
[ 3248.183338][ T5120] total_rss 0
[ 3248.189866][ T5120] total_rss_huge 0
[ 3248.193753][ T5120] total_shmem 0
[ 3248.200285][ T5120] total_mapped_file 0
[ 3248.204680][ T5120] total_dirty 0
[ 3248.211348][ T5120] total_writeback 0
[ 3248.215316][ T5120] total_workingset_refault_anon 81048
[ 3248.223347][ T5120] total_workingset_refault_file 0
[ 3248.232549][ T5120] total_swap 249856
[ 3248.238963][ T5120] total_swapcached 0
[ 3248.243006][ T5120] total_pgpgin 276533
[ 3248.247860][ T5120] total_pgpgout 276533
[ 3248.252070][ T5120] total_pgfault 632637
[ 3248.256265][ T5120] total_pgmajfault 78134
[ 3248.261388][ T5120] total_inactive_anon 0
[ 3248.265682][ T5120] total_active_anon 0
[ 3248.270404][ T5120] total_inactive_file 0
[ 3248.274699][ T5120] total_active_file 0
[ 3248.279354][ T5120] total_unevictable 0
[ 3248.283521][ T5120] anon_cost 0
[ 3248.287618][ T5120] file_cost 0
[ 3248.291048][ T5120] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0-1,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=5120,uid=0
[ 3248.307328][ T5120] Memory cgroup out of memory: Killed process 5120 (syz-executor.4) total-vm:50372kB, anon-rss:312kB, file-rss:8960kB, shmem-rss:0kB, UID:0 pgtables:60kB oom_score_adj:0
[ 3248.365695][T25466] syz-executor.2 invoked oom-killer: gfp_mask=0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), order=0, oom_score_adj=1000
[ 3248.409135][T25466] CPU: 1 PID: 25466 Comm: syz-executor.2 Not tainted 6.8.0-rc7-syzkaller-00250-g137e0ec05aeb #0
[ 3248.419722][T25466] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3248.429824][T25466] Call Trace:
[ 3248.434022][T25466]  <TASK>
[ 3248.437007][T25466]  dump_stack_lvl+0x1e7/0x2e0
[ 3248.441749][T25466]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3248.447008][T25466]  ? __pfx__printk+0x10/0x10
[ 3248.451648][T25466]  ? ___ratelimit+0x4c4/0x670
06:22:05 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x40, 0x4, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x39f}}}]}]}}]}, 0x74}}, 0x0)

[ 3248.456381][T25466]  ? __pfx____ratelimit+0x10/0x10
[ 3248.461470][T25466]  dump_header+0xda/0x6a0
[ 3248.465862][T25466]  oom_kill_process+0x3a7/0x930
[ 3248.470779][T25466]  out_of_memory+0xf67/0x1320
[ 3248.475523][T25466]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3248.481213][T25466]  ? __pfx___mutex_lock+0x10/0x10
[ 3248.486299][T25466]  ? __pfx_out_of_memory+0x10/0x10
[ 3248.491483][T25466]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3248.497072][T25466]  ? __pfx_lock_release+0x10/0x10
[ 3248.502125][T25466]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3248.508215][T25466]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3248.513431][T25466]  ? mem_cgroup_iter+0x3e9/0x560
[ 3248.518389][T25466]  try_charge_memcg+0xda2/0x18a0
[ 3248.523361][T25466]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3248.528747][T25466]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3248.534477][T25466]  ? __pfx_lock_release+0x10/0x10
[ 3248.539527][T25466]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3248.545537][T25466]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3248.551267][T25466]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3248.557090][T25466]  obj_cgroup_charge+0x389/0x630
[ 3248.562052][T25466]  ? obj_cgroup_charge+0x121/0x630
[ 3248.567203][T25466]  ? __pfx_obj_cgroup_charge+0x10/0x10
[ 3248.572683][T25466]  ? kmalloc_trace+0x4e/0x360
[ 3248.577373][T25466]  ? __pfx___might_resched+0x10/0x10
[ 3248.582677][T25466]  __memcg_slab_pre_alloc_hook+0x28d/0x2b0
[ 3248.588507][T25466]  ? copy_semundo+0xb5/0x240
[ 3248.593212][T25466]  kmalloc_trace+0x216/0x360
[ 3248.597814][T25466]  ? __asan_memcpy+0x40/0x70
[ 3248.602426][T25466]  copy_semundo+0xb5/0x240
[ 3248.606864][T25466]  copy_process+0x1bc3/0x3fc0
[ 3248.611566][T25466]  ? copy_process+0x9c3/0x3fc0
[ 3248.616357][T25466]  ? __pfx_copy_process+0x10/0x10
[ 3248.621411][T25466]  ? __might_fault+0xc5/0x120
[ 3248.626107][T25466]  ? __asan_memset+0x23/0x50
[ 3248.630716][T25466]  kernel_clone+0x21d/0x8d0
[ 3248.635238][T25466]  ? __pfx_kernel_clone+0x10/0x10
[ 3248.640282][T25466]  ? __pfx___might_resched+0x10/0x10
[ 3248.645589][T25466]  __se_sys_clone3+0x2cb/0x350
[ 3248.650370][T25466]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3248.655698][T25466]  ? int80_emulation+0xea/0x210
[ 3248.660574][T25466]  int80_emulation+0x129/0x210
[ 3248.665366][T25466]  asm_int80_emulation+0x1a/0x20
[ 3248.670316][T25466] RIP: 0023:0xf7376060
[ 3248.674396][T25466] Code: 4c 24 04 85 c9 0f 84 df 0d fe ff 8b 54 24 0c 85 d2 0f 84 d3 0d fe ff 53 56 8b 74 24 18 89 cb 8b 4c 24 10 b8 b3 01 00 00 cd 80 <85> c0 74 09 5e 5b 0f 8c b4 0d fe ff c3 31 ed 83 e4 f0 83 ec 0c 56
[ 3248.694024][T25466] RSP: 002b:00000000f758d8e4 EFLAGS: 00000282 ORIG_RAX: 00000000000001b3
[ 3248.702457][T25466] RAX: ffffffffffffffda RBX: 00000000f758d950 RCX: 0000000000000058
[ 3248.710443][T25466] RDX: 00000000f7326eb0 RSI: 00000000f5ee6b40 RDI: 00000000ffffffd8
[ 3248.718425][T25466] RBP: 000000000000000b R08: 0000000000000000 R09: 0000000000000000
[ 3248.726416][T25466] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 3248.734392][T25466] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 3248.742388][T25466]  </TASK>
06:22:05 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x888, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x858, 0x2, [@TCA_BASIC_POLICE={0x854, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7000000]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}, @TCA_POLICE_PEAKRATE64={0xc}]}]}}]}, 0x888}}, 0x0)

[ 3248.897819][T25466] memory: usage 307200kB, limit 307200kB, failcnt 113745
[ 3248.918644][T25466] memory+swap: usage 307668kB, limit 9007199254740988kB, failcnt 0
[ 3248.956030][T25466] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0
[ 3248.976534][T25466] Memory cgroup stats for /syz2:
[ 3248.976699][T25466] cache 0
[ 3248.984684][T25466] rss 0
[ 3248.995589][T25466] rss_huge 0
[ 3249.003130][T25466] shmem 0
[ 3249.006144][T25466] mapped_file 0
[ 3249.016805][T25466] dirty 0
[ 3249.022264][T25466] writeback 0
[ 3249.025609][T25466] workingset_refault_anon 41132
[ 3249.041090][T25466] workingset_refault_file 0
[ 3249.047821][T25466] swap 479232
[ 3249.051283][T25466] swapcached 12288
06:22:05 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x888, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x858, 0x2, [@TCA_BASIC_POLICE={0x854, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x15000000]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}, @TCA_POLICE_PEAKRATE64={0xc}]}]}}]}, 0x888}}, 0x0)

[ 3249.055150][T25466] pgpgin 245400
[ 3249.058817][T25466] pgpgout 245397
[ 3249.062513][T25466] pgfault 585682
[ 3249.086554][T25466] pgmajfault 40824
[ 3249.090345][T25466] inactive_anon 0
[ 3249.094014][T25466] active_anon 12288
[ 3249.112295][T25466] inactive_file 0
[ 3249.116102][T25466] active_file 0
[ 3249.129918][T25466] unevictable 0
[ 3249.146653][T25466] hierarchical_memory_limit 314572800
[ 3249.158206][T25466] hierarchical_memsw_limit 9223372036854771712
[ 3249.179959][T25466] total_cache 0
[ 3249.183667][T25466] total_rss 0
[ 3249.198244][T25466] total_rss_huge 0
[ 3249.209008][T25466] total_shmem 0
[ 3249.221484][T25466] total_mapped_file 0
[ 3249.225535][T25466] total_dirty 0
[ 3249.246484][T25466] total_writeback 0
[ 3249.250451][T25466] total_workingset_refault_anon 41132
[ 3249.255879][T25466] total_workingset_refault_file 0
[ 3249.283625][T32199] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 3249.298948][T25466] total_swap 479232
[ 3249.302822][T25466] total_swapcached 12288
[ 3249.326425][T25466] total_pgpgin 245400
[ 3249.330475][T25466] total_pgpgout 245397
[ 3249.334564][T25466] total_pgfault 585682
[ 3249.361165][T25466] total_pgmajfault 40824
[ 3249.365480][T25466] total_inactive_anon 0
[ 3249.386514][T25466] total_active_anon 12288
[ 3249.391048][T25466] total_inactive_file 0
[ 3249.397280][T25466] total_active_file 0
[ 3249.411980][T25466] total_unevictable 0
[ 3249.426584][T25466] anon_cost 0
[ 3249.430511][T25466] file_cost 0
[ 3249.437891][T25466] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=25466,uid=0
[ 3249.480320][T25466] Memory cgroup out of memory: Killed process 25466 (syz-executor.2) total-vm:54344kB, anon-rss:316kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:64kB oom_score_adj:1000
[ 3249.499045][T32199] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 3249.543178][T25468] syz-executor.0 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[ 3249.567748][T25468] CPU: 1 PID: 25468 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00250-g137e0ec05aeb #0
[ 3249.578237][T25468] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3249.588343][T25468] Call Trace:
06:22:06 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x888, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x858, 0x2, [@TCA_BASIC_POLICE={0x854, 0x4, [@TCA_POLICE_RATE={0x404}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}, @TCA_POLICE_PEAKRATE64={0xc}]}]}}]}, 0x888}}, 0x0)

[ 3249.591661][T25468]  <TASK>
[ 3249.594628][T25468]  dump_stack_lvl+0x1e7/0x2e0
[ 3249.599373][T25468]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3249.604630][T25468]  ? __pfx__printk+0x10/0x10
[ 3249.609265][T25468]  ? ___ratelimit+0x4c4/0x670
[ 3249.614000][T25468]  ? __pfx____ratelimit+0x10/0x10
[ 3249.619084][T25468]  dump_header+0xda/0x6a0
[ 3249.623467][T25468]  oom_kill_process+0x3a7/0x930
[ 3249.628391][T25468]  out_of_memory+0xf67/0x1320
[ 3249.633124][T25468]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3249.638806][T25468]  ? __pfx___mutex_lock+0x10/0x10
[ 3249.643915][T25468]  ? __pfx_out_of_memory+0x10/0x10
[ 3249.649099][T25468]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3249.654699][T25468]  ? __pfx_lock_release+0x10/0x10
[ 3249.659783][T25468]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3249.665914][T25468]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3249.671160][T25468]  ? mem_cgroup_iter+0x3e9/0x560
[ 3249.676126][T25468]  try_charge_memcg+0xda2/0x18a0
[ 3249.681078][T25468]  ? mark_lock+0x9a/0x350
[ 3249.685443][T25468]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3249.690854][T25468]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 3249.697124][T25468]  charge_memcg+0xa2/0x160
[ 3249.701564][T25468]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 3249.707649][T25468]  __read_swap_cache_async+0x480/0x8b0
[ 3249.713131][T25468]  ? mark_lock+0x9a/0x350
[ 3249.717481][T25468]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 3249.723506][T25468]  swap_cluster_readahead+0x67c/0x810
[ 3249.728930][T25468]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 3249.734848][T25468]  ? __pfx_lock_release+0x10/0x10
[ 3249.739902][T25468]  ? xas_descend+0x37e/0x470
[ 3249.744518][T25468]  swapin_readahead+0x1ea/0x1070
[ 3249.749471][T25468]  ? filemap_get_entry+0x127/0x4e0
[ 3249.754607][T25468]  ? __pfx_swapin_readahead+0x10/0x10
[ 3249.760004][T25468]  ? __filemap_get_folio+0x935/0xbc0
[ 3249.765313][T25468]  ? swap_cache_get_folio+0x9f/0x570
[ 3249.770719][T25468]  do_swap_page+0x791/0x3f40
[ 3249.775324][T25468]  ? rcu_is_watching+0x15/0xb0
[ 3249.780132][T25468]  ? do_swap_page+0x154/0x3f40
[ 3249.784905][T25468]  ? __pfx_do_swap_page+0x10/0x10
[ 3249.789951][T25468]  ? pte_offset_map_nolock+0x137/0x1f0
[ 3249.795423][T25468]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 3249.801242][T25468]  ? __pfx_validate_chain+0x10/0x10
[ 3249.806548][T25468]  __handle_mm_fault+0x15e8/0x72d0
[ 3249.811700][T25468]  ? __pfx___handle_mm_fault+0x10/0x10
[ 3249.817223][T25468]  ? mt_find+0x226/0x850
[ 3249.821490][T25468]  ? __pfx_lock_release+0x10/0x10
[ 3249.826546][T25468]  ? mt_find+0x62d/0x850
[ 3249.830807][T25468]  ? mt_find+0x226/0x850
[ 3249.835083][T25468]  ? find_vma+0x142/0x1c0
[ 3249.839444][T25468]  ? __pfx_find_vma+0x10/0x10
[ 3249.844132][T25468]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3249.850133][T25468]  handle_mm_fault+0x3c1/0x8a0
[ 3249.854920][T25468]  exc_page_fault+0x2ad/0x870
[ 3249.859633][T25468]  asm_exc_page_fault+0x26/0x30
[ 3249.864493][T25468] RIP: 0010:__put_user_4+0x11/0x20
[ 3249.869724][T25468] Code: 1f 84 00 00 00 00 00 66 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 89 cb 48 c1 fb 3f 48 09 d9 0f 01 cb <89> 01 31 c9 0f 01 ca c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90
[ 3249.889348][T25468] RSP: 0018:ffffc9000d127bd8 EFLAGS: 00050202
[ 3249.895428][T25468] RAX: 0000000000005989 RBX: 0000000000000000 RCX: 00000000f5ee2ba8
[ 3249.903422][T25468] RDX: 0000000000000000 RSI: ffffffff8baac7e0 RDI: ffffffff8bfe6da0
[ 3249.911430][T25468] RBP: ffffc9000d127d10 R08: ffffffff8f856cef R09: 1ffffffff1f0ad9d
[ 3249.919415][T25468] R10: dffffc0000000000 R11: fffffbfff1f0ad9e R12: ffffc9000d127d78
[ 3249.927395][T25468] R13: 00000000003d0f00 R14: ffffc9000d127c40 R15: dffffc0000000000
[ 3249.935404][T25468]  kernel_clone+0x363/0x8d0
[ 3249.940017][T25468]  ? __pfx_kernel_clone+0x10/0x10
[ 3249.945058][T25468]  ? __pfx___might_resched+0x10/0x10
[ 3249.950363][T25468]  __se_sys_clone3+0x2cb/0x350
[ 3249.955166][T25468]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3249.960527][T25468]  ? int80_emulation+0xea/0x210
[ 3249.965427][T25468]  int80_emulation+0x129/0x210
[ 3249.970223][T25468]  asm_int80_emulation+0x1a/0x20
[ 3249.975171][T25468] RIP: 0023:0xf7372060
[ 3249.979249][T25468] Code: 4c 24 04 85 c9 0f 84 df 0d fe ff 8b 54 24 0c 85 d2 0f 84 d3 0d fe ff 53 56 8b 74 24 18 89 cb 8b 4c 24 10 b8 b3 01 00 00 cd 80 <85> c0 74 09 5e 5b 0f 8c b4 0d fe ff c3 31 ed 83 e4 f0 83 ec 0c 56
[ 3249.998862][T25468] RSP: 002b:00000000f75898e4 EFLAGS: 00000282 ORIG_RAX: 00000000000001b3
[ 3250.007299][T25468] RAX: ffffffffffffffda RBX: 00000000f7589950 RCX: 0000000000000058
[ 3250.015282][T25468] RDX: 00000000f7322eb0 RSI: 00000000f5ee2b40 RDI: 00000000ffffffd8
[ 3250.023266][T25468] RBP: 000000000000000b R08: 0000000000000000 R09: 0000000000000000
[ 3250.031257][T25468] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 3250.039236][T25468] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 3250.047231][T25468]  </TASK>
06:22:06 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x888, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x858, 0x2, [@TCA_BASIC_POLICE={0x854, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x15010000]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}, @TCA_POLICE_PEAKRATE64={0xc}]}]}}]}, 0x888}}, 0x0)

[ 3250.176651][T25468] memory: usage 307200kB, limit 307200kB, failcnt 141948
[ 3250.183757][T25468] memory+swap: usage 307896kB, limit 9007199254740988kB, failcnt 0
[ 3250.191906][T25468] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0
[ 3250.199362][T25468] Memory cgroup stats for /syz0:
[ 3250.199505][T25468] cache 0
[ 3250.207794][T25468] rss 12288
[ 3250.260693][T25468] rss_huge 0
[ 3250.263986][T25468] shmem 0
[ 3250.348089][T25468] mapped_file 0
[ 3250.351617][T25468] dirty 0
[ 3250.354587][T25468] writeback 0
[ 3250.387599][T25468] workingset_refault_anon 52685
[ 3250.412474][T25468] workingset_refault_file 0
[ 3250.434313][T25468] swap 712704
[ 3250.447919][T32199] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 3250.453711][T25468] swapcached 12288
[ 3250.498036][T25468] pgpgin 247064
[ 3250.511787][T25468] pgpgout 247061
[ 3250.546959][T25468] pgfault 574961
[ 3250.558835][T25468] pgmajfault 51514
[ 3250.588874][T25468] inactive_anon 8192
[ 3250.620797][T25468] active_anon 4096
[ 3250.638555][T25468] inactive_file 0
[ 3250.651070][T25468] active_file 0
[ 3250.674779][T25468] unevictable 0
[ 3250.712195][T25468] hierarchical_memory_limit 314572800
[ 3250.734610][T25468] hierarchical_memsw_limit 9223372036854771712
[ 3250.746485][T25468] total_cache 0
[ 3250.750116][T25468] total_rss 12288
[ 3250.753817][T25468] total_rss_huge 0
[ 3250.772514][T32199] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 3250.783882][T25468] total_shmem 0
[ 3250.787643][T25468] total_mapped_file 0
[ 3250.827990][T25468] total_dirty 0
[ 3250.841870][T25468] total_writeback 0
[ 3250.853978][T25468] total_workingset_refault_anon 52685
[ 3250.884430][T25468] total_workingset_refault_file 0
[ 3250.911700][T25468] total_swap 712704
[ 3250.933624][T25468] total_swapcached 12288
[ 3250.954519][T25468] total_pgpgin 247064
[ 3250.976127][T25468] total_pgpgout 247061
[ 3250.993554][T25468] total_pgfault 574961
[ 3251.016451][T25468] total_pgmajfault 51514
[ 3251.046621][T25468] total_inactive_anon 8192
[ 3251.051124][T25468] total_active_anon 4096
[ 3251.055399][T25468] total_inactive_file 0
[ 3251.096931][T25468] total_active_file 0
[ 3251.100989][T25468] total_unevictable 0
[ 3251.105038][T25468] anon_cost 0
[ 3251.146772][T25468] file_cost 0
[ 3251.150151][T25468] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=25468,uid=0
[ 3251.237329][T25468] Memory cgroup out of memory: Killed process 25468 (syz-executor.0) total-vm:54344kB, anon-rss:308kB, file-rss:8704kB, shmem-rss:0kB, UID:0 pgtables:64kB oom_score_adj:1000
[ 3251.636582][T25477] syz-executor.2 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[ 3251.659759][T25477] CPU: 0 PID: 25477 Comm: syz-executor.2 Not tainted 6.8.0-rc7-syzkaller-00250-g137e0ec05aeb #0
[ 3251.670252][T25477] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3251.680352][T25477] Call Trace:
[ 3251.683682][T25477]  <TASK>
[ 3251.686654][T25477]  dump_stack_lvl+0x1e7/0x2e0
[ 3251.691391][T25477]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3251.696644][T25477]  ? __pfx__printk+0x10/0x10
[ 3251.701281][T25477]  ? ___ratelimit+0x4c4/0x670
[ 3251.706013][T25477]  ? __pfx____ratelimit+0x10/0x10
[ 3251.711095][T25477]  dump_header+0xda/0x6a0
[ 3251.715482][T25477]  oom_kill_process+0x3a7/0x930
[ 3251.720392][T25477]  out_of_memory+0xf67/0x1320
[ 3251.725132][T25477]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3251.730816][T25477]  ? __pfx___mutex_lock+0x10/0x10
[ 3251.735885][T25477]  ? __pfx_out_of_memory+0x10/0x10
[ 3251.741024][T25477]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3251.746597][T25477]  ? __pfx_lock_release+0x10/0x10
[ 3251.751667][T25477]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3251.757775][T25477]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3251.763002][T25477]  ? mem_cgroup_iter+0x3e9/0x560
[ 3251.767967][T25477]  try_charge_memcg+0xda2/0x18a0
[ 3251.772923][T25477]  ? mark_lock+0x9a/0x350
[ 3251.777299][T25477]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3251.782733][T25477]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 3251.788938][T25477]  charge_memcg+0xa2/0x160
[ 3251.793392][T25477]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 3251.799504][T25477]  __read_swap_cache_async+0x480/0x8b0
[ 3251.804976][T25477]  ? mark_lock+0x9a/0x350
[ 3251.809325][T25477]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 3251.815335][T25477]  swap_cluster_readahead+0x67c/0x810
[ 3251.820739][T25477]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 3251.826662][T25477]  ? __pfx_lock_release+0x10/0x10
[ 3251.831704][T25477]  ? xas_descend+0x37e/0x470
[ 3251.836323][T25477]  swapin_readahead+0x1ea/0x1070
[ 3251.841282][T25477]  ? filemap_get_entry+0x127/0x4e0
[ 3251.846448][T25477]  ? __pfx_swapin_readahead+0x10/0x10
[ 3251.851846][T25477]  ? __filemap_get_folio+0x935/0xbc0
[ 3251.857149][T25477]  ? swap_cache_get_folio+0x9f/0x570
[ 3251.862453][T25477]  do_swap_page+0x791/0x3f40
[ 3251.867095][T25477]  ? rcu_is_watching+0x15/0xb0
[ 3251.871885][T25477]  ? do_swap_page+0x154/0x3f40
[ 3251.876663][T25477]  ? __pfx_do_swap_page+0x10/0x10
[ 3251.881700][T25477]  ? pte_offset_map_nolock+0x137/0x1f0
[ 3251.887177][T25477]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 3251.892994][T25477]  ? __pfx_validate_chain+0x10/0x10
[ 3251.898207][T25477]  __handle_mm_fault+0x15e8/0x72d0
[ 3251.903361][T25477]  ? __pfx___handle_mm_fault+0x10/0x10
[ 3251.908929][T25477]  ? mt_find+0x226/0x850
[ 3251.913191][T25477]  ? __pfx_lock_release+0x10/0x10
[ 3251.918274][T25477]  ? mt_find+0x62d/0x850
[ 3251.922552][T25477]  ? mt_find+0x226/0x850
[ 3251.926833][T25477]  ? find_vma+0x142/0x1c0
[ 3251.931176][T25477]  ? __pfx_find_vma+0x10/0x10
[ 3251.936299][T25477]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3251.942345][T25477]  handle_mm_fault+0x3c1/0x8a0
[ 3251.947152][T25477]  exc_page_fault+0x2ad/0x870
[ 3251.951864][T25477]  asm_exc_page_fault+0x26/0x30
[ 3251.956725][T25477] RIP: 0010:rep_movs_alternative+0x30/0x70
[ 3251.962546][T25477] Code: f9 40 73 40 83 f9 08 73 21 85 c9 74 0f 8a 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 c3 cc cc cc cc 66 0f 1f 84 00 00 00 00 00 <48> 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 df 83 f9 08
[ 3251.982167][T25477] RSP: 0018:ffffc9000d04f850 EFLAGS: 00050212
[ 3251.988249][T25477] RAX: ffffffff849fe701 RBX: 00000000f758d9bc RCX: 0000000000000010
[ 3251.996227][T25477] RDX: 0000000000000001 RSI: 00000000f758d9ac RDI: ffffc9000d04f8e0
[ 3252.004222][T25477] RBP: ffffc9000d04f958 R08: ffffc9000d04f8ef R09: 1ffff92001a09f1d
[ 3252.012205][T25477] R10: dffffc0000000000 R11: fffff52001a09f1e R12: 00000000f758d9ac
[ 3252.020186][T25477] R13: 00000000f758d9ac R14: ffffc9000d04f8e0 R15: 0000000000000010
[ 3252.028173][T25477]  ? rcuref_put_slowpath+0x321/0x340
[ 3252.033482][T25477]  _copy_from_user+0x8c/0xe0
[ 3252.038091][T25477]  do_set_thread_area+0xa6/0x850
[ 3252.043051][T25477]  ? fpu_clone+0x25a/0xa80
[ 3252.047475][T25477]  ? rcu_is_watching+0x15/0xb0
[ 3252.052283][T25477]  ? __pfx_do_set_thread_area+0x10/0x10
[ 3252.057865][T25477]  ? fpu_clone+0x5d9/0xa80
[ 3252.062307][T25477]  ? copy_thread+0x4b3/0x980
[ 3252.066922][T25477]  copy_thread+0x5cc/0x980
[ 3252.071363][T25477]  copy_process+0x21b4/0x3fc0
[ 3252.076060][T25477]  ? copy_process+0x9c3/0x3fc0
[ 3252.080843][T25477]  ? __pfx_copy_process+0x10/0x10
[ 3252.085875][T25477]  ? __might_fault+0xc5/0x120
[ 3252.090566][T25477]  ? __asan_memset+0x23/0x50
[ 3252.095202][T25477]  kernel_clone+0x21d/0x8d0
[ 3252.099741][T25477]  ? __pfx_kernel_clone+0x10/0x10
[ 3252.104828][T25477]  ? __pfx___might_resched+0x10/0x10
[ 3252.110135][T25477]  __se_sys_clone3+0x2cb/0x350
[ 3252.114920][T25477]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3252.120275][T25477]  ? int80_emulation+0xea/0x210
[ 3252.125169][T25477]  int80_emulation+0x129/0x210
[ 3252.129971][T25477]  asm_int80_emulation+0x1a/0x20
[ 3252.134921][T25477] RIP: 0023:0xf7376060
[ 3252.138997][T25477] Code: 4c 24 04 85 c9 0f 84 df 0d fe ff 8b 54 24 0c 85 d2 0f 84 d3 0d fe ff 53 56 8b 74 24 18 89 cb 8b 4c 24 10 b8 b3 01 00 00 cd 80 <85> c0 74 09 5e 5b 0f 8c b4 0d fe ff c3 31 ed 83 e4 f0 83 ec 0c 56
[ 3252.158740][T25477] RSP: 002b:00000000f758d8e4 EFLAGS: 00000282 ORIG_RAX: 00000000000001b3
[ 3252.167309][T25477] RAX: ffffffffffffffda RBX: 00000000f758d950 RCX: 0000000000000058
[ 3252.175294][T25477] RDX: 00000000f7326eb0 RSI: 00000000f5ee6b40 RDI: 00000000ffffffd8
[ 3252.183283][T25477] RBP: 000000000000000b R08: 0000000000000000 R09: 0000000000000000
[ 3252.191284][T25477] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 3252.199263][T25477] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 3252.207266][T25477]  </TASK>
06:22:08 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x87c, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x84c, 0x2, [@TCA_BASIC_POLICE={0x848, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x281d0000]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}]}]}}]}, 0x87c}}, 0x0)

06:22:08 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x888, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x858, 0x2, [@TCA_BASIC_POLICE={0x854, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000000]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}, @TCA_POLICE_PEAKRATE64={0xc}]}]}}]}, 0x888}}, 0x0)

06:22:09 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x40, 0x4, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x3a1}}}]}]}}]}, 0x74}}, 0x0)

[ 3252.389995][T25477] memory: usage 307200kB, limit 307200kB, failcnt 114158
[ 3252.477544][T25477] memory+swap: usage 307668kB, limit 9007199254740988kB, failcnt 0
[ 3252.485553][T25477] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0
[ 3252.564846][T25477] Memory cgroup stats for /syz2:
[ 3252.565012][T25477] cache 0
[ 3252.606100][T25477] rss 0
[ 3252.609573][T25477] rss_huge 0
[ 3252.616231][T25477] shmem 0
[ 3252.636661][T25477] mapped_file 0
[ 3252.640941][T25477] dirty 0
[ 3252.643915][T25477] writeback 0
[ 3252.676579][T25477] workingset_refault_anon 41273
[ 3252.691885][T25477] workingset_refault_file 0
[ 3252.706830][T25477] swap 479232
[ 3252.710179][T25477] swapcached 12288
[ 3252.737716][T25477] pgpgin 245557
[ 3252.741263][T25477] pgpgout 245554
[ 3252.758226][T25477] pgfault 585923
[ 3252.771344][T25477] pgmajfault 40966
[ 3252.775141][T25477] inactive_anon 12288
[ 3252.806705][T25477] active_anon 0
[ 3252.816399][T25477] inactive_file 0
[ 3252.820187][T25477] active_file 0
[ 3252.844135][T25477] unevictable 0
[ 3252.854303][T25477] hierarchical_memory_limit 314572800
[ 3252.871598][T25477] hierarchical_memsw_limit 9223372036854771712
[ 3252.886639][T25477] total_cache 0
[ 3252.894895][T25477] total_rss 0
[ 3252.916521][T25477] total_rss_huge 0
[ 3252.920596][T25477] total_shmem 0
[ 3252.946509][T25477] total_mapped_file 0
[ 3252.950710][T25477] total_dirty 0
[ 3252.954329][T25477] total_writeback 0
[ 3252.959238][T25477] total_workingset_refault_anon 41273
[ 3252.964795][T25477] total_workingset_refault_file 0
[ 3252.970555][T25477] total_swap 479232
[ 3252.974528][T25477] total_swapcached 12288
[ 3252.980163][T25477] total_pgpgin 245557
[ 3252.984296][T25477] total_pgpgout 245554
[ 3252.989321][T25477] total_pgfault 585923
[ 3252.993541][T25477] total_pgmajfault 40966
[ 3252.998524][T25477] total_inactive_anon 12288
[ 3253.003175][T25477] total_active_anon 0
[ 3253.008108][T25477] total_inactive_file 0
[ 3253.012401][T25477] total_active_file 0
[ 3253.026563][T25477] total_unevictable 0
[ 3253.030753][T25477] anon_cost 0
[ 3253.037087][T25477] file_cost 0
[ 3253.045020][T25477] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=25477,uid=0
[ 3253.089137][T25477] Memory cgroup out of memory: Killed process 25477 (syz-executor.2) total-vm:54344kB, anon-rss:308kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:64kB oom_score_adj:1000
[ 3253.148004][ T5119] syz-executor.0 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[ 3253.191871][ T5119] CPU: 0 PID: 5119 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00250-g137e0ec05aeb #0
[ 3253.202366][ T5119] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3253.212470][ T5119] Call Trace:
[ 3253.215798][ T5119]  <TASK>
[ 3253.218767][ T5119]  dump_stack_lvl+0x1e7/0x2e0
[ 3253.223513][ T5119]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3253.228781][ T5119]  ? __pfx__printk+0x10/0x10
[ 3253.233532][ T5119]  ? ___ratelimit+0x4c4/0x670
[ 3253.238282][ T5119]  ? __pfx____ratelimit+0x10/0x10
[ 3253.243376][ T5119]  dump_header+0xda/0x6a0
[ 3253.247789][ T5119]  oom_kill_process+0x3a7/0x930
[ 3253.252708][ T5119]  out_of_memory+0xf67/0x1320
[ 3253.257455][ T5119]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3253.263148][ T5119]  ? __pfx___mutex_lock+0x10/0x10
[ 3253.268243][ T5119]  ? __pfx_out_of_memory+0x10/0x10
[ 3253.273426][ T5119]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3253.279032][ T5119]  ? __pfx_lock_release+0x10/0x10
[ 3253.284126][ T5119]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3253.290269][ T5119]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3253.295532][ T5119]  ? mem_cgroup_iter+0x3e9/0x560
[ 3253.300544][ T5119]  try_charge_memcg+0xda2/0x18a0
[ 3253.305588][ T5119]  ? mark_lock+0x9a/0x350
[ 3253.310005][ T5119]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3253.315481][ T5119]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 3253.321707][ T5119]  charge_memcg+0xa2/0x160
[ 3253.326191][ T5119]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 3253.332317][ T5119]  __read_swap_cache_async+0x480/0x8b0
[ 3253.337844][ T5119]  ? mark_lock+0x9a/0x350
[ 3253.342243][ T5119]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 3253.348291][ T5119]  swap_cluster_readahead+0x67c/0x810
[ 3253.353752][ T5119]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 3253.359710][ T5119]  ? __pfx_lock_release+0x10/0x10
[ 3253.364788][ T5119]  ? xas_descend+0x37e/0x470
[ 3253.369447][ T5119]  swapin_readahead+0x1ea/0x1070
[ 3253.374452][ T5119]  ? filemap_get_entry+0x127/0x4e0
[ 3253.379650][ T5119]  ? __pfx_swapin_readahead+0x10/0x10
[ 3253.385088][ T5119]  ? __filemap_get_folio+0x935/0xbc0
[ 3253.390445][ T5119]  ? swap_cache_get_folio+0x9f/0x570
[ 3253.395794][ T5119]  do_swap_page+0x791/0x3f40
[ 3253.400448][ T5119]  ? rcu_is_watching+0x15/0xb0
[ 3253.405352][ T5119]  ? do_swap_page+0x154/0x3f40
[ 3253.410272][ T5119]  ? __pfx_do_swap_page+0x10/0x10
[ 3253.415432][ T5119]  ? pte_offset_map_nolock+0x137/0x1f0
[ 3253.420945][ T5119]  ? mark_lock+0x9a/0x350
[ 3253.425333][ T5119]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 3253.431197][ T5119]  ? __pfx_validate_chain+0x10/0x10
[ 3253.437413][ T5119]  __handle_mm_fault+0x15e8/0x72d0
[ 3253.442630][ T5119]  ? __pfx___handle_mm_fault+0x10/0x10
[ 3253.448170][ T5119]  ? mt_find+0x226/0x850
[ 3253.452471][ T5119]  ? __pfx_lock_release+0x10/0x10
[ 3253.457578][ T5119]  ? mt_find+0x62d/0x850
[ 3253.461879][ T5119]  ? mt_find+0x226/0x850
[ 3253.466203][ T5119]  ? find_vma+0x142/0x1c0
[ 3253.470590][ T5119]  ? __pfx_find_vma+0x10/0x10
[ 3253.475313][ T5119]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3253.481353][ T5119]  handle_mm_fault+0x3c1/0x8a0
[ 3253.486190][ T5119]  exc_page_fault+0x2ad/0x870
[ 3253.491022][ T5119]  asm_exc_page_fault+0x26/0x30
[ 3253.495919][ T5119] RIP: 0010:__get_user_8+0x11/0x20
[ 3253.501085][ T5119] Code: ca c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 89 c2 48 c1 fa 3f 48 09 d0 0f 01 cb <48> 8b 10 31 c0 0f 01 ca c3 cc cc cc cc 66 90 90 90 90 90 90 90 90
[ 3253.520837][ T5119] RSP: 0018:ffffc90003b9fd58 EFLAGS: 00050202
[ 3253.526955][ T5119] RAX: 000000005810e8a8 RBX: ffff88801c38d0b8 RCX: ffffc90003b9fc03
[ 3253.534977][ T5119] RDX: 0000000000000000 RSI: ffffffff8baac7e0 RDI: ffffffff8bfe6da0
[ 3253.542992][ T5119] RBP: ffffc90003b9fe98 R08: ffffffff8f856cef R09: 1ffffffff1f0ad9d
[ 3253.551010][ T5119] R10: dffffc0000000000 R11: fffffbfff1f0ad9e R12: ffffc90003b9fd60
[ 3253.559031][ T5119] R13: ffffc90003b9ffd8 R14: dffffc0000000000 R15: ffff88801c38bb80
[ 3253.567077][ T5119]  __rseq_handle_notify_resume+0x158/0x1490
[ 3253.573060][ T5119]  ? __pfx___rseq_handle_notify_resume+0x10/0x10
[ 3253.579475][ T5119]  ? syscall_exit_to_user_mode+0xa2/0x360
[ 3253.585251][ T5119]  syscall_exit_to_user_mode+0x113/0x360
[ 3253.590909][ T5119]  __do_fast_syscall_32+0xcf/0x120
[ 3253.596045][ T5119]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 3253.602323][ T5119]  ? lockdep_hardirqs_on+0x98/0x140
[ 3253.607589][ T5119]  do_fast_syscall_32+0x33/0x70
[ 3253.612477][ T5119]  entry_SYSENTER_compat_after_hwframe+0x7c/0x86
[ 3253.618840][ T5119] RIP: 0023:0xf72e8579
[ 3253.622934][ T5119] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[ 3253.642680][ T5119] RSP: 002b:00000000f7589c80 EFLAGS: 00000206 ORIG_RAX: 000000000000010b
[ 3253.651146][ T5119] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000
[ 3253.659167][ T5119] RDX: 00000000f7589cb4 RSI: 00000000f7589cac RDI: 00000000f7589cb4
[ 3253.667191][ T5119] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 3253.675296][ T5119] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 3253.683402][ T5119] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 3253.691578][ T5119]  </TASK>
[ 3253.722435][ T5119] memory: usage 307200kB, limit 307200kB, failcnt 142199
[ 3253.737643][ T5119] memory+swap: usage 307888kB, limit 9007199254740988kB, failcnt 0
[ 3253.752817][ T5119] kmem: usage 307180kB, limit 9007199254740988kB, failcnt 0
[ 3253.760699][ T5119] Memory cgroup stats for /syz0:
[ 3253.760872][ T5119] cache 0
[ 3253.773982][ T5119] rss 0
[ 3253.777293][ T5119] rss_huge 0
[ 3253.780634][ T5119] shmem 0
[ 3253.783704][ T5119] mapped_file 0
[ 3253.791799][ T5119] dirty 0
[ 3253.794866][ T5119] writeback 0
[ 3253.798891][ T5119] workingset_refault_anon 52761
[ 3253.803869][ T5119] workingset_refault_file 0
[ 3253.814444][ T5119] swap 724992
[ 3253.818339][ T5119] swapcached 0
[ 3253.821860][ T5119] pgpgin 247158
[ 3253.827108][ T5119] pgpgout 247158
[ 3253.830777][ T5119] pgfault 575104
[ 3253.834431][ T5119] pgmajfault 51591
[ 3253.845252][ T5119] inactive_anon 0
[ 3253.849479][ T5119] active_anon 0
[ 3253.853067][ T5119] inactive_file 0
[ 3253.857404][ T5119] active_file 0
[ 3253.860994][ T5119] unevictable 0
[ 3253.864588][ T5119] hierarchical_memory_limit 314572800
[ 3253.875419][ T5119] hierarchical_memsw_limit 9223372036854771712
[ 3253.890623][ T5119] total_cache 0
[ 3253.898843][ T5119] total_rss 0
[ 3253.902299][ T5119] total_rss_huge 0
[ 3253.908406][ T5119] total_shmem 0
[ 3253.915373][ T5119] total_mapped_file 0
[ 3253.920281][ T5119] total_dirty 0
[ 3253.923874][ T5119] total_writeback 0
[ 3253.930033][ T5119] total_workingset_refault_anon 52761
[ 3253.935540][ T5119] total_workingset_refault_file 0
[ 3253.945477][ T5119] total_swap 724992
[ 3253.951215][ T5119] total_swapcached 0
[ 3253.955264][ T5119] total_pgpgin 247158
[ 3253.963423][ T5119] total_pgpgout 247158
[ 3253.969343][ T5119] total_pgfault 575104
[ 3253.973557][ T5119] total_pgmajfault 51591
[ 3253.981942][ T5119] total_inactive_anon 0
[ 3253.987749][ T5119] total_active_anon 0
[ 3253.991880][ T5119] total_inactive_file 0
[ 3253.996143][ T5119] total_active_file 0
[ 3254.002739][ T5119] total_unevictable 0
[ 3254.010924][ T5119] anon_cost 0
[ 3254.014351][ T5119] file_cost 0
06:22:10 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x888, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x858, 0x2, [@TCA_BASIC_POLICE={0x854, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}, @TCA_POLICE_PEAKRATE64={0xc}]}]}}]}, 0x888}}, 0x0)

[ 3254.020168][ T5119] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=25478,uid=0
[ 3254.040558][ T5119] Memory cgroup out of memory: Killed process 25478 (syz-executor.0) total-vm:54344kB, anon-rss:308kB, file-rss:8704kB, shmem-rss:0kB, UID:0 pgtables:64kB oom_score_adj:1000
06:22:10 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x87c, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x84c, 0x2, [@TCA_BASIC_POLICE={0x848, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48080000]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}]}]}}]}, 0x87c}}, 0x0)

[ 3254.345525][ T5123] syz-executor.2 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[ 3254.388684][ T5123] CPU: 0 PID: 5123 Comm: syz-executor.2 Not tainted 6.8.0-rc7-syzkaller-00250-g137e0ec05aeb #0
[ 3254.399084][ T5123] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3254.409188][ T5123] Call Trace:
[ 3254.412614][ T5123]  <TASK>
[ 3254.415656][ T5123]  dump_stack_lvl+0x1e7/0x2e0
[ 3254.420382][ T5123]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3254.425625][ T5123]  ? __pfx__printk+0x10/0x10
[ 3254.430356][ T5123]  ? ___ratelimit+0x4c4/0x670
[ 3254.435094][ T5123]  ? __pfx____ratelimit+0x10/0x10
[ 3254.440170][ T5123]  dump_header+0xda/0x6a0
[ 3254.444551][ T5123]  oom_kill_process+0x3a7/0x930
[ 3254.449454][ T5123]  out_of_memory+0xf67/0x1320
[ 3254.454187][ T5123]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3254.459863][ T5123]  ? __pfx___mutex_lock+0x10/0x10
[ 3254.464942][ T5123]  ? __pfx_out_of_memory+0x10/0x10
[ 3254.470114][ T5123]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3254.475726][ T5123]  ? __pfx_lock_release+0x10/0x10
[ 3254.480806][ T5123]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3254.486939][ T5123]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3254.492187][ T5123]  ? mem_cgroup_iter+0x3e9/0x560
[ 3254.497179][ T5123]  try_charge_memcg+0xda2/0x18a0
[ 3254.502161][ T5123]  ? mark_lock+0x9a/0x350
[ 3254.506557][ T5123]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3254.512009][ T5123]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 3254.518202][ T5123]  charge_memcg+0xa2/0x160
[ 3254.522678][ T5123]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 3254.528837][ T5123]  __read_swap_cache_async+0x480/0x8b0
[ 3254.534352][ T5123]  ? mark_lock+0x9a/0x350
[ 3254.538739][ T5123]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 3254.544868][ T5123]  swap_cluster_readahead+0x67c/0x810
[ 3254.550318][ T5123]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 3254.556290][ T5123]  ? __pfx_lock_release+0x10/0x10
[ 3254.561382][ T5123]  ? xas_descend+0x37e/0x470
[ 3254.566052][ T5123]  swapin_readahead+0x1ea/0x1070
[ 3254.571039][ T5123]  ? filemap_get_entry+0x127/0x4e0
[ 3254.576219][ T5123]  ? __pfx_swapin_readahead+0x10/0x10
[ 3254.581653][ T5123]  ? __filemap_get_folio+0x935/0xbc0
[ 3254.587005][ T5123]  ? swap_cache_get_folio+0x9f/0x570
[ 3254.592355][ T5123]  do_swap_page+0x791/0x3f40
[ 3254.597000][ T5123]  ? rcu_is_watching+0x15/0xb0
[ 3254.601847][ T5123]  ? do_swap_page+0x154/0x3f40
[ 3254.606657][ T5123]  ? __pfx_do_swap_page+0x10/0x10
[ 3254.611735][ T5123]  ? pte_offset_map_nolock+0x137/0x1f0
[ 3254.617280][ T5123]  ? mark_lock+0x9a/0x350
[ 3254.621655][ T5123]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 3254.627514][ T5123]  ? __pfx_validate_chain+0x10/0x10
[ 3254.632763][ T5123]  __handle_mm_fault+0x15e8/0x72d0
[ 3254.637965][ T5123]  ? __pfx___handle_mm_fault+0x10/0x10
[ 3254.643483][ T5123]  ? mt_find+0x226/0x850
[ 3254.647880][ T5123]  ? __pfx_lock_release+0x10/0x10
[ 3254.652989][ T5123]  ? mt_find+0x62d/0x850
[ 3254.657284][ T5123]  ? mt_find+0x226/0x850
[ 3254.661602][ T5123]  ? find_vma+0x142/0x1c0
[ 3254.665980][ T5123]  ? __pfx_find_vma+0x10/0x10
[ 3254.670706][ T5123]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3254.676754][ T5123]  handle_mm_fault+0x3c1/0x8a0
[ 3254.681672][ T5123]  exc_page_fault+0x2ad/0x870
[ 3254.686410][ T5123]  asm_exc_page_fault+0x26/0x30
[ 3254.691432][ T5123] RIP: 0010:__get_user_8+0x11/0x20
[ 3254.696590][ T5123] Code: ca c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 89 c2 48 c1 fa 3f 48 09 d0 0f 01 cb <48> 8b 10 31 c0 0f 01 ca c3 cc cc cc cc 66 90 90 90 90 90 90 90 90
[ 3254.716264][ T5123] RSP: 0018:ffffc90003b4fd58 EFLAGS: 00050202
[ 3254.722385][ T5123] RAX: 00000000575e08a8 RBX: ffff88805c9632f8 RCX: ffffc90003b4fc03
[ 3254.730397][ T5123] RDX: 0000000000000000 RSI: ffffffff8baac7e0 RDI: ffffffff8bfe6da0
[ 3254.738403][ T5123] RBP: ffffc90003b4fe98 R08: ffffffff8f856cef R09: 1ffffffff1f0ad9d
[ 3254.746424][ T5123] R10: dffffc0000000000 R11: fffffbfff1f0ad9e R12: ffffc90003b4fd60
[ 3254.754440][ T5123] R13: ffffc90003b4ffd8 R14: dffffc0000000000 R15: ffff88805c961dc0
[ 3254.762570][ T5123]  __rseq_handle_notify_resume+0x158/0x1490
[ 3254.768524][ T5123]  ? __pfx_hrtimer_wakeup+0x10/0x10
[ 3254.773793][ T5123]  ? __pfx___rseq_handle_notify_resume+0x10/0x10
[ 3254.780184][ T5123]  ? syscall_exit_to_user_mode+0xa2/0x360
[ 3254.785950][ T5123]  syscall_exit_to_user_mode+0x113/0x360
[ 3254.791631][ T5123]  __do_fast_syscall_32+0xcf/0x120
[ 3254.796811][ T5123]  ? exc_page_fault+0x587/0x870
[ 3254.801723][ T5123]  do_fast_syscall_32+0x33/0x70
[ 3254.806756][ T5123]  entry_SYSENTER_compat_after_hwframe+0x7c/0x86
[ 3254.813150][ T5123] RIP: 0023:0xf72ec579
[ 3254.817249][ T5123] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[ 3254.836895][ T5123] RSP: 002b:00000000f758dc80 EFLAGS: 00000206 ORIG_RAX: 000000000000010b
[ 3254.845400][ T5123] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000
[ 3254.853417][ T5123] RDX: 00000000f758dcb4 RSI: 00000000f758dcac RDI: 00000000f758dcb4
[ 3254.861448][ T5123] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 3254.869452][ T5123] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 3254.877469][ T5123] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 3254.885511][ T5123]  </TASK>
[ 3254.912581][ T5123] memory: usage 307200kB, limit 307200kB, failcnt 114423
[ 3254.919784][ T5123] memory+swap: usage 307668kB, limit 9007199254740988kB, failcnt 0
[ 3254.942371][ T5123] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0
[ 3254.949884][ T5123] Memory cgroup stats for /syz2:
[ 3254.950039][ T5123] cache 0
[ 3254.966586][ T5123] rss 0
[ 3254.969423][ T5123] rss_huge 0
[ 3254.972650][ T5123] shmem 0
[ 3254.975607][ T5123] mapped_file 0
[ 3255.007078][ T5123] dirty 0
[ 3255.010186][ T5123] writeback 0
[ 3255.018230][ T5123] workingset_refault_anon 41347
[ 3255.029244][ T5123] workingset_refault_file 0
[ 3255.039296][ T5123] swap 479232
[ 3255.046170][ T5123] swapcached 12288
[ 3255.051835][ T5123] pgpgin 245639
[ 3255.055522][ T5123] pgpgout 245636
[ 3255.066873][ T5123] pgfault 586061
[ 3255.077365][ T5123] pgmajfault 41039
[ 3255.089419][ T5123] inactive_anon 0
[ 3255.100526][ T5123] active_anon 12288
[ 3255.118086][ T5123] inactive_file 0
[ 3255.133830][ T5123] active_file 0
[ 3255.146643][ T5123] unevictable 0
[ 3255.150167][ T5123] hierarchical_memory_limit 314572800
[ 3255.155568][ T5123] hierarchical_memsw_limit 9223372036854771712
[ 3255.166753][ T5123] total_cache 0
[ 3255.170292][ T5123] total_rss 0
[ 3255.173605][ T5123] total_rss_huge 0
[ 3255.178550][ T5123] total_shmem 0
[ 3255.182063][ T5123] total_mapped_file 0
[ 3255.187112][ T5123] total_dirty 0
[ 3255.190647][ T5123] total_writeback 0
[ 3255.194471][ T5123] total_workingset_refault_anon 41347
[ 3255.200839][ T5123] total_workingset_refault_file 0
[ 3255.205944][ T5123] total_swap 479232
[ 3255.210505][ T5123] total_swapcached 12288
[ 3255.214830][ T5123] total_pgpgin 245639
[ 3255.219600][ T5123] total_pgpgout 245636
[ 3255.223706][ T5123] total_pgfault 586061
[ 3255.228402][ T5123] total_pgmajfault 41039
[ 3255.232684][ T5123] total_inactive_anon 0
[ 3255.245847][ T5123] total_active_anon 12288
[ 3255.255282][ T5123] total_inactive_file 0
[ 3255.262456][ T5123] total_active_file 0
[ 3255.269414][T25502] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 3255.269542][ T5123] total_unevictable 0
[ 3255.282172][T25502] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 3255.283316][ T5123] anon_cost 0
[ 3255.293252][T25502] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 3255.295267][ T5123] file_cost 0
[ 3255.305280][T25502] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 3255.309372][ T5123] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=25498,uid=0
[ 3255.332991][ T5123] Memory cgroup out of memory: Killed process 25498 (syz-executor.2) total-vm:54344kB, anon-rss:316kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:64kB oom_score_adj:1000
[ 3255.333242][T25502] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[ 3255.361136][T25502] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 3255.368597][ T5119] syz-executor.0 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[ 3255.383232][ T5119] CPU: 0 PID: 5119 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00250-g137e0ec05aeb #0
[ 3255.393633][ T5119] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3255.403729][ T5119] Call Trace:
[ 3255.407036][ T5119]  <TASK>
[ 3255.409976][ T5119]  dump_stack_lvl+0x1e7/0x2e0
[ 3255.414691][ T5119]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3255.419908][ T5119]  ? __pfx__printk+0x10/0x10
[ 3255.424600][ T5119]  ? ___ratelimit+0x4c4/0x670
[ 3255.429299][ T5119]  ? __pfx____ratelimit+0x10/0x10
[ 3255.434342][ T5119]  dump_header+0xda/0x6a0
[ 3255.438740][ T5119]  oom_kill_process+0x3a7/0x930
[ 3255.443613][ T5119]  out_of_memory+0xf67/0x1320
[ 3255.448308][ T5119]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3255.453963][ T5119]  ? __pfx___mutex_lock+0x10/0x10
[ 3255.459028][ T5119]  ? __pfx_out_of_memory+0x10/0x10
[ 3255.464283][ T5119]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3255.469862][ T5119]  ? __pfx_lock_release+0x10/0x10
[ 3255.474915][ T5119]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3255.481001][ T5119]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3255.486211][ T5119]  ? mem_cgroup_iter+0x3e9/0x560
[ 3255.491188][ T5119]  try_charge_memcg+0xda2/0x18a0
[ 3255.496229][ T5119]  ? mark_lock+0x9a/0x350
[ 3255.500590][ T5119]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3255.506022][ T5119]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 3255.512189][ T5119]  charge_memcg+0xa2/0x160
[ 3255.516629][ T5119]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 3255.522713][ T5119]  __read_swap_cache_async+0x480/0x8b0
[ 3255.528189][ T5119]  ? mark_lock+0x9a/0x350
[ 3255.532535][ T5119]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 3255.538539][ T5119]  swap_cluster_readahead+0x67c/0x810
[ 3255.543938][ T5119]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 3255.549851][ T5119]  ? __pfx_lock_release+0x10/0x10
[ 3255.554894][ T5119]  ? xas_descend+0x37e/0x470
[ 3255.559508][ T5119]  swapin_readahead+0x1ea/0x1070
[ 3255.564548][ T5119]  ? filemap_get_entry+0x127/0x4e0
[ 3255.569691][ T5119]  ? __pfx_swapin_readahead+0x10/0x10
[ 3255.575101][ T5119]  ? __filemap_get_folio+0x935/0xbc0
[ 3255.580408][ T5119]  ? swap_cache_get_folio+0x9f/0x570
[ 3255.585714][ T5119]  do_swap_page+0x791/0x3f40
[ 3255.590329][ T5119]  ? rcu_is_watching+0x15/0xb0
[ 3255.595125][ T5119]  ? do_swap_page+0x154/0x3f40
[ 3255.599992][ T5119]  ? __pfx_do_swap_page+0x10/0x10
[ 3255.605033][ T5119]  ? pte_offset_map_nolock+0x137/0x1f0
[ 3255.610506][ T5119]  ? mark_lock+0x9a/0x350
[ 3255.614845][ T5119]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 3255.620677][ T5119]  ? __pfx_validate_chain+0x10/0x10
[ 3255.625893][ T5119]  __handle_mm_fault+0x15e8/0x72d0
[ 3255.631066][ T5119]  ? __pfx___handle_mm_fault+0x10/0x10
[ 3255.636549][ T5119]  ? mt_find+0x226/0x850
[ 3255.640815][ T5119]  ? __pfx_lock_release+0x10/0x10
[ 3255.645871][ T5119]  ? mt_find+0x62d/0x850
[ 3255.650156][ T5119]  ? mt_find+0x226/0x850
[ 3255.654438][ T5119]  ? find_vma+0x142/0x1c0
[ 3255.658783][ T5119]  ? __pfx_find_vma+0x10/0x10
[ 3255.663479][ T5119]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3255.669483][ T5119]  handle_mm_fault+0x3c1/0x8a0
[ 3255.674361][ T5119]  exc_page_fault+0x2ad/0x870
[ 3255.679063][ T5119]  asm_exc_page_fault+0x26/0x30
[ 3255.683952][ T5119] RIP: 0010:__get_user_8+0x11/0x20
[ 3255.689082][ T5119] Code: ca c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 89 c2 48 c1 fa 3f 48 09 d0 0f 01 cb <48> 8b 10 31 c0 0f 01 ca c3 cc cc cc cc 66 90 90 90 90 90 90 90 90
[ 3255.708803][ T5119] RSP: 0000:ffffc90003b9fd58 EFLAGS: 00050202
[ 3255.714883][ T5119] RAX: 000000005810e8a8 RBX: ffff88801c38d0b8 RCX: ffffc90003b9fc03
[ 3255.722866][ T5119] RDX: 0000000000000000 RSI: ffffffff8baac7e0 RDI: ffffffff8bfe6da0
[ 3255.730866][ T5119] RBP: ffffc90003b9fe98 R08: ffffffff8f856cef R09: 1ffffffff1f0ad9d
[ 3255.738848][ T5119] R10: dffffc0000000000 R11: fffffbfff1f0ad9e R12: ffffc90003b9fd60
[ 3255.749968][ T5119] R13: ffffc90003b9ffd8 R14: dffffc0000000000 R15: ffff88801c38bb80
[ 3255.757966][ T5119]  __rseq_handle_notify_resume+0x158/0x1490
[ 3255.763903][ T5119]  ? __pfx_hrtimer_wakeup+0x10/0x10
[ 3255.769122][ T5119]  ? __pfx___rseq_handle_notify_resume+0x10/0x10
[ 3255.775509][ T5119]  ? syscall_exit_to_user_mode+0xa2/0x360
[ 3255.781441][ T5119]  syscall_exit_to_user_mode+0x113/0x360
[ 3255.787103][ T5119]  __do_fast_syscall_32+0xcf/0x120
[ 3255.792271][ T5119]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 3255.798443][ T5119]  ? lockdep_hardirqs_on+0x98/0x140
[ 3255.803774][ T5119]  do_fast_syscall_32+0x33/0x70
[ 3255.808647][ T5119]  entry_SYSENTER_compat_after_hwframe+0x7c/0x86
[ 3255.815008][ T5119] RIP: 0023:0xf72e8579
[ 3255.819119][ T5119] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[ 3255.838756][ T5119] RSP: 002b:00000000f7589c80 EFLAGS: 00000206 ORIG_RAX: 000000000000010b
[ 3255.847188][ T5119] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000
[ 3255.855169][ T5119] RDX: 00000000f7589cb4 RSI: 00000000f7589cac RDI: 00000000f7589cb4
[ 3255.863150][ T5119] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 3255.871168][ T5119] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 3255.879146][ T5119] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 3255.887147][ T5119]  </TASK>
[ 3255.927457][ T5119] memory: usage 307200kB, limit 307200kB, failcnt 142329
[ 3255.934547][ T5119] memory+swap: usage 307928kB, limit 9007199254740988kB, failcnt 0
06:22:12 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x40, 0x4, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x3a5}}}]}]}}]}, 0x74}}, 0x0)

[ 3255.974772][ T5119] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[ 3256.026576][ T5119] Memory cgroup stats for /syz0:
[ 3256.026732][ T5119] cache 0
[ 3256.034672][ T5119] rss 0
[ 3256.055023][ T5119] rss_huge 0
[ 3256.070880][ T5119] shmem 0
[ 3256.081526][ T5119] mapped_file 0
[ 3256.085048][ T5119] dirty 0
[ 3256.101195][ T5119] writeback 0
[ 3256.107706][ T5119] workingset_refault_anon 52811
[ 3256.112609][ T5119] workingset_refault_file 0
[ 3256.131051][ T5119] swap 745472
[ 3256.134424][ T5119] swapcached 0
[ 3256.141738][ T5119] pgpgin 247218
[ 3256.145274][ T5119] pgpgout 247218
[ 3256.153738][ T5119] pgfault 575194
[ 3256.158336][ T5119] pgmajfault 51638
[ 3256.162381][ T5119] inactive_anon 0
[ 3256.166051][ T5119] active_anon 0
[ 3256.174302][ T5119] inactive_file 0
[ 3256.178624][ T5119] active_file 0
[ 3256.182128][ T5119] unevictable 0
[ 3256.191909][ T5119] hierarchical_memory_limit 314572800
[ 3256.197816][ T5119] hierarchical_memsw_limit 9223372036854771712
[ 3256.204085][ T5119] total_cache 0
[ 3256.212827][ T5119] total_rss 0
[ 3256.216170][ T5119] total_rss_huge 0
[ 3256.224631][ T5119] total_shmem 0
[ 3256.233189][ T5119] total_mapped_file 0
[ 3256.238093][ T5119] total_dirty 0
[ 3256.241602][ T5119] total_writeback 0
[ 3256.245442][ T5119] total_workingset_refault_anon 52811
[ 3256.256087][ T5119] total_workingset_refault_file 0
[ 3256.261676][ T5119] total_swap 745472
[ 3256.265527][ T5119] total_swapcached 0
[ 3256.275301][ T5119] total_pgpgin 247218
[ 3256.279867][ T5119] total_pgpgout 247218
[ 3256.283987][ T5119] total_pgfault 575194
[ 3256.293445][ T5119] total_pgmajfault 51638
[ 3256.311987][ T5119] total_inactive_anon 0
[ 3256.316758][ T5119] total_active_anon 0
[ 3256.320946][ T5119] total_inactive_file 0
[ 3256.325143][ T5119] total_active_file 0
[ 3256.346835][ T5119] total_unevictable 0
[ 3256.350886][ T5119] anon_cost 0
[ 3256.366497][ T5119] file_cost 0
[ 3256.369857][ T5119] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=25499,uid=0
[ 3256.455487][ T5119] Memory cgroup out of memory: Killed process 25499 (syz-executor.0) total-vm:54344kB, anon-rss:316kB, file-rss:8704kB, shmem-rss:0kB, UID:0 pgtables:64kB oom_score_adj:1000
[ 3256.526699][ T5124] syz-executor.3 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[ 3256.553291][ T5124] CPU: 1 PID: 5124 Comm: syz-executor.3 Not tainted 6.8.0-rc7-syzkaller-00250-g137e0ec05aeb #0
[ 3256.563689][ T5124] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3256.573761][ T5124] Call Trace:
[ 3256.577051][ T5124]  <TASK>
[ 3256.580012][ T5124]  dump_stack_lvl+0x1e7/0x2e0
[ 3256.584750][ T5124]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3256.589976][ T5124]  ? __pfx__printk+0x10/0x10
[ 3256.594600][ T5124]  ? ___ratelimit+0x4c4/0x670
[ 3256.599298][ T5124]  ? __pfx____ratelimit+0x10/0x10
[ 3256.604342][ T5124]  dump_header+0xda/0x6a0
[ 3256.608703][ T5124]  oom_kill_process+0x3a7/0x930
[ 3256.613605][ T5124]  out_of_memory+0xf67/0x1320
[ 3256.618301][ T5124]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3256.623950][ T5124]  ? __pfx___mutex_lock+0x10/0x10
[ 3256.628992][ T5124]  ? __pfx_out_of_memory+0x10/0x10
[ 3256.634125][ T5124]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3256.639684][ T5124]  ? __pfx_lock_release+0x10/0x10
[ 3256.644739][ T5124]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3256.650823][ T5124]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3256.656035][ T5124]  ? mem_cgroup_iter+0x422/0x560
[ 3256.660989][ T5124]  try_charge_memcg+0xda2/0x18a0
[ 3256.665942][ T5124]  ? mark_lock+0x9a/0x350
[ 3256.670305][ T5124]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3256.675709][ T5124]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 3256.681912][ T5124]  charge_memcg+0xa2/0x160
[ 3256.686355][ T5124]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 3256.692462][ T5124]  __read_swap_cache_async+0x480/0x8b0
[ 3256.697962][ T5124]  ? mark_lock+0x9a/0x350
[ 3256.702315][ T5124]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 3256.708323][ T5124]  ? blk_start_plug+0x6f/0x1b0
[ 3256.713104][ T5124]  swap_cluster_readahead+0x398/0x810
[ 3256.718510][ T5124]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 3256.724424][ T5124]  ? __pfx_lock_release+0x10/0x10
[ 3256.729466][ T5124]  ? xas_descend+0x37e/0x470
[ 3256.734101][ T5124]  swapin_readahead+0x1ea/0x1070
[ 3256.739058][ T5124]  ? filemap_get_entry+0x127/0x4e0
[ 3256.744202][ T5124]  ? __pfx_swapin_readahead+0x10/0x10
[ 3256.749598][ T5124]  ? __filemap_get_folio+0x935/0xbc0
[ 3256.754902][ T5124]  ? swap_cache_get_folio+0x9f/0x570
[ 3256.760207][ T5124]  do_swap_page+0x791/0x3f40
[ 3256.764860][ T5124]  ? rcu_is_watching+0x15/0xb0
[ 3256.769686][ T5124]  ? do_swap_page+0x154/0x3f40
[ 3256.774473][ T5124]  ? __pfx_do_swap_page+0x10/0x10
[ 3256.779512][ T5124]  ? pte_offset_map_nolock+0x137/0x1f0
[ 3256.784983][ T5124]  ? mark_lock+0x9a/0x350
[ 3256.789357][ T5124]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 3256.795184][ T5124]  ? __pfx_validate_chain+0x10/0x10
[ 3256.800403][ T5124]  __handle_mm_fault+0x15e8/0x72d0
[ 3256.805561][ T5124]  ? __pfx___handle_mm_fault+0x10/0x10
[ 3256.811042][ T5124]  ? mt_find+0x226/0x850
[ 3256.815305][ T5124]  ? __pfx_lock_release+0x10/0x10
[ 3256.820372][ T5124]  ? mt_find+0x62d/0x850
[ 3256.824638][ T5124]  ? mt_find+0x226/0x850
[ 3256.828938][ T5124]  ? find_vma+0x142/0x1c0
[ 3256.833285][ T5124]  ? __pfx_find_vma+0x10/0x10
[ 3256.837996][ T5124]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3256.844030][ T5124]  handle_mm_fault+0x3c1/0x8a0
[ 3256.848836][ T5124]  exc_page_fault+0x2ad/0x870
[ 3256.853537][ T5124]  asm_exc_page_fault+0x26/0x30
[ 3256.858395][ T5124] RIP: 0010:__get_user_8+0x11/0x20
[ 3256.863536][ T5124] Code: ca c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 89 c2 48 c1 fa 3f 48 09 d0 0f 01 cb <48> 8b 10 31 c0 0f 01 ca c3 cc cc cc cc 66 90 90 90 90 90 90 90 90
[ 3256.883156][ T5124] RSP: 0018:ffffc90003bbfd58 EFLAGS: 00050202
[ 3256.889249][ T5124] RAX: 00000000566b38a8 RBX: ffff88801f9c9538 RCX: ffffc90003bbfc03
[ 3256.897405][ T5124] RDX: 0000000000000000 RSI: ffffffff8baac7e0 RDI: ffffffff8bfe6da0
[ 3256.905415][ T5124] RBP: ffffc90003bbfe98 R08: ffffffff8f856cef R09: 1ffffffff1f0ad9d
[ 3256.913427][ T5124] R10: dffffc0000000000 R11: fffffbfff1f0ad9e R12: ffffc90003bbfd60
[ 3256.921422][ T5124] R13: ffffc90003bbffd8 R14: dffffc0000000000 R15: ffff88801f9c8000
[ 3256.929445][ T5124]  __rseq_handle_notify_resume+0x158/0x1490
[ 3256.935363][ T5124]  ? __pfx_hrtimer_wakeup+0x10/0x10
[ 3256.940588][ T5124]  ? __pfx___rseq_handle_notify_resume+0x10/0x10
[ 3256.946952][ T5124]  ? syscall_exit_to_user_mode+0xa2/0x360
[ 3256.952728][ T5124]  syscall_exit_to_user_mode+0x113/0x360
[ 3256.958407][ T5124]  __do_fast_syscall_32+0xcf/0x120
[ 3256.963549][ T5124]  ? exc_page_fault+0x587/0x870
[ 3256.968450][ T5124]  do_fast_syscall_32+0x33/0x70
[ 3256.973341][ T5124]  entry_SYSENTER_compat_after_hwframe+0x7c/0x86
[ 3256.979693][ T5124] RIP: 0023:0xf734e579
[ 3256.983775][ T5124] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[ 3257.003403][ T5124] RSP: 002b:00000000f75efc80 EFLAGS: 00000206 ORIG_RAX: 000000000000010b
[ 3257.011833][ T5124] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000
[ 3257.019815][ T5124] RDX: 00000000f75efcb4 RSI: 00000000f75efcac RDI: 00000000f75efcb4
[ 3257.027791][ T5124] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 3257.035833][ T5124] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 3257.043840][ T5124] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 3257.051842][ T5124]  </TASK>
[ 3257.092488][ T5124] memory: usage 307200kB, limit 307200kB, failcnt 171377
[ 3257.100376][ T5124] memory+swap: usage 307796kB, limit 9007199254740988kB, failcnt 0
[ 3257.112676][ T5124] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[ 3257.131042][ T5124] Memory cgroup stats for /syz3:
[ 3257.131214][ T5124] cache 0
[ 3257.139835][ T5124] rss 0
06:22:13 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x87c, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x84c, 0x2, [@TCA_BASIC_POLICE={0x848, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81000000]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}]}]}}]}, 0x87c}}, 0x0)

[ 3257.142660][ T5124] rss_huge 0
[ 3257.145900][ T5124] shmem 0
[ 3257.150784][ T5124] mapped_file 0
[ 3257.154406][ T5124] dirty 0
[ 3257.158302][ T5124] writeback 0
[ 3257.161777][ T5124] workingset_refault_anon 69000
[ 3257.167860][ T5124] workingset_refault_file 0
[ 3257.172415][ T5124] swap 610304
[ 3257.175740][ T5124] swapcached 0
[ 3257.180071][ T5124] pgpgin 271709
[ 3257.183589][ T5124] pgpgout 271709
[ 3257.188682][ T5124] pgfault 635818
[ 3257.192271][ T5124] pgmajfault 68256
[ 3257.196018][ T5124] inactive_anon 0
[ 3257.200588][ T5124] active_anon 0
[ 3257.204089][ T5124] inactive_file 0
[ 3257.208429][ T5124] active_file 0
[ 3257.211938][ T5124] unevictable 0
[ 3257.215487][ T5124] hierarchical_memory_limit 314572800
[ 3257.221734][ T5124] hierarchical_memsw_limit 9223372036854771712
[ 3257.228463][ T5124] total_cache 0
[ 3257.231973][ T5124] total_rss 0
[ 3257.235330][ T5124] total_rss_huge 0
[ 3257.269095][ T5124] total_shmem 0
[ 3257.277464][ T5124] total_mapped_file 0
[ 3257.281522][ T5124] total_dirty 0
[ 3257.285106][ T5124] total_writeback 0
[ 3257.300745][ T5124] total_workingset_refault_anon 69000
[ 3257.325757][ T5124] total_workingset_refault_file 0
[ 3257.338358][ T5124] total_swap 610304
[ 3257.347744][ T5124] total_swapcached 0
[ 3257.363638][ T5124] total_pgpgin 271709
[ 3257.388242][ T5124] total_pgpgout 271709
[ 3257.392482][ T5124] total_pgfault 635818
[ 3257.421956][ T5124] total_pgmajfault 68256
[ 3257.440062][ T5124] total_inactive_anon 0
[ 3257.444315][ T5124] total_active_anon 0
[ 3257.457078][ T5124] total_inactive_file 0
[ 3257.461307][ T5124] total_active_file 0
[ 3257.469157][ T5124] total_unevictable 0
[ 3257.473232][ T5124] anon_cost 0
[ 3257.478919][ T5124] file_cost 0
06:22:14 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x888, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x858, 0x2, [@TCA_BASIC_POLICE={0x854, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}, @TCA_POLICE_PEAKRATE64={0xc}]}]}}]}, 0x888}}, 0x0)

06:22:14 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x888, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x858, 0x2, [@TCA_BASIC_POLICE={0x854, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9000000]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}, @TCA_POLICE_PEAKRATE64={0xc}]}]}}]}, 0x888}}, 0x0)

[ 3257.482263][ T5124] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=25479,uid=0
[ 3257.500230][ T5124] Memory cgroup out of memory: Killed process 25479 (syz-executor.3) total-vm:54476kB, anon-rss:316kB, file-rss:8960kB, shmem-rss:0kB, UID:0 pgtables:64kB oom_score_adj:1000
[ 3257.596596][T25513] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3257.625672][T25513] CPU: 1 PID: 25513 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00250-g137e0ec05aeb #0
[ 3257.636168][T25513] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3257.646278][T25513] Call Trace:
[ 3257.649604][T25513]  <TASK>
[ 3257.652579][T25513]  dump_stack_lvl+0x1e7/0x2e0
[ 3257.657325][T25513]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3257.662587][T25513]  ? __pfx__printk+0x10/0x10
[ 3257.667234][T25513]  ? ___ratelimit+0x4c4/0x670
[ 3257.671977][T25513]  ? __pfx____ratelimit+0x10/0x10
[ 3257.677063][T25513]  dump_header+0xda/0x6a0
[ 3257.681458][T25513]  oom_kill_process+0x3a7/0x930
[ 3257.686371][T25513]  out_of_memory+0xf67/0x1320
[ 3257.691128][T25513]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3257.696819][T25513]  ? __pfx___mutex_lock+0x10/0x10
[ 3257.701901][T25513]  ? __pfx_out_of_memory+0x10/0x10
[ 3257.707084][T25513]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3257.712699][T25513]  ? __pfx_lock_release+0x10/0x10
[ 3257.717804][T25513]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3257.723940][T25513]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3257.729208][T25513]  ? mem_cgroup_iter+0x3e9/0x560
[ 3257.734215][T25513]  try_charge_memcg+0xda2/0x18a0
[ 3257.739238][T25513]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3257.744666][T25513]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3257.750447][T25513]  ? __pfx_lock_release+0x10/0x10
[ 3257.755544][T25513]  ? memcg_account_kmem+0x1e7/0x210
[ 3257.760819][T25513]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3257.766686][T25513]  __memcg_kmem_charge_page+0xe1/0x250
[ 3257.772311][T25513]  memcg_charge_kernel_stack+0x37e/0x550
[ 3257.778009][T25513]  dup_task_struct+0x40d/0x7d0
[ 3257.782838][T25513]  copy_process+0x5d5/0x3fc0
[ 3257.787511][T25513]  ? __might_fault+0xa9/0x120
[ 3257.792245][T25513]  ? __pfx_lock_release+0x10/0x10
[ 3257.797336][T25513]  ? __pfx_copy_process+0x10/0x10
[ 3257.802435][T25513]  ? __might_fault+0xc5/0x120
[ 3257.807263][T25513]  ? __asan_memset+0x23/0x50
[ 3257.811921][T25513]  kernel_clone+0x21d/0x8d0
[ 3257.816487][T25513]  ? __pfx_kernel_clone+0x10/0x10
[ 3257.821579][T25513]  ? __pfx___might_resched+0x10/0x10
[ 3257.826924][T25513]  __se_sys_clone3+0x2cb/0x350
[ 3257.831745][T25513]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3257.837132][T25513]  ? int80_emulation+0xea/0x210
[ 3257.842053][T25513]  int80_emulation+0x129/0x210
[ 3257.846888][T25513]  asm_int80_emulation+0x1a/0x20
[ 3257.851875][T25513] RIP: 0023:0xf7372060
[ 3257.855990][T25513] Code: 4c 24 04 85 c9 0f 84 df 0d fe ff 8b 54 24 0c 85 d2 0f 84 d3 0d fe ff 53 56 8b 74 24 18 89 cb 8b 4c 24 10 b8 b3 01 00 00 cd 80 <85> c0 74 09 5e 5b 0f 8c b4 0d fe ff c3 31 ed 83 e4 f0 83 ec 0c 56
[ 3257.875670][T25513] RSP: 002b:00000000f75898e4 EFLAGS: 00000282 ORIG_RAX: 00000000000001b3
[ 3257.884204][T25513] RAX: ffffffffffffffda RBX: 00000000f7589950 RCX: 0000000000000058
[ 3257.892232][T25513] RDX: 00000000f7322eb0 RSI: 00000000f5ee2b40 RDI: 00000000ffffffd8
[ 3257.900253][T25513] RBP: 000000000000000b R08: 0000000000000000 R09: 0000000000000000
[ 3257.908271][T25513] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 3257.916293][T25513] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 3257.924339][T25513]  </TASK>
[ 3257.942116][T25513] memory: usage 307200kB, limit 307200kB, failcnt 142495
[ 3257.954321][T25513] memory+swap: usage 307908kB, limit 9007199254740988kB, failcnt 0
[ 3257.963003][T25513] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[ 3257.975052][T25513] Memory cgroup stats for /syz0:
[ 3257.975210][T25513] cache 0
[ 3257.980390][ T5108] Bluetooth: hci0: command 0x0409 tx timeout
[ 3257.983429][T25513] rss 28672
[ 3258.032786][T25513] rss_huge 0
[ 3258.036052][T25513] shmem 0
[ 3258.066428][T25513] mapped_file 0
[ 3258.069974][T25513] dirty 0
[ 3258.072949][T25513] writeback 0
[ 3258.076274][T25513] workingset_refault_anon 52864
[ 3258.111794][T25513] workingset_refault_file 0
[ 3258.145105][T25513] swap 716800
[ 3258.156372][T25513] swapcached 32768
[ 3258.160160][T25513] pgpgin 247279
[ 3258.163657][T25513] pgpgout 247271
[ 3258.187868][T25513] pgfault 575287
[ 3258.193908][T25513] pgmajfault 51681
[ 3258.216608][T25513] inactive_anon 0
[ 3258.220309][T25513] active_anon 12288
[ 3258.224158][T25513] inactive_file 0
[ 3258.240557][T25513] active_file 0
[ 3258.244092][T25513] unevictable 0
[ 3258.252914][T25513] hierarchical_memory_limit 314572800
[ 3258.268784][T25513] hierarchical_memsw_limit 9223372036854771712
[ 3258.275014][T25513] total_cache 0
[ 3258.280294][T25513] total_rss 28672
[ 3258.284512][T25513] total_rss_huge 0
[ 3258.299652][T25513] total_shmem 0
[ 3258.303187][T25513] total_mapped_file 0
[ 3258.317435][T25513] total_dirty 0
[ 3258.320966][T25513] total_writeback 0
[ 3258.324804][T25513] total_workingset_refault_anon 52864
[ 3258.346443][T25513] total_workingset_refault_file 0
[ 3258.351541][T25513] total_swap 716800
[ 3258.355388][T25513] total_swapcached 32768
[ 3258.370370][T25513] total_pgpgin 247279
[ 3258.374422][T25513] total_pgpgout 247271
[ 3258.391737][T25513] total_pgfault 575287
[ 3258.395875][T25513] total_pgmajfault 51681
[ 3258.407145][T25513] total_inactive_anon 0
[ 3258.411387][T25513] total_active_anon 12288
[ 3258.416052][T25513] total_inactive_file 0
[ 3258.420689][T25513] total_active_file 0
[ 3258.429078][T25513] total_unevictable 0
[ 3258.433124][T25513] anon_cost 0
[ 3258.445596][T25513] file_cost 0
[ 3258.449275][T25513] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=25513,uid=0
[ 3258.466946][T25513] Memory cgroup out of memory: Killed process 25513 (syz-executor.0) total-vm:54344kB, anon-rss:308kB, file-rss:8704kB, shmem-rss:0kB, UID:0 pgtables:64kB oom_score_adj:1000
06:22:15 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x87c, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x84c, 0x2, [@TCA_BASIC_POLICE={0x848, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xae2da4c7]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}]}]}}]}, 0x87c}}, 0x0)

[ 3258.548237][ T5123] syz-executor.2 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[ 3258.589890][ T5123] CPU: 0 PID: 5123 Comm: syz-executor.2 Not tainted 6.8.0-rc7-syzkaller-00250-g137e0ec05aeb #0
[ 3258.600304][ T5123] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3258.610405][ T5123] Call Trace:
[ 3258.613724][ T5123]  <TASK>
[ 3258.616697][ T5123]  dump_stack_lvl+0x1e7/0x2e0
[ 3258.621440][ T5123]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3258.626722][ T5123]  ? __pfx__printk+0x10/0x10
[ 3258.631379][ T5123]  ? ___ratelimit+0x4c4/0x670
[ 3258.636125][ T5123]  ? __pfx____ratelimit+0x10/0x10
[ 3258.641222][ T5123]  dump_header+0xda/0x6a0
[ 3258.645645][ T5123]  oom_kill_process+0x3a7/0x930
[ 3258.650560][ T5123]  out_of_memory+0xf67/0x1320
[ 3258.655274][ T5123]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3258.660920][ T5123]  ? __pfx___mutex_lock+0x10/0x10
[ 3258.665957][ T5123]  ? __pfx_out_of_memory+0x10/0x10
[ 3258.671094][ T5123]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3258.676662][ T5123]  ? __pfx_lock_release+0x10/0x10
[ 3258.681707][ T5123]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3258.687794][ T5123]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3258.693025][ T5123]  ? mem_cgroup_iter+0x3e9/0x560
[ 3258.697983][ T5123]  try_charge_memcg+0xda2/0x18a0
[ 3258.702938][ T5123]  ? mark_lock+0x9a/0x350
[ 3258.707301][ T5123]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3258.712713][ T5123]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 3258.718882][ T5123]  charge_memcg+0xa2/0x160
[ 3258.723324][ T5123]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 3258.729416][ T5123]  __read_swap_cache_async+0x480/0x8b0
[ 3258.734913][ T5123]  ? mark_lock+0x9a/0x350
[ 3258.739266][ T5123]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 3258.745270][ T5123]  swap_cluster_readahead+0x67c/0x810
[ 3258.750667][ T5123]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 3258.756582][ T5123]  ? __pfx_lock_release+0x10/0x10
[ 3258.761623][ T5123]  ? xas_descend+0x37e/0x470
[ 3258.766245][ T5123]  swapin_readahead+0x1ea/0x1070
[ 3258.771203][ T5123]  ? filemap_get_entry+0x127/0x4e0
[ 3258.776376][ T5123]  ? __pfx_swapin_readahead+0x10/0x10
[ 3258.781788][ T5123]  ? __filemap_get_folio+0x935/0xbc0
[ 3258.787096][ T5123]  ? swap_cache_get_folio+0x9f/0x570
[ 3258.792413][ T5123]  do_swap_page+0x791/0x3f40
[ 3258.797020][ T5123]  ? rcu_is_watching+0x15/0xb0
[ 3258.801814][ T5123]  ? do_swap_page+0x154/0x3f40
[ 3258.806590][ T5123]  ? __pfx_do_swap_page+0x10/0x10
[ 3258.811627][ T5123]  ? pte_offset_map_nolock+0x137/0x1f0
[ 3258.817112][ T5123]  ? mark_lock+0x9a/0x350
[ 3258.821452][ T5123]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 3258.827276][ T5123]  ? __pfx_validate_chain+0x10/0x10
[ 3258.832493][ T5123]  __handle_mm_fault+0x15e8/0x72d0
[ 3258.837649][ T5123]  ? __pfx___handle_mm_fault+0x10/0x10
[ 3258.843134][ T5123]  ? mt_find+0x226/0x850
[ 3258.847398][ T5123]  ? __pfx_lock_release+0x10/0x10
[ 3258.852458][ T5123]  ? mt_find+0x62d/0x850
[ 3258.856723][ T5123]  ? mt_find+0x226/0x850
[ 3258.861017][ T5123]  ? find_vma+0x142/0x1c0
[ 3258.865357][ T5123]  ? __pfx_find_vma+0x10/0x10
[ 3258.870043][ T5123]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3258.876061][ T5123]  handle_mm_fault+0x3c1/0x8a0
[ 3258.880857][ T5123]  exc_page_fault+0x2ad/0x870
[ 3258.885557][ T5123]  asm_exc_page_fault+0x26/0x30
[ 3258.890504][ T5123] RIP: 0010:__get_user_8+0x11/0x20
[ 3258.895628][ T5123] Code: ca c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 89 c2 48 c1 fa 3f 48 09 d0 0f 01 cb <48> 8b 10 31 c0 0f 01 ca c3 cc cc cc cc 66 90 90 90 90 90 90 90 90
[ 3258.915250][ T5123] RSP: 0000:ffffc90003b4fd58 EFLAGS: 00050202
[ 3258.921334][ T5123] RAX: 00000000575e08a8 RBX: ffff88805c9632f8 RCX: ffffc90003b4fc03
[ 3258.929317][ T5123] RDX: 0000000000000000 RSI: ffffffff8baac7e0 RDI: ffffffff8bfe6da0
[ 3258.937297][ T5123] RBP: ffffc90003b4fe98 R08: ffffffff8f856cef R09: 1ffffffff1f0ad9d
[ 3258.945279][ T5123] R10: dffffc0000000000 R11: fffffbfff1f0ad9e R12: ffffc90003b4fd60
[ 3258.953272][ T5123] R13: ffffc90003b4ffd8 R14: dffffc0000000000 R15: ffff88805c961dc0
[ 3258.961270][ T5123]  __rseq_handle_notify_resume+0x158/0x1490
[ 3258.967194][ T5123]  ? __pfx_hrtimer_wakeup+0x10/0x10
[ 3258.972421][ T5123]  ? __pfx___rseq_handle_notify_resume+0x10/0x10
[ 3258.978780][ T5123]  ? syscall_exit_to_user_mode+0xa2/0x360
[ 3258.984528][ T5123]  syscall_exit_to_user_mode+0x113/0x360
[ 3258.990182][ T5123]  __do_fast_syscall_32+0xcf/0x120
[ 3258.995319][ T5123]  ? exc_page_fault+0x587/0x870
[ 3259.000189][ T5123]  do_fast_syscall_32+0x33/0x70
[ 3259.005068][ T5123]  entry_SYSENTER_compat_after_hwframe+0x7c/0x86
[ 3259.011407][ T5123] RIP: 0023:0xf72ec579
[ 3259.015481][ T5123] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[ 3259.035113][ T5123] RSP: 002b:00000000f758dc80 EFLAGS: 00000206 ORIG_RAX: 000000000000010b
[ 3259.043542][ T5123] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000
[ 3259.051522][ T5123] RDX: 00000000f758dcb4 RSI: 00000000f758dcac RDI: 00000000f758dcb4
[ 3259.059503][ T5123] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 3259.067483][ T5123] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 3259.075460][ T5123] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 3259.083457][ T5123]  </TASK>
[ 3259.126783][ T5123] memory: usage 307200kB, limit 307200kB, failcnt 114811
[ 3259.133918][ T5123] memory+swap: usage 307668kB, limit 9007199254740988kB, failcnt 0
[ 3259.142007][ T5123] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0
[ 3259.149546][ T5123] Memory cgroup stats for /syz2:
[ 3259.149898][ T5123] cache 0
[ 3259.158054][ T5123] rss 0
[ 3259.160957][ T5123] rss_huge 0
[ 3259.164315][ T5123] shmem 0
[ 3259.167457][ T5123] mapped_file 0
[ 3259.171061][ T5123] dirty 0
[ 3259.174472][ T5123] writeback 0
[ 3259.178452][ T5123] workingset_refault_anon 41443
[ 3259.183452][ T5123] workingset_refault_file 0
[ 3259.188142][ T5123] swap 479232
[ 3259.191456][ T5123] swapcached 12288
[ 3259.195195][ T5123] pgpgin 245746
[ 3259.199667][ T5123] pgpgout 245743
[ 3259.203273][ T5123] pgfault 586229
[ 3259.207106][ T5123] pgmajfault 41129
[ 3259.211234][ T5123] inactive_anon 0
[ 3259.214916][ T5123] active_anon 12288
[ 3259.219169][ T5123] inactive_file 0
[ 3259.222844][ T5123] active_file 0
[ 3259.226494][ T5123] unevictable 0
[ 3259.229986][ T5123] hierarchical_memory_limit 314572800
[ 3259.235396][ T5123] hierarchical_memsw_limit 9223372036854771712
[ 3259.241723][ T5123] total_cache 0
[ 3259.245223][ T5123] total_rss 0
[ 3259.248659][ T5123] total_rss_huge 0
[ 3259.252427][ T5123] total_shmem 0
[ 3259.256021][ T5123] total_mapped_file 0
[ 3259.260566][ T5123] total_dirty 0
[ 3259.264077][ T5123] total_writeback 0
[ 3259.268141][ T5123] total_workingset_refault_anon 41443
[ 3259.273559][ T5123] total_workingset_refault_file 0
[ 3259.294648][ T5123] total_swap 479232
[ 3259.317424][ T5123] total_swapcached 12288
[ 3259.327378][ T5123] total_pgpgin 245746
[ 3259.352804][ T5123] total_pgpgout 245743
[ 3259.360532][ T5123] total_pgfault 586229
[ 3259.374416][ T5123] total_pgmajfault 41129
[ 3259.382230][ T5123] total_inactive_anon 0
[ 3259.396494][ T5123] total_active_anon 12288
[ 3259.400916][ T5123] total_inactive_file 0
[ 3259.410144][ T5123] total_active_file 0
[ 3259.414196][ T5123] total_unevictable 0
[ 3259.425745][ T5123] anon_cost 0
[ 3259.437657][ T5123] file_cost 0
[ 3259.441016][ T5123] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=25520,uid=0
[ 3259.473891][ T5123] Memory cgroup out of memory: Killed process 25520 (syz-executor.2) total-vm:54344kB, anon-rss:304kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:64kB oom_score_adj:1000
06:22:16 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x888, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x858, 0x2, [@TCA_BASIC_POLICE={0x854, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}, @TCA_POLICE_PEAKRATE64={0xc}]}]}}]}, 0x888}}, 0x0)

[ 3259.561160][T25527] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3259.628611][T25527] CPU: 1 PID: 25527 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00250-g137e0ec05aeb #0
[ 3259.639095][T25527] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3259.649198][T25527] Call Trace:
[ 3259.652523][T25527]  <TASK>
[ 3259.655497][T25527]  dump_stack_lvl+0x1e7/0x2e0
[ 3259.660255][T25527]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3259.665516][T25527]  ? __pfx__printk+0x10/0x10
[ 3259.670147][T25527]  ? ___ratelimit+0x4c4/0x670
[ 3259.674850][T25527]  ? __pfx____ratelimit+0x10/0x10
[ 3259.679895][T25527]  dump_header+0xda/0x6a0
[ 3259.684253][T25527]  oom_kill_process+0x3a7/0x930
[ 3259.689125][T25527]  out_of_memory+0xf67/0x1320
[ 3259.693833][T25527]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3259.699509][T25527]  ? __pfx___mutex_lock+0x10/0x10
[ 3259.704558][T25527]  ? __pfx_out_of_memory+0x10/0x10
[ 3259.709693][T25527]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3259.715289][T25527]  ? __pfx_lock_release+0x10/0x10
[ 3259.720334][T25527]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3259.726431][T25527]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3259.731646][T25527]  ? mem_cgroup_iter+0x3e9/0x560
[ 3259.736603][T25527]  try_charge_memcg+0xda2/0x18a0
[ 3259.741590][T25527]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3259.746979][T25527]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3259.752718][T25527]  ? __pfx_lock_release+0x10/0x10
[ 3259.757763][T25527]  ? memcg_account_kmem+0x1e7/0x210
[ 3259.762986][T25527]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3259.768811][T25527]  __memcg_kmem_charge_page+0xe1/0x250
[ 3259.774292][T25527]  memcg_charge_kernel_stack+0x210/0x550
[ 3259.779943][T25527]  dup_task_struct+0x40d/0x7d0
[ 3259.784739][T25527]  copy_process+0x5d5/0x3fc0
[ 3259.789354][T25527]  ? __might_fault+0xa9/0x120
[ 3259.794046][T25527]  ? __pfx_lock_release+0x10/0x10
[ 3259.799092][T25527]  ? __pfx_copy_process+0x10/0x10
[ 3259.804140][T25527]  ? __might_fault+0xc5/0x120
[ 3259.808834][T25527]  ? __asan_memset+0x23/0x50
[ 3259.813465][T25527]  kernel_clone+0x21d/0x8d0
[ 3259.817995][T25527]  ? __pfx_kernel_clone+0x10/0x10
[ 3259.823045][T25527]  ? __pfx___might_resched+0x10/0x10
[ 3259.828349][T25527]  __se_sys_clone3+0x2cb/0x350
[ 3259.833135][T25527]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3259.838463][T25527]  ? int80_emulation+0xea/0x210
[ 3259.843352][T25527]  int80_emulation+0x129/0x210
[ 3259.848142][T25527]  asm_int80_emulation+0x1a/0x20
[ 3259.853091][T25527] RIP: 0023:0xf7372060
[ 3259.857173][T25527] Code: 4c 24 04 85 c9 0f 84 df 0d fe ff 8b 54 24 0c 85 d2 0f 84 d3 0d fe ff 53 56 8b 74 24 18 89 cb 8b 4c 24 10 b8 b3 01 00 00 cd 80 <85> c0 74 09 5e 5b 0f 8c b4 0d fe ff c3 31 ed 83 e4 f0 83 ec 0c 56
[ 3259.876793][T25527] RSP: 002b:00000000f75898e4 EFLAGS: 00000282 ORIG_RAX: 00000000000001b3
[ 3259.885225][T25527] RAX: ffffffffffffffda RBX: 00000000f7589950 RCX: 0000000000000058
[ 3259.893218][T25527] RDX: 00000000f7322eb0 RSI: 00000000f5ee2b40 RDI: 00000000ffffffd8
[ 3259.901215][T25527] RBP: 000000000000000b R08: 0000000000000000 R09: 0000000000000000
[ 3259.909224][T25527] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 3259.917203][T25527] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 3259.925201][T25527]  </TASK>
[ 3260.114526][T25527] memory: usage 307200kB, limit 307200kB, failcnt 142740
[ 3260.122908][ T5108] Bluetooth: hci0: command 0x041b tx timeout
[ 3260.146957][T25527] memory+swap: usage 307896kB, limit 9007199254740988kB, failcnt 0
[ 3260.154921][T25527] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0
[ 3260.164586][T25527] Memory cgroup stats for /syz0:
[ 3260.164742][T25527] cache 0
[ 3260.173376][T25527] rss 12288
[ 3260.177712][T25527] rss_huge 0
[ 3260.181064][T25527] shmem 0
[ 3260.184124][T25527] mapped_file 0
[ 3260.188044][T25527] dirty 0
[ 3260.191382][T25527] writeback 0
[ 3260.194803][T25527] workingset_refault_anon 52939
[ 3260.199862][T25527] workingset_refault_file 0
[ 3260.204769][T25527] swap 741376
[ 3260.208340][T25527] swapcached 12288
[ 3260.212203][T25527] pgpgin 247362
[ 3260.215797][T25527] pgpgout 247359
[ 3260.219921][T25527] pgfault 575427
[ 3260.223627][T25527] pgmajfault 51748
[ 3260.227619][T25527] inactive_anon 8192
[ 3260.231611][T25527] active_anon 4096
[ 3260.235427][T25527] inactive_file 0
[ 3260.239255][T25527] active_file 0
[ 3260.242849][T25527] unevictable 0
[ 3260.246887][T25527] hierarchical_memory_limit 314572800
[ 3260.252404][T25527] hierarchical_memsw_limit 9223372036854771712
[ 3260.258815][T25527] total_cache 0
[ 3260.262418][T25527] total_rss 12288
[ 3260.266164][T25527] total_rss_huge 0
[ 3260.270766][T25527] total_shmem 0
[ 3260.274379][T25527] total_mapped_file 0
[ 3260.279132][T25527] total_dirty 0
[ 3260.282747][T25527] total_writeback 0
[ 3260.292394][T25527] total_workingset_refault_anon 52939
[ 3260.316626][T25527] total_workingset_refault_file 0
[ 3260.334311][T25527] total_swap 741376
[ 3260.343836][T25527] total_swapcached 12288
[ 3260.356776][T25527] total_pgpgin 247362
[ 3260.360830][T25527] total_pgpgout 247359
[ 3260.364949][T25527] total_pgfault 575427
[ 3260.406909][T25527] total_pgmajfault 51748
[ 3260.411238][T25527] total_inactive_anon 8192
[ 3260.415691][T25527] total_active_anon 4096
[ 3260.451146][T25527] total_inactive_file 0
[ 3260.455393][T25527] total_active_file 0
[ 3260.484835][T25527] total_unevictable 0
[ 3260.502044][T25527] anon_cost 0
[ 3260.505395][T25527] file_cost 0
[ 3260.519574][T25527] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=25527,uid=0
[ 3260.565961][T25527] Memory cgroup out of memory: Killed process 25527 (syz-executor.0) total-vm:54344kB, anon-rss:308kB, file-rss:8816kB, shmem-rss:0kB, UID:0 pgtables:64kB oom_score_adj:1000
06:22:17 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x87c, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x84c, 0x2, [@TCA_BASIC_POLICE={0x848, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc7a42dae]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}]}]}}]}, 0x87c}}, 0x0)

[ 3260.696657][T25531] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3260.740970][T25531] CPU: 0 PID: 25531 Comm: syz-executor.2 Not tainted 6.8.0-rc7-syzkaller-00250-g137e0ec05aeb #0
[ 3260.751473][T25531] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3260.761582][T25531] Call Trace:
[ 3260.764898][T25531]  <TASK>
[ 3260.767870][T25531]  dump_stack_lvl+0x1e7/0x2e0
[ 3260.772612][T25531]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3260.777874][T25531]  ? __pfx__printk+0x10/0x10
[ 3260.782520][T25531]  ? ___ratelimit+0x4c4/0x670
[ 3260.787259][T25531]  ? __pfx____ratelimit+0x10/0x10
[ 3260.792356][T25531]  dump_header+0xda/0x6a0
[ 3260.796764][T25531]  oom_kill_process+0x3a7/0x930
[ 3260.801678][T25531]  out_of_memory+0xf67/0x1320
[ 3260.806422][T25531]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3260.812123][T25531]  ? __pfx___mutex_lock+0x10/0x10
[ 3260.817202][T25531]  ? __pfx_out_of_memory+0x10/0x10
[ 3260.822382][T25531]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3260.827990][T25531]  ? __pfx_lock_release+0x10/0x10
[ 3260.833074][T25531]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
06:22:17 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x888, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x858, 0x2, [@TCA_BASIC_POLICE={0x854, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa000000]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}, @TCA_POLICE_PEAKRATE64={0xc}]}]}}]}, 0x888}}, 0x0)

[ 3260.839200][T25531]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3260.844508][T25531]  ? mem_cgroup_iter+0x3e9/0x560
[ 3260.849526][T25531]  try_charge_memcg+0xda2/0x18a0
[ 3260.854538][T25531]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3260.859963][T25531]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3260.865734][T25531]  ? __pfx_lock_release+0x10/0x10
[ 3260.870831][T25531]  ? memcg_account_kmem+0x1e7/0x210
[ 3260.876100][T25531]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3260.881968][T25531]  __memcg_kmem_charge_page+0xe1/0x250
[ 3260.887518][T25531]  memcg_charge_kernel_stack+0x210/0x550
[ 3260.893202][T25531]  dup_task_struct+0x40d/0x7d0
[ 3260.897991][T25531]  copy_process+0x5d5/0x3fc0
[ 3260.902602][T25531]  ? __might_fault+0xa9/0x120
[ 3260.907293][T25531]  ? __pfx_lock_release+0x10/0x10
[ 3260.912341][T25531]  ? __pfx_copy_process+0x10/0x10
[ 3260.917376][T25531]  ? __might_fault+0xc5/0x120
[ 3260.922076][T25531]  ? __asan_memset+0x23/0x50
[ 3260.926688][T25531]  kernel_clone+0x21d/0x8d0
[ 3260.931232][T25531]  ? __pfx_kernel_clone+0x10/0x10
[ 3260.936273][T25531]  ? __pfx___might_resched+0x10/0x10
[ 3260.941572][T25531]  __se_sys_clone3+0x2cb/0x350
[ 3260.946355][T25531]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3260.951705][T25531]  ? int80_emulation+0xea/0x210
[ 3260.956602][T25531]  int80_emulation+0x129/0x210
[ 3260.961389][T25531]  asm_int80_emulation+0x1a/0x20
[ 3260.966343][T25531] RIP: 0023:0xf7376060
[ 3260.970448][T25531] Code: 4c 24 04 85 c9 0f 84 df 0d fe ff 8b 54 24 0c 85 d2 0f 84 d3 0d fe ff 53 56 8b 74 24 18 89 cb 8b 4c 24 10 b8 b3 01 00 00 cd 80 <85> c0 74 09 5e 5b 0f 8c b4 0d fe ff c3 31 ed 83 e4 f0 83 ec 0c 56
[ 3260.990074][T25531] RSP: 002b:00000000f758d8e4 EFLAGS: 00000282 ORIG_RAX: 00000000000001b3
[ 3260.998500][T25531] RAX: ffffffffffffffda RBX: 00000000f758d950 RCX: 0000000000000058
[ 3261.006483][T25531] RDX: 00000000f7326eb0 RSI: 00000000f5ee6b40 RDI: 00000000ffffffd8
[ 3261.014463][T25531] RBP: 000000000000000b R08: 0000000000000000 R09: 0000000000000000
[ 3261.022444][T25531] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 3261.030425][T25531] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 3261.038429][T25531]  </TASK>
06:22:17 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x40, 0x4, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x3b9}}}]}]}}]}, 0x74}}, 0x0)

[ 3261.223480][T25531] memory: usage 307200kB, limit 307200kB, failcnt 115091
[ 3261.272955][T25531] memory+swap: usage 307668kB, limit 9007199254740988kB, failcnt 0
[ 3261.294154][T25531] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0
[ 3261.325873][T25531] Memory cgroup stats for /syz2:
[ 3261.326027][T25531] cache 0
[ 3261.356968][T25531] rss 0
[ 3261.364440][T25531] rss_huge 0
[ 3261.379536][T25531] shmem 0
[ 3261.395336][T25531] mapped_file 0
[ 3261.412580][T25531] dirty 0
[ 3261.436473][T25531] writeback 0
[ 3261.439835][T25531] workingset_refault_anon 41555
[ 3261.444728][T25531] workingset_refault_file 0
[ 3261.486402][T25531] swap 479232
[ 3261.489763][T25531] swapcached 12288
[ 3261.493512][T25531] pgpgin 245868
[ 3261.602556][T25531] pgpgout 245865
[ 3261.613659][T25531] pgfault 586415
[ 3261.623568][T25531] pgmajfault 41225
[ 3261.634502][T25531] inactive_anon 0
[ 3261.647413][T25531] active_anon 12288
[ 3261.651378][T25531] inactive_file 0
[ 3261.655056][T25531] active_file 0
[ 3261.682824][T25531] unevictable 0
[ 3261.690193][T25531] hierarchical_memory_limit 314572800
[ 3261.704159][T25531] hierarchical_memsw_limit 9223372036854771712
[ 3261.717173][T25531] total_cache 0
[ 3261.725409][T25531] total_rss 0
[ 3261.733601][T25531] total_rss_huge 0
[ 3261.746454][T25531] total_shmem 0
[ 3261.749981][T25531] total_mapped_file 0
[ 3261.753992][T25531] total_dirty 0
[ 3261.776652][T25531] total_writeback 0
[ 3261.781802][T25531] total_workingset_refault_anon 41555
[ 3261.793662][T25531] total_workingset_refault_file 0
[ 3261.804754][T25531] total_swap 479232
[ 3261.821607][T25531] total_swapcached 12288
[ 3261.836495][T25531] total_pgpgin 245868
[ 3261.849671][T25531] total_pgpgout 245865
[ 3261.862993][T25531] total_pgfault 586415
[ 3261.876070][T25531] total_pgmajfault 41225
[ 3261.887098][T25531] total_inactive_anon 0
[ 3261.894959][T25531] total_active_anon 12288
[ 3261.905223][T25531] total_inactive_file 0
[ 3261.914579][T25531] total_active_file 0
[ 3261.923312][T25531] total_unevictable 0
[ 3261.932338][T25531] anon_cost 0
[ 3261.944885][T25531] file_cost 0
[ 3261.951788][T25531] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=25531,uid=0
[ 3262.004693][T25531] Memory cgroup out of memory: Killed process 25531 (syz-executor.2) total-vm:54344kB, anon-rss:308kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:64kB oom_score_adj:1000
[ 3262.047459][T25542] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3262.057980][T25542] CPU: 0 PID: 25542 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00250-g137e0ec05aeb #0
[ 3262.068441][T25542] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3262.078543][T25542] Call Trace:
[ 3262.081872][T25542]  <TASK>
[ 3262.084844][T25542]  dump_stack_lvl+0x1e7/0x2e0
[ 3262.089594][T25542]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3262.094859][T25542]  ? __pfx__printk+0x10/0x10
[ 3262.099512][T25542]  ? ___ratelimit+0x4c4/0x670
[ 3262.104260][T25542]  ? __pfx____ratelimit+0x10/0x10
[ 3262.109353][T25542]  dump_header+0xda/0x6a0
[ 3262.113750][T25542]  oom_kill_process+0x3a7/0x930
[ 3262.118695][T25542]  out_of_memory+0xf67/0x1320
[ 3262.123439][T25542]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3262.129124][T25542]  ? __pfx___mutex_lock+0x10/0x10
[ 3262.134290][T25542]  ? __pfx_out_of_memory+0x10/0x10
[ 3262.139469][T25542]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3262.145103][T25542]  ? __pfx_lock_release+0x10/0x10
[ 3262.150190][T25542]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3262.156329][T25542]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3262.161597][T25542]  ? mem_cgroup_iter+0x3e9/0x560
[ 3262.166597][T25542]  try_charge_memcg+0xda2/0x18a0
[ 3262.171622][T25542]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3262.177051][T25542]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3262.182795][T25542]  ? __pfx_lock_release+0x10/0x10
[ 3262.187844][T25542]  ? memcg_account_kmem+0x1e7/0x210
[ 3262.193087][T25542]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3262.198933][T25542]  __memcg_kmem_charge_page+0xe1/0x250
[ 3262.204418][T25542]  memcg_charge_kernel_stack+0x210/0x550
[ 3262.210065][T25542]  dup_task_struct+0x15d/0x7d0
[ 3262.214850][T25542]  copy_process+0x5d5/0x3fc0
[ 3262.219468][T25542]  ? __might_fault+0xa9/0x120
[ 3262.224164][T25542]  ? __pfx_lock_release+0x10/0x10
[ 3262.229245][T25542]  ? __pfx_copy_process+0x10/0x10
[ 3262.234282][T25542]  ? __might_fault+0xc5/0x120
[ 3262.238980][T25542]  ? __asan_memset+0x23/0x50
[ 3262.243600][T25542]  kernel_clone+0x21d/0x8d0
[ 3262.248118][T25542]  ? __pfx_kernel_clone+0x10/0x10
[ 3262.253165][T25542]  ? __pfx___might_resched+0x10/0x10
[ 3262.258466][T25542]  __se_sys_clone3+0x2cb/0x350
[ 3262.263240][T25542]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3262.268566][T25542]  ? int80_emulation+0xea/0x210
[ 3262.273449][T25542]  int80_emulation+0x129/0x210
[ 3262.278234][T25542]  asm_int80_emulation+0x1a/0x20
[ 3262.283177][T25542] RIP: 0023:0xf7372060
[ 3262.287258][T25542] Code: 4c 24 04 85 c9 0f 84 df 0d fe ff 8b 54 24 0c 85 d2 0f 84 d3 0d fe ff 53 56 8b 74 24 18 89 cb 8b 4c 24 10 b8 b3 01 00 00 cd 80 <85> c0 74 09 5e 5b 0f 8c b4 0d fe ff c3 31 ed 83 e4 f0 83 ec 0c 56
[ 3262.306872][T25542] RSP: 002b:00000000f75898e4 EFLAGS: 00000282 ORIG_RAX: 00000000000001b3
[ 3262.315297][T25542] RAX: ffffffffffffffda RBX: 00000000f7589950 RCX: 0000000000000058
[ 3262.323303][T25542] RDX: 00000000f7322eb0 RSI: 00000000f5ee2b40 RDI: 00000000ffffffd8
[ 3262.331285][T25542] RBP: 000000000000000b R08: 0000000000000000 R09: 0000000000000000
[ 3262.339369][T25542] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 3262.347359][T25542] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 3262.355355][T25542]  </TASK>
[ 3262.411495][ T5108] Bluetooth: hci0: command 0x040f tx timeout
[ 3262.443771][T25542] memory: usage 307200kB, limit 307200kB, failcnt 142953
[ 3262.455055][T25542] memory+swap: usage 307924kB, limit 9007199254740988kB, failcnt 0
[ 3262.463398][T25542] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0
[ 3262.484352][T25542] Memory cgroup stats for /syz0:
[ 3262.484541][T25542] cache 0
[ 3262.498379][T25542] rss 12288
[ 3262.521295][T25542] rss_huge 0
[ 3262.540406][T25542] shmem 0
[ 3262.558143][T25542] mapped_file 0
[ 3262.573792][T25542] dirty 0
[ 3262.577068][T25542] writeback 0
[ 3262.581691][T25542] workingset_refault_anon 53021
[ 3262.591348][T25542] workingset_refault_file 0
[ 3262.612131][T25542] swap 741376
[ 3262.615526][T25542] swapcached 12288
[ 3262.619483][T25542] pgpgin 247452
[ 3262.623087][T25542] pgpgout 247449
[ 3262.637267][T25542] pgfault 575553
[ 3262.646076][T25542] pgmajfault 51813
[ 3262.650325][T25542] inactive_anon 8192
[ 3262.654607][T25542] active_anon 4096
[ 3262.672039][T25542] inactive_file 0
[ 3262.684227][T25542] active_file 0
[ 3262.691056][T25542] unevictable 0
[ 3262.702353][T25542] hierarchical_memory_limit 314572800
[ 3262.712742][T25542] hierarchical_memsw_limit 9223372036854771712
[ 3262.733016][T25542] total_cache 0
[ 3262.743392][T25542] total_rss 12288
[ 3262.757045][T25542] total_rss_huge 0
[ 3262.762399][T25542] total_shmem 0
[ 3262.770724][T25542] total_mapped_file 0
[ 3262.780909][T25542] total_dirty 0
[ 3262.791862][T25542] total_writeback 0
[ 3262.800769][T25542] total_workingset_refault_anon 53021
[ 3262.816106][T25542] total_workingset_refault_file 0
[ 3262.830340][T25542] total_swap 741376
[ 3262.840266][T25542] total_swapcached 12288
[ 3262.853051][T25542] total_pgpgin 247452
[ 3262.867214][T25542] total_pgpgout 247449
[ 3262.875280][T25542] total_pgfault 575553
[ 3262.884032][T25542] total_pgmajfault 51813
[ 3262.897777][T25542] total_inactive_anon 8192
[ 3262.906855][T25542] total_active_anon 4096
[ 3262.922727][T25542] total_inactive_file 0
[ 3262.935093][T25542] total_active_file 0
[ 3262.947279][T25542] total_unevictable 0
[ 3262.968033][T25542] anon_cost 0
[ 3262.975863][T25542] file_cost 0
[ 3262.986493][T25542] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=25542,uid=0
[ 3263.018529][T25542] Memory cgroup out of memory: Killed process 25542 (syz-executor.0) total-vm:54344kB, anon-rss:308kB, file-rss:8704kB, shmem-rss:0kB, UID:0 pgtables:64kB oom_score_adj:1000
06:22:19 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x888, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x858, 0x2, [@TCA_BASIC_POLICE={0x854, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}, @TCA_POLICE_PEAKRATE64={0xc}]}]}}]}, 0x888}}, 0x0)

06:22:19 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x87c, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x84c, 0x2, [@TCA_BASIC_POLICE={0x848, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf0ffffff]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}]}]}}]}, 0x87c}}, 0x0)

[ 3263.527968][ T5119] syz-executor.0 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[ 3263.573638][ T5119] CPU: 0 PID: 5119 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00250-g137e0ec05aeb #0
[ 3263.584136][ T5119] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3263.594239][ T5119] Call Trace:
[ 3263.597560][ T5119]  <TASK>
[ 3263.600537][ T5119]  dump_stack_lvl+0x1e7/0x2e0
[ 3263.605313][ T5119]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3263.610580][ T5119]  ? __pfx__printk+0x10/0x10
[ 3263.615233][ T5119]  ? ___ratelimit+0x4c4/0x670
[ 3263.619980][ T5119]  ? __pfx____ratelimit+0x10/0x10
[ 3263.625070][ T5119]  dump_header+0xda/0x6a0
[ 3263.629470][ T5119]  oom_kill_process+0x3a7/0x930
[ 3263.634381][ T5119]  out_of_memory+0xf67/0x1320
[ 3263.639128][ T5119]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3263.644817][ T5119]  ? __pfx___mutex_lock+0x10/0x10
[ 3263.649893][ T5119]  ? __pfx_out_of_memory+0x10/0x10
[ 3263.655079][ T5119]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3263.660703][ T5119]  ? __pfx_lock_release+0x10/0x10
[ 3263.665793][ T5119]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3263.671930][ T5119]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3263.677193][ T5119]  ? mem_cgroup_iter+0x3e9/0x560
[ 3263.682203][ T5119]  try_charge_memcg+0xda2/0x18a0
[ 3263.687194][ T5119]  ? mark_lock+0x9a/0x350
[ 3263.691563][ T5119]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3263.696974][ T5119]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 3263.703137][ T5119]  charge_memcg+0xa2/0x160
[ 3263.707581][ T5119]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 3263.713668][ T5119]  __read_swap_cache_async+0x480/0x8b0
[ 3263.719152][ T5119]  ? mark_lock+0x9a/0x350
[ 3263.723506][ T5119]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 3263.729517][ T5119]  swap_cluster_readahead+0x67c/0x810
[ 3263.734920][ T5119]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 3263.740839][ T5119]  ? __pfx_lock_release+0x10/0x10
[ 3263.745885][ T5119]  ? xas_descend+0x37e/0x470
[ 3263.750500][ T5119]  swapin_readahead+0x1ea/0x1070
[ 3263.755462][ T5119]  ? filemap_get_entry+0x127/0x4e0
[ 3263.760616][ T5119]  ? __pfx_swapin_readahead+0x10/0x10
[ 3263.766021][ T5119]  ? __filemap_get_folio+0x935/0xbc0
[ 3263.771328][ T5119]  ? swap_cache_get_folio+0x9f/0x570
[ 3263.776647][ T5119]  do_swap_page+0x791/0x3f40
[ 3263.781271][ T5119]  ? rcu_is_watching+0x15/0xb0
[ 3263.786087][ T5119]  ? do_swap_page+0x154/0x3f40
[ 3263.790869][ T5119]  ? __pfx_do_swap_page+0x10/0x10
[ 3263.795907][ T5119]  ? pte_offset_map_nolock+0x137/0x1f0
[ 3263.801432][ T5119]  ? mark_lock+0x9a/0x350
[ 3263.805802][ T5119]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 3263.811669][ T5119]  ? __pfx_validate_chain+0x10/0x10
[ 3263.816884][ T5119]  __handle_mm_fault+0x15e8/0x72d0
[ 3263.822066][ T5119]  ? __pfx___handle_mm_fault+0x10/0x10
[ 3263.827588][ T5119]  ? mt_find+0x226/0x850
[ 3263.831864][ T5119]  ? __pfx_lock_release+0x10/0x10
[ 3263.837027][ T5119]  ? mt_find+0x62d/0x850
[ 3263.841287][ T5119]  ? mt_find+0x226/0x850
[ 3263.845568][ T5119]  ? find_vma+0x142/0x1c0
[ 3263.849910][ T5119]  ? __pfx_find_vma+0x10/0x10
[ 3263.854606][ T5119]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3263.860613][ T5119]  handle_mm_fault+0x3c1/0x8a0
[ 3263.865404][ T5119]  exc_page_fault+0x2ad/0x870
[ 3263.870105][ T5119]  asm_exc_page_fault+0x26/0x30
[ 3263.874993][ T5119] RIP: 0010:__get_user_8+0x11/0x20
[ 3263.880116][ T5119] Code: ca c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 89 c2 48 c1 fa 3f 48 09 d0 0f 01 cb <48> 8b 10 31 c0 0f 01 ca c3 cc cc cc cc 66 90 90 90 90 90 90 90 90
[ 3263.899736][ T5119] RSP: 0018:ffffc90003b9fd58 EFLAGS: 00050202
[ 3263.905817][ T5119] RAX: 000000005810e8a8 RBX: ffff88801c38d0b8 RCX: ffffc90003b9fc03
[ 3263.913797][ T5119] RDX: 0000000000000000 RSI: ffffffff8baac7e0 RDI: ffffffff8bfe6da0
[ 3263.921787][ T5119] RBP: ffffc90003b9fe98 R08: ffffffff8f856cef R09: 1ffffffff1f0ad9d
[ 3263.929767][ T5119] R10: dffffc0000000000 R11: fffffbfff1f0ad9e R12: ffffc90003b9fd60
[ 3263.937753][ T5119] R13: ffffc90003b9ffd8 R14: dffffc0000000000 R15: ffff88801c38bb80
[ 3263.945755][ T5119]  __rseq_handle_notify_resume+0x158/0x1490
[ 3263.951673][ T5119]  ? __pfx_hrtimer_wakeup+0x10/0x10
[ 3263.956894][ T5119]  ? __pfx___rseq_handle_notify_resume+0x10/0x10
[ 3263.963254][ T5119]  ? syscall_exit_to_user_mode+0xa2/0x360
[ 3263.969010][ T5119]  syscall_exit_to_user_mode+0x113/0x360
[ 3263.974668][ T5119]  __do_fast_syscall_32+0xcf/0x120
[ 3263.979803][ T5119]  ? exc_page_fault+0x587/0x870
[ 3263.984693][ T5119]  do_fast_syscall_32+0x33/0x70
[ 3263.989568][ T5119]  entry_SYSENTER_compat_after_hwframe+0x7c/0x86
[ 3263.995913][ T5119] RIP: 0023:0xf72e8579
[ 3263.999998][ T5119] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[ 3264.019613][ T5119] RSP: 002b:00000000f7589c80 EFLAGS: 00000206 ORIG_RAX: 000000000000010b
[ 3264.028045][ T5119] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000
[ 3264.036021][ T5119] RDX: 00000000f7589cb4 RSI: 00000000f7589cac RDI: 00000000f7589cb4
[ 3264.044000][ T5119] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 3264.051981][ T5119] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 3264.060023][ T5119] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 3264.068020][ T5119]  </TASK>
06:22:20 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x888, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x858, 0x2, [@TCA_BASIC_POLICE={0x854, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb000000]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}, @TCA_POLICE_PEAKRATE64={0xc}]}]}}]}, 0x888}}, 0x0)

[ 3264.107039][ T5119] memory: usage 307200kB, limit 307200kB, failcnt 143122
[ 3264.114317][ T5119] memory+swap: usage 307932kB, limit 9007199254740988kB, failcnt 0
[ 3264.128150][ T5119] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[ 3264.166201][ T5119] Memory cgroup stats for /syz0:
[ 3264.187527][ T5119] cache 0
[ 3264.209698][ T5119] rss 0
[ 3264.217252][ T5119] rss_huge 0
[ 3264.220514][ T5119] shmem 0
[ 3264.223515][ T5119] mapped_file 0
06:22:20 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x40, 0x4, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x3c1}}}]}]}}]}, 0x74}}, 0x0)

[ 3264.256565][ T5119] dirty 0
[ 3264.259582][ T5119] writeback 0
[ 3264.262895][ T5119] workingset_refault_anon 53071
[ 3264.295123][ T5119] workingset_refault_file 0
[ 3264.309326][ T5119] swap 749568
[ 3264.327415][ T5119] swapcached 0
[ 3264.330856][ T5119] pgpgin 247512
[ 3264.334342][ T5119] pgpgout 247512
[ 3264.353705][ T5119] pgfault 575646
[ 3264.361456][ T5119] pgmajfault 51858
[ 3264.384482][ T5119] inactive_anon 0
[ 3264.393622][ T5119] active_anon 0
[ 3264.402840][ T5119] inactive_file 0
[ 3264.411308][ T5119] active_file 0
[ 3264.414829][ T5119] unevictable 0
[ 3264.427140][ T5119] hierarchical_memory_limit 314572800
[ 3264.432585][ T5119] hierarchical_memsw_limit 9223372036854771712
[ 3264.453671][ T5119] total_cache 0
[ 3264.457825][ T5108] Bluetooth: hci0: command 0x0419 tx timeout
[ 3264.468695][ T5119] total_rss 0
[ 3264.472046][ T5119] total_rss_huge 0
[ 3264.475792][ T5119] total_shmem 0
[ 3264.500859][ T5119] total_mapped_file 0
[ 3264.513624][ T5119] total_dirty 0
[ 3264.525115][ T5119] total_writeback 0
[ 3264.552164][ T5119] total_workingset_refault_anon 53071
[ 3264.565948][ T5119] total_workingset_refault_file 0
[ 3264.581899][ T5119] total_swap 749568
[ 3264.593630][ T5119] total_swapcached 0
[ 3264.603682][ T5119] total_pgpgin 247512
[ 3264.628135][ T5119] total_pgpgout 247512
[ 3264.632275][ T5119] total_pgfault 575646
[ 3264.645850][ T5119] total_pgmajfault 51858
[ 3264.654233][ T5119] total_inactive_anon 0
[ 3264.661006][ T5119] total_active_anon 0
[ 3264.665049][ T5119] total_inactive_file 0
[ 3264.681865][ T5119] total_active_file 0
[ 3264.685918][ T5119] total_unevictable 0
[ 3264.696687][ T5119] anon_cost 0
[ 3264.700182][ T5119] file_cost 0
[ 3264.709658][ T5119] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=25552,uid=0
[ 3264.752022][ T5119] Memory cgroup out of memory: Killed process 25552 (syz-executor.0) total-vm:54344kB, anon-rss:316kB, file-rss:8704kB, shmem-rss:0kB, UID:0 pgtables:64kB oom_score_adj:1000
[ 3264.800912][ T5123] syz-executor.2 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[ 3264.840815][ T5123] CPU: 1 PID: 5123 Comm: syz-executor.2 Not tainted 6.8.0-rc7-syzkaller-00250-g137e0ec05aeb #0
[ 3264.851220][ T5123] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3264.861328][ T5123] Call Trace:
[ 3264.864642][ T5123]  <TASK>
[ 3264.867610][ T5123]  dump_stack_lvl+0x1e7/0x2e0
[ 3264.872370][ T5123]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3264.877637][ T5123]  ? __pfx__printk+0x10/0x10
[ 3264.882276][ T5123]  ? ___ratelimit+0x4c4/0x670
[ 3264.887012][ T5123]  ? __pfx____ratelimit+0x10/0x10
[ 3264.892095][ T5123]  dump_header+0xda/0x6a0
[ 3264.896492][ T5123]  oom_kill_process+0x3a7/0x930
06:22:21 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x87c, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x84c, 0x2, [@TCA_BASIC_POLICE={0x848, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffff7f]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}]}]}}]}, 0x87c}}, 0x0)

[ 3264.901440][ T5123]  out_of_memory+0xf67/0x1320
[ 3264.906179][ T5123]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3264.911856][ T5123]  ? __pfx___mutex_lock+0x10/0x10
[ 3264.916931][ T5123]  ? __pfx_out_of_memory+0x10/0x10
[ 3264.922102][ T5123]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3264.927693][ T5123]  ? __pfx_lock_release+0x10/0x10
[ 3264.932773][ T5123]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3264.938908][ T5123]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3264.944164][ T5123]  ? mem_cgroup_iter+0x3e9/0x560
[ 3264.949161][ T5123]  try_charge_memcg+0xda2/0x18a0
[ 3264.954141][ T5123]  ? mark_lock+0x9a/0x350
[ 3264.958541][ T5123]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3264.964004][ T5123]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 3264.970254][ T5123]  charge_memcg+0xa2/0x160
[ 3264.974730][ T5123]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 3264.980857][ T5123]  __read_swap_cache_async+0x480/0x8b0
[ 3264.986460][ T5123]  ? mark_lock+0x9a/0x350
[ 3264.990849][ T5123]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 3264.996903][ T5123]  swap_cluster_readahead+0x67c/0x810
[ 3265.002347][ T5123]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 3265.008303][ T5123]  ? __pfx_lock_release+0x10/0x10
[ 3265.013393][ T5123]  ? xas_descend+0x37e/0x470
[ 3265.018054][ T5123]  swapin_readahead+0x1ea/0x1070
[ 3265.023037][ T5123]  ? filemap_get_entry+0x127/0x4e0
[ 3265.028217][ T5123]  ? __pfx_swapin_readahead+0x10/0x10
[ 3265.033655][ T5123]  ? __filemap_get_folio+0x935/0xbc0
[ 3265.039003][ T5123]  ? swap_cache_get_folio+0x9f/0x570
[ 3265.044441][ T5123]  do_swap_page+0x791/0x3f40
[ 3265.049088][ T5123]  ? rcu_is_watching+0x15/0xb0
[ 3265.053916][ T5123]  ? do_swap_page+0x154/0x3f40
[ 3265.058730][ T5123]  ? __pfx_do_swap_page+0x10/0x10
[ 3265.063803][ T5123]  ? pte_offset_map_nolock+0x137/0x1f0
[ 3265.069333][ T5123]  ? mark_lock+0x9a/0x350
[ 3265.073720][ T5123]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 3265.079585][ T5123]  ? __pfx_validate_chain+0x10/0x10
[ 3265.084846][ T5123]  __handle_mm_fault+0x15e8/0x72d0
[ 3265.090050][ T5123]  ? __pfx___handle_mm_fault+0x10/0x10
[ 3265.095580][ T5123]  ? mt_find+0x226/0x850
[ 3265.099881][ T5123]  ? __pfx_lock_release+0x10/0x10
[ 3265.104987][ T5123]  ? mt_find+0x62d/0x850
[ 3265.109304][ T5123]  ? mt_find+0x226/0x850
[ 3265.113714][ T5123]  ? find_vma+0x142/0x1c0
[ 3265.118096][ T5123]  ? __pfx_find_vma+0x10/0x10
[ 3265.122824][ T5123]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3265.128877][ T5123]  handle_mm_fault+0x3c1/0x8a0
[ 3265.133706][ T5123]  exc_page_fault+0x2ad/0x870
[ 3265.138448][ T5123]  asm_exc_page_fault+0x26/0x30
[ 3265.143341][ T5123] RIP: 0010:__get_user_8+0x11/0x20
[ 3265.148504][ T5123] Code: ca c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 89 c2 48 c1 fa 3f 48 09 d0 0f 01 cb <48> 8b 10 31 c0 0f 01 ca c3 cc cc cc cc 66 90 90 90 90 90 90 90 90
[ 3265.168275][ T5123] RSP: 0018:ffffc90003b4fd58 EFLAGS: 00050202
[ 3265.174401][ T5123] RAX: 00000000575e08a8 RBX: ffff88805c9632f8 RCX: ffffc90003b4fc03
[ 3265.182438][ T5123] RDX: 0000000000000000 RSI: ffffffff8baac7e0 RDI: ffffffff8bfe6da0
[ 3265.190460][ T5123] RBP: ffffc90003b4fe98 R08: ffffffff8f856cef R09: 1ffffffff1f0ad9d
[ 3265.198612][ T5123] R10: dffffc0000000000 R11: fffffbfff1f0ad9e R12: ffffc90003b4fd60
[ 3265.206683][ T5123] R13: ffffc90003b4ffd8 R14: dffffc0000000000 R15: ffff88805c961dc0
[ 3265.214732][ T5123]  __rseq_handle_notify_resume+0x158/0x1490
[ 3265.220694][ T5123]  ? __pfx_hrtimer_wakeup+0x10/0x10
[ 3265.225961][ T5123]  ? __pfx___rseq_handle_notify_resume+0x10/0x10
[ 3265.232361][ T5123]  ? syscall_exit_to_user_mode+0xa2/0x360
[ 3265.238154][ T5123]  syscall_exit_to_user_mode+0x113/0x360
[ 3265.243869][ T5123]  __do_fast_syscall_32+0xcf/0x120
[ 3265.249134][ T5123]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 3265.255342][ T5123]  ? lockdep_hardirqs_on+0x98/0x140
[ 3265.260613][ T5123]  do_fast_syscall_32+0x33/0x70
[ 3265.265538][ T5123]  entry_SYSENTER_compat_after_hwframe+0x7c/0x86
[ 3265.271923][ T5123] RIP: 0023:0xf72ec579
[ 3265.276040][ T5123] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[ 3265.295699][ T5123] RSP: 002b:00000000f758dc80 EFLAGS: 00000206 ORIG_RAX: 000000000000010b
[ 3265.304431][ T5123] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000
[ 3265.312451][ T5123] RDX: 00000000f758dcb4 RSI: 00000000f758dcac RDI: 00000000f758dcb4
[ 3265.320515][ T5123] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 3265.328586][ T5123] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 3265.336607][ T5123] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 3265.344654][ T5123]  </TASK>
[ 3265.386568][ T5123] memory: usage 307200kB, limit 307200kB, failcnt 115477
[ 3265.393679][ T5123] memory+swap: usage 307668kB, limit 9007199254740988kB, failcnt 0
[ 3265.402987][ T5123] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0
[ 3265.421324][ T5123] Memory cgroup stats for /syz2:
[ 3265.421478][ T5123] cache 0
[ 3265.439410][ T5123] rss 0
[ 3265.442361][ T5123] rss_huge 0
[ 3265.445684][ T5123] shmem 0
[ 3265.449483][ T5123] mapped_file 0
[ 3265.453093][ T5123] dirty 0
[ 3265.456160][ T5123] writeback 0
[ 3265.460268][ T5123] workingset_refault_anon 41652
[ 3265.465267][ T5123] workingset_refault_file 0
[ 3265.470311][ T5123] swap 479232
[ 3265.473965][ T5123] swapcached 12288
[ 3265.480405][ T5123] pgpgin 245973
[ 3265.485673][ T5123] pgpgout 245970
[ 3265.491780][ T5123] pgfault 586584
[ 3265.496928][ T5123] pgmajfault 41317
[ 3265.502724][ T5123] inactive_anon 0
[ 3265.508543][ T5123] active_anon 12288
[ 3265.514216][ T5123] inactive_file 0
[ 3265.520357][ T5123] active_file 0
[ 3265.526239][ T5123] unevictable 0
[ 3265.531948][ T5123] hierarchical_memory_limit 314572800
[ 3265.547042][ T5123] hierarchical_memsw_limit 9223372036854771712
[ 3265.557920][ T5123] total_cache 0
[ 3265.567180][ T5123] total_rss 0
[ 3265.573430][ T5123] total_rss_huge 0
[ 3265.579711][ T5123] total_shmem 0
[ 3265.583382][ T5123] total_mapped_file 0
[ 3265.593124][ T5123] total_dirty 0
[ 3265.601419][ T5123] total_writeback 0
[ 3265.609907][ T5123] total_workingset_refault_anon 41652
[ 3265.620176][ T5123] total_workingset_refault_file 0
[ 3265.633147][ T5123] total_swap 479232
[ 3265.640204][ T5123] total_swapcached 12288
[ 3265.651543][ T5123] total_pgpgin 245973
[ 3265.663555][ T5123] total_pgpgout 245970
[ 3265.673660][ T5123] total_pgfault 586584
[ 3265.685568][ T5123] total_pgmajfault 41317
[ 3265.695124][ T5123] total_inactive_anon 0
[ 3265.705597][ T5123] total_active_anon 12288
[ 3265.715959][ T5123] total_inactive_file 0
[ 3265.725858][ T5123] total_active_file 0
[ 3265.735260][ T5123] total_unevictable 0
[ 3265.744613][ T5123] anon_cost 0
[ 3265.751162][ T5123] file_cost 0
[ 3265.754598][ T5123] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=25551,uid=0
[ 3265.777342][ T5123] Memory cgroup out of memory: Killed process 25551 (syz-executor.2) total-vm:54344kB, anon-rss:308kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:64kB oom_score_adj:1000
[ 3265.855563][T25557] syz-executor.1 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[ 3265.903751][T25557] CPU: 1 PID: 25557 Comm: syz-executor.1 Not tainted 6.8.0-rc7-syzkaller-00250-g137e0ec05aeb #0
[ 3265.914238][T25557] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3265.924317][T25557] Call Trace:
[ 3265.927618][T25557]  <TASK>
[ 3265.930559][T25557]  dump_stack_lvl+0x1e7/0x2e0
[ 3265.935263][T25557]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3265.940482][T25557]  ? __pfx__printk+0x10/0x10
[ 3265.945091][T25557]  ? ___ratelimit+0x4c4/0x670
[ 3265.949791][T25557]  ? __pfx____ratelimit+0x10/0x10
[ 3265.954839][T25557]  dump_header+0xda/0x6a0
[ 3265.959192][T25557]  oom_kill_process+0x3a7/0x930
[ 3265.964066][T25557]  out_of_memory+0xf67/0x1320
[ 3265.968763][T25557]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3265.974409][T25557]  ? __pfx___mutex_lock+0x10/0x10
[ 3265.979452][T25557]  ? __pfx_out_of_memory+0x10/0x10
[ 3265.984590][T25557]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3265.990149][T25557]  ? __pfx_lock_release+0x10/0x10
[ 3265.995190][T25557]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3266.001280][T25557]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3266.006498][T25557]  ? mem_cgroup_iter+0x422/0x560
[ 3266.011460][T25557]  try_charge_memcg+0xda2/0x18a0
[ 3266.016561][T25557]  ? mark_lock+0x9a/0x350
[ 3266.020942][T25557]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3266.026370][T25557]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 3266.032567][T25557]  charge_memcg+0xa2/0x160
[ 3266.037008][T25557]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 3266.043095][T25557]  __read_swap_cache_async+0x480/0x8b0
[ 3266.048574][T25557]  ? mark_lock+0x9a/0x350
[ 3266.052924][T25557]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 3266.058926][T25557]  ? blk_start_plug+0x6f/0x1b0
[ 3266.063738][T25557]  swap_cluster_readahead+0x398/0x810
[ 3266.069165][T25557]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 3266.075374][T25557]  ? __pfx_lock_release+0x10/0x10
[ 3266.080439][T25557]  ? xas_descend+0x37e/0x470
[ 3266.085060][T25557]  swapin_readahead+0x1ea/0x1070
[ 3266.090021][T25557]  ? filemap_get_entry+0x127/0x4e0
[ 3266.095163][T25557]  ? __pfx_swapin_readahead+0x10/0x10
[ 3266.100716][T25557]  ? __filemap_get_folio+0x935/0xbc0
[ 3266.106029][T25557]  ? swap_cache_get_folio+0x9f/0x570
[ 3266.111425][T25557]  do_swap_page+0x791/0x3f40
[ 3266.116037][T25557]  ? rcu_is_watching+0x15/0xb0
[ 3266.120836][T25557]  ? do_swap_page+0x154/0x3f40
[ 3266.125614][T25557]  ? __pfx_do_swap_page+0x10/0x10
[ 3266.130650][T25557]  ? pte_offset_map_nolock+0x137/0x1f0
[ 3266.136127][T25557]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 3266.141985][T25557]  __handle_mm_fault+0x15e8/0x72d0
[ 3266.147149][T25557]  ? reacquire_held_locks+0x3eb/0x690
[ 3266.152623][T25557]  ? __pfx___handle_mm_fault+0x10/0x10
[ 3266.158106][T25557]  ? __pfx_reacquire_held_locks+0x10/0x10
[ 3266.163846][T25557]  ? mtree_range_walk+0x6fd/0x8e0
[ 3266.168886][T25557]  ? lock_vma_under_rcu+0x18a/0x730
[ 3266.174118][T25557]  ? __pfx_lock_release+0x10/0x10
[ 3266.179174][T25557]  ? lock_vma_under_rcu+0x2f9/0x730
[ 3266.184418][T25557]  ? lock_vma_under_rcu+0x18a/0x730
[ 3266.189640][T25557]  ? __pfx_lock_vma_under_rcu+0x10/0x10
[ 3266.195213][T25557]  handle_mm_fault+0x3c1/0x8a0
[ 3266.200090][T25557]  exc_page_fault+0x456/0x870
[ 3266.204805][T25557]  asm_exc_page_fault+0x26/0x30
[ 3266.209666][T25557] RIP: 0023:0xf7316075
[ 3266.213740][T25557] Code: fe ff 53 56 8b 74 24 18 89 cb 8b 4c 24 10 b8 b3 01 00 00 cd 80 85 c0 74 09 5e 5b 0f 8c b4 0d fe ff c3 31 ed 83 e4 f0 83 ec 0c <56> ff d2 89 c3 b8 01 00 00 00 65 ff 15 10 00 00 00 66 90 66 90 66
[ 3266.233363][T25557] RSP: 002b:00000000f5e65734 EFLAGS: 00010292
[ 3266.239441][T25557] RAX: 0000000000000000 RBX: 00000000f752d950 RCX: 0000000000000058
[ 3266.247425][T25557] RDX: 00000000f72c6eb0 RSI: 00000000f5e65b40 RDI: 00000000ffffffd8
[ 3266.255404][T25557] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 3266.263383][T25557] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 3266.271361][T25557] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 3266.279355][T25557]  </TASK>
[ 3266.315252][T25557] memory: usage 307196kB, limit 307200kB, failcnt 214090
[ 3266.322867][T25557] memory+swap: usage 308544kB, limit 9007199254740988kB, failcnt 0
[ 3266.337083][T25557] kmem: usage 307184kB, limit 9007199254740988kB, failcnt 0
[ 3266.344653][T25557] Memory cgroup stats for /syz1:
[ 3266.344806][T25557] cache 0
[ 3266.359272][T25557] rss 8192
[ 3266.362542][T25557] rss_huge 0
[ 3266.365991][T25557] shmem 0
[ 3266.373120][T25557] mapped_file 0
[ 3266.381243][T25557] dirty 0
[ 3266.384469][T25557] writeback 0
[ 3266.391318][T25557] workingset_refault_anon 141195
[ 3266.401364][T25557] workingset_refault_file 0
[ 3266.406186][T25557] swap 1376256
[ 3266.411691][T25557] swapcached 16384
[ 3266.415746][T25557] pgpgin 393297
[ 3266.423782][T25557] pgpgout 393293
[ 3266.429404][T25557] pgfault 763436
[ 3266.433243][T25557] pgmajfault 132239
[ 3266.451670][T25557] inactive_anon 0
06:22:23 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x888, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x858, 0x2, [@TCA_BASIC_POLICE={0x854, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}, @TCA_POLICE_PEAKRATE64={0xc}]}]}}]}, 0x888}}, 0x0)

[ 3266.464843][T25557] active_anon 16384
[ 3266.482651][T25557] inactive_file 0
[ 3266.520109][T25557] active_file 0
[ 3266.547930][T25557] unevictable 0
[ 3266.571991][T25557] hierarchical_memory_limit 314572800
[ 3266.604776][T25557] hierarchical_memsw_limit 9223372036854771712
[ 3266.632618][ T1239] ieee802154 phy0 wpan0: encryption failed: -22
[ 3266.639407][ T1239] ieee802154 phy1 wpan1: encryption failed: -22
[ 3266.669576][T25557] total_cache 0
[ 3266.673340][T25557] total_rss 8192
[ 3266.683042][T25557] total_rss_huge 0
[ 3266.695361][T25557] total_shmem 0
[ 3266.708577][T25557] total_mapped_file 0
[ 3266.725344][T25557] total_dirty 0
[ 3266.741513][T25557] total_writeback 0
[ 3266.760390][T25557] total_workingset_refault_anon 141195
[ 3266.782495][T25557] total_workingset_refault_file 0
[ 3266.794557][T25557] total_swap 1376256
[ 3266.804517][T25557] total_swapcached 16384
[ 3266.813554][T25557] total_pgpgin 393297
[ 3266.844033][T25557] total_pgpgout 393293
[ 3266.863849][T25557] total_pgfault 763436
[ 3266.884131][T25557] total_pgmajfault 132239
[ 3266.904382][T25557] total_inactive_anon 0
[ 3266.924789][T25557] total_active_anon 16384
[ 3266.945012][T25557] total_inactive_file 0
[ 3266.964265][T25557] total_active_file 0
[ 3266.983671][T25557] total_unevictable 0
[ 3267.005646][T25557] anon_cost 0
[ 3267.013144][T25557] file_cost 0
[ 3267.028722][T25557] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=25554,uid=0
06:22:23 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x40, 0x4, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x3cd}}}]}]}}]}, 0x74}}, 0x0)

[ 3267.062157][T25557] Memory cgroup out of memory: Killed process 25554 (syz-executor.1) total-vm:54476kB, anon-rss:316kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:68kB oom_score_adj:1000
06:22:24 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x888, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x858, 0x2, [@TCA_BASIC_POLICE={0x854, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc000000]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}, @TCA_POLICE_PEAKRATE64={0xc}]}]}}]}, 0x888}}, 0x0)

[ 3267.364842][ T5123] syz-executor.2 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[ 3267.439272][ T5123] CPU: 0 PID: 5123 Comm: syz-executor.2 Not tainted 6.8.0-rc7-syzkaller-00250-g137e0ec05aeb #0
[ 3267.449685][ T5123] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3267.459790][ T5123] Call Trace:
[ 3267.463111][ T5123]  <TASK>
[ 3267.466090][ T5123]  dump_stack_lvl+0x1e7/0x2e0
[ 3267.470838][ T5123]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3267.476112][ T5123]  ? __pfx__printk+0x10/0x10
[ 3267.480763][ T5123]  ? ___ratelimit+0x4c4/0x670
[ 3267.485513][ T5123]  ? __pfx____ratelimit+0x10/0x10
[ 3267.490602][ T5123]  dump_header+0xda/0x6a0
[ 3267.494999][ T5123]  oom_kill_process+0x3a7/0x930
[ 3267.500006][ T5123]  out_of_memory+0xf67/0x1320
[ 3267.504943][ T5123]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3267.510639][ T5123]  ? __pfx___mutex_lock+0x10/0x10
[ 3267.515726][ T5123]  ? __pfx_out_of_memory+0x10/0x10
[ 3267.520909][ T5123]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3267.526516][ T5123]  ? __pfx_lock_release+0x10/0x10
[ 3267.531610][ T5123]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3267.537747][ T5123]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3267.543004][ T5123]  ? mem_cgroup_iter+0x3e9/0x560
[ 3267.548011][ T5123]  try_charge_memcg+0xda2/0x18a0
[ 3267.553005][ T5123]  ? mark_lock+0x9a/0x350
[ 3267.557416][ T5123]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3267.562885][ T5123]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 3267.569100][ T5123]  charge_memcg+0xa2/0x160
[ 3267.573590][ T5123]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 3267.579721][ T5123]  __read_swap_cache_async+0x480/0x8b0
[ 3267.585257][ T5123]  ? mark_lock+0x9a/0x350
[ 3267.589652][ T5123]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 3267.595710][ T5123]  swap_cluster_readahead+0x67c/0x810
[ 3267.601163][ T5123]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 3267.607119][ T5123]  ? __pfx_lock_release+0x10/0x10
[ 3267.612383][ T5123]  ? xas_descend+0x37e/0x470
[ 3267.617045][ T5123]  swapin_readahead+0x1ea/0x1070
[ 3267.622041][ T5123]  ? filemap_get_entry+0x127/0x4e0
[ 3267.627231][ T5123]  ? __pfx_swapin_readahead+0x10/0x10
[ 3267.632679][ T5123]  ? __filemap_get_folio+0x935/0xbc0
[ 3267.638037][ T5123]  ? swap_cache_get_folio+0x9f/0x570
[ 3267.643393][ T5123]  do_swap_page+0x791/0x3f40
[ 3267.648045][ T5123]  ? rcu_is_watching+0x15/0xb0
[ 3267.652885][ T5123]  ? do_swap_page+0x154/0x3f40
[ 3267.657705][ T5123]  ? __pfx_do_swap_page+0x10/0x10
[ 3267.662788][ T5123]  ? pte_offset_map_nolock+0x137/0x1f0
[ 3267.668317][ T5123]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 3267.674209][ T5123]  ? __pfx_validate_chain+0x10/0x10
[ 3267.679478][ T5123]  __handle_mm_fault+0x15e8/0x72d0
[ 3267.684694][ T5123]  ? __pfx___handle_mm_fault+0x10/0x10
[ 3267.690229][ T5123]  ? mt_find+0x226/0x850
[ 3267.694539][ T5123]  ? __pfx_lock_release+0x10/0x10
[ 3267.699651][ T5123]  ? mt_find+0x62d/0x850
[ 3267.703963][ T5123]  ? mt_find+0x226/0x850
[ 3267.708287][ T5123]  ? find_vma+0x142/0x1c0
[ 3267.712701][ T5123]  ? __pfx_find_vma+0x10/0x10
[ 3267.717432][ T5123]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3267.723475][ T5123]  handle_mm_fault+0x3c1/0x8a0
[ 3267.728304][ T5123]  exc_page_fault+0x2ad/0x870
[ 3267.733055][ T5123]  asm_exc_page_fault+0x26/0x30
[ 3267.737981][ T5123] RIP: 0010:__get_user_8+0x11/0x20
[ 3267.743144][ T5123] Code: ca c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 89 c2 48 c1 fa 3f 48 09 d0 0f 01 cb <48> 8b 10 31 c0 0f 01 ca c3 cc cc cc cc 66 90 90 90 90 90 90 90 90
[ 3267.762810][ T5123] RSP: 0000:ffffc90003b4fd58 EFLAGS: 00050202
[ 3267.768933][ T5123] RAX: 00000000575e08a8 RBX: ffff88805c9632f8 RCX: ffffc90003b4fc03
[ 3267.776956][ T5123] RDX: 0000000000000000 RSI: ffffffff8baac7e0 RDI: ffffffff8bfe6da0
[ 3267.784979][ T5123] RBP: ffffc90003b4fe98 R08: ffffffff8f856cef R09: 1ffffffff1f0ad9d
[ 3267.793002][ T5123] R10: dffffc0000000000 R11: fffffbfff1f0ad9e R12: ffffc90003b4fd60
[ 3267.801028][ T5123] R13: ffffc90003b4ffd8 R14: dffffc0000000000 R15: ffff88805c961dc0
[ 3267.809083][ T5123]  __rseq_handle_notify_resume+0x158/0x1490
[ 3267.815040][ T5123]  ? __pfx_hrtimer_wakeup+0x10/0x10
[ 3267.820341][ T5123]  ? __pfx___rseq_handle_notify_resume+0x10/0x10
[ 3267.826746][ T5123]  ? syscall_exit_to_user_mode+0xa2/0x360
[ 3267.832534][ T5123]  syscall_exit_to_user_mode+0x113/0x360
[ 3267.838254][ T5123]  __do_fast_syscall_32+0xcf/0x120
[ 3267.843439][ T5123]  ? exc_page_fault+0x587/0x870
[ 3267.848367][ T5123]  do_fast_syscall_32+0x33/0x70
[ 3267.853279][ T5123]  entry_SYSENTER_compat_after_hwframe+0x7c/0x86
[ 3267.859672][ T5123] RIP: 0023:0xf72ec579
[ 3267.863785][ T5123] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[ 3267.883444][ T5123] RSP: 002b:00000000f758dc80 EFLAGS: 00000206 ORIG_RAX: 000000000000010b
[ 3267.891915][ T5123] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000
[ 3267.899936][ T5123] RDX: 00000000f758dcb4 RSI: 00000000f758dcac RDI: 00000000f758dcb4
[ 3267.907955][ T5123] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 3267.915971][ T5123] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 3267.923989][ T5123] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 3267.932030][ T5123]  </TASK>
06:22:24 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x87c, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x84c, 0x2, [@TCA_BASIC_POLICE={0x848, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffff0]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}]}]}}]}, 0x87c}}, 0x0)

[ 3268.006373][ T5123] memory: usage 307180kB, limit 307200kB, failcnt 115915
[ 3268.013477][ T5123] memory+swap: usage 307648kB, limit 9007199254740988kB, failcnt 0
[ 3268.052992][ T5123] kmem: usage 307168kB, limit 9007199254740988kB, failcnt 0
[ 3268.077395][ T5123] Memory cgroup stats for /syz2:
[ 3268.077559][ T5123] cache 0
[ 3268.107985][ T5123] rss 0
[ 3268.110909][ T5123] rss_huge 0
[ 3268.115394][ T5123] shmem 0
[ 3268.123716][ T5123] mapped_file 0
[ 3268.132144][ T5123] dirty 0
[ 3268.139954][ T5123] writeback 0
[ 3268.147663][ T5123] workingset_refault_anon 41804
[ 3268.160655][ T5123] workingset_refault_file 0
[ 3268.170373][ T5123] swap 479232
[ 3268.178305][ T5123] swapcached 12288
[ 3268.187635][ T5123] pgpgin 246133
[ 3268.195938][ T5123] pgpgout 246130
[ 3268.205543][ T5123] pgfault 586833
[ 3268.214453][ T5123] pgmajfault 41446
[ 3268.223094][ T5123] inactive_anon 0
[ 3268.231639][ T5123] active_anon 12288
[ 3268.248148][ T5123] inactive_file 0
[ 3268.251951][ T5123] active_file 0
[ 3268.258027][ T5123] unevictable 0
[ 3268.265361][ T5123] hierarchical_memory_limit 314572800
[ 3268.279870][ T5123] hierarchical_memsw_limit 9223372036854771712
[ 3268.295157][ T5123] total_cache 0
[ 3268.305380][ T5123] total_rss 0
[ 3268.313729][ T5123] total_rss_huge 0
[ 3268.323429][ T5123] total_shmem 0
[ 3268.332165][ T5123] total_mapped_file 0
[ 3268.342054][ T5123] total_dirty 0
[ 3268.361174][ T5123] total_writeback 0
[ 3268.371004][ T5123] total_workingset_refault_anon 41804
[ 3268.388000][ T5123] total_workingset_refault_file 0
[ 3268.402568][ T5123] total_swap 479232
[ 3268.412081][ T5123] total_swapcached 12288
[ 3268.422875][ T5123] total_pgpgin 246133
[ 3268.433081][ T5123] total_pgpgout 246130
[ 3268.443568][ T5123] total_pgfault 586833
[ 3268.454911][ T5123] total_pgmajfault 41446
[ 3268.461140][ T5123] total_inactive_anon 0
[ 3268.465467][ T5123] total_active_anon 12288
[ 3268.474868][ T5123] total_inactive_file 0
[ 3268.484056][ T5123] total_active_file 0
[ 3268.496574][ T5123] total_unevictable 0
[ 3268.501909][ T5123] anon_cost 0
[ 3268.509863][ T5123] file_cost 0
[ 3268.513815][ T5123] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=25558,uid=0
[ 3268.535797][ T5123] Memory cgroup out of memory: Killed process 25558 (syz-executor.2) total-vm:54344kB, anon-rss:316kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:64kB oom_score_adj:1000
[ 3268.590357][T25561] syz-executor.1 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[ 3268.615248][T25561] CPU: 1 PID: 25561 Comm: syz-executor.1 Not tainted 6.8.0-rc7-syzkaller-00250-g137e0ec05aeb #0
[ 3268.625736][T25561] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3268.635840][T25561] Call Trace:
[ 3268.639186][T25561]  <TASK>
[ 3268.642148][T25561]  dump_stack_lvl+0x1e7/0x2e0
[ 3268.646888][T25561]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3268.652141][T25561]  ? __pfx__printk+0x10/0x10
[ 3268.656786][T25561]  ? ___ratelimit+0x4c4/0x670
[ 3268.661520][T25561]  ? __pfx____ratelimit+0x10/0x10
[ 3268.666606][T25561]  dump_header+0xda/0x6a0
[ 3268.670992][T25561]  oom_kill_process+0x3a7/0x930
[ 3268.675914][T25561]  out_of_memory+0xf67/0x1320
[ 3268.680654][T25561]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
06:22:25 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x888, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x858, 0x2, [@TCA_BASIC_POLICE={0x854, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}, @TCA_POLICE_PEAKRATE64={0xc}]}]}}]}, 0x888}}, 0x0)

[ 3268.686345][T25561]  ? __pfx___mutex_lock+0x10/0x10
[ 3268.691440][T25561]  ? __pfx_out_of_memory+0x10/0x10
[ 3268.696628][T25561]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3268.702242][T25561]  ? __pfx_lock_release+0x10/0x10
[ 3268.707335][T25561]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3268.713457][T25561]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3268.718679][T25561]  ? mem_cgroup_iter+0x3e9/0x560
[ 3268.723641][T25561]  try_charge_memcg+0xda2/0x18a0
[ 3268.728590][T25561]  ? mark_lock+0x9a/0x350
[ 3268.732957][T25561]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3268.738366][T25561]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 3268.744535][T25561]  charge_memcg+0xa2/0x160
[ 3268.748975][T25561]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 3268.755056][T25561]  __read_swap_cache_async+0x480/0x8b0
[ 3268.760540][T25561]  ? mark_lock+0x9a/0x350
[ 3268.764888][T25561]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 3268.770887][T25561]  ? blk_start_plug+0x6f/0x1b0
[ 3268.775666][T25561]  swap_cluster_readahead+0x398/0x810
[ 3268.781066][T25561]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 3268.787004][T25561]  ? __pfx_lock_release+0x10/0x10
[ 3268.792054][T25561]  ? xas_descend+0x37e/0x470
[ 3268.796671][T25561]  swapin_readahead+0x1ea/0x1070
[ 3268.801633][T25561]  ? filemap_get_entry+0x127/0x4e0
[ 3268.806805][T25561]  ? __pfx_swapin_readahead+0x10/0x10
[ 3268.812205][T25561]  ? __filemap_get_folio+0x935/0xbc0
[ 3268.817513][T25561]  ? swap_cache_get_folio+0x9f/0x570
[ 3268.822829][T25561]  do_swap_page+0x791/0x3f40
[ 3268.827435][T25561]  ? rcu_is_watching+0x15/0xb0
[ 3268.832230][T25561]  ? do_swap_page+0x154/0x3f40
[ 3268.837004][T25561]  ? __pfx_do_swap_page+0x10/0x10
[ 3268.842039][T25561]  ? pte_offset_map_nolock+0x137/0x1f0
[ 3268.847602][T25561]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 3268.853438][T25561]  __handle_mm_fault+0x15e8/0x72d0
[ 3268.858589][T25561]  ? reacquire_held_locks+0x3eb/0x690
[ 3268.863973][T25561]  ? __pfx___handle_mm_fault+0x10/0x10
[ 3268.869452][T25561]  ? __pfx_reacquire_held_locks+0x10/0x10
[ 3268.875217][T25561]  ? mtree_range_walk+0x6fd/0x8e0
[ 3268.880261][T25561]  ? lock_vma_under_rcu+0x18a/0x730
[ 3268.885471][T25561]  ? __pfx_lock_release+0x10/0x10
[ 3268.890507][T25561]  ? lock_vma_under_rcu+0x2f9/0x730
[ 3268.895734][T25561]  ? lock_vma_under_rcu+0x18a/0x730
[ 3268.900961][T25561]  ? __pfx_lock_vma_under_rcu+0x10/0x10
[ 3268.906523][T25561]  handle_mm_fault+0x3c1/0x8a0
[ 3268.911311][T25561]  exc_page_fault+0x456/0x870
[ 3268.916005][T25561]  asm_exc_page_fault+0x26/0x30
[ 3268.920949][T25561] RIP: 0023:0xf72ab34a
[ 3268.925025][T25561] Code: 68 40 42 0f 00 68 81 00 00 00 50 68 f0 00 00 00 8b 5c 24 20 e8 17 d8 03 00 83 c4 10 83 83 d0 70 02 00 01 0f b6 83 b6 05 b5 00 <80> bc 24 cc 01 00 00 00 8b 8c 24 d4 00 00 00 0f 84 61 01 00 00 84
[ 3268.944656][T25561] RSP: 002b:00000000f752db10 EFLAGS: 00010202
[ 3268.950733][T25561] RAX: 0000000000000001 RBX: 00000000f73e2ff4 RCX: 0000000000000081
[ 3268.958732][T25561] RDX: 00000000000f4240 RSI: 00000000f73e2ff4 RDI: 0000000000000000
[ 3268.966716][T25561] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 3268.974701][T25561] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 3268.982682][T25561] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 3268.990682][T25561]  </TASK>
[ 3269.126755][T25561] memory: usage 307200kB, limit 307200kB, failcnt 143579
[ 3269.148877][T25561] memory+swap: usage 307928kB, limit 9007199254740988kB, failcnt 0
[ 3269.182354][T25561] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0
[ 3269.209503][T25561] Memory cgroup stats for /syz0:
[ 3269.209678][T25561] cache 0
[ 3269.238863][T25561] rss 12288
[ 3269.252268][T25561] rss_huge 0
[ 3269.262691][T25561] shmem 0
[ 3269.273232][T25561] mapped_file 0
[ 3269.323633][T25561] dirty 0
[ 3269.337008][T25561] writeback 0
[ 3269.340367][T25561] workingset_refault_anon 53205
[ 3269.345257][T25561] workingset_refault_file 0
[ 3269.375855][T25561] swap 745472
[ 3269.388703][T25561] swapcached 8192
[ 3269.403127][T25561] pgpgin 247668
[ 3269.411774][T25561] pgpgout 247665
[ 3269.415424][T25561] pgfault 575884
[ 3269.433537][T25561] pgmajfault 51973
[ 3269.448113][T25561] inactive_anon 4096
[ 3269.452089][T25561] active_anon 4096
[ 3269.455855][T25561] inactive_file 0
[ 3269.480204][T25561] active_file 0
[ 3269.483738][T25561] unevictable 0
[ 3269.502096][T25561] hierarchical_memory_limit 314572800
[ 3269.518297][T25561] hierarchical_memsw_limit 9223372036854771712
[ 3269.524735][T25561] total_cache 0
[ 3269.545416][T25561] total_rss 12288
[ 3269.561305][T25561] total_rss_huge 0
[ 3269.565100][T25561] total_shmem 0
[ 3269.587353][T25561] total_mapped_file 0
[ 3269.605616][T25561] total_dirty 0
[ 3269.609647][T25561] total_writeback 0
[ 3269.613634][T25561] total_workingset_refault_anon 53205
[ 3269.626649][T25561] total_workingset_refault_file 0
[ 3269.631752][T25561] total_swap 745472
[ 3269.635626][T25561] total_swapcached 8192
[ 3269.661927][T25561] total_pgpgin 247668
[ 3269.672378][T25561] total_pgpgout 247665
[ 3269.686189][T25561] total_pgfault 575884
[ 3269.696227][T25561] total_pgmajfault 51973
[ 3269.713539][T25561] total_inactive_anon 4096
[ 3269.723494][T25561] total_active_anon 4096
[ 3269.738638][T25561] total_inactive_file 0
[ 3269.749891][T25561] total_active_file 0
[ 3269.765637][T25561] total_unevictable 0
[ 3269.775906][T25561] anon_cost 0
[ 3269.788411][T25561] file_cost 0
[ 3269.796138][T25561] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=25565,uid=0
[ 3269.842212][T25561] Memory cgroup out of memory: Killed process 25565 (syz-executor.0) total-vm:54344kB, anon-rss:316kB, file-rss:8704kB, shmem-rss:0kB, UID:0 pgtables:64kB oom_score_adj:1000
06:22:26 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x87c, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x84c, 0x2, [@TCA_BASIC_POLICE={0x848, 0x4, [@TCA_POLICE_RATE={0x404}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}]}]}}]}, 0x87c}}, 0x0)

[ 3270.274369][ T5123] syz-executor.2 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[ 3270.327462][ T5123] CPU: 0 PID: 5123 Comm: syz-executor.2 Not tainted 6.8.0-rc7-syzkaller-00250-g137e0ec05aeb #0
[ 3270.337878][ T5123] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3270.347986][ T5123] Call Trace:
[ 3270.351309][ T5123]  <TASK>
[ 3270.354283][ T5123]  dump_stack_lvl+0x1e7/0x2e0
[ 3270.359038][ T5123]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3270.364307][ T5123]  ? __pfx__printk+0x10/0x10
[ 3270.368954][ T5123]  ? ___ratelimit+0x4c4/0x670
[ 3270.373702][ T5123]  ? __pfx____ratelimit+0x10/0x10
[ 3270.378802][ T5123]  dump_header+0xda/0x6a0
[ 3270.383201][ T5123]  oom_kill_process+0x3a7/0x930
[ 3270.388103][ T5123]  out_of_memory+0xf67/0x1320
[ 3270.393250][ T5123]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3270.398901][ T5123]  ? __pfx___mutex_lock+0x10/0x10
[ 3270.403938][ T5123]  ? __pfx_out_of_memory+0x10/0x10
[ 3270.409072][ T5123]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3270.414627][ T5123]  ? __pfx_lock_release+0x10/0x10
[ 3270.419664][ T5123]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3270.425747][ T5123]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3270.430959][ T5123]  ? mem_cgroup_iter+0x3e9/0x560
[ 3270.435910][ T5123]  try_charge_memcg+0xda2/0x18a0
[ 3270.440856][ T5123]  ? mark_lock+0x9a/0x350
[ 3270.445225][ T5123]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3270.450642][ T5123]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 3270.456893][ T5123]  charge_memcg+0xa2/0x160
[ 3270.461330][ T5123]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 3270.467413][ T5123]  __read_swap_cache_async+0x480/0x8b0
[ 3270.472894][ T5123]  ? mark_lock+0x9a/0x350
[ 3270.477247][ T5123]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 3270.483256][ T5123]  swap_cluster_readahead+0x67c/0x810
[ 3270.488654][ T5123]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 3270.494565][ T5123]  ? __pfx_lock_release+0x10/0x10
[ 3270.499603][ T5123]  ? xas_descend+0x37e/0x470
[ 3270.504216][ T5123]  swapin_readahead+0x1ea/0x1070
[ 3270.509166][ T5123]  ? filemap_get_entry+0x127/0x4e0
[ 3270.514301][ T5123]  ? __pfx_swapin_readahead+0x10/0x10
[ 3270.519696][ T5123]  ? __filemap_get_folio+0x935/0xbc0
[ 3270.525000][ T5123]  ? swap_cache_get_folio+0x9f/0x570
[ 3270.530302][ T5123]  do_swap_page+0x791/0x3f40
[ 3270.534905][ T5123]  ? rcu_is_watching+0x15/0xb0
[ 3270.539694][ T5123]  ? do_swap_page+0x154/0x3f40
[ 3270.544475][ T5123]  ? __pfx_do_swap_page+0x10/0x10
[ 3270.549516][ T5123]  ? pte_offset_map_nolock+0x137/0x1f0
[ 3270.554979][ T5123]  ? mark_lock+0x9a/0x350
[ 3270.559335][ T5123]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 3270.565155][ T5123]  ? __pfx_validate_chain+0x10/0x10
[ 3270.570368][ T5123]  __handle_mm_fault+0x15e8/0x72d0
[ 3270.575532][ T5123]  ? __pfx___handle_mm_fault+0x10/0x10
[ 3270.581026][ T5123]  ? mt_find+0x226/0x850
[ 3270.585319][ T5123]  ? __pfx_lock_release+0x10/0x10
[ 3270.590374][ T5123]  ? mt_find+0x62d/0x850
[ 3270.594632][ T5123]  ? mt_find+0x226/0x850
[ 3270.598910][ T5123]  ? find_vma+0x142/0x1c0
[ 3270.603253][ T5123]  ? __pfx_find_vma+0x10/0x10
[ 3270.607943][ T5123]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3270.613945][ T5123]  handle_mm_fault+0x3c1/0x8a0
[ 3270.618751][ T5123]  exc_page_fault+0x2ad/0x870
[ 3270.623451][ T5123]  asm_exc_page_fault+0x26/0x30
[ 3270.628311][ T5123] RIP: 0010:__get_user_8+0x11/0x20
[ 3270.633437][ T5123] Code: ca c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 89 c2 48 c1 fa 3f 48 09 d0 0f 01 cb <48> 8b 10 31 c0 0f 01 ca c3 cc cc cc cc 66 90 90 90 90 90 90 90 90
[ 3270.653070][ T5123] RSP: 0000:ffffc90003b4fd58 EFLAGS: 00050202
[ 3270.659156][ T5123] RAX: 00000000575e08a8 RBX: ffff88805c9632f8 RCX: ffffc90003b4fc03
[ 3270.667145][ T5123] RDX: 0000000000000000 RSI: ffffffff8baac7e0 RDI: ffffffff8bfe6da0
[ 3270.675224][ T5123] RBP: ffffc90003b4fe98 R08: ffffffff8f856cef R09: 1ffffffff1f0ad9d
[ 3270.683217][ T5123] R10: dffffc0000000000 R11: fffffbfff1f0ad9e R12: ffffc90003b4fd60
[ 3270.691210][ T5123] R13: ffffc90003b4ffd8 R14: dffffc0000000000 R15: ffff88805c961dc0
[ 3270.699209][ T5123]  __rseq_handle_notify_resume+0x158/0x1490
[ 3270.705128][ T5123]  ? __pfx_hrtimer_wakeup+0x10/0x10
[ 3270.710352][ T5123]  ? __pfx___rseq_handle_notify_resume+0x10/0x10
[ 3270.716728][ T5123]  ? syscall_exit_to_user_mode+0xa2/0x360
[ 3270.722474][ T5123]  syscall_exit_to_user_mode+0x113/0x360
[ 3270.728135][ T5123]  __do_fast_syscall_32+0xcf/0x120
[ 3270.733296][ T5123]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 3270.739463][ T5123]  ? lockdep_hardirqs_on+0x98/0x140
[ 3270.744687][ T5123]  do_fast_syscall_32+0x33/0x70
[ 3270.749559][ T5123]  entry_SYSENTER_compat_after_hwframe+0x7c/0x86
[ 3270.755902][ T5123] RIP: 0023:0xf72ec579
[ 3270.759994][ T5123] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[ 3270.779615][ T5123] RSP: 002b:00000000f758dc80 EFLAGS: 00000206 ORIG_RAX: 000000000000010b
[ 3270.788086][ T5123] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000
[ 3270.796090][ T5123] RDX: 00000000f758dcb4 RSI: 00000000f758dcac RDI: 00000000f758dcb4
[ 3270.804076][ T5123] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 3270.812072][ T5123] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 3270.820065][ T5123] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 3270.828063][ T5123]  </TASK>
[ 3270.856450][ T5123] memory: usage 307200kB, limit 307200kB, failcnt 116510
[ 3270.863558][ T5123] memory+swap: usage 307668kB, limit 9007199254740988kB, failcnt 0
[ 3270.896599][ T5123] kmem: usage 307176kB, limit 9007199254740988kB, failcnt 0
06:22:27 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x40, 0x4, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x3d9}}}]}]}}]}, 0x74}}, 0x0)

[ 3270.903963][ T5123] Memory cgroup stats for /syz2:
[ 3270.904119][ T5123] cache 0
06:22:27 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x888, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x858, 0x2, [@TCA_BASIC_POLICE={0x854, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd030000]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}, @TCA_POLICE_PEAKRATE64={0xc}]}]}}]}, 0x888}}, 0x0)

[ 3270.942311][ T5123] rss 0
[ 3270.945147][ T5123] rss_huge 0
[ 3270.948515][ T5123] shmem 0
[ 3270.951482][ T5123] mapped_file 0
[ 3270.954964][ T5123] dirty 0
[ 3270.992549][ T5123] writeback 0
[ 3270.995900][ T5123] workingset_refault_anon 42027
[ 3271.009047][ T5123] workingset_refault_file 0
[ 3271.013742][ T5123] swap 479232
[ 3271.026512][ T5123] swapcached 12288
[ 3271.030314][ T5123] pgpgin 246365
[ 3271.033797][ T5123] pgpgout 246362
[ 3271.057501][ T5123] pgfault 587182
[ 3271.061370][ T5123] pgmajfault 41654
[ 3271.065213][ T5123] inactive_anon 12288
[ 3271.087909][ T5123] active_anon 0
[ 3271.091443][ T5123] inactive_file 0
[ 3271.095109][ T5123] active_file 0
[ 3271.118830][ T5123] unevictable 0
[ 3271.122373][ T5123] hierarchical_memory_limit 314572800
[ 3271.142799][ T5123] hierarchical_memsw_limit 9223372036854771712
[ 3271.158883][ T5123] total_cache 0
[ 3271.169513][ T5123] total_rss 0
[ 3271.172866][ T5123] total_rss_huge 0
[ 3271.188170][ T5123] total_shmem 0
[ 3271.191693][ T5123] total_mapped_file 0
[ 3271.195697][ T5123] total_dirty 0
[ 3271.222325][ T5123] total_writeback 0
[ 3271.237422][ T5123] total_workingset_refault_anon 42027
[ 3271.248873][ T5123] total_workingset_refault_file 0
[ 3271.253965][ T5123] total_swap 479232
[ 3271.306921][ T5123] total_swapcached 12288
[ 3271.311249][ T5123] total_pgpgin 246365
[ 3271.315262][ T5123] total_pgpgout 246362
[ 3271.332399][ T5123] total_pgfault 587182
[ 3271.340290][ T5123] total_pgmajfault 41654
[ 3271.344714][ T5123] total_inactive_anon 12288
[ 3271.350091][ T5123] total_active_anon 0
[ 3271.360157][ T5123] total_inactive_file 0
[ 3271.364484][ T5123] total_active_file 0
[ 3271.369383][ T5123] total_unevictable 0
[ 3271.374660][ T5123] anon_cost 0
[ 3271.397373][ T5123] file_cost 0
[ 3271.400722][ T5123] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=25567,uid=0
[ 3271.427392][ T5123] Memory cgroup out of memory: Killed process 25567 (syz-executor.2) total-vm:54344kB, anon-rss:308kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:64kB oom_score_adj:1000
[ 3271.452974][T25568] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3271.463468][T25568] CPU: 1 PID: 25568 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00250-g137e0ec05aeb #0
[ 3271.473933][T25568] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3271.484038][T25568] Call Trace:
[ 3271.487357][T25568]  <TASK>
[ 3271.490319][T25568]  dump_stack_lvl+0x1e7/0x2e0
[ 3271.495062][T25568]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3271.500317][T25568]  ? __pfx__printk+0x10/0x10
[ 3271.504959][T25568]  ? ___ratelimit+0x4c4/0x670
[ 3271.509701][T25568]  ? __pfx____ratelimit+0x10/0x10
[ 3271.514787][T25568]  dump_header+0xda/0x6a0
[ 3271.519177][T25568]  oom_kill_process+0x3a7/0x930
[ 3271.524091][T25568]  out_of_memory+0xf67/0x1320
[ 3271.528894][T25568]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3271.534591][T25568]  ? __pfx___mutex_lock+0x10/0x10
[ 3271.539669][T25568]  ? __pfx_out_of_memory+0x10/0x10
[ 3271.544844][T25568]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3271.550445][T25568]  ? __pfx_lock_release+0x10/0x10
[ 3271.555526][T25568]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3271.561662][T25568]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3271.566917][T25568]  ? mem_cgroup_iter+0x3e9/0x560
[ 3271.571918][T25568]  try_charge_memcg+0xda2/0x18a0
[ 3271.576941][T25568]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3271.582371][T25568]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3271.588141][T25568]  ? __pfx_lock_release+0x10/0x10
[ 3271.593219][T25568]  ? memcg_account_kmem+0x1e7/0x210
[ 3271.598489][T25568]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3271.604349][T25568]  __memcg_kmem_charge_page+0xe1/0x250
[ 3271.609885][T25568]  memcg_charge_kernel_stack+0x37e/0x550
[ 3271.615571][T25568]  dup_task_struct+0x40d/0x7d0
[ 3271.620387][T25568]  copy_process+0x5d5/0x3fc0
[ 3271.625043][T25568]  ? __might_fault+0xa9/0x120
[ 3271.629773][T25568]  ? __pfx_lock_release+0x10/0x10
[ 3271.634867][T25568]  ? __lock_acquire+0x1345/0x1fd0
[ 3271.639984][T25568]  ? __pfx_copy_process+0x10/0x10
[ 3271.645056][T25568]  ? __might_fault+0xc5/0x120
[ 3271.649785][T25568]  ? __asan_memset+0x23/0x50
[ 3271.654442][T25568]  kernel_clone+0x21d/0x8d0
[ 3271.658996][T25568]  ? __pfx_kernel_clone+0x10/0x10
[ 3271.664074][T25568]  ? __pfx_lock_release+0x10/0x10
[ 3271.669158][T25568]  __se_sys_clone3+0x2cb/0x350
[ 3271.673966][T25568]  ? __might_fault+0xa9/0x120
[ 3271.678686][T25568]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3271.684018][T25568]  ? rcu_is_watching+0x15/0xb0
[ 3271.688856][T25568]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3271.694908][T25568]  ? exc_page_fault+0x587/0x870
[ 3271.699814][T25568]  ? int80_emulation+0xea/0x210
[ 3271.704732][T25568]  int80_emulation+0x129/0x210
[ 3271.709563][T25568]  asm_int80_emulation+0x1a/0x20
[ 3271.714544][T25568] RIP: 0023:0xf7372060
[ 3271.718657][T25568] Code: 4c 24 04 85 c9 0f 84 df 0d fe ff 8b 54 24 0c 85 d2 0f 84 d3 0d fe ff 53 56 8b 74 24 18 89 cb 8b 4c 24 10 b8 b3 01 00 00 cd 80 <85> c0 74 09 5e 5b 0f 8c b4 0d fe ff c3 31 ed 83 e4 f0 83 ec 0c 56
[ 3271.738388][T25568] RSP: 002b:00000000f75898e4 EFLAGS: 00000282 ORIG_RAX: 00000000000001b3
[ 3271.746854][T25568] RAX: ffffffffffffffda RBX: 00000000f7589950 RCX: 0000000000000058
06:22:28 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x888, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x858, 0x2, [@TCA_BASIC_POLICE={0x854, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}, @TCA_POLICE_PEAKRATE64={0xc}]}]}}]}, 0x888}}, 0x0)

[ 3271.754873][T25568] RDX: 00000000f7322eb0 RSI: 00000000f5ee2b40 RDI: 00000000ffffffd8
[ 3271.762884][T25568] RBP: 000000000000000b R08: 0000000000000000 R09: 0000000000000000
[ 3271.770897][T25568] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 3271.778917][T25568] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 3271.786964][T25568]  </TASK>
[ 3271.849678][T25568] memory: usage 307200kB, limit 307200kB, failcnt 143753
[ 3271.869220][T25568] memory+swap: usage 307908kB, limit 9007199254740988kB, failcnt 0
[ 3271.887517][T25568] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[ 3271.906628][T25568] Memory cgroup stats for /syz0:
[ 3271.906796][T25568] cache 0
[ 3271.914729][T25568] rss 0
[ 3271.934189][T25568] rss_huge 0
[ 3271.942557][T25568] shmem 0
[ 3271.945563][T25568] mapped_file 0
[ 3271.962001][T25568] dirty 0
[ 3271.971597][T25568] writeback 0
[ 3271.982770][T25568] workingset_refault_anon 53267
[ 3271.998155][T25568] workingset_refault_file 0
[ 3272.013240][T25568] swap 724992
[ 3272.029726][T25568] swapcached 0
[ 3272.033166][T25568] pgpgin 247738
[ 3272.056994][T25568] pgpgout 247738
[ 3272.060603][T25568] pgfault 575993
[ 3272.071163][T25568] pgmajfault 52031
[ 3272.074958][T25568] inactive_anon 0
[ 3272.095366][T25568] active_anon 0
[ 3272.101580][T25568] inactive_file 0
[ 3272.113432][T25568] active_file 0
[ 3272.122723][T25568] unevictable 0
[ 3272.126251][T25568] hierarchical_memory_limit 314572800
[ 3272.161952][T25568] hierarchical_memsw_limit 9223372036854771712
[ 3272.174759][T25568] total_cache 0
[ 3272.187943][T25568] total_rss 0
[ 3272.199703][T25568] total_rss_huge 0
[ 3272.210113][T25568] total_shmem 0
[ 3272.213643][T25568] total_mapped_file 0
[ 3272.239746][T25568] total_dirty 0
[ 3272.244759][T25568] total_writeback 0
[ 3272.256514][T25568] total_workingset_refault_anon 53267
[ 3272.268593][T25568] total_workingset_refault_file 0
[ 3272.273681][T25568] total_swap 724992
[ 3272.287872][T25568] total_swapcached 0
[ 3272.305402][T25568] total_pgpgin 247738
[ 3272.316590][T25568] total_pgpgout 247738
[ 3272.320742][T25568] total_pgfault 575993
[ 3272.324854][T25568] total_pgmajfault 52031
[ 3272.341123][T25568] total_inactive_anon 0
[ 3272.345356][T25568] total_active_anon 0
[ 3272.358836][T25568] total_inactive_file 0
[ 3272.364628][T25568] total_active_file 0
[ 3272.373543][T25568] total_unevictable 0
[ 3272.384466][T25568] anon_cost 0
[ 3272.392780][T25568] file_cost 0
[ 3272.396137][T25568] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=25568,uid=0
[ 3272.445686][T25568] Memory cgroup out of memory: Killed process 25568 (syz-executor.0) total-vm:54344kB, anon-rss:308kB, file-rss:8704kB, shmem-rss:0kB, UID:0 pgtables:64kB oom_score_adj:1000
06:22:29 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x87c, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x84c, 0x2, [@TCA_BASIC_POLICE={0x848, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}]}]}}]}, 0x87c}}, 0x0)

[ 3272.510016][ T5123] syz-executor.2 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[ 3272.550916][ T5123] CPU: 0 PID: 5123 Comm: syz-executor.2 Not tainted 6.8.0-rc7-syzkaller-00250-g137e0ec05aeb #0
[ 3272.561326][ T5123] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3272.571432][ T5123] Call Trace:
[ 3272.574754][ T5123]  <TASK>
[ 3272.577723][ T5123]  dump_stack_lvl+0x1e7/0x2e0
[ 3272.582463][ T5123]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3272.587751][ T5123]  ? __pfx__printk+0x10/0x10
[ 3272.592402][ T5123]  ? ___ratelimit+0x4c4/0x670
[ 3272.597142][ T5123]  ? __pfx____ratelimit+0x10/0x10
[ 3272.602236][ T5123]  dump_header+0xda/0x6a0
[ 3272.606629][ T5123]  oom_kill_process+0x3a7/0x930
[ 3272.611542][ T5123]  out_of_memory+0xf67/0x1320
[ 3272.616281][ T5123]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3272.621980][ T5123]  ? __pfx___mutex_lock+0x10/0x10
[ 3272.627067][ T5123]  ? __pfx_out_of_memory+0x10/0x10
[ 3272.632256][ T5123]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3272.637861][ T5123]  ? __pfx_lock_release+0x10/0x10
[ 3272.642967][ T5123]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3272.649101][ T5123]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3272.654353][ T5123]  ? mem_cgroup_iter+0x3e9/0x560
[ 3272.659378][ T5123]  try_charge_memcg+0xda2/0x18a0
[ 3272.664370][ T5123]  ? mark_lock+0x9a/0x350
[ 3272.668797][ T5123]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3272.674256][ T5123]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 3272.680458][ T5123]  charge_memcg+0xa2/0x160
[ 3272.684937][ T5123]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 3272.691060][ T5123]  __read_swap_cache_async+0x480/0x8b0
[ 3272.696582][ T5123]  ? mark_lock+0x9a/0x350
[ 3272.700960][ T5123]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 3272.706986][ T5123]  swap_cluster_readahead+0x67c/0x810
[ 3272.712396][ T5123]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 3272.718308][ T5123]  ? __pfx_lock_release+0x10/0x10
[ 3272.723348][ T5123]  ? xas_descend+0x37e/0x470
[ 3272.727963][ T5123]  swapin_readahead+0x1ea/0x1070
[ 3272.732914][ T5123]  ? filemap_get_entry+0x127/0x4e0
[ 3272.738060][ T5123]  ? __pfx_swapin_readahead+0x10/0x10
[ 3272.743452][ T5123]  ? __filemap_get_folio+0x935/0xbc0
[ 3272.748758][ T5123]  ? swap_cache_get_folio+0x9f/0x570
[ 3272.754062][ T5123]  do_swap_page+0x791/0x3f40
[ 3272.758663][ T5123]  ? rcu_is_watching+0x15/0xb0
[ 3272.763454][ T5123]  ? do_swap_page+0x154/0x3f40
[ 3272.768228][ T5123]  ? __pfx_do_swap_page+0x10/0x10
[ 3272.773258][ T5123]  ? pte_offset_map_nolock+0x137/0x1f0
[ 3272.778728][ T5123]  ? mark_lock+0x9a/0x350
[ 3272.783073][ T5123]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 3272.788889][ T5123]  ? __pfx_validate_chain+0x10/0x10
[ 3272.794112][ T5123]  __handle_mm_fault+0x15e8/0x72d0
[ 3272.799266][ T5123]  ? __pfx___handle_mm_fault+0x10/0x10
[ 3272.804748][ T5123]  ? mt_find+0x226/0x850
[ 3272.809017][ T5123]  ? __pfx_lock_release+0x10/0x10
[ 3272.814074][ T5123]  ? mt_find+0x62d/0x850
[ 3272.818338][ T5123]  ? mt_find+0x226/0x850
[ 3272.822615][ T5123]  ? find_vma+0x142/0x1c0
[ 3272.826977][ T5123]  ? __pfx_find_vma+0x10/0x10
[ 3272.831703][ T5123]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3272.837725][ T5123]  handle_mm_fault+0x3c1/0x8a0
[ 3272.842519][ T5123]  exc_page_fault+0x2ad/0x870
[ 3272.847219][ T5123]  asm_exc_page_fault+0x26/0x30
[ 3272.852085][ T5123] RIP: 0010:__get_user_8+0x11/0x20
[ 3272.857210][ T5123] Code: ca c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 89 c2 48 c1 fa 3f 48 09 d0 0f 01 cb <48> 8b 10 31 c0 0f 01 ca c3 cc cc cc cc 66 90 90 90 90 90 90 90 90
[ 3272.876854][ T5123] RSP: 0000:ffffc90003b4fd58 EFLAGS: 00050202
[ 3272.882939][ T5123] RAX: 00000000575e08a8 RBX: ffff88805c9632f8 RCX: ffffc90003b4fc03
[ 3272.890921][ T5123] RDX: 0000000000000000 RSI: ffffffff8baac7e0 RDI: ffffffff8bfe6da0
[ 3272.898906][ T5123] RBP: ffffc90003b4fe98 R08: ffffffff8f856cef R09: 1ffffffff1f0ad9d
[ 3272.906901][ T5123] R10: dffffc0000000000 R11: fffffbfff1f0ad9e R12: ffffc90003b4fd60
[ 3272.914891][ T5123] R13: ffffc90003b4ffd8 R14: dffffc0000000000 R15: ffff88805c961dc0
[ 3272.922904][ T5123]  __rseq_handle_notify_resume+0x158/0x1490
[ 3272.928934][ T5123]  ? __pfx_hrtimer_wakeup+0x10/0x10
[ 3272.934159][ T5123]  ? __pfx___rseq_handle_notify_resume+0x10/0x10
[ 3272.940519][ T5123]  ? syscall_exit_to_user_mode+0xa2/0x360
[ 3272.946258][ T5123]  syscall_exit_to_user_mode+0x113/0x360
[ 3272.951916][ T5123]  __do_fast_syscall_32+0xcf/0x120
[ 3272.957052][ T5123]  ? exc_page_fault+0x587/0x870
[ 3272.961923][ T5123]  do_fast_syscall_32+0x33/0x70
[ 3272.966797][ T5123]  entry_SYSENTER_compat_after_hwframe+0x7c/0x86
[ 3272.973140][ T5123] RIP: 0023:0xf72ec579
[ 3272.977217][ T5123] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[ 3272.997011][ T5123] RSP: 002b:00000000f758dc80 EFLAGS: 00000206 ORIG_RAX: 000000000000010b
[ 3273.005440][ T5123] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000
[ 3273.013422][ T5123] RDX: 00000000f758dcb4 RSI: 00000000f758dcac RDI: 00000000f758dcb4
[ 3273.021402][ T5123] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 3273.029381][ T5123] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 3273.037364][ T5123] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 3273.045358][ T5123]  </TASK>
[ 3273.217708][ T5123] memory: usage 307200kB, limit 307200kB, failcnt 116819
[ 3273.228742][ T5123] memory+swap: usage 307696kB, limit 9007199254740988kB, failcnt 0
[ 3273.239919][ T5123] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0
[ 3273.250075][ T5123] Memory cgroup stats for /syz2:
[ 3273.250230][ T5123] cache 0
[ 3273.265992][ T5123] rss 0
[ 3273.271947][ T5123] rss_huge 0
[ 3273.275440][ T5123] shmem 0
[ 3273.281572][ T5123] mapped_file 0
[ 3273.285206][ T5123] dirty 0
[ 3273.292642][ T5123] writeback 0
[ 3273.296231][ T5123] workingset_refault_anon 42115
[ 3273.310892][ T5123] workingset_refault_file 0
[ 3273.315615][ T5123] swap 507904
[ 3273.322147][ T5123] swapcached 12288
[ 3273.326043][ T5123] pgpgin 246463
[ 3273.332277][ T5123] pgpgout 246460
[ 3273.352553][ T5123] pgfault 587330
[ 3273.364308][ T5123] pgmajfault 41734
[ 3273.377027][ T5123] inactive_anon 0
[ 3273.385201][ T5123] active_anon 12288
[ 3273.394465][ T5123] inactive_file 0
[ 3273.404991][ T5123] active_file 0
[ 3273.413930][ T5123] unevictable 0
[ 3273.423790][ T5123] hierarchical_memory_limit 314572800
[ 3273.435116][ T5123] hierarchical_memsw_limit 9223372036854771712
[ 3273.449802][ T5123] total_cache 0
[ 3273.458234][ T5123] total_rss 0
[ 3273.464636][ T5123] total_rss_huge 0
[ 3273.473965][ T5123] total_shmem 0
[ 3273.482304][ T5123] total_mapped_file 0
[ 3273.491022][ T5123] total_dirty 0
[ 3273.500390][ T5123] total_writeback 0
[ 3273.509915][ T5123] total_workingset_refault_anon 42115
[ 3273.522161][ T5123] total_workingset_refault_file 0
[ 3273.533699][ T5123] total_swap 507904
[ 3273.542582][ T5123] total_swapcached 12288
[ 3273.552805][ T5123] total_pgpgin 246463
[ 3273.561439][ T5123] total_pgpgout 246460
[ 3273.566891][ T5123] total_pgfault 587330
[ 3273.575624][ T5123] total_pgmajfault 41734
[ 3273.584926][ T5123] total_inactive_anon 0
[ 3273.594507][ T5123] total_active_anon 12288
[ 3273.604819][ T5123] total_inactive_file 0
[ 3273.641362][ T5123] total_active_file 0
[ 3273.656265][ T5123] total_unevictable 0
[ 3273.665920][ T5123] anon_cost 0
[ 3273.675337][ T5123] file_cost 0
[ 3273.684381][ T5123] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=25573,uid=0
[ 3273.720221][ T5123] Memory cgroup out of memory: Killed process 25573 (syz-executor.2) total-vm:54344kB, anon-rss:308kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:64kB oom_score_adj:1000
[ 3273.894330][T25575] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3273.925869][T25575] CPU: 1 PID: 25575 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00250-g137e0ec05aeb #0
[ 3273.936365][T25575] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3273.946464][T25575] Call Trace:
[ 3273.949775][T25575]  <TASK>
[ 3273.952742][T25575]  dump_stack_lvl+0x1e7/0x2e0
[ 3273.957483][T25575]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3273.962742][T25575]  ? __pfx__printk+0x10/0x10
[ 3273.967387][T25575]  ? ___ratelimit+0x4c4/0x670
[ 3273.972134][T25575]  ? __pfx____ratelimit+0x10/0x10
[ 3273.977225][T25575]  dump_header+0xda/0x6a0
[ 3273.981632][T25575]  oom_kill_process+0x3a7/0x930
[ 3273.986552][T25575]  out_of_memory+0xf67/0x1320
[ 3273.991304][T25575]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3273.996999][T25575]  ? __pfx___mutex_lock+0x10/0x10
[ 3274.002078][T25575]  ? __pfx_out_of_memory+0x10/0x10
[ 3274.007259][T25575]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3274.012863][T25575]  ? __pfx_lock_release+0x10/0x10
[ 3274.017944][T25575]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3274.024071][T25575]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3274.029324][T25575]  ? mem_cgroup_iter+0x3e9/0x560
[ 3274.034321][T25575]  try_charge_memcg+0xda2/0x18a0
[ 3274.039357][T25575]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3274.044783][T25575]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3274.050560][T25575]  ? __pfx_lock_release+0x10/0x10
[ 3274.055652][T25575]  ? memcg_account_kmem+0x1e7/0x210
[ 3274.060938][T25575]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3274.066808][T25575]  __memcg_kmem_charge_page+0xe1/0x250
[ 3274.072338][T25575]  memcg_charge_kernel_stack+0x37e/0x550
[ 3274.078031][T25575]  dup_task_struct+0x15d/0x7d0
[ 3274.082859][T25575]  copy_process+0x5d5/0x3fc0
[ 3274.087523][T25575]  ? __might_fault+0xa9/0x120
[ 3274.092264][T25575]  ? __pfx_lock_release+0x10/0x10
[ 3274.097363][T25575]  ? __pfx_copy_process+0x10/0x10
[ 3274.102442][T25575]  ? __might_fault+0xc5/0x120
[ 3274.107203][T25575]  ? __asan_memset+0x23/0x50
[ 3274.111862][T25575]  kernel_clone+0x21d/0x8d0
[ 3274.116417][T25575]  ? __pfx_kernel_clone+0x10/0x10
[ 3274.121506][T25575]  __se_sys_clone3+0x2cb/0x350
[ 3274.126329][T25575]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3274.131688][T25575]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3274.137741][T25575]  ? exc_page_fault+0x587/0x870
[ 3274.142652][T25575]  ? int80_emulation+0xea/0x210
[ 3274.147562][T25575]  int80_emulation+0x129/0x210
[ 3274.152397][T25575]  asm_int80_emulation+0x1a/0x20
[ 3274.157378][T25575] RIP: 0023:0xf7372060
[ 3274.161487][T25575] Code: 4c 24 04 85 c9 0f 84 df 0d fe ff 8b 54 24 0c 85 d2 0f 84 d3 0d fe ff 53 56 8b 74 24 18 89 cb 8b 4c 24 10 b8 b3 01 00 00 cd 80 <85> c0 74 09 5e 5b 0f 8c b4 0d fe ff c3 31 ed 83 e4 f0 83 ec 0c 56
[ 3274.181141][T25575] RSP: 002b:00000000f75898e4 EFLAGS: 00000282 ORIG_RAX: 00000000000001b3
[ 3274.189608][T25575] RAX: ffffffffffffffda RBX: 00000000f7589950 RCX: 0000000000000058
[ 3274.197638][T25575] RDX: 00000000f7322eb0 RSI: 00000000f5ee2b40 RDI: 00000000ffffffd8
[ 3274.205655][T25575] RBP: 000000000000000b R08: 0000000000000000 R09: 0000000000000000
[ 3274.213677][T25575] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 3274.221695][T25575] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 3274.229730][T25575]  </TASK>
06:22:30 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x40, 0x4, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x3dd}}}]}]}}]}, 0x74}}, 0x0)

[ 3274.287359][T25575] memory: usage 307200kB, limit 307200kB, failcnt 144169
[ 3274.294461][T25575] memory+swap: usage 307908kB, limit 9007199254740988kB, failcnt 0
[ 3274.336170][T25575] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[ 3274.365781][T25575] Memory cgroup stats for /syz0:
[ 3274.365956][T25575] cache 0
[ 3274.384224][T25575] rss 0
[ 3274.396539][T25575] rss_huge 0
[ 3274.399815][T25575] shmem 0
[ 3274.402881][T25575] mapped_file 0
[ 3274.423806][T25575] dirty 0
[ 3274.437559][T25575] writeback 0
[ 3274.440927][T25575] workingset_refault_anon 53422
[ 3274.445831][T25575] workingset_refault_file 0
[ 3274.488445][T25575] swap 749568
[ 3274.491798][T25575] swapcached 0
[ 3274.495191][T25575] pgpgin 247902
[ 3274.506555][T25575] pgpgout 247902
[ 3274.510173][T25575] pgfault 576244
[ 3274.513759][T25575] pgmajfault 52173
[ 3274.559358][T25575] inactive_anon 0
[ 3274.563067][T25575] active_anon 0
[ 3274.576495][T25575] inactive_file 0
[ 3274.583529][T25575] active_file 0
[ 3274.590657][T25575] unevictable 0
[ 3274.594178][T25575] hierarchical_memory_limit 314572800
[ 3274.614906][T25575] hierarchical_memsw_limit 9223372036854771712
[ 3274.628339][T25575] total_cache 0
[ 3274.631887][T25575] total_rss 0
[ 3274.635220][T25575] total_rss_huge 0
[ 3274.654196][T25575] total_shmem 0
[ 3274.661510][T25575] total_mapped_file 0
[ 3274.665562][T25575] total_dirty 0
[ 3274.677210][T25575] total_writeback 0
[ 3274.681094][T25575] total_workingset_refault_anon 53422
[ 3274.696411][T25575] total_workingset_refault_file 0
[ 3274.701521][T25575] total_swap 749568
[ 3274.705357][T25575] total_swapcached 0
[ 3274.724225][T25575] total_pgpgin 247902
[ 3274.733178][T25575] total_pgpgout 247902
[ 3274.741597][T25575] total_pgfault 576244
[ 3274.745952][T25575] total_pgmajfault 52173
[ 3274.760295][T25575] total_inactive_anon 0
[ 3274.764520][T25575] total_active_anon 0
[ 3274.780559][T25575] total_inactive_file 0
[ 3274.784789][T25575] total_active_file 0
[ 3274.801326][T25575] total_unevictable 0
[ 3274.805379][T25575] anon_cost 0
[ 3274.831853][T25575] file_cost 0
[ 3274.835219][T25575] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=25575,uid=0
06:22:31 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x888, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x858, 0x2, [@TCA_BASIC_POLICE={0x854, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}, @TCA_POLICE_PEAKRATE64={0xc}]}]}}]}, 0x888}}, 0x0)

[ 3274.874387][T25575] Memory cgroup out of memory: Killed process 25575 (syz-executor.0) total-vm:54344kB, anon-rss:308kB, file-rss:8704kB, shmem-rss:0kB, UID:0 pgtables:64kB oom_score_adj:1000
06:22:31 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x87c, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x84c, 0x2, [@TCA_BASIC_POLICE={0x848, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}]}]}}]}, 0x87c}}, 0x0)

06:22:31 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x888, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x858, 0x2, [@TCA_BASIC_POLICE={0x854, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf000000]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}, @TCA_POLICE_PEAKRATE64={0xc}]}]}}]}, 0x888}}, 0x0)

[ 3275.293481][T25579] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3275.326854][T25579] CPU: 0 PID: 25579 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00250-g137e0ec05aeb #0
[ 3275.337353][T25579] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3275.347453][T25579] Call Trace:
[ 3275.350776][T25579]  <TASK>
[ 3275.353746][T25579]  dump_stack_lvl+0x1e7/0x2e0
[ 3275.358487][T25579]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3275.363751][T25579]  ? __pfx__printk+0x10/0x10
[ 3275.368396][T25579]  ? ___ratelimit+0x4c4/0x670
[ 3275.373134][T25579]  ? __pfx____ratelimit+0x10/0x10
[ 3275.378225][T25579]  dump_header+0xda/0x6a0
[ 3275.382621][T25579]  oom_kill_process+0x3a7/0x930
[ 3275.387542][T25579]  out_of_memory+0xf67/0x1320
[ 3275.392293][T25579]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3275.397948][T25579]  ? __pfx___mutex_lock+0x10/0x10
[ 3275.402984][T25579]  ? __pfx_out_of_memory+0x10/0x10
[ 3275.408133][T25579]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3275.413690][T25579]  ? __pfx_lock_release+0x10/0x10
[ 3275.418733][T25579]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3275.424819][T25579]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3275.430024][T25579]  ? mem_cgroup_iter+0x3e9/0x560
[ 3275.434977][T25579]  try_charge_memcg+0xda2/0x18a0
[ 3275.439950][T25579]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3275.445342][T25579]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3275.451071][T25579]  ? __pfx_lock_release+0x10/0x10
[ 3275.456112][T25579]  ? memcg_account_kmem+0x1e7/0x210
[ 3275.461336][T25579]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3275.467161][T25579]  __memcg_kmem_charge_page+0xe1/0x250
[ 3275.472644][T25579]  memcg_charge_kernel_stack+0x37e/0x550
[ 3275.478291][T25579]  dup_task_struct+0x15d/0x7d0
[ 3275.483169][T25579]  copy_process+0x5d5/0x3fc0
[ 3275.487779][T25579]  ? __might_fault+0xa9/0x120
[ 3275.492469][T25579]  ? __pfx_lock_release+0x10/0x10
[ 3275.497515][T25579]  ? __pfx_copy_process+0x10/0x10
[ 3275.502580][T25579]  ? __might_fault+0xc5/0x120
[ 3275.507277][T25579]  ? __asan_memset+0x23/0x50
[ 3275.511889][T25579]  kernel_clone+0x21d/0x8d0
[ 3275.516441][T25579]  ? __pfx_kernel_clone+0x10/0x10
[ 3275.521485][T25579]  ? __pfx___might_resched+0x10/0x10
[ 3275.526785][T25579]  __se_sys_clone3+0x2cb/0x350
[ 3275.531565][T25579]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3275.536898][T25579]  ? int80_emulation+0xea/0x210
[ 3275.541775][T25579]  int80_emulation+0x129/0x210
[ 3275.546560][T25579]  asm_int80_emulation+0x1a/0x20
[ 3275.551530][T25579] RIP: 0023:0xf7372060
[ 3275.555626][T25579] Code: 4c 24 04 85 c9 0f 84 df 0d fe ff 8b 54 24 0c 85 d2 0f 84 d3 0d fe ff 53 56 8b 74 24 18 89 cb 8b 4c 24 10 b8 b3 01 00 00 cd 80 <85> c0 74 09 5e 5b 0f 8c b4 0d fe ff c3 31 ed 83 e4 f0 83 ec 0c 56
[ 3275.575246][T25579] RSP: 002b:00000000f75898e4 EFLAGS: 00000282 ORIG_RAX: 00000000000001b3
[ 3275.583671][T25579] RAX: ffffffffffffffda RBX: 00000000f7589950 RCX: 0000000000000058
[ 3275.591655][T25579] RDX: 00000000f7322eb0 RSI: 00000000f5ee2b40 RDI: 00000000ffffffd8
[ 3275.599638][T25579] RBP: 000000000000000b R08: 0000000000000000 R09: 0000000000000000
[ 3275.607620][T25579] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 3275.615603][T25579] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 3275.623599][T25579]  </TASK>
[ 3275.711784][T25579] memory: usage 307200kB, limit 307200kB, failcnt 144358
[ 3275.734909][T25579] memory+swap: usage 307908kB, limit 9007199254740988kB, failcnt 0
[ 3275.754151][T25579] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[ 3275.772026][T25579] Memory cgroup stats for /syz0:
[ 3275.772197][T25579] cache 0
[ 3275.781340][T25579] rss 28672
[ 3275.784493][T25579] rss_huge 0
[ 3275.795997][T25579] shmem 0
[ 3275.800722][T25579] mapped_file 0
[ 3275.804234][T25579] dirty 0
[ 3275.827133][T25579] writeback 0
[ 3275.830485][T25579] workingset_refault_anon 53481
[ 3275.835375][T25579] workingset_refault_file 0
[ 3275.852710][T25579] swap 720896
[ 3275.856121][T25579] swapcached 24576
[ 3275.865129][T25579] pgpgin 247971
[ 3275.869253][T25579] pgpgout 247964
[ 3275.873036][T25579] pgfault 576350
[ 3275.882736][T25579] pgmajfault 52230
[ 3275.886964][T25579] inactive_anon 16384
[ 3275.890993][T25579] active_anon 12288
[ 3275.894829][T25579] inactive_file 0
[ 3275.907038][T25579] active_file 0
[ 3275.910567][T25579] unevictable 0
[ 3275.914062][T25579] hierarchical_memory_limit 314572800
[ 3275.928273][T25579] hierarchical_memsw_limit 9223372036854771712
[ 3275.934489][T25579] total_cache 0
[ 3275.940897][T25579] total_rss 28672
[ 3275.944587][T25579] total_rss_huge 0
[ 3275.951279][T25579] total_shmem 0
[ 3275.954799][T25579] total_mapped_file 0
[ 3275.961883][T25579] total_dirty 0
[ 3275.965402][T25579] total_writeback 0
[ 3275.973763][T25579] total_workingset_refault_anon 53481
[ 3275.982105][T25579] total_workingset_refault_file 0
[ 3275.990828][T25579] total_swap 720896
[ 3275.994689][T25579] total_swapcached 24576
[ 3276.001797][T25579] total_pgpgin 247971
[ 3276.005833][T25579] total_pgpgout 247964
[ 3276.014380][T25579] total_pgfault 576350
[ 3276.024264][T25579] total_pgmajfault 52230
[ 3276.034227][T25579] total_inactive_anon 16384
[ 3276.044921][T25579] total_active_anon 12288
[ 3276.056400][T25579] total_inactive_file 0
[ 3276.060635][T25579] total_active_file 0
[ 3276.064649][T25579] total_unevictable 0
[ 3276.078292][T25579] anon_cost 0
[ 3276.081632][T25579] file_cost 0
[ 3276.084947][T25579] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=25579,uid=0
[ 3276.102843][T25579] Memory cgroup out of memory: Killed process 25579 (syz-executor.0) total-vm:54344kB, anon-rss:316kB, file-rss:8704kB, shmem-rss:0kB, UID:0 pgtables:64kB oom_score_adj:1000
[ 3276.146512][T25580] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3276.177838][T25580] CPU: 1 PID: 25580 Comm: syz-executor.2 Not tainted 6.8.0-rc7-syzkaller-00250-g137e0ec05aeb #0
[ 3276.188337][T25580] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3276.198440][T25580] Call Trace:
[ 3276.201774][T25580]  <TASK>
[ 3276.204760][T25580]  dump_stack_lvl+0x1e7/0x2e0
[ 3276.209509][T25580]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3276.214775][T25580]  ? __pfx__printk+0x10/0x10
[ 3276.219425][T25580]  ? ___ratelimit+0x4c4/0x670
[ 3276.224168][T25580]  ? __pfx____ratelimit+0x10/0x10
[ 3276.229254][T25580]  dump_header+0xda/0x6a0
[ 3276.233644][T25580]  oom_kill_process+0x3a7/0x930
[ 3276.238555][T25580]  out_of_memory+0xf67/0x1320
[ 3276.243288][T25580]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3276.248975][T25580]  ? __pfx___mutex_lock+0x10/0x10
[ 3276.254062][T25580]  ? __pfx_out_of_memory+0x10/0x10
[ 3276.259244][T25580]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3276.264846][T25580]  ? __pfx_lock_release+0x10/0x10
[ 3276.269933][T25580]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3276.276065][T25580]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3276.281321][T25580]  ? mem_cgroup_iter+0x3e9/0x560
[ 3276.286311][T25580]  try_charge_memcg+0xda2/0x18a0
[ 3276.291344][T25580]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3276.296784][T25580]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3276.302557][T25580]  ? __pfx_lock_release+0x10/0x10
[ 3276.307649][T25580]  ? memcg_account_kmem+0x1e7/0x210
[ 3276.312917][T25580]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3276.318784][T25580]  __memcg_kmem_charge_page+0xe1/0x250
[ 3276.324313][T25580]  memcg_charge_kernel_stack+0x210/0x550
[ 3276.330015][T25580]  dup_task_struct+0x40d/0x7d0
[ 3276.334853][T25580]  copy_process+0x5d5/0x3fc0
[ 3276.339532][T25580]  ? __might_fault+0xa9/0x120
[ 3276.344285][T25580]  ? __pfx_lock_release+0x10/0x10
[ 3276.349398][T25580]  ? __pfx_copy_process+0x10/0x10
[ 3276.354477][T25580]  ? __might_fault+0xc5/0x120
[ 3276.359204][T25580]  ? __asan_memset+0x23/0x50
[ 3276.363854][T25580]  kernel_clone+0x21d/0x8d0
[ 3276.368410][T25580]  ? __pfx_kernel_clone+0x10/0x10
[ 3276.373512][T25580]  __se_sys_clone3+0x2cb/0x350
[ 3276.378333][T25580]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3276.383693][T25580]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3276.389765][T25580]  ? exc_page_fault+0x587/0x870
[ 3276.394693][T25580]  ? int80_emulation+0xea/0x210
[ 3276.399638][T25580]  int80_emulation+0x129/0x210
[ 3276.404480][T25580]  asm_int80_emulation+0x1a/0x20
[ 3276.409476][T25580] RIP: 0023:0xf7376060
[ 3276.413592][T25580] Code: 4c 24 04 85 c9 0f 84 df 0d fe ff 8b 54 24 0c 85 d2 0f 84 d3 0d fe ff 53 56 8b 74 24 18 89 cb 8b 4c 24 10 b8 b3 01 00 00 cd 80 <85> c0 74 09 5e 5b 0f 8c b4 0d fe ff c3 31 ed 83 e4 f0 83 ec 0c 56
[ 3276.433352][T25580] RSP: 002b:00000000f758d8e4 EFLAGS: 00000282 ORIG_RAX: 00000000000001b3
[ 3276.441955][T25580] RAX: ffffffffffffffda RBX: 00000000f758d950 RCX: 0000000000000058
[ 3276.449977][T25580] RDX: 00000000f7326eb0 RSI: 00000000f5ee6b40 RDI: 00000000ffffffd8
[ 3276.458007][T25580] RBP: 000000000000000b R08: 0000000000000000 R09: 0000000000000000
[ 3276.466017][T25580] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 3276.474035][T25580] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 3276.482078][T25580]  </TASK>
[ 3276.537573][T25580] memory: usage 307192kB, limit 307200kB, failcnt 117271
[ 3276.557242][T25580] memory+swap: usage 307672kB, limit 9007199254740988kB, failcnt 0
[ 3276.580883][T25580] kmem: usage 307168kB, limit 9007199254740988kB, failcnt 0
[ 3276.600607][T25580] Memory cgroup stats for /syz2:
[ 3276.600767][T25580] cache 0
[ 3276.629510][T25580] rss 0
[ 3276.637223][T25580] rss_huge 0
[ 3276.649605][T25580] shmem 0
[ 3276.659770][T25580] mapped_file 0
[ 3276.672705][T25580] dirty 0
[ 3276.681570][T25580] writeback 0
[ 3276.686431][T25580] workingset_refault_anon 42211
[ 3276.691618][T25580] workingset_refault_file 0
[ 3276.696202][T25580] swap 503808
[ 3276.716499][T25580] swapcached 12288
[ 3276.720432][T25580] pgpgin 246570
[ 3276.725977][T25580] pgpgout 246567
[ 3276.737140][T25580] pgfault 587490
[ 3276.742411][T25580] pgmajfault 41816
[ 3276.750821][T25580] inactive_anon 0
[ 3276.758650][T25580] active_anon 12288
[ 3276.766814][T25580] inactive_file 0
[ 3276.773599][T25580] active_file 0
[ 3276.787039][T25580] unevictable 0
[ 3276.790674][T25580] hierarchical_memory_limit 314572800
[ 3276.799728][T25580] hierarchical_memsw_limit 9223372036854771712
[ 3276.816852][T25580] total_cache 0
[ 3276.820471][T25580] total_rss 0
[ 3276.827720][T25580] total_rss_huge 0
[ 3276.835828][T25580] total_shmem 0
[ 3276.845377][T25580] total_mapped_file 0
[ 3276.854209][T25580] total_dirty 0
[ 3276.906471][T25580] total_writeback 0
[ 3276.921650][T25580] total_workingset_refault_anon 42211
[ 3276.942989][T25580] total_workingset_refault_file 0
[ 3276.962072][T25580] total_swap 503808
[ 3276.981224][T25580] total_swapcached 12288
[ 3276.994860][T25580] total_pgpgin 246570
[ 3277.017955][T25580] total_pgpgout 246567
[ 3277.026993][T25580] total_pgfault 587490
[ 3277.040123][T25580] total_pgmajfault 41816
[ 3277.056143][T25580] total_inactive_anon 0
[ 3277.072475][T25580] total_active_anon 12288
[ 3277.091371][T25580] total_inactive_file 0
[ 3277.105848][T25580] total_active_file 0
[ 3277.121916][T25580] total_unevictable 0
[ 3277.126522][T25580] anon_cost 0
[ 3277.129906][T25580] file_cost 0
[ 3277.133224][T25580] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=25580,uid=0
[ 3277.163155][T25580] Memory cgroup out of memory: Killed process 25580 (syz-executor.2) total-vm:54344kB, anon-rss:308kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:64kB oom_score_adj:1000
06:22:33 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x87c, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x84c, 0x2, [@TCA_BASIC_POLICE={0x848, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}]}]}}]}, 0x87c}}, 0x0)

06:22:34 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x40, 0x4, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x3e1}}}]}]}}]}, 0x74}}, 0x0)

06:22:34 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x888, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x858, 0x2, [@TCA_BASIC_POLICE={0x854, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}, @TCA_POLICE_PEAKRATE64={0xc}]}]}}]}, 0x888}}, 0x0)

[ 3277.514306][T25583] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3277.573690][T25583] CPU: 0 PID: 25583 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00250-g137e0ec05aeb #0
[ 3277.584228][T25583] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3277.594329][T25583] Call Trace:
[ 3277.597654][T25583]  <TASK>
[ 3277.600630][T25583]  dump_stack_lvl+0x1e7/0x2e0
[ 3277.605376][T25583]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3277.610643][T25583]  ? __pfx__printk+0x10/0x10
[ 3277.615299][T25583]  ? ___ratelimit+0x4c4/0x670
[ 3277.620049][T25583]  ? __pfx____ratelimit+0x10/0x10
[ 3277.625125][T25583]  dump_header+0xda/0x6a0
[ 3277.629504][T25583]  oom_kill_process+0x3a7/0x930
[ 3277.634422][T25583]  out_of_memory+0xf67/0x1320
[ 3277.639164][T25583]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3277.644859][T25583]  ? __pfx___mutex_lock+0x10/0x10
[ 3277.649947][T25583]  ? __pfx_out_of_memory+0x10/0x10
[ 3277.655131][T25583]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3277.660734][T25583]  ? __pfx_lock_release+0x10/0x10
[ 3277.665818][T25583]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3277.671944][T25583]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3277.677211][T25583]  ? mem_cgroup_iter+0x3e9/0x560
[ 3277.682212][T25583]  try_charge_memcg+0xda2/0x18a0
[ 3277.687238][T25583]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3277.692667][T25583]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3277.698443][T25583]  ? __pfx_lock_release+0x10/0x10
[ 3277.703532][T25583]  ? memcg_account_kmem+0x1e7/0x210
[ 3277.708804][T25583]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3277.714682][T25583]  __memcg_kmem_charge_page+0xe1/0x250
[ 3277.720213][T25583]  memcg_charge_kernel_stack+0x37e/0x550
[ 3277.725909][T25583]  dup_task_struct+0x15d/0x7d0
[ 3277.730806][T25583]  copy_process+0x5d5/0x3fc0
[ 3277.735466][T25583]  ? __might_fault+0xa9/0x120
[ 3277.740201][T25583]  ? __pfx_lock_release+0x10/0x10
[ 3277.745294][T25583]  ? __pfx_copy_process+0x10/0x10
[ 3277.750379][T25583]  ? __might_fault+0xc5/0x120
[ 3277.755133][T25583]  ? __asan_memset+0x23/0x50
[ 3277.759796][T25583]  kernel_clone+0x21d/0x8d0
[ 3277.764360][T25583]  ? __pfx_kernel_clone+0x10/0x10
[ 3277.769458][T25583]  ? __pfx___might_resched+0x10/0x10
[ 3277.774820][T25583]  __se_sys_clone3+0x2cb/0x350
[ 3277.779649][T25583]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3277.785031][T25583]  ? int80_emulation+0xea/0x210
[ 3277.789949][T25583]  int80_emulation+0x129/0x210
[ 3277.794785][T25583]  asm_int80_emulation+0x1a/0x20
[ 3277.799776][T25583] RIP: 0023:0xf7372060
[ 3277.803891][T25583] Code: 4c 24 04 85 c9 0f 84 df 0d fe ff 8b 54 24 0c 85 d2 0f 84 d3 0d fe ff 53 56 8b 74 24 18 89 cb 8b 4c 24 10 b8 b3 01 00 00 cd 80 <85> c0 74 09 5e 5b 0f 8c b4 0d fe ff c3 31 ed 83 e4 f0 83 ec 0c 56
[ 3277.823546][T25583] RSP: 002b:00000000f75898e4 EFLAGS: 00000282 ORIG_RAX: 00000000000001b3
[ 3277.832018][T25583] RAX: ffffffffffffffda RBX: 00000000f7589950 RCX: 0000000000000058
[ 3277.840045][T25583] RDX: 00000000f7322eb0 RSI: 00000000f5ee2b40 RDI: 00000000ffffffd8
[ 3277.848070][T25583] RBP: 000000000000000b R08: 0000000000000000 R09: 0000000000000000
[ 3277.856088][T25583] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 3277.864104][T25583] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 3277.872193][T25583]  </TASK>
[ 3277.916449][T25583] memory: usage 307200kB, limit 307200kB, failcnt 144562
[ 3277.923789][T25583] memory+swap: usage 307928kB, limit 9007199254740988kB, failcnt 0
[ 3277.992183][T25583] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[ 3278.037742][T25583] Memory cgroup stats for /syz0:
[ 3278.037923][T25583] cache 0
[ 3278.045876][T25583] rss 12288
[ 3278.086537][T25583] rss_huge 0
[ 3278.089908][T25583] shmem 0
[ 3278.092900][T25583] mapped_file 0
[ 3278.110734][T32199] hsr_slave_0: left promiscuous mode
[ 3278.126413][T25583] dirty 0
[ 3278.129529][T25583] writeback 0
[ 3278.132854][T25583] workingset_refault_anon 53529
06:22:34 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x888, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x858, 0x2, [@TCA_BASIC_POLICE={0x854, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000000]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}, @TCA_POLICE_PEAKRATE64={0xc}]}]}}]}, 0x888}}, 0x0)

[ 3278.178854][T25583] workingset_refault_file 0
[ 3278.183436][T25583] swap 733184
[ 3278.200928][T25583] swapcached 12288
[ 3278.204713][T25583] pgpgin 248029
[ 3278.220139][T25583] pgpgout 248026
[ 3278.223745][T25583] pgfault 576438
[ 3278.229634][T32199] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 3278.233306][T25583] pgmajfault 52274
[ 3278.255454][T32199] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 3278.255646][T25583] inactive_anon 12288
[ 3278.271856][T25583] active_anon 0
[ 3278.275409][T25583] inactive_file 0
[ 3278.290917][T25583] active_file 0
[ 3278.294447][T25583] unevictable 0
[ 3278.305814][T25583] hierarchical_memory_limit 314572800
[ 3278.312661][T32199] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 3278.322702][T25583] hierarchical_memsw_limit 9223372036854771712
[ 3278.331952][T32199] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 3278.341469][T25583] total_cache 0
[ 3278.351590][T25583] total_rss 12288
[ 3278.355391][T25583] total_rss_huge 0
[ 3278.361669][T25583] total_shmem 0
[ 3278.365255][T25583] total_mapped_file 0
[ 3278.371804][T25583] total_dirty 0
[ 3278.375115][T32199] team0: left allmulticast mode
[ 3278.375418][T25583] total_writeback 0
[ 3278.388979][T25583] total_workingset_refault_anon 53529
[ 3278.390884][T32199] team_slave_0: left allmulticast mode
[ 3278.394394][T25583] total_workingset_refault_file 0
[ 3278.394408][T25583] total_swap 733184
[ 3278.394418][T25583] total_swapcached 12288
[ 3278.394427][T25583] total_pgpgin 248029
[ 3278.394436][T25583] total_pgpgout 248026
[ 3278.411500][T32199] team_slave_1: left allmulticast mode
[ 3278.418613][T25583] total_pgfault 576438
[ 3278.424789][T32199] team0: left promiscuous mode
[ 3278.431011][T25583] total_pgmajfault 52274
[ 3278.434639][T32199] team_slave_0: left promiscuous mode
[ 3278.439046][T25583] total_inactive_anon 12288
[ 3278.445800][T32199] team_slave_1: left promiscuous mode
[ 3278.445964][T25583] total_active_anon 0
[ 3278.459427][T32199] bridge0: port 3(team0) entered disabled state
[ 3278.470943][T25583] total_inactive_file 0
[ 3278.475275][T25583] total_active_file 0
[ 3278.481107][T25583] total_unevictable 0
[ 3278.485264][T25583] anon_cost 0
[ 3278.489964][T32199] bridge_slave_1: left allmulticast mode
[ 3278.492675][T25583] file_cost 0
[ 3278.495661][T32199] bridge_slave_1: left promiscuous mode
[ 3278.496028][T32199] bridge0: port 2(bridge_slave_1) entered disabled state
[ 3278.500491][T25583] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null)
[ 3278.514678][T32199] bridge_slave_0: left allmulticast mode
[ 3278.515956][T25583] ,cpuset=
[ 3278.524045][T32199] bridge_slave_0: left promiscuous mode
[ 3278.532824][T25583] syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=25583,uid=0
[ 3278.551515][T32199] bridge0: port 1(bridge_slave_0) entered disabled state
[ 3278.552876][T25583] Memory cgroup out of memory: Killed process 25583 (syz-executor.0) total-vm:54344kB, anon-rss:308kB, file-rss:8704kB, shmem-rss:0kB, UID:0 pgtables:64kB oom_score_adj:1000
06:22:35 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x87c, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x84c, 0x2, [@TCA_BASIC_POLICE={0x848, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}]}]}}]}, 0x87c}}, 0x0)

[ 3278.602405][T25585] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3278.633855][T25585] CPU: 0 PID: 25585 Comm: syz-executor.2 Not tainted 6.8.0-rc7-syzkaller-00250-g137e0ec05aeb #0
[ 3278.644340][T25585] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3278.654441][T25585] Call Trace:
[ 3278.657758][T25585]  <TASK>
[ 3278.660730][T25585]  dump_stack_lvl+0x1e7/0x2e0
[ 3278.665475][T25585]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3278.670723][T25585]  ? __pfx__printk+0x10/0x10
[ 3278.675348][T25585]  ? ___ratelimit+0x4c4/0x670
[ 3278.680077][T25585]  ? __pfx____ratelimit+0x10/0x10
[ 3278.685170][T25585]  dump_header+0xda/0x6a0
[ 3278.689560][T25585]  oom_kill_process+0x3a7/0x930
[ 3278.694462][T25585]  out_of_memory+0xf67/0x1320
[ 3278.699185][T25585]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3278.704873][T25585]  ? __pfx___mutex_lock+0x10/0x10
[ 3278.709956][T25585]  ? __pfx_out_of_memory+0x10/0x10
[ 3278.715117][T25585]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3278.720721][T25585]  ? __pfx_preempt_schedule+0x10/0x10
[ 3278.726244][T25585]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3278.732374][T25585]  ? preempt_schedule_thunk+0x1a/0x30
[ 3278.737795][T25585]  try_charge_memcg+0xda2/0x18a0
[ 3278.742807][T25585]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3278.748236][T25585]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3278.754011][T25585]  ? __pfx_lock_release+0x10/0x10
[ 3278.759087][T25585]  ? memcg_account_kmem+0x1e7/0x210
[ 3278.764354][T25585]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3278.770218][T25585]  __memcg_kmem_charge_page+0xe1/0x250
[ 3278.775728][T25585]  memcg_charge_kernel_stack+0x210/0x550
[ 3278.781419][T25585]  dup_task_struct+0x40d/0x7d0
[ 3278.786244][T25585]  copy_process+0x5d5/0x3fc0
[ 3278.790892][T25585]  ? __might_fault+0xa9/0x120
[ 3278.795610][T25585]  ? __pfx_lock_release+0x10/0x10
[ 3278.800686][T25585]  ? __pfx_copy_process+0x10/0x10
[ 3278.805746][T25585]  ? __might_fault+0xc5/0x120
[ 3278.810481][T25585]  ? __asan_memset+0x23/0x50
[ 3278.815155][T25585]  kernel_clone+0x21d/0x8d0
[ 3278.819714][T25585]  ? __pfx_kernel_clone+0x10/0x10
[ 3278.824794][T25585]  __se_sys_clone3+0x2cb/0x350
[ 3278.829622][T25585]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3278.834976][T25585]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3278.841078][T25585]  ? exc_page_fault+0x587/0x870
[ 3278.845974][T25585]  ? int80_emulation+0xea/0x210
[ 3278.850872][T25585]  int80_emulation+0x129/0x210
[ 3278.855717][T25585]  asm_int80_emulation+0x1a/0x20
[ 3278.860724][T25585] RIP: 0023:0xf7376060
[ 3278.864820][T25585] Code: 4c 24 04 85 c9 0f 84 df 0d fe ff 8b 54 24 0c 85 d2 0f 84 d3 0d fe ff 53 56 8b 74 24 18 89 cb 8b 4c 24 10 b8 b3 01 00 00 cd 80 <85> c0 74 09 5e 5b 0f 8c b4 0d fe ff c3 31 ed 83 e4 f0 83 ec 0c 56
[ 3278.884533][T25585] RSP: 002b:00000000f758d8e4 EFLAGS: 00000282 ORIG_RAX: 00000000000001b3
[ 3278.893002][T25585] RAX: ffffffffffffffda RBX: 00000000f758d950 RCX: 0000000000000058
[ 3278.901021][T25585] RDX: 00000000f7326eb0 RSI: 00000000f5ee6b40 RDI: 00000000ffffffd8
[ 3278.909034][T25585] RBP: 000000000000000b R08: 0000000000000000 R09: 0000000000000000
[ 3278.917055][T25585] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 3278.925057][T25585] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 3278.933093][T25585]  </TASK>
[ 3278.972989][T25585] memory: usage 307200kB, limit 307200kB, failcnt 117595
[ 3279.046496][T25585] memory+swap: usage 307668kB, limit 9007199254740988kB, failcnt 0
[ 3279.066728][T25585] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0
[ 3279.095970][T25585] Memory cgroup stats for /syz2:
[ 3279.096129][T25585] cache 0
[ 3279.108190][T25585] rss 0
[ 3279.117132][T25585] rss_huge 0
[ 3279.129528][T25585] shmem 0
[ 3279.142963][T25585] mapped_file 0
[ 3279.150849][T25585] dirty 0
[ 3279.157668][T25585] writeback 0
[ 3279.164847][T25585] workingset_refault_anon 42301
[ 3279.175519][T25585] workingset_refault_file 0
[ 3279.185693][T25585] swap 479232
[ 3279.192753][T25585] swapcached 12288
[ 3279.206470][T25585] pgpgin 246669
[ 3279.209997][T25585] pgpgout 246666
[ 3279.213611][T25585] pgfault 587645
[ 3279.226463][T25585] pgmajfault 41904
[ 3279.230247][T25585] inactive_anon 0
[ 3279.233914][T25585] active_anon 12288
[ 3279.243328][T25585] inactive_file 0
[ 3279.251432][T25585] active_file 0
[ 3279.254956][T25585] unevictable 0
[ 3279.263632][T25585] hierarchical_memory_limit 314572800
[ 3279.273417][T25585] hierarchical_memsw_limit 9223372036854771712
[ 3279.284938][T25585] total_cache 0
[ 3279.291465][T25585] total_rss 0
[ 3279.294824][T25585] total_rss_huge 0
[ 3279.302119][T25585] total_shmem 0
[ 3279.305645][T25585] total_mapped_file 0
[ 3279.313083][T25585] total_dirty 0
[ 3279.320192][T25585] total_writeback 0
[ 3279.324071][T25585] total_workingset_refault_anon 42301
[ 3279.338683][T25585] total_workingset_refault_file 0
[ 3279.343794][T25585] total_swap 479232
[ 3279.356690][T25585] total_swapcached 12288
[ 3279.360997][T25585] total_pgpgin 246669
[ 3279.365011][T25585] total_pgpgout 246666
[ 3279.376105][T25585] total_pgfault 587645
[ 3279.384503][T25585] total_pgmajfault 41904
[ 3279.392288][T25585] total_inactive_anon 0
[ 3279.400621][T25585] total_active_anon 12288
[ 3279.405013][T25585] total_inactive_file 0
[ 3279.416916][T25585] total_active_file 0
[ 3279.420964][T25585] total_unevictable 0
[ 3279.424964][T25585] anon_cost 0
[ 3279.439392][T25585] file_cost 0
[ 3279.442783][T25585] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=25585,uid=0
[ 3279.476530][T25585] Memory cgroup out of memory: Killed process 25585 (syz-executor.2) total-vm:54344kB, anon-rss:316kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:64kB oom_score_adj:1000
[ 3279.512364][T25590] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3279.579762][T25590] CPU: 1 PID: 25590 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00250-g137e0ec05aeb #0
[ 3279.590262][T25590] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3279.600367][T25590] Call Trace:
[ 3279.603691][T25590]  <TASK>
[ 3279.606682][T25590]  dump_stack_lvl+0x1e7/0x2e0
[ 3279.611442][T25590]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3279.616696][T25590]  ? __pfx__printk+0x10/0x10
[ 3279.621363][T25590]  ? ___ratelimit+0x4c4/0x670
[ 3279.626107][T25590]  ? __pfx____ratelimit+0x10/0x10
[ 3279.631211][T25590]  dump_header+0xda/0x6a0
[ 3279.635603][T25590]  oom_kill_process+0x3a7/0x930
[ 3279.640607][T25590]  out_of_memory+0xf67/0x1320
[ 3279.645347][T25590]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3279.651039][T25590]  ? __pfx___mutex_lock+0x10/0x10
[ 3279.656132][T25590]  ? __pfx_out_of_memory+0x10/0x10
[ 3279.661335][T25590]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3279.666960][T25590]  ? __pfx_lock_release+0x10/0x10
[ 3279.672142][T25590]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3279.678286][T25590]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3279.683551][T25590]  ? mem_cgroup_iter+0x3e9/0x560
[ 3279.688574][T25590]  try_charge_memcg+0xda2/0x18a0
[ 3279.693600][T25590]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3279.699038][T25590]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3279.704819][T25590]  ? __pfx_lock_release+0x10/0x10
[ 3279.709932][T25590]  ? memcg_account_kmem+0x1e7/0x210
[ 3279.715206][T25590]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3279.721081][T25590]  __memcg_kmem_charge_page+0xe1/0x250
[ 3279.726613][T25590]  memcg_charge_kernel_stack+0x210/0x550
[ 3279.732316][T25590]  dup_task_struct+0x15d/0x7d0
[ 3279.737152][T25590]  copy_process+0x5d5/0x3fc0
[ 3279.741814][T25590]  ? __might_fault+0xa9/0x120
[ 3279.746549][T25590]  ? __pfx_lock_release+0x10/0x10
[ 3279.751638][T25590]  ? __lock_acquire+0x1345/0x1fd0
[ 3279.756728][T25590]  ? __pfx_copy_process+0x10/0x10
[ 3279.761815][T25590]  ? __might_fault+0xc5/0x120
[ 3279.766553][T25590]  ? __asan_memset+0x23/0x50
[ 3279.771209][T25590]  kernel_clone+0x21d/0x8d0
[ 3279.775788][T25590]  ? __pfx_kernel_clone+0x10/0x10
[ 3279.780886][T25590]  ? __pfx_lock_release+0x10/0x10
[ 3279.785980][T25590]  __se_sys_clone3+0x2cb/0x350
[ 3279.790800][T25590]  ? __might_fault+0xa9/0x120
[ 3279.795532][T25590]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3279.800880][T25590]  ? rcu_is_watching+0x15/0xb0
[ 3279.805726][T25590]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3279.811796][T25590]  ? exc_page_fault+0x587/0x870
[ 3279.816730][T25590]  ? int80_emulation+0xea/0x210
[ 3279.821654][T25590]  int80_emulation+0x129/0x210
[ 3279.826552][T25590]  asm_int80_emulation+0x1a/0x20
[ 3279.831550][T25590] RIP: 0023:0xf7372060
[ 3279.835666][T25590] Code: 4c 24 04 85 c9 0f 84 df 0d fe ff 8b 54 24 0c 85 d2 0f 84 d3 0d fe ff 53 56 8b 74 24 18 89 cb 8b 4c 24 10 b8 b3 01 00 00 cd 80 <85> c0 74 09 5e 5b 0f 8c b4 0d fe ff c3 31 ed 83 e4 f0 83 ec 0c 56
[ 3279.855378][T25590] RSP: 002b:00000000f75898e4 EFLAGS: 00000282 ORIG_RAX: 00000000000001b3
[ 3279.863859][T25590] RAX: ffffffffffffffda RBX: 00000000f7589950 RCX: 0000000000000058
[ 3279.871885][T25590] RDX: 00000000f7322eb0 RSI: 00000000f5ee2b40 RDI: 00000000ffffffd8
[ 3279.879904][T25590] RBP: 000000000000000b R08: 0000000000000000 R09: 0000000000000000
[ 3279.888009][T25590] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 3279.896112][T25590] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 3279.904156][T25590]  </TASK>
[ 3280.256359][T25590] memory: usage 307200kB, limit 307200kB, failcnt 144714
[ 3280.263467][T25590] memory+swap: usage 307916kB, limit 9007199254740988kB, failcnt 0
[ 3280.286358][T25590] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0
[ 3280.293797][T25590] Memory cgroup stats for /syz0:
[ 3280.293949][T25590] cache 0
[ 3280.316366][T25590] rss 12288
[ 3280.319581][T25590] rss_huge 0
[ 3280.322819][T25590] shmem 0
[ 3280.325781][T25590] mapped_file 0
[ 3280.330689][T25590] dirty 0
[ 3280.333681][T25590] writeback 0
[ 3280.337425][T25590] workingset_refault_anon 53601
[ 3280.342305][T25590] workingset_refault_file 0
[ 3280.347408][T25590] swap 733184
[ 3280.350733][T25590] swapcached 12288
[ 3280.354471][T25590] pgpgin 248110
[ 3280.377120][T25590] pgpgout 248107
[ 3280.380741][T25590] pgfault 576563
[ 3280.384312][T25590] pgmajfault 52339
[ 3280.390276][T25590] inactive_anon 8192
[ 3280.399055][T25590] active_anon 4096
[ 3280.407078][T25590] inactive_file 0
[ 3280.414555][T25590] active_file 0
[ 3280.422449][T25590] unevictable 0
[ 3280.430691][T25590] hierarchical_memory_limit 314572800
[ 3280.438853][T25590] hierarchical_memsw_limit 9223372036854771712
[ 3280.445059][T25590] total_cache 0
[ 3280.458565][T25590] total_rss 12288
[ 3280.462316][T25590] total_rss_huge 0
[ 3280.466055][T25590] total_shmem 0
[ 3280.481753][T25590] total_mapped_file 0
[ 3280.485805][T25590] total_dirty 0
[ 3280.496948][T25590] total_writeback 0
[ 3280.500822][T25590] total_workingset_refault_anon 53601
[ 3280.506216][T25590] total_workingset_refault_file 0
[ 3280.528241][T25590] total_swap 733184
[ 3280.532120][T25590] total_swapcached 12288
[ 3280.544924][T25590] total_pgpgin 248110
[ 3280.555209][T25590] total_pgpgout 248107
[ 3280.564630][T25590] total_pgfault 576563
[ 3280.576796][T25590] total_pgmajfault 52339
06:22:37 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x40, 0x4, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x3e9}}}]}]}}]}, 0x74}}, 0x0)

[ 3280.587846][T25590] total_inactive_anon 8192
[ 3280.599325][T25590] total_active_anon 4096
[ 3280.612051][T25590] total_inactive_file 0
[ 3280.617905][T25590] total_active_file 0
[ 3280.628069][T25590] total_unevictable 0
[ 3280.638205][T25590] anon_cost 0
[ 3280.644743][T25590] file_cost 0
[ 3280.652529][T25590] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=25590,uid=0
06:22:37 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x888, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x858, 0x2, [@TCA_BASIC_POLICE={0x854, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}, @TCA_POLICE_PEAKRATE64={0xc}]}]}}]}, 0x888}}, 0x0)

[ 3280.692243][T25590] Memory cgroup out of memory: Killed process 25590 (syz-executor.0) total-vm:54344kB, anon-rss:316kB, file-rss:8704kB, shmem-rss:0kB, UID:0 pgtables:64kB oom_score_adj:1000
06:22:37 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x87c, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x84c, 0x2, [@TCA_BASIC_POLICE={0x848, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}]}]}}]}, 0x87c}}, 0x0)

[ 3281.145844][T25594] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3281.212038][T25594] CPU: 0 PID: 25594 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00250-g137e0ec05aeb #0
[ 3281.222537][T25594] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3281.232645][T25594] Call Trace:
[ 3281.235977][T25594]  <TASK>
[ 3281.238957][T25594]  dump_stack_lvl+0x1e7/0x2e0
[ 3281.243712][T25594]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3281.248984][T25594]  ? __pfx__printk+0x10/0x10
[ 3281.253657][T25594]  ? ___ratelimit+0x4c4/0x670
[ 3281.258408][T25594]  ? __pfx____ratelimit+0x10/0x10
[ 3281.263507][T25594]  dump_header+0xda/0x6a0
[ 3281.267902][T25594]  oom_kill_process+0x3a7/0x930
[ 3281.272848][T25594]  out_of_memory+0xf67/0x1320
[ 3281.277593][T25594]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3281.283372][T25594]  ? __pfx___mutex_lock+0x10/0x10
[ 3281.288473][T25594]  ? __pfx_out_of_memory+0x10/0x10
[ 3281.293671][T25594]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3281.299284][T25594]  ? __pfx_lock_release+0x10/0x10
[ 3281.304378][T25594]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3281.310516][T25594]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3281.315791][T25594]  ? mem_cgroup_iter+0x3e9/0x560
[ 3281.320793][T25594]  try_charge_memcg+0xda2/0x18a0
[ 3281.325825][T25594]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3281.331261][T25594]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3281.337051][T25594]  ? __pfx_lock_release+0x10/0x10
[ 3281.342287][T25594]  ? memcg_account_kmem+0x1e7/0x210
[ 3281.347582][T25594]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3281.353450][T25594]  __memcg_kmem_charge_page+0xe1/0x250
06:22:38 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x888, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x858, 0x2, [@TCA_BASIC_POLICE={0x854, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x11000000]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}, @TCA_POLICE_PEAKRATE64={0xc}]}]}}]}, 0x888}}, 0x0)

[ 3281.358991][T25594]  memcg_charge_kernel_stack+0x37e/0x550
[ 3281.364689][T25594]  dup_task_struct+0x40d/0x7d0
[ 3281.369519][T25594]  copy_process+0x5d5/0x3fc0
[ 3281.374181][T25594]  ? __might_fault+0xa9/0x120
[ 3281.378938][T25594]  ? __pfx_lock_release+0x10/0x10
[ 3281.384037][T25594]  ? __pfx_copy_process+0x10/0x10
[ 3281.389116][T25594]  ? __might_fault+0xc5/0x120
[ 3281.393869][T25594]  ? __asan_memset+0x23/0x50
[ 3281.398584][T25594]  kernel_clone+0x21d/0x8d0
[ 3281.403168][T25594]  ? __pfx_kernel_clone+0x10/0x10
[ 3281.408276][T25594]  __se_sys_clone3+0x2cb/0x350
[ 3281.413106][T25594]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3281.418480][T25594]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3281.424539][T25594]  ? exc_page_fault+0x587/0x870
[ 3281.429471][T25594]  ? int80_emulation+0xea/0x210
[ 3281.434412][T25594]  int80_emulation+0x129/0x210
[ 3281.439340][T25594]  asm_int80_emulation+0x1a/0x20
[ 3281.444347][T25594] RIP: 0023:0xf7372060
[ 3281.448474][T25594] Code: 4c 24 04 85 c9 0f 84 df 0d fe ff 8b 54 24 0c 85 d2 0f 84 d3 0d fe ff 53 56 8b 74 24 18 89 cb 8b 4c 24 10 b8 b3 01 00 00 cd 80 <85> c0 74 09 5e 5b 0f 8c b4 0d fe ff c3 31 ed 83 e4 f0 83 ec 0c 56
[ 3281.468140][T25594] RSP: 002b:00000000f75898e4 EFLAGS: 00000282 ORIG_RAX: 00000000000001b3
[ 3281.476609][T25594] RAX: ffffffffffffffda RBX: 00000000f7589950 RCX: 0000000000000058
[ 3281.484624][T25594] RDX: 00000000f7322eb0 RSI: 00000000f5ee2b40 RDI: 00000000ffffffd8
[ 3281.492632][T25594] RBP: 000000000000000b R08: 0000000000000000 R09: 0000000000000000
[ 3281.500635][T25594] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 3281.508639][T25594] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 3281.516667][T25594]  </TASK>
[ 3281.556828][T25594] memory: usage 307200kB, limit 307200kB, failcnt 144915
[ 3281.563918][T25594] memory+swap: usage 307908kB, limit 9007199254740988kB, failcnt 0
[ 3281.572357][T25594] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[ 3281.589597][T25594] Memory cgroup stats for /syz0:
[ 3281.589750][T25594] cache 0
[ 3281.602768][T25594] rss 0
[ 3281.605596][T25594] rss_huge 0
[ 3281.610151][T25594] shmem 0
[ 3281.613237][T25594] mapped_file 0
[ 3281.617184][T25594] dirty 0
[ 3281.621388][T25594] writeback 0
[ 3281.627865][T25594] workingset_refault_anon 53658
[ 3281.632862][T25594] workingset_refault_file 0
[ 3281.639632][T25594] swap 753664
[ 3281.643081][T25594] swapcached 0
[ 3281.648805][T25594] pgpgin 248176
[ 3281.652402][T25594] pgpgout 248176
[ 3281.656064][T25594] pgfault 576669
[ 3281.662802][T25594] pgmajfault 52392
[ 3281.669401][T25594] inactive_anon 0
[ 3281.673209][T25594] active_anon 0
[ 3281.678995][T25594] inactive_file 0
[ 3281.682798][T25594] active_file 0
[ 3281.691178][T25594] unevictable 0
[ 3281.694816][T25594] hierarchical_memory_limit 314572800
[ 3281.703187][T25594] hierarchical_memsw_limit 9223372036854771712
[ 3281.712129][T25594] total_cache 0
[ 3281.715798][T25594] total_rss 0
[ 3281.721892][T25594] total_rss_huge 0
[ 3281.725766][T25594] total_shmem 0
[ 3281.732254][T25594] total_mapped_file 0
[ 3281.738910][T25594] total_dirty 0
[ 3281.742526][T25594] total_writeback 0
[ 3281.749072][T25594] total_workingset_refault_anon 53658
[ 3281.754653][T25594] total_workingset_refault_file 0
[ 3281.762479][T25594] total_swap 753664
[ 3281.769871][T25594] total_swapcached 0
[ 3281.774030][T25594] total_pgpgin 248176
[ 3281.781913][T25594] total_pgpgout 248176
[ 3281.786154][T25594] total_pgfault 576669
[ 3281.800481][T25594] total_pgmajfault 52392
[ 3281.811674][T25594] total_inactive_anon 0
[ 3281.815885][T25594] total_active_anon 0
[ 3281.830160][T25594] total_inactive_file 0
[ 3281.834383][T25594] total_active_file 0
[ 3281.847626][T25594] total_unevictable 0
[ 3281.856785][T25594] anon_cost 0
[ 3281.860130][T25594] file_cost 0
[ 3281.863435][T25594] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=25594,uid=0
[ 3281.901250][T25594] Memory cgroup out of memory: Killed process 25594 (syz-executor.0) total-vm:54344kB, anon-rss:316kB, file-rss:8704kB, shmem-rss:0kB, UID:0 pgtables:64kB oom_score_adj:1000
[ 3281.933981][T25593] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3281.963525][T25593] CPU: 1 PID: 25593 Comm: syz-executor.2 Not tainted 6.8.0-rc7-syzkaller-00250-g137e0ec05aeb #0
[ 3281.974008][T25593] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3281.984116][T25593] Call Trace:
[ 3281.987441][T25593]  <TASK>
[ 3281.990411][T25593]  dump_stack_lvl+0x1e7/0x2e0
[ 3281.995165][T25593]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3282.000427][T25593]  ? __pfx__printk+0x10/0x10
[ 3282.005072][T25593]  ? ___ratelimit+0x4c4/0x670
[ 3282.009810][T25593]  ? __pfx____ratelimit+0x10/0x10
[ 3282.014866][T25593]  dump_header+0xda/0x6a0
[ 3282.019220][T25593]  oom_kill_process+0x3a7/0x930
[ 3282.024089][T25593]  out_of_memory+0xf67/0x1320
[ 3282.028788][T25593]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3282.034434][T25593]  ? __pfx___mutex_lock+0x10/0x10
[ 3282.039474][T25593]  ? __pfx_out_of_memory+0x10/0x10
[ 3282.044608][T25593]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3282.050170][T25593]  ? __pfx_lock_release+0x10/0x10
[ 3282.055209][T25593]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3282.061294][T25593]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3282.066510][T25593]  ? mem_cgroup_iter+0x3e9/0x560
[ 3282.071468][T25593]  try_charge_memcg+0xda2/0x18a0
[ 3282.076457][T25593]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3282.081857][T25593]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3282.087592][T25593]  ? __pfx_lock_release+0x10/0x10
[ 3282.092645][T25593]  ? memcg_account_kmem+0x1e7/0x210
[ 3282.097866][T25593]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3282.103709][T25593]  __memcg_kmem_charge_page+0xe1/0x250
[ 3282.109196][T25593]  memcg_charge_kernel_stack+0x210/0x550
[ 3282.114848][T25593]  dup_task_struct+0x15d/0x7d0
[ 3282.119629][T25593]  copy_process+0x5d5/0x3fc0
[ 3282.124243][T25593]  ? __might_fault+0xa9/0x120
[ 3282.128935][T25593]  ? __pfx_lock_release+0x10/0x10
[ 3282.133980][T25593]  ? __pfx_copy_process+0x10/0x10
[ 3282.139047][T25593]  ? __might_fault+0xc5/0x120
[ 3282.143746][T25593]  ? __asan_memset+0x23/0x50
[ 3282.148357][T25593]  kernel_clone+0x21d/0x8d0
[ 3282.152879][T25593]  ? __pfx_kernel_clone+0x10/0x10
[ 3282.157930][T25593]  __se_sys_clone3+0x2cb/0x350
[ 3282.162709][T25593]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3282.168024][T25593]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3282.174033][T25593]  ? exc_page_fault+0x587/0x870
[ 3282.178907][T25593]  ? int80_emulation+0xea/0x210
[ 3282.183776][T25593]  int80_emulation+0x129/0x210
[ 3282.188565][T25593]  asm_int80_emulation+0x1a/0x20
[ 3282.193509][T25593] RIP: 0023:0xf7376060
[ 3282.197615][T25593] Code: 4c 24 04 85 c9 0f 84 df 0d fe ff 8b 54 24 0c 85 d2 0f 84 d3 0d fe ff 53 56 8b 74 24 18 89 cb 8b 4c 24 10 b8 b3 01 00 00 cd 80 <85> c0 74 09 5e 5b 0f 8c b4 0d fe ff c3 31 ed 83 e4 f0 83 ec 0c 56
[ 3282.217238][T25593] RSP: 002b:00000000f758d8e4 EFLAGS: 00000282 ORIG_RAX: 00000000000001b3
[ 3282.225665][T25593] RAX: ffffffffffffffda RBX: 00000000f758d950 RCX: 0000000000000058
[ 3282.233658][T25593] RDX: 00000000f7326eb0 RSI: 00000000f5ee6b40 RDI: 00000000ffffffd8
[ 3282.241639][T25593] RBP: 000000000000000b R08: 0000000000000000 R09: 0000000000000000
[ 3282.249629][T25593] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 3282.257617][T25593] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 3282.265642][T25593]  </TASK>
[ 3282.301491][T25593] memory: usage 307200kB, limit 307200kB, failcnt 117957
[ 3282.416394][T25593] memory+swap: usage 307668kB, limit 9007199254740988kB, failcnt 0
[ 3282.424610][T25593] kmem: usage 307168kB, limit 9007199254740988kB, failcnt 0
[ 3282.456358][T25593] Memory cgroup stats for /syz2:
[ 3282.456531][T25593] cache 0
[ 3282.464478][T25593] rss 0
[ 3282.478516][T25593] rss_huge 0
[ 3282.481774][T25593] shmem 0
[ 3282.484738][T25593] mapped_file 0
[ 3282.496419][T25593] dirty 0
[ 3282.499422][T25593] writeback 0
[ 3282.502736][T25593] workingset_refault_anon 42390
[ 3282.526380][T25593] workingset_refault_file 0
[ 3282.531160][T25593] swap 479232
[ 3282.534485][T25593] swapcached 12288
[ 3282.546427][T25593] pgpgin 246766
[ 3282.549951][T25593] pgpgout 246763
[ 3282.553520][T25593] pgfault 587796
[ 3282.559384][T25593] pgmajfault 41982
[ 3282.563167][T25593] inactive_anon 0
[ 3282.567372][T25593] active_anon 12288
[ 3282.571243][T25593] inactive_file 0
[ 3282.574913][T25593] active_file 0
[ 3282.581007][T25593] unevictable 0
[ 3282.584552][T25593] hierarchical_memory_limit 314572800
[ 3282.590537][T25593] hierarchical_memsw_limit 9223372036854771712
[ 3282.598436][T25593] total_cache 0
[ 3282.602148][T25593] total_rss 0
[ 3282.605564][T25593] total_rss_huge 0
[ 3282.610091][T25593] total_shmem 0
[ 3282.613692][T25593] total_mapped_file 0
[ 3282.620796][T25593] total_dirty 0
[ 3282.624300][T25593] total_writeback 0
[ 3282.635590][T25593] total_workingset_refault_anon 42390
[ 3282.647617][T25593] total_workingset_refault_file 0
[ 3282.659552][T25593] total_swap 479232
[ 3282.663414][T25593] total_swapcached 12288
[ 3282.676858][T25593] total_pgpgin 246766
[ 3282.680906][T25593] total_pgpgout 246763
[ 3282.684999][T25593] total_pgfault 587796
[ 3282.697818][T25593] total_pgmajfault 41982
[ 3282.702138][T25593] total_inactive_anon 0
[ 3282.716439][T25593] total_active_anon 12288
[ 3282.720831][T25593] total_inactive_file 0
[ 3282.725006][T25593] total_active_file 0
[ 3282.737129][T25593] total_unevictable 0
[ 3282.741177][T25593] anon_cost 0
[ 3282.744512][T25593] file_cost 0
[ 3282.757934][T25593] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=25593,uid=0
[ 3282.786629][T25593] Memory cgroup out of memory: Killed process 25593 (syz-executor.2) total-vm:54344kB, anon-rss:316kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:64kB oom_score_adj:1000
06:22:39 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x87c, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x84c, 0x2, [@TCA_BASIC_POLICE={0x848, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}]}]}}]}, 0x87c}}, 0x0)

06:22:39 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x888, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x858, 0x2, [@TCA_BASIC_POLICE={0x854, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}, @TCA_POLICE_PEAKRATE64={0xc}]}]}}]}, 0x888}}, 0x0)

[ 3283.120554][T25597] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3283.164512][T25597] CPU: 0 PID: 25597 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00250-g137e0ec05aeb #0
[ 3283.174992][T25597] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3283.185089][T25597] Call Trace:
[ 3283.188414][T25597]  <TASK>
[ 3283.191384][T25597]  dump_stack_lvl+0x1e7/0x2e0
[ 3283.196125][T25597]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3283.201373][T25597]  ? __pfx__printk+0x10/0x10
[ 3283.206008][T25597]  ? ___ratelimit+0x4c4/0x670
[ 3283.210730][T25597]  ? __pfx____ratelimit+0x10/0x10
[ 3283.215801][T25597]  dump_header+0xda/0x6a0
[ 3283.220183][T25597]  oom_kill_process+0x3a7/0x930
[ 3283.225092][T25597]  out_of_memory+0xf67/0x1320
[ 3283.229827][T25597]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3283.235512][T25597]  ? __pfx___mutex_lock+0x10/0x10
[ 3283.240587][T25597]  ? __pfx_out_of_memory+0x10/0x10
[ 3283.245768][T25597]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3283.251359][T25597]  ? __pfx_lock_release+0x10/0x10
[ 3283.256427][T25597]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3283.262558][T25597]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3283.267813][T25597]  ? mem_cgroup_iter+0x3e9/0x560
[ 3283.272814][T25597]  try_charge_memcg+0xda2/0x18a0
[ 3283.277835][T25597]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3283.283254][T25597]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3283.289016][T25597]  ? __pfx_lock_release+0x10/0x10
[ 3283.294101][T25597]  ? memcg_account_kmem+0x1e7/0x210
[ 3283.299366][T25597]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3283.305225][T25597]  __memcg_kmem_charge_page+0xe1/0x250
[ 3283.310864][T25597]  memcg_charge_kernel_stack+0x37e/0x550
[ 3283.316645][T25597]  dup_task_struct+0x15d/0x7d0
[ 3283.321483][T25597]  copy_process+0x5d5/0x3fc0
[ 3283.326174][T25597]  ? __might_fault+0xa9/0x120
[ 3283.330920][T25597]  ? __pfx_lock_release+0x10/0x10
[ 3283.335998][T25597]  ? __pfx_copy_process+0x10/0x10
[ 3283.341076][T25597]  ? __might_fault+0xc5/0x120
[ 3283.345816][T25597]  ? __asan_memset+0x23/0x50
[ 3283.350470][T25597]  kernel_clone+0x21d/0x8d0
[ 3283.355127][T25597]  ? __pfx_kernel_clone+0x10/0x10
[ 3283.360208][T25597]  ? __pfx___might_resched+0x10/0x10
[ 3283.365535][T25597]  __se_sys_clone3+0x2cb/0x350
[ 3283.370346][T25597]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3283.375754][T25597]  ? int80_emulation+0xea/0x210
[ 3283.380670][T25597]  int80_emulation+0x129/0x210
[ 3283.385495][T25597]  asm_int80_emulation+0x1a/0x20
[ 3283.390469][T25597] RIP: 0023:0xf7372060
[ 3283.394566][T25597] Code: 4c 24 04 85 c9 0f 84 df 0d fe ff 8b 54 24 0c 85 d2 0f 84 d3 0d fe ff 53 56 8b 74 24 18 89 cb 8b 4c 24 10 b8 b3 01 00 00 cd 80 <85> c0 74 09 5e 5b 0f 8c b4 0d fe ff c3 31 ed 83 e4 f0 83 ec 0c 56
[ 3283.414213][T25597] RSP: 002b:00000000f75898e4 EFLAGS: 00000282 ORIG_RAX: 00000000000001b3
[ 3283.422675][T25597] RAX: ffffffffffffffda RBX: 00000000f7589950 RCX: 0000000000000058
[ 3283.430773][T25597] RDX: 00000000f7322eb0 RSI: 00000000f5ee2b40 RDI: 00000000ffffffd8
[ 3283.438826][T25597] RBP: 000000000000000b R08: 0000000000000000 R09: 0000000000000000
[ 3283.446840][T25597] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 3283.454854][T25597] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 3283.462886][T25597]  </TASK>
[ 3283.479249][T25597] memory: usage 307200kB, limit 307200kB, failcnt 145087
[ 3283.486407][T25597] memory+swap: usage 307908kB, limit 9007199254740988kB, failcnt 0
[ 3283.494336][T25597] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[ 3283.501973][T25597] Memory cgroup stats for /syz0:
[ 3283.502131][T25597] cache 0
[ 3283.510111][T25597] rss 0
[ 3283.512888][T25597] rss_huge 0
[ 3283.516196][T25597] shmem 0
[ 3283.519338][T25597] mapped_file 0
[ 3283.522827][T25597] dirty 0
[ 3283.525777][T25597] writeback 0
[ 3283.560302][T25597] workingset_refault_anon 53709
[ 3283.569568][T25597] workingset_refault_file 0
[ 3283.577477][T25597] swap 724992
[ 3283.585187][T25597] swapcached 0
[ 3283.592857][T25597] pgpgin 248235
[ 3283.600890][T25597] pgpgout 248235
[ 3283.608621][T25597] pgfault 576764
[ 3283.616753][T25597] pgmajfault 52441
[ 3283.620560][T25597] inactive_anon 0
[ 3283.624235][T25597] active_anon 0
[ 3283.639365][T25597] inactive_file 0
[ 3283.647471][T25597] active_file 0
[ 3283.654530][T25597] unevictable 0
[ 3283.662136][T25597] hierarchical_memory_limit 314572800
[ 3283.673787][T25597] hierarchical_memsw_limit 9223372036854771712
[ 3283.687106][T25597] total_cache 0
[ 3283.690627][T25597] total_rss 0
[ 3283.693982][T25597] total_rss_huge 0
[ 3283.710502][T25597] total_shmem 0
[ 3283.718309][T25597] total_mapped_file 0
[ 3283.726624][T25597] total_dirty 0
[ 3283.733982][T25597] total_writeback 0
[ 3283.742280][T25597] total_workingset_refault_anon 53709
[ 3283.747958][T25597] total_workingset_refault_file 0
[ 3283.753583][T25597] total_swap 724992
[ 3283.758605][T25597] total_swapcached 0
[ 3283.762542][T25597] total_pgpgin 248235
[ 3283.769963][T25597] total_pgpgout 248235
[ 3283.774116][T25597] total_pgfault 576764
[ 3283.778364][T25597] total_pgmajfault 52441
[ 3283.782642][T25597] total_inactive_anon 0
[ 3283.790224][T25597] total_active_anon 0
[ 3283.794269][T25597] total_inactive_file 0
[ 3283.802430][T25597] total_active_file 0
[ 3283.807431][T25597] total_unevictable 0
[ 3283.811555][T25597] anon_cost 0
[ 3283.814966][T25597] file_cost 0
[ 3283.822717][T25597] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=25597,uid=0
[ 3283.845494][T25597] Memory cgroup out of memory: Killed process 25597 (syz-executor.0) total-vm:54344kB, anon-rss:308kB, file-rss:8704kB, shmem-rss:0kB, UID:0 pgtables:64kB oom_score_adj:1000
[ 3283.874476][T25591] syz-executor.1 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[ 3283.908800][T25591] CPU: 1 PID: 25591 Comm: syz-executor.1 Not tainted 6.8.0-rc7-syzkaller-00250-g137e0ec05aeb #0
[ 3283.919310][T25591] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3283.929416][T25591] Call Trace:
[ 3283.932737][T25591]  <TASK>
[ 3283.935709][T25591]  dump_stack_lvl+0x1e7/0x2e0
[ 3283.940456][T25591]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3283.945832][T25591]  ? __pfx__printk+0x10/0x10
[ 3283.950515][T25591]  ? ___ratelimit+0x4c4/0x670
[ 3283.955259][T25591]  ? __pfx____ratelimit+0x10/0x10
[ 3283.960352][T25591]  dump_header+0xda/0x6a0
[ 3283.964763][T25591]  oom_kill_process+0x3a7/0x930
[ 3283.969680][T25591]  out_of_memory+0xf67/0x1320
[ 3283.974417][T25591]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3283.980110][T25591]  ? __pfx___mutex_lock+0x10/0x10
[ 3283.985189][T25591]  ? __pfx_out_of_memory+0x10/0x10
[ 3283.990371][T25591]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3283.995981][T25591]  ? __pfx_lock_release+0x10/0x10
[ 3284.001070][T25591]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3284.007200][T25591]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3284.012456][T25591]  ? mem_cgroup_iter+0x422/0x560
[ 3284.017454][T25591]  try_charge_memcg+0xda2/0x18a0
[ 3284.022429][T25591]  ? mark_lock+0x9a/0x350
[ 3284.026824][T25591]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3284.032263][T25591]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 3284.038452][T25591]  charge_memcg+0xa2/0x160
[ 3284.042936][T25591]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 3284.049061][T25591]  __read_swap_cache_async+0x480/0x8b0
[ 3284.054571][T25591]  ? mark_lock+0x9a/0x350
[ 3284.058975][T25591]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 3284.065017][T25591]  swap_cluster_readahead+0x67c/0x810
[ 3284.070449][T25591]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 3284.076430][T25591]  ? __pfx_lock_release+0x10/0x10
[ 3284.081508][T25591]  ? xas_descend+0x37e/0x470
[ 3284.086148][T25591]  swapin_readahead+0x1ea/0x1070
[ 3284.091139][T25591]  ? filemap_get_entry+0x127/0x4e0
[ 3284.096310][T25591]  ? __pfx_swapin_readahead+0x10/0x10
[ 3284.101756][T25591]  ? __filemap_get_folio+0x935/0xbc0
[ 3284.107089][T25591]  ? swap_cache_get_folio+0x9f/0x570
[ 3284.112438][T25591]  do_swap_page+0x791/0x3f40
[ 3284.117075][T25591]  ? rcu_is_watching+0x15/0xb0
[ 3284.121983][T25591]  ? do_swap_page+0x154/0x3f40
[ 3284.126789][T25591]  ? __pfx_do_swap_page+0x10/0x10
[ 3284.131866][T25591]  ? pte_offset_map_nolock+0x137/0x1f0
[ 3284.137387][T25591]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 3284.143331][T25591]  ? __pfx_validate_chain+0x10/0x10
[ 3284.148577][T25591]  __handle_mm_fault+0x15e8/0x72d0
[ 3284.153774][T25591]  ? __pfx___handle_mm_fault+0x10/0x10
[ 3284.159289][T25591]  ? mt_find+0x226/0x850
[ 3284.163566][T25591]  ? __pfx_lock_release+0x10/0x10
[ 3284.168656][T25591]  ? mt_find+0x62d/0x850
[ 3284.172962][T25591]  ? mt_find+0x226/0x850
[ 3284.177281][T25591]  ? find_vma+0x142/0x1c0
[ 3284.181651][T25591]  ? __pfx_find_vma+0x10/0x10
[ 3284.186373][T25591]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3284.192406][T25591]  handle_mm_fault+0x3c1/0x8a0
[ 3284.197309][T25591]  exc_page_fault+0x2ad/0x870
[ 3284.202035][T25591]  asm_exc_page_fault+0x26/0x30
[ 3284.206928][T25591] RIP: 0010:__put_user_4+0x11/0x20
[ 3284.212089][T25591] Code: 1f 84 00 00 00 00 00 66 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 89 cb 48 c1 fb 3f 48 09 d9 0f 01 cb <89> 01 31 c9 0f 01 ca c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90
[ 3284.231743][T25591] RSP: 0000:ffffc900033cfbd8 EFLAGS: 00050202
[ 3284.237857][T25591] RAX: 000000000000603b RBX: 0000000000000000 RCX: 00000000f5e65ba8
[ 3284.245924][T25591] RDX: 0000000000000000 RSI: ffffffff8baac7e0 RDI: ffffffff8bfe6da0
[ 3284.253941][T25591] RBP: ffffc900033cfd10 R08: ffffffff8f856cef R09: 1ffffffff1f0ad9d
[ 3284.261960][T25591] R10: dffffc0000000000 R11: fffffbfff1f0ad9e R12: ffffc900033cfd78
[ 3284.269980][T25591] R13: 00000000003d0f00 R14: ffffc900033cfc40 R15: dffffc0000000000
[ 3284.278021][T25591]  kernel_clone+0x363/0x8d0
[ 3284.282583][T25591]  ? __pfx_kernel_clone+0x10/0x10
[ 3284.287675][T25591]  ? __pfx___might_resched+0x10/0x10
[ 3284.293018][T25591]  __se_sys_clone3+0x2cb/0x350
[ 3284.297843][T25591]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3284.303212][T25591]  ? int80_emulation+0xea/0x210
[ 3284.308115][T25591]  int80_emulation+0x129/0x210
[ 3284.312944][T25591]  asm_int80_emulation+0x1a/0x20
[ 3284.317931][T25591] RIP: 0023:0xf7316060
[ 3284.322032][T25591] Code: 4c 24 04 85 c9 0f 84 df 0d fe ff 8b 54 24 0c 85 d2 0f 84 d3 0d fe ff 53 56 8b 74 24 18 89 cb 8b 4c 24 10 b8 b3 01 00 00 cd 80 <85> c0 74 09 5e 5b 0f 8c b4 0d fe ff c3 31 ed 83 e4 f0 83 ec 0c 56
[ 3284.341760][T25591] RSP: 002b:00000000f752d8e4 EFLAGS: 00000282 ORIG_RAX: 00000000000001b3
[ 3284.350221][T25591] RAX: ffffffffffffffda RBX: 00000000f752d950 RCX: 0000000000000058
[ 3284.358280][T25591] RDX: 00000000f72c6eb0 RSI: 00000000f5e65b40 RDI: 00000000ffffffd8
[ 3284.366299][T25591] RBP: 000000000000006e R08: 0000000000000000 R09: 0000000000000000
[ 3284.374313][T25591] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 3284.382327][T25591] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 3284.390406][T25591]  </TASK>
[ 3284.396654][T25591] memory: usage 307200kB, limit 307200kB, failcnt 218307
[ 3284.404102][T25591] memory+swap: usage 308556kB, limit 9007199254740988kB, failcnt 0
[ 3284.412214][T25591] kmem: usage 307192kB, limit 9007199254740988kB, failcnt 0
[ 3284.435299][T25591] Memory cgroup stats for /syz1:
[ 3284.435435][T25591] cache 0
[ 3284.444108][T25591] rss 0
[ 3284.452658][T25591] rss_huge 0
[ 3284.456039][T25591] shmem 0
[ 3284.459207][T25591] mapped_file 0
[ 3284.463130][T25591] dirty 0
[ 3284.466204][T25591] writeback 0
[ 3284.474989][T25591] workingset_refault_anon 144099
[ 3284.480179][T25591] workingset_refault_file 0
06:22:41 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x888, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x858, 0x2, [@TCA_BASIC_POLICE={0x854, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x14000000]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}, @TCA_POLICE_PEAKRATE64={0xc}]}]}}]}, 0x888}}, 0x0)

[ 3284.485063][T25591] swap 1388544
[ 3284.501955][T25591] swapcached 8192
[ 3284.508012][T25591] pgpgin 396305
[ 3284.513892][T25591] pgpgout 396303
[ 3284.523968][T25591] pgfault 767393
[ 3284.527746][T25591] pgmajfault 134786
[ 3284.531704][T25591] inactive_anon 0
[ 3284.535488][T25591] active_anon 8192
[ 3284.555781][T25591] inactive_file 0
[ 3284.564172][T25591] active_file 0
[ 3284.571341][T25591] unevictable 0
[ 3284.579620][T25591] hierarchical_memory_limit 314572800
[ 3284.586644][T25591] hierarchical_memsw_limit 9223372036854771712
[ 3284.592966][T25591] total_cache 0
[ 3284.600260][T25591] total_rss 0
[ 3284.603704][T25591] total_rss_huge 0
[ 3284.610400][T25591] total_shmem 0
[ 3284.613984][T25591] total_mapped_file 0
[ 3284.626231][T25591] total_dirty 0
[ 3284.630262][T25591] total_writeback 0
[ 3284.634181][T25591] total_workingset_refault_anon 144099
[ 3284.645023][T25591] total_workingset_refault_file 0
[ 3284.650465][T25591] total_swap 1388544
[ 3284.654487][T25591] total_swapcached 8192
[ 3284.663264][T25591] total_pgpgin 396305
[ 3284.667439][T25591] total_pgpgout 396303
[ 3284.671645][T25591] total_pgfault 767393
[ 3284.675825][T25591] total_pgmajfault 134786
[ 3284.685416][T25591] total_inactive_anon 0
[ 3284.689762][T25591] total_active_anon 8192
[ 3284.694133][T25591] total_inactive_file 0
[ 3284.703251][T25591] total_active_file 0
[ 3284.707434][T25591] total_unevictable 0
[ 3284.711541][T25591] anon_cost 0
[ 3284.714967][T25591] file_cost 0
[ 3284.725095][T25591] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=25591,uid=0
[ 3284.744752][T25591] Memory cgroup out of memory: Killed process 25591 (syz-executor.1) total-vm:54476kB, anon-rss:316kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:68kB oom_score_adj:1000
06:22:41 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x87c, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x84c, 0x2, [@TCA_BASIC_POLICE={0x848, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}]}]}}]}, 0x87c}}, 0x0)

[ 3285.022616][T25598] syz-executor.2 invoked oom-killer: gfp_mask=0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), order=0, oom_score_adj=1000
[ 3285.056291][T25598] CPU: 1 PID: 25598 Comm: syz-executor.2 Not tainted 6.8.0-rc7-syzkaller-00250-g137e0ec05aeb #0
[ 3285.066806][T25598] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3285.076915][T25598] Call Trace:
[ 3285.080249][T25598]  <TASK>
[ 3285.083208][T25598]  dump_stack_lvl+0x1e7/0x2e0
[ 3285.087931][T25598]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3285.093188][T25598]  ? __pfx__printk+0x10/0x10
[ 3285.097839][T25598]  ? ___ratelimit+0x4c4/0x670
[ 3285.102581][T25598]  ? __pfx____ratelimit+0x10/0x10
[ 3285.107656][T25598]  dump_header+0xda/0x6a0
[ 3285.112036][T25598]  oom_kill_process+0x3a7/0x930
[ 3285.116941][T25598]  out_of_memory+0xf67/0x1320
[ 3285.121756][T25598]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3285.127435][T25598]  ? __pfx___mutex_lock+0x10/0x10
[ 3285.132504][T25598]  ? __pfx_out_of_memory+0x10/0x10
[ 3285.137675][T25598]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3285.143265][T25598]  ? __pfx_lock_release+0x10/0x10
[ 3285.148337][T25598]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3285.154494][T25598]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3285.159746][T25598]  ? mem_cgroup_iter+0x3e9/0x560
[ 3285.164736][T25598]  try_charge_memcg+0xda2/0x18a0
[ 3285.169759][T25598]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3285.175183][T25598]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3285.180951][T25598]  ? __pfx_lock_release+0x10/0x10
[ 3285.186032][T25598]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3285.192110][T25598]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3285.197869][T25598]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3285.203754][T25598]  obj_cgroup_charge+0x389/0x630
[ 3285.208751][T25598]  ? obj_cgroup_charge+0x121/0x630
[ 3285.213907][T25598]  ? __pfx_obj_cgroup_charge+0x10/0x10
[ 3285.219411][T25598]  ? kmalloc_trace+0x4e/0x360
[ 3285.224123][T25598]  ? __pfx___might_resched+0x10/0x10
[ 3285.229454][T25598]  __memcg_slab_pre_alloc_hook+0x28d/0x2b0
[ 3285.235323][T25598]  ? copy_semundo+0xb5/0x240
[ 3285.239966][T25598]  kmalloc_trace+0x216/0x360
[ 3285.244591][T25598]  ? __asan_memcpy+0x40/0x70
[ 3285.249222][T25598]  copy_semundo+0xb5/0x240
[ 3285.253705][T25598]  copy_process+0x1bc3/0x3fc0
[ 3285.258429][T25598]  ? copy_process+0x9c3/0x3fc0
[ 3285.263245][T25598]  ? __pfx_copy_process+0x10/0x10
[ 3285.268312][T25598]  ? __might_fault+0xc5/0x120
[ 3285.273026][T25598]  ? __asan_memset+0x23/0x50
[ 3285.277662][T25598]  kernel_clone+0x21d/0x8d0
[ 3285.282300][T25598]  ? __pfx_kernel_clone+0x10/0x10
[ 3285.287366][T25598]  ? __pfx___might_resched+0x10/0x10
[ 3285.292784][T25598]  __se_sys_clone3+0x2cb/0x350
[ 3285.297586][T25598]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3285.302948][T25598]  ? int80_emulation+0xea/0x210
[ 3285.307855][T25598]  int80_emulation+0x129/0x210
[ 3285.312676][T25598]  asm_int80_emulation+0x1a/0x20
[ 3285.317642][T25598] RIP: 0023:0xf7376060
[ 3285.321736][T25598] Code: 4c 24 04 85 c9 0f 84 df 0d fe ff 8b 54 24 0c 85 d2 0f 84 d3 0d fe ff 53 56 8b 74 24 18 89 cb 8b 4c 24 10 b8 b3 01 00 00 cd 80 <85> c0 74 09 5e 5b 0f 8c b4 0d fe ff c3 31 ed 83 e4 f0 83 ec 0c 56
[ 3285.341463][T25598] RSP: 002b:00000000f758d8e4 EFLAGS: 00000282 ORIG_RAX: 00000000000001b3
[ 3285.349919][T25598] RAX: ffffffffffffffda RBX: 00000000f758d950 RCX: 0000000000000058
[ 3285.357921][T25598] RDX: 00000000f7326eb0 RSI: 00000000f5ee6b40 RDI: 00000000ffffffd8
[ 3285.365920][T25598] RBP: 000000000000000b R08: 0000000000000000 R09: 0000000000000000
[ 3285.373931][T25598] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 3285.381952][T25598] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 3285.389973][T25598]  </TASK>
[ 3285.406370][T25598] memory: usage 307200kB, limit 307200kB, failcnt 118373
[ 3285.413490][T25598] memory+swap: usage 307668kB, limit 9007199254740988kB, failcnt 0
[ 3285.501886][T25598] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0
[ 3285.515566][T25598] Memory cgroup stats for /syz2:
[ 3285.515701][T25598] cache 0
[ 3285.536436][T25598] rss 0
[ 3285.539274][T25598] rss_huge 0
[ 3285.542502][T25598] shmem 0
[ 3285.545459][T25598] mapped_file 0
[ 3285.557875][T25598] dirty 0
[ 3285.560861][T25598] writeback 0
[ 3285.564165][T25598] workingset_refault_anon 42502
[ 3285.586436][T25598] workingset_refault_file 0
[ 3285.591010][T25598] swap 479232
[ 3285.594323][T25598] swapcached 12288
[ 3285.609015][T25598] pgpgin 246886
[ 3285.612536][T25598] pgpgout 246883
[ 3285.616105][T25598] pgfault 587978
[ 3285.628310][T25598] pgmajfault 42069
[ 3285.632106][T25598] inactive_anon 12288
[ 3285.636113][T25598] active_anon 0
[ 3285.650103][T25598] inactive_file 0
[ 3285.653795][T25598] active_file 0
[ 3285.664935][T25598] unevictable 0
[ 3285.672966][T25598] hierarchical_memory_limit 314572800
[ 3285.684011][T25598] hierarchical_memsw_limit 9223372036854771712
[ 3285.696380][T25598] total_cache 0
[ 3285.699911][T25598] total_rss 0
[ 3285.703416][T25598] total_rss_huge 0
[ 3285.716782][T25598] total_shmem 0
[ 3285.720308][T25598] total_mapped_file 0
[ 3285.724307][T25598] total_dirty 0
[ 3285.738873][T25598] total_writeback 0
[ 3285.742736][T25598] total_workingset_refault_anon 42502
[ 3285.757849][T25598] total_workingset_refault_file 0
[ 3285.762931][T25598] total_swap 479232
[ 3285.775983][T25598] total_swapcached 12288
[ 3285.786845][T25598] total_pgpgin 246886
[ 3285.790988][T25598] total_pgpgout 246883
[ 3285.795088][T25598] total_pgfault 587978
[ 3285.811541][T25598] total_pgmajfault 42069
[ 3285.815839][T25598] total_inactive_anon 12288
[ 3285.829146][T25598] total_active_anon 0
[ 3285.833193][T25598] total_inactive_file 0
[ 3285.846540][T25598] total_active_file 0
[ 3285.852054][T25598] total_unevictable 0
[ 3285.856266][T25598] anon_cost 0
[ 3285.866862][T25598] file_cost 0
[ 3285.876067][T25598] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=25598,uid=0
[ 3285.921121][T25598] Memory cgroup out of memory: Killed process 25598 (syz-executor.2) total-vm:54344kB, anon-rss:316kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:64kB oom_score_adj:1000
06:22:42 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x888, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x858, 0x2, [@TCA_BASIC_POLICE={0x854, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x11]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}, @TCA_POLICE_PEAKRATE64={0xc}]}]}}]}, 0x888}}, 0x0)

[ 3285.962750][T25602] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3285.976670][T25602] CPU: 1 PID: 25602 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00250-g137e0ec05aeb #0
[ 3285.987151][T25602] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3285.997243][T25602] Call Trace:
[ 3286.000550][T25602]  <TASK>
[ 3286.003512][T25602]  dump_stack_lvl+0x1e7/0x2e0
[ 3286.008240][T25602]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3286.013492][T25602]  ? __pfx__printk+0x10/0x10
[ 3286.018143][T25602]  ? ___ratelimit+0x4c4/0x670
[ 3286.022880][T25602]  ? __pfx____ratelimit+0x10/0x10
[ 3286.027970][T25602]  dump_header+0xda/0x6a0
[ 3286.032366][T25602]  oom_kill_process+0x3a7/0x930
[ 3286.037268][T25602]  out_of_memory+0xf67/0x1320
[ 3286.042011][T25602]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3286.047680][T25602]  ? __pfx___mutex_lock+0x10/0x10
[ 3286.052764][T25602]  ? __pfx_out_of_memory+0x10/0x10
[ 3286.057941][T25602]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3286.063529][T25602]  ? __pfx_lock_release+0x10/0x10
[ 3286.068594][T25602]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3286.074704][T25602]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3286.079942][T25602]  ? mem_cgroup_iter+0x3e9/0x560
[ 3286.084925][T25602]  try_charge_memcg+0xda2/0x18a0
[ 3286.089937][T25602]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3286.095364][T25602]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3286.101133][T25602]  ? __pfx_lock_release+0x10/0x10
[ 3286.106219][T25602]  ? memcg_account_kmem+0x1e7/0x210
[ 3286.111484][T25602]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3286.117342][T25602]  __memcg_kmem_charge_page+0xe1/0x250
[ 3286.122851][T25602]  memcg_charge_kernel_stack+0x210/0x550
[ 3286.128536][T25602]  dup_task_struct+0x40d/0x7d0
[ 3286.133358][T25602]  copy_process+0x5d5/0x3fc0
[ 3286.138013][T25602]  ? __might_fault+0xa9/0x120
[ 3286.142841][T25602]  ? __pfx_lock_release+0x10/0x10
[ 3286.147948][T25602]  ? __pfx_copy_process+0x10/0x10
[ 3286.153051][T25602]  ? __might_fault+0xc5/0x120
[ 3286.157786][T25602]  ? __asan_memset+0x23/0x50
[ 3286.162424][T25602]  kernel_clone+0x21d/0x8d0
[ 3286.166976][T25602]  ? __pfx_kernel_clone+0x10/0x10
[ 3286.172077][T25602]  __se_sys_clone3+0x2cb/0x350
[ 3286.176904][T25602]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3286.182266][T25602]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3286.188310][T25602]  ? exc_page_fault+0x587/0x870
[ 3286.193226][T25602]  ? int80_emulation+0xea/0x210
[ 3286.198130][T25602]  int80_emulation+0x129/0x210
[ 3286.202952][T25602]  asm_int80_emulation+0x1a/0x20
[ 3286.207935][T25602] RIP: 0023:0xf7372060
[ 3286.212125][T25602] Code: 4c 24 04 85 c9 0f 84 df 0d fe ff 8b 54 24 0c 85 d2 0f 84 d3 0d fe ff 53 56 8b 74 24 18 89 cb 8b 4c 24 10 b8 b3 01 00 00 cd 80 <85> c0 74 09 5e 5b 0f 8c b4 0d fe ff c3 31 ed 83 e4 f0 83 ec 0c 56
[ 3286.231766][T25602] RSP: 002b:00000000f75898e4 EFLAGS: 00000282 ORIG_RAX: 00000000000001b3
[ 3286.240219][T25602] RAX: ffffffffffffffda RBX: 00000000f7589950 RCX: 0000000000000058
[ 3286.248226][T25602] RDX: 00000000f7322eb0 RSI: 00000000f5ee2b40 RDI: 00000000ffffffd8
[ 3286.256231][T25602] RBP: 000000000000000b R08: 0000000000000000 R09: 0000000000000000
[ 3286.264238][T25602] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 3286.272242][T25602] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 3286.280275][T25602]  </TASK>
[ 3286.601667][T25602] memory: usage 307188kB, limit 307200kB, failcnt 145305
[ 3286.616887][T25602] memory+swap: usage 307876kB, limit 9007199254740988kB, failcnt 0
[ 3286.647695][T25602] kmem: usage 307168kB, limit 9007199254740988kB, failcnt 0
[ 3286.658405][T25602] Memory cgroup stats for /syz0:
[ 3286.658564][T25602] cache 0
[ 3286.686558][T25602] rss 12288
[ 3286.693062][T25602] rss_huge 0
[ 3286.703541][T25602] shmem 0
[ 3286.712000][T25602] mapped_file 0
[ 3286.721548][T25602] dirty 0
[ 3286.730179][T25602] writeback 0
[ 3286.733516][T25602] workingset_refault_anon 53776
[ 3286.765027][T25602] workingset_refault_file 0
[ 3286.777376][T25602] swap 716800
[ 3286.777952][   T30] oom_reaper: reaped process 25591 (syz-executor.1), now anon-rss:112kB, file-rss:8096kB, shmem-rss:0kB
[ 3286.780710][T25602] swapcached 12288
[ 3286.831158][T25602] pgpgin 248310
[ 3286.834685][T25602] pgpgout 248307
[ 3286.849112][T25602] pgfault 576879
[ 3286.859987][T25602] pgmajfault 52499
[ 3286.863774][T25602] inactive_anon 8192
[ 3286.880732][T25602] active_anon 4096
[ 3286.884600][T25602] inactive_file 0
[ 3286.899579][T25602] active_file 0
[ 3286.907747][T25602] unevictable 0
[ 3286.916798][T25602] hierarchical_memory_limit 314572800
[ 3286.922227][T25602] hierarchical_memsw_limit 9223372036854771712
[ 3286.943419][T25602] total_cache 0
[ 3286.951548][T25602] total_rss 12288
[ 3286.959781][T25602] total_rss_huge 0
[ 3286.963588][T25602] total_shmem 0
[ 3286.977833][T25602] total_mapped_file 0
[ 3286.981867][T25602] total_dirty 0
[ 3286.985337][T25602] total_writeback 0
[ 3286.999608][T25602] total_workingset_refault_anon 53776
[ 3287.005039][T25602] total_workingset_refault_file 0
[ 3287.018324][T25602] total_swap 716800
[ 3287.022193][T25602] total_swapcached 12288
[ 3287.036595][T25602] total_pgpgin 248310
[ 3287.040662][T25602] total_pgpgout 248307
[ 3287.044749][T25602] total_pgfault 576879
[ 3287.059740][T25602] total_pgmajfault 52499
[ 3287.064126][T25602] total_inactive_anon 8192
[ 3287.074956][T25602] total_active_anon 4096
[ 3287.082631][T25602] total_inactive_file 0
[ 3287.091823][T25602] total_active_file 0
[ 3287.095844][T25602] total_unevictable 0
[ 3287.120909][T25602] anon_cost 0
[ 3287.124246][T25602] file_cost 0
[ 3287.136390][T25602] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=25602,uid=0
[ 3287.170686][T25602] Memory cgroup out of memory: Killed process 25602 (syz-executor.0) total-vm:54344kB, anon-rss:308kB, file-rss:8704kB, shmem-rss:0kB, UID:0 pgtables:64kB oom_score_adj:1000
[ 3287.209000][ T5118] syz-executor.1 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[ 3287.242622][ T5118] CPU: 1 PID: 5118 Comm: syz-executor.1 Not tainted 6.8.0-rc7-syzkaller-00250-g137e0ec05aeb #0
[ 3287.253030][ T5118] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3287.263122][ T5118] Call Trace:
[ 3287.266457][ T5118]  <TASK>
[ 3287.269416][ T5118]  dump_stack_lvl+0x1e7/0x2e0
[ 3287.274136][ T5118]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3287.279462][ T5118]  ? __pfx__printk+0x10/0x10
[ 3287.284084][ T5118]  ? ___ratelimit+0x4c4/0x670
[ 3287.288828][ T5118]  ? __pfx____ratelimit+0x10/0x10
[ 3287.293893][ T5118]  dump_header+0xda/0x6a0
[ 3287.298292][ T5118]  oom_kill_process+0x3a7/0x930
[ 3287.303187][ T5118]  out_of_memory+0xf67/0x1320
[ 3287.308076][ T5118]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3287.313751][ T5118]  ? __pfx___mutex_lock+0x10/0x10
[ 3287.318816][ T5118]  ? __pfx_out_of_memory+0x10/0x10
[ 3287.323972][ T5118]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3287.329559][ T5118]  ? __pfx_lock_release+0x10/0x10
[ 3287.334629][ T5118]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3287.340745][ T5118]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3287.346323][ T5118]  ? mem_cgroup_iter+0x422/0x560
[ 3287.353343][ T5118]  try_charge_memcg+0xda2/0x18a0
[ 3287.358326][ T5118]  ? mark_lock+0x9a/0x350
[ 3287.362701][ T5118]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3287.368120][ T5118]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 3287.374292][ T5118]  charge_memcg+0xa2/0x160
[ 3287.378732][ T5118]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 3287.384811][ T5118]  __read_swap_cache_async+0x480/0x8b0
[ 3287.390285][ T5118]  ? mark_lock+0x9a/0x350
[ 3287.394634][ T5118]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 3287.400651][ T5118]  swap_cluster_readahead+0x67c/0x810
[ 3287.406047][ T5118]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 3287.411963][ T5118]  ? __pfx_lock_release+0x10/0x10
[ 3287.417005][ T5118]  ? xas_descend+0x37e/0x470
[ 3287.421652][ T5118]  swapin_readahead+0x1ea/0x1070
[ 3287.426602][ T5118]  ? filemap_get_entry+0x127/0x4e0
[ 3287.431741][ T5118]  ? __pfx_swapin_readahead+0x10/0x10
[ 3287.437138][ T5118]  ? __filemap_get_folio+0x935/0xbc0
[ 3287.442441][ T5118]  ? swap_cache_get_folio+0x9f/0x570
[ 3287.447768][ T5118]  do_swap_page+0x791/0x3f40
[ 3287.452634][ T5118]  ? rcu_is_watching+0x15/0xb0
[ 3287.457424][ T5118]  ? do_swap_page+0x154/0x3f40
[ 3287.462196][ T5118]  ? __pfx_do_swap_page+0x10/0x10
[ 3287.467230][ T5118]  ? pte_offset_map_nolock+0x137/0x1f0
[ 3287.472701][ T5118]  ? mark_lock+0x9a/0x350
[ 3287.477037][ T5118]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 3287.482948][ T5118]  ? __pfx_validate_chain+0x10/0x10
[ 3287.488160][ T5118]  __handle_mm_fault+0x15e8/0x72d0
[ 3287.493302][ T5118]  ? __pfx___handle_mm_fault+0x10/0x10
[ 3287.498793][ T5118]  ? mt_find+0x226/0x850
[ 3287.503050][ T5118]  ? __pfx_lock_release+0x10/0x10
[ 3287.508104][ T5118]  ? mt_find+0x62d/0x850
[ 3287.512382][ T5118]  ? mt_find+0x226/0x850
[ 3287.516661][ T5118]  ? find_vma+0x142/0x1c0
[ 3287.521001][ T5118]  ? __pfx_find_vma+0x10/0x10
[ 3287.525689][ T5118]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3287.531721][ T5118]  handle_mm_fault+0x3c1/0x8a0
[ 3287.536533][ T5118]  exc_page_fault+0x2ad/0x870
[ 3287.541230][ T5118]  asm_exc_page_fault+0x26/0x30
[ 3287.546111][ T5118] RIP: 0010:__get_user_8+0x11/0x20
[ 3287.551238][ T5118] Code: ca c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 89 c2 48 c1 fa 3f 48 09 d0 0f 01 cb <48> 8b 10 31 c0 0f 01 ca c3 cc cc cc cc 66 90 90 90 90 90 90 90 90
[ 3287.571635][ T5118] RSP: 0018:ffffc90003abfd58 EFLAGS: 00050202
[ 3287.577714][ T5118] RAX: 000000005741f8a8 RBX: ffff88801f5250b8 RCX: ffffc90003abfc03
[ 3287.585693][ T5118] RDX: 0000000000000000 RSI: ffffffff8baac7e0 RDI: ffffffff8bfe6da0
[ 3287.593843][ T5118] RBP: ffffc90003abfe98 R08: ffffffff8f856cef R09: 1ffffffff1f0ad9d
[ 3287.601829][ T5118] R10: dffffc0000000000 R11: fffffbfff1f0ad9e R12: ffffc90003abfd60
[ 3287.609817][ T5118] R13: ffffc90003abffd8 R14: dffffc0000000000 R15: ffff88801f523b80
[ 3287.617818][ T5118]  __rseq_handle_notify_resume+0x158/0x1490
[ 3287.623739][ T5118]  ? __pfx_hrtimer_wakeup+0x10/0x10
[ 3287.628960][ T5118]  ? __pfx___rseq_handle_notify_resume+0x10/0x10
[ 3287.635313][ T5118]  ? syscall_exit_to_user_mode+0xa2/0x360
[ 3287.641055][ T5118]  syscall_exit_to_user_mode+0x113/0x360
[ 3287.646714][ T5118]  __do_fast_syscall_32+0xcf/0x120
[ 3287.651843][ T5118]  ? exc_page_fault+0x587/0x870
[ 3287.656721][ T5118]  do_fast_syscall_32+0x33/0x70
[ 3287.661689][ T5118]  entry_SYSENTER_compat_after_hwframe+0x7c/0x86
[ 3287.668033][ T5118] RIP: 0023:0xf728c579
[ 3287.672117][ T5118] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[ 3287.691737][ T5118] RSP: 002b:00000000f752dc80 EFLAGS: 00000206 ORIG_RAX: 000000000000010b
[ 3287.700167][ T5118] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000
[ 3287.708167][ T5118] RDX: 00000000f752dcb4 RSI: 00000000f752dcac RDI: 00000000f752dcb4
[ 3287.716177][ T5118] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 3287.724171][ T5118] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 3287.732179][ T5118] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 3287.740218][ T5118]  </TASK>
[ 3287.776482][ T5118] memory: usage 307200kB, limit 307200kB, failcnt 218618
[ 3287.783587][ T5118] memory+swap: usage 308556kB, limit 9007199254740988kB, failcnt 0
[ 3287.797339][ T5118] kmem: usage 307192kB, limit 9007199254740988kB, failcnt 0
[ 3287.804691][ T5118] Memory cgroup stats for /syz1:
[ 3287.804845][ T5118] cache 0
[ 3287.831900][ T5118] rss 0
[ 3287.834723][ T5118] rss_huge 0
[ 3287.844167][ T5118] shmem 0
[ 3287.851231][ T5118] mapped_file 0
[ 3287.854746][ T5118] dirty 0
[ 3287.861153][ T5118] writeback 0
[ 3287.864512][ T5118] workingset_refault_anon 144099
[ 3287.872634][ T5118] workingset_refault_file 0
[ 3287.880102][ T5118] swap 1388544
[ 3287.883522][ T5118] swapcached 8192
[ 3287.890333][ T5118] pgpgin 396305
[ 3287.893841][ T5118] pgpgout 396303
[ 3287.926948][ T5118] pgfault 767399
[ 3287.930561][ T5118] pgmajfault 134786
[ 3287.934399][ T5118] inactive_anon 8192
[ 3287.967903][ T5118] active_anon 0
[ 3287.971450][ T5118] inactive_file 0
[ 3287.975113][ T5118] active_file 0
[ 3288.020039][ T5118] unevictable 0
[ 3288.023578][ T5118] hierarchical_memory_limit 314572800
[ 3288.049478][ T5118] hierarchical_memsw_limit 9223372036854771712
[ 3288.055711][ T5118] total_cache 0
[ 3288.091187][ T5118] total_rss 0
[ 3288.094545][ T5118] total_rss_huge 0
[ 3288.111755][ T5118] total_shmem 0
[ 3288.115282][ T5118] total_mapped_file 0
[ 3288.148396][ T5118] total_dirty 0
[ 3288.151933][ T5118] total_writeback 0
[ 3288.155782][ T5118] total_workingset_refault_anon 144099
[ 3288.193473][ T5118] total_workingset_refault_file 0
[ 3288.205883][ T5118] total_swap 1388544
[ 3288.215804][ T5118] total_swapcached 8192
[ 3288.226915][ T5118] total_pgpgin 396305
[ 3288.230966][ T5118] total_pgpgout 396303
[ 3288.235060][ T5118] total_pgfault 767399
[ 3288.256062][ T5118] total_pgmajfault 134786
[ 3288.271124][ T5118] total_inactive_anon 8192
[ 3288.275609][ T5118] total_active_anon 0
[ 3288.280250][ T5118] total_inactive_file 0
[ 3288.284455][ T5118] total_active_file 0
[ 3288.288810][ T5118] total_unevictable 0
[ 3288.292827][ T5118] anon_cost 0
[ 3288.296130][ T5118] file_cost 0
[ 3288.304602][ T5118] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=19819,uid=0
[ 3288.324542][ T5118] Memory cgroup out of memory: Killed process 19819 (syz-executor.1) total-vm:50768kB, anon-rss:352kB, file-rss:8320kB, shmem-rss:0kB, UID:0 pgtables:64kB oom_score_adj:1000
[ 3288.367609][T25603] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3288.392815][T25603] CPU: 1 PID: 25603 Comm: syz-executor.2 Not tainted 6.8.0-rc7-syzkaller-00250-g137e0ec05aeb #0
[ 3288.403310][T25603] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3288.413410][T25603] Call Trace:
[ 3288.416723][T25603]  <TASK>
[ 3288.419715][T25603]  dump_stack_lvl+0x1e7/0x2e0
[ 3288.424441][T25603]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3288.429700][T25603]  ? __pfx__printk+0x10/0x10
[ 3288.434323][T25603]  ? ___ratelimit+0x4c4/0x670
[ 3288.439057][T25603]  ? __pfx____ratelimit+0x10/0x10
[ 3288.444132][T25603]  dump_header+0xda/0x6a0
[ 3288.448509][T25603]  oom_kill_process+0x3a7/0x930
[ 3288.453413][T25603]  out_of_memory+0xf67/0x1320
[ 3288.458143][T25603]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3288.463823][T25603]  ? __pfx___mutex_lock+0x10/0x10
[ 3288.468898][T25603]  ? __pfx_out_of_memory+0x10/0x10
[ 3288.474077][T25603]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3288.479677][T25603]  ? __pfx_lock_release+0x10/0x10
[ 3288.484755][T25603]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3288.490883][T25603]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3288.496128][T25603]  ? mem_cgroup_iter+0x3e9/0x560
[ 3288.501112][T25603]  try_charge_memcg+0xda2/0x18a0
[ 3288.506111][T25603]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3288.511531][T25603]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3288.517295][T25603]  ? __pfx_lock_release+0x10/0x10
[ 3288.522369][T25603]  ? memcg_account_kmem+0x1e7/0x210
[ 3288.527627][T25603]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3288.533473][T25603]  __memcg_kmem_charge_page+0xe1/0x250
[ 3288.538997][T25603]  memcg_charge_kernel_stack+0x210/0x550
[ 3288.544703][T25603]  dup_task_struct+0x40d/0x7d0
[ 3288.549508][T25603]  copy_process+0x5d5/0x3fc0
[ 3288.554160][T25603]  ? __might_fault+0xa9/0x120
[ 3288.558883][T25603]  ? __pfx_lock_release+0x10/0x10
[ 3288.563962][T25603]  ? __pfx_copy_process+0x10/0x10
[ 3288.569024][T25603]  ? __might_fault+0xc5/0x120
[ 3288.573762][T25603]  ? __asan_memset+0x23/0x50
[ 3288.578411][T25603]  kernel_clone+0x21d/0x8d0
[ 3288.582989][T25603]  ? __pfx_kernel_clone+0x10/0x10
[ 3288.588214][T25603]  __se_sys_clone3+0x2cb/0x350
[ 3288.593022][T25603]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3288.598372][T25603]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3288.604501][T25603]  ? exc_page_fault+0x587/0x870
[ 3288.609408][T25603]  ? int80_emulation+0xea/0x210
[ 3288.614308][T25603]  int80_emulation+0x129/0x210
[ 3288.619130][T25603]  asm_int80_emulation+0x1a/0x20
[ 3288.624116][T25603] RIP: 0023:0xf7376060
[ 3288.628238][T25603] Code: 4c 24 04 85 c9 0f 84 df 0d fe ff 8b 54 24 0c 85 d2 0f 84 d3 0d fe ff 53 56 8b 74 24 18 89 cb 8b 4c 24 10 b8 b3 01 00 00 cd 80 <85> c0 74 09 5e 5b 0f 8c b4 0d fe ff c3 31 ed 83 e4 f0 83 ec 0c 56
[ 3288.647893][T25603] RSP: 002b:00000000f758d8e4 EFLAGS: 00000282 ORIG_RAX: 00000000000001b3
[ 3288.656369][T25603] RAX: ffffffffffffffda RBX: 00000000f758d950 RCX: 0000000000000058
[ 3288.664412][T25603] RDX: 00000000f7326eb0 RSI: 00000000f5ee6b40 RDI: 00000000ffffffd8
[ 3288.672436][T25603] RBP: 000000000000000b R08: 0000000000000000 R09: 0000000000000000
[ 3288.680458][T25603] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 3288.688472][T25603] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 3288.696503][T25603]  </TASK>
[ 3288.709028][T25603] memory: usage 307180kB, limit 307200kB, failcnt 118814
[ 3288.716112][T25603] memory+swap: usage 307648kB, limit 9007199254740988kB, failcnt 0
[ 3288.725022][T25603] kmem: usage 307168kB, limit 9007199254740988kB, failcnt 0
[ 3288.732815][T25603] Memory cgroup stats for /syz2:
[ 3288.732968][T25603] cache 0
[ 3288.741516][T25603] rss 0
[ 3288.744316][T25603] rss_huge 0
[ 3288.748109][T25603] shmem 0
[ 3288.751084][T25603] mapped_file 0
[ 3288.754572][T25603] dirty 0
[ 3288.774526][T25603] writeback 0
[ 3288.782443][T25603] workingset_refault_anon 42653
[ 3288.791688][T25603] workingset_refault_file 0
[ 3288.796246][T25603] swap 479232
[ 3288.809619][T25603] swapcached 12288
[ 3288.813406][T25603] pgpgin 247046
[ 3288.826553][T25603] pgpgout 247043
[ 3288.830264][T25603] pgfault 588212
[ 3288.833839][T25603] pgmajfault 42209
[ 3288.845044][T25603] inactive_anon 0
[ 3288.853653][T25603] active_anon 12288
[ 3288.861028][T25603] inactive_file 0
[ 3288.864714][T25603] active_file 0
[ 3288.876093][T25603] unevictable 0
[ 3288.884805][T25603] hierarchical_memory_limit 314572800
[ 3288.895012][T25603] hierarchical_memsw_limit 9223372036854771712
[ 3288.907704][T25603] total_cache 0
[ 3288.911228][T25603] total_rss 0
[ 3288.914550][T25603] total_rss_huge 0
[ 3288.931220][T25603] total_shmem 0
[ 3288.934751][T25603] total_mapped_file 0
[ 3288.947636][T25603] total_dirty 0
[ 3288.951160][T25603] total_writeback 0
[ 3288.954992][T25603] total_workingset_refault_anon 42653
[ 3288.973156][T25603] total_workingset_refault_file 0
[ 3288.978530][T25603] total_swap 479232
[ 3288.982379][T25603] total_swapcached 12288
[ 3288.986730][T25603] total_pgpgin 247046
[ 3288.990749][T25603] total_pgpgout 247043
[ 3288.994848][T25603] total_pgfault 588212
[ 3288.999081][T25603] total_pgmajfault 42209
[ 3289.003359][T25603] total_inactive_anon 0
[ 3289.011717][T25603] total_active_anon 12288
[ 3289.016103][T25603] total_inactive_file 0
[ 3289.030341][T25603] total_active_file 0
[ 3289.034387][T25603] total_unevictable 0
[ 3289.038488][T25603] anon_cost 0
[ 3289.041811][T25603] file_cost 0
[ 3289.045117][T25603] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=25603,uid=0
[ 3289.067541][T25603] Memory cgroup out of memory: Killed process 25603 (syz-executor.2) total-vm:54344kB, anon-rss:308kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:64kB oom_score_adj:1000
06:22:45 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x40, 0x4, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x3f5}}}]}]}}]}, 0x74}}, 0x0)

06:22:45 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x87c, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x84c, 0x2, [@TCA_BASIC_POLICE={0x848, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}]}]}}]}, 0x87c}}, 0x0)

06:22:45 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x888, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x858, 0x2, [@TCA_BASIC_POLICE={0x854, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x14]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}, @TCA_POLICE_PEAKRATE64={0xc}]}]}}]}, 0x888}}, 0x0)

06:22:46 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x888, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x858, 0x2, [@TCA_BASIC_POLICE={0x854, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x15000000]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}, @TCA_POLICE_PEAKRATE64={0xc}]}]}}]}, 0x888}}, 0x0)

[ 3289.927962][T25608] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3289.980930][T25608] CPU: 1 PID: 25608 Comm: syz-executor.2 Not tainted 6.8.0-rc7-syzkaller-00250-g137e0ec05aeb #0
[ 3289.991421][T25608] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3290.001523][T25608] Call Trace:
[ 3290.004842][T25608]  <TASK>
[ 3290.007819][T25608]  dump_stack_lvl+0x1e7/0x2e0
[ 3290.012556][T25608]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3290.017813][T25608]  ? __pfx__printk+0x10/0x10
[ 3290.022461][T25608]  ? ___ratelimit+0x4c4/0x670
[ 3290.027206][T25608]  ? __pfx____ratelimit+0x10/0x10
[ 3290.032298][T25608]  dump_header+0xda/0x6a0
[ 3290.036696][T25608]  oom_kill_process+0x3a7/0x930
[ 3290.041627][T25608]  out_of_memory+0xf67/0x1320
[ 3290.046364][T25608]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3290.052053][T25608]  ? __pfx___mutex_lock+0x10/0x10
[ 3290.057134][T25608]  ? __pfx_out_of_memory+0x10/0x10
[ 3290.062314][T25608]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3290.067916][T25608]  ? __pfx_lock_release+0x10/0x10
[ 3290.072997][T25608]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3290.079120][T25608]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3290.084387][T25608]  ? mem_cgroup_iter+0x3e9/0x560
[ 3290.089388][T25608]  try_charge_memcg+0xda2/0x18a0
[ 3290.094408][T25608]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3290.099837][T25608]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3290.105614][T25608]  ? __pfx_lock_release+0x10/0x10
[ 3290.110719][T25608]  ? memcg_account_kmem+0x1e7/0x210
[ 3290.115995][T25608]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3290.121861][T25608]  __memcg_kmem_charge_page+0xe1/0x250
[ 3290.127484][T25608]  memcg_charge_kernel_stack+0x210/0x550
[ 3290.133184][T25608]  dup_task_struct+0x40d/0x7d0
[ 3290.138015][T25608]  copy_process+0x5d5/0x3fc0
[ 3290.142672][T25608]  ? __might_fault+0xa9/0x120
[ 3290.147412][T25608]  ? __pfx_lock_release+0x10/0x10
[ 3290.152502][T25608]  ? __lock_acquire+0x1345/0x1fd0
[ 3290.157591][T25608]  ? __pfx_copy_process+0x10/0x10
[ 3290.162666][T25608]  ? __might_fault+0xc5/0x120
[ 3290.167409][T25608]  ? __asan_memset+0x23/0x50
[ 3290.172062][T25608]  kernel_clone+0x21d/0x8d0
[ 3290.176627][T25608]  ? __pfx_kernel_clone+0x10/0x10
[ 3290.181723][T25608]  ? __pfx_lock_release+0x10/0x10
[ 3290.186820][T25608]  __se_sys_clone3+0x2cb/0x350
[ 3290.191639][T25608]  ? __might_fault+0xa9/0x120
[ 3290.196371][T25608]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3290.201714][T25608]  ? rcu_is_watching+0x15/0xb0
[ 3290.206547][T25608]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3290.212608][T25608]  ? exc_page_fault+0x587/0x870
[ 3290.217522][T25608]  ? int80_emulation+0xea/0x210
[ 3290.222448][T25608]  int80_emulation+0x129/0x210
[ 3290.227278][T25608]  asm_int80_emulation+0x1a/0x20
[ 3290.232265][T25608] RIP: 0023:0xf7376060
[ 3290.236374][T25608] Code: 4c 24 04 85 c9 0f 84 df 0d fe ff 8b 54 24 0c 85 d2 0f 84 d3 0d fe ff 53 56 8b 74 24 18 89 cb 8b 4c 24 10 b8 b3 01 00 00 cd 80 <85> c0 74 09 5e 5b 0f 8c b4 0d fe ff c3 31 ed 83 e4 f0 83 ec 0c 56
[ 3290.256123][T25608] RSP: 002b:00000000f758d8e4 EFLAGS: 00000282 ORIG_RAX: 00000000000001b3
[ 3290.264593][T25608] RAX: ffffffffffffffda RBX: 00000000f758d950 RCX: 0000000000000058
[ 3290.272672][T25608] RDX: 00000000f7326eb0 RSI: 00000000f5ee6b40 RDI: 00000000ffffffd8
[ 3290.280720][T25608] RBP: 000000000000000b R08: 0000000000000000 R09: 0000000000000000
[ 3290.288748][T25608] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 3290.296768][T25608] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 3290.304809][T25608]  </TASK>
[ 3290.708237][T25608] memory: usage 307200kB, limit 307200kB, failcnt 119228
[ 3290.743001][T25608] memory+swap: usage 307668kB, limit 9007199254740988kB, failcnt 0
[ 3290.781741][T25608] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0
[ 3290.837629][T25608] Memory cgroup stats for /syz2:
[ 3290.837788][T25608] cache 0
[ 3290.845756][T25608] rss 0
[ 3290.862195][T25608] rss_huge 0
[ 3290.865508][T25608] shmem 0
[ 3290.877179][T25608] mapped_file 0
[ 3290.880708][T25608] dirty 0
[ 3290.883672][T25608] writeback 0
[ 3290.928136][T25608] workingset_refault_anon 42762
[ 3290.933062][T25608] workingset_refault_file 0
[ 3290.988337][T25608] swap 479232
[ 3291.015138][T25608] swapcached 12288
[ 3291.059717][T25608] pgpgin 247163
[ 3291.075188][T25608] pgpgout 247160
[ 3291.090241][T25608] pgfault 588383
[ 3291.113179][T25608] pgmajfault 42302
[ 3291.128214][T25608] inactive_anon 0
[ 3291.132134][T25608] active_anon 12288
[ 3291.135975][T25608] inactive_file 0
[ 3291.167810][T25608] active_file 0
[ 3291.182834][T25608] unevictable 0
[ 3291.201380][T25608] hierarchical_memory_limit 314572800
[ 3291.224059][T25608] hierarchical_memsw_limit 9223372036854771712
[ 3291.251938][T25608] total_cache 0
[ 3291.255481][T25608] total_rss 0
[ 3291.285448][T25608] total_rss_huge 0
[ 3291.308017][T25608] total_shmem 0
[ 3291.311574][T25608] total_mapped_file 0
[ 3291.315588][T25608] total_dirty 0
[ 3291.333789][T25608] total_writeback 0
[ 3291.354771][T25608] total_workingset_refault_anon 42762
[ 3291.372507][T25608] total_workingset_refault_file 0
[ 3291.384952][T25608] total_swap 479232
[ 3291.402464][T25608] total_swapcached 12288
[ 3291.408483][T25608] total_pgpgin 247163
[ 3291.412524][T25608] total_pgpgout 247160
[ 3291.435790][T25608] total_pgfault 588383
[ 3291.452520][T25608] total_pgmajfault 42302
[ 3291.463277][T25608] total_inactive_anon 0
[ 3291.478564][T25608] total_active_anon 12288
[ 3291.482969][T25608] total_inactive_file 0
[ 3291.504203][T25608] total_active_file 0
[ 3291.524649][T25608] total_unevictable 0
[ 3291.538439][T25608] anon_cost 0
[ 3291.552034][T25608] file_cost 0
[ 3291.555395][T25608] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=25608,uid=0
[ 3291.613344][T25608] Memory cgroup out of memory: Killed process 25608 (syz-executor.2) total-vm:54344kB, anon-rss:308kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:64kB oom_score_adj:1000
[ 3291.674902][ T5119] syz-executor.0 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[ 3291.714645][ T5119] CPU: 1 PID: 5119 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00250-g137e0ec05aeb #0
[ 3291.725080][ T5119] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3291.735185][ T5119] Call Trace:
[ 3291.738528][ T5119]  <TASK>
[ 3291.741506][ T5119]  dump_stack_lvl+0x1e7/0x2e0
[ 3291.746255][ T5119]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3291.751512][ T5119]  ? __pfx__printk+0x10/0x10
[ 3291.756159][ T5119]  ? ___ratelimit+0x4c4/0x670
[ 3291.760900][ T5119]  ? __pfx____ratelimit+0x10/0x10
[ 3291.765991][ T5119]  dump_header+0xda/0x6a0
[ 3291.770390][ T5119]  oom_kill_process+0x3a7/0x930
[ 3291.775315][ T5119]  out_of_memory+0xf67/0x1320
[ 3291.780057][ T5119]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3291.785756][ T5119]  ? __pfx___mutex_lock+0x10/0x10
[ 3291.790848][ T5119]  ? __pfx_out_of_memory+0x10/0x10
[ 3291.796041][ T5119]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3291.801645][ T5119]  ? __pfx_lock_release+0x10/0x10
[ 3291.806756][ T5119]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3291.812889][ T5119]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3291.818145][ T5119]  ? mem_cgroup_iter+0x3e9/0x560
[ 3291.823176][ T5119]  try_charge_memcg+0xda2/0x18a0
[ 3291.828169][ T5119]  ? mark_lock+0x9a/0x350
[ 3291.832595][ T5119]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3291.838138][ T5119]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 3291.844374][ T5119]  charge_memcg+0xa2/0x160
[ 3291.848860][ T5119]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 3291.854979][ T5119]  __read_swap_cache_async+0x480/0x8b0
[ 3291.860501][ T5119]  ? mark_lock+0x9a/0x350
[ 3291.864890][ T5119]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 3291.870946][ T5119]  swap_cluster_readahead+0x67c/0x810
[ 3291.876396][ T5119]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 3291.882360][ T5119]  ? __pfx_lock_release+0x10/0x10
[ 3291.887447][ T5119]  ? xas_descend+0x37e/0x470
[ 3291.892108][ T5119]  swapin_readahead+0x1ea/0x1070
[ 3291.897105][ T5119]  ? filemap_get_entry+0x127/0x4e0
[ 3291.902290][ T5119]  ? __pfx_swapin_readahead+0x10/0x10
[ 3291.907743][ T5119]  ? __filemap_get_folio+0x935/0xbc0
[ 3291.913185][ T5119]  ? swap_cache_get_folio+0x9f/0x570
[ 3291.918549][ T5119]  do_swap_page+0x791/0x3f40
[ 3291.923204][ T5119]  ? rcu_is_watching+0x15/0xb0
[ 3291.928056][ T5119]  ? do_swap_page+0x154/0x3f40
[ 3291.932878][ T5119]  ? __pfx_do_swap_page+0x10/0x10
[ 3291.937964][ T5119]  ? pte_offset_map_nolock+0x137/0x1f0
[ 3291.943496][ T5119]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 3291.949384][ T5119]  __handle_mm_fault+0x15e8/0x72d0
[ 3291.954591][ T5119]  ? reacquire_held_locks+0x3eb/0x690
[ 3291.960027][ T5119]  ? __pfx___handle_mm_fault+0x10/0x10
[ 3291.965569][ T5119]  ? __pfx_reacquire_held_locks+0x10/0x10
[ 3291.971365][ T5119]  ? mtree_range_walk+0x6fd/0x8e0
[ 3291.976468][ T5119]  ? lock_vma_under_rcu+0x18a/0x730
[ 3291.981744][ T5119]  ? __pfx_lock_release+0x10/0x10
[ 3291.986831][ T5119]  ? lock_vma_under_rcu+0x2f9/0x730
[ 3291.992114][ T5119]  ? lock_vma_under_rcu+0x18a/0x730
[ 3291.997383][ T5119]  ? __pfx_lock_vma_under_rcu+0x10/0x10
[ 3292.003002][ T5119]  handle_mm_fault+0x3c1/0x8a0
[ 3292.007840][ T5119]  exc_page_fault+0x456/0x870
[ 3292.012591][ T5119]  asm_exc_page_fault+0x26/0x30
[ 3292.017497][ T5119] RIP: 0023:0xf72e8579
[ 3292.021617][ T5119] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[ 3292.041286][ T5119] RSP: 002b:00000000f7589c80 EFLAGS: 00010206
[ 3292.047405][ T5119] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00000000f72e8579
[ 3292.055437][ T5119] RDX: 00000000f7589cb4 RSI: 00000000f7589cac RDI: 00000000f7589cb4
[ 3292.063455][ T5119] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 3292.071478][ T5119] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 3292.079502][ T5119] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 3292.087541][ T5119]  </TASK>
06:22:49 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x888, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x858, 0x2, [@TCA_BASIC_POLICE={0x854, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x15010000]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}, @TCA_POLICE_PEAKRATE64={0xc}]}]}}]}, 0x888}}, 0x0)

[ 3292.571539][ T5119] memory: usage 307200kB, limit 307200kB, failcnt 146449
[ 3292.579273][ T5119] memory+swap: usage 307924kB, limit 9007199254740988kB, failcnt 0
[ 3292.611901][ T5119] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[ 3292.657801][ T5119] Memory cgroup stats for /syz0:
[ 3292.657965][ T5119] cache 0
[ 3292.665942][ T5119] rss 0
[ 3292.702626][ T5119] rss_huge 0
[ 3292.705908][ T5119] shmem 0
[ 3292.737173][ T5119] mapped_file 0
[ 3292.740751][ T5119] dirty 0
[ 3292.743716][ T5119] writeback 0
[ 3292.766550][ T5119] workingset_refault_anon 54167
[ 3292.771473][ T5119] workingset_refault_file 0
[ 3292.775992][ T5119] swap 741376
[ 3292.816889][ T5119] swapcached 0
[ 3292.820338][ T5119] pgpgin 248715
[ 3292.823827][ T5119] pgpgout 248715
[ 3292.838641][ T5119] pgfault 577432
[ 3292.843545][ T5119] pgmajfault 52868
[ 3292.852369][ T5119] inactive_anon 0
[ 3292.869205][ T5119] active_anon 0
[ 3292.886760][ T5119] inactive_file 0
[ 3292.890465][ T5119] active_file 0
[ 3292.893954][ T5119] unevictable 0
[ 3292.916872][ T5119] hierarchical_memory_limit 314572800
[ 3292.941543][ T5119] hierarchical_memsw_limit 9223372036854771712
[ 3292.948445][ T5119] total_cache 0
[ 3292.951953][ T5119] total_rss 0
[ 3292.955271][ T5119] total_rss_huge 0
[ 3292.976728][ T5119] total_shmem 0
[ 3292.980271][ T5119] total_mapped_file 0
[ 3292.984289][ T5119] total_dirty 0
[ 3293.006693][ T5119] total_writeback 0
[ 3293.010564][ T5119] total_workingset_refault_anon 54167
[ 3293.015971][ T5119] total_workingset_refault_file 0
[ 3293.056776][ T5119] total_swap 741376
[ 3293.060784][ T5119] total_swapcached 0
[ 3293.074825][ T5119] total_pgpgin 248715
[ 3293.088960][ T5119] total_pgpgout 248715
[ 3293.101488][ T5119] total_pgfault 577432
[ 3293.132585][ T5119] total_pgmajfault 52868
[ 3293.138683][ T5119] total_inactive_anon 0
[ 3293.155659][ T5119] total_active_anon 0
[ 3293.169123][ T5119] total_inactive_file 0
[ 3293.173354][ T5119] total_active_file 0
[ 3293.202332][ T5119] total_unevictable 0
[ 3293.221028][ T5119] anon_cost 0
[ 3293.236509][ T5119] file_cost 0
[ 3293.239873][ T5119] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=25607,uid=0
[ 3293.318323][ T5119] Memory cgroup out of memory: Killed process 25607 (syz-executor.0) total-vm:54476kB, anon-rss:316kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:64kB oom_score_adj:1000
06:22:50 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x87c, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x84c, 0x2, [@TCA_BASIC_POLICE={0x848, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}]}]}}]}, 0x87c}}, 0x0)

06:22:50 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x888, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x858, 0x2, [@TCA_BASIC_POLICE={0x854, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x15]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}, @TCA_POLICE_PEAKRATE64={0xc}]}]}}]}, 0x888}}, 0x0)

[ 3293.934611][ T5119] syz-executor.0 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[ 3294.001403][ T5119] CPU: 0 PID: 5119 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00250-g137e0ec05aeb #0
[ 3294.011814][ T5119] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3294.021918][ T5119] Call Trace:
[ 3294.025242][ T5119]  <TASK>
[ 3294.028217][ T5119]  dump_stack_lvl+0x1e7/0x2e0
[ 3294.032961][ T5119]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3294.038225][ T5119]  ? __pfx__printk+0x10/0x10
[ 3294.042867][ T5119]  ? ___ratelimit+0x4c4/0x670
[ 3294.047605][ T5119]  ? __pfx____ratelimit+0x10/0x10
[ 3294.052697][ T5119]  dump_header+0xda/0x6a0
[ 3294.057092][ T5119]  oom_kill_process+0x3a7/0x930
[ 3294.062006][ T5119]  out_of_memory+0xf67/0x1320
[ 3294.066752][ T5119]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3294.072442][ T5119]  ? __pfx___mutex_lock+0x10/0x10
[ 3294.077522][ T5119]  ? __pfx_out_of_memory+0x10/0x10
[ 3294.082700][ T5119]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3294.088304][ T5119]  ? __pfx_lock_release+0x10/0x10
[ 3294.093387][ T5119]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3294.099514][ T5119]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3294.104779][ T5119]  ? mem_cgroup_iter+0x3e9/0x560
[ 3294.109775][ T5119]  try_charge_memcg+0xda2/0x18a0
[ 3294.114771][ T5119]  ? mark_lock+0x9a/0x350
[ 3294.119179][ T5119]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3294.124637][ T5119]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 3294.130845][ T5119]  charge_memcg+0xa2/0x160
[ 3294.135332][ T5119]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 3294.141469][ T5119]  __read_swap_cache_async+0x480/0x8b0
[ 3294.147000][ T5119]  ? mark_lock+0x9a/0x350
[ 3294.151394][ T5119]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 3294.157449][ T5119]  swap_cluster_readahead+0x67c/0x810
[ 3294.162899][ T5119]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 3294.168866][ T5119]  ? __pfx_lock_release+0x10/0x10
[ 3294.173946][ T5119]  ? xas_descend+0x37e/0x470
[ 3294.178597][ T5119]  swapin_readahead+0x1ea/0x1070
[ 3294.183586][ T5119]  ? filemap_get_entry+0x127/0x4e0
[ 3294.188778][ T5119]  ? __pfx_swapin_readahead+0x10/0x10
[ 3294.194220][ T5119]  ? __filemap_get_folio+0x935/0xbc0
[ 3294.199582][ T5119]  ? swap_cache_get_folio+0x9f/0x570
[ 3294.204935][ T5119]  do_swap_page+0x791/0x3f40
[ 3294.209585][ T5119]  ? __lock_acquire+0x1345/0x1fd0
[ 3294.214669][ T5119]  ? rcu_is_watching+0x15/0xb0
[ 3294.219511][ T5119]  ? do_swap_page+0x154/0x3f40
[ 3294.224342][ T5119]  ? __pfx_do_swap_page+0x10/0x10
[ 3294.229422][ T5119]  ? pte_offset_map_nolock+0x137/0x1f0
[ 3294.234944][ T5119]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 3294.240806][ T5119]  ? __pfx_validate_chain+0x10/0x10
[ 3294.246072][ T5119]  __handle_mm_fault+0x15e8/0x72d0
[ 3294.251281][ T5119]  ? __pfx___handle_mm_fault+0x10/0x10
[ 3294.256807][ T5119]  ? mt_find+0x226/0x850
[ 3294.261113][ T5119]  ? __pfx_lock_release+0x10/0x10
[ 3294.266209][ T5119]  ? mt_find+0x62d/0x850
[ 3294.270512][ T5119]  ? mt_find+0x226/0x850
[ 3294.274846][ T5119]  ? find_vma+0x142/0x1c0
[ 3294.279227][ T5119]  ? __pfx_find_vma+0x10/0x10
[ 3294.283952][ T5119]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3294.289993][ T5119]  handle_mm_fault+0x3c1/0x8a0
[ 3294.294827][ T5119]  exc_page_fault+0x2ad/0x870
[ 3294.299567][ T5119]  asm_exc_page_fault+0x26/0x30
[ 3294.304464][ T5119] RIP: 0010:__get_user_8+0x11/0x20
[ 3294.309625][ T5119] Code: ca c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 89 c2 48 c1 fa 3f 48 09 d0 0f 01 cb <48> 8b 10 31 c0 0f 01 ca c3 cc cc cc cc 66 90 90 90 90 90 90 90 90
[ 3294.329277][ T5119] RSP: 0018:ffffc90003b9fd78 EFLAGS: 00050202
[ 3294.335401][ T5119] RAX: 000000005810e8a8 RBX: ffff88801c38d0b8 RCX: ffffc90003b9fc03
[ 3294.343512][ T5119] RDX: 0000000000000000 RSI: ffffffff8baac7e0 RDI: ffffffff8bfe6da0
[ 3294.351544][ T5119] RBP: ffffc90003b9fec0 R08: ffffffff8f856cef R09: 1ffffffff1f0ad9d
[ 3294.359566][ T5119] R10: dffffc0000000000 R11: fffffbfff1f0ad9e R12: ffffc90003b9fd80
[ 3294.367666][ T5119] R13: ffffc90003b9ffd8 R14: dffffc0000000000 R15: ffff88801c38bb80
[ 3294.375723][ T5119]  __rseq_handle_notify_resume+0x158/0x1490
[ 3294.381704][ T5119]  ? __pfx___rseq_handle_notify_resume+0x10/0x10
[ 3294.388111][ T5119]  ? irqentry_exit_to_user_mode+0x52/0x270
[ 3294.393992][ T5119]  irqentry_exit_to_user_mode+0xbb/0x270
[ 3294.399694][ T5119]  exc_page_fault+0x587/0x870
[ 3294.404446][ T5119]  asm_exc_page_fault+0x26/0x30
[ 3294.409353][ T5119] RIP: 0023:0xf72e8579
[ 3294.413469][ T5119] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[ 3294.433135][ T5119] RSP: 002b:00000000f7589c80 EFLAGS: 00010206
[ 3294.439261][ T5119] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00000000f72e8579
[ 3294.447404][ T5119] RDX: 00000000f7589cb4 RSI: 00000000f7589cac RDI: 00000000f7589cb4
[ 3294.455532][ T5119] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 3294.463566][ T5119] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 3294.471588][ T5119] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 3294.479643][ T5119]  </TASK>
[ 3294.627030][ T5119] memory: usage 307200kB, limit 307200kB, failcnt 146701
[ 3294.634216][ T5119] memory+swap: usage 307908kB, limit 9007199254740988kB, failcnt 0
[ 3294.701722][ T5119] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[ 3294.719263][ T5119] Memory cgroup stats for /syz0:
[ 3294.719416][ T5119] cache 0
[ 3294.730944][ T5119] rss 0
[ 3294.740777][ T5119] rss_huge 0
[ 3294.753344][ T5119] shmem 0
[ 3294.772599][ T5119] mapped_file 0
[ 3294.787513][ T5119] dirty 0
[ 3294.792922][ T5119] writeback 0
[ 3294.809994][ T5119] workingset_refault_anon 54241
[ 3294.825370][ T5119] workingset_refault_file 0
[ 3294.839150][ T5119] swap 724992
[ 3294.844907][ T5119] swapcached 0
[ 3294.868713][ T5119] pgpgin 248798
[ 3294.872368][ T5119] pgpgout 248798
[ 3294.876073][ T5119] pgfault 577558
[ 3294.883971][ T5119] pgmajfault 52926
[ 3294.899154][ T5119] inactive_anon 0
[ 3294.907006][ T5119] active_anon 0
[ 3294.915192][ T5119] inactive_file 0
[ 3294.932280][ T5119] active_file 0
[ 3294.949461][ T5119] unevictable 0
[ 3294.953118][ T5119] hierarchical_memory_limit 314572800
[ 3294.970664][ T5119] hierarchical_memsw_limit 9223372036854771712
[ 3294.970668][T32199] hsr_slave_1: left promiscuous mode
[ 3294.990552][ T5119] total_cache 0
[ 3295.002248][ T5119] total_rss 0
[ 3295.015611][ T5119] total_rss_huge 0
[ 3295.036113][ T5119] total_shmem 0
[ 3295.047746][T32199] veth1_macvtap: left promiscuous mode
[ 3295.050418][ T5119] total_mapped_file 0
[ 3295.053670][T32199] veth0_macvtap: left promiscuous mode
[ 3295.072181][ T5119] total_dirty 0
[ 3295.080621][ T5119] total_writeback 0
[ 3295.090112][ T5119] total_workingset_refault_anon 54241
[ 3295.093777][T32199] veth1_vlan: left promiscuous mode
[ 3295.102721][ T5119] total_workingset_refault_file 0
[ 3295.121782][T32199] veth0_vlan: left promiscuous mode
[ 3295.127438][ T5119] total_swap 724992
[ 3295.139715][ T5119] total_swapcached 0
[ 3295.149919][ T5119] total_pgpgin 248798
[ 3295.157665][ T5119] total_pgpgout 248798
[ 3295.170232][ T5119] total_pgfault 577558
[ 3295.181468][ T5119] total_pgmajfault 52926
[ 3295.185897][ T5119] total_inactive_anon 0
[ 3295.200683][ T5119] total_active_anon 0
[ 3295.209397][ T5119] total_inactive_file 0
[ 3295.219444][ T5119] total_active_file 0
[ 3295.228838][ T5119] total_unevictable 0
[ 3295.240197][ T5119] anon_cost 0
[ 3295.248197][ T5119] file_cost 0
[ 3295.255107][ T5119] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=25617,uid=0
[ 3295.301147][ T5119] Memory cgroup out of memory: Killed process 25617 (syz-executor.0) total-vm:54344kB, anon-rss:316kB, file-rss:8704kB, shmem-rss:0kB, UID:0 pgtables:64kB oom_score_adj:1000
[ 3295.342741][T25618] syz-executor.2 invoked oom-killer: gfp_mask=0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), order=0, oom_score_adj=1000
[ 3295.376567][T25618] CPU: 1 PID: 25618 Comm: syz-executor.2 Not tainted 6.8.0-rc7-syzkaller-00250-g137e0ec05aeb #0
[ 3295.387064][T25618] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3295.397168][T25618] Call Trace:
[ 3295.400486][T25618]  <TASK>
[ 3295.403544][T25618]  dump_stack_lvl+0x1e7/0x2e0
[ 3295.408302][T25618]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3295.413559][T25618]  ? __pfx__printk+0x10/0x10
[ 3295.418211][T25618]  ? ___ratelimit+0x4c4/0x670
[ 3295.422951][T25618]  ? __pfx____ratelimit+0x10/0x10
[ 3295.428056][T25618]  dump_header+0xda/0x6a0
[ 3295.432459][T25618]  oom_kill_process+0x3a7/0x930
[ 3295.437391][T25618]  out_of_memory+0xf67/0x1320
[ 3295.442114][T25618]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3295.447775][T25618]  ? __pfx___mutex_lock+0x10/0x10
[ 3295.452815][T25618]  ? __pfx_out_of_memory+0x10/0x10
[ 3295.457960][T25618]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3295.463539][T25618]  ? __pfx_lock_release+0x10/0x10
[ 3295.468586][T25618]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3295.474674][T25618]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3295.479891][T25618]  ? mem_cgroup_iter+0x3e9/0x560
[ 3295.484854][T25618]  try_charge_memcg+0xda2/0x18a0
[ 3295.489832][T25618]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3295.495266][T25618]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3295.501013][T25618]  ? __pfx_lock_release+0x10/0x10
[ 3295.506065][T25618]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3295.512081][T25618]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3295.517827][T25618]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3295.523717][T25618]  obj_cgroup_charge+0x389/0x630
[ 3295.528693][T25618]  ? obj_cgroup_charge+0x121/0x630
[ 3295.533825][T25618]  ? __pfx_obj_cgroup_charge+0x10/0x10
[ 3295.539299][T25618]  ? kmalloc_trace+0x4e/0x360
[ 3295.543984][T25618]  ? __pfx___might_resched+0x10/0x10
[ 3295.549296][T25618]  __memcg_slab_pre_alloc_hook+0x28d/0x2b0
[ 3295.555128][T25618]  ? copy_semundo+0xb5/0x240
[ 3295.559739][T25618]  kmalloc_trace+0x216/0x360
[ 3295.564428][T25618]  ? __asan_memcpy+0x40/0x70
[ 3295.569038][T25618]  copy_semundo+0xb5/0x240
[ 3295.573476][T25618]  copy_process+0x1bc3/0x3fc0
[ 3295.578217][T25618]  ? copy_process+0x9c3/0x3fc0
[ 3295.583031][T25618]  ? __pfx_copy_process+0x10/0x10
[ 3295.588079][T25618]  ? __might_fault+0xc5/0x120
[ 3295.592775][T25618]  ? __asan_memset+0x23/0x50
[ 3295.597402][T25618]  kernel_clone+0x21d/0x8d0
[ 3295.601929][T25618]  ? __pfx_kernel_clone+0x10/0x10
[ 3295.606991][T25618]  __se_sys_clone3+0x2cb/0x350
[ 3295.611776][T25618]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3295.617111][T25618]  int80_emulation+0x129/0x210
[ 3295.621905][T25618]  asm_int80_emulation+0x1a/0x20
[ 3295.626855][T25618] RIP: 0023:0xf7376060
[ 3295.630939][T25618] Code: 4c 24 04 85 c9 0f 84 df 0d fe ff 8b 54 24 0c 85 d2 0f 84 d3 0d fe ff 53 56 8b 74 24 18 89 cb 8b 4c 24 10 b8 b3 01 00 00 cd 80 <85> c0 74 09 5e 5b 0f 8c b4 0d fe ff c3 31 ed 83 e4 f0 83 ec 0c 56
[ 3295.650559][T25618] RSP: 002b:00000000f758d8e4 EFLAGS: 00000282 ORIG_RAX: 00000000000001b3
[ 3295.659009][T25618] RAX: ffffffffffffffda RBX: 00000000f758d950 RCX: 0000000000000058
[ 3295.667025][T25618] RDX: 00000000f7326eb0 RSI: 00000000f5ee6b40 RDI: 00000000ffffffd8
[ 3295.675014][T25618] RBP: 000000000000000b R08: 0000000000000000 R09: 0000000000000000
[ 3295.682998][T25618] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 3295.690983][T25618] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 3295.698985][T25618]  </TASK>
[ 3295.839180][T25618] memory: usage 307200kB, limit 307200kB, failcnt 119548
[ 3295.846908][T25618] memory+swap: usage 307668kB, limit 9007199254740988kB, failcnt 0
[ 3295.854853][T25618] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0
[ 3295.871337][T25618] Memory cgroup stats for /syz2:
[ 3295.871504][T25618] cache 0
06:22:52 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x888, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x858, 0x2, [@TCA_BASIC_POLICE={0x854, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x15020000]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}, @TCA_POLICE_PEAKRATE64={0xc}]}]}}]}, 0x888}}, 0x0)

[ 3295.890315][T25618] rss 0
[ 3295.903595][T25618] rss_huge 0
[ 3295.908619][T25618] shmem 0
[ 3295.931643][T25618] mapped_file 0
[ 3295.935178][T25618] dirty 0
[ 3295.947621][T25618] writeback 0
[ 3295.950983][T25618] workingset_refault_anon 42849
[ 3295.955868][T25618] workingset_refault_file 0
[ 3295.997963][T25618] swap 479232
[ 3296.001316][T25618] swapcached 12288
[ 3296.005065][T25618] pgpgin 247258
[ 3296.036486][T25618] pgpgout 247255
[ 3296.047697][T25618] pgfault 588532
[ 3296.051311][T25618] pgmajfault 42376
[ 3296.055071][T25618] inactive_anon 0
[ 3296.086569][T25618] active_anon 12288
[ 3296.090452][T25618] inactive_file 0
[ 3296.094138][T25618] active_file 0
[ 3296.120228][T25618] unevictable 0
[ 3296.123756][T25618] hierarchical_memory_limit 314572800
[ 3296.150094][T25618] hierarchical_memsw_limit 9223372036854771712
[ 3296.166530][T25618] total_cache 0
[ 3296.170131][T25618] total_rss 0
[ 3296.173455][T25618] total_rss_huge 0
[ 3296.190777][T25618] total_shmem 0
[ 3296.194312][T25618] total_mapped_file 0
[ 3296.216123][T25618] total_dirty 0
[ 3296.230843][T25618] total_writeback 0
[ 3296.234711][T25618] total_workingset_refault_anon 42849
[ 3296.251077][T25618] total_workingset_refault_file 0
[ 3296.261954][T25618] total_swap 479232
[ 3296.271518][T25618] total_swapcached 12288
[ 3296.288205][T25618] total_pgpgin 247258
[ 3296.292381][T25618] total_pgpgout 247255
[ 3296.299500][T25618] total_pgfault 588532
[ 3296.309833][T25618] total_pgmajfault 42376
[ 3296.320024][T25618] total_inactive_anon 0
[ 3296.331196][T25618] total_active_anon 12288
[ 3296.346887][T25618] total_inactive_file 0
[ 3296.356086][T25618] total_active_file 0
[ 3296.376850][T25618] total_unevictable 0
[ 3296.380918][T25618] anon_cost 0
[ 3296.384238][T25618] file_cost 0
[ 3296.410380][T25618] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=25618,uid=0
[ 3296.458937][T25618] Memory cgroup out of memory: Killed process 25618 (syz-executor.2) total-vm:54344kB, anon-rss:316kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:64kB oom_score_adj:1000
06:22:53 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x888, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x858, 0x2, [@TCA_BASIC_POLICE={0x854, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x300]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}, @TCA_POLICE_PEAKRATE64={0xc}]}]}}]}, 0x888}}, 0x0)

06:22:53 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x87c, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x84c, 0x2, [@TCA_BASIC_POLICE={0x848, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}]}]}}]}, 0x87c}}, 0x0)

[ 3296.920939][ T5119] syz-executor.0 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[ 3296.959790][ T5119] CPU: 1 PID: 5119 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00250-g137e0ec05aeb #0
[ 3296.970200][ T5119] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3296.980303][ T5119] Call Trace:
[ 3296.983633][ T5119]  <TASK>
[ 3296.986599][ T5119]  dump_stack_lvl+0x1e7/0x2e0
[ 3296.991341][ T5119]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3296.996587][ T5119]  ? __pfx__printk+0x10/0x10
[ 3297.001225][ T5119]  ? ___ratelimit+0x4c4/0x670
[ 3297.005964][ T5119]  ? __pfx____ratelimit+0x10/0x10
[ 3297.011056][ T5119]  dump_header+0xda/0x6a0
[ 3297.015448][ T5119]  oom_kill_process+0x3a7/0x930
[ 3297.020363][ T5119]  out_of_memory+0xf67/0x1320
[ 3297.025101][ T5119]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3297.030785][ T5119]  ? __pfx___mutex_lock+0x10/0x10
[ 3297.035871][ T5119]  ? __pfx_out_of_memory+0x10/0x10
[ 3297.041051][ T5119]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3297.046649][ T5119]  ? __pfx_lock_release+0x10/0x10
[ 3297.051725][ T5119]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3297.057886][ T5119]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3297.063135][ T5119]  ? mem_cgroup_iter+0x3e9/0x560
[ 3297.068124][ T5119]  try_charge_memcg+0xda2/0x18a0
[ 3297.073108][ T5119]  ? mark_lock+0x9a/0x350
[ 3297.077508][ T5119]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3297.082972][ T5119]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 3297.089184][ T5119]  charge_memcg+0xa2/0x160
[ 3297.093667][ T5119]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 3297.099795][ T5119]  __read_swap_cache_async+0x480/0x8b0
[ 3297.105322][ T5119]  ? mark_lock+0x9a/0x350
[ 3297.109722][ T5119]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 3297.115777][ T5119]  swap_cluster_readahead+0x67c/0x810
[ 3297.121224][ T5119]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 3297.127180][ T5119]  ? __pfx_lock_release+0x10/0x10
[ 3297.132267][ T5119]  ? xas_descend+0x37e/0x470
[ 3297.136944][ T5119]  swapin_readahead+0x1ea/0x1070
[ 3297.141954][ T5119]  ? filemap_get_entry+0x127/0x4e0
[ 3297.147164][ T5119]  ? __pfx_swapin_readahead+0x10/0x10
[ 3297.152617][ T5119]  ? __filemap_get_folio+0x935/0xbc0
[ 3297.157979][ T5119]  ? swap_cache_get_folio+0x9f/0x570
[ 3297.163335][ T5119]  do_swap_page+0x791/0x3f40
[ 3297.167986][ T5119]  ? rcu_is_watching+0x15/0xb0
[ 3297.172834][ T5119]  ? do_swap_page+0x154/0x3f40
[ 3297.177649][ T5119]  ? __pfx_do_swap_page+0x10/0x10
[ 3297.182848][ T5119]  ? pte_offset_map_nolock+0x137/0x1f0
[ 3297.188363][ T5119]  ? mark_lock+0x9a/0x350
[ 3297.192788][ T5119]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 3297.198666][ T5119]  ? __pfx_validate_chain+0x10/0x10
[ 3297.203935][ T5119]  __handle_mm_fault+0x15e8/0x72d0
[ 3297.209130][ T5119]  ? __pfx___handle_mm_fault+0x10/0x10
[ 3297.214624][ T5119]  ? mt_find+0x226/0x850
[ 3297.218887][ T5119]  ? __pfx_lock_release+0x10/0x10
[ 3297.223944][ T5119]  ? mt_find+0x62d/0x850
[ 3297.228206][ T5119]  ? mt_find+0x226/0x850
[ 3297.232480][ T5119]  ? find_vma+0x142/0x1c0
[ 3297.236819][ T5119]  ? __pfx_find_vma+0x10/0x10
[ 3297.241507][ T5119]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3297.247510][ T5119]  handle_mm_fault+0x3c1/0x8a0
[ 3297.252300][ T5119]  exc_page_fault+0x2ad/0x870
[ 3297.256999][ T5119]  asm_exc_page_fault+0x26/0x30
[ 3297.261866][ T5119] RIP: 0010:__get_user_8+0x11/0x20
[ 3297.267010][ T5119] Code: ca c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 89 c2 48 c1 fa 3f 48 09 d0 0f 01 cb <48> 8b 10 31 c0 0f 01 ca c3 cc cc cc cc 66 90 90 90 90 90 90 90 90
[ 3297.286733][ T5119] RSP: 0018:ffffc90003b9fd58 EFLAGS: 00050202
[ 3297.292817][ T5119] RAX: 000000005810e8a8 RBX: ffff88801c38d0b8 RCX: ffffc90003b9fc03
[ 3297.300804][ T5119] RDX: 0000000000000000 RSI: ffffffff8baac7e0 RDI: ffffffff8bfe6da0
[ 3297.308793][ T5119] RBP: ffffc90003b9fe98 R08: ffffffff8f856cef R09: 1ffffffff1f0ad9d
[ 3297.316785][ T5119] R10: dffffc0000000000 R11: fffffbfff1f0ad9e R12: ffffc90003b9fd60
[ 3297.324786][ T5119] R13: ffffc90003b9ffd8 R14: dffffc0000000000 R15: ffff88801c38bb80
[ 3297.332792][ T5119]  __rseq_handle_notify_resume+0x158/0x1490
[ 3297.338734][ T5119]  ? __pfx_hrtimer_wakeup+0x10/0x10
[ 3297.343997][ T5119]  ? __pfx___rseq_handle_notify_resume+0x10/0x10
[ 3297.350390][ T5119]  ? syscall_exit_to_user_mode+0xa2/0x360
[ 3297.356195][ T5119]  syscall_exit_to_user_mode+0x113/0x360
[ 3297.361861][ T5119]  __do_fast_syscall_32+0xcf/0x120
[ 3297.366997][ T5119]  ? exc_page_fault+0x587/0x870
[ 3297.371873][ T5119]  do_fast_syscall_32+0x33/0x70
[ 3297.376743][ T5119]  entry_SYSENTER_compat_after_hwframe+0x7c/0x86
[ 3297.383084][ T5119] RIP: 0023:0xf72e8579
[ 3297.387159][ T5119] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[ 3297.406812][ T5119] RSP: 002b:00000000f7589c80 EFLAGS: 00000206 ORIG_RAX: 000000000000010b
[ 3297.415251][ T5119] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000
[ 3297.423226][ T5119] RDX: 00000000f7589cb4 RSI: 00000000f7589cac RDI: 00000000f7589cb4
[ 3297.431205][ T5119] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 3297.439187][ T5119] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 3297.447169][ T5119] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 3297.455162][ T5119]  </TASK>
[ 3297.556444][ T5119] memory: usage 307200kB, limit 307200kB, failcnt 146889
[ 3297.563549][ T5119] memory+swap: usage 307908kB, limit 9007199254740988kB, failcnt 0
[ 3297.622993][ T5119] kmem: usage 307180kB, limit 9007199254740988kB, failcnt 0
[ 3297.668979][ T5119] Memory cgroup stats for /syz0:
[ 3297.669145][ T5119] cache 0
[ 3297.720684][ T5119] rss 4096
[ 3297.723825][ T5119] rss_huge 0
[ 3297.750650][ T5119] shmem 0
[ 3297.761213][ T5119] mapped_file 0
[ 3297.764746][ T5119] dirty 0
[ 3297.818681][ T5119] writeback 0
[ 3297.822079][ T5119] workingset_refault_anon 54291
[ 3297.835338][ T5119] workingset_refault_file 0
[ 3297.846544][ T5119] swap 720896
[ 3297.849960][ T5119] swapcached 0
[ 3297.853357][ T5119] pgpgin 248856
[ 3297.876416][ T5119] pgpgout 248855
[ 3297.880045][ T5119] pgfault 577645
[ 3297.883614][ T5119] pgmajfault 52970
[ 3297.906376][ T5119] inactive_anon 0
[ 3297.910080][ T5119] active_anon 4096
[ 3297.913842][ T5119] inactive_file 0
[ 3297.946373][ T5119] active_file 0
[ 3297.949911][ T5119] unevictable 0
[ 3297.953448][ T5119] hierarchical_memory_limit 314572800
[ 3297.998031][ T5119] hierarchical_memsw_limit 9223372036854771712
[ 3298.004264][ T5119] total_cache 0
[ 3298.017997][ T5119] total_rss 4096
[ 3298.021635][ T5119] total_rss_huge 0
[ 3298.025441][ T5119] total_shmem 0
[ 3298.056669][ T5119] total_mapped_file 0
[ 3298.060742][ T5119] total_dirty 0
[ 3298.064232][ T5119] total_writeback 0
[ 3298.093349][ T5119] total_workingset_refault_anon 54291
[ 3298.106789][ T5119] total_workingset_refault_file 0
[ 3298.111891][ T5119] total_swap 720896
[ 3298.115734][ T5119] total_swapcached 0
[ 3298.157052][ T5119] total_pgpgin 248856
[ 3298.161114][ T5119] total_pgpgout 248855
[ 3298.165206][ T5119] total_pgfault 577645
[ 3298.186614][ T5119] total_pgmajfault 52970
[ 3298.190937][ T5119] total_inactive_anon 0
[ 3298.195133][ T5119] total_active_anon 4096
[ 3298.217993][ T5119] total_inactive_file 0
[ 3298.222213][ T5119] total_active_file 0
[ 3298.226227][ T5119] total_unevictable 0
[ 3298.245848][ T5119] anon_cost 0
[ 3298.256686][ T5119] file_cost 0
[ 3298.260048][ T5119] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=25623,uid=0
[ 3298.295053][ T5119] Memory cgroup out of memory: Killed process 25623 (syz-executor.0) total-vm:54344kB, anon-rss:308kB, file-rss:8704kB, shmem-rss:0kB, UID:0 pgtables:64kB oom_score_adj:1000
06:22:55 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x87c, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x84c, 0x2, [@TCA_BASIC_POLICE={0x848, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}]}]}}]}, 0x87c}}, 0x0)

[ 3298.358919][T25622] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3298.383387][T25622] CPU: 1 PID: 25622 Comm: syz-executor.2 Not tainted 6.8.0-rc7-syzkaller-00250-g137e0ec05aeb #0
[ 3298.393887][T25622] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3298.404021][T25622] Call Trace:
[ 3298.407365][T25622]  <TASK>
[ 3298.410340][T25622]  dump_stack_lvl+0x1e7/0x2e0
[ 3298.415078][T25622]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3298.420346][T25622]  ? __pfx__printk+0x10/0x10
[ 3298.424986][T25622]  ? ___ratelimit+0x4c4/0x670
[ 3298.429720][T25622]  ? __pfx____ratelimit+0x10/0x10
[ 3298.434897][T25622]  dump_header+0xda/0x6a0
[ 3298.439285][T25622]  oom_kill_process+0x3a7/0x930
[ 3298.444200][T25622]  out_of_memory+0xf67/0x1320
[ 3298.448938][T25622]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3298.454625][T25622]  ? __pfx___mutex_lock+0x10/0x10
[ 3298.459706][T25622]  ? __pfx_out_of_memory+0x10/0x10
[ 3298.464889][T25622]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3298.470488][T25622]  ? __pfx_lock_release+0x10/0x10
[ 3298.475569][T25622]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3298.481698][T25622]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3298.486951][T25622]  ? mem_cgroup_iter+0x3e9/0x560
[ 3298.491947][T25622]  try_charge_memcg+0xda2/0x18a0
[ 3298.497101][T25622]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3298.502529][T25622]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3298.508304][T25622]  ? __pfx_lock_release+0x10/0x10
[ 3298.513397][T25622]  ? memcg_account_kmem+0x1e7/0x210
[ 3298.518664][T25622]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3298.524526][T25622]  __memcg_kmem_charge_page+0xe1/0x250
[ 3298.530046][T25622]  memcg_charge_kernel_stack+0x210/0x550
[ 3298.535741][T25622]  dup_task_struct+0x15d/0x7d0
[ 3298.540563][T25622]  copy_process+0x5d5/0x3fc0
[ 3298.545225][T25622]  ? __might_fault+0xa9/0x120
[ 3298.549967][T25622]  ? __pfx_lock_release+0x10/0x10
[ 3298.555059][T25622]  ? __pfx_copy_process+0x10/0x10
[ 3298.560146][T25622]  ? __might_fault+0xc5/0x120
[ 3298.564891][T25622]  ? __asan_memset+0x23/0x50
[ 3298.569546][T25622]  kernel_clone+0x21d/0x8d0
[ 3298.574114][T25622]  ? __pfx_kernel_clone+0x10/0x10
[ 3298.579206][T25622]  ? __pfx___might_resched+0x10/0x10
[ 3298.584556][T25622]  __se_sys_clone3+0x2cb/0x350
[ 3298.589381][T25622]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3298.594860][T25622]  ? int80_emulation+0xea/0x210
[ 3298.599824][T25622]  int80_emulation+0x129/0x210
[ 3298.604670][T25622]  asm_int80_emulation+0x1a/0x20
[ 3298.609780][T25622] RIP: 0023:0xf7376060
[ 3298.613894][T25622] Code: 4c 24 04 85 c9 0f 84 df 0d fe ff 8b 54 24 0c 85 d2 0f 84 d3 0d fe ff 53 56 8b 74 24 18 89 cb 8b 4c 24 10 b8 b3 01 00 00 cd 80 <85> c0 74 09 5e 5b 0f 8c b4 0d fe ff c3 31 ed 83 e4 f0 83 ec 0c 56
[ 3298.633637][T25622] RSP: 002b:00000000f758d8e4 EFLAGS: 00000282 ORIG_RAX: 00000000000001b3
[ 3298.642109][T25622] RAX: ffffffffffffffda RBX: 00000000f758d950 RCX: 0000000000000058
[ 3298.650167][T25622] RDX: 00000000f7326eb0 RSI: 00000000f5ee6b40 RDI: 00000000ffffffd8
[ 3298.658187][T25622] RBP: 000000000000000b R08: 0000000000000000 R09: 0000000000000000
[ 3298.666208][T25622] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 3298.674331][T25622] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 3298.682417][T25622]  </TASK>
[ 3298.702968][T25622] memory: usage 307180kB, limit 307200kB, failcnt 119767
[ 3298.710355][T25622] memory+swap: usage 307648kB, limit 9007199254740988kB, failcnt 0
[ 3298.718855][T25622] kmem: usage 307168kB, limit 9007199254740988kB, failcnt 0
[ 3298.726268][T25622] Memory cgroup stats for /syz2:
[ 3298.726842][T25622] cache 0
[ 3298.734764][T25622] rss 0
[ 3298.738371][T25622] rss_huge 0
[ 3298.741782][T25622] shmem 0
[ 3298.744751][T25622] mapped_file 0
[ 3298.749088][T25622] dirty 0
[ 3298.752066][T25622] writeback 0
[ 3298.755374][T25622] workingset_refault_anon 42942
[ 3298.767129][T25622] workingset_refault_file 0
[ 3298.783116][T25622] swap 479232
[ 3298.806649][T25622] swapcached 12288
[ 3298.810646][T25622] pgpgin 247359
[ 3298.814231][T25622] pgpgout 247356
[ 3298.830255][T25622] pgfault 588697
[ 3298.834041][T25622] pgmajfault 42461
[ 3298.854082][T25622] inactive_anon 0
[ 3298.858374][T25622] active_anon 12288
[ 3298.862577][T25622] inactive_file 0
[ 3298.866226][T25622] active_file 0
[ 3298.879506][T25622] unevictable 0
[ 3298.883021][T25622] hierarchical_memory_limit 314572800
[ 3298.907481][T25622] hierarchical_memsw_limit 9223372036854771712
[ 3298.913918][T25622] total_cache 0
[ 3298.926826][T25622] total_rss 0
[ 3298.930171][T25622] total_rss_huge 0
[ 3298.933920][T25622] total_shmem 0
[ 3298.946733][T25622] total_mapped_file 0
[ 3298.950784][T25622] total_dirty 0
[ 3298.954283][T25622] total_writeback 0
[ 3298.976480][T25622] total_workingset_refault_anon 42942
[ 3298.982036][T25622] total_workingset_refault_file 0
[ 3298.991038][T25622] total_swap 479232
[ 3299.006761][T25622] total_swapcached 12288
[ 3299.011079][T25622] total_pgpgin 247359
[ 3299.015291][T25622] total_pgpgout 247356
[ 3299.031153][T25622] total_pgfault 588697
[ 3299.035287][T25622] total_pgmajfault 42461
[ 3299.046005][T25622] total_inactive_anon 0
[ 3299.062061][T25622] total_active_anon 12288
[ 3299.066733][T25622] total_inactive_file 0
[ 3299.070942][T25622] total_active_file 0
[ 3299.074960][T25622] total_unevictable 0
06:22:55 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x888, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x858, 0x2, [@TCA_BASIC_POLICE={0x854, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x19000000]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}, @TCA_POLICE_PEAKRATE64={0xc}]}]}}]}, 0x888}}, 0x0)

[ 3299.087895][T25622] anon_cost 0
[ 3299.091278][T25622] file_cost 0
[ 3299.100785][T25622] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=25622,uid=0
[ 3299.117291][T25622] Memory cgroup out of memory: Killed process 25622 (syz-executor.2) total-vm:54344kB, anon-rss:436kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:64kB oom_score_adj:1000
06:22:55 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x888, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x858, 0x2, [@TCA_BASIC_POLICE={0x854, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x500]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}, @TCA_POLICE_PEAKRATE64={0xc}]}]}}]}, 0x888}}, 0x0)

[ 3299.439834][T25625] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3299.480550][T25625] CPU: 0 PID: 25625 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00250-g137e0ec05aeb #0
[ 3299.491058][T25625] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3299.501164][T25625] Call Trace:
[ 3299.504485][T25625]  <TASK>
[ 3299.507458][T25625]  dump_stack_lvl+0x1e7/0x2e0
[ 3299.512219][T25625]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3299.517482][T25625]  ? __pfx__printk+0x10/0x10
[ 3299.522159][T25625]  ? ___ratelimit+0x4c4/0x670
[ 3299.526910][T25625]  ? __pfx____ratelimit+0x10/0x10
[ 3299.532012][T25625]  dump_header+0xda/0x6a0
[ 3299.536413][T25625]  oom_kill_process+0x3a7/0x930
[ 3299.541337][T25625]  out_of_memory+0xf67/0x1320
[ 3299.546091][T25625]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3299.551785][T25625]  ? __pfx___mutex_lock+0x10/0x10
[ 3299.556868][T25625]  ? __pfx_out_of_memory+0x10/0x10
[ 3299.562052][T25625]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3299.567666][T25625]  ? __pfx_lock_release+0x10/0x10
[ 3299.572758][T25625]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3299.578892][T25625]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3299.584150][T25625]  ? mem_cgroup_iter+0x3e9/0x560
[ 3299.589152][T25625]  try_charge_memcg+0xda2/0x18a0
[ 3299.594177][T25625]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3299.599609][T25625]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3299.605386][T25625]  ? __pfx_lock_release+0x10/0x10
[ 3299.610478][T25625]  ? memcg_account_kmem+0x1e7/0x210
[ 3299.615744][T25625]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3299.621611][T25625]  __memcg_kmem_charge_page+0xe1/0x250
[ 3299.627143][T25625]  memcg_charge_kernel_stack+0x37e/0x550
[ 3299.632859][T25625]  dup_task_struct+0x40d/0x7d0
[ 3299.637684][T25625]  copy_process+0x5d5/0x3fc0
[ 3299.642354][T25625]  ? __might_fault+0xa9/0x120
[ 3299.647097][T25625]  ? __pfx_lock_release+0x10/0x10
[ 3299.652192][T25625]  ? __pfx_copy_process+0x10/0x10
[ 3299.657276][T25625]  ? __might_fault+0xc5/0x120
[ 3299.662008][T25625]  ? __asan_memset+0x23/0x50
[ 3299.666665][T25625]  kernel_clone+0x21d/0x8d0
[ 3299.671247][T25625]  ? __pfx_kernel_clone+0x10/0x10
[ 3299.676333][T25625]  ? __pfx___might_resched+0x10/0x10
[ 3299.681688][T25625]  __se_sys_clone3+0x2cb/0x350
[ 3299.686514][T25625]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3299.691899][T25625]  ? int80_emulation+0xea/0x210
[ 3299.696821][T25625]  int80_emulation+0x129/0x210
[ 3299.701662][T25625]  asm_int80_emulation+0x1a/0x20
[ 3299.706653][T25625] RIP: 0023:0xf7372060
[ 3299.710771][T25625] Code: 4c 24 04 85 c9 0f 84 df 0d fe ff 8b 54 24 0c 85 d2 0f 84 d3 0d fe ff 53 56 8b 74 24 18 89 cb 8b 4c 24 10 b8 b3 01 00 00 cd 80 <85> c0 74 09 5e 5b 0f 8c b4 0d fe ff c3 31 ed 83 e4 f0 83 ec 0c 56
[ 3299.730425][T25625] RSP: 002b:00000000f75898e4 EFLAGS: 00000282 ORIG_RAX: 00000000000001b3
[ 3299.738897][T25625] RAX: ffffffffffffffda RBX: 00000000f7589950 RCX: 0000000000000058
[ 3299.746901][T25625] RDX: 00000000f7322eb0 RSI: 00000000f5ee2b40 RDI: 00000000ffffffd8
[ 3299.754915][T25625] RBP: 000000000000000b R08: 0000000000000000 R09: 0000000000000000
[ 3299.762935][T25625] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 3299.770953][T25625] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 3299.778988][T25625]  </TASK>
[ 3299.808280][T25625] memory: usage 307200kB, limit 307200kB, failcnt 147125
[ 3299.815364][T25625] memory+swap: usage 307908kB, limit 9007199254740988kB, failcnt 0
[ 3299.823986][T25625] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[ 3299.831818][T25625] Memory cgroup stats for /syz0:
[ 3299.831975][T25625] cache 0
[ 3299.840533][T25625] rss 24576
[ 3299.843690][T25625] rss_huge 0
[ 3299.847533][T25625] shmem 0
[ 3299.850505][T25625] mapped_file 0
[ 3299.853983][T25625] dirty 0
[ 3299.857844][T25625] writeback 0
[ 3299.861222][T25625] workingset_refault_anon 54360
[ 3299.866105][T25625] workingset_refault_file 0
[ 3299.871452][T25625] swap 724992
[ 3299.874873][T25625] swapcached 20480
[ 3299.879278][T25625] pgpgin 248933
[ 3299.882843][T25625] pgpgout 248927
[ 3299.887855][T25625] pgfault 577765
[ 3299.891443][T25625] pgmajfault 53031
[ 3299.895195][T25625] inactive_anon 0
[ 3299.904332][T25625] active_anon 24576
[ 3299.908731][T25625] inactive_file 0
[ 3299.912419][T25625] active_file 0
[ 3299.915896][T25625] unevictable 0
[ 3299.920226][T25625] hierarchical_memory_limit 314572800
[ 3299.930689][T25625] hierarchical_memsw_limit 9223372036854771712
[ 3299.937409][T25625] total_cache 0
[ 3299.940913][T25625] total_rss 24576
[ 3299.944579][T25625] total_rss_huge 0
[ 3299.953745][T25625] total_shmem 0
[ 3299.962633][T25625] total_mapped_file 0
[ 3299.988592][T25625] total_dirty 0
[ 3299.992124][T25625] total_writeback 0
[ 3299.995965][T25625] total_workingset_refault_anon 54360
[ 3300.018822][T25625] total_workingset_refault_file 0
[ 3300.023922][T25625] total_swap 724992
[ 3300.028205][T25625] total_swapcached 20480
[ 3300.032493][T25625] total_pgpgin 248933
[ 3300.046689][T25625] total_pgpgout 248927
[ 3300.050837][T25625] total_pgfault 577765
[ 3300.054936][T25625] total_pgmajfault 53031
[ 3300.064772][T25625] total_inactive_anon 0
[ 3300.069089][T25625] total_active_anon 24576
[ 3300.073458][T25625] total_inactive_file 0
[ 3300.099324][T25625] total_active_file 0
[ 3300.103379][T25625] total_unevictable 0
[ 3300.113557][T25625] anon_cost 0
[ 3300.117054][T25625] file_cost 0
[ 3300.120375][T25625] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=25625,uid=0
[ 3300.157295][T25625] Memory cgroup out of memory: Killed process 25625 (syz-executor.0) total-vm:54344kB, anon-rss:308kB, file-rss:8704kB, shmem-rss:0kB, UID:0 pgtables:64kB oom_score_adj:1000
06:22:56 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x87c, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x84c, 0x2, [@TCA_BASIC_POLICE={0x848, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x11]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}]}]}}]}, 0x87c}}, 0x0)

[ 3300.210896][ T5123] syz-executor.2 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[ 3300.239537][ T5123] CPU: 0 PID: 5123 Comm: syz-executor.2 Not tainted 6.8.0-rc7-syzkaller-00250-g137e0ec05aeb #0
[ 3300.249950][ T5123] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3300.260079][ T5123] Call Trace:
[ 3300.263398][ T5123]  <TASK>
[ 3300.266393][ T5123]  dump_stack_lvl+0x1e7/0x2e0
[ 3300.271134][ T5123]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3300.276397][ T5123]  ? __pfx__printk+0x10/0x10
[ 3300.281068][ T5123]  ? ___ratelimit+0x4c4/0x670
[ 3300.285816][ T5123]  ? __pfx____ratelimit+0x10/0x10
[ 3300.290908][ T5123]  dump_header+0xda/0x6a0
[ 3300.295333][ T5123]  oom_kill_process+0x3a7/0x930
[ 3300.300255][ T5123]  out_of_memory+0xf67/0x1320
[ 3300.305001][ T5123]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3300.310690][ T5123]  ? __pfx___mutex_lock+0x10/0x10
[ 3300.315862][ T5123]  ? __pfx_out_of_memory+0x10/0x10
[ 3300.321048][ T5123]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3300.326657][ T5123]  ? __pfx_lock_release+0x10/0x10
[ 3300.331750][ T5123]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3300.337885][ T5123]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3300.343154][ T5123]  ? mem_cgroup_iter+0x3e9/0x560
[ 3300.348284][ T5123]  try_charge_memcg+0xda2/0x18a0
[ 3300.353280][ T5123]  ? mark_lock+0x9a/0x350
[ 3300.357695][ T5123]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3300.363168][ T5123]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 3300.369389][ T5123]  charge_memcg+0xa2/0x160
[ 3300.373882][ T5123]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 3300.380010][ T5123]  __read_swap_cache_async+0x480/0x8b0
[ 3300.385533][ T5123]  ? mark_lock+0x9a/0x350
[ 3300.389941][ T5123]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 3300.396001][ T5123]  swap_cluster_readahead+0x67c/0x810
[ 3300.401491][ T5123]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 3300.407459][ T5123]  ? __pfx_lock_release+0x10/0x10
[ 3300.412569][ T5123]  ? xas_descend+0x37e/0x470
[ 3300.417245][ T5123]  swapin_readahead+0x1ea/0x1070
[ 3300.422248][ T5123]  ? filemap_get_entry+0x127/0x4e0
[ 3300.427439][ T5123]  ? __pfx_swapin_readahead+0x10/0x10
[ 3300.433877][ T5123]  ? __filemap_get_folio+0x935/0xbc0
[ 3300.439233][ T5123]  ? swap_cache_get_folio+0x9f/0x570
[ 3300.444596][ T5123]  do_swap_page+0x791/0x3f40
[ 3300.449253][ T5123]  ? rcu_is_watching+0x15/0xb0
[ 3300.454104][ T5123]  ? do_swap_page+0x154/0x3f40
[ 3300.458935][ T5123]  ? __pfx_do_swap_page+0x10/0x10
[ 3300.464023][ T5123]  ? pte_offset_map_nolock+0x137/0x1f0
[ 3300.469546][ T5123]  ? mark_lock+0x9a/0x350
[ 3300.473934][ T5123]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 3300.479809][ T5123]  ? __pfx_validate_chain+0x10/0x10
[ 3300.485083][ T5123]  __handle_mm_fault+0x15e8/0x72d0
[ 3300.490298][ T5123]  ? __pfx___handle_mm_fault+0x10/0x10
[ 3300.495831][ T5123]  ? mt_find+0x226/0x850
[ 3300.500225][ T5123]  ? __pfx_lock_release+0x10/0x10
[ 3300.505340][ T5123]  ? mt_find+0x62d/0x850
[ 3300.509653][ T5123]  ? mt_find+0x226/0x850
[ 3300.513990][ T5123]  ? find_vma+0x142/0x1c0
[ 3300.518379][ T5123]  ? __pfx_find_vma+0x10/0x10
[ 3300.523118][ T5123]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3300.529167][ T5123]  handle_mm_fault+0x3c1/0x8a0
[ 3300.534003][ T5123]  exc_page_fault+0x2ad/0x870
[ 3300.538760][ T5123]  asm_exc_page_fault+0x26/0x30
[ 3300.543658][ T5123] RIP: 0010:__get_user_8+0x11/0x20
[ 3300.548912][ T5123] Code: ca c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 89 c2 48 c1 fa 3f 48 09 d0 0f 01 cb <48> 8b 10 31 c0 0f 01 ca c3 cc cc cc cc 66 90 90 90 90 90 90 90 90
[ 3300.568654][ T5123] RSP: 0000:ffffc90003b4fd58 EFLAGS: 00050202
[ 3300.574865][ T5123] RAX: 00000000575e08a8 RBX: ffff88805c9632f8 RCX: ffffc90003b4fc03
[ 3300.582974][ T5123] RDX: 0000000000000000 RSI: ffffffff8baac7e0 RDI: ffffffff8bfe6da0
[ 3300.591085][ T5123] RBP: ffffc90003b4fe98 R08: ffffffff8f856cef R09: 1ffffffff1f0ad9d
[ 3300.599156][ T5123] R10: dffffc0000000000 R11: fffffbfff1f0ad9e R12: ffffc90003b4fd60
[ 3300.607177][ T5123] R13: ffffc90003b4ffd8 R14: dffffc0000000000 R15: ffff88805c961dc0
[ 3300.615220][ T5123]  __rseq_handle_notify_resume+0x158/0x1490
[ 3300.621184][ T5123]  ? __pfx_hrtimer_wakeup+0x10/0x10
[ 3300.626455][ T5123]  ? __pfx___rseq_handle_notify_resume+0x10/0x10
[ 3300.632865][ T5123]  ? syscall_exit_to_user_mode+0xa2/0x360
[ 3300.638658][ T5123]  syscall_exit_to_user_mode+0x113/0x360
[ 3300.644364][ T5123]  __do_fast_syscall_32+0xcf/0x120
[ 3300.649544][ T5123]  ? exc_page_fault+0x587/0x870
[ 3300.654551][ T5123]  do_fast_syscall_32+0x33/0x70
[ 3300.659476][ T5123]  entry_SYSENTER_compat_after_hwframe+0x7c/0x86
[ 3300.665872][ T5123] RIP: 0023:0xf72ec579
[ 3300.669991][ T5123] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[ 3300.689651][ T5123] RSP: 002b:00000000f758dc80 EFLAGS: 00000206 ORIG_RAX: 000000000000010b
[ 3300.698129][ T5123] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000
[ 3300.706148][ T5123] RDX: 00000000f758dcb4 RSI: 00000000f758dcac RDI: 00000000f758dcb4
[ 3300.714168][ T5123] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 3300.722188][ T5123] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 3300.730204][ T5123] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 3300.738246][ T5123]  </TASK>
[ 3300.779359][ T5123] memory: usage 307200kB, limit 307200kB, failcnt 120217
[ 3300.789202][ T5123] memory+swap: usage 307668kB, limit 9007199254740988kB, failcnt 0
[ 3300.801879][ T5123] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0
[ 3300.815355][ T5123] Memory cgroup stats for /syz2:
[ 3300.815518][ T5123] cache 0
[ 3300.828396][ T5123] rss 0
[ 3300.831330][ T5123] rss_huge 0
[ 3300.834681][ T5123] shmem 0
[ 3300.840940][ T5123] mapped_file 0
[ 3300.844555][ T5123] dirty 0
[ 3300.850948][ T5123] writeback 0
[ 3300.854393][ T5123] workingset_refault_anon 43089
[ 3300.862484][ T5123] workingset_refault_file 0
[ 3300.870814][ T5123] swap 479232
[ 3300.874275][ T5123] swapcached 12288
[ 3300.881041][ T5123] pgpgin 247516
[ 3300.884697][ T5123] pgpgout 247513
[ 3300.904956][ T5123] pgfault 588928
[ 3300.914230][ T5123] pgmajfault 42599
[ 3300.934702][ T5123] inactive_anon 12288
[ 3300.949918][ T5123] active_anon 0
[ 3300.953454][ T5123] inactive_file 0
[ 3300.967996][ T5123] active_file 0
[ 3300.971524][ T5123] unevictable 0
[ 3300.978767][ T5123] hierarchical_memory_limit 314572800
[ 3300.984201][ T5123] hierarchical_memsw_limit 9223372036854771712
[ 3301.007889][ T5123] total_cache 0
[ 3301.011424][ T5123] total_rss 0
[ 3301.014742][ T5123] total_rss_huge 0
[ 3301.029948][ T5123] total_shmem 0
[ 3301.033472][ T5123] total_mapped_file 0
[ 3301.047242][ T5123] total_dirty 0
[ 3301.050761][ T5123] total_writeback 0
[ 3301.054604][ T5123] total_workingset_refault_anon 43089
[ 3301.078260][ T5123] total_workingset_refault_file 0
[ 3301.083366][ T5123] total_swap 479232
[ 3301.098141][ T5123] total_swapcached 12288
[ 3301.102454][ T5123] total_pgpgin 247516
[ 3301.112941][ T5123] total_pgpgout 247513
[ 3301.128546][ T5123] total_pgfault 588928
[ 3301.132689][ T5123] total_pgmajfault 42599
[ 3301.137667][ T5123] total_inactive_anon 12288
[ 3301.142217][ T5123] total_active_anon 0
[ 3301.146225][ T5123] total_inactive_file 0
[ 3301.166399][ T5123] total_active_file 0
[ 3301.170455][ T5123] total_unevictable 0
[ 3301.174468][ T5123] anon_cost 0
[ 3301.189746][ T5123] file_cost 0
[ 3301.193102][ T5123] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=25628,uid=0
[ 3301.227085][ T5123] Memory cgroup out of memory: Killed process 25628 (syz-executor.2) total-vm:54344kB, anon-rss:316kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:64kB oom_score_adj:1000
[ 3301.317497][T25629] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3301.329899][T25629] CPU: 1 PID: 25629 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00250-g137e0ec05aeb #0
[ 3301.340372][T25629] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3301.350474][T25629] Call Trace:
[ 3301.353788][T25629]  <TASK>
[ 3301.356753][T25629]  dump_stack_lvl+0x1e7/0x2e0
[ 3301.361629][T25629]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3301.366908][T25629]  ? __pfx__printk+0x10/0x10
[ 3301.371557][T25629]  ? ___ratelimit+0x4c4/0x670
[ 3301.376299][T25629]  ? __pfx____ratelimit+0x10/0x10
[ 3301.381387][T25629]  dump_header+0xda/0x6a0
[ 3301.385783][T25629]  oom_kill_process+0x3a7/0x930
[ 3301.390755][T25629]  out_of_memory+0xf67/0x1320
[ 3301.395489][T25629]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3301.401172][T25629]  ? __pfx___mutex_lock+0x10/0x10
[ 3301.406251][T25629]  ? __pfx_out_of_memory+0x10/0x10
[ 3301.411440][T25629]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3301.417050][T25629]  ? __pfx_lock_release+0x10/0x10
[ 3301.422137][T25629]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3301.428265][T25629]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3301.433524][T25629]  ? mem_cgroup_iter+0x3e9/0x560
[ 3301.438526][T25629]  try_charge_memcg+0xda2/0x18a0
[ 3301.443546][T25629]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3301.448980][T25629]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3301.454856][T25629]  ? __pfx_lock_release+0x10/0x10
[ 3301.460094][T25629]  ? memcg_account_kmem+0x1e7/0x210
[ 3301.465361][T25629]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3301.471310][T25629]  __memcg_kmem_charge_page+0xe1/0x250
[ 3301.476825][T25629]  memcg_charge_kernel_stack+0x210/0x550
[ 3301.482519][T25629]  dup_task_struct+0x40d/0x7d0
[ 3301.487335][T25629]  copy_process+0x5d5/0x3fc0
[ 3301.491988][T25629]  ? __might_fault+0xa9/0x120
[ 3301.496719][T25629]  ? __pfx_lock_release+0x10/0x10
[ 3301.501812][T25629]  ? __pfx_copy_process+0x10/0x10
[ 3301.506889][T25629]  ? __might_fault+0xc5/0x120
[ 3301.511609][T25629]  ? __asan_memset+0x23/0x50
[ 3301.516253][T25629]  kernel_clone+0x21d/0x8d0
[ 3301.520810][T25629]  ? __pfx_kernel_clone+0x10/0x10
[ 3301.525899][T25629]  ? __pfx___might_resched+0x10/0x10
[ 3301.531235][T25629]  __se_sys_clone3+0x2cb/0x350
[ 3301.536055][T25629]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3301.541430][T25629]  ? int80_emulation+0xea/0x210
[ 3301.546340][T25629]  int80_emulation+0x129/0x210
[ 3301.551181][T25629]  asm_int80_emulation+0x1a/0x20
[ 3301.556256][T25629] RIP: 0023:0xf7372060
[ 3301.560367][T25629] Code: 4c 24 04 85 c9 0f 84 df 0d fe ff 8b 54 24 0c 85 d2 0f 84 d3 0d fe ff 53 56 8b 74 24 18 89 cb 8b 4c 24 10 b8 b3 01 00 00 cd 80 <85> c0 74 09 5e 5b 0f 8c b4 0d fe ff c3 31 ed 83 e4 f0 83 ec 0c 56
[ 3301.580021][T25629] RSP: 002b:00000000f75898e4 EFLAGS: 00000282 ORIG_RAX: 00000000000001b3
[ 3301.588494][T25629] RAX: ffffffffffffffda RBX: 00000000f7589950 RCX: 0000000000000058
[ 3301.596520][T25629] RDX: 00000000f7322eb0 RSI: 00000000f5ee2b40 RDI: 00000000ffffffd8
[ 3301.604538][T25629] RBP: 000000000000000b R08: 0000000000000000 R09: 0000000000000000
[ 3301.612565][T25629] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 3301.620585][T25629] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 3301.628618][T25629]  </TASK>
[ 3301.640977][T25629] memory: usage 307200kB, limit 307200kB, failcnt 147652
[ 3301.648283][T25629] memory+swap: usage 307924kB, limit 9007199254740988kB, failcnt 0
[ 3301.656903][T25629] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0
[ 3301.664361][T25629] Memory cgroup stats for /syz0:
[ 3301.664524][T25629] cache 0
[ 3301.673336][T25629] rss 12288
[ 3301.677217][T25629] rss_huge 0
[ 3301.680602][T25629] shmem 0
[ 3301.683643][T25629] mapped_file 0
[ 3301.693912][T25629] dirty 0
[ 3301.697417][T25629] writeback 0
[ 3301.700852][T25629] workingset_refault_anon 54560
[ 3301.726711][T25629] workingset_refault_file 0
[ 3301.731290][T25629] swap 741376
[ 3301.734617][T25629] swapcached 12288
[ 3301.757276][T25629] pgpgin 249142
[ 3301.760824][T25629] pgpgout 249139
[ 3301.764395][T25629] pgfault 578064
[ 3301.778116][T25629] pgmajfault 53221
[ 3301.787514][T25629] inactive_anon 0
[ 3301.791205][T25629] active_anon 12288
[ 3301.795059][T25629] inactive_file 0
[ 3301.811937][T25629] active_file 0
[ 3301.815484][T25629] unevictable 0
[ 3301.837113][T25629] hierarchical_memory_limit 314572800
[ 3301.842558][T25629] hierarchical_memsw_limit 9223372036854771712
[ 3301.856964][T25629] total_cache 0
[ 3301.872189][T25629] total_rss 12288
[ 3301.875890][T25629] total_rss_huge 0
[ 3301.889558][T25629] total_shmem 0
[ 3301.893093][T25629] total_mapped_file 0
[ 3301.906811][T25629] total_dirty 0
[ 3301.910341][T25629] total_writeback 0
[ 3301.914173][T25629] total_workingset_refault_anon 54560
[ 3301.937588][T25629] total_workingset_refault_file 0
[ 3301.942688][T25629] total_swap 741376
[ 3301.967530][T25629] total_swapcached 12288
[ 3301.971850][T25629] total_pgpgin 249142
[ 3301.975871][T25629] total_pgpgout 249139
[ 3301.989964][T25629] total_pgfault 578064
[ 3301.994106][T25629] total_pgmajfault 53221
[ 3302.016578][T25629] total_inactive_anon 0
[ 3302.021710][T25629] total_active_anon 12288
[ 3302.038013][T25629] total_inactive_file 0
[ 3302.042498][T25629] total_active_file 0
[ 3302.053159][T25629] total_unevictable 0
[ 3302.070734][T25629] anon_cost 0
[ 3302.074091][T25629] file_cost 0
06:22:58 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x888, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x858, 0x2, [@TCA_BASIC_POLICE={0x854, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x600]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}, @TCA_POLICE_PEAKRATE64={0xc}]}]}}]}, 0x888}}, 0x0)

[ 3302.087241][T25629] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=25629,uid=0
[ 3302.120882][T25629] Memory cgroup out of memory: Killed process 25629 (syz-executor.0) total-vm:54344kB, anon-rss:308kB, file-rss:8704kB, shmem-rss:0kB, UID:0 pgtables:64kB oom_score_adj:1000
06:22:58 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x888, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x858, 0x2, [@TCA_BASIC_POLICE={0x854, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x19020000]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}, @TCA_POLICE_PEAKRATE64={0xc}]}]}}]}, 0x888}}, 0x0)

06:22:58 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x87c, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x84c, 0x2, [@TCA_BASIC_POLICE={0x848, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x14]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}]}]}}]}, 0x87c}}, 0x0)

[ 3302.525577][T25633] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3302.540477][T25633] CPU: 0 PID: 25633 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00250-g137e0ec05aeb #0
[ 3302.551080][T25633] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3302.561315][T25633] Call Trace:
[ 3302.564651][T25633]  <TASK>
[ 3302.567626][T25633]  dump_stack_lvl+0x1e7/0x2e0
[ 3302.572371][T25633]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3302.577641][T25633]  ? __pfx__printk+0x10/0x10
[ 3302.582291][T25633]  ? ___ratelimit+0x4c4/0x670
[ 3302.587038][T25633]  ? __pfx____ratelimit+0x10/0x10
[ 3302.592131][T25633]  dump_header+0xda/0x6a0
[ 3302.596528][T25633]  oom_kill_process+0x3a7/0x930
[ 3302.601453][T25633]  out_of_memory+0xf67/0x1320
[ 3302.606200][T25633]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3302.611906][T25633]  ? __pfx___mutex_lock+0x10/0x10
[ 3302.617030][T25633]  ? __pfx_out_of_memory+0x10/0x10
[ 3302.622219][T25633]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3302.627823][T25633]  ? __pfx_lock_release+0x10/0x10
[ 3302.632935][T25633]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3302.639071][T25633]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3302.644332][T25633]  ? mem_cgroup_iter+0x3e9/0x560
[ 3302.649341][T25633]  try_charge_memcg+0xda2/0x18a0
[ 3302.654370][T25633]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3302.659818][T25633]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3302.665595][T25633]  ? __pfx_lock_release+0x10/0x10
[ 3302.670766][T25633]  ? memcg_account_kmem+0x1e7/0x210
[ 3302.676032][T25633]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3302.681895][T25633]  __memcg_kmem_charge_page+0xe1/0x250
[ 3302.687424][T25633]  memcg_charge_kernel_stack+0x210/0x550
[ 3302.693120][T25633]  dup_task_struct+0x15d/0x7d0
[ 3302.697955][T25633]  copy_process+0x5d5/0x3fc0
[ 3302.702618][T25633]  ? __might_fault+0xa9/0x120
[ 3302.707356][T25633]  ? __pfx_lock_release+0x10/0x10
[ 3302.712457][T25633]  ? __pfx_copy_process+0x10/0x10
[ 3302.717537][T25633]  ? __might_fault+0xc5/0x120
[ 3302.722291][T25633]  ? __asan_memset+0x23/0x50
[ 3302.726948][T25633]  kernel_clone+0x21d/0x8d0
[ 3302.731516][T25633]  ? __pfx_kernel_clone+0x10/0x10
[ 3302.736704][T25633]  __se_sys_clone3+0x2cb/0x350
[ 3302.741541][T25633]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3302.746903][T25633]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3302.752974][T25633]  ? exc_page_fault+0x587/0x870
[ 3302.757906][T25633]  ? int80_emulation+0xea/0x210
[ 3302.762830][T25633]  int80_emulation+0x129/0x210
[ 3302.767670][T25633]  asm_int80_emulation+0x1a/0x20
[ 3302.772676][T25633] RIP: 0023:0xf7372060
[ 3302.776790][T25633] Code: 4c 24 04 85 c9 0f 84 df 0d fe ff 8b 54 24 0c 85 d2 0f 84 d3 0d fe ff 53 56 8b 74 24 18 89 cb 8b 4c 24 10 b8 b3 01 00 00 cd 80 <85> c0 74 09 5e 5b 0f 8c b4 0d fe ff c3 31 ed 83 e4 f0 83 ec 0c 56
[ 3302.796463][T25633] RSP: 002b:00000000f75898e4 EFLAGS: 00000282 ORIG_RAX: 00000000000001b3
[ 3302.804930][T25633] RAX: ffffffffffffffda RBX: 00000000f7589950 RCX: 0000000000000058
[ 3302.812951][T25633] RDX: 00000000f7322eb0 RSI: 00000000f5ee2b40 RDI: 00000000ffffffd8
[ 3302.821054][T25633] RBP: 000000000000000b R08: 0000000000000000 R09: 0000000000000000
[ 3302.829080][T25633] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 3302.837101][T25633] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 3302.845142][T25633]  </TASK>
[ 3302.880411][T25633] memory: usage 307200kB, limit 307200kB, failcnt 147899
[ 3302.892576][T25633] memory+swap: usage 307924kB, limit 9007199254740988kB, failcnt 0
[ 3302.901290][T25633] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0
[ 3302.913083][T25633] Memory cgroup stats for /syz0:
[ 3302.913224][T25633] cache 0
[ 3302.921922][T25633] rss 12288
[ 3302.925266][T25633] rss_huge 0
[ 3302.933815][T25633] shmem 0
[ 3302.937422][T25633] mapped_file 0
[ 3302.941087][T25633] dirty 0
[ 3302.944205][T25633] writeback 0
[ 3302.952615][T25633] workingset_refault_anon 54627
[ 3302.958102][T25633] workingset_refault_file 0
[ 3302.962902][T25633] swap 741376
[ 3302.992060][T25633] swapcached 8192
[ 3303.008047][T25633] pgpgin 249219
[ 3303.016983][T25633] pgpgout 249216
[ 3303.021931][T25633] pgfault 578178
[ 3303.026671][T25633] pgmajfault 53282
[ 3303.032736][T25633] inactive_anon 8192
[ 3303.039272][T25633] active_anon 4096
[ 3303.043158][T25633] inactive_file 0
[ 3303.047219][T25633] active_file 0
[ 3303.050792][T25633] unevictable 0
[ 3303.054285][T25633] hierarchical_memory_limit 314572800
[ 3303.060100][T25633] hierarchical_memsw_limit 9223372036854771712
[ 3303.066676][T25633] total_cache 0
[ 3303.070190][T25633] total_rss 12288
[ 3303.073931][T25633] total_rss_huge 0
[ 3303.078058][T25633] total_shmem 0
[ 3303.081560][T25633] total_mapped_file 0
[ 3303.085569][T25633] total_dirty 0
[ 3303.089527][T25633] total_writeback 0
[ 3303.093365][T25633] total_workingset_refault_anon 54627
[ 3303.099405][T25633] total_workingset_refault_file 0
[ 3303.104510][T25633] total_swap 741376
[ 3303.108705][T25633] total_swapcached 8192
[ 3303.113086][T25633] total_pgpgin 249219
[ 3303.125280][T25633] total_pgpgout 249216
[ 3303.130922][T25633] total_pgfault 578178
[ 3303.135197][T25633] total_pgmajfault 53282
[ 3303.139852][T25633] total_inactive_anon 8192
[ 3303.144470][T25633] total_active_anon 4096
[ 3303.149696][T25633] total_inactive_file 0
[ 3303.154052][T25633] total_active_file 0
[ 3303.158720][T25633] total_unevictable 0
[ 3303.162959][T25633] anon_cost 0
[ 3303.167064][T25633] file_cost 0
[ 3303.170530][T25633] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=25633,uid=0
[ 3303.188007][T25633] Memory cgroup out of memory: Killed process 25633 (syz-executor.0) total-vm:54344kB, anon-rss:316kB, file-rss:8704kB, shmem-rss:0kB, UID:0 pgtables:64kB oom_score_adj:1000
[ 3303.206174][ T5123] syz-executor.2 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[ 3303.248181][ T5123] CPU: 0 PID: 5123 Comm: syz-executor.2 Not tainted 6.8.0-rc7-syzkaller-00250-g137e0ec05aeb #0
[ 3303.258581][ T5123] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3303.268673][ T5123] Call Trace:
[ 3303.271975][ T5123]  <TASK>
[ 3303.274935][ T5123]  dump_stack_lvl+0x1e7/0x2e0
[ 3303.279658][ T5123]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3303.284904][ T5123]  ? __pfx__printk+0x10/0x10
[ 3303.289516][ T5123]  ? ___ratelimit+0x4c4/0x670
[ 3303.294213][ T5123]  ? __pfx____ratelimit+0x10/0x10
[ 3303.299311][ T5123]  dump_header+0xda/0x6a0
[ 3303.303699][ T5123]  oom_kill_process+0x3a7/0x930
[ 3303.308595][ T5123]  out_of_memory+0xf67/0x1320
[ 3303.313291][ T5123]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3303.318964][ T5123]  ? __pfx___mutex_lock+0x10/0x10
[ 3303.324052][ T5123]  ? __pfx_out_of_memory+0x10/0x10
[ 3303.329205][ T5123]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3303.334793][ T5123]  ? __pfx_lock_release+0x10/0x10
[ 3303.339852][ T5123]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3303.345967][ T5123]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3303.351201][ T5123]  ? mem_cgroup_iter+0x3e9/0x560
[ 3303.356243][ T5123]  try_charge_memcg+0xda2/0x18a0
[ 3303.361224][ T5123]  ? mark_lock+0x9a/0x350
[ 3303.365587][ T5123]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3303.370994][ T5123]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 3303.377163][ T5123]  charge_memcg+0xa2/0x160
[ 3303.381616][ T5123]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 3303.387701][ T5123]  __read_swap_cache_async+0x480/0x8b0
[ 3303.393180][ T5123]  ? mark_lock+0x9a/0x350
[ 3303.397558][ T5123]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 3303.403760][ T5123]  swap_cluster_readahead+0x67c/0x810
[ 3303.409162][ T5123]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 3303.415106][ T5123]  ? __pfx_lock_release+0x10/0x10
[ 3303.420150][ T5123]  ? xas_descend+0x37e/0x470
[ 3303.424764][ T5123]  swapin_readahead+0x1ea/0x1070
[ 3303.429774][ T5123]  ? filemap_get_entry+0x127/0x4e0
[ 3303.434932][ T5123]  ? __pfx_swapin_readahead+0x10/0x10
[ 3303.440348][ T5123]  ? __filemap_get_folio+0x935/0xbc0
[ 3303.445661][ T5123]  ? swap_cache_get_folio+0x9f/0x570
[ 3303.450992][ T5123]  do_swap_page+0x791/0x3f40
[ 3303.455619][ T5123]  ? rcu_is_watching+0x15/0xb0
[ 3303.460518][ T5123]  ? do_swap_page+0x154/0x3f40
[ 3303.465314][ T5123]  ? __pfx_do_swap_page+0x10/0x10
[ 3303.470369][ T5123]  ? pte_offset_map_nolock+0x137/0x1f0
[ 3303.475842][ T5123]  ? mark_lock+0x9a/0x350
[ 3303.480187][ T5123]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 3303.486010][ T5123]  ? __pfx_validate_chain+0x10/0x10
[ 3303.491227][ T5123]  __handle_mm_fault+0x15e8/0x72d0
[ 3303.496403][ T5123]  ? __pfx___handle_mm_fault+0x10/0x10
[ 3303.501908][ T5123]  ? mt_find+0x226/0x850
[ 3303.506195][ T5123]  ? __pfx_lock_release+0x10/0x10
[ 3303.511258][ T5123]  ? mt_find+0x62d/0x850
[ 3303.515537][ T5123]  ? mt_find+0x226/0x850
[ 3303.519821][ T5123]  ? find_vma+0x142/0x1c0
[ 3303.524173][ T5123]  ? __pfx_find_vma+0x10/0x10
[ 3303.528860][ T5123]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3303.534864][ T5123]  handle_mm_fault+0x3c1/0x8a0
[ 3303.539654][ T5123]  exc_page_fault+0x2ad/0x870
[ 3303.544359][ T5123]  asm_exc_page_fault+0x26/0x30
[ 3303.549235][ T5123] RIP: 0010:__get_user_8+0x11/0x20
[ 3303.554382][ T5123] Code: ca c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 89 c2 48 c1 fa 3f 48 09 d0 0f 01 cb <48> 8b 10 31 c0 0f 01 ca c3 cc cc cc cc 66 90 90 90 90 90 90 90 90
[ 3303.574091][ T5123] RSP: 0000:ffffc90003b4fd58 EFLAGS: 00050202
[ 3303.580175][ T5123] RAX: 00000000575e08a8 RBX: ffff88805c9632f8 RCX: ffffc90003b4fc03
[ 3303.588153][ T5123] RDX: 0000000000000000 RSI: ffffffff8baac7e0 RDI: ffffffff8bfe6da0
[ 3303.596131][ T5123] RBP: ffffc90003b4fe98 R08: ffffffff8f856cef R09: 1ffffffff1f0ad9d
[ 3303.604120][ T5123] R10: dffffc0000000000 R11: fffffbfff1f0ad9e R12: ffffc90003b4fd60
[ 3303.612108][ T5123] R13: ffffc90003b4ffd8 R14: dffffc0000000000 R15: ffff88805c961dc0
[ 3303.620109][ T5123]  __rseq_handle_notify_resume+0x158/0x1490
[ 3303.626027][ T5123]  ? __pfx_hrtimer_wakeup+0x10/0x10
[ 3303.631251][ T5123]  ? __pfx___rseq_handle_notify_resume+0x10/0x10
[ 3303.637619][ T5123]  ? syscall_exit_to_user_mode+0xa2/0x360
[ 3303.643377][ T5123]  syscall_exit_to_user_mode+0x113/0x360
[ 3303.649059][ T5123]  __do_fast_syscall_32+0xcf/0x120
[ 3303.654214][ T5123]  ? exc_page_fault+0x587/0x870
[ 3303.659097][ T5123]  do_fast_syscall_32+0x33/0x70
[ 3303.664001][ T5123]  entry_SYSENTER_compat_after_hwframe+0x7c/0x86
[ 3303.670350][ T5123] RIP: 0023:0xf72ec579
[ 3303.674439][ T5123] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[ 3303.694144][ T5123] RSP: 002b:00000000f758dc80 EFLAGS: 00000206 ORIG_RAX: 000000000000010b
[ 3303.702603][ T5123] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000
[ 3303.710588][ T5123] RDX: 00000000f758dcb4 RSI: 00000000f758dcac RDI: 00000000f758dcb4
[ 3303.718600][ T5123] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 3303.726603][ T5123] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 3303.734580][ T5123] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 3303.742573][ T5123]  </TASK>
[ 3303.747950][ T5123] memory: usage 307200kB, limit 307200kB, failcnt 120706
[ 3303.755040][ T5123] memory+swap: usage 307668kB, limit 9007199254740988kB, failcnt 0
[ 3303.766380][ T5123] kmem: usage 307168kB, limit 9007199254740988kB, failcnt 0
[ 3303.773744][ T5123] Memory cgroup stats for /syz2:
[ 3303.773900][ T5123] cache 0
[ 3303.795156][ T5123] rss 0
[ 3303.799362][ T5123] rss_huge 0
[ 3303.802652][ T5123] shmem 0
[ 3303.805627][ T5123] mapped_file 0
[ 3303.809945][ T5123] dirty 0
[ 3303.812940][ T5123] writeback 0
[ 3303.816248][ T5123] workingset_refault_anon 43255
[ 3303.821794][ T5123] workingset_refault_file 0
[ 3303.826946][ T5123] swap 507904
[ 3303.830270][ T5123] swapcached 12288
[ 3303.834031][ T5123] pgpgin 247690
[ 3303.838190][ T5123] pgpgout 247687
[ 3303.841772][ T5123] pgfault 589193
[ 3303.845337][ T5123] pgmajfault 42753
[ 3303.853825][ T5123] inactive_anon 0
[ 3303.858742][ T5123] active_anon 12288
[ 3303.862593][ T5123] inactive_file 0
[ 3303.871206][ T5123] active_file 0
[ 3303.874734][ T5123] unevictable 0
[ 3303.883584][ T5123] hierarchical_memory_limit 314572800
[ 3303.889909][ T5123] hierarchical_memsw_limit 9223372036854771712
[ 3303.896113][ T5123] total_cache 0
[ 3303.900232][ T5123] total_rss 0
[ 3303.903562][ T5123] total_rss_huge 0
[ 3303.907900][ T5123] total_shmem 0
[ 3303.911396][ T5123] total_mapped_file 0
[ 3303.915397][ T5123] total_dirty 0
[ 3303.919603][ T5123] total_writeback 0
[ 3303.923447][ T5123] total_workingset_refault_anon 43255
[ 3303.929620][ T5123] total_workingset_refault_file 0
[ 3303.934703][ T5123] total_swap 507904
[ 3303.939214][ T5123] total_swapcached 12288
[ 3303.943592][ T5123] total_pgpgin 247690
[ 3303.948149][ T5123] total_pgpgout 247687
[ 3303.952285][ T5123] total_pgfault 589193
[ 3303.957133][ T5123] total_pgmajfault 42753
[ 3303.961454][ T5123] total_inactive_anon 0
[ 3303.965640][ T5123] total_active_anon 12288
[ 3303.971512][ T5123] total_inactive_file 0
[ 3303.975712][ T5123] total_active_file 0
[ 3303.980364][ T5123] total_unevictable 0
[ 3303.984390][ T5123] anon_cost 0
[ 3303.988392][ T5123] file_cost 0
[ 3303.991719][ T5123] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=25631,uid=0
[ 3304.007968][ T5123] Memory cgroup out of memory: Killed process 25631 (syz-executor.2) total-vm:54344kB, anon-rss:316kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:64kB oom_score_adj:1000
[ 3304.057292][T25632] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3304.067732][T25632] CPU: 1 PID: 25632 Comm: syz-executor.3 Not tainted 6.8.0-rc7-syzkaller-00250-g137e0ec05aeb #0
[ 3304.078193][T25632] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3304.088288][T25632] Call Trace:
[ 3304.091594][T25632]  <TASK>
[ 3304.094556][T25632]  dump_stack_lvl+0x1e7/0x2e0
[ 3304.099297][T25632]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3304.104549][T25632]  ? __pfx__printk+0x10/0x10
[ 3304.109189][T25632]  ? ___ratelimit+0x4c4/0x670
[ 3304.113917][T25632]  ? __pfx____ratelimit+0x10/0x10
[ 3304.118999][T25632]  dump_header+0xda/0x6a0
[ 3304.123388][T25632]  oom_kill_process+0x3a7/0x930
[ 3304.128292][T25632]  out_of_memory+0xf67/0x1320
[ 3304.133022][T25632]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3304.138709][T25632]  ? __pfx___mutex_lock+0x10/0x10
[ 3304.143782][T25632]  ? __pfx_out_of_memory+0x10/0x10
[ 3304.148943][T25632]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3304.154534][T25632]  ? __pfx_lock_release+0x10/0x10
[ 3304.159579][T25632]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3304.165766][T25632]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3304.170976][T25632]  ? mem_cgroup_iter+0x422/0x560
[ 3304.175927][T25632]  try_charge_memcg+0xda2/0x18a0
[ 3304.181766][T25632]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3304.187150][T25632]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3304.192882][T25632]  ? __pfx_lock_release+0x10/0x10
[ 3304.197925][T25632]  ? memcg_account_kmem+0x1e7/0x210
[ 3304.203202][T25632]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3304.209022][T25632]  __memcg_kmem_charge_page+0xe1/0x250
[ 3304.214500][T25632]  memcg_charge_kernel_stack+0x11c/0x550
[ 3304.220154][T25632]  dup_task_struct+0x40d/0x7d0
[ 3304.224964][T25632]  copy_process+0x5d5/0x3fc0
[ 3304.229596][T25632]  ? __might_fault+0xa9/0x120
[ 3304.234294][T25632]  ? __pfx_lock_release+0x10/0x10
[ 3304.239347][T25632]  ? __pfx_copy_process+0x10/0x10
[ 3304.244392][T25632]  ? __might_fault+0xc5/0x120
[ 3304.249102][T25632]  ? __asan_memset+0x23/0x50
[ 3304.253725][T25632]  kernel_clone+0x21d/0x8d0
[ 3304.258256][T25632]  ? __pfx_kernel_clone+0x10/0x10
[ 3304.263577][T25632]  __se_sys_clone3+0x2cb/0x350
[ 3304.268369][T25632]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3304.273692][T25632]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3304.279713][T25632]  ? exc_page_fault+0x587/0x870
[ 3304.284588][T25632]  ? int80_emulation+0xea/0x210
[ 3304.289466][T25632]  int80_emulation+0x129/0x210
[ 3304.294268][T25632]  asm_int80_emulation+0x1a/0x20
[ 3304.299224][T25632] RIP: 0023:0xf73d8060
[ 3304.303310][T25632] Code: 4c 24 04 85 c9 0f 84 df 0d fe ff 8b 54 24 0c 85 d2 0f 84 d3 0d fe ff 53 56 8b 74 24 18 89 cb 8b 4c 24 10 b8 b3 01 00 00 cd 80 <85> c0 74 09 5e 5b 0f 8c b4 0d fe ff c3 31 ed 83 e4 f0 83 ec 0c 56
[ 3304.323311][T25632] RSP: 002b:00000000f75ef8e4 EFLAGS: 00000282 ORIG_RAX: 00000000000001b3
[ 3304.331767][T25632] RAX: ffffffffffffffda RBX: 00000000f75ef950 RCX: 0000000000000058
[ 3304.339754][T25632] RDX: 00000000f7388eb0 RSI: 00000000f5f27b40 RDI: 00000000ffffffd8
[ 3304.347749][T25632] RBP: 000000000000006e R08: 0000000000000000 R09: 0000000000000000
[ 3304.355723][T25632] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 3304.363786][T25632] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 3304.371955][T25632]  </TASK>
[ 3304.390272][T25632] memory: usage 307200kB, limit 307200kB, failcnt 189344
[ 3304.414765][T25632] memory+swap: usage 307784kB, limit 9007199254740988kB, failcnt 0
[ 3304.423343][T25632] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0
[ 3304.434718][T25632] Memory cgroup stats for /syz3:
[ 3304.434860][T25632] cache 0
[ 3304.443701][T25632] rss 12288
[ 3304.451501][T25632] rss_huge 0
[ 3304.454747][T25632] shmem 0
[ 3304.458511][T25632] mapped_file 0
[ 3304.462019][T25632] dirty 0
[ 3304.464983][T25632] writeback 0
[ 3304.473360][T25632] workingset_refault_anon 79080
[ 3304.478743][T25632] workingset_refault_file 0
[ 3304.483354][T25632] swap 659456
[ 3304.491103][T25632] swapcached 12288
[ 3304.494871][T25632] pgpgin 282059
[ 3304.499273][T25632] pgpgout 282056
[ 3304.503368][T25632] pgfault 651638
[ 3304.512923][T25632] pgmajfault 77806
[ 3304.517216][T25632] inactive_anon 0
[ 3304.520877][T25632] active_anon 0
[ 3304.524357][T25632] inactive_file 0
[ 3304.532959][T25632] active_file 0
[ 3304.536979][T25632] unevictable 0
[ 3304.540533][T25632] hierarchical_memory_limit 314572800
[ 3304.546211][T25632] hierarchical_memsw_limit 9223372036854771712
[ 3304.556792][T25632] total_cache 0
[ 3304.560306][T25632] total_rss 12288
[ 3304.563958][T25632] total_rss_huge 0
[ 3304.571768][T25632] total_shmem 0
[ 3304.575267][T25632] total_mapped_file 0
[ 3304.580886][T25632] total_dirty 0
[ 3304.584376][T25632] total_writeback 0
[ 3304.592105][T25632] total_workingset_refault_anon 79080
[ 3304.599209][T25632] total_workingset_refault_file 0
[ 3304.604271][T25632] total_swap 659456
[ 3304.612285][T25632] total_swapcached 12288
[ 3304.619206][T25632] total_pgpgin 282059
[ 3304.623231][T25632] total_pgpgout 282056
[ 3304.631165][T25632] total_pgfault 651638
[ 3304.635281][T25632] total_pgmajfault 77806
[ 3304.640154][T25632] total_inactive_anon 0
[ 3304.644344][T25632] total_active_anon 0
[ 3304.653323][T25632] total_inactive_file 0
06:23:01 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x87c, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x84c, 0x2, [@TCA_BASIC_POLICE={0x848, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x15]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}]}]}}]}, 0x87c}}, 0x0)

06:23:01 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x888, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x858, 0x2, [@TCA_BASIC_POLICE={0x854, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x700]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}, @TCA_POLICE_PEAKRATE64={0xc}]}]}}]}, 0x888}}, 0x0)

[ 3304.662622][T25632] total_active_file 0
[ 3304.670553][T25632] total_unevictable 0
[ 3304.674577][T25632] anon_cost 0
[ 3304.678623][T25632] file_cost 0
[ 3304.681948][T25632] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=25632,uid=0
[ 3304.698201][T25632] Memory cgroup out of memory: Killed process 25632 (syz-executor.3) total-vm:54476kB, anon-rss:316kB, file-rss:8960kB, shmem-rss:0kB, UID:0 pgtables:64kB oom_score_adj:1000
06:23:01 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x888, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x858, 0x2, [@TCA_BASIC_POLICE={0x854, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x21000000]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}, @TCA_POLICE_PEAKRATE64={0xc}]}]}}]}, 0x888}}, 0x0)

[ 3304.885407][T25637] syz-executor.2 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[ 3304.904390][T25637] CPU: 1 PID: 25637 Comm: syz-executor.2 Not tainted 6.8.0-rc7-syzkaller-00250-g137e0ec05aeb #0
[ 3304.914876][T25637] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3304.924974][T25637] Call Trace:
[ 3304.928309][T25637]  <TASK>
[ 3304.931283][T25637]  dump_stack_lvl+0x1e7/0x2e0
[ 3304.936010][T25637]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3304.941281][T25637]  ? __pfx__printk+0x10/0x10
[ 3304.945905][T25637]  ? ___ratelimit+0x4c4/0x670
[ 3304.950614][T25637]  ? __pfx____ratelimit+0x10/0x10
[ 3304.955661][T25637]  dump_header+0xda/0x6a0
[ 3304.960014][T25637]  oom_kill_process+0x3a7/0x930
[ 3304.964911][T25637]  out_of_memory+0xf67/0x1320
[ 3304.969607][T25637]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3304.975271][T25637]  ? __pfx___mutex_lock+0x10/0x10
[ 3304.980334][T25637]  ? __pfx_out_of_memory+0x10/0x10
[ 3304.985483][T25637]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3304.991045][T25637]  ? __pfx_lock_release+0x10/0x10
[ 3304.996096][T25637]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3305.002189][T25637]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3305.007405][T25637]  ? mem_cgroup_iter+0x3e9/0x560
[ 3305.012359][T25637]  try_charge_memcg+0xda2/0x18a0
[ 3305.017311][T25637]  ? mark_lock+0x9a/0x350
[ 3305.021675][T25637]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3305.027093][T25637]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 3305.033257][T25637]  charge_memcg+0xa2/0x160
[ 3305.037698][T25637]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 3305.043868][T25637]  __read_swap_cache_async+0x480/0x8b0
[ 3305.049344][T25637]  ? mark_lock+0x9a/0x350
[ 3305.053693][T25637]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 3305.059698][T25637]  ? blk_start_plug+0x6f/0x1b0
[ 3305.064498][T25637]  swap_cluster_readahead+0x398/0x810
[ 3305.069905][T25637]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 3305.075820][T25637]  ? __pfx_lock_release+0x10/0x10
[ 3305.080863][T25637]  ? xas_descend+0x37e/0x470
[ 3305.085495][T25637]  swapin_readahead+0x1ea/0x1070
[ 3305.090449][T25637]  ? filemap_get_entry+0x127/0x4e0
[ 3305.095592][T25637]  ? __pfx_swapin_readahead+0x10/0x10
[ 3305.100993][T25637]  ? __filemap_get_folio+0x935/0xbc0
[ 3305.106305][T25637]  ? swap_cache_get_folio+0x9f/0x570
[ 3305.111621][T25637]  do_swap_page+0x791/0x3f40
[ 3305.116227][T25637]  ? rcu_is_watching+0x15/0xb0
[ 3305.121022][T25637]  ? do_swap_page+0x154/0x3f40
[ 3305.125811][T25637]  ? __pfx_do_swap_page+0x10/0x10
[ 3305.130850][T25637]  ? pte_offset_map_nolock+0x137/0x1f0
[ 3305.136349][T25637]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 3305.142179][T25637]  __handle_mm_fault+0x15e8/0x72d0
[ 3305.147355][T25637]  ? reacquire_held_locks+0x3eb/0x690
[ 3305.152757][T25637]  ? __pfx___handle_mm_fault+0x10/0x10
[ 3305.158256][T25637]  ? __pfx_reacquire_held_locks+0x10/0x10
[ 3305.164005][T25637]  ? mtree_range_walk+0x6fd/0x8e0
[ 3305.169049][T25637]  ? lock_vma_under_rcu+0x18a/0x730
[ 3305.174262][T25637]  ? __pfx_lock_release+0x10/0x10
[ 3305.179308][T25637]  ? lock_vma_under_rcu+0x2f9/0x730
[ 3305.184542][T25637]  ? lock_vma_under_rcu+0x18a/0x730
[ 3305.189758][T25637]  ? __pfx_lock_vma_under_rcu+0x10/0x10
[ 3305.195327][T25637]  handle_mm_fault+0x3c1/0x8a0
[ 3305.200125][T25637]  exc_page_fault+0x456/0x870
[ 3305.204841][T25637]  asm_exc_page_fault+0x26/0x30
[ 3305.209713][T25637] RIP: 0023:0xf7344745
[ 3305.213793][T25637] Code: 08 00 00 00 00 c7 40 0c 01 00 00 00 c7 40 10 00 00 00 00 c7 40 14 00 00 00 00 65 a1 08 00 00 00 89 44 24 08 8d 85 e4 36 b5 00 <8b> 10 85 d2 0f 85 11 03 00 00 8d 85 fc 36 b5 00 89 44 24 04 8b 38
[ 3305.233416][T25637] RSP: 002b:00000000f758dcb0 EFLAGS: 00010246
[ 3305.239517][T25637] RAX: 00000000f7f966d8 RBX: 00000000f7442ff4 RCX: 00000000f732f170
[ 3305.247541][T25637] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 3305.255536][T25637] RBP: 00000000f7442ff4 R08: 0000000000000000 R09: 0000000000000000
[ 3305.263531][T25637] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 3305.271523][T25637] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 3305.279557][T25637]  </TASK>
[ 3305.317228][T25637] memory: usage 307200kB, limit 307200kB, failcnt 148170
[ 3305.324475][T25637] memory+swap: usage 307920kB, limit 9007199254740988kB, failcnt 0
[ 3305.350523][T25637] kmem: usage 307180kB, limit 9007199254740988kB, failcnt 0
[ 3305.358191][T25637] Memory cgroup stats for /syz0:
[ 3305.358347][T25637] cache 0
[ 3305.373648][T25637] rss 0
[ 3305.378850][T25637] rss_huge 0
[ 3305.384293][T25637] shmem 0
[ 3305.393489][T25637] mapped_file 0
[ 3305.400832][T25637] dirty 0
[ 3305.406165][T25637] writeback 0
[ 3305.416175][T25637] workingset_refault_anon 54694
[ 3305.423694][T25637] workingset_refault_file 0
[ 3305.438621][T25637] swap 737280
[ 3305.448465][T25637] swapcached 0
[ 3305.458692][T25637] pgpgin 249294
[ 3305.468399][T25637] pgpgout 249294
[ 3305.477994][T25637] pgfault 578293
[ 3305.489141][T25637] pgmajfault 53340
[ 3305.496514][T25637] inactive_anon 0
[ 3305.504297][T25637] active_anon 0
[ 3305.511046][T25637] inactive_file 0
[ 3305.520655][T25637] active_file 0
[ 3305.525911][T25637] unevictable 0
[ 3305.532181][T25637] hierarchical_memory_limit 314572800
[ 3305.539571][T25637] hierarchical_memsw_limit 9223372036854771712
[ 3305.550814][T25637] total_cache 0
[ 3305.556195][T25637] total_rss 0
[ 3305.562833][T25637] total_rss_huge 0
[ 3305.572047][T25637] total_shmem 0
[ 3305.578138][T25637] total_mapped_file 0
[ 3305.584458][T25637] total_dirty 0
[ 3305.596512][T25637] total_writeback 0
[ 3305.600517][T25637] total_workingset_refault_anon 54694
[ 3305.617254][T25637] total_workingset_refault_file 0
[ 3305.627207][T25637] total_swap 737280
[ 3305.631208][T25637] total_swapcached 0
[ 3305.635253][T25637] total_pgpgin 249294
[ 3305.644401][T25637] total_pgpgout 249294
[ 3305.652619][T25637] total_pgfault 578293
[ 3305.660742][T25637] total_pgmajfault 53340
[ 3305.667885][T25637] total_inactive_anon 0
[ 3305.679386][T25637] total_active_anon 0
[ 3305.683544][T25637] total_inactive_file 0
[ 3305.691303][T25637] total_active_file 0
[ 3305.701773][T25637] total_unevictable 0
[ 3305.708782][T25637] anon_cost 0
[ 3305.714445][T25637] file_cost 0
06:23:02 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x87c, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x84c, 0x2, [@TCA_BASIC_POLICE={0x848, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x300]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}]}]}}]}, 0x87c}}, 0x0)

[ 3305.723423][T25637] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=25636,uid=0
[ 3305.751966][T25637] Memory cgroup out of memory: Killed process 25636 (syz-executor.0) total-vm:54344kB, anon-rss:308kB, file-rss:8704kB, shmem-rss:0kB, UID:0 pgtables:64kB oom_score_adj:1000
[ 3306.095288][T25640] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3306.130212][T25640] CPU: 1 PID: 25640 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00250-g137e0ec05aeb #0
[ 3306.140705][T25640] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3306.150820][T25640] Call Trace:
[ 3306.154139][T25640]  <TASK>
[ 3306.157106][T25640]  dump_stack_lvl+0x1e7/0x2e0
[ 3306.161844][T25640]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3306.167094][T25640]  ? __pfx__printk+0x10/0x10
[ 3306.171745][T25640]  ? ___ratelimit+0x4c4/0x670
[ 3306.176492][T25640]  ? __pfx____ratelimit+0x10/0x10
[ 3306.181575][T25640]  dump_header+0xda/0x6a0
[ 3306.185961][T25640]  oom_kill_process+0x3a7/0x930
[ 3306.190878][T25640]  out_of_memory+0xf67/0x1320
[ 3306.195615][T25640]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3306.201305][T25640]  ? __pfx___mutex_lock+0x10/0x10
[ 3306.206396][T25640]  ? __pfx_out_of_memory+0x10/0x10
[ 3306.211546][T25640]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3306.217126][T25640]  ? __pfx_lock_release+0x10/0x10
[ 3306.222171][T25640]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3306.228273][T25640]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3306.233513][T25640]  ? mem_cgroup_iter+0x3e9/0x560
[ 3306.238469][T25640]  try_charge_memcg+0xda2/0x18a0
[ 3306.243443][T25640]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3306.248829][T25640]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3306.254570][T25640]  ? __pfx_lock_release+0x10/0x10
[ 3306.259614][T25640]  ? memcg_account_kmem+0x1e7/0x210
[ 3306.264858][T25640]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3306.270677][T25640]  __memcg_kmem_charge_page+0xe1/0x250
[ 3306.276157][T25640]  memcg_charge_kernel_stack+0x304/0x550
[ 3306.281820][T25640]  dup_task_struct+0x15d/0x7d0
[ 3306.286599][T25640]  copy_process+0x5d5/0x3fc0
[ 3306.291217][T25640]  ? __might_fault+0xa9/0x120
[ 3306.295911][T25640]  ? __pfx_lock_release+0x10/0x10
[ 3306.300963][T25640]  ? __pfx_copy_process+0x10/0x10
[ 3306.306000][T25640]  ? __might_fault+0xc5/0x120
[ 3306.310698][T25640]  ? __asan_memset+0x23/0x50
[ 3306.315309][T25640]  kernel_clone+0x21d/0x8d0
[ 3306.319828][T25640]  ? __pfx_kernel_clone+0x10/0x10
[ 3306.325057][T25640]  __se_sys_clone3+0x2cb/0x350
[ 3306.329837][T25640]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3306.335146][T25640]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3306.341175][T25640]  ? exc_page_fault+0x587/0x870
[ 3306.346050][T25640]  ? int80_emulation+0xea/0x210
[ 3306.351013][T25640]  int80_emulation+0x129/0x210
[ 3306.355799][T25640]  asm_int80_emulation+0x1a/0x20
[ 3306.360751][T25640] RIP: 0023:0xf7372060
[ 3306.364852][T25640] Code: 4c 24 04 85 c9 0f 84 df 0d fe ff 8b 54 24 0c 85 d2 0f 84 d3 0d fe ff 53 56 8b 74 24 18 89 cb 8b 4c 24 10 b8 b3 01 00 00 cd 80 <85> c0 74 09 5e 5b 0f 8c b4 0d fe ff c3 31 ed 83 e4 f0 83 ec 0c 56
[ 3306.384534][T25640] RSP: 002b:00000000f75898e4 EFLAGS: 00000282 ORIG_RAX: 00000000000001b3
[ 3306.393017][T25640] RAX: ffffffffffffffda RBX: 00000000f7589950 RCX: 0000000000000058
[ 3306.401011][T25640] RDX: 00000000f7322eb0 RSI: 00000000f5ee2b40 RDI: 00000000ffffffd8
[ 3306.409023][T25640] RBP: 000000000000000b R08: 0000000000000000 R09: 0000000000000000
[ 3306.417010][T25640] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 3306.425003][T25640] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 3306.433010][T25640]  </TASK>
[ 3306.474115][T25640] memory: usage 307200kB, limit 307200kB, failcnt 148416
[ 3306.486722][T25640] memory+swap: usage 307928kB, limit 9007199254740988kB, failcnt 0
[ 3306.494695][T25640] kmem: usage 307196kB, limit 9007199254740988kB, failcnt 0
[ 3306.596438][T25640] Memory cgroup stats for /syz0:
[ 3306.596608][T25640] cache 0
[ 3306.604558][T25640] rss 4096
[ 3306.648707][T25640] rss_huge 0
[ 3306.651981][T25640] shmem 0
[ 3306.654951][T25640] mapped_file 0
[ 3306.690935][T25640] dirty 0
[ 3306.694179][T25640] writeback 0
[ 3306.706704][T25640] workingset_refault_anon 54774
[ 3306.711630][T25640] workingset_refault_file 0
[ 3306.716164][T25640] swap 745472
[ 3306.730687][T25640] swapcached 4096
[ 3306.734491][T25640] pgpgin 249382
[ 3306.755375][T25640] pgpgout 249381
[ 3306.771680][T25640] pgfault 578416
[ 3306.775299][T25640] pgmajfault 53403
[ 3306.795538][T25640] inactive_anon 0
[ 3306.799649][T25640] active_anon 4096
[ 3306.803532][T25640] inactive_file 0
[ 3306.809907][T25640] active_file 0
[ 3306.815528][T25640] unevictable 0
[ 3306.819426][T25640] hierarchical_memory_limit 314572800
[ 3306.825030][T25640] hierarchical_memsw_limit 9223372036854771712
[ 3306.835768][T25640] total_cache 0
[ 3306.839810][T25640] total_rss 4096
[ 3306.843747][T25640] total_rss_huge 0
[ 3306.852176][T25640] total_shmem 0
[ 3306.855873][T25640] total_mapped_file 0
[ 3306.860605][T25640] total_dirty 0
[ 3306.864214][T25640] total_writeback 0
[ 3306.872552][T25640] total_workingset_refault_anon 54774
[ 3306.878345][T25640] total_workingset_refault_file 0
[ 3306.883512][T25640] total_swap 745472
[ 3306.892802][T25640] total_swapcached 4096
[ 3306.898541][T25640] total_pgpgin 249382
[ 3306.902705][T25640] total_pgpgout 249381
[ 3306.912629][T25640] total_pgfault 578416
[ 3306.917475][T25640] total_pgmajfault 53403
[ 3306.921891][T25640] total_inactive_anon 0
[ 3306.926247][T25640] total_active_anon 4096
[ 3306.936634][T25640] total_inactive_file 0
[ 3306.941042][T25640] total_active_file 0
[ 3306.945152][T25640] total_unevictable 0
[ 3306.953617][T25640] anon_cost 0
[ 3306.961476][T25640] file_cost 0
[ 3306.964977][T25640] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=25640,uid=0
[ 3306.988221][T25640] Memory cgroup out of memory: Killed process 25640 (syz-executor.0) total-vm:54344kB, anon-rss:308kB, file-rss:8704kB, shmem-rss:0kB, UID:0 pgtables:64kB oom_score_adj:1000
[ 3307.011919][T25637] syz-executor.2 invoked oom-killer: gfp_mask=0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), order=0, oom_score_adj=1000
[ 3307.038418][T25637] CPU: 0 PID: 25637 Comm: syz-executor.2 Not tainted 6.8.0-rc7-syzkaller-00250-g137e0ec05aeb #0
[ 3307.048949][T25637] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3307.059058][T25637] Call Trace:
[ 3307.062371][T25637]  <TASK>
[ 3307.065341][T25637]  dump_stack_lvl+0x1e7/0x2e0
[ 3307.070070][T25637]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3307.075321][T25637]  ? __pfx__printk+0x10/0x10
[ 3307.079962][T25637]  ? ___ratelimit+0x4c4/0x670
[ 3307.084693][T25637]  ? __pfx____ratelimit+0x10/0x10
[ 3307.089735][T25637]  dump_header+0xda/0x6a0
[ 3307.094076][T25637]  oom_kill_process+0x3a7/0x930
[ 3307.098959][T25637]  out_of_memory+0xf67/0x1320
[ 3307.103679][T25637]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3307.109323][T25637]  ? __pfx___mutex_lock+0x10/0x10
[ 3307.114350][T25637]  ? __pfx_out_of_memory+0x10/0x10
[ 3307.119473][T25637]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3307.125023][T25637]  ? __pfx_lock_release+0x10/0x10
[ 3307.130055][T25637]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3307.136131][T25637]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3307.141347][T25637]  ? mem_cgroup_iter+0x3e9/0x560
[ 3307.146302][T25637]  try_charge_memcg+0xda2/0x18a0
[ 3307.151302][T25637]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3307.156685][T25637]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3307.162686][T25637]  ? __pfx_lock_release+0x10/0x10
[ 3307.167723][T25637]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3307.173716][T25637]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3307.179446][T25637]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3307.185255][T25637]  obj_cgroup_charge+0x389/0x630
[ 3307.190204][T25637]  ? obj_cgroup_charge+0x121/0x630
[ 3307.195355][T25637]  ? __pfx_obj_cgroup_charge+0x10/0x10
[ 3307.200829][T25637]  ? kmalloc_trace+0x4e/0x360
[ 3307.205516][T25637]  ? __pfx___might_resched+0x10/0x10
[ 3307.210839][T25637]  __memcg_slab_pre_alloc_hook+0x28d/0x2b0
[ 3307.216662][T25637]  ? copy_semundo+0xb5/0x240
[ 3307.221260][T25637]  kmalloc_trace+0x216/0x360
[ 3307.225853][T25637]  ? __asan_memcpy+0x40/0x70
[ 3307.230452][T25637]  copy_semundo+0xb5/0x240
[ 3307.234879][T25637]  copy_process+0x1bc3/0x3fc0
[ 3307.239585][T25637]  ? copy_process+0x9c3/0x3fc0
[ 3307.244356][T25637]  ? __pfx_copy_process+0x10/0x10
[ 3307.249387][T25637]  ? __might_fault+0xc5/0x120
[ 3307.254101][T25637]  ? __asan_memset+0x23/0x50
[ 3307.258703][T25637]  kernel_clone+0x21d/0x8d0
[ 3307.263214][T25637]  ? __pfx_kernel_clone+0x10/0x10
[ 3307.268250][T25637]  ? __pfx___might_resched+0x10/0x10
[ 3307.273545][T25637]  __se_sys_clone3+0x2cb/0x350
[ 3307.278315][T25637]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3307.283633][T25637]  ? int80_emulation+0xea/0x210
[ 3307.288518][T25637]  int80_emulation+0x129/0x210
[ 3307.293297][T25637]  asm_int80_emulation+0x1a/0x20
[ 3307.298255][T25637] RIP: 0023:0xf7376060
[ 3307.302328][T25637] Code: 4c 24 04 85 c9 0f 84 df 0d fe ff 8b 54 24 0c 85 d2 0f 84 d3 0d fe ff 53 56 8b 74 24 18 89 cb 8b 4c 24 10 b8 b3 01 00 00 cd 80 <85> c0 74 09 5e 5b 0f 8c b4 0d fe ff c3 31 ed 83 e4 f0 83 ec 0c 56
[ 3307.321940][T25637] RSP: 002b:00000000f758d8e4 EFLAGS: 00000282 ORIG_RAX: 00000000000001b3
[ 3307.330373][T25637] RAX: ffffffffffffffda RBX: 00000000f758d950 RCX: 0000000000000058
[ 3307.338346][T25637] RDX: 00000000f7326eb0 RSI: 00000000f5ee6b40 RDI: 00000000ffffffd8
[ 3307.346343][T25637] RBP: 000000000000000b R08: 0000000000000000 R09: 0000000000000000
[ 3307.354335][T25637] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 3307.362308][T25637] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 3307.370294][T25637]  </TASK>
[ 3307.383124][T25637] memory: usage 307200kB, limit 307200kB, failcnt 121092
[ 3307.390419][T25637] memory+swap: usage 307668kB, limit 9007199254740988kB, failcnt 0
[ 3307.399012][T25637] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0
[ 3307.406866][T25637] Memory cgroup stats for /syz2:
[ 3307.407027][T25637] cache 0
[ 3307.415130][T25637] rss 0
[ 3307.418691][T25637] rss_huge 0
[ 3307.422045][T25637] shmem 0
[ 3307.425111][T25637] mapped_file 0
[ 3307.429423][T25637] dirty 0
[ 3307.432513][T25637] writeback 0
[ 3307.435928][T25637] workingset_refault_anon 43369
[ 3307.441667][T25637] workingset_refault_file 0
[ 3307.446822][T25637] swap 479232
[ 3307.450260][T25637] swapcached 12288
[ 3307.454119][T25637] pgpgin 247812
[ 3307.458358][T25637] pgpgout 247809
[ 3307.462055][T25637] pgfault 589381
[ 3307.465717][T25637] pgmajfault 42851
[ 3307.470355][T25637] inactive_anon 0
[ 3307.474146][T25637] active_anon 12288
[ 3307.479337][T25637] inactive_file 0
[ 3307.483119][T25637] active_file 0
[ 3307.487316][T25637] unevictable 0
[ 3307.490975][T25637] hierarchical_memory_limit 314572800
[ 3307.512181][T25637] hierarchical_memsw_limit 9223372036854771712
[ 3307.524517][T25637] total_cache 0
[ 3307.530814][T25637] total_rss 0
[ 3307.534241][T25637] total_rss_huge 0
[ 3307.541401][T25637] total_shmem 0
[ 3307.545027][T25637] total_mapped_file 0
[ 3307.552789][T25637] total_dirty 0
[ 3307.558192][T25637] total_writeback 0
[ 3307.562130][T25637] total_workingset_refault_anon 43369
[ 3307.570397][T25637] total_workingset_refault_file 0
[ 3307.575589][T25637] total_swap 479232
[ 3307.587989][T25637] total_swapcached 12288
[ 3307.592415][T25637] total_pgpgin 247812
[ 3307.597101][T25637] total_pgpgout 247809
[ 3307.601305][T25637] total_pgfault 589381
[ 3307.605470][T25637] total_pgmajfault 42851
[ 3307.610673][T25637] total_inactive_anon 0
[ 3307.614981][T25637] total_active_anon 12288
[ 3307.620118][T25637] total_inactive_file 0
[ 3307.624431][T25637] total_active_file 0
[ 3307.629095][T25637] total_unevictable 0
[ 3307.633234][T25637] anon_cost 0
[ 3307.637244][T25637] file_cost 0
[ 3307.640689][T25637] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=25637,uid=0
06:23:04 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x87c, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x84c, 0x2, [@TCA_BASIC_POLICE={0x848, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x500]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}]}]}}]}, 0x87c}}, 0x0)

[ 3307.657168][T25637] Memory cgroup out of memory: Killed process 25637 (syz-executor.2) total-vm:54344kB, anon-rss:316kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:64kB oom_score_adj:1000
06:23:04 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x888, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x858, 0x2, [@TCA_BASIC_POLICE={0x854, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x854]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}, @TCA_POLICE_PEAKRATE64={0xc}]}]}}]}, 0x888}}, 0x0)

06:23:04 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x888, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x858, 0x2, [@TCA_BASIC_POLICE={0x854, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2d030000]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}, @TCA_POLICE_PEAKRATE64={0xc}]}]}}]}, 0x888}}, 0x0)

[ 3307.911907][T25641] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3307.951552][T25641] CPU: 1 PID: 25641 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00250-g137e0ec05aeb #0
[ 3307.962075][T25641] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3307.972166][T25641] Call Trace:
[ 3307.975478][T25641]  <TASK>
[ 3307.978440][T25641]  dump_stack_lvl+0x1e7/0x2e0
[ 3307.983158][T25641]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3307.988382][T25641]  ? __pfx__printk+0x10/0x10
[ 3307.992989][T25641]  ? ___ratelimit+0x4c4/0x670
[ 3307.997688][T25641]  ? __pfx____ratelimit+0x10/0x10
[ 3308.002732][T25641]  dump_header+0xda/0x6a0
[ 3308.007169][T25641]  oom_kill_process+0x3a7/0x930
[ 3308.012040][T25641]  out_of_memory+0xf67/0x1320
[ 3308.016743][T25641]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3308.022405][T25641]  ? __pfx___mutex_lock+0x10/0x10
[ 3308.027449][T25641]  ? __pfx_out_of_memory+0x10/0x10
[ 3308.032587][T25641]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3308.038150][T25641]  ? __pfx_lock_release+0x10/0x10
[ 3308.043195][T25641]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3308.049281][T25641]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3308.054493][T25641]  ? mem_cgroup_iter+0x3e9/0x560
[ 3308.059453][T25641]  try_charge_memcg+0xda2/0x18a0
[ 3308.064426][T25641]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3308.069816][T25641]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3308.075551][T25641]  ? __pfx_lock_release+0x10/0x10
[ 3308.080601][T25641]  ? memcg_account_kmem+0x1e7/0x210
[ 3308.085825][T25641]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3308.091648][T25641]  __memcg_kmem_charge_page+0xe1/0x250
[ 3308.097131][T25641]  memcg_charge_kernel_stack+0x37e/0x550
[ 3308.102780][T25641]  dup_task_struct+0x15d/0x7d0
[ 3308.107565][T25641]  copy_process+0x5d5/0x3fc0
[ 3308.112188][T25641]  ? __might_fault+0xa9/0x120
[ 3308.116885][T25641]  ? __pfx_lock_release+0x10/0x10
[ 3308.121946][T25641]  ? __pfx_copy_process+0x10/0x10
[ 3308.126984][T25641]  ? __might_fault+0xc5/0x120
[ 3308.131682][T25641]  ? __asan_memset+0x23/0x50
[ 3308.136300][T25641]  kernel_clone+0x21d/0x8d0
[ 3308.140858][T25641]  ? __pfx_kernel_clone+0x10/0x10
[ 3308.145906][T25641]  ? __pfx___might_resched+0x10/0x10
[ 3308.151237][T25641]  __se_sys_clone3+0x2cb/0x350
[ 3308.156061][T25641]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3308.161427][T25641]  ? int80_emulation+0xea/0x210
[ 3308.166320][T25641]  int80_emulation+0x129/0x210
[ 3308.171144][T25641]  asm_int80_emulation+0x1a/0x20
[ 3308.176127][T25641] RIP: 0023:0xf7372060
[ 3308.180211][T25641] Code: 4c 24 04 85 c9 0f 84 df 0d fe ff 8b 54 24 0c 85 d2 0f 84 d3 0d fe ff 53 56 8b 74 24 18 89 cb 8b 4c 24 10 b8 b3 01 00 00 cd 80 <85> c0 74 09 5e 5b 0f 8c b4 0d fe ff c3 31 ed 83 e4 f0 83 ec 0c 56
[ 3308.199836][T25641] RSP: 002b:00000000f75898e4 EFLAGS: 00000282 ORIG_RAX: 00000000000001b3
[ 3308.208266][T25641] RAX: ffffffffffffffda RBX: 00000000f7589950 RCX: 0000000000000058
[ 3308.216249][T25641] RDX: 00000000f7322eb0 RSI: 00000000f5ee2b40 RDI: 00000000ffffffd8
[ 3308.224241][T25641] RBP: 000000000000000b R08: 0000000000000000 R09: 0000000000000000
[ 3308.232224][T25641] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 3308.240206][T25641] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 3308.248227][T25641]  </TASK>
[ 3308.330891][T25641] memory: usage 307200kB, limit 307200kB, failcnt 148806
[ 3308.339169][T25641] memory+swap: usage 307908kB, limit 9007199254740988kB, failcnt 0
[ 3308.357336][T25641] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[ 3308.364697][T25641] Memory cgroup stats for /syz0:
[ 3308.364860][T25641] cache 0
[ 3308.392449][T25641] rss 0
[ 3308.395278][T25641] rss_huge 0
[ 3308.399091][T25641] shmem 0
[ 3308.403350][T25641] mapped_file 0
[ 3308.410943][T25641] dirty 0
[ 3308.417849][T25641] writeback 0
[ 3308.424760][T25641] workingset_refault_anon 54882
[ 3308.435826][T25641] workingset_refault_file 0
[ 3308.446501][T25641] swap 724992
[ 3308.449854][T25641] swapcached 0
[ 3308.453271][T25641] pgpgin 249498
[ 3308.469717][T25641] pgpgout 249498
[ 3308.478143][T25641] pgfault 578564
[ 3308.485630][T25641] pgmajfault 53487
[ 3308.494225][T25641] inactive_anon 0
[ 3308.503231][T25641] active_anon 0
[ 3308.511379][T25641] inactive_file 0
[ 3308.519517][T25641] active_file 0
[ 3308.527325][T25641] unevictable 0
[ 3308.534838][T25641] hierarchical_memory_limit 314572800
[ 3308.547733][T25641] hierarchical_memsw_limit 9223372036854771712
[ 3308.561457][T25641] total_cache 0
[ 3308.569883][T25641] total_rss 0
[ 3308.573233][T25641] total_rss_huge 0
[ 3308.586184][T25641] total_shmem 0
[ 3308.594265][T25641] total_mapped_file 0
[ 3308.613652][T25641] total_dirty 0
[ 3308.622870][T25641] total_writeback 0
[ 3308.631682][T25641] total_workingset_refault_anon 54882
[ 3308.647668][T25641] total_workingset_refault_file 0
[ 3308.652764][T25641] total_swap 724992
[ 3308.670803][T25641] total_swapcached 0
[ 3308.674778][T25641] total_pgpgin 249498
[ 3308.681991][T25641] total_pgpgout 249498
[ 3308.686116][T25641] total_pgfault 578564
[ 3308.701963][T25641] total_pgmajfault 53487
[ 3308.706791][T25641] total_inactive_anon 0
[ 3308.711074][T25641] total_active_anon 0
[ 3308.715080][T25641] total_inactive_file 0
[ 3308.725289][T25641] total_active_file 0
[ 3308.729736][T25641] total_unevictable 0
[ 3308.733753][T25641] anon_cost 0
[ 3308.742374][T25641] file_cost 0
[ 3308.745718][T25641] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=25641,uid=0
[ 3308.765725][T25641] Memory cgroup out of memory: Killed process 25641 (syz-executor.0) total-vm:54344kB, anon-rss:308kB, file-rss:8704kB, shmem-rss:0kB, UID:0 pgtables:64kB oom_score_adj:1000
06:23:05 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x87c, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x84c, 0x2, [@TCA_BASIC_POLICE={0x848, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x600]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}]}]}}]}, 0x87c}}, 0x0)

[ 3308.822767][T25642] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3308.858679][T25642] CPU: 0 PID: 25642 Comm: syz-executor.2 Not tainted 6.8.0-rc7-syzkaller-00250-g137e0ec05aeb #0
[ 3308.869174][T25642] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3308.879319][T25642] Call Trace:
[ 3308.882639][T25642]  <TASK>
[ 3308.885600][T25642]  dump_stack_lvl+0x1e7/0x2e0
[ 3308.890340][T25642]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3308.895608][T25642]  ? __pfx__printk+0x10/0x10
[ 3308.900257][T25642]  ? ___ratelimit+0x4c4/0x670
[ 3308.905005][T25642]  ? __pfx____ratelimit+0x10/0x10
[ 3308.910116][T25642]  dump_header+0xda/0x6a0
[ 3308.914511][T25642]  oom_kill_process+0x3a7/0x930
[ 3308.919428][T25642]  out_of_memory+0xf67/0x1320
[ 3308.924169][T25642]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3308.929864][T25642]  ? __pfx___mutex_lock+0x10/0x10
[ 3308.934949][T25642]  ? __pfx_out_of_memory+0x10/0x10
[ 3308.940133][T25642]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3308.945739][T25642]  ? __pfx_lock_release+0x10/0x10
[ 3308.950832][T25642]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3308.956966][T25642]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3308.962225][T25642]  ? mem_cgroup_iter+0x3e9/0x560
[ 3308.967230][T25642]  try_charge_memcg+0xda2/0x18a0
[ 3308.972254][T25642]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3308.977690][T25642]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3308.983658][T25642]  ? __pfx_lock_release+0x10/0x10
[ 3308.988748][T25642]  ? memcg_account_kmem+0x1e7/0x210
[ 3308.994036][T25642]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3308.999904][T25642]  __memcg_kmem_charge_page+0xe1/0x250
[ 3309.005436][T25642]  memcg_charge_kernel_stack+0x210/0x550
[ 3309.011136][T25642]  dup_task_struct+0x15d/0x7d0
[ 3309.015967][T25642]  copy_process+0x5d5/0x3fc0
[ 3309.020633][T25642]  ? __might_fault+0xa9/0x120
[ 3309.025371][T25642]  ? __pfx_lock_release+0x10/0x10
[ 3309.030472][T25642]  ? __pfx_copy_process+0x10/0x10
[ 3309.035549][T25642]  ? __might_fault+0xc5/0x120
[ 3309.040296][T25642]  ? __asan_memset+0x23/0x50
[ 3309.044957][T25642]  kernel_clone+0x21d/0x8d0
[ 3309.049528][T25642]  ? __pfx_kernel_clone+0x10/0x10
[ 3309.054624][T25642]  ? __pfx___might_resched+0x10/0x10
[ 3309.059975][T25642]  __se_sys_clone3+0x2cb/0x350
[ 3309.064816][T25642]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3309.070202][T25642]  ? int80_emulation+0xea/0x210
[ 3309.075128][T25642]  int80_emulation+0x129/0x210
[ 3309.079963][T25642]  asm_int80_emulation+0x1a/0x20
[ 3309.084948][T25642] RIP: 0023:0xf7376060
[ 3309.089058][T25642] Code: 4c 24 04 85 c9 0f 84 df 0d fe ff 8b 54 24 0c 85 d2 0f 84 d3 0d fe ff 53 56 8b 74 24 18 89 cb 8b 4c 24 10 b8 b3 01 00 00 cd 80 <85> c0 74 09 5e 5b 0f 8c b4 0d fe ff c3 31 ed 83 e4 f0 83 ec 0c 56
[ 3309.108710][T25642] RSP: 002b:00000000f758d8e4 EFLAGS: 00000282 ORIG_RAX: 00000000000001b3
[ 3309.117183][T25642] RAX: ffffffffffffffda RBX: 00000000f758d950 RCX: 0000000000000058
[ 3309.125221][T25642] RDX: 00000000f7326eb0 RSI: 00000000f5ee6b40 RDI: 00000000ffffffd8
[ 3309.133252][T25642] RBP: 000000000000000b R08: 0000000000000000 R09: 0000000000000000
[ 3309.141286][T25642] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 3309.149309][T25642] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 3309.157349][T25642]  </TASK>
[ 3309.174777][T25642] memory: usage 307200kB, limit 307200kB, failcnt 121526
[ 3309.182527][T25642] memory+swap: usage 307668kB, limit 9007199254740988kB, failcnt 0
[ 3309.191245][T25642] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0
[ 3309.199074][T25642] Memory cgroup stats for /syz2:
[ 3309.199233][T25642] cache 0
[ 3309.207766][T25642] rss 0
[ 3309.210576][T25642] rss_huge 0
[ 3309.213811][T25642] shmem 0
[ 3309.217626][T25642] mapped_file 0
[ 3309.221137][T25642] dirty 0
[ 3309.224107][T25642] writeback 0
[ 3309.228153][T25642] workingset_refault_anon 43514
[ 3309.233041][T25642] workingset_refault_file 0
[ 3309.238175][T25642] swap 479232
[ 3309.241501][T25642] swapcached 12288
[ 3309.245256][T25642] pgpgin 247965
[ 3309.252192][T25642] pgpgout 247962
[ 3309.255867][T25642] pgfault 589611
[ 3309.260247][T25642] pgmajfault 42993
[ 3309.264171][T25642] inactive_anon 12288
[ 3309.269869][T25642] active_anon 0
[ 3309.273485][T25642] inactive_file 0
[ 3309.277934][T25642] active_file 0
[ 3309.281606][T25642] unevictable 0
[ 3309.285181][T25642] hierarchical_memory_limit 314572800
[ 3309.291262][T25642] hierarchical_memsw_limit 9223372036854771712
[ 3309.298210][T25642] total_cache 0
[ 3309.301867][T25642] total_rss 0
[ 3309.305300][T25642] total_rss_huge 0
[ 3309.309828][T25642] total_shmem 0
[ 3309.313441][T25642] total_mapped_file 0
[ 3309.318086][T25642] total_dirty 0
[ 3309.321687][T25642] total_writeback 0
[ 3309.325704][T25642] total_workingset_refault_anon 43514
[ 3309.332298][T25642] total_workingset_refault_file 0
[ 3309.337946][T25642] total_swap 479232
[ 3309.341886][T25642] total_swapcached 12288
[ 3309.346254][T25642] total_pgpgin 247965
[ 3309.351106][T25642] total_pgpgout 247962
[ 3309.355311][T25642] total_pgfault 589611
[ 3309.360258][T25642] total_pgmajfault 42993
[ 3309.364773][T25642] total_inactive_anon 12288
[ 3309.370147][T25642] total_active_anon 0
[ 3309.374319][T25642] total_inactive_file 0
[ 3309.379971][T25642] total_active_file 0
[ 3309.387905][T25642] total_unevictable 0
[ 3309.392037][T25642] anon_cost 0
[ 3309.395452][T25642] file_cost 0
[ 3309.401740][T25642] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=25642,uid=0
[ 3309.423991][T25642] Memory cgroup out of memory: Killed process 25642 (syz-executor.2) total-vm:54344kB, anon-rss:308kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:64kB oom_score_adj:1000
[ 3309.456481][T25643] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3309.471152][T25643] CPU: 0 PID: 25643 Comm: syz-executor.3 Not tainted 6.8.0-rc7-syzkaller-00250-g137e0ec05aeb #0
[ 3309.481634][T25643] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3309.491740][T25643] Call Trace:
[ 3309.495059][T25643]  <TASK>
[ 3309.498034][T25643]  dump_stack_lvl+0x1e7/0x2e0
[ 3309.502769][T25643]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3309.508028][T25643]  ? __pfx__printk+0x10/0x10
[ 3309.512679][T25643]  ? ___ratelimit+0x4c4/0x670
[ 3309.517420][T25643]  ? __pfx____ratelimit+0x10/0x10
[ 3309.522506][T25643]  dump_header+0xda/0x6a0
[ 3309.526890][T25643]  oom_kill_process+0x3a7/0x930
[ 3309.531783][T25643]  out_of_memory+0xf67/0x1320
[ 3309.536490][T25643]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3309.542136][T25643]  ? __pfx___mutex_lock+0x10/0x10
[ 3309.547184][T25643]  ? __pfx_out_of_memory+0x10/0x10
[ 3309.552343][T25643]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3309.557904][T25643]  ? __pfx_lock_release+0x10/0x10
[ 3309.562955][T25643]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3309.569055][T25643]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3309.574274][T25643]  ? mem_cgroup_iter+0x422/0x560
[ 3309.579231][T25643]  try_charge_memcg+0xda2/0x18a0
[ 3309.584211][T25643]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3309.589598][T25643]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3309.595329][T25643]  ? __pfx_lock_release+0x10/0x10
[ 3309.600370][T25643]  ? memcg_account_kmem+0x1e7/0x210
[ 3309.605590][T25643]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3309.611409][T25643]  __memcg_kmem_charge_page+0xe1/0x250
[ 3309.616891][T25643]  memcg_charge_kernel_stack+0x28a/0x550
[ 3309.622541][T25643]  dup_task_struct+0x40d/0x7d0
[ 3309.627325][T25643]  copy_process+0x5d5/0x3fc0
[ 3309.631940][T25643]  ? __might_fault+0xa9/0x120
[ 3309.636636][T25643]  ? __pfx_lock_release+0x10/0x10
[ 3309.641715][T25643]  ? __pfx_copy_process+0x10/0x10
[ 3309.646752][T25643]  ? __might_fault+0xc5/0x120
[ 3309.651446][T25643]  ? __asan_memset+0x23/0x50
[ 3309.656099][T25643]  kernel_clone+0x21d/0x8d0
[ 3309.660630][T25643]  ? __pfx_kernel_clone+0x10/0x10
[ 3309.665685][T25643]  ? __pfx___might_resched+0x10/0x10
[ 3309.671001][T25643]  __se_sys_clone3+0x2cb/0x350
[ 3309.675805][T25643]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3309.681154][T25643]  ? int80_emulation+0xea/0x210
[ 3309.686031][T25643]  int80_emulation+0x129/0x210
[ 3309.690819][T25643]  asm_int80_emulation+0x1a/0x20
[ 3309.695766][T25643] RIP: 0023:0xf73d8060
[ 3309.699850][T25643] Code: 4c 24 04 85 c9 0f 84 df 0d fe ff 8b 54 24 0c 85 d2 0f 84 d3 0d fe ff 53 56 8b 74 24 18 89 cb 8b 4c 24 10 b8 b3 01 00 00 cd 80 <85> c0 74 09 5e 5b 0f 8c b4 0d fe ff c3 31 ed 83 e4 f0 83 ec 0c 56
[ 3309.719465][T25643] RSP: 002b:00000000f75ef8e4 EFLAGS: 00000282 ORIG_RAX: 00000000000001b3
06:23:06 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x888, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x858, 0x2, [@TCA_BASIC_POLICE={0x854, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x900]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}, @TCA_POLICE_PEAKRATE64={0xc}]}]}}]}, 0x888}}, 0x0)

[ 3309.727896][T25643] RAX: ffffffffffffffda RBX: 00000000f75ef950 RCX: 0000000000000058
[ 3309.735887][T25643] RDX: 00000000f7388eb0 RSI: 00000000f5f27b40 RDI: 00000000ffffffd8
[ 3309.743866][T25643] RBP: 000000000000006e R08: 0000000000000000 R09: 0000000000000000
[ 3309.751847][T25643] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 3309.759829][T25643] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 3309.767829][T25643]  </TASK>
[ 3309.781396][T25643] memory: usage 307200kB, limit 307200kB, failcnt 190887
[ 3309.788678][T25643] memory+swap: usage 307796kB, limit 9007199254740988kB, failcnt 0
[ 3309.797243][T25643] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[ 3309.804706][T25643] Memory cgroup stats for /syz3:
[ 3309.804861][T25643] cache 0
[ 3309.813539][T25643] rss 0
[ 3309.816895][T25643] rss_huge 0
[ 3309.820253][T25643] shmem 0
[ 3309.823329][T25643] mapped_file 0
[ 3309.827698][T25643] dirty 0
[ 3309.830807][T25643] writeback 0
[ 3309.834238][T25643] workingset_refault_anon 79595
[ 3309.839943][T25643] workingset_refault_file 0
[ 3309.844641][T25643] swap 610304
[ 3309.848569][T25643] swapcached 0
[ 3309.852097][T25643] pgpgin 282602
[ 3309.855673][T25643] pgpgout 282602
[ 3309.860013][T25643] pgfault 652427
[ 3309.863738][T25643] pgmajfault 78294
[ 3309.868140][T25643] inactive_anon 0
[ 3309.872247][T25643] active_anon 0
[ 3309.875853][T25643] inactive_file 0
[ 3309.882240][T25643] active_file 0
[ 3309.885883][T25643] unevictable 0
[ 3309.890043][T25643] hierarchical_memory_limit 314572800
[ 3309.895568][T25643] hierarchical_memsw_limit 9223372036854771712
[ 3309.906963][T25643] total_cache 0
[ 3309.910605][T25643] total_rss 0
[ 3309.914034][T25643] total_rss_huge 0
[ 3309.922293][T25643] total_shmem 0
[ 3309.925892][T25643] total_mapped_file 0
[ 3309.930600][T25643] total_dirty 0
[ 3309.934209][T25643] total_writeback 0
[ 3309.943008][T25643] total_workingset_refault_anon 79595
[ 3309.949010][T25643] total_workingset_refault_file 0
[ 3309.954192][T25643] total_swap 610304
[ 3309.958888][T25643] total_swapcached 0
[ 3309.962932][T25643] total_pgpgin 282602
[ 3309.967617][T25643] total_pgpgout 282602
[ 3309.971842][T25643] total_pgfault 652427
[ 3309.976035][T25643] total_pgmajfault 78294
[ 3309.981166][T25643] total_inactive_anon 0
[ 3309.985488][T25643] total_active_anon 0
[ 3309.995911][T25643] total_inactive_file 0
[ 3310.000645][T25643] total_active_file 0
[ 3310.004829][T25643] total_unevictable 0
[ 3310.009729][T25643] anon_cost 0
[ 3310.013183][T25643] file_cost 0
[ 3310.017091][T25643] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=25643,uid=0
[ 3310.033184][T25643] Memory cgroup out of memory: Killed process 25643 (syz-executor.3) total-vm:54476kB, anon-rss:316kB, file-rss:8960kB, shmem-rss:0kB, UID:0 pgtables:64kB oom_score_adj:1000
[ 3310.080604][T25645] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3310.100977][T25645] CPU: 1 PID: 25645 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00250-g137e0ec05aeb #0
[ 3310.111470][T25645] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3310.121569][T25645] Call Trace:
[ 3310.124901][T25645]  <TASK>
06:23:06 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x888, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x858, 0x2, [@TCA_BASIC_POLICE={0x854, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38000000]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}, @TCA_POLICE_PEAKRATE64={0xc}]}]}}]}, 0x888}}, 0x0)

[ 3310.127876][T25645]  dump_stack_lvl+0x1e7/0x2e0
[ 3310.132620][T25645]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3310.137891][T25645]  ? __pfx__printk+0x10/0x10
[ 3310.142546][T25645]  ? ___ratelimit+0x4c4/0x670
[ 3310.147295][T25645]  ? __pfx____ratelimit+0x10/0x10
[ 3310.152386][T25645]  dump_header+0xda/0x6a0
[ 3310.156788][T25645]  oom_kill_process+0x3a7/0x930
[ 3310.161733][T25645]  out_of_memory+0xf67/0x1320
[ 3310.166483][T25645]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3310.172183][T25645]  ? __pfx___mutex_lock+0x10/0x10
[ 3310.177269][T25645]  ? __pfx_out_of_memory+0x10/0x10
[ 3310.182456][T25645]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3310.188066][T25645]  ? __pfx_lock_release+0x10/0x10
[ 3310.193175][T25645]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3310.199314][T25645]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3310.204579][T25645]  ? mem_cgroup_iter+0x3e9/0x560
[ 3310.209586][T25645]  try_charge_memcg+0xda2/0x18a0
[ 3310.214613][T25645]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3310.220051][T25645]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3310.226097][T25645]  ? __pfx_lock_release+0x10/0x10
[ 3310.231190][T25645]  ? memcg_account_kmem+0x1e7/0x210
[ 3310.236474][T25645]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3310.242340][T25645]  __memcg_kmem_charge_page+0xe1/0x250
[ 3310.247869][T25645]  memcg_charge_kernel_stack+0x210/0x550
[ 3310.253570][T25645]  dup_task_struct+0x40d/0x7d0
[ 3310.258404][T25645]  copy_process+0x5d5/0x3fc0
[ 3310.263073][T25645]  ? __might_fault+0xa9/0x120
[ 3310.267823][T25645]  ? __pfx_lock_release+0x10/0x10
[ 3310.272917][T25645]  ? __pfx_copy_process+0x10/0x10
[ 3310.277994][T25645]  ? __might_fault+0xc5/0x120
[ 3310.282761][T25645]  ? __asan_memset+0x23/0x50
[ 3310.287412][T25645]  kernel_clone+0x21d/0x8d0
[ 3310.291977][T25645]  ? __pfx_kernel_clone+0x10/0x10
[ 3310.297067][T25645]  ? __pfx___might_resched+0x10/0x10
[ 3310.302591][T25645]  __se_sys_clone3+0x2cb/0x350
[ 3310.307427][T25645]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3310.312813][T25645]  ? int80_emulation+0xea/0x210
[ 3310.317743][T25645]  int80_emulation+0x129/0x210
[ 3310.322592][T25645]  asm_int80_emulation+0x1a/0x20
[ 3310.327578][T25645] RIP: 0023:0xf7372060
[ 3310.331712][T25645] Code: 4c 24 04 85 c9 0f 84 df 0d fe ff 8b 54 24 0c 85 d2 0f 84 d3 0d fe ff 53 56 8b 74 24 18 89 cb 8b 4c 24 10 b8 b3 01 00 00 cd 80 <85> c0 74 09 5e 5b 0f 8c b4 0d fe ff c3 31 ed 83 e4 f0 83 ec 0c 56
[ 3310.351371][T25645] RSP: 002b:00000000f75898e4 EFLAGS: 00000282 ORIG_RAX: 00000000000001b3
[ 3310.359844][T25645] RAX: ffffffffffffffda RBX: 00000000f7589950 RCX: 0000000000000058
[ 3310.367872][T25645] RDX: 00000000f7322eb0 RSI: 00000000f5ee2b40 RDI: 00000000ffffffd8
[ 3310.375899][T25645] RBP: 000000000000000b R08: 0000000000000000 R09: 0000000000000000
[ 3310.383922][T25645] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 3310.391950][T25645] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 3310.399995][T25645]  </TASK>
[ 3310.406462][T25645] memory: usage 307200kB, limit 307200kB, failcnt 149404
[ 3310.413696][T25645] memory+swap: usage 307896kB, limit 9007199254740988kB, failcnt 0
[ 3310.421811][T25645] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0
[ 3310.429305][T25645] Memory cgroup stats for /syz0:
[ 3310.429456][T25645] cache 0
[ 3310.437563][T25645] rss 12288
[ 3310.440818][T25645] rss_huge 0
[ 3310.444129][T25645] shmem 0
[ 3310.447258][T25645] mapped_file 0
[ 3310.451175][T25645] dirty 0
[ 3310.454257][T25645] writeback 0
[ 3310.458357][T25645] workingset_refault_anon 55062
[ 3310.463383][T25645] workingset_refault_file 0
[ 3310.468753][T25645] swap 741376
[ 3310.472198][T25645] swapcached 12288
[ 3310.476054][T25645] pgpgin 249722
[ 3310.480409][T25645] pgpgout 249719
[ 3310.484310][T25645] pgfault 578887
[ 3310.502842][T25645] pgmajfault 53658
[ 3310.510647][T25645] inactive_anon 0
[ 3310.517514][T25645] active_anon 0
[ 3310.521386][T25645] inactive_file 0
[ 3310.525212][T25645] active_file 0
[ 3310.532127][T25645] unevictable 0
[ 3310.538815][T25645] hierarchical_memory_limit 314572800
[ 3310.548354][T25645] hierarchical_memsw_limit 9223372036854771712
[ 3310.559231][T25645] total_cache 0
[ 3310.565235][T25645] total_rss 12288
[ 3310.572129][T25645] total_rss_huge 0
[ 3310.580030][T25645] total_shmem 0
[ 3310.585394][T25645] total_mapped_file 0
[ 3310.592655][T25645] total_dirty 0
[ 3310.598711][T25645] total_writeback 0
[ 3310.605074][T25645] total_workingset_refault_anon 55062
[ 3310.614739][T25645] total_workingset_refault_file 0
[ 3310.623934][T25645] total_swap 741376
[ 3310.628281][T25645] total_swapcached 12288
[ 3310.632669][T25645] total_pgpgin 249722
[ 3310.637372][T25645] total_pgpgout 249719
[ 3310.645969][T25645] total_pgfault 578887
[ 3310.656970][T25645] total_pgmajfault 53658
[ 3310.664233][T25645] total_inactive_anon 0
[ 3310.674332][T25645] total_active_anon 0
[ 3310.678989][T25645] total_inactive_file 0
[ 3310.683293][T25645] total_active_file 0
[ 3310.688156][T25645] total_unevictable 0
[ 3310.692291][T25645] anon_cost 0
[ 3310.695726][T25645] file_cost 0
[ 3310.699901][T25645] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=25645,uid=0
[ 3310.715992][T25645] Memory cgroup out of memory: Killed process 25645 (syz-executor.0) total-vm:54344kB, anon-rss:308kB, file-rss:8704kB, shmem-rss:0kB, UID:0 pgtables:64kB oom_score_adj:1000
[ 3310.736687][T25646] syz-executor.3 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[ 3310.798536][T25646] CPU: 1 PID: 25646 Comm: syz-executor.3 Not tainted 6.8.0-rc7-syzkaller-00250-g137e0ec05aeb #0
[ 3310.809034][T25646] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3310.819140][T25646] Call Trace:
[ 3310.822464][T25646]  <TASK>
[ 3310.825431][T25646]  dump_stack_lvl+0x1e7/0x2e0
[ 3310.830180][T25646]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3310.835443][T25646]  ? __pfx__printk+0x10/0x10
[ 3310.840089][T25646]  ? ___ratelimit+0x4c4/0x670
[ 3310.844829][T25646]  ? __pfx____ratelimit+0x10/0x10
[ 3310.849956][T25646]  dump_header+0xda/0x6a0
[ 3310.854351][T25646]  oom_kill_process+0x3a7/0x930
[ 3310.859275][T25646]  out_of_memory+0xf67/0x1320
[ 3310.864015][T25646]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3310.869708][T25646]  ? __pfx___mutex_lock+0x10/0x10
[ 3310.874796][T25646]  ? __pfx_out_of_memory+0x10/0x10
[ 3310.879978][T25646]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3310.885723][T25646]  ? __pfx_lock_release+0x10/0x10
[ 3310.890773][T25646]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3310.896860][T25646]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3310.902075][T25646]  ? mem_cgroup_iter+0x422/0x560
[ 3310.907033][T25646]  try_charge_memcg+0xda2/0x18a0
[ 3310.911986][T25646]  ? mark_lock+0x9a/0x350
[ 3310.916350][T25646]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3310.921774][T25646]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 3310.927941][T25646]  charge_memcg+0xa2/0x160
[ 3310.932379][T25646]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 3310.938462][T25646]  __read_swap_cache_async+0x480/0x8b0
[ 3310.943936][T25646]  ? mark_lock+0x9a/0x350
[ 3310.948287][T25646]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 3310.954295][T25646]  swap_cluster_readahead+0x67c/0x810
[ 3310.959697][T25646]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 3310.965612][T25646]  ? __pfx_lock_release+0x10/0x10
[ 3310.970661][T25646]  ? xas_descend+0x37e/0x470
[ 3310.975282][T25646]  swapin_readahead+0x1ea/0x1070
[ 3310.980244][T25646]  ? filemap_get_entry+0x127/0x4e0
[ 3310.985384][T25646]  ? __pfx_swapin_readahead+0x10/0x10
[ 3310.990788][T25646]  ? __filemap_get_folio+0x935/0xbc0
[ 3310.996101][T25646]  ? swap_cache_get_folio+0x9f/0x570
[ 3311.001431][T25646]  do_swap_page+0x791/0x3f40
[ 3311.006042][T25646]  ? rcu_is_watching+0x15/0xb0
[ 3311.010841][T25646]  ? do_swap_page+0x154/0x3f40
[ 3311.015620][T25646]  ? __pfx_do_swap_page+0x10/0x10
[ 3311.020666][T25646]  ? pte_offset_map_nolock+0x137/0x1f0
[ 3311.026153][T25646]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 3311.032001][T25646]  __handle_mm_fault+0x15e8/0x72d0
[ 3311.037170][T25646]  ? reacquire_held_locks+0x3eb/0x690
[ 3311.042561][T25646]  ? __pfx___handle_mm_fault+0x10/0x10
[ 3311.048044][T25646]  ? __pfx_reacquire_held_locks+0x10/0x10
[ 3311.053813][T25646]  ? mtree_range_walk+0x6fd/0x8e0
[ 3311.058856][T25646]  ? lock_vma_under_rcu+0x18a/0x730
[ 3311.064088][T25646]  ? __pfx_lock_release+0x10/0x10
[ 3311.069132][T25646]  ? lock_vma_under_rcu+0x2f9/0x730
[ 3311.074392][T25646]  ? lock_vma_under_rcu+0x18a/0x730
[ 3311.079627][T25646]  ? __pfx_lock_vma_under_rcu+0x10/0x10
[ 3311.085202][T25646]  handle_mm_fault+0x3c1/0x8a0
[ 3311.089993][T25646]  exc_page_fault+0x456/0x870
[ 3311.094722][T25646]  asm_exc_page_fault+0x26/0x30
[ 3311.099586][T25646] RIP: 0023:0xf736d235
[ 3311.103663][T25646] Code: e8 5f 02 00 00 0f 85 56 05 00 00 69 d5 88 00 00 00 8b 74 24 10 8d 86 cc 5f 02 00 8d 5c 10 08 89 54 24 64 89 9c 24 c8 00 00 00 <8b> 13 85 d2 0f 85 6d 0d 00 00 8b 11 85 d2 0f 84 63 0d 00 00 8b 54
[ 3311.123464][T25646] RSP: 002b:00000000f75efb10 EFLAGS: 00010206
[ 3311.129632][T25646] RAX: 00000000f74cafc0 RBX: 00000000f74cafc8 RCX: 00000000f74cafcc
[ 3311.137613][T25646] RDX: 0000000000000000 RSI: 00000000f74a4ff4 RDI: 00000000f6f4a060
[ 3311.145698][T25646] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 3311.153681][T25646] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 3311.161778][T25646] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 3311.169794][T25646]  </TASK>
[ 3311.216064][T25646] memory: usage 307200kB, limit 307200kB, failcnt 191508
[ 3311.224347][T25646] memory+swap: usage 307772kB, limit 9007199254740988kB, failcnt 0
[ 3311.232639][T25646] kmem: usage 307192kB, limit 9007199254740988kB, failcnt 0
[ 3311.250871][T25646] Memory cgroup stats for /syz3:
[ 3311.251034][T25646] cache 0
06:23:07 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x87c, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x84c, 0x2, [@TCA_BASIC_POLICE={0x848, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x700]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}]}]}}]}, 0x87c}}, 0x0)

[ 3311.274694][T25646] rss 8192
[ 3311.283396][T25646] rss_huge 0
[ 3311.286803][T25646] shmem 0
[ 3311.289784][T25646] mapped_file 0
[ 3311.293269][T25646] dirty 0
[ 3311.302921][T25646] writeback 0
[ 3311.306265][T25646] workingset_refault_anon 79810
[ 3311.314516][T25646] workingset_refault_file 0
[ 3311.325513][T25646] swap 585728
[ 3311.328994][T25646] swapcached 8192
[ 3311.332665][T25646] pgpgin 282825
[ 3311.336155][T25646] pgpgout 282823
[ 3311.351503][T25646] pgfault 652759
[ 3311.381494][T25646] pgmajfault 78484
[ 3311.388611][T25646] inactive_anon 8192
[ 3311.392663][T25646] active_anon 0
[ 3311.396259][T25646] inactive_file 0
[ 3311.401032][T25646] active_file 0
[ 3311.404666][T25646] unevictable 0
[ 3311.409143][T25646] hierarchical_memory_limit 314572800
[ 3311.414665][T25646] hierarchical_memsw_limit 9223372036854771712
[ 3311.422311][T25646] total_cache 0
[ 3311.425898][T25646] total_rss 8192
[ 3311.430196][T25646] total_rss_huge 0
[ 3311.434165][T25646] total_shmem 0
[ 3311.438270][T25646] total_mapped_file 0
[ 3311.442393][T25646] total_dirty 0
[ 3311.445979][T25646] total_writeback 0
[ 3311.450741][T25646] total_workingset_refault_anon 79810
[ 3311.456759][T25646] total_workingset_refault_file 0
[ 3311.462121][T25646] total_swap 585728
[ 3311.466081][T25646] total_swapcached 8192
[ 3311.471144][T25646] total_pgpgin 282825
[ 3311.475281][T25646] total_pgpgout 282823
[ 3311.480107][T25646] total_pgfault 652759
[ 3311.490126][T25646] total_pgmajfault 78484
[ 3311.502986][T25646] total_inactive_anon 8192
[ 3311.508613][T25646] total_active_anon 0
[ 3311.521026][T25646] total_inactive_file 0
[ 3311.533004][T25646] total_active_file 0
[ 3311.545106][T25646] total_unevictable 0
[ 3311.555769][T25646] anon_cost 0
[ 3311.568223][T25646] file_cost 0
[ 3311.575595][T25646] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=25646,uid=0
[ 3311.596008][T25646] Memory cgroup out of memory: Killed process 25646 (syz-executor.3) total-vm:54344kB, anon-rss:316kB, file-rss:8960kB, shmem-rss:0kB, UID:0 pgtables:64kB oom_score_adj:1000
[ 3311.622681][T25648] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3311.633185][T25648] CPU: 1 PID: 25648 Comm: syz-executor.2 Not tainted 6.8.0-rc7-syzkaller-00250-g137e0ec05aeb #0
[ 3311.643633][T25648] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3311.653735][T25648] Call Trace:
[ 3311.657031][T25648]  <TASK>
[ 3311.659985][T25648]  dump_stack_lvl+0x1e7/0x2e0
[ 3311.664702][T25648]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3311.669925][T25648]  ? __pfx__printk+0x10/0x10
[ 3311.674569][T25648]  ? ___ratelimit+0x4c4/0x670
[ 3311.679283][T25648]  ? __pfx____ratelimit+0x10/0x10
[ 3311.684349][T25648]  dump_header+0xda/0x6a0
[ 3311.688709][T25648]  oom_kill_process+0x3a7/0x930
[ 3311.693595][T25648]  out_of_memory+0xf67/0x1320
[ 3311.698321][T25648]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3311.703996][T25648]  ? __pfx___mutex_lock+0x10/0x10
[ 3311.709040][T25648]  ? __pfx_out_of_memory+0x10/0x10
[ 3311.714175][T25648]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3311.719738][T25648]  ? __pfx_lock_release+0x10/0x10
[ 3311.724789][T25648]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3311.730878][T25648]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3311.736181][T25648]  ? mem_cgroup_iter+0x3e9/0x560
[ 3311.741157][T25648]  try_charge_memcg+0xda2/0x18a0
[ 3311.746128][T25648]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3311.751515][T25648]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3311.757249][T25648]  ? __pfx_lock_release+0x10/0x10
[ 3311.762292][T25648]  ? memcg_account_kmem+0x1e7/0x210
[ 3311.767510][T25648]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3311.773339][T25648]  __memcg_kmem_charge_page+0xe1/0x250
[ 3311.778823][T25648]  memcg_charge_kernel_stack+0x210/0x550
[ 3311.784473][T25648]  dup_task_struct+0x15d/0x7d0
[ 3311.789250][T25648]  copy_process+0x5d5/0x3fc0
[ 3311.793858][T25648]  ? __might_fault+0xa9/0x120
[ 3311.798546][T25648]  ? __pfx_lock_release+0x10/0x10
[ 3311.803615][T25648]  ? __pfx_copy_process+0x10/0x10
[ 3311.808673][T25648]  ? __might_fault+0xc5/0x120
[ 3311.813367][T25648]  ? __asan_memset+0x23/0x50
[ 3311.817976][T25648]  kernel_clone+0x21d/0x8d0
[ 3311.822492][T25648]  ? __pfx_kernel_clone+0x10/0x10
[ 3311.827547][T25648]  __se_sys_clone3+0x2cb/0x350
[ 3311.832329][T25648]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3311.837637][T25648]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3311.843654][T25648]  ? exc_page_fault+0x587/0x870
[ 3311.848524][T25648]  ? int80_emulation+0xea/0x210
[ 3311.853392][T25648]  int80_emulation+0x129/0x210
[ 3311.858173][T25648]  asm_int80_emulation+0x1a/0x20
[ 3311.863115][T25648] RIP: 0023:0xf7376060
[ 3311.867194][T25648] Code: 4c 24 04 85 c9 0f 84 df 0d fe ff 8b 54 24 0c 85 d2 0f 84 d3 0d fe ff 53 56 8b 74 24 18 89 cb 8b 4c 24 10 b8 b3 01 00 00 cd 80 <85> c0 74 09 5e 5b 0f 8c b4 0d fe ff c3 31 ed 83 e4 f0 83 ec 0c 56
[ 3311.886808][T25648] RSP: 002b:00000000f758d8e4 EFLAGS: 00000282 ORIG_RAX: 00000000000001b3
[ 3311.895230][T25648] RAX: ffffffffffffffda RBX: 00000000f758d950 RCX: 0000000000000058
[ 3311.903206][T25648] RDX: 00000000f7326eb0 RSI: 00000000f5ee6b40 RDI: 00000000ffffffd8
[ 3311.911207][T25648] RBP: 000000000000000b R08: 0000000000000000 R09: 0000000000000000
[ 3311.919181][T25648] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
06:23:08 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x888, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x858, 0x2, [@TCA_BASIC_POLICE={0x854, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3d020000]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}, @TCA_POLICE_PEAKRATE64={0xc}]}]}}]}, 0x888}}, 0x0)

[ 3311.927157][T25648] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 3311.935231][T25648]  </TASK>
[ 3311.956414][T25648] memory: usage 307180kB, limit 307200kB, failcnt 121755
[ 3311.963595][T25648] memory+swap: usage 307648kB, limit 9007199254740988kB, failcnt 0
[ 3311.972306][T25648] kmem: usage 307168kB, limit 9007199254740988kB, failcnt 0
[ 3311.984388][T25648] Memory cgroup stats for /syz2:
[ 3311.984546][T25648] cache 0
[ 3311.994422][T25648] rss 0
[ 3312.002218][T25648] rss_huge 0
[ 3312.006347][T25648] shmem 0
[ 3312.009374][T25648] mapped_file 0
[ 3312.012854][T25648] dirty 0
[ 3312.015810][T25648] writeback 0
[ 3312.031183][T25648] workingset_refault_anon 43578
[ 3312.036171][T25648] workingset_refault_file 0
[ 3312.061646][T25648] swap 479232
[ 3312.065131][T25648] swapcached 12288
[ 3312.073719][T25648] pgpgin 248037
[ 3312.097245][T25648] pgpgout 248034
[ 3312.100857][T25648] pgfault 589723
[ 3312.104514][T25648] pgmajfault 43053
[ 3312.113712][T25648] inactive_anon 0
[ 3312.118981][T25648] active_anon 12288
[ 3312.123049][T25648] inactive_file 0
[ 3312.127512][T25648] active_file 0
[ 3312.131221][T25648] unevictable 0
[ 3312.134703][T25648] hierarchical_memory_limit 314572800
[ 3312.140950][T25648] hierarchical_memsw_limit 9223372036854771712
[ 3312.147578][T25648] total_cache 0
[ 3312.151074][T25648] total_rss 0
[ 3312.154470][T25648] total_rss_huge 0
[ 3312.160568][T25648] total_shmem 0
[ 3312.164067][T25648] total_mapped_file 0
[ 3312.168751][T25648] total_dirty 0
[ 3312.172276][T25648] total_writeback 0
[ 3312.176108][T25648] total_workingset_refault_anon 43578
[ 3312.182294][T25648] total_workingset_refault_file 0
[ 3312.187847][T25648] total_swap 479232
[ 3312.191698][T25648] total_swapcached 12288
[ 3312.195971][T25648] total_pgpgin 248037
[ 3312.200781][T25648] total_pgpgout 248034
[ 3312.204884][T25648] total_pgfault 589723
[ 3312.209592][T25648] total_pgmajfault 43053
[ 3312.213938][T25648] total_inactive_anon 0
[ 3312.219498][T25648] total_active_anon 12288
[ 3312.224069][T25648] total_inactive_file 0
[ 3312.228784][T25648] total_active_file 0
[ 3312.232797][T25648] total_unevictable 0
[ 3312.237311][T25648] anon_cost 0
[ 3312.240631][T25648] file_cost 0
[ 3312.243938][T25648] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=25648,uid=0
[ 3312.260249][T25648] Memory cgroup out of memory: Killed process 25648 (syz-executor.2) total-vm:54344kB, anon-rss:308kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:64kB oom_score_adj:1000
[ 3312.304637][T25651] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3312.332612][T25651] CPU: 1 PID: 25651 Comm: syz-executor.3 Not tainted 6.8.0-rc7-syzkaller-00250-g137e0ec05aeb #0
[ 3312.343112][T25651] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3312.353208][T25651] Call Trace:
[ 3312.356507][T25651]  <TASK>
[ 3312.359448][T25651]  dump_stack_lvl+0x1e7/0x2e0
[ 3312.364154][T25651]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3312.369389][T25651]  ? __pfx__printk+0x10/0x10
[ 3312.373994][T25651]  ? ___ratelimit+0x4c4/0x670
[ 3312.378703][T25651]  ? __pfx____ratelimit+0x10/0x10
[ 3312.383752][T25651]  dump_header+0xda/0x6a0
[ 3312.388108][T25651]  oom_kill_process+0x3a7/0x930
[ 3312.392986][T25651]  out_of_memory+0xf67/0x1320
[ 3312.397691][T25651]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3312.403336][T25651]  ? __pfx___mutex_lock+0x10/0x10
[ 3312.408376][T25651]  ? __pfx_out_of_memory+0x10/0x10
[ 3312.413513][T25651]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3312.419073][T25651]  ? __pfx_lock_release+0x10/0x10
[ 3312.424116][T25651]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3312.430203][T25651]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3312.435414][T25651]  ? mem_cgroup_iter+0x422/0x560
[ 3312.440373][T25651]  try_charge_memcg+0xda2/0x18a0
[ 3312.445343][T25651]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3312.450730][T25651]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3312.456476][T25651]  ? __pfx_lock_release+0x10/0x10
[ 3312.461524][T25651]  ? memcg_account_kmem+0x1e7/0x210
[ 3312.466749][T25651]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3312.472577][T25651]  __memcg_kmem_charge_page+0xe1/0x250
[ 3312.478061][T25651]  memcg_charge_kernel_stack+0x304/0x550
[ 3312.483710][T25651]  dup_task_struct+0x15d/0x7d0
[ 3312.488526][T25651]  copy_process+0x5d5/0x3fc0
[ 3312.493144][T25651]  ? __might_fault+0xa9/0x120
[ 3312.497839][T25651]  ? __pfx_lock_release+0x10/0x10
[ 3312.502977][T25651]  ? __pfx_copy_process+0x10/0x10
[ 3312.508022][T25651]  ? __might_fault+0xc5/0x120
[ 3312.512727][T25651]  ? __asan_memset+0x23/0x50
[ 3312.517339][T25651]  kernel_clone+0x21d/0x8d0
[ 3312.521864][T25651]  ? __pfx_kernel_clone+0x10/0x10
[ 3312.526912][T25651]  ? __pfx___might_resched+0x10/0x10
[ 3312.532217][T25651]  __se_sys_clone3+0x2cb/0x350
[ 3312.537033][T25651]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3312.542367][T25651]  ? int80_emulation+0xea/0x210
[ 3312.547242][T25651]  int80_emulation+0x129/0x210
[ 3312.552041][T25651]  asm_int80_emulation+0x1a/0x20
[ 3312.556992][T25651] RIP: 0023:0xf73d8060
[ 3312.561083][T25651] Code: 4c 24 04 85 c9 0f 84 df 0d fe ff 8b 54 24 0c 85 d2 0f 84 d3 0d fe ff 53 56 8b 74 24 18 89 cb 8b 4c 24 10 b8 b3 01 00 00 cd 80 <85> c0 74 09 5e 5b 0f 8c b4 0d fe ff c3 31 ed 83 e4 f0 83 ec 0c 56
[ 3312.580700][T25651] RSP: 002b:00000000f75ef8e4 EFLAGS: 00000282 ORIG_RAX: 00000000000001b3
[ 3312.589131][T25651] RAX: ffffffffffffffda RBX: 00000000f75ef950 RCX: 0000000000000058
[ 3312.597146][T25651] RDX: 00000000f7388eb0 RSI: 00000000f5f48b40 RDI: 00000000ffffffd8
[ 3312.605129][T25651] RBP: 000000000000000b R08: 0000000000000000 R09: 0000000000000000
[ 3312.613187][T25651] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 3312.621170][T25651] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 3312.629170][T25651]  </TASK>
[ 3312.645774][T25651] memory: usage 307200kB, limit 307200kB, failcnt 191787
[ 3312.655237][T25651] memory+swap: usage 307804kB, limit 9007199254740988kB, failcnt 0
[ 3312.689213][T25651] kmem: usage 307180kB, limit 9007199254740988kB, failcnt 0
[ 3312.715797][T25651] Memory cgroup stats for /syz3:
[ 3312.715937][T25651] cache 0
[ 3312.731118][T25651] rss 4096
[ 3312.734205][T25651] rss_huge 0
[ 3312.737798][T25651] shmem 0
[ 3312.742317][T25651] mapped_file 0
[ 3312.755624][T25651] dirty 0
[ 3312.759054][T25651] writeback 0
[ 3312.762388][T25651] workingset_refault_anon 79922
[ 3312.767988][T25651] workingset_refault_file 0
[ 3312.772533][T25651] swap 614400
[ 3312.775876][T25651] swapcached 4096
[ 3312.780544][T25651] pgpgin 282945
[ 3312.784039][T25651] pgpgout 282944
[ 3312.788237][T25651] pgfault 652942
[ 3312.791818][T25651] pgmajfault 78585
[ 3312.795556][T25651] inactive_anon 0
[ 3312.800011][T25651] active_anon 4096
[ 3312.803769][T25651] inactive_file 0
[ 3312.808022][T25651] active_file 0
[ 3312.811508][T25651] unevictable 0
[ 3312.814996][T25651] hierarchical_memory_limit 314572800
[ 3312.821365][T25651] hierarchical_memsw_limit 9223372036854771712
[ 3312.828065][T25651] total_cache 0
[ 3312.831570][T25651] total_rss 4096
[ 3312.835144][T25651] total_rss_huge 0
[ 3312.839797][T25651] total_shmem 0
[ 3312.843303][T25651] total_mapped_file 0
[ 3312.848009][T25651] total_dirty 0
[ 3312.851512][T25651] total_writeback 0
[ 3312.855342][T25651] total_workingset_refault_anon 79922
[ 3312.862711][T25651] total_workingset_refault_file 0
[ 3312.868292][T25651] total_swap 614400
[ 3312.872137][T25651] total_swapcached 4096
[ 3312.876424][T25651] total_pgpgin 282945
[ 3312.880436][T25651] total_pgpgout 282944
[ 3312.884521][T25651] total_pgfault 652942
[ 3312.889537][T25651] total_pgmajfault 78585
[ 3312.893814][T25651] total_inactive_anon 0
[ 3312.898546][T25651] total_active_anon 4096
[ 3312.902832][T25651] total_inactive_file 0
[ 3312.907743][T25651] total_active_file 0
[ 3312.911842][T25651] total_unevictable 0
[ 3312.915948][T25651] anon_cost 0
[ 3312.920089][T25651] file_cost 0
[ 3312.923420][T25651] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=25651,uid=0
[ 3312.947240][T25651] Memory cgroup out of memory: Killed process 25651 (syz-executor.3) total-vm:54344kB, anon-rss:308kB, file-rss:8952kB, shmem-rss:0kB, UID:0 pgtables:64kB oom_score_adj:1000
06:23:09 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x888, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x858, 0x2, [@TCA_BASIC_POLICE={0x854, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3f000000]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}, @TCA_POLICE_PEAKRATE64={0xc}]}]}}]}, 0x888}}, 0x0)

[ 3312.989991][ T5119] syz-executor.0 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[ 3313.030932][ T5119] CPU: 0 PID: 5119 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00250-g137e0ec05aeb #0
[ 3313.041343][ T5119] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3313.051460][ T5119] Call Trace:
[ 3313.054780][ T5119]  <TASK>
[ 3313.057754][ T5119]  dump_stack_lvl+0x1e7/0x2e0
[ 3313.062546][ T5119]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3313.067825][ T5119]  ? __pfx__printk+0x10/0x10
[ 3313.072475][ T5119]  ? ___ratelimit+0x4c4/0x670
[ 3313.077221][ T5119]  ? __pfx____ratelimit+0x10/0x10
[ 3313.082314][ T5119]  dump_header+0xda/0x6a0
[ 3313.086709][ T5119]  oom_kill_process+0x3a7/0x930
[ 3313.091636][ T5119]  out_of_memory+0xf67/0x1320
[ 3313.096436][ T5119]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3313.102217][ T5119]  ? __pfx___mutex_lock+0x10/0x10
[ 3313.107302][ T5119]  ? __pfx_out_of_memory+0x10/0x10
[ 3313.112484][ T5119]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3313.118074][ T5119]  ? __pfx_lock_release+0x10/0x10
[ 3313.123139][ T5119]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3313.129244][ T5119]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3313.134485][ T5119]  ? mem_cgroup_iter+0x3e9/0x560
[ 3313.139462][ T5119]  try_charge_memcg+0xda2/0x18a0
[ 3313.144552][ T5119]  ? mark_lock+0x9a/0x350
[ 3313.148982][ T5119]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3313.154451][ T5119]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 3313.160675][ T5119]  charge_memcg+0xa2/0x160
[ 3313.165158][ T5119]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 3313.171283][ T5119]  __read_swap_cache_async+0x480/0x8b0
[ 3313.176805][ T5119]  ? mark_lock+0x9a/0x350
[ 3313.181206][ T5119]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 3313.187271][ T5119]  swap_cluster_readahead+0x67c/0x810
[ 3313.192720][ T5119]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 3313.198688][ T5119]  ? __pfx_lock_release+0x10/0x10
[ 3313.203785][ T5119]  ? xas_descend+0x37e/0x470
[ 3313.208454][ T5119]  swapin_readahead+0x1ea/0x1070
[ 3313.213459][ T5119]  ? filemap_get_entry+0x127/0x4e0
[ 3313.218659][ T5119]  ? __pfx_swapin_readahead+0x10/0x10
[ 3313.224103][ T5119]  ? __filemap_get_folio+0x935/0xbc0
[ 3313.229512][ T5119]  ? swap_cache_get_folio+0x9f/0x570
[ 3313.234867][ T5119]  do_swap_page+0x791/0x3f40
[ 3313.239516][ T5119]  ? __lock_acquire+0x1345/0x1fd0
[ 3313.244594][ T5119]  ? rcu_is_watching+0x15/0xb0
[ 3313.249433][ T5119]  ? do_swap_page+0x154/0x3f40
[ 3313.254262][ T5119]  ? __pfx_do_swap_page+0x10/0x10
[ 3313.259343][ T5119]  ? pte_offset_map_nolock+0x137/0x1f0
[ 3313.264869][ T5119]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 3313.270748][ T5119]  ? __pfx_validate_chain+0x10/0x10
[ 3313.276015][ T5119]  __handle_mm_fault+0x15e8/0x72d0
[ 3313.281227][ T5119]  ? __pfx___handle_mm_fault+0x10/0x10
[ 3313.286761][ T5119]  ? mt_find+0x226/0x850
[ 3313.291072][ T5119]  ? __pfx_lock_release+0x10/0x10
[ 3313.296183][ T5119]  ? mt_find+0x62d/0x850
[ 3313.300488][ T5119]  ? mt_find+0x226/0x850
[ 3313.304799][ T5119]  ? find_vma+0x142/0x1c0
[ 3313.309182][ T5119]  ? __pfx_find_vma+0x10/0x10
[ 3313.313920][ T5119]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3313.319968][ T5119]  handle_mm_fault+0x3c1/0x8a0
[ 3313.324800][ T5119]  exc_page_fault+0x2ad/0x870
[ 3313.329544][ T5119]  asm_exc_page_fault+0x26/0x30
[ 3313.334448][ T5119] RIP: 0010:__get_user_8+0x11/0x20
[ 3313.339635][ T5119] Code: ca c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 89 c2 48 c1 fa 3f 48 09 d0 0f 01 cb <48> 8b 10 31 c0 0f 01 ca c3 cc cc cc cc 66 90 90 90 90 90 90 90 90
[ 3313.359299][ T5119] RSP: 0018:ffffc90003b9fd78 EFLAGS: 00050202
[ 3313.365430][ T5119] RAX: 000000005810e8a8 RBX: ffff88801c38d0b8 RCX: ffffc90003b9fc03
[ 3313.373462][ T5119] RDX: 0000000000000000 RSI: ffffffff8baac7e0 RDI: ffffffff8bfe6da0
[ 3313.381496][ T5119] RBP: ffffc90003b9fec0 R08: ffffffff8f856cef R09: 1ffffffff1f0ad9d
[ 3313.389531][ T5119] R10: dffffc0000000000 R11: fffffbfff1f0ad9e R12: ffffc90003b9fd80
[ 3313.397557][ T5119] R13: ffffc90003b9ffd8 R14: dffffc0000000000 R15: ffff88801c38bb80
[ 3313.405603][ T5119]  __rseq_handle_notify_resume+0x158/0x1490
[ 3313.411584][ T5119]  ? __pfx___rseq_handle_notify_resume+0x10/0x10
[ 3313.417998][ T5119]  ? irqentry_exit_to_user_mode+0x52/0x270
[ 3313.423878][ T5119]  irqentry_exit_to_user_mode+0xbb/0x270
[ 3313.429583][ T5119]  exc_page_fault+0x587/0x870
[ 3313.434335][ T5119]  asm_exc_page_fault+0x26/0x30
[ 3313.439243][ T5119] RIP: 0023:0xf737126e
[ 3313.443363][ T5119] Code: 15 10 00 00 00 89 c6 89 f0 ba 4b 00 00 00 f7 d8 83 fe da 0f 44 c2 8b 54 24 2c 65 2b 15 14 00 00 00 0f 85 1f 01 00 00 83 c4 3c <5b> 5e 5f 5d c3 8d 74 26 00 90 8b 45 08 89 74 24 24 89 44 24 28 65
[ 3313.463024][ T5119] RSP: 002b:00000000f7589ccc EFLAGS: 00010286
[ 3313.469145][ T5119] RAX: 0000000000000000 RBX: 00000000f743eff4 RCX: 0000000000000000
[ 3313.477167][ T5119] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 3313.485230][ T5119] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 3313.493249][ T5119] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 3313.501277][ T5119] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 3313.509320][ T5119]  </TASK>
[ 3313.536187][ T5119] memory: usage 307200kB, limit 307200kB, failcnt 150228
[ 3313.561863][ T5119] memory+swap: usage 307932kB, limit 9007199254740988kB, failcnt 0
[ 3313.570302][ T5119] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0
[ 3313.578304][ T5119] Memory cgroup stats for /syz0:
[ 3313.578456][ T5119] cache 0
[ 3313.591232][ T5119] rss 8192
[ 3313.594317][ T5119] rss_huge 0
[ 3313.598236][ T5119] shmem 0
[ 3313.601217][ T5119] mapped_file 0
[ 3313.604708][ T5119] dirty 0
[ 3313.612825][ T5119] writeback 0
[ 3313.616177][ T5119] workingset_refault_anon 55343
[ 3313.622542][ T5119] workingset_refault_file 0
[ 3313.631224][ T5119] swap 753664
[ 3313.634556][ T5119] swapcached 8192
[ 3313.639409][ T5119] pgpgin 250024
[ 3313.642928][ T5119] pgpgout 250022
[ 3313.651510][ T5119] pgfault 579329
[ 3313.655112][ T5119] pgmajfault 53916
[ 3313.660078][ T5119] inactive_anon 0
[ 3313.663797][ T5119] active_anon 8192
[ 3313.672257][ T5119] inactive_file 0
[ 3313.675946][ T5119] active_file 0
[ 3313.680076][ T5119] unevictable 0
[ 3313.683578][ T5119] hierarchical_memory_limit 314572800
[ 3313.691401][ T5119] hierarchical_memsw_limit 9223372036854771712
[ 3313.717413][ T5119] total_cache 0
[ 3313.720947][ T5119] total_rss 8192
[ 3313.724536][ T5119] total_rss_huge 0
[ 3313.759721][ T5119] total_shmem 0
[ 3313.763252][ T5119] total_mapped_file 0
[ 3313.779151][ T5119] total_dirty 0
[ 3313.782698][ T5119] total_writeback 0
[ 3313.800863][ T5119] total_workingset_refault_anon 55343
[ 3313.817269][ T5119] total_workingset_refault_file 0
[ 3313.822379][ T5119] total_swap 753664
[ 3313.826225][ T5119] total_swapcached 8192
[ 3313.837367][ T5119] total_pgpgin 250024
[ 3313.844169][ T5119] total_pgpgout 250022
[ 3313.852625][ T5119] total_pgfault 579329
[ 3313.857221][ T5119] total_pgmajfault 53916
[ 3313.861576][ T5119] total_inactive_anon 0
[ 3313.865768][ T5119] total_active_anon 8192
[ 3313.875910][ T5119] total_inactive_file 0
[ 3313.880613][ T5119] total_active_file 0
[ 3313.884742][ T5119] total_unevictable 0
[ 3313.889523][ T5119] anon_cost 0
[ 3313.892843][ T5119] file_cost 0
[ 3313.896150][ T5119] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=25650,uid=0
06:23:10 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x888, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x858, 0x2, [@TCA_BASIC_POLICE={0x854, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa00]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}, @TCA_POLICE_PEAKRATE64={0xc}]}]}}]}, 0x888}}, 0x0)

[ 3313.920672][ T5119] Memory cgroup out of memory: Killed process 25650 (syz-executor.0) total-vm:54344kB, anon-rss:308kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:64kB oom_score_adj:1000
06:23:10 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x87c, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x84c, 0x2, [@TCA_BASIC_POLICE={0x848, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x848]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}]}]}}]}, 0x87c}}, 0x0)

[ 3314.383723][T25656] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3314.412201][T25656] CPU: 0 PID: 25656 Comm: syz-executor.2 Not tainted 6.8.0-rc7-syzkaller-00250-g137e0ec05aeb #0
[ 3314.422798][T25656] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3314.432905][T25656] Call Trace:
[ 3314.436228][T25656]  <TASK>
[ 3314.439225][T25656]  dump_stack_lvl+0x1e7/0x2e0
[ 3314.443973][T25656]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3314.449237][T25656]  ? __pfx__printk+0x10/0x10
[ 3314.453891][T25656]  ? ___ratelimit+0x4c4/0x670
[ 3314.458633][T25656]  ? __pfx____ratelimit+0x10/0x10
[ 3314.463792][T25656]  dump_header+0xda/0x6a0
[ 3314.468289][T25656]  oom_kill_process+0x3a7/0x930
[ 3314.473200][T25656]  out_of_memory+0xf67/0x1320
[ 3314.477952][T25656]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3314.483659][T25656]  ? __pfx___mutex_lock+0x10/0x10
[ 3314.488740][T25656]  ? __pfx_out_of_memory+0x10/0x10
[ 3314.494020][T25656]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3314.499626][T25656]  ? __pfx_lock_release+0x10/0x10
[ 3314.504724][T25656]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3314.510867][T25656]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3314.516132][T25656]  ? mem_cgroup_iter+0x3e9/0x560
[ 3314.521136][T25656]  try_charge_memcg+0xda2/0x18a0
[ 3314.526167][T25656]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3314.531600][T25656]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3314.537377][T25656]  ? __pfx_lock_release+0x10/0x10
[ 3314.542476][T25656]  ? memcg_account_kmem+0x1e7/0x210
[ 3314.547748][T25656]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3314.553616][T25656]  __memcg_kmem_charge_page+0xe1/0x250
[ 3314.559145][T25656]  memcg_charge_kernel_stack+0x304/0x550
[ 3314.564946][T25656]  dup_task_struct+0x40d/0x7d0
[ 3314.569775][T25656]  copy_process+0x5d5/0x3fc0
[ 3314.574445][T25656]  ? __might_fault+0xa9/0x120
[ 3314.579182][T25656]  ? __pfx_lock_release+0x10/0x10
[ 3314.584283][T25656]  ? __pfx_copy_process+0x10/0x10
[ 3314.589379][T25656]  ? __might_fault+0xc5/0x120
[ 3314.594142][T25656]  ? __asan_memset+0x23/0x50
[ 3314.598801][T25656]  kernel_clone+0x21d/0x8d0
[ 3314.603382][T25656]  ? __pfx_kernel_clone+0x10/0x10
[ 3314.608560][T25656]  ? __pfx___might_resched+0x10/0x10
[ 3314.613899][T25656]  __se_sys_clone3+0x2cb/0x350
[ 3314.618722][T25656]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3314.624198][T25656]  ? int80_emulation+0xea/0x210
[ 3314.629116][T25656]  int80_emulation+0x129/0x210
[ 3314.633955][T25656]  asm_int80_emulation+0x1a/0x20
[ 3314.638946][T25656] RIP: 0023:0xf7376060
[ 3314.643064][T25656] Code: 4c 24 04 85 c9 0f 84 df 0d fe ff 8b 54 24 0c 85 d2 0f 84 d3 0d fe ff 53 56 8b 74 24 18 89 cb 8b 4c 24 10 b8 b3 01 00 00 cd 80 <85> c0 74 09 5e 5b 0f 8c b4 0d fe ff c3 31 ed 83 e4 f0 83 ec 0c 56
[ 3314.662720][T25656] RSP: 002b:00000000f758d8e4 EFLAGS: 00000282 ORIG_RAX: 00000000000001b3
[ 3314.671194][T25656] RAX: ffffffffffffffda RBX: 00000000f758d950 RCX: 0000000000000058
[ 3314.679216][T25656] RDX: 00000000f7326eb0 RSI: 00000000f5ee6b40 RDI: 00000000ffffffd8
[ 3314.687236][T25656] RBP: 000000000000000b R08: 0000000000000000 R09: 0000000000000000
[ 3314.695254][T25656] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 3314.703276][T25656] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 3314.711314][T25656]  </TASK>
[ 3314.724382][T25656] memory: usage 307200kB, limit 307200kB, failcnt 122045
[ 3314.731690][T25656] memory+swap: usage 307656kB, limit 9007199254740988kB, failcnt 0
[ 3314.740357][T25656] kmem: usage 307176kB, limit 9007199254740988kB, failcnt 0
[ 3314.748249][T25656] Memory cgroup stats for /syz2:
[ 3314.748405][T25656] cache 0
[ 3314.757058][T25656] rss 12288
[ 3314.760335][T25656] rss_huge 0
[ 3314.763682][T25656] shmem 0
[ 3314.769371][T25656] mapped_file 0
[ 3314.772986][T25656] dirty 0
[ 3314.776047][T25656] writeback 0
[ 3314.780201][T25656] workingset_refault_anon 43665
[ 3314.785176][T25656] workingset_refault_file 0
[ 3314.790595][T25656] swap 466944
[ 3314.794017][T25656] swapcached 24576
[ 3314.812296][T25656] pgpgin 248132
[ 3314.818763][T25656] pgpgout 248126
[ 3314.827150][T25656] pgfault 589889
[ 3314.834292][T25656] pgmajfault 43140
[ 3314.840783][T25656] inactive_anon 0
[ 3314.844607][T25656] active_anon 24576
[ 3314.849189][T25656] inactive_file 0
[ 3314.852980][T25656] active_file 0
[ 3314.857272][T25656] unevictable 0
[ 3314.860925][T25656] hierarchical_memory_limit 314572800
[ 3314.867077][T25656] hierarchical_memsw_limit 9223372036854771712
[ 3314.873407][T25656] total_cache 0
[ 3314.886497][T25656] total_rss 12288
[ 3314.890301][T25656] total_rss_huge 0
[ 3314.894165][T25656] total_shmem 0
[ 3314.897852][T25656] total_mapped_file 0
[ 3314.902759][T25656] total_dirty 0
[ 3314.909277][T25656] total_writeback 0
[ 3314.914995][T25656] total_workingset_refault_anon 43665
[ 3314.925172][T25656] total_workingset_refault_file 0
[ 3314.931032][T25656] total_swap 466944
[ 3314.934975][T25656] total_swapcached 24576
[ 3314.941231][T25656] total_pgpgin 248132
[ 3314.945357][T25656] total_pgpgout 248126
[ 3314.950989][T25656] total_pgfault 589889
[ 3314.955220][T25656] total_pgmajfault 43140
[ 3314.960822][T25656] total_inactive_anon 0
[ 3314.965216][T25656] total_active_anon 24576
[ 3314.973822][T25656] total_inactive_file 0
[ 3314.978636][T25656] total_active_file 0
[ 3314.983226][T25656] total_unevictable 0
[ 3314.992303][T25656] anon_cost 0
[ 3314.995767][T25656] file_cost 0
[ 3314.999945][T25656] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=25656,uid=0
[ 3315.020570][T25656] Memory cgroup out of memory: Killed process 25656 (syz-executor.2) total-vm:54344kB, anon-rss:316kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:64kB oom_score_adj:1000
[ 3315.055535][T25657] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3315.081339][T25657] CPU: 1 PID: 25657 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00250-g137e0ec05aeb #0
[ 3315.091835][T25657] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3315.101941][T25657] Call Trace:
[ 3315.105263][T25657]  <TASK>
[ 3315.108239][T25657]  dump_stack_lvl+0x1e7/0x2e0
[ 3315.112986][T25657]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3315.118246][T25657]  ? __pfx__printk+0x10/0x10
[ 3315.122904][T25657]  ? ___ratelimit+0x4c4/0x670
[ 3315.127652][T25657]  ? __pfx____ratelimit+0x10/0x10
[ 3315.132756][T25657]  dump_header+0xda/0x6a0
[ 3315.137166][T25657]  oom_kill_process+0x3a7/0x930
[ 3315.142082][T25657]  out_of_memory+0xf67/0x1320
[ 3315.146834][T25657]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3315.152515][T25657]  ? __pfx___mutex_lock+0x10/0x10
[ 3315.157618][T25657]  ? __pfx_out_of_memory+0x10/0x10
[ 3315.162814][T25657]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3315.168428][T25657]  ? __pfx_lock_release+0x10/0x10
[ 3315.173510][T25657]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3315.179645][T25657]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3315.184905][T25657]  ? mem_cgroup_iter+0x3e9/0x560
[ 3315.189907][T25657]  try_charge_memcg+0xda2/0x18a0
[ 3315.194947][T25657]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3315.200380][T25657]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3315.206159][T25657]  ? __pfx_lock_release+0x10/0x10
[ 3315.211260][T25657]  ? memcg_account_kmem+0x1e7/0x210
[ 3315.216527][T25657]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3315.222401][T25657]  __memcg_kmem_charge_page+0xe1/0x250
[ 3315.227930][T25657]  memcg_charge_kernel_stack+0x37e/0x550
[ 3315.233630][T25657]  dup_task_struct+0x15d/0x7d0
[ 3315.238456][T25657]  copy_process+0x5d5/0x3fc0
[ 3315.243119][T25657]  ? __might_fault+0xa9/0x120
[ 3315.247855][T25657]  ? __pfx_lock_release+0x10/0x10
[ 3315.252990][T25657]  ? __pfx_copy_process+0x10/0x10
[ 3315.258074][T25657]  ? __might_fault+0xc5/0x120
[ 3315.262810][T25657]  ? __asan_memset+0x23/0x50
[ 3315.267462][T25657]  kernel_clone+0x21d/0x8d0
[ 3315.272021][T25657]  ? __pfx_kernel_clone+0x10/0x10
[ 3315.277120][T25657]  __se_sys_clone3+0x2cb/0x350
[ 3315.281931][T25657]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3315.287282][T25657]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3315.293334][T25657]  ? exc_page_fault+0x587/0x870
[ 3315.298247][T25657]  ? int80_emulation+0xea/0x210
[ 3315.303168][T25657]  int80_emulation+0x129/0x210
[ 3315.307995][T25657]  asm_int80_emulation+0x1a/0x20
[ 3315.312979][T25657] RIP: 0023:0xf7372060
[ 3315.317089][T25657] Code: 4c 24 04 85 c9 0f 84 df 0d fe ff 8b 54 24 0c 85 d2 0f 84 d3 0d fe ff 53 56 8b 74 24 18 89 cb 8b 4c 24 10 b8 b3 01 00 00 cd 80 <85> c0 74 09 5e 5b 0f 8c b4 0d fe ff c3 31 ed 83 e4 f0 83 ec 0c 56
[ 3315.336745][T25657] RSP: 002b:00000000f75898e4 EFLAGS: 00000282 ORIG_RAX: 00000000000001b3
[ 3315.345255][T25657] RAX: ffffffffffffffda RBX: 00000000f7589950 RCX: 0000000000000058
[ 3315.353276][T25657] RDX: 00000000f7322eb0 RSI: 00000000f5ee2b40 RDI: 00000000ffffffd8
[ 3315.361312][T25657] RBP: 000000000000000b R08: 0000000000000000 R09: 0000000000000000
[ 3315.369340][T25657] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 3315.377360][T25657] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 3315.385407][T25657]  </TASK>
[ 3315.398737][T25657] memory: usage 307200kB, limit 307200kB, failcnt 150658
[ 3315.405830][T25657] memory+swap: usage 307908kB, limit 9007199254740988kB, failcnt 0
[ 3315.414217][T25657] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[ 3315.422126][T25657] Memory cgroup stats for /syz0:
[ 3315.422285][T25657] cache 0
[ 3315.430868][T25657] rss 12288
[ 3315.434011][T25657] rss_huge 0
[ 3315.438860][T25657] shmem 0
[ 3315.441839][T25657] mapped_file 0
[ 3315.445328][T25657] dirty 0
[ 3315.449076][T25657] writeback 0
[ 3315.452406][T25657] workingset_refault_anon 55480
[ 3315.457738][T25657] workingset_refault_file 0
[ 3315.462271][T25657] swap 712704
[ 3315.465573][T25657] swapcached 12288
[ 3315.475833][T25657] pgpgin 250170
[ 3315.484606][T25657] pgpgout 250167
[ 3315.488446][T25657] pgfault 579567
[ 3315.492025][T25657] pgmajfault 54048
[ 3315.495772][T25657] inactive_anon 0
[ 3315.501693][T25657] active_anon 12288
[ 3315.505546][T25657] inactive_file 0
[ 3315.509946][T25657] active_file 0
[ 3315.513462][T25657] unevictable 0
[ 3315.517548][T25657] hierarchical_memory_limit 314572800
[ 3315.522954][T25657] hierarchical_memsw_limit 9223372036854771712
[ 3315.534073][T25657] total_cache 0
[ 3315.538054][T25657] total_rss 12288
[ 3315.541754][T25657] total_rss_huge 0
[ 3315.545504][T25657] total_shmem 0
[ 3315.549975][T25657] total_mapped_file 0
[ 3315.554086][T25657] total_dirty 0
[ 3315.558278][T25657] total_writeback 0
[ 3315.562123][T25657] total_workingset_refault_anon 55480
[ 3315.568089][T25657] total_workingset_refault_file 0
[ 3315.573147][T25657] total_swap 712704
[ 3315.577596][T25657] total_swapcached 12288
[ 3315.581868][T25657] total_pgpgin 250170
[ 3315.585879][T25657] total_pgpgout 250167
[ 3315.591031][T25657] total_pgfault 579567
[ 3315.595146][T25657] total_pgmajfault 54048
[ 3315.600699][T25657] total_inactive_anon 0
[ 3315.604889][T25657] total_active_anon 12288
[ 3315.609885][T25657] total_inactive_file 0
[ 3315.614091][T25657] total_active_file 0
[ 3315.619278][T25657] total_unevictable 0
[ 3315.623296][T25657] anon_cost 0
[ 3315.627226][T25657] file_cost 0
[ 3315.630548][T25657] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=25657,uid=0
[ 3315.646917][T25657] Memory cgroup out of memory: Killed process 25657 (syz-executor.0) total-vm:54344kB, anon-rss:316kB, file-rss:8704kB, shmem-rss:0kB, UID:0 pgtables:64kB oom_score_adj:1000
[ 3315.693025][ T5124] syz-executor.3 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[ 3315.704746][ T5124] CPU: 1 PID: 5124 Comm: syz-executor.3 Not tainted 6.8.0-rc7-syzkaller-00250-g137e0ec05aeb #0
[ 3315.715122][ T5124] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3315.725193][ T5124] Call Trace:
[ 3315.728490][ T5124]  <TASK>
[ 3315.731428][ T5124]  dump_stack_lvl+0x1e7/0x2e0
[ 3315.736131][ T5124]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3315.741379][ T5124]  ? __pfx__printk+0x10/0x10
[ 3315.745986][ T5124]  ? ___ratelimit+0x4c4/0x670
[ 3315.750684][ T5124]  ? __pfx____ratelimit+0x10/0x10
[ 3315.755730][ T5124]  dump_header+0xda/0x6a0
[ 3315.760085][ T5124]  oom_kill_process+0x3a7/0x930
[ 3315.764956][ T5124]  out_of_memory+0xf67/0x1320
[ 3315.769653][ T5124]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3315.775734][ T5124]  ? __pfx___mutex_lock+0x10/0x10
[ 3315.780776][ T5124]  ? __pfx_out_of_memory+0x10/0x10
[ 3315.785929][ T5124]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3315.791489][ T5124]  ? __pfx_lock_release+0x10/0x10
[ 3315.796537][ T5124]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3315.802637][ T5124]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3315.807860][ T5124]  ? mem_cgroup_iter+0x422/0x560
[ 3315.812815][ T5124]  try_charge_memcg+0xda2/0x18a0
[ 3315.817771][ T5124]  ? mark_lock+0x9a/0x350
[ 3315.822132][ T5124]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3315.827560][ T5124]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 3315.833724][ T5124]  charge_memcg+0xa2/0x160
[ 3315.838162][ T5124]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 3315.844250][ T5124]  __read_swap_cache_async+0x480/0x8b0
[ 3315.849768][ T5124]  ? mark_lock+0x9a/0x350
[ 3315.854120][ T5124]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 3315.860126][ T5124]  swap_cluster_readahead+0x67c/0x810
[ 3315.865524][ T5124]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 3315.871440][ T5124]  ? __pfx_lock_release+0x10/0x10
[ 3315.876488][ T5124]  ? xas_descend+0x37e/0x470
[ 3315.881104][ T5124]  swapin_readahead+0x1ea/0x1070
[ 3315.886058][ T5124]  ? filemap_get_entry+0x127/0x4e0
[ 3315.891201][ T5124]  ? __pfx_swapin_readahead+0x10/0x10
[ 3315.896608][ T5124]  ? __filemap_get_folio+0x935/0xbc0
[ 3315.901927][ T5124]  ? swap_cache_get_folio+0x9f/0x570
[ 3315.907234][ T5124]  do_swap_page+0x791/0x3f40
[ 3315.911926][ T5124]  ? rcu_is_watching+0x15/0xb0
[ 3315.916716][ T5124]  ? do_swap_page+0x154/0x3f40
[ 3315.921493][ T5124]  ? __pfx_do_swap_page+0x10/0x10
[ 3315.926532][ T5124]  ? pte_offset_map_nolock+0x137/0x1f0
[ 3315.932010][ T5124]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 3315.937833][ T5124]  ? __pfx_validate_chain+0x10/0x10
[ 3315.943054][ T5124]  __handle_mm_fault+0x15e8/0x72d0
[ 3315.948212][ T5124]  ? __pfx___handle_mm_fault+0x10/0x10
[ 3315.953693][ T5124]  ? mt_find+0x226/0x850
[ 3315.957958][ T5124]  ? __pfx_lock_release+0x10/0x10
[ 3315.963017][ T5124]  ? mt_find+0x62d/0x850
[ 3315.967277][ T5124]  ? mt_find+0x226/0x850
[ 3315.971558][ T5124]  ? find_vma+0x142/0x1c0
[ 3315.975898][ T5124]  ? __pfx_find_vma+0x10/0x10
[ 3315.980596][ T5124]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3315.986603][ T5124]  handle_mm_fault+0x3c1/0x8a0
[ 3315.991390][ T5124]  exc_page_fault+0x2ad/0x870
[ 3315.996089][ T5124]  asm_exc_page_fault+0x26/0x30
[ 3316.000965][ T5124] RIP: 0010:__put_user_8+0x11/0x20
[ 3316.006180][ T5124] Code: 84 00 00 00 00 00 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 89 cb 48 c1 fb 3f 48 09 d9 0f 01 cb <48> 89 01 31 c9 0f 01 ca c3 cc cc cc cc 66 90 90 90 90 90 90 90 90
[ 3316.025810][ T5124] RSP: 0000:ffffc90003bbfd78 EFLAGS: 00050202
[ 3316.031895][ T5124] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00000000566b38a8
[ 3316.039876][ T5124] RDX: 0000000000000000 RSI: ffffffff8baac7e0 RDI: ffffffff8bfe6da0
[ 3316.047862][ T5124] RBP: ffffc90003bbfec0 R08: ffffffff8f856cef R09: 1ffffffff1f0ad9d
[ 3316.055843][ T5124] R10: dffffc0000000000 R11: fffffbfff1f0ad9e R12: ffffc90003bbfe30
[ 3316.063829][ T5124] R13: ffffc90003bbffd8 R14: dffffc0000000000 R15: ffff88801f9c9538
[ 3316.071833][ T5124]  __rseq_handle_notify_resume+0x651/0x1490
[ 3316.077883][ T5124]  ? __pfx___rseq_handle_notify_resume+0x10/0x10
[ 3316.084237][ T5124]  ? irqentry_exit_to_user_mode+0x52/0x270
[ 3316.090115][ T5124]  irqentry_exit_to_user_mode+0xbb/0x270
[ 3316.095804][ T5124]  exc_page_fault+0x587/0x870
[ 3316.100541][ T5124]  asm_exc_page_fault+0x26/0x30
[ 3316.105426][ T5124] RIP: 0023:0xf736e5d8
[ 3316.109536][ T5124] Code: 4c 24 28 74 08 89 5c 24 38 89 74 24 3c 8b 74 24 58 8b 44 24 10 8b 54 24 14 2b 44 24 50 1b 54 24 54 3b 04 3e 8b 74 24 48 89 d3 <1b> 1c 3e 73 38 39 e8 89 d0 1b 44 24 30 0f 82 05 01 00 00 8b 5c 24
[ 3316.129192][ T5124] RSP: 002b:00000000f75efd70 EFLAGS: 00010283
[ 3316.135276][ T5124] RAX: 000000000000061c RBX: 0000000000000000 RCX: 0000000000000000
[ 3316.143254][ T5124] RDX: 0000000000000000 RSI: 0000000000b505a8 RDI: 00000000f74a4ff4
[ 3316.151261][ T5124] RBP: 0000000000000bb8 R08: 0000000000000000 R09: 0000000000000000
[ 3316.159254][ T5124] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 3316.167231][ T5124] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 3316.175223][ T5124]  </TASK>
[ 3316.207768][ T5124] memory: usage 307200kB, limit 307200kB, failcnt 193081
[ 3316.216724][ T5124] memory+swap: usage 307796kB, limit 9007199254740988kB, failcnt 0
[ 3316.224665][ T5124] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[ 3316.232398][ T5124] Memory cgroup stats for /syz3:
[ 3316.232528][ T5124] cache 0
[ 3316.247801][ T5124] rss 0
[ 3316.250645][ T5124] rss_huge 0
[ 3316.253872][ T5124] shmem 0
[ 3316.263540][ T5124] mapped_file 0
[ 3316.267696][ T5124] dirty 0
[ 3316.270665][ T5124] writeback 0
[ 3316.273969][ T5124] workingset_refault_anon 80393
[ 3316.279585][ T5124] workingset_refault_file 0
[ 3316.284133][ T5124] swap 610304
[ 3316.288015][ T5124] swapcached 0
[ 3316.291418][ T5124] pgpgin 283444
[ 3316.294924][ T5124] pgpgout 283444
[ 3316.299399][ T5124] pgfault 653661
[ 3316.303063][ T5124] pgmajfault 79044
[ 3316.308265][ T5124] inactive_anon 0
[ 3316.311931][ T5124] active_anon 0
[ 3316.315407][ T5124] inactive_file 0
[ 3316.319789][ T5124] active_file 0
[ 3316.323317][ T5124] unevictable 0
[ 3316.327920][ T5124] hierarchical_memory_limit 314572800
[ 3316.333327][ T5124] hierarchical_memsw_limit 9223372036854771712
[ 3316.340158][ T5124] total_cache 0
[ 3316.343760][ T5124] total_rss 0
[ 3316.347696][ T5124] total_rss_huge 0
[ 3316.351459][ T5124] total_shmem 0
[ 3316.354943][ T5124] total_mapped_file 0
[ 3316.359793][ T5124] total_dirty 0
[ 3316.363294][ T5124] total_writeback 0
[ 3316.367845][ T5124] total_workingset_refault_anon 80393
[ 3316.373256][ T5124] total_workingset_refault_file 0
[ 3316.378882][ T5124] total_swap 610304
[ 3316.382744][ T5124] total_swapcached 0
[ 3316.387268][ T5124] total_pgpgin 283444
[ 3316.391282][ T5124] total_pgpgout 283444
[ 3316.395445][ T5124] total_pgfault 653661
[ 3316.400351][ T5124] total_pgmajfault 79044
[ 3316.404644][ T5124] total_inactive_anon 0
[ 3316.409397][ T5124] total_active_anon 0
[ 3316.413417][ T5124] total_inactive_file 0
[ 3316.418956][ T5124] total_active_file 0
[ 3316.422976][ T5124] total_unevictable 0
[ 3316.427718][ T5124] anon_cost 0
[ 3316.431124][ T5124] file_cost 0
[ 3316.434445][ T5124] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=25654,uid=0
[ 3316.450218][ T5124] Memory cgroup out of memory: Killed process 25654 (syz-executor.3) total-vm:54476kB, anon-rss:308kB, file-rss:8960kB, shmem-rss:0kB, UID:0 pgtables:64kB oom_score_adj:1000
06:23:15 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x40, 0x4, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x3f9}}}]}]}}]}, 0x74}}, 0x0)

06:23:15 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x888, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x858, 0x2, [@TCA_BASIC_POLICE={0x854, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb00]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}, @TCA_POLICE_PEAKRATE64={0xc}]}]}}]}, 0x888}}, 0x0)

06:23:15 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x87c, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x84c, 0x2, [@TCA_BASIC_POLICE={0x848, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x900]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}]}]}}]}, 0x87c}}, 0x0)

06:23:15 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x888, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x858, 0x2, [@TCA_BASIC_POLICE={0x854, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000000]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}, @TCA_POLICE_PEAKRATE64={0xc}]}]}}]}, 0x888}}, 0x0)

[ 3319.412049][ T5123] syz-executor.2 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[ 3319.486465][ T5123] CPU: 0 PID: 5123 Comm: syz-executor.2 Not tainted 6.8.0-rc7-syzkaller-00250-g137e0ec05aeb #0
[ 3319.496961][ T5123] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3319.507061][ T5123] Call Trace:
[ 3319.510381][ T5123]  <TASK>
[ 3319.513348][ T5123]  dump_stack_lvl+0x1e7/0x2e0
[ 3319.518523][ T5123]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3319.523781][ T5123]  ? __pfx__printk+0x10/0x10
[ 3319.528524][ T5123]  ? ___ratelimit+0x4c4/0x670
[ 3319.533260][ T5123]  ? __pfx____ratelimit+0x10/0x10
[ 3319.538344][ T5123]  dump_header+0xda/0x6a0
[ 3319.542731][ T5123]  oom_kill_process+0x3a7/0x930
[ 3319.547640][ T5123]  out_of_memory+0xf67/0x1320
[ 3319.552379][ T5123]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3319.558064][ T5123]  ? __pfx___mutex_lock+0x10/0x10
[ 3319.563152][ T5123]  ? __pfx_out_of_memory+0x10/0x10
[ 3319.568338][ T5123]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3319.574120][ T5123]  ? __pfx_lock_release+0x10/0x10
[ 3319.579296][ T5123]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3319.585417][ T5123]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3319.590666][ T5123]  ? mem_cgroup_iter+0x3e9/0x560
[ 3319.595664][ T5123]  try_charge_memcg+0xda2/0x18a0
[ 3319.600654][ T5123]  ? mark_lock+0x9a/0x350
[ 3319.605061][ T5123]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3319.610518][ T5123]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 3319.616729][ T5123]  charge_memcg+0xa2/0x160
[ 3319.621212][ T5123]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 3319.627350][ T5123]  __read_swap_cache_async+0x480/0x8b0
[ 3319.632870][ T5123]  ? mark_lock+0x9a/0x350
[ 3319.637275][ T5123]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 3319.643331][ T5123]  ? blk_start_plug+0x6f/0x1b0
[ 3319.648159][ T5123]  swap_cluster_readahead+0x398/0x810
[ 3319.653606][ T5123]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 3319.659567][ T5123]  ? __pfx_lock_release+0x10/0x10
[ 3319.664662][ T5123]  ? xas_descend+0x37e/0x470
[ 3319.669335][ T5123]  swapin_readahead+0x1ea/0x1070
[ 3319.674338][ T5123]  ? filemap_get_entry+0x127/0x4e0
[ 3319.679533][ T5123]  ? __pfx_swapin_readahead+0x10/0x10
[ 3319.684992][ T5123]  ? __filemap_get_folio+0x935/0xbc0
[ 3319.690347][ T5123]  ? swap_cache_get_folio+0x9f/0x570
[ 3319.695745][ T5123]  do_swap_page+0x791/0x3f40
[ 3319.700415][ T5123]  ? rcu_is_watching+0x15/0xb0
[ 3319.705260][ T5123]  ? do_swap_page+0x154/0x3f40
[ 3319.710083][ T5123]  ? __pfx_do_swap_page+0x10/0x10
[ 3319.715169][ T5123]  ? pte_offset_map_nolock+0x137/0x1f0
[ 3319.720697][ T5123]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 3319.726580][ T5123]  __handle_mm_fault+0x15e8/0x72d0
[ 3319.731796][ T5123]  ? reacquire_held_locks+0x3eb/0x690
[ 3319.737225][ T5123]  ? __pfx___handle_mm_fault+0x10/0x10
[ 3319.742764][ T5123]  ? __pfx_reacquire_held_locks+0x10/0x10
[ 3319.748576][ T5123]  ? mtree_range_walk+0x6fd/0x8e0
[ 3319.753664][ T5123]  ? lock_vma_under_rcu+0x18a/0x730
[ 3319.758938][ T5123]  ? __pfx_lock_release+0x10/0x10
[ 3319.764044][ T5123]  ? lock_vma_under_rcu+0x2f9/0x730
[ 3319.769313][ T5123]  ? lock_vma_under_rcu+0x18a/0x730
[ 3319.774566][ T5123]  ? __pfx_lock_vma_under_rcu+0x10/0x10
[ 3319.780219][ T5123]  handle_mm_fault+0x3c1/0x8a0
[ 3319.785062][ T5123]  exc_page_fault+0x456/0x870
[ 3319.789810][ T5123]  asm_exc_page_fault+0x26/0x30
[ 3319.794710][ T5123] RIP: 0023:0xf73719a8
[ 3319.798825][ T5123] Code: 26 00 55 57 e8 8f cb f9 ff 81 c7 6d 16 0d 00 56 53 83 ec 0c f6 44 24 20 02 74 0f 83 c4 0c 5b 5e 5f 5d c3 8d b4 26 00 00 00 00 <65> a1 08 00 00 00 8b 88 80 00 00 00 8d 98 80 00 00 00 89 ca 89 c8
[ 3319.818478][ T5123] RSP: 002b:00000000f758dc60 EFLAGS: 00010246
[ 3319.824597][ T5123] RAX: 0000000000000000 RBX: 00000000f7442ff4 RCX: 0000000000000000
[ 3319.832616][ T5123] RDX: 00000000f758dcb4 RSI: 0000000000000000 RDI: 00000000f7442ff4
[ 3319.840631][ T5123] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 3319.848650][ T5123] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 3319.856667][ T5123] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 3319.864704][ T5123]  </TASK>
[ 3319.902637][ T5123] memory: usage 307200kB, limit 307200kB, failcnt 122254
[ 3319.931803][ T5123] memory+swap: usage 307668kB, limit 9007199254740988kB, failcnt 0
[ 3319.952100][ T5123] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0
[ 3319.981031][ T5123] Memory cgroup stats for /syz2:
[ 3319.981186][ T5123] cache 0
[ 3320.006513][ T5123] rss 0
[ 3320.009346][ T5123] rss_huge 0
[ 3320.024358][ T5123] shmem 0
[ 3320.031524][ T5123] mapped_file 0
[ 3320.055604][ T5123] dirty 0
[ 3320.058774][ T5123] writeback 0
[ 3320.062094][ T5123] workingset_refault_anon 43724
[ 3320.082352][ T5123] workingset_refault_file 0
[ 3320.098362][ T5123] swap 479232
[ 3320.101719][ T5123] swapcached 12288
[ 3320.105473][ T5123] pgpgin 248201
[ 3320.131119][ T5123] pgpgout 248198
[ 3320.151247][ T5123] pgfault 589996
[ 3320.154960][ T5123] pgmajfault 43188
[ 3320.172789][ T5123] inactive_anon 0
[ 3320.177222][ T5123] active_anon 12288
[ 3320.201594][ T5123] inactive_file 0
[ 3320.210133][ T5123] active_file 0
[ 3320.224994][ T5123] unevictable 0
[ 3320.237609][ T5123] hierarchical_memory_limit 314572800
[ 3320.248186][ T5123] hierarchical_memsw_limit 9223372036854771712
[ 3320.267098][ T5123] total_cache 0
[ 3320.270736][ T5123] total_rss 0
[ 3320.276919][ T5123] total_rss_huge 0
[ 3320.287088][ T5123] total_shmem 0
[ 3320.291094][ T5123] total_mapped_file 0
[ 3320.302216][ T5123] total_dirty 0
[ 3320.315783][ T5123] total_writeback 0
[ 3320.329205][ T5123] total_workingset_refault_anon 43724
[ 3320.339894][ T5123] total_workingset_refault_file 0
[ 3320.349144][ T5123] total_swap 479232
[ 3320.362078][ T5123] total_swapcached 12288
[ 3320.367957][ T5123] total_pgpgin 248201
[ 3320.381574][ T5123] total_pgpgout 248198
[ 3320.386584][ T5123] total_pgfault 589996
[ 3320.398230][ T5123] total_pgmajfault 43188
[ 3320.411013][ T5123] total_inactive_anon 0
[ 3320.415417][ T5123] total_active_anon 12288
[ 3320.429614][ T5123] total_inactive_file 0
[ 3320.437943][ T5123] total_active_file 0
[ 3320.453698][ T5123] total_unevictable 0
[ 3320.459073][ T5123] anon_cost 0
[ 3320.472688][ T5123] file_cost 0
[ 3320.482377][ T5123] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=25660,uid=0
[ 3320.537574][ T5123] Memory cgroup out of memory: Killed process 25660 (syz-executor.2) total-vm:54344kB, anon-rss:316kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:64kB oom_score_adj:1000
[ 3320.596554][T25659] syz-executor.0 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[ 3320.624483][T25659] CPU: 0 PID: 25659 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00250-g137e0ec05aeb #0
[ 3320.635019][T25659] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3320.645129][T25659] Call Trace:
[ 3320.648462][T25659]  <TASK>
[ 3320.651445][T25659]  dump_stack_lvl+0x1e7/0x2e0
[ 3320.656190][T25659]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3320.661459][T25659]  ? __pfx__printk+0x10/0x10
[ 3320.666101][T25659]  ? ___ratelimit+0x4c4/0x670
[ 3320.670843][T25659]  ? __pfx____ratelimit+0x10/0x10
[ 3320.675936][T25659]  dump_header+0xda/0x6a0
[ 3320.680336][T25659]  oom_kill_process+0x3a7/0x930
[ 3320.685264][T25659]  out_of_memory+0xf67/0x1320
[ 3320.689999][T25659]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3320.695660][T25659]  ? __pfx___mutex_lock+0x10/0x10
[ 3320.700706][T25659]  ? __pfx_out_of_memory+0x10/0x10
[ 3320.705849][T25659]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3320.711425][T25659]  ? __pfx_lock_release+0x10/0x10
[ 3320.716479][T25659]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3320.722568][T25659]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3320.727808][T25659]  ? mem_cgroup_iter+0x3e9/0x560
[ 3320.732791][T25659]  try_charge_memcg+0xda2/0x18a0
[ 3320.737754][T25659]  ? mark_lock+0x9a/0x350
[ 3320.742115][T25659]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3320.747548][T25659]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 3320.753735][T25659]  charge_memcg+0xa2/0x160
[ 3320.758177][T25659]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 3320.764294][T25659]  __read_swap_cache_async+0x480/0x8b0
[ 3320.769791][T25659]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 3320.775793][T25659]  ? mlock_drain_local+0x79/0x490
[ 3320.780836][T25659]  ? mlock_drain_local+0x79/0x490
[ 3320.785885][T25659]  ? mlock_drain_local+0x28c/0x490
[ 3320.791078][T25659]  swap_cluster_readahead+0x67c/0x810
[ 3320.796501][T25659]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 3320.802441][T25659]  ? __pfx_lock_release+0x10/0x10
[ 3320.807494][T25659]  ? xas_descend+0x37e/0x470
[ 3320.812108][T25659]  swapin_readahead+0x1ea/0x1070
[ 3320.817068][T25659]  ? filemap_get_entry+0x127/0x4e0
[ 3320.822212][T25659]  ? __pfx_swapin_readahead+0x10/0x10
[ 3320.827636][T25659]  ? __filemap_get_folio+0x935/0xbc0
[ 3320.832976][T25659]  ? swap_cache_get_folio+0x9f/0x570
[ 3320.838300][T25659]  do_swap_page+0x791/0x3f40
[ 3320.843061][T25659]  ? rcu_is_watching+0x15/0xb0
[ 3320.847875][T25659]  ? do_swap_page+0x154/0x3f40
[ 3320.852663][T25659]  ? __pfx_do_swap_page+0x10/0x10
[ 3320.857811][T25659]  ? pte_offset_map_nolock+0x137/0x1f0
[ 3320.863307][T25659]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 3320.869138][T25659]  __handle_mm_fault+0x15e8/0x72d0
[ 3320.874291][T25659]  ? reacquire_held_locks+0x3eb/0x690
[ 3320.879679][T25659]  ? __pfx___handle_mm_fault+0x10/0x10
[ 3320.885162][T25659]  ? __pfx_reacquire_held_locks+0x10/0x10
[ 3320.890909][T25659]  ? mtree_range_walk+0x6fd/0x8e0
[ 3320.895953][T25659]  ? lock_vma_under_rcu+0x18a/0x730
[ 3320.901168][T25659]  ? __pfx_lock_release+0x10/0x10
[ 3320.906210][T25659]  ? lock_vma_under_rcu+0x2f9/0x730
[ 3320.911445][T25659]  ? lock_vma_under_rcu+0x18a/0x730
[ 3320.917208][T25659]  ? __pfx_lock_vma_under_rcu+0x10/0x10
[ 3320.922779][T25659]  handle_mm_fault+0x3c1/0x8a0
[ 3320.927569][T25659]  exc_page_fault+0x456/0x870
[ 3320.932277][T25659]  asm_exc_page_fault+0x26/0x30
[ 3320.937151][T25659] RIP: 0023:0xf72fe603
[ 3320.941233][T25659] Code: 00 00 0f b6 c0 c7 42 04 00 00 00 00 89 02 89 d8 8b 54 24 34 0f ac f0 18 0f b6 c0 c7 42 04 00 00 00 00 89 02 8b 54 24 04 89 f0 <8b> 8a 90 05 b5 00 f7 a2 8c 05 b5 00 0f af ce 01 ca 01 f8 8b 7c 24
[ 3320.960873][T25659] RSP: 002b:00000000f7589ad0 EFLAGS: 00010246
[ 3320.966955][T25659] RAX: 0000000000000000 RBX: 0000000000000004 RCX: 00000000f7589ca0
[ 3320.974942][T25659] RDX: 00000000f743eff4 RSI: 0000000000000000 RDI: 0000000000000010
[ 3320.982936][T25659] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 3320.990999][T25659] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 3320.998979][T25659] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 3321.007062][T25659]  </TASK>
[ 3321.156396][T25659] memory: usage 307200kB, limit 307200kB, failcnt 151076
[ 3321.165750][T25659] memory+swap: usage 307904kB, limit 9007199254740988kB, failcnt 0
[ 3321.174435][T25659] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0
[ 3321.182966][T25659] Memory cgroup stats for /syz0:
[ 3321.183113][T25659] cache 0
[ 3321.191940][T25659] rss 12288
[ 3321.195336][T25659] rss_huge 0
[ 3321.199051][T25659] shmem 0
[ 3321.202269][T25659] mapped_file 0
[ 3321.205942][T25659] dirty 0
[ 3321.209609][T25659] writeback 0
[ 3321.213164][T25659] workingset_refault_anon 55630
[ 3321.218726][T25659] workingset_refault_file 0
[ 3321.223542][T25659] swap 720896
[ 3321.227453][T25659] swapcached 12288
[ 3321.231448][T25659] pgpgin 250330
[ 3321.235375][T25659] pgpgout 250327
[ 3321.244277][T25659] pgfault 579803
[ 3321.253108][T25659] pgmajfault 54171
[ 3321.257328][T25659] inactive_anon 8192
[ 3321.261481][T25659] active_anon 0
[ 3321.265191][T25659] inactive_file 0
[ 3321.269520][T25659] active_file 0
[ 3321.273252][T25659] unevictable 0
[ 3321.277294][T25659] hierarchical_memory_limit 314572800
[ 3321.282911][T25659] hierarchical_memsw_limit 9223372036854771712
[ 3321.290145][T25659] total_cache 0
[ 3321.293805][T25659] total_rss 12288
[ 3321.302441][T25659] total_rss_huge 0
[ 3321.306831][T25659] total_shmem 0
[ 3321.310513][T25659] total_mapped_file 0
[ 3321.314729][T25659] total_dirty 0
[ 3321.323656][T25659] total_writeback 0
[ 3321.328174][T25659] total_workingset_refault_anon 55630
[ 3321.333879][T25659] total_workingset_refault_file 0
[ 3321.344674][T25659] total_swap 720896
[ 3321.350693][T25659] total_swapcached 12288
[ 3321.355184][T25659] total_pgpgin 250330
[ 3321.360134][T25659] total_pgpgout 250327
[ 3321.364411][T25659] total_pgfault 579803
[ 3321.373704][T25659] total_pgmajfault 54171
[ 3321.378414][T25659] total_inactive_anon 8192
[ 3321.383058][T25659] total_active_anon 0
[ 3321.392680][T25659] total_inactive_file 0
[ 3321.397323][T25659] total_active_file 0
[ 3321.401536][T25659] total_unevictable 0
[ 3321.405758][T25659] anon_cost 0
[ 3321.413894][T25659] file_cost 0
[ 3321.418141][T25659] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=25659,uid=0
[ 3321.439563][T25659] Memory cgroup out of memory: Killed process 25659 (syz-executor.0) total-vm:54344kB, anon-rss:316kB, file-rss:8704kB, shmem-rss:0kB, UID:0 pgtables:64kB oom_score_adj:1000
06:23:18 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x888, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x858, 0x2, [@TCA_BASIC_POLICE={0x854, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1100]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}, @TCA_POLICE_PEAKRATE64={0xc}]}]}}]}, 0x888}}, 0x0)

06:23:18 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x87c, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x84c, 0x2, [@TCA_BASIC_POLICE={0x848, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa00]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}]}]}}]}, 0x87c}}, 0x0)

[ 3321.783808][T25665] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3321.811232][T25665] CPU: 1 PID: 25665 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00250-g137e0ec05aeb #0
[ 3321.821726][T25665] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3321.831830][T25665] Call Trace:
[ 3321.835150][T25665]  <TASK>
[ 3321.838120][T25665]  dump_stack_lvl+0x1e7/0x2e0
[ 3321.842861][T25665]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3321.848129][T25665]  ? __pfx__printk+0x10/0x10
[ 3321.852778][T25665]  ? ___ratelimit+0x4c4/0x670
[ 3321.857555][T25665]  ? __pfx____ratelimit+0x10/0x10
[ 3321.862644][T25665]  dump_header+0xda/0x6a0
[ 3321.867045][T25665]  oom_kill_process+0x3a7/0x930
[ 3321.871965][T25665]  out_of_memory+0xf67/0x1320
[ 3321.877221][T25665]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3321.882909][T25665]  ? __pfx___mutex_lock+0x10/0x10
[ 3321.887996][T25665]  ? __pfx_out_of_memory+0x10/0x10
[ 3321.893185][T25665]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3321.898796][T25665]  ? __pfx_lock_release+0x10/0x10
[ 3321.903888][T25665]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3321.910023][T25665]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3321.915279][T25665]  ? mem_cgroup_iter+0x3e9/0x560
[ 3321.920285][T25665]  try_charge_memcg+0xda2/0x18a0
[ 3321.925313][T25665]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3321.930786][T25665]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3321.936564][T25665]  ? __pfx_lock_release+0x10/0x10
[ 3321.941662][T25665]  ? memcg_account_kmem+0x1e7/0x210
[ 3321.946946][T25665]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3321.952813][T25665]  __memcg_kmem_charge_page+0xe1/0x250
[ 3321.958344][T25665]  memcg_charge_kernel_stack+0x210/0x550
[ 3321.964042][T25665]  dup_task_struct+0x15d/0x7d0
[ 3321.968870][T25665]  copy_process+0x5d5/0x3fc0
[ 3321.973535][T25665]  ? __might_fault+0xa9/0x120
[ 3321.978268][T25665]  ? __pfx_lock_release+0x10/0x10
[ 3321.983363][T25665]  ? __pfx_copy_process+0x10/0x10
[ 3321.988445][T25665]  ? __might_fault+0xc5/0x120
[ 3321.993185][T25665]  ? __asan_memset+0x23/0x50
[ 3321.997840][T25665]  kernel_clone+0x21d/0x8d0
[ 3322.002403][T25665]  ? __pfx_kernel_clone+0x10/0x10
[ 3322.007490][T25665]  ? __pfx___might_resched+0x10/0x10
[ 3322.012838][T25665]  __se_sys_clone3+0x2cb/0x350
[ 3322.017673][T25665]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3322.023045][T25665]  ? int80_emulation+0xea/0x210
[ 3322.027956][T25665]  int80_emulation+0x129/0x210
[ 3322.032788][T25665]  asm_int80_emulation+0x1a/0x20
[ 3322.037775][T25665] RIP: 0023:0xf7372060
[ 3322.041890][T25665] Code: 4c 24 04 85 c9 0f 84 df 0d fe ff 8b 54 24 0c 85 d2 0f 84 d3 0d fe ff 53 56 8b 74 24 18 89 cb 8b 4c 24 10 b8 b3 01 00 00 cd 80 <85> c0 74 09 5e 5b 0f 8c b4 0d fe ff c3 31 ed 83 e4 f0 83 ec 0c 56
[ 3322.061559][T25665] RSP: 002b:00000000f75898e4 EFLAGS: 00000282 ORIG_RAX: 00000000000001b3
[ 3322.070049][T25665] RAX: ffffffffffffffda RBX: 00000000f7589950 RCX: 0000000000000058
[ 3322.078060][T25665] RDX: 00000000f7322eb0 RSI: 00000000f5ee2b40 RDI: 00000000ffffffd8
[ 3322.086074][T25665] RBP: 000000000000000b R08: 0000000000000000 R09: 0000000000000000
[ 3322.094087][T25665] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 3322.102103][T25665] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 3322.110152][T25665]  </TASK>
[ 3322.196475][T25665] memory: usage 307200kB, limit 307200kB, failcnt 151244
[ 3322.199288][T25502] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[ 3322.214671][T25502] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[ 3322.222960][T25502] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[ 3322.231883][T25502] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[ 3322.239959][T25502] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
06:23:18 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x888, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x858, 0x2, [@TCA_BASIC_POLICE={0x854, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41020000]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}, @TCA_POLICE_PEAKRATE64={0xc}]}]}}]}, 0x888}}, 0x0)

[ 3322.247467][T25502] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[ 3322.280281][T25665] memory+swap: usage 307924kB, limit 9007199254740988kB, failcnt 0
[ 3322.330214][T25665] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0
[ 3322.357546][T25665] Memory cgroup stats for /syz0:
[ 3322.357706][T25665] cache 0
[ 3322.406379][T25665] rss 12288
[ 3322.409649][T25665] rss_huge 0
[ 3322.412879][T25665] shmem 0
[ 3322.416198][T25665] mapped_file 0
[ 3322.456387][T25665] dirty 0
[ 3322.459418][T25665] writeback 0
[ 3322.462730][T25665] workingset_refault_anon 55703
[ 3322.506518][T25665] workingset_refault_file 0
[ 3322.511093][T25665] swap 741376
[ 3322.514406][T25665] swapcached 12288
[ 3322.556384][T25665] pgpgin 250412
[ 3322.559915][T25665] pgpgout 250409
[ 3322.563490][T25665] pgfault 579927
[ 3322.596346][T25665] pgmajfault 54233
[ 3322.600139][T25665] inactive_anon 8192
[ 3322.604065][T25665] active_anon 4096
[ 3322.627550][T25665] inactive_file 0
[ 3322.641221][T25665] active_file 0
[ 3322.644742][T25665] unevictable 0
[ 3322.669261][T25665] hierarchical_memory_limit 314572800
[ 3322.674697][T25665] hierarchical_memsw_limit 9223372036854771712
[ 3322.697743][T25665] total_cache 0
[ 3322.711657][T25665] total_rss 12288
[ 3322.736384][T25665] total_rss_huge 0
[ 3322.740173][T25665] total_shmem 0
[ 3322.743678][T25665] total_mapped_file 0
[ 3322.776505][T25665] total_dirty 0
[ 3322.780039][T25665] total_writeback 0
[ 3322.783884][T25665] total_workingset_refault_anon 55703
[ 3322.829375][T25665] total_workingset_refault_file 0
[ 3322.834482][T25665] total_swap 741376
[ 3322.866345][T25665] total_swapcached 12288
[ 3322.870676][T25665] total_pgpgin 250412
[ 3322.874692][T25665] total_pgpgout 250409
[ 3322.916450][T25665] total_pgfault 579927
[ 3322.920614][T25665] total_pgmajfault 54233
[ 3322.924898][T25665] total_inactive_anon 8192
[ 3322.936658][T25665] total_active_anon 4096
[ 3322.941001][T25665] total_inactive_file 0
[ 3322.966544][T25665] total_active_file 0
[ 3322.970614][T25665] total_unevictable 0
[ 3322.974630][T25665] anon_cost 0
[ 3322.989369][T25665] file_cost 0
[ 3322.992776][T25665] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=25665,uid=0
[ 3323.045282][T25502] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[ 3323.049029][T25665] Memory cgroup out of memory: Killed process 25665 (syz-executor.0) total-vm:54344kB, anon-rss:316kB, file-rss:8704kB, shmem-rss:0kB, UID:0 pgtables:64kB oom_score_adj:1000
[ 3323.073950][T25502] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[ 3323.084085][T25502] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[ 3323.094245][T25502] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[ 3323.099523][T25664] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3323.126468][T25664] CPU: 1 PID: 25664 Comm: syz-executor.2 Not tainted 6.8.0-rc7-syzkaller-00250-g137e0ec05aeb #0
[ 3323.136965][T25664] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3323.147114][T25664] Call Trace:
[ 3323.150466][T25664]  <TASK>
[ 3323.153440][T25664]  dump_stack_lvl+0x1e7/0x2e0
[ 3323.158180][T25664]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3323.163525][T25664]  ? __pfx__printk+0x10/0x10
[ 3323.168170][T25664]  ? ___ratelimit+0x4c4/0x670
[ 3323.172904][T25664]  ? __pfx____ratelimit+0x10/0x10
[ 3323.177983][T25664]  dump_header+0xda/0x6a0
[ 3323.182385][T25664]  oom_kill_process+0x3a7/0x930
[ 3323.187294][T25664]  out_of_memory+0xf67/0x1320
[ 3323.192035][T25664]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3323.197728][T25664]  ? __pfx___mutex_lock+0x10/0x10
[ 3323.202810][T25664]  ? __pfx_out_of_memory+0x10/0x10
[ 3323.207983][T25664]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3323.213584][T25664]  ? __pfx_lock_release+0x10/0x10
[ 3323.218666][T25664]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3323.224792][T25664]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3323.230038][T25664]  ? mem_cgroup_iter+0x3e9/0x560
[ 3323.235008][T25664]  try_charge_memcg+0xda2/0x18a0
[ 3323.239982][T25664]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3323.245369][T25664]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3323.251105][T25664]  ? __pfx_lock_release+0x10/0x10
[ 3323.256150][T25664]  ? memcg_account_kmem+0x1e7/0x210
[ 3323.261375][T25664]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3323.267202][T25664]  __memcg_kmem_charge_page+0xe1/0x250
[ 3323.272683][T25664]  memcg_charge_kernel_stack+0x210/0x550
[ 3323.278337][T25664]  dup_task_struct+0x40d/0x7d0
[ 3323.283128][T25664]  copy_process+0x5d5/0x3fc0
[ 3323.287753][T25664]  ? __might_fault+0xa9/0x120
[ 3323.292446][T25664]  ? __pfx_lock_release+0x10/0x10
[ 3323.297496][T25664]  ? __pfx_copy_process+0x10/0x10
[ 3323.302625][T25664]  ? __might_fault+0xc5/0x120
[ 3323.307325][T25664]  ? __asan_memset+0x23/0x50
[ 3323.311940][T25664]  kernel_clone+0x21d/0x8d0
[ 3323.316463][T25664]  ? __pfx_kernel_clone+0x10/0x10
[ 3323.321525][T25664]  __se_sys_clone3+0x2cb/0x350
[ 3323.326317][T25664]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3323.331641][T25664]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3323.337650][T25664]  ? exc_page_fault+0x587/0x870
[ 3323.342549][T25664]  ? int80_emulation+0xea/0x210
[ 3323.347424][T25664]  int80_emulation+0x129/0x210
[ 3323.352213][T25664]  asm_int80_emulation+0x1a/0x20
[ 3323.357161][T25664] RIP: 0023:0xf7376060
[ 3323.361244][T25664] Code: 4c 24 04 85 c9 0f 84 df 0d fe ff 8b 54 24 0c 85 d2 0f 84 d3 0d fe ff 53 56 8b 74 24 18 89 cb 8b 4c 24 10 b8 b3 01 00 00 cd 80 <85> c0 74 09 5e 5b 0f 8c b4 0d fe ff c3 31 ed 83 e4 f0 83 ec 0c 56
[ 3323.380869][T25664] RSP: 002b:00000000f758d8e4 EFLAGS: 00000282 ORIG_RAX: 00000000000001b3
[ 3323.389296][T25664] RAX: ffffffffffffffda RBX: 00000000f758d950 RCX: 0000000000000058
[ 3323.397281][T25664] RDX: 00000000f7326eb0 RSI: 00000000f5ee6b40 RDI: 00000000ffffffd8
[ 3323.405271][T25664] RBP: 000000000000000b R08: 0000000000000000 R09: 0000000000000000
[ 3323.413252][T25664] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 3323.421234][T25664] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 3323.429244][T25664]  </TASK>
[ 3323.434229][T25502] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3
[ 3323.457879][T25502] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[ 3323.475331][T25664] memory: usage 307180kB, limit 307200kB, failcnt 122602
[ 3323.489417][T25664] memory+swap: usage 307648kB, limit 9007199254740988kB, failcnt 0
[ 3323.502771][T25664] kmem: usage 307168kB, limit 9007199254740988kB, failcnt 0
[ 3323.528932][T25664] Memory cgroup stats for /syz2:
[ 3323.529093][T25664] cache 0
[ 3323.541544][T25664] rss 0
[ 3323.544375][T25664] rss_huge 0
[ 3323.547821][T25664] shmem 0
[ 3323.550859][T25664] mapped_file 0
[ 3323.554371][T25664] dirty 0
[ 3323.557648][T25664] writeback 0
[ 3323.560979][T25664] workingset_refault_anon 43843
[ 3323.565857][T25664] workingset_refault_file 0
[ 3323.570520][T25664] swap 479232
[ 3323.573838][T25664] swapcached 12288
[ 3323.577848][T25664] pgpgin 248329
[ 3323.581341][T25664] pgpgout 248326
[ 3323.584918][T25664] pgfault 590189
[ 3323.588585][T25664] pgmajfault 43296
[ 3323.592337][T25664] inactive_anon 0
[ 3323.595999][T25664] active_anon 12288
[ 3323.600281][T25664] inactive_file 0
[ 3323.603960][T25664] active_file 0
[ 3323.607575][T25664] unevictable 0
[ 3323.611063][T25664] hierarchical_memory_limit 314572800
[ 3323.616628][T25664] hierarchical_memsw_limit 9223372036854771712
[ 3323.622830][T25664] total_cache 0
[ 3323.626457][T25664] total_rss 0
[ 3323.629792][T25664] total_rss_huge 0
[ 3323.633549][T25664] total_shmem 0
[ 3323.637142][T25664] total_mapped_file 0
[ 3323.641168][T25664] total_dirty 0
[ 3323.644662][T25664] total_writeback 0
[ 3323.649355][T25664] total_workingset_refault_anon 43843
[ 3323.654767][T25664] total_workingset_refault_file 0
[ 3323.660009][T25664] total_swap 479232
[ 3323.663849][T25664] total_swapcached 12288
[ 3323.668166][T25664] total_pgpgin 248329
[ 3323.672201][T25664] total_pgpgout 248326
[ 3323.676489][T25664] total_pgfault 590189
[ 3323.680595][T25664] total_pgmajfault 43296
[ 3323.684870][T25664] total_inactive_anon 0
[ 3323.689158][T25664] total_active_anon 12288
[ 3323.693541][T25664] total_inactive_file 0
[ 3323.697833][T25664] total_active_file 0
[ 3323.701855][T25664] total_unevictable 0
[ 3323.705872][T25664] anon_cost 0
[ 3323.709279][T25664] file_cost 0
[ 3323.712615][T25664] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=25664,uid=0
06:23:20 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x87c, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x84c, 0x2, [@TCA_BASIC_POLICE={0x848, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb00]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}]}]}}]}, 0x87c}}, 0x0)

[ 3323.728571][T25664] Memory cgroup out of memory: Killed process 25664 (syz-executor.2) total-vm:54344kB, anon-rss:316kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:64kB oom_score_adj:1000
06:23:20 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x888, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x858, 0x2, [@TCA_BASIC_POLICE={0x854, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1400]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}, @TCA_POLICE_PEAKRATE64={0xc}]}]}}]}, 0x888}}, 0x0)

[ 3323.994832][ T5119] syz-executor.0 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[ 3324.023765][ T5119] CPU: 0 PID: 5119 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00250-g137e0ec05aeb #0
[ 3324.034171][ T5119] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3324.044278][ T5119] Call Trace:
[ 3324.047615][ T5119]  <TASK>
[ 3324.050604][ T5119]  dump_stack_lvl+0x1e7/0x2e0
[ 3324.055365][ T5119]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3324.060666][ T5119]  ? __pfx__printk+0x10/0x10
[ 3324.065318][ T5119]  ? ___ratelimit+0x4c4/0x670
[ 3324.070069][ T5119]  ? __pfx____ratelimit+0x10/0x10
[ 3324.075164][ T5119]  dump_header+0xda/0x6a0
[ 3324.079567][ T5119]  oom_kill_process+0x3a7/0x930
[ 3324.084508][ T5119]  out_of_memory+0xf67/0x1320
[ 3324.089251][ T5119]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3324.094944][ T5119]  ? __pfx___mutex_lock+0x10/0x10
[ 3324.100030][ T5119]  ? __pfx_out_of_memory+0x10/0x10
[ 3324.105218][ T5119]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3324.110824][ T5119]  ? __pfx_lock_release+0x10/0x10
[ 3324.115916][ T5119]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3324.122052][ T5119]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3324.127317][ T5119]  ? mem_cgroup_iter+0x3e9/0x560
[ 3324.132340][ T5119]  try_charge_memcg+0xda2/0x18a0
[ 3324.137315][ T5119]  ? mark_lock+0x9a/0x350
[ 3324.141709][ T5119]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3324.147252][ T5119]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 3324.153458][ T5119]  charge_memcg+0xa2/0x160
[ 3324.157927][ T5119]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 3324.164020][ T5119]  __read_swap_cache_async+0x480/0x8b0
[ 3324.169521][ T5119]  ? mark_lock+0x9a/0x350
[ 3324.173888][ T5119]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 3324.179916][ T5119]  ? blk_start_plug+0x6f/0x1b0
[ 3324.184710][ T5119]  swap_cluster_readahead+0x398/0x810
[ 3324.190117][ T5119]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 3324.196063][ T5119]  ? __pfx_lock_release+0x10/0x10
[ 3324.201136][ T5119]  ? xas_descend+0x37e/0x470
[ 3324.205775][ T5119]  swapin_readahead+0x1ea/0x1070
[ 3324.210826][ T5119]  ? filemap_get_entry+0x127/0x4e0
[ 3324.215974][ T5119]  ? __pfx_swapin_readahead+0x10/0x10
[ 3324.221374][ T5119]  ? __filemap_get_folio+0x935/0xbc0
[ 3324.226704][ T5119]  ? swap_cache_get_folio+0x9f/0x570
[ 3324.232016][ T5119]  do_swap_page+0x791/0x3f40
[ 3324.236623][ T5119]  ? rcu_is_watching+0x15/0xb0
[ 3324.241420][ T5119]  ? __lock_acquire+0x1345/0x1fd0
[ 3324.246483][ T5119]  ? do_swap_page+0x154/0x3f40
[ 3324.251259][ T5119]  ? __pfx_do_swap_page+0x10/0x10
[ 3324.256301][ T5119]  ? pte_offset_map_nolock+0x137/0x1f0
[ 3324.261789][ T5119]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 3324.267624][ T5119]  __handle_mm_fault+0x15e8/0x72d0
[ 3324.272775][ T5119]  ? reacquire_held_locks+0x3eb/0x690
[ 3324.278159][ T5119]  ? __pfx___handle_mm_fault+0x10/0x10
[ 3324.283653][ T5119]  ? __pfx_reacquire_held_locks+0x10/0x10
[ 3324.289398][ T5119]  ? mtree_range_walk+0x6fd/0x8e0
[ 3324.294470][ T5119]  ? lock_vma_under_rcu+0x18a/0x730
[ 3324.299705][ T5119]  ? __pfx_lock_release+0x10/0x10
[ 3324.304756][ T5119]  ? lock_vma_under_rcu+0x2f9/0x730
[ 3324.310001][ T5119]  ? lock_vma_under_rcu+0x18a/0x730
[ 3324.315223][ T5119]  ? __pfx_lock_vma_under_rcu+0x10/0x10
[ 3324.320788][ T5119]  handle_mm_fault+0x3c1/0x8a0
[ 3324.325577][ T5119]  exc_page_fault+0x456/0x870
[ 3324.330372][ T5119]  asm_exc_page_fault+0x26/0x30
[ 3324.335246][ T5119] RIP: 0023:0xf72e8579
[ 3324.339325][ T5119] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[ 3324.358955][ T5119] RSP: 002b:00000000f7589c80 EFLAGS: 00010206
[ 3324.365035][ T5119] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00000000f72e8579
[ 3324.373039][ T5119] RDX: 00000000f7589cb4 RSI: 00000000f7589cac RDI: 00000000f7589cb4
[ 3324.381031][ T5119] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 3324.389011][ T5119] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 3324.396994][ T5119] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 3324.405009][ T5119]  </TASK>
[ 3324.504519][ T5119] memory: usage 307200kB, limit 307200kB, failcnt 151481
[ 3324.512290][T25502] Bluetooth: hci5: command 0x0409 tx timeout
[ 3324.545061][ T5119] memory+swap: usage 307908kB, limit 9007199254740988kB, failcnt 0
[ 3324.570323][ T5119] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[ 3324.586438][ T5119] Memory cgroup stats for /syz0:
[ 3324.586594][ T5119] cache 0
[ 3324.594536][ T5119] rss 0
[ 3324.610164][ T5119] rss_huge 0
[ 3324.613422][ T5119] shmem 0
[ 3324.629305][ T5119] mapped_file 0
[ 3324.632830][ T5119] dirty 0
[ 3324.635797][ T5119] writeback 0
[ 3324.654540][ T5119] workingset_refault_anon 55761
[ 3324.665205][ T5119] workingset_refault_file 0
[ 3324.679603][ T5119] swap 753664
[ 3324.687909][ T5119] swapcached 0
[ 3324.691478][ T5119] pgpgin 250485
[ 3324.694968][ T5119] pgpgout 250485
[ 3324.706377][ T5119] pgfault 580038
[ 3324.710002][ T5119] pgmajfault 54289
[ 3324.713766][ T5119] inactive_anon 0
[ 3324.726361][ T5119] active_anon 0
[ 3324.729901][ T5119] inactive_file 0
[ 3324.733568][ T5119] active_file 0
[ 3324.745687][ T5119] unevictable 0
[ 3324.749999][ T5119] hierarchical_memory_limit 314572800
[ 3324.755806][ T5119] hierarchical_memsw_limit 9223372036854771712
[ 3324.776181][ T5119] total_cache 0
[ 3324.786376][ T5119] total_rss 0
[ 3324.789730][ T5119] total_rss_huge 0
[ 3324.793561][ T5119] total_shmem 0
[ 3324.805987][ T5119] total_mapped_file 0
[ 3324.810544][ T5119] total_dirty 0
[ 3324.814072][ T5119] total_writeback 0
[ 3324.825481][ T5119] total_workingset_refault_anon 55761
[ 3324.831491][ T5119] total_workingset_refault_file 0
[ 3324.837276][ T5119] total_swap 753664
[ 3324.845423][ T5119] total_swapcached 0
[ 3324.852785][ T5119] total_pgpgin 250485
[ 3324.859701][ T5119] total_pgpgout 250485
[ 3324.867986][ T5119] total_pgfault 580038
[ 3324.872211][ T5119] total_pgmajfault 54289
[ 3324.877483][ T5119] total_inactive_anon 0
[ 3324.881819][ T5119] total_active_anon 0
[ 3324.885947][ T5119] total_inactive_file 0
[ 3324.892003][ T5119] total_active_file 0
[ 3324.896228][ T5119] total_unevictable 0
[ 3324.900900][ T5119] anon_cost 0
[ 3324.904355][ T5119] file_cost 0
[ 3324.912700][ T5119] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=25676,uid=0
[ 3324.930170][ T5119] Memory cgroup out of memory: Killed process 25676 (syz-executor.0) total-vm:54344kB, anon-rss:308kB, file-rss:8704kB, shmem-rss:0kB, UID:0 pgtables:64kB oom_score_adj:1000
[ 3324.979914][T25677] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3324.996667][T25677] CPU: 0 PID: 25677 Comm: syz-executor.2 Not tainted 6.8.0-rc7-syzkaller-00250-g137e0ec05aeb #0
[ 3325.007158][T25677] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3325.017261][T25677] Call Trace:
[ 3325.020586][T25677]  <TASK>
[ 3325.023552][T25677]  dump_stack_lvl+0x1e7/0x2e0
[ 3325.028297][T25677]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3325.033561][T25677]  ? __pfx__printk+0x10/0x10
[ 3325.038209][T25677]  ? ___ratelimit+0x4c4/0x670
[ 3325.042954][T25677]  ? __pfx____ratelimit+0x10/0x10
[ 3325.048054][T25677]  dump_header+0xda/0x6a0
[ 3325.052458][T25677]  oom_kill_process+0x3a7/0x930
[ 3325.057369][T25677]  out_of_memory+0xf67/0x1320
[ 3325.062113][T25677]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3325.067805][T25677]  ? __pfx___mutex_lock+0x10/0x10
[ 3325.072887][T25677]  ? __pfx_out_of_memory+0x10/0x10
[ 3325.078076][T25677]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3325.083716][T25677]  ? __pfx_lock_release+0x10/0x10
[ 3325.088806][T25677]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3325.094940][T25677]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3325.100221][T25677]  ? mem_cgroup_iter+0x3e9/0x560
[ 3325.105227][T25677]  try_charge_memcg+0xda2/0x18a0
[ 3325.110270][T25677]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3325.115699][T25677]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3325.121473][T25677]  ? __pfx_lock_release+0x10/0x10
[ 3325.126564][T25677]  ? memcg_account_kmem+0x1e7/0x210
[ 3325.131835][T25677]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3325.137705][T25677]  __memcg_kmem_charge_page+0xe1/0x250
[ 3325.143325][T25677]  memcg_charge_kernel_stack+0x210/0x550
[ 3325.149031][T25677]  dup_task_struct+0x40d/0x7d0
[ 3325.153862][T25677]  copy_process+0x5d5/0x3fc0
[ 3325.158533][T25677]  ? __might_fault+0xa9/0x120
[ 3325.163279][T25677]  ? __pfx_lock_release+0x10/0x10
[ 3325.168398][T25677]  ? __pfx_copy_process+0x10/0x10
[ 3325.173503][T25677]  ? __might_fault+0xc5/0x120
[ 3325.178256][T25677]  ? __asan_memset+0x23/0x50
[ 3325.182918][T25677]  kernel_clone+0x21d/0x8d0
[ 3325.187500][T25677]  ? __pfx_kernel_clone+0x10/0x10
[ 3325.192599][T25677]  ? __pfx___might_resched+0x10/0x10
[ 3325.197949][T25677]  __se_sys_clone3+0x2cb/0x350
[ 3325.202796][T25677]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3325.208186][T25677]  ? int80_emulation+0xea/0x210
[ 3325.213111][T25677]  int80_emulation+0x129/0x210
[ 3325.217951][T25677]  asm_int80_emulation+0x1a/0x20
[ 3325.222947][T25677] RIP: 0023:0xf7376060
06:23:21 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x87c, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x84c, 0x2, [@TCA_BASIC_POLICE={0x848, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1100]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}]}]}}]}, 0x87c}}, 0x0)

[ 3325.227071][T25677] Code: 4c 24 04 85 c9 0f 84 df 0d fe ff 8b 54 24 0c 85 d2 0f 84 d3 0d fe ff 53 56 8b 74 24 18 89 cb 8b 4c 24 10 b8 b3 01 00 00 cd 80 <85> c0 74 09 5e 5b 0f 8c b4 0d fe ff c3 31 ed 83 e4 f0 83 ec 0c 56
[ 3325.247164][T25677] RSP: 002b:00000000f758d8e4 EFLAGS: 00000282 ORIG_RAX: 00000000000001b3
[ 3325.255662][T25677] RAX: ffffffffffffffda RBX: 00000000f758d950 RCX: 0000000000000058
[ 3325.263689][T25677] RDX: 00000000f7326eb0 RSI: 00000000f5ee6b40 RDI: 00000000ffffffd8
[ 3325.271714][T25677] RBP: 000000000000000b R08: 0000000000000000 R09: 0000000000000000
[ 3325.279742][T25677] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 3325.287761][T25677] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 3325.295803][T25677]  </TASK>
[ 3325.308029][T25677] memory: usage 307200kB, limit 307200kB, failcnt 122928
[ 3325.315120][T25677] memory+swap: usage 307668kB, limit 9007199254740988kB, failcnt 0
[ 3325.323723][T25677] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0
[ 3325.331895][T25677] Memory cgroup stats for /syz2:
[ 3325.332040][T25677] cache 0
[ 3325.340706][T25677] rss 0
[ 3325.343519][T25677] rss_huge 0
[ 3325.347352][T25677] shmem 0
[ 3325.350332][T25677] mapped_file 0
[ 3325.353817][T25677] dirty 0
[ 3325.357607][T25677] writeback 0
[ 3325.360932][T25677] workingset_refault_anon 43945
[ 3325.365865][T25677] workingset_refault_file 0
[ 3325.371217][T25677] swap 479232
[ 3325.374557][T25677] swapcached 12288
[ 3325.379024][T25677] pgpgin 248439
[ 3325.382530][T25677] pgpgout 248436
[ 3325.386110][T25677] pgfault 590346
[ 3325.390545][T25677] pgmajfault 43379
[ 3325.394312][T25677] inactive_anon 0
[ 3325.398431][T25677] active_anon 12288
[ 3325.402277][T25677] inactive_file 0
[ 3325.405958][T25677] active_file 0
[ 3325.412386][T25677] unevictable 0
[ 3325.415890][T25677] hierarchical_memory_limit 314572800
[ 3325.422242][T25677] hierarchical_memsw_limit 9223372036854771712
06:23:22 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x888, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x858, 0x2, [@TCA_BASIC_POLICE={0x854, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x45010000]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}, @TCA_POLICE_PEAKRATE64={0xc}]}]}}]}, 0x888}}, 0x0)

[ 3325.430004][T25677] total_cache 0
[ 3325.435712][T25677] total_rss 0
[ 3325.440764][T25677] total_rss_huge 0
[ 3325.444524][T25677] total_shmem 0
[ 3325.452150][T25677] total_mapped_file 0
[ 3325.456178][T25677] total_dirty 0
[ 3325.461541][T25677] total_writeback 0
[ 3325.465445][T25677] total_workingset_refault_anon 43945
[ 3325.474180][T25677] total_workingset_refault_file 0
[ 3325.480721][T25677] total_swap 479232
[ 3325.484739][T25677] total_swapcached 12288
[ 3325.492860][T25677] total_pgpgin 248439
[ 3325.499038][T25677] total_pgpgout 248436
[ 3325.503158][T25677] total_pgfault 590346
[ 3325.507989][T25677] total_pgmajfault 43379
[ 3325.512283][T25677] total_inactive_anon 0
[ 3325.517984][T25677] total_active_anon 12288
[ 3325.522365][T25677] total_inactive_file 0
[ 3325.527163][T25677] total_active_file 0
[ 3325.531477][T25677] total_unevictable 0
[ 3325.538633][T25677] anon_cost 0
[ 3325.541959][T25677] file_cost 0
[ 3325.545270][T25677] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=25677,uid=0
[ 3325.581892][T25677] Memory cgroup out of memory: Killed process 25677 (syz-executor.2) total-vm:54344kB, anon-rss:272kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:64kB oom_score_adj:1000
[ 3325.599464][T25502] Bluetooth: hci6: command 0x0409 tx timeout
06:23:22 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x888, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x858, 0x2, [@TCA_BASIC_POLICE={0x854, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1500]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}, @TCA_POLICE_PEAKRATE64={0xc}]}]}}]}, 0x888}}, 0x0)

[ 3325.752137][T25679] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3325.777952][T25679] CPU: 0 PID: 25679 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00250-g137e0ec05aeb #0
[ 3325.788451][T25679] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3325.798551][T25679] Call Trace:
[ 3325.801965][T25679]  <TASK>
[ 3325.804939][T25679]  dump_stack_lvl+0x1e7/0x2e0
[ 3325.809689][T25679]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3325.814952][T25679]  ? __pfx__printk+0x10/0x10
[ 3325.819615][T25679]  ? ___ratelimit+0x4c4/0x670
[ 3325.824368][T25679]  ? __pfx____ratelimit+0x10/0x10
[ 3325.829463][T25679]  dump_header+0xda/0x6a0
[ 3325.833845][T25679]  oom_kill_process+0x3a7/0x930
[ 3325.838750][T25679]  out_of_memory+0xf67/0x1320
[ 3325.843476][T25679]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3325.849142][T25679]  ? __pfx___mutex_lock+0x10/0x10
[ 3325.854211][T25679]  ? __pfx_out_of_memory+0x10/0x10
[ 3325.859399][T25679]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3325.865001][T25679]  ? __pfx_lock_release+0x10/0x10
[ 3325.870089][T25679]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3325.876214][T25679]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3325.881466][T25679]  ? mem_cgroup_iter+0x3e9/0x560
[ 3325.886484][T25679]  try_charge_memcg+0xda2/0x18a0
[ 3325.891501][T25679]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3325.896930][T25679]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3325.902693][T25679]  ? __pfx_lock_release+0x10/0x10
[ 3325.907765][T25679]  ? memcg_account_kmem+0x1e7/0x210
[ 3325.913025][T25679]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3325.918889][T25679]  __memcg_kmem_charge_page+0xe1/0x250
[ 3325.924418][T25679]  memcg_charge_kernel_stack+0x210/0x550
[ 3325.930118][T25679]  dup_task_struct+0x15d/0x7d0
[ 3325.934941][T25679]  copy_process+0x5d5/0x3fc0
[ 3325.939691][T25679]  ? __might_fault+0xa9/0x120
[ 3325.944435][T25679]  ? __pfx_lock_release+0x10/0x10
[ 3325.949531][T25679]  ? __pfx_copy_process+0x10/0x10
[ 3325.954609][T25679]  ? __might_fault+0xc5/0x120
[ 3325.959357][T25679]  ? __asan_memset+0x23/0x50
[ 3325.964016][T25679]  kernel_clone+0x21d/0x8d0
[ 3325.968586][T25679]  ? __pfx_kernel_clone+0x10/0x10
[ 3325.973703][T25679]  __se_sys_clone3+0x2cb/0x350
[ 3325.978515][T25679]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3325.983828][T25679]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3325.989858][T25679]  ? exc_page_fault+0x587/0x870
[ 3325.994768][T25679]  ? int80_emulation+0xea/0x210
[ 3325.999684][T25679]  int80_emulation+0x129/0x210
[ 3326.004515][T25679]  asm_int80_emulation+0x1a/0x20
[ 3326.009506][T25679] RIP: 0023:0xf7372060
[ 3326.013615][T25679] Code: 4c 24 04 85 c9 0f 84 df 0d fe ff 8b 54 24 0c 85 d2 0f 84 d3 0d fe ff 53 56 8b 74 24 18 89 cb 8b 4c 24 10 b8 b3 01 00 00 cd 80 <85> c0 74 09 5e 5b 0f 8c b4 0d fe ff c3 31 ed 83 e4 f0 83 ec 0c 56
[ 3326.033255][T25679] RSP: 002b:00000000f75898e4 EFLAGS: 00000282 ORIG_RAX: 00000000000001b3
[ 3326.041693][T25679] RAX: ffffffffffffffda RBX: 00000000f7589950 RCX: 0000000000000058
[ 3326.049691][T25679] RDX: 00000000f7322eb0 RSI: 00000000f5ee2b40 RDI: 00000000ffffffd8
[ 3326.057704][T25679] RBP: 000000000000000b R08: 0000000000000000 R09: 0000000000000000
[ 3326.065705][T25679] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 3326.073695][T25679] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 3326.081723][T25679]  </TASK>
[ 3326.096456][T25679] memory: usage 307200kB, limit 307200kB, failcnt 151673
[ 3326.103548][T25679] memory+swap: usage 307924kB, limit 9007199254740988kB, failcnt 0
[ 3326.113241][T25679] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0
[ 3326.131424][T25679] Memory cgroup stats for /syz0:
[ 3326.131570][T25679] cache 0
[ 3326.142727][T25679] rss 12288
[ 3326.145891][T25679] rss_huge 0
[ 3326.149639][T25679] shmem 0
[ 3326.152613][T25679] mapped_file 0
[ 3326.156097][T25679] dirty 0
[ 3326.159845][T25679] writeback 0
[ 3326.163183][T25679] workingset_refault_anon 55823
[ 3326.168617][T25679] workingset_refault_file 0
[ 3326.173160][T25679] swap 741376
[ 3326.177065][T25679] swapcached 4096
[ 3326.180742][T25679] pgpgin 250555
[ 3326.184241][T25679] pgpgout 250552
[ 3326.188859][T25679] pgfault 580145
[ 3326.192463][T25679] pgmajfault 54339
[ 3326.196212][T25679] inactive_anon 8192
[ 3326.201750][T25679] active_anon 4096
[ 3326.205523][T25679] inactive_file 0
[ 3326.209616][T25679] active_file 0
[ 3326.213103][T25679] unevictable 0
[ 3326.221249][T25679] hierarchical_memory_limit 314572800
[ 3326.227320][T25679] hierarchical_memsw_limit 9223372036854771712
[ 3326.233522][T25679] total_cache 0
[ 3326.241618][T25679] total_rss 12288
[ 3326.245291][T25679] total_rss_huge 0
[ 3326.249637][T25679] total_shmem 0
[ 3326.253134][T25679] total_mapped_file 0
[ 3326.257942][T25679] total_dirty 0
[ 3326.261436][T25679] total_writeback 0
[ 3326.265265][T25679] total_workingset_refault_anon 55823
[ 3326.271627][T25679] total_workingset_refault_file 0
[ 3326.277220][T25679] total_swap 741376
[ 3326.281150][T25679] total_swapcached 4096
[ 3326.285430][T25679] total_pgpgin 250555
[ 3326.293301][T25679] total_pgpgout 250552
[ 3326.298215][T25679] total_pgfault 580145
[ 3326.302421][T25679] total_pgmajfault 54339
[ 3326.307922][T25679] total_inactive_anon 8192
[ 3326.312463][T25679] total_active_anon 4096
[ 3326.317392][T25679] total_inactive_file 0
[ 3326.321724][T25679] total_active_file 0
[ 3326.325830][T25679] total_unevictable 0
[ 3326.333027][T25679] anon_cost 0
[ 3326.336740][T25679] file_cost 0
[ 3326.340174][T25679] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=25679,uid=0
[ 3326.356539][T25679] Memory cgroup out of memory: Killed process 25679 (syz-executor.0) total-vm:54344kB, anon-rss:308kB, file-rss:8736kB, shmem-rss:0kB, UID:0 pgtables:64kB oom_score_adj:1000
[ 3326.385097][T25678] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3326.407962][T25678] CPU: 1 PID: 25678 Comm: syz-executor.3 Not tainted 6.8.0-rc7-syzkaller-00250-g137e0ec05aeb #0
[ 3326.418450][T25678] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3326.428548][T25678] Call Trace:
[ 3326.431870][T25678]  <TASK>
[ 3326.434846][T25678]  dump_stack_lvl+0x1e7/0x2e0
[ 3326.439594][T25678]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3326.444850][T25678]  ? __pfx__printk+0x10/0x10
[ 3326.449483][T25678]  ? ___ratelimit+0x4c4/0x670
[ 3326.454217][T25678]  ? __pfx____ratelimit+0x10/0x10
[ 3326.459296][T25678]  dump_header+0xda/0x6a0
[ 3326.463677][T25678]  oom_kill_process+0x3a7/0x930
[ 3326.468569][T25678]  out_of_memory+0xf67/0x1320
[ 3326.473316][T25678]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3326.478990][T25678]  ? __pfx___mutex_lock+0x10/0x10
[ 3326.484051][T25678]  ? __pfx_out_of_memory+0x10/0x10
[ 3326.489247][T25678]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3326.494811][T25678]  ? __pfx_lock_release+0x10/0x10
[ 3326.499855][T25678]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3326.505949][T25678]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3326.511164][T25678]  ? mem_cgroup_iter+0x422/0x560
[ 3326.516118][T25678]  try_charge_memcg+0xda2/0x18a0
[ 3326.521111][T25678]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3326.526516][T25678]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3326.532258][T25678]  ? __pfx_lock_release+0x10/0x10
[ 3326.537307][T25678]  ? memcg_account_kmem+0x1e7/0x210
[ 3326.542543][T25678]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3326.548362][T25678]  __memcg_kmem_charge_page+0xe1/0x250
[ 3326.553853][T25678]  memcg_charge_kernel_stack+0x28a/0x550
[ 3326.559516][T25678]  dup_task_struct+0x40d/0x7d0
[ 3326.564309][T25678]  copy_process+0x5d5/0x3fc0
[ 3326.568926][T25678]  ? __might_fault+0xa9/0x120
[ 3326.573623][T25678]  ? __pfx_lock_release+0x10/0x10
[ 3326.578689][T25678]  ? __pfx_copy_process+0x10/0x10
[ 3326.583723][T25678]  ? __might_fault+0xc5/0x120
[ 3326.588422][T25678]  ? __asan_memset+0x23/0x50
[ 3326.593030][T25678]  kernel_clone+0x21d/0x8d0
[ 3326.597551][T25678]  ? __pfx_kernel_clone+0x10/0x10
[ 3326.602596][T25678]  ? __pfx___might_resched+0x10/0x10
[ 3326.607926][T25678]  __se_sys_clone3+0x2cb/0x350
[ 3326.612708][T25678]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3326.618042][T25678]  ? int80_emulation+0xea/0x210
[ 3326.622918][T25678]  int80_emulation+0x129/0x210
[ 3326.627705][T25678]  asm_int80_emulation+0x1a/0x20
[ 3326.632654][T25678] RIP: 0023:0xf73d8060
[ 3326.636733][T25678] Code: 4c 24 04 85 c9 0f 84 df 0d fe ff 8b 54 24 0c 85 d2 0f 84 d3 0d fe ff 53 56 8b 74 24 18 89 cb 8b 4c 24 10 b8 b3 01 00 00 cd 80 <85> c0 74 09 5e 5b 0f 8c b4 0d fe ff c3 31 ed 83 e4 f0 83 ec 0c 56
[ 3326.656349][T25678] RSP: 002b:00000000f75ef8e4 EFLAGS: 00000282 ORIG_RAX: 00000000000001b3
[ 3326.664880][T25678] RAX: ffffffffffffffda RBX: 00000000f75ef950 RCX: 0000000000000058
[ 3326.672881][T25678] RDX: 00000000f7388eb0 RSI: 00000000f5f27b40 RDI: 00000000ffffffd8
[ 3326.680871][T25678] RBP: 000000000000006e R08: 0000000000000000 R09: 0000000000000000
[ 3326.688864][T25678] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 3326.696866][T25678] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 3326.704887][T25678]  </TASK>
[ 3326.711244][T25502] Bluetooth: hci5: command 0x041b tx timeout
[ 3326.739238][T25678] memory: usage 307200kB, limit 307200kB, failcnt 195135
[ 3326.753407][T25678] memory+swap: usage 307856kB, limit 9007199254740988kB, failcnt 0
[ 3326.765339][T25678] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[ 3326.773647][T25678] Memory cgroup stats for /syz3:
[ 3326.773797][T25678] cache 0
[ 3326.782418][T25678] rss 0
[ 3326.785224][T25678] rss_huge 0
[ 3326.789332][T25678] shmem 0
[ 3326.792311][T25678] mapped_file 0
[ 3326.795803][T25678] dirty 0
[ 3326.798914][T25678] writeback 0
[ 3326.802234][T25678] workingset_refault_anon 81389
[ 3326.807774][T25678] workingset_refault_file 0
[ 3326.812319][T25678] swap 671744
[ 3326.815624][T25678] swapcached 0
[ 3326.820684][T25678] pgpgin 284564
[ 3326.824193][T25678] pgpgout 284564
[ 3326.827871][T25678] pgfault 655361
[ 3326.831438][T25678] pgmajfault 79993
[ 3326.835184][T25678] inactive_anon 0
[ 3326.839029][T25678] active_anon 0
[ 3326.842521][T25678] inactive_file 0
[ 3326.846214][T25678] active_file 0
[ 3326.849879][T25678] unevictable 0
[ 3326.853380][T25678] hierarchical_memory_limit 314572800
[ 3326.858990][T25678] hierarchical_memsw_limit 9223372036854771712
[ 3326.865170][T25678] total_cache 0
[ 3326.868921][T25678] total_rss 0
[ 3326.872237][T25678] total_rss_huge 0
[ 3326.875979][T25678] total_shmem 0
[ 3326.879627][T25678] total_mapped_file 0
[ 3326.883626][T25678] total_dirty 0
[ 3326.887229][T25678] total_writeback 0
[ 3326.891063][T25678] total_workingset_refault_anon 81389
[ 3326.896548][T25678] total_workingset_refault_file 0
[ 3326.901661][T25678] total_swap 671744
[ 3326.905501][T25678] total_swapcached 0
[ 3326.909491][T25678] total_pgpgin 284564
[ 3326.913490][T25678] total_pgpgout 284564
[ 3326.918395][T25678] total_pgfault 655361
[ 3326.922616][T25678] total_pgmajfault 79993
[ 3326.931970][T25678] total_inactive_anon 0
[ 3326.944701][T25678] total_active_anon 0
[ 3326.949254][T25678] total_inactive_file 0
[ 3326.953566][T25678] total_active_file 0
[ 3326.958091][T25678] total_unevictable 0
[ 3326.962102][T25678] anon_cost 0
[ 3326.965405][T25678] file_cost 0
[ 3326.969670][T25678] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=25678,uid=0
[ 3326.985663][T25678] Memory cgroup out of memory: Killed process 25678 (syz-executor.3) total-vm:54476kB, anon-rss:316kB, file-rss:8960kB, shmem-rss:0kB, UID:0 pgtables:64kB oom_score_adj:1000
[ 3327.028233][ T5124] syz-executor.3 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[ 3327.053214][ T5124] CPU: 1 PID: 5124 Comm: syz-executor.3 Not tainted 6.8.0-rc7-syzkaller-00250-g137e0ec05aeb #0
[ 3327.063627][ T5124] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3327.073723][ T5124] Call Trace:
[ 3327.077045][ T5124]  <TASK>
[ 3327.080014][ T5124]  dump_stack_lvl+0x1e7/0x2e0
[ 3327.084768][ T5124]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3327.090026][ T5124]  ? __pfx__printk+0x10/0x10
[ 3327.094661][ T5124]  ? ___ratelimit+0x4c4/0x670
[ 3327.099373][ T5124]  ? __pfx____ratelimit+0x10/0x10
[ 3327.104427][ T5124]  dump_header+0xda/0x6a0
[ 3327.108887][ T5124]  oom_kill_process+0x3a7/0x930
[ 3327.113787][ T5124]  out_of_memory+0xf67/0x1320
[ 3327.118512][ T5124]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3327.124194][ T5124]  ? __pfx___mutex_lock+0x10/0x10
[ 3327.129255][ T5124]  ? __pfx_out_of_memory+0x10/0x10
[ 3327.134411][ T5124]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3327.140005][ T5124]  ? __pfx_lock_release+0x10/0x10
[ 3327.145081][ T5124]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3327.151172][ T5124]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3327.156403][ T5124]  ? mem_cgroup_iter+0x422/0x560
[ 3327.161400][ T5124]  try_charge_memcg+0xda2/0x18a0
[ 3327.166647][ T5124]  ? mark_lock+0x9a/0x350
[ 3327.171029][ T5124]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3327.176451][ T5124]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 3327.182620][ T5124]  charge_memcg+0xa2/0x160
[ 3327.187079][ T5124]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 3327.193181][ T5124]  __read_swap_cache_async+0x480/0x8b0
[ 3327.198662][ T5124]  ? mark_lock+0x9a/0x350
[ 3327.203014][ T5124]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 3327.209047][ T5124]  swap_cluster_readahead+0x67c/0x810
[ 3327.214481][ T5124]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 3327.220425][ T5124]  ? __pfx_lock_release+0x10/0x10
[ 3327.225489][ T5124]  ? xas_descend+0x37e/0x470
[ 3327.230114][ T5124]  swapin_readahead+0x1ea/0x1070
[ 3327.235075][ T5124]  ? filemap_get_entry+0x127/0x4e0
[ 3327.240223][ T5124]  ? __pfx_swapin_readahead+0x10/0x10
[ 3327.245638][ T5124]  ? __filemap_get_folio+0x935/0xbc0
[ 3327.250951][ T5124]  ? swap_cache_get_folio+0x9f/0x570
[ 3327.256267][ T5124]  do_swap_page+0x791/0x3f40
[ 3327.260894][ T5124]  ? rcu_is_watching+0x15/0xb0
[ 3327.265716][ T5124]  ? do_swap_page+0x154/0x3f40
[ 3327.270496][ T5124]  ? __pfx_do_swap_page+0x10/0x10
[ 3327.275538][ T5124]  ? pte_offset_map_nolock+0x137/0x1f0
[ 3327.281027][ T5124]  ? mark_lock+0x9a/0x350
[ 3327.285392][ T5124]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 3327.291236][ T5124]  ? __pfx_validate_chain+0x10/0x10
[ 3327.296486][ T5124]  __handle_mm_fault+0x15e8/0x72d0
[ 3327.301669][ T5124]  ? __pfx___handle_mm_fault+0x10/0x10
[ 3327.307180][ T5124]  ? mt_find+0x226/0x850
[ 3327.311462][ T5124]  ? __pfx_lock_release+0x10/0x10
[ 3327.316535][ T5124]  ? mt_find+0x62d/0x850
[ 3327.320806][ T5124]  ? mt_find+0x226/0x850
[ 3327.325098][ T5124]  ? find_vma+0x142/0x1c0
[ 3327.329444][ T5124]  ? __pfx_find_vma+0x10/0x10
[ 3327.334132][ T5124]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3327.340136][ T5124]  handle_mm_fault+0x3c1/0x8a0
[ 3327.344925][ T5124]  exc_page_fault+0x2ad/0x870
[ 3327.349652][ T5124]  asm_exc_page_fault+0x26/0x30
[ 3327.354551][ T5124] RIP: 0010:__get_user_8+0x11/0x20
[ 3327.359699][ T5124] Code: ca c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 89 c2 48 c1 fa 3f 48 09 d0 0f 01 cb <48> 8b 10 31 c0 0f 01 ca c3 cc cc cc cc 66 90 90 90 90 90 90 90 90
[ 3327.379323][ T5124] RSP: 0018:ffffc90003bbfd58 EFLAGS: 00050202
[ 3327.385493][ T5124] RAX: 00000000566b38a8 RBX: ffff88801f9c9538 RCX: ffffc90003bbfc03
[ 3327.393474][ T5124] RDX: 0000000000000000 RSI: ffffffff8baac7e0 RDI: ffffffff8bfe6da0
[ 3327.401464][ T5124] RBP: ffffc90003bbfe98 R08: ffffffff8f856cef R09: 1ffffffff1f0ad9d
[ 3327.409462][ T5124] R10: dffffc0000000000 R11: fffffbfff1f0ad9e R12: ffffc90003bbfd60
[ 3327.417452][ T5124] R13: ffffc90003bbffd8 R14: dffffc0000000000 R15: ffff88801f9c8000
[ 3327.425470][ T5124]  __rseq_handle_notify_resume+0x158/0x1490
[ 3327.431391][ T5124]  ? __pfx_hrtimer_wakeup+0x10/0x10
[ 3327.436613][ T5124]  ? __pfx___rseq_handle_notify_resume+0x10/0x10
[ 3327.442985][ T5124]  ? syscall_exit_to_user_mode+0xa2/0x360
[ 3327.448727][ T5124]  syscall_exit_to_user_mode+0x113/0x360
[ 3327.454388][ T5124]  __do_fast_syscall_32+0xcf/0x120
[ 3327.459528][ T5124]  ? exc_page_fault+0x587/0x870
[ 3327.464416][ T5124]  do_fast_syscall_32+0x33/0x70
[ 3327.469289][ T5124]  entry_SYSENTER_compat_after_hwframe+0x7c/0x86
[ 3327.475630][ T5124] RIP: 0023:0xf734e579
[ 3327.479714][ T5124] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[ 3327.499336][ T5124] RSP: 002b:00000000f75efc80 EFLAGS: 00000206 ORIG_RAX: 000000000000010b
[ 3327.507795][ T5124] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000
[ 3327.515776][ T5124] RDX: 00000000f75efcb4 RSI: 00000000f75efcac RDI: 00000000f75efcb4
[ 3327.523759][ T5124] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 3327.531756][ T5124] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 3327.539760][ T5124] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 3327.547799][ T5124]  </TASK>
[ 3327.563064][ T5124] memory: usage 307080kB, limit 307200kB, failcnt 195173
[ 3327.610171][ T5124] memory+swap: usage 307688kB, limit 9007199254740988kB, failcnt 0
[ 3327.626924][ T5124] kmem: usage 307016kB, limit 9007199254740988kB, failcnt 0
[ 3327.652581][ T5124] Memory cgroup stats for /syz3:
[ 3327.653136][ T5124] cache 0
[ 3327.659047][T25502] Bluetooth: hci6: command 0x041b tx timeout
[ 3327.666668][ T5124] rss 0
[ 3327.671284][ T5124] rss_huge 0
[ 3327.674603][ T5124] shmem 0
[ 3327.683602][ T5124] mapped_file 0
[ 3327.690136][ T5124] dirty 0
[ 3327.693299][ T5124] writeback 0
[ 3327.701182][ T5124] workingset_refault_anon 81392
[ 3327.706260][ T5124] workingset_refault_file 0
[ 3327.711554][ T5124] swap 622592
[ 3327.715049][ T5124] swapcached 0
[ 3327.723410][ T5124] pgpgin 284567
[ 3327.727318][ T5124] pgpgout 284567
[ 3327.731072][ T5124] pgfault 655364
[ 3327.734818][ T5124] pgmajfault 79995
[ 3327.748989][ T5124] inactive_anon 0
[ 3327.752829][ T5124] active_anon 0
[ 3327.759178][ T5124] inactive_file 0
[ 3327.763035][ T5124] active_file 0
[ 3327.773309][ T5124] unevictable 0
[ 3327.777481][ T5124] hierarchical_memory_limit 314572800
[ 3327.783093][ T5124] hierarchical_memsw_limit 9223372036854771712
[ 3327.790946][ T5124] total_cache 0
[ 3327.794642][ T5124] total_rss 0
[ 3327.798722][ T5124] total_rss_huge 0
[ 3327.802685][ T5124] total_shmem 0
[ 3327.806909][ T5124] total_mapped_file 0
[ 3327.811107][ T5124] total_dirty 0
[ 3327.814773][ T5124] total_writeback 0
[ 3327.819553][ T5124] total_workingset_refault_anon 81392
[ 3327.825170][ T5124] total_workingset_refault_file 0
[ 3327.831086][ T5124] total_swap 622592
[ 3327.835148][ T5124] total_swapcached 0
[ 3327.839782][ T5124] total_pgpgin 284567
[ 3327.843959][ T5124] total_pgpgout 284567
[ 3327.848832][ T5124] total_pgfault 655364
[ 3327.853108][ T5124] total_pgmajfault 79995
[ 3327.858169][ T5124] total_inactive_anon 0
[ 3327.862521][ T5124] total_active_anon 0
[ 3327.867317][ T5124] total_inactive_file 0
[ 3327.871704][ T5124] total_active_file 0
[ 3327.875888][ T5124] total_unevictable 0
[ 3327.880830][ T5124] anon_cost 0
[ 3327.884335][ T5124] file_cost 0
06:23:24 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x888, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x858, 0x2, [@TCA_BASIC_POLICE={0x854, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x47000000]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}, @TCA_POLICE_PEAKRATE64={0xc}]}]}}]}, 0x888}}, 0x0)

[ 3327.890058][ T5124] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=5232,uid=0
[ 3327.907385][ T5124] Memory cgroup out of memory: Killed process 5232 (syz-executor.3) total-vm:56524kB, anon-rss:436kB, file-rss:8448kB, shmem-rss:0kB, UID:0 pgtables:64kB oom_score_adj:1000
06:23:24 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x87c, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x84c, 0x2, [@TCA_BASIC_POLICE={0x848, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1400]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}]}]}}]}, 0x87c}}, 0x0)

[ 3327.946641][T25681] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3327.981819][T25681] CPU: 0 PID: 25681 Comm: syz-executor.2 Not tainted 6.8.0-rc7-syzkaller-00250-g137e0ec05aeb #0
[ 3327.992312][T25681] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3328.002412][T25681] Call Trace:
[ 3328.005730][T25681]  <TASK>
[ 3328.008701][T25681]  dump_stack_lvl+0x1e7/0x2e0
[ 3328.013440][T25681]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3328.018722][T25681]  ? __pfx__printk+0x10/0x10
[ 3328.023363][T25681]  ? ___ratelimit+0x4c4/0x670
[ 3328.028092][T25681]  ? __pfx____ratelimit+0x10/0x10
[ 3328.033146][T25681]  dump_header+0xda/0x6a0
[ 3328.037499][T25681]  oom_kill_process+0x3a7/0x930
[ 3328.042377][T25681]  out_of_memory+0xf67/0x1320
[ 3328.047076][T25681]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3328.052723][T25681]  ? __pfx___mutex_lock+0x10/0x10
[ 3328.057774][T25681]  ? __pfx_out_of_memory+0x10/0x10
[ 3328.062944][T25681]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3328.068514][T25681]  ? __pfx_lock_release+0x10/0x10
[ 3328.073557][T25681]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3328.079654][T25681]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3328.084872][T25681]  ? mem_cgroup_iter+0x3e9/0x560
[ 3328.089827][T25681]  try_charge_memcg+0xda2/0x18a0
[ 3328.094806][T25681]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3328.100203][T25681]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3328.105935][T25681]  ? __pfx_lock_release+0x10/0x10
[ 3328.110992][T25681]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3328.116816][T25681]  __memcg_kmem_charge_page+0xe1/0x250
[ 3328.122303][T25681]  memcg_charge_kernel_stack+0xa7/0x550
[ 3328.127866][T25681]  dup_task_struct+0x15d/0x7d0
[ 3328.132644][T25681]  copy_process+0x5d5/0x3fc0
[ 3328.137261][T25681]  ? __might_fault+0xa9/0x120
[ 3328.141956][T25681]  ? __pfx_lock_release+0x10/0x10
[ 3328.146999][T25681]  ? __lock_acquire+0x1345/0x1fd0
[ 3328.152056][T25681]  ? __pfx_copy_process+0x10/0x10
[ 3328.157090][T25681]  ? __might_fault+0xc5/0x120
[ 3328.161804][T25681]  ? __asan_memset+0x23/0x50
[ 3328.166415][T25681]  kernel_clone+0x21d/0x8d0
[ 3328.170938][T25681]  ? __pfx_kernel_clone+0x10/0x10
[ 3328.175985][T25681]  ? __pfx_lock_release+0x10/0x10
[ 3328.181042][T25681]  __se_sys_clone3+0x2cb/0x350
[ 3328.185840][T25681]  ? __might_fault+0xa9/0x120
[ 3328.190556][T25681]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3328.195870][T25681]  ? rcu_is_watching+0x15/0xb0
[ 3328.200671][T25681]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3328.206686][T25681]  ? exc_page_fault+0x587/0x870
[ 3328.211560][T25681]  ? int80_emulation+0xea/0x210
[ 3328.216434][T25681]  int80_emulation+0x129/0x210
[ 3328.221254][T25681]  asm_int80_emulation+0x1a/0x20
[ 3328.226236][T25681] RIP: 0023:0xf7376060
[ 3328.230348][T25681] Code: 4c 24 04 85 c9 0f 84 df 0d fe ff 8b 54 24 0c 85 d2 0f 84 d3 0d fe ff 53 56 8b 74 24 18 89 cb 8b 4c 24 10 b8 b3 01 00 00 cd 80 <85> c0 74 09 5e 5b 0f 8c b4 0d fe ff c3 31 ed 83 e4 f0 83 ec 0c 56
[ 3328.250001][T25681] RSP: 002b:00000000f758d8e4 EFLAGS: 00000282 ORIG_RAX: 00000000000001b3
[ 3328.258459][T25681] RAX: ffffffffffffffda RBX: 00000000f758d950 RCX: 0000000000000058
[ 3328.266454][T25681] RDX: 00000000f7326eb0 RSI: 00000000f5ee6b40 RDI: 00000000ffffffd8
[ 3328.274461][T25681] RBP: 000000000000000b R08: 0000000000000000 R09: 0000000000000000
[ 3328.282459][T25681] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 3328.290449][T25681] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 3328.298455][T25681]  </TASK>
[ 3328.322455][T25681] memory: usage 307180kB, limit 307200kB, failcnt 123282
[ 3328.332088][ T1239] ieee802154 phy0 wpan0: encryption failed: -22
[ 3328.338750][ T1239] ieee802154 phy1 wpan1: encryption failed: -22
[ 3328.399581][T25681] memory+swap: usage 307636kB, limit 9007199254740988kB, failcnt 0
[ 3328.413737][T25681] kmem: usage 307156kB, limit 9007199254740988kB, failcnt 0
[ 3328.422920][T25681] Memory cgroup stats for /syz2:
[ 3328.423072][T25681] cache 0
[ 3328.435645][T25681] rss 12288
[ 3328.442708][T25681] rss_huge 0
[ 3328.450174][T25681] shmem 0
[ 3328.455416][T25681] mapped_file 0
[ 3328.460365][T25681] dirty 0
[ 3328.463497][T25681] writeback 0
[ 3328.467243][T25681] workingset_refault_anon 44093
[ 3328.472281][T25681] workingset_refault_file 0
[ 3328.477086][T25681] swap 466944
[ 3328.482011][T25681] swapcached 24576
[ 3328.490365][T25681] pgpgin 248599
[ 3328.498741][T25681] pgpgout 248593
[ 3328.502452][T25681] pgfault 590583
[ 3328.506983][T25681] pgmajfault 43514
[ 3328.510901][T25681] inactive_anon 0
[ 3328.514721][T25681] active_anon 12288
[ 3328.519503][T25681] inactive_file 0
[ 3328.523399][T25681] active_file 0
[ 3328.537130][T25681] unevictable 0
[ 3328.541446][T25681] hierarchical_memory_limit 314572800
[ 3328.547722][T25681] hierarchical_memsw_limit 9223372036854771712
[ 3328.558597][T25681] total_cache 0
[ 3328.562323][T25681] total_rss 12288
[ 3328.566184][T25681] total_rss_huge 0
[ 3328.587426][T25681] total_shmem 0
[ 3328.594282][T25681] total_mapped_file 0
[ 3328.600744][T25681] total_dirty 0
[ 3328.617086][T25681] total_writeback 0
[ 3328.627101][T25681] total_workingset_refault_anon 44093
[ 3328.638514][T25681] total_workingset_refault_file 0
[ 3328.662185][T25681] total_swap 466944
[ 3328.671894][T25681] total_swapcached 24576
[ 3328.687091][T25681] total_pgpgin 248599
[ 3328.691149][T25681] total_pgpgout 248593
[ 3328.695256][T25681] total_pgfault 590583
[ 3328.711282][T25681] total_pgmajfault 43514
[ 3328.715603][T25681] total_inactive_anon 0
[ 3328.725347][T25681] total_active_anon 12288
[ 3328.748280][T25681] total_inactive_file 0
[ 3328.752511][T25681] total_active_file 0
[ 3328.762249][T25681] total_unevictable 0
[ 3328.777014][T25502] Bluetooth: hci5: command 0x040f tx timeout
[ 3328.777372][T25681] anon_cost 0
[ 3328.799133][T25681] file_cost 0
[ 3328.802504][T25681] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=25681,uid=0
[ 3328.819961][T25681] Memory cgroup out of memory: Killed process 25681 (syz-executor.2) total-vm:54344kB, anon-rss:304kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:64kB oom_score_adj:1000
[ 3328.864639][T25684] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3328.887903][T25684] CPU: 0 PID: 25684 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00250-g137e0ec05aeb #0
[ 3328.898395][T25684] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3328.908485][T25684] Call Trace:
[ 3328.911794][T25684]  <TASK>
[ 3328.914739][T25684]  dump_stack_lvl+0x1e7/0x2e0
[ 3328.919448][T25684]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3328.924663][T25684]  ? __pfx__printk+0x10/0x10
[ 3328.929266][T25684]  ? ___ratelimit+0x4c4/0x670
[ 3328.933961][T25684]  ? __pfx____ratelimit+0x10/0x10
[ 3328.939008][T25684]  dump_header+0xda/0x6a0
[ 3328.943358][T25684]  oom_kill_process+0x3a7/0x930
[ 3328.948229][T25684]  out_of_memory+0xf67/0x1320
[ 3328.952927][T25684]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3328.958587][T25684]  ? __pfx___mutex_lock+0x10/0x10
[ 3328.963635][T25684]  ? __pfx_out_of_memory+0x10/0x10
[ 3328.968771][T25684]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3328.974340][T25684]  ? __pfx_lock_release+0x10/0x10
[ 3328.979384][T25684]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3328.985468][T25684]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3328.990685][T25684]  ? mem_cgroup_iter+0x3e9/0x560
[ 3328.995654][T25684]  try_charge_memcg+0xda2/0x18a0
[ 3329.000632][T25684]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3329.006019][T25684]  ? percpu_ref_tryget+0x14/0x180
[ 3329.011076][T25684]  charge_memcg+0xa2/0x160
[ 3329.015516][T25684]  __mem_cgroup_charge+0x27/0x80
[ 3329.020486][T25684]  folio_prealloc+0x52/0x170
[ 3329.025102][T25684]  do_wp_page+0x1222/0x4c90
[ 3329.029649][T25684]  ? __pfx_do_wp_page+0x10/0x10
[ 3329.034526][T25684]  ? __pfx_lock_acquire+0x10/0x10
[ 3329.039573][T25684]  ? do_raw_spin_lock+0x14e/0x370
[ 3329.044636][T25684]  __handle_mm_fault+0x26ad/0x72d0
[ 3329.049789][T25684]  ? reacquire_held_locks+0x3eb/0x690
[ 3329.055174][T25684]  ? __pfx___handle_mm_fault+0x10/0x10
[ 3329.060668][T25684]  ? __pfx_reacquire_held_locks+0x10/0x10
[ 3329.066413][T25684]  ? mtree_range_walk+0x6fd/0x8e0
[ 3329.071464][T25684]  ? lock_vma_under_rcu+0x18a/0x730
[ 3329.076696][T25684]  ? __pfx_lock_release+0x10/0x10
[ 3329.081739][T25684]  ? lock_vma_under_rcu+0x2f9/0x730
[ 3329.086972][T25684]  ? lock_vma_under_rcu+0x18a/0x730
[ 3329.092186][T25684]  ? __pfx_lock_vma_under_rcu+0x10/0x10
[ 3329.097749][T25684]  handle_mm_fault+0x3c1/0x8a0
[ 3329.102543][T25684]  exc_page_fault+0x456/0x870
[ 3329.107250][T25684]  asm_exc_page_fault+0x26/0x30
[ 3329.112113][T25684] RIP: 0023:0xf73072bd
[ 3329.116204][T25684] Code: 14 8b b4 24 ac 00 00 00 89 78 18 8b 7c 24 64 89 70 20 8b b4 24 a8 00 00 00 89 72 24 8b 74 24 48 89 72 28 8b b4 24 b8 00 00 00 <89> 70 50 89 de 0f b6 9c 24 b7 00 00 00 88 9c 3e 20 60 02 00 8b bc
[ 3329.135827][T25684] RSP: 002b:00000000f7589b10 EFLAGS: 00010286
[ 3329.141907][T25684] RAX: 00000000f7464fc0 RBX: 00000000f743eff4 RCX: 00000000f7464fcc
[ 3329.149909][T25684] RDX: 00000000f7464fc0 RSI: 0000000000000000 RDI: 0000000000000000
[ 3329.157903][T25684] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 3329.165917][T25684] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 3329.173900][T25684] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 3329.181899][T25684]  </TASK>
[ 3329.226904][T25684] memory: usage 307200kB, limit 307200kB, failcnt 152207
[ 3329.234222][T25684] memory+swap: usage 307924kB, limit 9007199254740988kB, failcnt 0
[ 3329.243440][T25684] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0
[ 3329.251479][T25684] Memory cgroup stats for /syz0:
[ 3329.251632][T25684] cache 0
[ 3329.260684][T25684] rss 12288
[ 3329.263941][T25684] rss_huge 0
[ 3329.267635][T25684] shmem 0
[ 3329.270608][T25684] mapped_file 0
[ 3329.274093][T25684] dirty 0
[ 3329.278034][T25684] writeback 0
[ 3329.281462][T25684] workingset_refault_anon 55946
[ 3329.286980][T25684] workingset_refault_file 0
[ 3329.291640][T25684] swap 741376
[ 3329.295077][T25684] swapcached 12288
[ 3329.299857][T25684] pgpgin 250688
[ 3329.303452][T25684] pgpgout 250685
[ 3329.307721][T25684] pgfault 580345
[ 3329.311388][T25684] pgmajfault 54445
[ 3329.315219][T25684] inactive_anon 0
[ 3329.320742][T25684] active_anon 12288
[ 3329.329667][T25684] inactive_file 0
[ 3329.333467][T25684] active_file 0
[ 3329.339188][T25684] unevictable 0
[ 3329.342781][T25684] hierarchical_memory_limit 314572800
[ 3329.348972][T25684] hierarchical_memsw_limit 9223372036854771712
[ 3329.355262][T25684] total_cache 0
[ 3329.359661][T25684] total_rss 12288
[ 3329.363706][T25684] total_rss_huge 0
[ 3329.367839][T25684] total_shmem 0
[ 3329.371441][T25684] total_mapped_file 0
[ 3329.375532][T25684] total_dirty 0
[ 3329.379996][T25684] total_writeback 0
[ 3329.383944][T25684] total_workingset_refault_anon 55946
[ 3329.390079][T25684] total_workingset_refault_file 0
[ 3329.395228][T25684] total_swap 741376
[ 3329.399893][T25684] total_swapcached 12288
[ 3329.404271][T25684] total_pgpgin 250688
[ 3329.408944][T25684] total_pgpgout 250685
[ 3329.413148][T25684] total_pgfault 580345
[ 3329.418207][T25684] total_pgmajfault 54445
[ 3329.422583][T25684] total_inactive_anon 0
[ 3329.428265][T25684] total_active_anon 12288
[ 3329.432732][T25684] total_inactive_file 0
[ 3329.437717][T25684] total_active_file 0
[ 3329.441824][T25684] total_unevictable 0
[ 3329.445929][T25684] anon_cost 0
[ 3329.450086][T25684] file_cost 0
[ 3329.453503][T25684] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=25684,uid=0
06:23:26 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x87c, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x84c, 0x2, [@TCA_BASIC_POLICE={0x848, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1500]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}]}]}}]}, 0x87c}}, 0x0)

[ 3329.470006][T25684] Memory cgroup out of memory: Killed process 25684 (syz-executor.0) total-vm:54344kB, anon-rss:316kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:64kB oom_score_adj:1000
06:23:26 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x888, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x858, 0x2, [@TCA_BASIC_POLICE={0x854, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5408]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}, @TCA_POLICE_PEAKRATE64={0xc}]}]}}]}, 0x888}}, 0x0)

[ 3329.645850][T25689] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3329.656667][T25689] CPU: 1 PID: 25689 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00250-g137e0ec05aeb #0
[ 3329.667141][T25689] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3329.677228][T25689] Call Trace:
[ 3329.680527][T25689]  <TASK>
[ 3329.683476][T25689]  dump_stack_lvl+0x1e7/0x2e0
[ 3329.688192][T25689]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3329.693410][T25689]  ? __pfx__printk+0x10/0x10
[ 3329.698016][T25689]  ? ___ratelimit+0x4c4/0x670
[ 3329.702714][T25689]  ? __pfx____ratelimit+0x10/0x10
[ 3329.707784][T25689]  dump_header+0xda/0x6a0
[ 3329.712140][T25689]  oom_kill_process+0x3a7/0x930
[ 3329.717019][T25689]  out_of_memory+0xf67/0x1320
[ 3329.721715][T25689]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3329.727362][T25689]  ? __pfx___mutex_lock+0x10/0x10
[ 3329.732400][T25689]  ? __pfx_out_of_memory+0x10/0x10
[ 3329.737552][T25689]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3329.743122][T25689]  ? __pfx_lock_release+0x10/0x10
[ 3329.748170][T25689]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3329.754252][T25689]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3329.759471][T25689]  ? mem_cgroup_iter+0x3e9/0x560
[ 3329.764430][T25689]  try_charge_memcg+0xda2/0x18a0
[ 3329.769407][T25689]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3329.774792][T25689]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3329.780524][T25689]  ? __pfx_lock_release+0x10/0x10
[ 3329.785564][T25689]  ? memcg_account_kmem+0x1e7/0x210
[ 3329.790786][T25689]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3329.796608][T25689]  __memcg_kmem_charge_page+0xe1/0x250
[ 3329.802089][T25689]  memcg_charge_kernel_stack+0x210/0x550
[ 3329.807743][T25689]  dup_task_struct+0x15d/0x7d0
[ 3329.812530][T25689]  copy_process+0x5d5/0x3fc0
[ 3329.817144][T25689]  ? __might_fault+0xa9/0x120
[ 3329.821922][T25689]  ? __pfx_lock_release+0x10/0x10
[ 3329.826969][T25689]  ? __pfx_copy_process+0x10/0x10
[ 3329.832005][T25689]  ? __might_fault+0xc5/0x120
[ 3329.836697][T25689]  ? __asan_memset+0x23/0x50
[ 3329.841318][T25689]  kernel_clone+0x21d/0x8d0
[ 3329.845838][T25689]  ? __pfx_kernel_clone+0x10/0x10
[ 3329.850891][T25689]  __se_sys_clone3+0x2cb/0x350
[ 3329.855674][T25689]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3329.860984][T25689]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3329.866997][T25689]  ? exc_page_fault+0x587/0x870
[ 3329.871868][T25689]  ? int80_emulation+0xea/0x210
[ 3329.876770][T25689]  int80_emulation+0x129/0x210
[ 3329.881558][T25689]  asm_int80_emulation+0x1a/0x20
[ 3329.886511][T25689] RIP: 0023:0xf7372060
[ 3329.890592][T25689] Code: 4c 24 04 85 c9 0f 84 df 0d fe ff 8b 54 24 0c 85 d2 0f 84 d3 0d fe ff 53 56 8b 74 24 18 89 cb 8b 4c 24 10 b8 b3 01 00 00 cd 80 <85> c0 74 09 5e 5b 0f 8c b4 0d fe ff c3 31 ed 83 e4 f0 83 ec 0c 56
[ 3329.910217][T25689] RSP: 002b:00000000f75898e4 EFLAGS: 00000282 ORIG_RAX: 00000000000001b3
[ 3329.918666][T25689] RAX: ffffffffffffffda RBX: 00000000f7589950 RCX: 0000000000000058
[ 3329.926656][T25689] RDX: 00000000f7322eb0 RSI: 00000000f5ee2b40 RDI: 00000000ffffffd8
[ 3329.934722][T25689] RBP: 000000000000000b R08: 0000000000000000 R09: 0000000000000000
[ 3329.942699][T25689] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 3329.950786][T25689] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 3329.958870][T25689]  </TASK>
[ 3330.013440][T25502] Bluetooth: hci6: command 0x040f tx timeout
[ 3330.022352][T25689] memory: usage 307200kB, limit 307200kB, failcnt 152361
[ 3330.032565][T25689] memory+swap: usage 307948kB, limit 9007199254740988kB, failcnt 0
[ 3330.043887][T25689] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0
[ 3330.053621][T25689] Memory cgroup stats for /syz0:
[ 3330.053769][T25689] cache 0
[ 3330.064629][T25689] rss 12288
[ 3330.091984][T25689] rss_huge 0
[ 3330.095449][T25689] shmem 0
[ 3330.099189][T25689] mapped_file 0
[ 3330.102858][T25689] dirty 0
[ 3330.106002][T25689] writeback 0
[ 3330.111698][T25689] workingset_refault_anon 56006
[ 3330.117141][T25689] workingset_refault_file 0
[ 3330.121899][T25689] swap 765952
[ 3330.125363][T25689] swapcached 12288
[ 3330.130033][T25689] pgpgin 250758
[ 3330.133700][T25689] pgpgout 250755
[ 3330.137992][T25689] pgfault 580454
[ 3330.141796][T25689] pgmajfault 54502
[ 3330.145904][T25689] inactive_anon 0
[ 3330.150397][T25689] active_anon 12288
[ 3330.154426][T25689] inactive_file 0
[ 3330.158752][T25689] active_file 0
[ 3330.162416][T25689] unevictable 0
[ 3330.166083][T25689] hierarchical_memory_limit 314572800
[ 3330.172436][T25689] hierarchical_memsw_limit 9223372036854771712
[ 3330.179286][T25689] total_cache 0
[ 3330.182959][T25689] total_rss 12288
[ 3330.187354][T25689] total_rss_huge 0
[ 3330.191277][T25689] total_shmem 0
[ 3330.194952][T25689] total_mapped_file 0
[ 3330.199860][T25689] total_dirty 0
[ 3330.203530][T25689] total_writeback 0
[ 3330.208080][T25689] total_workingset_refault_anon 56006
[ 3330.213709][T25689] total_workingset_refault_file 0
[ 3330.227642][T25689] total_swap 765952
[ 3330.232587][T25689] total_swapcached 12288
[ 3330.237686][T25689] total_pgpgin 250758
[ 3330.241864][T25689] total_pgpgout 250755
[ 3330.246946][T25689] total_pgfault 580454
[ 3330.251225][T25689] total_pgmajfault 54502
[ 3330.255685][T25689] total_inactive_anon 0
[ 3330.260815][T25689] total_active_anon 12288
[ 3330.265387][T25689] total_inactive_file 0
[ 3330.270317][T25689] total_active_file 0
[ 3330.274523][T25689] total_unevictable 0
[ 3330.279298][T25689] anon_cost 0
[ 3330.282790][T25689] file_cost 0
[ 3330.286250][T25689] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=25689,uid=0
[ 3330.303210][T25689] Memory cgroup out of memory: Killed process 25689 (syz-executor.0) total-vm:54344kB, anon-rss:308kB, file-rss:8704kB, shmem-rss:0kB, UID:0 pgtables:64kB oom_score_adj:1000
[ 3330.323337][T25690] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
06:23:27 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x87c, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x84c, 0x2, [@TCA_BASIC_POLICE={0x848, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1d28]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}]}]}}]}, 0x87c}}, 0x0)

[ 3330.338862][T25690] CPU: 0 PID: 25690 Comm: syz-executor.2 Not tainted 6.8.0-rc7-syzkaller-00250-g137e0ec05aeb #0
[ 3330.349343][T25690] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3330.359532][T25690] Call Trace:
[ 3330.362855][T25690]  <TASK>
[ 3330.365828][T25690]  dump_stack_lvl+0x1e7/0x2e0
[ 3330.370568][T25690]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3330.375827][T25690]  ? __pfx__printk+0x10/0x10
[ 3330.380470][T25690]  ? ___ratelimit+0x4c4/0x670
[ 3330.385207][T25690]  ? __pfx____ratelimit+0x10/0x10
[ 3330.390291][T25690]  dump_header+0xda/0x6a0
[ 3330.394678][T25690]  oom_kill_process+0x3a7/0x930
[ 3330.399591][T25690]  out_of_memory+0xf67/0x1320
[ 3330.404325][T25690]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3330.410017][T25690]  ? __pfx___mutex_lock+0x10/0x10
[ 3330.415099][T25690]  ? __pfx_out_of_memory+0x10/0x10
[ 3330.420284][T25690]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3330.425898][T25690]  ? __pfx_lock_release+0x10/0x10
[ 3330.430989][T25690]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3330.437124][T25690]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3330.442382][T25690]  ? mem_cgroup_iter+0x3e9/0x560
[ 3330.447385][T25690]  try_charge_memcg+0xda2/0x18a0
[ 3330.452407][T25690]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3330.457838][T25690]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3330.463613][T25690]  ? __pfx_lock_release+0x10/0x10
[ 3330.468724][T25690]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3330.474599][T25690]  __memcg_kmem_charge_page+0xe1/0x250
[ 3330.480127][T25690]  memcg_charge_kernel_stack+0xa7/0x550
[ 3330.485737][T25690]  dup_task_struct+0x15d/0x7d0
[ 3330.490564][T25690]  copy_process+0x5d5/0x3fc0
[ 3330.495230][T25690]  ? __might_fault+0xa9/0x120
[ 3330.499965][T25690]  ? __pfx_lock_release+0x10/0x10
[ 3330.505067][T25690]  ? __pfx_copy_process+0x10/0x10
[ 3330.510142][T25690]  ? __might_fault+0xc5/0x120
[ 3330.514902][T25690]  ? __asan_memset+0x23/0x50
[ 3330.519567][T25690]  kernel_clone+0x21d/0x8d0
[ 3330.524130][T25690]  ? __pfx_kernel_clone+0x10/0x10
[ 3330.529218][T25690]  ? __pfx___might_resched+0x10/0x10
[ 3330.534553][T25690]  __se_sys_clone3+0x2cb/0x350
[ 3330.539359][T25690]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3330.544729][T25690]  ? int80_emulation+0xea/0x210
[ 3330.550305][T25690]  int80_emulation+0x129/0x210
[ 3330.555179][T25690]  asm_int80_emulation+0x1a/0x20
[ 3330.560169][T25690] RIP: 0023:0xf7376060
[ 3330.564278][T25690] Code: 4c 24 04 85 c9 0f 84 df 0d fe ff 8b 54 24 0c 85 d2 0f 84 d3 0d fe ff 53 56 8b 74 24 18 89 cb 8b 4c 24 10 b8 b3 01 00 00 cd 80 <85> c0 74 09 5e 5b 0f 8c b4 0d fe ff c3 31 ed 83 e4 f0 83 ec 0c 56
[ 3330.583915][T25690] RSP: 002b:00000000f758d8e4 EFLAGS: 00000282 ORIG_RAX: 00000000000001b3
[ 3330.592471][T25690] RAX: ffffffffffffffda RBX: 00000000f758d950 RCX: 0000000000000058
[ 3330.600507][T25690] RDX: 00000000f7326eb0 RSI: 00000000f5ee6b40 RDI: 00000000ffffffd8
[ 3330.608531][T25690] RBP: 000000000000000b R08: 0000000000000000 R09: 0000000000000000
[ 3330.616554][T25690] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 3330.624581][T25690] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 3330.632705][T25690]  </TASK>
[ 3330.637632][T25690] memory: usage 307200kB, limit 307200kB, failcnt 123595
[ 3330.644709][T25690] memory+swap: usage 307684kB, limit 9007199254740988kB, failcnt 0
[ 3330.652738][T25690] kmem: usage 307176kB, limit 9007199254740988kB, failcnt 0
[ 3330.660145][T25690] Memory cgroup stats for /syz2:
[ 3330.660291][T25690] cache 0
[ 3330.668288][T25690] rss 12288
[ 3330.671437][T25690] rss_huge 0
[ 3330.674677][T25690] shmem 0
[ 3330.678099][T25690] mapped_file 0
[ 3330.681629][T25690] dirty 0
[ 3330.684583][T25690] writeback 0
[ 3330.688738][T25690] workingset_refault_anon 44206
[ 3330.693635][T25690] workingset_refault_file 0
[ 3330.698772][T25690] swap 495616
[ 3330.702120][T25690] swapcached 24576
[ 3330.705871][T25690] pgpgin 248720
[ 3330.720358][T25690] pgpgout 248714
[ 3330.730204][T25690] pgfault 590780
[ 3330.733814][T25690] pgmajfault 43614
[ 3330.749003][T25690] inactive_anon 24576
[ 3330.753050][T25690] active_anon 0
[ 3330.760064][T25690] inactive_file 0
[ 3330.763748][T25690] active_file 0
[ 3330.770192][T25690] unevictable 0
[ 3330.773702][T25690] hierarchical_memory_limit 314572800
[ 3330.784961][T25690] hierarchical_memsw_limit 9223372036854771712
[ 3330.791818][T25690] total_cache 0
[ 3330.795441][T25690] total_rss 12288
[ 3330.802098][T25690] total_rss_huge 0
[ 3330.806071][T25690] total_shmem 0
[ 3330.810306][T25690] total_mapped_file 0
[ 3330.814496][T25690] total_dirty 0
[ 3330.818935][T25690] total_writeback 0
[ 3330.822949][T25690] total_workingset_refault_anon 44206
[ 3330.831887][T25690] total_workingset_refault_file 0
[ 3330.837516][T25690] total_swap 495616
[ 3330.841514][T25690] total_swapcached 24576
[ 3330.845926][T25690] total_pgpgin 248720
[ 3330.850847][T25690] total_pgpgout 248714
[ 3330.855195][T25690] total_pgfault 590780
[ 3330.860064][T25690] total_pgmajfault 43614
[ 3330.861972][T25502] Bluetooth: hci5: command 0x0419 tx timeout
[ 3330.864583][T25690] total_inactive_anon 24576
[ 3330.876732][T25690] total_active_anon 0
[ 3330.881004][T25690] total_inactive_file 0
[ 3330.885442][T25690] total_active_file 0
[ 3330.890427][T25690] total_unevictable 0
[ 3330.894676][T25690] anon_cost 0
[ 3330.898732][T25690] file_cost 0
[ 3330.902257][T25690] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=25690,uid=0
[ 3330.918748][T25690] Memory cgroup out of memory: Killed process 25690 (syz-executor.2) total-vm:54344kB, anon-rss:316kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:64kB oom_score_adj:1000
[ 3330.941186][T25691] syz-executor.0 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[ 3330.962147][T25691] CPU: 1 PID: 25691 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00250-g137e0ec05aeb #0
[ 3330.972655][T25691] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3330.982757][T25691] Call Trace:
[ 3330.986067][T25691]  <TASK>
[ 3330.989028][T25691]  dump_stack_lvl+0x1e7/0x2e0
[ 3330.993766][T25691]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3330.999021][T25691]  ? __pfx__printk+0x10/0x10
[ 3331.003661][T25691]  ? ___ratelimit+0x4c4/0x670
06:23:27 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x888, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x858, 0x2, [@TCA_BASIC_POLICE={0x854, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8100]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}, @TCA_POLICE_PEAKRATE64={0xc}]}]}}]}, 0x888}}, 0x0)

[ 3331.008398][T25691]  ? __pfx____ratelimit+0x10/0x10
[ 3331.013486][T25691]  dump_header+0xda/0x6a0
[ 3331.017875][T25691]  oom_kill_process+0x3a7/0x930
[ 3331.022790][T25691]  out_of_memory+0xf67/0x1320
[ 3331.027524][T25691]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3331.033217][T25691]  ? __pfx___mutex_lock+0x10/0x10
[ 3331.038383][T25691]  ? __pfx_out_of_memory+0x10/0x10
[ 3331.043557][T25691]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3331.049178][T25691]  ? __pfx_lock_release+0x10/0x10
[ 3331.054267][T25691]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3331.060398][T25691]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3331.065652][T25691]  ? mem_cgroup_iter+0x3e9/0x560
[ 3331.070649][T25691]  try_charge_memcg+0xda2/0x18a0
[ 3331.075659][T25691]  ? mark_lock+0x9a/0x350
[ 3331.080070][T25691]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3331.085528][T25691]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 3331.092252][T25691]  charge_memcg+0xa2/0x160
[ 3331.096728][T25691]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 3331.102860][T25691]  __read_swap_cache_async+0x480/0x8b0
[ 3331.108393][T25691]  ? mark_lock+0x9a/0x350
[ 3331.112787][T25691]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 3331.118851][T25691]  swap_cluster_readahead+0x67c/0x810
[ 3331.124304][T25691]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 3331.130270][T25691]  ? __pfx_lock_release+0x10/0x10
[ 3331.135383][T25691]  ? xas_descend+0x37e/0x470
[ 3331.140080][T25691]  swapin_readahead+0x1ea/0x1070
[ 3331.145082][T25691]  ? filemap_get_entry+0x127/0x4e0
[ 3331.150272][T25691]  ? __pfx_swapin_readahead+0x10/0x10
[ 3331.155717][T25691]  ? __filemap_get_folio+0x935/0xbc0
[ 3331.161102][T25691]  ? swap_cache_get_folio+0x9f/0x570
[ 3331.166459][T25691]  do_swap_page+0x791/0x3f40
[ 3331.171109][T25691]  ? rcu_is_watching+0x15/0xb0
[ 3331.175956][T25691]  ? do_swap_page+0x154/0x3f40
[ 3331.180789][T25691]  ? __pfx_do_swap_page+0x10/0x10
[ 3331.185880][T25691]  ? pte_offset_map_nolock+0x137/0x1f0
[ 3331.191412][T25691]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 3331.197316][T25691]  __handle_mm_fault+0x15e8/0x72d0
[ 3331.202537][T25691]  ? reacquire_held_locks+0x3eb/0x690
[ 3331.207973][T25691]  ? __pfx___handle_mm_fault+0x10/0x10
[ 3331.213515][T25691]  ? __pfx_reacquire_held_locks+0x10/0x10
[ 3331.219316][T25691]  ? mtree_range_walk+0x6fd/0x8e0
[ 3331.224405][T25691]  ? lock_vma_under_rcu+0x18a/0x730
[ 3331.229672][T25691]  ? __pfx_lock_release+0x10/0x10
[ 3331.234759][T25691]  ? lock_vma_under_rcu+0x2f9/0x730
[ 3331.240139][T25691]  ? lock_vma_under_rcu+0x18a/0x730
[ 3331.245518][T25691]  ? __pfx_lock_vma_under_rcu+0x10/0x10
[ 3331.251214][T25691]  handle_mm_fault+0x3c1/0x8a0
[ 3331.256055][T25691]  exc_page_fault+0x456/0x870
[ 3331.260805][T25691]  asm_exc_page_fault+0x26/0x30
[ 3331.265710][T25691] RIP: 0023:0xf734e931
[ 3331.269833][T25691] Code: 75 f7 ff 50 e8 60 f8 ff ff 57 56 53 8b 7c 24 10 e8 14 97 fa ff 81 c3 d8 06 0f 00 85 ff 74 3a 8d 83 10 06 b5 00 83 ec 08 8b 00 <6a> 08 8d 70 0e 83 c0 10 50 e8 01 d4 fd ff 83 c4 10 85 c0 74 23 89
[ 3331.289520][T25691] RSP: 002b:00000000f75899c8 EFLAGS: 00010292
[ 3331.295641][T25691] RAX: 0000000000000001 RBX: 00000000f743eff4 RCX: 0000000000020000
[ 3331.303676][T25691] RDX: 0000000000000003 RSI: 0000000000001000 RDI: 00000000f5ee2b40
[ 3331.311697][T25691] RBP: 00000000f5ee2b40 R08: 0000000000000000 R09: 0000000000000000
[ 3331.319719][T25691] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 3331.327825][T25691] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 3331.335875][T25691]  </TASK>
[ 3331.354255][T25691] memory: usage 307200kB, limit 307200kB, failcnt 152736
[ 3331.380610][T25691] memory+swap: usage 307920kB, limit 9007199254740988kB, failcnt 0
[ 3331.394011][T25691] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0
[ 3331.410951][T25691] Memory cgroup stats for /syz0:
[ 3331.411111][T25691] cache 0
[ 3331.428278][T25691] rss 12288
[ 3331.431603][T25691] rss_huge 0
[ 3331.435026][T25691] shmem 0
[ 3331.440262][T25691] mapped_file 0
[ 3331.448043][T25691] dirty 0
[ 3331.451213][T25691] writeback 0
[ 3331.454712][T25691] workingset_refault_anon 56153
[ 3331.465537][T25691] workingset_refault_file 0
[ 3331.471525][T25691] swap 790528
[ 3331.475778][T25691] swapcached 12288
[ 3331.483747][T25691] pgpgin 250917
[ 3331.488771][T25691] pgpgout 250914
[ 3331.492548][T25691] pgfault 580707
[ 3331.498579][T25691] pgmajfault 54640
[ 3331.504362][T25691] inactive_anon 8192
[ 3331.510290][T25691] active_anon 4096
[ 3331.514232][T25691] inactive_file 0
[ 3331.522229][T25691] active_file 0
[ 3331.525877][T25691] unevictable 0
[ 3331.531253][T25691] hierarchical_memory_limit 314572800
[ 3331.540442][T25691] hierarchical_memsw_limit 9223372036854771712
[ 3331.548743][T25691] total_cache 0
[ 3331.552432][T25691] total_rss 12288
[ 3331.559217][T25691] total_rss_huge 0
[ 3331.563163][T25691] total_shmem 0
[ 3331.571501][T25691] total_mapped_file 0
[ 3331.575714][T25691] total_dirty 0
[ 3331.582271][T25691] total_writeback 0
[ 3331.591629][T25691] total_workingset_refault_anon 56153
[ 3331.599211][T25691] total_workingset_refault_file 0
[ 3331.604471][T25691] total_swap 790528
[ 3331.611302][T25691] total_swapcached 12288
[ 3331.615743][T25691] total_pgpgin 250917
[ 3331.623144][T25691] total_pgpgout 250914
[ 3331.629908][T25691] total_pgfault 580707
[ 3331.634820][T25691] total_pgmajfault 54640
[ 3331.649028][T25691] total_inactive_anon 8192
[ 3331.660186][T25691] total_active_anon 4096
[ 3331.665134][T25691] total_inactive_file 0
[ 3331.672511][T25691] total_active_file 0
[ 3331.681310][T25691] total_unevictable 0
[ 3331.689870][T25691] anon_cost 0
[ 3331.693382][T25691] file_cost 0
[ 3331.699811][T25691] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=25691,uid=0
06:23:28 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x87c, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x84c, 0x2, [@TCA_BASIC_POLICE={0x848, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x281d]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}]}]}}]}, 0x87c}}, 0x0)

[ 3331.720485][T25691] Memory cgroup out of memory: Killed process 25691 (syz-executor.0) total-vm:54344kB, anon-rss:360kB, file-rss:8704kB, shmem-rss:0kB, UID:0 pgtables:64kB oom_score_adj:1000
[ 3331.765202][ T5123] syz-executor.2 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[ 3331.777350][ T5123] CPU: 0 PID: 5123 Comm: syz-executor.2 Not tainted 6.8.0-rc7-syzkaller-00250-g137e0ec05aeb #0
[ 3331.787729][ T5123] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3331.797822][ T5123] Call Trace:
[ 3331.801130][ T5123]  <TASK>
[ 3331.804066][ T5123]  dump_stack_lvl+0x1e7/0x2e0
[ 3331.808784][ T5123]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3331.814012][ T5123]  ? __pfx__printk+0x10/0x10
[ 3331.818616][ T5123]  ? ___ratelimit+0x4c4/0x670
[ 3331.823318][ T5123]  ? __pfx____ratelimit+0x10/0x10
[ 3331.828367][ T5123]  dump_header+0xda/0x6a0
[ 3331.832720][ T5123]  oom_kill_process+0x3a7/0x930
[ 3331.837595][ T5123]  out_of_memory+0xf67/0x1320
[ 3331.842291][ T5123]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3331.847944][ T5123]  ? __pfx___mutex_lock+0x10/0x10
[ 3331.852984][ T5123]  ? __pfx_out_of_memory+0x10/0x10
[ 3331.858118][ T5123]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3331.863676][ T5123]  ? __pfx_lock_release+0x10/0x10
[ 3331.868717][ T5123]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3331.874826][ T5123]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3331.880039][ T5123]  ? mem_cgroup_iter+0x3e9/0x560
[ 3331.885006][ T5123]  try_charge_memcg+0xda2/0x18a0
[ 3331.889957][ T5123]  ? mark_lock+0x9a/0x350
[ 3331.894319][ T5123]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3331.899737][ T5123]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 3331.905903][ T5123]  charge_memcg+0xa2/0x160
[ 3331.910344][ T5123]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 3331.916443][ T5123]  __read_swap_cache_async+0x480/0x8b0
[ 3331.921921][ T5123]  ? mark_lock+0x9a/0x350
[ 3331.926274][ T5123]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 3331.932290][ T5123]  swap_cluster_readahead+0x67c/0x810
[ 3331.937691][ T5123]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 3331.943627][ T5123]  ? __pfx_lock_release+0x10/0x10
[ 3331.948670][ T5123]  ? xas_descend+0x37e/0x470
[ 3331.953284][ T5123]  swapin_readahead+0x1ea/0x1070
[ 3331.958237][ T5123]  ? filemap_get_entry+0x127/0x4e0
[ 3331.963376][ T5123]  ? __pfx_swapin_readahead+0x10/0x10
[ 3331.968774][ T5123]  ? __filemap_get_folio+0x935/0xbc0
[ 3331.974105][ T5123]  ? swap_cache_get_folio+0x9f/0x570
[ 3331.979409][ T5123]  do_swap_page+0x791/0x3f40
[ 3331.984015][ T5123]  ? rcu_is_watching+0x15/0xb0
[ 3331.988809][ T5123]  ? do_swap_page+0x154/0x3f40
[ 3331.993584][ T5123]  ? __pfx_do_swap_page+0x10/0x10
[ 3331.998631][ T5123]  ? pte_offset_map_nolock+0x137/0x1f0
[ 3332.004100][ T5123]  ? mark_lock+0x9a/0x350
[ 3332.008436][ T5123]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 3332.014255][ T5123]  ? __pfx_validate_chain+0x10/0x10
[ 3332.019469][ T5123]  __handle_mm_fault+0x15e8/0x72d0
[ 3332.024632][ T5123]  ? __pfx___handle_mm_fault+0x10/0x10
[ 3332.030112][ T5123]  ? mt_find+0x226/0x850
[ 3332.034375][ T5123]  ? __pfx_lock_release+0x10/0x10
[ 3332.039443][ T5123]  ? mt_find+0x62d/0x850
[ 3332.043705][ T5123]  ? mt_find+0x226/0x850
[ 3332.047984][ T5123]  ? find_vma+0x142/0x1c0
[ 3332.052324][ T5123]  ? __pfx_find_vma+0x10/0x10
[ 3332.057015][ T5123]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3332.063018][ T5123]  handle_mm_fault+0x3c1/0x8a0
[ 3332.067812][ T5123]  exc_page_fault+0x2ad/0x870
[ 3332.072514][ T5123]  asm_exc_page_fault+0x26/0x30
[ 3332.077373][ T5123] RIP: 0010:__get_user_8+0x11/0x20
[ 3332.082495][ T5123] Code: ca c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 89 c2 48 c1 fa 3f 48 09 d0 0f 01 cb <48> 8b 10 31 c0 0f 01 ca c3 cc cc cc cc 66 90 90 90 90 90 90 90 90
[ 3332.102202][ T5123] RSP: 0000:ffffc90003b4fd58 EFLAGS: 00050202
[ 3332.108293][ T5123] RAX: 00000000575e08a8 RBX: ffff88805c9632f8 RCX: ffffc90003b4fc03
[ 3332.116273][ T5123] RDX: 0000000000000000 RSI: ffffffff8baac7e0 RDI: ffffffff8bfe6da0
[ 3332.124258][ T5123] RBP: ffffc90003b4fe98 R08: ffffffff8f856cef R09: 1ffffffff1f0ad9d
[ 3332.132245][ T5123] R10: dffffc0000000000 R11: fffffbfff1f0ad9e R12: ffffc90003b4fd60
[ 3332.140225][ T5123] R13: ffffc90003b4ffd8 R14: dffffc0000000000 R15: ffff88805c961dc0
[ 3332.148244][ T5123]  __rseq_handle_notify_resume+0x158/0x1490
[ 3332.154190][ T5123]  ? __pfx_hrtimer_wakeup+0x10/0x10
[ 3332.159430][ T5123]  ? __pfx___rseq_handle_notify_resume+0x10/0x10
[ 3332.165799][ T5123]  ? syscall_exit_to_user_mode+0xa2/0x360
[ 3332.171541][ T5123]  syscall_exit_to_user_mode+0x113/0x360
[ 3332.177806][ T5123]  __do_fast_syscall_32+0xcf/0x120
[ 3332.182937][ T5123]  ? exc_page_fault+0x587/0x870
[ 3332.187897][ T5123]  do_fast_syscall_32+0x33/0x70
[ 3332.192770][ T5123]  entry_SYSENTER_compat_after_hwframe+0x7c/0x86
[ 3332.199127][ T5123] RIP: 0023:0xf72ec579
[ 3332.203217][ T5123] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[ 3332.222835][ T5123] RSP: 002b:00000000f758dc80 EFLAGS: 00000206 ORIG_RAX: 000000000000010b
[ 3332.231263][ T5123] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000
[ 3332.239243][ T5123] RDX: 00000000f758dcb4 RSI: 00000000f758dcac RDI: 00000000f758dcb4
[ 3332.247220][ T5123] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 3332.255199][ T5123] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 3332.263178][ T5123] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 3332.271181][ T5123]  </TASK>
[ 3332.277116][T25502] Bluetooth: hci6: command 0x0419 tx timeout
[ 3332.309320][ T5123] memory: usage 307200kB, limit 307200kB, failcnt 124157
[ 3332.337868][ T5123] memory+swap: usage 307668kB, limit 9007199254740988kB, failcnt 0
[ 3332.352801][ T5123] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0
[ 3332.370104][ T5123] Memory cgroup stats for /syz2:
[ 3332.370268][ T5123] cache 0
[ 3332.378505][ T5123] rss 0
[ 3332.381299][ T5123] rss_huge 0
[ 3332.384520][ T5123] shmem 0
[ 3332.388659][ T5123] mapped_file 0
[ 3332.392161][ T5123] dirty 0
[ 3332.395113][ T5123] writeback 0
[ 3332.398537][ T5123] workingset_refault_anon 44424
[ 3332.403415][ T5123] workingset_refault_file 0
[ 3332.408019][ T5123] swap 479232
[ 3332.411365][ T5123] swapcached 12288
[ 3332.415105][ T5123] pgpgin 248947
[ 3332.418776][ T5123] pgpgout 248944
[ 3332.422348][ T5123] pgfault 591105
[ 3332.425906][ T5123] pgmajfault 43826
[ 3332.429689][ T5123] inactive_anon 0
[ 3332.433343][ T5123] active_anon 12288
[ 3332.437302][ T5123] inactive_file 0
[ 3332.440962][ T5123] active_file 0
[ 3332.444445][ T5123] unevictable 0
[ 3332.447992][ T5123] hierarchical_memory_limit 314572800
[ 3332.453387][ T5123] hierarchical_memsw_limit 9223372036854771712
[ 3332.459688][ T5123] total_cache 0
[ 3332.463175][ T5123] total_rss 0
[ 3332.466775][ T5123] total_rss_huge 0
[ 3332.470520][ T5123] total_shmem 0
[ 3332.474016][ T5123] total_mapped_file 0
[ 3332.478850][ T5123] total_dirty 0
[ 3332.482352][ T5123] total_writeback 0
[ 3332.486178][ T5123] total_workingset_refault_anon 44424
[ 3332.491992][ T5123] total_workingset_refault_file 0
[ 3332.498234][ T5123] total_swap 479232
[ 3332.502075][ T5123] total_swapcached 12288
[ 3332.511024][ T5123] total_pgpgin 248947
[ 3332.515161][ T5123] total_pgpgout 248944
[ 3332.519509][ T5123] total_pgfault 591105
[ 3332.523702][ T5123] total_pgmajfault 43826
[ 3332.528493][ T5123] total_inactive_anon 0
[ 3332.532768][ T5123] total_active_anon 12288
[ 3332.537618][ T5123] total_inactive_file 0
[ 3332.541899][ T5123] total_active_file 0
[ 3332.545992][ T5123] total_unevictable 0
[ 3332.553941][ T5123] anon_cost 0
[ 3332.558996][ T5123] file_cost 0
[ 3332.562417][ T5123] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=25692,uid=0
[ 3332.579660][ T5123] Memory cgroup out of memory: Killed process 25692 (syz-executor.2) total-vm:54344kB, anon-rss:308kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:64kB oom_score_adj:1000
06:23:29 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x888, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x858, 0x2, [@TCA_BASIC_POLICE={0x854, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x34000]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}, @TCA_POLICE_PEAKRATE64={0xc}]}]}}]}, 0x888}}, 0x0)

[ 3332.659344][ T5119] syz-executor.0 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[ 3332.691458][ T5119] CPU: 0 PID: 5119 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00250-g137e0ec05aeb #0
[ 3332.701865][ T5119] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3332.711966][ T5119] Call Trace:
[ 3332.715286][ T5119]  <TASK>
[ 3332.718255][ T5119]  dump_stack_lvl+0x1e7/0x2e0
[ 3332.722995][ T5119]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3332.728264][ T5119]  ? __pfx__printk+0x10/0x10
[ 3332.732902][ T5119]  ? ___ratelimit+0x4c4/0x670
[ 3332.737637][ T5119]  ? __pfx____ratelimit+0x10/0x10
[ 3332.742729][ T5119]  dump_header+0xda/0x6a0
[ 3332.747119][ T5119]  oom_kill_process+0x3a7/0x930
[ 3332.752024][ T5119]  out_of_memory+0xf67/0x1320
[ 3332.756766][ T5119]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3332.762453][ T5119]  ? __pfx___mutex_lock+0x10/0x10
[ 3332.767533][ T5119]  ? __pfx_out_of_memory+0x10/0x10
[ 3332.772712][ T5119]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3332.778318][ T5119]  ? __pfx_lock_release+0x10/0x10
[ 3332.783416][ T5119]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3332.789540][ T5119]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3332.794798][ T5119]  ? mem_cgroup_iter+0x3e9/0x560
[ 3332.799799][ T5119]  try_charge_memcg+0xda2/0x18a0
[ 3332.804786][ T5119]  ? mark_lock+0x9a/0x350
[ 3332.809200][ T5119]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3332.814649][ T5119]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 3332.820872][ T5119]  charge_memcg+0xa2/0x160
[ 3332.825351][ T5119]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 3332.831474][ T5119]  __read_swap_cache_async+0x480/0x8b0
[ 3332.836989][ T5119]  ? mark_lock+0x9a/0x350
[ 3332.841377][ T5119]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 3332.847421][ T5119]  swap_cluster_readahead+0x67c/0x810
[ 3332.852855][ T5119]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 3332.858812][ T5119]  ? __pfx_lock_release+0x10/0x10
[ 3332.863896][ T5119]  ? xas_descend+0x37e/0x470
[ 3332.868553][ T5119]  swapin_readahead+0x1ea/0x1070
[ 3332.873550][ T5119]  ? filemap_get_entry+0x127/0x4e0
[ 3332.878735][ T5119]  ? __pfx_swapin_readahead+0x10/0x10
[ 3332.884170][ T5119]  ? __filemap_get_folio+0x935/0xbc0
[ 3332.889517][ T5119]  ? swap_cache_get_folio+0x9f/0x570
[ 3332.894862][ T5119]  do_swap_page+0x791/0x3f40
[ 3332.899504][ T5119]  ? rcu_is_watching+0x15/0xb0
[ 3332.904352][ T5119]  ? do_swap_page+0x154/0x3f40
[ 3332.909164][ T5119]  ? __pfx_do_swap_page+0x10/0x10
[ 3332.914238][ T5119]  ? pte_offset_map_nolock+0x137/0x1f0
[ 3332.919755][ T5119]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 3332.925625][ T5119]  __handle_mm_fault+0x15e8/0x72d0
[ 3332.930819][ T5119]  ? reacquire_held_locks+0x3eb/0x690
[ 3332.936243][ T5119]  ? __pfx___handle_mm_fault+0x10/0x10
[ 3332.941768][ T5119]  ? __pfx_reacquire_held_locks+0x10/0x10
[ 3332.947558][ T5119]  ? mtree_range_walk+0x6fd/0x8e0
[ 3332.952640][ T5119]  ? lock_vma_under_rcu+0x18a/0x730
[ 3332.957899][ T5119]  ? __pfx_lock_release+0x10/0x10
[ 3332.962987][ T5119]  ? lock_vma_under_rcu+0x2f9/0x730
[ 3332.968261][ T5119]  ? lock_vma_under_rcu+0x18a/0x730
[ 3332.973509][ T5119]  ? __pfx_lock_vma_under_rcu+0x10/0x10
[ 3332.979116][ T5119]  handle_mm_fault+0x3c1/0x8a0
[ 3332.983935][ T5119]  exc_page_fault+0x456/0x870
[ 3332.988672][ T5119]  asm_exc_page_fault+0x26/0x30
[ 3332.993573][ T5119] RIP: 0023:0xf73084d3
[ 3332.997780][ T5119] Code: ff 74 24 28 6a ff e8 1c 7d 03 00 83 c4 10 39 44 24 08 0f 84 cb 01 00 00 83 ec 0c 68 e8 03 00 00 e8 12 c6 03 00 b8 03 00 00 00 <f7> a7 a4 05 b5 00 8b b7 a8 05 b5 00 8d 34 76 89 c1 89 d3 58 b8 cd
[ 3333.017431][ T5119] RSP: 002b:00000000f7589d60 EFLAGS: 00010282
[ 3333.023547][ T5119] RAX: 0000000000000003 RBX: 00000000f743eff4 RCX: 0000000000000000
[ 3333.031564][ T5119] RDX: 0000000000000000 RSI: 0000000000b505a8 RDI: 00000000f743eff4
[ 3333.039581][ T5119] RBP: 0000000000000bb8 R08: 0000000000000000 R09: 0000000000000000
[ 3333.047601][ T5119] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 3333.055617][ T5119] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 3333.063654][ T5119]  </TASK>
[ 3333.077142][ T5119] memory: usage 307200kB, limit 307200kB, failcnt 152914
[ 3333.084268][ T5119] memory+swap: usage 307908kB, limit 9007199254740988kB, failcnt 0
[ 3333.092794][ T5119] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[ 3333.100956][ T5119] Memory cgroup stats for /syz0:
[ 3333.101109][ T5119] cache 0
[ 3333.109651][ T5119] rss 0
[ 3333.112465][ T5119] rss_huge 0
[ 3333.115685][ T5119] shmem 0
[ 3333.119358][ T5119] mapped_file 0
[ 3333.122917][ T5119] dirty 0
[ 3333.125883][ T5119] writeback 0
[ 3333.132237][ T5119] workingset_refault_anon 56227
[ 3333.137537][ T5119] workingset_refault_file 0
[ 3333.142083][ T5119] swap 724992
[ 3333.145388][ T5119] swapcached 0
[ 3333.149729][ T5119] pgpgin 251001
[ 3333.153319][ T5119] pgpgout 251001
[ 3333.157585][ T5119] pgfault 580834
[ 3333.161277][ T5119] pgmajfault 54710
[ 3333.165349][ T5119] inactive_anon 0
[ 3333.169875][ T5119] active_anon 0
[ 3333.173482][ T5119] inactive_file 0
[ 3333.457885][ T5119] active_file 0
[ 3333.461504][ T5119] unevictable 0
[ 3333.471951][ T5119] hierarchical_memory_limit 314572800
[ 3333.496501][ T5119] hierarchical_memsw_limit 9223372036854771712
[ 3333.502718][ T5119] total_cache 0
[ 3333.506200][ T5119] total_rss 0
[ 3333.510341][ T5119] total_rss_huge 0
[ 3333.514205][ T5119] total_shmem 0
[ 3333.518327][ T5119] total_mapped_file 0
[ 3333.522344][ T5119] total_dirty 0
[ 3333.525825][ T5119] total_writeback 0
[ 3333.533762][ T5119] total_workingset_refault_anon 56227
[ 3333.543229][ T5119] total_workingset_refault_file 0
[ 3333.551961][ T5119] total_swap 724992
[ 3333.555871][ T5119] total_swapcached 0
[ 3333.564859][ T5119] total_pgpgin 251001
[ 3333.569521][ T5119] total_pgpgout 251001
[ 3333.573641][ T5119] total_pgfault 580834
[ 3333.591810][ T5119] total_pgmajfault 54710
[ 3333.596124][ T5119] total_inactive_anon 0
[ 3333.610794][ T5119] total_active_anon 0
[ 3333.614942][ T5119] total_inactive_file 0
[ 3333.628059][ T5119] total_active_file 0
[ 3333.632112][ T5119] total_unevictable 0
[ 3333.636131][ T5119] anon_cost 0
[ 3333.656770][ T5119] file_cost 0
[ 3333.660174][ T5119] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=25693,uid=0
[ 3333.690854][ T5119] Memory cgroup out of memory: Killed process 25693 (syz-executor.0) total-vm:54344kB, anon-rss:308kB, file-rss:8704kB, shmem-rss:0kB, UID:0 pgtables:64kB oom_score_adj:1000
[ 3333.715433][T25694] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3333.727805][T25694] CPU: 1 PID: 25694 Comm: syz-executor.2 Not tainted 6.8.0-rc7-syzkaller-00250-g137e0ec05aeb #0
[ 3333.738288][T25694] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3333.748382][T25694] Call Trace:
[ 3333.751695][T25694]  <TASK>
[ 3333.754667][T25694]  dump_stack_lvl+0x1e7/0x2e0
[ 3333.759368][T25694]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3333.764575][T25694]  ? __pfx__printk+0x10/0x10
[ 3333.769167][T25694]  ? ___ratelimit+0x4c4/0x670
[ 3333.773868][T25694]  ? __pfx____ratelimit+0x10/0x10
[ 3333.778925][T25694]  dump_header+0xda/0x6a0
[ 3333.783288][T25694]  oom_kill_process+0x3a7/0x930
[ 3333.788175][T25694]  out_of_memory+0xf67/0x1320
[ 3333.792861][T25694]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3333.798495][T25694]  ? __pfx___mutex_lock+0x10/0x10
[ 3333.803607][T25694]  ? __pfx_out_of_memory+0x10/0x10
[ 3333.808738][T25694]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3333.814288][T25694]  ? __pfx_lock_release+0x10/0x10
[ 3333.819320][T25694]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3333.825417][T25694]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3333.830642][T25694]  ? mem_cgroup_iter+0x3e9/0x560
[ 3333.835613][T25694]  try_charge_memcg+0xda2/0x18a0
[ 3333.840583][T25694]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3333.845996][T25694]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3333.851717][T25694]  ? __pfx_lock_release+0x10/0x10
[ 3333.856752][T25694]  ? memcg_account_kmem+0x1e7/0x210
[ 3333.861963][T25694]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3333.867960][T25694]  __memcg_kmem_charge_page+0xe1/0x250
[ 3333.873429][T25694]  memcg_charge_kernel_stack+0x210/0x550
[ 3333.879085][T25694]  dup_task_struct+0x40d/0x7d0
[ 3333.886559][T25694]  copy_process+0x5d5/0x3fc0
[ 3333.891186][T25694]  ? __might_fault+0xa9/0x120
[ 3333.895880][T25694]  ? __pfx_lock_release+0x10/0x10
[ 3333.900931][T25694]  ? __pfx_copy_process+0x10/0x10
[ 3333.905957][T25694]  ? __might_fault+0xc5/0x120
[ 3333.910650][T25694]  ? __asan_memset+0x23/0x50
[ 3333.915251][T25694]  kernel_clone+0x21d/0x8d0
[ 3333.919765][T25694]  ? __pfx_kernel_clone+0x10/0x10
[ 3333.924799][T25694]  ? __pfx___might_resched+0x10/0x10
[ 3333.930205][T25694]  __se_sys_clone3+0x2cb/0x350
[ 3333.935003][T25694]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3333.940323][T25694]  ? int80_emulation+0xea/0x210
[ 3333.945195][T25694]  int80_emulation+0x129/0x210
[ 3333.949972][T25694]  asm_int80_emulation+0x1a/0x20
[ 3333.954930][T25694] RIP: 0023:0xf7376060
[ 3333.959020][T25694] Code: 4c 24 04 85 c9 0f 84 df 0d fe ff 8b 54 24 0c 85 d2 0f 84 d3 0d fe ff 53 56 8b 74 24 18 89 cb 8b 4c 24 10 b8 b3 01 00 00 cd 80 <85> c0 74 09 5e 5b 0f 8c b4 0d fe ff c3 31 ed 83 e4 f0 83 ec 0c 56
[ 3333.978653][T25694] RSP: 002b:00000000f758d8e4 EFLAGS: 00000282 ORIG_RAX: 00000000000001b3
[ 3333.987109][T25694] RAX: ffffffffffffffda RBX: 00000000f758d950 RCX: 0000000000000058
[ 3333.995091][T25694] RDX: 00000000f7326eb0 RSI: 00000000f5ee6b40 RDI: 00000000ffffffd8
[ 3334.003070][T25694] RBP: 000000000000000b R08: 0000000000000000 R09: 0000000000000000
06:23:30 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x87c, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x84c, 0x2, [@TCA_BASIC_POLICE={0x848, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4808]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}]}]}}]}, 0x87c}}, 0x0)

[ 3334.011041][T25694] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 3334.019020][T25694] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 3334.027029][T25694]  </TASK>
[ 3334.036460][T25694] memory: usage 307200kB, limit 307200kB, failcnt 124802
[ 3334.046375][T25694] memory+swap: usage 307696kB, limit 9007199254740988kB, failcnt 0
[ 3334.054346][T25694] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0
[ 3334.080808][T25694] Memory cgroup stats for /syz2:
[ 3334.080968][T25694] cache 0
[ 3334.089648][T25694] rss 0
[ 3334.092536][T25694] rss_huge 0
[ 3334.095750][T25694] shmem 0
[ 3334.098938][T25694] mapped_file 0
[ 3334.106931][T25694] dirty 0
[ 3334.113416][T25694] writeback 0
[ 3334.117126][T25694] workingset_refault_anon 44672
[ 3334.124649][T25694] workingset_refault_file 0
[ 3334.130445][T25694] swap 507904
[ 3334.133841][T25694] swapcached 12288
[ 3334.143149][T25694] pgpgin 249205
[ 3334.148236][T25694] pgpgout 249202
[ 3334.151839][T25694] pgfault 591483
[ 3334.155500][T25694] pgmajfault 44050
[ 3334.162882][T25694] inactive_anon 0
[ 3334.168199][T25694] active_anon 12288
[ 3334.172065][T25694] inactive_file 0
[ 3334.175751][T25694] active_file 0
[ 3334.182806][T25694] unevictable 0
[ 3334.188449][T25694] hierarchical_memory_limit 314572800
[ 3334.193887][T25694] hierarchical_memsw_limit 9223372036854771712
[ 3334.202976][T25694] total_cache 0
[ 3334.206952][T25694] total_rss 0
[ 3334.210285][T25694] total_rss_huge 0
[ 3334.214041][T25694] total_shmem 0
[ 3334.222680][T25694] total_mapped_file 0
[ 3334.227009][T25694] total_dirty 0
[ 3334.230516][T25694] total_writeback 0
[ 3334.234361][T25694] total_workingset_refault_anon 44672
[ 3334.245222][T25694] total_workingset_refault_file 0
[ 3334.252155][T25694] total_swap 507904
[ 3334.256009][T25694] total_swapcached 12288
[ 3334.265892][T25694] total_pgpgin 249205
[ 3334.270317][T25694] total_pgpgout 249202
[ 3334.274546][T25694] total_pgfault 591483
[ 3334.286049][T25694] total_pgmajfault 44050
[ 3334.290676][T25694] total_inactive_anon 0
[ 3334.294864][T25694] total_active_anon 12288
[ 3334.304401][T25694] total_inactive_file 0
[ 3334.308915][T25694] total_active_file 0
[ 3334.312989][T25694] total_unevictable 0
[ 3334.321083][T25694] anon_cost 0
[ 3334.324501][T25694] file_cost 0
[ 3334.329011][T25694] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=25694,uid=0
[ 3334.350230][T25694] Memory cgroup out of memory: Killed process 25694 (syz-executor.2) total-vm:54344kB, anon-rss:308kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:64kB oom_score_adj:1000
[ 3334.371570][T25695] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3334.419565][T25695] CPU: 1 PID: 25695 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00250-g137e0ec05aeb #0
[ 3334.430065][T25695] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3334.440146][T25695] Call Trace:
[ 3334.443426][T25695]  <TASK>
[ 3334.446361][T25695]  dump_stack_lvl+0x1e7/0x2e0
[ 3334.451059][T25695]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3334.456355][T25695]  ? __pfx__printk+0x10/0x10
[ 3334.460950][T25695]  ? ___ratelimit+0x4c4/0x670
[ 3334.465633][T25695]  ? __pfx____ratelimit+0x10/0x10
[ 3334.470687][T25695]  dump_header+0xda/0x6a0
[ 3334.475028][T25695]  oom_kill_process+0x3a7/0x930
[ 3334.479916][T25695]  out_of_memory+0xf67/0x1320
[ 3334.484632][T25695]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3334.490290][T25695]  ? __pfx___mutex_lock+0x10/0x10
[ 3334.495322][T25695]  ? __pfx_out_of_memory+0x10/0x10
[ 3334.500466][T25695]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3334.506015][T25695]  ? __pfx_lock_release+0x10/0x10
[ 3334.511049][T25695]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3334.517144][T25695]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3334.522345][T25695]  ? mem_cgroup_iter+0x3e9/0x560
[ 3334.527311][T25695]  try_charge_memcg+0xda2/0x18a0
[ 3334.532319][T25695]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3334.537720][T25695]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3334.543444][T25695]  ? __pfx_lock_release+0x10/0x10
[ 3334.548486][T25695]  ? memcg_account_kmem+0x1e7/0x210
[ 3334.553696][T25695]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3334.559508][T25695]  __memcg_kmem_charge_page+0xe1/0x250
[ 3334.565000][T25695]  memcg_charge_kernel_stack+0x37e/0x550
[ 3334.570644][T25695]  dup_task_struct+0x15d/0x7d0
[ 3334.575414][T25695]  copy_process+0x5d5/0x3fc0
[ 3334.580043][T25695]  ? __might_fault+0xa9/0x120
[ 3334.584761][T25695]  ? __pfx_lock_release+0x10/0x10
[ 3334.589826][T25695]  ? __pfx_copy_process+0x10/0x10
[ 3334.594874][T25695]  ? __might_fault+0xc5/0x120
[ 3334.599576][T25695]  ? __asan_memset+0x23/0x50
[ 3334.604204][T25695]  kernel_clone+0x21d/0x8d0
[ 3334.608729][T25695]  ? __pfx_kernel_clone+0x10/0x10
[ 3334.613769][T25695]  __se_sys_clone3+0x2cb/0x350
[ 3334.618542][T25695]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3334.623843][T25695]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3334.629862][T25695]  ? exc_page_fault+0x587/0x870
[ 3334.634748][T25695]  ? int80_emulation+0xea/0x210
[ 3334.639613][T25695]  int80_emulation+0x129/0x210
[ 3334.644388][T25695]  asm_int80_emulation+0x1a/0x20
[ 3334.649325][T25695] RIP: 0023:0xf7372060
[ 3334.653394][T25695] Code: 4c 24 04 85 c9 0f 84 df 0d fe ff 8b 54 24 0c 85 d2 0f 84 d3 0d fe ff 53 56 8b 74 24 18 89 cb 8b 4c 24 10 b8 b3 01 00 00 cd 80 <85> c0 74 09 5e 5b 0f 8c b4 0d fe ff c3 31 ed 83 e4 f0 83 ec 0c 56
[ 3334.673000][T25695] RSP: 002b:00000000f75898e4 EFLAGS: 00000282 ORIG_RAX: 00000000000001b3
[ 3334.681570][T25695] RAX: ffffffffffffffda RBX: 00000000f7589950 RCX: 0000000000000058
[ 3334.689564][T25695] RDX: 00000000f7322eb0 RSI: 00000000f5ee2b40 RDI: 00000000ffffffd8
[ 3334.697554][T25695] RBP: 000000000000000b R08: 0000000000000000 R09: 0000000000000000
[ 3334.705525][T25695] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 3334.713499][T25695] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 3334.721482][T25695]  </TASK>
06:23:31 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x888, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x858, 0x2, [@TCA_BASIC_POLICE={0x854, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400300]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}, @TCA_POLICE_PEAKRATE64={0xc}]}]}}]}, 0x888}}, 0x0)

[ 3334.743589][T25695] memory: usage 307200kB, limit 307200kB, failcnt 153122
[ 3334.753055][T25695] memory+swap: usage 307932kB, limit 9007199254740988kB, failcnt 0
[ 3334.776390][T25695] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[ 3334.787389][T25695] Memory cgroup stats for /syz0:
[ 3334.787542][T25695] cache 0
[ 3334.795475][T25695] rss 24576
[ 3334.803671][T25695] rss_huge 0
[ 3334.807439][T25695] shmem 0
[ 3334.810420][T25695] mapped_file 0
[ 3334.813925][T25695] dirty 0
[ 3334.817785][T25695] writeback 0
[ 3334.821114][T25695] workingset_refault_anon 56300
[ 3334.825989][T25695] workingset_refault_file 0
[ 3334.831635][T25695] swap 720896
[ 3334.834955][T25695] swapcached 20480
[ 3334.840598][T25695] pgpgin 251082
[ 3334.844096][T25695] pgpgout 251075
[ 3334.851513][T25695] pgfault 580965
[ 3334.855322][T25695] pgmajfault 54778
[ 3334.859778][T25695] inactive_anon 0
[ 3334.863529][T25695] active_anon 28672
[ 3334.872156][T25695] inactive_file 0
[ 3334.875849][T25695] active_file 0
[ 3334.879908][T25695] unevictable 0
[ 3334.883943][T25695] hierarchical_memory_limit 314572800
[ 3334.893604][T25695] hierarchical_memsw_limit 9223372036854771712
[ 3334.900574][T25695] total_cache 0
[ 3334.904076][T25695] total_rss 24576
[ 3334.908455][T25695] total_rss_huge 0
[ 3334.912219][T25695] total_shmem 0
[ 3334.915701][T25695] total_mapped_file 0
[ 3334.924979][T25695] total_dirty 0
[ 3334.928904][T25695] total_writeback 0
[ 3334.932755][T25695] total_workingset_refault_anon 56300
[ 3334.942906][T25695] total_workingset_refault_file 0
[ 3334.950957][T25695] total_swap 720896
[ 3334.954810][T25695] total_swapcached 20480
[ 3334.968147][T25695] total_pgpgin 251082
[ 3334.972233][T25695] total_pgpgout 251075
[ 3334.981628][T25695] total_pgfault 580965
[ 3334.985855][T25695] total_pgmajfault 54778
[ 3334.990725][T25695] total_inactive_anon 0
[ 3334.994917][T25695] total_active_anon 28672
[ 3335.005181][T25695] total_inactive_file 0
[ 3335.009875][T25695] total_active_file 0
[ 3335.013906][T25695] total_unevictable 0
[ 3335.024529][T25695] anon_cost 0
[ 3335.028264][T25695] file_cost 0
[ 3335.031665][T25695] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=25695,uid=0
[ 3335.048473][T25695] Memory cgroup out of memory: Killed process 25695 (syz-executor.0) total-vm:54344kB, anon-rss:308kB, file-rss:8704kB, shmem-rss:0kB, UID:0 pgtables:64kB oom_score_adj:1000
[ 3335.077543][T25696] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3335.102003][T25696] CPU: 0 PID: 25696 Comm: syz-executor.2 Not tainted 6.8.0-rc7-syzkaller-00250-g137e0ec05aeb #0
[ 3335.112504][T25696] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3335.122710][T25696] Call Trace:
[ 3335.126022][T25696]  <TASK>
[ 3335.128991][T25696]  dump_stack_lvl+0x1e7/0x2e0
[ 3335.133727][T25696]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3335.139017][T25696]  ? __pfx__printk+0x10/0x10
[ 3335.143678][T25696]  ? ___ratelimit+0x4c4/0x670
[ 3335.148439][T25696]  ? __pfx____ratelimit+0x10/0x10
[ 3335.153532][T25696]  dump_header+0xda/0x6a0
[ 3335.157919][T25696]  oom_kill_process+0x3a7/0x930
[ 3335.162836][T25696]  out_of_memory+0xf67/0x1320
[ 3335.167577][T25696]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3335.173270][T25696]  ? __pfx___mutex_lock+0x10/0x10
[ 3335.178350][T25696]  ? __pfx_out_of_memory+0x10/0x10
[ 3335.183535][T25696]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3335.189144][T25696]  ? __pfx_lock_release+0x10/0x10
[ 3335.194235][T25696]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
06:23:31 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x87c, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x84c, 0x2, [@TCA_BASIC_POLICE={0x848, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8100]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}]}]}}]}, 0x87c}}, 0x0)

[ 3335.200371][T25696]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3335.205626][T25696]  ? mem_cgroup_iter+0x3e9/0x560
[ 3335.210626][T25696]  try_charge_memcg+0xda2/0x18a0
[ 3335.215646][T25696]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3335.221075][T25696]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3335.226853][T25696]  ? __pfx_lock_release+0x10/0x10
[ 3335.231941][T25696]  ? memcg_account_kmem+0x1e7/0x210
[ 3335.237216][T25696]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3335.243104][T25696]  __memcg_kmem_charge_page+0xe1/0x250
[ 3335.248634][T25696]  memcg_charge_kernel_stack+0x196/0x550
[ 3335.254343][T25696]  dup_task_struct+0x40d/0x7d0
[ 3335.259204][T25696]  copy_process+0x5d5/0x3fc0
[ 3335.263864][T25696]  ? __might_fault+0xa9/0x120
[ 3335.268600][T25696]  ? __pfx_lock_release+0x10/0x10
[ 3335.273694][T25696]  ? __pfx_copy_process+0x10/0x10
[ 3335.278776][T25696]  ? __might_fault+0xc5/0x120
[ 3335.283527][T25696]  ? __asan_memset+0x23/0x50
[ 3335.288184][T25696]  kernel_clone+0x21d/0x8d0
[ 3335.292748][T25696]  ? __pfx_kernel_clone+0x10/0x10
[ 3335.297857][T25696]  __se_sys_clone3+0x2cb/0x350
[ 3335.302689][T25696]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3335.308050][T25696]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3335.314105][T25696]  ? exc_page_fault+0x587/0x870
[ 3335.319020][T25696]  ? int80_emulation+0xea/0x210
[ 3335.323941][T25696]  int80_emulation+0x129/0x210
[ 3335.328776][T25696]  asm_int80_emulation+0x1a/0x20
[ 3335.333770][T25696] RIP: 0023:0xf7376060
[ 3335.337900][T25696] Code: 4c 24 04 85 c9 0f 84 df 0d fe ff 8b 54 24 0c 85 d2 0f 84 d3 0d fe ff 53 56 8b 74 24 18 89 cb 8b 4c 24 10 b8 b3 01 00 00 cd 80 <85> c0 74 09 5e 5b 0f 8c b4 0d fe ff c3 31 ed 83 e4 f0 83 ec 0c 56
[ 3335.357566][T25696] RSP: 002b:00000000f758d8e4 EFLAGS: 00000282 ORIG_RAX: 00000000000001b3
[ 3335.366042][T25696] RAX: ffffffffffffffda RBX: 00000000f758d950 RCX: 0000000000000058
[ 3335.374078][T25696] RDX: 00000000f7326eb0 RSI: 00000000f5ee6b40 RDI: 00000000ffffffd8
[ 3335.382102][T25696] RBP: 000000000000000b R08: 0000000000000000 R09: 0000000000000000
[ 3335.390121][T25696] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 3335.398150][T25696] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 3335.406189][T25696]  </TASK>
[ 3335.411783][T25696] memory: usage 307200kB, limit 307200kB, failcnt 125294
[ 3335.434126][T25696] memory+swap: usage 307704kB, limit 9007199254740988kB, failcnt 0
[ 3335.451921][T25696] kmem: usage 307184kB, limit 9007199254740988kB, failcnt 0
[ 3335.468173][T25696] Memory cgroup stats for /syz2:
[ 3335.468328][T25696] cache 0
[ 3335.485857][T25696] rss 4096
[ 3335.493002][T25696] rss_huge 0
[ 3335.512300][T25696] shmem 0
[ 3335.515302][T25696] mapped_file 0
[ 3335.520332][T25696] dirty 0
[ 3335.533653][T25696] writeback 0
[ 3335.537458][T25696] workingset_refault_anon 44835
[ 3335.542367][T25696] workingset_refault_file 0
[ 3335.561179][T25696] swap 516096
[ 3335.564532][T25696] swapcached 12288
[ 3335.568936][T25696] pgpgin 249377
[ 3335.572526][T25696] pgpgout 249373
[ 3335.586812][T25696] pgfault 591732
[ 3335.590432][T25696] pgmajfault 44205
[ 3335.594189][T25696] inactive_anon 0
[ 3335.622343][T25696] active_anon 16384
[ 3335.626257][T25696] inactive_file 0
[ 3335.640306][T25696] active_file 0
[ 3335.643798][T25696] unevictable 0
[ 3335.670383][T25696] hierarchical_memory_limit 314572800
[ 3335.675846][T25696] hierarchical_memsw_limit 9223372036854771712
[ 3335.706931][T25696] total_cache 0
[ 3335.710471][T25696] total_rss 4096
[ 3335.714056][T25696] total_rss_huge 0
[ 3335.756363][T25696] total_shmem 0
[ 3335.759898][T25696] total_mapped_file 0
[ 3335.764003][T25696] total_dirty 0
[ 3335.773568][T25696] total_writeback 0
[ 3335.778996][T25696] total_workingset_refault_anon 44835
[ 3335.784597][T25696] total_workingset_refault_file 0
[ 3335.793305][T25696] total_swap 516096
[ 3335.798656][T25696] total_swapcached 12288
[ 3335.825203][T25696] total_pgpgin 249377
[ 3335.833053][T25696] total_pgpgout 249373
[ 3335.840011][T25696] total_pgfault 591732
[ 3335.844229][T25696] total_pgmajfault 44205
[ 3335.852483][T25696] total_inactive_anon 0
[ 3335.858387][T25696] total_active_anon 16384
[ 3335.862857][T25696] total_inactive_file 0
[ 3335.867636][T25696] total_active_file 0
[ 3335.871784][T25696] total_unevictable 0
[ 3335.875912][T25696] anon_cost 0
[ 3335.879910][T25696] file_cost 0
[ 3335.883341][T25696] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=25696,uid=0
[ 3335.900082][T25696] Memory cgroup out of memory: Killed process 25696 (syz-executor.2) total-vm:54344kB, anon-rss:308kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:64kB oom_score_adj:1000
[ 3335.921525][T25697] syz-executor.0 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[ 3335.933217][T25697] CPU: 1 PID: 25697 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00250-g137e0ec05aeb #0
[ 3335.944452][T25697] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3335.954590][T25697] Call Trace:
[ 3335.957911][T25697]  <TASK>
[ 3335.960889][T25697]  dump_stack_lvl+0x1e7/0x2e0
[ 3335.965628][T25697]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3335.970886][T25697]  ? __pfx__printk+0x10/0x10
[ 3335.975533][T25697]  ? ___ratelimit+0x4c4/0x670
[ 3335.980269][T25697]  ? __pfx____ratelimit+0x10/0x10
[ 3335.985351][T25697]  dump_header+0xda/0x6a0
[ 3335.989757][T25697]  oom_kill_process+0x3a7/0x930
[ 3335.994668][T25697]  out_of_memory+0xf67/0x1320
[ 3335.999402][T25697]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3336.005090][T25697]  ? __pfx___mutex_lock+0x10/0x10
[ 3336.010165][T25697]  ? __pfx_out_of_memory+0x10/0x10
[ 3336.015339][T25697]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3336.020944][T25697]  ? __pfx_lock_release+0x10/0x10
[ 3336.026027][T25697]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3336.032154][T25697]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3336.037408][T25697]  ? mem_cgroup_iter+0x3e9/0x560
[ 3336.042407][T25697]  try_charge_memcg+0xda2/0x18a0
[ 3336.047393][T25697]  ? mark_lock+0x9a/0x350
[ 3336.051793][T25697]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3336.057244][T25697]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 3336.063445][T25697]  charge_memcg+0xa2/0x160
[ 3336.068008][T25697]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 3336.074116][T25697]  __read_swap_cache_async+0x480/0x8b0
[ 3336.079619][T25697]  ? mark_lock+0x9a/0x350
[ 3336.084006][T25697]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 3336.090050][T25697]  swap_cluster_readahead+0x67c/0x810
[ 3336.095480][T25697]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 3336.101404][T25697]  ? __pfx_lock_release+0x10/0x10
[ 3336.106461][T25697]  ? xas_descend+0x37e/0x470
[ 3336.111095][T25697]  swapin_readahead+0x1ea/0x1070
[ 3336.116047][T25697]  ? filemap_get_entry+0x127/0x4e0
[ 3336.121272][T25697]  ? __pfx_swapin_readahead+0x10/0x10
[ 3336.126844][T25697]  ? __filemap_get_folio+0x935/0xbc0
[ 3336.132147][T25697]  ? swap_cache_get_folio+0x9f/0x570
[ 3336.137455][T25697]  do_swap_page+0x791/0x3f40
[ 3336.142059][T25697]  ? rcu_is_watching+0x15/0xb0
[ 3336.146859][T25697]  ? do_swap_page+0x154/0x3f40
[ 3336.151635][T25697]  ? __pfx_do_swap_page+0x10/0x10
[ 3336.156670][T25697]  ? pte_offset_map_nolock+0x137/0x1f0
[ 3336.162145][T25697]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 3336.167989][T25697]  __handle_mm_fault+0x15e8/0x72d0
[ 3336.173135][T25697]  ? reacquire_held_locks+0x3eb/0x690
[ 3336.178517][T25697]  ? __pfx___handle_mm_fault+0x10/0x10
[ 3336.183999][T25697]  ? __pfx_reacquire_held_locks+0x10/0x10
[ 3336.189741][T25697]  ? mtree_range_walk+0x6fd/0x8e0
[ 3336.194867][T25697]  ? lock_vma_under_rcu+0x18a/0x730
[ 3336.200081][T25697]  ? __pfx_lock_release+0x10/0x10
[ 3336.205123][T25697]  ? lock_vma_under_rcu+0x2f9/0x730
[ 3336.210351][T25697]  ? lock_vma_under_rcu+0x18a/0x730
[ 3336.215585][T25697]  ? __pfx_lock_vma_under_rcu+0x10/0x10
[ 3336.221145][T25697]  handle_mm_fault+0x3c1/0x8a0
[ 3336.225952][T25697]  exc_page_fault+0x456/0x870
[ 3336.230682][T25697]  asm_exc_page_fault+0x26/0x30
[ 3336.235544][T25697] RIP: 0023:0xf7329c60
[ 3336.239624][T25697] Code: 00 00 0f 87 b2 05 00 00 83 c0 5b 89 44 24 28 8b 45 08 85 c0 0f 85 30 03 00 00 8d 47 ff 31 c9 c1 e8 04 89 4c 24 1c 89 44 24 20 <65> 8b 35 dc ff ff ff 85 f6 74 11 8b 74 24 04 3b 86 28 63 00 00 0f
[ 3336.259332][T25697] RSP: 002b:00000000f7589940 EFLAGS: 00010203
[ 3336.265422][T25697] RAX: 0000000000000008 RBX: 00000000f743eff4 RCX: 0000000000000000
[ 3336.273401][T25697] RDX: 00000000f74453c8 RSI: 00000000f74453c0 RDI: 0000000000000090
[ 3336.281384][T25697] RBP: 00000000f7445340 R08: 0000000000000000 R09: 0000000000000000
[ 3336.289362][T25697] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 3336.297338][T25697] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 3336.305419][T25697]  </TASK>
[ 3336.315523][T25697] memory: usage 307200kB, limit 307200kB, failcnt 153338
[ 3336.322930][T25697] memory+swap: usage 307924kB, limit 9007199254740988kB, failcnt 0
[ 3336.331329][T25697] kmem: usage 307168kB, limit 9007199254740988kB, failcnt 0
[ 3336.339045][T25697] Memory cgroup stats for /syz0:
[ 3336.339197][T25697] cache 0
[ 3336.347575][T25697] rss 12288
[ 3336.350859][T25697] rss_huge 0
[ 3336.354225][T25697] shmem 0
[ 3336.357629][T25697] mapped_file 0
[ 3336.361205][T25697] dirty 0
[ 3336.364252][T25697] writeback 0
[ 3336.368036][T25697] workingset_refault_anon 56381
[ 3336.373020][T25697] workingset_refault_file 0
[ 3336.378432][T25697] swap 765952
[ 3336.381853][T25697] swapcached 12288
[ 3336.385683][T25697] pgpgin 251171
[ 3336.389786][T25697] pgpgout 251168
[ 3336.393470][T25697] pgfault 581104
[ 3336.400932][T25697] pgmajfault 54856
[ 3336.404708][T25697] inactive_anon 0
[ 3336.408737][T25697] active_anon 12288
[ 3336.412580][T25697] inactive_file 0
[ 3336.416698][T25697] active_file 0
[ 3336.420202][T25697] unevictable 0
[ 3336.423703][T25697] hierarchical_memory_limit 314572800
[ 3336.431446][T25697] hierarchical_memsw_limit 9223372036854771712
[ 3336.437775][T25697] total_cache 0
[ 3336.441258][T25697] total_rss 12288
[ 3336.444919][T25697] total_rss_huge 0
[ 3336.449385][T25697] total_shmem 0
[ 3336.452896][T25697] total_mapped_file 0
[ 3336.457136][T25697] total_dirty 0
[ 3336.460625][T25697] total_writeback 0
[ 3336.464849][T25697] total_workingset_refault_anon 56381
[ 3336.470407][T25697] total_workingset_refault_file 0
[ 3336.475462][T25697] total_swap 765952
[ 3336.479794][T25697] total_swapcached 12288
[ 3336.484512][T25697] total_pgpgin 251171
[ 3336.488837][T25697] total_pgpgout 251168
[ 3336.492939][T25697] total_pgfault 581104
[ 3336.497181][T25697] total_pgmajfault 54856
[ 3336.501750][T25697] total_inactive_anon 0
[ 3336.505935][T25697] total_active_anon 12288
[ 3336.510445][T25697] total_inactive_file 0
[ 3336.514636][T25697] total_active_file 0
[ 3336.518805][T25697] total_unevictable 0
[ 3336.523261][T25697] anon_cost 0
06:23:33 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x888, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x858, 0x2, [@TCA_BASIC_POLICE={0x854, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}, @TCA_POLICE_PEAKRATE64={0xc}]}]}}]}, 0x888}}, 0x0)

06:23:33 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x87c, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x84c, 0x2, [@TCA_BASIC_POLICE={0x848, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x34000]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}]}]}}]}, 0x87c}}, 0x0)

[ 3336.526723][T25697] file_cost 0
[ 3336.530311][T25697] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=25697,uid=0
[ 3336.547211][T25697] Memory cgroup out of memory: Killed process 25697 (syz-executor.0) total-vm:54344kB, anon-rss:308kB, file-rss:8704kB, shmem-rss:0kB, UID:0 pgtables:64kB oom_score_adj:1000
[ 3336.842031][T25699] syz-executor.0 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[ 3336.868987][T25699] CPU: 1 PID: 25699 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00250-g137e0ec05aeb #0
[ 3336.879567][T25699] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3336.889669][T25699] Call Trace:
[ 3336.892995][T25699]  <TASK>
[ 3336.895966][T25699]  dump_stack_lvl+0x1e7/0x2e0
[ 3336.900715][T25699]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3336.905983][T25699]  ? __pfx__printk+0x10/0x10
[ 3336.910639][T25699]  ? ___ratelimit+0x4c4/0x670
[ 3336.915414][T25699]  ? __pfx____ratelimit+0x10/0x10
[ 3336.920513][T25699]  dump_header+0xda/0x6a0
[ 3336.924918][T25699]  oom_kill_process+0x3a7/0x930
[ 3336.929834][T25699]  out_of_memory+0xf67/0x1320
[ 3336.934591][T25699]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3336.940382][T25699]  ? __pfx___mutex_lock+0x10/0x10
[ 3336.945473][T25699]  ? __pfx_out_of_memory+0x10/0x10
[ 3336.950656][T25699]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3336.956262][T25699]  ? __pfx_lock_release+0x10/0x10
[ 3336.961347][T25699]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3336.967492][T25699]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3336.972752][T25699]  ? mem_cgroup_iter+0x3e9/0x560
[ 3336.977754][T25699]  try_charge_memcg+0xda2/0x18a0
[ 3336.982744][T25699]  ? mark_lock+0x9a/0x350
[ 3336.987149][T25699]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3336.992612][T25699]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 3336.998824][T25699]  charge_memcg+0xa2/0x160
[ 3337.003307][T25699]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 3337.009441][T25699]  __read_swap_cache_async+0x480/0x8b0
[ 3337.014960][T25699]  ? mark_lock+0x9a/0x350
[ 3337.019357][T25699]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 3337.025409][T25699]  swap_cluster_readahead+0x67c/0x810
[ 3337.030853][T25699]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 3337.036813][T25699]  ? __pfx_lock_release+0x10/0x10
[ 3337.041899][T25699]  ? xas_descend+0x37e/0x470
[ 3337.046542][T25699]  swapin_readahead+0x1ea/0x1070
[ 3337.056317][T25699]  ? filemap_get_entry+0x127/0x4e0
[ 3337.061543][T25699]  ? __pfx_swapin_readahead+0x10/0x10
[ 3337.066999][T25699]  ? __filemap_get_folio+0x935/0xbc0
[ 3337.072374][T25699]  ? swap_cache_get_folio+0x9f/0x570
[ 3337.077736][T25699]  do_swap_page+0x791/0x3f40
[ 3337.082386][T25699]  ? rcu_is_watching+0x15/0xb0
[ 3337.087227][T25699]  ? do_swap_page+0x154/0x3f40
[ 3337.092050][T25699]  ? __pfx_do_swap_page+0x10/0x10
[ 3337.097129][T25699]  ? pte_offset_map_nolock+0x137/0x1f0
[ 3337.102653][T25699]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 3337.108533][T25699]  __handle_mm_fault+0x15e8/0x72d0
[ 3337.113733][T25699]  ? reacquire_held_locks+0x3eb/0x690
[ 3337.119164][T25699]  ? __pfx___handle_mm_fault+0x10/0x10
[ 3337.124697][T25699]  ? __pfx_reacquire_held_locks+0x10/0x10
[ 3337.130492][T25699]  ? mtree_range_walk+0x6fd/0x8e0
[ 3337.135583][T25699]  ? lock_vma_under_rcu+0x18a/0x730
[ 3337.140877][T25699]  ? __pfx_lock_release+0x10/0x10
[ 3337.145970][T25699]  ? lock_vma_under_rcu+0x2f9/0x730
[ 3337.151250][T25699]  ? lock_vma_under_rcu+0x18a/0x730
[ 3337.156508][T25699]  ? __pfx_lock_vma_under_rcu+0x10/0x10
[ 3337.162110][T25699]  handle_mm_fault+0x3c1/0x8a0
[ 3337.166946][T25699]  exc_page_fault+0x456/0x870
[ 3337.171693][T25699]  asm_exc_page_fault+0x26/0x30
[ 3337.176593][T25699] RIP: 0023:0xf734e92f
[ 3337.180699][T25699] Code: 83 e8 75 f7 ff 50 e8 60 f8 ff ff 57 56 53 8b 7c 24 10 e8 14 97 fa ff 81 c3 d8 06 0f 00 85 ff 74 3a 8d 83 10 06 b5 00 83 ec 08 <8b> 00 6a 08 8d 70 0e 83 c0 10 50 e8 01 d4 fd ff 83 c4 10 85 c0 74
[ 3337.200524][T25699] RSP: 002b:00000000f75899c8 EFLAGS: 00010292
[ 3337.206654][T25699] RAX: 00000000f7f8f604 RBX: 00000000f743eff4 RCX: 0000000000020000
[ 3337.214670][T25699] RDX: 0000000000000003 RSI: 0000000000001000 RDI: 00000000f5ee2b40
[ 3337.222688][T25699] RBP: 00000000f5ee2b40 R08: 0000000000000000 R09: 0000000000000000
[ 3337.230706][T25699] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 3337.238718][T25699] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 3337.246732][T25699]  </TASK>
[ 3337.265011][T25699] memory: usage 307200kB, limit 307200kB, failcnt 153533
[ 3337.272706][T25699] memory+swap: usage 307924kB, limit 9007199254740988kB, failcnt 0
[ 3337.281351][T25699] kmem: usage 307168kB, limit 9007199254740988kB, failcnt 0
[ 3337.289580][T25699] Memory cgroup stats for /syz0:
[ 3337.289732][T25699] cache 0
[ 3337.298368][T25699] rss 12288
[ 3337.301742][T25699] rss_huge 0
[ 3337.305161][T25699] shmem 0
[ 3337.309110][T25699] mapped_file 0
[ 3337.312937][T25699] dirty 0
[ 3337.316053][T25699] writeback 0
[ 3337.320242][T25699] workingset_refault_anon 56451
[ 3337.325316][T25699] workingset_refault_file 0
[ 3337.331065][T25699] swap 741376
[ 3337.334596][T25699] swapcached 8192
[ 3337.339184][T25699] pgpgin 251250
[ 3337.342849][T25699] pgpgout 251247
[ 3337.347200][T25699] pgfault 581227
[ 3337.350970][T25699] pgmajfault 54913
[ 3337.354860][T25699] inactive_anon 4096
[ 3337.365174][T25699] active_anon 8192
[ 3337.369592][T25699] inactive_file 0
[ 3337.373426][T25699] active_file 0
[ 3337.380208][T25699] unevictable 0
[ 3337.383833][T25699] hierarchical_memory_limit 314572800
[ 3337.390027][T25699] hierarchical_memsw_limit 9223372036854771712
[ 3337.396797][T25699] total_cache 0
[ 3337.400418][T25699] total_rss 12288
[ 3337.404186][T25699] total_rss_huge 0
[ 3337.408850][T25699] total_shmem 0
[ 3337.412433][T25699] total_mapped_file 0
[ 3337.417310][T25699] total_dirty 0
[ 3337.420904][T25699] total_writeback 0
[ 3337.424828][T25699] total_workingset_refault_anon 56451
[ 3337.431008][T25699] total_workingset_refault_file 0
[ 3337.436168][T25699] total_swap 741376
[ 3337.440613][T25699] total_swapcached 8192
[ 3337.444895][T25699] total_pgpgin 251250
[ 3337.449670][T25699] total_pgpgout 251247
[ 3337.453900][T25699] total_pgfault 581227
[ 3337.458682][T25699] total_pgmajfault 54913
[ 3337.463220][T25699] total_inactive_anon 4096
[ 3337.469893][T25699] total_active_anon 8192
[ 3337.474280][T25699] total_inactive_file 0
[ 3337.479150][T25699] total_active_file 0
[ 3337.483273][T25699] total_unevictable 0
[ 3337.487970][T25699] anon_cost 0
[ 3337.491378][T25699] file_cost 0
[ 3337.494796][T25699] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=25699,uid=0
[ 3337.514063][T25699] Memory cgroup out of memory: Killed process 25699 (syz-executor.0) total-vm:54344kB, anon-rss:304kB, file-rss:8704kB, shmem-rss:0kB, UID:0 pgtables:64kB oom_score_adj:1000
06:23:34 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x87c, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x84c, 0x2, [@TCA_BASIC_POLICE={0x848, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400300]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}]}]}}]}, 0x87c}}, 0x0)

[ 3337.537484][T25698] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3337.547926][T25698] CPU: 0 PID: 25698 Comm: syz-executor.2 Not tainted 6.8.0-rc7-syzkaller-00250-g137e0ec05aeb #0
[ 3337.558386][T25698] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3337.568488][T25698] Call Trace:
[ 3337.571808][T25698]  <TASK>
[ 3337.574775][T25698]  dump_stack_lvl+0x1e7/0x2e0
[ 3337.579528][T25698]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3337.584791][T25698]  ? __pfx__printk+0x10/0x10
[ 3337.589448][T25698]  ? ___ratelimit+0x4c4/0x670
[ 3337.594196][T25698]  ? __pfx____ratelimit+0x10/0x10
[ 3337.599394][T25698]  dump_header+0xda/0x6a0
[ 3337.603796][T25698]  oom_kill_process+0x3a7/0x930
[ 3337.608706][T25698]  out_of_memory+0xf67/0x1320
[ 3337.613460][T25698]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3337.619147][T25698]  ? __pfx___mutex_lock+0x10/0x10
[ 3337.624198][T25698]  ? __pfx_out_of_memory+0x10/0x10
[ 3337.629342][T25698]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3337.634920][T25698]  ? __pfx_lock_release+0x10/0x10
[ 3337.639986][T25698]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3337.646071][T25698]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3337.651283][T25698]  ? mem_cgroup_iter+0x3e9/0x560
[ 3337.656240][T25698]  try_charge_memcg+0xda2/0x18a0
[ 3337.661221][T25698]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3337.666608][T25698]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3337.672340][T25698]  ? __pfx_lock_release+0x10/0x10
[ 3337.677402][T25698]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3337.683235][T25698]  __memcg_kmem_charge_page+0xe1/0x250
[ 3337.688742][T25698]  memcg_charge_kernel_stack+0xa7/0x550
[ 3337.694314][T25698]  dup_task_struct+0x15d/0x7d0
[ 3337.699100][T25698]  copy_process+0x5d5/0x3fc0
[ 3337.703714][T25698]  ? __might_fault+0xa9/0x120
[ 3337.708407][T25698]  ? __pfx_lock_release+0x10/0x10
[ 3337.713458][T25698]  ? __lock_acquire+0x1345/0x1fd0
[ 3337.718504][T25698]  ? __pfx_copy_process+0x10/0x10
[ 3337.723543][T25698]  ? __might_fault+0xc5/0x120
[ 3337.728262][T25698]  ? __asan_memset+0x23/0x50
[ 3337.732888][T25698]  kernel_clone+0x21d/0x8d0
[ 3337.737421][T25698]  ? __pfx_kernel_clone+0x10/0x10
[ 3337.742558][T25698]  ? __pfx_lock_release+0x10/0x10
[ 3337.747605][T25698]  __se_sys_clone3+0x2cb/0x350
[ 3337.752384][T25698]  ? __might_fault+0xa9/0x120
[ 3337.757110][T25698]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3337.762425][T25698]  ? rcu_is_watching+0x15/0xb0
[ 3337.767223][T25698]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3337.773229][T25698]  ? exc_page_fault+0x587/0x870
[ 3337.778100][T25698]  ? int80_emulation+0xea/0x210
[ 3337.782977][T25698]  int80_emulation+0x129/0x210
[ 3337.787764][T25698]  asm_int80_emulation+0x1a/0x20
[ 3337.792711][T25698] RIP: 0023:0xf7376060
[ 3337.796788][T25698] Code: 4c 24 04 85 c9 0f 84 df 0d fe ff 8b 54 24 0c 85 d2 0f 84 d3 0d fe ff 53 56 8b 74 24 18 89 cb 8b 4c 24 10 b8 b3 01 00 00 cd 80 <85> c0 74 09 5e 5b 0f 8c b4 0d fe ff c3 31 ed 83 e4 f0 83 ec 0c 56
[ 3337.816429][T25698] RSP: 002b:00000000f758d8e4 EFLAGS: 00000282 ORIG_RAX: 00000000000001b3
[ 3337.824874][T25698] RAX: ffffffffffffffda RBX: 00000000f758d950 RCX: 0000000000000058
[ 3337.832856][T25698] RDX: 00000000f7326eb0 RSI: 00000000f5ee6b40 RDI: 00000000ffffffd8
[ 3337.840836][T25698] RBP: 000000000000000b R08: 0000000000000000 R09: 0000000000000000
[ 3337.848815][T25698] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 3337.856791][T25698] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 3337.864788][T25698]  </TASK>
[ 3337.889750][T25698] memory: usage 307200kB, limit 307200kB, failcnt 126384
[ 3337.907874][T25698] memory+swap: usage 307672kB, limit 9007199254740988kB, failcnt 0
[ 3337.916082][T25698] kmem: usage 307176kB, limit 9007199254740988kB, failcnt 0
[ 3337.933034][T25698] Memory cgroup stats for /syz2:
[ 3337.933190][T25698] cache 0
[ 3337.944453][T25698] rss 12288
[ 3337.950092][T25698] rss_huge 0
[ 3337.954360][T25698] shmem 0
[ 3337.959937][T25698] mapped_file 0
[ 3337.965573][T25698] dirty 0
[ 3337.970899][T25698] writeback 0
[ 3337.974718][T25698] workingset_refault_anon 45196
[ 3337.982529][T25698] workingset_refault_file 0
[ 3337.993403][T25698] swap 483328
[ 3338.006713][T25698] swapcached 24576
[ 3338.011733][T25698] pgpgin 249751
[ 3338.015420][T25698] pgpgout 249745
[ 3338.025155][T25698] pgfault 592274
[ 3338.032052][T25698] pgmajfault 44552
[ 3338.036017][T25698] inactive_anon 0
[ 3338.045064][T25698] active_anon 12288
[ 3338.052569][T25698] inactive_file 0
[ 3338.061708][T25698] active_file 0
[ 3338.068889][T25698] unevictable 0
[ 3338.076587][T25698] hierarchical_memory_limit 314572800
[ 3338.089062][T25698] hierarchical_memsw_limit 9223372036854771712
[ 3338.097628][T25698] total_cache 0
[ 3338.101308][T25698] total_rss 12288
[ 3338.105155][T25698] total_rss_huge 0
[ 3338.113603][T25698] total_shmem 0
[ 3338.118754][T25698] total_mapped_file 0
[ 3338.123001][T25698] total_dirty 0
[ 3338.130339][T25698] total_writeback 0
[ 3338.134385][T25698] total_workingset_refault_anon 45196
[ 3338.141381][T25698] total_workingset_refault_file 0
[ 3338.150221][T25698] total_swap 483328
[ 3338.154294][T25698] total_swapcached 24576
[ 3338.159056][T25698] total_pgpgin 249751
[ 3338.163222][T25698] total_pgpgout 249745
[ 3338.171959][T25698] total_pgfault 592274
[ 3338.176578][T25698] total_pgmajfault 44552
[ 3338.181057][T25698] total_inactive_anon 0
[ 3338.185424][T25698] total_active_anon 12288
[ 3338.190566][T25698] total_inactive_file 0
[ 3338.194940][T25698] total_active_file 0
[ 3338.199967][T25698] total_unevictable 0
[ 3338.204152][T25698] anon_cost 0
[ 3338.207959][T25698] file_cost 0
[ 3338.211453][T25698] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=25698,uid=0
[ 3338.228395][T25698] Memory cgroup out of memory: Killed process 25698 (syz-executor.2) total-vm:54344kB, anon-rss:308kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:64kB oom_score_adj:1000
[ 3338.251957][T25700] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3338.282454][T25700] CPU: 1 PID: 25700 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00250-g137e0ec05aeb #0
[ 3338.293064][T25700] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3338.303253][T25700] Call Trace:
[ 3338.306577][T25700]  <TASK>
[ 3338.309583][T25700]  dump_stack_lvl+0x1e7/0x2e0
[ 3338.314330][T25700]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3338.319591][T25700]  ? __pfx__printk+0x10/0x10
[ 3338.324234][T25700]  ? ___ratelimit+0x4c4/0x670
[ 3338.328999][T25700]  ? __pfx____ratelimit+0x10/0x10
[ 3338.334080][T25700]  dump_header+0xda/0x6a0
[ 3338.338463][T25700]  oom_kill_process+0x3a7/0x930
[ 3338.343371][T25700]  out_of_memory+0xf67/0x1320
[ 3338.348105][T25700]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3338.353790][T25700]  ? __pfx___mutex_lock+0x10/0x10
[ 3338.358939][T25700]  ? __pfx_out_of_memory+0x10/0x10
[ 3338.364096][T25700]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3338.369670][T25700]  ? __pfx_lock_release+0x10/0x10
[ 3338.374722][T25700]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3338.380811][T25700]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3338.386024][T25700]  ? mem_cgroup_iter+0x3e9/0x560
[ 3338.390982][T25700]  try_charge_memcg+0xda2/0x18a0
[ 3338.395956][T25700]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3338.401343][T25700]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3338.407077][T25700]  ? __pfx_lock_release+0x10/0x10
[ 3338.412125][T25700]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3338.418132][T25700]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3338.423862][T25700]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3338.429686][T25700]  obj_cgroup_charge+0x389/0x630
[ 3338.434642][T25700]  ? obj_cgroup_charge+0x121/0x630
[ 3338.439779][T25700]  ? __pfx_obj_cgroup_charge+0x10/0x10
[ 3338.445262][T25700]  ? kmem_cache_alloc+0x4f/0x340
[ 3338.450216][T25700]  ? __pfx___might_resched+0x10/0x10
[ 3338.455521][T25700]  __memcg_slab_pre_alloc_hook+0x28d/0x2b0
[ 3338.461369][T25700]  ? __anon_vma_prepare+0x68/0x410
[ 3338.466496][T25700]  kmem_cache_alloc+0x202/0x340
[ 3338.471366][T25700]  __anon_vma_prepare+0x68/0x410
[ 3338.476331][T25700]  __handle_mm_fault+0x6090/0x72d0
[ 3338.481614][T25700]  ? __pfx___handle_mm_fault+0x10/0x10
[ 3338.487178][T25700]  ? mt_find+0x226/0x850
[ 3338.491442][T25700]  ? __pfx_lock_release+0x10/0x10
[ 3338.496499][T25700]  ? mt_find+0x62d/0x850
[ 3338.500763][T25700]  ? mt_find+0x226/0x850
[ 3338.505127][T25700]  ? find_vma+0x142/0x1c0
[ 3338.509476][T25700]  ? __pfx_find_vma+0x10/0x10
[ 3338.514183][T25700]  handle_mm_fault+0x3c1/0x8a0
[ 3338.518991][T25700]  exc_page_fault+0x2ad/0x870
[ 3338.523690][T25700]  asm_exc_page_fault+0x26/0x30
[ 3338.528552][T25700] RIP: 0023:0xf7323d42
[ 3338.532633][T25700] Code: 85 f6 74 22 83 ec 04 01 f0 ff 74 24 4c ff 74 24 3c 50 8b 5c 24 1c e8 dd 0f 02 00 83 c4 10 85 c0 0f 85 62 01 00 00 8b 44 24 44 <89> bd 64 02 00 00 c7 45 0c 01 00 00 00 89 85 60 02 00 00 8b 44 24
[ 3338.552254][T25700] RSP: 002b:00000000f75899f0 EFLAGS: 00010246
[ 3338.558336][T25700] RAX: 00000000f5ec2000 RBX: 00000000f743eff4 RCX: 0000000000020000
[ 3338.566319][T25700] RDX: 0000000000000003 RSI: 0000000000001000 RDI: 0000000000021000
[ 3338.574302][T25700] RBP: 00000000f5ee2b40 R08: 0000000000000000 R09: 0000000000000000
[ 3338.582283][T25700] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 3338.590265][T25700] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 3338.598265][T25700]  </TASK>
[ 3338.629953][T25700] memory: usage 307188kB, limit 307200kB, failcnt 153731
[ 3338.656440][T25700] memory+swap: usage 307880kB, limit 9007199254740988kB, failcnt 0
[ 3338.664837][T25700] kmem: usage 307168kB, limit 9007199254740988kB, failcnt 0
[ 3338.686473][T25700] Memory cgroup stats for /syz0:
[ 3338.686631][T25700] cache 0
[ 3338.695815][T25700] rss 16384
[ 3338.707014][T25700] rss_huge 0
[ 3338.710383][T25700] shmem 0
[ 3338.719703][T25700] mapped_file 0
[ 3338.726942][T25700] dirty 0
[ 3338.736636][T25700] writeback 0
[ 3338.740556][T25700] workingset_refault_anon 56520
[ 3338.745679][T25700] workingset_refault_file 0
[ 3338.766480][T25700] swap 704512
[ 3338.769978][T25700] swapcached 16384
[ 3338.776504][T25700] pgpgin 251327
[ 3338.786455][T25700] pgpgout 251323
[ 3338.796481][T25700] pgfault 581352
[ 3338.801134][T25700] pgmajfault 54975
[ 3338.816444][T25700] inactive_anon 0
[ 3338.820266][T25700] active_anon 4096
[ 3338.824141][T25700] inactive_file 0
[ 3338.836428][T25700] active_file 0
[ 3338.840071][T25700] unevictable 0
[ 3338.846466][T25700] hierarchical_memory_limit 314572800
[ 3338.856637][T25700] hierarchical_memsw_limit 9223372036854771712
[ 3338.876365][T25700] total_cache 0
[ 3338.879898][T25700] total_rss 16384
[ 3338.883559][T25700] total_rss_huge 0
[ 3338.896356][T25700] total_shmem 0
[ 3338.899899][T25700] total_mapped_file 0
[ 3338.903991][T25700] total_dirty 0
[ 3338.926370][T25700] total_writeback 0
[ 3338.930253][T25700] total_workingset_refault_anon 56520
[ 3338.935672][T25700] total_workingset_refault_file 0
[ 3338.943513][T25700] total_swap 704512
[ 3338.996386][T25700] total_swapcached 16384
[ 3339.006353][T25700] total_pgpgin 251327
[ 3339.010394][T25700] total_pgpgout 251323
[ 3339.014491][T25700] total_pgfault 581352
[ 3339.036432][T25700] total_pgmajfault 54975
[ 3339.040746][T25700] total_inactive_anon 0
[ 3339.044942][T25700] total_active_anon 4096
[ 3339.086347][T25700] total_inactive_file 0
[ 3339.090660][T25700] total_active_file 0
[ 3339.094674][T25700] total_unevictable 0
[ 3339.099746][T25700] anon_cost 0
[ 3339.121571][T25700] file_cost 0
[ 3339.124918][T25700] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=25700,uid=0
[ 3339.147333][T25700] Memory cgroup out of memory: Killed process 25700 (syz-executor.0) total-vm:54344kB, anon-rss:308kB, file-rss:8704kB, shmem-rss:0kB, UID:0 pgtables:64kB oom_score_adj:1000
06:23:35 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x888, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x858, 0x2, [@TCA_BASIC_POLICE={0x854, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}, @TCA_POLICE_PEAKRATE64={0xc}]}]}}]}, 0x888}}, 0x0)

06:23:35 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x87c, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x84c, 0x2, [@TCA_BASIC_POLICE={0x848, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}]}]}}]}, 0x87c}}, 0x0)

[ 3339.671406][T25702] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3339.703487][T25702] CPU: 1 PID: 25702 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00250-g137e0ec05aeb #0
[ 3339.713982][T25702] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3339.724082][T25702] Call Trace:
[ 3339.727490][T25702]  <TASK>
[ 3339.730462][T25702]  dump_stack_lvl+0x1e7/0x2e0
[ 3339.735210][T25702]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3339.740465][T25702]  ? __pfx__printk+0x10/0x10
[ 3339.745072][T25702]  ? ___ratelimit+0x4c4/0x670
[ 3339.749765][T25702]  ? __pfx____ratelimit+0x10/0x10
[ 3339.754821][T25702]  dump_header+0xda/0x6a0
[ 3339.759180][T25702]  oom_kill_process+0x3a7/0x930
[ 3339.764056][T25702]  out_of_memory+0xf67/0x1320
[ 3339.768748][T25702]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3339.774393][T25702]  ? __pfx___mutex_lock+0x10/0x10
[ 3339.779440][T25702]  ? __pfx_out_of_memory+0x10/0x10
[ 3339.784568][T25702]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3339.790122][T25702]  ? __pfx_lock_release+0x10/0x10
[ 3339.795172][T25702]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3339.801259][T25702]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3339.806475][T25702]  ? mem_cgroup_iter+0x3e9/0x560
[ 3339.811436][T25702]  try_charge_memcg+0xda2/0x18a0
[ 3339.816410][T25702]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3339.821790][T25702]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3339.827519][T25702]  ? __pfx_lock_release+0x10/0x10
[ 3339.832564][T25702]  ? memcg_account_kmem+0x1e7/0x210
[ 3339.837784][T25702]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3339.843603][T25702]  __memcg_kmem_charge_page+0xe1/0x250
[ 3339.849079][T25702]  memcg_charge_kernel_stack+0x37e/0x550
[ 3339.854726][T25702]  dup_task_struct+0x40d/0x7d0
[ 3339.859507][T25702]  copy_process+0x5d5/0x3fc0
[ 3339.864118][T25702]  ? __might_fault+0xa9/0x120
[ 3339.868811][T25702]  ? __pfx_lock_release+0x10/0x10
[ 3339.873856][T25702]  ? __pfx_copy_process+0x10/0x10
[ 3339.878923][T25702]  ? __might_fault+0xc5/0x120
[ 3339.883650][T25702]  ? __asan_memset+0x23/0x50
[ 3339.888261][T25702]  kernel_clone+0x21d/0x8d0
[ 3339.892782][T25702]  ? __pfx_kernel_clone+0x10/0x10
[ 3339.897828][T25702]  ? __pfx___might_resched+0x10/0x10
[ 3339.903216][T25702]  __se_sys_clone3+0x2cb/0x350
[ 3339.908003][T25702]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3339.913330][T25702]  ? int80_emulation+0xea/0x210
[ 3339.918212][T25702]  int80_emulation+0x129/0x210
[ 3339.923014][T25702]  asm_int80_emulation+0x1a/0x20
[ 3339.927962][T25702] RIP: 0023:0xf7372060
[ 3339.932037][T25702] Code: 4c 24 04 85 c9 0f 84 df 0d fe ff 8b 54 24 0c 85 d2 0f 84 d3 0d fe ff 53 56 8b 74 24 18 89 cb 8b 4c 24 10 b8 b3 01 00 00 cd 80 <85> c0 74 09 5e 5b 0f 8c b4 0d fe ff c3 31 ed 83 e4 f0 83 ec 0c 56
[ 3339.951739][T25702] RSP: 002b:00000000f75898e4 EFLAGS: 00000282 ORIG_RAX: 00000000000001b3
[ 3339.960167][T25702] RAX: ffffffffffffffda RBX: 00000000f7589950 RCX: 0000000000000058
[ 3339.968144][T25702] RDX: 00000000f7322eb0 RSI: 00000000f5ee2b40 RDI: 00000000ffffffd8
[ 3339.976123][T25702] RBP: 000000000000000b R08: 0000000000000000 R09: 0000000000000000
[ 3339.984101][T25702] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 3339.992089][T25702] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 3340.000078][T25702]  </TASK>
[ 3340.039451][T25702] memory: usage 307200kB, limit 307200kB, failcnt 154002
[ 3340.048800][T25702] memory+swap: usage 307908kB, limit 9007199254740988kB, failcnt 0
[ 3340.059521][T25702] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[ 3340.069293][T25702] Memory cgroup stats for /syz0:
[ 3340.069427][T25702] cache 0
[ 3340.080210][T25702] rss 8192
[ 3340.083288][T25702] rss_huge 0
[ 3340.089266][T25702] shmem 0
[ 3340.092333][T25702] mapped_file 0
[ 3340.095829][T25702] dirty 0
[ 3340.099636][T25702] writeback 0
[ 3340.102950][T25702] workingset_refault_anon 56626
[ 3340.108533][T25702] workingset_refault_file 0
[ 3340.113068][T25702] swap 716800
[ 3340.117066][T25702] swapcached 8192
[ 3340.120832][T25702] pgpgin 251442
[ 3340.124418][T25702] pgpgout 251440
[ 3340.130169][T25702] pgfault 581534
[ 3340.133854][T25702] pgmajfault 55069
[ 3340.144970][T25702] inactive_anon 4096
[ 3340.149442][T25702] active_anon 4096
[ 3340.153328][T25702] inactive_file 0
[ 3340.157841][T25702] active_file 0
[ 3340.161416][T25702] unevictable 0
[ 3340.164990][T25702] hierarchical_memory_limit 314572800
[ 3340.171166][T25702] hierarchical_memsw_limit 9223372036854771712
[ 3340.178033][T25702] total_cache 0
[ 3340.181644][T25702] total_rss 8192
[ 3340.185320][T25702] total_rss_huge 0
[ 3340.189953][T25702] total_shmem 0
[ 3340.193552][T25702] total_mapped_file 0
[ 3340.198191][T25702] total_dirty 0
[ 3340.201778][T25702] total_writeback 0
[ 3340.205703][T25702] total_workingset_refault_anon 56626
[ 3340.211895][T25702] total_workingset_refault_file 0
[ 3340.217777][T25702] total_swap 716800
[ 3340.221732][T25702] total_swapcached 8192
[ 3340.226005][T25702] total_pgpgin 251442
[ 3340.230933][T25702] total_pgpgout 251440
[ 3340.235149][T25702] total_pgfault 581534
[ 3340.241251][T25702] total_pgmajfault 55069
[ 3340.245800][T25702] total_inactive_anon 4096
[ 3340.250790][T25702] total_active_anon 4096
[ 3340.255176][T25702] total_inactive_file 0
[ 3340.262617][T25702] total_active_file 0
[ 3340.269536][T25702] total_unevictable 0
[ 3340.273673][T25702] anon_cost 0
[ 3340.277674][T25702] file_cost 0
[ 3340.281303][T25702] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=25702,uid=0
[ 3340.297734][T25702] Memory cgroup out of memory: Killed process 25702 (syz-executor.0) total-vm:54344kB, anon-rss:308kB, file-rss:8704kB, shmem-rss:0kB, UID:0 pgtables:64kB oom_score_adj:1000
[ 3340.345010][ T5123] syz-executor.2 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[ 3340.368024][ T5123] CPU: 1 PID: 5123 Comm: syz-executor.2 Not tainted 6.8.0-rc7-syzkaller-00250-g137e0ec05aeb #0
[ 3340.378432][ T5123] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3340.388535][ T5123] Call Trace:
[ 3340.391864][ T5123]  <TASK>
[ 3340.394823][ T5123]  dump_stack_lvl+0x1e7/0x2e0
[ 3340.399550][ T5123]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3340.404778][ T5123]  ? __pfx__printk+0x10/0x10
[ 3340.409405][ T5123]  ? ___ratelimit+0x4c4/0x670
[ 3340.414138][ T5123]  ? __pfx____ratelimit+0x10/0x10
[ 3340.419205][ T5123]  dump_header+0xda/0x6a0
[ 3340.423584][ T5123]  oom_kill_process+0x3a7/0x930
[ 3340.428461][ T5123]  out_of_memory+0xf67/0x1320
[ 3340.433266][ T5123]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3340.438916][ T5123]  ? __pfx___mutex_lock+0x10/0x10
[ 3340.443956][ T5123]  ? __pfx_out_of_memory+0x10/0x10
[ 3340.449095][ T5123]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3340.454657][ T5123]  ? __pfx_lock_release+0x10/0x10
[ 3340.459703][ T5123]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3340.465786][ T5123]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3340.470995][ T5123]  ? mem_cgroup_iter+0x3e9/0x560
[ 3340.475946][ T5123]  try_charge_memcg+0xda2/0x18a0
[ 3340.480896][ T5123]  ? mark_lock+0x9a/0x350
[ 3340.485279][ T5123]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3340.490683][ T5123]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 3340.496845][ T5123]  charge_memcg+0xa2/0x160
[ 3340.501286][ T5123]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 3340.507369][ T5123]  __read_swap_cache_async+0x480/0x8b0
[ 3340.512933][ T5123]  ? mark_lock+0x9a/0x350
[ 3340.517280][ T5123]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 3340.523284][ T5123]  swap_cluster_readahead+0x67c/0x810
[ 3340.528683][ T5123]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 3340.534595][ T5123]  ? __pfx_lock_release+0x10/0x10
[ 3340.539638][ T5123]  ? xas_descend+0x37e/0x470
[ 3340.544250][ T5123]  swapin_readahead+0x1ea/0x1070
[ 3340.549216][ T5123]  ? filemap_get_entry+0x127/0x4e0
[ 3340.554355][ T5123]  ? __pfx_swapin_readahead+0x10/0x10
[ 3340.559753][ T5123]  ? __filemap_get_folio+0x935/0xbc0
[ 3340.565064][ T5123]  ? swap_cache_get_folio+0x9f/0x570
[ 3340.570459][ T5123]  do_swap_page+0x791/0x3f40
[ 3340.575070][ T5123]  ? rcu_is_watching+0x15/0xb0
[ 3340.579881][ T5123]  ? do_swap_page+0x154/0x3f40
[ 3340.584657][ T5123]  ? __pfx_do_swap_page+0x10/0x10
[ 3340.589691][ T5123]  ? pte_offset_map_nolock+0x137/0x1f0
[ 3340.595167][ T5123]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 3340.601020][ T5123]  __handle_mm_fault+0x15e8/0x72d0
[ 3340.606185][ T5123]  ? reacquire_held_locks+0x3eb/0x690
[ 3340.611566][ T5123]  ? __pfx___handle_mm_fault+0x10/0x10
[ 3340.617052][ T5123]  ? __pfx_reacquire_held_locks+0x10/0x10
[ 3340.622798][ T5123]  ? mtree_range_walk+0x6fd/0x8e0
[ 3340.627848][ T5123]  ? lock_vma_under_rcu+0x18a/0x730
[ 3340.633116][ T5123]  ? __pfx_lock_release+0x10/0x10
[ 3340.638153][ T5123]  ? lock_vma_under_rcu+0x2f9/0x730
[ 3340.643430][ T5123]  ? lock_vma_under_rcu+0x18a/0x730
[ 3340.648663][ T5123]  ? __pfx_lock_vma_under_rcu+0x10/0x10
[ 3340.654244][ T5123]  handle_mm_fault+0x3c1/0x8a0
[ 3340.659041][ T5123]  exc_page_fault+0x456/0x870
[ 3340.663744][ T5123]  asm_exc_page_fault+0x26/0x30
[ 3340.668605][ T5123] RIP: 0023:0xf737199c
[ 3340.672679][ T5123] Code: 19 00 00 8d b4 26 00 00 00 00 8d 74 26 00 55 57 e8 8f cb f9 ff 81 c7 6d 16 0d 00 56 53 83 ec 0c f6 44 24 20 02 74 0f 83 c4 0c <5b> 5e 5f 5d c3 8d b4 26 00 00 00 00 65 a1 08 00 00 00 8b 88 80 00
[ 3340.692383][ T5123] RSP: 002b:00000000f758dc6c EFLAGS: 00010286
[ 3340.698465][ T5123] RAX: 0000000000000002 RBX: 00000000575e0480 RCX: 0000000000000000
[ 3340.706457][ T5123] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00000000f7442ff4
[ 3340.714437][ T5123] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 3340.722413][ T5123] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 3340.730397][ T5123] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 3340.738397][ T5123]  </TASK>
[ 3340.759751][ T5123] memory: usage 307200kB, limit 307200kB, failcnt 126903
[ 3340.767235][ T5123] memory+swap: usage 307668kB, limit 9007199254740988kB, failcnt 0
[ 3340.775234][ T5123] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0
[ 3340.783037][ T5123] Memory cgroup stats for /syz2:
[ 3340.783183][ T5123] cache 0
[ 3340.791733][ T5123] rss 0
[ 3340.794542][ T5123] rss_huge 0
[ 3340.798316][ T5123] shmem 0
[ 3340.801436][ T5123] mapped_file 0
[ 3340.804956][ T5123] dirty 0
[ 3340.808631][ T5123] writeback 0
[ 3340.811945][ T5123] workingset_refault_anon 45341
[ 3340.817433][ T5123] workingset_refault_file 0
[ 3340.821975][ T5123] swap 479232
[ 3340.825282][ T5123] swapcached 12288
[ 3340.829842][ T5123] pgpgin 249904
[ 3340.833438][ T5123] pgpgout 249901
[ 3340.837650][ T5123] pgfault 592513
[ 3340.841336][ T5123] pgmajfault 44684
[ 3340.845176][ T5123] inactive_anon 12288
[ 3340.850079][ T5123] active_anon 0
[ 3340.853703][ T5123] inactive_file 0
[ 3340.858079][ T5123] active_file 0
[ 3340.861669][ T5123] unevictable 0
[ 3340.865245][ T5123] hierarchical_memory_limit 314572800
[ 3340.872500][ T5123] hierarchical_memsw_limit 9223372036854771712
[ 3340.879205][ T5123] total_cache 0
[ 3340.882697][ T5123] total_rss 0
[ 3340.886001][ T5123] total_rss_huge 0
[ 3340.890575][ T5123] total_shmem 0
[ 3340.894076][ T5123] total_mapped_file 0
[ 3340.898705][ T5123] total_dirty 0
[ 3340.902208][ T5123] total_writeback 0
[ 3340.906050][ T5123] total_workingset_refault_anon 45341
[ 3340.912279][ T5123] total_workingset_refault_file 0
[ 3340.917761][ T5123] total_swap 479232
[ 3340.921595][ T5123] total_swapcached 12288
[ 3340.925866][ T5123] total_pgpgin 249904
[ 3340.930626][ T5123] total_pgpgout 249901
[ 3340.934740][ T5123] total_pgfault 592513
[ 3340.939379][ T5123] total_pgmajfault 44684
[ 3340.943675][ T5123] total_inactive_anon 12288
[ 3340.949010][ T5123] total_active_anon 0
[ 3340.953150][ T5123] total_inactive_file 0
[ 3340.958065][ T5123] total_active_file 0
[ 3340.962227][ T5123] total_unevictable 0
[ 3340.966933][ T5123] anon_cost 0
[ 3340.970366][ T5123] file_cost 0
[ 3340.973789][ T5123] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=25701,uid=0
[ 3340.991223][ T5123] Memory cgroup out of memory: Killed process 25701 (syz-executor.2) total-vm:54344kB, anon-rss:316kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:64kB oom_score_adj:1000
06:23:37 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x87c, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x84c, 0x2, [@TCA_BASIC_POLICE={0x848, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}]}]}}]}, 0x87c}}, 0x0)

06:23:37 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x888, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x858, 0x2, [@TCA_BASIC_POLICE={0x854, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3000000]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}, @TCA_POLICE_PEAKRATE64={0xc}]}]}}]}, 0x888}}, 0x0)

[ 3341.365685][T25703] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3341.381574][T25703] CPU: 0 PID: 25703 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00250-g137e0ec05aeb #0
[ 3341.392068][T25703] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3341.402164][T25703] Call Trace:
[ 3341.405498][T25703]  <TASK>
[ 3341.408474][T25703]  dump_stack_lvl+0x1e7/0x2e0
[ 3341.413214][T25703]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3341.418524][T25703]  ? __pfx__printk+0x10/0x10
[ 3341.423338][T25703]  ? ___ratelimit+0x4c4/0x670
[ 3341.429723][T25703]  ? __pfx____ratelimit+0x10/0x10
[ 3341.434814][T25703]  dump_header+0xda/0x6a0
[ 3341.439207][T25703]  oom_kill_process+0x3a7/0x930
[ 3341.444160][T25703]  out_of_memory+0xf67/0x1320
[ 3341.448893][T25703]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3341.454573][T25703]  ? __pfx___mutex_lock+0x10/0x10
[ 3341.459648][T25703]  ? __pfx_out_of_memory+0x10/0x10
[ 3341.464824][T25703]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3341.470424][T25703]  ? __pfx_lock_release+0x10/0x10
[ 3341.475507][T25703]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3341.481623][T25703]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3341.486844][T25703]  ? mem_cgroup_iter+0x3e9/0x560
[ 3341.491807][T25703]  try_charge_memcg+0xda2/0x18a0
[ 3341.496787][T25703]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3341.502176][T25703]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3341.507907][T25703]  ? __pfx_lock_release+0x10/0x10
[ 3341.512985][T25703]  ? memcg_account_kmem+0x1e7/0x210
[ 3341.518213][T25703]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3341.524031][T25703]  __memcg_kmem_charge_page+0xe1/0x250
[ 3341.529516][T25703]  memcg_charge_kernel_stack+0x37e/0x550
[ 3341.535169][T25703]  dup_task_struct+0x15d/0x7d0
[ 3341.539950][T25703]  copy_process+0x5d5/0x3fc0
[ 3341.544571][T25703]  ? __might_fault+0xa9/0x120
[ 3341.549296][T25703]  ? __pfx_lock_release+0x10/0x10
[ 3341.554345][T25703]  ? __pfx_copy_process+0x10/0x10
[ 3341.559384][T25703]  ? __might_fault+0xc5/0x120
[ 3341.564077][T25703]  ? __asan_memset+0x23/0x50
[ 3341.568684][T25703]  kernel_clone+0x21d/0x8d0
[ 3341.573200][T25703]  ? __pfx_kernel_clone+0x10/0x10
[ 3341.578253][T25703]  ? __pfx___might_resched+0x10/0x10
[ 3341.583644][T25703]  __se_sys_clone3+0x2cb/0x350
[ 3341.588427][T25703]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3341.593756][T25703]  ? int80_emulation+0xea/0x210
[ 3341.598631][T25703]  int80_emulation+0x129/0x210
[ 3341.603415][T25703]  asm_int80_emulation+0x1a/0x20
[ 3341.608362][T25703] RIP: 0023:0xf7372060
[ 3341.612441][T25703] Code: 4c 24 04 85 c9 0f 84 df 0d fe ff 8b 54 24 0c 85 d2 0f 84 d3 0d fe ff 53 56 8b 74 24 18 89 cb 8b 4c 24 10 b8 b3 01 00 00 cd 80 <85> c0 74 09 5e 5b 0f 8c b4 0d fe ff c3 31 ed 83 e4 f0 83 ec 0c 56
[ 3341.632060][T25703] RSP: 002b:00000000f75898e4 EFLAGS: 00000282 ORIG_RAX: 00000000000001b3
[ 3341.640485][T25703] RAX: ffffffffffffffda RBX: 00000000f7589950 RCX: 0000000000000058
[ 3341.648469][T25703] RDX: 00000000f7322eb0 RSI: 00000000f5ee2b40 RDI: 00000000ffffffd8
[ 3341.656455][T25703] RBP: 000000000000000b R08: 0000000000000000 R09: 0000000000000000
[ 3341.664434][T25703] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 3341.672427][T25703] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 3341.680421][T25703]  </TASK>
[ 3341.689561][T25703] memory: usage 307200kB, limit 307200kB, failcnt 154294
[ 3341.696815][T25703] memory+swap: usage 307908kB, limit 9007199254740988kB, failcnt 0
[ 3341.704744][T25703] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[ 3341.718317][T25703] Memory cgroup stats for /syz0:
[ 3341.718464][T25703] cache 0
[ 3341.726518][T25703] rss 0
[ 3341.729591][T25703] rss_huge 0
[ 3341.732825][T25703] shmem 0
[ 3341.735790][T25703] mapped_file 0
[ 3341.739621][T25703] dirty 0
[ 3341.742933][T25703] writeback 0
[ 3341.746779][T25703] workingset_refault_anon 56732
[ 3341.751667][T25703] workingset_refault_file 0
[ 3341.756189][T25703] swap 724992
[ 3341.760179][T25703] swapcached 0
[ 3341.763579][T25703] pgpgin 251557
[ 3341.767671][T25703] pgpgout 251557
[ 3341.771251][T25703] pgfault 581704
[ 3341.774815][T25703] pgmajfault 55163
[ 3341.779508][T25703] inactive_anon 0
[ 3341.783177][T25703] active_anon 0
[ 3341.787344][T25703] inactive_file 0
[ 3341.791023][T25703] active_file 0
[ 3341.794496][T25703] unevictable 0
[ 3341.799383][T25703] hierarchical_memory_limit 314572800
[ 3341.804800][T25703] hierarchical_memsw_limit 9223372036854771712
[ 3341.811650][T25703] total_cache 0
[ 3341.815145][T25703] total_rss 0
[ 3341.819105][T25703] total_rss_huge 0
[ 3341.822856][T25703] total_shmem 0
[ 3341.826948][T25703] total_mapped_file 0
[ 3341.830972][T25703] total_dirty 0
[ 3341.834450][T25703] total_writeback 0
[ 3341.838716][T25703] total_workingset_refault_anon 56732
[ 3341.844140][T25703] total_workingset_refault_file 0
[ 3341.850021][T25703] total_swap 724992
[ 3341.853861][T25703] total_swapcached 0
[ 3341.858436][T25703] total_pgpgin 251557
[ 3341.862446][T25703] total_pgpgout 251557
[ 3341.867183][T25703] total_pgfault 581704
[ 3341.871308][T25703] total_pgmajfault 55163
[ 3341.875568][T25703] total_inactive_anon 0
[ 3341.880461][T25703] total_active_anon 0
[ 3341.884472][T25703] total_inactive_file 0
[ 3341.889254][T25703] total_active_file 0
[ 3341.893267][T25703] total_unevictable 0
[ 3341.897878][T25703] anon_cost 0
[ 3341.901208][T25703] file_cost 0
06:23:38 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x87c, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x84c, 0x2, [@TCA_BASIC_POLICE={0x848, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3000000]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}]}]}}]}, 0x87c}}, 0x0)

[ 3341.904522][T25703] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=25703,uid=0
[ 3341.920944][T25703] Memory cgroup out of memory: Killed process 25703 (syz-executor.0) total-vm:54344kB, anon-rss:308kB, file-rss:8704kB, shmem-rss:0kB, UID:0 pgtables:64kB oom_score_adj:1000
[ 3341.965957][ T5123] syz-executor.2 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[ 3341.990270][ T5123] CPU: 1 PID: 5123 Comm: syz-executor.2 Not tainted 6.8.0-rc7-syzkaller-00250-g137e0ec05aeb #0
[ 3342.000671][ T5123] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3342.010773][ T5123] Call Trace:
[ 3342.014093][ T5123]  <TASK>
[ 3342.017069][ T5123]  dump_stack_lvl+0x1e7/0x2e0
[ 3342.021810][ T5123]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3342.027069][ T5123]  ? __pfx__printk+0x10/0x10
[ 3342.031715][ T5123]  ? ___ratelimit+0x4c4/0x670
[ 3342.036462][ T5123]  ? __pfx____ratelimit+0x10/0x10
[ 3342.041552][ T5123]  dump_header+0xda/0x6a0
[ 3342.045945][ T5123]  oom_kill_process+0x3a7/0x930
[ 3342.050852][ T5123]  out_of_memory+0xf67/0x1320
[ 3342.055584][ T5123]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3342.061288][ T5123]  ? __pfx___mutex_lock+0x10/0x10
[ 3342.066545][ T5123]  ? __pfx_out_of_memory+0x10/0x10
[ 3342.071722][ T5123]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3342.077326][ T5123]  ? __pfx_lock_release+0x10/0x10
[ 3342.082414][ T5123]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3342.088548][ T5123]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3342.093801][ T5123]  ? mem_cgroup_iter+0x3e9/0x560
[ 3342.098795][ T5123]  try_charge_memcg+0xda2/0x18a0
[ 3342.103775][ T5123]  ? mark_lock+0x9a/0x350
[ 3342.108179][ T5123]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3342.113638][ T5123]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 3342.119842][ T5123]  charge_memcg+0xa2/0x160
[ 3342.124325][ T5123]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 3342.130434][ T5123]  __read_swap_cache_async+0x480/0x8b0
[ 3342.135935][ T5123]  ? mark_lock+0x9a/0x350
[ 3342.140286][ T5123]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 3342.146300][ T5123]  ? blk_start_plug+0x6f/0x1b0
[ 3342.151102][ T5123]  swap_cluster_readahead+0x398/0x810
[ 3342.156498][ T5123]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 3342.162408][ T5123]  ? __pfx_lock_release+0x10/0x10
[ 3342.167450][ T5123]  ? xas_descend+0x37e/0x470
[ 3342.172088][ T5123]  swapin_readahead+0x1ea/0x1070
[ 3342.177042][ T5123]  ? filemap_get_entry+0x127/0x4e0
[ 3342.182186][ T5123]  ? __pfx_swapin_readahead+0x10/0x10
[ 3342.187750][ T5123]  ? __filemap_get_folio+0x935/0xbc0
[ 3342.193068][ T5123]  ? swap_cache_get_folio+0x9f/0x570
[ 3342.198392][ T5123]  do_swap_page+0x791/0x3f40
[ 3342.203019][ T5123]  ? rcu_is_watching+0x15/0xb0
[ 3342.207828][ T5123]  ? do_swap_page+0x154/0x3f40
[ 3342.212605][ T5123]  ? __pfx_do_swap_page+0x10/0x10
[ 3342.217653][ T5123]  ? pte_offset_map_nolock+0x137/0x1f0
[ 3342.223126][ T5123]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 3342.228978][ T5123]  __handle_mm_fault+0x15e8/0x72d0
[ 3342.234130][ T5123]  ? reacquire_held_locks+0x3eb/0x690
[ 3342.239513][ T5123]  ? __pfx___handle_mm_fault+0x10/0x10
[ 3342.245029][ T5123]  ? __pfx_reacquire_held_locks+0x10/0x10
[ 3342.250798][ T5123]  ? mtree_range_walk+0x6fd/0x8e0
[ 3342.255886][ T5123]  ? lock_vma_under_rcu+0x18a/0x730
[ 3342.261110][ T5123]  ? __pfx_lock_release+0x10/0x10
[ 3342.266246][ T5123]  ? lock_vma_under_rcu+0x2f9/0x730
[ 3342.271524][ T5123]  ? lock_vma_under_rcu+0x18a/0x730
[ 3342.277093][ T5123]  ? __pfx_lock_vma_under_rcu+0x10/0x10
[ 3342.282669][ T5123]  handle_mm_fault+0x3c1/0x8a0
[ 3342.287473][ T5123]  exc_page_fault+0x456/0x870
[ 3342.292183][ T5123]  asm_exc_page_fault+0x26/0x30
[ 3342.297053][ T5123] RIP: 0023:0xf72ec579
[ 3342.301131][ T5123] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[ 3342.320750][ T5123] RSP: 002b:00000000f758dc80 EFLAGS: 00010206
[ 3342.326851][ T5123] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00000000f72ec579
[ 3342.334863][ T5123] RDX: 00000000f758dcb4 RSI: 00000000f758dcac RDI: 00000000f758dcb4
[ 3342.342948][ T5123] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 3342.350963][ T5123] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 3342.358962][ T5123] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 3342.366956][ T5123]  </TASK>
[ 3342.380487][ T5123] memory: usage 307200kB, limit 307200kB, failcnt 127262
[ 3342.406467][ T5123] memory+swap: usage 307668kB, limit 9007199254740988kB, failcnt 0
[ 3342.414428][ T5123] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0
[ 3342.422918][ T5123] Memory cgroup stats for /syz2:
[ 3342.423074][ T5123] cache 0
[ 3342.431907][ T5123] rss 0
[ 3342.434707][ T5123] rss_huge 0
[ 3342.438418][ T5123] shmem 0
[ 3342.441396][ T5123] mapped_file 0
[ 3342.444879][ T5123] dirty 0
[ 3342.448480][ T5123] writeback 0
[ 3342.451806][ T5123] workingset_refault_anon 45462
[ 3342.461624][ T5123] workingset_refault_file 0
[ 3342.466243][ T5123] swap 479232
[ 3342.470190][ T5123] swapcached 12288
[ 3342.474055][ T5123] pgpgin 250033
[ 3342.478258][ T5123] pgpgout 250030
[ 3342.483283][ T5123] pgfault 592711
[ 3342.490623][ T5123] pgmajfault 44792
[ 3342.494534][ T5123] inactive_anon 12288
[ 3342.501012][ T5123] active_anon 0
[ 3342.504613][ T5123] inactive_file 0
[ 3342.512087][ T5123] active_file 0
[ 3342.515715][ T5123] unevictable 0
[ 3342.521108][ T5123] hierarchical_memory_limit 314572800
[ 3342.527184][ T5123] hierarchical_memsw_limit 9223372036854771712
[ 3342.533520][ T5123] total_cache 0
[ 3342.537739][ T5123] total_rss 0
[ 3342.541187][ T5123] total_rss_huge 0
[ 3342.545062][ T5123] total_shmem 0
[ 3342.549450][ T5123] total_mapped_file 0
[ 3342.553606][ T5123] total_dirty 0
[ 3342.557820][ T5123] total_writeback 0
[ 3342.561822][ T5123] total_workingset_refault_anon 45462
[ 3342.567982][ T5123] total_workingset_refault_file 0
[ 3342.573161][ T5123] total_swap 479232
[ 3342.579009][ T5123] total_swapcached 12288
[ 3342.583294][ T5123] total_pgpgin 250033
[ 3342.587951][ T5123] total_pgpgout 250030
[ 3342.592203][ T5123] total_pgfault 592711
[ 3342.596871][ T5123] total_pgmajfault 44792
[ 3342.601146][ T5123] total_inactive_anon 12288
[ 3342.605671][ T5123] total_active_anon 0
[ 3342.611009][ T5123] total_inactive_file 0
[ 3342.615209][ T5123] total_active_file 0
[ 3342.619889][ T5123] total_unevictable 0
[ 3342.623914][ T5123] anon_cost 0
[ 3342.627467][ T5123] file_cost 0
[ 3342.630888][ T5123] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=25704,uid=0
[ 3342.646676][ T5123] Memory cgroup out of memory: Killed process 25704 (syz-executor.2) total-vm:54344kB, anon-rss:308kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:64kB oom_score_adj:1000
06:23:39 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x888, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x858, 0x2, [@TCA_BASIC_POLICE={0x854, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}, @TCA_POLICE_PEAKRATE64={0xc}]}]}}]}, 0x888}}, 0x0)

[ 3342.669340][T25705] syz-executor.0 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[ 3342.687597][T25705] CPU: 0 PID: 25705 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00250-g137e0ec05aeb #0
[ 3342.698088][T25705] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3342.708186][T25705] Call Trace:
[ 3342.711508][T25705]  <TASK>
[ 3342.714471][T25705]  dump_stack_lvl+0x1e7/0x2e0
[ 3342.719216][T25705]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3342.724476][T25705]  ? __pfx__printk+0x10/0x10
[ 3342.729122][T25705]  ? ___ratelimit+0x4c4/0x670
[ 3342.733874][T25705]  ? __pfx____ratelimit+0x10/0x10
[ 3342.738965][T25705]  dump_header+0xda/0x6a0
[ 3342.743368][T25705]  oom_kill_process+0x3a7/0x930
[ 3342.748454][T25705]  out_of_memory+0xf67/0x1320
[ 3342.753195][T25705]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3342.758887][T25705]  ? __pfx___mutex_lock+0x10/0x10
[ 3342.763968][T25705]  ? __pfx_out_of_memory+0x10/0x10
[ 3342.769128][T25705]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3342.774687][T25705]  ? __pfx_lock_release+0x10/0x10
[ 3342.779724][T25705]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3342.785798][T25705]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3342.791010][T25705]  ? mem_cgroup_iter+0x3e9/0x560
[ 3342.795987][T25705]  try_charge_memcg+0xda2/0x18a0
[ 3342.800928][T25705]  ? mark_lock+0x9a/0x350
[ 3342.805278][T25705]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3342.810683][T25705]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 3342.816846][T25705]  charge_memcg+0xa2/0x160
[ 3342.821275][T25705]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 3342.827363][T25705]  __read_swap_cache_async+0x480/0x8b0
[ 3342.832828][T25705]  ? mark_lock+0x9a/0x350
[ 3342.837185][T25705]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 3342.843193][T25705]  ? blk_start_plug+0x6f/0x1b0
[ 3342.847975][T25705]  swap_cluster_readahead+0x398/0x810
[ 3342.853409][T25705]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 3342.859333][T25705]  ? __pfx_lock_release+0x10/0x10
[ 3342.864390][T25705]  ? xas_descend+0x37e/0x470
[ 3342.869017][T25705]  swapin_readahead+0x1ea/0x1070
[ 3342.874004][T25705]  ? filemap_get_entry+0x127/0x4e0
[ 3342.879166][T25705]  ? __pfx_swapin_readahead+0x10/0x10
[ 3342.884569][T25705]  ? __filemap_get_folio+0x935/0xbc0
[ 3342.889877][T25705]  ? swap_cache_get_folio+0x9f/0x570
[ 3342.895173][T25705]  do_swap_page+0x791/0x3f40
[ 3342.899788][T25705]  ? rcu_is_watching+0x15/0xb0
[ 3342.904620][T25705]  ? do_swap_page+0x154/0x3f40
[ 3342.909418][T25705]  ? __pfx_do_swap_page+0x10/0x10
[ 3342.914506][T25705]  ? pte_offset_map_nolock+0x137/0x1f0
[ 3342.919989][T25705]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 3342.925822][T25705]  __handle_mm_fault+0x15e8/0x72d0
[ 3342.931056][T25705]  ? reacquire_held_locks+0x3eb/0x690
[ 3342.936442][T25705]  ? __pfx___handle_mm_fault+0x10/0x10
[ 3342.941934][T25705]  ? __pfx_reacquire_held_locks+0x10/0x10
[ 3342.947672][T25705]  ? mtree_range_walk+0x6fd/0x8e0
[ 3342.952704][T25705]  ? lock_vma_under_rcu+0x18a/0x730
[ 3342.957928][T25705]  ? __pfx_lock_release+0x10/0x10
[ 3342.962971][T25705]  ? lock_vma_under_rcu+0x2f9/0x730
[ 3342.968201][T25705]  ? lock_vma_under_rcu+0x18a/0x730
[ 3342.973408][T25705]  ? __pfx_lock_vma_under_rcu+0x10/0x10
[ 3342.978991][T25705]  handle_mm_fault+0x3c1/0x8a0
[ 3342.983772][T25705]  exc_page_fault+0x456/0x870
[ 3342.988484][T25705]  asm_exc_page_fault+0x26/0x30
[ 3342.993351][T25705] RIP: 0023:0xf7329c6f
[ 3342.997463][T25705] Code: 8b 45 08 85 c0 0f 85 30 03 00 00 8d 47 ff 31 c9 c1 e8 04 89 4c 24 1c 89 44 24 20 65 8b 35 dc ff ff ff 85 f6 74 11 8b 74 24 04 <3b> 86 28 63 00 00 0f 42 cf 89 4c 24 1c 8d 45 38 c7 44 24 14 00 00
[ 3343.017177][T25705] RSP: 002b:00000000f7589940 EFLAGS: 00010202
[ 3343.023269][T25705] RAX: 0000000000000008 RBX: 00000000f743eff4 RCX: 0000000000000000
[ 3343.031270][T25705] RDX: 00000000f74453c8 RSI: 00000000f743eff4 RDI: 0000000000000090
[ 3343.039282][T25705] RBP: 00000000f7445340 R08: 0000000000000000 R09: 0000000000000000
[ 3343.047273][T25705] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 3343.055268][T25705] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 3343.063274][T25705]  </TASK>
[ 3343.071095][T25705] memory: usage 307180kB, limit 307200kB, failcnt 154527
[ 3343.078252][T25705] memory+swap: usage 307904kB, limit 9007199254740988kB, failcnt 0
[ 3343.086193][T25705] kmem: usage 307168kB, limit 9007199254740988kB, failcnt 0
[ 3343.093720][T25705] Memory cgroup stats for /syz0:
[ 3343.093873][T25705] cache 0
[ 3343.101946][T25705] rss 12288
[ 3343.105097][T25705] rss_huge 0
[ 3343.108490][T25705] shmem 0
[ 3343.111465][T25705] mapped_file 0
[ 3343.114954][T25705] dirty 0
[ 3343.117979][T25705] writeback 0
[ 3343.121390][T25705] workingset_refault_anon 56831
[ 3343.126342][T25705] workingset_refault_file 0
[ 3343.130889][T25705] swap 741376
[ 3343.134208][T25705] swapcached 12288
[ 3343.139860][T25705] pgpgin 251665
[ 3343.143393][T25705] pgpgout 251662
[ 3343.147506][T25705] pgfault 581862
[ 3343.151092][T25705] pgmajfault 55254
[ 3343.154840][T25705] inactive_anon 0
[ 3343.162517][T25705] active_anon 12288
[ 3343.166895][T25705] inactive_file 0
[ 3343.170653][T25705] active_file 0
[ 3343.174134][T25705] unevictable 0
[ 3343.179244][T25705] hierarchical_memory_limit 314572800
[ 3343.184657][T25705] hierarchical_memsw_limit 9223372036854771712
[ 3343.191590][T25705] total_cache 0
[ 3343.195096][T25705] total_rss 12288
[ 3343.199476][T25705] total_rss_huge 0
[ 3343.203232][T25705] total_shmem 0
[ 3343.207486][T25705] total_mapped_file 0
[ 3343.211608][T25705] total_dirty 0
[ 3343.215203][T25705] total_writeback 0
[ 3343.219837][T25705] total_workingset_refault_anon 56831
[ 3343.225349][T25705] total_workingset_refault_file 0
[ 3343.231097][T25705] total_swap 741376
[ 3343.235046][T25705] total_swapcached 12288
[ 3343.239961][T25705] total_pgpgin 251665
[ 3343.244089][T25705] total_pgpgout 251662
[ 3343.248870][T25705] total_pgfault 581862
[ 3343.253079][T25705] total_pgmajfault 55254
[ 3343.258123][T25705] total_inactive_anon 0
[ 3343.262420][T25705] total_active_anon 12288
[ 3343.267458][T25705] total_inactive_file 0
[ 3343.271748][T25705] total_active_file 0
[ 3343.275866][T25705] total_unevictable 0
[ 3343.280689][T25705] anon_cost 0
[ 3343.284111][T25705] file_cost 0
[ 3343.288972][T25705] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=25705,uid=0
[ 3343.305077][T25705] Memory cgroup out of memory: Killed process 25705 (syz-executor.0) total-vm:54344kB, anon-rss:308kB, file-rss:8704kB, shmem-rss:0kB, UID:0 pgtables:64kB oom_score_adj:1000
06:23:40 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x87c, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x84c, 0x2, [@TCA_BASIC_POLICE={0x848, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}]}]}}]}, 0x87c}}, 0x0)

[ 3343.714333][T25706] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3343.725367][T25706] CPU: 0 PID: 25706 Comm: syz-executor.2 Not tainted 6.8.0-rc7-syzkaller-00250-g137e0ec05aeb #0
[ 3343.735843][T25706] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3343.745945][T25706] Call Trace:
[ 3343.749274][T25706]  <TASK>
[ 3343.752236][T25706]  dump_stack_lvl+0x1e7/0x2e0
[ 3343.756993][T25706]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3343.762261][T25706]  ? __pfx__printk+0x10/0x10
[ 3343.766906][T25706]  ? ___ratelimit+0x4c4/0x670
[ 3343.771653][T25706]  ? __pfx____ratelimit+0x10/0x10
[ 3343.776739][T25706]  dump_header+0xda/0x6a0
[ 3343.781146][T25706]  oom_kill_process+0x3a7/0x930
[ 3343.786059][T25706]  out_of_memory+0xf67/0x1320
[ 3343.790806][T25706]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3343.796494][T25706]  ? __pfx___mutex_lock+0x10/0x10
[ 3343.801551][T25706]  ? __pfx_out_of_memory+0x10/0x10
[ 3343.806692][T25706]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3343.812253][T25706]  ? __pfx_lock_release+0x10/0x10
[ 3343.817301][T25706]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3343.823385][T25706]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3343.828608][T25706]  ? mem_cgroup_iter+0x3e9/0x560
[ 3343.833567][T25706]  try_charge_memcg+0xda2/0x18a0
[ 3343.838544][T25706]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3343.843966][T25706]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3343.849702][T25706]  ? __pfx_lock_release+0x10/0x10
[ 3343.854771][T25706]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3343.860593][T25706]  __memcg_kmem_charge_page+0xe1/0x250
[ 3343.866165][T25706]  memcg_charge_kernel_stack+0xa7/0x550
[ 3343.871759][T25706]  dup_task_struct+0x40d/0x7d0
[ 3343.876546][T25706]  copy_process+0x5d5/0x3fc0
[ 3343.881163][T25706]  ? __might_fault+0xa9/0x120
[ 3343.885923][T25706]  ? __pfx_lock_release+0x10/0x10
[ 3343.891002][T25706]  ? __lock_acquire+0x1345/0x1fd0
[ 3343.896059][T25706]  ? __pfx_copy_process+0x10/0x10
[ 3343.901102][T25706]  ? __might_fault+0xc5/0x120
[ 3343.905799][T25706]  ? __asan_memset+0x23/0x50
[ 3343.910411][T25706]  kernel_clone+0x21d/0x8d0
[ 3343.914939][T25706]  ? __pfx_kernel_clone+0x10/0x10
[ 3343.919989][T25706]  ? __pfx_lock_release+0x10/0x10
[ 3343.925054][T25706]  __se_sys_clone3+0x2cb/0x350
[ 3343.929838][T25706]  ? __might_fault+0xa9/0x120
[ 3343.934534][T25706]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3343.939833][T25706]  ? rcu_is_watching+0x15/0xb0
[ 3343.944629][T25706]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3343.950640][T25706]  ? exc_page_fault+0x587/0x870
[ 3343.955513][T25706]  ? int80_emulation+0xea/0x210
[ 3343.960386][T25706]  int80_emulation+0x129/0x210
[ 3343.965180][T25706]  asm_int80_emulation+0x1a/0x20
[ 3343.970130][T25706] RIP: 0023:0xf7376060
[ 3343.974210][T25706] Code: 4c 24 04 85 c9 0f 84 df 0d fe ff 8b 54 24 0c 85 d2 0f 84 d3 0d fe ff 53 56 8b 74 24 18 89 cb 8b 4c 24 10 b8 b3 01 00 00 cd 80 <85> c0 74 09 5e 5b 0f 8c b4 0d fe ff c3 31 ed 83 e4 f0 83 ec 0c 56
[ 3343.993837][T25706] RSP: 002b:00000000f758d8e4 EFLAGS: 00000282 ORIG_RAX: 00000000000001b3
[ 3344.002270][T25706] RAX: ffffffffffffffda RBX: 00000000f758d950 RCX: 0000000000000058
[ 3344.010262][T25706] RDX: 00000000f7326eb0 RSI: 00000000f5ee6b40 RDI: 00000000ffffffd8
[ 3344.018263][T25706] RBP: 000000000000000b R08: 0000000000000000 R09: 0000000000000000
[ 3344.026246][T25706] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 3344.034240][T25706] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 3344.042258][T25706]  </TASK>
[ 3344.097657][T25706] memory: usage 307200kB, limit 307200kB, failcnt 127646
[ 3344.112932][T25706] memory+swap: usage 307684kB, limit 9007199254740988kB, failcnt 0
[ 3344.122613][T25706] kmem: usage 307176kB, limit 9007199254740988kB, failcnt 0
[ 3344.133060][T25706] Memory cgroup stats for /syz2:
[ 3344.133198][T25706] cache 0
[ 3344.141436][T25706] rss 12288
[ 3344.144576][T25706] rss_huge 0
[ 3344.148609][T25706] shmem 0
[ 3344.151692][T25706] mapped_file 0
[ 3344.155259][T25706] dirty 0
[ 3344.159034][T25706] writeback 0
[ 3344.162456][T25706] workingset_refault_anon 45597
[ 3344.167918][T25706] workingset_refault_file 0
[ 3344.172565][T25706] swap 495616
[ 3344.175946][T25706] swapcached 24576
[ 3344.180511][T25706] pgpgin 250178
[ 3344.184138][T25706] pgpgout 250172
[ 3344.188439][T25706] pgfault 592929
[ 3344.192142][T25706] pgmajfault 44915
[ 3344.196036][T25706] inactive_anon 24576
[ 3344.202003][T25706] active_anon 0
[ 3344.205617][T25706] inactive_file 0
[ 3344.213387][T25706] active_file 0
[ 3344.217836][T25706] unevictable 0
[ 3344.222639][T25706] hierarchical_memory_limit 314572800
[ 3344.233005][T25706] hierarchical_memsw_limit 9223372036854771712
[ 3344.239720][T25706] total_cache 0
[ 3344.243331][T25706] total_rss 12288
[ 3344.247794][T25706] total_rss_huge 0
[ 3344.251648][T25706] total_shmem 0
[ 3344.255227][T25706] total_mapped_file 0
[ 3344.260067][T25706] total_dirty 0
[ 3344.263673][T25706] total_writeback 0
[ 3344.268156][T25706] total_workingset_refault_anon 45597
[ 3344.273782][T25706] total_workingset_refault_file 0
[ 3344.279538][T25706] total_swap 495616
[ 3344.283494][T25706] total_swapcached 24576
[ 3344.288383][T25706] total_pgpgin 250178
[ 3344.292500][T25706] total_pgpgout 250172
[ 3344.297426][T25706] total_pgfault 592929
[ 3344.301667][T25706] total_pgmajfault 44915
[ 3344.306050][T25706] total_inactive_anon 24576
[ 3344.312436][T25706] total_active_anon 0
[ 3344.316621][T25706] total_inactive_file 0
[ 3344.320852][T25706] total_active_file 0
[ 3344.324855][T25706] total_unevictable 0
[ 3344.329795][T25706] anon_cost 0
[ 3344.333128][T25706] file_cost 0
[ 3344.336557][T25706] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=25706,uid=0
[ 3344.352487][T25706] Memory cgroup out of memory: Killed process 25706 (syz-executor.2) total-vm:54344kB, anon-rss:308kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:64kB oom_score_adj:1000
[ 3344.370218][ T5119] syz-executor.0 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[ 3344.381436][ T5119] CPU: 0 PID: 5119 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00250-g137e0ec05aeb #0
[ 3344.391809][ T5119] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3344.401913][ T5119] Call Trace:
[ 3344.405242][ T5119]  <TASK>
[ 3344.408213][ T5119]  dump_stack_lvl+0x1e7/0x2e0
[ 3344.412957][ T5119]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3344.418219][ T5119]  ? __pfx__printk+0x10/0x10
[ 3344.422868][ T5119]  ? ___ratelimit+0x4c4/0x670
[ 3344.427623][ T5119]  ? __pfx____ratelimit+0x10/0x10
[ 3344.432711][ T5119]  dump_header+0xda/0x6a0
[ 3344.437110][ T5119]  oom_kill_process+0x3a7/0x930
[ 3344.442011][ T5119]  out_of_memory+0xf67/0x1320
[ 3344.446718][ T5119]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3344.452370][ T5119]  ? __pfx___mutex_lock+0x10/0x10
[ 3344.457412][ T5119]  ? __pfx_out_of_memory+0x10/0x10
[ 3344.462551][ T5119]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3344.468112][ T5119]  ? __pfx_lock_release+0x10/0x10
[ 3344.473155][ T5119]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3344.479241][ T5119]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3344.484456][ T5119]  ? mem_cgroup_iter+0x3e9/0x560
[ 3344.489413][ T5119]  try_charge_memcg+0xda2/0x18a0
[ 3344.494368][ T5119]  ? mark_lock+0x9a/0x350
[ 3344.498732][ T5119]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3344.504143][ T5119]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 3344.510318][ T5119]  charge_memcg+0xa2/0x160
[ 3344.514758][ T5119]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 3344.520847][ T5119]  __read_swap_cache_async+0x480/0x8b0
[ 3344.526329][ T5119]  ? mark_lock+0x9a/0x350
[ 3344.530679][ T5119]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 3344.536691][ T5119]  swap_cluster_readahead+0x67c/0x810
[ 3344.542092][ T5119]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 3344.548007][ T5119]  ? __pfx_lock_release+0x10/0x10
[ 3344.553053][ T5119]  ? xas_descend+0x37e/0x470
[ 3344.557674][ T5119]  swapin_readahead+0x1ea/0x1070
[ 3344.562631][ T5119]  ? filemap_get_entry+0x127/0x4e0
[ 3344.567774][ T5119]  ? __pfx_swapin_readahead+0x10/0x10
[ 3344.573172][ T5119]  ? __filemap_get_folio+0x935/0xbc0
[ 3344.578482][ T5119]  ? swap_cache_get_folio+0x9f/0x570
[ 3344.583810][ T5119]  do_swap_page+0x791/0x3f40
[ 3344.588417][ T5119]  ? rcu_is_watching+0x15/0xb0
[ 3344.593210][ T5119]  ? do_swap_page+0x154/0x3f40
[ 3344.598004][ T5119]  ? __pfx_do_swap_page+0x10/0x10
[ 3344.603042][ T5119]  ? pte_offset_map_nolock+0x137/0x1f0
[ 3344.608520][ T5119]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 3344.614352][ T5119]  __handle_mm_fault+0x15e8/0x72d0
[ 3344.619511][ T5119]  ? reacquire_held_locks+0x3eb/0x690
[ 3344.624893][ T5119]  ? __pfx___handle_mm_fault+0x10/0x10
[ 3344.630398][ T5119]  ? __pfx_reacquire_held_locks+0x10/0x10
[ 3344.636148][ T5119]  ? mtree_range_walk+0x6fd/0x8e0
[ 3344.641201][ T5119]  ? lock_vma_under_rcu+0x18a/0x730
[ 3344.646433][ T5119]  ? __pfx_lock_release+0x10/0x10
[ 3344.651483][ T5119]  ? lock_vma_under_rcu+0x2f9/0x730
[ 3344.656732][ T5119]  ? lock_vma_under_rcu+0x18a/0x730
[ 3344.661958][ T5119]  ? __pfx_lock_vma_under_rcu+0x10/0x10
[ 3344.667538][ T5119]  handle_mm_fault+0x3c1/0x8a0
[ 3344.672328][ T5119]  exc_page_fault+0x456/0x870
[ 3344.677034][ T5119]  asm_exc_page_fault+0x26/0x30
[ 3344.681899][ T5119] RIP: 0023:0xf7308531
[ 3344.685981][ T5119] Code: d2 29 c1 19 d3 89 4c 24 18 69 44 24 18 cc cc cc cc 89 da 69 db cd cc cc cc 89 54 24 1c 01 c3 b8 cd cc cc cc f7 64 24 18 89 c5 <8b> 87 ac 05 b5 00 8d 34 13 89 fb 89 74 24 38 89 44 24 48 8b 87 b0
[ 3344.705607][ T5119] RSP: 002b:00000000f7589d68 EFLAGS: 00010a07
[ 3344.711691][ T5119] RAX: 0000000000000bb8 RBX: 00000000ffffd120 RCX: 0000000000003a98
[ 3344.719678][ T5119] RDX: 0000000000002ee0 RSI: 0000000000003a98 RDI: 00000000f743eff4
[ 3344.727666][ T5119] RBP: 0000000000000bb8 R08: 0000000000000000 R09: 0000000000000000
[ 3344.735648][ T5119] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 3344.743625][ T5119] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 3344.751624][ T5119]  </TASK>
[ 3344.763679][ T5119] memory: usage 307192kB, limit 307200kB, failcnt 154879
[ 3344.770920][ T5119] memory+swap: usage 307900kB, limit 9007199254740988kB, failcnt 0
[ 3344.778924][ T5119] kmem: usage 307192kB, limit 9007199254740988kB, failcnt 0
[ 3344.790061][ T5119] Memory cgroup stats for /syz0:
[ 3344.790225][ T5119] cache 0
06:23:41 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x888, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x858, 0x2, [@TCA_BASIC_POLICE={0x854, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5000000]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}, @TCA_POLICE_PEAKRATE64={0xc}]}]}}]}, 0x888}}, 0x0)

[ 3344.807062][ T5119] rss 0
[ 3344.809922][ T5119] rss_huge 0
[ 3344.813149][ T5119] shmem 0
[ 3344.816113][ T5119] mapped_file 0
[ 3344.836733][ T5119] dirty 0
[ 3344.839756][ T5119] writeback 0
[ 3344.845011][ T5119] workingset_refault_anon 56965
[ 3344.865980][ T5119] workingset_refault_file 0
[ 3344.880794][ T5119] swap 724992
[ 3344.884159][ T5119] swapcached 0
[ 3344.900130][ T5119] pgpgin 251808
[ 3344.903665][ T5119] pgpgout 251808
[ 3344.913797][ T5119] pgfault 582083
[ 3344.917817][ T5119] pgmajfault 55380
[ 3344.921567][ T5119] inactive_anon 0
[ 3344.925235][ T5119] active_anon 0
[ 3344.933853][ T5119] inactive_file 0
[ 3344.938173][ T5119] active_file 0
[ 3344.941679][ T5119] unevictable 0
[ 3344.945164][ T5119] hierarchical_memory_limit 314572800
[ 3344.956167][ T5119] hierarchical_memsw_limit 9223372036854771712
[ 3344.962931][ T5119] total_cache 0
[ 3344.971277][ T5119] total_rss 0
[ 3344.974689][ T5119] total_rss_huge 0
[ 3344.979062][ T5119] total_shmem 0
[ 3344.982568][ T5119] total_mapped_file 0
[ 3344.997769][ T5119] total_dirty 0
[ 3345.001410][ T5119] total_writeback 0
[ 3345.005248][ T5119] total_workingset_refault_anon 56965
[ 3345.016049][ T5119] total_workingset_refault_file 0
[ 3345.031338][ T5119] total_swap 724992
[ 3345.035221][ T5119] total_swapcached 0
[ 3345.039811][ T5119] total_pgpgin 251808
[ 3345.043917][ T5119] total_pgpgout 251808
[ 3345.052555][ T5119] total_pgfault 582083
[ 3345.057178][ T5119] total_pgmajfault 55380
[ 3345.061479][ T5119] total_inactive_anon 0
[ 3345.065674][ T5119] total_active_anon 0
[ 3345.074641][ T5119] total_inactive_file 0
[ 3345.079370][ T5119] total_active_file 0
[ 3345.083456][ T5119] total_unevictable 0
[ 3345.091735][ T5119] anon_cost 0
[ 3345.095097][ T5119] file_cost 0
[ 3345.100186][ T5119] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=25707,uid=0
[ 3345.125057][ T5119] Memory cgroup out of memory: Killed process 25707 (syz-executor.0) total-vm:54344kB, anon-rss:308kB, file-rss:8704kB, shmem-rss:0kB, UID:0 pgtables:64kB oom_score_adj:1000
[ 3345.211264][ T5123] syz-executor.2 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[ 3345.222691][ T5123] CPU: 0 PID: 5123 Comm: syz-executor.2 Not tainted 6.8.0-rc7-syzkaller-00250-g137e0ec05aeb #0
[ 3345.233062][ T5123] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3345.243190][ T5123] Call Trace:
[ 3345.246486][ T5123]  <TASK>
[ 3345.249431][ T5123]  dump_stack_lvl+0x1e7/0x2e0
[ 3345.254129][ T5123]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3345.259381][ T5123]  ? __pfx__printk+0x10/0x10
[ 3345.263986][ T5123]  ? ___ratelimit+0x4c4/0x670
[ 3345.268678][ T5123]  ? __pfx____ratelimit+0x10/0x10
[ 3345.273715][ T5123]  dump_header+0xda/0x6a0
[ 3345.278058][ T5123]  oom_kill_process+0x3a7/0x930
[ 3345.282918][ T5123]  out_of_memory+0xf67/0x1320
[ 3345.287605][ T5123]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3345.293251][ T5123]  ? __pfx___mutex_lock+0x10/0x10
[ 3345.298306][ T5123]  ? __pfx_out_of_memory+0x10/0x10
[ 3345.303452][ T5123]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3345.309037][ T5123]  ? __pfx_lock_release+0x10/0x10
[ 3345.314161][ T5123]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3345.320247][ T5123]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3345.325541][ T5123]  ? mem_cgroup_iter+0x3e9/0x560
[ 3345.330585][ T5123]  try_charge_memcg+0xda2/0x18a0
[ 3345.335529][ T5123]  ? mark_lock+0x9a/0x350
[ 3345.339880][ T5123]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3345.345281][ T5123]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 3345.351442][ T5123]  charge_memcg+0xa2/0x160
[ 3345.355988][ T5123]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 3345.362062][ T5123]  __read_swap_cache_async+0x480/0x8b0
[ 3345.367537][ T5123]  ? mark_lock+0x9a/0x350
[ 3345.371880][ T5123]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 3345.377892][ T5123]  swap_cluster_readahead+0x67c/0x810
[ 3345.383284][ T5123]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 3345.389187][ T5123]  ? __pfx_lock_release+0x10/0x10
[ 3345.394219][ T5123]  ? xas_descend+0x37e/0x470
[ 3345.398830][ T5123]  swapin_readahead+0x1ea/0x1070
[ 3345.403799][ T5123]  ? filemap_get_entry+0x127/0x4e0
[ 3345.408940][ T5123]  ? __pfx_swapin_readahead+0x10/0x10
[ 3345.414332][ T5123]  ? __filemap_get_folio+0x935/0xbc0
[ 3345.419636][ T5123]  ? swap_cache_get_folio+0x9f/0x570
[ 3345.424931][ T5123]  do_swap_page+0x791/0x3f40
[ 3345.429532][ T5123]  ? rcu_is_watching+0x15/0xb0
[ 3345.434320][ T5123]  ? do_swap_page+0x154/0x3f40
[ 3345.439112][ T5123]  ? __pfx_do_swap_page+0x10/0x10
[ 3345.444142][ T5123]  ? pte_offset_map_nolock+0x137/0x1f0
[ 3345.449606][ T5123]  ? mark_lock+0x9a/0x350
[ 3345.453939][ T5123]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 3345.459777][ T5123]  ? __pfx_validate_chain+0x10/0x10
[ 3345.464990][ T5123]  __handle_mm_fault+0x15e8/0x72d0
[ 3345.470138][ T5123]  ? __pfx___handle_mm_fault+0x10/0x10
[ 3345.475606][ T5123]  ? mt_find+0x226/0x850
[ 3345.479868][ T5123]  ? __pfx_lock_release+0x10/0x10
[ 3345.484917][ T5123]  ? mt_find+0x62d/0x850
[ 3345.489169][ T5123]  ? mt_find+0x226/0x850
[ 3345.493436][ T5123]  ? find_vma+0x142/0x1c0
[ 3345.497779][ T5123]  ? __pfx_find_vma+0x10/0x10
[ 3345.502465][ T5123]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3345.508478][ T5123]  handle_mm_fault+0x3c1/0x8a0
[ 3345.513258][ T5123]  exc_page_fault+0x2ad/0x870
[ 3345.517976][ T5123]  asm_exc_page_fault+0x26/0x30
[ 3345.522860][ T5123] RIP: 0010:__get_user_8+0x11/0x20
[ 3345.527983][ T5123] Code: ca c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 89 c2 48 c1 fa 3f 48 09 d0 0f 01 cb <48> 8b 10 31 c0 0f 01 ca c3 cc cc cc cc 66 90 90 90 90 90 90 90 90
[ 3345.547595][ T5123] RSP: 0018:ffffc90003b4fd58 EFLAGS: 00050202
[ 3345.553672][ T5123] RAX: 00000000575e08a8 RBX: ffff88805c9632f8 RCX: ffffc90003b4fc03
[ 3345.561651][ T5123] RDX: 0000000000000000 RSI: ffffffff8baac7e0 RDI: ffffffff8bfe6da0
[ 3345.569628][ T5123] RBP: ffffc90003b4fe98 R08: ffffffff8f856cef R09: 1ffffffff1f0ad9d
[ 3345.577603][ T5123] R10: dffffc0000000000 R11: fffffbfff1f0ad9e R12: ffffc90003b4fd60
[ 3345.585577][ T5123] R13: ffffc90003b4ffd8 R14: dffffc0000000000 R15: ffff88805c961dc0
[ 3345.593570][ T5123]  __rseq_handle_notify_resume+0x158/0x1490
[ 3345.599497][ T5123]  ? __pfx_hrtimer_wakeup+0x10/0x10
[ 3345.604716][ T5123]  ? __pfx___rseq_handle_notify_resume+0x10/0x10
[ 3345.611076][ T5123]  ? syscall_exit_to_user_mode+0xa2/0x360
[ 3345.616813][ T5123]  syscall_exit_to_user_mode+0x113/0x360
[ 3345.622460][ T5123]  __do_fast_syscall_32+0xcf/0x120
[ 3345.627606][ T5123]  ? exc_page_fault+0x587/0x870
[ 3345.632494][ T5123]  do_fast_syscall_32+0x33/0x70
[ 3345.637361][ T5123]  entry_SYSENTER_compat_after_hwframe+0x7c/0x86
[ 3345.643697][ T5123] RIP: 0023:0xf72ec579
[ 3345.647776][ T5123] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[ 3345.667413][ T5123] RSP: 002b:00000000f758dc80 EFLAGS: 00000206 ORIG_RAX: 000000000000010b
[ 3345.675831][ T5123] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000
[ 3345.683806][ T5123] RDX: 00000000f758dcb4 RSI: 00000000f758dcac RDI: 00000000f758dcb4
[ 3345.691784][ T5123] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 3345.699761][ T5123] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
06:23:42 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x87c, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x84c, 0x2, [@TCA_BASIC_POLICE={0x848, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5000000]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}]}]}}]}, 0x87c}}, 0x0)

[ 3345.707738][ T5123] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 3345.715731][ T5123]  </TASK>
[ 3345.752436][ T5123] memory: usage 307200kB, limit 307200kB, failcnt 127972
[ 3345.759780][ T5123] memory+swap: usage 307668kB, limit 9007199254740988kB, failcnt 0
[ 3345.771867][ T5123] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0
[ 3345.779723][ T5123] Memory cgroup stats for /syz2:
[ 3345.779877][ T5123] cache 0
[ 3345.793125][ T5123] rss 0
[ 3345.795960][ T5123] rss_huge 0
[ 3345.799900][ T5123] shmem 0
[ 3345.802889][ T5123] mapped_file 0
[ 3345.807188][ T5123] dirty 0
[ 3345.810177][ T5123] writeback 0
[ 3345.813491][ T5123] workingset_refault_anon 45723
[ 3345.837906][ T5123] workingset_refault_file 0
[ 3345.842572][ T5123] swap 479232
[ 3345.845892][ T5123] swapcached 12288
[ 3345.855549][ T5123] pgpgin 250314
[ 3345.859552][ T5123] pgpgout 250311
[ 3345.863160][ T5123] pgfault 593134
[ 3345.871974][ T5123] pgmajfault 45028
[ 3345.875764][ T5123] inactive_anon 0
[ 3345.880100][ T5123] active_anon 12288
[ 3345.883960][ T5123] inactive_file 0
[ 3345.893091][ T5123] active_file 0
[ 3345.897088][ T5123] unevictable 0
[ 3345.900598][ T5123] hierarchical_memory_limit 314572800
[ 3345.906001][ T5123] hierarchical_memsw_limit 9223372036854771712
[ 3345.913225][ T5123] total_cache 0
[ 3345.918445][ T5123] total_rss 0
[ 3345.924314][ T5123] total_rss_huge 0
[ 3345.928811][ T5123] total_shmem 0
[ 3345.932447][ T5123] total_mapped_file 0
[ 3345.942239][ T5123] total_dirty 0
[ 3345.945890][ T5123] total_writeback 0
[ 3345.965919][ T5123] total_workingset_refault_anon 45723
[ 3345.972116][ T5123] total_workingset_refault_file 0
[ 3345.982596][ T5123] total_swap 479232
[ 3345.986928][ T5123] total_swapcached 12288
[ 3345.991232][ T5123] total_pgpgin 250314
[ 3345.995243][ T5123] total_pgpgout 250311
[ 3346.000383][ T5123] total_pgfault 593134
[ 3346.004517][ T5123] total_pgmajfault 45028
[ 3346.009421][ T5123] total_inactive_anon 0
[ 3346.013630][ T5123] total_active_anon 12288
[ 3346.018745][ T5123] total_inactive_file 0
[ 3346.022948][ T5123] total_active_file 0
[ 3346.027542][ T5123] total_unevictable 0
[ 3346.031562][ T5123] anon_cost 0
[ 3346.034870][ T5123] file_cost 0
[ 3346.038990][ T5123] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=25708,uid=0
[ 3346.055043][ T5123] Memory cgroup out of memory: Killed process 25708 (syz-executor.2) total-vm:54344kB, anon-rss:316kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:64kB oom_score_adj:1000
[ 3346.080676][ T5119] syz-executor.0 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[ 3346.096709][ T5119] CPU: 0 PID: 5119 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00250-g137e0ec05aeb #0
[ 3346.107116][ T5119] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3346.117220][ T5119] Call Trace:
[ 3346.120513][ T5119]  <TASK>
[ 3346.123445][ T5119]  dump_stack_lvl+0x1e7/0x2e0
[ 3346.128173][ T5119]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3346.133415][ T5119]  ? __pfx__printk+0x10/0x10
[ 3346.138021][ T5119]  ? ___ratelimit+0x4c4/0x670
[ 3346.142710][ T5119]  ? __pfx____ratelimit+0x10/0x10
[ 3346.147756][ T5119]  dump_header+0xda/0x6a0
[ 3346.152099][ T5119]  oom_kill_process+0x3a7/0x930
[ 3346.156965][ T5119]  out_of_memory+0xf67/0x1320
[ 3346.161681][ T5119]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3346.167323][ T5119]  ? __pfx___mutex_lock+0x10/0x10
[ 3346.172386][ T5119]  ? __pfx_out_of_memory+0x10/0x10
[ 3346.177536][ T5119]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3346.183140][ T5119]  ? __pfx_lock_release+0x10/0x10
[ 3346.188194][ T5119]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3346.194280][ T5119]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3346.199490][ T5119]  ? mem_cgroup_iter+0x3e9/0x560
[ 3346.204439][ T5119]  try_charge_memcg+0xda2/0x18a0
[ 3346.209398][ T5119]  ? mark_lock+0x9a/0x350
[ 3346.213770][ T5119]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3346.219182][ T5119]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 3346.225343][ T5119]  charge_memcg+0xa2/0x160
[ 3346.229785][ T5119]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 3346.235878][ T5119]  __read_swap_cache_async+0x480/0x8b0
[ 3346.241364][ T5119]  ? mark_lock+0x9a/0x350
[ 3346.245719][ T5119]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 3346.251717][ T5119]  ? blk_start_plug+0x6f/0x1b0
[ 3346.256505][ T5119]  swap_cluster_readahead+0x398/0x810
[ 3346.261896][ T5119]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 3346.267800][ T5119]  ? __pfx_lock_release+0x10/0x10
[ 3346.272835][ T5119]  ? xas_descend+0x37e/0x470
[ 3346.277440][ T5119]  swapin_readahead+0x1ea/0x1070
[ 3346.282389][ T5119]  ? filemap_get_entry+0x127/0x4e0
[ 3346.287543][ T5119]  ? __pfx_swapin_readahead+0x10/0x10
[ 3346.292983][ T5119]  ? __filemap_get_folio+0x935/0xbc0
[ 3346.298287][ T5119]  ? swap_cache_get_folio+0x9f/0x570
[ 3346.303605][ T5119]  do_swap_page+0x791/0x3f40
[ 3346.308204][ T5119]  ? rcu_is_watching+0x15/0xb0
[ 3346.312985][ T5119]  ? do_swap_page+0x154/0x3f40
[ 3346.317751][ T5119]  ? __pfx_do_swap_page+0x10/0x10
[ 3346.322782][ T5119]  ? pte_offset_map_nolock+0x137/0x1f0
[ 3346.328267][ T5119]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 3346.334095][ T5119]  __handle_mm_fault+0x15e8/0x72d0
[ 3346.339252][ T5119]  ? reacquire_held_locks+0x3eb/0x690
[ 3346.344629][ T5119]  ? __pfx___handle_mm_fault+0x10/0x10
[ 3346.350109][ T5119]  ? __pfx_reacquire_held_locks+0x10/0x10
[ 3346.355842][ T5119]  ? mtree_range_walk+0x6fd/0x8e0
[ 3346.360894][ T5119]  ? lock_vma_under_rcu+0x18a/0x730
[ 3346.366096][ T5119]  ? __pfx_lock_release+0x10/0x10
[ 3346.371126][ T5119]  ? lock_vma_under_rcu+0x2f9/0x730
[ 3346.376383][ T5119]  ? lock_vma_under_rcu+0x18a/0x730
[ 3346.381635][ T5119]  ? __pfx_lock_vma_under_rcu+0x10/0x10
[ 3346.387199][ T5119]  handle_mm_fault+0x3c1/0x8a0
[ 3346.391984][ T5119]  exc_page_fault+0x456/0x870
[ 3346.396693][ T5119]  asm_exc_page_fault+0x26/0x30
[ 3346.401588][ T5119] RIP: 0023:0xf72e8579
[ 3346.405666][ T5119] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[ 3346.425287][ T5119] RSP: 002b:00000000f7589c80 EFLAGS: 00010206
[ 3346.431365][ T5119] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00000000f72e8579
[ 3346.439343][ T5119] RDX: 00000000f7589cb4 RSI: 00000000f7589cac RDI: 00000000f7589cb4
[ 3346.447323][ T5119] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 3346.455296][ T5119] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 3346.463277][ T5119] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 3346.471263][ T5119]  </TASK>
[ 3346.491375][ T5119] memory: usage 307200kB, limit 307200kB, failcnt 155120
[ 3346.499152][ T5119] memory+swap: usage 307936kB, limit 9007199254740988kB, failcnt 0
[ 3346.507588][ T5119] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[ 3346.514930][ T5119] Memory cgroup stats for /syz0:
[ 3346.515057][ T5119] cache 0
[ 3346.523539][ T5119] rss 4096
[ 3346.527391][ T5119] rss_huge 0
[ 3346.530687][ T5119] shmem 0
[ 3346.533654][ T5119] mapped_file 0
[ 3346.537906][ T5119] dirty 0
[ 3346.540879][ T5119] writeback 0
[ 3346.544205][ T5119] workingset_refault_anon 57026
[ 3346.549915][ T5119] workingset_refault_file 0
[ 3346.554456][ T5119] swap 749568
[ 3346.558410][ T5119] swapcached 4096
[ 3346.562127][ T5119] pgpgin 251877
[ 3346.565614][ T5119] pgpgout 251876
[ 3346.569934][ T5119] pgfault 582193
[ 3346.573541][ T5119] pgmajfault 55436
[ 3346.582205][ T5119] inactive_anon 0
[ 3346.585884][ T5119] active_anon 4096
[ 3346.590406][ T5119] inactive_file 0
[ 3346.594091][ T5119] active_file 0
[ 3346.598201][ T5119] unevictable 0
[ 3346.601694][ T5119] hierarchical_memory_limit 314572800
[ 3346.607696][ T5119] hierarchical_memsw_limit 9223372036854771712
[ 3346.613890][ T5119] total_cache 0
[ 3346.618002][ T5119] total_rss 4096
[ 3346.621592][ T5119] total_rss_huge 0
[ 3346.625343][ T5119] total_shmem 0
[ 3346.629595][ T5119] total_mapped_file 0
[ 3346.633631][ T5119] total_dirty 0
[ 3346.637654][ T5119] total_writeback 0
[ 3346.646445][ T5119] total_workingset_refault_anon 57026
[ 3346.651866][ T5119] total_workingset_refault_file 0
[ 3346.657432][ T5119] total_swap 749568
[ 3346.661283][ T5119] total_swapcached 4096
[ 3346.665461][ T5119] total_pgpgin 251877
[ 3346.670255][ T5119] total_pgpgout 251876
[ 3346.674359][ T5119] total_pgfault 582193
[ 3346.679059][ T5119] total_pgmajfault 55436
[ 3346.683334][ T5119] total_inactive_anon 0
[ 3346.688863][ T5119] total_active_anon 4096
[ 3346.693162][ T5119] total_inactive_file 0
[ 3346.698084][ T5119] total_active_file 0
[ 3346.702103][ T5119] total_unevictable 0
[ 3346.706132][ T5119] anon_cost 0
[ 3346.710143][ T5119] file_cost 0
06:23:43 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x888, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x858, 0x2, [@TCA_BASIC_POLICE={0x854, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6000000]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}, @TCA_POLICE_PEAKRATE64={0xc}]}]}}]}, 0x888}}, 0x0)

[ 3346.713464][ T5119] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=25709,uid=0
[ 3346.729775][ T5119] Memory cgroup out of memory: Killed process 25709 (syz-executor.0) total-vm:54344kB, anon-rss:308kB, file-rss:8704kB, shmem-rss:0kB, UID:0 pgtables:64kB oom_score_adj:1000
06:23:43 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x87c, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x84c, 0x2, [@TCA_BASIC_POLICE={0x848, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6000000]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}]}]}}]}, 0x87c}}, 0x0)

[ 3347.091886][T25711] syz-executor.0 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[ 3347.103573][T25711] CPU: 1 PID: 25711 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00250-g137e0ec05aeb #0
[ 3347.114130][T25711] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3347.124226][T25711] Call Trace:
[ 3347.127554][T25711]  <TASK>
[ 3347.130547][T25711]  dump_stack_lvl+0x1e7/0x2e0
[ 3347.135300][T25711]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3347.140552][T25711]  ? __pfx__printk+0x10/0x10
[ 3347.145197][T25711]  ? ___ratelimit+0x4c4/0x670
[ 3347.149933][T25711]  ? __pfx____ratelimit+0x10/0x10
[ 3347.155023][T25711]  dump_header+0xda/0x6a0
[ 3347.159419][T25711]  oom_kill_process+0x3a7/0x930
[ 3347.164335][T25711]  out_of_memory+0xf67/0x1320
[ 3347.169080][T25711]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3347.174766][T25711]  ? __pfx___mutex_lock+0x10/0x10
[ 3347.179845][T25711]  ? __pfx_out_of_memory+0x10/0x10
[ 3347.185020][T25711]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3347.190620][T25711]  ? __pfx_lock_release+0x10/0x10
[ 3347.195700][T25711]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3347.201832][T25711]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3347.207094][T25711]  ? mem_cgroup_iter+0x3e9/0x560
[ 3347.212109][T25711]  try_charge_memcg+0xda2/0x18a0
[ 3347.217097][T25711]  ? mark_lock+0x9a/0x350
[ 3347.221457][T25711]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3347.226880][T25711]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 3347.233069][T25711]  charge_memcg+0xa2/0x160
[ 3347.237507][T25711]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 3347.243591][T25711]  __read_swap_cache_async+0x480/0x8b0
[ 3347.249100][T25711]  ? mark_lock+0x9a/0x350
[ 3347.253459][T25711]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 3347.259539][T25711]  swap_cluster_readahead+0x67c/0x810
[ 3347.264965][T25711]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 3347.270880][T25711]  ? __pfx_lock_release+0x10/0x10
[ 3347.275970][T25711]  ? xas_descend+0x37e/0x470
[ 3347.280587][T25711]  swapin_readahead+0x1ea/0x1070
[ 3347.285542][T25711]  ? filemap_get_entry+0x127/0x4e0
[ 3347.290706][T25711]  ? __pfx_swapin_readahead+0x10/0x10
[ 3347.296118][T25711]  ? __filemap_get_folio+0x935/0xbc0
[ 3347.301435][T25711]  ? swap_cache_get_folio+0x9f/0x570
[ 3347.306750][T25711]  do_swap_page+0x791/0x3f40
[ 3347.311369][T25711]  ? __lock_acquire+0x1345/0x1fd0
[ 3347.316427][T25711]  ? rcu_is_watching+0x15/0xb0
[ 3347.321306][T25711]  ? do_swap_page+0x154/0x3f40
[ 3347.326079][T25711]  ? __pfx_do_swap_page+0x10/0x10
[ 3347.331128][T25711]  ? pte_offset_map_nolock+0x137/0x1f0
[ 3347.336627][T25711]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 3347.342453][T25711]  ? __pfx_validate_chain+0x10/0x10
[ 3347.347694][T25711]  __handle_mm_fault+0x15e8/0x72d0
[ 3347.352861][T25711]  ? __pfx___handle_mm_fault+0x10/0x10
[ 3347.358356][T25711]  ? mt_find+0x226/0x850
[ 3347.362628][T25711]  ? __pfx_lock_release+0x10/0x10
[ 3347.367684][T25711]  ? mt_find+0x62d/0x850
[ 3347.371985][T25711]  ? mt_find+0x226/0x850
[ 3347.376259][T25711]  ? find_vma+0x142/0x1c0
[ 3347.380615][T25711]  ? __pfx_find_vma+0x10/0x10
[ 3347.385317][T25711]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3347.391325][T25711]  handle_mm_fault+0x3c1/0x8a0
[ 3347.396120][T25711]  exc_page_fault+0x2ad/0x870
[ 3347.400842][T25711]  asm_exc_page_fault+0x26/0x30
[ 3347.405728][T25711] RIP: 0010:__get_user_8+0x11/0x20
[ 3347.410870][T25711] Code: ca c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 89 c2 48 c1 fa 3f 48 09 d0 0f 01 cb <48> 8b 10 31 c0 0f 01 ca c3 cc cc cc cc 66 90 90 90 90 90 90 90 90
[ 3347.430497][T25711] RSP: 0000:ffffc9000cac7d78 EFLAGS: 00050202
[ 3347.436601][T25711] RAX: 000000005810e8a8 RBX: ffff888011199538 RCX: ffffc9000cac7c03
[ 3347.444589][T25711] RDX: 0000000000000000 RSI: ffffffff8baac7e0 RDI: ffffffff8bfe6da0
[ 3347.452622][T25711] RBP: ffffc9000cac7ec0 R08: ffffffff8f856cef R09: 1ffffffff1f0ad9d
[ 3347.460618][T25711] R10: dffffc0000000000 R11: fffffbfff1f0ad9e R12: ffffc9000cac7d80
[ 3347.468620][T25711] R13: ffffc9000cac7fd8 R14: dffffc0000000000 R15: ffff888011198000
[ 3347.476624][T25711]  __rseq_handle_notify_resume+0x158/0x1490
[ 3347.482562][T25711]  ? __pfx___rseq_handle_notify_resume+0x10/0x10
[ 3347.488931][T25711]  ? irqentry_exit_to_user_mode+0x52/0x270
[ 3347.494767][T25711]  irqentry_exit_to_user_mode+0xbb/0x270
[ 3347.500444][T25711]  exc_page_fault+0x587/0x870
[ 3347.505168][T25711]  asm_exc_page_fault+0x26/0x30
[ 3347.510047][T25711] RIP: 0023:0xf734e706
[ 3347.514157][T25711] Code: 0f 82 a6 00 00 00 8b 4c 24 08 8b 44 f1 0c 85 c0 74 de 8b 7c 24 18 8b 54 f1 08 39 17 0f 82 73 01 00 00 8b 5c 24 0c 8b 7c 24 14 <8b> 88 60 02 00 00 39 d3 0f 43 d3 8b 98 64 02 00 00 89 54 24 0c 8d
[ 3347.533795][T25711] RSP: 002b:00000000f7589970 EFLAGS: 00010246
[ 3347.539877][T25711] RAX: 00000000f74458a0 RBX: 0000000000000000 RCX: 00000000f7f8f820
[ 3347.547856][T25711] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 000000005810ef38
[ 3347.556019][T25711] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[ 3347.564014][T25711] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 3347.572008][T25711] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 3347.580004][T25711]  </TASK>
[ 3347.585924][T25711] memory: usage 307200kB, limit 307200kB, failcnt 155460
[ 3347.593466][T25711] memory+swap: usage 307888kB, limit 9007199254740988kB, failcnt 0
[ 3347.601770][T25711] kmem: usage 307168kB, limit 9007199254740988kB, failcnt 0
[ 3347.609173][T25711] Memory cgroup stats for /syz0:
[ 3347.609327][T25711] cache 0
[ 3347.617333][T25711] rss 12288
[ 3347.620472][T25711] rss_huge 0
[ 3347.623765][T25711] shmem 0
[ 3347.626848][T25711] mapped_file 0
[ 3347.630328][T25711] dirty 0
[ 3347.633283][T25711] writeback 0
[ 3347.636776][T25711] workingset_refault_anon 57143
[ 3347.641658][T25711] workingset_refault_file 0
[ 3347.646182][T25711] swap 704512
[ 3347.649590][T25711] swapcached 16384
[ 3347.653593][T25711] pgpgin 252004
[ 3347.657224][T25711] pgpgout 251999
[ 3347.660860][T25711] pgfault 582364
[ 3347.664426][T25711] pgmajfault 55536
[ 3347.668683][T25711] inactive_anon 8192
[ 3347.672608][T25711] active_anon 12288
[ 3347.676630][T25711] inactive_file 0
[ 3347.680444][T25711] active_file 0
[ 3347.684402][T25711] unevictable 0
[ 3347.689657][T25711] hierarchical_memory_limit 314572800
[ 3347.695214][T25711] hierarchical_memsw_limit 9223372036854771712
[ 3347.701700][T25711] total_cache 0
[ 3347.705594][T25711] total_rss 12288
[ 3347.709737][T25711] total_rss_huge 0
[ 3347.713858][T25711] total_shmem 0
[ 3347.717853][T25711] total_mapped_file 0
[ 3347.721989][T25711] total_dirty 0
[ 3347.725627][T25711] total_writeback 0
[ 3347.729679][T25711] total_workingset_refault_anon 57143
[ 3347.735517][T25711] total_workingset_refault_file 0
[ 3347.740845][T25711] total_swap 704512
[ 3347.744807][T25711] total_swapcached 16384
[ 3347.749516][T25711] total_pgpgin 252004
[ 3347.753662][T25711] total_pgpgout 251999
[ 3347.758749][T25711] total_pgfault 582364
[ 3347.762971][T25711] total_pgmajfault 55536
[ 3347.767934][T25711] total_inactive_anon 8192
[ 3347.772534][T25711] total_active_anon 12288
[ 3347.781189][T25711] total_inactive_file 0
[ 3347.785521][T25711] total_active_file 0
[ 3347.790267][T25711] total_unevictable 0
[ 3347.794412][T25711] anon_cost 0
[ 3347.799948][T25711] file_cost 0
[ 3347.803504][T25711] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=25711,uid=0
[ 3347.819950][T25711] Memory cgroup out of memory: Killed process 25711 (syz-executor.0) total-vm:54344kB, anon-rss:308kB, file-rss:8704kB, shmem-rss:0kB, UID:0 pgtables:64kB oom_score_adj:1000
06:23:44 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x87c, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x84c, 0x2, [@TCA_BASIC_POLICE={0x848, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7000000]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}]}]}}]}, 0x87c}}, 0x0)

[ 3347.838677][ T5123] syz-executor.2 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[ 3347.861110][ T5123] CPU: 0 PID: 5123 Comm: syz-executor.2 Not tainted 6.8.0-rc7-syzkaller-00250-g137e0ec05aeb #0
[ 3347.871514][ T5123] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3347.881615][ T5123] Call Trace:
[ 3347.884927][ T5123]  <TASK>
[ 3347.887894][ T5123]  dump_stack_lvl+0x1e7/0x2e0
[ 3347.892633][ T5123]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3347.897889][ T5123]  ? __pfx__printk+0x10/0x10
[ 3347.902529][ T5123]  ? ___ratelimit+0x4c4/0x670
[ 3347.907269][ T5123]  ? __pfx____ratelimit+0x10/0x10
[ 3347.912350][ T5123]  dump_header+0xda/0x6a0
[ 3347.916732][ T5123]  oom_kill_process+0x3a7/0x930
[ 3347.921630][ T5123]  out_of_memory+0xf67/0x1320
[ 3347.926355][ T5123]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3347.932031][ T5123]  ? __pfx___mutex_lock+0x10/0x10
[ 3347.937108][ T5123]  ? __pfx_out_of_memory+0x10/0x10
[ 3347.942376][ T5123]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3347.947978][ T5123]  ? __pfx_lock_release+0x10/0x10
[ 3347.953061][ T5123]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3347.959194][ T5123]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3347.964446][ T5123]  ? mem_cgroup_iter+0x3e9/0x560
[ 3347.969436][ T5123]  try_charge_memcg+0xda2/0x18a0
[ 3347.974396][ T5123]  ? mark_lock+0x9a/0x350
[ 3347.978764][ T5123]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3347.984171][ T5123]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 3347.990345][ T5123]  charge_memcg+0xa2/0x160
[ 3347.994784][ T5123]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 3348.001041][ T5123]  __read_swap_cache_async+0x480/0x8b0
[ 3348.006607][ T5123]  ? mark_lock+0x9a/0x350
[ 3348.010957][ T5123]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 3348.016962][ T5123]  ? blk_start_plug+0x6f/0x1b0
[ 3348.021749][ T5123]  swap_cluster_readahead+0x398/0x810
[ 3348.027152][ T5123]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 3348.033067][ T5123]  ? __pfx_lock_release+0x10/0x10
[ 3348.038117][ T5123]  ? xas_descend+0x37e/0x470
[ 3348.042733][ T5123]  swapin_readahead+0x1ea/0x1070
[ 3348.047691][ T5123]  ? filemap_get_entry+0x127/0x4e0
[ 3348.052835][ T5123]  ? __pfx_swapin_readahead+0x10/0x10
[ 3348.058234][ T5123]  ? __filemap_get_folio+0x935/0xbc0
[ 3348.063545][ T5123]  ? swap_cache_get_folio+0x9f/0x570
[ 3348.068852][ T5123]  do_swap_page+0x791/0x3f40
[ 3348.073458][ T5123]  ? rcu_is_watching+0x15/0xb0
[ 3348.078250][ T5123]  ? do_swap_page+0x154/0x3f40
[ 3348.083025][ T5123]  ? __pfx_do_swap_page+0x10/0x10
[ 3348.088066][ T5123]  ? pte_offset_map_nolock+0x137/0x1f0
[ 3348.093542][ T5123]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 3348.099372][ T5123]  __handle_mm_fault+0x15e8/0x72d0
[ 3348.104528][ T5123]  ? reacquire_held_locks+0x3eb/0x690
[ 3348.109913][ T5123]  ? __pfx___handle_mm_fault+0x10/0x10
[ 3348.115399][ T5123]  ? __pfx_reacquire_held_locks+0x10/0x10
[ 3348.121152][ T5123]  ? mtree_range_walk+0x6fd/0x8e0
[ 3348.126193][ T5123]  ? lock_vma_under_rcu+0x18a/0x730
[ 3348.131407][ T5123]  ? __pfx_lock_release+0x10/0x10
[ 3348.136465][ T5123]  ? lock_vma_under_rcu+0x2f9/0x730
[ 3348.141696][ T5123]  ? lock_vma_under_rcu+0x18a/0x730
[ 3348.146912][ T5123]  ? __pfx_lock_vma_under_rcu+0x10/0x10
[ 3348.152508][ T5123]  handle_mm_fault+0x3c1/0x8a0
[ 3348.157315][ T5123]  exc_page_fault+0x456/0x870
[ 3348.162033][ T5123]  asm_exc_page_fault+0x26/0x30
[ 3348.166900][ T5123] RIP: 0023:0xf730c531
[ 3348.170991][ T5123] Code: d2 29 c1 19 d3 89 4c 24 18 69 44 24 18 cc cc cc cc 89 da 69 db cd cc cc cc 89 54 24 1c 01 c3 b8 cd cc cc cc f7 64 24 18 89 c5 <8b> 87 ac 05 b5 00 8d 34 13 89 fb 89 74 24 38 89 44 24 48 8b 87 b0
[ 3348.190615][ T5123] RSP: 002b:00000000f758dd68 EFLAGS: 00010a07
[ 3348.196697][ T5123] RAX: 0000000000000bb8 RBX: 00000000ffffd120 RCX: 0000000000003a98
[ 3348.204674][ T5123] RDX: 0000000000002ee0 RSI: 0000000000003a98 RDI: 00000000f7442ff4
[ 3348.212655][ T5123] RBP: 0000000000000bb8 R08: 0000000000000000 R09: 0000000000000000
[ 3348.220634][ T5123] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 3348.228611][ T5123] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 3348.236611][ T5123]  </TASK>
[ 3348.249896][ T5123] memory: usage 307188kB, limit 307200kB, failcnt 128317
[ 3348.257271][ T5123] memory+swap: usage 307656kB, limit 9007199254740988kB, failcnt 0
[ 3348.265210][ T5123] kmem: usage 307168kB, limit 9007199254740988kB, failcnt 0
[ 3348.272656][ T5123] Memory cgroup stats for /syz2:
[ 3348.272804][ T5123] cache 0
[ 3348.280866][ T5123] rss 0
[ 3348.283653][ T5123] rss_huge 0
[ 3348.287015][ T5123] shmem 0
[ 3348.290004][ T5123] mapped_file 0
[ 3348.293493][ T5123] dirty 0
[ 3348.296644][ T5123] writeback 0
[ 3348.300238][ T5123] workingset_refault_anon 45843
[ 3348.305204][ T5123] workingset_refault_file 0
[ 3348.309829][ T5123] swap 479232
[ 3348.313140][ T5123] swapcached 12288
[ 3348.317096][ T5123] pgpgin 250443
[ 3348.320602][ T5123] pgpgout 250440
[ 3348.324174][ T5123] pgfault 593330
[ 3348.328851][ T5123] pgmajfault 45139
[ 3348.332650][ T5123] inactive_anon 0
[ 3348.337079][ T5123] active_anon 12288
[ 3348.340924][ T5123] inactive_file 0
[ 3348.344598][ T5123] active_file 0
[ 3348.349742][ T5123] unevictable 0
[ 3348.353248][ T5123] hierarchical_memory_limit 314572800
[ 3348.359860][ T5123] hierarchical_memsw_limit 9223372036854771712
[ 3348.366058][ T5123] total_cache 0
[ 3348.370114][ T5123] total_rss 0
[ 3348.373428][ T5123] total_rss_huge 0
[ 3348.377805][ T5123] total_shmem 0
[ 3348.381300][ T5123] total_mapped_file 0
[ 3348.385316][ T5123] total_dirty 0
[ 3348.389616][ T5123] total_writeback 0
[ 3348.393463][ T5123] total_workingset_refault_anon 45843
[ 3348.399554][ T5123] total_workingset_refault_file 0
[ 3348.404631][ T5123] total_swap 479232
[ 3348.409078][ T5123] total_swapcached 12288
[ 3348.413369][ T5123] total_pgpgin 250443
[ 3348.418020][ T5123] total_pgpgout 250440
[ 3348.422116][ T5123] total_pgfault 593330
[ 3348.426204][ T5123] total_pgmajfault 45139
[ 3348.431274][ T5123] total_inactive_anon 0
[ 3348.435485][ T5123] total_active_anon 12288
[ 3348.440442][ T5123] total_inactive_file 0
[ 3348.444623][ T5123] total_active_file 0
[ 3348.449212][ T5123] total_unevictable 0
[ 3348.453225][ T5123] anon_cost 0
[ 3348.458022][ T5123] file_cost 0
[ 3348.461344][ T5123] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=25710,uid=0
[ 3348.478004][ T5123] Memory cgroup out of memory: Killed process 25710 (syz-executor.2) total-vm:54344kB, anon-rss:308kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:64kB oom_score_adj:1000
[ 3348.519752][T25712] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=0
[ 3348.546625][T25712] CPU: 0 PID: 25712 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00250-g137e0ec05aeb #0
[ 3348.557116][T25712] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3348.567212][T25712] Call Trace:
[ 3348.570531][T25712]  <TASK>
[ 3348.573492][T25712]  dump_stack_lvl+0x1e7/0x2e0
[ 3348.578234][T25712]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3348.583483][T25712]  ? __pfx__printk+0x10/0x10
[ 3348.588120][T25712]  ? ___ratelimit+0x4c4/0x670
[ 3348.592848][T25712]  ? __pfx____ratelimit+0x10/0x10
[ 3348.597937][T25712]  dump_header+0xda/0x6a0
[ 3348.602317][T25712]  oom_kill_process+0x3a7/0x930
[ 3348.607219][T25712]  out_of_memory+0xf67/0x1320
[ 3348.611946][T25712]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3348.617628][T25712]  ? __pfx___mutex_lock+0x10/0x10
[ 3348.622695][T25712]  ? __pfx_out_of_memory+0x10/0x10
[ 3348.627955][T25712]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3348.633571][T25712]  ? __pfx_lock_release+0x10/0x10
[ 3348.638661][T25712]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3348.644765][T25712]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3348.649989][T25712]  ? mem_cgroup_iter+0x3e9/0x560
[ 3348.655030][T25712]  try_charge_memcg+0xda2/0x18a0
[ 3348.660019][T25712]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3348.665509][T25712]  ? percpu_ref_tryget+0x14/0x180
[ 3348.670585][T25712]  charge_memcg+0xa2/0x160
[ 3348.675143][T25712]  __mem_cgroup_charge+0x27/0x80
[ 3348.680112][T25712]  folio_prealloc+0x52/0x170
[ 3348.684751][T25712]  do_wp_page+0x1222/0x4c90
[ 3348.689290][T25712]  ? page_ext_put+0x9c/0xc0
[ 3348.693826][T25712]  ? __pfx_do_wp_page+0x10/0x10
[ 3348.698703][T25712]  ? page_ext_get+0x20/0x2a0
[ 3348.703324][T25712]  ? page_ext_get+0x1d6/0x2a0
[ 3348.708022][T25712]  ? __page_table_check_ptes_set+0x220/0x280
[ 3348.714015][T25712]  ? folio_add_anon_rmap_ptes+0x10d3/0x1750
[ 3348.719944][T25712]  ? folio_unlock+0x126/0x2f0
[ 3348.724657][T25712]  do_swap_page+0x2099/0x3f40
[ 3348.729360][T25712]  ? do_swap_page+0x154/0x3f40
[ 3348.734136][T25712]  ? __pfx_do_swap_page+0x10/0x10
[ 3348.739182][T25712]  ? pte_offset_map_nolock+0x137/0x1f0
[ 3348.744687][T25712]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 3348.750510][T25712]  ? __pfx_validate_chain+0x10/0x10
[ 3348.755721][T25712]  __handle_mm_fault+0x15e8/0x72d0
[ 3348.760899][T25712]  ? __pfx___handle_mm_fault+0x10/0x10
[ 3348.766432][T25712]  ? mt_find+0x226/0x850
[ 3348.770733][T25712]  ? __pfx_lock_release+0x10/0x10
[ 3348.775788][T25712]  ? mt_find+0x62d/0x850
[ 3348.780064][T25712]  ? mt_find+0x226/0x850
[ 3348.784407][T25712]  ? find_vma+0x142/0x1c0
[ 3348.788770][T25712]  ? __pfx_find_vma+0x10/0x10
[ 3348.793483][T25712]  handle_mm_fault+0x3c1/0x8a0
[ 3348.798306][T25712]  exc_page_fault+0x2ad/0x870
[ 3348.803030][T25712]  asm_exc_page_fault+0x26/0x30
[ 3348.807993][T25712] RIP: 0010:__put_user_4+0x11/0x20
[ 3348.813123][T25712] Code: 1f 84 00 00 00 00 00 66 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 89 cb 48 c1 fb 3f 48 09 d9 0f 01 cb <89> 01 31 c9 0f 01 ca c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90
[ 3348.832833][T25712] RSP: 0018:ffffc9000d23ff00 EFLAGS: 00050202
[ 3348.838935][T25712] RAX: 00000000000059c9 RBX: 0000000000000000 RCX: 000000005810e468
[ 3348.846950][T25712] RDX: 0000000000000000 RSI: ffffffff8baac7e0 RDI: ffffffff8bfe6da0
[ 3348.854951][T25712] RBP: ffff8880250d8670 R08: ffffffff8f856cef R09: 1ffffffff1f0ad9d
[ 3348.862950][T25712] R10: dffffc0000000000 R11: fffffbfff1f0ad9e R12: 0000000000000000
[ 3348.870935][T25712] R13: 0000000000000000 R14: 00000000000059c9 R15: dffffc0000000000
[ 3348.878967][T25712]  schedule_tail+0x95/0xb0
[ 3348.883448][T25712]  ret_from_fork+0x24/0x80
[ 3348.887906][T25712]  ret_from_fork_asm+0x1b/0x30
[ 3348.892699][T25712]  </TASK>
[ 3348.907933][T25712] memory: usage 307200kB, limit 307200kB, failcnt 155534
[ 3348.925946][T25712] memory+swap: usage 307884kB, limit 9007199254740988kB, failcnt 0
[ 3348.935003][T25712] kmem: usage 307140kB, limit 9007199254740988kB, failcnt 0
[ 3348.964382][T25712] Memory cgroup stats for /syz0:
[ 3348.964551][T25712] cache 0
[ 3348.972943][T25712] rss 20480
[ 3348.976092][T25712] rss_huge 0
[ 3348.981330][T25712] shmem 0
[ 3348.984531][T25712] mapped_file 0
[ 3348.988598][T25712] dirty 0
[ 3348.991568][T25712] writeback 0
[ 3348.994867][T25712] workingset_refault_anon 57160
[ 3349.000534][T25712] workingset_refault_file 0
[ 3349.005077][T25712] swap 700416
[ 3349.010441][T25712] swapcached 20480
[ 3349.014204][T25712] pgpgin 252027
[ 3349.018512][T25712] pgpgout 252017
[ 3349.022109][T25712] pgfault 582391
[ 3349.025677][T25712] pgmajfault 55553
[ 3349.030204][T25712] inactive_anon 4096
[ 3349.040444][T25712] active_anon 36864
[ 3349.044309][T25712] inactive_file 0
[ 3349.049692][T25712] active_file 0
[ 3349.053217][T25712] unevictable 0
[ 3349.060514][T25712] hierarchical_memory_limit 314572800
[ 3349.066022][T25712] hierarchical_memsw_limit 9223372036854771712
[ 3349.074001][T25712] total_cache 0
[ 3349.080781][T25712] total_rss 20480
[ 3349.084464][T25712] total_rss_huge 0
[ 3349.090306][T25712] total_shmem 0
[ 3349.093813][T25712] total_mapped_file 0
[ 3349.101816][T25712] total_dirty 0
[ 3349.105396][T25712] total_writeback 0
[ 3349.110841][T25712] total_workingset_refault_anon 57160
[ 3349.121230][T25712] total_workingset_refault_file 0
[ 3349.128288][T25712] total_swap 700416
[ 3349.132204][T25712] total_swapcached 20480
[ 3349.140311][T25712] total_pgpgin 252027
[ 3349.144331][T25712] total_pgpgout 252017
[ 3349.150520][T25712] total_pgfault 582391
[ 3349.154688][T25712] total_pgmajfault 55553
[ 3349.159663][T25712] total_inactive_anon 4096
[ 3349.164113][T25712] total_active_anon 36864
[ 3349.169115][T25712] total_inactive_file 0
[ 3349.173395][T25712] total_active_file 0
06:23:45 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x888, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x858, 0x2, [@TCA_BASIC_POLICE={0x854, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7000000]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}, @TCA_POLICE_PEAKRATE64={0xc}]}]}}]}, 0x888}}, 0x0)

[ 3349.180118][T25712] total_unevictable 0
[ 3349.184159][T25712] anon_cost 0
[ 3349.188146][T25712] file_cost 0
[ 3349.191768][T25712] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=6623,uid=0
[ 3349.207918][T25712] Memory cgroup out of memory: Killed process 6623 (syz-executor.0) total-vm:56392kB, anon-rss:324kB, file-rss:8448kB, shmem-rss:0kB, UID:0 pgtables:60kB oom_score_adj:1000
[ 3349.854554][T25714] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3349.883959][T25714] CPU: 1 PID: 25714 Comm: syz-executor.2 Not tainted 6.8.0-rc7-syzkaller-00250-g137e0ec05aeb #0
[ 3349.894451][T25714] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3349.904551][T25714] Call Trace:
[ 3349.907870][T25714]  <TASK>
[ 3349.910839][T25714]  dump_stack_lvl+0x1e7/0x2e0
[ 3349.915576][T25714]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3349.920844][T25714]  ? __pfx__printk+0x10/0x10
[ 3349.925485][T25714]  ? ___ratelimit+0x4c4/0x670
[ 3349.930237][T25714]  ? __pfx____ratelimit+0x10/0x10
[ 3349.935327][T25714]  dump_header+0xda/0x6a0
[ 3349.939715][T25714]  oom_kill_process+0x3a7/0x930
[ 3349.944624][T25714]  out_of_memory+0xf67/0x1320
[ 3349.949361][T25714]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3349.955043][T25714]  ? __pfx___mutex_lock+0x10/0x10
[ 3349.960118][T25714]  ? __pfx_out_of_memory+0x10/0x10
[ 3349.965318][T25714]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3349.970917][T25714]  ? __pfx_lock_release+0x10/0x10
[ 3349.975996][T25714]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3349.982158][T25714]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3349.987409][T25714]  ? mem_cgroup_iter+0x3e9/0x560
[ 3349.992408][T25714]  try_charge_memcg+0xda2/0x18a0
[ 3349.997429][T25714]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3350.002875][T25714]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3350.008647][T25714]  ? __pfx_lock_release+0x10/0x10
[ 3350.013737][T25714]  ? memcg_account_kmem+0x1e7/0x210
[ 3350.019007][T25714]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3350.024872][T25714]  __memcg_kmem_charge_page+0xe1/0x250
[ 3350.030451][T25714]  memcg_charge_kernel_stack+0x196/0x550
[ 3350.036150][T25714]  dup_task_struct+0x40d/0x7d0
[ 3350.040975][T25714]  copy_process+0x5d5/0x3fc0
[ 3350.045634][T25714]  ? __might_fault+0xa9/0x120
[ 3350.050378][T25714]  ? __pfx_lock_release+0x10/0x10
[ 3350.055472][T25714]  ? __pfx_copy_process+0x10/0x10
[ 3350.060612][T25714]  ? __might_fault+0xc5/0x120
[ 3350.065350][T25714]  ? __asan_memset+0x23/0x50
[ 3350.070006][T25714]  kernel_clone+0x21d/0x8d0
[ 3350.074569][T25714]  ? __pfx_kernel_clone+0x10/0x10
[ 3350.079658][T25714]  ? __pfx___might_resched+0x10/0x10
[ 3350.084997][T25714]  __se_sys_clone3+0x2cb/0x350
[ 3350.089818][T25714]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3350.095191][T25714]  ? int80_emulation+0xea/0x210
[ 3350.100105][T25714]  int80_emulation+0x129/0x210
[ 3350.104938][T25714]  asm_int80_emulation+0x1a/0x20
[ 3350.109926][T25714] RIP: 0023:0xf7376060
[ 3350.114039][T25714] Code: 4c 24 04 85 c9 0f 84 df 0d fe ff 8b 54 24 0c 85 d2 0f 84 d3 0d fe ff 53 56 8b 74 24 18 89 cb 8b 4c 24 10 b8 b3 01 00 00 cd 80 <85> c0 74 09 5e 5b 0f 8c b4 0d fe ff c3 31 ed 83 e4 f0 83 ec 0c 56
[ 3350.133695][T25714] RSP: 002b:00000000f758d8e4 EFLAGS: 00000282 ORIG_RAX: 00000000000001b3
[ 3350.142168][T25714] RAX: ffffffffffffffda RBX: 00000000f758d950 RCX: 0000000000000058
[ 3350.150189][T25714] RDX: 00000000f7326eb0 RSI: 00000000f5ee6b40 RDI: 00000000ffffffd8
[ 3350.158209][T25714] RBP: 000000000000000b R08: 0000000000000000 R09: 0000000000000000
[ 3350.166229][T25714] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 3350.174252][T25714] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 3350.182340][T25714]  </TASK>
[ 3350.200547][T25714] memory: usage 307200kB, limit 307200kB, failcnt 129297
[ 3350.207823][T25714] memory+swap: usage 307664kB, limit 9007199254740988kB, failcnt 0
[ 3350.215973][T25714] kmem: usage 307184kB, limit 9007199254740988kB, failcnt 0
[ 3350.223584][T25714] Memory cgroup stats for /syz2:
[ 3350.223733][T25714] cache 0
[ 3350.231861][T25714] rss 0
[ 3350.234658][T25714] rss_huge 0
[ 3350.238054][T25714] shmem 0
[ 3350.241027][T25714] mapped_file 0
[ 3350.244510][T25714] dirty 0
[ 3350.251159][T25714] writeback 0
[ 3350.254506][T25714] workingset_refault_anon 46170
[ 3350.277102][T25714] workingset_refault_file 0
[ 3350.281682][T25714] swap 475136
[ 3350.285011][T25714] swapcached 16384
[ 3350.321916][T25714] pgpgin 250779
[ 3350.325457][T25714] pgpgout 250775
[ 3350.360112][T25714] pgfault 593699
[ 3350.363734][T25714] pgmajfault 45362
[ 3350.376612][T25714] inactive_anon 0
[ 3350.380307][T25714] active_anon 16384
[ 3350.384137][T25714] inactive_file 0
[ 3350.401647][T25714] active_file 0
[ 3350.405210][T25714] unevictable 0
[ 3350.409293][T25714] hierarchical_memory_limit 314572800
[ 3350.414698][T25714] hierarchical_memsw_limit 9223372036854771712
[ 3350.435858][T25714] total_cache 0
[ 3350.447900][T25714] total_rss 0
[ 3350.451250][T25714] total_rss_huge 0
[ 3350.454999][T25714] total_shmem 0
[ 3350.463725][T25714] total_mapped_file 0
[ 3350.468119][T25714] total_dirty 0
[ 3350.471604][T25714] total_writeback 0
[ 3350.475432][T25714] total_workingset_refault_anon 46170
[ 3350.486103][T25714] total_workingset_refault_file 0
[ 3350.491676][T25714] total_swap 475136
[ 3350.495548][T25714] total_swapcached 16384
[ 3350.504727][T25714] total_pgpgin 250779
[ 3350.509182][T25714] total_pgpgout 250775
[ 3350.513297][T25714] total_pgfault 593699
[ 3350.521820][T25714] total_pgmajfault 45362
[ 3350.526108][T25714] total_inactive_anon 0
[ 3350.532228][T25714] total_active_anon 16384
[ 3350.541855][T25714] total_inactive_file 0
[ 3350.546062][T25714] total_active_file 0
[ 3350.550610][T25714] total_unevictable 0
[ 3350.554624][T25714] anon_cost 0
[ 3350.558814][T25714] file_cost 0
[ 3350.562269][T25714] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=25714,uid=0
[ 3350.578486][T25714] Memory cgroup out of memory: Killed process 25714 (syz-executor.2) total-vm:54344kB, anon-rss:308kB, file-rss:8768kB, shmem-rss:0kB, UID:0 pgtables:64kB oom_score_adj:1000
[ 3350.596673][T25712] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3350.618413][T25712] CPU: 0 PID: 25712 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00250-g137e0ec05aeb #0
[ 3350.628893][T25712] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3350.639007][T25712] Call Trace:
[ 3350.642325][T25712]  <TASK>
[ 3350.645289][T25712]  dump_stack_lvl+0x1e7/0x2e0
[ 3350.650028][T25712]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3350.655278][T25712]  ? __pfx__printk+0x10/0x10
[ 3350.659915][T25712]  ? ___ratelimit+0x4c4/0x670
[ 3350.664639][T25712]  ? __pfx____ratelimit+0x10/0x10
[ 3350.669719][T25712]  dump_header+0xda/0x6a0
[ 3350.674110][T25712]  oom_kill_process+0x3a7/0x930
[ 3350.679014][T25712]  out_of_memory+0xf67/0x1320
[ 3350.683742][T25712]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3350.689429][T25712]  ? __pfx___mutex_lock+0x10/0x10
[ 3350.694504][T25712]  ? __pfx_out_of_memory+0x10/0x10
[ 3350.699674][T25712]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3350.705266][T25712]  ? __pfx_lock_release+0x10/0x10
[ 3350.710431][T25712]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3350.716573][T25712]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3350.721818][T25712]  ? mem_cgroup_iter+0x3e9/0x560
[ 3350.726830][T25712]  try_charge_memcg+0xda2/0x18a0
[ 3350.731859][T25712]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3350.737283][T25712]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3350.743050][T25712]  ? __pfx_lock_release+0x10/0x10
[ 3350.748124][T25712]  ? memcg_account_kmem+0x1e7/0x210
[ 3350.753387][T25712]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3350.759250][T25712]  __memcg_kmem_charge_page+0xe1/0x250
[ 3350.764769][T25712]  memcg_charge_kernel_stack+0x37e/0x550
[ 3350.770447][T25712]  dup_task_struct+0x40d/0x7d0
[ 3350.775252][T25712]  copy_process+0x5d5/0x3fc0
[ 3350.779920][T25712]  ? __might_fault+0xa9/0x120
[ 3350.784610][T25712]  ? __pfx_lock_release+0x10/0x10
[ 3350.789756][T25712]  ? __pfx_copy_process+0x10/0x10
[ 3350.794906][T25712]  ? __might_fault+0xc5/0x120
[ 3350.799621][T25712]  ? __asan_memset+0x23/0x50
[ 3350.804251][T25712]  kernel_clone+0x21d/0x8d0
[ 3350.808786][T25712]  ? __pfx_kernel_clone+0x10/0x10
[ 3350.813888][T25712]  ? __pfx___might_resched+0x10/0x10
[ 3350.819210][T25712]  __se_sys_clone3+0x2cb/0x350
[ 3350.824024][T25712]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3350.829386][T25712]  ? int80_emulation+0xea/0x210
[ 3350.834293][T25712]  int80_emulation+0x129/0x210
[ 3350.839101][T25712]  asm_int80_emulation+0x1a/0x20
[ 3350.844069][T25712] RIP: 0023:0xf7372060
[ 3350.848165][T25712] Code: 4c 24 04 85 c9 0f 84 df 0d fe ff 8b 54 24 0c 85 d2 0f 84 d3 0d fe ff 53 56 8b 74 24 18 89 cb 8b 4c 24 10 b8 b3 01 00 00 cd 80 <85> c0 74 09 5e 5b 0f 8c b4 0d fe ff c3 31 ed 83 e4 f0 83 ec 0c 56
[ 3350.867827][T25712] RSP: 002b:00000000f75898e4 EFLAGS: 00000282 ORIG_RAX: 00000000000001b3
[ 3350.876310][T25712] RAX: ffffffffffffffda RBX: 00000000f7589950 RCX: 0000000000000058
[ 3350.884322][T25712] RDX: 00000000f7322eb0 RSI: 00000000f5c7fb40 RDI: 00000000ffffffd8
[ 3350.892312][T25712] RBP: 000000000000006e R08: 0000000000000000 R09: 0000000000000000
[ 3350.900295][T25712] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 3350.908281][T25712] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 3350.916298][T25712]  </TASK>
[ 3350.920553][T25712] memory: usage 307188kB, limit 307200kB, failcnt 155898
[ 3350.927736][T25712] memory+swap: usage 307864kB, limit 9007199254740988kB, failcnt 0
[ 3350.935672][T25712] kmem: usage 307180kB, limit 9007199254740988kB, failcnt 0
[ 3350.943065][T25712] Memory cgroup stats for /syz0:
[ 3350.943218][T25712] cache 0
[ 3350.951234][T25712] rss 0
[ 3350.954030][T25712] rss_huge 0
[ 3350.957341][T25712] shmem 0
[ 3350.960305][T25712] mapped_file 0
[ 3350.963781][T25712] dirty 0
[ 3350.966898][T25712] writeback 0
[ 3350.970230][T25712] workingset_refault_anon 57338
[ 3350.975102][T25712] workingset_refault_file 0
[ 3350.980132][T25712] swap 700416
[ 3350.983466][T25712] swapcached 0
[ 3350.990920][T25712] pgpgin 252230
[ 3350.994433][T25712] pgpgout 252230
[ 3350.998855][T25712] pgfault 582704
[ 3351.002443][T25712] pgmajfault 55723
[ 3351.006193][T25712] inactive_anon 0
[ 3351.010634][T25712] active_anon 0
[ 3351.014134][T25712] inactive_file 0
[ 3351.018729][T25712] active_file 0
[ 3351.022246][T25712] unevictable 0
[ 3351.025728][T25712] hierarchical_memory_limit 314572800
[ 3351.032816][T25712] hierarchical_memsw_limit 9223372036854771712
[ 3351.039777][T25712] total_cache 0
[ 3351.043433][T25712] total_rss 0
[ 3351.047313][T25712] total_rss_huge 0
[ 3351.051075][T25712] total_shmem 0
[ 3351.054613][T25712] total_mapped_file 0
[ 3351.059402][T25712] total_dirty 0
[ 3351.062904][T25712] total_writeback 0
[ 3351.067373][T25712] total_workingset_refault_anon 57338
[ 3351.072784][T25712] total_workingset_refault_file 0
[ 3351.078480][T25712] total_swap 700416
[ 3351.082320][T25712] total_swapcached 0
[ 3351.086246][T25712] total_pgpgin 252230
[ 3351.091034][T25712] total_pgpgout 252230
[ 3351.095130][T25712] total_pgfault 582704
[ 3351.099867][T25712] total_pgmajfault 55723
[ 3351.104143][T25712] total_inactive_anon 0
[ 3351.108908][T25712] total_active_anon 0
[ 3351.112943][T25712] total_inactive_file 0
[ 3351.117716][T25712] total_active_file 0
[ 3351.121776][T25712] total_unevictable 0
[ 3351.125789][T25712] anon_cost 0
[ 3351.131545][T25712] file_cost 0
06:23:47 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x888, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x858, 0x2, [@TCA_BASIC_POLICE={0x854, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000000]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}, @TCA_POLICE_PEAKRATE64={0xc}]}]}}]}, 0x888}}, 0x0)

[ 3351.134910][T25712] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=25712,uid=0
[ 3351.152065][T25712] Memory cgroup out of memory: Killed process 25712 (syz-executor.0) total-vm:56788kB, anon-rss:308kB, file-rss:10880kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:1000
[ 3351.606254][ T5123] syz-executor.2 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[ 3351.634153][ T5123] CPU: 0 PID: 5123 Comm: syz-executor.2 Not tainted 6.8.0-rc7-syzkaller-00250-g137e0ec05aeb #0
[ 3351.644556][ T5123] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3351.654656][ T5123] Call Trace:
[ 3351.657980][ T5123]  <TASK>
[ 3351.660948][ T5123]  dump_stack_lvl+0x1e7/0x2e0
[ 3351.665677][ T5123]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3351.670905][ T5123]  ? __pfx__printk+0x10/0x10
[ 3351.675519][ T5123]  ? ___ratelimit+0x4c4/0x670
[ 3351.680231][ T5123]  ? __pfx____ratelimit+0x10/0x10
[ 3351.685300][ T5123]  dump_header+0xda/0x6a0
[ 3351.689670][ T5123]  oom_kill_process+0x3a7/0x930
[ 3351.694572][ T5123]  out_of_memory+0xf67/0x1320
[ 3351.699298][ T5123]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3351.704949][ T5123]  ? __pfx___mutex_lock+0x10/0x10
[ 3351.710001][ T5123]  ? __pfx_out_of_memory+0x10/0x10
[ 3351.715148][ T5123]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3351.720713][ T5123]  ? __pfx_lock_release+0x10/0x10
[ 3351.725764][ T5123]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3351.731851][ T5123]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3351.737086][ T5123]  ? mem_cgroup_iter+0x3e9/0x560
[ 3351.742074][ T5123]  try_charge_memcg+0xda2/0x18a0
[ 3351.747035][ T5123]  ? mark_lock+0x9a/0x350
[ 3351.751408][ T5123]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3351.756919][ T5123]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 3351.763129][ T5123]  charge_memcg+0xa2/0x160
[ 3351.767575][ T5123]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 3351.773670][ T5123]  __read_swap_cache_async+0x480/0x8b0
[ 3351.779141][ T5123]  ? mark_lock+0x9a/0x350
[ 3351.783483][ T5123]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 3351.789491][ T5123]  swap_cluster_readahead+0x67c/0x810
[ 3351.794882][ T5123]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 3351.800794][ T5123]  ? __pfx_lock_release+0x10/0x10
[ 3351.805833][ T5123]  ? xas_descend+0x37e/0x470
[ 3351.810471][ T5123]  swapin_readahead+0x1ea/0x1070
[ 3351.815443][ T5123]  ? filemap_get_entry+0x127/0x4e0
[ 3351.820591][ T5123]  ? __pfx_swapin_readahead+0x10/0x10
[ 3351.825984][ T5123]  ? __filemap_get_folio+0x935/0xbc0
[ 3351.831292][ T5123]  ? swap_cache_get_folio+0x9f/0x570
[ 3351.836628][ T5123]  do_swap_page+0x791/0x3f40
[ 3351.841273][ T5123]  ? rcu_is_watching+0x15/0xb0
[ 3351.846068][ T5123]  ? __lock_acquire+0x1345/0x1fd0
[ 3351.851117][ T5123]  ? do_swap_page+0x154/0x3f40
[ 3351.855898][ T5123]  ? __pfx_do_swap_page+0x10/0x10
[ 3351.860965][ T5123]  ? pte_offset_map_nolock+0x137/0x1f0
[ 3351.866542][ T5123]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 3351.872413][ T5123]  __handle_mm_fault+0x15e8/0x72d0
[ 3351.877583][ T5123]  ? reacquire_held_locks+0x3eb/0x690
[ 3351.882998][ T5123]  ? __pfx___handle_mm_fault+0x10/0x10
[ 3351.888515][ T5123]  ? __pfx_reacquire_held_locks+0x10/0x10
[ 3351.894460][ T5123]  ? mtree_range_walk+0x6fd/0x8e0
[ 3351.899541][ T5123]  ? lock_vma_under_rcu+0x18a/0x730
[ 3351.904753][ T5123]  ? __pfx_lock_release+0x10/0x10
[ 3351.909793][ T5123]  ? lock_vma_under_rcu+0x2f9/0x730
[ 3351.915022][ T5123]  ? lock_vma_under_rcu+0x18a/0x730
[ 3351.920247][ T5123]  ? __pfx_lock_vma_under_rcu+0x10/0x10
[ 3351.925820][ T5123]  handle_mm_fault+0x3c1/0x8a0
[ 3351.930611][ T5123]  exc_page_fault+0x456/0x870
[ 3351.935311][ T5123]  asm_exc_page_fault+0x26/0x30
[ 3351.940182][ T5123] RIP: 0023:0xf72ec579
[ 3351.944279][ T5123] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[ 3351.963901][ T5123] RSP: 002b:00000000f758dc80 EFLAGS: 00010206
[ 3351.969982][ T5123] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00000000f72ec579
[ 3351.977968][ T5123] RDX: 00000000f758dcb4 RSI: 00000000f758dcac RDI: 00000000f758dcb4
[ 3351.985960][ T5123] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 3351.993963][ T5123] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 3352.001947][ T5123] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 3352.009942][ T5123]  </TASK>
[ 3352.023104][ T5123] memory: usage 307200kB, limit 307200kB, failcnt 130121
[ 3352.030323][ T5123] memory+swap: usage 307664kB, limit 9007199254740988kB, failcnt 0
[ 3352.038393][ T5123] kmem: usage 307184kB, limit 9007199254740988kB, failcnt 0
[ 3352.045914][ T5123] Memory cgroup stats for /syz2:
[ 3352.046131][ T5123] cache 0
[ 3352.054211][ T5123] rss 4096
[ 3352.057724][ T5123] rss_huge 0
[ 3352.060965][ T5123] shmem 0
[ 3352.063952][ T5123] mapped_file 0
[ 3352.067602][ T5123] dirty 0
[ 3352.070574][ T5123] writeback 0
[ 3352.073888][ T5123] workingset_refault_anon 46480
[ 3352.082550][ T5123] workingset_refault_file 0
[ 3352.087194][ T5123] swap 475136
[ 3352.090521][ T5123] swapcached 16384
[ 3352.094272][ T5123] pgpgin 251100
[ 3352.102157][ T5123] pgpgout 251096
[ 3352.105756][ T5123] pgfault 594081
[ 3352.109454][ T5123] pgmajfault 45583
[ 3352.113207][ T5123] inactive_anon 0
[ 3352.121411][ T5123] active_anon 16384
[ 3352.125526][ T5123] inactive_file 0
[ 3352.129326][ T5123] active_file 0
[ 3352.132816][ T5123] unevictable 0
[ 3352.140647][ T5123] hierarchical_memory_limit 314572800
[ 3352.146084][ T5123] hierarchical_memsw_limit 9223372036854771712
[ 3352.152405][ T5123] total_cache 0
[ 3352.155917][ T5123] total_rss 4096
[ 3352.163802][ T5123] total_rss_huge 0
[ 3352.167694][ T5123] total_shmem 0
[ 3352.171183][ T5123] total_mapped_file 0
[ 3352.175186][ T5123] total_dirty 0
[ 3352.183564][ T5123] total_writeback 0
[ 3352.187594][ T5123] total_workingset_refault_anon 46480
[ 3352.193006][ T5123] total_workingset_refault_file 0
[ 3352.198359][ T5123] total_swap 475136
[ 3352.202223][ T5123] total_swapcached 16384
[ 3352.206676][ T5123] total_pgpgin 251100
[ 3352.210698][ T5123] total_pgpgout 251096
[ 3352.214793][ T5123] total_pgfault 594081
[ 3352.219159][ T5123] total_pgmajfault 45583
[ 3352.223438][ T5123] total_inactive_anon 0
[ 3352.228501][ T5123] total_active_anon 16384
[ 3352.232871][ T5123] total_inactive_file 0
[ 3352.237189][ T5123] total_active_file 0
[ 3352.241281][ T5123] total_unevictable 0
[ 3352.245303][ T5123] anon_cost 0
[ 3352.249833][ T5123] file_cost 0
[ 3352.253167][ T5123] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=25718,uid=0
[ 3352.268935][ T5123] Memory cgroup out of memory: Killed process 25718 (syz-executor.2) total-vm:54344kB, anon-rss:308kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:64kB oom_score_adj:1000
06:23:49 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x888, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x858, 0x2, [@TCA_BASIC_POLICE={0x854, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9000000]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}, @TCA_POLICE_PEAKRATE64={0xc}]}]}}]}, 0x888}}, 0x0)

[ 3353.008931][T25719] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3353.022989][T25719] CPU: 1 PID: 25719 Comm: syz-executor.2 Not tainted 6.8.0-rc7-syzkaller-00250-g137e0ec05aeb #0
[ 3353.033468][T25719] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3353.043578][T25719] Call Trace:
[ 3353.046893][T25719]  <TASK>
[ 3353.049847][T25719]  dump_stack_lvl+0x1e7/0x2e0
[ 3353.054541][T25719]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3353.059753][T25719]  ? __pfx__printk+0x10/0x10
[ 3353.064351][T25719]  ? ___ratelimit+0x4c4/0x670
[ 3353.069041][T25719]  ? __pfx____ratelimit+0x10/0x10
[ 3353.074077][T25719]  dump_header+0xda/0x6a0
[ 3353.078439][T25719]  oom_kill_process+0x3a7/0x930
[ 3353.083342][T25719]  out_of_memory+0xf67/0x1320
[ 3353.088034][T25719]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3353.093678][T25719]  ? __pfx___mutex_lock+0x10/0x10
[ 3353.098711][T25719]  ? __pfx_out_of_memory+0x10/0x10
[ 3353.103833][T25719]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3353.109399][T25719]  ? __pfx_lock_release+0x10/0x10
[ 3353.114455][T25719]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3353.120560][T25719]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3353.125765][T25719]  ? mem_cgroup_iter+0x3e9/0x560
[ 3353.130725][T25719]  try_charge_memcg+0xda2/0x18a0
[ 3353.135709][T25719]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3353.141097][T25719]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3353.146843][T25719]  ? __pfx_lock_release+0x10/0x10
[ 3353.151897][T25719]  ? memcg_account_kmem+0x1e7/0x210
[ 3353.157121][T25719]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3353.162933][T25719]  __memcg_kmem_charge_page+0xe1/0x250
[ 3353.168404][T25719]  memcg_charge_kernel_stack+0x210/0x550
[ 3353.174047][T25719]  dup_task_struct+0x15d/0x7d0
[ 3353.178856][T25719]  copy_process+0x5d5/0x3fc0
[ 3353.183535][T25719]  ? __might_fault+0xa9/0x120
[ 3353.188195][   T30] oom_reaper: reaped process 25712 (syz-executor.0), now anon-rss:0kB, file-rss:10188kB, shmem-rss:0kB
[ 3353.188246][T25719]  ? __pfx_lock_release+0x10/0x10
[ 3353.204335][T25719]  ? __lock_acquire+0x1345/0x1fd0
[ 3353.209400][T25719]  ? __pfx_copy_process+0x10/0x10
[ 3353.214508][T25719]  ? __might_fault+0xc5/0x120
[ 3353.219202][T25719]  ? __asan_memset+0x23/0x50
[ 3353.223829][T25719]  kernel_clone+0x21d/0x8d0
[ 3353.228349][T25719]  ? __pfx_kernel_clone+0x10/0x10
[ 3353.233385][T25719]  ? __pfx_lock_release+0x10/0x10
[ 3353.238426][T25719]  __se_sys_clone3+0x2cb/0x350
[ 3353.243207][T25719]  ? __might_fault+0xa9/0x120
[ 3353.247893][T25719]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3353.253181][T25719]  ? rcu_is_watching+0x15/0xb0
[ 3353.257964][T25719]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3353.263960][T25719]  ? exc_page_fault+0x587/0x870
[ 3353.268824][T25719]  ? int80_emulation+0xea/0x210
[ 3353.273704][T25719]  int80_emulation+0x129/0x210
[ 3353.278523][T25719]  asm_int80_emulation+0x1a/0x20
[ 3353.283516][T25719] RIP: 0023:0xf7376060
[ 3353.287600][T25719] Code: 4c 24 04 85 c9 0f 84 df 0d fe ff 8b 54 24 0c 85 d2 0f 84 d3 0d fe ff 53 56 8b 74 24 18 89 cb 8b 4c 24 10 b8 b3 01 00 00 cd 80 <85> c0 74 09 5e 5b 0f 8c b4 0d fe ff c3 31 ed 83 e4 f0 83 ec 0c 56
[ 3353.307310][T25719] RSP: 002b:00000000f758d8e4 EFLAGS: 00000282 ORIG_RAX: 00000000000001b3
[ 3353.315728][T25719] RAX: ffffffffffffffda RBX: 00000000f758d950 RCX: 0000000000000058
[ 3353.323723][T25719] RDX: 00000000f7326eb0 RSI: 00000000f5ee6b40 RDI: 00000000ffffffd8
[ 3353.331730][T25719] RBP: 000000000000000b R08: 0000000000000000 R09: 0000000000000000
[ 3353.339726][T25719] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 3353.347728][T25719] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 3353.355715][T25719]  </TASK>
[ 3353.369585][T25719] memory: usage 307200kB, limit 307200kB, failcnt 130885
[ 3353.376743][T25719] memory+swap: usage 307668kB, limit 9007199254740988kB, failcnt 0
[ 3353.384674][T25719] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0
[ 3353.392257][T25719] Memory cgroup stats for /syz2:
[ 3353.392410][T25719] cache 0
[ 3353.400398][T25719] rss 0
[ 3353.403186][T25719] rss_huge 0
[ 3353.406506][T25719] shmem 0
[ 3353.409469][T25719] mapped_file 0
[ 3353.412979][T25719] dirty 0
[ 3353.415957][T25719] writeback 0
[ 3353.419441][T25719] workingset_refault_anon 46766
[ 3353.424331][T25719] workingset_refault_file 0
[ 3353.428970][T25719] swap 507904
[ 3353.432283][T25719] swapcached 12288
[ 3353.436019][T25719] pgpgin 251397
[ 3353.439744][T25719] pgpgout 251394
[ 3353.443318][T25719] pgfault 594498
[ 3353.447012][T25719] pgmajfault 45847
[ 3353.450757][T25719] inactive_anon 12288
[ 3353.454758][T25719] active_anon 0
[ 3353.460077][T25719] inactive_file 0
[ 3353.463757][T25719] active_file 0
[ 3353.470159][T25719] unevictable 0
[ 3353.473681][T25719] hierarchical_memory_limit 314572800
[ 3353.480106][T25719] hierarchical_memsw_limit 9223372036854771712
[ 3353.486920][T25719] total_cache 0
[ 3353.490422][T25719] total_rss 0
[ 3353.493729][T25719] total_rss_huge 0
[ 3353.498306][T25719] total_shmem 0
[ 3353.507227][T25719] total_mapped_file 0
[ 3353.511272][T25719] total_dirty 0
[ 3353.515479][T25719] total_writeback 0
[ 3353.524878][T25719] total_workingset_refault_anon 46766
[ 3353.533506][T25719] total_workingset_refault_file 0
[ 3353.543139][T25719] total_swap 507904
[ 3353.547466][T25719] total_swapcached 12288
[ 3353.551745][T25719] total_pgpgin 251397
[ 3353.555768][T25719] total_pgpgout 251394
[ 3353.560785][T25719] total_pgfault 594498
[ 3353.564892][T25719] total_pgmajfault 45847
[ 3353.572654][T25719] total_inactive_anon 12288
[ 3353.577716][T25719] total_active_anon 0
[ 3353.581738][T25719] total_inactive_file 0
[ 3353.585938][T25719] total_active_file 0
[ 3353.590818][T25719] total_unevictable 0
[ 3353.594833][T25719] anon_cost 0
[ 3353.598765][T25719] file_cost 0
[ 3353.602221][T25719] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=25719,uid=0
[ 3353.619177][T25719] Memory cgroup out of memory: Killed process 25719 (syz-executor.2) total-vm:54344kB, anon-rss:308kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:64kB oom_score_adj:1000
06:23:50 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x888, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x858, 0x2, [@TCA_BASIC_POLICE={0x854, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa000000]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}, @TCA_POLICE_PEAKRATE64={0xc}]}]}}]}, 0x888}}, 0x0)

[ 3353.973010][T25720] syz-executor.2 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[ 3353.989318][T25720] CPU: 0 PID: 25720 Comm: syz-executor.2 Not tainted 6.8.0-rc7-syzkaller-00250-g137e0ec05aeb #0
[ 3353.999795][T25720] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3354.009885][T25720] Call Trace:
[ 3354.013191][T25720]  <TASK>
[ 3354.016121][T25720]  dump_stack_lvl+0x1e7/0x2e0
[ 3354.020829][T25720]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3354.026046][T25720]  ? __pfx__printk+0x10/0x10
[ 3354.030654][T25720]  ? ___ratelimit+0x4c4/0x670
[ 3354.035349][T25720]  ? __pfx____ratelimit+0x10/0x10
[ 3354.040397][T25720]  dump_header+0xda/0x6a0
[ 3354.044773][T25720]  oom_kill_process+0x3a7/0x930
[ 3354.049638][T25720]  out_of_memory+0xf67/0x1320
[ 3354.054327][T25720]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3354.059974][T25720]  ? __pfx___mutex_lock+0x10/0x10
[ 3354.065025][T25720]  ? __pfx_out_of_memory+0x10/0x10
[ 3354.070153][T25720]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3354.075705][T25720]  ? __pfx_lock_release+0x10/0x10
[ 3354.080747][T25720]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3354.086828][T25720]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3354.092035][T25720]  ? mem_cgroup_iter+0x3e9/0x560
[ 3354.096990][T25720]  try_charge_memcg+0xda2/0x18a0
[ 3354.101957][T25720]  ? mark_lock+0x9a/0x350
[ 3354.106352][T25720]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3354.111803][T25720]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 3354.117968][T25720]  charge_memcg+0xa2/0x160
[ 3354.122419][T25720]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 3354.128582][T25720]  __read_swap_cache_async+0x480/0x8b0
[ 3354.134050][T25720]  ? mark_lock+0x9a/0x350
[ 3354.138400][T25720]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 3354.144427][T25720]  swap_cluster_readahead+0x67c/0x810
[ 3354.149837][T25720]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 3354.155750][T25720]  ? __pfx_lock_release+0x10/0x10
[ 3354.160815][T25720]  ? xas_descend+0x37e/0x470
[ 3354.165451][T25720]  swapin_readahead+0x1ea/0x1070
[ 3354.170424][T25720]  ? filemap_get_entry+0x127/0x4e0
[ 3354.175565][T25720]  ? __pfx_swapin_readahead+0x10/0x10
[ 3354.180970][T25720]  ? __filemap_get_folio+0x935/0xbc0
[ 3354.186372][T25720]  ? swap_cache_get_folio+0x9f/0x570
[ 3354.191705][T25720]  do_swap_page+0x791/0x3f40
[ 3354.196334][T25720]  ? rcu_is_watching+0x15/0xb0
[ 3354.201148][T25720]  ? do_swap_page+0x154/0x3f40
[ 3354.205917][T25720]  ? __pfx_do_swap_page+0x10/0x10
[ 3354.210965][T25720]  ? pte_offset_map_nolock+0x137/0x1f0
[ 3354.216449][T25720]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 3354.222287][T25720]  __handle_mm_fault+0x15e8/0x72d0
[ 3354.227434][T25720]  ? reacquire_held_locks+0x3eb/0x690
[ 3354.232811][T25720]  ? __pfx___handle_mm_fault+0x10/0x10
[ 3354.238302][T25720]  ? __pfx_reacquire_held_locks+0x10/0x10
[ 3354.244040][T25720]  ? mtree_range_walk+0x6fd/0x8e0
[ 3354.249079][T25720]  ? lock_vma_under_rcu+0x18a/0x730
[ 3354.254288][T25720]  ? __pfx_lock_release+0x10/0x10
[ 3354.259342][T25720]  ? lock_vma_under_rcu+0x2f9/0x730
[ 3354.264595][T25720]  ? lock_vma_under_rcu+0x18a/0x730
[ 3354.269811][T25720]  ? __pfx_lock_vma_under_rcu+0x10/0x10
[ 3354.275366][T25720]  handle_mm_fault+0x3c1/0x8a0
[ 3354.280148][T25720]  exc_page_fault+0x456/0x870
[ 3354.284844][T25720]  asm_exc_page_fault+0x26/0x30
[ 3354.289713][T25720] RIP: 0023:0xf730aa89
[ 3354.293822][T25720] Code: b5 00 31 c0 e8 28 25 ff ff e8 13 26 ff ff 89 f1 8b b6 cc 70 02 00 89 c7 89 d5 89 b4 24 5c 01 00 00 e8 fb d4 ff ff 84 c0 74 1e <80> b9 b6 05 b5 00 00 0f 84 a6 0c 00 00 8b 44 24 10 80 b8 c4 05 b5
[ 3354.313454][T25720] RSP: 002b:00000000f758db10 EFLAGS: 00010202
[ 3354.319546][T25720] RAX: 0000000000000001 RBX: 00000000f7442ff4 RCX: 00000000f7442ff4
[ 3354.327536][T25720] RDX: 00000000f7442ff4 RSI: 00000000f6ee8000 RDI: 0000000000332d26
[ 3354.335533][T25720] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 3354.343560][T25720] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 3354.351549][T25720] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 3354.359642][T25720]  </TASK>
[ 3354.375298][T25720] memory: usage 307200kB, limit 307200kB, failcnt 131288
[ 3354.388490][T25720] memory+swap: usage 307680kB, limit 9007199254740988kB, failcnt 0
[ 3354.396928][T25720] kmem: usage 307164kB, limit 9007199254740988kB, failcnt 0
[ 3354.404280][T25720] Memory cgroup stats for /syz2:
[ 3354.404431][T25720] cache 0
[ 3354.413100][T25720] rss 4096
[ 3354.416155][T25720] rss_huge 0
[ 3354.419866][T25720] shmem 0
[ 3354.422843][T25720] mapped_file 0
[ 3354.426964][T25720] dirty 0
[ 3354.429960][T25720] writeback 0
[ 3354.433271][T25720] workingset_refault_anon 46918
[ 3354.438885][T25720] workingset_refault_file 0
[ 3354.443425][T25720] swap 491520
[ 3354.447292][T25720] swapcached 20480
[ 3354.451136][T25720] pgpgin 251557
[ 3354.454623][T25720] pgpgout 251552
[ 3354.459480][T25720] pgfault 594726
[ 3354.463072][T25720] pgmajfault 45985
[ 3354.468260][T25720] inactive_anon 12288
[ 3354.472281][T25720] active_anon 0
[ 3354.475764][T25720] inactive_file 0
[ 3354.485056][T25720] active_file 0
[ 3354.498690][T25720] unevictable 0
[ 3354.502212][T25720] hierarchical_memory_limit 314572800
[ 3354.508013][T25720] hierarchical_memsw_limit 9223372036854771712
[ 3354.514398][T25720] total_cache 0
[ 3354.518004][T25720] total_rss 4096
[ 3354.521585][T25720] total_rss_huge 0
[ 3354.525388][T25720] total_shmem 0
[ 3354.529185][T25720] total_mapped_file 0
[ 3354.533197][T25720] total_dirty 0
[ 3354.536994][T25720] total_writeback 0
[ 3354.540839][T25720] total_workingset_refault_anon 46918
[ 3354.546249][T25720] total_workingset_refault_file 0
[ 3354.551636][T25720] total_swap 491520
[ 3354.555470][T25720] total_swapcached 20480
[ 3354.559834][T25720] total_pgpgin 251557
[ 3354.563838][T25720] total_pgpgout 251552
[ 3354.568275][T25720] total_pgfault 594726
[ 3354.572450][T25720] total_pgmajfault 45985
[ 3354.578625][T25720] total_inactive_anon 12288
[ 3354.583164][T25720] total_active_anon 0
[ 3354.587752][T25720] total_inactive_file 0
[ 3354.595809][T25720] total_active_file 0
[ 3354.600222][T25720] total_unevictable 0
[ 3354.604238][T25720] anon_cost 0
[ 3354.608243][T25720] file_cost 0
06:23:51 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x888, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x858, 0x2, [@TCA_BASIC_POLICE={0x854, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb000000]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}, @TCA_POLICE_PEAKRATE64={0xc}]}]}}]}, 0x888}}, 0x0)

[ 3354.611577][T25720] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=25720,uid=0
[ 3354.627734][T25720] Memory cgroup out of memory: Killed process 25720 (syz-executor.2) total-vm:54212kB, anon-rss:308kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:60kB oom_score_adj:1000
[ 3355.084699][T25721] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3355.095123][T25721] CPU: 1 PID: 25721 Comm: syz-executor.2 Not tainted 6.8.0-rc7-syzkaller-00250-g137e0ec05aeb #0
[ 3355.105586][T25721] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3355.115691][T25721] Call Trace:
[ 3355.119020][T25721]  <TASK>
[ 3355.121981][T25721]  dump_stack_lvl+0x1e7/0x2e0
[ 3355.126701][T25721]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3355.131940][T25721]  ? __pfx__printk+0x10/0x10
[ 3355.136559][T25721]  ? ___ratelimit+0x4c4/0x670
[ 3355.141271][T25721]  ? __pfx____ratelimit+0x10/0x10
[ 3355.146331][T25721]  dump_header+0xda/0x6a0
[ 3355.150715][T25721]  oom_kill_process+0x3a7/0x930
[ 3355.155630][T25721]  out_of_memory+0xf67/0x1320
[ 3355.160324][T25721]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3355.165965][T25721]  ? __pfx___mutex_lock+0x10/0x10
[ 3355.170996][T25721]  ? __pfx_out_of_memory+0x10/0x10
[ 3355.176122][T25721]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3355.181679][T25721]  ? __pfx_lock_release+0x10/0x10
[ 3355.186717][T25721]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3355.192807][T25721]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3355.198033][T25721]  ? mem_cgroup_iter+0x3e9/0x560
[ 3355.203006][T25721]  try_charge_memcg+0xda2/0x18a0
[ 3355.207985][T25721]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3355.213382][T25721]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3355.219105][T25721]  ? __pfx_lock_release+0x10/0x10
[ 3355.224146][T25721]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3355.230162][T25721]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3355.235887][T25721]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3355.241698][T25721]  obj_cgroup_charge+0x389/0x630
[ 3355.246663][T25721]  ? obj_cgroup_charge+0x121/0x630
[ 3355.251804][T25721]  ? __pfx_obj_cgroup_charge+0x10/0x10
[ 3355.257274][T25721]  ? kmem_cache_alloc+0x4f/0x340
[ 3355.262213][T25721]  ? __pfx___might_resched+0x10/0x10
[ 3355.267507][T25721]  __memcg_slab_pre_alloc_hook+0x28d/0x2b0
[ 3355.273349][T25721]  ? __anon_vma_prepare+0x68/0x410
[ 3355.278468][T25721]  kmem_cache_alloc+0x202/0x340
[ 3355.283349][T25721]  __anon_vma_prepare+0x68/0x410
[ 3355.288310][T25721]  __handle_mm_fault+0x6090/0x72d0
[ 3355.293453][T25721]  ? __pfx___handle_mm_fault+0x10/0x10
[ 3355.298947][T25721]  ? mt_find+0x226/0x850
[ 3355.303222][T25721]  ? __pfx_lock_release+0x10/0x10
[ 3355.308270][T25721]  ? mt_find+0x62d/0x850
[ 3355.312538][T25721]  ? mt_find+0x226/0x850
[ 3355.316812][T25721]  ? find_vma+0x142/0x1c0
[ 3355.321153][T25721]  ? __pfx_find_vma+0x10/0x10
[ 3355.325836][T25721]  handle_mm_fault+0x3c1/0x8a0
[ 3355.330615][T25721]  exc_page_fault+0x2ad/0x870
[ 3355.335323][T25721]  asm_exc_page_fault+0x26/0x30
[ 3355.340177][T25721] RIP: 0023:0xf7327d42
[ 3355.344346][T25721] Code: 85 f6 74 22 83 ec 04 01 f0 ff 74 24 4c ff 74 24 3c 50 8b 5c 24 1c e8 dd 0f 02 00 83 c4 10 85 c0 0f 85 62 01 00 00 8b 44 24 44 <89> bd 64 02 00 00 c7 45 0c 01 00 00 00 89 85 60 02 00 00 8b 44 24
[ 3355.363969][T25721] RSP: 002b:00000000f758d9f0 EFLAGS: 00010246
[ 3355.370047][T25721] RAX: 00000000f5ec6000 RBX: 00000000f7442ff4 RCX: 0000000000020000
[ 3355.378019][T25721] RDX: 0000000000000003 RSI: 0000000000001000 RDI: 0000000000021000
[ 3355.385990][T25721] RBP: 00000000f5ee6b40 R08: 0000000000000000 R09: 0000000000000000
[ 3355.393983][T25721] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 3355.401975][T25721] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 3355.409984][T25721]  </TASK>
[ 3355.425197][T25721] memory: usage 307200kB, limit 307200kB, failcnt 131865
[ 3355.432369][T25721] memory+swap: usage 307664kB, limit 9007199254740988kB, failcnt 0
[ 3355.440546][T25721] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0
[ 3355.447956][T25721] Memory cgroup stats for /syz2:
[ 3355.448106][T25721] cache 0
[ 3355.456039][T25721] rss 0
[ 3355.458921][T25721] rss_huge 0
[ 3355.462306][T25721] shmem 0
[ 3355.465264][T25721] mapped_file 0
[ 3355.473092][T25721] dirty 0
[ 3355.476084][T25721] writeback 0
[ 3355.479517][T25721] workingset_refault_anon 47107
[ 3355.484394][T25721] workingset_refault_file 0
[ 3355.489185][T25721] swap 475136
[ 3355.492497][T25721] swapcached 12288
[ 3355.496236][T25721] pgpgin 251757
[ 3355.500809][T25721] pgpgout 251754
[ 3355.504390][T25721] pgfault 595025
[ 3355.508613][T25721] pgmajfault 46169
[ 3355.512374][T25721] inactive_anon 12288
[ 3355.518502][T25721] active_anon 0
[ 3355.522003][T25721] inactive_file 0
[ 3355.525663][T25721] active_file 0
[ 3355.529944][T25721] unevictable 0
[ 3355.533433][T25721] hierarchical_memory_limit 314572800
[ 3355.539600][T25721] hierarchical_memsw_limit 9223372036854771712
[ 3355.545799][T25721] total_cache 0
[ 3355.550045][T25721] total_rss 0
[ 3355.553364][T25721] total_rss_huge 0
[ 3355.557691][T25721] total_shmem 0
[ 3355.561185][T25721] total_mapped_file 0
[ 3355.565184][T25721] total_dirty 0
[ 3355.569422][T25721] total_writeback 0
[ 3355.573262][T25721] total_workingset_refault_anon 47107
[ 3355.579222][T25721] total_workingset_refault_file 0
[ 3355.584310][T25721] total_swap 475136
[ 3355.588771][T25721] total_swapcached 12288
[ 3355.593061][T25721] total_pgpgin 251757
[ 3355.597586][T25721] total_pgpgout 251754
[ 3355.601720][T25721] total_pgfault 595025
[ 3355.605827][T25721] total_pgmajfault 46169
[ 3355.610790][T25721] total_inactive_anon 12288
[ 3355.615345][T25721] total_active_anon 0
[ 3355.619950][T25721] total_inactive_file 0
[ 3355.624140][T25721] total_active_file 0
[ 3355.630258][T25721] total_unevictable 0
06:23:52 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x888, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x858, 0x2, [@TCA_BASIC_POLICE={0x854, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000000]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}, @TCA_POLICE_PEAKRATE64={0xc}]}]}}]}, 0x888}}, 0x0)

[ 3355.634280][T25721] anon_cost 0
[ 3355.638186][T25721] file_cost 0
[ 3355.641709][T25721] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=25721,uid=0
[ 3355.657873][T25721] Memory cgroup out of memory: Killed process 25721 (syz-executor.2) total-vm:54344kB, anon-rss:308kB, file-rss:8704kB, shmem-rss:0kB, UID:0 pgtables:64kB oom_score_adj:1000
[ 3356.079117][T25722] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3356.089501][T25722] CPU: 1 PID: 25722 Comm: syz-executor.2 Not tainted 6.8.0-rc7-syzkaller-00250-g137e0ec05aeb #0
[ 3356.099969][T25722] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3356.110065][T25722] Call Trace:
[ 3356.113370][T25722]  <TASK>
[ 3356.116332][T25722]  dump_stack_lvl+0x1e7/0x2e0
[ 3356.121053][T25722]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3356.126276][T25722]  ? __pfx__printk+0x10/0x10
[ 3356.130914][T25722]  ? ___ratelimit+0x4c4/0x670
[ 3356.135623][T25722]  ? __pfx____ratelimit+0x10/0x10
[ 3356.140684][T25722]  dump_header+0xda/0x6a0
[ 3356.145045][T25722]  oom_kill_process+0x3a7/0x930
[ 3356.149923][T25722]  out_of_memory+0xf67/0x1320
[ 3356.154645][T25722]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3356.160314][T25722]  ? __pfx___mutex_lock+0x10/0x10
[ 3356.165369][T25722]  ? __pfx_out_of_memory+0x10/0x10
[ 3356.170508][T25722]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3356.176095][T25722]  ? __pfx_lock_release+0x10/0x10
[ 3356.181138][T25722]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3356.187229][T25722]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3356.192443][T25722]  ? mem_cgroup_iter+0x3e9/0x560
[ 3356.197405][T25722]  try_charge_memcg+0xda2/0x18a0
[ 3356.202382][T25722]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3356.207772][T25722]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3356.213532][T25722]  ? __pfx_lock_release+0x10/0x10
[ 3356.218603][T25722]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3356.224610][T25722]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3356.230338][T25722]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3356.236156][T25722]  obj_cgroup_charge+0x389/0x630
[ 3356.241116][T25722]  ? obj_cgroup_charge+0x121/0x630
[ 3356.246250][T25722]  ? __pfx_obj_cgroup_charge+0x10/0x10
[ 3356.251742][T25722]  ? kmem_cache_alloc+0x4f/0x340
[ 3356.256700][T25722]  ? __pfx___might_resched+0x10/0x10
[ 3356.262007][T25722]  __memcg_slab_pre_alloc_hook+0x28d/0x2b0
[ 3356.267835][T25722]  ? __anon_vma_prepare+0x68/0x410
[ 3356.272963][T25722]  kmem_cache_alloc+0x202/0x340
[ 3356.277848][T25722]  __anon_vma_prepare+0x68/0x410
[ 3356.282813][T25722]  __handle_mm_fault+0x6090/0x72d0
[ 3356.287964][T25722]  ? __pfx___handle_mm_fault+0x10/0x10
[ 3356.293446][T25722]  ? mt_find+0x226/0x850
[ 3356.297711][T25722]  ? __pfx_lock_release+0x10/0x10
[ 3356.302813][T25722]  ? mt_find+0x62d/0x850
[ 3356.307077][T25722]  ? mt_find+0x226/0x850
[ 3356.311360][T25722]  ? find_vma+0x142/0x1c0
[ 3356.315701][T25722]  ? __pfx_find_vma+0x10/0x10
[ 3356.320438][T25722]  handle_mm_fault+0x3c1/0x8a0
[ 3356.325258][T25722]  exc_page_fault+0x2ad/0x870
[ 3356.330048][T25722]  asm_exc_page_fault+0x26/0x30
[ 3356.334910][T25722] RIP: 0023:0xf7327d42
[ 3356.338990][T25722] Code: 85 f6 74 22 83 ec 04 01 f0 ff 74 24 4c ff 74 24 3c 50 8b 5c 24 1c e8 dd 0f 02 00 83 c4 10 85 c0 0f 85 62 01 00 00 8b 44 24 44 <89> bd 64 02 00 00 c7 45 0c 01 00 00 00 89 85 60 02 00 00 8b 44 24
[ 3356.358629][T25722] RSP: 002b:00000000f758d9f0 EFLAGS: 00010246
[ 3356.364716][T25722] RAX: 00000000f5ec6000 RBX: 00000000f7442ff4 RCX: 0000000000020000
[ 3356.372708][T25722] RDX: 0000000000000003 RSI: 0000000000001000 RDI: 0000000000021000
[ 3356.380687][T25722] RBP: 00000000f5ee6b40 R08: 0000000000000000 R09: 0000000000000000
[ 3356.388671][T25722] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 3356.396653][T25722] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 3356.404651][T25722]  </TASK>
[ 3356.413570][T25722] memory: usage 307200kB, limit 307200kB, failcnt 132349
[ 3356.421140][T25722] memory+swap: usage 307664kB, limit 9007199254740988kB, failcnt 0
[ 3356.429285][T25722] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0
[ 3356.443450][T25722] Memory cgroup stats for /syz2:
[ 3356.443610][T25722] cache 0
[ 3356.451670][T25722] rss 0
[ 3356.454465][T25722] rss_huge 0
[ 3356.466402][T25722] shmem 0
[ 3356.469406][T25722] mapped_file 0
[ 3356.472896][T25722] dirty 0
[ 3356.475864][T25722] writeback 0
[ 3356.479398][T25722] workingset_refault_anon 47296
[ 3356.484307][T25722] workingset_refault_file 0
[ 3356.489005][T25722] swap 475136
[ 3356.492325][T25722] swapcached 12288
[ 3356.496073][T25722] pgpgin 251956
[ 3356.499680][T25722] pgpgout 251953
[ 3356.503258][T25722] pgfault 595314
[ 3356.507010][T25722] pgmajfault 46347
[ 3356.510831][T25722] inactive_anon 12288
[ 3356.514864][T25722] active_anon 0
[ 3356.519900][T25722] inactive_file 0
[ 3356.523575][T25722] active_file 0
[ 3356.528306][T25722] unevictable 0
[ 3356.531805][T25722] hierarchical_memory_limit 314572800
[ 3356.537619][T25722] hierarchical_memsw_limit 9223372036854771712
[ 3356.543816][T25722] total_cache 0
[ 3356.548056][T25722] total_rss 0
[ 3356.551389][T25722] total_rss_huge 0
[ 3356.555137][T25722] total_shmem 0
[ 3356.559414][T25722] total_mapped_file 0
[ 3356.563635][T25722] total_dirty 0
[ 3356.567707][T25722] total_writeback 0
[ 3356.571554][T25722] total_workingset_refault_anon 47296
[ 3356.577522][T25722] total_workingset_refault_file 0
[ 3356.582586][T25722] total_swap 475136
[ 3356.587158][T25722] total_swapcached 12288
[ 3356.591447][T25722] total_pgpgin 251956
[ 3356.595453][T25722] total_pgpgout 251953
[ 3356.600289][T25722] total_pgfault 595314
[ 3356.604398][T25722] total_pgmajfault 46347
[ 3356.609068][T25722] total_inactive_anon 12288
[ 3356.613610][T25722] total_active_anon 0
[ 3356.618416][T25722] total_inactive_file 0
[ 3356.622671][T25722] total_active_file 0
[ 3356.628805][T25722] total_unevictable 0
[ 3356.632858][T25722] anon_cost 0
[ 3356.636168][T25722] file_cost 0
[ 3356.640408][T25722] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=25722,uid=0
[ 3356.656557][T25722] Memory cgroup out of memory: Killed process 25722 (syz-executor.2) total-vm:54344kB, anon-rss:308kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:64kB oom_score_adj:1000
06:23:54 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x888, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x858, 0x2, [@TCA_BASIC_POLICE={0x854, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x11000000]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}, @TCA_POLICE_PEAKRATE64={0xc}]}]}}]}, 0x888}}, 0x0)

06:23:54 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x888, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x858, 0x2, [@TCA_BASIC_POLICE={0x854, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4d010000]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}, @TCA_POLICE_PEAKRATE64={0xc}]}]}}]}, 0x888}}, 0x0)

[ 3358.371009][T25723] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3358.416440][T25723] CPU: 1 PID: 25723 Comm: syz-executor.2 Not tainted 6.8.0-rc7-syzkaller-00250-g137e0ec05aeb #0
[ 3358.426937][T25723] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3358.437037][T25723] Call Trace:
[ 3358.440366][T25723]  <TASK>
[ 3358.443353][T25723]  dump_stack_lvl+0x1e7/0x2e0
[ 3358.448097][T25723]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3358.453366][T25723]  ? __pfx__printk+0x10/0x10
[ 3358.458015][T25723]  ? ___ratelimit+0x4c4/0x670
[ 3358.462757][T25723]  ? __pfx____ratelimit+0x10/0x10
[ 3358.467855][T25723]  dump_header+0xda/0x6a0
[ 3358.472256][T25723]  oom_kill_process+0x3a7/0x930
[ 3358.477174][T25723]  out_of_memory+0xf67/0x1320
[ 3358.481920][T25723]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3358.487620][T25723]  ? __pfx___mutex_lock+0x10/0x10
[ 3358.492713][T25723]  ? __pfx_out_of_memory+0x10/0x10
[ 3358.497898][T25723]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3358.503511][T25723]  ? __pfx_lock_release+0x10/0x10
[ 3358.508602][T25723]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3358.514747][T25723]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3358.520006][T25723]  ? mem_cgroup_iter+0x3e9/0x560
[ 3358.525013][T25723]  try_charge_memcg+0xda2/0x18a0
[ 3358.530041][T25723]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3358.535478][T25723]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3358.541261][T25723]  ? __pfx_lock_release+0x10/0x10
[ 3358.546352][T25723]  ? memcg_account_kmem+0x1e7/0x210
[ 3358.551639][T25723]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3358.557508][T25723]  __memcg_kmem_charge_page+0xe1/0x250
[ 3358.563045][T25723]  memcg_charge_kernel_stack+0x210/0x550
[ 3358.568747][T25723]  dup_task_struct+0x40d/0x7d0
[ 3358.573573][T25723]  copy_process+0x5d5/0x3fc0
[ 3358.578368][T25723]  ? __might_fault+0xa9/0x120
[ 3358.583107][T25723]  ? __pfx_lock_release+0x10/0x10
[ 3358.588225][T25723]  ? __pfx_copy_process+0x10/0x10
[ 3358.593307][T25723]  ? __might_fault+0xc5/0x120
[ 3358.598046][T25723]  ? __asan_memset+0x23/0x50
[ 3358.602873][T25723]  kernel_clone+0x21d/0x8d0
[ 3358.607449][T25723]  ? __pfx_kernel_clone+0x10/0x10
[ 3358.612586][T25723]  __se_sys_clone3+0x2cb/0x350
[ 3358.617420][T25723]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3358.622769][T25723]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3358.628814][T25723]  ? exc_page_fault+0x587/0x870
[ 3358.633723][T25723]  ? int80_emulation+0xea/0x210
[ 3358.638637][T25723]  int80_emulation+0x129/0x210
[ 3358.643477][T25723]  asm_int80_emulation+0x1a/0x20
[ 3358.648466][T25723] RIP: 0023:0xf7376060
[ 3358.652585][T25723] Code: 4c 24 04 85 c9 0f 84 df 0d fe ff 8b 54 24 0c 85 d2 0f 84 d3 0d fe ff 53 56 8b 74 24 18 89 cb 8b 4c 24 10 b8 b3 01 00 00 cd 80 <85> c0 74 09 5e 5b 0f 8c b4 0d fe ff c3 31 ed 83 e4 f0 83 ec 0c 56
[ 3358.672242][T25723] RSP: 002b:00000000f758d8e4 EFLAGS: 00000282 ORIG_RAX: 00000000000001b3
[ 3358.680720][T25723] RAX: ffffffffffffffda RBX: 00000000f758d950 RCX: 0000000000000058
[ 3358.688741][T25723] RDX: 00000000f7326eb0 RSI: 00000000f5ee6b40 RDI: 00000000ffffffd8
[ 3358.696759][T25723] RBP: 000000000000000b R08: 0000000000000000 R09: 0000000000000000
[ 3358.704784][T25723] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 3358.712806][T25723] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 3358.720846][T25723]  </TASK>
[ 3358.743298][T25723] memory: usage 307200kB, limit 307200kB, failcnt 132706
[ 3358.755196][T25723] memory+swap: usage 307696kB, limit 9007199254740988kB, failcnt 0
[ 3358.763584][T25723] kmem: usage 307168kB, limit 9007199254740988kB, failcnt 0
[ 3358.771375][T25723] Memory cgroup stats for /syz2:
[ 3358.771507][T25723] cache 0
[ 3358.787837][T25723] rss 0
[ 3358.790659][T25723] rss_huge 0
[ 3358.793878][T25723] shmem 0
[ 3358.797630][T25723] mapped_file 0
[ 3358.801140][T25723] dirty 0
[ 3358.804108][T25723] writeback 0
[ 3358.808222][T25723] workingset_refault_anon 47424
[ 3358.813187][T25723] workingset_refault_file 0
[ 3358.818509][T25723] swap 507904
[ 3358.821841][T25723] swapcached 12288
[ 3358.825667][T25723] pgpgin 252092
[ 3358.830229][T25723] pgpgout 252089
[ 3358.833820][T25723] pgfault 595513
[ 3358.839168][T25723] pgmajfault 46459
[ 3358.842953][T25723] inactive_anon 0
[ 3358.847239][T25723] active_anon 12288
[ 3358.851090][T25723] inactive_file 0
[ 3358.859641][T25723] active_file 0
[ 3358.863163][T25723] unevictable 0
[ 3358.868135][T25723] hierarchical_memory_limit 314572800
[ 3358.873553][T25723] hierarchical_memsw_limit 9223372036854771712
[ 3358.883690][T25723] total_cache 0
[ 3358.887660][T25723] total_rss 0
[ 3358.890999][T25723] total_rss_huge 0
[ 3358.894742][T25723] total_shmem 0
[ 3358.899161][T25723] total_mapped_file 0
[ 3358.903199][T25723] total_dirty 0
[ 3358.907323][T25723] total_writeback 0
[ 3358.911166][T25723] total_workingset_refault_anon 47424
[ 3358.917311][T25723] total_workingset_refault_file 0
[ 3358.922459][T25723] total_swap 507904
[ 3358.926900][T25723] total_swapcached 12288
[ 3358.931185][T25723] total_pgpgin 252092
[ 3358.935193][T25723] total_pgpgout 252089
[ 3358.940407][T25723] total_pgfault 595513
[ 3358.944517][T25723] total_pgmajfault 46459
[ 3358.950752][T25723] total_inactive_anon 0
[ 3358.954970][T25723] total_active_anon 12288
[ 3358.960292][T25723] total_inactive_file 0
[ 3358.964481][T25723] total_active_file 0
06:23:55 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x888, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x858, 0x2, [@TCA_BASIC_POLICE={0x854, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x14000000]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}, @TCA_POLICE_PEAKRATE64={0xc}]}]}}]}, 0x888}}, 0x0)

[ 3358.969051][T25723] total_unevictable 0
[ 3358.973068][T25723] anon_cost 0
[ 3358.977012][T25723] file_cost 0
[ 3358.980426][T25723] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=25723,uid=0
[ 3358.996707][T25723] Memory cgroup out of memory: Killed process 25723 (syz-executor.2) total-vm:54344kB, anon-rss:308kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:64kB oom_score_adj:1000
[ 3359.740842][T25724] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3359.760859][T25724] CPU: 1 PID: 25724 Comm: syz-executor.2 Not tainted 6.8.0-rc7-syzkaller-00250-g137e0ec05aeb #0
[ 3359.771350][T25724] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3359.781442][T25724] Call Trace:
[ 3359.784764][T25724]  <TASK>
[ 3359.787711][T25724]  dump_stack_lvl+0x1e7/0x2e0
[ 3359.792428][T25724]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3359.797665][T25724]  ? __pfx__printk+0x10/0x10
[ 3359.802270][T25724]  ? ___ratelimit+0x4c4/0x670
[ 3359.807010][T25724]  ? __pfx____ratelimit+0x10/0x10
[ 3359.812055][T25724]  dump_header+0xda/0x6a0
[ 3359.816415][T25724]  oom_kill_process+0x3a7/0x930
[ 3359.821300][T25724]  out_of_memory+0xf67/0x1320
[ 3359.825999][T25724]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3359.831675][T25724]  ? __pfx___mutex_lock+0x10/0x10
[ 3359.836717][T25724]  ? __pfx_out_of_memory+0x10/0x10
[ 3359.841852][T25724]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3359.847413][T25724]  ? __pfx_lock_release+0x10/0x10
[ 3359.852473][T25724]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3359.858561][T25724]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3359.863774][T25724]  ? mem_cgroup_iter+0x3e9/0x560
[ 3359.868730][T25724]  try_charge_memcg+0xda2/0x18a0
[ 3359.873754][T25724]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3359.879140][T25724]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3359.884897][T25724]  ? __pfx_lock_release+0x10/0x10
[ 3359.889971][T25724]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3359.895975][T25724]  __memcg_kmem_charge_page+0xe1/0x250
[ 3359.901463][T25724]  memcg_charge_kernel_stack+0xa7/0x550
[ 3359.907034][T25724]  dup_task_struct+0x40d/0x7d0
[ 3359.911815][T25724]  copy_process+0x5d5/0x3fc0
[ 3359.916432][T25724]  ? __might_fault+0xa9/0x120
[ 3359.921124][T25724]  ? __pfx_lock_release+0x10/0x10
[ 3359.926173][T25724]  ? __pfx_copy_process+0x10/0x10
[ 3359.931208][T25724]  ? __might_fault+0xc5/0x120
[ 3359.935902][T25724]  ? __asan_memset+0x23/0x50
[ 3359.940519][T25724]  kernel_clone+0x21d/0x8d0
[ 3359.945040][T25724]  ? __pfx_kernel_clone+0x10/0x10
[ 3359.950100][T25724]  __se_sys_clone3+0x2cb/0x350
[ 3359.954888][T25724]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3359.960186][T25724]  ? rcu_is_watching+0x15/0xb0
[ 3359.964980][T25724]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3359.970990][T25724]  ? exc_page_fault+0x587/0x870
[ 3359.975860][T25724]  ? int80_emulation+0xea/0x210
[ 3359.980747][T25724]  int80_emulation+0x129/0x210
[ 3359.985537][T25724]  asm_int80_emulation+0x1a/0x20
[ 3359.990492][T25724] RIP: 0023:0xf7376060
[ 3359.994582][T25724] Code: 4c 24 04 85 c9 0f 84 df 0d fe ff 8b 54 24 0c 85 d2 0f 84 d3 0d fe ff 53 56 8b 74 24 18 89 cb 8b 4c 24 10 b8 b3 01 00 00 cd 80 <85> c0 74 09 5e 5b 0f 8c b4 0d fe ff c3 31 ed 83 e4 f0 83 ec 0c 56
[ 3360.014198][T25724] RSP: 002b:00000000f758d8e4 EFLAGS: 00000282 ORIG_RAX: 00000000000001b3
[ 3360.022627][T25724] RAX: ffffffffffffffda RBX: 00000000f758d950 RCX: 0000000000000058
[ 3360.030631][T25724] RDX: 00000000f7326eb0 RSI: 00000000f5ee6b40 RDI: 00000000ffffffd8
[ 3360.038634][T25724] RBP: 000000000000000b R08: 0000000000000000 R09: 0000000000000000
[ 3360.046618][T25724] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 3360.054601][T25724] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 3360.062612][T25724]  </TASK>
[ 3360.161748][T25724] memory: usage 307200kB, limit 307200kB, failcnt 133495
[ 3360.177918][T25724] memory+swap: usage 307684kB, limit 9007199254740988kB, failcnt 0
[ 3360.185875][T25724] kmem: usage 307176kB, limit 9007199254740988kB, failcnt 0
[ 3360.221205][T25724] Memory cgroup stats for /syz2:
[ 3360.221371][T25724] cache 0
[ 3360.247582][T25724] rss 12288
[ 3360.250966][T25724] rss_huge 0
[ 3360.254195][T25724] shmem 0
[ 3360.273708][T25724] mapped_file 0
[ 3360.280398][T25724] dirty 0
[ 3360.283384][T25724] writeback 0
[ 3360.293321][T25724] workingset_refault_anon 47738
[ 3360.298659][T25724] workingset_refault_file 0
[ 3360.303212][T25724] swap 495616
[ 3360.307420][T25724] swapcached 24576
[ 3360.311202][T25724] pgpgin 252416
[ 3360.314702][T25724] pgpgout 252410
[ 3360.319570][T25724] pgfault 596007
[ 3360.323285][T25724] pgmajfault 46764
[ 3360.328135][T25724] inactive_anon 0
[ 3360.331821][T25724] active_anon 12288
[ 3360.335719][T25724] inactive_file 0
[ 3360.340176][T25724] active_file 0
[ 3360.343683][T25724] unevictable 0
[ 3360.366350][T25724] hierarchical_memory_limit 314572800
[ 3360.371906][T25724] hierarchical_memsw_limit 9223372036854771712
[ 3360.382715][T25724] total_cache 0
[ 3360.386764][T25724] total_rss 12288
[ 3360.390444][T25724] total_rss_huge 0
[ 3360.394187][T25724] total_shmem 0
[ 3360.404463][T25724] total_mapped_file 0
[ 3360.409062][T25724] total_dirty 0
[ 3360.412569][T25724] total_writeback 0
[ 3360.420544][T25724] total_workingset_refault_anon 47738
[ 3360.425982][T25724] total_workingset_refault_file 0
[ 3360.431719][T25724] total_swap 495616
[ 3360.435577][T25724] total_swapcached 24576
[ 3360.445480][T25724] total_pgpgin 252416
[ 3360.449909][T25724] total_pgpgout 252410
[ 3360.454239][T25724] total_pgfault 596007
[ 3360.463674][T25724] total_pgmajfault 46764
[ 3360.468441][T25724] total_inactive_anon 0
[ 3360.472642][T25724] total_active_anon 12288
[ 3360.481853][T25724] total_inactive_file 0
[ 3360.486067][T25724] total_active_file 0
[ 3360.490803][T25724] total_unevictable 0
[ 3360.495053][T25724] anon_cost 0
[ 3360.504046][T25724] file_cost 0
[ 3360.509381][T25724] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=25724,uid=0
[ 3360.530226][T25724] Memory cgroup out of memory: Killed process 25724 (syz-executor.2) total-vm:54344kB, anon-rss:308kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:64kB oom_score_adj:1000
[ 3360.557466][ T5108] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
06:23:57 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x888, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x858, 0x2, [@TCA_BASIC_POLICE={0x854, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x15000000]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}, @TCA_POLICE_PEAKRATE64={0xc}]}]}}]}, 0x888}}, 0x0)

[ 3360.568229][ T5108] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[ 3360.584822][ T5108] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[ 3360.597172][ T5108] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[ 3360.605089][ T5108] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3
[ 3360.613973][ T5108] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[ 3361.087157][T25730] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3361.097769][T25730] CPU: 0 PID: 25730 Comm: syz-executor.2 Not tainted 6.8.0-rc7-syzkaller-00250-g137e0ec05aeb #0
[ 3361.108360][T25730] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3361.118447][T25730] Call Trace:
[ 3361.121738][T25730]  <TASK>
[ 3361.124695][T25730]  dump_stack_lvl+0x1e7/0x2e0
[ 3361.129421][T25730]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3361.134636][T25730]  ? __pfx__printk+0x10/0x10
[ 3361.139248][T25730]  ? ___ratelimit+0x4c4/0x670
[ 3361.143964][T25730]  ? __pfx____ratelimit+0x10/0x10
[ 3361.149008][T25730]  dump_header+0xda/0x6a0
[ 3361.153354][T25730]  oom_kill_process+0x3a7/0x930
[ 3361.158228][T25730]  out_of_memory+0xf67/0x1320
[ 3361.162922][T25730]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3361.168567][T25730]  ? __pfx___mutex_lock+0x10/0x10
[ 3361.173606][T25730]  ? __pfx_out_of_memory+0x10/0x10
[ 3361.178738][T25730]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3361.184389][T25730]  ? __pfx_lock_release+0x10/0x10
[ 3361.189436][T25730]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3361.195521][T25730]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3361.200730][T25730]  ? mem_cgroup_iter+0x3e9/0x560
[ 3361.205681][T25730]  try_charge_memcg+0xda2/0x18a0
[ 3361.210655][T25730]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3361.216055][T25730]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3361.221805][T25730]  ? __pfx_lock_release+0x10/0x10
[ 3361.226848][T25730]  ? memcg_account_kmem+0x1e7/0x210
[ 3361.232070][T25730]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3361.237885][T25730]  __memcg_kmem_charge_page+0xe1/0x250
[ 3361.243365][T25730]  memcg_charge_kernel_stack+0x210/0x550
[ 3361.249036][T25730]  dup_task_struct+0x40d/0x7d0
[ 3361.253812][T25730]  copy_process+0x5d5/0x3fc0
[ 3361.258427][T25730]  ? __might_fault+0xa9/0x120
[ 3361.263117][T25730]  ? __pfx_lock_release+0x10/0x10
[ 3361.268262][T25730]  ? __pfx_copy_process+0x10/0x10
[ 3361.273304][T25730]  ? __might_fault+0xc5/0x120
[ 3361.278000][T25730]  ? __asan_memset+0x23/0x50
[ 3361.282631][T25730]  kernel_clone+0x21d/0x8d0
[ 3361.287169][T25730]  ? __pfx_kernel_clone+0x10/0x10
[ 3361.292223][T25730]  ? __pfx___might_resched+0x10/0x10
[ 3361.297569][T25730]  __se_sys_clone3+0x2cb/0x350
[ 3361.302391][T25730]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3361.307759][T25730]  ? int80_emulation+0xea/0x210
[ 3361.312660][T25730]  int80_emulation+0x129/0x210
[ 3361.317468][T25730]  asm_int80_emulation+0x1a/0x20
[ 3361.322458][T25730] RIP: 0023:0xf7376060
[ 3361.326541][T25730] Code: 4c 24 04 85 c9 0f 84 df 0d fe ff 8b 54 24 0c 85 d2 0f 84 d3 0d fe ff 53 56 8b 74 24 18 89 cb 8b 4c 24 10 b8 b3 01 00 00 cd 80 <85> c0 74 09 5e 5b 0f 8c b4 0d fe ff c3 31 ed 83 e4 f0 83 ec 0c 56
[ 3361.346265][T25730] RSP: 002b:00000000f758d8e4 EFLAGS: 00000282 ORIG_RAX: 00000000000001b3
[ 3361.354724][T25730] RAX: ffffffffffffffda RBX: 00000000f758d950 RCX: 0000000000000058
[ 3361.362700][T25730] RDX: 00000000f7326eb0 RSI: 00000000f5ee6b40 RDI: 00000000ffffffd8
[ 3361.370703][T25730] RBP: 000000000000000b R08: 0000000000000000 R09: 0000000000000000
[ 3361.378684][T25730] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 3361.386750][T25730] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 3361.394742][T25730]  </TASK>
[ 3361.412357][T25730] memory: usage 307200kB, limit 307200kB, failcnt 134016
[ 3361.434737][T25730] memory+swap: usage 307696kB, limit 9007199254740988kB, failcnt 0
[ 3361.443210][T25730] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0
[ 3361.450718][T25730] Memory cgroup stats for /syz2:
[ 3361.450861][T25730] cache 0
[ 3361.459438][T25730] rss 0
[ 3361.462241][T25730] rss_huge 0
[ 3361.465458][T25730] shmem 0
[ 3361.469256][T25730] mapped_file 0
[ 3361.472771][T25730] dirty 0
[ 3361.475731][T25730] writeback 0
[ 3361.479762][T25730] workingset_refault_anon 47901
[ 3361.484712][T25730] workingset_refault_file 0
[ 3361.489386][T25730] swap 507904
[ 3361.492699][T25730] swapcached 12288
[ 3361.497328][T25730] pgpgin 252616
[ 3361.500827][T25730] pgpgout 252613
[ 3361.504406][T25730] pgfault 596303
[ 3361.508061][T25730] pgmajfault 46946
[ 3361.512726][T25730] inactive_anon 0
[ 3361.517743][T25730] active_anon 12288
[ 3361.521598][T25730] inactive_file 0
[ 3361.525255][T25730] active_file 0
[ 3361.529585][T25730] unevictable 0
[ 3361.533102][T25730] hierarchical_memory_limit 314572800
[ 3361.539260][T25730] hierarchical_memsw_limit 9223372036854771712
[ 3361.545533][T25730] total_cache 0
[ 3361.549637][T25730] total_rss 0
[ 3361.552967][T25730] total_rss_huge 0
[ 3361.557323][T25730] total_shmem 0
[ 3361.560848][T25730] total_mapped_file 0
[ 3361.564871][T25730] total_dirty 0
[ 3361.569052][T25730] total_writeback 0
[ 3361.572906][T25730] total_workingset_refault_anon 47901
[ 3361.578951][T25730] total_workingset_refault_file 0
[ 3361.584020][T25730] total_swap 507904
[ 3361.588521][T25730] total_swapcached 12288
[ 3361.592810][T25730] total_pgpgin 252616
[ 3361.597493][T25730] total_pgpgout 252613
[ 3361.601682][T25730] total_pgfault 596303
[ 3361.605786][T25730] total_pgmajfault 46946
[ 3361.610913][T25730] total_inactive_anon 0
[ 3361.615125][T25730] total_active_anon 12288
[ 3361.620276][T25730] total_inactive_file 0
[ 3361.624466][T25730] total_active_file 0
[ 3361.629908][T25730] total_unevictable 0
[ 3361.633938][T25730] anon_cost 0
06:23:58 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x888, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x858, 0x2, [@TCA_BASIC_POLICE={0x854, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x54080000]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}, @TCA_POLICE_PEAKRATE64={0xc}]}]}}]}, 0x888}}, 0x0)

[ 3361.638011][T25730] file_cost 0
[ 3361.641337][T25730] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=25730,uid=0
[ 3361.657426][T25730] Memory cgroup out of memory: Killed process 25730 (syz-executor.2) total-vm:54344kB, anon-rss:312kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:64kB oom_score_adj:1000
[ 3362.011085][T25731] syz-executor.2 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[ 3362.027237][T25731] CPU: 0 PID: 25731 Comm: syz-executor.2 Not tainted 6.8.0-rc7-syzkaller-00250-g137e0ec05aeb #0
[ 3362.037733][T25731] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3362.047874][T25731] Call Trace:
[ 3362.051196][T25731]  <TASK>
[ 3362.054188][T25731]  dump_stack_lvl+0x1e7/0x2e0
[ 3362.058948][T25731]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3362.064202][T25731]  ? __pfx__printk+0x10/0x10
[ 3362.068849][T25731]  ? ___ratelimit+0x4c4/0x670
[ 3362.073583][T25731]  ? __pfx____ratelimit+0x10/0x10
[ 3362.078667][T25731]  dump_header+0xda/0x6a0
[ 3362.083054][T25731]  oom_kill_process+0x3a7/0x930
[ 3362.087974][T25731]  out_of_memory+0xf67/0x1320
[ 3362.092815][T25731]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3362.098519][T25731]  ? __pfx___mutex_lock+0x10/0x10
[ 3362.103597][T25731]  ? __pfx_out_of_memory+0x10/0x10
[ 3362.108777][T25731]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3362.114387][T25731]  ? __pfx_lock_release+0x10/0x10
[ 3362.119473][T25731]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3362.125598][T25731]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3362.130852][T25731]  ? mem_cgroup_iter+0x3e9/0x560
[ 3362.135845][T25731]  try_charge_memcg+0xda2/0x18a0
[ 3362.140830][T25731]  ? mark_lock+0x9a/0x350
[ 3362.145239][T25731]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3362.150674][T25731]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 3362.156864][T25731]  charge_memcg+0xa2/0x160
[ 3362.161345][T25731]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 3362.167470][T25731]  __read_swap_cache_async+0x480/0x8b0
[ 3362.172984][T25731]  ? mark_lock+0x9a/0x350
[ 3362.177372][T25731]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 3362.183427][T25731]  swap_cluster_readahead+0x67c/0x810
[ 3362.188864][T25731]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 3362.194910][T25731]  ? __pfx_lock_release+0x10/0x10
[ 3362.200090][T25731]  ? xas_descend+0x37e/0x470
[ 3362.204756][T25731]  swapin_readahead+0x1ea/0x1070
[ 3362.209778][T25731]  ? filemap_get_entry+0x127/0x4e0
[ 3362.214971][T25731]  ? __pfx_swapin_readahead+0x10/0x10
[ 3362.220512][T25731]  ? __filemap_get_folio+0x935/0xbc0
[ 3362.225869][T25731]  ? swap_cache_get_folio+0x9f/0x570
[ 3362.231225][T25731]  do_swap_page+0x791/0x3f40
[ 3362.235876][T25731]  ? rcu_is_watching+0x15/0xb0
[ 3362.240715][T25731]  ? do_swap_page+0x154/0x3f40
[ 3362.245533][T25731]  ? __pfx_do_swap_page+0x10/0x10
[ 3362.250609][T25731]  ? pte_offset_map_nolock+0x137/0x1f0
[ 3362.256132][T25731]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 3362.262020][T25731]  __handle_mm_fault+0x15e8/0x72d0
[ 3362.267223][T25731]  ? reacquire_held_locks+0x3eb/0x690
[ 3362.272650][T25731]  ? __pfx___handle_mm_fault+0x10/0x10
[ 3362.278189][T25731]  ? __pfx_reacquire_held_locks+0x10/0x10
[ 3362.283981][T25731]  ? mtree_range_walk+0x6fd/0x8e0
[ 3362.289059][T25731]  ? lock_vma_under_rcu+0x18a/0x730
[ 3362.294411][T25731]  ? __pfx_lock_release+0x10/0x10
[ 3362.299507][T25731]  ? lock_vma_under_rcu+0x2f9/0x730
[ 3362.304795][T25731]  ? lock_vma_under_rcu+0x18a/0x730
[ 3362.310053][T25731]  ? __pfx_lock_vma_under_rcu+0x10/0x10
[ 3362.315663][T25731]  handle_mm_fault+0x3c1/0x8a0
[ 3362.320587][T25731]  exc_page_fault+0x456/0x870
[ 3362.325342][T25731]  asm_exc_page_fault+0x26/0x30
[ 3362.330241][T25731] RIP: 0023:0xf7307fa1
[ 3362.334359][T25731] Code: e9 fd fe ff ff 8d 74 26 00 e8 a4 41 ff ff 81 c2 6f b0 13 00 0f b6 82 c9 05 b5 00 84 c0 74 0b 0f b6 82 b8 05 b5 00 84 c0 74 07 <c3> 8d b6 00 00 00 00 0f b6 82 b9 05 b5 00 84 c0 75 ee 0f b6 82 b4
[ 3362.354012][T25731] RSP: 002b:00000000f758db0c EFLAGS: 00010202
[ 3362.360135][T25731] RAX: 0000000000000001 RBX: 00000000f7442ff4 RCX: 00000000f7442ff4
[ 3362.368167][T25731] RDX: 00000000f7442ff4 RSI: 00000000f6ee8000 RDI: 0000000000334c97
[ 3362.376184][T25731] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 3362.384204][T25731] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 3362.392261][T25731] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 3362.400321][T25731]  </TASK>
[ 3362.406795][T25731] memory: usage 307196kB, limit 307200kB, failcnt 134850
[ 3362.416013][T25731] memory+swap: usage 307680kB, limit 9007199254740988kB, failcnt 0
[ 3362.424259][T25731] kmem: usage 307180kB, limit 9007199254740988kB, failcnt 0
[ 3362.433798][T25731] Memory cgroup stats for /syz2:
[ 3362.433940][T25731] cache 0
[ 3362.451357][T25731] rss 0
[ 3362.454176][T25731] rss_huge 0
[ 3362.465234][T25731] shmem 0
[ 3362.472636][T25731] mapped_file 0
[ 3362.476149][T25731] dirty 0
[ 3362.484978][T25731] writeback 0
[ 3362.492230][T25731] workingset_refault_anon 48210
[ 3362.497357][T25731] workingset_refault_file 0
[ 3362.501958][T25731] swap 495616
[ 3362.505279][T25731] swapcached 16384
[ 3362.513430][T25731] pgpgin 252939
[ 3362.518083][T25731] pgpgout 252935
[ 3362.521694][T25731] pgfault 596795
[ 3362.525265][T25731] pgmajfault 47253
[ 3362.534258][T25731] inactive_anon 0
[ 3362.538346][T25731] active_anon 0
[ 3362.541853][T25731] inactive_file 0
[ 3362.545510][T25731] active_file 0
[ 3362.549546][T25731] unevictable 0
[ 3362.553269][T25731] hierarchical_memory_limit 314572800
[ 3362.565095][T25731] hierarchical_memsw_limit 9223372036854771712
[ 3362.579135][T25731] total_cache 0
[ 3362.582668][T25731] total_rss 0
[ 3362.586019][T25731] total_rss_huge 0
[ 3362.590225][T25731] total_shmem 0
[ 3362.593714][T25731] total_mapped_file 0
[ 3362.598070][T25731] total_dirty 0
[ 3362.601557][T25731] total_writeback 0
[ 3362.605392][T25731] total_workingset_refault_anon 48210
[ 3362.611247][T25731] total_workingset_refault_file 0
[ 3362.617016][T25731] total_swap 495616
[ 3362.620864][T25731] total_swapcached 16384
[ 3362.625129][T25731] total_pgpgin 252939
[ 3362.630347][T25731] total_pgpgout 252935
[ 3362.634457][T25731] total_pgfault 596795
[ 3362.638974][T25731] total_pgmajfault 47253
[ 3362.643244][T25731] total_inactive_anon 0
[ 3362.647827][T25731] total_active_anon 0
[ 3362.651902][T25731] total_inactive_file 0
[ 3362.656085][T25731] total_active_file 0
[ 3362.660515][T25731] total_unevictable 0
06:23:59 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x888, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x858, 0x2, [@TCA_BASIC_POLICE={0x854, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81000000]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}, @TCA_POLICE_PEAKRATE64={0xc}]}]}}]}, 0x888}}, 0x0)

[ 3362.664536][T25731] anon_cost 0
[ 3362.668197][T25731] file_cost 0
[ 3362.671539][T25731] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=25731,uid=0
[ 3362.687522][T25731] Memory cgroup out of memory: Killed process 25731 (syz-executor.2) total-vm:54212kB, anon-rss:308kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:60kB oom_score_adj:1000
[ 3362.705643][ T5108] Bluetooth: hci7: command 0x0409 tx timeout
[ 3363.562565][T25732] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3363.573275][T25732] CPU: 0 PID: 25732 Comm: syz-executor.2 Not tainted 6.8.0-rc7-syzkaller-00250-g137e0ec05aeb #0
[ 3363.583753][T25732] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3363.593860][T25732] Call Trace:
[ 3363.597178][T25732]  <TASK>
[ 3363.600137][T25732]  dump_stack_lvl+0x1e7/0x2e0
[ 3363.604831][T25732]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3363.610044][T25732]  ? __pfx__printk+0x10/0x10
[ 3363.614639][T25732]  ? ___ratelimit+0x4c4/0x670
[ 3363.619347][T25732]  ? __pfx____ratelimit+0x10/0x10
[ 3363.624380][T25732]  dump_header+0xda/0x6a0
[ 3363.628734][T25732]  oom_kill_process+0x3a7/0x930
[ 3363.633624][T25732]  out_of_memory+0xf67/0x1320
[ 3363.638585][T25732]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3363.644247][T25732]  ? __pfx___mutex_lock+0x10/0x10
[ 3363.649303][T25732]  ? __pfx_out_of_memory+0x10/0x10
[ 3363.654450][T25732]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3363.660028][T25732]  ? __pfx_lock_release+0x10/0x10
[ 3363.665088][T25732]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3363.671176][T25732]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3363.676403][T25732]  ? mem_cgroup_iter+0x3e9/0x560
[ 3363.681363][T25732]  try_charge_memcg+0xda2/0x18a0
[ 3363.686332][T25732]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3363.691716][T25732]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3363.697533][T25732]  ? __pfx_lock_release+0x10/0x10
[ 3363.702576][T25732]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3363.708667][T25732]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3363.714399][T25732]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3363.720218][T25732]  obj_cgroup_charge+0x389/0x630
[ 3363.725180][T25732]  ? obj_cgroup_charge+0x121/0x630
[ 3363.730315][T25732]  ? __pfx_obj_cgroup_charge+0x10/0x10
[ 3363.735793][T25732]  ? kmem_cache_alloc+0x4f/0x340
[ 3363.740746][T25732]  ? __pfx___might_resched+0x10/0x10
[ 3363.746053][T25732]  __memcg_slab_pre_alloc_hook+0x28d/0x2b0
[ 3363.751898][T25732]  ? __anon_vma_prepare+0x68/0x410
[ 3363.757030][T25732]  kmem_cache_alloc+0x202/0x340
[ 3363.761901][T25732]  __anon_vma_prepare+0x68/0x410
[ 3363.766859][T25732]  __handle_mm_fault+0x6090/0x72d0
[ 3363.772011][T25732]  ? __pfx___handle_mm_fault+0x10/0x10
[ 3363.777531][T25732]  ? mt_find+0x226/0x850
[ 3363.781798][T25732]  ? __pfx_lock_release+0x10/0x10
[ 3363.786857][T25732]  ? mt_find+0x62d/0x850
[ 3363.791123][T25732]  ? mt_find+0x226/0x850
[ 3363.795406][T25732]  ? find_vma+0x142/0x1c0
[ 3363.799751][T25732]  ? __pfx_find_vma+0x10/0x10
[ 3363.804445][T25732]  handle_mm_fault+0x3c1/0x8a0
[ 3363.809234][T25732]  exc_page_fault+0x2ad/0x870
[ 3363.813939][T25732]  asm_exc_page_fault+0x26/0x30
[ 3363.818804][T25732] RIP: 0023:0xf7327d42
[ 3363.822883][T25732] Code: 85 f6 74 22 83 ec 04 01 f0 ff 74 24 4c ff 74 24 3c 50 8b 5c 24 1c e8 dd 0f 02 00 83 c4 10 85 c0 0f 85 62 01 00 00 8b 44 24 44 <89> bd 64 02 00 00 c7 45 0c 01 00 00 00 89 85 60 02 00 00 8b 44 24
[ 3363.842593][T25732] RSP: 002b:00000000f758d9f0 EFLAGS: 00010246
[ 3363.848677][T25732] RAX: 00000000f5ec6000 RBX: 00000000f7442ff4 RCX: 0000000000020000
[ 3363.856658][T25732] RDX: 0000000000000003 RSI: 0000000000001000 RDI: 0000000000021000
[ 3363.864900][T25732] RBP: 00000000f5ee6b40 R08: 0000000000000000 R09: 0000000000000000
[ 3363.872964][T25732] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 3363.880957][T25732] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 3363.888952][T25732]  </TASK>
[ 3363.896091][T25732] memory: usage 307200kB, limit 307200kB, failcnt 135977
[ 3363.911186][T25732] memory+swap: usage 307664kB, limit 9007199254740988kB, failcnt 0
[ 3363.919248][T25732] kmem: usage 307168kB, limit 9007199254740988kB, failcnt 0
[ 3363.927370][T25732] Memory cgroup stats for /syz2:
[ 3363.927522][T25732] cache 0
[ 3363.935577][T25732] rss 0
[ 3363.938693][T25732] rss_huge 0
[ 3363.941926][T25732] shmem 0
[ 3363.944887][T25732] mapped_file 0
[ 3363.948604][T25732] dirty 0
[ 3363.951600][T25732] writeback 0
[ 3363.954913][T25732] workingset_refault_anon 48594
[ 3363.959937][T25732] workingset_refault_file 0
[ 3363.965060][T25732] swap 475136
[ 3363.969061][T25732] swapcached 12288
[ 3363.972822][T25732] pgpgin 253355
[ 3363.976910][T25732] pgpgout 253352
[ 3363.980496][T25732] pgfault 597408
[ 3363.984156][T25732] pgmajfault 47648
[ 3363.988569][T25732] inactive_anon 0
[ 3363.992242][T25732] active_anon 12288
[ 3363.996171][T25732] inactive_file 0
[ 3364.001904][T25732] active_file 0
[ 3364.005399][T25732] unevictable 0
[ 3364.009589][T25732] hierarchical_memory_limit 314572800
[ 3364.015002][T25732] hierarchical_memsw_limit 9223372036854771712
[ 3364.021895][T25732] total_cache 0
[ 3364.025434][T25732] total_rss 0
[ 3364.031513][T25732] total_rss_huge 0
[ 3364.035277][T25732] total_shmem 0
[ 3364.040764][T25732] total_mapped_file 0
[ 3364.044785][T25732] total_dirty 0
[ 3364.049787][T25732] total_writeback 0
[ 3364.053724][T25732] total_workingset_refault_anon 48594
[ 3364.059864][T25732] total_workingset_refault_file 0
[ 3364.064924][T25732] total_swap 475136
[ 3364.069508][T25732] total_swapcached 12288
[ 3364.073912][T25732] total_pgpgin 253355
[ 3364.078466][T25732] total_pgpgout 253352
[ 3364.082569][T25732] total_pgfault 597408
[ 3364.087397][T25732] total_pgmajfault 47648
[ 3364.091752][T25732] total_inactive_anon 0
[ 3364.095942][T25732] total_active_anon 12288
[ 3364.101082][T25732] total_inactive_file 0
[ 3364.105317][T25732] total_active_file 0
[ 3364.110892][T25732] total_unevictable 0
06:24:00 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x888, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x858, 0x2, [@TCA_BASIC_POLICE={0x854, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa7ab55da]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}, @TCA_POLICE_PEAKRATE64={0xc}]}]}}]}, 0x888}}, 0x0)

[ 3364.114919][T25732] anon_cost 0
[ 3364.118874][T25732] file_cost 0
[ 3364.122196][T25732] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=25732,uid=0
[ 3364.138403][T25732] Memory cgroup out of memory: Killed process 25732 (syz-executor.2) total-vm:54344kB, anon-rss:308kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:64kB oom_score_adj:1000
[ 3364.225112][ T5123] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=0
[ 3364.240303][ T5123] CPU: 0 PID: 5123 Comm: syz-executor.2 Not tainted 6.8.0-rc7-syzkaller-00250-g137e0ec05aeb #0
[ 3364.250705][ T5123] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3364.260798][ T5123] Call Trace:
[ 3364.264124][ T5123]  <TASK>
[ 3364.267062][ T5123]  dump_stack_lvl+0x1e7/0x2e0
[ 3364.271755][ T5123]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3364.276966][ T5123]  ? __pfx__printk+0x10/0x10
[ 3364.281563][ T5123]  ? ___ratelimit+0x4c4/0x670
[ 3364.286287][ T5123]  ? __pfx____ratelimit+0x10/0x10
[ 3364.291366][ T5123]  dump_header+0xda/0x6a0
[ 3364.295714][ T5123]  oom_kill_process+0x3a7/0x930
[ 3364.300601][ T5123]  out_of_memory+0xf67/0x1320
[ 3364.305288][ T5123]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3364.310925][ T5123]  ? __pfx___mutex_lock+0x10/0x10
[ 3364.315976][ T5123]  ? __pfx_out_of_memory+0x10/0x10
[ 3364.321199][ T5123]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3364.326761][ T5123]  ? __pfx_lock_release+0x10/0x10
[ 3364.331793][ T5123]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3364.337887][ T5123]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3364.343148][ T5123]  ? mem_cgroup_iter+0x3e9/0x560
[ 3364.348139][ T5123]  try_charge_memcg+0xda2/0x18a0
[ 3364.353474][ T5123]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3364.358853][ T5123]  ? percpu_ref_tryget+0x14/0x180
[ 3364.364009][ T5123]  charge_memcg+0xa2/0x160
[ 3364.368440][ T5123]  __mem_cgroup_charge+0x27/0x80
[ 3364.373397][ T5123]  folio_prealloc+0x52/0x170
[ 3364.378018][ T5123]  do_wp_page+0x1222/0x4c90
[ 3364.382973][ T5123]  ? __pfx_do_wp_page+0x10/0x10
[ 3364.387833][ T5123]  ? __pfx_lock_acquire+0x10/0x10
[ 3364.392870][ T5123]  ? do_raw_spin_lock+0x14e/0x370
[ 3364.397911][ T5123]  ? __pfx_validate_chain+0x10/0x10
[ 3364.403133][ T5123]  __handle_mm_fault+0x26ad/0x72d0
[ 3364.408300][ T5123]  ? __pfx___handle_mm_fault+0x10/0x10
[ 3364.413771][ T5123]  ? mt_find+0x226/0x850
[ 3364.418029][ T5123]  ? __pfx_lock_release+0x10/0x10
[ 3364.423075][ T5123]  ? mt_find+0x62d/0x850
[ 3364.427348][ T5123]  ? mt_find+0x226/0x850
[ 3364.431623][ T5123]  ? find_vma+0x142/0x1c0
[ 3364.435975][ T5123]  ? __pfx_find_vma+0x10/0x10
[ 3364.440671][ T5123]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3364.446683][ T5123]  handle_mm_fault+0x3c1/0x8a0
[ 3364.451514][ T5123]  exc_page_fault+0x2ad/0x870
[ 3364.456308][ T5123]  asm_exc_page_fault+0x26/0x30
[ 3364.461179][ T5123] RIP: 0010:__put_user_8+0x11/0x20
[ 3364.466404][ T5123] Code: 84 00 00 00 00 00 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 89 cb 48 c1 fb 3f 48 09 d9 0f 01 cb <48> 89 01 31 c9 0f 01 ca c3 cc cc cc cc 66 90 90 90 90 90 90 90 90
[ 3364.486031][ T5123] RSP: 0018:ffffc90003b4fd58 EFLAGS: 00050202
[ 3364.492152][ T5123] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00000000575e08a8
[ 3364.500146][ T5123] RDX: 0000000000000000 RSI: ffffffff8baac7e0 RDI: ffffffff8bfe6da0
[ 3364.508121][ T5123] RBP: ffffc90003b4fe98 R08: ffffffff8f856cef R09: 1ffffffff1f0ad9d
[ 3364.516095][ T5123] R10: dffffc0000000000 R11: fffffbfff1f0ad9e R12: ffffc90003b4fe10
[ 3364.524068][ T5123] R13: ffffc90003b4ffd8 R14: dffffc0000000000 R15: ffff88805c9632f8
[ 3364.532092][ T5123]  __rseq_handle_notify_resume+0x651/0x1490
[ 3364.538048][ T5123]  ? __pfx___rseq_handle_notify_resume+0x10/0x10
[ 3364.544417][ T5123]  ? syscall_exit_to_user_mode+0xa2/0x360
[ 3364.550160][ T5123]  syscall_exit_to_user_mode+0x113/0x360
[ 3364.555812][ T5123]  __do_fast_syscall_32+0xcf/0x120
[ 3364.560938][ T5123]  ? exc_page_fault+0x587/0x870
[ 3364.565799][ T5123]  do_fast_syscall_32+0x33/0x70
[ 3364.570676][ T5123]  entry_SYSENTER_compat_after_hwframe+0x7c/0x86
[ 3364.577012][ T5123] RIP: 0023:0xf72ec579
[ 3364.581096][ T5123] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[ 3364.600906][ T5123] RSP: 002b:00000000f758dc8c EFLAGS: 00000206 ORIG_RAX: 0000000000000078
[ 3364.609330][ T5123] RAX: 0000000000005acf RBX: 0000000001200011 RCX: 0000000000000000
[ 3364.617306][ T5123] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00000000575e0468
[ 3364.625276][ T5123] RBP: 00000000f7442ff4 R08: 0000000000000000 R09: 0000000000000000
[ 3364.633247][ T5123] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 3364.641237][ T5123] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 3364.649221][ T5123]  </TASK>
[ 3364.657980][ T5123] memory: usage 307200kB, limit 307200kB, failcnt 136045
[ 3364.665075][ T5123] memory+swap: usage 307656kB, limit 9007199254740988kB, failcnt 0
[ 3364.679353][ T5123] kmem: usage 307164kB, limit 9007199254740988kB, failcnt 0
[ 3364.687260][ T5123] Memory cgroup stats for /syz2:
[ 3364.687420][ T5123] cache 0
[ 3364.695344][ T5123] rss 0
[ 3364.699070][ T5123] rss_huge 0
[ 3364.702316][ T5123] shmem 0
[ 3364.705283][ T5123] mapped_file 0
[ 3364.709211][ T5123] dirty 0
[ 3364.712178][ T5123] writeback 0
[ 3364.715484][ T5123] workingset_refault_anon 48607
[ 3364.721221][ T5123] workingset_refault_file 0
[ 3364.725764][ T5123] swap 466944
[ 3364.729812][ T5123] swapcached 16384
[ 3364.733610][ T5123] pgpgin 253372
[ 3364.737784][ T5123] pgpgout 253368
[ 3364.741366][ T5123] pgfault 597430
[ 3364.744939][ T5123] pgmajfault 47664
[ 3364.749519][ T5123] inactive_anon 0
[ 3364.753210][ T5123] active_anon 16384
[ 3364.758635][ T5123] inactive_file 0
[ 3364.762303][ T5123] active_file 0
[ 3364.765829][ T5123] unevictable 0
[ 3364.770184][ T5123] hierarchical_memory_limit 314572800
[ 3364.775603][ T5123] hierarchical_memsw_limit 9223372036854771712
[ 3364.782277][ T5108] Bluetooth: hci7: command 0x041b tx timeout
[ 3364.789458][ T5123] total_cache 0
[ 3364.792995][ T5123] total_rss 0
[ 3364.796899][ T5123] total_rss_huge 0
[ 3364.800662][ T5123] total_shmem 0
[ 3364.804154][ T5123] total_mapped_file 0
[ 3364.808996][ T5123] total_dirty 0
[ 3364.812505][ T5123] total_writeback 0
[ 3364.817015][ T5123] total_workingset_refault_anon 48607
[ 3364.822435][ T5123] total_workingset_refault_file 0
[ 3364.828262][ T5123] total_swap 466944
[ 3364.832105][ T5123] total_swapcached 16384
[ 3364.837009][ T5123] total_pgpgin 253372
[ 3364.841027][ T5123] total_pgpgout 253368
[ 3364.845120][ T5123] total_pgfault 597430
[ 3364.850043][ T5123] total_pgmajfault 47664
[ 3364.854326][ T5123] total_inactive_anon 0
[ 3364.861852][ T5123] total_active_anon 16384
[ 3364.866227][ T5123] total_inactive_file 0
[ 3364.871864][ T5123] total_active_file 0
[ 3364.875889][ T5123] total_unevictable 0
[ 3364.880495][ T5123] anon_cost 0
[ 3364.884338][ T5123] file_cost 0
[ 3364.888330][ T5123] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=18264,uid=0
[ 3364.904440][ T5123] Memory cgroup out of memory: Killed process 18264 (syz-executor.2) total-vm:50768kB, anon-rss:340kB, file-rss:8320kB, shmem-rss:0kB, UID:0 pgtables:64kB oom_score_adj:1000
[ 3365.521183][T25733] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3365.539459][T25733] CPU: 1 PID: 25733 Comm: syz-executor.2 Not tainted 6.8.0-rc7-syzkaller-00250-g137e0ec05aeb #0
[ 3365.549940][T25733] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3365.560007][T25733] Call Trace:
[ 3365.563304][T25733]  <TASK>
[ 3365.566238][T25733]  dump_stack_lvl+0x1e7/0x2e0
[ 3365.570948][T25733]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3365.576176][T25733]  ? __pfx__printk+0x10/0x10
[ 3365.580777][T25733]  ? ___ratelimit+0x4c4/0x670
[ 3365.585467][T25733]  ? __pfx____ratelimit+0x10/0x10
[ 3365.590504][T25733]  dump_header+0xda/0x6a0
[ 3365.594846][T25733]  oom_kill_process+0x3a7/0x930
[ 3365.599722][T25733]  out_of_memory+0xf67/0x1320
[ 3365.604460][T25733]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3365.610112][T25733]  ? __pfx___mutex_lock+0x10/0x10
[ 3365.615150][T25733]  ? __pfx_out_of_memory+0x10/0x10
[ 3365.620288][T25733]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3365.625871][T25733]  ? __pfx_lock_release+0x10/0x10
[ 3365.630918][T25733]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3365.637006][T25733]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3365.642240][T25733]  ? mem_cgroup_iter+0x3e9/0x560
[ 3365.647196][T25733]  try_charge_memcg+0xda2/0x18a0
[ 3365.652168][T25733]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3365.657559][T25733]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3365.663310][T25733]  ? __pfx_lock_release+0x10/0x10
[ 3365.668353][T25733]  ? memcg_account_kmem+0x1e7/0x210
[ 3365.673577][T25733]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3365.679402][T25733]  __memcg_kmem_charge_page+0xe1/0x250
[ 3365.684882][T25733]  memcg_charge_kernel_stack+0x28a/0x550
[ 3365.690544][T25733]  dup_task_struct+0x15d/0x7d0
[ 3365.695329][T25733]  copy_process+0x5d5/0x3fc0
[ 3365.699948][T25733]  ? __might_fault+0xa9/0x120
[ 3365.704640][T25733]  ? __pfx_lock_release+0x10/0x10
[ 3365.709691][T25733]  ? __pfx_copy_process+0x10/0x10
[ 3365.714724][T25733]  ? __might_fault+0xc5/0x120
[ 3365.719421][T25733]  ? __asan_memset+0x23/0x50
[ 3365.724126][T25733]  kernel_clone+0x21d/0x8d0
[ 3365.728649][T25733]  ? __pfx_kernel_clone+0x10/0x10
[ 3365.733695][T25733]  ? __pfx___might_resched+0x10/0x10
[ 3365.738998][T25733]  __se_sys_clone3+0x2cb/0x350
[ 3365.743866][T25733]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3365.749195][T25733]  ? int80_emulation+0xea/0x210
[ 3365.754074][T25733]  int80_emulation+0x129/0x210
[ 3365.758881][T25733]  asm_int80_emulation+0x1a/0x20
[ 3365.763833][T25733] RIP: 0023:0xf7376060
[ 3365.767916][T25733] Code: 4c 24 04 85 c9 0f 84 df 0d fe ff 8b 54 24 0c 85 d2 0f 84 d3 0d fe ff 53 56 8b 74 24 18 89 cb 8b 4c 24 10 b8 b3 01 00 00 cd 80 <85> c0 74 09 5e 5b 0f 8c b4 0d fe ff c3 31 ed 83 e4 f0 83 ec 0c 56
[ 3365.787536][T25733] RSP: 002b:00000000f758d8e4 EFLAGS: 00000282 ORIG_RAX: 00000000000001b3
[ 3365.795971][T25733] RAX: ffffffffffffffda RBX: 00000000f758d950 RCX: 0000000000000058
[ 3365.803956][T25733] RDX: 00000000f7326eb0 RSI: 00000000f5c83b40 RDI: 00000000ffffffd8
[ 3365.811961][T25733] RBP: 000000000000006e R08: 0000000000000000 R09: 0000000000000000
[ 3365.819963][T25733] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 3365.828031][T25733] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 3365.836030][T25733]  </TASK>
[ 3365.841352][T25733] memory: usage 307200kB, limit 307200kB, failcnt 136508
[ 3365.848528][T25733] memory+swap: usage 307744kB, limit 9007199254740988kB, failcnt 0
[ 3365.856875][T25733] kmem: usage 307192kB, limit 9007199254740988kB, failcnt 0
[ 3365.864198][T25733] Memory cgroup stats for /syz2:
[ 3365.864327][T25733] cache 0
[ 3365.872348][T25733] rss 0
[ 3365.875138][T25733] rss_huge 0
[ 3365.878434][T25733] shmem 0
[ 3365.881603][T25733] mapped_file 0
[ 3365.885085][T25733] dirty 0
[ 3365.888102][T25733] writeback 0
[ 3365.891422][T25733] workingset_refault_anon 48866
[ 3365.896462][T25733] workingset_refault_file 0
[ 3365.901004][T25733] swap 557056
[ 3365.904319][T25733] swapcached 8192
[ 3365.908088][T25733] pgpgin 253663
[ 3365.911573][T25733] pgpgout 253661
[ 3365.915282][T25733] pgfault 597845
[ 3365.918923][T25733] pgmajfault 47890
[ 3365.922670][T25733] inactive_anon 8192
[ 3365.926705][T25733] active_anon 0
[ 3365.930198][T25733] inactive_file 0
[ 3365.933883][T25733] active_file 0
[ 3365.937541][T25733] unevictable 0
[ 3365.941033][T25733] hierarchical_memory_limit 314572800
[ 3365.948062][T25733] hierarchical_memsw_limit 9223372036854771712
[ 3365.954269][T25733] total_cache 0
[ 3365.958404][T25733] total_rss 0
[ 3365.961723][T25733] total_rss_huge 0
[ 3365.965475][T25733] total_shmem 0
[ 3365.969623][T25733] total_mapped_file 0
[ 3365.973651][T25733] total_dirty 0
[ 3365.990141][T25733] total_writeback 0
[ 3365.994033][T25733] total_workingset_refault_anon 48866
[ 3366.000041][T25733] total_workingset_refault_file 0
[ 3366.005117][T25733] total_swap 557056
[ 3366.013853][T25733] total_swapcached 8192
[ 3366.018185][T25733] total_pgpgin 253663
[ 3366.022188][T25733] total_pgpgout 253661
[ 3366.026857][T25733] total_pgfault 597845
[ 3366.030966][T25733] total_pgmajfault 47890
[ 3366.035237][T25733] total_inactive_anon 8192
[ 3366.040474][T25733] total_active_anon 0
[ 3366.044494][T25733] total_inactive_file 0
[ 3366.049249][T25733] total_active_file 0
[ 3366.053267][T25733] total_unevictable 0
[ 3366.059406][T25733] anon_cost 0
[ 3366.062730][T25733] file_cost 0
[ 3366.066030][T25733] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=25733,uid=0
[ 3366.082309][T25733] Memory cgroup out of memory: Killed process 25733 (syz-executor.2) total-vm:56788kB, anon-rss:308kB, file-rss:10880kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:1000
[ 3366.856572][ T5108] Bluetooth: hci7: command 0x040f tx timeout
[ 3368.152789][   T30] oom_reaper: reaped process 25733 (syz-executor.2), now anon-rss:32kB, file-rss:10172kB, shmem-rss:0kB
[ 3368.936664][ T5108] Bluetooth: hci7: command 0x0419 tx timeout
06:24:14 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x87c, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x84c, 0x2, [@TCA_BASIC_POLICE={0x848, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000000]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}]}]}}]}, 0x87c}}, 0x0)

[ 3379.853367][T25739] Bluetooth: hci8: unexpected cc 0x0c03 length: 249 > 1
[ 3379.864673][T25739] Bluetooth: hci8: unexpected cc 0x1003 length: 249 > 9
[ 3379.874179][T25739] Bluetooth: hci8: unexpected cc 0x1001 length: 249 > 9
[ 3379.884963][T25739] Bluetooth: hci8: unexpected cc 0x0c23 length: 249 > 4
[ 3379.899023][T25739] Bluetooth: hci8: unexpected cc 0x0c25 length: 249 > 3
[ 3379.907047][T25739] Bluetooth: hci8: unexpected cc 0x0c38 length: 249 > 2
[ 3381.339823][T25739] Bluetooth: hci0: command 0x0406 tx timeout
[ 3381.977358][ T5108] Bluetooth: hci8: command 0x0409 tx timeout
[ 3384.056646][ T5108] Bluetooth: hci8: command 0x041b tx timeout
[ 3386.136779][ T5108] Bluetooth: hci8: command 0x040f tx timeout
[ 3388.217761][ T5108] Bluetooth: hci8: command 0x0419 tx timeout
[ 3388.276078][T25739] Bluetooth: hci9: unexpected cc 0x0c03 length: 249 > 1
[ 3388.289017][T25739] Bluetooth: hci9: unexpected cc 0x1003 length: 249 > 9
[ 3388.299560][T25739] Bluetooth: hci9: unexpected cc 0x1001 length: 249 > 9
[ 3388.309865][T25739] Bluetooth: hci9: unexpected cc 0x0c23 length: 249 > 4
[ 3388.318052][T25739] Bluetooth: hci9: unexpected cc 0x0c25 length: 249 > 3
[ 3388.325463][T25739] Bluetooth: hci9: unexpected cc 0x0c38 length: 249 > 2
[ 3389.295391][ T5108] Bluetooth: hci10: unexpected cc 0x0c03 length: 249 > 1
[ 3389.307482][ T5108] Bluetooth: hci10: unexpected cc 0x1003 length: 249 > 9
[ 3389.316858][ T5108] Bluetooth: hci10: unexpected cc 0x1001 length: 249 > 9
[ 3389.325063][ T5108] Bluetooth: hci10: unexpected cc 0x0c23 length: 249 > 4
[ 3389.333293][ T5108] Bluetooth: hci10: unexpected cc 0x0c25 length: 249 > 3
[ 3389.342236][ T5108] Bluetooth: hci10: unexpected cc 0x0c38 length: 249 > 2
[ 3389.506927][ T1239] ieee802154 phy0 wpan0: encryption failed: -22
[ 3389.513333][ T1239] ieee802154 phy1 wpan1: encryption failed: -22
[ 3390.376509][ T5108] Bluetooth: hci9: command 0x0409 tx timeout
[ 3391.422054][ T5108] Bluetooth: hci10: command 0x0409 tx timeout
[ 3392.456435][ T5108] Bluetooth: hci9: command 0x041b tx timeout
[ 3393.498263][ T5108] Bluetooth: hci10: command 0x041b tx timeout
06:24:30 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x888, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x858, 0x2, [@TCA_BASIC_POLICE={0x854, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xda55aba7]}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x1000}}}, @TCA_POLICE_PEAKRATE64={0xc}]}]}}]}, 0x888}}, 0x0)

[ 3394.544439][ T5108] Bluetooth: hci9: command 0x040f tx timeout
[ 3395.586788][ T5108] Bluetooth: hci10: command 0x040f tx timeout
[ 3396.250379][T25739] Bluetooth: hci11: unexpected cc 0x0c03 length: 249 > 1
[ 3396.265395][T25739] Bluetooth: hci11: unexpected cc 0x1003 length: 249 > 9
[ 3396.276008][T25739] Bluetooth: hci11: unexpected cc 0x1001 length: 249 > 9
[ 3396.288169][T25739] Bluetooth: hci11: unexpected cc 0x0c23 length: 249 > 4
[ 3396.299831][T25739] Bluetooth: hci11: unexpected cc 0x0c25 length: 249 > 3
[ 3396.308789][T25739] Bluetooth: hci11: unexpected cc 0x0c38 length: 249 > 2
[ 3396.633581][T25739] Bluetooth: hci9: command 0x0419 tx timeout
[ 3397.660228][T25739] Bluetooth: hci10: command 0x0419 tx timeout
[ 3398.376560][T25739] Bluetooth: hci11: command 0x0409 tx timeout
[ 3400.466665][T25739] Bluetooth: hci11: command 0x041b tx timeout
[ 3402.536493][T25739] Bluetooth: hci11: command 0x040f tx timeout
[ 3404.628248][T25739] Bluetooth: hci11: command 0x0419 tx timeout
[ 3413.176887][   T29] INFO: task dhcpcd:4732 blocked for more than 143 seconds.
[ 3413.184381][   T29]       Not tainted 6.8.0-rc7-syzkaller-00250-g137e0ec05aeb #0
[ 3413.192139][   T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 3413.201722][   T29] task:dhcpcd          state:D stack:20504 pid:4732  tgid:4732  ppid:4731   flags:0x00004002
[ 3413.212059][   T29] Call Trace:
[ 3413.215365][   T29]  <TASK>
[ 3413.218406][   T29]  __schedule+0x17d1/0x49f0
[ 3413.223016][   T29]  ? __pfx___schedule+0x10/0x10
[ 3413.227989][   T29]  ? __pfx_lock_release+0x10/0x10
[ 3413.233065][   T29]  ? __mutex_trylock_common+0x91/0x2e0
[ 3413.240217][   T29]  ? schedule+0x8e/0x260
[ 3413.244524][   T29]  schedule+0x149/0x260
[ 3413.248841][   T29]  schedule_preempt_disabled+0x13/0x30
[ 3413.254355][   T29]  __mutex_lock+0x6a3/0xd70
[ 3413.259069][   T29]  ? __mutex_lock+0x526/0xd70
[ 3413.263787][   T29]  ? devinet_ioctl+0x2ce/0x1bc0
[ 3413.269141][   T29]  ? __pfx___mutex_lock+0x10/0x10
[ 3413.274224][   T29]  ? bpf_lsm_capable+0x9/0x10
[ 3413.282428][   T29]  ? security_capable+0x90/0xb0
[ 3413.288076][   T29]  devinet_ioctl+0x2ce/0x1bc0
[ 3413.292794][   T29]  ? get_user_ifreq+0x1ba/0x200
[ 3413.297949][   T29]  inet_ioctl+0x3d7/0x4f0
[ 3413.302352][   T29]  ? __pfx_inet_ioctl+0x10/0x10
[ 3413.307418][   T29]  sock_do_ioctl+0x158/0x460
[ 3413.312067][   T29]  ? __pfx_sock_do_ioctl+0x10/0x10
[ 3413.317384][   T29]  ? __pfx_lock_release+0x10/0x10
[ 3413.322481][   T29]  sock_ioctl+0x629/0x8e0
[ 3413.326963][   T29]  ? __pfx_sock_ioctl+0x10/0x10
[ 3413.331882][   T29]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3413.338133][   T29]  ? bpf_lsm_file_ioctl+0x9/0x10
[ 3413.343193][   T29]  ? security_file_ioctl+0x87/0xb0
[ 3413.348496][   T29]  ? __pfx_sock_ioctl+0x10/0x10
[ 3413.353386][   T29]  __se_sys_ioctl+0xfc/0x170
[ 3413.358237][   T29]  do_syscall_64+0xf9/0x240
[ 3413.362806][   T29]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 3413.368871][   T29] RIP: 0033:0x7f177e08ad49
[ 3413.373319][   T29] RSP: 002b:00007ffebb785c28 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 3413.381918][   T29] RAX: ffffffffffffffda RBX: 00007f177dfbc6c0 RCX: 00007f177e08ad49
[ 3413.390027][   T29] RDX: 00007ffebb795e18 RSI: 0000000000008914 RDI: 0000000000000010
[ 3413.399032][   T29] RBP: 00007ffebb7a5fd8 R08: 00007ffebb795dd8 R09: 00007ffebb795d88
[ 3413.407169][   T29] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3413.415185][   T29] R13: 00007ffebb795e18 R14: 0000000000000028 R15: 0000000000008914
[ 3413.423376][   T29]  </TASK>
[ 3413.426619][   T29] INFO: task kworker/1:1:25172 blocked for more than 143 seconds.
[ 3413.434449][   T29]       Not tainted 6.8.0-rc7-syzkaller-00250-g137e0ec05aeb #0
[ 3413.442477][   T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 3413.451431][   T29] task:kworker/1:1     state:D stack:24144 pid:25172 tgid:25172 ppid:2      flags:0x00004000
[ 3413.461729][   T29] Workqueue: events linkwatch_event
[ 3413.467078][   T29] Call Trace:
[ 3413.470468][   T29]  <TASK>
[ 3413.473404][   T29]  __schedule+0x17d1/0x49f0
[ 3413.478079][   T29]  ? __pfx___schedule+0x10/0x10
[ 3413.482971][   T29]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3413.489097][   T29]  ? __pfx_lock_release+0x10/0x10
[ 3413.494192][   T29]  ? _raw_spin_unlock_irq+0x23/0x50
[ 3413.499542][   T29]  ? lockdep_hardirqs_on+0x98/0x140
[ 3413.504783][   T29]  ? schedule+0x8e/0x260
[ 3413.509462][   T29]  schedule+0x149/0x260
[ 3413.513678][   T29]  schedule_preempt_disabled+0x13/0x30
[ 3413.525022][   T29]  __mutex_lock+0x6a3/0xd70
[ 3413.529672][   T29]  ? __mutex_lock+0x526/0xd70
[ 3413.534381][   T29]  ? linkwatch_event+0xe/0x60
[ 3413.539310][   T29]  ? __pfx___mutex_lock+0x10/0x10
[ 3413.544386][   T29]  ? process_scheduled_works+0x825/0x1420
[ 3413.550200][   T29]  linkwatch_event+0xe/0x60
[ 3413.554736][   T29]  process_scheduled_works+0x913/0x1420
[ 3413.560463][   T29]  ? __pfx_process_scheduled_works+0x10/0x10
[ 3413.566599][   T29]  ? assign_work+0x364/0x3d0
[ 3413.571250][   T29]  worker_thread+0xa5f/0x1000
[ 3413.575991][   T29]  ? __pfx_worker_thread+0x10/0x10
[ 3413.581394][   T29]  kthread+0x2ef/0x390
[ 3413.585524][   T29]  ? __pfx_worker_thread+0x10/0x10
[ 3413.591419][   T29]  ? __pfx_kthread+0x10/0x10
[ 3413.596093][   T29]  ret_from_fork+0x4b/0x80
[ 3413.604122][   T29]  ? __pfx_kthread+0x10/0x10
[ 3413.608969][   T29]  ret_from_fork_asm+0x1b/0x30
[ 3413.613794][   T29]  </TASK>
[ 3413.616922][   T29] INFO: task syz-executor.4:25503 blocked for more than 143 seconds.
[ 3413.625035][   T29]       Not tainted 6.8.0-rc7-syzkaller-00250-g137e0ec05aeb #0
[ 3413.632658][   T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 3413.641397][   T29] task:syz-executor.4  state:D stack:20696 pid:25503 tgid:25503 ppid:1      flags:0x20004006
[ 3413.651640][   T29] Call Trace:
[ 3413.654920][   T29]  <TASK>
[ 3413.657930][   T29]  __schedule+0x17d1/0x49f0
[ 3413.662511][   T29]  ? __pfx___schedule+0x10/0x10
[ 3413.667457][   T29]  ? __pfx_lock_release+0x10/0x10
[ 3413.672539][   T29]  ? __mutex_trylock_common+0x91/0x2e0
[ 3413.678134][   T29]  ? schedule+0x8e/0x260
[ 3413.682419][   T29]  schedule+0x149/0x260
[ 3413.686680][   T29]  schedule_preempt_disabled+0x13/0x30
[ 3413.692181][   T29]  __mutex_lock+0x6a3/0xd70
[ 3413.696999][   T29]  ? __mutex_lock+0x526/0xd70
[ 3413.701909][   T29]  ? rtnl_newlink+0xab5/0x20a0
[ 3413.708193][   T29]  ? __pfx___mutex_lock+0x10/0x10
[ 3413.713273][   T29]  ? __asan_memset+0x23/0x50
[ 3413.717965][   T29]  ? nla_strscpy+0x113/0x180
[ 3413.722603][   T29]  rtnl_newlink+0xab5/0x20a0
[ 3413.727298][   T29]  ? rtnl_newlink+0x431/0x20a0
[ 3413.732121][   T29]  ? rtnl_newlink+0x431/0x20a0
[ 3413.737034][   T29]  ? __pfx_rtnl_newlink+0x10/0x10
[ 3413.742115][   T29]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3413.747427][   T29]  ? __mutex_lock+0x526/0xd70
[ 3413.752156][   T29]  ? __pfx_rtnl_newlink+0x10/0x10
[ 3413.757304][   T29]  rtnetlink_rcv_msg+0x885/0x1040
[ 3413.762388][   T29]  ? rtnetlink_rcv_msg+0x208/0x1040
[ 3413.767695][   T29]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[ 3413.773193][   T29]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[ 3413.779422][   T29]  ? __pfx_validate_chain+0x10/0x10
[ 3413.784742][   T29]  ? __pfx_validate_chain+0x10/0x10
[ 3413.790060][   T29]  ? mark_lock+0x9a/0x350
[ 3413.794420][   T29]  ? __pfx_validate_chain+0x10/0x10
[ 3413.799703][   T29]  ? __lock_acquire+0x1345/0x1fd0
[ 3413.804960][   T29]  ? mark_lock+0x9a/0x350
[ 3413.809402][   T29]  ? __lock_acquire+0x1345/0x1fd0
[ 3413.814502][   T29]  netlink_rcv_skb+0x1e3/0x430
[ 3413.821283][   T29]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[ 3413.826884][   T29]  ? __pfx_netlink_rcv_skb+0x10/0x10
[ 3413.832238][   T29]  ? netlink_deliver_tap+0x2e/0x1b0
[ 3413.837528][   T29]  netlink_unicast+0x7ea/0x980
[ 3413.842359][   T29]  ? __pfx_netlink_unicast+0x10/0x10
[ 3413.847735][   T29]  ? __virt_addr_valid+0x44e/0x520
[ 3413.852885][   T29]  ? __phys_addr_symbol+0x2f/0x70
[ 3413.858022][   T29]  ? __check_object_size+0x4bb/0xa00
[ 3413.863348][   T29]  ? bpf_lsm_netlink_send+0x9/0x10
[ 3413.868542][   T29]  netlink_sendmsg+0xa3b/0xd70
[ 3413.873349][   T29]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 3413.878776][   T29]  ? aa_sock_msg_perm+0x91/0x160
[ 3413.883761][   T29]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 3413.889142][   T29]  ? security_socket_sendmsg+0x87/0xb0
[ 3413.894667][   T29]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 3413.900113][   T29]  __sock_sendmsg+0x221/0x270
[ 3413.904860][   T29]  __sys_sendto+0x3a4/0x4f0
[ 3413.909681][   T29]  ? __pfx___sys_sendto+0x10/0x10
[ 3413.914782][   T29]  ? __might_fault+0xa9/0x120
[ 3413.919671][   T29]  ? __might_fault+0xc5/0x120
[ 3413.924398][   T29]  __se_compat_sys_socketcall+0xb17/0x1430
[ 3413.931975][   T29]  ? __pfx___se_compat_sys_socketcall+0x10/0x10
[ 3413.938416][   T29]  ? syscall_enter_from_user_mode_prepare+0x7d/0xe0
[ 3413.945087][   T29]  ? lockdep_hardirqs_on+0x98/0x140
[ 3413.950430][   T29]  __do_fast_syscall_32+0xbd/0x120
[ 3413.955656][   T29]  ? exc_page_fault+0x587/0x870
[ 3413.960611][   T29]  do_fast_syscall_32+0x33/0x70
[ 3413.965518][   T29]  entry_SYSENTER_compat_after_hwframe+0x7c/0x86
[ 3413.971964][   T29] RIP: 0023:0xf726d579
[ 3413.976069][   T29] RSP: 002b:00000000f750e830 EFLAGS: 00000206 ORIG_RAX: 0000000000000066
[ 3413.984588][   T29] RAX: ffffffffffffffda RBX: 000000000000000b RCX: 00000000f750e844
[ 3413.992724][   T29] RDX: 0000000000000000 RSI: 00000000f7f13568 RDI: 00000000f73c3ff4
[ 3414.000849][   T29] RBP: 00000000f7f13568 R08: 0000000000000000 R09: 0000000000000000
[ 3414.009057][   T29] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 3414.017114][   T29] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 3414.025132][   T29]  </TASK>
[ 3414.028382][   T29] 
[ 3414.028382][   T29] Showing all locks held in the system:
[ 3414.036139][   T29] 1 lock held by khungtaskd/29:
[ 3414.042486][   T29]  #0: ffffffff8e130be0 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x55/0x2a0
[ 3414.052752][   T29] 1 lock held by dhcpcd/4732:
[ 3414.057701][   T29]  #0: ffffffff8f375e48 (rtnl_mutex){+.+.}-{3:3}, at: devinet_ioctl+0x2ce/0x1bc0
[ 3414.067047][   T29] 2 locks held by getty/4820:
[ 3414.071749][   T29]  #0: ffff88802a4da0a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70
[ 3414.081746][   T29]  #1: ffffc900031332f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0x6b4/0x1e10
[ 3414.092045][   T29] 3 locks held by kworker/1:7/5161:
[ 3414.097382][   T29]  #0: ffff888029819538 ((wq_completion)ipv6_addrconf){+.+.}-{0:0}, at: process_scheduled_works+0x825/0x1420
[ 3414.109107][   T29]  #1: ffffc900044ffd20 ((work_completion)(&(&net->ipv6.addr_chk_work)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x825/0x1420
[ 3414.123150][   T29]  #2: ffffffff8f375e48 (rtnl_mutex){+.+.}-{3:3}, at: addrconf_verify_work+0x19/0x30
[ 3414.132817][   T29] 5 locks held by kworker/u4:7/32199:
[ 3414.138613][   T29]  #0: ffff888015ea4938 ((wq_completion)netns){+.+.}-{0:0}, at: process_scheduled_works+0x825/0x1420
[ 3414.150330][   T29]  #1: ffffc90009a77d20 (net_cleanup_work){+.+.}-{0:0}, at: process_scheduled_works+0x825/0x1420
[ 3414.163427][   T29]  #2: ffffffff8f3698d0 (pernet_ops_rwsem){++++}-{3:3}, at: cleanup_net+0xf5/0xb90
[ 3414.173167][   T29]  #3: ffffffff8f375e48 (rtnl_mutex){+.+.}-{3:3}, at: default_device_exit_batch+0xe8/0x9d0
[ 3414.184069][   T29]  #4: ffffffff8e136440 (rcu_state.barrier_mutex){+.+.}-{3:3}, at: rcu_barrier+0x4c/0x550
[ 3414.194199][   T29] 3 locks held by kworker/0:2/28985:
[ 3414.199577][   T29]  #0: ffff888029819538 ((wq_completion)ipv6_addrconf){+.+.}-{0:0}, at: process_scheduled_works+0x825/0x1420
[ 3414.211253][   T29]  #1: ffffc9001303fd20 ((work_completion)(&(&net->ipv6.addr_chk_work)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x825/0x1420
[ 3414.225231][   T29]  #2: ffffffff8f375e48 (rtnl_mutex){+.+.}-{3:3}, at: addrconf_verify_work+0x19/0x30
[ 3414.234862][   T29] 3 locks held by kworker/1:1/25172:
[ 3414.240264][   T29]  #0: ffff888014c78938 ((wq_completion)events){+.+.}-{0:0}, at: process_scheduled_works+0x825/0x1420
[ 3414.251493][   T29]  #1: ffffc9000cfc7d20 ((linkwatch_work).work){+.+.}-{0:0}, at: process_scheduled_works+0x825/0x1420
[ 3414.262626][   T29]  #2: ffffffff8f375e48 (rtnl_mutex){+.+.}-{3:3}, at: linkwatch_event+0xe/0x60
[ 3414.271806][   T29] 3 locks held by kworker/1:2/25267:
[ 3414.277215][   T29]  #0: ffff888014c78938 ((wq_completion)events){+.+.}-{0:0}, at: process_scheduled_works+0x825/0x1420
[ 3414.289141][   T29]  #1: ffffc900143b7d20 (deferred_process_work){+.+.}-{0:0}, at: process_scheduled_works+0x825/0x1420
[ 3414.300375][   T29]  #2: ffffffff8f375e48 (rtnl_mutex){+.+.}-{3:3}, at: switchdev_deferred_process_work+0xe/0x20
[ 3414.313411][   T29] 1 lock held by syz-executor.4/25503:
[ 3414.319037][   T29]  #0: ffffffff8f375e48 (rtnl_mutex){+.+.}-{3:3}, at: rtnl_newlink+0xab5/0x20a0
[ 3414.328455][   T29] 1 lock held by syz-executor.1/25606:
[ 3414.333951][   T29]  #0: ffffffff8f375e48 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x82c/0x1040
[ 3414.343612][   T29] 1 lock held by syz-executor.1/25609:
[ 3414.349182][   T29]  #0: ffffffff8f375e48 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x82c/0x1040
[ 3414.358831][   T29] 1 lock held by syz-executor.1/25612:
[ 3414.364332][   T29]  #0: ffffffff8f375e48 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x82c/0x1040
[ 3414.373973][   T29] 2 locks held by syz-executor.1/25668:
[ 3414.379681][   T29]  #0: ffffffff8f3698d0 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x4c7/0x7b0
[ 3414.389236][   T29]  #1: ffffffff8f375e48 (rtnl_mutex){+.+.}-{3:3}, at: smc_pnet_net_init+0x10a/0x1e0
[ 3414.399505][   T29] 2 locks held by syz-executor.4/25675:
[ 3414.405066][   T29]  #0: ffffffff8f3698d0 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x4c7/0x7b0
[ 3414.414569][   T29]  #1: ffffffff8f375e48 (rtnl_mutex){+.+.}-{3:3}, at: smc_pnet_net_init+0x10a/0x1e0
[ 3414.424163][   T29] 1 lock held by syz-executor.3/25683:
[ 3414.429688][   T29]  #0: ffffffff8f375e48 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x82c/0x1040
[ 3414.439366][   T29] 1 lock held by syz-executor.3/25686:
[ 3414.444847][   T29]  #0: ffffffff8f375e48 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x82c/0x1040
[ 3414.454445][   T29] 1 lock held by syz-executor.3/25687:
[ 3414.460092][   T29]  #0: ffffffff8f375e48 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x82c/0x1040
[ 3414.469782][   T29] 1 lock held by syz-executor.0/25713:
[ 3414.475299][   T29]  #0: ffffffff8f375e48 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x82c/0x1040
[ 3414.484935][   T29] 1 lock held by syz-executor.0/25715:
[ 3414.490477][   T29]  #0: ffffffff8f375e48 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x82c/0x1040
[ 3414.500098][   T29] 1 lock held by syz-executor.0/25716:
[ 3414.505591][   T29]  #0: ffffffff8f375e48 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x82c/0x1040
[ 3414.516038][   T29] 2 locks held by syz-executor.3/25729:
[ 3414.521700][   T29]  #0: ffffffff8f3698d0 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x4c7/0x7b0
[ 3414.531198][   T29]  #1: ffffffff8f375e48 (rtnl_mutex){+.+.}-{3:3}, at: smc_pnet_net_init+0x10a/0x1e0
[ 3414.540752][   T29] 1 lock held by syz-executor.2/25734:
[ 3414.546212][   T29]  #0: ffffffff8f375e48 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x82c/0x1040
[ 3414.555889][   T29] 1 lock held by syz-executor.2/25735:
[ 3414.561442][   T29]  #0: ffffffff8f375e48 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x82c/0x1040
[ 3414.571076][   T29] 1 lock held by syz-executor.2/25736:
[ 3414.576664][   T29]  #0: ffffffff8f375e48 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x82c/0x1040
[ 3414.586316][   T29] 2 locks held by syz-executor.0/25741:
[ 3414.591897][   T29]  #0: ffffffff8f3698d0 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x4c7/0x7b0
[ 3414.601621][   T29]  #1: ffffffff8f375e48 (rtnl_mutex){+.+.}-{3:3}, at: smc_pnet_net_init+0x10a/0x1e0
[ 3414.611161][   T29] 2 locks held by syz-executor.1/25745:
[ 3414.617637][   T29]  #0: ffffffff8f3698d0 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x4c7/0x7b0
[ 3414.627223][   T29]  #1: ffffffff8f375e48 (rtnl_mutex){+.+.}-{3:3}, at: smc_pnet_net_init+0x10a/0x1e0
[ 3414.636843][   T29] 2 locks held by syz-executor.4/25749:
[ 3414.642408][   T29]  #0: ffffffff8f3698d0 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x4c7/0x7b0
[ 3414.651904][   T29]  #1: ffffffff8f375e48 (rtnl_mutex){+.+.}-{3:3}, at: smc_pnet_net_init+0x10a/0x1e0
[ 3414.661453][   T29] 2 locks held by syz-executor.2/25753:
[ 3414.667266][   T29]  #0: ffffffff8f3698d0 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x4c7/0x7b0
[ 3414.676809][   T29]  #1: ffffffff8f375e48 (rtnl_mutex){+.+.}-{3:3}, at: smc_pnet_net_init+0x10a/0x1e0
[ 3414.686365][   T29] 
[ 3414.688725][   T29] =============================================
[ 3414.688725][   T29] 
[ 3414.697544][   T29] NMI backtrace for cpu 0
[ 3414.701905][   T29] CPU: 0 PID: 29 Comm: khungtaskd Not tainted 6.8.0-rc7-syzkaller-00250-g137e0ec05aeb #0
[ 3414.711725][   T29] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3414.721787][   T29] Call Trace:
[ 3414.725073][   T29]  <TASK>
[ 3414.728027][   T29]  dump_stack_lvl+0x1e7/0x2e0
[ 3414.732735][   T29]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3414.737940][   T29]  ? __pfx__printk+0x10/0x10
[ 3414.742534][   T29]  ? vprintk_emit+0x607/0x720
[ 3414.747229][   T29]  ? __pfx_vprintk_emit+0x10/0x10
[ 3414.752259][   T29]  nmi_cpu_backtrace+0x49c/0x4d0
[ 3414.757225][   T29]  ? __pfx_nmi_cpu_backtrace+0x10/0x10
[ 3414.762714][   T29]  ? _printk+0xd5/0x120
[ 3414.766893][   T29]  ? __pfx__printk+0x10/0x10
[ 3414.771498][   T29]  ? __wake_up_klogd+0xcc/0x110
[ 3414.776361][   T29]  ? __pfx__printk+0x10/0x10
[ 3414.780965][   T29]  ? __rcu_read_unlock+0xa0/0x110
[ 3414.786002][   T29]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[ 3414.791997][   T29]  nmi_trigger_cpumask_backtrace+0x198/0x320
[ 3414.798027][   T29]  watchdog+0xfaf/0xff0
[ 3414.802202][   T29]  ? watchdog+0x1e9/0xff0
[ 3414.806568][   T29]  ? __pfx_watchdog+0x10/0x10
[ 3414.811277][   T29]  kthread+0x2ef/0x390
[ 3414.815358][   T29]  ? __pfx_watchdog+0x10/0x10
[ 3414.820139][   T29]  ? __pfx_kthread+0x10/0x10
[ 3414.824737][   T29]  ret_from_fork+0x4b/0x80
[ 3414.829168][   T29]  ? __pfx_kthread+0x10/0x10
[ 3414.833769][   T29]  ret_from_fork_asm+0x1b/0x30
[ 3414.838560][   T29]  </TASK>
[ 3414.841971][   T29] Sending NMI from CPU 0 to CPUs 1:
[ 3414.847261][    C1] NMI backtrace for cpu 1
[ 3414.847274][    C1] CPU: 1 PID: 22840 Comm: kworker/u4:3 Not tainted 6.8.0-rc7-syzkaller-00250-g137e0ec05aeb #0
[ 3414.847294][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3414.847306][    C1] Workqueue: bat_events batadv_mcast_mla_update
[ 3414.847395][    C1] RIP: 0010:batadv_mcast_mla_update+0x6f0/0x4030
[ 3414.847417][    C1] Code: 45 20 e5 4c 8b 25 40 b9 56 09 49 39 dc 0f 84 71 01 00 00 49 c7 c6 00 5c 89 94 49 8d 5c 24 10 48 89 d8 48 c1 e8 03 0f b6 04 08 <84> c0 0f 85 13 01 00 00 0f b6 1b bf 03 00 00 00 89 de e8 09 cf 60
[ 3414.847432][    C1] RSP: 0018:ffffc90012fdfa00 EFLAGS: 00000a02
[ 3414.847447][    C1] RAX: 0000000000000000 RBX: ffff888166a74010 RCX: dffffc0000000000
[ 3414.847461][    C1] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 3414.847472][    C1] RBP: ffffc90012fdfbf0 R08: ffffffff8b32a2f7 R09: 1ffffffff2591e84
[ 3414.847486][    C1] R10: dffffc0000000000 R11: fffffbfff2591e85 R12: ffff888166a74000
[ 3414.847499][    C1] R13: ffff888033044118 R14: ffffffff94895c00 R15: ffff8880234e2038
[ 3414.847513][    C1] FS:  0000000000000000(0000) GS:ffff8880b9500000(0000) knlGS:0000000000000000
[ 3414.847529][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 3414.847542][    C1] CR2: 00007fcff0cd2866 CR3: 000000000df32000 CR4: 00000000003506f0
[ 3414.847557][    C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 3414.847568][    C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 3414.847579][    C1] Call Trace:
[ 3414.847586][    C1]  <NMI>
[ 3414.847594][    C1]  ? nmi_cpu_backtrace+0x3c2/0x4d0
[ 3414.847615][    C1]  ? __pfx_lock_acquire+0x10/0x10
[ 3414.847643][    C1]  ? __pfx_nmi_cpu_backtrace+0x10/0x10
[ 3414.847663][    C1]  ? nmi_handle+0x2a/0x580
[ 3414.847715][    C1]  ? nmi_cpu_backtrace_handler+0xc/0x20
[ 3414.847736][    C1]  ? nmi_handle+0x14f/0x580
[ 3414.847753][    C1]  ? nmi_handle+0x2a/0x580
[ 3414.847775][    C1]  ? batadv_mcast_mla_update+0x6f0/0x4030
[ 3414.847794][    C1]  ? default_do_nmi+0x63/0x160
[ 3414.847815][    C1]  ? exc_nmi+0x123/0x1f0
[ 3414.847835][    C1]  ? end_repeat_nmi+0xf/0x60
[ 3414.847857][    C1]  ? batadv_mcast_mla_update+0x707/0x4030
[ 3414.847878][    C1]  ? batadv_mcast_mla_update+0x6f0/0x4030
[ 3414.847897][    C1]  ? batadv_mcast_mla_update+0x6f0/0x4030
[ 3414.847917][    C1]  ? batadv_mcast_mla_update+0x6f0/0x4030
[ 3414.847937][    C1]  </NMI>
[ 3414.847942][    C1]  <TASK>
[ 3414.847951][    C1]  ? batadv_mcast_mla_update+0x1a5/0x4030
[ 3414.847977][    C1]  ? __pfx_batadv_mcast_mla_update+0x10/0x10
[ 3414.847996][    C1]  ? __pfx_lock_acquire+0x10/0x10
[ 3414.848022][    C1]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3414.848050][    C1]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 3414.848083][    C1]  ? process_scheduled_works+0x825/0x1420
[ 3414.848110][    C1]  process_scheduled_works+0x913/0x1420
[ 3414.848151][    C1]  ? __pfx_process_scheduled_works+0x10/0x10
[ 3414.848182][    C1]  ? assign_work+0x364/0x3d0
[ 3414.848211][    C1]  worker_thread+0xa5f/0x1000
[ 3414.848249][    C1]  ? __pfx_worker_thread+0x10/0x10
[ 3414.848276][    C1]  kthread+0x2ef/0x390
[ 3414.848294][    C1]  ? __pfx_worker_thread+0x10/0x10
[ 3414.848319][    C1]  ? __pfx_kthread+0x10/0x10
[ 3414.848337][    C1]  ret_from_fork+0x4b/0x80
[ 3414.848360][    C1]  ? __pfx_kthread+0x10/0x10
[ 3414.848377][    C1]  ret_from_fork_asm+0x1b/0x30
[ 3414.848410][    C1]  </TASK>
[ 3414.852012][   T29] Kernel panic - not syncing: hung_task: blocked tasks
[ 3415.181213][   T29] CPU: 0 PID: 29 Comm: khungtaskd Not tainted 6.8.0-rc7-syzkaller-00250-g137e0ec05aeb #0
[ 3415.191083][   T29] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3415.201185][   T29] Call Trace:
[ 3415.204502][   T29]  <TASK>
[ 3415.207470][   T29]  dump_stack_lvl+0x1e7/0x2e0
[ 3415.212214][   T29]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3415.217463][   T29]  ? __pfx__printk+0x10/0x10
[ 3415.222109][   T29]  ? vscnprintf+0x5d/0x90
[ 3415.226480][   T29]  panic+0x349/0x860
[ 3415.230516][   T29]  ? nmi_trigger_cpumask_backtrace+0x244/0x320
[ 3415.236713][   T29]  ? __pfx_panic+0x10/0x10
[ 3415.241181][   T29]  ? tick_nohz_tick_stopped+0x7b/0xc0
[ 3415.246679][   T29]  ? __irq_work_queue_local+0x137/0x3e0
[ 3415.252272][   T29]  ? preempt_schedule_thunk+0x1a/0x30
[ 3415.257706][   T29]  ? nmi_trigger_cpumask_backtrace+0x244/0x320
[ 3415.263990][   T29]  ? nmi_trigger_cpumask_backtrace+0x2d4/0x320
[ 3415.270182][   T29]  ? nmi_trigger_cpumask_backtrace+0x2d9/0x320
[ 3415.276399][   T29]  watchdog+0xfee/0xff0
[ 3415.280623][   T29]  ? watchdog+0x1e9/0xff0
[ 3415.285089][   T29]  ? __pfx_watchdog+0x10/0x10
[ 3415.289888][   T29]  kthread+0x2ef/0x390
[ 3415.293996][   T29]  ? __pfx_watchdog+0x10/0x10
[ 3415.298689][   T29]  ? __pfx_kthread+0x10/0x10
[ 3415.303289][   T29]  ret_from_fork+0x4b/0x80
[ 3415.307722][   T29]  ? __pfx_kthread+0x10/0x10
[ 3415.312325][   T29]  ret_from_fork_asm+0x1b/0x30
[ 3415.317117][   T29]  </TASK>
[ 3415.320499][   T29] Kernel Offset: disabled
[ 3415.324827][   T29] Rebooting in 86400 seconds..