9007199254740988kB, failcnt 0
[ 3286.781811]  vmalloc+0x6b/0x90
[ 3286.781830]  ? sel_write_load+0x1de/0x470
[ 3286.781848]  sel_write_load+0x1de/0x470
[ 3286.788525] Memory cgroup stats for 
[ 3286.791201]  __vfs_write+0x114/0x810
[ 3286.791225]  ? sel_make_policy_nodes+0x1520/0x1520
[ 3286.800077] /syz5
[ 3286.803055]  ? kernel_read+0x120/0x120
[ 3286.803075]  ? __lock_is_held+0xb6/0x140
[ 3286.803098]  ? rcu_read_lock_sched_held+0x110/0x130
[ 3286.803110]  ? rcu_sync_lockdep_assert+0x6d/0xb0
[ 3286.803123]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 3286.803136]  ? __sb_start_write+0x1a9/0x360
[ 3286.803151]  vfs_write+0x20c/0x560
[ 3286.803175]  ksys_write+0x14f/0x2d0
[ 3286.803191]  ? __ia32_sys_read+0xb0/0xb0
[ 3286.803206]  ? do_syscall_64+0x26/0x620
[ 3286.803221]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 3286.803234]  ? do_syscall_64+0x26/0x620
[ 3286.803253]  __x64_sys_write+0x73/0xb0
[ 3286.803270]  do_syscall_64+0xfd/0x620
[ 3286.807971] :
[ 3286.812205]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 3286.812218] RIP: 0033:0x459829
[ 3286.812236] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 3286.814368]  cache:72KB
[ 3286.818164] RSP: 002b:00007f751e222c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 3286.818186] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000459829
[ 3286.818200] RDX: 0000000000000000 RSI: 00000000200007c0 RDI: 0000000000000003
[ 3286.822287]  rss:16KB
[ 3286.827256] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 3286.827265] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f751e2236d4
[ 3286.827275] R13: 00000000004c9a75 R14: 00000000004e1158 R15: 00000000ffffffff
[ 3286.839274] Mem-Info:
[ 3286.852473]  rss_huge:0KB
[ 3286.873044] active_anon:136091 inactive_anon:210 isolated_anon:0
[ 3286.873044]  active_file:18317 inactive_file:46548 isolated_file:0
[ 3286.873044]  unevictable:6 dirty:648 writeback:0 unstable:0
[ 3286.873044]  slab_reclaimable:101245 slab_unreclaimable:257254
[ 3286.873044]  mapped:59169 shmem:396 pagetables:3054 bounce:0
[ 3286.873044]  free:927582 free_pcp:1174 free_cma:0
[ 3286.885052] Node 0 active_anon:544352kB inactive_anon:840kB active_file:73084kB inactive_file:172088kB unevictable:24kB isolated(anon):0kB isolated(file):0kB mapped:236676kB dirty:2544kB writeback:0kB shmem:1584kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 186368kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 3286.914228] Node 1 active_anon:12kB inactive_anon:0kB active_file:184kB inactive_file:14104kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:48kB writeback:0kB shmem:0kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 3286.914236] Node 0 DMA free:10444kB min:220kB low:272kB high:324kB active_anon:2048kB inactive_anon:0kB active_file:0kB inactive_file:80kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 3286.914272] lowmem_reserve[]: 0 2555 2557 2557
[ 3286.914300] Node 0 DMA32 free:67616kB min:36248kB low:45308kB high:54368kB active_anon:542304kB inactive_anon:840kB active_file:73084kB inactive_file:172008kB unevictable:24kB writepending:2544kB present:3129332kB managed:2619972kB mlocked:24kB kernel_stack:8928kB pagetables:12216kB bounce:0kB free_pcp:2260kB local_pcp:956kB free_cma:0kB
[ 3286.914346] lowmem_reserve[]:
[ 3286.923030]  shmem:12KB
[ 3286.946434]  0
[ 3286.961285]  mapped_file:132KB
[ 3287.003872]  0
[ 3287.036147]  dirty:0KB
[ 3287.057559]  2
[ 3287.089307]  writeback:0KB
[ 3287.118525]  2
[ 3287.127413]  swap:0KB
[ 3287.130944]  inactive_anon:0KB
[ 3287.133905] Node 0 
[ 3287.137264]  active_anon:132KB
[ 3287.138160] Normal free:12kB min:32kB low:40kB high:48kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:2428kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 3287.139985]  inactive_file:0KB
[ 3287.142387] lowmem_reserve[]:
[ 3287.149473]  active_file:0KB
[ 3287.151527]  0
[ 3287.187976]  unevictable:0KB
[ 3287.193128] Memory cgroup out of memory: Kill process 21749 (syz-executor.5) score 1103 or sacrifice child
[ 3287.203190]  0 0 0
[ 3287.205457] Node 1 Normal free:3632256kB min:53608kB low:67008kB high:80408kB active_anon:12kB inactive_anon:0kB active_file:184kB inactive_file:14104kB unevictable:0kB writepending:48kB present:3932160kB managed:3870184kB mlocked:0kB kernel_stack:1216kB pagetables:0kB bounce:0kB free_pcp:2444kB local_pcp:1456kB free_cma:0kB
[ 3287.211189] Killed process 21749 (syz-executor.5) total-vm:72580kB, anon-rss:108kB, file-rss:34816kB, shmem-rss:0kB
[ 3287.234766] lowmem_reserve[]: 0 0 0 0
[ 3287.234802] Node 0 DMA: 9*4kB (UME) 2*8kB (U) 6*16kB (U) 10*32kB (UME) 4*64kB (U) 4*128kB (UM) 2*256kB (ME) 1*512kB (M) 2*1024kB (ME) 3*2048kB (UME) 0*4096kB = 10452kB
04:12:54 executing program 5:
r0 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000240)='/dev/dlm-control\x00', 0x40000, 0x0)
ioctl$SNDRV_TIMER_IOCTL_GINFO(r0, 0xc0f85403, &(0x7f0000000280)={{0xffffffffffffffff, 0x0, 0x5830000000000, 0x3, 0x4}, 0xf177, 0xb431, 'id0\x00', 'timer1\x00', 0x0, 0x8b4, 0x81, 0x0, 0x445})
shmat(0x0, &(0x7f0000ffc000/0x4000)=nil, 0x3000)
mbind(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x2, &(0x7f0000000000)=0xffff, 0x2, 0x0)
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0x20b, &(0x7f0000000040)=[{&(0x7f0000000540)="2e000000220005000000c187185095cf0400b0eba0b4d65cfffffff051894d5d1dac00"/46, 0x2e}], 0x1}, 0x0)
r2 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000080)='/dev/qat_adf_ctl\x00', 0x200, 0x0)
ioctl$DRM_IOCTL_ADD_CTX(0xffffffffffffffff, 0xc0086420, &(0x7f00000000c0)={<r3=>0x0})
ioctl$DRM_IOCTL_GET_SAREA_CTX(r2, 0xc010641d, &(0x7f0000000200)={r3, &(0x7f0000000100)=""/74})

04:12:54 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"/968]}, 0x440)

04:12:54 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

04:12:54 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x308}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

04:12:54 executing program 2:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000240)={0x0, <r0=>0x0})
fchdir(0xffffffffffffffff)
sendmmsg(r0, &(0x7f0000008600)=[{{0x0, 0x0, &(0x7f0000003140)}}, {{&(0x7f00000072c0)=@un=@file={0x1, './file0\x00'}, 0xa, &(0x7f0000007380), 0x0, &(0x7f0000000600)}}], 0x2, 0x0)

04:12:54 executing program 0:
r0 = openat$selinux_load(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/load\x00', 0x2, 0x0)
write$selinux_load(r0, &(0x7f00000007c0)=ANY=[@ANYBLOB="8cff7cf9080000005345204c696e757816000000d96927940000fffffff82000400000000004000000000000"], 0x2c)

[ 3287.234942] Node 0 DMA32: 3914*4kB (UMEH) 1625*8kB (UMEH) 384*16kB (UMEH) 246*32kB (UMEH) 100*64kB (UME) 27*128kB (UM) 6*256kB (U) 9*512kB (U) 3*1024kB (U) 3*2048kB (M) 0*4096kB = 67888kB
[ 3287.235078] Node 0 Normal: 1*4kB (U) 1*8kB (U) 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 12kB
[ 3287.235184] Node 1 Normal: 316*4kB (UM) 4028*8kB (UME) 3841*16kB (UME) 2227*32kB (UME) 662*64kB (UM) 192*128kB (UM) 112*256kB (UM) 105*512kB (UE) 81*1024kB (UM) 57*2048kB (UME) 761*4096kB (UM) = 3632320kB
[ 3287.235341] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 3287.235353] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 3287.235366] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 3287.235378] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 3287.235385] 65253 total pagecache pages
[ 3287.235403] 0 pages in swap cache
[ 3287.235413] Swap cache stats: add 0, delete 0, find 0/0
[ 3287.235419] Free swap  = 0kB
[ 3287.235425] Total swap = 0kB
[ 3287.235432] 1965979 pages RAM
[ 3287.235438] 0 pages HighMem/MovableOnly
[ 3287.235444] 338856 pages reserved
[ 3287.235450] 0 pages cma reserved
04:12:54 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"/968]}, 0x440)

[ 3287.284796] oom_reaper: reaped process 21749 (syz-executor.5), now anon-rss:0kB, file-rss:33856kB, shmem-rss:0kB
[ 3287.420639] syz-executor.5 invoked oom-killer: gfp_mask=0x7080c0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), nodemask=(null), order=3, oom_score_adj=1000
[ 3287.434528] SELinux: failed to load policy
[ 3287.450742] syz-executor.5 cpuset=syz5 mems_allowed=0-1
[ 3287.456984] CPU: 0 PID: 21986 Comm: syz-executor.5 Not tainted 4.19.66 #40
[ 3287.464011] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3287.473392] Call Trace:
[ 3287.475992]  dump_stack+0x172/0x1f0
[ 3287.479644]  dump_header+0x15e/0xa55
[ 3287.483373]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 3287.488492]  ? ___ratelimit+0x60/0x595
[ 3287.492383]  ? do_raw_spin_unlock+0x57/0x270
[ 3287.496821]  oom_kill_process.cold+0x10/0x6ef
[ 3287.501345]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 3287.506898]  ? task_will_free_mem+0x139/0x6e0
[ 3287.511413]  ? find_held_lock+0x35/0x130
[ 3287.515486]  out_of_memory+0x936/0x12d0
[ 3287.515502]  ? lock_downgrade+0x810/0x810
[ 3287.515519]  ? oom_killer_disable+0x280/0x280
[ 3287.515531]  ? find_held_lock+0x35/0x130
[ 3287.515558]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 3287.515574]  ? memcg_event_wake+0x230/0x230
[ 3287.515594]  ? do_raw_spin_unlock+0x57/0x270
[ 3287.515611]  ? _raw_spin_unlock+0x2d/0x50
[ 3287.515627]  try_charge+0x1028/0x15b0
[ 3287.537169]  ? find_held_lock+0x35/0x130
[ 3287.537195]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 3287.537215]  ? get_mem_cgroup_from_mm+0x139/0x320
[ 3287.545938]  ? find_held_lock+0x35/0x130
[ 3287.545957]  ? get_mem_cgroup_from_mm+0x139/0x320
[ 3287.545983]  memcg_kmem_charge_memcg+0x7c/0x130
[ 3287.545997]  ? memcg_kmem_put_cache+0xb0/0xb0
[ 3287.546016]  ? get_mem_cgroup_from_mm+0x156/0x320
[ 3287.546033]  memcg_kmem_charge+0x136/0x370
[ 3287.546052]  __alloc_pages_nodemask+0x3c3/0x750
[ 3287.546070]  ? __alloc_pages_slowpath+0x2870/0x2870
[ 3287.546086]  ? lockdep_hardirqs_on+0x415/0x5d0
[ 3287.546102]  ? trace_hardirqs_on+0x67/0x220
[ 3287.546116]  ? kasan_check_read+0x11/0x20
[ 3287.546136]  copy_process.part.0+0x3e0/0x7a30
[ 3287.622105]  ? finish_task_switch+0x146/0x780
[ 3287.626621]  ? find_held_lock+0x35/0x130
[ 3287.630697]  ? finish_task_switch+0x146/0x780
[ 3287.635208]  ? _raw_spin_unlock_irq+0x28/0x90
[ 3287.639724]  ? __cleanup_sighand+0x70/0x70
[ 3287.644092]  ? _raw_spin_unlock_irq+0x5e/0x90
[ 3287.648596]  ? finish_task_switch+0x146/0x780
[ 3287.653115]  ? finish_task_switch+0x118/0x780
[ 3287.657635]  ? __schedule+0x86e/0x1dc0
[ 3287.661548]  _do_fork+0x257/0xfd0
[ 3287.665028]  ? fork_idle+0x1d0/0x1d0
[ 3287.668758]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 3287.673537]  ? retint_kernel+0x2d/0x2d
[ 3287.677443]  __x64_sys_clone+0xbf/0x150
[ 3287.681435]  ? do_syscall_64+0xed/0x620
[ 3287.685414]  do_syscall_64+0xfd/0x620
[ 3287.689208]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 3287.694391] RIP: 0033:0x45c1f9
[ 3287.697705] Code: ff 48 85 f6 0f 84 27 8e fb ff 48 83 ee 10 48 89 4e 08 48 89 3e 48 89 d7 4c 89 c2 4d 89 c8 4c 8b 54 24 08 b8 38 00 00 00 0f 05 <48> 85 c0 0f 8c fe 8d fb ff 74 01 c3 31 ed 48 f7 c7 00 00 01 00 75
[ 3287.716596] RSP: 002b:00007ffd531651c8 EFLAGS: 00000202 ORIG_RAX: 0000000000000038
[ 3287.724302] RAX: ffffffffffffffda RBX: 00007f09e67fe700 RCX: 000000000045c1f9
04:12:54 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

04:12:54 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="00000000004000000000000000000000000000000000000000000000000000feffff070000000000ffffffff020000001d00000001000000080676657468305f746f5f627269646765006e7230000000000000000000000000006772653000000000000000000000000076657468315f746f5f626f6e64000000aaaaaaaaaaaa000000000000aaaaaaaaaaaa00000000000000007000000070000000a80000006172707265706c790000000000000000000000000000000000000000000000001000000000000000aaaaaaaaaaaa0000feffffff0000000009000000000000000000697064647030000000000000000000006272696467655f736c6176655f3100000000000000000000000000000000000067726530000000000000000000000000ffffffffffff0000000000000000000000000000000000000000e0000000180100005001000072617465657374000000000000a3000000000000000000000000000000000000480000000000000064756d6d79300000000000000000000073797a5f74756e0000000ab941773a25a4462a99832900000000000000000000200000000000000000000000000000000000000000000000736e6174000000000000000000000000000000000000000000000000000000001000000000000000aaaaaaaaaaaa000000000000000000006d61726b0000000000000000000000000000000000000000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000002000000feffffff01000000110000000000000000006272696467655f736c6176655f3100000000000000000000000000749638e0006c6f00000000000000000000000000000080616d300000000000000000000000aaaaaaaaaa00000000000000aaaaaaaaaaaa0000000000000000a00000000801000040010000636f6e6e6c6162656c000000000000000000000000000000000000000000000008000000000000000000000000000000434c4153534946590000000000000000000000000000000000ff07000000000008000000000000000000000000000000736e617400000000000000000000000000000000000000000001000000000000100000000000000000000000000000000000000000000000736e6174000000000000000000000000000000000000000000000000000000001000000000001400aaaaaaaaaabb00"/968]}, 0x440)

04:12:54 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x500}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

04:12:54 executing program 2:
r0 = socket$inet6(0xa, 0x6, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x5, &(0x7f0000000380))
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
ioctl$VT_SETMODE(0xffffffffffffffff, 0x5602, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x3, 0x9})
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, &(0x7f0000000140)="b805000000b9510000000f01c10f46a78900000066ba2100b067ee66ba4100edb9800000c00f3235004000000f30c4c271de9d0000000066b808008ed0660f38806f000f011c2666b8bf008ee0", 0x4d}], 0x1, 0x0, 0x0, 0x0)
ioctl$sock_inet_SIOCGIFBRDADDR(r0, 0x8919, &(0x7f0000000000)={'teql0\x00', {0x2, 0x4e23, @remote}})
bind$nfc_llcp(0xffffffffffffffff, &(0x7f0000000200)={0x27, 0x0, 0x2, 0x6, 0x5, 0x5, "56f8eb732fb730b3543da2068e379262c3c786e824b917142f64941a2d91bd8accc868a9c9843f0f584db2f3df5ede5196a63bbbfbf57ce8f316a81365a1e2", 0x24}, 0x60)
ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000bf7000)={0x200000000000, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_CREATE_PIT2(r3, 0x4040ae77, &(0x7f00000001c0))
openat$vfio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/vfio/vfio\x00', 0x0, 0x0)
ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000380)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4cb]})
openat$vsock(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vsock\x00', 0x0, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

04:12:54 executing program 0:
r0 = openat$selinux_load(0xffffffffffffff9c, &(0x7f00000000c0)='/selinux/load\x00', 0x2, 0x0)
prctl$PR_MCE_KILL(0x35, 0x0, 0x4)
fstat(0xffffffffffffffff, 0x0)
openat$apparmor_task_current(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/attr/current\x00', 0x2, 0x0)
mount$bpf(0x20000000, 0x0, 0x0, 0x2001001, 0x0)
getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, &(0x7f0000000240)={{{@in=@multicast2, @in=@broadcast, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r1=>0x0}}, {{@in=@local}, 0x0, @in6=@empty}}, &(0x7f0000000180)=0xe8)
quotactl(0x3, &(0x7f0000000140)='./file0\x00', r1, &(0x7f0000000400)="7067aa28cb1e1b69b4b47ea9049b4e7e584c08c8f7332bd1549039b42292492170e1e6c5b49da50dfc959f8a104ff87bc3efe606a31c80b1d6c4f9bce64407c31f77040116f9fcfa60a7853126b3033ab9d91d9cc9346df6bb33e6ce6a0ae2fd3e49e8072d6178c6c8d19387fd1f6e6108045ad58b2e64")
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$OBJ_GET_PROG(0x7, &(0x7f0000000200)={0x0}, 0x10)
getrlimit(0xa, &(0x7f00000003c0))
syz_open_dev$vbi(&(0x7f0000000000)='/dev/vbi#\x00', 0x1, 0x2)
syz_open_dev$usb(&(0x7f0000000040)='/dev/bus/usb/00#/00#\x00', 0x0, 0x400)
ioctl$VIDIOC_G_CROP(0xffffffffffffffff, 0xc014563b, &(0x7f0000000340)={0x0, {0x8, 0x8, 0xfffffffffffffff8, 0xfffffffffffffff7}})
write$selinux_load(r0, &(0x7f0000000100)=ANY=[@ANYBLOB="8cff7cf9080000005345204c696e757816000000d96927944900fffffff820004000000000040000000000008a02"], 0x2c)

[ 3287.731657] RDX: 00007f09e67fe9d0 RSI: 00007f09e67fddb0 RDI: 00000000003d0f00
[ 3287.738918] RBP: 00007ffd531653e0 R08: 00007f09e67fe700 R09: 00007f09e67fe700
[ 3287.746174] R10: 00007f09e67fe9d0 R11: 0000000000000202 R12: 0000000000000000
[ 3287.753441] R13: 00007ffd5316527f R14: 00007f09e67fe9c0 R15: 000000000075bf2c
[ 3287.812842] Task in /syz5 killed as a result of limit of /syz5
[ 3287.840272] memory: usage 307200kB, limit 307200kB, failcnt 7325
[ 3287.886163] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3287.907417] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3287.915664] Memory cgroup stats for /syz5: cache:72KB rss:16KB rss_huge:0KB shmem:12KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:132KB inactive_file:0KB active_file:0KB unevictable:0KB
[ 3287.943065] Memory cgroup out of memory: Kill process 21986 (syz-executor.5) score 1103 or sacrifice child
[ 3287.981201] Killed process 21986 (syz-executor.5) total-vm:72580kB, anon-rss:108kB, file-rss:34816kB, shmem-rss:0kB
[ 3288.039436] oom_reaper: reaped process 21986 (syz-executor.5), now anon-rss:0kB, file-rss:34820kB, shmem-rss:0kB
04:12:55 executing program 5:
r0 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000240)='/dev/dlm-control\x00', 0x40000, 0x0)
ioctl$SNDRV_TIMER_IOCTL_GINFO(r0, 0xc0f85403, &(0x7f0000000280)={{0xffffffffffffffff, 0x0, 0x5830000000000, 0x3, 0x4}, 0xf177, 0xb431, 'id0\x00', 'timer1\x00', 0x0, 0x8b4, 0x81, 0x0, 0x445})
shmat(0x0, &(0x7f0000ffc000/0x4000)=nil, 0x3000)
mbind(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x2, &(0x7f0000000000)=0xffff, 0x2, 0x0)
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0x20b, &(0x7f0000000040)=[{&(0x7f0000000540)="2e000000220005000000c187185095cf0400b0eba0b4d65cfffffffd51894d5d1dac00"/46, 0x2e}], 0x1}, 0x0)
r2 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000080)='/dev/qat_adf_ctl\x00', 0x200, 0x0)
ioctl$DRM_IOCTL_ADD_CTX(0xffffffffffffffff, 0xc0086420, &(0x7f00000000c0)={<r3=>0x0})
ioctl$DRM_IOCTL_GET_SAREA_CTX(r2, 0xc010641d, &(0x7f0000000200)={r3, &(0x7f0000000100)=""/74})

04:12:55 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

04:12:55 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x600}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

04:12:55 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"/968]}, 0x440)

04:12:55 executing program 0:
r0 = openat$selinux_load(0xffffffffffffff9c, &(0x7f00000000c0)='/selinux/load\x00', 0x2, 0x0)
getresuid(&(0x7f0000000080)=<r1=>0x0, &(0x7f0000000100), &(0x7f0000000140))
getsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000000180)={{{@in6=@mcast1, @in6=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r2=>0x0}}, {{@in=@broadcast}, 0x0, @in6=@mcast1}}, &(0x7f0000000280)=0xe8)
getresuid(&(0x7f00000002c0), &(0x7f0000000300), &(0x7f0000000340)=<r3=>0x0)
getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, &(0x7f0000000380)={{{@in6=@mcast2, @in6=@dev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r4=>0x0}}, {{@in=@multicast2}, 0x0, @in6=@empty}}, &(0x7f0000000480)=0xe8)
r5 = getegid()
r6 = getegid()
r7 = getegid()
getresgid(&(0x7f00000004c0), &(0x7f0000000500), &(0x7f0000000540)=<r8=>0x0)
r9 = getegid()
setxattr$system_posix_acl(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='system.posix_acl_access\x00', &(0x7f0000000580)={{}, {0x1, 0x4}, [{0x2, 0x1, r1}, {0x2, 0x4, r2}, {0x2, 0x4, r3}, {0x2, 0x3, r4}], {0x4, 0x4}, [{0x8, 0x0, r5}, {0x8, 0x3, r6}, {0x8, 0x1, r7}, {0x8, 0x2, r8}, {0x8, 0x2, r9}], {0x10, 0x4}, {0x20, 0x2}}, 0x6c, 0x3)
write$selinux_load(r0, &(0x7f00000007c0)=ANY=[@ANYBLOB="8cff7cf9080000005345204c696e757816000000d96927940000fffffff82000400000000004000000000000"], 0x2c)

04:12:55 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"/968]}, 0x440)

04:12:55 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x700}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

04:12:55 executing program 0:
r0 = openat$selinux_load(0xffffffffffffff9c, &(0x7f00000000c0)='/selinux/load\x00', 0x2, 0x0)
r1 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vga_arbiter\x00', 0xc0, 0x0)
getsockopt$bt_rfcomm_RFCOMM_LM(r1, 0x12, 0x3, &(0x7f0000000040), &(0x7f0000000080)=0x4)
write$selinux_load(r0, &(0x7f00000007c0)=ANY=[@ANYBLOB="8cff7cf9080000005345204c696e757816000000d96927940000fffffff82000400000000004000000000000"], 0x2c)

04:12:55 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

[ 3288.256360] syz-executor.5 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 3288.298553] syz-executor.5 cpuset=syz5 mems_allowed=0-1
[ 3288.314035] CPU: 0 PID: 22130 Comm: syz-executor.5 Not tainted 4.19.66 #40
[ 3288.321064] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3288.321070] Call Trace:
[ 3288.321094]  dump_stack+0x172/0x1f0
[ 3288.321115]  dump_header+0x15e/0xa55
[ 3288.336681]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 3288.345480]  ? ___ratelimit+0x60/0x595
[ 3288.345495]  ? do_raw_spin_unlock+0x57/0x270
[ 3288.345515]  oom_kill_process.cold+0x10/0x6ef
[ 3288.345535]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 3288.345548]  ? task_will_free_mem+0x139/0x6e0
[ 3288.345570]  out_of_memory+0x936/0x12d0
[ 3288.345586]  ? lock_downgrade+0x810/0x810
[ 3288.345604]  ? oom_killer_disable+0x280/0x280
[ 3288.380983]  ? find_held_lock+0x35/0x130
[ 3288.385073]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 3288.389932]  ? memcg_event_wake+0x230/0x230
[ 3288.394273]  ? do_raw_spin_unlock+0x57/0x270
[ 3288.398700]  ? _raw_spin_unlock+0x2d/0x50
[ 3288.402953]  try_charge+0x1028/0x15b0
[ 3288.402970]  ? find_held_lock+0x35/0x130
[ 3288.402990]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 3288.403011]  ? kasan_check_read+0x11/0x20
[ 3288.403033]  ? get_mem_cgroup_from_mm+0x156/0x320
[ 3288.403051]  mem_cgroup_try_charge+0x259/0x6b0
[ 3288.403071]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 3288.403089]  __handle_mm_fault+0x1e50/0x3f80
[ 3288.438702]  ? vmf_insert_mixed_mkwrite+0x90/0x90
[ 3288.443581]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 3288.448263]  handle_mm_fault+0x1b5/0x690
[ 3288.452331]  __do_page_fault+0x62a/0xe90
[ 3288.456402]  ? vmalloc_fault+0x740/0x740
[ 3288.460470]  ? trace_hardirqs_off_caller+0x65/0x220
[ 3288.465490]  ? trace_hardirqs_on_caller+0x6a/0x220
[ 3288.470422]  ? page_fault+0x8/0x30
[ 3288.473971]  do_page_fault+0x71/0x57d
[ 3288.477773]  ? page_fault+0x8/0x30
[ 3288.481313]  page_fault+0x1e/0x30
[ 3288.484772] RIP: 0033:0x45c1dd
04:12:55 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x803}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

[ 3288.487994] Code: 5b 5d f3 c3 66 0f 1f 84 00 00 00 00 00 48 c7 c0 ea ff ff ff 48 85 ff 0f 84 30 8e fb ff 48 85 f6 0f 84 27 8e fb ff 48 83 ee 10 <48> 89 4e 08 48 89 3e 48 89 d7 4c 89 c2 4d 89 c8 4c 8b 54 24 08 b8
[ 3288.507104] RSP: 002b:00007ffd531651c8 EFLAGS: 00010202
[ 3288.512468] RAX: ffffffffffffffea RBX: 00007f09e67fe700 RCX: 00007f09e67fe700
[ 3288.519748] RDX: 00000000003d0f00 RSI: 00007f09e67fddb0 RDI: 0000000000410560
[ 3288.527018] RBP: 00007ffd531653e0 R08: 00007f09e67fe9d0 R09: 00007f09e67fe700
[ 3288.534286] R10: 00007f09e67fddc0 R11: 0000000000000246 R12: 0000000000000000
[ 3288.541578] R13: 00007ffd5316527f R14: 00007f09e67fe9c0 R15: 000000000075bf2c
[ 3288.604995] Task in /syz5 killed as a result of limit of /syz5
[ 3288.634201] memory: usage 307200kB, limit 307200kB, failcnt 7357
[ 3288.647391] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
04:12:55 executing program 2:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x0, 0x0)
mkdir(0x0, 0x0)
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
mount$bpf(0x20000000, &(0x7f00000000c0)='./file0\x00', 0x0, 0x2001001, 0x0)
r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
shmctl$SHM_UNLOCK(0x0, 0xc)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r2 = openat$fuse(0xffffffffffffff9c, &(0x7f00000004c0)='/dev/fuse\x00', 0x2, 0x0)
mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000240)={{'fd', 0x3d, r2}, 0x2c, {'rootmode', 0x3d, 0xafff}, 0x2c, {'user_id'}, 0x2c, {'group_id'}})
syz_genetlink_get_family_id$net_dm(&(0x7f00000002c0)='NET_DM\x00')
fcntl$setlease(0xffffffffffffffff, 0x400, 0x1)
syz_genetlink_get_family_id$tipc2(0x0)
r3 = dup(r1)
setns(r3, 0x20000)
umount2(&(0x7f0000000600)='./file0\x00', 0x9)
pivot_root(&(0x7f0000000140)='./file0\x00', &(0x7f0000000100)='./file0\x00')
sendmsg$TIPC_NL_UDP_GET_REMOTEIP(0xffffffffffffffff, &(0x7f0000000640)={&(0x7f0000000540), 0xc, &(0x7f00000005c0)={0xffffffffffffffff}, 0x1, 0x0, 0x0, 0xc840}, 0x0)
syz_genetlink_get_family_id$tipc(&(0x7f0000000500)='TIPC\x00')
syz_genetlink_get_family_id$tipc2(0x0)
open_by_handle_at(r0, &(0x7f0000000740)=ANY=[@ANYBLOB="0f0000000300000081e1988e732792198f216e52980a690487050bea4631febeea5a16c3d955969bd0e2b0cf25ff9f1d8c6fc90761bd1ce87fa3930a13fa89ab5940cc1214169a2374bbb23d7c79fc950408bf37f4f378c652c48beb0a3a422108e60dc3d294a74914425eda69c494b257dd8370a245eb73beef251ef47da419ea589831cad08f336dbe6ff8f0157f62760a1468436736b372b34184f53ff46c5bda6426361f124b6462166448e4b60e191409f6f50304d53e4bb547272f2eef6cb2be95937c51b3686541752670a9ecf132ef01d67363438ad02563113567baea1f9c340c0246465e349291aefba8e623b535bdc6bc639da0a52cac00e7dc171f7f6cede5333dbdff11f22fdcc8198c456e0b9135123e382e88d0b1e55214c4f569cce5c6d116ab1b90"], 0x0)
write$FUSE_NOTIFY_POLL(r2, &(0x7f00000001c0)={0x18, 0x1, 0x0, {0x3ff}}, 0x18)
sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000340)={0x0}}, 0x8000)
sendmsg$TIPC_NL_BEARER_ENABLE(r2, &(0x7f0000000580)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x1}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x10}, 0x0)
sync()
prctl$PR_SET_SPECULATION_CTRL(0x35, 0x0)
inotify_add_watch(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x4000082)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000240)=ANY=[], 0x30f)

04:12:55 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="00000000004000000000000000000000000000000000000000000000000000000000ff0000000000ffffffff020000001d00000001000000080676657468305f746f5f627269646765006e7230000000000000000000000000006772653000000000000000000000000076657468315f746f5f626f6e64000000aaaaaaaaaaaa000000000000aaaaaaaaaaaa00000000000000007000000070000000a80000006172707265706c790000000000000000000000000000000000000000000000001000000000000000aaaaaaaaaaaa0000feffffff0000000009000000000000000000697064647030000000000000000000006272696467655f736c6176655f3100000000000000000000000000000000000067726530000000000000000000000000ffffffffffff0000000000000000000000000000000000000000e0000000180100005001000072617465657374000000000000a3000000000000000000000000000000000000480000000000000064756d6d79300000000000000000000073797a5f74756e0000000ab941773a25a4462a99832900000000000000000000200000000000000000000000000000000000000000000000736e6174000000000000000000000000000000000000000000000000000000001000000000000000aaaaaaaaaaaa000000000000000000006d61726b0000000000000000000000000000000000000000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000002000000feffffff01000000110000000000000000006272696467655f736c6176655f3100000000000000000000000000749638e0006c6f00000000000000000000000000000080616d300000000000000000000000aaaaaaaaaa00000000000000aaaaaaaaaaaa0000000000000000a00000000801000040010000636f6e6e6c6162656c000000000000000000000000000000000000000000000008000000000000000000000000000000434c4153534946590000000000000000000000000000000000ff07000000000008000000000000000000000000000000736e617400000000000000000000000000000000000000000001000000000000100000000000000000000000000000000000000000000000736e6174000000000000000000000000000000000000000000000000000000001000000000001400aaaaaaaaaabb00"/968]}, 0x440)

[ 3288.661038] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3288.668872] Memory cgroup stats for /syz5: cache:72KB rss:16KB rss_huge:0KB shmem:12KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:128KB inactive_file:0KB active_file:0KB unevictable:0KB
[ 3288.738712] Memory cgroup out of memory: Kill process 22130 (syz-executor.5) score 1103 or sacrifice child
[ 3288.749243] Killed process 22130 (syz-executor.5) total-vm:72580kB, anon-rss:108kB, file-rss:34816kB, shmem-rss:0kB
[ 3288.761142] oom_reaper: reaped process 22130 (syz-executor.5), now anon-rss:0kB, file-rss:34820kB, shmem-rss:0kB
04:12:55 executing program 5:
r0 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000240)='/dev/dlm-control\x00', 0x40000, 0x0)
ioctl$SNDRV_TIMER_IOCTL_GINFO(r0, 0xc0f85403, &(0x7f0000000280)={{0xffffffffffffffff, 0x0, 0x5830000000000, 0x3, 0x4}, 0xf177, 0xb431, 'id0\x00', 'timer1\x00', 0x0, 0x8b4, 0x81, 0x0, 0x445})
shmat(0x0, &(0x7f0000ffc000/0x4000)=nil, 0x3000)
mbind(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x2, &(0x7f0000000000)=0xffff, 0x2, 0x0)
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0x20b, &(0x7f0000000040)=[{&(0x7f0000000540)="2e000000220005000000c187185095cf0400b0eba0b4d65c00000fff51894d5d1dac00"/46, 0x2e}], 0x1}, 0x0)
r2 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000080)='/dev/qat_adf_ctl\x00', 0x200, 0x0)
ioctl$DRM_IOCTL_ADD_CTX(0xffffffffffffffff, 0xc0086420, &(0x7f00000000c0)={<r3=>0x0})
ioctl$DRM_IOCTL_GET_SAREA_CTX(r2, 0xc010641d, &(0x7f0000000200)={r3, &(0x7f0000000100)=""/74})

04:12:55 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x3, 0x5}}}]}, 0x30}}, 0x0)

04:12:55 executing program 0:
r0 = openat$selinux_load(0xffffffffffffff9c, &(0x7f00000000c0)='/selinux/load\x00', 0x2, 0x0)
write$selinux_load(r0, &(0x7f00000007c0)=ANY=[@ANYBLOB="8cff7cf9080000005345204c696e757816000000d96927940000fffffff82000400000000004000000000000"], 0x2c)
dup3(r0, r0, 0x80000)

04:12:55 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0xa00}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

04:12:55 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"/968]}, 0x440)

[ 3288.855476] sel_write_load: 4 callbacks suppressed
[ 3288.855484] SELinux: failed to load policy
[ 3288.866258] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'.
04:12:55 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0xc00}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

[ 3288.939603] syz-executor.5 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
04:12:55 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0xc, 0x5}}}]}, 0x30}}, 0x0)

[ 3288.983914] syz-executor.5 cpuset=syz5 mems_allowed=0-1
[ 3288.989606] CPU: 1 PID: 22167 Comm: syz-executor.5 Not tainted 4.19.66 #40
[ 3288.996634] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3289.006084] Call Trace:
[ 3289.008691]  dump_stack+0x172/0x1f0
[ 3289.012336]  dump_header+0x15e/0xa55
[ 3289.016072]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 3289.021196]  ? ___ratelimit+0x60/0x595
[ 3289.025098]  ? do_raw_spin_unlock+0x57/0x270
[ 3289.029521]  oom_kill_process.cold+0x10/0x6ef
[ 3289.034033]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 3289.039582]  ? task_will_free_mem+0x139/0x6e0
[ 3289.044097]  out_of_memory+0x936/0x12d0
[ 3289.048088]  ? lock_downgrade+0x810/0x810
[ 3289.051798] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 3289.060730]  ? oom_killer_disable+0x280/0x280
[ 3289.060747]  ? find_held_lock+0x35/0x130
[ 3289.060774]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 3289.060793]  ? memcg_event_wake+0x230/0x230
[ 3289.078612]  ? do_raw_spin_unlock+0x57/0x270
[ 3289.083038]  ? _raw_spin_unlock+0x2d/0x50
[ 3289.087203]  try_charge+0x1028/0x15b0
[ 3289.091023]  ? find_held_lock+0x35/0x130
[ 3289.095105]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 3289.099965]  ? kasan_check_read+0x11/0x20
[ 3289.104234]  ? get_mem_cgroup_from_mm+0x156/0x320
[ 3289.109090]  mem_cgroup_try_charge+0x259/0x6b0
[ 3289.113691]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 3289.118635]  __handle_mm_fault+0x1e50/0x3f80
[ 3289.123080]  ? vmf_insert_mixed_mkwrite+0x90/0x90
[ 3289.127944]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 3289.132616]  handle_mm_fault+0x1b5/0x690
[ 3289.136690]  __do_page_fault+0x62a/0xe90
[ 3289.140761]  ? vmalloc_fault+0x740/0x740
[ 3289.144831]  ? trace_hardirqs_off_caller+0x65/0x220
[ 3289.149966]  ? trace_hardirqs_on_caller+0x6a/0x220
[ 3289.154899]  ? page_fault+0x8/0x30
[ 3289.158444]  do_page_fault+0x71/0x57d
[ 3289.162242]  ? page_fault+0x8/0x30
[ 3289.165787]  page_fault+0x1e/0x30
[ 3289.169259] RIP: 0033:0x45c1dd
04:12:56 executing program 0:
r0 = openat$selinux_load(0xffffffffffffff9c, &(0x7f00000000c0)='/selinux/load\x00', 0x2, 0x0)
write$selinux_load(r0, &(0x7f00000007c0)=ANY=[@ANYBLOB="8cff7cf9080000005345204c696e757816000000d96927140000fffffff82000400000000004000000000000"], 0x2c)

04:12:56 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"/968]}, 0x440)

[ 3289.172468] Code: 5b 5d f3 c3 66 0f 1f 84 00 00 00 00 00 48 c7 c0 ea ff ff ff 48 85 ff 0f 84 30 8e fb ff 48 85 f6 0f 84 27 8e fb ff 48 83 ee 10 <48> 89 4e 08 48 89 3e 48 89 d7 4c 89 c2 4d 89 c8 4c 8b 54 24 08 b8
[ 3289.192917] RSP: 002b:00007ffd531651c8 EFLAGS: 00010202
[ 3289.198283] RAX: ffffffffffffffea RBX: 00007f09e67fe700 RCX: 00007f09e67fe700
[ 3289.205564] RDX: 00000000003d0f00 RSI: 00007f09e67fddb0 RDI: 0000000000410560
[ 3289.212839] RBP: 00007ffd531653e0 R08: 00007f09e67fe9d0 R09: 00007f09e67fe700
[ 3289.220111] R10: 00007f09e67fddc0 R11: 0000000000000246 R12: 0000000000000000
[ 3289.227381] R13: 00007ffd5316527f R14: 00007f09e67fe9c0 R15: 000000000075bf2c
04:12:56 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x6}}}]}, 0x30}}, 0x0)

[ 3289.349029] SELinux: failed to load policy
[ 3289.455804] Task in /syz5 killed as a result of limit of /syz5
[ 3289.463893] memory: usage 307200kB, limit 307200kB, failcnt 7387
[ 3289.479876] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3289.521597] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3289.532765] Memory cgroup stats for /syz5: cache:72KB rss:16KB rss_huge:0KB shmem:12KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:128KB inactive_file:0KB active_file:0KB unevictable:0KB
[ 3289.569834] Memory cgroup out of memory: Kill process 22167 (syz-executor.5) score 1103 or sacrifice child
[ 3289.592278] Killed process 22167 (syz-executor.5) total-vm:72580kB, anon-rss:108kB, file-rss:34816kB, shmem-rss:0kB
04:12:56 executing program 2:
r0 = syz_init_net_socket$rose(0xb, 0x5, 0x0)
getsockopt$rose(r0, 0x104, 0x1, 0x0, &(0x7f00000003c0))
r1 = openat$selinux_checkreqprot(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/checkreqprot\x00', 0x80000, 0x0)
recvfrom$netrom(r1, &(0x7f0000000400)=""/4096, 0x1000, 0x40002000, &(0x7f0000000040)={{0x3, @bcast}, [@rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @default, @bcast, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @bcast]}, 0x48)
write$P9_RREADLINK(r1, &(0x7f00000000c0)={0x10, 0x17, 0x1, {0x7, './file0'}}, 0x10)
accept4$inet6(r1, &(0x7f0000000180)={0xa, 0x0, 0x0, @local}, &(0x7f0000000140)=0xfffffffffffffe90, 0x80800)

04:12:56 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0xe00}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

04:12:56 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"/968]}, 0x440)

[ 3289.613250] oom_reaper: reaped process 22167 (syz-executor.5), now anon-rss:0kB, file-rss:33856kB, shmem-rss:0kB
04:12:56 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x8}}}]}, 0x30}}, 0x0)

04:12:56 executing program 0:
r0 = openat$selinux_load(0xffffffffffffff9c, &(0x7f00000000c0)='/selinux/load\x00', 0x2, 0x0)
write$selinux_load(r0, &(0x7f00000007c0)=ANY=[@ANYBLOB="8cff7cf9080000005345204c696e757816000000d96927940000fffffff82000400000000004000000000000"], 0x2c)
recvmmsg(0xffffffffffffffff, &(0x7f0000001dc0)=[{{&(0x7f0000000000)=@sco, 0x80, &(0x7f0000000200)=[{&(0x7f0000000080)=""/60, 0x3c}, {&(0x7f0000000100)}, {&(0x7f0000000140)=""/155, 0x9b}], 0x3, &(0x7f0000000240)=""/133, 0x85}, 0x3}, {{&(0x7f0000000300)=@pppol2tpin6={0x18, 0x1, {0x0, <r1=>0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @empty}}}, 0x80, &(0x7f0000000580)=[{&(0x7f0000000380)=""/215, 0xd7}, {&(0x7f0000000480)=""/225, 0xe1}], 0x2}, 0x200}, {{&(0x7f00000005c0)=@sco, 0x80, &(0x7f0000001c00)=[{&(0x7f0000000640)=""/175, 0xaf}, {&(0x7f0000000700)=""/146, 0x92}, {&(0x7f0000000800)=""/43, 0x2b}, {&(0x7f0000000840)=""/4096, 0x1000}, {&(0x7f0000001840)=""/12, 0xc}, {&(0x7f0000001880)=""/182, 0xb6}, {&(0x7f0000001940)=""/118, 0x76}, {&(0x7f00000019c0)=""/221, 0xdd}, {&(0x7f0000001ac0)=""/208, 0xd0}, {&(0x7f0000001bc0)=""/54, 0x36}], 0xa, &(0x7f0000001cc0)=""/237, 0xed}, 0x60}], 0x3, 0x1, &(0x7f0000001e80)={0x0, 0x989680})
getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000001ec0)={{{@in6=@initdev, @in6=@mcast2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r2=>0x0}}, {{@in6=@remote}, 0x0, @in6=@loopback}}, &(0x7f0000001fc0)=0xe8)
ioctl$SIOCAX25ADDUID(r1, 0x89e1, &(0x7f0000002000)={0x3, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, r2})

04:12:56 executing program 5:
r0 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000240)='/dev/dlm-control\x00', 0x40000, 0x0)
ioctl$SNDRV_TIMER_IOCTL_GINFO(r0, 0xc0f85403, &(0x7f0000000280)={{0xffffffffffffffff, 0x0, 0x5830000000000, 0x3, 0x4}, 0xf177, 0xb431, 'id0\x00', 'timer1\x00', 0x0, 0x8b4, 0x81, 0x0, 0x445})
shmat(0x0, &(0x7f0000ffc000/0x4000)=nil, 0x3000)
mbind(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x2, &(0x7f0000000000)=0xffff, 0x2, 0x0)
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0x20b, &(0x7f0000000040)=[{&(0x7f0000000540)="2e000000220005000000c187185095cf0400b0eba0b4d65c00f0ffff51894d5d1dac00"/46, 0x2e}], 0x1}, 0x0)
r2 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000080)='/dev/qat_adf_ctl\x00', 0x200, 0x0)
ioctl$DRM_IOCTL_ADD_CTX(0xffffffffffffffff, 0xc0086420, &(0x7f00000000c0)={<r3=>0x0})
ioctl$DRM_IOCTL_GET_SAREA_CTX(r2, 0xc010641d, &(0x7f0000000200)={r3, &(0x7f0000000100)=""/74})

04:12:56 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x9}}}]}, 0x30}}, 0x0)

04:12:56 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0xf00}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

[ 3289.712147] SELinux: failed to load policy
[ 3289.728624] syz-executor.5 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 3289.750385] SELinux: failed to load policy
04:12:56 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="00000000004000000000000000000000000000000000000000000000000000000000000000000600ffffffff020000001d00000001000000080676657468305f746f5f627269646765006e7230000000000000000000000000006772653000000000000000000000000076657468315f746f5f626f6e64000000aaaaaaaaaaaa000000000000aaaaaaaaaaaa00000000000000007000000070000000a80000006172707265706c790000000000000000000000000000000000000000000000001000000000000000aaaaaaaaaaaa0000feffffff0000000009000000000000000000697064647030000000000000000000006272696467655f736c6176655f3100000000000000000000000000000000000067726530000000000000000000000000ffffffffffff0000000000000000000000000000000000000000e0000000180100005001000072617465657374000000000000a3000000000000000000000000000000000000480000000000000064756d6d79300000000000000000000073797a5f74756e0000000ab941773a25a4462a99832900000000000000000000200000000000000000000000000000000000000000000000736e6174000000000000000000000000000000000000000000000000000000001000000000000000aaaaaaaaaaaa000000000000000000006d61726b0000000000000000000000000000000000000000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000002000000feffffff01000000110000000000000000006272696467655f736c6176655f3100000000000000000000000000749638e0006c6f00000000000000000000000000000080616d300000000000000000000000aaaaaaaaaa00000000000000aaaaaaaaaaaa0000000000000000a00000000801000040010000636f6e6e6c6162656c000000000000000000000000000000000000000000000008000000000000000000000000000000434c4153534946590000000000000000000000000000000000ff07000000000008000000000000000000000000000000736e617400000000000000000000000000000000000000000001000000000000100000000000000000000000000000000000000000000000736e6174000000000000000000000000000000000000000000000000000000001000000000001400aaaaaaaaaabb00"/968]}, 0x440)

[ 3289.777159] syz-executor.5 cpuset=syz5 mems_allowed=0-1
[ 3289.808251] CPU: 0 PID: 22195 Comm: syz-executor.5 Not tainted 4.19.66 #40
[ 3289.815423] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3289.824787] Call Trace:
[ 3289.827391]  dump_stack+0x172/0x1f0
[ 3289.831037]  dump_header+0x15e/0xa55
[ 3289.834771]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 3289.839886]  ? ___ratelimit+0x60/0x595
[ 3289.843792]  ? do_raw_spin_unlock+0x57/0x270
[ 3289.848214]  oom_kill_process.cold+0x10/0x6ef
[ 3289.852736]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 3289.858287]  ? task_will_free_mem+0x139/0x6e0
[ 3289.862816]  out_of_memory+0x936/0x12d0
[ 3289.866826]  ? lock_downgrade+0x810/0x810
[ 3289.870989]  ? oom_killer_disable+0x280/0x280
[ 3289.875491]  ? find_held_lock+0x35/0x130
[ 3289.879599]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 3289.884462]  ? memcg_event_wake+0x230/0x230
[ 3289.888898]  ? do_raw_spin_unlock+0x57/0x270
[ 3289.893329]  ? _raw_spin_unlock+0x2d/0x50
[ 3289.897489]  try_charge+0x1028/0x15b0
[ 3289.901299]  ? find_held_lock+0x35/0x130
[ 3289.905376]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 3289.910247]  ? kasan_check_read+0x11/0x20
[ 3289.914420]  ? get_mem_cgroup_from_mm+0x156/0x320
[ 3289.919278]  mem_cgroup_try_charge+0x259/0x6b0
[ 3289.923882]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 3289.923901]  wp_page_copy+0x430/0x16a0
[ 3289.923923]  ? pmd_pfn+0x1d0/0x1d0
[ 3289.923941]  ? kasan_check_read+0x11/0x20
[ 3289.923958]  ? do_raw_spin_unlock+0x57/0x270
[ 3289.923974]  do_wp_page+0x57d/0x10b0
[ 3289.923992]  ? finish_mkwrite_fault+0x4f0/0x4f0
[ 3289.924007]  ? kasan_check_write+0x14/0x20
[ 3289.924024]  ? do_raw_spin_lock+0xc8/0x240
[ 3289.936381]  __handle_mm_fault+0x2305/0x3f80
[ 3289.966302]  ? vmf_insert_mixed_mkwrite+0x90/0x90
[ 3289.971184]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 3289.975873]  handle_mm_fault+0x1b5/0x690
[ 3289.979949]  __do_page_fault+0x62a/0xe90
[ 3289.984030]  ? vmalloc_fault+0x740/0x740
[ 3289.988111]  ? trace_hardirqs_off_caller+0x65/0x220
[ 3289.993137]  ? trace_hardirqs_on_caller+0x6a/0x220
[ 3289.998089]  ? page_fault+0x8/0x30
[ 3290.001647]  do_page_fault+0x71/0x57d
[ 3290.005472]  ? page_fault+0x8/0x30
[ 3290.009021]  page_fault+0x1e/0x30
[ 3290.012486] RIP: 0033:0x430906
04:12:56 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x3f00}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

04:12:56 executing program 0:
r0 = openat$selinux_load(0xffffffffffffff9c, &(0x7f00000000c0)='/selinux/load\x00', 0x2, 0x0)
write$selinux_load(r0, &(0x7f0000000000)=ANY=[@ANYBLOB="8cff7cf9080000005345204c696e75781602000062d1b6a2476c8b0080fffffff820004000000000041014000000006aea9a972db56b3af03c4faf84507362dd9522a3626079"], 0x2c)

04:12:56 executing program 2:
r0 = open(&(0x7f0000000040)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000001c0)=0x20000008)
ioctl$VIDIOC_S_MODULATOR(r0, 0x40445637, &(0x7f0000000100)={0x4, "517deaafab7098a6cd2592ff23a3621865a43f5dbf6157979023e97bece97b87", 0x0, 0x3ff, 0x9, 0x4, 0x1})
mknod(&(0x7f00000000c0)='./bus\x00', 0x2000000000001003, 0x0)
connect$vsock_stream(r0, &(0x7f0000000000)={0x28, 0x0, 0x2711, @my=0x0}, 0x10)

[ 3290.015692] Code: 1f 44 00 00 48 29 e8 31 c9 48 81 fb 40 56 71 00 0f 95 c1 48 8d 34 2a 48 83 cd 01 48 c1 e1 02 48 83 c8 01 48 09 e9 48 89 73 58 <48> 89 4a 08 48 89 46 08 48 8d 4a 10 8b 05 5c 46 64 00 85 c0 0f 84
[ 3290.034609] RSP: 002b:00007ffd531650f0 EFLAGS: 00010206
[ 3290.039981] RAX: 00000000000205b1 RBX: 0000000000715640 RCX: 0000000000000121
[ 3290.047256] RDX: 00000000027d6930 RSI: 00000000027d6a50 RDI: 0000000000000000
[ 3290.054533] RBP: 0000000000000121 R08: ffffffffffffffff R09: 0000000000000000
[ 3290.061818] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000715698
[ 3290.069119] R13: 0000000000715698 R14: 0000000000000000 R15: 0000000000002710
04:12:57 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"/968]}, 0x440)

04:12:57 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0xa}}}]}, 0x30}}, 0x0)

[ 3290.101332] SELinux:  policydb version 534 does not match my version range 15-31
04:12:57 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x4000}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

[ 3290.159410] SELinux: failed to load policy
04:12:57 executing program 2:
r0 = gettid()
timer_create(0x0, &(0x7f0000000440)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000044000))
r1 = syz_open_dev$mouse(&(0x7f0000000080)='/dev/input/mouse#\x00', 0xffffffffffffffff, 0x10002)
write$P9_RSTAT(r1, &(0x7f0000000140)={0x61, 0x7d, 0x2, {0x0, 0x5a, 0x9, 0x1f0000, {0xf3, 0x1, 0x3}, 0x2a4e94c37a9ef39f, 0xffffffff, 0x10001, 0x3, 0xd, '/dev/usbmon#\x00', 0xd, '/dev/usbmon#\x00', 0x0, '', 0xd, '/dev/usbmon#\x00'}}, 0x61)
r2 = syz_open_dev$usbmon(&(0x7f00008be000)='/dev/usbmon#\x00', 0x0, 0x0)
ioctl$MON_IOCG_STATS(r2, 0xc0109207, &(0x7f0000000040))
timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
r3 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$KVM_SET_IDENTITY_MAP_ADDR(r1, 0x4008ae48, &(0x7f00000000c0)=0x1000)
setns(r2, 0x4000000)
ioctl(r3, 0x1000008912, &(0x7f0000000100)="11dca50d5e0bcfe47bf070")
sched_getparam(r0, &(0x7f0000000200))
mkdirat$cgroup(r2, &(0x7f00000001c0)='syz1\x00', 0x1ff)
tkill(r0, 0x800000015)

04:12:57 executing program 0:
r0 = openat$selinux_load(0xffffffffffffff9c, &(0x7f00000000c0)='/selinux/load\x00', 0x2, 0x0)
r1 = open$dir(&(0x7f0000000000)='./file0\x00', 0x40, 0x110)
write$selinux_load(r0, &(0x7f0000000040)=ANY=[@ANYPTR=&(0x7f0000000300)=ANY=[@ANYRESHEX=r1, @ANYBLOB="0eb7980ec17b918e442da2e423673b0fc28182f80f007105c4755c523167c7487e8ce3938b78d31ffa5aed275f27b33ba8f25525e8deda7168bf57157026601248364a307f04406ca1332ee72cedc5b1e76490c97be2de5cf78d1d90e8a2768ff8261cf5ef05a81412847c103a32df7987c947d892b95d2688d496334febfa6f300bac25f0cff61974348b19053753cb02ca49bbcf34d3418894b28362660533c97b03995e45060417b18e9a9a9bafcaec48ca20019eb494b177", @ANYBLOB="b952ed77409756dc49670ddd8c8ec15a5b", @ANYPTR64=&(0x7f0000000100)=ANY=[@ANYBLOB="9308761e89bf15c081aba6d95d36bfec6292263e470e2df081afe1592263126e0df41752d51a10ebe21376e139269ce3b82ef8a5a64b12e1de89cbac28add5ebb245ef3b6f972f21a8a60349a98094f894f785af6493a519509b25fdbab8c827c28592e788bd856e3293faae45fd4e77e1e8996dbfee23bf633de37f84a336885826dbc664e6b43c75fca98ed277fc9bf79604c1cffb95722b7de6f2d9dad1cf5219befa77", @ANYRESDEC=r1, @ANYRESDEC=r1, @ANYPTR, @ANYBLOB="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", @ANYRESHEX=r1, @ANYRES16=0x0, @ANYRES16=r1], @ANYRES64=r1, @ANYRESOCT=r0, @ANYRESHEX=0x0, @ANYRES64=r1, @ANYRES64=r1], @ANYRESDEC=r0], 0x118)

[ 3290.317880] Task in /syz5 killed as a result of limit of /syz5
[ 3290.329109] memory: usage 307200kB, limit 307200kB, failcnt 7416
[ 3290.335515] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3290.353142] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3290.355983] SELinux:  policydb magic number 0x20000300 does not match expected magic number 0xf97cff8c
[ 3290.359323] Memory cgroup stats for /syz5: cache:72KB rss:16KB rss_huge:0KB
[ 3290.370377] SELinux: failed to load policy
[ 3290.382934]  shmem:12KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:124KB inactive_file:0KB active_file:0KB unevictable:0KB
[ 3290.387133] SELinux:  policydb magic number 0x20000300 does not match expected magic number 0xf97cff8c
[ 3290.404577] Memory cgroup out of memory: Kill process 22195 (syz-executor.5) score 1103 or sacrifice child
[ 3290.410234] SELinux: failed to load policy
[ 3290.421186] Killed process 22195 (syz-executor.5) total-vm:72580kB, anon-rss:108kB, file-rss:34816kB, shmem-rss:0kB
04:12:57 executing program 5:
r0 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000240)='/dev/dlm-control\x00', 0x40000, 0x0)
ioctl$SNDRV_TIMER_IOCTL_GINFO(r0, 0xc0f85403, &(0x7f0000000280)={{0xffffffffffffffff, 0x0, 0x5830000000000, 0x3, 0x4}, 0xf177, 0xb431, 'id0\x00', 'timer1\x00', 0x0, 0x8b4, 0x81, 0x0, 0x445})
shmat(0x0, &(0x7f0000ffc000/0x4000)=nil, 0x3000)
mbind(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x2, &(0x7f0000000000)=0xffff, 0x2, 0x0)
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0x20b, &(0x7f0000000040)=[{&(0x7f0000000540)="2e000000220005000000c187185095cf0400b0eba0b4d65c7fffffff51894d5d1dac00"/46, 0x2e}], 0x1}, 0x0)
r2 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000080)='/dev/qat_adf_ctl\x00', 0x200, 0x0)
ioctl$DRM_IOCTL_ADD_CTX(0xffffffffffffffff, 0xc0086420, &(0x7f00000000c0)={<r3=>0x0})
ioctl$DRM_IOCTL_GET_SAREA_CTX(r2, 0xc010641d, &(0x7f0000000200)={r3, &(0x7f0000000100)=""/74})

04:12:57 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0xb}}}]}, 0x30}}, 0x0)

04:12:57 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"/968]}, 0x440)

04:12:57 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x5865}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

04:12:57 executing program 0:
r0 = openat$selinux_load(0xffffffffffffff9c, &(0x7f00000000c0)='/selinux/load\x00', 0x2, 0x0)
write$binfmt_script(r0, &(0x7f0000000100)={'#! ', './file0', [{0x20, 'procsystemeth0.*em0['}, {0x20, 'em0em1'}, {0x20, '/selinux/load\x00'}], 0xa, "034c9f24b6a7849c1b3baaf07b4ef20a0c7777b7f8bfe490dcf5b4694a2cf6f0a8eb8afd2d67537f48cfcaf11da351e950e3404fcfdb46e1407338c50d2732adc718a642f40946c201e4bfab2f0bbff3a109ba05e8cc939378be4581d372eba90e7b7398d50e0485d92f75293f299c3eca7653c63cca7448ed7f18f70822daa19869b2c17bce68aba5c41af491acbf0dc33b7e995f71b62c9f9429cf34599bd66d0d57e66c5eb2c976501b45a1b22417f4385e46ba5836d6ce22a7a79bc20b394882c31965eeaa336f6af1d3"}, 0x102)
write$selinux_load(r0, &(0x7f00000007c0)=ANY=[@ANYBLOB="8cff7cf9db8b689b40452000"], 0x2c)

04:12:57 executing program 2:
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='mounts\x00')
read$eventfd(r0, &(0x7f0000000080), 0xff97)
setsockopt$inet6_MRT6_DEL_MFC(0xffffffffffffffff, 0x29, 0xcd, &(0x7f0000000200)={{0xa, 0x0, 0x0, @rand_addr="b62f76faa14b3ae6d18c6ee988e211f4"}, {0xa, 0x0, 0x0, @empty}}, 0x5c)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000380)='tracefs\x00', 0x0, &(0x7f00000000c0))
syz_genetlink_get_family_id$SEG6(&(0x7f0000000280)='SEG6\x00')
getsockopt$bt_BT_SECURITY(r0, 0x112, 0x4, &(0x7f00000002c0), 0x2)
ioctl$TIOCSSERIAL(r0, 0x541f, &(0x7f0000000180)={0x6, 0x6, 0x4, 0x89, 0x9, 0x401, 0x40, 0x4, 0x10000, 0x3ca0, 0x5, 0x8, 0x10001, 0x1, &(0x7f0000000100)=""/115, 0xf9, 0x6, 0x401})

04:12:57 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x6000}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

[ 3290.524189] SELinux:  policydb magic number 0x2e202123 does not match expected magic number 0xf97cff8c
[ 3290.556308] SELinux: mount invalid.  Same superblock, different security settings for (dev tracefs, type tracefs)
04:12:57 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x10}}}]}, 0x30}}, 0x0)

04:12:57 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"/968]}, 0x440)

[ 3290.590365] SELinux: failed to load policy
[ 3290.612186] SELinux:  policydb string length -1687647269 does not match expected length 8
[ 3290.614780] syz-executor.5 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 3290.647144] SELinux: failed to load policy
[ 3290.679842] SELinux:  policydb magic number 0x2e202123 does not match expected magic number 0xf97cff8c
[ 3290.689901] syz-executor.5 cpuset=syz5 mems_allowed=0-1
[ 3290.696595] CPU: 0 PID: 22257 Comm: syz-executor.5 Not tainted 4.19.66 #40
[ 3290.703623] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3290.712529] SELinux: mount invalid.  Same superblock, different security settings for (dev tracefs, type tracefs)
[ 3290.713005] Call Trace:
[ 3290.713031]  dump_stack+0x172/0x1f0
[ 3290.713052]  dump_header+0x15e/0xa55
[ 3290.713069]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 3290.713083]  ? ___ratelimit+0x60/0x595
[ 3290.713098]  ? do_raw_spin_unlock+0x57/0x270
[ 3290.713117]  oom_kill_process.cold+0x10/0x6ef
[ 3290.713137]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 3290.713150]  ? task_will_free_mem+0x139/0x6e0
[ 3290.713189]  out_of_memory+0x936/0x12d0
[ 3290.729424] SELinux: failed to load policy
[ 3290.729799]  ? lock_downgrade+0x810/0x810
[ 3290.733980] SELinux:  policydb string length -1687647269 does not match expected length 8
[ 3290.738604]  ? oom_killer_disable+0x280/0x280
[ 3290.786500]  ? find_held_lock+0x35/0x130
[ 3290.790592]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 3290.795490]  ? memcg_event_wake+0x230/0x230
[ 3290.799842]  ? do_raw_spin_unlock+0x57/0x270
[ 3290.804293]  ? _raw_spin_unlock+0x2d/0x50
[ 3290.808462]  try_charge+0x1028/0x15b0
[ 3290.812361]  ? find_held_lock+0x35/0x130
[ 3290.816441]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 3290.821308]  ? kasan_check_read+0x11/0x20
[ 3290.825483]  ? get_mem_cgroup_from_mm+0x156/0x320
[ 3290.830340]  mem_cgroup_try_charge+0x259/0x6b0
[ 3290.834941]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 3290.839891]  wp_page_copy+0x430/0x16a0
[ 3290.843801]  ? pmd_pfn+0x1d0/0x1d0
[ 3290.847356]  ? kasan_check_read+0x11/0x20
[ 3290.851628]  ? do_raw_spin_unlock+0x57/0x270
[ 3290.856052]  do_wp_page+0x57d/0x10b0
[ 3290.859781]  ? finish_mkwrite_fault+0x4f0/0x4f0
[ 3290.864468]  ? kasan_check_write+0x14/0x20
[ 3290.868710]  ? do_raw_spin_lock+0xc8/0x240
[ 3290.872962]  __handle_mm_fault+0x2305/0x3f80
[ 3290.877388]  ? vmf_insert_mixed_mkwrite+0x90/0x90
[ 3290.882270]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 3290.886959]  handle_mm_fault+0x1b5/0x690
[ 3290.891039]  __do_page_fault+0x62a/0xe90
[ 3290.895131]  ? vmalloc_fault+0x740/0x740
[ 3290.899238]  ? trace_hardirqs_off_caller+0x65/0x220
[ 3290.904269]  ? trace_hardirqs_on_caller+0x6a/0x220
[ 3290.909206]  ? page_fault+0x8/0x30
[ 3290.912759]  do_page_fault+0x71/0x57d
[ 3290.916570]  ? page_fault+0x8/0x30
[ 3290.920132]  page_fault+0x1e/0x30
[ 3290.923597] RIP: 0033:0x430906
04:12:57 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x6558}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

04:12:57 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x6e02}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

04:12:57 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x8100}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

[ 3290.926805] Code: 1f 44 00 00 48 29 e8 31 c9 48 81 fb 40 56 71 00 0f 95 c1 48 8d 34 2a 48 83 cd 01 48 c1 e1 02 48 83 c8 01 48 09 e9 48 89 73 58 <48> 89 4a 08 48 89 46 08 48 8d 4a 10 8b 05 5c 46 64 00 85 c0 0f 84
[ 3290.945722] RSP: 002b:00007ffd531650f0 EFLAGS: 00010206
[ 3290.951103] RAX: 00000000000205b1 RBX: 0000000000715640 RCX: 0000000000000121
[ 3290.958383] RDX: 00000000027d6930 RSI: 00000000027d6a50 RDI: 0000000000000000
[ 3290.965662] RBP: 0000000000000121 R08: ffffffffffffffff R09: 0000000000000000
[ 3290.972942] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000715698
[ 3290.980239] R13: 0000000000715698 R14: 0000000000000000 R15: 0000000000002710
[ 3291.020361] Task in /syz5 killed as a result of limit of /syz5
[ 3291.042779] memory: usage 307200kB, limit 307200kB, failcnt 7451
[ 3291.057529] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3291.082978] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
04:12:58 executing program 5:
r0 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000240)='/dev/dlm-control\x00', 0x40000, 0x0)
ioctl$SNDRV_TIMER_IOCTL_GINFO(r0, 0xc0f85403, &(0x7f0000000280)={{0xffffffffffffffff, 0x0, 0x5830000000000, 0x3, 0x4}, 0xf177, 0xb431, 'id0\x00', 'timer1\x00', 0x0, 0x8b4, 0x81, 0x0, 0x445})
shmat(0x0, &(0x7f0000ffc000/0x4000)=nil, 0x3000)
mbind(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x2, &(0x7f0000000000)=0xffff, 0x2, 0x0)
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0x20b, &(0x7f0000000040)=[{&(0x7f0000000540)="2e000000220005000000c187185095cf0400b0eba0b4d65c97ffffff51894d5d1dac00"/46, 0x2e}], 0x1}, 0x0)
r2 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000080)='/dev/qat_adf_ctl\x00', 0x200, 0x0)
ioctl$DRM_IOCTL_ADD_CTX(0xffffffffffffffff, 0xc0086420, &(0x7f00000000c0)={<r3=>0x0})
ioctl$DRM_IOCTL_GET_SAREA_CTX(r2, 0xc010641d, &(0x7f0000000200)={r3, &(0x7f0000000100)=""/74})

04:12:58 executing program 2:
syz_mount_image$vfat(&(0x7f0000000040)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x800000000e004, 0x1, &(0x7f0000000140)=[{&(0x7f0000000100)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x10, 0x0)
r0 = open(0xfffffffffffffffd, 0x0, 0x0)
fchdir(r0)
open(&(0x7f00000001c0)='./bus\x00', 0x1fe, 0x0)
mkdir(&(0x7f0000000040)='./file0\x00', 0x0)

04:12:58 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"/968]}, 0x440)

04:12:58 executing program 0:
r0 = openat$selinux_load(0xffffffffffffff9c, &(0x7f00000000c0)='/selinux/load\x00', 0x2, 0x0)
r1 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/pfkey\x00', 0xc000, 0x0)
openat$selinux_load(0xffffffffffffff9c, &(0x7f0000000140)='/selinux/load\x00', 0x2, 0x0)
bind(r1, &(0x7f0000000040)=@nl=@proc={0x10, 0x0, 0x25dfdbff, 0x4}, 0x80)
getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000180)={<r2=>0x0}, &(0x7f00000001c0)=0xc)
ioctl$SNDRV_CTL_IOCTL_ELEM_ADD(r1, 0xc1105517, &(0x7f00000002c0)={{0x0, 0x3, 0x9, 0x1ac, 'syz0\x00', 0x6}, 0x1, 0x20, 0x88e, r2, 0xa, 0x8, 'syz0\x00', &(0x7f0000000200)=['/selinux/load\x00', 'eth0\x00', '/selinux/load\x00', '/proc/self/net/pfkey\x00', 'lo\x00', 'vboxnet1\'-selinux**keyring-\x00', '\x00', '].procwlan0nodevself/trusted{\x00', '/selinux/load\x00', '/selinux/load\x00'], 0x90, [], [0x294, 0x4, 0x5, 0x3620]})
write$selinux_load(r0, &(0x7f0000000100)=ANY=[@ANYBLOB="8cff7cf9080000005345204c696e010000000000000027940000fffffff82000400000000004000000000000"], 0x2c)

04:12:58 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x25}}}]}, 0x30}}, 0x0)

04:12:58 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0xf000}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

[ 3291.089239] Memory cgroup stats for /syz5: cache:72KB rss:16KB rss_huge:0KB shmem:12KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:124KB inactive_file:0KB active_file:0KB unevictable:0KB
[ 3291.109539] Memory cgroup out of memory: Kill process 22257 (syz-executor.5) score 1103 or sacrifice child
[ 3291.119920] Killed process 22257 (syz-executor.5) total-vm:72580kB, anon-rss:108kB, file-rss:34816kB, shmem-rss:0kB
[ 3291.131480] oom_reaper: reaped process 22257 (syz-executor.5), now anon-rss:0kB, file-rss:34820kB, shmem-rss:0kB
[ 3291.194935] SELinux:  policydb string SE Lin
 does not match my string SE Linux
04:12:58 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"/968]}, 0x440)

04:12:58 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0xfeff}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

[ 3291.254724] syz-executor.5 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 3291.258054] SELinux:  policydb string SE Lin
 does not match my string SE Linux
04:12:58 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0xf}}, 0x0)

04:12:58 executing program 2:
r0 = syz_open_dev$sndctrl(&(0x7f00000002c0)='/dev/snd/controlC#\x00', 0x0, 0x0)
syz_open_dev$ndb(&(0x7f0000000000)='/dev/nbd#\x00', 0x0, 0xc000)
ioctl$SNDRV_CTL_IOCTL_ELEM_WRITE(r0, 0xc1105511, 0x0)

[ 3291.308400] syz-executor.5 cpuset=syz5 mems_allowed=0-1
[ 3291.336911] CPU: 0 PID: 22391 Comm: syz-executor.5 Not tainted 4.19.66 #40
[ 3291.344144] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3291.353510] Call Trace:
04:12:58 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0xff0f}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

[ 3291.356116]  dump_stack+0x172/0x1f0
[ 3291.359764]  dump_header+0x15e/0xa55
[ 3291.363493]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 3291.368612]  ? ___ratelimit+0x60/0x595
[ 3291.372579]  ? do_raw_spin_unlock+0x57/0x270
[ 3291.377008]  oom_kill_process.cold+0x10/0x6ef
[ 3291.381522]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 3291.387068]  ? task_will_free_mem+0x139/0x6e0
[ 3291.391582]  out_of_memory+0x936/0x12d0
[ 3291.395568]  ? lock_downgrade+0x810/0x810
[ 3291.399731]  ? oom_killer_disable+0x280/0x280
[ 3291.404247]  ? find_held_lock+0x35/0x130
04:12:58 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0xfffe}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

[ 3291.408332]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 3291.413192]  ? memcg_event_wake+0x230/0x230
[ 3291.417528]  ? do_raw_spin_unlock+0x57/0x270
[ 3291.421965]  ? _raw_spin_unlock+0x2d/0x50
[ 3291.426130]  try_charge+0x1028/0x15b0
[ 3291.429946]  ? find_held_lock+0x35/0x130
[ 3291.434031]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 3291.438905]  ? kasan_check_read+0x11/0x20
[ 3291.443078]  ? get_mem_cgroup_from_mm+0x156/0x320
[ 3291.447938]  mem_cgroup_try_charge+0x259/0x6b0
[ 3291.452569]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 3291.457515]  wp_page_copy+0x430/0x16a0
[ 3291.461423]  ? pmd_pfn+0x1d0/0x1d0
[ 3291.464987]  ? kasan_check_read+0x11/0x20
[ 3291.469147]  ? do_raw_spin_unlock+0x57/0x270
[ 3291.473577]  do_wp_page+0x57d/0x10b0
[ 3291.477308]  ? finish_mkwrite_fault+0x4f0/0x4f0
[ 3291.481986]  ? kasan_check_write+0x14/0x20
[ 3291.486234]  ? do_raw_spin_lock+0xc8/0x240
[ 3291.490488]  __handle_mm_fault+0x2305/0x3f80
[ 3291.494913]  ? vmf_insert_mixed_mkwrite+0x90/0x90
[ 3291.499813]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 3291.504532]  handle_mm_fault+0x1b5/0x690
[ 3291.508642]  __do_page_fault+0x62a/0xe90
[ 3291.512731]  ? vmalloc_fault+0x740/0x740
[ 3291.516811]  ? trace_hardirqs_off_caller+0x65/0x220
[ 3291.521844]  ? trace_hardirqs_on_caller+0x6a/0x220
[ 3291.526784]  ? page_fault+0x8/0x30
[ 3291.530344]  do_page_fault+0x71/0x57d
[ 3291.534247]  ? page_fault+0x8/0x30
[ 3291.537800]  page_fault+0x1e/0x30
[ 3291.541264] RIP: 0033:0x430906
[ 3291.544467] Code: 1f 44 00 00 48 29 e8 31 c9 48 81 fb 40 56 71 00 0f 95 c1 48 8d 34 2a 48 83 cd 01 48 c1 e1 02 48 83 c8 01 48 09 e9 48 89 73 58 <48> 89 4a 08 48 89 46 08 48 8d 4a 10 8b 05 5c 46 64 00 85 c0 0f 84
[ 3291.563467] RSP: 002b:00007ffd531650f0 EFLAGS: 00010206
[ 3291.568851] RAX: 00000000000205b1 RBX: 0000000000715640 RCX: 0000000000000121
[ 3291.576132] RDX: 00000000027d6930 RSI: 00000000027d6a50 RDI: 0000000000000000
[ 3291.583411] RBP: 0000000000000121 R08: ffffffffffffffff R09: 0000000000000000
[ 3291.590693] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000715698
[ 3291.598059] R13: 0000000000715698 R14: 0000000000000000 R15: 0000000000002710
[ 3291.629069] Task in /syz5 killed as a result of limit of /syz5
[ 3291.640222] memory: usage 307200kB, limit 307200kB, failcnt 7489
[ 3291.646880] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3291.654233] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3291.660479] Memory cgroup stats for /syz5: cache:72KB rss:16KB rss_huge:0KB shmem:12KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:124KB inactive_file:0KB active_file:0KB unevictable:0KB
[ 3291.681496] Memory cgroup out of memory: Kill process 22391 (syz-executor.5) score 1103 or sacrifice child
[ 3291.691444] Killed process 22391 (syz-executor.5) total-vm:72580kB, anon-rss:108kB, file-rss:34816kB, shmem-rss:0kB
[ 3291.702964] oom_reaper: reaped process 22391 (syz-executor.5), now anon-rss:0kB, file-rss:34820kB, shmem-rss:0kB
04:12:58 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"/968]}, 0x440)

04:12:58 executing program 0:
r0 = syz_open_dev$cec(&(0x7f0000000000)='/dev/cec#\x00', 0x3, 0x2)
r1 = openat$selinux_load(0xffffffffffffff9c, &(0x7f00000000c0)='/selinux/load\x00', 0x2, 0x0)
write$selinux_load(r1, &(0x7f0000000080)=ANY=[], 0xcdc2ff6e9e0b93c)
ioctl$EVIOCSABS0(r0, 0x401845c0, &(0x7f0000000040)={0x2, 0x8, 0x0, 0x7, 0x3, 0x9})

04:12:58 executing program 2:
r0 = syz_open_procfs(0x0, &(0x7f0000000080)='mountinfo\x00')
mkdir(&(0x7f00000001c0)='./file0\x00', 0x0)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001740)='/dev/fuse\x00', 0x2, 0x0)
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000000)={0x0, <r2=>0x0}, &(0x7f0000000040)=0xc)
getresgid(&(0x7f0000000180), &(0x7f0000000280)=<r3=>0x0, &(0x7f00000002c0)=<r4=>0x0)
fcntl$dupfd(r1, 0x406, r0)
getsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000000380)={{{@in=@empty, @in=@local, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r5=>0x0}}, {{@in6}, 0x0, @in=@local}}, &(0x7f0000000480)=0xe8)
write$FUSE_ENTRY(r1, &(0x7f00000000c0)={0x90, 0x0, 0x5, {0x5, 0x0, 0x34, 0x288, 0x0, 0x8d, {0x6, 0x3, 0x3, 0x798, 0x7ff, 0x8000, 0x0, 0x100000000, 0x3f33283a, 0x10001, 0xfffffffffffffff9, r5, r3, 0x4, 0x98f9}}}, 0x90)
mount$fuse(0x0, &(0x7f0000000600)='./file0\x00', &(0x7f0000000080)='fuse.', 0x0, &(0x7f0000000700)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040002,user_id=', @ANYRESDEC=r2, @ANYBLOB="2c67726f75705f69643dcaf21305d3821c057fe14e0094c75531d42d46e09a5c6cc6bc55bffb861600e37a798e24304b89444480672dd0309caf8a5fad5c87350a0c9b4574b8ddee0686aa4e91d9299d579a9446c506087645f662362030bf479fa4497e37b7d22647fe7508e125e171fecdec4f6e8b19ca20607c6eff61a77d996d1a71ed80fdd3c679f88032cef19cc599d269f12e6ca53b8bccdd0a875b2ba4a08dc1eb2ea3e6adab49b1fd2e1a9ae284d0d1ea44065b93f837cfa6a184044ef021ba22ec05d358a6c9ed74c182680ed8e677b5d9cbd3efdbec0aa31a6c7794a828b391736d9c439e26bc", @ANYRESDEC=r4, @ANYBLOB=',dont_hash,fsuuid=\x0095b7fc2-cd5w-3ub7-6c\x00e-3\x00z17c55,obj_type=user_id,smackfsroot={wlan0,smackfsdef=@,uid=', @ANYRESDEC=r5, @ANYBLOB=',fsuuid=18\x00c37;5-6428-ca0f-\x004a6-2c\x005c87),fowner>', @ANYRESDEC=r5, @ANYBLOB=',\x00'])

04:12:58 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x10}}, 0x0)

04:12:58 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x34000}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

04:12:58 executing program 5:
r0 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000240)='/dev/dlm-control\x00', 0x40000, 0x0)
ioctl$SNDRV_TIMER_IOCTL_GINFO(r0, 0xc0f85403, &(0x7f0000000280)={{0xffffffffffffffff, 0x0, 0x5830000000000, 0x3, 0x4}, 0xf177, 0xb431, 'id0\x00', 'timer1\x00', 0x0, 0x8b4, 0x81, 0x0, 0x445})
shmat(0x0, &(0x7f0000ffc000/0x4000)=nil, 0x3000)
mbind(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x2, &(0x7f0000000000)=0xffff, 0x2, 0x0)
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0x20b, &(0x7f0000000040)=[{&(0x7f0000000540)="2e000000220005000000c187185095cf0400b0eba0b4d65c9effffff51894d5d1dac00"/46, 0x2e}], 0x1}, 0x0)
r2 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000080)='/dev/qat_adf_ctl\x00', 0x200, 0x0)
ioctl$DRM_IOCTL_ADD_CTX(0xffffffffffffffff, 0xc0086420, &(0x7f00000000c0)={<r3=>0x0})
ioctl$DRM_IOCTL_GET_SAREA_CTX(r2, 0xc010641d, &(0x7f0000000200)={r3, &(0x7f0000000100)=""/74})

04:12:58 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x40000}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

04:12:58 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0xc0}}, 0x0)

04:12:58 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"/968]}, 0x440)

04:12:58 executing program 2:
r0 = syz_open_dev$media(&(0x7f0000000000)='/dev/media#\x00', 0x3, 0xa40)
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000180)={<r1=>0x0, @dev, @loopback}, &(0x7f00000001c0)=0xc)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000733000)={0x5, 0x6, 0x7, 0x10, 0x0, r0, 0x0, [], r1}, 0x36)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000100)={r2, &(0x7f0000000000), &(0x7f0000000080)}, 0x20)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000140)={r2, &(0x7f0000000080), &(0x7f00000000c0), 0x1}, 0x20)

[ 3291.869370] syz-executor.5 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
04:12:58 executing program 0:
r0 = openat$selinux_load(0xffffffffffffff9c, &(0x7f0000000300)='/selinux/load\x00', 0x2, 0x0)
write$selinux_load(r0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"], 0x2c)
openat$selinux_checkreqprot(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/checkreqprot\x00', 0x400, 0x0)

[ 3291.952840] syz-executor.5 cpuset=syz5 mems_allowed=0-1
[ 3291.958391] CPU: 1 PID: 22523 Comm: syz-executor.5 Not tainted 4.19.66 #40
[ 3291.965410] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3291.974782] Call Trace:
[ 3291.977388]  dump_stack+0x172/0x1f0
[ 3291.981036]  dump_header+0x15e/0xa55
[ 3291.984775]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 3291.989896]  ? ___ratelimit+0x60/0x595
[ 3291.993798]  ? do_raw_spin_unlock+0x57/0x270
[ 3291.998222]  oom_kill_process.cold+0x10/0x6ef
[ 3292.002740]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 3292.008293]  ? task_will_free_mem+0x139/0x6e0
[ 3292.012812]  out_of_memory+0x936/0x12d0
[ 3292.016808]  ? lock_downgrade+0x810/0x810
[ 3292.020977]  ? oom_killer_disable+0x280/0x280
[ 3292.025484]  ? find_held_lock+0x35/0x130
[ 3292.029568]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 3292.034421]  ? memcg_event_wake+0x230/0x230
[ 3292.038766]  ? do_raw_spin_unlock+0x57/0x270
[ 3292.043274]  ? _raw_spin_unlock+0x2d/0x50
[ 3292.047438]  try_charge+0x1028/0x15b0
04:12:58 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0xec0}}, 0x0)

[ 3292.051252]  ? find_held_lock+0x35/0x130
[ 3292.055332]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 3292.060202]  ? kasan_check_read+0x11/0x20
[ 3292.064372]  ? get_mem_cgroup_from_mm+0x156/0x320
[ 3292.070319]  mem_cgroup_try_charge+0x259/0x6b0
[ 3292.070332]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 3292.070342]  wp_page_copy+0x430/0x16a0
[ 3292.070354]  ? pmd_pfn+0x1d0/0x1d0
[ 3292.070364]  ? kasan_check_read+0x11/0x20
[ 3292.070373]  ? do_raw_spin_unlock+0x57/0x270
[ 3292.070382]  do_wp_page+0x57d/0x10b0
[ 3292.070392]  ? finish_mkwrite_fault+0x4f0/0x4f0
[ 3292.070400]  ? kasan_check_write+0x14/0x20
[ 3292.070407]  ? do_raw_spin_lock+0xc8/0x240
[ 3292.070418]  __handle_mm_fault+0x2305/0x3f80
[ 3292.070429]  ? vmf_insert_mixed_mkwrite+0x90/0x90
[ 3292.070447]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 3292.070456]  handle_mm_fault+0x1b5/0x690
[ 3292.070468]  __do_page_fault+0x62a/0xe90
[ 3292.070479]  ? vmalloc_fault+0x740/0x740
[ 3292.070489]  ? trace_hardirqs_off_caller+0x65/0x220
[ 3292.070496]  ? trace_hardirqs_on_caller+0x6a/0x220
[ 3292.070504]  ? page_fault+0x8/0x30
04:12:59 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"/968]}, 0x440)

04:12:59 executing program 2:
r0 = syz_open_dev$sg(&(0x7f0000000240)='/dev/sg#\x00', 0x0, 0x5)
write$binfmt_misc(r0, &(0x7f0000000f00)=ANY=[], 0x10b)
clone(0xa0200, 0x0, 0x0, 0x0, 0x0)
r1 = openat$proc_capi20(0xffffffffffffff9c, &(0x7f0000000100)='/proc/capi/capi20\x00', 0x0, 0x0)
ioctl$SNDRV_RAWMIDI_IOCTL_STATUS(r1, 0xc0385720, &(0x7f0000000140)={0x0, {0x77359400}, 0x4, 0x5})
r2 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x141, 0x0)
ioctl$SNDRV_SEQ_IOCTL_GET_PORT_INFO(r2, 0xc0a85322, &(0x7f0000000040))
ioctl$SG_GET_REQUEST_TABLE(r0, 0x2286, &(0x7f0000000580))
ioctl$KVM_GET_XSAVE(r1, 0x9000aea4, &(0x7f0000000700))

04:12:59 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x400300}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

[ 3292.070514]  do_page_fault+0x71/0x57d
[ 3292.070521]  ? page_fault+0x8/0x30
[ 3292.070529]  page_fault+0x1e/0x30
[ 3292.070536] RIP: 0033:0x430906
[ 3292.070545] Code: 1f 44 00 00 48 29 e8 31 c9 48 81 fb 40 56 71 00 0f 95 c1 48 8d 34 2a 48 83 cd 01 48 c1 e1 02 48 83 c8 01 48 09 e9 48 89 73 58 <48> 89 4a 08 48 89 46 08 48 8d 4a 10 8b 05 5c 46 64 00 85 c0 0f 84
[ 3292.070549] RSP: 002b:00007ffd531650f0 EFLAGS: 00010206
[ 3292.070557] RAX: 00000000000205b1 RBX: 0000000000715640 RCX: 0000000000000121
04:12:59 executing program 2:
r0 = syz_open_dev$sndctrl(&(0x7f0000000000)='/dev/snd/controlC#\x00', 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(r0, 0x40405515, &(0x7f0000000040)={0x7, 0x0, 0x0, 0x0, 'syz1\x00'})
r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0xcbd, 0x200000)
ioctl$DRM_IOCTL_RES_CTX(0xffffffffffffffff, 0xc0106426, &(0x7f0000000100)={0x8, &(0x7f00000000c0)=[{}, {}, {<r2=>0x0}, {}, {}, {}, {}, {}]})
signalfd(r0, &(0x7f0000000180)={0xa7f6}, 0x8)
ioctl$DRM_IOCTL_GET_CTX(r1, 0xc0086423, &(0x7f0000000140)={r2, 0x1})

04:12:59 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"/968]}, 0x440)

[ 3292.070561] RDX: 00000000027d6930 RSI: 00000000027d6a50 RDI: 0000000000000000
[ 3292.070566] RBP: 0000000000000121 R08: ffffffffffffffff R09: 0000000000000000
[ 3292.070571] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000715698
[ 3292.070575] R13: 0000000000715698 R14: 0000000000000000 R15: 0000000000002710
[ 3292.086598] Task in 
[ 3292.229113] SELinux: ebitmap: map size 4 does not match my size 64 (high bit was 1929379840)
[ 3292.280727] SELinux: ebitmap: map size 4 does not match my size 64 (high bit was 1929379840)
[ 3292.360250] /syz5 killed as a result of limit of /syz5
[ 3292.366683] memory: usage 307200kB, limit 307200kB, failcnt 7519
[ 3292.373412] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3292.380567] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3292.387198] Memory cgroup stats for /syz5: cache:72KB rss:16KB rss_huge:0KB shmem:12KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:124KB inactive_file:0KB active_file:0KB unevictable:0KB
04:12:59 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0xf0ffff}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

04:12:59 executing program 5:
r0 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000240)='/dev/dlm-control\x00', 0x40000, 0x0)
ioctl$SNDRV_TIMER_IOCTL_GINFO(r0, 0xc0f85403, &(0x7f0000000280)={{0xffffffffffffffff, 0x0, 0x5830000000000, 0x3, 0x4}, 0xf177, 0xb431, 'id0\x00', 'timer1\x00', 0x0, 0x8b4, 0x81, 0x0, 0x445})
shmat(0x0, &(0x7f0000ffc000/0x4000)=nil, 0x3000)
mbind(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x2, &(0x7f0000000000)=0xffff, 0x2, 0x0)
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0x20b, &(0x7f0000000040)=[{&(0x7f0000000540)="2e000000220005000000c187185095cf0400b0eba0b4d65ce4ffffff51894d5d1dac00"/46, 0x2e}], 0x1}, 0x0)
r2 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000080)='/dev/qat_adf_ctl\x00', 0x200, 0x0)
ioctl$DRM_IOCTL_ADD_CTX(0xffffffffffffffff, 0xc0086420, &(0x7f00000000c0)={<r3=>0x0})
ioctl$DRM_IOCTL_GET_SAREA_CTX(r2, 0xc010641d, &(0x7f0000000200)={r3, &(0x7f0000000100)=""/74})

04:12:59 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x33fe0}}, 0x0)

04:12:59 executing program 2:
r0 = syz_init_net_socket$netrom(0x6, 0x5, 0x0)
connect$netrom(r0, &(0x7f0000000000)={{0x6, @rose}, [@netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @rose, @default, @netrom, @bcast, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, @rose, @null]}, 0x48)
listen(r0, 0x0)
r1 = openat$full(0xffffffffffffff9c, &(0x7f0000000080)='/dev/full\x00', 0x200000, 0x0)
ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r1, 0xc10c5541, &(0x7f00000000c0)={0x100000001, 0x1f, 0x80, 0x0, 0x0, [], [], [], 0x8000})

04:12:59 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"/968]}, 0x440)

04:12:59 executing program 0:
r0 = openat$selinux_load(0xffffffffffffff9c, &(0x7f00000000c0)='/selinux/load\x00', 0x2, 0x0)
write$selinux_load(r0, &(0x7f0000000040)=ANY=[@ANYRESHEX=r0], 0x12)

[ 3292.408817] Memory cgroup out of memory: Kill process 22523 (syz-executor.5) score 1103 or sacrifice child
[ 3292.420478] Killed process 22523 (syz-executor.5) total-vm:72580kB, anon-rss:108kB, file-rss:34816kB, shmem-rss:0kB
[ 3292.433596] oom_reaper: reaped process 22523 (syz-executor.5), now anon-rss:0kB, file-rss:33856kB, shmem-rss:0kB
04:12:59 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"/968]}, 0x440)

04:12:59 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x20000d70}}, 0x0)

[ 3292.535773] SELinux:  policydb magic number 0x30307830 does not match expected magic number 0xf97cff8c
04:12:59 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x1000000}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

04:12:59 executing program 0:
r0 = openat$selinux_load(0xffffffffffffff9c, &(0x7f00000000c0)='/selinux/load\x00', 0x2, 0x0)
r1 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer2\x00', 0x2000, 0x0)
getsockopt$inet_sctp6_SCTP_GET_LOCAL_ADDRS(0xffffffffffffffff, 0x84, 0x6d, &(0x7f0000000040)={<r2=>0x0, 0x6b, "bfce4a1e8ed36657363c08946ce853edab88604cf2ef8a82e7f2be3a7612f2ffa1be57a870c7386b198fbeda4626cb7c3868ae011897e61f623f36ff94ae57d86c388a7283fcf59063037fdbf5488c076076173a851f0cf475d7cf7c28a2436309bdcc7ebac6b6bd966746"}, &(0x7f0000000100)=0x73)
getsockopt$inet_sctp_SCTP_PR_SUPPORTED(r1, 0x84, 0x71, &(0x7f0000000140)={r2, 0x7}, &(0x7f0000000180)=0x8)
write$selinux_load(r0, &(0x7f00000007c0)=ANY=[@ANYBLOB="8cff7cf9080000005345204c696e757816000000d96927940000fffffff82000400000000004000000000000"], 0x2c)

04:12:59 executing program 2:
sched_setscheduler(0x0, 0x5, &(0x7f0000000380))
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
ioctl(0xffffffffffffffff, 0x1000008912, &(0x7f0000000040)="11dca50d5e0bcfe47bf070")
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x16, 0x16, &(0x7f0000000240)=ANY=[@ANYBLOB="61124c00000000006113500000000000bf2000000000000007000000080000003d0301000000000095000000000000006926000000000000bf67000000000000570600000fff07006706000002000000070600000ee60000bf250000000000002d350000000000006507000002000000070700004c0000001f75000000000000bf54000000000000070400000400f9ffad43010000000000950000000000000005000000000000009500000000000000"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x70)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, &(0x7f0000000140)="b805000000b9510000000f01c10f46a78900000066ba2100b067ee66ba4100edb9800000c00f3235004000000f30c4c271de9d0000000066b808008ed0660f38806f000f011c2666b8bf008ee0", 0x4d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, 0x0)
ioctl$IOC_PR_PREEMPT_ABORT(0xffffffffffffffff, 0x401870cc, &(0x7f0000000080)={0x0, 0xb8fb, 0x5})
syz_open_dev$midi(&(0x7f00000001c0)='/dev/midi#\x00', 0xb9b, 0x200000)
r1 = openat$selinux_avc_cache_stats(0xffffffffffffff9c, &(0x7f0000000300)='/selinux/avc/cache_stats\x00', 0x0, 0x0)
ioctl$VHOST_GET_VRING_BASE(r1, 0xc008af12, &(0x7f0000000200))

[ 3292.657430] syz-executor.5 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
04:12:59 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"/968]}, 0x440)

[ 3292.724914] syz-executor.5 cpuset=syz5 mems_allowed=0-1
[ 3292.753243] CPU: 1 PID: 22574 Comm: syz-executor.5 Not tainted 4.19.66 #40
[ 3292.760290] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3292.769658] Call Trace:
[ 3292.772444]  dump_stack+0x172/0x1f0
[ 3292.776092]  dump_header+0x15e/0xa55
[ 3292.779821]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 3292.784940]  ? ___ratelimit+0x60/0x595
[ 3292.788840]  ? do_raw_spin_unlock+0x57/0x270
[ 3292.793265]  oom_kill_process.cold+0x10/0x6ef
[ 3292.797780]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 3292.803331]  ? task_will_free_mem+0x139/0x6e0
[ 3292.807849]  out_of_memory+0x936/0x12d0
[ 3292.811834]  ? lock_downgrade+0x810/0x810
[ 3292.815997]  ? oom_killer_disable+0x280/0x280
[ 3292.820502]  ? find_held_lock+0x35/0x130
[ 3292.824589]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 3292.829545]  ? memcg_event_wake+0x230/0x230
[ 3292.833899]  ? do_raw_spin_unlock+0x57/0x270
[ 3292.838325]  ? _raw_spin_unlock+0x2d/0x50
[ 3292.842492]  try_charge+0x1028/0x15b0
[ 3292.846307]  ? find_held_lock+0x35/0x130
[ 3292.850389]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 3292.855249]  ? kasan_check_read+0x11/0x20
[ 3292.859426]  ? get_mem_cgroup_from_mm+0x156/0x320
[ 3292.864379]  mem_cgroup_try_charge+0x259/0x6b0
[ 3292.868982]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 3292.873934]  wp_page_copy+0x430/0x16a0
[ 3292.877855]  ? pmd_pfn+0x1d0/0x1d0
[ 3292.881417]  ? kasan_check_read+0x11/0x20
[ 3292.885577]  ? do_raw_spin_unlock+0x57/0x270
[ 3292.890001]  do_wp_page+0x57d/0x10b0
[ 3292.893816]  ? finish_mkwrite_fault+0x4f0/0x4f0
[ 3292.898524]  ? kasan_check_write+0x14/0x20
[ 3292.902859]  ? do_raw_spin_lock+0xc8/0x240
[ 3292.902882]  __handle_mm_fault+0x2305/0x3f80
[ 3292.902903]  ? vmf_insert_mixed_mkwrite+0x90/0x90
[ 3292.902934]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 3292.911566]  handle_mm_fault+0x1b5/0x690
[ 3292.925122]  __do_page_fault+0x62a/0xe90
[ 3292.929211]  ? vmalloc_fault+0x740/0x740
[ 3292.933283]  ? trace_hardirqs_off_caller+0x65/0x220
[ 3292.938337]  ? trace_hardirqs_on_caller+0x6a/0x220
[ 3292.943313]  ? page_fault+0x8/0x30
[ 3292.946869]  do_page_fault+0x71/0x57d
[ 3292.950683]  ? page_fault+0x8/0x30
[ 3292.954247]  page_fault+0x1e/0x30
[ 3292.957715] RIP: 0033:0x430906
04:12:59 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x7ffff000}}, 0x0)

[ 3292.960916] Code: 1f 44 00 00 48 29 e8 31 c9 48 81 fb 40 56 71 00 0f 95 c1 48 8d 34 2a 48 83 cd 01 48 c1 e1 02 48 83 c8 01 48 09 e9 48 89 73 58 <48> 89 4a 08 48 89 46 08 48 8d 4a 10 8b 05 5c 46 64 00 85 c0 0f 84
[ 3292.979831] RSP: 002b:00007ffd531650f0 EFLAGS: 00010206
[ 3292.979846] RAX: 00000000000205b1 RBX: 0000000000715640 RCX: 0000000000000121
[ 3292.979853] RDX: 00000000027d6930 RSI: 00000000027d6a50 RDI: 0000000000000000
[ 3292.979861] RBP: 0000000000000121 R08: ffffffffffffffff R09: 0000000000000000
[ 3292.979868] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000715698
[ 3292.979875] R13: 0000000000715698 R14: 0000000000000000 R15: 0000000000002710
[ 3293.023371] Task in /syz5 killed as a result of limit of /syz5
[ 3293.029393] memory: usage 307200kB, limit 307200kB, failcnt 7548
[ 3293.056863] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3293.066965] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3293.082974] Memory cgroup stats for /syz5: cache:72KB rss:16KB rss_huge:0KB shmem:12KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:124KB inactive_file:0KB active_file:0KB unevictable:0KB
[ 3293.113029] Memory cgroup out of memory: Kill process 22574 (syz-executor.5) score 1103 or sacrifice child
04:13:00 executing program 5:
r0 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000240)='/dev/dlm-control\x00', 0x40000, 0x0)
ioctl$SNDRV_TIMER_IOCTL_GINFO(r0, 0xc0f85403, &(0x7f0000000280)={{0xffffffffffffffff, 0x0, 0x5830000000000, 0x3, 0x4}, 0xf177, 0xb431, 'id0\x00', 'timer1\x00', 0x0, 0x8b4, 0x81, 0x0, 0x445})
shmat(0x0, &(0x7f0000ffc000/0x4000)=nil, 0x3000)
mbind(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x2, &(0x7f0000000000)=0xffff, 0x2, 0x0)
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0x20b, &(0x7f0000000040)=[{&(0x7f0000000540)="2e000000220005000000c187185095cf0400b0eba0b4d65cf0ffffff51894d5d1dac00"/46, 0x2e}], 0x1}, 0x0)
r2 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000080)='/dev/qat_adf_ctl\x00', 0x200, 0x0)
ioctl$DRM_IOCTL_ADD_CTX(0xffffffffffffffff, 0xc0086420, &(0x7f00000000c0)={<r3=>0x0})
ioctl$DRM_IOCTL_GET_SAREA_CTX(r2, 0xc010641d, &(0x7f0000000200)={r3, &(0x7f0000000100)=""/74})

04:13:00 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="0000000000400000000000000000000000000000000000000000000000000000feffff0700000000ffffffff020000001d00000001000000080676657468305f746f5f627269646765006e7230000000000000000000000000006772653000000000000000000000000076657468315f746f5f626f6e64000000aaaaaaaaaaaa000000000000aaaaaaaaaaaa00000000000000007000000070000000a80000006172707265706c790000000000000000000000000000000000000000000000001000000000000000aaaaaaaaaaaa0000feffffff0000000009000000000000000000697064647030000000000000000000006272696467655f736c6176655f3100000000000000000000000000000000000067726530000000000000000000000000ffffffffffff0000000000000000000000000000000000000000e0000000180100005001000072617465657374000000000000a3000000000000000000000000000000000000480000000000000064756d6d79300000000000000000000073797a5f74756e0000000ab941773a25a4462a99832900000000000000000000200000000000000000000000000000000000000000000000736e6174000000000000000000000000000000000000000000000000000000001000000000000000aaaaaaaaaaaa000000000000000000006d61726b0000000000000000000000000000000000000000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000002000000feffffff01000000110000000000000000006272696467655f736c6176655f3100000000000000000000000000749638e0006c6f00000000000000000000000000000080616d300000000000000000000000aaaaaaaaaa00000000000000aaaaaaaaaaaa0000000000000000a00000000801000040010000636f6e6e6c6162656c000000000000000000000000000000000000000000000008000000000000000000000000000000434c4153534946590000000000000000000000000000000000ff07000000000008000000000000000000000000000000736e617400000000000000000000000000000000000000000001000000000000100000000000000000000000000000000000000000000000736e6174000000000000000000000000000000000000000000000000000000001000000000001400aaaaaaaaaabb00"/968]}, 0x440)

04:13:00 executing program 2:
fstat(0xffffffffffffffff, &(0x7f0000000140))
fstat(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, <r0=>0x0})
getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, &(0x7f0000000240)={{{@in=@remote, @in6=@mcast1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r1=>0x0}}, {{@in=@dev}, 0x0, @in6=@empty}}, &(0x7f0000000000)=0xe8)
setresuid(r0, r1, 0x0)
request_key(&(0x7f0000000100)='logon\x00', &(0x7f0000000040)={'syz'}, &(0x7f00000000c0)='system[posix_acl_access-wlan1securityposix_acl_access\x00', 0xfffffffffffffffe)

04:13:00 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x2000000}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

04:13:00 executing program 0:
r0 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/autofs\x00', 0x4000, 0x0)
getsockname$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev}, &(0x7f0000000080)=0x1c)
r1 = openat$selinux_load(0xffffffffffffff9c, &(0x7f00000000c0)='/selinux/load\x00', 0x2, 0x0)
write$selinux_load(r1, &(0x7f00000007c0)=ANY=[@ANYBLOB="8cff7cf9080000005345204c696e757816000000d96927940000fffffff82000400000000004000000000000"], 0x2c)

04:13:00 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0xfffffdef}}, 0x0)

[ 3293.123431] Killed process 22574 (syz-executor.5) total-vm:72580kB, anon-rss:108kB, file-rss:34816kB, shmem-rss:0kB
[ 3293.135540] oom_reaper: reaped process 22574 (syz-executor.5), now anon-rss:0kB, file-rss:33856kB, shmem-rss:0kB
04:13:00 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"/968]}, 0x440)

04:13:00 executing program 2:
syz_open_procfs(0x0, &(0x7f0000000040)='net/wireless\x00')
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$fuse(0xffffffffffffff9c, &(0x7f0000000d40)='/dev/fuse\x00', 0x2, 0x0)
syz_genetlink_get_family_id$net_dm(0x0)
pipe(&(0x7f0000000440)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
write(r1, &(0x7f0000000340), 0x41395527)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clock_gettime(0x6, &(0x7f0000000080))
pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0)
vmsplice(r0, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)

04:13:00 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}, 0x2}, 0x0)

04:13:00 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x3000000}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

04:13:00 executing program 0:
r0 = openat$selinux_load(0xffffffffffffff9c, &(0x7f00000000c0)='/selinux/load\x00', 0x2, 0x0)
write$selinux_load(r0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"], 0x2c)

[ 3293.329234] syz-executor.5 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
04:13:00 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"/968]}, 0x440)

[ 3293.399055] syz-executor.5 cpuset=syz5 mems_allowed=0-1
[ 3293.422879] CPU: 0 PID: 22615 Comm: syz-executor.5 Not tainted 4.19.66 #40
[ 3293.429982] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3293.439432] Call Trace:
[ 3293.442036]  dump_stack+0x172/0x1f0
[ 3293.445703]  dump_header+0x15e/0xa55
[ 3293.449440]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 3293.454555]  ? ___ratelimit+0x60/0x595
[ 3293.454572]  ? do_raw_spin_unlock+0x57/0x270
[ 3293.454591]  oom_kill_process.cold+0x10/0x6ef
[ 3293.462894]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 3293.462909]  ? task_will_free_mem+0x139/0x6e0
[ 3293.462931]  out_of_memory+0x936/0x12d0
[ 3293.462946]  ? lock_downgrade+0x810/0x810
[ 3293.462963]  ? oom_killer_disable+0x280/0x280
[ 3293.462978]  ? find_held_lock+0x35/0x130
[ 3293.463006]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 3293.463020]  ? memcg_event_wake+0x230/0x230
[ 3293.463041]  ? do_raw_spin_unlock+0x57/0x270
[ 3293.463064]  ? _raw_spin_unlock+0x2d/0x50
[ 3293.511917]  try_charge+0x1028/0x15b0
[ 3293.515732]  ? find_held_lock+0x35/0x130
[ 3293.519814]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 3293.524681]  ? kasan_check_read+0x11/0x20
[ 3293.528847]  ? get_mem_cgroup_from_mm+0x156/0x320
[ 3293.533718]  mem_cgroup_try_charge+0x259/0x6b0
[ 3293.538323]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 3293.543283]  wp_page_copy+0x430/0x16a0
[ 3293.547194]  ? pmd_pfn+0x1d0/0x1d0
[ 3293.550758]  ? kasan_check_read+0x11/0x20
[ 3293.554923]  ? do_raw_spin_unlock+0x57/0x270
[ 3293.559346]  do_wp_page+0x57d/0x10b0
[ 3293.563074]  ? finish_mkwrite_fault+0x4f0/0x4f0
[ 3293.567755]  ? kasan_check_write+0x14/0x20
[ 3293.572002]  ? do_raw_spin_lock+0xc8/0x240
[ 3293.576255]  __handle_mm_fault+0x2305/0x3f80
[ 3293.580698]  ? vmf_insert_mixed_mkwrite+0x90/0x90
[ 3293.585586]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 3293.590270]  handle_mm_fault+0x1b5/0x690
[ 3293.594358]  __do_page_fault+0x62a/0xe90
[ 3293.598440]  ? vmalloc_fault+0x740/0x740
[ 3293.602521]  ? trace_hardirqs_off_caller+0x65/0x220
[ 3293.607552]  ? trace_hardirqs_on_caller+0x6a/0x220
[ 3293.612498]  ? page_fault+0x8/0x30
[ 3293.616090]  do_page_fault+0x71/0x57d
[ 3293.619908]  ? page_fault+0x8/0x30
[ 3293.623464]  page_fault+0x1e/0x30
[ 3293.626924] RIP: 0033:0x430906
[ 3293.630217] Code: 1f 44 00 00 48 29 e8 31 c9 48 81 fb 40 56 71 00 0f 95 c1 48 8d 34 2a 48 83 cd 01 48 c1 e1 02 48 83 c8 01 48 09 e9 48 89 73 58 <48> 89 4a 08 48 89 46 08 48 8d 4a 10 8b 05 5c 46 64 00 85 c0 0f 84
[ 3293.649123] RSP: 002b:00007ffd531650f0 EFLAGS: 00010206
[ 3293.654509] RAX: 00000000000205b1 RBX: 0000000000715640 RCX: 0000000000000121
[ 3293.661787] RDX: 00000000027d6930 RSI: 00000000027d6a50 RDI: 0000000000000000
[ 3293.669069] RBP: 0000000000000121 R08: ffffffffffffffff R09: 0000000000000000
[ 3293.676356] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000715698
[ 3293.683639] R13: 0000000000715698 R14: 0000000000000000 R15: 0000000000002710
[ 3293.723256] Task in /syz5 killed as a result of limit of /syz5
[ 3293.729314] memory: usage 307168kB, limit 307200kB, failcnt 7577
[ 3293.735557] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3293.748720] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3293.763162] Memory cgroup stats for /syz5: cache:72KB rss:16KB rss_huge:0KB shmem:12KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:124KB inactive_file:0KB active_file:0KB unevictable:0KB
[ 3293.789996] Memory cgroup out of memory: Kill process 22615 (syz-executor.5) score 1103 or sacrifice child
[ 3293.806682] Killed process 22615 (syz-executor.5) total-vm:72580kB, anon-rss:108kB, file-rss:34816kB, shmem-rss:0kB
04:13:00 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}, 0x5}, 0x0)

04:13:00 executing program 5:
r0 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000240)='/dev/dlm-control\x00', 0x40000, 0x0)
ioctl$SNDRV_TIMER_IOCTL_GINFO(r0, 0xc0f85403, &(0x7f0000000280)={{0xffffffffffffffff, 0x0, 0x5830000000000, 0x3, 0x4}, 0xf177, 0xb431, 'id0\x00', 'timer1\x00', 0x0, 0x8b4, 0x81, 0x0, 0x445})
shmat(0x0, &(0x7f0000ffc000/0x4000)=nil, 0x3000)
mbind(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x2, &(0x7f0000000000)=0xffff, 0x2, 0x0)
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0x20b, &(0x7f0000000040)=[{&(0x7f0000000540)="2e000000220005000000c187185095cf0400b0eba0b4d65cfdffffff51894d5d1dac00"/46, 0x2e}], 0x1}, 0x0)
r2 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000080)='/dev/qat_adf_ctl\x00', 0x200, 0x0)
ioctl$DRM_IOCTL_ADD_CTX(0xffffffffffffffff, 0xc0086420, &(0x7f00000000c0)={<r3=>0x0})
ioctl$DRM_IOCTL_GET_SAREA_CTX(r2, 0xc010641d, &(0x7f0000000200)={r3, &(0x7f0000000100)=""/74})

04:13:00 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x4000000}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

04:13:00 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"/968]}, 0x440)

04:13:00 executing program 0:
r0 = openat$selinux_load(0xffffffffffffff9c, &(0x7f00000000c0)='/selinux/load\x00', 0x2, 0x0)
write$selinux_load(r0, &(0x7f00000007c0)=ANY=[@ANYBLOB="8cff7cf9170000005345202e757816000000d96927940000fffffff820004000000000040000000000000000"], 0x2c)
r1 = openat$selinux_status(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/status\x00', 0x0, 0x0)
getsockopt$inet6_IPV6_IPSEC_POLICY(r1, 0x29, 0x22, &(0x7f0000000140)={{{@in6=@mcast2, @in6=@loopback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r2=>0x0}}, {{@in6=@mcast1}, 0x0, @in6}}, &(0x7f0000000240)=0xe8)
ioctl$ifreq_SIOCGIFINDEX_team(r1, 0x8933, &(0x7f0000000280)={'team0\x00', r2})
setsockopt$ALG_SET_AEAD_AUTHSIZE(r1, 0x117, 0x5, 0x0, 0xfffffffffffffff8)

04:13:00 executing program 2:
r0 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
getsockopt$inet_sctp_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000180), &(0x7f00000001c0)=0xb)
ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x89f0, &(0x7f0000000140)={'bridge0\x00\x00z\x00\x00\x00\xff\xff\xfd', &(0x7f0000000000)=ANY=[@ANYBLOB="115411278be7e67b43dd97e2ba612ba1e1e615dc31718352db8aec70538e331f519e3803f02da84d5db7172ca7e4ca26ac15b1826e64c7d66b05e00f5729e46db9a9f7ad6f3f71e14aee869f2b3adfdd865fe4affb542f8a2ef9f6225d38c7e7d221c4479e7629a5c7b36d8ce07563e0004f6887d5cca74372f0616e5c35b0685e07159163a19e5a34589c996a0c2be22cffdfaa4fdd45593bedbb35b93ba7373ccac100594b6498f0f2d4c33d6296b0797ec58db51718d8d737f0c7ef987bcdffae7fc1da7d138dfea75060f551b7c4b2"]})
r1 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
setsockopt$XDP_RX_RING(r1, 0x11b, 0x2, &(0x7f0000000100)=0x48, 0x4)
lseek(r1, 0x0, 0x4)
inotify_init()

[ 3293.820460] oom_reaper: reaped process 22615 (syz-executor.5), now anon-rss:0kB, file-rss:33856kB, shmem-rss:0kB
04:13:00 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}, 0x8}, 0x0)

[ 3293.886475] SELinux:  policydb string length 23 does not match expected length 8
04:13:00 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"/968]}, 0x440)

04:13:00 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x5000000}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

[ 3293.947482] sel_write_load: 9 callbacks suppressed
[ 3293.947489] SELinux: failed to load policy
[ 3293.974026] syz-executor.5 invoked oom-killer: gfp_mask=0x7080c0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), nodemask=(null), order=3, oom_score_adj=1000
04:13:00 executing program 2:
r0 = socket$pppoe(0x18, 0x1, 0x0)
r1 = getpid()
socket$bt_bnep(0x1f, 0x3, 0x4)
r2 = syz_open_dev$mice(&(0x7f0000000140)='/dev/input/mice\x00', 0x0, 0x100)
setsockopt$IP_VS_SO_SET_STOPDAEMON(r2, 0x0, 0x48c, &(0x7f0000000180)={0xc9074525b23a6023, 'veth0\x00', 0x4}, 0x18)
wait4(r1, &(0x7f0000000000), 0x9ee2c820743e70c2, 0x0)
r3 = openat$proc_capi20ncci(0xffffffffffffff9c, &(0x7f0000000040)='/proc/capi/capi20ncci\x00', 0x244200, 0x0)
setsockopt$inet_sctp_SCTP_AUTH_CHUNK(r3, 0x84, 0x15, &(0x7f0000000100)={0x4}, 0x1)
setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(r3, 0x84, 0x6e, &(0x7f00000000c0)=[@in={0x2, 0x4e21, @initdev={0xac, 0x1e, 0x0, 0x0}}], 0x10)
ioctl$PPPOEIOCSFWD(r0, 0x4008b100, &(0x7f0000000080)={0x18, 0x0, {0x3, @remote}})

[ 3294.018433] syz-executor.5 cpuset=syz5 mems_allowed=0-1
[ 3294.025929] SELinux:  policydb string length 23 does not match expected length 8
[ 3294.047483] CPU: 0 PID: 22655 Comm: syz-executor.5 Not tainted 4.19.66 #40
[ 3294.054531] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3294.063888] Call Trace:
[ 3294.066501]  dump_stack+0x172/0x1f0
[ 3294.071644]  dump_header+0x15e/0xa55
[ 3294.071851] SELinux: failed to load policy
[ 3294.075377]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 3294.075393]  ? ___ratelimit+0x60/0x595
[ 3294.075407]  ? do_raw_spin_unlock+0x57/0x270
[ 3294.075426]  oom_kill_process.cold+0x10/0x6ef
[ 3294.075446]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 3294.075459]  ? task_will_free_mem+0x139/0x6e0
[ 3294.075474]  ? find_held_lock+0x35/0x130
[ 3294.075495]  out_of_memory+0x936/0x12d0
04:13:01 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="00000000004000000000000000000000000000000000000000000000000000000000000000000001ffffffff020000001d00000001000000080676657468305f746f5f627269646765006e7230000000000000000000000000006772653000000000000000000000000076657468315f746f5f626f6e64000000aaaaaaaaaaaa000000000000aaaaaaaaaaaa00000000000000007000000070000000a80000006172707265706c790000000000000000000000000000000000000000000000001000000000000000aaaaaaaaaaaa0000feffffff0000000009000000000000000000697064647030000000000000000000006272696467655f736c6176655f3100000000000000000000000000000000000067726530000000000000000000000000ffffffffffff0000000000000000000000000000000000000000e0000000180100005001000072617465657374000000000000a3000000000000000000000000000000000000480000000000000064756d6d79300000000000000000000073797a5f74756e0000000ab941773a25a4462a99832900000000000000000000200000000000000000000000000000000000000000000000736e6174000000000000000000000000000000000000000000000000000000001000000000000000aaaaaaaaaaaa000000000000000000006d61726b0000000000000000000000000000000000000000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000002000000feffffff01000000110000000000000000006272696467655f736c6176655f3100000000000000000000000000749638e0006c6f00000000000000000000000000000080616d300000000000000000000000aaaaaaaaaa00000000000000aaaaaaaaaaaa0000000000000000a00000000801000040010000636f6e6e6c6162656c000000000000000000000000000000000000000000000008000000000000000000000000000000434c4153534946590000000000000000000000000000000000ff07000000000008000000000000000000000000000000736e617400000000000000000000000000000000000000000001000000000000100000000000000000000000000000000000000000000000736e6174000000000000000000000000000000000000000000000000000000001000000000001400aaaaaaaaaabb00"/968]}, 0x440)

[ 3294.075511]  ? lock_downgrade+0x810/0x810
[ 3294.075536]  ? oom_killer_disable+0x280/0x280
[ 3294.124309]  ? find_held_lock+0x35/0x130
[ 3294.128398]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 3294.133253]  ? memcg_event_wake+0x230/0x230
[ 3294.137597]  ? do_raw_spin_unlock+0x57/0x270
[ 3294.142021]  ? _raw_spin_unlock+0x2d/0x50
[ 3294.146185]  try_charge+0x1028/0x15b0
[ 3294.149996]  ? find_held_lock+0x35/0x130
[ 3294.154085]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 3294.158945]  ? get_mem_cgroup_from_mm+0x139/0x320
[ 3294.163805]  ? find_held_lock+0x35/0x130
04:13:01 executing program 0:
r0 = openat$selinux_load(0xffffffffffffff9c, &(0x7f00000000c0)='/selinux/load\x00', 0x2, 0x0)
write$selinux_load(r0, &(0x7f00000007c0)=ANY=[@ANYBLOB="8cff7cf9080000005345204c696e757816000000fc6927946bc7fffffff82000400000010000000000000000"], 0x2c)

[ 3294.167884]  ? get_mem_cgroup_from_mm+0x139/0x320
[ 3294.172752]  memcg_kmem_charge_memcg+0x7c/0x130
[ 3294.177433]  ? memcg_kmem_put_cache+0xb0/0xb0
[ 3294.181952]  ? get_mem_cgroup_from_mm+0x156/0x320
[ 3294.186812]  memcg_kmem_charge+0x136/0x370
[ 3294.191079]  __alloc_pages_nodemask+0x3c3/0x750
[ 3294.195760]  ? __alloc_pages_slowpath+0x2870/0x2870
[ 3294.195780]  ? lockdep_hardirqs_on+0x415/0x5d0
[ 3294.195796]  ? trace_hardirqs_on+0x67/0x220
[ 3294.195810]  ? kasan_check_read+0x11/0x20
[ 3294.195829]  copy_process.part.0+0x3e0/0x7a30
[ 3294.195848]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 3294.195865]  ? delayacct_end+0x5c/0x100
[ 3294.195886]  ? __delayacct_freepages_end+0xe0/0x140
[ 3294.195902]  ? __lock_acquire+0x6ee/0x49c0
[ 3294.236894]  ? __cleanup_sighand+0x70/0x70
[ 3294.241145]  ? mark_held_locks+0x100/0x100
[ 3294.245413]  _do_fork+0x257/0xfd0
[ 3294.248890]  ? fork_idle+0x1d0/0x1d0
[ 3294.252631]  ? blkg_prfill_rwstat_field_recursive+0x100/0x100
[ 3294.258543]  ? kasan_check_read+0x11/0x20
[ 3294.262714]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 3294.265216] SELinux: ebitmap: map size 16777280 does not match my size 64 (high bit was 0)
[ 3294.267484]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 3294.267501]  ? do_syscall_64+0x26/0x620
[ 3294.267517]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 3294.267530]  ? do_syscall_64+0x26/0x620
[ 3294.267552]  __x64_sys_clone+0xbf/0x150
[ 3294.299397]  do_syscall_64+0xfd/0x620
[ 3294.303219]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 3294.308415] RIP: 0033:0x45c1f9
[ 3294.311709] Code: ff 48 85 f6 0f 84 27 8e fb ff 48 83 ee 10 48 89 4e 08 48 89 3e 48 89 d7 4c 89 c2 4d 89 c8 4c 8b 54 24 08 b8 38 00 00 00 0f 05 <48> 85 c0 0f 8c fe 8d fb ff 74 01 c3 31 ed 48 f7 c7 00 00 01 00 75
[ 3294.320044] SELinux: failed to load policy
[ 3294.330627] RSP: 002b:00007ffd531651c8 EFLAGS: 00000202 ORIG_RAX: 0000000000000038
[ 3294.330644] RAX: ffffffffffffffda RBX: 00007f09e67fe700 RCX: 000000000045c1f9
[ 3294.330652] RDX: 00007f09e67fe9d0 RSI: 00007f09e67fddb0 RDI: 00000000003d0f00
[ 3294.330661] RBP: 00007ffd531653e0 R08: 00007f09e67fe700 R09: 00007f09e67fe700
04:13:01 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}, 0x300}, 0x0)

[ 3294.330676] R10: 00007f09e67fe9d0 R11: 0000000000000202 R12: 0000000000000000
[ 3294.330685] R13: 00007ffd5316527f R14: 00007f09e67fe9c0 R15: 000000000075bf2c
[ 3294.401468] Task in /syz5 killed as a result of limit of /syz5
[ 3294.408643] memory: usage 307176kB, limit 307200kB, failcnt 7593
[ 3294.417413] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3294.452986] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3294.487947] Memory cgroup stats for /syz5: cache:72KB rss:148KB rss_huge:0KB shmem:12KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:132KB inactive_file:0KB active_file:0KB unevictable:0KB
[ 3294.527449] Memory cgroup out of memory: Kill process 22655 (syz-executor.5) score 1103 or sacrifice child
[ 3294.559257] Killed process 22655 (syz-executor.5) total-vm:72580kB, anon-rss:108kB, file-rss:34816kB, shmem-rss:0kB
[ 3294.571708] oom_reaper: reaped process 22655 (syz-executor.5), now anon-rss:0kB, file-rss:34820kB, shmem-rss:0kB
04:13:01 executing program 5:
r0 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000240)='/dev/dlm-control\x00', 0x40000, 0x0)
ioctl$SNDRV_TIMER_IOCTL_GINFO(r0, 0xc0f85403, &(0x7f0000000280)={{0xffffffffffffffff, 0x0, 0x5830000000000, 0x3, 0x4}, 0xf177, 0xb431, 'id0\x00', 'timer1\x00', 0x0, 0x8b4, 0x81, 0x0, 0x445})
shmat(0x0, &(0x7f0000ffc000/0x4000)=nil, 0x3000)
mbind(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x2, &(0x7f0000000000)=0xffff, 0x2, 0x0)
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0x20b, &(0x7f0000000040)=[{&(0x7f0000000540)="2e000000220005000000c187185095cf0400b0eba0b4d65c0000000025894d5d1dac00"/46, 0x2e}], 0x1}, 0x0)
r2 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000080)='/dev/qat_adf_ctl\x00', 0x200, 0x0)
ioctl$DRM_IOCTL_ADD_CTX(0xffffffffffffffff, 0xc0086420, &(0x7f00000000c0)={<r3=>0x0})
ioctl$DRM_IOCTL_GET_SAREA_CTX(r2, 0xc010641d, &(0x7f0000000200)={r3, &(0x7f0000000100)=""/74})

04:13:01 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"/968]}, 0x440)

04:13:01 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x6000000}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

04:13:01 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}, 0xffffff1f}, 0x0)

04:13:01 executing program 0:
r0 = openat$selinux_load(0xffffffffffffff9c, &(0x7f00000000c0)='/selinux/load\x00', 0x2, 0x0)
write$selinux_load(r0, &(0x7f0000000240)=ANY=[@ANYRES32=r0, @ANYRES32=r0, @ANYPTR=&(0x7f0000000100)=ANY=[@ANYRES32=0x0, @ANYBLOB="66507daf38b6c2cc292faaeae9d717f954ed2a0abb2dac97bb576f3f318d57f0d62f50bee4de579dfc51e17873d52192d585347f64a767f6db4933f778e7a69d5ce53b9643fc6f3705d0a93cd8d1b3d968a4516b275c39d1393b89ca25ae20be21e7c1489a9c6c0bd11126119d1dab456ea093507cdffbb9e48b6cae6dc65ce8777c9dddd546d47d6d19fabf801871b51e90f18cdebaf3544c4c5de375d68655a7521d478f90cd3ebf839206792715278b712c769121b929197db366ce2c46cae7e7e734f8843b2f510f9b61ff2579555e948f49dbceb0ea8eccab52b0e04dc0e5acecaf96dfcb0e54cee9efd10b94c18f052118139f9b5111", @ANYRESDEC=r0, @ANYRESOCT=r0, @ANYRES16=r0], @ANYPTR64, @ANYRES32=r0, @ANYRESOCT=0x0, @ANYRESOCT=r0, @ANYBLOB="df5f44aac56ffa5bf70d407377f513412bcc4e7cd946886b11188ea301958eff788f454952fad280d73cb4c248011adcb2669ed58fa7306cedf9084ad7d9b546822a94dda5520fd8eb13523279338b8ab6bf5642ff1603cd5d0c1999a0b50a24deb517aefa241d6643ecc98d5975df5cb21cda2d0db935c637bbebedd1b706e024f9b77b21917e806af6922097f913509d012f3c581a63936dbe03fe602ede6c7495622c6773ae9827af96599bb80cdd9cae6d288e61073fbaae3204c13d52142d654cc99978794d953716d113a3cd138dd6993eb475031e3fd0e147c4"], 0x127)

04:13:01 executing program 2:
r0 = syz_open_dev$mice(&(0x7f0000000040)='/dev/input/mice\x00', 0x0, 0x80)
write$sndseq(r0, &(0x7f0000000080), 0x0)
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa936, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
getsockopt$IP_VS_SO_GET_INFO(r0, 0x0, 0x481, &(0x7f0000000080), &(0x7f00000000c0)=0xc)
openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dlm_plock\x00', 0x200, 0x0)
r1 = gettid()
waitid(0x2, r1, 0x0, 0x80000008, 0x0)

04:13:01 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"/968]}, 0x440)

04:13:01 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x7000000}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

04:13:01 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}, 0x1, 0x2}, 0x0)

[ 3294.676344] SELinux:  policydb magic number 0x3 does not match expected magic number 0xf97cff8c
[ 3294.701557] syz-executor.5 invoked oom-killer: gfp_mask=0x7080c0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), nodemask=(null), order=3, oom_score_adj=1000
[ 3294.713423] SELinux: failed to load policy
04:13:01 executing program 0:
r0 = openat$selinux_load(0xffffffffffffff9c, &(0x7f00000000c0)='/selinux/load\x00', 0x2, 0x0)
write$selinux_load(r0, &(0x7f00000001c0)=ANY=[@ANYRES64=r0], 0x8)
r1 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000100)='/dev/qat_adf_ctl\x00', 0x800, 0x0)
bind$unix(r1, &(0x7f0000000040)=@abs={0x1, 0x0, 0x4e21}, 0x6e)
getpeername(r1, &(0x7f0000000140)=@vsock={0x28, 0x0, 0x0, @reserved}, &(0x7f0000000000)=0x80)

[ 3294.782376] syz-executor.5 cpuset=syz5 mems_allowed=0-1
[ 3294.808144] CPU: 1 PID: 22792 Comm: syz-executor.5 Not tainted 4.19.66 #40
[ 3294.815203] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3294.824562] Call Trace:
[ 3294.827177]  dump_stack+0x172/0x1f0
[ 3294.830831]  dump_header+0x15e/0xa55
[ 3294.834567]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 3294.839717]  ? ___ratelimit+0x60/0x595
[ 3294.843620]  ? do_raw_spin_unlock+0x57/0x270
[ 3294.848049]  oom_kill_process.cold+0x10/0x6ef
[ 3294.852577]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 3294.858129]  ? task_will_free_mem+0x139/0x6e0
[ 3294.862395] SELinux:  policydb magic number 0x3 does not match expected magic number 0xf97cff8c
[ 3294.862648]  ? find_held_lock+0x35/0x130
[ 3294.862670]  out_of_memory+0x936/0x12d0
04:13:01 executing program 0:
r0 = openat$selinux_load(0xffffffffffffff9c, &(0x7f00000000c0)='/selinux/load\x00', 0x2, 0x0)
r1 = accept4$alg(0xffffffffffffffff, 0x0, 0x0, 0x800)
r2 = syz_open_dev$mice(&(0x7f0000000700)='/dev/input/mice\x00', 0x0, 0x22400)
write$input_event(r2, &(0x7f0000000740)={{}, 0x1, 0x5b, 0xffffffffffffff80}, 0x18)
getsockname$packet(r2, &(0x7f0000000a80)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000940)=0x14)
sendmsg$inet(r1, &(0x7f0000000a40)={0x0, 0x0, &(0x7f0000000640)=[{&(0x7f0000000000)="c388903ce6efe4673f5d83eeb8364e7aaeb13e4891244de249ea5e99e87c7cb169907297f387d5c14fc2d8d987c4a9f7236105321c6dd418d02967fb034f5bff88245d695034445f367203206f896e3a6bc523", 0x53}, {&(0x7f0000000100)="2cdfebc0a8c97ad97f6774537911cc436d1d36eceb35ecd95693f8953ccecd9ca325afa29e1398e9abd366c359f892be4a55a6c3a0818707e223e69b97ebd9a5957834640b842904e85f913b8ce71c0094ecbb7ca8d4294c94594e3ccf6bde6d872fd5ba792ed18ce893c408c8a590fc9762466e027ee6bf97abb04a1e85afa5a85959beb9b3917d6930bf6c2040d3c692dd895afea4246550b3744d37e22a45dca7e77513a025a00db7458fa1ba4a1aa60a996d", 0xb4}, {&(0x7f00000001c0)="ca4df9193383ec33f43057de3470c5198585ca54f53aaa5aa9b3f0e4df785e1278c1c6046363f26f2f3c970a50ddb58ced637e87cb92711f16751ff0aadeae7e2de439a4db343554638676d869fd8ed62fe0b03a81c9f09d1fcec680a0cacda830f12e619870df54b80dfb77abcc47e808b383a0b2ca0306898790f767a97e3792a126f4f742da6389516beda0d6f01e89371f7b01ff2b5998a894d8624278f9bf6715c704ea250fcb96ed8874898671d8b9bde8af440e258ca08cf0130c8e5c37d9b22c3c81163ac7126975e93c160cbd59d660254d3dc57f87ef1e4e58f05e318a13b62d620bad3510e20fcc62901065", 0xf1}, {&(0x7f0000000080)="12ff5e9f7233afec1cc2645867557a1eeafa24fc4dcc86c43c857a11", 0x1c}, {&(0x7f00000002c0)="c5ee02dbd5a7a00261fce52220f57608fbc2be6b7ba72decd67664435db409da65e834425d6eaba6e1d191e55804e3e03f95b2a5fe0676cde676bc49b7cd81a7c135171b2538cac5d35c58b5c424aa8f6279ca5a15eb0217b0de3ab24924e15abed3306367297a5cbd5085530c9100d7e5a5e5e670dba258ba5e63acce93912a4b5161920ea8e887ddf1c0467a8dc3a2e59e4112df85789454812cbd517926db684015b6687ce9cdda73aa7560c76bb252257e12aac8b24f2f8f26a577070a3f76863514d4851db92c166ac31defe04072f81027e35bf8bb5429d382f546901b4e42147f0c4122cc5eb8a08c", 0xec}, {&(0x7f00000003c0)="8516eb7eddcb27a20869664b94f041fa1a82e7908b2194af12f4c6bb6b3aa9b95e37e473b1807d01f9c11bb076a08a2636741c0391320d85b747d41a88a8ad677e289ccb5e883916921bf471b68566bb2970e150fcbfa4110f3b51daad1404c69adb44214b0f5590a9fa4421723b4aeefe849c242404c8dbe6f6293d4c2b0beae5bd22c69f93a3c184ad9a0512416f1087a3771605fde6fa9202980de1dab3cd36057f87b5f5941ec1f1da7f96765a3efd23ae8fde31ad4cf8341e4ed4ed43", 0xbf}, {&(0x7f0000000480)="d91f696f76776179a6bb927e144a0b651d28859c3159a9b6d80d5e37182dfe37b860999d25f00a5a0306894c540f5b4172236abf8cefd01e97a2cd425c5c571f3967234aa32eaa40e73f12649662a7355afaa46a6cb3931b76f4a7cbcaf3275704fdca5334fd25fb30ddc828947f1a8485213931", 0x74}, {&(0x7f0000000500)="48190c0ea82a9ddc63d728b0c642ef9483a9652aeedf87849127fa6ad0bbe9", 0x1f}, {&(0x7f0000000540)="58ca1edbe0da146b054c4a8c2ad54cc1cbecbbc3f18c89dd20f6f2b057f2a5e0664168b152eac142089fcc31b5b25c5a6c9a0034e54fcef164230e3f49a2553e7f5e1625504f1d551c150b73b4e009bfe1c4ae5b5a8f6b1d9aadeec05af21d4a9043ba21e9a076ed09a4ca33c5fdd76fd197f8cf9d665ca43d8793e9d335b1fefac7247eeb30b14a0499603e8913081985dcf2c9437950984b6e4185adcefb1a4a801610f7f4fa828403f0372043514a54f4466938c49835efd0a03470091eea5c9fd9d049b4ccb46da46d1cbbe222421c6caed60a69ad8c18d25071ee2a", 0xde}], 0x9, &(0x7f0000000a00)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {r3, @broadcast, @remote}}}], 0x20}, 0x0)
ioctl$VT_RESIZEX(r2, 0x560a, &(0x7f0000000780)={0x6, 0x7fffffff, 0x5, 0x3, 0x5, 0x1})
write$selinux_load(r0, &(0x7f00000007c0)=ANY=[@ANYBLOB="8cff7cf90c0000005345204c696e757816000000d96927940000fffffff820004000a23e13fe404c68be6f4a"], 0x2c)
prctl$PR_MPX_ENABLE_MANAGEMENT(0x2b)
ioctl$VIDIOC_G_PARM(0xffffffffffffffff, 0xc0cc5615, &(0x7f0000000800)={0xa, @output={0x1000, 0x1, {0x2, 0xca0}, 0x5, 0x1}})
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r2, 0x4040534e, &(0x7f0000000980)={0x2, @time, 0x8, {0x1, 0x1}, 0x80000001, 0x1, 0x3})
clock_getres(0xdb55d8ada78c38bb, &(0x7f0000000900))

[ 3294.862685]  ? lock_downgrade+0x810/0x810
[ 3294.862703]  ? oom_killer_disable+0x280/0x280
[ 3294.862723]  ? find_held_lock+0x35/0x130
[ 3294.872061] SELinux: failed to load policy
[ 3294.875634]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 3294.875651]  ? memcg_event_wake+0x230/0x230
[ 3294.875672]  ? do_raw_spin_unlock+0x57/0x270
[ 3294.875689]  ? _raw_spin_unlock+0x2d/0x50
[ 3294.875708]  try_charge+0x1028/0x15b0
[ 3294.883483] SELinux:  policydb magic number 0x3 does not match expected magic number 0xf97cff8c
[ 3294.883838]  ? find_held_lock+0x35/0x130
04:13:01 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x8030000}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

[ 3294.889361] SELinux: failed to load policy
[ 3294.892394]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 3294.892412]  ? get_mem_cgroup_from_mm+0x139/0x320
[ 3294.892430]  ? find_held_lock+0x35/0x130
[ 3294.892449]  ? get_mem_cgroup_from_mm+0x139/0x320
[ 3294.953860]  memcg_kmem_charge_memcg+0x7c/0x130
[ 3294.958543]  ? memcg_kmem_put_cache+0xb0/0xb0
[ 3294.963055]  ? get_mem_cgroup_from_mm+0x156/0x320
[ 3294.963073]  memcg_kmem_charge+0x136/0x370
[ 3294.963092]  __alloc_pages_nodemask+0x3c3/0x750
[ 3294.963110]  ? __alloc_pages_slowpath+0x2870/0x2870
[ 3294.981892]  ? lockdep_hardirqs_on+0x415/0x5d0
[ 3294.986489]  ? trace_hardirqs_on+0x67/0x220
[ 3294.990825]  ? kasan_check_read+0x11/0x20
[ 3294.994993]  copy_process.part.0+0x3e0/0x7a30
[ 3294.999514]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 3295.004639]  ? delayacct_end+0x5c/0x100
[ 3295.008629]  ? __delayacct_freepages_end+0xe0/0x140
[ 3295.013667]  ? __lock_acquire+0x6ee/0x49c0
[ 3295.017925]  ? __cleanup_sighand+0x70/0x70
[ 3295.022244]  ? mark_held_locks+0x100/0x100
[ 3295.026512]  _do_fork+0x257/0xfd0
[ 3295.029986]  ? fork_idle+0x1d0/0x1d0
[ 3295.033722]  ? blkg_prfill_rwstat_field_recursive+0x100/0x100
[ 3295.035215] SELinux:  policydb string length 12 does not match expected length 8
[ 3295.039620]  ? kasan_check_read+0x11/0x20
[ 3295.039640]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 3295.039654]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 3295.039676]  ? do_syscall_64+0x26/0x620
[ 3295.047928] SELinux: failed to load policy
[ 3295.051374]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 3295.051391]  ? do_syscall_64+0x26/0x620
[ 3295.051411]  __x64_sys_clone+0xbf/0x150
[ 3295.051430]  do_syscall_64+0xfd/0x620
[ 3295.086287]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 3295.091588] RIP: 0033:0x45c1f9
[ 3295.091604] Code: ff 48 85 f6 0f 84 27 8e fb ff 48 83 ee 10 48 89 4e 08 48 89 3e 48 89 d7 4c 89 c2 4d 89 c8 4c 8b 54 24 08 b8 38 00 00 00 0f 05 <48> 85 c0 0f 8c fe 8d fb ff 74 01 c3 31 ed 48 f7 c7 00 00 01 00 75
[ 3295.091612] RSP: 002b:00007ffd531651c8 EFLAGS: 00000202 ORIG_RAX: 0000000000000038
[ 3295.091628] RAX: ffffffffffffffda RBX: 00007f09e67fe700 RCX: 000000000045c1f9
[ 3295.091641] RDX: 00007f09e67fe9d0 RSI: 00007f09e67fddb0 RDI: 00000000003d0f00
[ 3295.113739] RBP: 00007ffd531653e0 R08: 00007f09e67fe700 R09: 00007f09e67fe700
[ 3295.113758] R10: 00007f09e67fe9d0 R11: 0000000000000202 R12: 0000000000000000
[ 3295.113767] R13: 00007ffd5316527f R14: 00007f09e67fe9c0 R15: 000000000075bf2c
[ 3295.126008] Task in /syz5 killed as a result of limit of /syz5
[ 3295.166256] memory: usage 307176kB, limit 307200kB, failcnt 7624
[ 3295.172509] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3295.181741] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3295.188789] Memory cgroup stats for /syz5
[ 3295.191480] SELinux:  policydb string length 12 does not match expected length 8
[ 3295.194158] :
[ 3295.201544] SELinux: failed to load policy
[ 3295.203798]  cache:72KB rss:148KB rss_huge:0KB shmem:12KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:132KB inactive_file:0KB active_file:0KB unevictable:0KB
04:13:02 executing program 5:
r0 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000240)='/dev/dlm-control\x00', 0x40000, 0x0)
ioctl$SNDRV_TIMER_IOCTL_GINFO(r0, 0xc0f85403, &(0x7f0000000280)={{0xffffffffffffffff, 0x0, 0x5830000000000, 0x3, 0x4}, 0xf177, 0xb431, 'id0\x00', 'timer1\x00', 0x0, 0x8b4, 0x81, 0x0, 0x445})
shmat(0x0, &(0x7f0000ffc000/0x4000)=nil, 0x3000)
mbind(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x2, &(0x7f0000000000)=0xffff, 0x2, 0x0)
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0x20b, &(0x7f0000000040)=[{&(0x7f0000000540)="2e000000220005000000c187185095cf0400b0eba0b4d65c0002000051894d5d1dac00"/46, 0x2e}], 0x1}, 0x0)
r2 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000080)='/dev/qat_adf_ctl\x00', 0x200, 0x0)
ioctl$DRM_IOCTL_ADD_CTX(0xffffffffffffffff, 0xc0086420, &(0x7f00000000c0)={<r3=>0x0})
ioctl$DRM_IOCTL_GET_SAREA_CTX(r2, 0xc010641d, &(0x7f0000000200)={r3, &(0x7f0000000100)=""/74})

04:13:02 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"/968]}, 0x440)

04:13:02 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0xa000000}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

04:13:02 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}, 0x1, 0x3}, 0x0)

04:13:02 executing program 2:
r0 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dsp\x00', 0x2, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r1, 0x1400008912, &(0x7f0000000040)="11dca50d5e0bcfe47bf070")
mmap$binder(&(0x7f0000ff9000/0x7000)=nil, 0x7000, 0x1, 0x11, r0, 0x0)
prctl$PR_SET_TSC(0x1a, 0x3)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000200)={0x0, 0x18, 0xfa00, {0x0, 0x0}}, 0x20)
mmap$binder(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x12, r0, 0x80000000000000)
ioctl$PERF_EVENT_IOC_SET_FILTER(r0, 0x40082406, &(0x7f0000000080)='\x00')

04:13:02 executing program 0:
r0 = openat$selinux_load(0xffffffffffffff9c, &(0x7f0000000080)='/selinux/load\x00', 0x2, 0x0)
getegid()
write$selinux_load(r0, &(0x7f00000000c0)=ANY=[@ANYBLOB="8cffeba2d1f4cfed4435e60420a8467cf9080000005345204c696e757816000000d96927940000fffffff82000540000000004000000000000"], 0xfffffffffffffee7)
getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, &(0x7f0000000280)={{{@in=@loopback, @in6=@loopback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r1=>0x0}}, {{@in6=@mcast1}, 0x0, @in6=@remote}}, &(0x7f0000000380)=0xe8)
syz_mount_image$hfs(&(0x7f0000000180)='hfs\x00', &(0x7f00000001c0)='./file0\x00', 0x100, 0x1, &(0x7f0000000240)=[{&(0x7f0000000200)="d5544e51da3f33471a4d47e8aba1a1599f54", 0x12, 0x8}], 0x800000, &(0x7f00000003c0)={[{@type={'type', 0x3d, "c85525da"}}, {@creator={'creator', 0x3d, "0f776278"}}, {@part={'part', 0x3d, 0xdeb}}, {@session={'session', 0x3d, 0x80000001}}], [{@pcr={'pcr', 0x3d, 0x3f}}, {@subj_role={'subj_role', 0x3d, '/selinux/load\x00'}}, {@obj_user={'obj_user', 0x3d, '/selinux/load\x00'}}, {@obj_role={'obj_role', 0x3d, '/selinux/load\x00'}}, {@audit='audit'}, {@subj_type={'subj_type', 0x3d, '%.mime_typeeth0'}}, {@fsmagic={'fsmagic', 0x3d, 0xffffffffffffffaa}}, {@smackfshat={'smackfshat', 0x3d, '/selinux/load\x00'}}, {@fowner_eq={'fowner', 0x3d, r1}}]})
r2 = accept4(0xffffffffffffffff, &(0x7f0000000000)=@can, &(0x7f0000000100)=0x80, 0x800)
connect$bt_sco(r2, &(0x7f0000000500)={0x1f, {0x800, 0x2, 0x20, 0xa, 0x8000, 0x429}}, 0x8)

[ 3295.227072] Memory cgroup out of memory: Kill process 22792 (syz-executor.5) score 1103 or sacrifice child
[ 3295.240490] Killed process 22792 (syz-executor.5) total-vm:72580kB, anon-rss:108kB, file-rss:34816kB, shmem-rss:0kB
[ 3295.257941] oom_reaper: reaped process 22792 (syz-executor.5), now anon-rss:0kB, file-rss:34820kB, shmem-rss:0kB
04:13:02 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"/968]}, 0x440)

04:13:02 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0xc000000}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

04:13:02 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}, 0x1, 0x4}, 0x0)

[ 3295.381343] audit: type=1400 audit(2000002382.270:572): avc:  denied  { map } for  pid=22823 comm="syz-executor.2" path="/dev/dsp" dev="devtmpfs" ino=15998 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=system_u:object_r:sound_device_t:s0 tclass=chr_file permissive=1
[ 3295.450498] syz-executor.5 invoked oom-killer: gfp_mask=0x7080c0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), nodemask=(null), order=3, oom_score_adj=1000
[ 3295.466703] hfs: session requires an argument
[ 3295.471256] hfs: unable to parse mount options
04:13:02 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0xe000000}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

04:13:02 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"/968]}, 0x440)

04:13:02 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}, 0x1, 0x6}, 0x0)

[ 3295.536464] syz-executor.5 cpuset=syz5 mems_allowed=0-1
[ 3295.541978] CPU: 1 PID: 22830 Comm: syz-executor.5 Not tainted 4.19.66 #40
[ 3295.548999] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3295.558358] Call Trace:
[ 3295.560968]  dump_stack+0x172/0x1f0
[ 3295.564616]  dump_header+0x15e/0xa55
[ 3295.568378]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 3295.573667]  ? ___ratelimit+0x60/0x595
[ 3295.577570]  ? do_raw_spin_unlock+0x57/0x270
[ 3295.581995]  oom_kill_process.cold+0x10/0x6ef
[ 3295.586519]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 3295.592072]  ? task_will_free_mem+0x139/0x6e0
[ 3295.596583]  ? find_held_lock+0x35/0x130
[ 3295.600664]  out_of_memory+0x936/0x12d0
[ 3295.604663]  ? lock_downgrade+0x810/0x810
[ 3295.608826]  ? oom_killer_disable+0x280/0x280
[ 3295.613357]  ? find_held_lock+0x35/0x130
[ 3295.617451]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 3295.622306]  ? memcg_event_wake+0x230/0x230
[ 3295.626647]  ? do_raw_spin_unlock+0x57/0x270
[ 3295.631064]  ? _raw_spin_unlock+0x2d/0x50
[ 3295.635203]  try_charge+0x1028/0x15b0
[ 3295.639002]  ? find_held_lock+0x35/0x130
[ 3295.643066]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 3295.647902]  ? get_mem_cgroup_from_mm+0x139/0x320
[ 3295.652744]  ? find_held_lock+0x35/0x130
[ 3295.656805]  ? get_mem_cgroup_from_mm+0x139/0x320
[ 3295.661659]  memcg_kmem_charge_memcg+0x7c/0x130
[ 3295.666347]  ? memcg_kmem_put_cache+0xb0/0xb0
[ 3295.670837]  ? get_mem_cgroup_from_mm+0x156/0x320
[ 3295.675674]  memcg_kmem_charge+0x136/0x370
[ 3295.679902]  __alloc_pages_nodemask+0x3c3/0x750
[ 3295.684561]  ? __alloc_pages_slowpath+0x2870/0x2870
[ 3295.689567]  ? lockdep_hardirqs_on+0x415/0x5d0
[ 3295.694143]  ? trace_hardirqs_on+0x67/0x220
[ 3295.698484]  ? kasan_check_read+0x11/0x20
[ 3295.702974]  copy_process.part.0+0x3e0/0x7a30
[ 3295.707468]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 3295.712575]  ? delayacct_end+0x5c/0x100
[ 3295.716554]  ? __delayacct_freepages_end+0xe0/0x140
[ 3295.721576]  ? __lock_acquire+0x6ee/0x49c0
[ 3295.725837]  ? __cleanup_sighand+0x70/0x70
[ 3295.730060]  ? mark_held_locks+0x100/0x100
[ 3295.734315]  _do_fork+0x257/0xfd0
[ 3295.737766]  ? fork_idle+0x1d0/0x1d0
[ 3295.741490]  ? blkg_prfill_rwstat_field_recursive+0x100/0x100
[ 3295.747370]  ? kasan_check_read+0x11/0x20
[ 3295.751511]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 3295.756263]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 3295.761010]  ? do_syscall_64+0x26/0x620
[ 3295.764975]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 3295.770325]  ? do_syscall_64+0x26/0x620
[ 3295.774303]  __x64_sys_clone+0xbf/0x150
[ 3295.778284]  do_syscall_64+0xfd/0x620
[ 3295.782088]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 3295.787272] RIP: 0033:0x45c1f9
[ 3295.790456] Code: ff 48 85 f6 0f 84 27 8e fb ff 48 83 ee 10 48 89 4e 08 48 89 3e 48 89 d7 4c 89 c2 4d 89 c8 4c 8b 54 24 08 b8 38 00 00 00 0f 05 <48> 85 c0 0f 8c fe 8d fb ff 74 01 c3 31 ed 48 f7 c7 00 00 01 00 75
[ 3295.809357] RSP: 002b:00007ffd531651c8 EFLAGS: 00000202 ORIG_RAX: 0000000000000038
[ 3295.817057] RAX: ffffffffffffffda RBX: 00007f09e67fe700 RCX: 000000000045c1f9
[ 3295.824317] RDX: 00007f09e67fe9d0 RSI: 00007f09e67fddb0 RDI: 00000000003d0f00
[ 3295.831581] RBP: 00007ffd531653e0 R08: 00007f09e67fe700 R09: 00007f09e67fe700
[ 3295.838858] R10: 00007f09e67fe9d0 R11: 0000000000000202 R12: 0000000000000000
[ 3295.846117] R13: 00007ffd5316527f R14: 00007f09e67fe9c0 R15: 000000000075bf2c
[ 3295.856114] Task in /syz5 killed as a result of limit of /syz5
[ 3295.862281] memory: usage 307176kB, limit 307200kB, failcnt 7655
[ 3295.869606] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3295.876499] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3295.884266] Memory cgroup stats for /syz5: cache:72KB rss:148KB rss_huge:0KB shmem:12KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:132KB inactive_file:0KB active_file:0KB unevictable:0KB
[ 3295.919176] Memory cgroup out of memory: Kill process 22830 (syz-executor.5) score 1103 or sacrifice child
[ 3295.936119] hfs: session requires an argument
[ 3295.940663] hfs: unable to parse mount options
[ 3295.943140] Killed process 22830 (syz-executor.5) total-vm:72580kB, anon-rss:108kB, file-rss:34816kB, shmem-rss:0kB
[ 3295.971516] oom_reaper: reaped process 22830 (syz-executor.5), now anon-rss:0kB, file-rss:34820kB, shmem-rss:0kB
04:13:02 executing program 5:
r0 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000240)='/dev/dlm-control\x00', 0x40000, 0x0)
ioctl$SNDRV_TIMER_IOCTL_GINFO(r0, 0xc0f85403, &(0x7f0000000280)={{0xffffffffffffffff, 0x0, 0x5830000000000, 0x3, 0x4}, 0xf177, 0xb431, 'id0\x00', 'timer1\x00', 0x0, 0x8b4, 0x81, 0x0, 0x445})
shmat(0x0, &(0x7f0000ffc000/0x4000)=nil, 0x3000)
mbind(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x2, &(0x7f0000000000)=0xffff, 0x2, 0x0)
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0x20b, &(0x7f0000000040)=[{&(0x7f0000000540)="2e000000220005000000c187185095cf0400b0eba0b4d65c0003000051894d5d1dac00"/46, 0x2e}], 0x1}, 0x0)
r2 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000080)='/dev/qat_adf_ctl\x00', 0x200, 0x0)
ioctl$DRM_IOCTL_ADD_CTX(0xffffffffffffffff, 0xc0086420, &(0x7f00000000c0)={<r3=>0x0})
ioctl$DRM_IOCTL_GET_SAREA_CTX(r2, 0xc010641d, &(0x7f0000000200)={r3, &(0x7f0000000100)=""/74})

04:13:02 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0xf000000}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

04:13:02 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}, 0x1, 0xa}, 0x0)

04:13:02 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"/968]}, 0x440)

[ 3296.161262] syz-executor.5 invoked oom-killer: gfp_mask=0x7080c0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), nodemask=(null), order=3, oom_score_adj=1000
[ 3296.212860] syz-executor.5 cpuset=syz5 mems_allowed=0-1
[ 3296.220415] CPU: 0 PID: 22869 Comm: syz-executor.5 Not tainted 4.19.66 #40
[ 3296.227450] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3296.236810] Call Trace:
[ 3296.239415]  dump_stack+0x172/0x1f0
[ 3296.243063]  dump_header+0x15e/0xa55
[ 3296.246788]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 3296.251879]  ? ___ratelimit+0x60/0x595
[ 3296.255752]  ? do_raw_spin_unlock+0x57/0x270
[ 3296.260152]  oom_kill_process.cold+0x10/0x6ef
[ 3296.264643]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 3296.270217]  ? task_will_free_mem+0x139/0x6e0
[ 3296.274721]  ? find_held_lock+0x35/0x130
[ 3296.278790]  out_of_memory+0x936/0x12d0
[ 3296.282753]  ? lock_downgrade+0x810/0x810
[ 3296.286890]  ? oom_killer_disable+0x280/0x280
[ 3296.291367]  ? find_held_lock+0x35/0x130
[ 3296.295423]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 3296.300339]  ? memcg_event_wake+0x230/0x230
[ 3296.304652]  ? do_raw_spin_unlock+0x57/0x270
[ 3296.309052]  ? _raw_spin_unlock+0x2d/0x50
[ 3296.313188]  try_charge+0x1028/0x15b0
[ 3296.316980]  ? find_held_lock+0x35/0x130
[ 3296.321031]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 3296.325886]  ? get_mem_cgroup_from_mm+0x139/0x320
[ 3296.330718]  ? find_held_lock+0x35/0x130
[ 3296.334769]  ? get_mem_cgroup_from_mm+0x139/0x320
[ 3296.339603]  memcg_kmem_charge_memcg+0x7c/0x130
[ 3296.344261]  ? memcg_kmem_put_cache+0xb0/0xb0
[ 3296.348744]  ? get_mem_cgroup_from_mm+0x156/0x320
[ 3296.353581]  memcg_kmem_charge+0x136/0x370
[ 3296.357803]  __alloc_pages_nodemask+0x3c3/0x750
[ 3296.362463]  ? __alloc_pages_slowpath+0x2870/0x2870
[ 3296.367474]  ? lockdep_hardirqs_on+0x415/0x5d0
[ 3296.372074]  ? trace_hardirqs_on+0x67/0x220
[ 3296.376389]  ? kasan_check_read+0x11/0x20
[ 3296.380533]  copy_process.part.0+0x3e0/0x7a30
[ 3296.385021]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 3296.390114]  ? delayacct_end+0x5c/0x100
[ 3296.394076]  ? __delayacct_freepages_end+0xe0/0x140
[ 3296.399080]  ? __lock_acquire+0x6ee/0x49c0
[ 3296.403306]  ? __cleanup_sighand+0x70/0x70
[ 3296.407525]  ? mark_held_locks+0x100/0x100
[ 3296.411752]  _do_fork+0x257/0xfd0
[ 3296.415210]  ? fork_idle+0x1d0/0x1d0
[ 3296.418917]  ? blkg_prfill_rwstat_field_recursive+0x100/0x100
[ 3296.424797]  ? kasan_check_read+0x11/0x20
[ 3296.428941]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 3296.433726]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 3296.438472]  ? do_syscall_64+0x26/0x620
[ 3296.442444]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 3296.447813]  ? do_syscall_64+0x26/0x620
[ 3296.451792]  __x64_sys_clone+0xbf/0x150
[ 3296.455784]  do_syscall_64+0xfd/0x620
[ 3296.459599]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 3296.464796] RIP: 0033:0x45c1f9
[ 3296.467991] Code: ff 48 85 f6 0f 84 27 8e fb ff 48 83 ee 10 48 89 4e 08 48 89 3e 48 89 d7 4c 89 c2 4d 89 c8 4c 8b 54 24 08 b8 38 00 00 00 0f 05 <48> 85 c0 0f 8c fe 8d fb ff 74 01 c3 31 ed 48 f7 c7 00 00 01 00 75
[ 3296.486885] RSP: 002b:00007ffd531651c8 EFLAGS: 00000202 ORIG_RAX: 0000000000000038
[ 3296.494581] RAX: ffffffffffffffda RBX: 00007f09e67fe700 RCX: 000000000045c1f9
[ 3296.501854] RDX: 00007f09e67fe9d0 RSI: 00007f09e67fddb0 RDI: 00000000003d0f00
04:13:03 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0xe000000}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

04:13:03 executing program 0:
r0 = openat$selinux_load(0xffffffffffffff9c, &(0x7f00000000c0)='/selinux/load\x00', 0x2, 0x0)
write$selinux_load(r0, &(0x7f00000007c0)=ANY=[@ANYBLOB="8cff7cf9080000005345204c696e757816000000d96927940000fffffff82000400000000004000000000000"], 0x2c)
syz_open_dev$vcsa(&(0x7f0000000080)='/dev/vcsa#\x00', 0x7, 0x100)
r1 = accept4$inet6(0xffffffffffffffff, 0x0, &(0x7f0000000100), 0x0)
getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000000)={<r2=>0x0}, &(0x7f0000000040)=0xc)
ptrace$pokeuser(0x6, r2, 0x80000000, 0xfffffffffffffffe)

04:13:03 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}, 0x1, 0xc}, 0x0)

04:13:03 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x10000000}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

04:13:03 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"/968]}, 0x440)

[ 3296.509125] RBP: 00007ffd531653e0 R08: 00007f09e67fe700 R09: 00007f09e67fe700
[ 3296.516384] R10: 00007f09e67fe9d0 R11: 0000000000000202 R12: 0000000000000000
[ 3296.523647] R13: 00007ffd5316527f R14: 00007f09e67fe9c0 R15: 000000000075bf2c
[ 3296.533462] Task in /syz5 killed as a result of limit of /syz5
[ 3296.539558] memory: usage 307176kB, limit 307200kB, failcnt 7683
[ 3296.552001] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3296.559032] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3296.565479] Memory cgroup stats for /syz5: cache:72KB rss:148KB rss_huge:0KB shmem:12KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:132KB inactive_file:0KB active_file:0KB unevictable:0KB
04:13:03 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="00000000004000000000000000000000000000000000000000000000000000000006000000000000ffffffff020000001d00000001000000080676657468305f746f5f627269646765006e7230000000000000000000000000006772653000000000000000000000000076657468315f746f5f626f6e64000000aaaaaaaaaaaa000000000000aaaaaaaaaaaa00000000000000007000000070000000a80000006172707265706c790000000000000000000000000000000000000000000000001000000000000000aaaaaaaaaaaa0000feffffff0000000009000000000000000000697064647030000000000000000000006272696467655f736c6176655f3100000000000000000000000000000000000067726530000000000000000000000000ffffffffffff0000000000000000000000000000000000000000e0000000180100005001000072617465657374000000000000a3000000000000000000000000000000000000480000000000000064756d6d79300000000000000000000073797a5f74756e0000000ab941773a25a4462a99832900000000000000000000200000000000000000000000000000000000000000000000736e6174000000000000000000000000000000000000000000000000000000001000000000000000aaaaaaaaaaaa000000000000000000006d61726b0000000000000000000000000000000000000000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000002000000feffffff01000000110000000000000000006272696467655f736c6176655f3100000000000000000000000000749638e0006c6f00000000000000000000000000000080616d300000000000000000000000aaaaaaaaaa00000000000000aaaaaaaaaaaa0000000000000000a00000000801000040010000636f6e6e6c6162656c000000000000000000000000000000000000000000000008000000000000000000000000000000434c4153534946590000000000000000000000000000000000ff07000000000008000000000000000000000000000000736e617400000000000000000000000000000000000000000001000000000000100000000000000000000000000000000000000000000000736e6174000000000000000000000000000000000000000000000000000000001000000000001400aaaaaaaaaabb00"/968]}, 0x440)

04:13:03 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}, 0x1, 0xe}, 0x0)

04:13:03 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x3f000000}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

[ 3296.624504] SELinux: failed to load policy
[ 3296.641051] Memory cgroup out of memory: Kill process 22869 (syz-executor.5) score 1103 or sacrifice child
[ 3296.663897] SELinux: failed to load policy
[ 3296.688977] Killed process 22869 (syz-executor.5) total-vm:72580kB, anon-rss:108kB, file-rss:34816kB, shmem-rss:0kB
04:13:03 executing program 5:
r0 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000240)='/dev/dlm-control\x00', 0x40000, 0x0)
ioctl$SNDRV_TIMER_IOCTL_GINFO(r0, 0xc0f85403, &(0x7f0000000280)={{0xffffffffffffffff, 0x0, 0x5830000000000, 0x3, 0x4}, 0xf177, 0xb431, 'id0\x00', 'timer1\x00', 0x0, 0x8b4, 0x81, 0x0, 0x445})
shmat(0x0, &(0x7f0000ffc000/0x4000)=nil, 0x3000)
mbind(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x2, &(0x7f0000000000)=0xffff, 0x2, 0x0)
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0x20b, &(0x7f0000000040)=[{&(0x7f0000000540)="2e000000220005000000c187185095cf0400b0eba0b4d65c0004000051894d5d1dac00"/46, 0x2e}], 0x1}, 0x0)
r2 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000080)='/dev/qat_adf_ctl\x00', 0x200, 0x0)
ioctl$DRM_IOCTL_ADD_CTX(0xffffffffffffffff, 0xc0086420, &(0x7f00000000c0)={<r3=>0x0})
ioctl$DRM_IOCTL_GET_SAREA_CTX(r2, 0xc010641d, &(0x7f0000000200)={r3, &(0x7f0000000100)=""/74})

04:13:03 executing program 0:
prctl$PR_SET_NAME(0xf, &(0x7f00000002c0)='\x00')
r0 = openat$selinux_load(0xffffffffffffff9c, &(0x7f0000000300)='/selinux/load\x00', 0x2, 0x0)
write$selinux_load(r0, &(0x7f0000000380)=ANY=[@ANYRES16=r0, @ANYRES32, @ANYBLOB="a3a6044c15023333201ab99bd105335f1b8030dbf9c830dc7196ac6a89b59b1dfef9e7d8d6602efc5649d80df419ec87e487a09c531c114efd28ad7fc88245b8f1133a9d5b60625fe8f99feb2bd2072beb4af0181c394214e03a749d546c31da8bb76de03448d2b816876ee5e85161e358c33a502ee95f89fcff3688013793369cf086c450c2836bd9", @ANYPTR64=&(0x7f0000000080)=ANY=[@ANYPTR=&(0x7f0000000100)=ANY=[@ANYRESDEC=r0, @ANYBLOB="1061953b8718db21c0c77808a3d3f465c809a9dfdb994c63f01ef54d9a6e23702d766cba79b6a25407a9339c7c2c808f04b4613bdb63f7a598ca8dd5b71eb245c91a21fd851594c6ca92cc9dc7122acb0422bc82ea9f621d801bc9367ea81472ec4cd40a7c6acad46a8fe03e5b213233167c2998e12e79e92724cb81", @ANYPTR, @ANYRES32=0x0, @ANYBLOB="be297d4bf2ca3c62632b4c7ccab8e9bcdf81785a6d14214a5f5a8413c033a44d412ff43815bd325c87a18776e28265aedd1be62ff1b07f1c6250e56a0b16258a6365d8cb5f236002ed718794ee206ebcb7a2b319852c59c77f89d5cc8fa420b645c420ed2465565718840f39f67967712e10aef6af5ef7d80b0c211b54132868da192e77aa2a26f410e2f17892669e6b84b1c915b3edd8e42b89f542cad82a34ce04c16e49ba700a6b025cfdf1be3628058111a39a7b32910a83cfbbe99c7f4aa67fc10574b484c64d0ea877392d80a589714926a2f8044bf734707e05b1b950ef8431ded4b9b7f70d87161b944ae76b1280f8a2b26df67d", @ANYRESOCT=r0, @ANYRES16=r0], @ANYPTR=&(0x7f0000000000)=ANY=[@ANYRESHEX=r0, @ANYRESDEC=r0, @ANYRESHEX=r0, @ANYRES32=r0, @ANYRES64=r0, @ANYRES16=r0]]], 0xfffffffffffffc32)
keyctl$KEYCTL_CAPABILITIES(0x1f, &(0x7f0000000440)=""/148, 0x94)
pipe2(&(0x7f00000000c0), 0x4000)

[ 3296.736160] oom_reaper: reaped process 22869 (syz-executor.5), now anon-rss:0kB, file-rss:33856kB, shmem-rss:0kB
04:13:03 executing program 2:
r0 = socket(0x8000000000000010, 0x2, 0x0)
write(r0, &(0x7f00000000c0)="240000001d0005ff006b000421ed382002190008fffff0000010ffea080001001c7a6cb4", 0xaf)
openat$selinux_checkreqprot(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/checkreqprot\x00', 0x80000, 0x0)

04:13:03 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"/968]}, 0x440)

04:13:03 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x40000000}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

04:13:03 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}, 0x1, 0xf}, 0x0)

04:13:03 executing program 2:
r0 = syz_open_dev$dri(&(0x7f0000000080)='/dev/dri/card#\x00', 0x200001, 0x0)
ioctl$DRM_IOCTL_GET_CAP(r0, 0xc010640c, &(0x7f00000000c0))

04:13:03 executing program 0:
r0 = openat$selinux_load(0xffffffffffffff9c, &(0x7f00000000c0)='/selinux/load\x00', 0x2, 0x0)
r1 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000100)='/dev/vga_arbiter\x00', 0x100, 0x0)
getsockname$unix(r1, &(0x7f0000000140)=@abs, &(0x7f00000001c0)=0x6e)
write$selinux_load(r0, &(0x7f00000007c0)=ANY=[@ANYBLOB="8cff7cf9080000005345204c696e757816000000d96927940000fffffff82000400000000004000000000000"], 0x2c)

[ 3296.941448] syz-executor.5 invoked oom-killer: gfp_mask=0x7080c0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), nodemask=(null), order=3, oom_score_adj=1000
04:13:03 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"/968]}, 0x440)

04:13:03 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x60000000}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

[ 3297.050610] syz-executor.5 cpuset=syz5 mems_allowed=0-1
[ 3297.076366] CPU: 1 PID: 22900 Comm: syz-executor.5 Not tainted 4.19.66 #40
[ 3297.083441] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3297.092843] Call Trace:
[ 3297.095451]  dump_stack+0x172/0x1f0
04:13:04 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}, 0x1, 0x10}, 0x0)

[ 3297.099096]  dump_header+0x15e/0xa55
[ 3297.102866]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 3297.107987]  ? ___ratelimit+0x60/0x595
[ 3297.111913]  ? do_raw_spin_unlock+0x57/0x270
[ 3297.116337]  oom_kill_process.cold+0x10/0x6ef
[ 3297.116360]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 3297.116378]  ? task_will_free_mem+0x139/0x6e0
[ 3297.126405]  ? find_held_lock+0x35/0x130
[ 3297.126426]  out_of_memory+0x936/0x12d0
[ 3297.126441]  ? lock_downgrade+0x810/0x810
[ 3297.126459]  ? oom_killer_disable+0x280/0x280
[ 3297.126477]  ? find_held_lock+0x35/0x130
[ 3297.151768]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 3297.156640]  ? memcg_event_wake+0x230/0x230
[ 3297.160990]  ? do_raw_spin_unlock+0x57/0x270
[ 3297.165418]  ? _raw_spin_unlock+0x2d/0x50
[ 3297.169590]  try_charge+0x1028/0x15b0
[ 3297.173402]  ? find_held_lock+0x35/0x130
[ 3297.178964]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 3297.183826]  ? get_mem_cgroup_from_mm+0x139/0x320
[ 3297.188685]  ? find_held_lock+0x35/0x130
[ 3297.192764]  ? get_mem_cgroup_from_mm+0x139/0x320
04:13:04 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x65580000}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

[ 3297.197629]  memcg_kmem_charge_memcg+0x7c/0x130
[ 3297.202308]  ? memcg_kmem_put_cache+0xb0/0xb0
[ 3297.206820]  ? get_mem_cgroup_from_mm+0x156/0x320
[ 3297.211725]  memcg_kmem_charge+0x136/0x370
[ 3297.215980]  __alloc_pages_nodemask+0x3c3/0x750
[ 3297.220667]  ? __alloc_pages_slowpath+0x2870/0x2870
[ 3297.225705]  ? lockdep_hardirqs_on+0x415/0x5d0
[ 3297.230328]  ? trace_hardirqs_on+0x67/0x220
[ 3297.234662]  ? kasan_check_read+0x11/0x20
[ 3297.238851]  copy_process.part.0+0x3e0/0x7a30
[ 3297.243360]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 3297.243379]  ? delayacct_end+0x5c/0x100
[ 3297.243399]  ? __delayacct_freepages_end+0xe0/0x140
[ 3297.243417]  ? __lock_acquire+0x6ee/0x49c0
[ 3297.243439]  ? __cleanup_sighand+0x70/0x70
[ 3297.252598]  ? mark_held_locks+0x100/0x100
[ 3297.252629]  _do_fork+0x257/0xfd0
[ 3297.252649]  ? fork_idle+0x1d0/0x1d0
[ 3297.252670]  ? blkg_prfill_rwstat_field_recursive+0x100/0x100
[ 3297.252692]  ? kasan_check_read+0x11/0x20
[ 3297.287562]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 3297.292333]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 3297.297098]  ? do_syscall_64+0x26/0x620
[ 3297.301093]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 3297.306473]  ? do_syscall_64+0x26/0x620
[ 3297.310466]  __x64_sys_clone+0xbf/0x150
[ 3297.314460]  do_syscall_64+0xfd/0x620
[ 3297.318284]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 3297.323480] RIP: 0033:0x45c1f9
[ 3297.326678] Code: ff 48 85 f6 0f 84 27 8e fb ff 48 83 ee 10 48 89 4e 08 48 89 3e 48 89 d7 4c 89 c2 4d 89 c8 4c 8b 54 24 08 b8 38 00 00 00 0f 05 <48> 85 c0 0f 8c fe 8d fb ff 74 01 c3 31 ed 48 f7 c7 00 00 01 00 75
[ 3297.345943] RSP: 002b:00007ffd531651c8 EFLAGS: 00000202 ORIG_RAX: 0000000000000038
[ 3297.353842] RAX: ffffffffffffffda RBX: 00007f09e67fe700 RCX: 000000000045c1f9
[ 3297.361469] RDX: 00007f09e67fe9d0 RSI: 00007f09e67fddb0 RDI: 00000000003d0f00
[ 3297.368749] RBP: 00007ffd531653e0 R08: 00007f09e67fe700 R09: 00007f09e67fe700
[ 3297.376210] R10: 00007f09e67fe9d0 R11: 0000000000000202 R12: 0000000000000000
[ 3297.383488] R13: 00007ffd5316527f R14: 00007f09e67fe9c0 R15: 000000000075bf2c
[ 3297.423504] Task in /syz5 killed as a result of limit of /syz5
[ 3297.429550] memory: usage 307140kB, limit 307200kB, failcnt 7713
[ 3297.442610] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3297.450015] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
04:13:04 executing program 5:
r0 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000240)='/dev/dlm-control\x00', 0x40000, 0x0)
ioctl$SNDRV_TIMER_IOCTL_GINFO(r0, 0xc0f85403, &(0x7f0000000280)={{0xffffffffffffffff, 0x0, 0x5830000000000, 0x3, 0x4}, 0xf177, 0xb431, 'id0\x00', 'timer1\x00', 0x0, 0x8b4, 0x81, 0x0, 0x445})
shmat(0x0, &(0x7f0000ffc000/0x4000)=nil, 0x3000)
mbind(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x2, &(0x7f0000000000)=0xffff, 0x2, 0x0)
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0x20b, &(0x7f0000000040)=[{&(0x7f0000000540)="2e000000220005000000c187185095cf0400b0eba0b4d65c0005000051894d5d1dac00"/46, 0x2e}], 0x1}, 0x0)
r2 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000080)='/dev/qat_adf_ctl\x00', 0x200, 0x0)
ioctl$DRM_IOCTL_ADD_CTX(0xffffffffffffffff, 0xc0086420, &(0x7f00000000c0)={<r3=>0x0})
ioctl$DRM_IOCTL_GET_SAREA_CTX(r2, 0xc010641d, &(0x7f0000000200)={r3, &(0x7f0000000100)=""/74})

04:13:04 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}, 0x1, 0x60}, 0x0)

04:13:04 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x6e020000}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

04:13:04 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"/968]}, 0x440)

04:13:04 executing program 2:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x3)
r1 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer2\x00', 0x2000, 0x0)
getsockopt$bt_BT_VOICE(r0, 0x112, 0xb, &(0x7f0000000040)=0x2, &(0x7f0000000080)=0x2)
munmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000)
ioctl$LOOP_SET_CAPACITY(r1, 0x4c07)
getsockopt$bt_BT_DEFER_SETUP(r0, 0x112, 0x7, 0x0, &(0x7f0000000200))
setrlimit(0xd, &(0x7f00000000c0)={0x2, 0x80})

04:13:04 executing program 0:

[ 3297.457988] Memory cgroup stats for /syz5: cache:72KB rss:148KB rss_huge:0KB shmem:12KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:132KB inactive_file:0KB active_file:0KB unevictable:0KB
[ 3297.478439] Memory cgroup out of memory: Kill process 22900 (syz-executor.5) score 1103 or sacrifice child
[ 3297.488515] Killed process 22900 (syz-executor.5) total-vm:72580kB, anon-rss:108kB, file-rss:34816kB, shmem-rss:0kB
[ 3297.500491] oom_reaper: reaped process 22900 (syz-executor.5), now anon-rss:0kB, file-rss:34820kB, shmem-rss:0kB
04:13:04 executing program 0:
r0 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer\x00', 0x301041, 0x0)
write$selinux_load(r0, &(0x7f0000000800)={0xf97cff8c, 0x8, 'SE Linux', "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"}, 0x1010)
r1 = openat$selinux_load(0xffffffffffffff9c, &(0x7f00000000c0)='/selinux/load\x00', 0x2, 0x0)
write$selinux_load(r1, &(0x7f0000000100)=ANY=[@ANYBLOB="8cff7cf90800ffa06c940000ffffff010000400000000004000000000000034ce50dec0d4dcaa971682e93999588639a6fad9bddd410de58df5d510152a5be30e00158fa1b8e26dd87b0ba190fb7f7e2eeb5cbe1a6aba49a9f332150784b695a7700"/111], 0x2c)
r2 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000)='/dev/btrfs-control\x00', 0x105000, 0x0)
ioctl$BLKIOOPT(r2, 0x1279, &(0x7f0000000040))

04:13:04 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}, 0x1, 0xf0}, 0x0)

04:13:04 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x81000000}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

04:13:04 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"/968]}, 0x440)

04:13:04 executing program 2:
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x5, &(0x7f00000003c0)=ANY=[@ANYBLOB="bf16000000000000b70700fc2a394e3cd2d7561000000000bc700000000000009500000000000000ec03b4c03534cdbb9eb9bb4254987d7cc2c979ff0923f6eef236d72444bec9e5d84082b08bc634cbda058275db264415508fd275830d9bbefc9a1eb8ac44de96ff46644d90a6c85ddfc34a04880d0ca459c749373185a1e4f962061cf8936014a4e57e43e5cec5631f14990dbc6db498b376e78272bfb42a0b6fcd2b1da815deedfcbd308ae5213b7f4385e4fcd2da09deaac4e669b30851d70fdbc2b86fb24b011b3bba361d46e31ead40c8aa9d139a9034d6b054019d1abf39fb191f13087cfbc4085a707d09ebeafa647ac4f7"], &(0x7f0000000140)='vS\xfdIG|\x8aL[\xf2\'\x9c\xea\xb1\xc0\xb1\x19\x91\x9d/Q\xd9\xe3T\xce\xdax;\x02%\xc5\x1c\xd5GA\xad[(\xbblZ\x01\x1dF\x92#]%sj\xd0i\xc6C\x1f&\xe2\xc5\xa5z\x7f\xe1 \xfb\xc27\x03\x84\x8e\xef\x82-\xfc$$\xaf\v\xbd\x95\x1e\x0f\xbeVI\xec\r!\f\x86\xf5\xfb[Y\x1e\xd4\xdfc\xb1\xc8\xa2\xc1/5\xffr\x1f\x80@\xb8F\xea\xde\x93\xa1\xcb6\xee\xf2\xce\x95\xf2\xfdxR\x17F\xad\xc1~\xa2\x97=O^o\"\xbb\xa8\x9746'}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000009c0)={r0, 0x0, 0xe, 0x0, &(0x7f00000008c0)="a9506a679818efd77ff862d05050", 0x0}, 0x28)
r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000100)='oom_adj\x00')
ioctl$sock_inet_sctp_SIOCINQ(r1, 0x541b, &(0x7f0000000200))
r2 = syz_open_dev$adsp(&(0x7f0000000040)='/dev/adsp#\x00', 0x101, 0x40)
ioctl$RTC_PIE_ON(r2, 0x7005)

[ 3297.711915] syz-executor.5 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 3297.719541] SELinux:  policydb string length -1593901048 does not match expected length 8
[ 3297.761641] syz-executor.5 cpuset=syz5 mems_allowed=0-1
[ 3297.790339] CPU: 0 PID: 22943 Comm: syz-executor.5 Not tainted 4.19.66 #40
[ 3297.797382] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3297.806763] Call Trace:
[ 3297.809366]  dump_stack+0x172/0x1f0
[ 3297.813017]  dump_header+0x15e/0xa55
[ 3297.816741]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 3297.821855]  ? ___ratelimit+0x60/0x595
[ 3297.825752]  ? do_raw_spin_unlock+0x57/0x270
[ 3297.830171]  oom_kill_process.cold+0x10/0x6ef
[ 3297.834688]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 3297.840237]  ? task_will_free_mem+0x139/0x6e0
[ 3297.844758]  out_of_memory+0x936/0x12d0
[ 3297.848740]  ? lock_downgrade+0x810/0x810
[ 3297.852904]  ? oom_killer_disable+0x280/0x280
[ 3297.857410]  ? find_held_lock+0x35/0x130
[ 3297.861489]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 3297.866357]  ? memcg_event_wake+0x230/0x230
[ 3297.870710]  ? do_raw_spin_unlock+0x57/0x270
[ 3297.875131]  ? _raw_spin_unlock+0x2d/0x50
[ 3297.879290]  try_charge+0x1028/0x15b0
[ 3297.883101]  ? find_held_lock+0x35/0x130
[ 3297.887179]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 3297.892041]  ? kasan_check_read+0x11/0x20
[ 3297.896212]  ? get_mem_cgroup_from_mm+0x156/0x320
[ 3297.901068]  mem_cgroup_try_charge+0x259/0x6b0
[ 3297.905734]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 3297.910693]  wp_page_copy+0x430/0x16a0
[ 3297.914607]  ? pmd_pfn+0x1d0/0x1d0
[ 3297.918168]  ? kasan_check_read+0x11/0x20
[ 3297.922325]  ? do_raw_spin_unlock+0x57/0x270
[ 3297.926745]  do_wp_page+0x57d/0x10b0
[ 3297.930475]  ? lock_acquire+0x16f/0x3f0
[ 3297.934463]  ? finish_mkwrite_fault+0x4f0/0x4f0
[ 3297.939143]  ? kasan_check_write+0x14/0x20
[ 3297.943389]  ? do_raw_spin_lock+0xc8/0x240
[ 3297.947648]  __handle_mm_fault+0x2305/0x3f80
[ 3297.952083]  ? vmf_insert_mixed_mkwrite+0x90/0x90
[ 3297.956962]  ? count_memcg_event_mm+0x2b1/0x4d0
04:13:04 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="00000000004000000000000000000000000000000000000000000000000000000000000002000000ffffffff020000001d00000001000000080676657468305f746f5f627269646765006e7230000000000000000000000000006772653000000000000000000000000076657468315f746f5f626f6e64000000aaaaaaaaaaaa000000000000aaaaaaaaaaaa00000000000000007000000070000000a80000006172707265706c790000000000000000000000000000000000000000000000001000000000000000aaaaaaaaaaaa0000feffffff0000000009000000000000000000697064647030000000000000000000006272696467655f736c6176655f3100000000000000000000000000000000000067726530000000000000000000000000ffffffffffff0000000000000000000000000000000000000000e0000000180100005001000072617465657374000000000000a3000000000000000000000000000000000000480000000000000064756d6d79300000000000000000000073797a5f74756e0000000ab941773a25a4462a99832900000000000000000000200000000000000000000000000000000000000000000000736e6174000000000000000000000000000000000000000000000000000000001000000000000000aaaaaaaaaaaa000000000000000000006d61726b0000000000000000000000000000000000000000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000002000000feffffff01000000110000000000000000006272696467655f736c6176655f3100000000000000000000000000749638e0006c6f00000000000000000000000000000080616d300000000000000000000000aaaaaaaaaa00000000000000aaaaaaaaaaaa0000000000000000a00000000801000040010000636f6e6e6c6162656c000000000000000000000000000000000000000000000008000000000000000000000000000000434c4153534946590000000000000000000000000000000000ff07000000000008000000000000000000000000000000736e617400000000000000000000000000000000000000000001000000000000100000000000000000000000000000000000000000000000736e6174000000000000000000000000000000000000000000000000000000001000000000001400aaaaaaaaaabb00"/968]}, 0x440)

[ 3297.961649]  handle_mm_fault+0x1b5/0x690
[ 3297.965737]  __do_page_fault+0x62a/0xe90
[ 3297.969817]  ? vmalloc_fault+0x740/0x740
[ 3297.973922]  ? trace_hardirqs_off_caller+0x65/0x220
[ 3297.974024] SELinux:  policydb string length -1593901048 does not match expected length 8
[ 3297.978943]  ? trace_hardirqs_on_caller+0x6a/0x220
[ 3297.978959]  ? page_fault+0x8/0x30
[ 3297.978982]  do_page_fault+0x71/0x57d
[ 3297.999678]  ? page_fault+0x8/0x30
[ 3298.003243]  page_fault+0x1e/0x30
[ 3298.006707] RIP: 0033:0x40e9c8
[ 3298.009908] Code: 8b 34 c6 4a 8d 04 2e 48 3d ff ff ff 7e 0f 86 77 ff ff ff bf 35 ee 4b 00 31 c0 e8 63 33 ff ff 31 ff e8 ac 2f ff ff 0f 1f 40 00 <89> 3c b5 00 00 73 00 eb b6 31 ed 0f 1f 44 00 00 80 3d 9e 1a 66 00
[ 3298.028815] RSP: 002b:00007ffd53165230 EFLAGS: 00010246
[ 3298.034191] RAX: 000000008d9e6756 RBX: 00000000409c7d41 RCX: 0000001b2ed20000
[ 3298.041467] RDX: 0000000000000000 RSI: 0000000000000756 RDI: ffffffff8d9e6756
[ 3298.048742] RBP: 0000000000000004 R08: 000000008d9e6756 R09: 000000008d9e675a
[ 3298.056016] R10: 00007ffd531653d0 R11: 0000000000000246 R12: 000000000075bfa8
[ 3298.063300] R13: 0000000080000000 R14: 00007f09e87ff008 R15: 0000000000000004
[ 3298.079649] Task in /syz5 killed as a result of limit of /syz5
[ 3298.085961] memory: usage 307200kB, limit 307200kB, failcnt 7743
[ 3298.092215] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3298.099140] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3298.106472] Memory cgroup stats for /syz5: cache:72KB rss:148KB rss_huge:0KB shmem:12KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:156KB inactive_file:0KB active_file:0KB unevictable:0KB
[ 3298.140538] Memory cgroup out of memory: Kill process 22943 (syz-executor.5) score 1103 or sacrifice child
[ 3298.150661] Killed process 22943 (syz-executor.5) total-vm:72580kB, anon-rss:108kB, file-rss:34816kB, shmem-rss:0kB
04:13:05 executing program 5:
r0 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000240)='/dev/dlm-control\x00', 0x40000, 0x0)
ioctl$SNDRV_TIMER_IOCTL_GINFO(r0, 0xc0f85403, &(0x7f0000000280)={{0xffffffffffffffff, 0x0, 0x5830000000000, 0x3, 0x4}, 0xf177, 0xb431, 'id0\x00', 'timer1\x00', 0x0, 0x8b4, 0x81, 0x0, 0x445})
shmat(0x0, &(0x7f0000ffc000/0x4000)=nil, 0x3000)
mbind(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x2, &(0x7f0000000000)=0xffff, 0x2, 0x0)
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0x20b, &(0x7f0000000040)=[{&(0x7f0000000540)="2e000000220005000000c187185095cf0400b0eba0b4d65c0006000051894d5d1dac00"/46, 0x2e}], 0x1}, 0x0)
r2 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000080)='/dev/qat_adf_ctl\x00', 0x200, 0x0)
ioctl$DRM_IOCTL_ADD_CTX(0xffffffffffffffff, 0xc0086420, &(0x7f00000000c0)={<r3=>0x0})
ioctl$DRM_IOCTL_GET_SAREA_CTX(r2, 0xc010641d, &(0x7f0000000200)={r3, &(0x7f0000000100)=""/74})

04:13:05 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="00000000004000000000000000000000000000000000000000000000000000000000000006000000ffffffff020000001d00000001000000080676657468305f746f5f627269646765006e7230000000000000000000000000006772653000000000000000000000000076657468315f746f5f626f6e64000000aaaaaaaaaaaa000000000000aaaaaaaaaaaa00000000000000007000000070000000a80000006172707265706c790000000000000000000000000000000000000000000000001000000000000000aaaaaaaaaaaa0000feffffff0000000009000000000000000000697064647030000000000000000000006272696467655f736c6176655f3100000000000000000000000000000000000067726530000000000000000000000000ffffffffffff0000000000000000000000000000000000000000e0000000180100005001000072617465657374000000000000a3000000000000000000000000000000000000480000000000000064756d6d79300000000000000000000073797a5f74756e0000000ab941773a25a4462a99832900000000000000000000200000000000000000000000000000000000000000000000736e6174000000000000000000000000000000000000000000000000000000001000000000000000aaaaaaaaaaaa000000000000000000006d61726b0000000000000000000000000000000000000000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000002000000feffffff01000000110000000000000000006272696467655f736c6176655f3100000000000000000000000000749638e0006c6f00000000000000000000000000000080616d300000000000000000000000aaaaaaaaaa00000000000000aaaaaaaaaaaa0000000000000000a00000000801000040010000636f6e6e6c6162656c000000000000000000000000000000000000000000000008000000000000000000000000000000434c4153534946590000000000000000000000000000000000ff07000000000008000000000000000000000000000000736e617400000000000000000000000000000000000000000001000000000000100000000000000000000000000000000000000000000000736e6174000000000000000000000000000000000000000000000000000000001000000000001400aaaaaaaaaabb00"/968]}, 0x440)

04:13:05 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x88a8ffff}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

04:13:05 executing program 0:
r0 = openat$selinux_load(0xffffffffffffff9c, &(0x7f00000000c0)='/selinux/load\x00', 0x2, 0x0)
write$selinux_load(r0, &(0x7f00000007c0)=ANY=[@ANYBLOB="8cff7cf9080000005345204c696e757816000000d96927940000fffffff82000400000000004000000000000"], 0x2c)
setxattr$security_smack_entry(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='security.SMACK64IPIN\x00', &(0x7f0000000080)='/selinux/load\x00', 0xe, 0x1)

04:13:05 executing program 2:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
r1 = socket$l2tp(0x18, 0x1, 0x1)
r2 = accept$inet6(r0, 0x0, &(0x7f0000000000))
r3 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r3, 0x1000008912, 0x0)
r4 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_group_source_req(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0)
r5 = accept4(r2, &(0x7f00000004c0)=@xdp, &(0x7f0000000340)=0x80, 0x80000)
setsockopt$SO_RDS_TRANSPORT(r5, 0x114, 0x8, &(0x7f0000000140), 0x4)
fsetxattr$security_smack_entry(r4, &(0x7f0000000240)='security.SMACK64IPIN\x00', &(0x7f0000000280)='\x00', 0x1, 0x1)
socket$nl_xfrm(0x10, 0x3, 0x6)
unshare(0xa493e0bf524c2a64)
r6 = socket$nl_xfrm(0x10, 0x3, 0x6)
mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x1000005, 0x812, r6, 0x0)
pipe(0x0)
getsockopt$inet_sctp_SCTP_RECONFIG_SUPPORTED(r5, 0x84, 0x75, &(0x7f00000000c0)={0x0, 0x4}, &(0x7f0000000100)=0x8)
getsockopt$inet_sctp_SCTP_PEER_AUTH_CHUNKS(r5, 0x84, 0x1a, &(0x7f0000000580)=ANY=[@ANYBLOB="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"], 0x0)
r7 = socket$inet6(0xa, 0x3, 0x3a)
setsockopt$sock_linger(r7, 0x1, 0xd, &(0x7f0000000000)={0x1, 0x8}, 0xfffffffffffffe21)
ioctl$sock_bt_bnep_BNEPCONNADD(r5, 0x400442c8, &(0x7f00000003c0)=ANY=[@ANYBLOB="0800000008000399651f550acab35b6f6e8f409cd525c560466f01a20ca6bfcb6bf02aae1b9ca33f9b2c90584825ab160f6991f3b1b87a16cc24851876005e8eb5bfbc355ed6499dfabebd8109d4f5ec233e098bae7b39e02ae15480babab278d3d0a83df56f0078420a0ac3a98a6ad2f40974ba10f3ff97603d29e25b91662929450000000000000000b7600ba7860b4e75dbe21cb4efca75b45f95fcddf41387f2664d1c878690135c3df40c3e2dafb61ddcfa982ed73439bf0dde1801ee35df9faa7d66b5994a7c13f231b8f6903367dd8933289c00000000000000"])
fchdir(r1)
r8 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$sock_int(r8, 0x1, 0x12, &(0x7f0000000180)=0x6, 0x4)
ioctl$KVM_SET_FPU(r5, 0x41a0ae8d, &(0x7f0000000800)={[], 0x4, 0x1, 0x4000000, 0x0, 0x849, 0x3000, 0x10000, [], 0x4})
setsockopt$inet6_int(r7, 0x29, 0xc8, &(0x7f00000007c0), 0x4)
setsockopt$inet6_MRT6_ADD_MIF(r5, 0x29, 0xca, &(0x7f0000000080)={0x5, 0x1, 0x0, 0x0, 0xffffffffffffffff}, 0xc)
setsockopt$inet6_MRT6_ADD_MFC(r7, 0x29, 0xc9, 0x0, 0x0)

04:13:05 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}, 0x1, 0x1a0}, 0x0)

[ 3298.163780] oom_reaper: reaped process 22943 (syz-executor.5), now anon-rss:0kB, file-rss:33856kB, shmem-rss:0kB
04:13:05 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}, 0x1, 0x300}, 0x0)

[ 3298.252474] audit: type=1400 audit(2000002385.140:573): avc:  denied  { map } for  pid=22974 comm="syz-executor.2" path="socket:[723708]" dev="sockfs" ino=723708 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_xfrm_socket permissive=1
04:13:05 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x9effffff}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

04:13:05 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"/968]}, 0x440)

04:13:05 executing program 2:
r0 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000140)='/dev/vga_arbiter\x00', 0x200000000000080, 0x0)
ioctl$VIDIOC_ENUM_FMT(r0, 0xc0405602, &(0x7f0000000180)={0x4, 0x8, 0x3, "6c34a512c015802367c96198fec2b326dec78cee804dec1651427f49f48177e2", 0x32314d48})
ioctl$TUNSETFILTEREBPF(r0, 0x800454e1, &(0x7f00000001c0)=r0)
ioctl$EXT4_IOC_SWAP_BOOT(r0, 0x6611)
r1 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
openat$cgroup_int(0xffffffffffffffff, &(0x7f0000000000)='io.max\x00\xe3\xc6\xa1\xbc\x16\x94p`R\xfbqcm\xab\x87\xf6\xb6y1uoG\x18\xd4\xc8*R6\x84\xfb\xfbU<d0\xfb\xc7\xb9AB\xe83Q\xf1\xda\xedV\xac&\x9c\x92\x86 t\x93\xb4\xa5\x8d\xbd\xb5<\x1a\x90\xa3U\xb9{\xba\x99\xdf(\x9a%\xef\x0eO5\xcd\xbf\xe7\n\x13\xc3+(<\x02\x83|S0\xed\x0f9:\xc8\xb5\xa0\"\x00x\xe9\x1f\xe9\xee\x17\x88%\x19\xe3\x9d\x9d|P,\xb5+\x84\xaa\x1cZd\xb1fj\xde\xc7\xf0\xd8D\xaf\x01\x01\x8e\x95\x83X\xb9\xf5J\xb0\v\x0fC\xd3\x8e\x9d\xe1\x1e:!|\xa3%\xd2@M\x1b\xf3\xfe\xf1\x94\xffl~\x18\xed', 0x2, 0x0)
r2 = bpf$MAP_CREATE(0x0, 0x0, 0xffffffffffffffa5)
r3 = perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r4 = socket$inet6(0xa, 0x40000080806, 0x0)
bind$inet6(r4, &(0x7f000047b000)={0xa, 0x4e20}, 0x1c)
openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x20000, 0x0)
r5 = fcntl$dupfd(r2, 0xeb07693a7a6358e4, r3)
getegid()
fstat(r1, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x0, <r6=>0x0})
getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000280)={0x0, 0x0, <r7=>0x0}, &(0x7f0000000300)=0xc)
setresgid(r6, r7, r7)
write$FUSE_DIRENT(r5, &(0x7f00000004c0)=ANY=[], 0x0)
listen(r4, 0x20000000)
r8 = socket$inet6(0xa, 0x6, 0x0)
ioctl$int_in(r4, 0x0, 0x0)
connect$inet6(r8, &(0x7f0000419000)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r9 = accept4(r8, 0x0, 0x0, 0xfffffffffffffffe)
r10 = add_key(&(0x7f0000000400)='ceph\x00', &(0x7f0000000440)={'syz', 0x1}, &(0x7f0000000640)="1550adcc328cf077c2723adb53f1dd3ccfa37a24b3e9563433863aa4f19c61834ee7278558d30dca7dd2b25a5abdc6992a618de7db1bcef76651015f1ab62fa0d8d5ba5eca51629fcff676325efe8b3e97d157553d122656eca539edf0d3302eb32d2c524403e0df88c507b885abf64554a08f19d84c8b69", 0x78, 0xfffffffffffffff9)
keyctl$search(0xa, 0x0, &(0x7f00000002c0)='pkcs7_test\x00', &(0x7f00000003c0)={'syz', 0x1}, r10)
r11 = syz_open_dev$sndtimer(&(0x7f00000000c0)='/dev/snd/timer\x00', 0x0, 0x181)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f0000000480)={<r12=>0x0, 0x80000, r1})
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f0000000740)={r12, 0x0, r0})
fcntl$getflags(r11, 0x1)
sendmmsg(r9, &(0x7f0000003d40)=[{{&(0x7f0000001b00)=@l2={0x1f, 0x0, {}, 0x2c01000000000000}, 0x80, &(0x7f0000001d00), 0x0, &(0x7f0000001d40)}}, {{&(0x7f0000002300)=@nl, 0x80, &(0x7f0000003740), 0x0, &(0x7f00000037c0)}}], 0x4000000000001eb, 0x0)
getsockname$packet(0xffffffffffffffff, &(0x7f0000000000)={0x11, 0x0, <r13=>0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000040)=0x14)
ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f0000000340)={'vcan0\x00', r13})

04:13:05 executing program 0:
r0 = openat$selinux_load(0xffffffffffffff9c, &(0x7f0000000180)='/selinux/load\x00', 0x2, 0x0)
syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x6, 0x200000)
write$selinux_load(r0, &(0x7f00000007c0)=ANY=[@ANYBLOB="8cff7cf908000000534b88ff846e757816000000d96927940000fffffff82000400000000004080000000000"], 0x2c)
ioctl$int_in(r0, 0x5452, &(0x7f0000000000)=0xfffffffffffffffb)

[ 3298.437056] syz-executor.5 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 3298.501906] syz-executor.5 cpuset=syz5 mems_allowed=0-1
[ 3298.530335] CPU: 1 PID: 22983 Comm: syz-executor.5 Not tainted 4.19.66 #40
[ 3298.537381] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3298.543842] SELinux:  policydb string SKˆÿ„nux does not match my string SE Linux
[ 3298.546735] Call Trace:
[ 3298.546760]  dump_stack+0x172/0x1f0
[ 3298.546783]  dump_header+0x15e/0xa55
[ 3298.546804]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 3298.569356]  ? ___ratelimit+0x60/0x595
[ 3298.573259]  ? do_raw_spin_unlock+0x57/0x270
[ 3298.577691]  oom_kill_process.cold+0x10/0x6ef
[ 3298.582236]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 3298.587789]  ? task_will_free_mem+0x139/0x6e0
[ 3298.588889] SELinux:  policydb string SKˆÿ„nux does not match my string SE Linux
04:13:05 executing program 2:
r0 = add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000100)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffffb)
r1 = add_key$user(&(0x7f0000000080)='user\x00', &(0x7f00000000c0)={'syz', 0x0}, &(0x7f00000001c0)='A', 0x1, r0)
r2 = accept4$llc(0xffffffffffffffff, &(0x7f0000000040)={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, &(0x7f0000000140)=0x10, 0x80000)
ioctl$FIGETBSZ(r2, 0x2, &(0x7f0000000180))
keyctl$unlink(0x9, r1, r0)

[ 3298.592302]  out_of_memory+0x936/0x12d0
[ 3298.592321]  ? lock_downgrade+0x810/0x810
[ 3298.592339]  ? oom_killer_disable+0x280/0x280
[ 3298.592359]  ? find_held_lock+0x35/0x130
[ 3298.616561]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 3298.621425]  ? memcg_event_wake+0x230/0x230
[ 3298.625766]  ? do_raw_spin_unlock+0x57/0x270
[ 3298.630191]  ? _raw_spin_unlock+0x2d/0x50
[ 3298.634354]  try_charge+0x1028/0x15b0
[ 3298.638166]  ? find_held_lock+0x35/0x130
[ 3298.642253]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 3298.647114]  ? kasan_check_read+0x11/0x20
[ 3298.651285]  ? get_mem_cgroup_from_mm+0x156/0x320
[ 3298.656148]  mem_cgroup_try_charge+0x259/0x6b0
[ 3298.660763]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 3298.665709]  wp_page_copy+0x430/0x16a0
[ 3298.669613]  ? pmd_pfn+0x1d0/0x1d0
[ 3298.669633]  ? kasan_check_read+0x11/0x20
[ 3298.669653]  ? do_raw_spin_unlock+0x57/0x270
[ 3298.677376]  do_wp_page+0x57d/0x10b0
[ 3298.677393]  ? lock_acquire+0x16f/0x3f0
[ 3298.677407]  ? finish_mkwrite_fault+0x4f0/0x4f0
[ 3298.677425]  ? kasan_check_write+0x14/0x20
[ 3298.698427]  ? do_raw_spin_lock+0xc8/0x240
[ 3298.702704]  __handle_mm_fault+0x2305/0x3f80
[ 3298.707134]  ? vmf_insert_mixed_mkwrite+0x90/0x90
[ 3298.712017]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 3298.716740]  handle_mm_fault+0x1b5/0x690
[ 3298.720820]  __do_page_fault+0x62a/0xe90
[ 3298.724901]  ? vmalloc_fault+0x740/0x740
[ 3298.728984]  ? trace_hardirqs_off_caller+0x65/0x220
[ 3298.734009]  ? trace_hardirqs_on_caller+0x6a/0x220
[ 3298.738953]  ? page_fault+0x8/0x30
[ 3298.742510]  do_page_fault+0x71/0x57d
[ 3298.746321]  ? page_fault+0x8/0x30
[ 3298.749876]  page_fault+0x1e/0x30
[ 3298.753426] RIP: 0033:0x40e9c8
[ 3298.753442] Code: 8b 34 c6 4a 8d 04 2e 48 3d ff ff ff 7e 0f 86 77 ff ff ff bf 35 ee 4b 00 31 c0 e8 63 33 ff ff 31 ff e8 ac 2f ff ff 0f 1f 40 00 <89> 3c b5 00 00 73 00 eb b6 31 ed 0f 1f 44 00 00 80 3d 9e 1a 66 00
[ 3298.753450] RSP: 002b:00007ffd53165230 EFLAGS: 00010246
[ 3298.753463] RAX: 000000008d9e6756 RBX: 00000000409c7d41 RCX: 0000001b2ed20000
[ 3298.753471] RDX: 0000000000000000 RSI: 0000000000000756 RDI: ffffffff8d9e6756
[ 3298.753480] RBP: 0000000000000004 R08: 000000008d9e6756 R09: 000000008d9e675a
[ 3298.753493] R10: 00007ffd531653d0 R11: 0000000000000246 R12: 000000000075bfa8
[ 3298.775715] R13: 0000000080000000 R14: 00007f09e87ff008 R15: 0000000000000004
[ 3298.788758] Task in /syz5 killed as a result of limit of /syz5
[ 3298.788797] memory: usage 307200kB, limit 307200kB, failcnt 7774
[ 3298.788808] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3298.788817] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
04:13:05 executing program 5:
r0 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000240)='/dev/dlm-control\x00', 0x40000, 0x0)
ioctl$SNDRV_TIMER_IOCTL_GINFO(r0, 0xc0f85403, &(0x7f0000000280)={{0xffffffffffffffff, 0x0, 0x5830000000000, 0x3, 0x4}, 0xf177, 0xb431, 'id0\x00', 'timer1\x00', 0x0, 0x8b4, 0x81, 0x0, 0x445})
shmat(0x0, &(0x7f0000ffc000/0x4000)=nil, 0x3000)
mbind(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x2, &(0x7f0000000000)=0xffff, 0x2, 0x0)
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0x20b, &(0x7f0000000040)=[{&(0x7f0000000540)="2e000000220005000000c187185095cf0400b0eba0b4d65c0007000051894d5d1dac00"/46, 0x2e}], 0x1}, 0x0)
r2 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000080)='/dev/qat_adf_ctl\x00', 0x200, 0x0)
ioctl$DRM_IOCTL_ADD_CTX(0xffffffffffffffff, 0xc0086420, &(0x7f00000000c0)={<r3=>0x0})
ioctl$DRM_IOCTL_GET_SAREA_CTX(r2, 0xc010641d, &(0x7f0000000200)={r3, &(0x7f0000000100)=""/74})

04:13:05 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0xa0010000}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

04:13:05 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}, 0x1, 0x600}, 0x0)

04:13:05 executing program 2:
setreuid(0x0, 0xee00)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
setsockopt$ARPT_SO_SET_REPLACE(r0, 0x0, 0x60, 0x0, 0x0)
r1 = dup3(r0, r0, 0x80000)
getsockopt$XDP_MMAP_OFFSETS(r1, 0x11b, 0x1, &(0x7f0000000000), &(0x7f0000000080)=0x60)

04:13:05 executing program 0:
r0 = openat$selinux_load(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/load\x00', 0x2, 0x0)
write$selinux_load(r0, &(0x7f00000007c0)=ANY=[@ANYBLOB="8cff7cf9080000005345204c696e757816000000d96927940000ffdffff82000400000000004000000000000"], 0x2c)

04:13:05 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"/968]}, 0x440)

[ 3298.788824] Memory cgroup stats for /syz5: cache:72KB rss:148KB rss_huge:0KB shmem:12KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:156KB inactive_file:0KB active_file:0KB unevictable:0KB
[ 3298.788927] Memory cgroup out of memory: Kill process 22983 (syz-executor.5) score 1103 or sacrifice child
[ 3298.788992] Killed process 22983 (syz-executor.5) total-vm:72580kB, anon-rss:108kB, file-rss:34816kB, shmem-rss:0kB
04:13:05 executing program 2:
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
getsockopt$ARPT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x60, 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r1, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f004})
ioctl$KVM_RUN(r1, 0xae80, 0x0)
ioctl$KVM_SET_REGS(r1, 0x4090ae82, &(0x7f00000002c0))
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000180)=[@text16={0x10, &(0x7f0000000100)="640ff24101660f08f20f1bfa0f20e06635000040000f22e0bad004b00fee36260f01dfaa8fc900010b0f080f005b9a", 0x2f}], 0x1, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r1, 0xae80, 0x0)
write$P9_RREAD(r1, &(0x7f0000000380)={0x102, 0x75, 0x1, {0xf7, "d25d42c78548178cc9655b0ff829f76a6ae4c7804cc4ae332d169e86870dd90fe38d65ca67661e2090ef887ea372f6936dcb2a1a3935c1cc6f840e4280ecdbd97146b1d4ea52993652e9dc53c167a2da7a35375c86d5f9185afd47d26d5b7d9569c89a2718f90e20a705469ca856f680c2bb16b3329ecb96a2b7a0a23eb68836813c7885a21f4a7203ae027778dd0b90734408415cd0478c3ae100fc43d33ce0eb6ed30583042ecd937c07bd6e7ee60d432fd782c0b2e9522c110e209bcec1b74064e7dd303da12c4b9efb5bd9e2f39a4aee752cf15e8bcbb7a215fcc4bf0cbdad671147e75af5cde0b3e03ba107aa0ca394b2cdacddab"}}, 0x102)

04:13:05 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}, 0x1, 0xa00}, 0x0)

04:13:05 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0xf0ffffff}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

04:13:05 executing program 0:
r0 = openat$selinux_load(0xffffffffffffff9c, &(0x7f00000000c0)='/selinux/load\x00', 0x2, 0x0)
r1 = syz_open_dev$vbi(&(0x7f0000000080)='/dev/vbi#\x00', 0x2, 0x2)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x18, 0xfa00, {0x3, &(0x7f0000000100)={<r2=>0xffffffffffffffff}, 0x13f, 0x2}}, 0x20)
ioctl$EVIOCGLED(r1, 0x80404519, &(0x7f00000002c0)=""/10)
write$RDMA_USER_CM_CMD_BIND_IP(r1, &(0x7f0000000180)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x4e24, 0x2, @ipv4={[], [], @remote}}, r2}}, 0x30)
write$selinux_load(r0, &(0x7f00000001c0)=ANY=[@ANYBLOB="8cff7cf908000000abc2c0a805ec509ef260d55345054c696e757816000000d96927940000fffffff820004000000020040000000000007e1e377c88ff47d42ea87e521c223e5a09251a57d038c7f6fed06e7205c4f063c9ed5fe71c91f2340bbe3afe6c54dcd7319692ed18e8343b2de488b8f94494e843b5df4caed9a74a30811a9dfc443d5222e1a3252b5accfedb530faed86a4ae0e45274a01a6f1f76f61dd04c2bab29eacd7aa98feb5821757db1f34cdc5837b5d580f6c86174eefc40597883e5289078d4c30d3297f175cc485cd030c8efa2b709b3a3765e2875495b3dfbde649d9f01b4550ab98056111f9091d3a749febd"], 0x2c)
r3 = syz_open_dev$vcsn(&(0x7f0000000000)='/dev/vcs#\x00', 0x6, 0x40)
ioctl$EVIOCSCLOCKID(r3, 0x400445a0, &(0x7f0000000040)=0xe362)

04:13:05 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"/968]}, 0x440)

[ 3298.967888] syz-executor.5 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 3298.992574] syz-executor.5 cpuset=syz5 mems_allowed=0-1
[ 3299.032870] CPU: 1 PID: 23019 Comm: syz-executor.5 Not tainted 4.19.66 #40
[ 3299.039922] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3299.049285] Call Trace:
[ 3299.049310]  dump_stack+0x172/0x1f0
[ 3299.049334]  dump_header+0x15e/0xa55
[ 3299.055576]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 3299.055593]  ? ___ratelimit+0x60/0x595
[ 3299.055613]  ? do_raw_spin_unlock+0x57/0x270
[ 3299.068314]  oom_kill_process.cold+0x10/0x6ef
[ 3299.068342]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 3299.077257]  ? task_will_free_mem+0x139/0x6e0
[ 3299.077281]  out_of_memory+0x936/0x12d0
[ 3299.077298]  ? lock_downgrade+0x810/0x810
[ 3299.087333]  ? oom_killer_disable+0x280/0x280
[ 3299.087350]  ? find_held_lock+0x35/0x130
[ 3299.087379]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 3299.095488]  ? memcg_event_wake+0x230/0x230
[ 3299.095510]  ? do_raw_spin_unlock+0x57/0x270
[ 3299.095532]  ? _raw_spin_unlock+0x2d/0x50
[ 3299.104082]  try_charge+0x1028/0x15b0
[ 3299.104098]  ? find_held_lock+0x35/0x130
[ 3299.104119]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 3299.113277]  ? kasan_check_read+0x11/0x20
[ 3299.113299]  ? get_mem_cgroup_from_mm+0x156/0x320
[ 3299.113317]  mem_cgroup_try_charge+0x259/0x6b0
[ 3299.113344]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 3299.121973]  wp_page_copy+0x430/0x16a0
[ 3299.121998]  ? pmd_pfn+0x1d0/0x1d0
[ 3299.122016]  ? kasan_check_read+0x11/0x20
[ 3299.129866]  ? do_raw_spin_unlock+0x57/0x270
[ 3299.129885]  do_wp_page+0x57d/0x10b0
[ 3299.129906]  ? lock_acquire+0x16f/0x3f0
[ 3299.138891]  ? finish_mkwrite_fault+0x4f0/0x4f0
[ 3299.138908]  ? kasan_check_write+0x14/0x20
[ 3299.138921]  ? do_raw_spin_lock+0xc8/0x240
[ 3299.138941]  __handle_mm_fault+0x2305/0x3f80
[ 3299.148361]  ? vmf_insert_mixed_mkwrite+0x90/0x90
[ 3299.148397]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 3299.205819]  handle_mm_fault+0x1b5/0x690
[ 3299.209903]  __do_page_fault+0x62a/0xe90
[ 3299.213986]  ? vmalloc_fault+0x740/0x740
[ 3299.218064]  ? trace_hardirqs_off_caller+0x65/0x220
[ 3299.223091]  ? trace_hardirqs_on_caller+0x6a/0x220
[ 3299.224054] SELinux:  policydb string «ÂÀ¨ìPž does not match my string SE Linux
[ 3299.228032]  ? page_fault+0x8/0x30
[ 3299.228055]  do_page_fault+0x71/0x57d
[ 3299.228073]  ? page_fault+0x8/0x30
[ 3299.228092]  page_fault+0x1e/0x30
[ 3299.236068] sel_write_load: 8 callbacks suppressed
[ 3299.236074] SELinux: failed to load policy
[ 3299.239166] RIP: 0033:0x40e9c8
[ 3299.239189] Code: 8b 34 c6 4a 8d 04 2e 48 3d ff ff ff 7e 0f 86 77 ff ff ff bf 35 ee 4b 00 31 c0 e8 63 33 ff ff 31 ff e8 ac 2f ff ff 0f 1f 40 00 <89> 3c b5 00 00 73 00 eb b6 31 ed 0f 1f 44 00 00 80 3d 9e 1a 66 00
04:13:06 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"/968]}, 0x440)

[ 3299.239197] RSP: 002b:00007ffd53165230 EFLAGS: 00010246
[ 3299.239210] RAX: 000000008d9e6756 RBX: 00000000409c7d41 RCX: 0000001b2ed20000
[ 3299.239224] RDX: 0000000000000000 RSI: 0000000000000756 RDI: ffffffff8d9e6756
[ 3299.301240] RBP: 0000000000000004 R08: 000000008d9e6756 R09: 000000008d9e675a
[ 3299.301250] R10: 00007ffd531653d0 R11: 0000000000000246 R12: 000000000075bfa8
[ 3299.301265] R13: 0000000080000000 R14: 00007f09e87ff008 R15: 0000000000000004
[ 3299.313239] SELinux:  policydb string «ÂÀ¨ìPž does not match my string SE Linux
[ 3299.346659] SELinux: failed to load policy
[ 3299.372095] Task in /syz5 killed as a result of limit of /syz5
[ 3299.391862] memory: usage 307200kB, limit 307200kB, failcnt 7784
[ 3299.398636] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3299.413755] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3299.420005] Memory cgroup stats for /syz5: cache:72KB rss:148KB rss_huge:0KB shmem:12KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:156KB inactive_file:0KB active_file:0KB unevictable:0KB
04:13:06 executing program 5:
r0 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000240)='/dev/dlm-control\x00', 0x40000, 0x0)
ioctl$SNDRV_TIMER_IOCTL_GINFO(r0, 0xc0f85403, &(0x7f0000000280)={{0xffffffffffffffff, 0x0, 0x5830000000000, 0x3, 0x4}, 0xf177, 0xb431, 'id0\x00', 'timer1\x00', 0x0, 0x8b4, 0x81, 0x0, 0x445})
shmat(0x0, &(0x7f0000ffc000/0x4000)=nil, 0x3000)
mbind(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x2, &(0x7f0000000000)=0xffff, 0x2, 0x0)
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0x20b, &(0x7f0000000040)=[{&(0x7f0000000540)="2e000000220005000000c187185095cf0400b0eba0b4d65c0008000051894d5d1dac00"/46, 0x2e}], 0x1}, 0x0)
r2 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000080)='/dev/qat_adf_ctl\x00', 0x200, 0x0)
ioctl$DRM_IOCTL_ADD_CTX(0xffffffffffffffff, 0xc0086420, &(0x7f00000000c0)={<r3=>0x0})
ioctl$DRM_IOCTL_GET_SAREA_CTX(r2, 0xc010641d, &(0x7f0000000200)={r3, &(0x7f0000000100)=""/74})

04:13:06 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}, 0x1, 0xc00}, 0x0)

04:13:06 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0xfeff0000}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

04:13:06 executing program 0:
r0 = openat$selinux_load(0xffffffffffffff9c, &(0x7f0000000080)='/selinux/load\x00', 0x2, 0x0)
write$selinux_load(r0, &(0x7f00000007c0)=ANY=[@ANYBLOB="8cff7cf9080000005345204c696e757816000000d96927940000fffffff82000400000000004000000000000"], 0x2c)
write$selinux_load(r0, &(0x7f0000000100)={0xf97cff8c, 0x8, 'SE Linux', "1199a31338bbd07e26746a4cfa7c6ad6ed671dcb07728d022901dcc455178ea834331db8130e93897828cc7336d8f680f1cb270bb91e86489ac52587ae7197d59c922496ce5573402213304e007f657a1183729717d364f7bc80d7467cd3186836eb1f4497e02867950d8eb0d1670265ace9b2f3d793ce52efa0f077b00bb5d81f826f372550f908318c5d43f8500e57f0c046b8556cd1c92c983b6fdc846e549a8a90c3e70c6b5f8f45f39fdde58db389"}, 0xc1)
write$selinux_load(r0, &(0x7f0000000000)=ANY=[@ANYBLOB="8cff7cf9080000005345204c696e757861c9583c58285e6ca95b69729655b20b44774c823e44e8bab85c7d8dba78ed8e4ae504c554c1d9a275c6a30ee33a651aad46e623607bd42feffc745a5953eef5a69cb67f595d2af7001060f35006374d2e4dd8cdbd51d67f1f8ef70b18a3172b"], 0x73)

04:13:06 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="00000000004000000000000000000000000000000000000000000000000000000000020000000000ffffffff020000001d00000001000000080676657468305f746f5f627269646765006e7230000000000000000000000000006772653000000000000000000000000076657468315f746f5f626f6e64000000aaaaaaaaaaaa000000000000aaaaaaaaaaaa00000000000000007000000070000000a80000006172707265706c790000000000000000000000000000000000000000000000001000000000000000aaaaaaaaaaaa0000feffffff0000000009000000000000000000697064647030000000000000000000006272696467655f736c6176655f3100000000000000000000000000000000000067726530000000000000000000000000ffffffffffff0000000000000000000000000000000000000000e0000000180100005001000072617465657374000000000000a3000000000000000000000000000000000000480000000000000064756d6d79300000000000000000000073797a5f74756e0000000ab941773a25a4462a99832900000000000000000000200000000000000000000000000000000000000000000000736e6174000000000000000000000000000000000000000000000000000000001000000000000000aaaaaaaaaaaa000000000000000000006d61726b0000000000000000000000000000000000000000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000002000000feffffff01000000110000000000000000006272696467655f736c6176655f3100000000000000000000000000749638e0006c6f00000000000000000000000000000080616d300000000000000000000000aaaaaaaaaa00000000000000aaaaaaaaaaaa0000000000000000a00000000801000040010000636f6e6e6c6162656c000000000000000000000000000000000000000000000008000000000000000000000000000000434c4153534946590000000000000000000000000000000000ff07000000000008000000000000000000000000000000736e617400000000000000000000000000000000000000000001000000000000100000000000000000000000000000000000000000000000736e6174000000000000000000000000000000000000000000000000000000001000000000001400aaaaaaaaaabb00"/968]}, 0x440)

[ 3299.463024] Memory cgroup out of memory: Kill process 23019 (syz-executor.5) score 1103 or sacrifice child
[ 3299.473759] Killed process 23019 (syz-executor.5) total-vm:72580kB, anon-rss:108kB, file-rss:34816kB, shmem-rss:0kB
[ 3299.500131] oom_reaper: reaped process 23019 (syz-executor.5), now anon-rss:0kB, file-rss:33856kB, shmem-rss:0kB
04:13:06 executing program 2:
r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x4, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x80000000000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup\x00', 0x200002, 0x0)
r2 = openat$cgroup_subtree(r1, &(0x7f0000000040)='cgroup.subtree_control\x00', 0x2, 0x0)
ioctl$PERF_EVENT_IOC_SET_OUTPUT(0xffffffffffffffff, 0x2405, 0xffffffffffffffff)
r3 = openat$hwrng(0xffffffffffffff9c, 0x0, 0x8000, 0x0)
r4 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000140)='/dev/sequencer\x00', 0x0, 0x0)
ioctl$TUNSETVNETBE(r3, 0x400454de, &(0x7f0000000100)=0x1)
prctl$PR_GET_THP_DISABLE(0x2a)
ioctl(r0, 0x9, &(0x7f0000000180)="682675996a47ca85769a2c803e290b774363e1d265d1f6895cc01ecce7c395261ff3c060b16268c0f41b36f9451fb2befe22953312aae8e768c0e51f8064a5579edc76d5e579e24963d289d6cfc359a2e3e29bcea62709627f994de0204c64852df8424c4dbb1de302")
close(r1)
openat$cgroup_ro(r1, &(0x7f0000000080)='io.stat\x00', 0x0, 0x0)
setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r4, 0x6, 0x16, &(0x7f00000000c0)=[@window={0x3, 0x81, 0x5}, @window={0x3, 0x81, 0x3ff}], 0x2)
readv(r2, &(0x7f00000002c0), 0x10000000000002bb)

04:13:06 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0xff0f0000}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

04:13:06 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}, 0x1, 0xe00}, 0x0)

[ 3299.645774] SELinux: failed to load policy
[ 3299.658102] SELinux:  policydb version 329488657 does not match my version range 15-31
[ 3299.681873] SELinux: failed to load policy
04:13:06 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"/968]}, 0x440)

[ 3299.721375] syz-executor.5 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 3299.730717] SELinux:  policydb version 1012451681 does not match my version range 15-31
[ 3299.780300] SELinux: failed to load policy
[ 3299.792117] syz-executor.5 cpuset=syz5 mems_allowed=0-1
[ 3299.816235] CPU: 1 PID: 23058 Comm: syz-executor.5 Not tainted 4.19.66 #40
[ 3299.820044] SELinux: failed to load policy
[ 3299.823534] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3299.823541] Call Trace:
[ 3299.823565]  dump_stack+0x172/0x1f0
[ 3299.823586]  dump_header+0x15e/0xa55
[ 3299.823605]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 3299.823620]  ? ___ratelimit+0x60/0x595
[ 3299.823634]  ? do_raw_spin_unlock+0x57/0x270
[ 3299.823653]  oom_kill_process.cold+0x10/0x6ef
[ 3299.823672]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 3299.823686]  ? task_will_free_mem+0x139/0x6e0
[ 3299.823708]  out_of_memory+0x936/0x12d0
[ 3299.823722]  ? lock_downgrade+0x810/0x810
[ 3299.823741]  ? oom_killer_disable+0x280/0x280
[ 3299.823754]  ? find_held_lock+0x35/0x130
[ 3299.823782]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 3299.823797]  ? memcg_event_wake+0x230/0x230
[ 3299.823816]  ? do_raw_spin_unlock+0x57/0x270
[ 3299.823831]  ? _raw_spin_unlock+0x2d/0x50
[ 3299.823848]  try_charge+0x1028/0x15b0
[ 3299.863291] SELinux:  policydb version 329488657 does not match my version range 15-31
[ 3299.865262]  ? find_held_lock+0x35/0x130
[ 3299.865288]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 3299.865309]  ? kasan_check_read+0x11/0x20
[ 3299.865332]  ? get_mem_cgroup_from_mm+0x156/0x320
[ 3299.871962] SELinux: failed to load policy
[ 3299.875465]  mem_cgroup_try_charge+0x259/0x6b0
[ 3299.875488]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 3299.875505]  wp_page_copy+0x430/0x16a0
[ 3299.875527]  ? pmd_pfn+0x1d0/0x1d0
[ 3299.875543]  ? kasan_check_read+0x11/0x20
[ 3299.875556]  ? do_raw_spin_unlock+0x57/0x270
[ 3299.875573]  do_wp_page+0x57d/0x10b0
[ 3299.875590]  ? lock_acquire+0x16f/0x3f0
[ 3299.892513]  ? finish_mkwrite_fault+0x4f0/0x4f0
[ 3299.906056]  ? kasan_check_write+0x14/0x20
[ 3299.906072]  ? do_raw_spin_lock+0xc8/0x240
[ 3299.906095]  __handle_mm_fault+0x2305/0x3f80
[ 3299.906115]  ? vmf_insert_mixed_mkwrite+0x90/0x90
[ 3299.940155]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 3299.948957]  handle_mm_fault+0x1b5/0x690
[ 3299.948986]  __do_page_fault+0x62a/0xe90
[ 3300.013053]  ? vmalloc_fault+0x740/0x740
[ 3300.017145]  ? trace_hardirqs_off_caller+0x65/0x220
[ 3300.022189]  ? trace_hardirqs_on_caller+0x6a/0x220
[ 3300.027137]  ? page_fault+0x8/0x30
[ 3300.030701]  do_page_fault+0x71/0x57d
[ 3300.034517]  ? page_fault+0x8/0x30
[ 3300.038072]  page_fault+0x1e/0x30
[ 3300.041531] RIP: 0033:0x40e9c8
[ 3300.044737] Code: 8b 34 c6 4a 8d 04 2e 48 3d ff ff ff 7e 0f 86 77 ff ff ff bf 35 ee 4b 00 31 c0 e8 63 33 ff ff 31 ff e8 ac 2f ff ff 0f 1f 40 00 <89> 3c b5 00 00 73 00 eb b6 31 ed 0f 1f 44 00 00 80 3d 9e 1a 66 00
[ 3300.063656] RSP: 002b:00007ffd53165230 EFLAGS: 00010246
[ 3300.069041] RAX: 000000006324b081 RBX: 000000000ceef18a RCX: 0000001b2ed20000
04:13:06 executing program 0:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000840)={0x1, &(0x7f0000f40ff8)=[{0x6}]}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f00000001c0)='dctcp\x00', 0x31d)
readv(r0, &(0x7f0000000080)=[{&(0x7f0000000000)=""/120, 0x78}], 0x1)
sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x0, @local}, 0x10)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
shmat(0x0, &(0x7f0000001000/0xd000)=nil, 0x0)
r1 = socket$inet(0x10, 0x2, 0x0)
r2 = openat$zero(0xffffffffffffff9c, 0x0, 0x0, 0x0)
lsetxattr$trusted_overlay_opaque(0x0, 0x0, 0x0, 0xd8a68c158cad987b, 0x0)
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
bpf$OBJ_PIN_MAP(0x6, &(0x7f00000001c0)={0x0, r2}, 0x10)
mount$bpf(0x20000000, &(0x7f00000000c0)='./file0\x00', 0x0, 0x2001001, 0x0)
ioctl$sock_ifreq(r1, 0x8942, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
pivot_root(&(0x7f0000000140)='./file0\x00', &(0x7f0000000500)='./file0\x00')
llistxattr(&(0x7f00000002c0)='./file0\x00', 0x0, 0x0)
sendmsg(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000240)="24000000180007841dfffd946f610500020081001f03fe0504000800080005000400ff7e280000001100ffffba16a0aa1c0900000000000012000000000000eff24d8238cfa47e23f7efbf54", 0x4c}], 0x1}, 0x0)
ioctl$SNDRV_CTL_IOCTL_RAWMIDI_PREFER_SUBDEVICE(r2, 0x40045542, &(0x7f0000000100)=0x8)
shmget$private(0x0, 0x3000, 0x1, &(0x7f000000a000/0x3000)=nil)
shutdown(r0, 0x0)

04:13:06 executing program 2:
epoll_pwait(0xffffffffffffffff, &(0x7f0000000240)=[{}, {}, {}], 0x3, 0x0, &(0x7f0000000280), 0x8)
accept(0xffffffffffffffff, &(0x7f0000000000)=@pppol2tp={0x18, 0x1, {0x0, <r0=>0xffffffffffffffff, {0x2, 0x0, @initdev}}}, &(0x7f0000000080)=0x80)
setsockopt$TIPC_DEST_DROPPABLE(r0, 0x10f, 0x81, &(0x7f00000000c0)=0x4, 0x4)

04:13:06 executing program 2:
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
syz_open_dev$binder(&(0x7f0000000180)='/dev/binder#\x00', 0x0, 0x2)
pipe(&(0x7f0000000300)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$EXT4_IOC_MIGRATE(r0, 0x6609)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
close(r3)
socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$nl_netfilter(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f00008a7000)={&(0x7f0000000040)=ANY=[@ANYBLOB="2c004000070605084c56a85057fa9918229e9d359ec558aab344a844b23e47bc0b497aa261898677c3613f88a3de0c5415576681cfcc26f13d888d6248f50642d3d3fed782d772efdb88dd443d5860f8fbed97c1b1b239dc90cc5b8dc404fe0b24b2287d1fcad086470688f3c56df76d2e9a4b684445ad053050567314777637998f1399977f79b82a134a8db62a2897f5b12f7d7c3894f83aef305a7d5542e5564ee71b8cbe50adfd1ddb2b168ba05a534b91e6768b41af793d8546ca481907d0cf1d98d106a4776b45fa4f3395"], 0x7}}, 0x0)
write$binfmt_misc(r2, &(0x7f0000000140)=ANY=[], 0x4240a2a0)
splice(r1, 0x0, r3, 0x0, 0x4ffe0, 0x0)
ioctl$EXT4_IOC_GROUP_EXTEND(r1, 0x40086607, &(0x7f0000000140)=0x6f922efb)

[ 3300.077672] RDX: 0000000000000000 RSI: 0000000000001081 RDI: ffffffff6324b081
[ 3300.084958] RBP: 0000000000000003 R08: 000000006324b081 R09: 000000006324b085
[ 3300.084967] R10: 00007ffd531653d0 R11: 0000000000000246 R12: 000000000075bfa8
[ 3300.084976] R13: 0000000080000000 R14: 00007f09e87ff008 R15: 0000000000000003
[ 3300.107730] Task in /syz5 killed as a result of limit of /syz5
[ 3300.153264] memory: usage 307200kB, limit 307200kB, failcnt 7817
[ 3300.177338] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3300.189969] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3300.205163] Memory cgroup stats for /syz5: cache:72KB rss:148KB rss_huge:0KB shmem:12KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:152KB inactive_file:0KB active_file:0KB unevictable:0KB
[ 3300.228589] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'.
[ 3300.266147] Memory cgroup out of memory: Kill process 23058 (syz-executor.5) score 1103 or sacrifice child
[ 3300.294114] Killed process 23058 (syz-executor.5) total-vm:72580kB, anon-rss:108kB, file-rss:34816kB, shmem-rss:0kB
04:13:07 executing program 5:
r0 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000240)='/dev/dlm-control\x00', 0x40000, 0x0)
ioctl$SNDRV_TIMER_IOCTL_GINFO(r0, 0xc0f85403, &(0x7f0000000280)={{0xffffffffffffffff, 0x0, 0x5830000000000, 0x3, 0x4}, 0xf177, 0xb431, 'id0\x00', 'timer1\x00', 0x0, 0x8b4, 0x81, 0x0, 0x445})
shmat(0x0, &(0x7f0000ffc000/0x4000)=nil, 0x3000)
mbind(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x2, &(0x7f0000000000)=0xffff, 0x2, 0x0)
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0x20b, &(0x7f0000000040)=[{&(0x7f0000000540)="2e000000220005000000c187185095cf0400b0eba0b4d65c0009000051894d5d1dac00"/46, 0x2e}], 0x1}, 0x0)
r2 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000080)='/dev/qat_adf_ctl\x00', 0x200, 0x0)
ioctl$DRM_IOCTL_ADD_CTX(0xffffffffffffffff, 0xc0086420, &(0x7f00000000c0)={<r3=>0x0})
ioctl$DRM_IOCTL_GET_SAREA_CTX(r2, 0xc010641d, &(0x7f0000000200)={r3, &(0x7f0000000100)=""/74})

04:13:07 executing program 2:
r0 = openat$vim2m(0xffffffffffffff9c, &(0x7f0000000080)='/dev/video35\x00', 0x2, 0x0)
ioctl$VIDIOC_DQEVENT(r0, 0x80885659, 0x0)
prctl$PR_GET_SPECULATION_CTRL(0x34, 0x0, 0xcbcbc124c2a4d8ba)
r1 = gettid()
timer_create(0x5, &(0x7f0000000180)={0x0, 0x200012}, &(0x7f0000000440))
r2 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dlm_plock\x00', 0x10c02, 0x0)
getsockopt$inet_sctp6_SCTP_PR_SUPPORTED(0xffffffffffffffff, 0x84, 0x71, &(0x7f0000000040)={<r3=>0x0, 0x9}, &(0x7f00000000c0)=0x8)
getsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f0000000280)={{{@in=@loopback, @in=@empty, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r4=>0x0}}, {{@in6=@local}, 0x0, @in6=@loopback}}, &(0x7f0000000100)=0xe8)
ioctl$sock_inet6_SIOCDELRT(r2, 0x890c, &(0x7f0000000380)={@initdev={0xfe, 0x88, [], 0x0, 0x0}, @mcast1, @ipv4={[], [], @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x4, 0x5, 0xb44, 0x500, 0x0, 0x0, r4})
getsockopt$inet_sctp_SCTP_RESET_STREAMS(r2, 0x84, 0x77, &(0x7f0000000200)=ANY=[@ANYRES32=r3, @ANYBLOB="ff07ae4a86b17cd24b6c0800000000047f000000b892b2bff0fa65d81ca7631027b0f70709f4533f59ba4de754540faae8b370f66f41a6d92a9d265ad6683ad5963026cf00000000717fbbd3e147c9b56fac9185c1b82f9aa555172fd6e74ffc7dd46c57325540d7a73794e19687a775f62bac398356425ad2a9"], &(0x7f0000000140)=0x18)
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
tkill(r1, 0x21)

04:13:07 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"/968]}, 0x440)

04:13:07 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}, 0x1, 0xf00}, 0x0)

04:13:07 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0xffffa888}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

[ 3300.306453] oom_reaper: reaped process 23058 (syz-executor.5), now anon-rss:0kB, file-rss:33856kB, shmem-rss:0kB
04:13:07 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"/968]}, 0x440)

04:13:07 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0xfffff000}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

[ 3300.450306] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'.
04:13:07 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}, 0x1, 0x3f00}, 0x0)

[ 3300.513281] syz-executor.5 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 3300.524755] syz-executor.5 cpuset=syz5 mems_allowed=0-1
[ 3300.538078] CPU: 0 PID: 23093 Comm: syz-executor.5 Not tainted 4.19.66 #40
[ 3300.545120] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3300.545127] Call Trace:
[ 3300.545151]  dump_stack+0x172/0x1f0
[ 3300.545173]  dump_header+0x15e/0xa55
[ 3300.545191]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 3300.545206]  ? ___ratelimit+0x60/0x595
[ 3300.545220]  ? do_raw_spin_unlock+0x57/0x270
[ 3300.545239]  oom_kill_process.cold+0x10/0x6ef
[ 3300.545258]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 3300.545272]  ? task_will_free_mem+0x139/0x6e0
[ 3300.545293]  out_of_memory+0x936/0x12d0
[ 3300.545308]  ? lock_downgrade+0x810/0x810
[ 3300.545325]  ? oom_killer_disable+0x280/0x280
[ 3300.545340]  ? find_held_lock+0x35/0x130
[ 3300.545364]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 3300.614320]  ? memcg_event_wake+0x230/0x230
[ 3300.618664]  ? do_raw_spin_unlock+0x57/0x270
[ 3300.623103]  ? _raw_spin_unlock+0x2d/0x50
[ 3300.627270]  try_charge+0x1028/0x15b0
[ 3300.631086]  ? find_held_lock+0x35/0x130
[ 3300.635168]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 3300.640028]  ? kasan_check_read+0x11/0x20
[ 3300.644194]  ? get_mem_cgroup_from_mm+0x156/0x320
[ 3300.649074]  mem_cgroup_try_charge+0x259/0x6b0
[ 3300.653683]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 3300.658629]  wp_page_copy+0x430/0x16a0
[ 3300.662539]  ? pmd_pfn+0x1d0/0x1d0
[ 3300.666130]  ? kasan_check_read+0x11/0x20
[ 3300.670297]  ? do_raw_spin_unlock+0x57/0x270
[ 3300.674732]  do_wp_page+0x57d/0x10b0
[ 3300.678460]  ? lock_acquire+0x16f/0x3f0
[ 3300.682447]  ? finish_mkwrite_fault+0x4f0/0x4f0
[ 3300.687141]  ? kasan_check_write+0x14/0x20
[ 3300.691391]  ? do_raw_spin_lock+0xc8/0x240
[ 3300.695646]  __handle_mm_fault+0x2305/0x3f80
[ 3300.700082]  ? vmf_insert_mixed_mkwrite+0x90/0x90
[ 3300.704953]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 3300.709643]  handle_mm_fault+0x1b5/0x690
[ 3300.713727]  __do_page_fault+0x62a/0xe90
[ 3300.717806]  ? vmalloc_fault+0x740/0x740
[ 3300.721885]  ? trace_hardirqs_off_caller+0x65/0x220
[ 3300.726944]  ? trace_hardirqs_on_caller+0x6a/0x220
[ 3300.731890]  ? page_fault+0x8/0x30
[ 3300.735453]  do_page_fault+0x71/0x57d
[ 3300.739266]  ? page_fault+0x8/0x30
[ 3300.742821]  page_fault+0x1e/0x30
[ 3300.746284] RIP: 0033:0x40e9c8
04:13:07 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0xffffff7f}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

04:13:07 executing program 0:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000840)={0x1, &(0x7f0000f40ff8)=[{0x6}]}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f00000001c0)='dctcp\x00', 0x31d)
readv(r0, &(0x7f0000000080)=[{&(0x7f0000000000)=""/120, 0x78}], 0x1)
sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x0, @local}, 0x10)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
shmat(0x0, &(0x7f0000001000/0xd000)=nil, 0x0)
r1 = socket$inet(0x10, 0x2, 0x0)
r2 = openat$zero(0xffffffffffffff9c, 0x0, 0x0, 0x0)
lsetxattr$trusted_overlay_opaque(0x0, 0x0, 0x0, 0xd8a68c158cad987b, 0x0)
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
bpf$OBJ_PIN_MAP(0x6, &(0x7f00000001c0)={0x0, r2}, 0x10)
mount$bpf(0x20000000, &(0x7f00000000c0)='./file0\x00', 0x0, 0x2001001, 0x0)
ioctl$sock_ifreq(r1, 0x8942, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
pivot_root(&(0x7f0000000140)='./file0\x00', &(0x7f0000000500)='./file0\x00')
llistxattr(&(0x7f00000002c0)='./file0\x00', 0x0, 0x0)
sendmsg(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000240)="24000000180007841dfffd946f610500020081001f03fe0504000800080005000400ff7e280000001100ffffba16a0aa1c0900000000000012000000000000eff24d8238cfa47e23f7efbf54", 0x4c}], 0x1}, 0x0)
ioctl$SNDRV_CTL_IOCTL_RAWMIDI_PREFER_SUBDEVICE(r2, 0x40045542, &(0x7f0000000100)=0x8)
shmget$private(0x0, 0x3000, 0x1, &(0x7f000000a000/0x3000)=nil)
shutdown(r0, 0x0)

04:13:07 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}, 0x1, 0x4000}, 0x0)

[ 3300.749484] Code: 8b 34 c6 4a 8d 04 2e 48 3d ff ff ff 7e 0f 86 77 ff ff ff bf 35 ee 4b 00 31 c0 e8 63 33 ff ff 31 ff e8 ac 2f ff ff 0f 1f 40 00 <89> 3c b5 00 00 73 00 eb b6 31 ed 0f 1f 44 00 00 80 3d 9e 1a 66 00
[ 3300.768401] RSP: 002b:00007ffd53165230 EFLAGS: 00010246
[ 3300.773776] RAX: 000000006324b081 RBX: 000000000ceef18a RCX: 0000001b2ed20000
[ 3300.781049] RDX: 0000000000000000 RSI: 0000000000001081 RDI: ffffffff6324b081
[ 3300.788322] RBP: 0000000000000003 R08: 000000006324b081 R09: 000000006324b085
[ 3300.795595] R10: 00007ffd531653d0 R11: 0000000000000246 R12: 000000000075bfa8
[ 3300.802871] R13: 0000000080000000 R14: 00007f09e87ff008 R15: 0000000000000003
04:13:07 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"/968]}, 0x440)

[ 3300.834768] Task in /syz5 killed as a result of limit of /syz5
[ 3300.841491] memory: usage 307200kB, limit 307200kB, failcnt 7849
[ 3300.863264] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3300.870050] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3300.912879] Memory cgroup stats for /syz5: cache:72KB rss:148KB rss_huge:0KB shmem:12KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:152KB inactive_file:0KB active_file:0KB unevictable:0KB
[ 3300.947160] Memory cgroup out of memory: Kill process 23093 (syz-executor.5) score 1103 or sacrifice child
04:13:07 executing program 5:
r0 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000240)='/dev/dlm-control\x00', 0x40000, 0x0)
ioctl$SNDRV_TIMER_IOCTL_GINFO(r0, 0xc0f85403, &(0x7f0000000280)={{0xffffffffffffffff, 0x0, 0x5830000000000, 0x3, 0x4}, 0xf177, 0xb431, 'id0\x00', 'timer1\x00', 0x0, 0x8b4, 0x81, 0x0, 0x445})
shmat(0x0, &(0x7f0000ffc000/0x4000)=nil, 0x3000)
mbind(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x2, &(0x7f0000000000)=0xffff, 0x2, 0x0)
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0x20b, &(0x7f0000000040)=[{&(0x7f0000000540)="2e000000220005000000c187185095cf0400b0eba0b4d65c000a000051894d5d1dac00"/46, 0x2e}], 0x1}, 0x0)
r2 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000080)='/dev/qat_adf_ctl\x00', 0x200, 0x0)
ioctl$DRM_IOCTL_ADD_CTX(0xffffffffffffffff, 0xc0086420, &(0x7f00000000c0)={<r3=>0x0})
ioctl$DRM_IOCTL_GET_SAREA_CTX(r2, 0xc010641d, &(0x7f0000000200)={r3, &(0x7f0000000100)=""/74})

[ 3300.963555] Killed process 23093 (syz-executor.5) total-vm:72580kB, anon-rss:108kB, file-rss:34816kB, shmem-rss:0kB
[ 3300.980117] oom_reaper: reaped process 23093 (syz-executor.5), now anon-rss:0kB, file-rss:33856kB, shmem-rss:0kB
[ 3301.110570] syz-executor.5 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 3301.127713] syz-executor.5 cpuset=syz5 mems_allowed=0-1
[ 3301.133380] CPU: 1 PID: 23119 Comm: syz-executor.5 Not tainted 4.19.66 #40
[ 3301.140422] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3301.149789] Call Trace:
[ 3301.152395]  dump_stack+0x172/0x1f0
[ 3301.156044]  dump_header+0x15e/0xa55
[ 3301.159766]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 3301.164876]  ? ___ratelimit+0x60/0x595
[ 3301.168783]  ? do_raw_spin_unlock+0x57/0x270
[ 3301.173207]  oom_kill_process.cold+0x10/0x6ef
[ 3301.179238]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 3301.184783]  ? task_will_free_mem+0x139/0x6e0
[ 3301.189296]  out_of_memory+0x936/0x12d0
[ 3301.193280]  ? lock_downgrade+0x810/0x810
[ 3301.197447]  ? oom_killer_disable+0x280/0x280
[ 3301.201948]  ? find_held_lock+0x35/0x130
[ 3301.206032]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 3301.210878]  ? memcg_event_wake+0x230/0x230
[ 3301.215209]  ? do_raw_spin_unlock+0x57/0x270
[ 3301.219619]  ? _raw_spin_unlock+0x2d/0x50
[ 3301.223769]  try_charge+0x1028/0x15b0
[ 3301.227569]  ? find_held_lock+0x35/0x130
[ 3301.231639]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 3301.236666]  ? kasan_check_read+0x11/0x20
[ 3301.240825]  ? get_mem_cgroup_from_mm+0x156/0x320
[ 3301.245673]  mem_cgroup_try_charge+0x259/0x6b0
[ 3301.250262]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 3301.255202]  wp_page_copy+0x430/0x16a0
[ 3301.259099]  ? pmd_pfn+0x1d0/0x1d0
[ 3301.262643]  ? kasan_check_read+0x11/0x20
[ 3301.266822]  ? do_raw_spin_unlock+0x57/0x270
[ 3301.271239]  do_wp_page+0x57d/0x10b0
[ 3301.274959]  ? lock_acquire+0x16f/0x3f0
[ 3301.278933]  ? finish_mkwrite_fault+0x4f0/0x4f0
[ 3301.283606]  ? kasan_check_write+0x14/0x20
[ 3301.287841]  ? do_raw_spin_lock+0xc8/0x240
[ 3301.292083]  __handle_mm_fault+0x2305/0x3f80
[ 3301.296503]  ? vmf_insert_mixed_mkwrite+0x90/0x90
[ 3301.301368]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 3301.306043]  handle_mm_fault+0x1b5/0x690
[ 3301.310117]  __do_page_fault+0x62a/0xe90
[ 3301.314798]  ? vmalloc_fault+0x740/0x740
[ 3301.318867]  ? trace_hardirqs_off_caller+0x65/0x220
[ 3301.323886]  ? trace_hardirqs_on_caller+0x6a/0x220
[ 3301.328818]  ? page_fault+0x8/0x30
[ 3301.332367]  do_page_fault+0x71/0x57d
[ 3301.336166]  ? page_fault+0x8/0x30
[ 3301.339713]  page_fault+0x1e/0x30
[ 3301.343164] RIP: 0033:0x40e9c8
[ 3301.346368] Code: 8b 34 c6 4a 8d 04 2e 48 3d ff ff ff 7e 0f 86 77 ff ff ff bf 35 ee 4b 00 31 c0 e8 63 33 ff ff 31 ff e8 ac 2f ff ff 0f 1f 40 00 <89> 3c b5 00 00 73 00 eb b6 31 ed 0f 1f 44 00 00 80 3d 9e 1a 66 00
[ 3301.365269] RSP: 002b:00007ffd53165230 EFLAGS: 00010246
[ 3301.370634] RAX: 000000006324b081 RBX: 000000000ceef18a RCX: 0000001b2ed20000
[ 3301.377902] RDX: 0000000000000000 RSI: 0000000000001081 RDI: ffffffff6324b081
[ 3301.385182] RBP: 0000000000000003 R08: 000000006324b081 R09: 000000006324b085
[ 3301.392624] R10: 00007ffd531653d0 R11: 0000000000000246 R12: 000000000075bfa8
[ 3301.399895] R13: 0000000080000000 R14: 00007f09e87ff008 R15: 0000000000000003
[ 3301.409713] Task in /syz5 killed as a result of limit of /syz5
[ 3301.422983] memory: usage 307184kB, limit 307200kB, failcnt 7866
[ 3301.429307] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3301.445586] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
04:13:08 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}, 0x1, 0x45cb}, 0x0)

04:13:08 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0xffffff9e}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

04:13:08 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"/968]}, 0x440)

04:13:08 executing program 0:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000840)={0x1, &(0x7f0000f40ff8)=[{0x6}]}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f00000001c0)='dctcp\x00', 0x31d)
readv(r0, &(0x7f0000000080)=[{&(0x7f0000000000)=""/120, 0x78}], 0x1)
sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x0, @local}, 0x10)
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
shmat(0x0, &(0x7f0000001000/0xd000)=nil, 0x0)
r1 = socket$inet(0x10, 0x2, 0x0)
r2 = openat$zero(0xffffffffffffff9c, 0x0, 0x0, 0x0)
lsetxattr$trusted_overlay_opaque(0x0, 0x0, 0x0, 0xd8a68c158cad987b, 0x0)
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
bpf$OBJ_PIN_MAP(0x6, &(0x7f00000001c0)={0x0, r2}, 0x10)
mount$bpf(0x20000000, &(0x7f00000000c0)='./file0\x00', 0x0, 0x2001001, 0x0)
ioctl$sock_ifreq(r1, 0x8942, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
pivot_root(&(0x7f0000000140)='./file0\x00', &(0x7f0000000500)='./file0\x00')
llistxattr(&(0x7f00000002c0)='./file0\x00', 0x0, 0x0)
sendmsg(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000240)="24000000180007841dfffd946f610500020081001f03fe0504000800080005000400ff7e280000001100ffffba16a0aa1c0900000000000012000000000000eff24d8238cfa47e23f7efbf54", 0x4c}], 0x1}, 0x0)
ioctl$SNDRV_CTL_IOCTL_RAWMIDI_PREFER_SUBDEVICE(r2, 0x40045542, &(0x7f0000000100)=0x8)
shmget$private(0x0, 0x3000, 0x1, &(0x7f000000a000/0x3000)=nil)
shutdown(r0, 0x0)

[ 3301.451931] Memory cgroup stats for /syz5: cache:72KB rss:148KB rss_huge:0KB shmem:12KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:112KB inactive_file:0KB active_file:0KB unevictable:0KB
[ 3301.479349] Memory cgroup out of memory: Kill process 23119 (syz-executor.5) score 1103 or sacrifice child
04:13:08 executing program 2:
arch_prctl$ARCH_SET_GS(0x1001, 0x2)
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vcs\x00', 0x88000, 0x0)
setsockopt$packet_fanout_data(r0, 0x107, 0x16, &(0x7f0000000080)={0x1, &(0x7f0000000040)=[{0x8, 0x7f, 0x5, 0x3}]}, 0x10)
ioctl$VHOST_SET_OWNER(r0, 0xaf01, 0x0)
stat(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000100))
stat(&(0x7f0000000180)='./file0\x00', &(0x7f00000001c0))
getpeername$tipc(r0, &(0x7f0000000240), &(0x7f0000000280)=0x10)
ioctl$MON_IOCH_MFLUSH(r0, 0x9208, 0x3)
setsockopt$inet6_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f00000002c0)=0xffffffffffffffff, 0x4)
ioctl$RTC_AIE_OFF(r0, 0x7002)
getsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000300), &(0x7f0000000340)=0x10)
ioctl$FS_IOC_GET_ENCRYPTION_POLICY(r0, 0x400c6615, &(0x7f0000000380))
ioctl$SNDRV_TIMER_IOCTL_SELECT(r0, 0x40345410, &(0x7f00000003c0)={{0x1, 0x1, 0x939, 0x0, 0x5}})
r1 = accept(r0, &(0x7f0000000400)=@alg, &(0x7f0000000480)=0x80)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f00000005c0)={0x0, 0x18, 0xfa00, {0x2, &(0x7f0000000580)={<r2=>0xffffffffffffffff}, 0x106, 0x9}}, 0x20)
write$RDMA_USER_CM_CMD_INIT_QP_ATTR(r0, &(0x7f0000000600)={0xb, 0x10, 0xfa00, {&(0x7f00000004c0), r2, 0x400}}, 0x18)
lsetxattr$trusted_overlay_origin(&(0x7f0000000640)='./file0\x00', &(0x7f0000000680)='trusted.overlay.origin\x00', &(0x7f00000006c0)='y\x00', 0x2, 0x1)
setsockopt$bt_BT_SNDMTU(r0, 0x112, 0xc, &(0x7f0000000700)=0x80, 0x2)
r3 = syz_genetlink_get_family_id$team(&(0x7f0000000780)='team\x00')
getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f00000007c0)={{{@in=@dev, @in6=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r4=>0x0}}, {{@in6=@dev}, 0x0, @in=@remote}}, &(0x7f00000008c0)=0xe8)
ioctl$ifreq_SIOCGIFINDEX_team(r1, 0x8933, &(0x7f0000000a80)={'team0\x00', <r5=>0x0})
getsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f0000000ac0)={{{@in=@loopback, @in6=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r6=>0x0}}, {{@in6=@empty}, 0x0, @in=@multicast2}}, &(0x7f0000000bc0)=0xe8)
accept4$packet(r1, &(0x7f0000000c00)={0x11, 0x0, <r7=>0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000c40)=0x14, 0x6282c074ebde1d86)
getsockopt$inet6_mreq(r1, 0x29, 0xd6862562db222b30, &(0x7f0000002240)={@local, <r8=>0x0}, &(0x7f0000002280)=0x14)
accept$packet(r1, &(0x7f00000022c0)={0x11, 0x0, <r9=>0x0, 0x1, 0x0, 0x6, @remote}, &(0x7f0000002300)=0x14)
getsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000002340)={{{@in=@multicast1, @in6=@loopback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r10=>0x0}}, {{@in=@empty}, 0x0, @in=@multicast1}}, &(0x7f0000002440)=0xe8)
getsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f0000002480)={{{@in=@empty, @in6=@loopback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r11=>0x0}}, {{@in6=@empty}, 0x0, @in=@dev}}, &(0x7f0000002580)=0xe8)
getsockopt$inet_mreqn(r0, 0x0, 0x27, &(0x7f00000028c0)={@initdev, @local, <r12=>0x0}, &(0x7f0000002900)=0xc)
getsockopt$inet_mreqn(r1, 0x0, 0x23, &(0x7f0000002940)={@empty, @rand_addr, <r13=>0x0}, &(0x7f0000002980)=0xc)
accept4$packet(r1, &(0x7f00000029c0)={0x11, 0x0, <r14=>0x0}, &(0x7f0000002a00)=0x14, 0x80800)
getsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f0000002b40)={{{@in6=@local, @in=@local, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r15=>0x0}}, {{@in6=@local}, 0x0, @in6}}, &(0x7f0000002c40)=0xe8)
sendmsg$TEAM_CMD_OPTIONS_SET(r1, &(0x7f0000003080)={&(0x7f0000000740)={0x10, 0x0, 0x0, 0x6080080}, 0xc, &(0x7f0000003040)={&(0x7f0000002c80)={0x388, r3, 0x100, 0x70bd26, 0x25dfdbfd, {}, [{{0x8, 0x1, r4}, {0xac, 0x2, [{0x38, 0x1, @notify_peers_interval={{0x24, 0x1, 'notify_peers_interval\x00'}, {0x8}, {0x8, 0x4, 0x8}}}, {0x38, 0x1, @mcast_rejoin_count={{0x24, 0x1, 'mcast_rejoin_count\x00'}, {0x8}, {0x8, 0x4, 0x4}}}, {0x38, 0x1, @notify_peers_interval={{0x24, 0x1, 'notify_peers_interval\x00'}, {0x8}, {0x8, 0x4, 0x100}}}]}}, {{0x8, 0x1, r5}, {0x12c, 0x2, [{0x3c, 0x1, @lb_tx_method={{0x24, 0x1, 'lb_tx_method\x00'}, {0x8}, {0xc, 0x4, 'hash\x00'}}}, {0x40, 0x1, @priority={{{0x24, 0x1, 'priority\x00'}, {0x8}, {0x8, 0x4, 0x2}}, {0x8, 0x6, r6}}}, {0x38, 0x1, @activeport={{0x24, 0x1, 'activeport\x00'}, {0x8}, {0x8, 0x4, r7}}}, {0x3c, 0x1, @user_linkup={{{0x24, 0x1, 'user_linkup\x00'}, {0x8}, {0x4}}, {0x8, 0x6, r8}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24, 0x1, 'mcast_rejoin_interval\x00'}, {0x8}, {0x8, 0x4, 0x2}}}]}}, {{0x8, 0x1, r9}, {0xb8, 0x2, [{0x40, 0x1, @lb_port_stats={{{0x24, 0x1, 'lb_port_stats\x00'}, {0x8}, {0x8, 0x4, 0x1}}, {0x8, 0x6, r10}}}, {0x3c, 0x1, @user_linkup_enabled={{{0x24, 0x1, 'user_linkup_enabled\x00'}, {0x8}, {0x4}}, {0x8, 0x6, r11}}}, {0x38, 0x1, @activeport={{0x24, 0x1, 'activeport\x00'}, {0x8}, {0x8, 0x4, r12}}}]}}, {{0x8, 0x1, r13}, {0x40, 0x2, [{0x3c, 0x1, @user_linkup_enabled={{{0x24, 0x1, 'user_linkup_enabled\x00'}, {0x8}, {0x4}}, {0x8, 0x6, r14}}}]}}, {{0x8, 0x1, r15}, {0x7c, 0x2, [{0x40, 0x1, @lb_hash_stats={{{0x24, 0x1, 'lb_hash_stats\x00'}, {0x8}, {0x8, 0x4, 0x5}}, {0x8}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24, 0x1, 'mcast_rejoin_interval\x00'}, {0x8}, {0x8}}}]}}]}, 0x388}, 0x1, 0x0, 0x0, 0x800}, 0x20000005)

[ 3301.528794] Killed process 23119 (syz-executor.5) total-vm:72580kB, anon-rss:108kB, file-rss:34816kB, shmem-rss:0kB
[ 3301.590241] oom_reaper: reaped process 23119 (syz-executor.5), now anon-rss:0kB, file-rss:34820kB, shmem-rss:0kB
04:13:08 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0xfffffff0}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

04:13:08 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}, 0x1, 0x5865}, 0x0)

04:13:08 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"/968]}, 0x440)

04:13:08 executing program 5:
r0 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000240)='/dev/dlm-control\x00', 0x40000, 0x0)
ioctl$SNDRV_TIMER_IOCTL_GINFO(r0, 0xc0f85403, &(0x7f0000000280)={{0xffffffffffffffff, 0x0, 0x5830000000000, 0x3, 0x4}, 0xf177, 0xb431, 'id0\x00', 'timer1\x00', 0x0, 0x8b4, 0x81, 0x0, 0x445})
shmat(0x0, &(0x7f0000ffc000/0x4000)=nil, 0x3000)
mbind(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x2, &(0x7f0000000000)=0xffff, 0x2, 0x0)
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0x20b, &(0x7f0000000040)=[{&(0x7f0000000540)="2e000000220005000000c187185095cf0400b0eba0b4d65c000b000051894d5d1dac00"/46, 0x2e}], 0x1}, 0x0)
r2 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000080)='/dev/qat_adf_ctl\x00', 0x200, 0x0)
ioctl$DRM_IOCTL_ADD_CTX(0xffffffffffffffff, 0xc0086420, &(0x7f00000000c0)={<r3=>0x0})
ioctl$DRM_IOCTL_GET_SAREA_CTX(r2, 0xc010641d, &(0x7f0000000200)={r3, &(0x7f0000000100)=""/74})

04:13:08 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x1a0ffffffff}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

04:13:08 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}, 0x1, 0x6000}, 0x0)

04:13:08 executing program 2:
r0 = socket$inet6(0xa, 0x2, 0x0)
r1 = socket$inet(0x2, 0x2, 0x0)
bind$inet(r1, &(0x7f0000000040)={0x2, 0xe21}, 0x10)
r2 = dup(r0)
bind$inet6(r2, &(0x7f0000000140)={0xa, 0x4e21, 0x0, @ipv4={[], [], @local}}, 0x1c)
connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x4e1d, 0x0, @empty}, 0x1c)
r3 = syz_open_procfs(0x0, &(0x7f0000000240)='net/udp6\x00')
sendfile(r0, r3, 0x0, 0x80000000)
getsockopt$IP6T_SO_GET_ENTRIES(r2, 0x29, 0x41, &(0x7f0000000000)={'filter\x00', 0xd, "9721688f631b51825f1a71514f"}, &(0x7f0000000080)=0x31)

[ 3301.856955] syz-executor.5 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
04:13:08 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"/968]}, 0x440)

[ 3301.984868] syz-executor.5 cpuset=syz5 mems_allowed=0-1
[ 3301.990409] CPU: 0 PID: 23144 Comm: syz-executor.5 Not tainted 4.19.66 #40
[ 3301.997432] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3302.006793] Call Trace:
[ 3302.009397]  dump_stack+0x172/0x1f0
[ 3302.013043]  dump_header+0x15e/0xa55
[ 3302.016771]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 3302.021885]  ? ___ratelimit+0x60/0x595
[ 3302.025781]  ? do_raw_spin_unlock+0x57/0x270
[ 3302.030208]  oom_kill_process.cold+0x10/0x6ef
[ 3302.034721]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 3302.040283]  ? task_will_free_mem+0x139/0x6e0
[ 3302.044805]  out_of_memory+0x936/0x12d0
[ 3302.048796]  ? lock_downgrade+0x810/0x810
[ 3302.052968]  ? oom_killer_disable+0x280/0x280
[ 3302.057485]  ? find_held_lock+0x35/0x130
[ 3302.061565]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 3302.066421]  ? memcg_event_wake+0x230/0x230
[ 3302.072236]  ? do_raw_spin_unlock+0x57/0x270
[ 3302.076652]  ? _raw_spin_unlock+0x2d/0x50
[ 3302.080828]  try_charge+0x1028/0x15b0
04:13:09 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"/968]}, 0x440)

04:13:09 executing program 2:
clone(0x20000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = syz_open_dev$sndctrl(&(0x7f00000000c0)='/dev/snd/controlC#\x00', 0x0, 0x0)
setfsuid(0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = accept(0xffffffffffffffff, 0x0, &(0x7f0000000080))
getsockopt$IP_VS_SO_GET_SERVICE(r1, 0x0, 0x483, &(0x7f0000000240), &(0x7f00000002c0)=0x68)
r2 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r3 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ubi_ctrl\x00', 0x400001, 0x0)
ioctl$DRM_IOCTL_RES_CTX(r3, 0xc0106426, 0x0)
ioctl$SNDRV_CTL_IOCTL_PVERSION(r0, 0xc1105517, &(0x7f0000001000))
rt_sigtimedwait(0x0, 0x0, 0x0, 0x0)
getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(0xffffffffffffffff, 0x6, 0x23, &(0x7f0000000380)={&(0x7f0000ff1000/0xd000)=nil, 0xd000}, &(0x7f00000003c0)=0x10)
ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r0, 0xc10c5541, &(0x7f0000000100)={0x0, 0x8d, 0xffff, 0x0, 0x0, [], [], [], 0x0, 0xa9bf})
r4 = open(0x0, 0x0, 0x0)
ioctl$KDSIGACCEPT(r4, 0x4b4e, 0x0)
open(0x0, 0x200240, 0x0)
ioctl$PPPIOCSCOMPRESS(r3, 0x4010744d)
ioctl$PERF_EVENT_IOC_ID(r2, 0x80082407, &(0x7f0000000000))

[ 3302.084638]  ? find_held_lock+0x35/0x130
[ 3302.088722]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 3302.093585]  ? kasan_check_read+0x11/0x20
[ 3302.097787]  ? get_mem_cgroup_from_mm+0x156/0x320
[ 3302.102647]  mem_cgroup_try_charge+0x259/0x6b0
[ 3302.107256]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 3302.112201]  wp_page_copy+0x430/0x16a0
[ 3302.116113]  ? pmd_pfn+0x1d0/0x1d0
[ 3302.119667]  ? kasan_check_read+0x11/0x20
[ 3302.123836]  ? do_raw_spin_unlock+0x57/0x270
[ 3302.128262]  do_wp_page+0x57d/0x10b0
[ 3302.131990]  ? lock_acquire+0x16f/0x3f0
[ 3302.135985]  ? finish_mkwrite_fault+0x4f0/0x4f0
[ 3302.136001]  ? kasan_check_write+0x14/0x20
[ 3302.136014]  ? do_raw_spin_lock+0xc8/0x240
[ 3302.136034]  __handle_mm_fault+0x2305/0x3f80
[ 3302.136054]  ? vmf_insert_mixed_mkwrite+0x90/0x90
[ 3302.136086]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 3302.136104]  handle_mm_fault+0x1b5/0x690
[ 3302.158507]  __do_page_fault+0x62a/0xe90
[ 3302.171295]  ? vmalloc_fault+0x740/0x740
[ 3302.175372]  ? trace_hardirqs_off_caller+0x65/0x220
[ 3302.180397]  ? trace_hardirqs_on_caller+0x6a/0x220
[ 3302.185337]  ? page_fault+0x8/0x30
[ 3302.188925]  do_page_fault+0x71/0x57d
[ 3302.192740]  ? page_fault+0x8/0x30
[ 3302.196293]  page_fault+0x1e/0x30
[ 3302.196306] RIP: 0033:0x40e9c8
[ 3302.196321] Code: 8b 34 c6 4a 8d 04 2e 48 3d ff ff ff 7e 0f 86 77 ff ff ff bf 35 ee 4b 00 31 c0 e8 63 33 ff ff 31 ff e8 ac 2f ff ff 0f 1f 40 00 <89> 3c b5 00 00 73 00 eb b6 31 ed 0f 1f 44 00 00 80 3d 9e 1a 66 00
[ 3302.196336] RSP: 002b:00007ffd53165230 EFLAGS: 00010246
[ 3302.221968] RAX: 000000002a8522ee RBX: 000000007af22c35 RCX: 0000001b2ed20000
[ 3302.221976] RDX: 0000000000000000 RSI: 00000000000002ee RDI: ffffffff2a8522ee
[ 3302.221983] RBP: 000000000000000c R08: 000000002a8522ee R09: 000000002a8522f2
[ 3302.221990] R10: 00007ffd531653d0 R11: 0000000000000246 R12: 000000000075bfa8
[ 3302.221997] R13: 0000000080000000 R14: 00007f09e87ff008 R15: 000000000000000c
[ 3302.322422] Task in /syz5 killed as a result of limit of /syz5
[ 3302.334059] memory: usage 307200kB, limit 307200kB, failcnt 7896
[ 3302.364981] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3302.381241] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3302.404906] Memory cgroup stats for /syz5: cache:72KB rss:148KB rss_huge:0KB shmem:12KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:168KB inactive_file:0KB active_file:0KB unevictable:0KB
[ 3302.496122] device bridge_slave_1 left promiscuous mode
[ 3302.501677] bridge0: port 2(bridge_slave_1) entered disabled state
[ 3302.515389] Memory cgroup out of memory: Kill process 23144 (syz-executor.5) score 1103 or sacrifice child
[ 3302.543032] Killed process 23144 (syz-executor.5) total-vm:72580kB, anon-rss:108kB, file-rss:34816kB, shmem-rss:0kB
[ 3302.563908] oom_reaper: reaped process 23144 (syz-executor.5), now anon-rss:0kB, file-rss:33856kB, shmem-rss:0kB
[ 3302.586842] device bridge_slave_0 left promiscuous mode
[ 3302.611072] bridge0: port 1(bridge_slave_0) entered disabled state
[ 3302.796771] device hsr_slave_1 left promiscuous mode
[ 3302.850080] device hsr_slave_0 left promiscuous mode
[ 3302.908428] team0 (unregistering): Port device team_slave_1 removed
[ 3302.920826] team0 (unregistering): Port device team_slave_0 removed
[ 3302.935225] bond0 (unregistering): Releasing backup interface bond_slave_1
[ 3302.969290] bond0 (unregistering): Releasing backup interface bond_slave_0
[ 3303.060615] bond0 (unregistering): Released all slaves
[ 3303.870364] IPVS: ftp: loaded support on port[0] = 21
[ 3303.962571] chnl_net:caif_netlink_parms(): no params data found
[ 3304.055907] bridge0: port 1(bridge_slave_0) entered blocking state
[ 3304.062316] bridge0: port 1(bridge_slave_0) entered disabled state
[ 3304.070765] device bridge_slave_0 entered promiscuous mode
[ 3304.078084] bridge0: port 2(bridge_slave_1) entered blocking state
[ 3304.084703] bridge0: port 2(bridge_slave_1) entered disabled state
[ 3304.092275] device bridge_slave_1 entered promiscuous mode
[ 3304.126201] bond0: Enslaving bond_slave_0 as an active interface with an up link
[ 3304.137468] bond0: Enslaving bond_slave_1 as an active interface with an up link
[ 3304.161346] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready
[ 3304.170051] team0: Port device team_slave_0 added
[ 3304.176241] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready
[ 3304.184824] team0: Port device team_slave_1 added
[ 3304.190676] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready
[ 3304.199712] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready
[ 3304.255757] device hsr_slave_0 entered promiscuous mode
[ 3304.293605] device hsr_slave_1 entered promiscuous mode
[ 3304.333816] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready
[ 3304.341059] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready
[ 3304.361893] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready
[ 3304.408420] IPv6: ADDRCONF(NETDEV_UP): bond0: link is not ready
[ 3304.414591] 8021q: adding VLAN 0 to HW filter on device bond0
[ 3304.425568] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[ 3304.435047] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[ 3304.441692] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
[ 3304.451958] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 3304.459588] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 3304.470454] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready
[ 3304.476757] 8021q: adding VLAN 0 to HW filter on device team0
[ 3304.487655] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[ 3304.495287] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 3304.504512] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 3304.512320] bridge0: port 1(bridge_slave_0) entered blocking state
[ 3304.518812] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 3304.526857] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 3304.537790] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[ 3304.545225] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 3304.555102] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 3304.564217] bridge0: port 2(bridge_slave_1) entered blocking state
[ 3304.570551] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 3304.582010] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready
[ 3304.589306] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 3304.608891] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 3304.617497] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 3304.629618] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 3304.643756] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 3304.657328] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 3304.667642] IPv6: ADDRCONF(NETDEV_UP): hsr0: link is not ready
[ 3304.675006] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 3304.691052] IPv6: ADDRCONF(NETDEV_UP): vxcan1: link is not ready
[ 3304.703815] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 3304.791457] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'.
04:13:11 executing program 0:
r0 = openat$selinux_load(0xffffffffffffff9c, &(0x7f00000000c0)='/selinux/load\x00', 0x2, 0x0)
r1 = socket$inet6(0xa, 0x3, 0x3c)
sendmmsg$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x1000000a0160101, 0x0, 0x0, 0x0, 0x0)
lsetxattr$security_smack_entry(0x0, 0x0, &(0x7f0000000340)='caif0\x00', 0x6, 0x1)
connect$inet6(r1, &(0x7f0000000180)={0xa, 0x0, 0x0, @remote, 0x5}, 0x1c)
write$binfmt_script(r1, &(0x7f0000000480)=ANY=[@ANYBLOB="2cae7186000000f84582a70a7afb00000000000040cd15c0d03382919b617206f488458998e192b1650b85c9e8b754ef30d4dd35d51cf32ab79cc194d9cda1a29a418083b6195c556fdb0a66daecad9c00e56116bfb42854921ca0bda45c12734fb3e731f3760349355e2f2f13e72b3eb6e800f2a49bd830c06a1b2e65c9068100000000000000550a2b47b490af76634e4c84af38fcbac36af36ca1440388ce9a0820958790ebe2bbd51843a009f0a0af8f50b5fcfc12db67ffa1f9e1c648263cad0c903b43dc291fe53c690783e553f0b57b66749c016253097aa17a5c85bd97afb6089b38d4a573d0573519027b16c66d4f74"], 0xfdef)
recvmmsg(r1, &(0x7f0000002340)=[{{0x0, 0x0, &(0x7f0000001740)=[{&(0x7f0000000100)=""/102, 0x66}, {&(0x7f00000001c0)}, {&(0x7f0000000200)=""/93, 0x5d}, {&(0x7f0000000380)=""/218, 0xda}, {&(0x7f0000000280)=""/177, 0xb1}, {&(0x7f0000001580)=""/130, 0x82}, {&(0x7f0000001640)=""/221, 0xdd}], 0x7, &(0x7f00000017c0)=""/217, 0xd9}, 0x4}, {{&(0x7f00000018c0)=@pppol2tpv3in6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @mcast1}}}, 0x80, 0x0, 0x0, &(0x7f0000001d80)=""/90, 0x5a}, 0x5fa7}, {{&(0x7f0000001e00)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @local}}}, 0x80, &(0x7f0000002240)=[{&(0x7f0000001e80)=""/216, 0xd8}, {&(0x7f0000001f80)=""/199, 0xc7}, {&(0x7f0000002080)=""/190, 0xbe}, {&(0x7f0000002140)=""/202, 0xca}], 0x4, &(0x7f0000002280)=""/133, 0x85}, 0x4}], 0x3, 0x40, &(0x7f0000002440))
r2 = syz_genetlink_get_family_id$tipc2(&(0x7f00000024c0)='TIPCv2\x00')
sendmsg$TIPC_NL_MEDIA_SET(0xffffffffffffffff, &(0x7f0000002580)={&(0x7f0000002480)={0x10, 0x0, 0x0, 0x10000020}, 0xc, &(0x7f0000002540)={&(0x7f0000002500)={0x30, r2, 0x2, 0x70bd26, 0x25dfdbff, {}, [@TIPC_NLA_NET={0x1c, 0x7, [@TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x4}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x487}]}]}, 0x30}, 0x1, 0x0, 0x0, 0x4040000}, 0x800)
getsockname$packet(0xffffffffffffffff, &(0x7f0000000000)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @local}, &(0x7f0000000040)=0x14)
ioctl$sock_inet6_SIOCSIFDSTADDR(r1, 0x8918, &(0x7f0000000080)={@dev={0xfe, 0x80, [], 0x28}, 0x6c, r3})
syz_open_procfs(0x0, 0x0)
write$selinux_load(r0, 0x0, 0x0)

04:13:11 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}, 0x1, 0x6558}, 0x0)

04:13:11 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x4000000000000}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

04:13:11 executing program 2:
sched_setaffinity(0x0, 0xfffffffffffffe68, &(0x7f0000000140)=0x9)
openat$null(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$TCSETS(0xffffffffffffffff, 0x5402, 0x0)
r0 = syz_open_procfs(0x0, 0x0)
syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
getsockopt$inet_sctp_SCTP_PEER_AUTH_CHUNKS(r0, 0x84, 0x1a, &(0x7f00000001c0)=ANY=[@ANYRES32=<r1=>0x0, @ANYBLOB="3300eee72600de8f2beb4af0ba54b9346bee9ec512f599f750a25771a45317dbea79dcca5c0700000000000000a1de7a"], &(0x7f0000000200)=0x3b)
getsockopt$inet_sctp_SCTP_AUTH_ACTIVE_KEY(r0, 0x84, 0x18, &(0x7f0000000240)={r1, 0x7f}, &(0x7f0000000280)=0x8)
syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0xffffffffffffff44, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$netrom_NETROM_T1(r0, 0x103, 0x1, &(0x7f0000000180), 0x4)
ioctl$TCSETS(r0, 0x5402, &(0x7f00000002c0)={0x0, 0x8, 0x2, 0x1, 0xf, 0x0, 0x2800000000, 0xd6c3, 0x8001, 0x97a6, 0x9, 0x100000000})
setsockopt$inet6_group_source_req(r2, 0x29, 0x2e, &(0x7f0000000000)={0x1, {{0xa, 0x0, 0x0, @mcast2}}, {{0xa, 0x0, 0x0, @ipv4}}}, 0x108)
preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000001200)=""/148, 0x94}], 0x1, 0x0)
r3 = syz_open_procfs(0x0, &(0x7f0000000040)='net/mcfilter6\x00')
preadv(r3, &(0x7f0000000100), 0x2df, 0x80000000000)
ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r0, 0xc0a85320, 0xffffffffffffffff)

04:13:11 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="00000000004000000000000000000000000000000000000000000000000000000000000001a00000ffffffff020000001d00000001000000080676657468305f746f5f627269646765006e7230000000000000000000000000006772653000000000000000000000000076657468315f746f5f626f6e64000000aaaaaaaaaaaa000000000000aaaaaaaaaaaa00000000000000007000000070000000a80000006172707265706c790000000000000000000000000000000000000000000000001000000000000000aaaaaaaaaaaa0000feffffff0000000009000000000000000000697064647030000000000000000000006272696467655f736c6176655f3100000000000000000000000000000000000067726530000000000000000000000000ffffffffffff0000000000000000000000000000000000000000e0000000180100005001000072617465657374000000000000a3000000000000000000000000000000000000480000000000000064756d6d79300000000000000000000073797a5f74756e0000000ab941773a25a4462a99832900000000000000000000200000000000000000000000000000000000000000000000736e6174000000000000000000000000000000000000000000000000000000001000000000000000aaaaaaaaaaaa000000000000000000006d61726b0000000000000000000000000000000000000000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000002000000feffffff01000000110000000000000000006272696467655f736c6176655f3100000000000000000000000000749638e0006c6f00000000000000000000000000000080616d300000000000000000000000aaaaaaaaaa00000000000000aaaaaaaaaaaa0000000000000000a00000000801000040010000636f6e6e6c6162656c000000000000000000000000000000000000000000000008000000000000000000000000000000434c4153534946590000000000000000000000000000000000ff07000000000008000000000000000000000000000000736e617400000000000000000000000000000000000000000001000000000000100000000000000000000000000000000000000000000000736e6174000000000000000000000000000000000000000000000000000000001000000000001400aaaaaaaaaabb00"/968]}, 0x440)

04:13:11 executing program 5:
r0 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000240)='/dev/dlm-control\x00', 0x40000, 0x0)
ioctl$SNDRV_TIMER_IOCTL_GINFO(r0, 0xc0f85403, &(0x7f0000000280)={{0xffffffffffffffff, 0x0, 0x5830000000000, 0x3, 0x4}, 0xf177, 0xb431, 'id0\x00', 'timer1\x00', 0x0, 0x8b4, 0x81, 0x0, 0x445})
shmat(0x0, &(0x7f0000ffc000/0x4000)=nil, 0x3000)
mbind(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x2, &(0x7f0000000000)=0xffff, 0x2, 0x0)
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0x20b, &(0x7f0000000040)=[{&(0x7f0000000540)="2e000000220005000000c187185095cf0400b0eba0b4d65c000c000051894d5d1dac00"/46, 0x2e}], 0x1}, 0x0)
r2 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000080)='/dev/qat_adf_ctl\x00', 0x200, 0x0)
ioctl$DRM_IOCTL_ADD_CTX(0xffffffffffffffff, 0xc0086420, &(0x7f00000000c0)={<r3=>0x0})
ioctl$DRM_IOCTL_GET_SAREA_CTX(r2, 0xc010641d, &(0x7f0000000200)={r3, &(0x7f0000000100)=""/74})

04:13:11 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x40030000000000}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

04:13:12 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}, 0x1, 0x8100}, 0x0)

04:13:12 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"/968]}, 0x440)

[ 3305.089117] syz-executor.5 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
04:13:12 executing program 0:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x200000000000013, &(0x7f0000000280)=0x400100000001, 0x4)
connect$inet6(r0, &(0x7f0000000080), 0x1c)
setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f0000000440), 0x12f7e5)
clone(0x2100000002000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r1 = gettid()
setsockopt$inet6_group_source_req(r0, 0x29, 0x2f, &(0x7f00000000c0)={0x6e0b, {{0xa, 0x0, 0x7, @mcast2}}, {{0xa, 0x4e22, 0x0, @dev}}}, 0x108)
ptrace$setopts(0x4206, r1, 0x0, 0x0)
tkill(r1, 0x2c)
fcntl$setstatus(r0, 0x4, 0x80000000002c00)

04:13:12 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0xf0ffffffffffff}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

[ 3305.182860] syz-executor.5 cpuset=syz5 mems_allowed=0-1
[ 3305.188380] CPU: 0 PID: 23282 Comm: syz-executor.5 Not tainted 4.19.66 #40
[ 3305.195397] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3305.204759] Call Trace:
[ 3305.207362]  dump_stack+0x172/0x1f0
[ 3305.211008]  dump_header+0x15e/0xa55
[ 3305.214743]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 3305.219865]  ? ___ratelimit+0x60/0x595
[ 3305.223760]  ? do_raw_spin_unlock+0x57/0x270
[ 3305.228184]  oom_kill_process.cold+0x10/0x6ef
04:13:12 executing program 2:
r0 = socket$kcm(0x2, 0x1, 0x84)
r1 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000000)='cpuacct.usage_all\x00', 0x0, 0x0)
setsockopt$sock_attach_bpf(r0, 0x84, 0x14, &(0x7f0000000040)=r1, 0x4)
recvmsg$kcm(r0, 0x0, 0x2020)

[ 3305.232705]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 3305.238257]  ? task_will_free_mem+0x139/0x6e0
[ 3305.242770]  out_of_memory+0x936/0x12d0
[ 3305.246755]  ? lock_downgrade+0x810/0x810
[ 3305.250917]  ? oom_killer_disable+0x280/0x280
[ 3305.255420]  ? find_held_lock+0x35/0x130
[ 3305.259517]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 3305.264374]  ? memcg_event_wake+0x230/0x230
[ 3305.268721]  ? do_raw_spin_unlock+0x57/0x270
[ 3305.273145]  ? _raw_spin_unlock+0x2d/0x50
[ 3305.277305]  try_charge+0x1028/0x15b0
[ 3305.281116]  ? find_held_lock+0x35/0x130
[ 3305.285192]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 3305.290057]  ? kasan_check_read+0x11/0x20
[ 3305.294221]  ? get_mem_cgroup_from_mm+0x156/0x320
[ 3305.299081]  mem_cgroup_try_charge+0x259/0x6b0
[ 3305.303769]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 3305.308720]  wp_page_copy+0x430/0x16a0
[ 3305.312625]  ? pmd_pfn+0x1d0/0x1d0
[ 3305.316182]  ? kasan_check_read+0x11/0x20
[ 3305.320349]  ? do_raw_spin_unlock+0x57/0x270
[ 3305.324773]  do_wp_page+0x57d/0x10b0
[ 3305.328495]  ? lock_acquire+0x16f/0x3f0
04:13:12 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"/968]}, 0x440)

04:13:12 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x100000000000000}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

[ 3305.332479]  ? finish_mkwrite_fault+0x4f0/0x4f0
[ 3305.337158]  ? kasan_check_write+0x14/0x20
[ 3305.341403]  ? do_raw_spin_lock+0xc8/0x240
[ 3305.345653]  __handle_mm_fault+0x2305/0x3f80
[ 3305.350145]  ? vmf_insert_mixed_mkwrite+0x90/0x90
[ 3305.355018]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 3305.359719]  handle_mm_fault+0x1b5/0x690
[ 3305.363794]  __do_page_fault+0x62a/0xe90
[ 3305.367882]  ? vmalloc_fault+0x740/0x740
[ 3305.371960]  ? trace_hardirqs_off_caller+0x65/0x220
[ 3305.377022]  ? trace_hardirqs_on_caller+0x6a/0x220
[ 3305.381969]  ? page_fault+0x8/0x30
[ 3305.385531]  do_page_fault+0x71/0x57d
[ 3305.389345]  ? page_fault+0x8/0x30
[ 3305.390435] sctp: [Deprecated]: syz-executor.2 (pid 23300) Use of int in max_burst socket option deprecated.
[ 3305.390435] Use struct sctp_assoc_value instead
[ 3305.392895]  page_fault+0x1e/0x30
[ 3305.392908] RIP: 0033:0x40e9c8
[ 3305.392923] Code: 8b 34 c6 4a 8d 04 2e 48 3d ff ff ff 7e 0f 86 77 ff ff ff bf 35 ee 4b 00 31 c0 e8 63 33 ff ff 31 ff e8 ac 2f ff ff 0f 1f 40 00 <89> 3c b5 00 00 73 00 eb b6 31 ed 0f 1f 44 00 00 80 3d 9e 1a 66 00
04:13:12 executing program 0:
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000140)='/dev/vhost-vsock\x00', 0x2, 0x0)
ioctl$VHOST_VSOCK_SET_GUEST_CID(r0, 0x4008af60, &(0x7f0000000680)={@my=0x0})
r1 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_dgram(r1, &(0x7f0000000640)={0x28, 0x0, 0x0, @my=0x0}, 0x10)
shutdown(r1, 0x0)
ppoll(&(0x7f00000004c0)=[{r1}], 0x1, &(0x7f00000005c0), 0x0, 0x0)

[ 3305.392931] RSP: 002b:00007ffd53165230 EFLAGS: 00010246
[ 3305.392944] RAX: 000000002a8522ee RBX: 000000007af22c35 RCX: 0000001b2ed20000
[ 3305.392952] RDX: 0000000000000000 RSI: 00000000000002ee RDI: ffffffff2a8522ee
[ 3305.392972] RBP: 000000000000000c R08: 000000002a8522ee R09: 000000002a8522f2
[ 3305.460168] R10: 00007ffd531653d0 R11: 0000000000000246 R12: 000000000075bfa8
[ 3305.467440] R13: 0000000080000000 R14: 00007f09e87ff008 R15: 000000000000000c
04:13:12 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x200000000000000}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

04:13:12 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}, 0x1, 0xcb45}, 0x0)

[ 3305.527552] sctp: [Deprecated]: syz-executor.2 (pid 23306) Use of int in max_burst socket option deprecated.
[ 3305.527552] Use struct sctp_assoc_value instead
[ 3305.635811] Task in /syz5 killed as a result of limit of /syz5
[ 3305.648928] memory: usage 307164kB, limit 307200kB, failcnt 7924
[ 3305.664368] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3305.680051] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3305.699665] Memory cgroup stats for /syz5: cache:72KB rss:12KB rss_huge:0KB shmem:12KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:168KB inactive_file:0KB active_file:0KB unevictable:0KB
[ 3305.736935] Memory cgroup out of memory: Kill process 23282 (syz-executor.5) score 1103 or sacrifice child
[ 3305.794152] Killed process 23282 (syz-executor.5) total-vm:72580kB, anon-rss:108kB, file-rss:34816kB, shmem-rss:0kB
04:13:12 executing program 5:
r0 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000240)='/dev/dlm-control\x00', 0x40000, 0x0)
ioctl$SNDRV_TIMER_IOCTL_GINFO(r0, 0xc0f85403, &(0x7f0000000280)={{0xffffffffffffffff, 0x0, 0x5830000000000, 0x3, 0x4}, 0xf177, 0xb431, 'id0\x00', 'timer1\x00', 0x0, 0x8b4, 0x81, 0x0, 0x445})
shmat(0x0, &(0x7f0000ffc000/0x4000)=nil, 0x3000)
mbind(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x2, &(0x7f0000000000)=0xffff, 0x2, 0x0)
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0x20b, &(0x7f0000000040)=[{&(0x7f0000000540)="2e000000220005000000c187185095cf0400b0eba0b4d65c000d000051894d5d1dac00"/46, 0x2e}], 0x1}, 0x0)
r2 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000080)='/dev/qat_adf_ctl\x00', 0x200, 0x0)
ioctl$DRM_IOCTL_ADD_CTX(0xffffffffffffffff, 0xc0086420, &(0x7f00000000c0)={<r3=>0x0})
ioctl$DRM_IOCTL_GET_SAREA_CTX(r2, 0xc010641d, &(0x7f0000000200)={r3, &(0x7f0000000100)=""/74})

04:13:12 executing program 2:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl(r0, 0x1000008912, &(0x7f0000001c00)="11dca5055e0bcfe47bf070")
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f00000004c0)='/dev/fuse\x00', 0x2, 0x0)
mount$fuse(0x0, &(0x7f0000000440)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000240)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}})
write$FUSE_NOTIFY_STORE(r1, &(0x7f0000000480)={0x29, 0x4, 0x0, {0x1, 0x0, 0x1, 0x0, [0x0]}}, 0x29)

04:13:12 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"/968]}, 0x440)

04:13:12 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x300000000000000}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

[ 3305.836506] oom_reaper: reaped process 23282 (syz-executor.5), now anon-rss:0kB, file-rss:33856kB, shmem-rss:0kB
04:13:12 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}, 0x1, 0xf000}, 0x0)

04:13:12 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x400000000000000}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

04:13:12 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}, 0x1, 0x34000}, 0x0)

04:13:12 executing program 2:
openat$selinux_avc_hash_stats(0xffffffffffffff9c, &(0x7f0000000a40)='/selinux/avc/hash_stats\x00', 0x0, 0x0)
r0 = open(&(0x7f0000000a80)='./bus\x00', 0x4100, 0xa)
ioctl$sock_inet6_tcp_SIOCATMARK(r0, 0x8905, 0x0)
socketpair$unix(0x1, 0x2000000000000003, 0x0, &(0x7f0000000240)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
socket$inet6(0xa, 0x0, 0xffffffff80000002)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(0xffffffffffffffff, 0x6, 0x14, 0x0, 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
r2 = openat(r1, &(0x7f0000000040)='./bus\x00', 0x0, 0x0)
perf_event_open$cgroup(0x0, 0xffffffffffffffff, 0x2, r2, 0x0)
ioctl$SNDRV_TIMER_IOCTL_PVERSION(r2, 0x80045400, &(0x7f00000000c0))
r3 = socket$inet6(0xa, 0x400000000001, 0x0)
r4 = dup(r3)
setsockopt$inet6_tcp_int(r3, 0x6, 0xa, &(0x7f0000000000)=0x401, 0x4)
bind$inet6(r3, &(0x7f0000000100)={0xa, 0x4e20}, 0x1c)
sendto$inet6(r3, 0x0, 0x0, 0x20000008, &(0x7f00008d4fe4)={0xa, 0x4e20, 0x0, @loopback}, 0x1c)
setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
setsockopt$inet6_tcp_int(r3, 0x6, 0x19, &(0x7f0000000180)=0x6, 0x4)
syz_genetlink_get_family_id$tipc(&(0x7f0000000b40)='TIPC\x00')
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(0xffffffffffffffff, 0x0, 0x0)
io_setup(0x0, 0x0)
io_submit(0x0, 0x0, 0x0)
ioctl$TIOCNXCL(0xffffffffffffffff, 0x540d)
r5 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
r6 = accept$unix(r5, &(0x7f00000003c0), &(0x7f0000000440)=0x6e)
ioctl$FS_IOC_SETFLAGS(r6, 0x40046602, 0x0)
pread64(0xffffffffffffffff, 0x0, 0x0, 0x0)
lstat(&(0x7f0000000780)='./bus\x00', &(0x7f00000008c0)={0x0, 0x0, 0x0, 0x0, <r7=>0x0})
getgroups(0x6, &(0x7f0000000940)=[0xffffffffffffffff, 0xee01, 0x0, <r8=>0xee01, 0xffffffffffffffff, 0xee00])
write$P9_RGETATTR(r5, &(0x7f0000000980)={0xa0, 0x19, 0x1, {0x500, {0x40, 0x0, 0x5}, 0x9489c1643b1fb8d, r7, r8, 0x0, 0x1, 0xffff, 0xff, 0x100, 0x5, 0x6, 0x2, 0x3, 0x6, 0x5, 0xda5, 0x2, 0x0, 0xce}}, 0xa0)
ftruncate(r5, 0x7fff)
sendfile(r4, r5, 0x0, 0x8000fffffffe)

04:13:12 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"/968]}, 0x440)

[ 3306.079190] netlink: 26 bytes leftover after parsing attributes in process `syz-executor.5'.
[ 3306.163061] syz-executor.5 invoked oom-killer: gfp_mask=0x7080c0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), nodemask=(null), order=3, oom_score_adj=1000
[ 3306.257229] device bridge_slave_1 left promiscuous mode
[ 3306.270884] syz-executor.5 cpuset=syz5 mems_allowed=0-1
[ 3306.282389] bridge0: port 2(bridge_slave_1) entered disabled state
[ 3306.299591] CPU: 1 PID: 23325 Comm: syz-executor.5 Not tainted 4.19.66 #40
[ 3306.306624] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3306.306630] Call Trace:
[ 3306.306653]  dump_stack+0x172/0x1f0
[ 3306.306676]  dump_header+0x15e/0xa55
[ 3306.306692]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 3306.306708]  ? ___ratelimit+0x60/0x595
[ 3306.306722]  ? do_raw_spin_unlock+0x57/0x270
[ 3306.306741]  oom_kill_process.cold+0x10/0x6ef
[ 3306.306761]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 3306.306775]  ? task_will_free_mem+0x139/0x6e0
[ 3306.306790]  ? find_held_lock+0x35/0x130
[ 3306.306811]  out_of_memory+0x936/0x12d0
[ 3306.306826]  ? lock_downgrade+0x810/0x810
[ 3306.306844]  ? oom_killer_disable+0x280/0x280
[ 3306.306858]  ? find_held_lock+0x35/0x130
[ 3306.306883]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 3306.344023]  ? memcg_event_wake+0x230/0x230
[ 3306.344047]  ? do_raw_spin_unlock+0x57/0x270
[ 3306.344064]  ? _raw_spin_unlock+0x2d/0x50
[ 3306.344083]  try_charge+0x1028/0x15b0
[ 3306.344097]  ? find_held_lock+0x35/0x130
[ 3306.344119]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 3306.344134]  ? get_mem_cgroup_from_mm+0x139/0x320
[ 3306.344156]  ? find_held_lock+0x35/0x130
[ 3306.370852]  ? get_mem_cgroup_from_mm+0x139/0x320
[ 3306.370880]  memcg_kmem_charge_memcg+0x7c/0x130
[ 3306.370897]  ? memcg_kmem_put_cache+0xb0/0xb0
[ 3306.386578] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based  firewall rule not found. Use the iptables CT target to attach helpers instead.
[ 3306.388618]  ? get_mem_cgroup_from_mm+0x156/0x320
[ 3306.388638]  memcg_kmem_charge+0x136/0x370
[ 3306.400731]  __alloc_pages_nodemask+0x3c3/0x750
[ 3306.400755]  ? __alloc_pages_slowpath+0x2870/0x2870
[ 3306.464748]  ? lockdep_hardirqs_on+0x415/0x5d0
[ 3306.469348]  ? trace_hardirqs_on+0x67/0x220
[ 3306.473685]  ? kasan_check_read+0x11/0x20
[ 3306.477853]  copy_process.part.0+0x3e0/0x7a30
[ 3306.482361]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 3306.487484]  ? delayacct_end+0x5c/0x100
[ 3306.491479]  ? __delayacct_freepages_end+0xe0/0x140
[ 3306.496506]  ? __lock_acquire+0x6ee/0x49c0
[ 3306.500765]  ? __cleanup_sighand+0x70/0x70
[ 3306.505017]  ? mark_held_locks+0x100/0x100
[ 3306.509275]  _do_fork+0x257/0xfd0
[ 3306.512746]  ? fork_idle+0x1d0/0x1d0
[ 3306.516484]  ? blkg_prfill_rwstat_field_recursive+0x100/0x100
[ 3306.522380]  ? kasan_check_read+0x11/0x20
[ 3306.526538]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 3306.531301]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 3306.536065]  ? do_syscall_64+0x26/0x620
[ 3306.540048]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 3306.545446]  ? do_syscall_64+0x26/0x620
[ 3306.549433]  __x64_sys_clone+0xbf/0x150
[ 3306.553439]  do_syscall_64+0xfd/0x620
[ 3306.557253]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 3306.562457] RIP: 0033:0x45c1f9
[ 3306.565748] Code: ff 48 85 f6 0f 84 27 8e fb ff 48 83 ee 10 48 89 4e 08 48 89 3e 48 89 d7 4c 89 c2 4d 89 c8 4c 8b 54 24 08 b8 38 00 00 00 0f 05 <48> 85 c0 0f 8c fe 8d fb ff 74 01 c3 31 ed 48 f7 c7 00 00 01 00 75
[ 3306.584701] RSP: 002b:00007ffd531651c8 EFLAGS: 00000202 ORIG_RAX: 0000000000000038
[ 3306.592601] RAX: ffffffffffffffda RBX: 00007f09e67dd700 RCX: 000000000045c1f9
[ 3306.599976] RDX: 00007f09e67dd9d0 RSI: 00007f09e67dcdb0 RDI: 00000000003d0f00
[ 3306.607260] RBP: 00007ffd531653e0 R08: 00007f09e67dd700 R09: 00007f09e67dd700
[ 3306.614544] R10: 00007f09e67dd9d0 R11: 0000000000000202 R12: 0000000000000000
[ 3306.621851] R13: 00007ffd5316527f R14: 00007f09e67dd9c0 R15: 000000000075bfd4
[ 3306.666291] device bridge_slave_0 left promiscuous mode
[ 3306.674257] bridge0: port 1(bridge_slave_0) entered disabled state
[ 3306.682994] Task in /syz5 killed as a result of limit of /syz5
[ 3306.689366] memory: usage 307180kB, limit 307200kB, failcnt 7935
[ 3306.702796] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3306.714479] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3306.739343] Memory cgroup stats for /syz5: cache:72KB rss:144KB rss_huge:0KB shmem:12KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:184KB inactive_file:0KB active_file:0KB unevictable:0KB
[ 3306.759826] Memory cgroup out of memory: Kill process 23325 (syz-executor.5) score 1103 or sacrifice child
[ 3306.770166] Killed process 23325 (syz-executor.5) total-vm:72712kB, anon-rss:108kB, file-rss:34816kB, shmem-rss:0kB
[ 3306.784453] oom_reaper: reaped process 23325 (syz-executor.5), now anon-rss:0kB, file-rss:34828kB, shmem-rss:0kB
[ 3306.897642] device hsr_slave_1 left promiscuous mode
[ 3306.948161] device hsr_slave_0 left promiscuous mode
[ 3307.001057] team0 (unregistering): Port device team_slave_1 removed
[ 3307.014458] team0 (unregistering): Port device team_slave_0 removed
[ 3307.026416] bond0 (unregistering): Releasing backup interface bond_slave_1
[ 3307.099800] bond0 (unregistering): Releasing backup interface bond_slave_0
[ 3307.133582] audit: type=1800 audit(2000002394.020:574): pid=23339 uid=0 auid=4294967295 ses=4294967295 subj=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 op=collect_data cause=failed(directio) comm="syz-executor.2" name="bus" dev="sda1" ino=16523 res=0
[ 3307.156487] audit: type=1804 audit(2000002394.050:575): pid=23345 uid=0 auid=4294967295 ses=4294967295 subj=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 op=invalid_pcr cause=ToMToU comm="syz-executor.2" name="/root/syzkaller-testdir016231737/syzkaller.STAAjk/72/bus" dev="sda1" ino=16523 res=1
[ 3307.231100] bond0 (unregistering): Released all slaves
[ 3308.449103] IPVS: ftp: loaded support on port[0] = 21
[ 3308.732598] chnl_net:caif_netlink_parms(): no params data found
[ 3309.280662] bridge0: port 1(bridge_slave_0) entered blocking state
[ 3309.322794] bridge0: port 1(bridge_slave_0) entered disabled state
[ 3309.349777] device bridge_slave_0 entered promiscuous mode
[ 3309.425304] bridge0: port 2(bridge_slave_1) entered blocking state
[ 3309.437059] bridge0: port 2(bridge_slave_1) entered disabled state
[ 3309.469175] device bridge_slave_1 entered promiscuous mode
[ 3309.561861] bond0: Enslaving bond_slave_0 as an active interface with an up link
[ 3309.582251] bond0: Enslaving bond_slave_1 as an active interface with an up link
[ 3309.618957] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready
[ 3309.627633] team0: Port device team_slave_0 added
[ 3309.634132] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready
[ 3309.642800] team0: Port device team_slave_1 added
[ 3309.648530] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready
[ 3309.656552] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready
[ 3309.722525] device hsr_slave_0 entered promiscuous mode
[ 3309.793894] device hsr_slave_1 entered promiscuous mode
[ 3309.844006] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready
[ 3309.851321] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready
[ 3309.882614] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready
[ 3309.961874] IPv6: ADDRCONF(NETDEV_UP): bond0: link is not ready
[ 3309.968899] 8021q: adding VLAN 0 to HW filter on device bond0
[ 3309.980038] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[ 3309.991130] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[ 3309.999066] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
[ 3310.013658] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 3310.021211] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 3310.033367] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready
[ 3310.039452] 8021q: adding VLAN 0 to HW filter on device team0
[ 3310.050571] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[ 3310.058640] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 3310.067364] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 3310.076399] bridge0: port 1(bridge_slave_0) entered blocking state
[ 3310.082821] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 3310.094337] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 3310.110502] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[ 3310.118079] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 3310.134542] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 3310.142725] bridge0: port 2(bridge_slave_1) entered blocking state
[ 3310.149082] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 3310.190946] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 3310.200271] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 3310.213126] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 3310.225669] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 3310.239505] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 3310.250846] IPv6: ADDRCONF(NETDEV_UP): hsr0: link is not ready
[ 3310.257712] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 3310.279582] IPv6: ADDRCONF(NETDEV_UP): vxcan1: link is not ready
[ 3310.295272] 8021q: adding VLAN 0 to HW filter on device batadv0
04:13:18 executing program 0:
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000140)='/dev/vhost-vsock\x00', 0x2, 0x0)
ioctl$VHOST_VSOCK_SET_GUEST_CID(r0, 0x4008af60, &(0x7f0000000680)={@my=0x0})
r1 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_dgram(r1, &(0x7f0000000640)={0x28, 0x0, 0x0, @my=0x0}, 0x10)
shutdown(r1, 0x0)
ppoll(&(0x7f00000004c0)=[{r1}], 0x1, &(0x7f00000005c0), 0x0, 0x0)

04:13:18 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x500000000000000}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

04:13:18 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}, 0x1, 0x400300}, 0x0)

04:13:18 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="0000000000400000000000000000000000000000000000000000000000000000000000a001000000ffffffff020000001d00000001000000080676657468305f746f5f627269646765006e7230000000000000000000000000006772653000000000000000000000000076657468315f746f5f626f6e64000000aaaaaaaaaaaa000000000000aaaaaaaaaaaa00000000000000007000000070000000a80000006172707265706c790000000000000000000000000000000000000000000000001000000000000000aaaaaaaaaaaa0000feffffff0000000009000000000000000000697064647030000000000000000000006272696467655f736c6176655f3100000000000000000000000000000000000067726530000000000000000000000000ffffffffffff0000000000000000000000000000000000000000e0000000180100005001000072617465657374000000000000a3000000000000000000000000000000000000480000000000000064756d6d79300000000000000000000073797a5f74756e0000000ab941773a25a4462a99832900000000000000000000200000000000000000000000000000000000000000000000736e6174000000000000000000000000000000000000000000000000000000001000000000000000aaaaaaaaaaaa000000000000000000006d61726b0000000000000000000000000000000000000000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000002000000feffffff01000000110000000000000000006272696467655f736c6176655f3100000000000000000000000000749638e0006c6f00000000000000000000000000000080616d300000000000000000000000aaaaaaaaaa00000000000000aaaaaaaaaaaa0000000000000000a00000000801000040010000636f6e6e6c6162656c000000000000000000000000000000000000000000000008000000000000000000000000000000434c4153534946590000000000000000000000000000000000ff07000000000008000000000000000000000000000000736e617400000000000000000000000000000000000000000001000000000000100000000000000000000000000000000000000000000000736e6174000000000000000000000000000000000000000000000000000000001000000000001400aaaaaaaaaabb00"/968]}, 0x440)

04:13:18 executing program 2:
r0 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000200)="580000001400add427323b470c45b4560a067fffffff81004e22000d00ff0028925aa80020007b00090080000efffeffe809000000ff0000f03ac71082300000ffffffffffffffffffe7ee00000000000000000200000000", 0x58}], 0x1)

04:13:18 executing program 5:
r0 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000240)='/dev/dlm-control\x00', 0x40000, 0x0)
ioctl$SNDRV_TIMER_IOCTL_GINFO(r0, 0xc0f85403, &(0x7f0000000280)={{0xffffffffffffffff, 0x0, 0x5830000000000, 0x3, 0x4}, 0xf177, 0xb431, 'id0\x00', 'timer1\x00', 0x0, 0x8b4, 0x81, 0x0, 0x445})
shmat(0x0, &(0x7f0000ffc000/0x4000)=nil, 0x3000)
mbind(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x2, &(0x7f0000000000)=0xffff, 0x2, 0x0)
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0x20b, &(0x7f0000000040)=[{&(0x7f0000000540)="2e000000220005000000c187185095cf0400b0eba0b4d65c000e000051894d5d1dac00"/46, 0x2e}], 0x1}, 0x0)
r2 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000080)='/dev/qat_adf_ctl\x00', 0x200, 0x0)
ioctl$DRM_IOCTL_ADD_CTX(0xffffffffffffffff, 0xc0086420, &(0x7f00000000c0)={<r3=>0x0})
ioctl$DRM_IOCTL_GET_SAREA_CTX(r2, 0xc010641d, &(0x7f0000000200)={r3, &(0x7f0000000100)=""/74})

04:13:18 executing program 2:

04:13:18 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x600000000000000}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

04:13:18 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}, 0x1, 0xf0ffff}, 0x0)

04:13:18 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"/968]}, 0x440)

[ 3311.370162] netlink: 26 bytes leftover after parsing attributes in process `syz-executor.5'.
[ 3311.420572] QAT: Invalid ioctl
04:13:18 executing program 2:

04:13:18 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="000000000040000000000000000000000000000000000000000000000000000000000000ff000000ffffffff020000001d00000001000000080676657468305f746f5f627269646765006e7230000000000000000000000000006772653000000000000000000000000076657468315f746f5f626f6e64000000aaaaaaaaaaaa000000000000aaaaaaaaaaaa00000000000000007000000070000000a80000006172707265706c790000000000000000000000000000000000000000000000001000000000000000aaaaaaaaaaaa0000feffffff0000000009000000000000000000697064647030000000000000000000006272696467655f736c6176655f3100000000000000000000000000000000000067726530000000000000000000000000ffffffffffff0000000000000000000000000000000000000000e0000000180100005001000072617465657374000000000000a3000000000000000000000000000000000000480000000000000064756d6d79300000000000000000000073797a5f74756e0000000ab941773a25a4462a99832900000000000000000000200000000000000000000000000000000000000000000000736e6174000000000000000000000000000000000000000000000000000000001000000000000000aaaaaaaaaaaa000000000000000000006d61726b0000000000000000000000000000000000000000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000002000000feffffff01000000110000000000000000006272696467655f736c6176655f3100000000000000000000000000749638e0006c6f00000000000000000000000000000080616d300000000000000000000000aaaaaaaaaa00000000000000aaaaaaaaaaaa0000000000000000a00000000801000040010000636f6e6e6c6162656c000000000000000000000000000000000000000000000008000000000000000000000000000000434c4153534946590000000000000000000000000000000000ff07000000000008000000000000000000000000000000736e617400000000000000000000000000000000000000000001000000000000100000000000000000000000000000000000000000000000736e6174000000000000000000000000000000000000000000000000000000001000000000001400aaaaaaaaaabb00"/968]}, 0x440)

[ 3312.110815] syz-executor.5 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 3312.129588] syz-executor.5 cpuset=syz5 mems_allowed=0-1
[ 3312.135684] CPU: 0 PID: 23362 Comm: syz-executor.5 Not tainted 4.19.66 #40
[ 3312.142711] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3312.152082] Call Trace:
[ 3312.155393]  dump_stack+0x172/0x1f0
[ 3312.159041]  dump_header+0x15e/0xa55
[ 3312.162776]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 3312.167891]  ? ___ratelimit+0x60/0x595
[ 3312.171788]  ? do_raw_spin_unlock+0x57/0x270
[ 3312.176295]  oom_kill_process.cold+0x10/0x6ef
[ 3312.180865]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 3312.186418]  ? task_will_free_mem+0x139/0x6e0
[ 3312.190939]  out_of_memory+0x936/0x12d0
[ 3312.194927]  ? lock_downgrade+0x810/0x810
[ 3312.199106]  ? oom_killer_disable+0x280/0x280
[ 3312.203600]  ? find_held_lock+0x35/0x130
[ 3312.207653]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 3312.212690]  ? memcg_event_wake+0x230/0x230
[ 3312.217004]  ? do_raw_spin_unlock+0x57/0x270
[ 3312.221395]  ? _raw_spin_unlock+0x2d/0x50
[ 3312.225534]  try_charge+0x1028/0x15b0
[ 3312.229318]  ? find_held_lock+0x35/0x130
[ 3312.233365]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 3312.238200]  ? kasan_check_read+0x11/0x20
[ 3312.242335]  ? get_mem_cgroup_from_mm+0x156/0x320
[ 3312.247168]  mem_cgroup_try_charge+0x259/0x6b0
[ 3312.251751]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 3312.256669]  __handle_mm_fault+0x1e50/0x3f80
[ 3312.261068]  ? vmf_insert_mixed_mkwrite+0x90/0x90
[ 3312.265912]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 3312.270580]  handle_mm_fault+0x1b5/0x690
[ 3312.274635]  __do_page_fault+0x62a/0xe90
[ 3312.278727]  ? vmalloc_fault+0x740/0x740
[ 3312.282788]  ? trace_hardirqs_off_caller+0x65/0x220
[ 3312.287822]  ? trace_hardirqs_on_caller+0x6a/0x220
[ 3312.292746]  ? page_fault+0x8/0x30
[ 3312.296275]  do_page_fault+0x71/0x57d
[ 3312.300068]  ? page_fault+0x8/0x30
[ 3312.303601]  page_fault+0x1e/0x30
[ 3312.307038] RIP: 0033:0x45c1dd
[ 3312.310214] Code: 5b 5d f3 c3 66 0f 1f 84 00 00 00 00 00 48 c7 c0 ea ff ff ff 48 85 ff 0f 84 30 8e fb ff 48 85 f6 0f 84 27 8e fb ff 48 83 ee 10 <48> 89 4e 08 48 89 3e 48 89 d7 4c 89 c2 4d 89 c8 4c 8b 54 24 08 b8
[ 3312.329102] RSP: 002b:00007ffd531651c8 EFLAGS: 00010202
[ 3312.334452] RAX: ffffffffffffffea RBX: 00007f09e67bc700 RCX: 00007f09e67bc700
[ 3312.341708] RDX: 00000000003d0f00 RSI: 00007f09e67bbdb0 RDI: 0000000000410560
[ 3312.348988] RBP: 00007ffd531653e0 R08: 00007f09e67bc9d0 R09: 00007f09e67bc700
[ 3312.356331] R10: 00007f09e67bbdc0 R11: 0000000000000246 R12: 0000000000000000
[ 3312.363600] R13: 00007ffd5316527f R14: 00007f09e67bc9c0 R15: 000000000075c07c
[ 3312.375518] Task in /syz5 killed as a result of limit of /syz5
[ 3312.384676] memory: usage 307200kB, limit 307200kB, failcnt 7993
[ 3312.390928] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3312.398041] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
04:13:19 executing program 0:
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000140)='/dev/vhost-vsock\x00', 0x2, 0x0)
ioctl$VHOST_VSOCK_SET_GUEST_CID(r0, 0x4008af60, &(0x7f0000000680)={@my=0x0})
r1 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_dgram(r1, &(0x7f0000000640)={0x28, 0x0, 0x0, @my=0x0}, 0x10)
shutdown(r1, 0x0)
ppoll(&(0x7f00000004c0)=[{r1}], 0x1, &(0x7f00000005c0), 0x0, 0x0)

04:13:19 executing program 2:

04:13:19 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"/968]}, 0x440)

[ 3312.406394] Memory cgroup stats for /syz5: cache:72KB rss:144KB rss_huge:0KB shmem:12KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:192KB inactive_file:0KB active_file:0KB unevictable:0KB
[ 3312.432581] Memory cgroup out of memory: Kill process 23362 (syz-executor.5) score 1103 or sacrifice child
04:13:19 executing program 2:

04:13:19 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"/968]}, 0x440)

[ 3312.517414] Killed process 23362 (syz-executor.5) total-vm:72844kB, anon-rss:108kB, file-rss:34816kB, shmem-rss:0kB
[ 3312.646683] oom_reaper: reaped process 23362 (syz-executor.5), now anon-rss:0kB, file-rss:34840kB, shmem-rss:0kB
04:13:19 executing program 5:
r0 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000240)='/dev/dlm-control\x00', 0x40000, 0x0)
ioctl$SNDRV_TIMER_IOCTL_GINFO(r0, 0xc0f85403, &(0x7f0000000280)={{0xffffffffffffffff, 0x0, 0x5830000000000, 0x3, 0x4}, 0xf177, 0xb431, 'id0\x00', 'timer1\x00', 0x0, 0x8b4, 0x81, 0x0, 0x445})
shmat(0x0, &(0x7f0000ffc000/0x4000)=nil, 0x3000)
mbind(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x2, &(0x7f0000000000)=0xffff, 0x2, 0x0)
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0x20b, &(0x7f0000000040)=[{&(0x7f0000000540)="2e000000220005000000c187185095cf0400b0eba0b4d65c000f000051894d5d1dac00"/46, 0x2e}], 0x1}, 0x0)
r2 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000080)='/dev/qat_adf_ctl\x00', 0x200, 0x0)
ioctl$DRM_IOCTL_ADD_CTX(0xffffffffffffffff, 0xc0086420, &(0x7f00000000c0)={<r3=>0x0})
ioctl$DRM_IOCTL_GET_SAREA_CTX(r2, 0xc010641d, &(0x7f0000000200)={r3, &(0x7f0000000100)=""/74})

04:13:19 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}, 0x1, 0x1000000}, 0x0)

04:13:19 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x700000000000000}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

04:13:19 executing program 2:
perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0x9d, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000040)={0x2000000005, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, @perf_bp={&(0x7f0000000000), 0x1}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_setup(0x6, &(0x7f0000000000))

04:13:19 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"/968]}, 0x440)

04:13:19 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x803000000000000}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

04:13:19 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"/968]}, 0x440)

[ 3312.919193] syz-executor.5 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 3312.949246] syz-executor.5 cpuset=syz5 mems_allowed=0-1
[ 3312.963353] CPU: 1 PID: 23612 Comm: syz-executor.5 Not tainted 4.19.66 #40
[ 3312.970396] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3312.979758] Call Trace:
[ 3312.982363]  dump_stack+0x172/0x1f0
[ 3312.986016]  dump_header+0x15e/0xa55
[ 3312.989752]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 3312.994871]  ? ___ratelimit+0x60/0x595
[ 3312.998777]  ? do_raw_spin_unlock+0x57/0x270
[ 3313.003208]  oom_kill_process.cold+0x10/0x6ef
[ 3313.007719]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 3313.013265]  ? task_will_free_mem+0x139/0x6e0
[ 3313.017764]  out_of_memory+0x936/0x12d0
[ 3313.021835]  ? lock_downgrade+0x810/0x810
[ 3313.025982]  ? oom_killer_disable+0x280/0x280
[ 3313.030605]  ? find_held_lock+0x35/0x130
[ 3313.034679]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 3313.039527]  ? memcg_event_wake+0x230/0x230
[ 3313.043864]  ? do_raw_spin_unlock+0x57/0x270
[ 3313.048279]  ? _raw_spin_unlock+0x2d/0x50
[ 3313.052418]  try_charge+0x1028/0x15b0
[ 3313.056221]  ? find_held_lock+0x35/0x130
[ 3313.060381]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 3313.065221]  ? kasan_check_read+0x11/0x20
[ 3313.069375]  ? get_mem_cgroup_from_mm+0x156/0x320
[ 3313.074221]  mem_cgroup_try_charge+0x259/0x6b0
[ 3313.078806]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 3313.083838]  wp_page_copy+0x430/0x16a0
[ 3313.099393]  ? pmd_pfn+0x1d0/0x1d0
[ 3313.102939]  ? kasan_check_read+0x11/0x20
[ 3313.107090]  ? do_raw_spin_unlock+0x57/0x270
[ 3313.111494]  do_wp_page+0x57d/0x10b0
[ 3313.115214]  ? lock_acquire+0x16f/0x3f0
[ 3313.119200]  ? finish_mkwrite_fault+0x4f0/0x4f0
[ 3313.123874]  ? kasan_check_write+0x14/0x20
[ 3313.128108]  ? do_raw_spin_lock+0xc8/0x240
[ 3313.132341]  __handle_mm_fault+0x2305/0x3f80
[ 3313.136762]  ? vmf_insert_mixed_mkwrite+0x90/0x90
[ 3313.141618]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 3313.147587]  handle_mm_fault+0x1b5/0x690
[ 3313.151642]  __do_page_fault+0x62a/0xe90
[ 3313.155717]  ? vmalloc_fault+0x740/0x740
[ 3313.159784]  ? trace_hardirqs_off_caller+0x65/0x220
[ 3313.164812]  ? trace_hardirqs_on_caller+0x6a/0x220
[ 3313.169750]  ? page_fault+0x8/0x30
[ 3313.173293]  do_page_fault+0x71/0x57d
[ 3313.178643]  ? page_fault+0x8/0x30
[ 3313.182225]  page_fault+0x1e/0x30
[ 3313.185693] RIP: 0033:0x40e9c8
[ 3313.188896] Code: 8b 34 c6 4a 8d 04 2e 48 3d ff ff ff 7e 0f 86 77 ff ff ff bf 35 ee 4b 00 31 c0 e8 63 33 ff ff 31 ff e8 ac 2f ff ff 0f 1f 40 00 <89> 3c b5 00 00 73 00 eb b6 31 ed 0f 1f 44 00 00 80 3d 9e 1a 66 00
[ 3313.207788] RSP: 002b:00007ffd53165230 EFLAGS: 00010246
[ 3313.213149] RAX: 0000000081709699 RBX: 000000002e0faf48 RCX: 0000001b2ed20000
[ 3313.220424] RDX: 0000000000000000 RSI: 0000000000001699 RDI: ffffffff81709699
[ 3313.227704] RBP: 0000000000000000 R08: 0000000081709699 R09: 000000008170969d
[ 3313.235054] R10: 00007ffd531653d0 R11: 0000000000000246 R12: 000000000075bfa8
[ 3313.242319] R13: 0000000080000000 R14: 00007f09e87ff008 R15: 0000000000000000
[ 3313.249590]  ? trace_hardirqs_off_caller+0x19/0x220
[ 3313.265702] Task in /syz5 killed as a result of limit of /syz5
[ 3313.271895] memory: usage 307200kB, limit 307200kB, failcnt 8036
[ 3313.278293] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3313.285406] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3313.291829] Memory cgroup stats for /syz5: cache:72KB rss:144KB rss_huge:0KB shmem:12KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:140KB inactive_file:0KB active_file:0KB unevictable:0KB
[ 3313.312974] Memory cgroup out of memory: Kill process 23612 (syz-executor.5) score 1103 or sacrifice child
[ 3313.326518] Killed process 23612 (syz-executor.5) total-vm:72580kB, anon-rss:108kB, file-rss:34816kB, shmem-rss:0kB
04:13:20 executing program 0:
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000140)='/dev/vhost-vsock\x00', 0x2, 0x0)
ioctl$VHOST_VSOCK_SET_GUEST_CID(r0, 0x4008af60, &(0x7f0000000680)={@my=0x0})
r1 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_dgram(r1, &(0x7f0000000640)={0x28, 0x0, 0x0, @my=0x0}, 0x10)
shutdown(r1, 0x0)
ppoll(&(0x7f00000004c0)=[{r1}], 0x1, &(0x7f00000005c0), 0x0, 0x0)

04:13:20 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0xa00000000000000}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

04:13:20 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"/968]}, 0x440)

04:13:20 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}, 0x1, 0x2000000}, 0x0)

04:13:20 executing program 2:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000000)="0800a1695e1dcfe87b1071")
mkdir(&(0x7f0000000200)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000026ff8)='./file0\x00', &(0x7f00000000c0)='tmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000140)='./file0\x00')
mkdir(&(0x7f0000000440)='./file1\x00', 0x0)
mkdir(&(0x7f0000000340)='./file0\x00', 0x0)
mount$overlay(0x400000, &(0x7f0000000300)='./file0\x00', &(0x7f0000000100)='overlay\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB='upperdir=./file0,lowerdir=.:file0,workdir=./file1'])
r1 = open(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
readlinkat(r1, &(0x7f0000000180)='./file0/f.le.\x00', &(0x7f0000000500)=""/201, 0xc9)
mkdirat(r1, &(0x7f00000001c0)='./file0/f.le.\x00', 0x0)

04:13:20 executing program 5:
r0 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000240)='/dev/dlm-control\x00', 0x40000, 0x0)
ioctl$SNDRV_TIMER_IOCTL_GINFO(r0, 0xc0f85403, &(0x7f0000000280)={{0xffffffffffffffff, 0x0, 0x5830000000000, 0x3, 0x4}, 0xf177, 0xb431, 'id0\x00', 'timer1\x00', 0x0, 0x8b4, 0x81, 0x0, 0x445})
shmat(0x0, &(0x7f0000ffc000/0x4000)=nil, 0x3000)
mbind(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x2, &(0x7f0000000000)=0xffff, 0x2, 0x0)
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0x20b, &(0x7f0000000040)=[{&(0x7f0000000540)="2e000000220005000000c187185095cf0400b0eba0b4d65c0010000051894d5d1dac00"/46, 0x2e}], 0x1}, 0x0)
r2 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000080)='/dev/qat_adf_ctl\x00', 0x200, 0x0)
ioctl$DRM_IOCTL_ADD_CTX(0xffffffffffffffff, 0xc0086420, &(0x7f00000000c0)={<r3=>0x0})
ioctl$DRM_IOCTL_GET_SAREA_CTX(r2, 0xc010641d, &(0x7f0000000200)={r3, &(0x7f0000000100)=""/74})

[ 3313.503603] syz-executor.5 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 3313.516833] syz-executor.5 cpuset=syz5 mems_allowed=0-1
[ 3313.528696] overlayfs: lowerdir is in-use as upperdir/workdir
[ 3313.534818] CPU: 1 PID: 23628 Comm: syz-executor.5 Not tainted 4.19.66 #40
[ 3313.541846] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3313.551203] Call Trace:
[ 3313.553807]  dump_stack+0x172/0x1f0
[ 3313.557450]  dump_header+0x15e/0xa55
[ 3313.561264]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 3313.566382]  ? ___ratelimit+0x60/0x595
[ 3313.570282]  ? do_raw_spin_unlock+0x57/0x270
[ 3313.574709]  oom_kill_process.cold+0x10/0x6ef
[ 3313.579226]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 3313.584777]  ? task_will_free_mem+0x139/0x6e0
[ 3313.589303]  out_of_memory+0x936/0x12d0
[ 3313.593294]  ? lock_downgrade+0x810/0x810
[ 3313.597458]  ? oom_killer_disable+0x280/0x280
04:13:20 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}, 0x1, 0x3000000}, 0x0)

04:13:20 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"/968]}, 0x440)

[ 3313.597474]  ? find_held_lock+0x35/0x130
[ 3313.597500]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 3313.606037]  ? memcg_event_wake+0x230/0x230
[ 3313.606059]  ? do_raw_spin_unlock+0x57/0x270
[ 3313.606076]  ? _raw_spin_unlock+0x2d/0x50
[ 3313.606092]  try_charge+0x1028/0x15b0
[ 3313.606107]  ? find_held_lock+0x35/0x130
[ 3313.606127]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 3313.636506]  ? kasan_check_read+0x11/0x20
[ 3313.640675]  ? get_mem_cgroup_from_mm+0x156/0x320
[ 3313.645537]  mem_cgroup_try_charge+0x259/0x6b0
[ 3313.650130]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 3313.655093]  wp_page_copy+0x430/0x16a0
[ 3313.659004]  ? pmd_pfn+0x1d0/0x1d0
[ 3313.662559]  ? kasan_check_read+0x11/0x20
[ 3313.666733]  ? do_raw_spin_unlock+0x57/0x270
[ 3313.666906] overlayfs: lowerdir is in-use as upperdir/workdir
[ 3313.671157]  do_wp_page+0x57d/0x10b0
[ 3313.671182]  ? lock_acquire+0x16f/0x3f0
[ 3313.671198]  ? finish_mkwrite_fault+0x4f0/0x4f0
[ 3313.671217]  ? kasan_check_write+0x14/0x20
[ 3313.693690]  ? do_raw_spin_lock+0xc8/0x240
[ 3313.697951]  __handle_mm_fault+0x2305/0x3f80
[ 3313.702380]  ? vmf_insert_mixed_mkwrite+0x90/0x90
[ 3313.707253]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 3313.711941]  handle_mm_fault+0x1b5/0x690
[ 3313.716024]  __do_page_fault+0x62a/0xe90
[ 3313.720105]  ? vmalloc_fault+0x740/0x740
[ 3313.724189]  ? trace_hardirqs_off_caller+0x65/0x220
[ 3313.729217]  ? trace_hardirqs_on_caller+0x6a/0x220
[ 3313.734163]  ? page_fault+0x8/0x30
[ 3313.737725]  do_page_fault+0x71/0x57d
[ 3313.741551]  ? page_fault+0x8/0x30
[ 3313.745200]  page_fault+0x1e/0x30
[ 3313.748668] RIP: 0033:0x40e9c8
04:13:20 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"/968]}, 0x440)

[ 3313.751879] Code: 8b 34 c6 4a 8d 04 2e 48 3d ff ff ff 7e 0f 86 77 ff ff ff bf 35 ee 4b 00 31 c0 e8 63 33 ff ff 31 ff e8 ac 2f ff ff 0f 1f 40 00 <89> 3c b5 00 00 73 00 eb b6 31 ed 0f 1f 44 00 00 80 3d 9e 1a 66 00
[ 3313.770786] RSP: 002b:00007ffd53165230 EFLAGS: 00010246
[ 3313.776162] RAX: 0000000081709699 RBX: 000000002e0faf48 RCX: 0000001b2ed20000
[ 3313.783451] RDX: 0000000000000000 RSI: 0000000000001699 RDI: ffffffff81709699
[ 3313.790724] RBP: 0000000000000000 R08: 0000000081709699 R09: 000000008170969d
04:13:20 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0xc00000000000000}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

04:13:20 executing program 2:

[ 3313.798004] R10: 00007ffd531653d0 R11: 0000000000000246 R12: 000000000075bfa8
[ 3313.805280] R13: 0000000080000000 R14: 00007f09e87ff008 R15: 0000000000000000
[ 3313.812593]  ? trace_hardirqs_off_caller+0x19/0x220
04:13:20 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}, 0x1, 0x4000000}, 0x0)

[ 3313.872164] Task in /syz5 killed as a result of limit of /syz5
[ 3313.878444] memory: usage 307200kB, limit 307200kB, failcnt 8072
[ 3313.884737] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3313.891591] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
04:13:20 executing program 0:

04:13:20 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="00000000004000000000000000000000000000000000000000000000000000000000000002000000ffffffff020000001d00000001000000080676657468305f746f5f627269646765006e7230000000000000000000000000006772653000000000000000000000000076657468315f746f5f626f6e64000000aaaaaaaaaaaa000000000000aaaaaaaaaaaa00000000000000007000000070000000a80000006172707265706c790000000000000000000000000000000000000000000000001000000000000000aaaaaaaaaaaa0000feffffff0000000009000000000000000000697064647030000000000000000000006272696467655f736c6176655f3100000000000000000000000000000000000067726530000000000000000000000000ffffffffffff0000000000000000000000000000000000000000e0000000180100005001000072617465657374000000000000a3000000000000000000000000000000000000480000000000000064756d6d79300000000000000000000073797a5f74756e0000000ab941773a25a4462a99832900000000000000000000200000000000000000000000000000000000000000000000736e6174000000000000000000000000000000000000000000000000000000001000000000000000aaaaaaaaaaaa000000000000000000006d61726b0000000000000000000000000000000000000000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000002000000feffffff01000000110000000000000000006272696467655f736c6176655f3100000000000000000000000000749638e0006c6f00000000000000000000000000000080616d300000000000000000000000aaaaaaaaaa00000000000000aaaaaaaaaaaa0000000000000000a00000000801000040010000636f6e6e6c6162656c000000000000000000000000000000000000000000000008000000000000000000000000000000434c4153534946590000000000000000000000000000000000ff07000000000008000000000000000000000000000000736e617400000000000000000000000000000000000000000001000000000000100000000000000000000000000000000000000000000000736e6174000000000000000000000000000000000000000000000000000000001000000000001400aaaaaaaaaabb00"/968]}, 0x440)

[ 3313.923899] Memory cgroup stats for /syz5: cache:72KB rss:144KB rss_huge:0KB shmem:12KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:140KB inactive_file:0KB active_file:0KB unevictable:0KB
[ 3313.992990] Memory cgroup out of memory: Kill process 23628 (syz-executor.5) score 1103 or sacrifice child
[ 3314.013635] Killed process 23628 (syz-executor.5) total-vm:72580kB, anon-rss:108kB, file-rss:34816kB, shmem-rss:0kB
04:13:20 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0xe00000000000000}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

04:13:20 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"/968]}, 0x440)

04:13:21 executing program 0:

[ 3314.050876] oom_reaper: reaped process 23628 (syz-executor.5), now anon-rss:0kB, file-rss:33856kB, shmem-rss:0kB
04:13:21 executing program 5:
r0 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000240)='/dev/dlm-control\x00', 0x40000, 0x0)
ioctl$SNDRV_TIMER_IOCTL_GINFO(r0, 0xc0f85403, &(0x7f0000000280)={{0xffffffffffffffff, 0x0, 0x5830000000000, 0x3, 0x4}, 0xf177, 0xb431, 'id0\x00', 'timer1\x00', 0x0, 0x8b4, 0x81, 0x0, 0x445})
shmat(0x0, &(0x7f0000ffc000/0x4000)=nil, 0x3000)
mbind(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x2, &(0x7f0000000000)=0xffff, 0x2, 0x0)
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0x20b, &(0x7f0000000040)=[{&(0x7f0000000540)="2e000000220005000000c187185095cf0400b0eba0b4d65c0011000051894d5d1dac00"/46, 0x2e}], 0x1}, 0x0)
r2 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000080)='/dev/qat_adf_ctl\x00', 0x200, 0x0)
ioctl$DRM_IOCTL_ADD_CTX(0xffffffffffffffff, 0xc0086420, &(0x7f00000000c0)={<r3=>0x0})
ioctl$DRM_IOCTL_GET_SAREA_CTX(r2, 0xc010641d, &(0x7f0000000200)={r3, &(0x7f0000000100)=""/74})

04:13:21 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}, 0x1, 0x6000000}, 0x0)

04:13:21 executing program 2:

[ 3314.212203] syz-executor.5 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=0
04:13:21 executing program 2:

[ 3314.271080] syz-executor.5 cpuset=syz5 mems_allowed=0-1
[ 3314.301787] CPU: 1 PID: 23673 Comm: syz-executor.5 Not tainted 4.19.66 #40
[ 3314.308828] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3314.318190] Call Trace:
04:13:21 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"/968]}, 0x440)

[ 3314.320791]  dump_stack+0x172/0x1f0
[ 3314.324435]  dump_header+0x15e/0xa55
[ 3314.328163]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 3314.333291]  ? ___ratelimit+0x60/0x595
[ 3314.337199]  ? do_raw_spin_unlock+0x57/0x270
[ 3314.341638]  oom_kill_process.cold+0x10/0x6ef
[ 3314.346146]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 3314.346162]  ? task_will_free_mem+0x139/0x6e0
[ 3314.346190]  out_of_memory+0x936/0x12d0
[ 3314.356514]  ? lock_downgrade+0x810/0x810
[ 3314.356533]  ? oom_killer_disable+0x280/0x280
[ 3314.356547]  ? find_held_lock+0x35/0x130
[ 3314.356574]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 3314.356590]  ? memcg_event_wake+0x230/0x230
[ 3314.356610]  ? do_raw_spin_unlock+0x57/0x270
[ 3314.386904]  ? _raw_spin_unlock+0x2d/0x50
[ 3314.391086]  try_charge+0x1028/0x15b0
[ 3314.394902]  ? find_held_lock+0x35/0x130
[ 3314.398978]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 3314.403843]  ? kasan_check_read+0x11/0x20
[ 3314.408008]  ? get_mem_cgroup_from_mm+0x156/0x320
[ 3314.412867]  mem_cgroup_try_charge+0x259/0x6b0
[ 3314.417481]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 3314.422428]  wp_page_copy+0x430/0x16a0
[ 3314.426338]  ? pmd_pfn+0x1d0/0x1d0
[ 3314.429894]  ? kasan_check_read+0x11/0x20
[ 3314.434052]  ? do_raw_spin_unlock+0x57/0x270
[ 3314.438475]  do_wp_page+0x57d/0x10b0
[ 3314.442223]  ? finish_mkwrite_fault+0x4f0/0x4f0
[ 3314.446911]  ? kasan_check_write+0x14/0x20
[ 3314.451183]  ? do_raw_spin_lock+0xc8/0x240
[ 3314.455445]  __handle_mm_fault+0x2305/0x3f80
[ 3314.459887]  ? vmf_insert_mixed_mkwrite+0x90/0x90
[ 3314.464760]  ? count_memcg_event_mm+0x2b1/0x4d0
04:13:21 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}, 0x1, 0xa000000}, 0x0)

[ 3314.469447]  handle_mm_fault+0x1b5/0x690
[ 3314.473529]  __do_page_fault+0x62a/0xe90
[ 3314.477614]  ? vmalloc_fault+0x740/0x740
[ 3314.481684]  ? trace_hardirqs_off_caller+0x65/0x220
[ 3314.486725]  do_page_fault+0x71/0x57d
[ 3314.486745]  page_fault+0x1e/0x30
[ 3314.486760] RIP: 0010:__put_user_4+0x1c/0x30
[ 3314.486774] Code: 1f 00 c3 90 66 2e 0f 1f 84 00 00 00 00 00 65 48 8b 1c 25 40 ee 01 00 48 8b 9b 18 14 00 00 48 83 eb 03 48 39 d9 73 3c 0f 1f 00 <89> 01 31 c0 0f 1f 00 c3 66 90 66 2e 0f 1f 84 00 00 00 00 00 65 48
04:13:21 executing program 2:

04:13:21 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"/968]}, 0x440)

[ 3314.486781] RSP: 0000:ffff88802f9b7f30 EFLAGS: 00010293
[ 3314.486794] RAX: 0000000000003683 RBX: 00007fffffffeffd RCX: 00000000027d5c10
[ 3314.486803] RDX: dffffc0000000000 RSI: 0000000000000001 RDI: ffff8880920e0b68
[ 3314.486812] RBP: ffff88802f9b7f48 R08: ffff8880920e05c0 R09: 0000000000000000
[ 3314.486820] R10: ffffed1015d24732 R11: ffff8880ae923993 R12: 0000000000000000
[ 3314.486828] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 3314.486859]  ? schedule_tail+0xd8/0x130
[ 3314.486875]  ret_from_fork+0x8/0x30
[ 3314.559517] RIP: 0033:0x457dfa
04:13:21 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0xf00000000000000}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

04:13:21 executing program 0:

[ 3314.567115] Code: Bad RIP value.
[ 3314.567125] RSP: 002b:00007ffd53165460 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[ 3314.567141] RAX: 0000000000000000 RBX: 00007ffd53165460 RCX: 0000000000457dfa
[ 3314.567155] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011
[ 3314.595934] RBP: 00007ffd531654a0 R08: 0000000000000001 R09: 00000000027d5940
[ 3314.603296] R10: 00000000027d5c10 R11: 0000000000000246 R12: 0000000000000001
[ 3314.610575] R13: 0000000000000000 R14: 0000000000000000 R15: 00007ffd531654f0
04:13:21 executing program 2:

04:13:21 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x1000000000000000}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

[ 3314.743959] Task in /syz5 killed as a result of limit of /syz5
[ 3314.751318] memory: usage 307068kB, limit 307200kB, failcnt 8083
[ 3314.772095] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3314.788775] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3314.797786] Memory cgroup stats for /syz5: cache:72KB rss:12KB rss_huge:0KB shmem:12KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:92KB inactive_file:0KB active_file:0KB unevictable:0KB
[ 3314.847869] Memory cgroup out of memory: Kill process 7843 (syz-executor.5) score 117 or sacrifice child
[ 3314.865934] Killed process 23673 (syz-executor.5) total-vm:72448kB, anon-rss:108kB, file-rss:34816kB, shmem-rss:0kB
04:13:21 executing program 5:
r0 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000240)='/dev/dlm-control\x00', 0x40000, 0x0)
ioctl$SNDRV_TIMER_IOCTL_GINFO(r0, 0xc0f85403, &(0x7f0000000280)={{0xffffffffffffffff, 0x0, 0x5830000000000, 0x3, 0x4}, 0xf177, 0xb431, 'id0\x00', 'timer1\x00', 0x0, 0x8b4, 0x81, 0x0, 0x445})
shmat(0x0, &(0x7f0000ffc000/0x4000)=nil, 0x3000)
mbind(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x2, &(0x7f0000000000)=0xffff, 0x2, 0x0)
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0x20b, &(0x7f0000000040)=[{&(0x7f0000000540)="2e000000220005000000c187185095cf0400b0eba0b4d65c0012000051894d5d1dac00"/46, 0x2e}], 0x1}, 0x0)
r2 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000080)='/dev/qat_adf_ctl\x00', 0x200, 0x0)
ioctl$DRM_IOCTL_ADD_CTX(0xffffffffffffffff, 0xc0086420, &(0x7f00000000c0)={<r3=>0x0})
ioctl$DRM_IOCTL_GET_SAREA_CTX(r2, 0xc010641d, &(0x7f0000000200)={r3, &(0x7f0000000100)=""/74})

04:13:21 executing program 0:

04:13:21 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}, 0x1, 0xc000000}, 0x0)

04:13:21 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="00000000004000000000000000000000000000000000000000000000000000000000000000ff0000ffffffff020000001d00000001000000080676657468305f746f5f627269646765006e7230000000000000000000000000006772653000000000000000000000000076657468315f746f5f626f6e64000000aaaaaaaaaaaa000000000000aaaaaaaaaaaa00000000000000007000000070000000a80000006172707265706c790000000000000000000000000000000000000000000000001000000000000000aaaaaaaaaaaa0000feffffff0000000009000000000000000000697064647030000000000000000000006272696467655f736c6176655f3100000000000000000000000000000000000067726530000000000000000000000000ffffffffffff0000000000000000000000000000000000000000e0000000180100005001000072617465657374000000000000a3000000000000000000000000000000000000480000000000000064756d6d79300000000000000000000073797a5f74756e0000000ab941773a25a4462a99832900000000000000000000200000000000000000000000000000000000000000000000736e6174000000000000000000000000000000000000000000000000000000001000000000000000aaaaaaaaaaaa000000000000000000006d61726b0000000000000000000000000000000000000000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000002000000feffffff01000000110000000000000000006272696467655f736c6176655f3100000000000000000000000000749638e0006c6f00000000000000000000000000000080616d300000000000000000000000aaaaaaaaaa00000000000000aaaaaaaaaaaa0000000000000000a00000000801000040010000636f6e6e6c6162656c000000000000000000000000000000000000000000000008000000000000000000000000000000434c4153534946590000000000000000000000000000000000ff07000000000008000000000000000000000000000000736e617400000000000000000000000000000000000000000001000000000000100000000000000000000000000000000000000000000000736e6174000000000000000000000000000000000000000000000000000000001000000000001400aaaaaaaaaabb00"/968]}, 0x440)

04:13:21 executing program 2:

[ 3314.893299] oom_reaper: reaped process 23673 (syz-executor.5), now anon-rss:0kB, file-rss:34816kB, shmem-rss:0kB
04:13:21 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x3f00000000000000}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

04:13:21 executing program 0:

04:13:21 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"/968]}, 0x440)

04:13:22 executing program 2:

04:13:22 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}, 0x1, 0xe000000}, 0x0)

04:13:22 executing program 0:

[ 3315.206060] syz-executor.5 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
04:13:22 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"/968]}, 0x440)

[ 3315.249719] syz-executor.5 cpuset=syz5 mems_allowed=0-1
[ 3315.269934] CPU: 0 PID: 23707 Comm: syz-executor.5 Not tainted 4.19.66 #40
[ 3315.276971] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3315.286326] Call Trace:
[ 3315.286350]  dump_stack+0x172/0x1f0
[ 3315.286372]  dump_header+0x15e/0xa55
[ 3315.286389]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 3315.286405]  ? ___ratelimit+0x60/0x595
[ 3315.286424]  ? do_raw_spin_unlock+0x57/0x270
[ 3315.309728]  oom_kill_process.cold+0x10/0x6ef
[ 3315.314250]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 3315.319813]  ? task_will_free_mem+0x139/0x6e0
[ 3315.324327]  out_of_memory+0x936/0x12d0
[ 3315.328322]  ? lock_downgrade+0x810/0x810
[ 3315.332493]  ? oom_killer_disable+0x280/0x280
[ 3315.337000]  ? find_held_lock+0x35/0x130
[ 3315.341535]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 3315.346401]  ? memcg_event_wake+0x230/0x230
[ 3315.350744]  ? do_raw_spin_unlock+0x57/0x270
[ 3315.355167]  ? _raw_spin_unlock+0x2d/0x50
[ 3315.359365]  try_charge+0x1028/0x15b0
[ 3315.363178]  ? find_held_lock+0x35/0x130
[ 3315.367258]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 3315.372124]  ? kasan_check_read+0x11/0x20
[ 3315.376287]  ? get_mem_cgroup_from_mm+0x156/0x320
[ 3315.381147]  mem_cgroup_try_charge+0x259/0x6b0
[ 3315.385752]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 3315.390721]  wp_page_copy+0x430/0x16a0
[ 3315.394658]  ? pmd_pfn+0x1d0/0x1d0
[ 3315.398225]  ? kasan_check_read+0x11/0x20
[ 3315.402388]  ? do_raw_spin_unlock+0x57/0x270
[ 3315.406815]  do_wp_page+0x57d/0x10b0
[ 3315.410542]  ? finish_mkwrite_fault+0x4f0/0x4f0
[ 3315.415217]  ? kasan_check_write+0x14/0x20
[ 3315.415232]  ? do_raw_spin_lock+0xc8/0x240
[ 3315.415253]  __handle_mm_fault+0x2305/0x3f80
[ 3315.415273]  ? vmf_insert_mixed_mkwrite+0x90/0x90
[ 3315.432994]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 3315.437691]  handle_mm_fault+0x1b5/0x690
[ 3315.441871]  __do_page_fault+0x62a/0xe90
[ 3315.445950]  ? vmalloc_fault+0x740/0x740
[ 3315.450033]  ? trace_hardirqs_off_caller+0x65/0x220
[ 3315.455060]  ? trace_hardirqs_on_caller+0x6a/0x220
[ 3315.460009]  ? page_fault+0x8/0x30
[ 3315.463570]  do_page_fault+0x71/0x57d
[ 3315.467385]  ? page_fault+0x8/0x30
[ 3315.470941]  page_fault+0x1e/0x30
[ 3315.474413] RIP: 0033:0x40c1d8
[ 3315.477621] Code: 00 00 49 8d be 88 00 00 00 48 89 ea 48 89 de 0f 85 dd 00 00 00 e8 38 2c 00 00 8b 05 32 be 32 00 48 8b 15 c3 42 66 00 83 c0 01 <89> 05 22 be 32 00 89 02 48 83 c4 08 5b 5d 41 5c 41 5d 41 5e 41 5f
[ 3315.496535] RSP: 002b:00007ffd53165290 EFLAGS: 00010202
[ 3315.501892] RAX: 0000000000000001 RBX: 0000001b2dd20014 RCX: 0000001b2ed20000
[ 3315.509155] RDX: 0000001b2dd20000 RSI: 0000000000000f10 RDI: fffffffff1ed4f10
[ 3315.516422] RBP: 0000001b2dd20018 R08: 00000000f1ed4f10 R09: 00000000f1ed4f14
[ 3315.523733] R10: 00007ffd531653d0 R11: 0000000000000246 R12: 0000001b2dd2001c
[ 3315.531003] R13: 00000000003295db R14: 000000000075bf20 R15: 000000000075bf2c
[ 3315.541730] Task in /syz5 killed as a result of limit of /syz5
[ 3315.547927] memory: usage 307200kB, limit 307200kB, failcnt 8112
[ 3315.547937] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3315.547946] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3315.547951] Memory cgroup stats for /syz5: cache:72KB rss:12KB rss_huge:0KB shmem:12KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:172KB inactive_file:0KB active_file:0KB unevictable:0KB
[ 3315.587840] Memory cgroup out of memory: Kill process 23707 (syz-executor.5) score 1103 or sacrifice child
04:13:22 executing program 5:
r0 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000240)='/dev/dlm-control\x00', 0x40000, 0x0)
ioctl$SNDRV_TIMER_IOCTL_GINFO(r0, 0xc0f85403, &(0x7f0000000280)={{0xffffffffffffffff, 0x0, 0x5830000000000, 0x3, 0x4}, 0xf177, 0xb431, 'id0\x00', 'timer1\x00', 0x0, 0x8b4, 0x81, 0x0, 0x445})
shmat(0x0, &(0x7f0000ffc000/0x4000)=nil, 0x3000)
mbind(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x2, &(0x7f0000000000)=0xffff, 0x2, 0x0)
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0x20b, &(0x7f0000000040)=[{&(0x7f0000000540)="2e000000220005000000c187185095cf0400b0eba0b4d65c0013000051894d5d1dac00"/46, 0x2e}], 0x1}, 0x0)
r2 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000080)='/dev/qat_adf_ctl\x00', 0x200, 0x0)
ioctl$DRM_IOCTL_ADD_CTX(0xffffffffffffffff, 0xc0086420, &(0x7f00000000c0)={<r3=>0x0})
ioctl$DRM_IOCTL_GET_SAREA_CTX(r2, 0xc010641d, &(0x7f0000000200)={r3, &(0x7f0000000100)=""/74})

04:13:22 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x4000000000000000}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

04:13:22 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"/968]}, 0x440)

04:13:22 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}, 0x1, 0xf000000}, 0x0)

04:13:22 executing program 0:

04:13:22 executing program 2:

[ 3315.597951] Killed process 23707 (syz-executor.5) total-vm:72580kB, anon-rss:108kB, file-rss:34816kB, shmem-rss:0kB
[ 3315.609817] oom_reaper: reaped process 23707 (syz-executor.5), now anon-rss:0kB, file-rss:33856kB, shmem-rss:0kB
04:13:22 executing program 0:

04:13:22 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x6000000000000000}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

04:13:22 executing program 2:

04:13:22 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="000000000040000000000000000000000000000000000000000000000000000000000000feffff07ffffffff020000001d00000001000000080676657468305f746f5f627269646765006e7230000000000000000000000000006772653000000000000000000000000076657468315f746f5f626f6e64000000aaaaaaaaaaaa000000000000aaaaaaaaaaaa00000000000000007000000070000000a80000006172707265706c790000000000000000000000000000000000000000000000001000000000000000aaaaaaaaaaaa0000feffffff0000000009000000000000000000697064647030000000000000000000006272696467655f736c6176655f3100000000000000000000000000000000000067726530000000000000000000000000ffffffffffff0000000000000000000000000000000000000000e0000000180100005001000072617465657374000000000000a3000000000000000000000000000000000000480000000000000064756d6d79300000000000000000000073797a5f74756e0000000ab941773a25a4462a99832900000000000000000000200000000000000000000000000000000000000000000000736e6174000000000000000000000000000000000000000000000000000000001000000000000000aaaaaaaaaaaa000000000000000000006d61726b0000000000000000000000000000000000000000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000002000000feffffff01000000110000000000000000006272696467655f736c6176655f3100000000000000000000000000749638e0006c6f00000000000000000000000000000080616d300000000000000000000000aaaaaaaaaa00000000000000aaaaaaaaaaaa0000000000000000a00000000801000040010000636f6e6e6c6162656c000000000000000000000000000000000000000000000008000000000000000000000000000000434c4153534946590000000000000000000000000000000000ff07000000000008000000000000000000000000000000736e617400000000000000000000000000000000000000000001000000000000100000000000000000000000000000000000000000000000736e6174000000000000000000000000000000000000000000000000000000001000000000001400aaaaaaaaaabb00"/968]}, 0x440)

04:13:22 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}, 0x1, 0x10000000}, 0x0)

[ 3315.838983] syz-executor.5 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
04:13:22 executing program 0:

[ 3315.915095] syz-executor.5 cpuset=syz5 mems_allowed=0-1
[ 3315.942552] CPU: 1 PID: 23737 Comm: syz-executor.5 Not tainted 4.19.66 #40
[ 3315.949879] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3315.959456] Call Trace:
[ 3315.962079]  dump_stack+0x172/0x1f0
[ 3315.965755]  dump_header+0x15e/0xa55
[ 3315.969686]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 3315.974925]  ? ___ratelimit+0x60/0x595
[ 3315.978929]  ? do_raw_spin_unlock+0x57/0x270
[ 3315.983375]  oom_kill_process.cold+0x10/0x6ef
[ 3315.988011]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 3315.994017]  ? task_will_free_mem+0x139/0x6e0
[ 3315.998789]  out_of_memory+0x936/0x12d0
[ 3316.002796]  ? lock_downgrade+0x810/0x810
[ 3316.006979]  ? oom_killer_disable+0x280/0x280
[ 3316.011640]  ? find_held_lock+0x35/0x130
[ 3316.015832]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 3316.020791]  ? memcg_event_wake+0x230/0x230
[ 3316.025245]  ? do_raw_spin_unlock+0x57/0x270
[ 3316.030034]  ? _raw_spin_unlock+0x2d/0x50
[ 3316.034316]  try_charge+0x1028/0x15b0
[ 3316.038153]  ? find_held_lock+0x35/0x130
[ 3316.042440]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 3316.047341]  ? kasan_check_read+0x11/0x20
[ 3316.051593]  ? get_mem_cgroup_from_mm+0x156/0x320
[ 3316.056765]  mem_cgroup_try_charge+0x259/0x6b0
[ 3316.061574]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 3316.066611]  wp_page_copy+0x430/0x16a0
[ 3316.070628]  ? pmd_pfn+0x1d0/0x1d0
[ 3316.074291]  ? kasan_check_read+0x11/0x20
[ 3316.078599]  ? do_raw_spin_unlock+0x57/0x270
[ 3316.083321]  do_wp_page+0x57d/0x10b0
[ 3316.083340]  ? finish_mkwrite_fault+0x4f0/0x4f0
[ 3316.083355]  ? kasan_check_write+0x14/0x20
[ 3316.083368]  ? do_raw_spin_lock+0xc8/0x240
[ 3316.083388]  __handle_mm_fault+0x2305/0x3f80
[ 3316.083408]  ? vmf_insert_mixed_mkwrite+0x90/0x90
[ 3316.083439]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 3316.092175]  handle_mm_fault+0x1b5/0x690
[ 3316.119398]  __do_page_fault+0x62a/0xe90
[ 3316.123501]  ? vmalloc_fault+0x740/0x740
[ 3316.127843]  ? trace_hardirqs_off_caller+0x65/0x220
[ 3316.133577]  ? trace_hardirqs_on_caller+0x6a/0x220
[ 3316.138989]  ? page_fault+0x8/0x30
[ 3316.142726]  do_page_fault+0x71/0x57d
[ 3316.146841]  ? page_fault+0x8/0x30
[ 3316.150555]  page_fault+0x1e/0x30
[ 3316.154019] RIP: 0033:0x40c1d8
[ 3316.157321] Code: 00 00 49 8d be 88 00 00 00 48 89 ea 48 89 de 0f 85 dd 00 00 00 e8 38 2c 00 00 8b 05 32 be 32 00 48 8b 15 c3 42 66 00 83 c0 01 <89> 05 22 be 32 00 89 02 48 83 c4 08 5b 5d 41 5c 41 5d 41 5e 41 5f
[ 3316.177342] RSP: 002b:00007ffd53165290 EFLAGS: 00010202
[ 3316.183146] RAX: 0000000000000001 RBX: 0000001b2dd20014 RCX: 0000001b2ed20000
[ 3316.190836] RDX: 0000001b2dd20000 RSI: 0000000000000f10 RDI: fffffffff1ed4f10
[ 3316.198886] RBP: 0000001b2dd20018 R08: 00000000f1ed4f10 R09: 00000000f1ed4f14
[ 3316.206500] R10: 00007ffd531653d0 R11: 0000000000000246 R12: 0000001b2dd2001c
[ 3316.214022] R13: 0000000000329829 R14: 000000000075bf20 R15: 000000000075bf2c
[ 3316.236342] Task in /syz5 killed as a result of limit of /syz5
[ 3316.243895] memory: usage 307200kB, limit 307200kB, failcnt 8142
[ 3316.250165] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3316.258138] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3316.265532] Memory cgroup stats for /syz5: cache:72KB rss:144KB rss_huge:0KB shmem:12KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:172KB inactive_file:0KB active_file:0KB unevictable:0KB
[ 3316.286642] Memory cgroup out of memory: Kill process 23737 (syz-executor.5) score 1103 or sacrifice child
[ 3316.296862] Killed process 23737 (syz-executor.5) total-vm:72580kB, anon-rss:108kB, file-rss:34816kB, shmem-rss:0kB
04:13:23 executing program 5:
r0 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000240)='/dev/dlm-control\x00', 0x40000, 0x0)
ioctl$SNDRV_TIMER_IOCTL_GINFO(r0, 0xc0f85403, &(0x7f0000000280)={{0xffffffffffffffff, 0x0, 0x5830000000000, 0x3, 0x4}, 0xf177, 0xb431, 'id0\x00', 'timer1\x00', 0x0, 0x8b4, 0x81, 0x0, 0x445})
shmat(0x0, &(0x7f0000ffc000/0x4000)=nil, 0x3000)
mbind(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x2, &(0x7f0000000000)=0xffff, 0x2, 0x0)
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0x20b, &(0x7f0000000040)=[{&(0x7f0000000540)="2e000000220005000000c187185095cf0400b0eba0b4d65c0014000051894d5d1dac00"/46, 0x2e}], 0x1}, 0x0)
r2 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000080)='/dev/qat_adf_ctl\x00', 0x200, 0x0)
ioctl$DRM_IOCTL_ADD_CTX(0xffffffffffffffff, 0xc0086420, &(0x7f00000000c0)={<r3=>0x0})
ioctl$DRM_IOCTL_GET_SAREA_CTX(r2, 0xc010641d, &(0x7f0000000200)={r3, &(0x7f0000000100)=""/74})

04:13:23 executing program 0:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0, 0x229}}], 0x0, 0x0, 0x0)
ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000200)='net/if_inet6\x00')
preadv(r0, &(0x7f00000017c0), 0x333, 0x0)

04:13:23 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x6558000000000000}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

04:13:23 executing program 2:
r0 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x80000)
setsockopt(r0, 0xffff, 0x80000001, &(0x7f0000000000)="0f201d627dbe4ad3f473c524ae8f50c6780afdca64b52d5207c8ab493d9664c9b803ee01edbf2de71ab02e9c89eb4a20a396306f436195356d3d7f38100e510c069271e6d55a309518630374d1579e749ff2e16351e6d9594fa00e3ec8fb9c8ed0d030e502814ffe6c8910998e459eb6388b9f4c3a7a48ba6edbd645310f7a8945ddd43e8c503f9f57609f4dd4b389d83f9c5324acfc827f6059", 0x9a)
setsockopt$sock_timeval(r0, 0x1, 0x14, &(0x7f00000000c0)={0x77359400}, 0x10)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001380)={'syzkaller0\x00', <r1=>0x0})
getpeername(r0, &(0x7f0000004ec0)=@hci={0x1f, <r2=>0x0}, &(0x7f0000004f40)=0x80)
sendmmsg$sock(r0, &(0x7f0000006940)=[{{&(0x7f0000000100)=@pppol2tpin6={0x18, 0x1, {0x0, r0, 0x3, 0x4, 0x1, 0x3, {0xa, 0x4e22, 0x2, @ipv4={[], [], @loopback}, 0x9}}}, 0x80, &(0x7f0000000240)=[{&(0x7f0000000180)="9dc7eac476f7ae3429f37f9f373d79de97245680bd2a18e6ce7f510ba514ba73ffe9186ad97d434244f52172aa0faca0b749ba810ccdd3fccc6a69d657dfc8c90046800780cc20164a9ba60ed3b0ecd1197d84b88f549546d2801ec064f060308ec486190344d7b71526ab3d74c7895ab5380a448dbcb7fc406b0b105290e7d290bd22054e7a11cfd044c9f271effcf72ad786f1bf1c43dc0d8e58dde7", 0x9d}], 0x1}}, {{&(0x7f00000013c0)=@hci={0x1f, r1, 0x1}, 0x80, &(0x7f0000001740)=[{&(0x7f0000001440)="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", 0xfd}, {&(0x7f0000001540)="639ff7c46e4cce42c7a14aeaff5eac71280228133163896ecf223ae6b87f5cd509125d0d403e1ceab41bae3e3f2d32d654da337fc517e8388bdafbd9cff7e20f7ec225fcdc9ccb0e87ed8811252d820f322b635dea68ad34cd5c8379b5fe8538b224f6d3f77736a7bbc8a6646650a3b4165b1b942ace1ba8fa9692c7be9c26b678127a6aa982aabe284f1039923217fa73d521a2eeec805cdccb9ff6c99856f7128ba51efacd705bbde47536ddd8b642572f", 0xb2}, {&(0x7f0000001600)="e91ca4a97e5d598b1fea58b47a5b7fd31a3f0c54584aca3b6aac60a9debc928fd8a6fcb9b6d56b054f331bb94235820446fdf535babb129d2b50a4c131d5d8f38d762fbb39c39e8ef9047fe626d75a33", 0x50}, {&(0x7f0000001680)="f785da4677535b93261c3c", 0xb}, {&(0x7f00000016c0)="49db1e9984071bba981337de96445f953682e4feef832c1863d3d5c4759929b37f2c78ec313f9d78f6c200093a1aa8fd7e28ea43c2cf46885eea7a4393966041c2aeba3245eb5bf42bf6898f89332095ad8d0017e99a2528fe406e2fadbff30d6a87", 0x62}], 0x5, &(0x7f00000017c0)=[@timestamping={{0x14}}, @timestamping={{0x14, 0x1, 0x25, 0x5}}, @txtime={{0x18, 0x1, 0x3d, 0x1}}, @timestamping={{0x14, 0x1, 0x25, 0x9}}, @txtime={{0x18, 0x1, 0x3d, 0x9}}, @txtime={{0x18, 0x1, 0x3d, 0x6000000}}], 0x90}}, {{&(0x7f0000001880)=@in6={0xa, 0x4e21, 0x438f755a, @dev={0xfe, 0x80, [], 0x1f}, 0x20}, 0x80, &(0x7f0000001b40)=[{&(0x7f0000001900)="85e695bef4cc1d860148e44350a3b5c45ad7601d3843732dcf4aace749d6cbe58d71e8833d90190b3fe20d1c06f7e28edd3213aad2ad53b8e20ea7729bfc1bd02a87e274bf65af1750b7d3a4ecca6858adab05eeb291f18ee345d86bb217758d8f11bc250222e66f1ab42e4e6d", 0x6d}, {&(0x7f0000001980)="d7b1aa55df00c2c0d7c2ed11e0c05797595e326796bdc59531d26008c27ed55033d1d029fa862e7dd41a5179", 0x2c}, {&(0x7f00000019c0)="8a710701e22e848a50051c4549086553f9b2a3bb97a9037cb03bfda21982fd0853cb3ceefd10f81fa21d0c344d66277d0cc75ec4834a1631e4a72ad4f97f3c6b4ff7578a83ae0aec7287467fc1bc391fa5c01c52a159e933fe1ca92510214ba2b6feff234baf9a54dc844cf205dd4cf875891a1163da9dc7b318c8068169061bc83ec580e3c8f66cc23d09dcdeff434aa0072f5fd5049a6ce5ab35aba572fd0a6d33fb2de01a2e6a382e19ec8029dd544ad9d8d7cc90630e2e74aa43f28e457fe3b3", 0xc2}, {&(0x7f0000001ac0)="2ebee649d9ad81431813c1534a21a094cbfedc9c4586b97d8188777d6159b5f1", 0x20}, {&(0x7f0000001b00)="7d7be96019628482896c3152bfddc678fe59d0615a0c4165fb278d047d9f057eb4581a92a5d51661dfc64e0a642c09a223d50c38ff", 0x35}], 0x5}}, {{&(0x7f0000001bc0)=@isdn={0x22, 0x20, 0x80000000, 0x7, 0x8}, 0x80, &(0x7f0000004e40)=[{&(0x7f0000001c40)="5da9ad4428288647e106c101720175a777705d5869b7aee28db7cc455cc51fb773a273ecb3c3ae2ff33ce74ee6ea4ae8b6cf4d0f62bad163bef330b6370a22d2a381432e0fdfd674f47bef09e44a17b91a65346ef6d9767626a77d484df6a11cd14307cc79a009083fdb143ca6339d55bdd0bf9504063798077521792f0b53c4e3538362424ad9316e96cc99aeea0f7659ee94964409d9ba134ab764a2ebb5938694ca1ae3f84ec433a5de24e5091b7e52a2c075631654b07404889fa78d188b225cfb167d55ac104fa612248dddc9b62c754d25759a12a72d7cb70f909461f9308645bc4aa4f1f082740c861279bdd7035ba5bd1c4774e33b4ce25090ecc03d8dd00a7bd4ec2c2bfbccfc5f42d3a2de34656c2b1a795b58170b014830efd590f8f1f2981af329b6e46fe650d0adca3cfdbcaad940ac7552ea8be6ebcb9725488ad0514b17b5860e51bc0429d5da282e06f1e86aab1ba6353978c6063ac9f1428e14e470d945d0cd00aa558835bf7ee89b92ff41eb1e61265ae135fe6fa54f477bcef20a38ba0537bb5225bbce0c8fa0b7e830cf5ab7d4f442d17069606203d87dda579ab20c489e3bf713aed16429bf7065940e6584ff7e2408a97991cbb5502af715bd7fd14a50dd541eb609e0bb3278a385d96bc72e85e81c377633bb5173fa1f0392a4584d3f264daa75f5d96e0f7b749f597e9eee1391173f0b62aebe439080dd2e359aa9ce982ca0b7860d67a99da6328efe5d595e7ebbaac2d7412c73408f72ad9016a0e85d95aa07c6e447f0239dc608faf9ba77c1499bf0f3f382d774fc9ec677723d6c553a5912d34536e472454da61ee37eeb74f339419ae1af85d8b33611923262883cfa793807b07069b2eb6c4e2888285d85ccefb24d5577f18b0f7fb3049a4d5563422f1ce9ba8d0616c9dd54c5091ec32aec095dc6f0de3321fa1740af312cc97032da55b4781c1d3db1494e7328826e46b83f60a47381fb0277310daf6f8c3f5a394450ac2e207321e98d1ac4b76a52c6fece4dc15da49f85fc05c82444f89c1cb4b5e5614332aa618eb6489b7d12618addb24c61ab6cf4a4468f8351cc6322b86f3c25157e2c10e650f540458a4a1dd220cc48449f998a0699bdafe4ab6ea90491df38a0a1f858e88db4e747a3bdcd6514a43a9c28de7877685a11acebea3debced0ae69b1ca85321ababb0eeb5578b9378be9fe9383c4b57cc021934a0f7ab771527c143cc0e4eb44df508aee8a7a943d43aa28dd40695aa5848641513e0ccd6b1cbf60189174ad36e9bf6079ec37e0492efbb30f0318d76814f5094b18707f2e15df38ee1ee4250a65c25b566665413639151fa6baaa322222229344f683189c407420225b1c8d02b81c2c1095e7208f37b4f5fc769b4113f4c5d5c9ee25a4ecba9c5a51fd5c88b6cc6080f8393b6e8d1e1648641bb085b9296854e31c4d589d8c83b18b6add593855f407514b872b62e8cdf0cace5608fc0e751290da2872f0d6d52800d1122d8b722877123057c53b0813f4f114f278ec20583f95e3e31b0f8a9a140a3759ed17c1d8af9bfe7b542bd9335c28f55b060f48ef55b7b9eda55aef12f7653d216be70bbe7feda98d35623429bd41b000735df170662bd6e70f3e45098e70ce630721ad7e80fcc80056695c0fb3e2ef05714cfc60319de64172395b0141eaf3755d240f32d988368c63b970b0c1e774f7985b1bf8f5bedfa260bb6f40c5900f6c969e704aaabba17b4f084f8ec99713e72c0cb6bdb67965f82a50ab206f83038c641f67b9cff38c1912ae49818d38841f569ff67b91acc1a96d49e3d38e64825861ce079d91d752630697fd31f632866d548a4604639490a5c070b295fc113def409617d32d7ce2a127413e9832cd9f570e3254966d6faf4d0c7a216956269c76802e34bbd652f66dc1cd5cec4581ffdca07c9a13a512beb7eb9051eeb18939dbacfc508e79a0d58b0e71a233b290ef43ba2897ef69ed96ad1e149ad4cbb699988e2745391424f83bfcb479e1326de945cc61325a696b39b4ce2617c6c17d68221f2b070b4c87159f79fe225a95c4aea8f21e46a27de802edfdb53585ed82cb603b78aca5e6803873e0a365971d06f96a121a25b29be9c86fe76cc8afa75b0cc11d16cc1637a3b14542584b5e30729cdaf479147004e7630c48288d816fab1daa29bc6251d2f71202dfa65f0279490eb47a83f19be1875a6a00470c1d53514f14700da67215f97cb134f825a89172ad7e02345bec9c1ba2878de2dd98e93029270dda92d58fa6aa1dda2a916ace71d6212faa97899ff3a04f0b4e510d77b05e5914f570a264f09ae91ad35e42b87fe042d8ba71621e54c9487ce447cb3384a31dcf2c510e029a455be926288ec6dfa81285ae8084cef708144b864e8dec69c7d65d8e39e2f668e68ddfa85973eeb6d96e31681b5cc30575bbf968101abfd3e51990feddc58f2776375031dff3c69d823ebd2de812d0bd6748b125adf408ec69018bc098a6ae64ea1ed8437c7b9296607d0d1a76feb31de4247f9e5a8c4923e8f9ff03abedf93b74c7c6b8d84e69e3a2b50544b45710b19a72be4ee7249288b5a453ebce9c568303aa7250d6d6b567397c2126ca5deb7bf1a701e019942c94ff119e69ed2bdf2935b435d6636ad16e4f80c603562482514f1867bdfe1fce50ca38f037472860f157a6e7097f4740fe1db3e35afad336f4955b5acc685a53f66f20d8ef8d9edf00f5f089ba7d7a98d3dbb14f24c3be7eb1e751d60b907eb562552941b96a56d6c565c9e2a872930eeb456752f7a1def5b420d11d30960bfd2892856b82f695fc9891832c9c9cc3abaf179f4228ee47b325d4954cea06aaa9603611660367fc36c9f864fc2b07df62f1313662be1a0211e718b845ef0a3df9fbb980a91425c385c9bd5e22a1f8f051f7ccdb1845a629d5fb29727dfb3dc5d03443de2db1ea9ad749247a1623e6052b8cf3c8bf789d6a851ff2ea173a007d31c1295692ed3c01009dc134004d3f4907c86ff48ab2daf21343367dddc358d216ee18793d2855291c94532fbfc6c07768dd0545bce2d228b0bb5b57edf327d29990128ec08acc0fccb3a5ca537f75facd0075715434dc2aba818783d3675367aac2fae88ce2f9536529cfc27c67755ef08b8485d3d843094a7614701733b6ea436c455a5cc29a06cf8f9e3aa57c724f8bdd6a6a40dce514e9c5e10d687467d0474ecce6cc9336f0e1f881bebc7478cc8a5172bbbfe68735f43fde44ea4ab8f34929c88fc49ca0116bf775f8609f63f9f3d26aebe8c471e8c8fa84b7c732bcb8c336105ddaf50a35504b3279a45dee04635373010b16c4ba573f91d6a0c318eff1958d7e88581e4bce6f3dca2e93b69214923f377009ebf01fe5c140d25ada886df0c16ef7369fd32e870bfc36b511c2b6b9a41ebef18065dab607127ea7ea52001e8258308a7e29acb366cea7c4cadc3ad20d34b58be8b88abe5aa7aa6d14a18ecc1213db425fbc53ef36bc5a36d124d6fa43c1ece3077ca4b54136807a8743afbbc475bd1a01a4fba11dfb79977af6e8611f29b55696d0fa64eaf8070ed6c646fafd425ace7bc415dfb66ac8e5ee00a322ff1c0b9052b5a2c94957c94cf32d2fe07bb3752a3d5efb5908c0ec5ddec7df8f901a86667b96c58bc99329f7aa60218657d56ddf5a6e815a7db15364f56767dad65385c83cbd5b25e17e63aa0797649964da047212fb8450a38d01a7a37ae023cbef3da35a2f32e72883ba38d1af8ecd13e84c96cc71b9dc44e4e2ca4b2b7f3accd9b39d6075cf57f988f7747be2f7fa97d2cfa88c57aeff311d3664ac16dff3e641d1cdf404489e9e7d09a841fc9e64299f21f28de8564cf25af5e9b61c69fdc19dc5b6357200896d137fb309e813ef7380ea410c2310f8e401fc41f1ef20b50080578f43b16057f80befa0691487fbf0e0b381666384a02e3e787c08a4c6bb6c527736f836469c628ad11c4d99c29e0b8cff05e3b7de718cc5bf3faae3b9b4664e8cb93487d50fca20f4a247213424e9eddd206c4a2564c66f0f9c47353e8cf197b253f443346268e525bb343db534c1a3e6bcb91eb6dce49df3db7792e9d65424c08ca8073a62948dd8ba9beda3a8b2908cddb4c627a8df89221e32c581f8b8fbadbd7f956b3e940c169e820f629097a6cfbdd3b1c101d09de5e678de366afca3e89463e39640d5d1e14e549dab6c726f99ef18c3748669cd11bf3b558fdd9b99a90de2acce188cc5b5cf71240d2b6cb8d3658963fa0b85a4c99175c0a1b70d32716aa7e7d9180a63a8e794f20ea30d310bd6b9f064c625a0cfba7da4e6942fa56c9c3af122de48d8ab8c1d9771d9ce4795d6f34b267d59bcc0a3412393065ff86f0681876d20a70d3f46825a9e7d2923698d5d2f28f20b44b76f993083544d9e4474f167ae105ccd7de6628d303bce4b652e180923ebcd31cb14bbd760b550cd3339715be8ff34aee9e609a672648aca4efdeaa360432381eab6817b7c34c339f607737a52f03b0981cd7f534bd9ce26db072c00efe9efe7700c05eae939e31d6f0c7b2fd6a2803448ed7edc779b450116fb8fe7343aced77984c935c1765caf12f41e4baa9d092406e26fc922a2c6e830757e9b8912fc6e8f00fbf05ed9051f5634da58bbf3937d1945746cbb3989dddafec256e60b3540c855fd73e5f5e4defe00da028e03432f4810b61b080f345197f985903d15393dc162a88795327694fdcb49f3d59491d96fca8b54120786493a7b2992805221a34e3136a30f9ffe81b3ad3ebd8621fefae42183202b74340120aad77608dd4fd449868a29489c8e46825d645ea585759e4d18ad7e756b4150d217f14fcc75c5f4ed94c9c25ad9b316838285c0b32a64172332d8b6a06622a15a635199de185f4aa5c802bddf3c708079cf4b606358cf15a3a449bb1eabdccada282a320cbb3f7410bf8068b3ccc0058dbf02c94ac9c7a69215726cde7306e88dc6bb46f48a262c4238a7f0c2db9e74a5af0bead91d1e130d120f5e81f680d4dd2ae59c5a8b9179649223aad7b7dd72723ee15896bcdd178f1cf3a8e058647ece17c34e88f8d054ef836646f9a4a9dd5f7aa653a9c9daef0d3386b5b201eb4afa872f44fe5b395b6be58a2d0c2039f8b4e16203aa8ab5ca8be22344471dd00a576c9da383acc2cdb462c66ab55b19a19e5b9bfa5550b6fa61671dfc0217e4241d75a98bdcff4236418e3b4184d564b156539f5e707382053a70ee684084fc1ca3e0b2adb3be6e1c86bd625b0aed0466154cca00aa3be5dd30085633f9ae88d6ae91d86e4b30899a295e7caa706f7810034b8312324069295a1965f3cd3d970f037863630d6d4ab25c1390eea1a1adfdf001410d372f94a8f9c28bf2ca9001797cd2b0fbd4c9058f2012fcf9976513efe05959bc3edbbfd967e36f9b461cb8f46e012516936494569c5851b41f3d087673ed636eec921cd6365e4d89e8c08cd952de152f66a5386af00823e48fb720427ed5e0ea3892d952a0e051456796fe14f67638490ee0cb7d1f8855093a2cfcce0a326e2ca7c7db0ade6b7dcf7ae9acb19a23ecd90f8e8e775d09eeb32e78ace1ef66697f1f6dd9b200cde34e480b1e9e2d80e61fb09117d0377014fe073f06afcae29e38cfb1b9533e09dd8dcf3fef2511edc2d2ddf9102e63bb319fcf87f40a3413f07ef4c0cfd7b3d6ddf216b2bf4b27f59b4f88f73457bd24dcc0cc80541a928938168e71856ee434c93054c3420760419b202596793971fc7f6b2f3a107b", 0x1000}, {&(0x7f0000002c40)="1353a3dea8346ace1aa5742fed170b8b65777e4fcf98e74b2268062245b470cb70df5b0b266c0ec52f282525953d2f3357f9", 0x32}, {&(0x7f0000002c80)="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", 0x1000}, {&(0x7f0000003c80)="4baa3255786081cbdf8907b96a7206e6e4eb6bcf5976d8ce19769cd945c0021938cd9b40fe48302d194a25a827ce62ccec4db0e611dfa987b0884e3f4fa6a34530e19fe60558e08d51a96d69cd0aefef9738f90751c18f9d658e0d8f314c5bdc0836332daf571598d972605a5ed8ac", 0x6f}, {&(0x7f0000003d00)="49adae3e1bacdb7d85d6242c2ca35d7d6fb1a5f4b22b01fdf35c69f68249e4f4530e6e06ca5ffbed1a4c8ea3db22ba9baddfbe47175049cc960cb2467a62a82a0afae705158adaeff6dae07cfa0a655a17f46b48eaeaac15ce35344e4e851b734cefd1c7f90b0cd7063be86b83453d030335835ca59b581894c6ebd642adf8763d257e5e94ccfbe639b03d87b3eb65c663d9a01a223d39d0af3551f4cc790cc515b2dece512e823c4dd81256088688e4f606c215eda1b47e5b33bb83170dc5409e84f80e74eeb990448011a6ebd497c4908d67977b593ab55e77c0b05df41fa803d4f748003799e55fe1025d9455f1594bd4f1418a4c1f8a1761fed8d86e9c69aa486dbecbeb78494915186c9dedcfc081274f4c783a538249da71105e9ecfd2b33f686e1238f6c13b553f51af0f08efb94d4966065c12e1a2bae246f4f0804f73ad1e0b658954f3c2f0fc5bd8064789feb2d3d5f6e232a01846f5fbedc39fa119be374093a020ec1757d6e621a1687dc80f0bd0a67ba20f0836c4c41d609f738016f16f283e5d8f1aad0401716018eb73cee40c0b625415ae140e033e245113819e6f15b6d3b849b959becaeb7d5ab10637f522363fe834da222ffe4821f66e92c183b68c63166e6e6979701dae491f07dd3bc9c5f94324319048f7f02be2c6a99bab4e038d5bb9d3974d9d20a99f51fe7b357913e0c0a09eca54084479415d28a54bc910a4c3bc645c2201f1103c37aaa9919dece5359df171e47a388a3a7fa79206f8d429c3a2c1988015568e806fb9b89748fb64e2642b08602f40464701f70a0ed8046beb2071d3063e22fc27b37d220534a33efbb54d21c8a83a57ca9136adf0ee81d25fb8773d73229e4b400e53bfb3ea6b949e1348814d59300596bb8c3615d62fa168bc5c96d99fe6d8fb4d523f5e08bf720bf49ccdf47e641a8b22e55bd4f996e6524bef8e90090ea47e6808ece65aff63e8867feea70c4f06f0a6a0d8feef2e4317ef70c28db2438524faa3151d2851e47caa345940bc1d15258744853bd096c1df7cd46f17fce256f146a049b5cd8c3c5d0aee248c1a162c6fb404dd4986a7951c0d78b1205d8fcc5d3764ebbb386bc4221fef1fe0390eb751dabba2b8058ca675791e0318cf4ed04ecb0d0f2982520fde211a8249de0975378343b0009880944942452e66f58532a093d6e94b982523f602816facdeadbf66d1fceae1d01f1c8845cb668d66950a174bb986fa6929d554a892e94dd2c16e1ef44ebb2ec5236256d96888d2fc6838f55009d59c1b3342830b763fdcce9066276efa714bc3911465cee49829cc84aca489d5b930cbdbc8876b92e58a7eccad469827402c7afa1f4f00de56d4c8aeb884b8b5aca8a46ad0531f253486ab13e3f8a51194854667af749757395bb21d3501995529924732ead78d90e2725620336972e4105f6ba144861763acee779771de76ebf9ff80c690caf630a8b0687e863aeff9e7a2479c813390896990fde857d658b7f76c7dfed0caa70a66fa09fb3197f766b85e2d0fadc8b1b8671f6987a8c736ff782914794035e80d9a37aa6ec690c93821b35c3ce9df5a5fa4719eefe9f6107b8d87cdb654ba7ab6afe0c6f0d08abfdec07fce92ec77164113fea36042ddd7ade604292905c682e2c8b71343b03aec5a17aea1871e62f4df7d7dffcbb71aa49100a6ef028dcab3f0ad4164234f3dda36c6a7b19d3b81ffa8060828ca0dbc9958da2a970e993397812baf05ce457410efca82d846d38cafb6ffd46d830f304be46f9d45b873a410654cb7bfcca858e7f42a23282d8536c61c21eb80fb9f9c725fcb6a5fce89cb05050bb93e7d88177f4eeae82dc3de7f3bb9be5bf4eea380de051610f42b192b68e9c926ad130ede1adef3c7023fdd4c9e162262dc5fec7737411b86ea696cb8b7d645813695f75dcb1348ffd1aa954ead992df8c676ccfef4b5f35a1e205e08cf793fdd7f5540c4b2b3339314742bced87dcf7f2f963f9b97cf0842d1de700d92988bf1081998c62188ae7f84be73480cb048bd3c46e44310d5a6afd4c57d21e4648b5c2abe3189168f72d1c50b8bd295197d13d76f3b9bf761302fd086f1e413e8f6d8c997e8020b55869f4df965729b205428183dc3957de68be6b61ac9de03ee93cd65d3ab7d2bbd2f332e591d4188a98e183c6b71322ea024f5fff1b4f0c8aca6a0b82e4138c3b28b45657e1e8aa95cdad368f70241cd2bf68e52fe17fda56f40696ed8e64891728a5d78a3a0b083a1457b43e314a73444703afaed166bdd818878830fc85f5c47a087272ff0831b64c5bc19a7736d49c513c8c661758c7f564a96774cb1bbf7dc573bf69f53ef9239093dc6d72b987baa1fb191e43ed3d93f77d87a602d36024f2d35517ea622c6f9b8f479b1e0cec59ab1c2f8c5f45b55a6e7f32c02d6ad7c328902ecbda5d88188d5294b14b54204a41640871ac6058945fa4404a7f9fb79b7e0ffc2bdfe072527e79a390c74c0aff159b0c953bfe75464d7676cc978b0f094952d6ed47dbebd806c92981ced4f0f2b631e36bb24d13135ebf33c8ca94b69f448d6923a72b499ceb4ce6ac6ebdb909ddc2354feb1b50cd50cdfa2ae6b133098aeced5268ac7b4a443aded7d08322c0110cf15eb47b016cf590448eb3cfc9b5f6799678023dd87ff6d097422ac3bbe27b1ff56b1fbf589271e043aa2bff2bb33ad408ca4e1b0453db13e841acd8fc10ded4b670fcbbcd85b5fb750d4b646776f7222f06f31dde9fba1543767d765781ed6189fbe375ef90c7bee89700eace20d9a836c8d14a1f4839fae6af800cb62708ca7224ac67451c066557e8bd868f537372bb4b2e99f8358c529db434391ca82f9b2dd32cb90a0b019f0b4d1d296485d70dd6f3c9bcc989d2114ad500c8886964469f2ebf5622349dc9751caa604de81fc292ac18ebaebaf49c2627827a0ad9924185c841e869c8fa67e6553c8f631163d2a1cba714dd560fd241d6544e9f9bc7e64e99e048db64772a88098fb34f05c343e29332dd059a4e79670b91e6a9dc055668a1c70eb8a2d9f2538b55a6fed4a6d177e743ba55263fa86fb3ce38c1eb1c2003ea3a2861f85a71f166b625f024b6b66ef07c04e5d1dd7a29b657cea8ae7a96d0f07db0f5f7273246400c734ac19a5fd478f4152c2bec89496fddd5771f5d660e4e11a93f73f1916fb1bb4f8a8baab8247763958ae5bfe2d2ca924541215e8c910f385c2defb314089097a45e0f7b84b318455928a58a592a194a09731fa1f68a36397f17380914d1684fd89ba0f98302697c376ebf87227ab060caaa8f5c28344f0c717ffe5f44e6a5b73a1578d99e6d65b8b44ad842adf8ada1377e78ac6067ddca1c6b1adc769ed9516347e8fe9ec39675cc20e22da0bc56ee80a60547a6afa4d045f06459724221905875fe596e8a0fdd10aba3efc0aeb2391ea0dca6dc216302a477a5e429d3567501424cd809726c96a562b6332949d1f9e8f60121b805137b7d61db6221f8ed861174af18011ed33e5620ecc7ce747103b855c5e19fbae4385cb7ae0c2033655ef998b1f366305c6915fd1a87d9e30c8ab750595051292123212b30d124e01e2f09bc38438d93941d06fbd804f69a7616ef363b710570968e34e9e05472e03af4083a4cc7d8bf6b7048c74122efb45175060f947b6bb7bec0c1537524ef0b3836e02e2e02176362d8f4a70c40ed091adec3e23513f7719a1ec2cf5c674deb15c715bd45868354219a83a63d3c175bafa1e9ccac2f8dcd82ec97f0beab92bd56b73c78c5c7da52c8807ef0f4f07fa9c49b9b32183fef36cbe836e9a61bd625db419c2014af58a7c877e00a87882600279504ad1a23269362b57219e9d0cb32c98548eeb955145b37f07117b054c92d9ad43ffd89f570b2e5e1f6f90aef1b49da18029cfca759870eae8d72e7567be401ae10e4a4d1f7506a84cb1e578c894099328aec170fbf419536090308ab0aeb37dcd7a836cf148e114502fe131a4b3696e951b0c09b457e64bbba50d679add2be107b2787b2d626d104afccb8d282a17f90ff81aa5cafe32b545bb70357f7a9ad7d78118cba93169bcef6d46a10498d90cf3cd36db9d70fc6e3377849a59167352f4a355f4c00b99d90b1cbaf421d8f9b884d9ab63f31e749ca5b5787d116432e2161bbd4ee0c195f3a007d5039e725510eb1140ba69d44ff80330f2c441473d702b014dc75073661e4d2fad6fe270f618aecfd9bb8f6bd192ed654378a9d12114a3b4e266004c92b8de0d56132a6fabdf34a2e56f87f808ff68daad8db9ddd72f8c8df33c8c8cc99a32633571129d25902e06dbcae5463e71fe7715170c65b4a72388c1dcf14d2bd12a7e4652aa3f861595176b037ede7bc6775ffb5d18ebc4a5f4f1792605639a6c163586cf6bd1321b7a92d1afde3228ff701ba5492b59f3c36f158e20b85c1065c8f9c98384805d8a739a0550a4e2733a2baced950aacf947ff57844633a7d8dfbdd27dcbc85dc6b4d5986fd280b7c29d657f2ee9f066f04a187d20621f6f0b80b1dc07c76ec4e8a1e5f8fcdec517ef253e10cbe3d32f1f424e0f63803283763b24f8f767a3f3a4aecc0059b5fd928c0f58b1036fe59c6b14b57991d19768999b12f94ffca37e3d95dc2f11600b2cd49aa8ed5d5e0dc7b965925526e363f4b78b6d023b6bef1692f1f18dd7e9c60913479adadbb8d1151676daffa90d341b7296929d1521cb39fe08360e1d1321a5cc33e3a58393e583ecc9156eb7c30ead3c9b35070eed12b68d44cec4bcefbe754d834345aaed8eabeb1429c5e0f124e5da74b055946edd35ed1b7130868a15d2b071f5f984793137fe2b05f607f79986f7c36a0ddd9249731b8f630b60399d1af29484ca3917a9f43ecd664e149c34edc70d9a310d5613076000423323ea605125513b21128642099cbf22fdc3a5102fd3de9384b1d07bad3b131084ea00f12ef1aab2a992507d1645985121f51ac1966c982b13a62448df54efed60dc85f00b043f508b766161d66153b0997ef222a11f74a27df1fbd063d7a477d21090b8b2ecbabc60c77cb22c87bef23f54275c2d276077484abe29c82dc545b4ba387805ad60fbd615bef3ec4ea1bd19751d5fb45eab4139b9ae029163216bfadd3fbc17aca475e394c7cbeae519d1c201487b870f7fe679b6bc8bb33c1a1a0590c5386356d9ecc56da0d492dd10a3330d78d741a3daef3c4c2eb9b74d944370fa86d6144c6e23666bf67e0d190f81dc31659c388609c90b9aa4e9dc10b86037fdf2cf5dec3828407a39b007cbd015d154db4771b6ed4a04a596079f940f5a284e6888836aff8b8119bb7c75f53a6b95ca1ea8ca0daf7c2f745aae44ca1b31c0f475d18434d2175afd968b38296d6d0ec3fbf5fc8cb51b5852e5264977464cad77440911c65e846e61c52bf0a626b3db5342132eee11b2b4c86a6f57db53bf4cf552bae93d80127ab72f5a94dce23ed78552a012a1c0594bd3b93d31822ad1ce7a814a334f07999e98c675bcf7f57691de403373a21aa7b04e84de5edbd7a7a9abc8518fcfa959c23288d1a12a171ac313c4e0aaf9e97602e738dad29b141fc1462f1da474867f73d031b2a6806202fa34093312af827631547dad0c51e8d43dccf0dbe9bcca4f73f92850d5f03a7e412921d7aad19d8dbcae586e9d223c009c5b69adf7e3abe7ce7ed6ce06cb9906621fe7ee7f47d40d6913632f97045846cbcf68389b5e9279b6471e4fec123069455d29629991cf0324b1119eec386ba190f8", 0x1000}, {&(0x7f0000004d00)="4dc7d72ede94efc3099a4310538773ddf05ae2363edd726704b7", 0x1a}, {&(0x7f0000004d40)="447005d8a1ba44054680b5ef2c75b466b6e927816994b89f000eaf84ca431a5d765da451f14cd0ad348f9e8532c350c09c226aa8f1848a9a682a4c606ec8862296f31f2d5f7a6e2d01b0661cce16fcd108f579ef46f1a4805b50ff6670cbd5fc8cca8e0af5c08cc0da252874582d94dfa5e37b50b5c03921d3c215c7ec5ddf3af020e0b725660bf92068932623aad5854778ea68a343053084dc8df00b3f0e0761842e83be62fa5d82ea4caec6700e1433aa50d1d3e733fd388d1c9a0e0a00e8f6fc3bee6a3a7860927049a7853478316ba1bea4279d145b30fa5fa5", 0xdc}], 0x7}}, {{&(0x7f0000004f80)=@ll={0x11, 0x19, r2, 0x1, 0x80000000, 0x6, @broadcast}, 0x80, &(0x7f0000006140)=[{&(0x7f0000005000)="d364c29279db0bdedc7bdbfcf2bb5267a16f4d75bc840f7eb455d12f9fb38a4bd021ed6929383a1ef998c3924e2a39381df1d906165272e95a6d499eb5d37e07e5d1e03b94c9aee9c82d5fe64fc559d172144a1bc835c5e230e01342d99d588bbadb1b0b4e8cf133fa01c1a9d3dbf02de2a54851279d9e6b4f64409345fe0ba7524626", 0x83}, {&(0x7f00000050c0)="d93383e95458ff968fb90a3d7d3b206d63c3fa5fd5b58fd77e436acdcd569dd7d64794c265768e012607", 0x2a}, {&(0x7f0000005100)="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", 0x1000}, {&(0x7f0000006100)}], 0x4, &(0x7f0000006180)=[@timestamping={{0x14, 0x1, 0x25, 0x101}}, @mark={{0x14, 0x1, 0x24, 0x400}}, @mark={{0x14, 0x1, 0x24, 0x6}}], 0x48}}, {{&(0x7f0000006200)=@ipx={0x4, 0x5, 0x7f, "a47fd6c1d451", 0x81}, 0x80, &(0x7f00000063c0)=[{&(0x7f0000006280)="b55774c0f7ef32e2a2", 0x9}, {&(0x7f00000062c0)="fd9e44c64f72751ce82bfb6973789142f138f64ae37a26c8cb7dbe8fe75d4d5a089da9df59c3c26457a46b8096d6bf80ba8412bb5e48e149ef7c935edd1bbc6b1b77e936a3ffaeafe943454c0ecc2cc5fa73360e56aff471dd9bda74cf018cad806142f2cc5f95183204ebea43052b997a91a8b7bdd7ce808eec3135eb35c7a606169b200382adfacf82a3bdb24fab3396ac5b9b41512af8e7d09102ce121b232c120679b4974f80c327ff27997b2189d55e630057d5f5fd8cd09cc278795507165b09f7ceee43923a7622eabc110f026b2797308595825d8d10183d17b5bde9ae198f40e2934cf0e7a9cf9f161ccb7440b2de50e9", 0xf5}], 0x2}}, {{&(0x7f0000006400)=@x25={0x9, @remote={[], 0x2}}, 0x80, &(0x7f0000006800)=[{&(0x7f0000006480)="4cc0da22e4b31f6eee8fe13bdecea93934cd776be7327892eba216412fd3d84a1120b1a662093054a700805c2678cc3460da9c70aa8a9c89f58bbca9efc6778f3befde037a991305e8f0fd13032a7c1b6ed17d28455959f33a11155d9beab31406b773c98bdc38f1a18a903eb19368f96c830fb19a90d7816bb4972d62c67ced8f2f6525ec1c33fe7a669e6e570c", 0x8e}, {&(0x7f0000006540)="0ec67f7da352894cde23e53f72", 0xd}, {&(0x7f0000006580)="eb256515fa05c0a660a15ccef8c9b4b97dd53ee7bfdc237cc8dd051ac1bb9907c7c995dcc2a963694adaa153aa623d443c7fa73fcb2ff1e32c0b066fa969009a503d2c414d2946ee9baca2c16021b81b470a58632002", 0x56}, {&(0x7f0000006600)="54c648a33742496cba0bf5b19f7ec884f52f4b4c913b00fe8bd7b90e8e6294f490ce3b", 0x23}, {&(0x7f0000006640)="1771a77fd6c6e7ee1333c7864c81546af5bb5f84b31e0cbe83f015731fb497b7c8055972317edb729b8932d79f7b7c0f0d45a535773b900237cb92a74cf9281b603420ef9e614285efa3848deedddbeb0a509beef053a8b5b03171ed8b0c9c05a34bddd373ffe87beceb4b6dede28100ff4b8dae07350bb091d943ba2ac228d9be44b2c52d2c8d96ce98ecef12056d69666541d45986d8a19a1a2fa2e97b782bf7ac4934d400f2e10f670ce330b33b4d41bf84a0645d5195949f361068fab178d9643f0155399bb194a1de5ab2a340155b36928e563a34fad7f069bebde48d33be94fca2a8e4e329d20cbdd0e8d27996a6", 0xf1}, {&(0x7f0000006740)="01f33d701a8bfc6f845362ec44f7cc791a4b4804847fb1a2dd3ee61a8847f73c023353f806514a7c44352f6efa369df2d0a306b58e2306323e93f5499518ee35a06d75f060166cf38d000ac8cfe8688ae897a97e9218067076f6325ce9d79f082217f42d2705e4b461c727ed0bbcf7fdf720a850b5308d97665840fddf3fbb875d0f88dd07a9943a336572bcf0dd4e", 0x8f}], 0x6, &(0x7f0000006880)=[@txtime={{0x18, 0x1, 0x3d, 0x400}}, @mark={{0x14, 0x1, 0x24, 0x2}}, @txtime={{0x18, 0x1, 0x3d, 0x7f}}, @txtime={{0x18, 0x1, 0x3d, 0x2}}, @timestamping={{0x14, 0x1, 0x25, 0xffffffffffff8001}}, @timestamping={{0x14, 0x1, 0x25, 0x5}}], 0x90}}], 0x7, 0x44800)
r3 = semget$private(0x0, 0x1, 0x11)
semctl$IPC_RMID(r3, 0x0, 0x0)
ioctl$TIOCGPTLCK(r0, 0x80045439, &(0x7f0000006b00))
write(r0, &(0x7f0000006b40)="e4bca5a7c2e88fb7861ecda8d39601809ba7895cfada5b784d37b6869946b194d2e361840760f1b011d892a36b805d6fe0a052aa56a7bbf52c501ae690a729c39e0b45493c2c309086204b473e806bc67339892b794194b2f30cdd65ee4bb5058f0012d276ead9e3e94fd575d63eb65024e4e640ec3e745545b83f1e3b0ac65bbf219877f93e7322e641ea69e749ce905675ce0a050861ee8c3136b6321da8", 0x9f)
removexattr(&(0x7f0000006c00)='./file0\x00', &(0x7f0000006c40)=@known='system.posix_acl_access\x00')
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000006c80)={'hwsim0\x00', r1})
setsockopt$sock_timeval(r0, 0x1, 0x14, &(0x7f0000006cc0), 0x10)
ioctl$VT_ACTIVATE(r0, 0x5606, 0xaae)
ioctl$GIO_FONTX(r0, 0x4b6b, &(0x7f0000006d00)=""/97)
shmctl$SHM_STAT(r3, 0xd, &(0x7f0000006d80)=""/37)
sysinfo(&(0x7f0000006dc0)=""/33)
ioctl$KDDELIO(r0, 0x4b35, 0xffffffff)
ioctl$TIOCSSERIAL(r0, 0x541f, &(0x7f0000006e80)={0xf3b, 0x20, 0x61779e9a, 0x0, 0x3, 0x67cf, 0x80, 0x4, 0x6, 0xc1c0, 0x4, 0x7, 0xf76, 0x0, &(0x7f0000006e00)=""/70, 0x1ff, 0x9, 0x1})
ioctl$FS_IOC_GETFSMAP(r0, 0xc0c0583b, &(0x7f0000006f00)={0x0, 0x0, 0x6, 0x0, [], [{0x80000000, 0x4, 0x0, 0x29, 0x10001, 0x3f6}, {0x42, 0x6, 0xfff, 0x31, 0x40, 0x7ff}], [[], [], [], [], [], []]})
openat$dir(0xffffffffffffff9c, &(0x7f0000007140)='./file0\x00', 0x200, 0x24)
r4 = getpid()
ioctl$TIOCSPGRP(r0, 0x5410, &(0x7f0000007180)=r4)
ioctl$VT_RESIZE(r0, 0x5609, &(0x7f0000007200)={0x2, 0x5, 0xfffffffffffffe01})
stat(&(0x7f0000007400)='./file0\x00', &(0x7f0000007440)={0x0, 0x0, 0x0, 0x0, <r5=>0x0})
getresuid(&(0x7f0000007580), &(0x7f00000075c0)=<r6=>0x0, &(0x7f0000007600))
mount$9p_unix(&(0x7f0000007340)='./file0\x00', &(0x7f0000007380)='./file0\x00', &(0x7f00000073c0)='9p\x00', 0x1, &(0x7f0000007640)={'trans=unix,', {[{@loose='loose'}, {@cache_fscache='cache=fscache'}], [{@euid_gt={'euid>', r5}}, {@euid_gt={'euid>'}}, {@seclabel='seclabel'}, {@euid_eq={'euid', 0x3d, r6}}, {@obj_role={'obj_role'}}]}})

04:13:23 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}, 0x1, 0x3f000000}, 0x0)

04:13:23 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"/968]}, 0x440)

[ 3316.308539] oom_reaper: reaped process 23737 (syz-executor.5), now anon-rss:0kB, file-rss:33856kB, shmem-rss:0kB
04:13:23 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x6e02000000000000}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

[ 3316.452923] syz-executor.5 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 3316.491506] syz-executor.5 cpuset=syz5 mems_allowed=0-1
[ 3316.500528] CPU: 1 PID: 23770 Comm: syz-executor.5 Not tainted 4.19.66 #40
[ 3316.507661] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3316.517035] Call Trace:
[ 3316.519657]  dump_stack+0x172/0x1f0
[ 3316.523322]  dump_header+0x15e/0xa55
[ 3316.527163]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 3316.532303]  ? ___ratelimit+0x60/0x595
[ 3316.536409]  ? do_raw_spin_unlock+0x57/0x270
[ 3316.540857]  oom_kill_process.cold+0x10/0x6ef
[ 3316.545667]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 3316.551381]  ? task_will_free_mem+0x139/0x6e0
[ 3316.556012]  out_of_memory+0x936/0x12d0
[ 3316.556036]  ? lock_downgrade+0x810/0x810
[ 3316.564398]  ? oom_killer_disable+0x280/0x280
[ 3316.564413]  ? find_held_lock+0x35/0x130
[ 3316.564439]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 3316.564455]  ? memcg_event_wake+0x230/0x230
[ 3316.564474]  ? do_raw_spin_unlock+0x57/0x270
[ 3316.564490]  ? _raw_spin_unlock+0x2d/0x50
[ 3316.564506]  try_charge+0x1028/0x15b0
[ 3316.564520]  ? find_held_lock+0x35/0x130
04:13:23 executing program 2:
ftruncate(0xffffffffffffffff, 0x208200)
socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(0xffffffffffffffff, 0x1000008912, &(0x7f0000000040))
syz_open_dev$sndseq(&(0x7f00000004c0)='/dev/snd/seq\x00', 0x0, 0x0)
r0 = creat(&(0x7f00000002c0)='\x00', 0x0)
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
mount$bpf(0x20000000, &(0x7f00000000c0)='./file0\x00', 0x0, 0x2001001, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
getsockopt$inet_tcp_buf(r0, 0x6, 0x1a, &(0x7f0000000500)=""/238, &(0x7f0000000180)=0xee)
shmctl$SHM_UNLOCK(0x0, 0xc)
setxattr$security_selinux(&(0x7f00000001c0)='./file1\x00', &(0x7f0000000200)='security.selinux\x00', &(0x7f0000000240)='system_u:object_r:hald_var_lib_t:s0\x00', 0x24, 0x0)
getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x0, 0x0, &(0x7f00000003c0))
ioctl$PERF_EVENT_IOC_SET_BPF(0xffffffffffffffff, 0x40042408, 0xffffffffffffffff)
ioctl$TCSBRKP(r0, 0x5425, 0x0)
pivot_root(&(0x7f0000000140)='./file0\x00', &(0x7f0000000100)='./file0\x00')
ioctl$TIOCCBRK(r0, 0x5428)
setsockopt$inet6_tcp_TCP_QUEUE_SEQ(0xffffffffffffffff, 0x6, 0x15, 0x0, 0xfffffffffffffef1)
getsockname$packet(r0, &(0x7f0000000440), &(0x7f0000000480)=0x14)
r1 = socket$netlink(0x10, 0x3, 0x0)
writev(r1, &(0x7f0000000040)=[{&(0x7f0000000000)="290000002000190f00003fffffffda060200000000e85500dd0000040d000600ea1102000005000000", 0x29}], 0x1)
r2 = open(&(0x7f0000000780)='./bus\x00', 0x0, 0x0)
r3 = getpgid(0xffffffffffffffff)
perf_event_open(0x0, r3, 0xe, r2, 0x2)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x0, 0x4002011, r2, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)

04:13:23 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"/968]}, 0x440)

[ 3316.564550]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 3316.605120]  ? kasan_check_read+0x11/0x20
[ 3316.609348]  ? get_mem_cgroup_from_mm+0x156/0x320
[ 3316.614317]  mem_cgroup_try_charge+0x259/0x6b0
[ 3316.618939]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 3316.623906]  wp_page_copy+0x430/0x16a0
[ 3316.627835]  ? pmd_pfn+0x1d0/0x1d0
[ 3316.631438]  ? kasan_check_read+0x11/0x20
[ 3316.635614]  ? do_raw_spin_unlock+0x57/0x270
[ 3316.640055]  do_wp_page+0x57d/0x10b0
[ 3316.644205]  ? finish_mkwrite_fault+0x4f0/0x4f0
[ 3316.648910]  ? kasan_check_write+0x14/0x20
[ 3316.653276]  ? do_raw_spin_lock+0xc8/0x240
[ 3316.657630]  __handle_mm_fault+0x2305/0x3f80
[ 3316.662094]  ? vmf_insert_mixed_mkwrite+0x90/0x90
[ 3316.667191]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 3316.671896]  handle_mm_fault+0x1b5/0x690
[ 3316.675996]  __do_page_fault+0x62a/0xe90
[ 3316.680093]  ? vmalloc_fault+0x740/0x740
[ 3316.684383]  ? trace_hardirqs_off_caller+0x65/0x220
[ 3316.689642]  ? trace_hardirqs_on_caller+0x6a/0x220
[ 3316.694712]  ? page_fault+0x8/0x30
[ 3316.698373]  do_page_fault+0x71/0x57d
04:13:23 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"/968]}, 0x440)

[ 3316.702217]  ? page_fault+0x8/0x30
[ 3316.705784]  page_fault+0x1e/0x30
[ 3316.709266] RIP: 0033:0x40c1d8
[ 3316.712485] Code: 00 00 49 8d be 88 00 00 00 48 89 ea 48 89 de 0f 85 dd 00 00 00 e8 38 2c 00 00 8b 05 32 be 32 00 48 8b 15 c3 42 66 00 83 c0 01 <89> 05 22 be 32 00 89 02 48 83 c4 08 5b 5d 41 5c 41 5d 41 5e 41 5f
[ 3316.731774] RSP: 002b:00007ffd53165290 EFLAGS: 00010202
[ 3316.731789] RAX: 0000000000000001 RBX: 0000001b2dd20014 RCX: 0000001b2ed20000
[ 3316.731799] RDX: 0000001b2dd20000 RSI: 0000000000000f10 RDI: fffffffff1ed4f10
04:13:23 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}, 0x1, 0x40000000}, 0x0)

04:13:23 executing program 0:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="11dca50d5e0bcfe47bf070")
r1 = socket$inet(0x2, 0x2, 0x0)
connect$inet(r1, &(0x7f0000000180)={0x2, 0x0, @remote}, 0x10)
setsockopt$inet_mreqn(r1, 0x0, 0x27, &(0x7f0000000280)={@multicast2, @loopback}, 0xc)

[ 3316.731807] RBP: 0000001b2dd20018 R08: 00000000f1ed4f10 R09: 00000000f1ed4f14
[ 3316.731816] R10: 00007ffd531653d0 R11: 0000000000000246 R12: 0000001b2dd2001c
[ 3316.731830] R13: 0000000000329ac0 R14: 000000000075bf20 R15: 000000000075bf2c
[ 3316.793104] Task in /syz5 killed as a result of limit of /syz5
[ 3316.813967] memory: usage 307200kB, limit 307200kB, failcnt 8182
[ 3316.840486] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3316.859786] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3316.883726] Memory cgroup stats for /syz5: cache:72KB rss:144KB rss_huge:0KB shmem:12KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:172KB inactive_file:0KB active_file:0KB unevictable:0KB
[ 3316.889882] netlink: 'syz-executor.2': attribute type 6 has an invalid length.
[ 3316.984496] Memory cgroup out of memory: Kill process 23770 (syz-executor.5) score 1103 or sacrifice child
04:13:23 executing program 5:
r0 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000240)='/dev/dlm-control\x00', 0x40000, 0x0)
ioctl$SNDRV_TIMER_IOCTL_GINFO(r0, 0xc0f85403, &(0x7f0000000280)={{0xffffffffffffffff, 0x0, 0x5830000000000, 0x3, 0x4}, 0xf177, 0xb431, 'id0\x00', 'timer1\x00', 0x0, 0x8b4, 0x81, 0x0, 0x445})
shmat(0x0, &(0x7f0000ffc000/0x4000)=nil, 0x3000)
mbind(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x2, &(0x7f0000000000)=0xffff, 0x2, 0x0)
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0x20b, &(0x7f0000000040)=[{&(0x7f0000000540)="2e000000220005000000c187185095cf0400b0eba0b4d65c0015000051894d5d1dac00"/46, 0x2e}], 0x1}, 0x0)
r2 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000080)='/dev/qat_adf_ctl\x00', 0x200, 0x0)
ioctl$DRM_IOCTL_ADD_CTX(0xffffffffffffffff, 0xc0086420, &(0x7f00000000c0)={<r3=>0x0})
ioctl$DRM_IOCTL_GET_SAREA_CTX(r2, 0xc010641d, &(0x7f0000000200)={r3, &(0x7f0000000100)=""/74})

04:13:23 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x8100000000000000}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

04:13:23 executing program 0:
clock_nanosleep(0x9, 0x0, &(0x7f0000000040)={0x0, 0x989680}, 0x0)

04:13:23 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"/968]}, 0x440)

04:13:23 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}, 0x1, 0x60000000}, 0x0)

[ 3317.039127] Killed process 23770 (syz-executor.5) total-vm:72580kB, anon-rss:108kB, file-rss:34816kB, shmem-rss:0kB
[ 3317.051637] oom_reaper: reaped process 23770 (syz-executor.5), now anon-rss:0kB, file-rss:34820kB, shmem-rss:0kB
04:13:24 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x88a8ffff00000000}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

04:13:24 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="00000000004000000000000000000000000000000000000000000000000000000000000000060000ffffffff020000001d00000001000000080676657468305f746f5f627269646765006e7230000000000000000000000000006772653000000000000000000000000076657468315f746f5f626f6e64000000aaaaaaaaaaaa000000000000aaaaaaaaaaaa00000000000000007000000070000000a80000006172707265706c790000000000000000000000000000000000000000000000001000000000000000aaaaaaaaaaaa0000feffffff0000000009000000000000000000697064647030000000000000000000006272696467655f736c6176655f3100000000000000000000000000000000000067726530000000000000000000000000ffffffffffff0000000000000000000000000000000000000000e0000000180100005001000072617465657374000000000000a3000000000000000000000000000000000000480000000000000064756d6d79300000000000000000000073797a5f74756e0000000ab941773a25a4462a99832900000000000000000000200000000000000000000000000000000000000000000000736e6174000000000000000000000000000000000000000000000000000000001000000000000000aaaaaaaaaaaa000000000000000000006d61726b0000000000000000000000000000000000000000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000002000000feffffff01000000110000000000000000006272696467655f736c6176655f3100000000000000000000000000749638e0006c6f00000000000000000000000000000080616d300000000000000000000000aaaaaaaaaa00000000000000aaaaaaaaaaaa0000000000000000a00000000801000040010000636f6e6e6c6162656c000000000000000000000000000000000000000000000008000000000000000000000000000000434c4153534946590000000000000000000000000000000000ff07000000000008000000000000000000000000000000736e617400000000000000000000000000000000000000000001000000000000100000000000000000000000000000000000000000000000736e6174000000000000000000000000000000000000000000000000000000001000000000001400aaaaaaaaaabb00"/968]}, 0x440)

04:13:24 executing program 2:
r0 = perf_event_open(&(0x7f00000000c0)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x100}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$selinux_checkreqprot(0xffffffffffffff9c, &(0x7f0000000140)='/selinux/checkreqprot\x00', 0x0, 0x0)
fcntl$getownex(r0, 0x10, &(0x7f0000000300)={0x0, <r2=>0x0})
getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, &(0x7f0000000340)={{{@in=@initdev, @in6=@mcast2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r3=>0x0}}, {{@in6=@ipv4={[], [], @empty}}, 0x0, @in=@dev}}, &(0x7f0000000440)=0xe8)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000001d80)=<r4=>0x0)
lstat(&(0x7f0000001dc0)='./file0\x00', &(0x7f0000001e00)={0x0, 0x0, 0x0, 0x0, <r5=>0x0})
ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f0000003240)=<r6=>0x0)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f00000034c0)=<r7=>0x0)
r8 = getpgrp(0xffffffffffffffff)
stat(&(0x7f0000003ec0)='./file0\x00', &(0x7f0000003f00)={0x0, 0x0, 0x0, 0x0, <r9=>0x0})
getgroups(0x2, &(0x7f0000003f80)=[<r10=>0xee00, 0xee00])
r11 = gettid()
r12 = geteuid()
getgroups(0x2, &(0x7f0000003fc0)=[0xffffffffffffffff, <r13=>0xee01])
fcntl$getownex(r0, 0x10, &(0x7f0000004000)={0x0, <r14=>0x0})
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000004040)={0x0, <r15=>0x0}, &(0x7f0000004080)=0xc)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f00000040c0)={0x0, 0x0, <r16=>0x0}, &(0x7f0000004100)=0xc)
sendmsg$netlink(r1, &(0x7f00000041c0)={&(0x7f0000000180)=@kern={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000003e40)=[{&(0x7f00000001c0)={0x11c, 0x42, 0x400, 0x70bd2b, 0x25dfdbfb, "", [@nested={0x10c, 0x7f, [@generic="bdcc6eef277041ccc50b392caea1c4b2", @generic="49b3c5cfda62bcac083e1e9dde1745e76f0e5720c574e64e81cfc164b6cee06505afd7ff43137d4361170b30420815078855646e72e0cb1fb1362c6aa8420f6dd02afa20ad49342022a3354794545fc4371964fa646bbeca2ac0b1445f8ba2774738e672c3b2721d34580c5c60ac08bbc515be0755360757cce3a25b2e790b14fab52709df8b406c8138cdb68ecafe2b65329a7d913836833743f4d11365e98a3e0e16a20bb385e4d572a2b4d73cc3b0616517e43d783f99be9ce66649a44dfc3e37bf32f3a18ef5fed162de5015e49bd16c8ea34cdfea8d3bf11f3ab5f125dae488df5aea15cfe010f4de1ebded673b12f31e8aad7c"]}]}, 0x11c}, {&(0x7f0000000480)={0x1840, 0x38, 0x0, 0x70bd2d, 0x25dfdbfd, "", [@typed={0x8, 0x2c, @fd=r0}, @generic="3396e7d7022e8f2646724d305291b3003265716a3af4cb628d31e71bbce5df641339df734e44882c94e65e64936021215c6763f2a0643dc9690a791ca6ce4462ee390daf669e79c2b55ab9fc4e299627c99d9232401ed4bcfa6a02f658fdaa1336b911f4f24c87fa718b5793b753bda8c6599d536a0c1fa7fae27c90308d31456e8c37a8a23e9aa480a04154c886c3059a454e526d8c3dcbd855e64603cfcbd64752be8879f4a1dcff590d22e7435fe95b55f13afe71779af41ae60e", @typed={0xc, 0x42, @u64=0x6}, @nested={0x218, 0x3a, [@generic="0fa15dc4aec583fc05c3ba526f326fc863204c6b191d5109018213433ab5e33bad132fdc5734ec246269840506046b932b7c501df180998b232969", @typed={0x30, 0x72, @str=']md5sum\xccnodevsecurityvmnet1self&*,system!\x00'}, @generic="3e52b90fff8295b41f48841a1187dcb42e45ffc8e1a5b08480ecc82bac0b0c60860077a52cf2c011fdbe26db3499a22423e7a2e606e7888b2fc3dd4276d0f0f5c44ba969f0a2666c685b55c400cdf73fcdfcec0d0901c58ac096d834b5934ebf94e0954ea7f490d0c1857f5b87862dfb3e141064347c7a6bf2af68aaa9b10c0acaad8dd31110457a0ef865cf493c", @generic="cc5255fb6b9d414cadb15635017175e4611ca7f8cbafcb2d644a86960f66199041c0b507e4c8aae20d10f27ff23cd0bd91f10cd1e4f192a7854bb6060e165b7e13028353f066c240bcaa45f735b34fea03240f2400ce961fc3ab27353b64a280eaba2425fe55d5b1593a2953af6cb7be969362145a9036355433aa7703b19c4b71e9a1e602b125db65bbd14b631890b561aa71331b9a7ce60d1eaf4668f0ecc5993a57187a36483e92a58440c8fac446804e06d9a74bc55599cd565f1d9f3457b385b7185640df2f1eb60fc14ff68d6697997f404a209947ba01da2b0e91f8d2cb99a7439a41", @generic="11d6ef3ed9eaa4046eaeb89f899a13ed92e43ada3e3e4f3839c47bb34ee01e8e99a72411c246d38112a1a868f7db0d240298"]}, @nested={0x30, 0x52, [@typed={0x8, 0x53, @u32=0x4}, @typed={0x8, 0x8a, @pid=r2}, @typed={0x14, 0x5a, @ipv6=@dev={0xfe, 0x80, [], 0x22}}, @typed={0x8, 0x7d, @str='\x00'}]}, @nested={0x9c, 0x30, [@typed={0x8, 0xd, @str='\x00'}, @typed={0xc, 0x4a, @u64=0x1dab}, @generic="dbc437c93279f1029f031d5f3b28953ad72ed39910a7e391da60542e93c6f39aed40fc9602a77f0ceb3ef34252a4992dac90cc88f4b9403ea1b6e6c1abdd8710c2843aae0b6028b439c7969d0325d366607b25f0cea0860fe5aee5376e17f84a70c69904ab3fd7f10e45709163fdd146eb759541", @typed={0x8, 0x2a, @fd=r0}, @typed={0x8, 0x4e, @uid=r3}]}, @nested={0x3e4, 0x44, [@typed={0x8, 0x7d, @ipv4=@broadcast}, @typed={0x24, 0x63, @binary="6450e622d86141c99f6875045fd2179da0ea87fd2438f2b44e83384e7065329d"}, @generic="b6412e219dfa44c6a525a76d1daf64b906e12785c49f93b60709bd575a220b34eb7c5bab6da9ac68ab60b2531b50c2f72fb59d8c73359b479638d1ae252cba4afb2ea1302f6b8eb90f9bb8d114b1adbe123f526cb3", @generic="3eed5ffa103b2c90c1ea5cbe290d74e818ba985ef74f70b2a987ebd4e6c6e385842bae2db9867ed89396c06cb4aea4bf2c17d62333", @generic="8840d04ce9d17c764e0d6a56a97e204dc41ce10680522b478f25555f27b60eb0bb80a8c250d5f18314e96baab727dc40cf66c3073a7373bf85c6bde3ca30b788bef511d90cb3e6fe7883b8c01d9648c10a6bb80584358192bcace74cb7599d1561d527415f5838109a152219eb1eb38c2f661c13ffd9511bd58740a27ec9c44b8628017fc9cbb89c6f23786d700a4716a90c3766ca9bc78bb76560741a6d33d44fb3", @generic="1264cfb9f51686ea4c527b92df1d3f5e564f093b52f18103d3eb30c9529e382b6f7ba5fa6329267517b0aa1ded22e4ef7789d1b6c689f0143855c4f9dab08020dbb2c6841157d51e6b2a34ea73ba64c5e965e6a2e366d7c3f45eacab2da66750468804135baa9c17cd9d739f1f4278ccf5bdba69915f0ff0d72bb0194d109a47bef4e22e50d133e6387993eb698b09ea040fb919b1ed917d1e875765bf34648d4a5921a5bc34d4dc15a07d22c2a0", @generic="c12c6e0ae7b6916481bd564b96716274658a48e77cebd5b0fbc77d44f6de7cd3abd285b666b25cabadcf2f9d59d484e4330947bf7fa5c060441f1b47698254f154fe7b459c0a48835c1245147d7f56781c9a34c4cd80d96a5355adb1f502a11788682e8c0cb427d5d450a0cad1d18de18f9e7aa0848f927429a172f8733c336f3621caa1d047d6d9d1b68c4472e683832e90da741de312206c414154851e29cd435d2636647325e06259ea88ff2e9a6030fb1f73928c047d3e5adb4d5dd6d3dfff98a0cc2dbf4dc58cb0b3f28cf679862bfca7c98b704a1c67ec9b760c3aa8bca70d9cc6aec88257ea221bd63e72d0cd8993e4c8dfa617fcf61bee262ce9", @generic="86387be068840fb829", @generic="8a222d750f39d8609135b1b146da38", @generic="8dbcf4b09d46a4a1e461b647260646b46e57bfbbf1611dd938ec7d36f3a49447f7a4b8d004a24ad677e903142d2176363befcc813305baa19044667efe1901b5d80bd8461c1185da7780b52bd4f2555ada27227e50a5f7d3da6103b6bcddd1aadefd6426ba43035956c0b0c973773d07eb0ca544430f40511df07ac2c3ab3d824a0ee5f63ae9375045f4bcf4795634308e9cfd523cbc4fc0785bf43907c75d84e96a6b4e11f59660efae08ac798589464e84fafbc9f3a2d6fd70aa9dd5d67b6e0257e2c2"]}, @nested={0x1098, 0x82, [@generic="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", @generic="605788b0eefe9dadea85027c9e0cc271ab51208c34ebcc1b15fc1e8b00f4109f929fbcbc2e52a03bb5a3580b3dee30971a76881ea50c0d3b36efa4f98c9bc0610b59d17177cfcb3e651f755dca86e3b5609d6ef0e88f7347666fb115c1db22cb491a60eac952de5ee168a84f2241692367456803dd6789f28f1a97e82a625741b16139e5fb18", @typed={0xc, 0x92, @str='em0ppp0\x00'}]}]}, 0x1840}, {&(0x7f0000001cc0)={0x1c, 0x28, 0x1216c7222a646002, 0x70bd26, 0x25dfdbff, "", [@typed={0x4, 0x66}, @typed={0x8, 0x69, @ipv4=@multicast1}]}, 0x1c}, {&(0x7f0000001d00)={0x68, 0x40, 0x200, 0x70bd26, 0x25dfdbfe, "", [@generic="1141824469d3bf9df4c2aeea9127160d1faa72930e860c2a943d6bdf9f68cf1221e15eb5b2c750f65da312e42153f3b93e5aa6954807d2997750a5e3b31feafab6957fd98c93091d4082a6b779cd07019cd3e8ff0892a8a3"]}, 0x68}, {&(0x7f0000001e80)={0x138c, 0x2c, 0x20, 0x70bd2c, 0x25dfdbfd, "", [@nested={0x1148, 0x4f, [@typed={0x4, 0x4b}, @typed={0x8, 0xe, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}, @generic="de8071e37896f24a49227d9ba12e93353033bce98abebffba4a57c1924c27df94e669715cc5f82b3c06975354c8c3f715978725aed9cc62da9bbcece8513312d2956004376533e1bc28c4286537ea4b9ebca0837f159026ce852b93ddbd74208de0eadba00c2992b3f64d610bd2a06c88d883ac3b1a5502cce11f7ca18313a0f960470bdfd71c9e3e8ddff6df899e29c0d9504f77aa80ecaa5c7190f08e255781c4975201479ca46670f41ccb5d40f35d7ddcf4c37248adc1cf1b015f4c10ee13c9b9edad388e01c1856be6a1a5a4ac88beda0b0c5dfcc1f324bb1e2f155552badc65e5497f26f2b88d0b715b2fc85e31dfa21c6aedd05f19badd1442e7486934b006e8f7181058afb08b0950891a8050ea9bfd702eef3bdd02cd8de38101f7cc4a37a23583bd481d6c770c53484ad474c2cc4787d74afa4f42a8cdc7ab58f1dd8e36b02748484f18f00fc802fbff92d462af95674313f0fb5b416c79f4f8e136fc780ae9c84738ae5173e8e1ba3fe64a3a4a67ef69925a91c21109e1372f67705792cb78ab8f94d848772501895e079f3736ef35397f7f890f14f8f07c094501cd3e3e7f60c47bd6d192e67756f17bf5d4d81279afa1b2358a89186368894ac2a998cb9de5e3a97fbc76344237ace38767a077d7a3b58f33ef9b4741ce1aa41262eff84d119d3865e8df1462af927efa3fe6b4107b6dc6ae11d5090a24606a324a0a0d8407ce4068e6e96d14cc11c29a6327ee18f5a94b4c205cb8230e31ef8f7d3e99d2783147bfc08cc0da830d319bf043e4f0783cf949959dab08eea50062d5d37497232212cde1ee2784468f482513266490e72e3cc401aafbdb7bdfdd8aeb80d72ed677c8832334fb8f53284bf462cb10b6d5c7f182f61306251989d4ccb3bb972dd784ce51392565d2a53e34ff078d3195450e5a2095355f8644ac30ad0f4b7e44791b2ba85d378a20eab7a801a250ad541f879300f26560a3eb778f5ce0a0782ea34255a872fb94fb03c502135645c3e5f2e8b09a8f3917c755d8a653ce73805ee441f40d03d67ad0dff7db7d62a267a2de0e3794e789cfa2980724439181f80bbd2fd437923ea0565b17bdd81f4ecd7fdca5901f73e838a925aa259c5440d516a7077ad0a816fe5dd7aaca9e59884af7cf4a247c7adeabd63fe5c81e01e58d54177ae5764506e8dad13ce6e014f24e6267723bcdab06311edcafc3f83c0c2d7cb13fddfd5f0afb84f5fc20b816d8f1060e0244db50a1188c914af4962c14f0a4641dd56dfa02765e7fee0e97990b337e78d1d410fa06ed112b970bc335c7a489dd84275a305d385b75e780935c94b2c1686a1686e9b9a17f19cbeea479bd4a75ab5835f474eb571ad3d1c1c997488fe1b0fdd427c98cdccc1a6b4569b611ce7f6587c0f901b43aa1256d77dd9aada8b9ce63daf321fcd6e6da14f9a8bba121d86749d51927cdf11694040cf91bb40b97ad7f556ec0ba9208ef95ea5770eaeca36376255c85b83a705619318d3ccc1878dc264b5a6bef58cc687bbd2d7e51c55c8507b00d4b8f415b68aee007f4c5f608c1ee19075b4e110d3b3b7f30ea12864630b7db12b7081b0d209f4a27202a1523260c8bfe5a073e09b6d58badf6b0ab793755c20558118bab99c2e6e4da010578d16d576afba51b55038050e47b1d9266909bafc60f218b33a073cc1ef99a688bb81a5828f52c38b42b43626c2433b3893920fd39cbe53904a765b0516f9a64103d9cdb3c078b1060a4a89e85752e7667668f4f0d4d3f6f81fa5f6a5ce6f7b7038dcfb8563e613a8f5d561a872908f221d4ea0c283abc2db1ae82269bf968f531600a5ad78e8861ec9e2350ed9993d2aed9f317d86a55a595dde1a930ad44c0df9c1410b485ad8f9058fc6cfff0cd1b0ccac0334f20e6c028b443f92fdfe5f4935acc9c97870b21d9628ce27189fcc1b338a625bb35fba46c24e9138e7fb79252fbc0c75f0aefb140a7463b9e77f540cc3a90dd2415485505a48163e52631a87ab36bd23ce3f3e7bb8151e0e8da67652cf3b6d39c71e47fec91ea7065e6b98ff9d8cc694acc403057d3646c081b171719cb8617a733f0a12ea05c0b89351539c19b7dfc4deae471da4f9c0bec76603ec82e130ad53e8de9905ea3303780b8acff494a9049042a409b290612a0248b719497a529e8b376bcb076ddf9671bdbda6a9beb70f5d1dc2b378d9d26a04933de908995fecfc2d5a345be6fece8362975839cbe2ad1653721c001235b5f426bb436676d1d1268c05ea50dc0da07ada976d96095c3654bf7cd9a4dadeca4c0f1be6bed3fd5c4658821c5dd6f760e2585947f228e14e665d80483f20f3084696c6af5d9211d5d1735601769d8d3786a907e1ce275fb49136e14cd8161aee236fb9e3d8273691dcc355f506a6159e5aed070370b1cce3eea82f1bb28011b6a886d0fb0b1b3ef1052e74d60f72d9b9c22304a4d16478461be61fa67f42c09f239e08e71275d83545f66800b9d3680d5fd8be90035758df68a49d2ed20bf97bb45131f3d8ae900af7a9f6de10ee5250c3a8d1729aeefde2f04ec2ae803d93a1d9adf55038b89253ceb1ae0d2ad3dee963abd441c3d64d2065ad34647ee5ce55216ac90ec02ebcb6800c4c91c1f7b703257096f41f61fb34b73a34fac0b1847f3009fcb4bc37cbdfe1169b96c2c7439e61dc6331e663817544cd764cfe93e4d1f91f8247e623a667f3c1b7de275ab3fddd92a4bf709e9d5930a96d5b913d6d8d43585ad38ed25c51c2fd396c9118a918ec82b9ef8fa1f0af028ee0eb1dd5ce2e3d27083a8dd20c7f43a8eff16943b8f9b221ac00b717902fa001437e4b722cc138162fc74ede36b99ba0377aee968112033e25b41ecf99a67584722016d8e1f5b4d52a8dcc70911ffeb0a3664d7a1157e64c51cf809e423ccefaaf741557aed40235196d2bfb697021fb61adb440f527f32d490e08187c710115ce5307ea92a65066985722f384a10843473a4fb1e84760ab3abda26a334cf92515fe222321ba4bdc89df6f7200876b23053b679f48f63deeafa573744729fda4ca136f943148319ec56bcb45507ea39f01d133fc6268349178bc12c8d1bcbb66ddb7f05c10a82499d60a36416fc4e53593bd389fdde767dbc6f1ddea08b0113fd7dd466fe3f527086877c38dfd360785ab3ec21535b087976efa626e2072dcc3f12e125d4cff8f78d00992c8ed61a3f603ba1cd8aab26a40f7feefad92c7ef7ced0f910984a482bd21fddb54617569ca7978c72b763ce2bbd89a3f985480c82dcb55e65e30badeb7475ceabe90486b42d1bfe6ee1070f706d9ead1a342845641a2e1f074e019c5fc155c84e04ec2686a1688266ff8f17e0ef79baf7bd3ec46a5721945482c9c98919f126b32752af6ef0426ed7473e5621c4f23ce6c54f1d62ed18679fb4122a4323fe85d06c816daabb1f4e74e7e94f306e089421865b62bd8037fb6015284d2fd9f39ebce7f52c907f89faea85f3518ba8df66c317527ff1a2f536ebd1f0ef1648f8328a8cae9c6add599a48a0d44d18b394fdb450242037dd1aad2a7e72fd00ade551e09d6143393a11888c55b2992333841a730221d0b105194f78a65ed0ac51486d04bff54c529e87e273a2171273badb19fcc0463044ab6974d955ab464ebf6666c4b189729b71f35989f58e3db8ab7ff747bee304aafc11c3212af498727ce27c9085cdd258dbc90777187e457ebb1332c1e87c346da8b2c600865adc6a89cc40c419ad29ce90bbf9356a013e9ea611fb1ae6f4325a663197d9c48761a7c8a7b1f37dc76ec37db85c66f223450ee414701da77c92ba9feb8df79f5cefb8b5e037dc6b96ef9721252319f48b22f0cba41a31e1b7877df061ac2d062ab11a19afd686db8e14a055697f3b7b35cfca10903f770d2c88e91c0452ed6d33fe297f705942cc3a6e1054f05a7340f1bc049c6f01ef0c6917a114b9275986e7fc2683e6e8217f408539ecd8933d472cdc8d0b6f171d8fc10939c062fee0a3049798fb3713e9d030be9b08979ac8346e14bd2e659d58dbef55b1ae63192e59fe85bac944ac862dd91264d69def5dcc41a897f25bed45bd04c59129d4d9afc1509a179e98d888d93f18ebf535258d74548699f42db5d60c163ff683ef21ec4117fcb31464bde42f6db86f66549088e0d407df4675b1e62bc33b78f19cbf9a789e831654ac6284f9cdf3441322528d86a73ddf3270d7e51b3ff136c8c579b5e3ce144ce1f2574194812677c06f38e36b5c5c861c56969bc5e8f0f1c8bcf9234d9578f3b8a6709bf86ad744086a794ac6ac646c321391dfae2ef7ee5840606f9b8e2186082b1bf9d428f9972b0fa3ad4cd863a505eaba0f83ef32282f23c4653e363315853de9a3bc2c2be6935abb9fc4f02d5b3de8eb641e00788ba5a5b2094b316eb29270462aba1f189fd336ff7ed0e311b94ed3b7aea7fe8a178e160695bc9cfe09e05f609d3b095754291c488bc6d3c444f2b88598df1983c4557a1e8b28ba9335f05af2775f7eb1b1f9dd79176a7ec0a8230bbc7cc72408a4813975cb8d794674b1b30647b3fe1c0731f903c818be0d3e29976e4af13e2babf6e922d8e86311b7ab7334f182350e91f2b1fae3c7125cba5eed1d3e35c6db8cb95838fd7acd04152dce5a046334bc6eaa1513fb5692945d1838c428189b25672f86520897b6652a4c69e00d768dc619037b5a54fabe8efd2a226d0da16ba6f9f8d72cb9d80df28d44dc71859da89f9791ae5f3faafdf053b5c4b4f6c0451537eaf64828c3c329accb873bb79e7c10cd8c0019030af745fb21a46f4283d1c02d48fa908656dd19a5a0270536ff2d2876f011535db2892a0968f76cf05e443327c7180cfb906e6ccf7c069265c98da48c5be03252e93d67b19b8db3ce56a520601502fbc305e03999eccf81da45d988ef427087421d361138d0af08b35c799f45ec1ba8d528a2d5abd6f220378a1a1a20d11c66972d6efd05e551493117c23b8271149e4bfbb3c5612f1cc13cabfe3641e159e129d1729c4a8aefb475d79eadae0b69bf8c89e9a8f9097abdcde61bdf38898213e8bfd585979b244efb3d77b49ede8d313e131efb70ef8163f18ec7e3675931ca980634841ed3db68376e8e9a58449ac1acc523e1b8fa2650bd5197891d9254410ec5382f5bb05d66e9e6966a790dec6fa4812c7d4e263d9e337b8d68fb3cfca7ed6eca721f805a369926315557aab4868183e5aebf47529b292c8a2ad67282b7c1fbbdb9aab8676ab06642195a321df97d8457f00a31e1b86ddd6f3503a70471dcb627a9887da47e39d8dff106f5490643ef0b300198413c43bca3cdc86234a76fa8ecf7c8545c9aff411dde6f9aef979f41b0a4fd60d7c898bfc974255ffa3c08bacc5bf86ceb898860b492b77b57156ea317f75e0d91376873e3a5efa71f21c84a9717d29077c5befc11b7c621bc5afc4bd19d210ad025d1203c09b740d960f8507fd95a5e0cbfa9b86a549ccf922f35551a49b1ed3defcb7c2afd447d5886284f698109f1be5e794876feb8a3f46ce8c53a627bb5905aed67bcaf7df468316a630019a770833b4faf128751c269a67feb6147c6ebf1efc431b5c8e6f609f4218f84395473fc496b6e31c215ccbaab8b85155a7531f42f093c870f955a4b10f474da5311aea1343c3fad9c8dfe379ad8a9cfcd59bf82db6d670156f12858a6b8cd091498f8f5319a87ffcb94d06f3037ce15bc73cef6b2648cf59a3a4fdd3280dcb972407b14961f4de02999385bcd41f8f46", @typed={0x8, 0x18, @u32=0x1}, @generic="450d7fd164483e20339820b4fe45a7b1032eed4c0af4fd9064298e28853786b48e7728244013d935bbe8acbef156cac25d108771f496b97feac35f6a0cbf0b7f164d49191a3c76a19c8f8ae2", @generic, @typed={0x8, 0x22, @pid=r4}, @generic="0049b98552c4b8dfb25a654796e710928d474ca178289d0838cf1bca47f702b9254394e42cc1e0d71c7a6c955714d338ad4b99af2e74f647a1dc970b3b4611ac298de159f96f01d71c9ffa210f218795f4cd4afc9a898c98a9614f9932bdf5da3e61bf19ecc68f1a5beea3a9e6bc85beb942e5e24b2c64e1798312bf577c074eb39a728a6964fdc48495ac6d8ccb3b4322382738e82e3d0adba287379927cd3ed36389eaf62f0992e3e36883dc4c5e929395a0127afcbabb6b2bf8d4762e8974b6fbff06da775ed888a2795391036585a5aecc0f717811e8507f"]}, @nested={0x1dc, 0x9, [@generic="ab6179", @generic="f18bf4f7265c90a17bb00096007dff52fa729cae3024a6e78564cfdd13485a438fe4b7bdcddc5e5cbc46ed39c676c2e06c452b8df05e88e3d246c1f4972b2c246c6fe216d59822fa57930108b6607fff622d67b3ef1d94df211f19fe368d6f68eab163026bb2d8635c24f04e475b32452a23a9998fc8a9c83c240fa6b232115f05aeae2cb4f93aa4db757a36efb99e069bed7c03c5834ff8c9ff6c89308b313c6315ffcf2690a42d3afa63b9a27693dcf913bde6255666fc2211b10d2083882d23336ec3c56b8a3afaff65428e1d4e70391526dcede5ac3e1f0f344ac0ae6ea7da2f3d6a79e0dc44ce607d1c5cacb0af45eab50b16cf", @generic="120a0b97a4249e0c49f30f64ca9d01993a41fee1a363ea42369974c88ba4cec2ae48204bfec2a604fea189fa3b19a377ea8e5d069880e1f81e5cdfe20df03792782f9af7b7cc8ca2c955b2ffe5f44262bc0a205fa3eb38a483bd2c2ff0d4989cf3238beb85b1801ee7560ffee7e1dd329c189ca9b5603a4d97d13d02b46b5db620ddd000a2c17adb12333c26d7154a4064c218de814ddca7fcb06851f88e1fd19c5552526a26335eb0c1", @generic="1dff273df5b32a0d223d78a926acf8b3", @typed={0x8, 0x0, @fd=r0}, @typed={0x14, 0x4a, @ipv6=@empty}, @typed={0x8, 0x54, @uid=r5}]}, @generic="f59be5952fcb8f8a4c7415c344c02eff56368c1e135266ad335d42a0f1581e3b1025f82e4ff73f8bd84f14e63a2b5b37341731e3c75488f8c843d4e1c50ce7c68f942b075e2bb749bf68048b76f7961d32871640f63a1f"]}, 0x138c}, {&(0x7f0000003280)={0x23c, 0x12, 0x8, 0x70bd29, 0x25dfdbff, "", [@typed={0x14, 0x3d, @ipv6=@local}, @generic="ddc3987ae489c0924f489c892309ead8abf2bb968633a4ce6742017a2be504f8f01f04549f1a601128a4a35aa346c3822dc0079f249aafbae79102595a440ba6ba4c8912860074f3e5b3d2a50cb2d2698861c563b0d245f03e1f403c2c419a760ceedbab915ed017ce2217f8439608869bd995b42a1b83bbdd87a651517bc9e1d7d00d0cdd423ccb0719a1f67e3a3b845ce6d3f96068e528958e", @nested={0x170, 0x80, [@typed={0x8, 0x89, @pid=r6}, @generic, @generic="513ce670976f674e8fa6f7dc9d6d024e875d0bd1f22f3545fc", @typed={0x10, 0x6d, @binary="29b2fa1ed1c65a9d00"}, @generic="097ffc0ba412955758bf270799b18b348412b31621bc0f154219103412ff8f0bf8cf870cff27550adc135c0d43702d8e55fe91bdd422cb90dca9", @generic="c14d484651d05e81c466e5f00e7ce437ad0a98a3a1d43d525b135025f715ba9e098ff11da49c22b9fd30434a3e0ab54276d50c8fd8d65e90916352876fb7d46198b42323db37dde6e1a2d4c3a4c019ae46ca2ecdefffe8f9e5578262ad0cd1db0231cefb4249bf30d3c9a588d480755ed6d15c9da46ff349e8606ee20ca788a97185e54fd383ab00b2c232f8cd69ab1e11", @generic="365c4bc14029e9ba6dcc4cd13ef0f7e2c4ef859ef16991c72fb8f0f904c911280f17dea84fb2288d3b97d201b2dd4426973b92cd6d73281e28fde6bc144983e83cdc3eab966ab49369e52035e9a8cabf5d62c8fc5be76b4c76304217da531704c1135ceec5333cd1", @typed={0x8, 0x23, @ipv4=@local}]}, @typed={0x8, 0x11, @fd=r0}, @typed={0x4, 0x35}]}, 0x23c}, {&(0x7f0000003500)={0x850, 0x31, 0x610, 0x70bd26, 0x25dfdbfb, "", [@generic="b8ee3e020925552c62fa677a690e4542063e0806671b65245563c3ebd992f4c8f95f330e57f3d37149a32fbc678542694d316c8abc195ffd9ca3043c7a84f212e60676d2c9b60f6f497ba61c51e8cfa770585aef62c304900fafed9a28cf21d378fb0aef285ce3802e9fe2c9c7c4c25021f76854f9ce7e8916410067d34161d53c963335d0d02bca069518e4d30f0e6134f83ae7da72d21e6ce033c3ed966c1d4d5a037f56d6e4f929dcf7df64bce58c603070ca35c11bfb44d2606bc336fbf36e0de084dda29f61cde54e1efa7939bed72a9ac93de6ad551e90484469eb2808ac31a1", @nested={0x578, 0x63, [@generic="f97ff42b10f4fc0b1df5c44da738ded2fd7e7eb8493cb462f5bf38c34769e3742164f0fb5e6c915e23e6e9371d330b", @typed={0x2c, 0x73, @binary="29d1caa170ac300c3ea7fb94a7af9bff420c8c7c5823ec3bfb7cdabdfb2055a1347fc5c2fcc7297d"}, @generic="8ee6cdda0d0a6ed958877cd1f10e12859f3b6df6918f6feb73e1ed2741d51ef64ce3692884394c2a72cf21fdf99922f410c8484715ca0d5b15e14b9b6d04916d749abe507e7853b61cb5e9de6ac0cc294656c96d93f6f5e663", @generic="6b923fbf0d4044ea1c21c91f2ab2d9316e60c217860b81e2c4cafc8a65b3e36811a99605b2b6407634014688b5d090d8dc770d647de8e7ecfebb6d871325ef6846eb25ab43c801ecd4b48e1599dea02915b9bebc6980bec1a88fa42b492dc096939d53b824081c26887ba6b4", @generic="059cfa5269728b7c32823795b954e9840d1ffcc215e3066cc700ff6329b733cf15f99448e9a9c093d7648f2679d622a2d095a421b406811b342e394286a87bea062c86713485f1e135547619b41c5fc585d8582a77aaf49f30e16a2263b36c41203599c8f167958698e4ebbf8f94c0018e88b6b282f1ac6c4c838f4eff6dfce8c26d36baa1dcbe16646cd061235d8c0e44cdcc84d1b95506b607bbc516badcd1d35b94ef233f3cdf27b4e4e68c6f4ca94185672f40a09d4d824a970b5e60a24a169ee17ac1cfb84c585a081054e9eac9cbbfb7eadf82eac91bafeb52d9a46180f3e89cc209a46ca4f9cc3970", @generic="0e10f44a7bdab8ad531e2d6bc59f1eb83ba11b703ff31af1ed6a4583f4df72b7f386cfdae0ffbe901bc477ec22bec1011b26afe202aed82445b5a1822f5ca9ab5edf09f69f66de6d0d3b10426223f755dbeb0c4a0716743e44629e11ae63eb99764973bde4951b6f29fe6860bcd18ea4f6c5db270697ad2dcbc759b235c3d4609d4e5fdd945c99163085daf0783be7b8ac3c8a04906f7d12020d81035411fb3525660e4c904988aa98246fdba9b9abda5eff53df52230d274c974677a739f8a70313a8798b3b06a9646360010f585c9149a3daa85c3f09e9e4624c58f3203fab3db71a304eef5c8d09cad1adbe2c09d3c8338b8ce030364c58", @generic="d2b6af6dcdec85285bd049e957c11b95599b267b2a7c71b66101e6399017e82af62b5301214c4bb176f2aa5a67216b8b0baab00390d0fedc3f5ee8a67d197fe47336e3b16a6112d58d4676da1119692f97c83b49d57398c7b209e69d2fb5cab46dac51b8ec6f8860032b1e9065ccdd45c68e2cd79f1343c626572097a2ac35fe1911bb13b116c29d3cea9e1af4ccc6bddbedf6a37596e2a8c63e1d2dee951501694f5e89", @generic="abb996f199463047c389fd8ce63c52ec7f81153b69dfed9a888fc519706036577d57fc18ac572d0268da5aa53ac739ac706bf2d08d41484f2090a3185d1fd15a8c2a4dec753668f29b58601c286dabeed4d12bad73f2759a32d11cb9181796ff0f5d9a863c026017d6bb8c9281402981754b9b0c29100ba60122c8e7d0bcb0e4a0f7029f33bbdbaff38856cd9e17bf2ec57346abf6b3c12a7cdff4947ace4f87e8bcc149b1c12c05d2bd189864a452fed4de32b21bd4dd53daa439c1495acabd13a26ab639bb5c2190548b658d5907e0c8531d1c0cfbaa4fd2243846205e6eee24", @generic="3c5b199858bcdb13d63a60f9c54b150fe3cf964ef61a849955827e8c820ea5ab2a68ffd7782561a53a75958ce8c12dd535fce542f5267597032fb00fd1159c846468484d575a1d690f363b5d5d150529e373b1e0372caebb4388261741cd050901121c39c75b775cc59aaad6eafca860ef83b76b46ac5396428e7bf77e1e5ad64697615044ec7cf618176b7552326ac1d2d448d7be0fb3339694e9a20cb05144718d710cb5597e5a3074965840e000eb83960833a314c8010a5532ef7db4d0d4b4c1856fe8a9e9c75cad59dc6818f30da10ed2d1d7886d8565502a7a59a4281b0addef73ac75cab4"]}, @nested={0x1dc, 0x7f, [@typed={0x8, 0x96, @ipv4=@multicast2}, @generic="56bbfe78832e67365b7dd53cd6f05c4b2d83ae8b6555dbfd0b8fa08d7d374c36870bc2f020fd39c6e5bf55ce6ec91a463f8bf442dbe033b44524771991a9fdf58f14e0be3b02da2a0884534c361673763628353326109e46676815311b26f9d89a48b31f1eaf3a6ebc25225230d96bcedd7fea32f896281da316ba01e4087c559081ed42a61fcb7af544383ad2947bfb799359c3b53331eae00a05ed574f6ee9cd4e4a161900d6b0b119b5edfad0415a0eff81de85badc919d", @typed={0x8, 0x75, @fd=r0}, @generic="88a48b0431f06fb54307c1a96243c62a5bb840046301dff2ad6939029f2f100125a98c631beec68ed1a0c6f5b1512c1583f095755d9b709caa6d7722b4bc602201970e6e8946a54508692d9c66f42c4558e3154f114f0a26784508eecc5f4c925badbb24270431d0352114b9beddc4fd51146a1e819f2939862ee8a9422efe3701c408d18a0473998ac649ad30ecb9e652ad4f41ca73aba504973c1b10718f40a8f603427beb6b7c1fbe24b05797efb4fe308941be78d4ae66eedd832b159bf76ea04304bcf5767a946516bd57233e8c61c0a16adb3b6a83a44c101518bd2cfe818844fe74152392adccfed3", @typed={0x14, 0x4, @ipv6=@loopback}, @typed={0x4, 0x77}, @typed={0x8, 0x91, @pid=r7}]}, @typed={0x8, 0x1, @u32=0x800}]}, 0x850}, {&(0x7f0000003d80)={0xb0, 0x3c, 0x300, 0x70bd25, 0x25dfdbfb, "", [@typed={0xc, 0x19, @u64=0xfffffffffffffc01}, @generic="9bd735861efd711bb6b1b5408dff176efd6403e05efcfc6e6e1f63333528a98c545c4b8fc63dd5c8bab370fd8a34d26d65f5b9a643714e8980a1bd197fb05e10de1753e0814726b41a201cad2a257da16408f1311aeba776c76a3db485a3cff923b7b2a6cae6a07794297ae3f0de0f2d41eff4a579d2c606f5ceacb3c5ba1e4d9f74702479f77c922518b76a44f4b71252ddf9da"]}, 0xb0}], 0x8, &(0x7f0000004140)=[@cred={{0x1c, 0x1, 0x2, {r8, r9, r10}}}, @cred={{0x1c, 0x1, 0x2, {r11, r12, r13}}}, @cred={{0x1c, 0x1, 0x2, {r14, r15, r16}}}], 0x60, 0x20000000}, 0x10)
getresgid(&(0x7f0000000000), &(0x7f0000000040), &(0x7f0000000080))

04:13:24 executing program 0:
r0 = syz_open_dev$binder(&(0x7f0000001000)='/dev/binder#\x00', 0xffffffffffffffff, 0x0)
r1 = dup(r0)
ioctl$BINDER_WRITE_READ(r0, 0xc0046209, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r2 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000080)='IPVS\x00')
ioctl$TIOCGPTPEER(r1, 0x5441, 0x6)
sendmsg$IPVS_CMD_SET_CONFIG(r1, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x24, r2, 0x300, 0x70bd2a, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_UDP={0x8}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0xe5}]}, 0x24}, 0x1, 0x0, 0x0, 0x4}, 0x8000)

04:13:24 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}, 0x1, 0x65580000}, 0x0)

[ 3317.263509] syz-executor.5 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 3317.318150] syz-executor.5 cpuset=syz5 mems_allowed=0-1
[ 3317.331709] CPU: 1 PID: 23901 Comm: syz-executor.5 Not tainted 4.19.66 #40
[ 3317.338769] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3317.348455] Call Trace:
[ 3317.351252]  dump_stack+0x172/0x1f0
[ 3317.354933]  dump_header+0x15e/0xa55
[ 3317.358681]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 3317.363833]  ? ___ratelimit+0x60/0x595
[ 3317.367847]  ? do_raw_spin_unlock+0x57/0x270
[ 3317.372358]  oom_kill_process.cold+0x10/0x6ef
[ 3317.377012]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 3317.382576]  ? task_will_free_mem+0x139/0x6e0
[ 3317.387277]  out_of_memory+0x936/0x12d0
[ 3317.391280]  ? lock_downgrade+0x810/0x810
[ 3317.395462]  ? oom_killer_disable+0x280/0x280
[ 3317.400264]  ? find_held_lock+0x35/0x130
[ 3317.404408]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 3317.409367]  ? memcg_event_wake+0x230/0x230
[ 3317.413738]  ? do_raw_spin_unlock+0x57/0x270
[ 3317.418353]  ? _raw_spin_unlock+0x2d/0x50
[ 3317.422538]  try_charge+0x1028/0x15b0
[ 3317.426542]  ? find_held_lock+0x35/0x130
[ 3317.430637]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 3317.435609]  ? kasan_check_read+0x11/0x20
[ 3317.439819]  ? get_mem_cgroup_from_mm+0x156/0x320
[ 3317.444708]  mem_cgroup_try_charge+0x259/0x6b0
[ 3317.449423]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 3317.454568]  wp_page_copy+0x430/0x16a0
[ 3317.458489]  ? pmd_pfn+0x1d0/0x1d0
[ 3317.462058]  ? kasan_check_read+0x11/0x20
04:13:24 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"/968]}, 0x440)

[ 3317.466249]  ? do_raw_spin_unlock+0x57/0x270
[ 3317.470777]  do_wp_page+0x57d/0x10b0
[ 3317.474595]  ? lock_acquire+0x16f/0x3f0
[ 3317.478598]  ? finish_mkwrite_fault+0x4f0/0x4f0
[ 3317.483479]  ? kasan_check_write+0x14/0x20
[ 3317.487827]  ? do_raw_spin_lock+0xc8/0x240
[ 3317.492097]  __handle_mm_fault+0x2305/0x3f80
[ 3317.496632]  ? vmf_insert_mixed_mkwrite+0x90/0x90
[ 3317.501530]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 3317.506234]  handle_mm_fault+0x1b5/0x690
[ 3317.510510]  __do_page_fault+0x62a/0xe90
[ 3317.510539]  ? vmalloc_fault+0x740/0x740
[ 3317.518966]  ? trace_hardirqs_off_caller+0x65/0x220
[ 3317.524312]  ? trace_hardirqs_on_caller+0x6a/0x220
[ 3317.529567]  ? page_fault+0x8/0x30
[ 3317.529589]  do_page_fault+0x71/0x57d
[ 3317.529606]  ? page_fault+0x8/0x30
[ 3317.541096]  page_fault+0x1e/0x30
[ 3317.544832] RIP: 0033:0x40e9c8
[ 3317.548052] Code: 8b 34 c6 4a 8d 04 2e 48 3d ff ff ff 7e 0f 86 77 ff ff ff bf 35 ee 4b 00 31 c0 e8 63 33 ff ff 31 ff e8 ac 2f ff ff 0f 1f 40 00 <89> 3c b5 00 00 73 00 eb b6 31 ed 0f 1f 44 00 00 80 3d 9e 1a 66 00
04:13:24 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x9effffff00000000}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

[ 3317.567503] RSP: 002b:00007ffd53165230 EFLAGS: 00010246
[ 3317.572920] RAX: 000000009cbb6923 RBX: 0000000062090bed RCX: 0000001b2ed20000
[ 3317.580298] RDX: 0000000000000000 RSI: 0000000000000923 RDI: ffffffff9cbb6923
[ 3317.587716] RBP: 0000000000000008 R08: 000000009cbb6923 R09: 000000009cbb6927
[ 3317.595454] R10: 00007ffd531653d0 R11: 0000000000000246 R12: 000000000075bfa8
[ 3317.602836] R13: 0000000080000000 R14: 00007f09e87ff008 R15: 0000000000000008
[ 3317.694778] Task in /syz5 killed as a result of limit of /syz5
[ 3317.702211] memory: usage 307200kB, limit 307200kB, failcnt 8209
[ 3317.710606] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3317.717804] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3317.724310] Memory cgroup stats for /syz5: cache:72KB rss:144KB rss_huge:0KB shmem:12KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:164KB inactive_file:0KB active_file:0KB unevictable:0KB
04:13:24 executing program 5:
r0 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000240)='/dev/dlm-control\x00', 0x40000, 0x0)
ioctl$SNDRV_TIMER_IOCTL_GINFO(r0, 0xc0f85403, &(0x7f0000000280)={{0xffffffffffffffff, 0x0, 0x5830000000000, 0x3, 0x4}, 0xf177, 0xb431, 'id0\x00', 'timer1\x00', 0x0, 0x8b4, 0x81, 0x0, 0x445})
shmat(0x0, &(0x7f0000ffc000/0x4000)=nil, 0x3000)
mbind(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x2, &(0x7f0000000000)=0xffff, 0x2, 0x0)
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0x20b, &(0x7f0000000040)=[{&(0x7f0000000540)="2e000000220005000000c187185095cf0400b0eba0b4d65c0016000051894d5d1dac00"/46, 0x2e}], 0x1}, 0x0)
r2 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000080)='/dev/qat_adf_ctl\x00', 0x200, 0x0)
ioctl$DRM_IOCTL_ADD_CTX(0xffffffffffffffff, 0xc0086420, &(0x7f00000000c0)={<r3=>0x0})
ioctl$DRM_IOCTL_GET_SAREA_CTX(r2, 0xc010641d, &(0x7f0000000200)={r3, &(0x7f0000000100)=""/74})

04:13:24 executing program 0:
r0 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dlm-control\x00', 0x2000, 0x0)
ioctl$EVIOCSABS2F(r0, 0x401845ef, &(0x7f0000000040)={0x5, 0x4, 0x80000000, 0x3f, 0x0, 0x4})
write$P9_RSYMLINK(r0, &(0x7f0000000080)={0x14, 0x11, 0x2, {0x80, 0x2, 0x2}}, 0x14)
r1 = socket$inet6(0xa, 0x400000000001, 0x0)
renameat2(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000000100)='./file0\x00', 0x2)
close(r1)
r2 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000240)='/dev/snapshot\x00', 0x0, 0x0)
ioctl$FS_IOC_GETVERSION(r2, 0x80087601, &(0x7f0000000140))
ioctl$NBD_SET_SIZE_BLOCKS(r2, 0xab07, 0x9)
ioctl$SNDRV_CTL_IOCTL_PVERSION(r1, 0x3310, 0x0)

04:13:24 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}, 0x1, 0x81000000}, 0x0)

04:13:24 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"/968]}, 0x440)

[ 3317.745500] Memory cgroup out of memory: Kill process 23901 (syz-executor.5) score 1103 or sacrifice child
[ 3317.756810] Killed process 23901 (syz-executor.5) total-vm:72580kB, anon-rss:108kB, file-rss:34816kB, shmem-rss:0kB
[ 3317.768960] oom_reaper: reaped process 23901 (syz-executor.5), now anon-rss:0kB, file-rss:33856kB, shmem-rss:0kB
04:13:24 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="00000000004000000000000000000000000000000000000000000000000000000000000000000200ffffffff020000001d00000001000000080676657468305f746f5f627269646765006e7230000000000000000000000000006772653000000000000000000000000076657468315f746f5f626f6e64000000aaaaaaaaaaaa000000000000aaaaaaaaaaaa00000000000000007000000070000000a80000006172707265706c790000000000000000000000000000000000000000000000001000000000000000aaaaaaaaaaaa0000feffffff0000000009000000000000000000697064647030000000000000000000006272696467655f736c6176655f3100000000000000000000000000000000000067726530000000000000000000000000ffffffffffff0000000000000000000000000000000000000000e0000000180100005001000072617465657374000000000000a3000000000000000000000000000000000000480000000000000064756d6d79300000000000000000000073797a5f74756e0000000ab941773a25a4462a99832900000000000000000000200000000000000000000000000000000000000000000000736e6174000000000000000000000000000000000000000000000000000000001000000000000000aaaaaaaaaaaa000000000000000000006d61726b0000000000000000000000000000000000000000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000002000000feffffff01000000110000000000000000006272696467655f736c6176655f3100000000000000000000000000749638e0006c6f00000000000000000000000000000080616d300000000000000000000000aaaaaaaaaa00000000000000aaaaaaaaaaaa0000000000000000a00000000801000040010000636f6e6e6c6162656c000000000000000000000000000000000000000000000008000000000000000000000000000000434c4153534946590000000000000000000000000000000000ff07000000000008000000000000000000000000000000736e617400000000000000000000000000000000000000000001000000000000100000000000000000000000000000000000000000000000736e6174000000000000000000000000000000000000000000000000000000001000000000001400aaaaaaaaaabb00"/968]}, 0x440)

[ 3317.923658] syz-executor.5 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 3317.954162] syz-executor.5 cpuset=syz5 mems_allowed=0-1
[ 3317.976555] CPU: 1 PID: 24033 Comm: syz-executor.5 Not tainted 4.19.66 #40
[ 3317.983891] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3317.993471] Call Trace:
[ 3317.996099]  dump_stack+0x172/0x1f0
[ 3317.999761]  dump_header+0x15e/0xa55
[ 3318.003597]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 3318.008728]  ? ___ratelimit+0x60/0x595
[ 3318.012661]  ? do_raw_spin_unlock+0x57/0x270
[ 3318.017108]  oom_kill_process.cold+0x10/0x6ef
[ 3318.021641]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 3318.027216]  ? task_will_free_mem+0x139/0x6e0
[ 3318.031837]  out_of_memory+0x936/0x12d0
[ 3318.036427]  ? lock_downgrade+0x810/0x810
[ 3318.040989]  ? oom_killer_disable+0x280/0x280
[ 3318.045512]  ? find_held_lock+0x35/0x130
[ 3318.049805]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 3318.054925]  ? memcg_event_wake+0x230/0x230
[ 3318.059291]  ? do_raw_spin_unlock+0x57/0x270
[ 3318.063817]  ? _raw_spin_unlock+0x2d/0x50
[ 3318.068390]  try_charge+0x1028/0x15b0
[ 3318.073916]  ? find_held_lock+0x35/0x130
[ 3318.078018]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 3318.082984]  ? kasan_check_read+0x11/0x20
[ 3318.087313]  ? get_mem_cgroup_from_mm+0x156/0x320
[ 3318.092212]  mem_cgroup_try_charge+0x259/0x6b0
[ 3318.097096]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 3318.102244]  wp_page_copy+0x430/0x16a0
[ 3318.106195]  ? pmd_pfn+0x1d0/0x1d0
[ 3318.109853]  ? kasan_check_read+0x11/0x20
[ 3318.114133]  ? do_raw_spin_unlock+0x57/0x270
[ 3318.119153]  do_wp_page+0x57d/0x10b0
[ 3318.122901]  ? lock_acquire+0x16f/0x3f0
[ 3318.127059]  ? finish_mkwrite_fault+0x4f0/0x4f0
[ 3318.131912]  ? kasan_check_write+0x14/0x20
[ 3318.138965]  ? do_raw_spin_lock+0xc8/0x240
[ 3318.143254]  __handle_mm_fault+0x2305/0x3f80
[ 3318.148052]  ? vmf_insert_mixed_mkwrite+0x90/0x90
[ 3318.152975]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 3318.157766]  handle_mm_fault+0x1b5/0x690
[ 3318.162082]  __do_page_fault+0x62a/0xe90
[ 3318.166303]  ? vmalloc_fault+0x740/0x740
[ 3318.170395]  ? trace_hardirqs_off_caller+0x65/0x220
[ 3318.175785]  ? trace_hardirqs_on_caller+0x6a/0x220
[ 3318.180932]  ? page_fault+0x8/0x30
[ 3318.184600]  do_page_fault+0x71/0x57d
[ 3318.188516]  ? page_fault+0x8/0x30
[ 3318.192105]  page_fault+0x1e/0x30
[ 3318.195689] RIP: 0033:0x40e9c8
[ 3318.198913] Code: 8b 34 c6 4a 8d 04 2e 48 3d ff ff ff 7e 0f 86 77 ff ff ff bf 35 ee 4b 00 31 c0 e8 63 33 ff ff 31 ff e8 ac 2f ff ff 0f 1f 40 00 <89> 3c b5 00 00 73 00 eb b6 31 ed 0f 1f 44 00 00 80 3d 9e 1a 66 00
[ 3318.218487] RSP: 002b:00007ffd53165230 EFLAGS: 00010246
[ 3318.223887] RAX: 000000009cbb6923 RBX: 0000000062090bed RCX: 0000001b2ed20000
[ 3318.231184] RDX: 0000000000000000 RSI: 0000000000000923 RDI: ffffffff9cbb6923
[ 3318.239050] RBP: 0000000000000008 R08: 000000009cbb6923 R09: 000000009cbb6927
[ 3318.246706] R10: 00007ffd531653d0 R11: 0000000000000246 R12: 000000000075bfa8
[ 3318.254800] R13: 0000000080000000 R14: 00007f09e87ff008 R15: 0000000000000008
[ 3318.265656] Task in /syz5 killed as a result of limit of /syz5
[ 3318.271896] memory: usage 307200kB, limit 307200kB, failcnt 8236
04:13:25 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"/968]}, 0x440)

[ 3318.278666] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3318.286061] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3318.292777] Memory cgroup stats for /syz5: cache:72KB rss:144KB rss_huge:0KB shmem:12KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:164KB inactive_file:0KB active_file:0KB unevictable:0KB
[ 3318.313667] Memory cgroup out of memory: Kill process 24033 (syz-executor.5) score 1103 or sacrifice child
[ 3318.324851] Killed process 24033 (syz-executor.5) total-vm:72580kB, anon-rss:108kB, file-rss:34816kB, shmem-rss:0kB
[ 3318.337288] oom_reaper: reaped process 24033 (syz-executor.5), now anon-rss:0kB, file-rss:33856kB, shmem-rss:0kB
04:13:25 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x9effffff00000000}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

04:13:25 executing program 0:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000000)="11dca50d5e0bcfe47bf070")
r1 = socket$inet6(0xa, 0x1, 0x8010000000000084)
bind$inet6(r1, &(0x7f0000ef8cfd)={0xa, 0x1001000004e23, 0x0, @loopback}, 0x1c)
getsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f00000001c0)={{{@in=@dev, @in=@empty, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r2=>0x0}}, {{@in=@broadcast}, 0x0, @in6=@remote}}, &(0x7f00000002c0)=0xe8)
getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000300)={0x0, <r3=>0x0}, &(0x7f0000000340)=0xc)
setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f0000000380)={{{@in6=@remote, @in=@broadcast, 0x4e23, 0x7, 0x4e24, 0x3ff, 0xa, 0x80, 0x80, 0x1d, r2, r3}, {0x1, 0x2, 0x401, 0x7fff, 0x5, 0x401, 0x8, 0x6}, {0x8, 0x3, 0x0, 0xffffffff}, 0x2, 0x6e6bb9, 0x1, 0x1, 0x1, 0x3}, {{@in6=@empty, 0x4d3, 0x6c}, 0xa, @in6=@rand_addr="0db48b58505c678b5a45ebda6ec7d0aa", 0x3507, 0x2, 0x3, 0x100, 0xff, 0x3ff, 0xd7a3}}, 0xe8)
listen(r1, 0x4)
r4 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX_OLD(r4, 0x84, 0x6b, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
r5 = accept(r1, 0x0, 0x0)
write(r4, &(0x7f0000000100), 0x1ede5)
shutdown(r4, 0x2)
sendto$packet(r5, &(0x7f0000000040)='u', 0x1, 0x0, 0x0, 0x0)
r6 = openat$full(0xffffffffffffff9c, &(0x7f0000000080)='/dev/full\x00', 0x20200, 0x0)
ioctl$TIOCGSERIAL(r6, 0x541e, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000000c0)=""/116})

04:13:25 executing program 5:
r0 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000240)='/dev/dlm-control\x00', 0x40000, 0x0)
ioctl$SNDRV_TIMER_IOCTL_GINFO(r0, 0xc0f85403, &(0x7f0000000280)={{0xffffffffffffffff, 0x0, 0x5830000000000, 0x3, 0x4}, 0xf177, 0xb431, 'id0\x00', 'timer1\x00', 0x0, 0x8b4, 0x81, 0x0, 0x445})
shmat(0x0, &(0x7f0000ffc000/0x4000)=nil, 0x3000)
mbind(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x2, &(0x7f0000000000)=0xffff, 0x2, 0x0)
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0x20b, &(0x7f0000000040)=[{&(0x7f0000000540)="2e000000220005000000c187185095cf0400b0eba0b4d65c0017000051894d5d1dac00"/46, 0x2e}], 0x1}, 0x0)
r2 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000080)='/dev/qat_adf_ctl\x00', 0x200, 0x0)
ioctl$DRM_IOCTL_ADD_CTX(0xffffffffffffffff, 0xc0086420, &(0x7f00000000c0)={<r3=>0x0})
ioctl$DRM_IOCTL_GET_SAREA_CTX(r2, 0xc010641d, &(0x7f0000000200)={r3, &(0x7f0000000100)=""/74})

04:13:25 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}, 0x1, 0x88a8ffff}, 0x0)

04:13:25 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"/968]}, 0x440)

04:13:25 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0xf0ffffff00000000}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

04:13:25 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"/968]}, 0x440)

[ 3318.626520] syz-executor.5 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 3318.683077] syz-executor.5 cpuset=syz5 mems_allowed=0-1
[ 3318.706089] CPU: 0 PID: 24050 Comm: syz-executor.5 Not tainted 4.19.66 #40
[ 3318.713385] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3318.723419] Call Trace:
[ 3318.726047]  dump_stack+0x172/0x1f0
[ 3318.729719]  dump_header+0x15e/0xa55
[ 3318.733568]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 3318.739015]  ? ___ratelimit+0x60/0x595
[ 3318.743149]  ? do_raw_spin_unlock+0x57/0x270
[ 3318.747710]  oom_kill_process.cold+0x10/0x6ef
[ 3318.752372]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 3318.757948]  ? task_will_free_mem+0x139/0x6e0
[ 3318.762533]  out_of_memory+0x936/0x12d0
[ 3318.766723]  ? lock_downgrade+0x810/0x810
[ 3318.771327]  ? oom_killer_disable+0x280/0x280
[ 3318.775942]  ? find_held_lock+0x35/0x130
[ 3318.780176]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 3318.785141]  ? memcg_event_wake+0x230/0x230
[ 3318.789609]  ? do_raw_spin_unlock+0x57/0x270
[ 3318.794454]  ? _raw_spin_unlock+0x2d/0x50
[ 3318.798726]  try_charge+0x1028/0x15b0
[ 3318.802575]  ? find_held_lock+0x35/0x130
[ 3318.806695]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 3318.811756]  ? kasan_check_read+0x11/0x20
[ 3318.816049]  ? get_mem_cgroup_from_mm+0x156/0x320
[ 3318.820948]  mem_cgroup_try_charge+0x259/0x6b0
[ 3318.825599]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 3318.830666]  wp_page_copy+0x430/0x16a0
[ 3318.834616]  ? pmd_pfn+0x1d0/0x1d0
[ 3318.838272]  ? kasan_check_read+0x11/0x20
[ 3318.842470]  ? do_raw_spin_unlock+0x57/0x270
[ 3318.846913]  do_wp_page+0x57d/0x10b0
[ 3318.850659]  ? finish_mkwrite_fault+0x4f0/0x4f0
[ 3318.855624]  ? kasan_check_write+0x14/0x20
[ 3318.859974]  ? do_raw_spin_lock+0xc8/0x240
[ 3318.864430]  __handle_mm_fault+0x2305/0x3f80
[ 3318.868875]  ? vmf_insert_mixed_mkwrite+0x90/0x90
[ 3318.873856]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 3318.878562]  handle_mm_fault+0x1b5/0x690
04:13:25 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"/968]}, 0x440)

04:13:25 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"/968]}, 0x440)

04:13:25 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"/968]}, 0x440)

[ 3318.882751]  __do_page_fault+0x62a/0xe90
[ 3318.886844]  ? vmalloc_fault+0x740/0x740
[ 3318.890974]  ? trace_hardirqs_off_caller+0x65/0x220
[ 3318.896020]  ? trace_hardirqs_on_caller+0x6a/0x220
[ 3318.901074]  ? page_fault+0x8/0x30
[ 3318.904868]  do_page_fault+0x71/0x57d
[ 3318.908905]  ? page_fault+0x8/0x30
[ 3318.912481]  page_fault+0x1e/0x30
[ 3318.915956] RIP: 0033:0x40c1d8
04:13:25 executing program 0:
r0 = syz_open_dev$sndctrl(&(0x7f0000000000)='/dev/snd/controlC#\x00', 0x0, 0x0)
r1 = creat(&(0x7f0000000080)='./file0\x00', 0x0)
setsockopt$bt_BT_VOICE(r1, 0x112, 0xb, &(0x7f00000000c0)=0x3, 0x2)
ioctl$SNDRV_CTL_IOCTL_RAWMIDI_NEXT_DEVICE(r0, 0xc0045540, &(0x7f0000000040))
ioctl$EVIOCGBITKEY(r1, 0x80404521, &(0x7f0000000100)=""/151)

04:13:25 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0xfeff000000000000}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

[ 3318.919174] Code: 00 00 49 8d be 88 00 00 00 48 89 ea 48 89 de 0f 85 dd 00 00 00 e8 38 2c 00 00 8b 05 32 be 32 00 48 8b 15 c3 42 66 00 83 c0 01 <89> 05 22 be 32 00 89 02 48 83 c4 08 5b 5d 41 5c 41 5d 41 5e 41 5f
[ 3318.938882] RSP: 002b:00007ffd53165290 EFLAGS: 00010202
[ 3318.944448] RAX: 0000000000000001 RBX: 0000001b2dd20014 RCX: 0000001b2ed20000
[ 3318.952088] RDX: 0000001b2dd20000 RSI: 0000000000000f10 RDI: fffffffff1ed4f10
[ 3318.960152] RBP: 0000001b2dd20018 R08: 00000000f1ed4f10 R09: 00000000f1ed4f14
[ 3318.967771] R10: 00007ffd531653d0 R11: 0000000000000246 R12: 0000001b2dd2001c
[ 3318.975188] R13: 000000000032a335 R14: 000000000075bf20 R15: 000000000075bf2c
[ 3319.123026] Task in /syz5 killed as a result of limit of /syz5
[ 3319.150511] memory: usage 307200kB, limit 307200kB, failcnt 8266
[ 3319.186345] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
04:13:26 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x9effffff00000000}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

04:13:26 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}, 0x1, 0x9effffff}, 0x0)

[ 3319.242756] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3319.249006] Memory cgroup stats for /syz5: cache:72KB rss:144KB rss_huge:0KB shmem:12KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:172KB inactive_file:0KB active_file:0KB unevictable:0KB
[ 3319.352387] Memory cgroup out of memory: Kill process 24050 (syz-executor.5) score 1103 or sacrifice child
[ 3319.385717] Killed process 24050 (syz-executor.5) total-vm:72580kB, anon-rss:108kB, file-rss:34816kB, shmem-rss:0kB
[ 3319.422789] oom_reaper: reaped process 24050 (syz-executor.5), now anon-rss:0kB, file-rss:33856kB, shmem-rss:0kB
04:13:26 executing program 5:
r0 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000240)='/dev/dlm-control\x00', 0x40000, 0x0)
ioctl$SNDRV_TIMER_IOCTL_GINFO(r0, 0xc0f85403, &(0x7f0000000280)={{0xffffffffffffffff, 0x0, 0x5830000000000, 0x3, 0x4}, 0xf177, 0xb431, 'id0\x00', 'timer1\x00', 0x0, 0x8b4, 0x81, 0x0, 0x445})
shmat(0x0, &(0x7f0000ffc000/0x4000)=nil, 0x3000)
mbind(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x2, &(0x7f0000000000)=0xffff, 0x2, 0x0)
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0x20b, &(0x7f0000000040)=[{&(0x7f0000000540)="2e000000220005000000c187185095cf0400b0eba0b4d65c0018000051894d5d1dac00"/46, 0x2e}], 0x1}, 0x0)
r2 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000080)='/dev/qat_adf_ctl\x00', 0x200, 0x0)
ioctl$DRM_IOCTL_ADD_CTX(0xffffffffffffffff, 0xc0086420, &(0x7f00000000c0)={<r3=>0x0})
ioctl$DRM_IOCTL_GET_SAREA_CTX(r2, 0xc010641d, &(0x7f0000000200)={r3, &(0x7f0000000100)=""/74})

04:13:26 executing program 0:
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='stat\t\xc0\xd2\xfe\xbc\xf9\xdf-\xea\xc8\xc1w\xff\x17\x12H\xe9\x11\x93Q0I\xf81U\ro}\xe6l\xf6\x17s\'C\xe3\x97\xb8\x9f&\xed\xa4\xdc\xc3x?\x9d\xb5\x11k4\xd3\x1b\x05\x12\xa5`\x8a\xaf\xf0\x1eyR4\f\xd6\xfd\x00\x00\x00\x00', 0x275a, 0x0)
ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000000c0)=0x10)
write$P9_RREAD(r0, &(0x7f0000000240)=ANY=[@ANYBLOB='\t'], 0x1)

04:13:26 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="00000000004000000000000000000000000000000000000000000000000000000000000000000000ffffffff060000001d00000001000000080676657468305f746f5f627269646765006e7230000000000000000000000000006772653000000000000000000000000076657468315f746f5f626f6e64000000aaaaaaaaaaaa000000000000aaaaaaaaaaaa00000000000000007000000070000000a80000006172707265706c790000000000000000000000000000000000000000000000001000000000000000aaaaaaaaaaaa0000feffffff0000000009000000000000000000697064647030000000000000000000006272696467655f736c6176655f3100000000000000000000000000000000000067726530000000000000000000000000ffffffffffff0000000000000000000000000000000000000000e0000000180100005001000072617465657374000000000000a3000000000000000000000000000000000000480000000000000064756d6d79300000000000000000000073797a5f74756e0000000ab941773a25a4462a99832900000000000000000000200000000000000000000000000000000000000000000000736e6174000000000000000000000000000000000000000000000000000000001000000000000000aaaaaaaaaaaa000000000000000000006d61726b0000000000000000000000000000000000000000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000002000000feffffff01000000110000000000000000006272696467655f736c6176655f3100000000000000000000000000749638e0006c6f00000000000000000000000000000080616d300000000000000000000000aaaaaaaaaa00000000000000aaaaaaaaaaaa0000000000000000a00000000801000040010000636f6e6e6c6162656c000000000000000000000000000000000000000000000008000000000000000000000000000000434c4153534946590000000000000000000000000000000000ff07000000000008000000000000000000000000000000736e617400000000000000000000000000000000000000000001000000000000100000000000000000000000000000000000000000000000736e6174000000000000000000000000000000000000000000000000000000001000000000001400aaaaaaaaaabb00"/968]}, 0x440)

04:13:26 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"/968]}, 0x440)

04:13:26 executing program 0:
r0 = socket$inet6(0xa, 0x1, 0x84)
setsockopt$sock_int(r0, 0x1, 0x4000000000000002, &(0x7f0000000280)=0x6, 0x4)
bind$inet6(r0, &(0x7f0000000080)={0xa, 0x44e20}, 0x3)
sendto$inet6(r0, 0x0, 0x0, 0x20040000, &(0x7f0000000100)={0xa, 0x4e20, 0x0, @loopback}, 0x1b)

[ 3319.764751] syz-executor.5 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
04:13:26 executing program 0:
fsetxattr$security_smack_entry(0xffffffffffffffff, &(0x7f0000000000)='security.SMACK64IPOUT\x00', &(0x7f0000000200)='security.SMACK64IPOUT\x00', 0x1c0, 0x3)
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
setsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, 0x0, 0xfffffef5)
r0 = socket(0x10, 0x803, 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000080)=0x9bb6)
sendto(r0, &(0x7f0000000040)="120000001a00e5ff007b00000000008000a1", 0x12, 0x0, 0x0, 0xfffffffffffffe24)
recvmmsg(r0, &(0x7f0000003800)=[{{0x0, 0x42508ceafb7498a0, 0x0, 0x0, &(0x7f0000000140)=""/107, 0x6b}}, {{0x0, 0xffffffffffffff44, 0x0}}, {{0x0, 0xfffffffffffffe05, 0x0, 0x0, 0x0, 0x60}}], 0x4b8, 0x0, 0x0)

[ 3319.823476] syz-executor.5 cpuset=syz5 mems_allowed=0-1
04:13:26 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"/968]}, 0x440)

[ 3319.849136] CPU: 0 PID: 24185 Comm: syz-executor.5 Not tainted 4.19.66 #40
[ 3319.856487] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3319.866198] Call Trace:
[ 3319.868906]  dump_stack+0x172/0x1f0
[ 3319.872576]  dump_header+0x15e/0xa55
[ 3319.876324]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 3319.881661]  ? ___ratelimit+0x60/0x595
[ 3319.885695]  ? do_raw_spin_unlock+0x57/0x270
[ 3319.890295]  oom_kill_process.cold+0x10/0x6ef
[ 3319.895003]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 3319.900935]  ? task_will_free_mem+0x139/0x6e0
[ 3319.905775]  out_of_memory+0x936/0x12d0
[ 3319.909984]  ? lock_downgrade+0x810/0x810
[ 3319.914512]  ? oom_killer_disable+0x280/0x280
[ 3319.919297]  ? find_held_lock+0x35/0x130
[ 3319.923497]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 3319.928436]  ? memcg_event_wake+0x230/0x230
[ 3319.933941]  ? do_raw_spin_unlock+0x57/0x270
[ 3319.938704]  ? _raw_spin_unlock+0x2d/0x50
[ 3319.943022]  try_charge+0x1028/0x15b0
[ 3319.946945]  ? find_held_lock+0x35/0x130
[ 3319.951229]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 3319.956335]  ? kasan_check_read+0x11/0x20
[ 3319.960647]  ? get_mem_cgroup_from_mm+0x156/0x320
[ 3319.965710]  mem_cgroup_try_charge+0x259/0x6b0
[ 3319.970507]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 3319.975650]  wp_page_copy+0x430/0x16a0
[ 3319.979586]  ? pmd_pfn+0x1d0/0x1d0
[ 3319.983250]  ? kasan_check_read+0x11/0x20
[ 3319.989254]  ? do_raw_spin_unlock+0x57/0x270
[ 3319.993817]  do_wp_page+0x57d/0x10b0
04:13:26 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"/968]}, 0x440)

[ 3319.997652]  ? lock_acquire+0x16f/0x3f0
[ 3320.001823]  ? finish_mkwrite_fault+0x4f0/0x4f0
[ 3320.007098]  ? kasan_check_write+0x14/0x20
[ 3320.012035]  ? do_raw_spin_lock+0xc8/0x240
[ 3320.016514]  __handle_mm_fault+0x2305/0x3f80
[ 3320.020971]  ? vmf_insert_mixed_mkwrite+0x90/0x90
[ 3320.025867]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 3320.025893]  handle_mm_fault+0x1b5/0x690
[ 3320.034943]  __do_page_fault+0x62a/0xe90
[ 3320.034966]  ? vmalloc_fault+0x740/0x740
[ 3320.034984]  ? trace_hardirqs_off_caller+0x65/0x220
[ 3320.034996]  ? trace_hardirqs_on_caller+0x6a/0x220
[ 3320.035011]  ? page_fault+0x8/0x30
[ 3320.035029]  do_page_fault+0x71/0x57d
[ 3320.035046]  ? page_fault+0x8/0x30
[ 3320.065170]  page_fault+0x1e/0x30
[ 3320.068815] RIP: 0033:0x40e9c8
[ 3320.074637] Code: 8b 34 c6 4a 8d 04 2e 48 3d ff ff ff 7e 0f 86 77 ff ff ff bf 35 ee 4b 00 31 c0 e8 63 33 ff ff 31 ff e8 ac 2f ff ff 0f 1f 40 00 <89> 3c b5 00 00 73 00 eb b6 31 ed 0f 1f 44 00 00 80 3d 9e 1a 66 00
[ 3320.094290] RSP: 002b:00007ffd53165230 EFLAGS: 00010246
04:13:27 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"/968]}, 0x440)

[ 3320.099696] RAX: 000000009cbb6923 RBX: 0000000062090bed RCX: 0000001b2ed20000
[ 3320.107414] RDX: 0000000000000000 RSI: 0000000000000923 RDI: ffffffff9cbb6923
[ 3320.114887] RBP: 0000000000000008 R08: 000000009cbb6923 R09: 000000009cbb6927
[ 3320.122438] R10: 00007ffd531653d0 R11: 0000000000000246 R12: 000000000075bfa8
[ 3320.129915] R13: 0000000080000000 R14: 00007f09e87ff008 R15: 0000000000000008
04:13:27 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0xff0f000000000000}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

[ 3320.342986] Task in /syz5 killed as a result of limit of /syz5
[ 3320.349242] memory: usage 307200kB, limit 307200kB, failcnt 8296
[ 3320.410885] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3320.442825] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3320.471595] Memory cgroup stats for /syz5: cache:72KB rss:144KB rss_huge:0KB shmem:12KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:164KB inactive_file:0KB active_file:0KB unevictable:0KB
[ 3320.532804] Memory cgroup out of memory: Kill process 24185 (syz-executor.5) score 1103 or sacrifice child
[ 3320.552840] Killed process 24185 (syz-executor.5) total-vm:72580kB, anon-rss:108kB, file-rss:34816kB, shmem-rss:0kB
[ 3320.575381] oom_reaper: reaped process 24185 (syz-executor.5), now anon-rss:0kB, file-rss:33856kB, shmem-rss:0kB
[ 3321.313601] bridge0: port 3(erspan0) entered disabled state
[ 3321.322539] device erspan0 left promiscuous mode
[ 3321.328080] bridge0: port 3(erspan0) entered disabled state
[ 3321.738416] IPVS: ftp: loaded support on port[0] = 21
[ 3321.935436] chnl_net:caif_netlink_parms(): no params data found
[ 3321.949615] device bridge_slave_1 left promiscuous mode
[ 3321.955426] bridge0: port 2(bridge_slave_1) entered disabled state
[ 3321.994963] device bridge_slave_0 left promiscuous mode
[ 3322.000473] bridge0: port 1(bridge_slave_0) entered disabled state
[ 3325.385276] device hsr_slave_1 left promiscuous mode
[ 3325.427535] device hsr_slave_0 left promiscuous mode
[ 3325.468479] team0 (unregistering): Port device team_slave_1 removed
[ 3325.484363] team0 (unregistering): Port device team_slave_0 removed
[ 3325.498599] bond0 (unregistering): Releasing backup interface bond_slave_1
[ 3325.551508] bond0 (unregistering): Releasing backup interface bond_slave_0
[ 3325.654647] bond0 (unregistering): Released all slaves
[ 3325.758663] bridge0: port 1(bridge_slave_0) entered blocking state
[ 3325.765634] bridge0: port 1(bridge_slave_0) entered disabled state
[ 3325.773988] device bridge_slave_0 entered promiscuous mode
[ 3325.782212] bridge0: port 2(bridge_slave_1) entered blocking state
[ 3325.789000] bridge0: port 2(bridge_slave_1) entered disabled state
[ 3325.797636] device bridge_slave_1 entered promiscuous mode
[ 3325.820315] bond0: Enslaving bond_slave_0 as an active interface with an up link
[ 3325.831762] bond0: Enslaving bond_slave_1 as an active interface with an up link
[ 3325.853037] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready
[ 3325.861631] team0: Port device team_slave_0 added
[ 3325.867938] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready
[ 3325.876616] team0: Port device team_slave_1 added
[ 3325.882280] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready
[ 3325.890976] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready
[ 3325.947167] device hsr_slave_0 entered promiscuous mode
[ 3325.993780] device hsr_slave_1 entered promiscuous mode
[ 3326.034063] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready
[ 3326.041490] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready
[ 3326.068534] bridge0: port 2(bridge_slave_1) entered blocking state
[ 3326.077069] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 3326.083794] bridge0: port 1(bridge_slave_0) entered blocking state
[ 3326.090228] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 3326.196372] IPv6: ADDRCONF(NETDEV_UP): bond0: link is not ready
[ 3326.202472] 8021q: adding VLAN 0 to HW filter on device bond0
[ 3326.214691] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[ 3326.226807] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 3326.236376] bridge0: port 1(bridge_slave_0) entered disabled state
[ 3326.244614] bridge0: port 2(bridge_slave_1) entered disabled state
[ 3326.252605] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
[ 3326.268750] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready
[ 3326.275388] 8021q: adding VLAN 0 to HW filter on device team0
[ 3326.289922] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 3326.299087] bridge0: port 1(bridge_slave_0) entered blocking state
[ 3326.305511] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 3326.325934] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 3326.334700] bridge0: port 2(bridge_slave_1) entered blocking state
[ 3326.341055] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 3326.364636] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 3326.386169] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 3326.395166] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 3326.411008] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 3326.435781] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 3326.447151] IPv6: ADDRCONF(NETDEV_UP): hsr0: link is not ready
[ 3326.454357] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 3326.463843] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 3326.486185] IPv6: ADDRCONF(NETDEV_UP): vxcan1: link is not ready
[ 3326.503309] 8021q: adding VLAN 0 to HW filter on device batadv0
04:13:33 executing program 0:
r0 = openat$selinux_commit_pending_bools(0xffffffffffffff9c, &(0x7f00000000c0)='/selinux/commit_pending_bools\x00', 0x1, 0x0)
setsockopt$inet_sctp_SCTP_ADAPTATION_LAYER(r0, 0x84, 0x7, &(0x7f0000000100)={0x3}, 0x4)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
sendmsg$TIPC_NL_SOCK_GET(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000600)=ANY=[@ANYBLOB="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"/694], 0x1}, 0x1, 0x0, 0x0, 0x20000085}, 0x0)
r3 = getpgrp(0x0)
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000240)={0x0, <r4=>0x0}, &(0x7f0000000380)=0xc)
ioctl$BLKIOOPT(r0, 0x1279, &(0x7f0000000440))
ioctl$DRM_IOCTL_GET_CLIENT(r0, 0xc0286405, &(0x7f0000000400)={0x1, 0x2, r3, 0x0, r4, 0x0, 0x69125c4a, 0x400})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000001c0)=[@textreal={0x8, &(0x7f0000000080)="f2a6bad004b00fee0f090f3036f30f1a970000660f3806581e0f08bad004b0beeef30f2af8baa100b000ee", 0x2b}], 0xa2762718ec785d0, 0x0, 0x0, 0x0)
setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x0, &(0x7f0000000040)=0x96d1, 0x3)
getsockopt$netrom_NETROM_IDLE(r0, 0x103, 0x7, &(0x7f0000000140)=0x8001, &(0x7f0000000180)=0x4)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
mmap(&(0x7f000000f000/0x6000)=nil, 0x6000, 0x2, 0x13, r2, 0x0)
r5 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
setsockopt$kcm_KCM_RECV_DISABLE(r0, 0x119, 0x1, &(0x7f0000000480)=0x6, 0x4)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
accept4(0xffffffffffffffff, &(0x7f0000000580)=@rxrpc=@in6={0x21, 0x0, 0x2, 0x1c, {0xa, 0x0, 0x0, @dev}}, &(0x7f0000000000)=0x80, 0x0)
ioctl$KVM_SET_REGS(r5, 0x4090ae82, &(0x7f00000002c0)={[0x0, 0x0, 0x800, 0x0, 0x0, 0x0, 0x4ce]})
ioctl$KVM_RUN(r5, 0xae80, 0x0)
ioctl$KVM_RUN(r5, 0xae80, 0x0)

04:13:33 executing program 2:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
connect$inet(r0, &(0x7f0000000000)={0x2, 0x0, @remote}, 0x10)
r1 = socket(0xa, 0x1, 0x0)
setsockopt$inet_MCAST_JOIN_GROUP(r1, 0x0, 0x2a, &(0x7f0000000040)={0x2, {{0x2, 0x0, @multicast2}}}, 0x88)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = openat$selinux_mls(0xffffffffffffff9c, &(0x7f0000000100)='/selinux/mls\x00', 0x0, 0x0)
write$FUSE_GETXATTR(r3, &(0x7f0000000140)={0x18, 0x0, 0x7}, 0x18)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x2c, &(0x7f0000002000)=0x40, 0x4)

04:13:33 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"/968]}, 0x440)

04:13:33 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}, 0x1, 0xa0010000}, 0x0)

04:13:33 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0xffffff7f00000000}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

04:13:33 executing program 5:
r0 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000240)='/dev/dlm-control\x00', 0x40000, 0x0)
ioctl$SNDRV_TIMER_IOCTL_GINFO(r0, 0xc0f85403, &(0x7f0000000280)={{0xffffffffffffffff, 0x0, 0x5830000000000, 0x3, 0x4}, 0xf177, 0xb431, 'id0\x00', 'timer1\x00', 0x0, 0x8b4, 0x81, 0x0, 0x445})
shmat(0x0, &(0x7f0000ffc000/0x4000)=nil, 0x3000)
mbind(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x2, &(0x7f0000000000)=0xffff, 0x2, 0x0)
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0x20b, &(0x7f0000000040)=[{&(0x7f0000000540)="2e000000220005000000c187185095cf0400b0eba0b4d65c0019000051894d5d1dac00"/46, 0x2e}], 0x1}, 0x0)
r2 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000080)='/dev/qat_adf_ctl\x00', 0x200, 0x0)
ioctl$DRM_IOCTL_ADD_CTX(0xffffffffffffffff, 0xc0086420, &(0x7f00000000c0)={<r3=>0x0})
ioctl$DRM_IOCTL_GET_SAREA_CTX(r2, 0xc010641d, &(0x7f0000000200)={r3, &(0x7f0000000100)=""/74})

04:13:33 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="00000000004000000000000000000000000000000000000000000000000000000000000000000000ffffffff020006001d00000001000000080676657468305f746f5f627269646765006e7230000000000000000000000000006772653000000000000000000000000076657468315f746f5f626f6e64000000aaaaaaaaaaaa000000000000aaaaaaaaaaaa00000000000000007000000070000000a80000006172707265706c790000000000000000000000000000000000000000000000001000000000000000aaaaaaaaaaaa0000feffffff0000000009000000000000000000697064647030000000000000000000006272696467655f736c6176655f3100000000000000000000000000000000000067726530000000000000000000000000ffffffffffff0000000000000000000000000000000000000000e0000000180100005001000072617465657374000000000000a3000000000000000000000000000000000000480000000000000064756d6d79300000000000000000000073797a5f74756e0000000ab941773a25a4462a99832900000000000000000000200000000000000000000000000000000000000000000000736e6174000000000000000000000000000000000000000000000000000000001000000000000000aaaaaaaaaaaa000000000000000000006d61726b0000000000000000000000000000000000000000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000002000000feffffff01000000110000000000000000006272696467655f736c6176655f3100000000000000000000000000749638e0006c6f00000000000000000000000000000080616d300000000000000000000000aaaaaaaaaa00000000000000aaaaaaaaaaaa0000000000000000a00000000801000040010000636f6e6e6c6162656c000000000000000000000000000000000000000000000008000000000000000000000000000000434c4153534946590000000000000000000000000000000000ff07000000000008000000000000000000000000000000736e617400000000000000000000000000000000000000000001000000000000100000000000000000000000000000000000000000000000736e6174000000000000000000000000000000000000000000000000000000001000000000001400aaaaaaaaaabb00"/968]}, 0x440)

[ 3326.731046] netlink: 26 bytes leftover after parsing attributes in process `syz-executor.5'.
04:13:33 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0xffffffff00000000}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

04:13:33 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}, 0x1, 0xcb450000}, 0x0)

[ 3326.798062] QAT: Invalid ioctl
04:13:33 executing program 2:
symlink(0x0, 0x0)
ioctl$VIDIOC_S_PRIORITY(0xffffffffffffffff, 0x40045644, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe6000/0x18000)=nil, 0x0, 0x0, 0x18, 0x0, 0x328)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x101, 0x4}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
stat(0x0, 0x0)
geteuid()
r3 = syz_open_dev$video(&(0x7f0000000000)='/dev/video#\x00', 0x40, 0x20000)
ioctl$VIDIOC_DBG_G_REGISTER(r3, 0xc0385650, &(0x7f0000000040)={{0x1, @addr=0x1000}, 0x8, 0x9e, 0x5})
fstat(0xffffffffffffffff, 0x0)
r4 = syz_open_dev$vbi(&(0x7f0000000080)='/dev/vbi#\x00', 0x2, 0x2)
setsockopt$MISDN_TIME_STAMP(r4, 0x0, 0x1, &(0x7f00000000c0)=0x1, 0x4)

04:13:33 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"/968]}, 0x440)

04:13:34 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"/968]}, 0x440)

04:13:34 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x16)
r1 = openat$vcs(0xffffffffffffff9c, &(0x7f0000001000)='/dev/vcs\x00', 0x200000, 0x0)
ioctl$TUNSETVNETBE(r1, 0x400454de, &(0x7f0000001040))
exit_group(0x8000)
sendmsg$nl_route(r0, &(0x7f0000004fc8)={0x0, 0x0, &(0x7f0000001180)={&(0x7f00000010c0)=ANY=[]}}, 0x0)
sysinfo(&(0x7f0000000000)=""/4096)
openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000001080)='/dev/qat_adf_ctl\x00', 0x80000, 0x0)

04:13:34 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"/968]}, 0x440)

04:13:34 executing program 2:
r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000140)='/dev/zero\x00', 0x111000, 0x0)
ioctl$DRM_IOCTL_AGP_FREE(r0, 0x40206435, &(0x7f0000000000)={0xac3b, 0x0, 0x10000, 0x8cf})
ioctl$SG_SET_COMMAND_Q(r0, 0x2271, &(0x7f0000000040))
syz_open_dev$sndseq(&(0x7f00000001c0)='/dev/snd/seq\x00', 0x0, 0x0)
ioctl$sock_SIOCBRDELBR(r0, 0x89a1, &(0x7f0000000080)='gretap0\x00')
ioctl$SIOCX25CALLACCPTAPPRV(r0, 0x89e8)

04:13:34 executing program 0:
r0 = perf_event_open(&(0x7f000001d000)={0x7, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
read(r0, &(0x7f00000000c0)=""/156, 0xcaf2e15d45c4e221)

[ 3327.537729] syz-executor.5 invoked oom-killer: gfp_mask=0x7080c0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), nodemask=(null), order=3, oom_score_adj=1000
[ 3327.552888] syz-executor.5 cpuset=syz5 mems_allowed=0-1
[ 3327.592351] CPU: 0 PID: 24424 Comm: syz-executor.5 Not tainted 4.19.66 #40
[ 3327.599405] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3327.608763] Call Trace:
[ 3327.611375]  dump_stack+0x172/0x1f0
[ 3327.615026]  dump_header+0x15e/0xa55
[ 3327.618755]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 3327.623869]  ? ___ratelimit+0x60/0x595
[ 3327.627770]  ? do_raw_spin_unlock+0x57/0x270
[ 3327.632195]  oom_kill_process.cold+0x10/0x6ef
[ 3327.636716]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 3327.642266]  ? task_will_free_mem+0x139/0x6e0
[ 3327.646774]  ? find_held_lock+0x35/0x130
[ 3327.646797]  out_of_memory+0x936/0x12d0
[ 3327.646814]  ? lock_downgrade+0x810/0x810
[ 3327.646833]  ? oom_killer_disable+0x280/0x280
[ 3327.646851]  ? find_held_lock+0x35/0x130
[ 3327.654892]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 3327.654910]  ? memcg_event_wake+0x230/0x230
[ 3327.654930]  ? do_raw_spin_unlock+0x57/0x270
[ 3327.654945]  ? _raw_spin_unlock+0x2d/0x50
[ 3327.654962]  try_charge+0x1028/0x15b0
[ 3327.654975]  ? find_held_lock+0x35/0x130
[ 3327.655002]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 3327.698324]  ? get_mem_cgroup_from_mm+0x139/0x320
[ 3327.703360]  ? find_held_lock+0x35/0x130
[ 3327.707435]  ? get_mem_cgroup_from_mm+0x139/0x320
[ 3327.712297]  memcg_kmem_charge_memcg+0x7c/0x130
[ 3327.716994]  ? memcg_kmem_put_cache+0xb0/0xb0
[ 3327.721510]  ? get_mem_cgroup_from_mm+0x156/0x320
[ 3327.726377]  memcg_kmem_charge+0x136/0x370
[ 3327.730631]  __alloc_pages_nodemask+0x3c3/0x750
[ 3327.735326]  ? __alloc_pages_slowpath+0x2870/0x2870
[ 3327.740364]  ? lockdep_hardirqs_on+0x415/0x5d0
[ 3327.744967]  ? trace_hardirqs_on+0x67/0x220
[ 3327.749298]  ? kasan_check_read+0x11/0x20
[ 3327.753651]  copy_process.part.0+0x3e0/0x7a30
[ 3327.758168]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 3327.763287]  ? delayacct_end+0x5c/0x100
[ 3327.767283]  ? __delayacct_freepages_end+0xe0/0x140
[ 3327.772318]  ? __lock_acquire+0x6ee/0x49c0
[ 3327.776575]  ? __cleanup_sighand+0x70/0x70
[ 3327.780827]  ? mark_held_locks+0x100/0x100
[ 3327.785176]  _do_fork+0x257/0xfd0
[ 3327.788641]  ? fork_idle+0x1d0/0x1d0
[ 3327.792373]  ? blkg_prfill_rwstat_field_recursive+0x100/0x100
[ 3327.798270]  ? kasan_check_read+0x11/0x20
[ 3327.802436]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 3327.807208]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 3327.811982]  ? do_syscall_64+0x26/0x620
[ 3327.815969]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 3327.821338]  ? do_syscall_64+0x26/0x620
[ 3327.825327]  __x64_sys_clone+0xbf/0x150
[ 3327.829322]  do_syscall_64+0xfd/0x620
[ 3327.833137]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 3327.838334] RIP: 0033:0x45c1f9
[ 3327.841535] Code: ff 48 85 f6 0f 84 27 8e fb ff 48 83 ee 10 48 89 4e 08 48 89 3e 48 89 d7 4c 89 c2 4d 89 c8 4c 8b 54 24 08 b8 38 00 00 00 0f 05 <48> 85 c0 0f 8c fe 8d fb ff 74 01 c3 31 ed 48 f7 c7 00 00 01 00 75
[ 3327.860446] RSP: 002b:00007ffd531651c8 EFLAGS: 00000202 ORIG_RAX: 0000000000000038
[ 3327.868167] RAX: ffffffffffffffda RBX: 00007f09e67bc700 RCX: 000000000045c1f9
[ 3327.875442] RDX: 00007f09e67bc9d0 RSI: 00007f09e67bbdb0 RDI: 00000000003d0f00
[ 3327.882719] RBP: 00007ffd531653e0 R08: 00007f09e67bc700 R09: 00007f09e67bc700
[ 3327.889994] R10: 00007f09e67bc9d0 R11: 0000000000000202 R12: 0000000000000000
[ 3327.897270] R13: 00007ffd5316527f R14: 00007f09e67bc9c0 R15: 000000000075c07c
[ 3327.937066] Task in /syz5 killed as a result of limit of /syz5
[ 3327.948756] memory: usage 307172kB, limit 307200kB, failcnt 8312
[ 3327.969812] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3327.983546] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3327.989782] Memory cgroup stats for /syz5: cache:72KB rss:144KB rss_huge:0KB shmem:12KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:196KB inactive_file:0KB active_file:0KB unevictable:0KB
[ 3328.016288] Memory cgroup out of memory: Kill process 24424 (syz-executor.5) score 1103 or sacrifice child
[ 3328.029105] Killed process 24424 (syz-executor.5) total-vm:72844kB, anon-rss:108kB, file-rss:34816kB, shmem-rss:0kB
[ 3328.045104] oom_reaper: reaped process 24424 (syz-executor.5), now anon-rss:0kB, file-rss:34840kB, shmem-rss:0kB
[ 3328.220128] netlink: 26 bytes leftover after parsing attributes in process `syz-executor.5'.
04:13:37 executing program 5:
r0 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000240)='/dev/dlm-control\x00', 0x40000, 0x0)
ioctl$SNDRV_TIMER_IOCTL_GINFO(r0, 0xc0f85403, &(0x7f0000000280)={{0xffffffffffffffff, 0x0, 0x5830000000000, 0x3, 0x4}, 0xf177, 0xb431, 'id0\x00', 'timer1\x00', 0x0, 0x8b4, 0x81, 0x0, 0x445})
shmat(0x0, &(0x7f0000ffc000/0x4000)=nil, 0x3000)
mbind(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x2, &(0x7f0000000000)=0xffff, 0x2, 0x0)
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0x20b, &(0x7f0000000040)=[{&(0x7f0000000540)="2e000000220005000000c187185095cf0400b0eba0b4d65c001a000051894d5d1dac00"/46, 0x2e}], 0x1}, 0x0)
r2 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000080)='/dev/qat_adf_ctl\x00', 0x200, 0x0)
ioctl$DRM_IOCTL_ADD_CTX(0xffffffffffffffff, 0xc0086420, &(0x7f00000000c0)={<r3=>0x0})
ioctl$DRM_IOCTL_GET_SAREA_CTX(r2, 0xc010641d, &(0x7f0000000200)={r3, &(0x7f0000000100)=""/74})

04:13:37 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ptmx\x00', 0x46a443, 0x0)
openat$nullb(0xffffffffffffff9c, &(0x7f0000001680)='/dev/nullb0\x00', 0x101000, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000000)=0xe)
ioctl$TCSETS(r0, 0x8924, &(0x7f0000000340))
r1 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dlm-monitor\x00', 0xc2974023a62a4e7, 0x0)
sendmsg$tipc(r1, &(0x7f00000006c0)={&(0x7f00000000c0)=@id={0x1e, 0x3, 0x0, {0x4e23}}, 0x10, &(0x7f0000000140)=[{&(0x7f0000000800)="68d5ac6fe534327e7fd02c95183a14a3992b16193c5782b99d68bc28c04759f50c45da958561acfd26e45e87", 0x2c}, {&(0x7f0000000480)="0d3da5ffc9b59bfa1413b0ceba3b398a5ba9dea972103c5b8e9788c05c1f64256a853cbd95b75485db1e42c2d6db19d1422946fc236fe4dbb332610a6063111c96a2405c359b710ffebd0993521c77800ac0931625b658e443dbd4", 0x5b}, {&(0x7f0000000500)="38ceebd2cdce031346b8d0ffee77596cec7e5c572cc6e6a4ca14b624f20865d538d2fecc2a17d5c0e7424ba1405c39962710eec1505f63997fad6fa4117ee9ff2e589061e882b9b2ff44f2b32a1fff35669a44d93481354a35ffcc2d9811f612de99c468aed9127231113d7c6082f39f3327af21655fcb88871b17287216538ee52b526af256b09b622395ba33bdec840a7df5fc6dc504dcae27a772487df1b3cf9f1691", 0xa4}], 0x3, &(0x7f0000000700)="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", 0xfd, 0x800}, 0x4000)
r2 = dup(r0)
ioctl$KVM_XEN_HVM_CONFIG(r2, 0x4038ae7a, &(0x7f0000000380)={0x28abda10, 0x25e, &(0x7f0000000440)="b7a74da0c1c2", &(0x7f00000003c0)="d073e7bedf1620f5e39ceff6dd01c4b751408c9db356b761c395f38586e0023027c0dc89c7d510167f89f8ab894895d20258cbd3f27186a5b46b3addf47d86a8f7dcdd829ad97681bed12d8c667f63681b", 0x6, 0x51})
sendmsg$kcm(r2, &(0x7f0000000240)={&(0x7f0000000180)=@ax25={{0x3, @null, 0x1}, [@null, @default, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @bcast, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}]}, 0x80, &(0x7f0000000200), 0x0, &(0x7f0000002a40)=ANY=[@ANYBLOB="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"], 0x12f8}, 0x0)
ioctl$TIOCSRS485(r2, 0x542f, &(0x7f0000000200)={0x4, 0xffffffffffffff3e})
ioctl$SNDRV_SEQ_IOCTL_GET_NAMED_QUEUE(r2, 0xc08c5336, &(0x7f0000000280)={0x0, 0x7, 0x7ff, 'queue0\x00', 0xbc})
ioctl$TIOCSRS485(r2, 0x542f, &(0x7f0000000100)={0x9, 0x2, 0x101})

04:13:37 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"/968]}, 0x440)

04:13:37 executing program 2:
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000733000)={0xa, 0x5, 0x7, 0x9}, 0x3c)
r1 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000180)='/dev/qat_adf_ctl\x00', 0x48000, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_WRITE(r1, 0xc008551b, &(0x7f0000000200)={0xc, 0xc, [0x6, 0x91, 0x3]})
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000040)={0xd, 0x1ff, 0x4, 0x100000001, 0x0, r0}, 0x21)
bpf$MAP_CREATE(0x0, &(0x7f00000001c0)={0xd, 0x9, 0x4, 0x13b000, 0x0, r2}, 0x2c)
r3 = msgget(0x3, 0x66)
msgctl$MSG_INFO(r3, 0xc, &(0x7f0000000080)=""/79)
r4 = fcntl$getown(r0, 0x9)
r5 = syz_open_dev$vcsn(&(0x7f0000000000)='/dev/vcs#\x00', 0x7, 0x1)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000140)={r4, r5, 0x0, 0x1, &(0x7f0000000100)='\x00', 0xffffffffffffffff}, 0x30)

04:13:37 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}, 0x1, 0xf0ffffff}, 0x0)

04:13:37 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0xffffffffa0010000}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

[ 3330.233781] QAT: Invalid ioctl
04:13:37 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"/968]}, 0x440)

04:13:37 executing program 0:
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = semget(0x0, 0x4, 0x200)
r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
pipe(&(0x7f0000000080)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
vmsplice(r3, &(0x7f00000002c0), 0x1, 0x8)
move_pages(0x0, 0x4, &(0x7f0000000300)=[&(0x7f0000005000/0x2000)=nil], &(0x7f0000000380)=[0x1], 0x0, 0x0)
ioctl$FS_IOC_GETFSLABEL(r1, 0x81009431, &(0x7f00000000c0))
bpf$OBJ_GET_MAP(0x7, &(0x7f0000000040)={&(0x7f0000000000)='./file0\x00', 0x0, 0x10}, 0x10)
semctl$SETVAL(r0, 0x3, 0x10, &(0x7f0000000000)=0xe0ea)
r4 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000180)='./cgroup\x00', 0x200002, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0xffffffffffffff23)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000140)={r4, 0x0, 0x1, 0x0, 0x0}, 0x20)
r5 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer2\x00', 0x101000, 0x0)
ioctl$TIOCGPTLCK(r5, 0x80045439, &(0x7f0000000080))
r6 = syz_genetlink_get_family_id$team(&(0x7f0000000240)='team\x00')
getsockopt$inet_IP_XFRM_POLICY(r1, 0x0, 0x11, &(0x7f00000003c0)={{{@in=@multicast2, @in, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r7=>0x0}}, {{@in6=@ipv4={[], [], @broadcast}}, 0x0, @in6=@dev}}, &(0x7f0000000280)=0xe8)
accept4$packet(r2, &(0x7f00000002c0)={0x11, 0x0, <r8=>0x0}, &(0x7f0000000340)=0x14, 0x80000)
getsockopt$inet6_IPV6_IPSEC_POLICY(r5, 0x29, 0x22, &(0x7f00000004c0)={{{@in6=@loopback, @in6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r9=>0x0}}, {{@in6=@mcast2}, 0x0, @in=@loopback}}, &(0x7f00000005c0)=0xe8)
accept4$packet(r2, &(0x7f0000000600)={0x11, 0x0, <r10=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000640)=0x14, 0x80800)
getsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f0000000680)={{{@in=@dev, @in=@multicast2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r11=>0x0}}, {{@in6=@local}, 0x0, @in6=@loopback}}, &(0x7f0000000780)=0xe8)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000880)={'ip6tnl0\x00', <r12=>0x0})
getsockopt$inet6_IPV6_XFRM_POLICY(r5, 0x29, 0x23, &(0x7f0000000b00)={{{@in6=@remote, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r13=>0x0}}, {{@in6}, 0x0, @in=@initdev}}, &(0x7f0000000c00)=0xe8)
getsockopt$inet6_IPV6_XFRM_POLICY(r5, 0x29, 0x23, &(0x7f0000000d00)={{{@in=@multicast2, @in6=@mcast1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r14=>0x0}}, {{@in=@initdev}, 0x0, @in=@initdev}}, &(0x7f0000000e00)=0xe8)
getsockopt$inet_IP_IPSEC_POLICY(r5, 0x0, 0x10, &(0x7f0000000f00)={{{@in=@remote, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r15=>0x0}}, {{@in=@dev}, 0x0, @in=@initdev}}, &(0x7f0000001000)=0xe8)
getsockopt$inet_pktinfo(r3, 0x0, 0x8, &(0x7f0000001080)={<r16=>0x0, @dev}, &(0x7f00000010c0)=0xc)
recvmmsg(r4, &(0x7f0000003d80)=[{{&(0x7f0000001100)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @dev}}}, 0x80, &(0x7f0000001280)=[{&(0x7f0000001180)=""/247, 0xf7}], 0x1, &(0x7f00000012c0)=""/6, 0x6}, 0x2}, {{0x0, 0x0, &(0x7f0000001400)=[{&(0x7f0000001300)}, {&(0x7f0000001340)=""/86, 0x56}, {&(0x7f00000013c0)=""/49, 0x31}], 0x3, &(0x7f0000001440)=""/213, 0xd5}}, {{&(0x7f0000001540)=@in={0x2, 0x0, @multicast2}, 0x80, &(0x7f0000003880)=[{&(0x7f00000015c0)=""/4096, 0x1000}, {&(0x7f00000025c0)=""/191, 0xbf}, {&(0x7f0000002680)=""/30, 0x1e}, {&(0x7f00000026c0)=""/138, 0x8a}, {&(0x7f0000002780)=""/4096, 0x1000}, {&(0x7f0000003780)=""/197, 0xc5}], 0x6}, 0x2}, {{&(0x7f0000003900)=@xdp={0x2c, 0x0, <r17=>0x0}, 0x80, &(0x7f0000003c80)=[{&(0x7f0000003980)=""/187, 0xbb}, {&(0x7f0000003a40)=""/224, 0xe0}, {&(0x7f0000003b40)=""/20, 0x14}, {&(0x7f0000003b80)=""/250, 0xfa}], 0x4, &(0x7f0000003cc0)=""/144, 0x90}}], 0x4, 0x100, &(0x7f0000003e80)={0x77359400})
getsockname$packet(r2, &(0x7f0000003ec0)={0x11, 0x0, <r18=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000003f00)=0x14)
sendmsg$TEAM_CMD_OPTIONS_SET(r3, &(0x7f0000004540)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000004500)={&(0x7f0000003f40)={0x598, r6, 0x8, 0x70bd29, 0x25dfdbfb, {}, [{{0x8, 0x1, r7}, {0x3c, 0x2, [{0x38, 0x1, @mcast_rejoin_count={{0x24, 0x1, 'mcast_rejoin_count\x00'}, {0x8}, {0x8}}}]}}, {{0x8, 0x1, r8}, {0xf8, 0x2, [{0x40, 0x1, @lb_hash_stats={{{0x24, 0x1, 'lb_hash_stats\x00'}, {0x8}, {0x8, 0x4, 0x4}}, {0x8}}}, {0x3c, 0x1, @enabled={{{0x24, 0x1, 'enabled\x00'}, {0x8}, {0x4}}, {0x8, 0x6, r9}}}, {0x38, 0x1, @lb_stats_refresh_interval={{0x24, 0x1, 'lb_stats_refresh_interval\x00'}, {0x8}, {0x8}}}, {0x40, 0x1, @name={{0x24, 0x1, 'mode\x00'}, {0x8}, {0x10, 0x4, 'loadbalance\x00'}}}]}}, {{0x8, 0x1, r10}, {0xcc, 0x2, [{0x38, 0x1, @notify_peers_interval={{0x24, 0x1, 'notify_peers_interval\x00'}, {0x8}, {0x8, 0x4, 0x14}}}, {0x54, 0x1, @bpf_hash_func={{0x24, 0x1, 'bpf_hash_func\x00'}, {0x8}, {0x24, 0x4, [{0x9, 0x100000000, 0x5, 0x6}, {0x8, 0x5b41, 0x10000}, {0x0, 0x9ebb, 0xbf5, 0x200}, {0x0, 0x18c1, 0x138, 0x10000}]}}}, {0x3c, 0x1, @lb_tx_method={{0x24, 0x1, 'lb_tx_method\x00'}, {0x8}, {0xc, 0x4, 'hash\x00'}}}]}}, {{0x8, 0x1, r11}, {0x1cc, 0x2, [{0x44, 0x1, @name={{0x24, 0x1, 'mode\x00'}, {0x8}, {0x14, 0x4, 'activebackup\x00'}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24, 0x1, 'mcast_rejoin_interval\x00'}, {0x8}, {0x8, 0x4, 0x7}}}, {0x40, 0x1, @lb_tx_hash_to_port_mapping={{{0x24, 0x1, 'lb_tx_hash_to_port_mapping\x00'}, {0x8}, {0x8, 0x4, r12}}, {0x8}}}, {0x5c, 0x1, @bpf_hash_func={{0x24, 0x1, 'bpf_hash_func\x00'}, {0x8}, {0x2c, 0x4, [{0x9, 0x2, 0x7, 0x4}, {0x1ff, 0x7ff, 0x0, 0x5}, {0x5a, 0x7fff, 0x4, 0x20}, {0x3, 0x726, 0x100}, {0x400, 0x4, 0x0, 0x7}]}}}, {0x38, 0x1, @notify_peers_count={{0x24, 0x1, 'notify_peers_count\x00'}, {0x8}, {0x8, 0x4, 0x9}}}, {0x40, 0x1, @lb_port_stats={{{0x24, 0x1, 'lb_port_stats\x00'}, {0x8}, {0x8}}, {0x8, 0x6, r13}}}, {0x38, 0x1, @notify_peers_count={{0x24, 0x1, 'notify_peers_count\x00'}, {0x8}, {0x8, 0x4, 0x40}}}]}}, {{0x8, 0x1, r14}, {0x78, 0x2, [{0x3c, 0x1, @user_linkup={{{0x24, 0x1, 'user_linkup\x00'}, {0x8}, {0x4}}, {0x8, 0x6, r15}}}, {0x38, 0x1, @activeport={{0x24, 0x1, 'activeport\x00'}, {0x8}, {0x8, 0x4, r16}}}]}}, {{0x8, 0x1, r17}, {0x110, 0x2, [{0x38, 0x1, @mcast_rejoin_interval={{0x24, 0x1, 'mcast_rejoin_interval\x00'}, {0x8}, {0x8, 0x4, 0x4}}}, {0x54, 0x1, @bpf_hash_func={{0x24, 0x1, 'bpf_hash_func\x00'}, {0x8}, {0x24, 0x4, [{0x7, 0x2, 0xec, 0x38d}, {0x3f, 0x3, 0x401, 0x2}, {0x0, 0x6, 0x400}, {0x2, 0x80000000, 0x7fffffff, 0xffffffffffffff1d}]}}}, {0x40, 0x1, @name={{0x24, 0x1, 'mode\x00'}, {0x8}, {0x10, 0x4, 'broadcast\x00'}}}, {0x40, 0x1, @priority={{{0x24, 0x1, 'priority\x00'}, {0x8}, {0x8, 0x4, 0x100000000}}, {0x8, 0x6, r18}}}]}}]}, 0x598}, 0x1, 0x0, 0x0, 0x4}, 0x1a2bd935a5146347)

[ 3330.270960] QAT: Invalid ioctl
04:13:37 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}, 0x1, 0xffffa888}, 0x0)

04:13:37 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0xfffffffffffff000}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

04:13:37 executing program 2:
r0 = socket$inet(0xa, 0x801, 0x84)
connect$inet(r0, &(0x7f0000004cc0)={0x2, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff}}, 0x10)
ioctl$SIOCGSTAMP(r0, 0x8906, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
listen(r0, 0x100000001)
r1 = accept4(r0, 0x0, 0x0, 0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(r1, 0x84, 0xb, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xef}, 0xb)
arch_prctl$ARCH_GET_CPUID(0x1011)
recvmmsg(r1, &(0x7f0000004300), 0x3a4, 0x0, 0x0)

04:13:37 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"/968]}, 0x440)

[ 3330.416364] syz-executor.5 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 3330.448895] syz-executor.5 cpuset=syz5 mems_allowed=0-1
[ 3330.485658] CPU: 1 PID: 24693 Comm: syz-executor.5 Not tainted 4.19.66 #40
[ 3330.492793] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3330.502153] Call Trace:
[ 3330.504767]  dump_stack+0x172/0x1f0
[ 3330.508410]  dump_header+0x15e/0xa55
[ 3330.512139]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 3330.517267]  ? ___ratelimit+0x60/0x595
[ 3330.521180]  ? do_raw_spin_unlock+0x57/0x270
[ 3330.525617]  oom_kill_process.cold+0x10/0x6ef
[ 3330.530139]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 3330.535693]  ? task_will_free_mem+0x139/0x6e0
[ 3330.540217]  out_of_memory+0x936/0x12d0
[ 3330.544213]  ? lock_downgrade+0x810/0x810
[ 3330.548386]  ? oom_killer_disable+0x280/0x280
[ 3330.552893]  ? find_held_lock+0x35/0x130
[ 3330.556988]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 3330.561847]  ? memcg_event_wake+0x230/0x230
[ 3330.566195]  ? do_raw_spin_unlock+0x57/0x270
[ 3330.570623]  ? _raw_spin_unlock+0x2d/0x50
[ 3330.574789]  try_charge+0x1028/0x15b0
[ 3330.578690]  ? find_held_lock+0x35/0x130
[ 3330.582771]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 3330.587630]  ? kasan_check_read+0x11/0x20
[ 3330.591821]  ? get_mem_cgroup_from_mm+0x156/0x320
[ 3330.596686]  mem_cgroup_try_charge+0x259/0x6b0
[ 3330.601290]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 3330.606247]  __handle_mm_fault+0x1e50/0x3f80
[ 3330.610674]  ? vmf_insert_mixed_mkwrite+0x90/0x90
[ 3330.615545]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 3330.620229]  handle_mm_fault+0x1b5/0x690
[ 3330.624312]  __do_page_fault+0x62a/0xe90
[ 3330.628396]  ? vmalloc_fault+0x740/0x740
[ 3330.632480]  ? trace_hardirqs_off_caller+0x65/0x220
[ 3330.637509]  ? trace_hardirqs_on_caller+0x6a/0x220
[ 3330.642455]  ? page_fault+0x8/0x30
[ 3330.646018]  do_page_fault+0x71/0x57d
[ 3330.649835]  ? page_fault+0x8/0x30
[ 3330.653393]  page_fault+0x1e/0x30
[ 3330.656868] RIP: 0033:0x440a71
[ 3330.660071] Code: 8d 15 53 87 0a 00 8b 0c 8a 8b 04 82 29 c8 c3 66 2e 0f 1f 84 00 00 00 00 00 48 83 fa 20 48 89 f8 73 77 f6 c2 01 74 0b 0f b6 0e <88> 0f 48 ff c6 48 ff c7 f6 c2 02 74 12 0f b7 0e 66 89 0f 48 83 c6
[ 3330.678984] RSP: 002b:00007ffd531652f8 EFLAGS: 00010202
[ 3330.684363] RAX: 0000000020000240 RBX: 0000000000000000 RCX: 000000000000002f
[ 3330.691643] RDX: 0000000000000011 RSI: 0000000000760020 RDI: 0000000020000240
[ 3330.698929] RBP: 0000000000760000 R08: 0000000000000000 R09: 0000000000000000
[ 3330.706206] R10: 0000000000439400 R11: 0000000000000012 R12: 00000000004c5da6
[ 3330.713482] R13: 000000000000012c R14: 0000000000760008 R15: fffffffffffffffe
[ 3330.731040] Task in /syz5 killed as a result of limit of /syz5
[ 3330.737661] memory: usage 307200kB, limit 307200kB, failcnt 8358
[ 3330.750731] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3330.769350] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3330.776057] Memory cgroup stats for /syz5: cache:72KB rss:0KB rss_huge:0KB shmem:12KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:112KB inactive_file:0KB active_file:0KB unevictable:0KB
[ 3330.809503] Memory cgroup out of memory: Kill process 24693 (syz-executor.5) score 1103 or sacrifice child
04:13:37 executing program 5:
r0 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000240)='/dev/dlm-control\x00', 0x40000, 0x0)
ioctl$SNDRV_TIMER_IOCTL_GINFO(r0, 0xc0f85403, &(0x7f0000000280)={{0xffffffffffffffff, 0x0, 0x5830000000000, 0x3, 0x4}, 0xf177, 0xb431, 'id0\x00', 'timer1\x00', 0x0, 0x8b4, 0x81, 0x0, 0x445})
shmat(0x0, &(0x7f0000ffc000/0x4000)=nil, 0x3000)
mbind(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x2, &(0x7f0000000000)=0xffff, 0x2, 0x0)
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0x20b, &(0x7f0000000040)=[{&(0x7f0000000540)="2e000000220005000000c187185095cf0400b0eba0b4d65c001b000051894d5d1dac00"/46, 0x2e}], 0x1}, 0x0)
r2 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000080)='/dev/qat_adf_ctl\x00', 0x200, 0x0)
ioctl$DRM_IOCTL_ADD_CTX(0xffffffffffffffff, 0xc0086420, &(0x7f00000000c0)={<r3=>0x0})
ioctl$DRM_IOCTL_GET_SAREA_CTX(r2, 0xc010641d, &(0x7f0000000200)={r3, &(0x7f0000000100)=""/74})

04:13:37 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}, 0x1, 0xfffff000}, 0x0)

04:13:37 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

04:13:37 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"/968]}, 0x440)

04:13:37 executing program 0:
r0 = socket$inet(0x10, 0x4, 0x7)
sendmsg(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000180)="240000005e0007041dfffd946f610500070000001d00000077000000421ba3a20400ff7e", 0x24}], 0x1}, 0x0)

[ 3330.831027] Killed process 24693 (syz-executor.5) total-vm:72448kB, anon-rss:108kB, file-rss:34816kB, shmem-rss:0kB
[ 3330.848388] oom_reaper: reaped process 24693 (syz-executor.5), now anon-rss:0kB, file-rss:33856kB, shmem-rss:0kB
04:13:37 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

04:13:37 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"/968]}, 0x440)

04:13:37 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}, 0x1, 0xffffff7f}, 0x0)

04:13:37 executing program 0:
mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x10, 0xffffffffffffffff, 0x0)
r0 = userfaultfd(0x0)
ioctl(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ubi_ctrl\x00', 0x2, 0x0)
r2 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000480)='TIPCv2\x00')
sendmsg$TIPC_NL_BEARER_SET(r1, &(0x7f0000000500)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f00000004c0)={&(0x7f0000000880)=ANY=[@ANYBLOB="a401ad584553bf505cf40000", @ANYRES16=r2, @ANYBLOB="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"], 0x1a4}, 0x1, 0x0, 0x0, 0x10}, 0x4010)
mkdir(&(0x7f0000000040)='./file0\x00', 0x0)
mount$bpf(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000019c0)='bpf\x00', 0x0, 0x0)
mkdir(&(0x7f00000000c0)='./file0/file0\x00', 0x0)
mount$bpf(0x0, &(0x7f00000002c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bpf(0x20000000, &(0x7f0000000180)='./file0/file0\x00', 0x0, 0x2001002, 0x0)
mount$bpf(0x20000000, &(0x7f0000000300)='./file0/file0\x00', 0x0, 0x5004, 0x0)
mount$bpf(0x20000000, &(0x7f0000000380)='./file0/file0\x00', 0x0, 0x588e, 0x0)
r3 = openat$audio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/audio\x00', 0x400201, 0x0)
getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f0000000240)=ANY=[@ANYBLOB="002f9b1f", @ANYRES32=0x0, @ANYRES32=<r4=>0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0], &(0x7f0000000280)=0x2c)
getsockopt$inet_sctp6_SCTP_PR_SUPPORTED(r3, 0x84, 0x71, &(0x7f0000000340)={r4, 0x9}, &(0x7f00000003c0)=0x8)
mount$bpf(0x0, &(0x7f00000005c0)='./file0/file0\x00', &(0x7f0000000140)='bpf\x00', 0x0, 0x0)
setpgid(0x0, 0x0)
umount2(&(0x7f0000000200)='./file0\x00', 0x0)
connect$unix(0xffffffffffffffff, 0x0, 0x3)
socket$nl_crypto(0x10, 0x3, 0x15)
r5 = socket$inet6_sctp(0xa, 0x0, 0x84)
getsockopt$inet_sctp6_SCTP_DELAYED_SACK(0xffffffffffffffff, 0x84, 0x6c, 0x0, 0x0)
getsockopt$inet_sctp6_SCTP_DELAYED_SACK(0xffffffffffffffff, 0x84, 0xd, 0x0, &(0x7f0000000040))
ioctl(0xffffffffffffffff, 0x1000008912, &(0x7f0000000100)="11dca5")
r6 = dup2(0xffffffffffffffff, r5)
ioctl$LOOP_GET_STATUS(r1, 0x4c03, &(0x7f00000007c0))
r7 = dup3(r6, r0, 0x0)
ioctl$KVM_IRQ_LINE(r7, 0x4008ae61, 0x0)

04:13:37 executing program 2:
r0 = socket$inet(0xa, 0x801, 0x84)
connect$inet(r0, &(0x7f0000004cc0)={0x2, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff}}, 0x10)
ioctl$SIOCGSTAMP(r0, 0x8906, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
listen(r0, 0x100000001)
r1 = accept4(r0, 0x0, 0x0, 0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(r1, 0x84, 0xb, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xef}, 0xb)
arch_prctl$ARCH_GET_CPUID(0x1011)
recvmmsg(r1, &(0x7f0000004300), 0x3a4, 0x0, 0x0)

[ 3330.988727] syz-executor.5 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 3331.073092] syz-executor.5 cpuset=syz5 mems_allowed=0-1
[ 3331.078525] CPU: 0 PID: 24717 Comm: syz-executor.5 Not tainted 4.19.66 #40
[ 3331.085543] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3331.094904] Call Trace:
[ 3331.097510]  dump_stack+0x172/0x1f0
[ 3331.101249]  dump_header+0x15e/0xa55
[ 3331.104983]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 3331.110102]  ? ___ratelimit+0x60/0x595
[ 3331.114004]  ? do_raw_spin_unlock+0x57/0x270
[ 3331.118522]  oom_kill_process.cold+0x10/0x6ef
[ 3331.123044]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 3331.128597]  ? task_will_free_mem+0x139/0x6e0
[ 3331.133110]  out_of_memory+0x936/0x12d0
[ 3331.137096]  ? lock_downgrade+0x810/0x810
[ 3331.141259]  ? oom_killer_disable+0x280/0x280
[ 3331.145769]  ? find_held_lock+0x35/0x130
[ 3331.149861]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 3331.154722]  ? memcg_event_wake+0x230/0x230
[ 3331.159063]  ? do_raw_spin_unlock+0x57/0x270
[ 3331.163495]  ? _raw_spin_unlock+0x2d/0x50
[ 3331.167668]  try_charge+0x1028/0x15b0
[ 3331.171488]  ? find_held_lock+0x35/0x130
[ 3331.175572]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 3331.181522]  ? kasan_check_read+0x11/0x20
[ 3331.185702]  ? get_mem_cgroup_from_mm+0x156/0x320
[ 3331.190564]  mem_cgroup_try_charge+0x259/0x6b0
[ 3331.195167]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 3331.200116]  __handle_mm_fault+0x1e50/0x3f80
[ 3331.204556]  ? vmf_insert_mixed_mkwrite+0x90/0x90
[ 3331.209433]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 3331.214131]  handle_mm_fault+0x1b5/0x690
[ 3331.218214]  __do_page_fault+0x62a/0xe90
[ 3331.222298]  ? vmalloc_fault+0x740/0x740
[ 3331.226383]  ? trace_hardirqs_off_caller+0x65/0x220
[ 3331.231417]  ? trace_hardirqs_on_caller+0x6a/0x220
[ 3331.236363]  ? page_fault+0x8/0x30
[ 3331.240030]  do_page_fault+0x71/0x57d
[ 3331.243850]  ? page_fault+0x8/0x30
[ 3331.247415]  page_fault+0x1e/0x30
[ 3331.250382] audit: type=1400 audit(2000002418.140:576): avc:  denied  { associate } for  pid=24732 comm="syz-executor.0" name="file0" scontext=unconfined_u:object_r:unlabeled_t:s0 tcontext=system_u:object_r:unlabeled_t:s0 tclass=filesystem permissive=1
[ 3331.250880] RIP: 0033:0x440a71
[ 3331.250896] Code: 8d 15 53 87 0a 00 8b 0c 8a 8b 04 82 29 c8 c3 66 2e 0f 1f 84 00 00 00 00 00 48 83 fa 20 48 89 f8 73 77 f6 c2 01 74 0b 0f b6 0e <88> 0f 48 ff c6 48 ff c7 f6 c2 02 74 12 0f b7 0e 66 89 0f 48 83 c6
[ 3331.250904] RSP: 002b:00007ffd531652f8 EFLAGS: 00010202
[ 3331.250923] RAX: 0000000020000240 RBX: 0000000000000000 RCX: 000000000000002f
[ 3331.308244] RDX: 0000000000000011 RSI: 0000000000760020 RDI: 0000000020000240
[ 3331.315527] RBP: 0000000000760000 R08: 0000000000000000 R09: 0000000000000000
04:13:38 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}, 0x1, 0xffffff9e}, 0x0)

04:13:38 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"/968]}, 0x440)

[ 3331.322892] R10: 0000000000439400 R11: 0000000000000012 R12: 00000000004c5da6
[ 3331.330173] R13: 000000000000012c R14: 0000000000760008 R15: fffffffffffffffe
[ 3331.587908] Task in /syz5 killed as a result of limit of /syz5
[ 3331.595439] memory: usage 307200kB, limit 307200kB, failcnt 8384
[ 3331.609852] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3331.624980] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3331.639912] Memory cgroup stats for /syz5: cache:72KB rss:0KB rss_huge:0KB shmem:12KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:112KB inactive_file:0KB active_file:0KB unevictable:0KB
[ 3331.710490] Memory cgroup out of memory: Kill process 24717 (syz-executor.5) score 1103 or sacrifice child
[ 3331.720492] Killed process 24717 (syz-executor.5) total-vm:72448kB, anon-rss:108kB, file-rss:34816kB, shmem-rss:0kB
04:13:38 executing program 5:
r0 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000240)='/dev/dlm-control\x00', 0x40000, 0x0)
ioctl$SNDRV_TIMER_IOCTL_GINFO(r0, 0xc0f85403, &(0x7f0000000280)={{0xffffffffffffffff, 0x0, 0x5830000000000, 0x3, 0x4}, 0xf177, 0xb431, 'id0\x00', 'timer1\x00', 0x0, 0x8b4, 0x81, 0x0, 0x445})
shmat(0x0, &(0x7f0000ffc000/0x4000)=nil, 0x3000)
mbind(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x2, &(0x7f0000000000)=0xffff, 0x2, 0x0)
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0x20b, &(0x7f0000000040)=[{&(0x7f0000000540)="2e000000220005000000c187185095cf0400b0eba0b4d65c001c000051894d5d1dac00"/46, 0x2e}], 0x1}, 0x0)
r2 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000080)='/dev/qat_adf_ctl\x00', 0x200, 0x0)
ioctl$DRM_IOCTL_ADD_CTX(0xffffffffffffffff, 0xc0086420, &(0x7f00000000c0)={<r3=>0x0})
ioctl$DRM_IOCTL_GET_SAREA_CTX(r2, 0xc010641d, &(0x7f0000000200)={r3, &(0x7f0000000100)=""/74})

04:13:38 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

04:13:38 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}, 0x1, 0xfffffff0}, 0x0)

04:13:38 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"/968]}, 0x440)

04:13:38 executing program 2:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x7}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = accept(0xffffffffffffffff, &(0x7f0000000180)=@nfc, &(0x7f0000000080)=0x80)
ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000001480)=ANY=[], 0xded, 0x0, &(0x7f0000000600)="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"})
socket$inet_tcp(0x2, 0x1, 0x0)
unshare(0x20600)
r1 = geteuid()
fstat(0xffffffffffffffff, 0x0)
getpeername$packet(0xffffffffffffffff, 0x0, &(0x7f00000003c0))
ioctl$sock_SIOCOUTQ(r0, 0x5411, &(0x7f0000000300))
setsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f0000000440)={{{@in=@dev={0xac, 0x14, 0x14, 0xb}, @in6=@mcast2, 0x0, 0x401, 0x0, 0x0, 0x0, 0xa0, 0x80, 0x0, 0x0, r1}, {0x1, 0xfffffffffffffff8, 0x7, 0xf33a, 0x6, 0xa7, 0x0, 0x4}, {0x8, 0x0, 0x9, 0x2}, 0x0, 0x6e6bbf, 0x2, 0x1, 0x1}, {{@in6=@rand_addr="bb610e26a4849bab76857bee68f70d4c", 0x4d3, 0xff}, 0xa, @in6=@mcast2, 0x34ff, 0x3, 0x1, 0x0, 0x7, 0x7bc, 0xb5}}, 0xe8)
write$smack_current(0xffffffffffffffff, 0x0, 0x0)
r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000280)='/dev/loop-control\x00', 0x0, 0x0)
ioctl$EVIOCGBITSW(r0, 0x80404525, &(0x7f0000000200)=""/61)
ioctl$SNDRV_TIMER_IOCTL_PVERSION(0xffffffffffffffff, 0x80045400, &(0x7f0000000240))
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
ioctl$LOOP_CTL_GET_FREE(r2, 0x4c82)
r3 = ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, r3)
r4 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
getsockopt$sock_int(r0, 0x1, 0x28, &(0x7f0000000000), &(0x7f00000002c0)=0x4)
ioctl$EXT4_IOC_MOVE_EXT(0xffffffffffffffff, 0xc028660f, &(0x7f0000000100)={0x0, 0xffffffffffffffff, 0x0, 0x6, 0x0, 0x7})
ioctl$LOOP_CTL_ADD(r2, 0x4c80, r4)

04:13:38 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

04:13:38 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="00000000004000000000000000000000000000000000000000000000000000000000000000000000ffffffff020000001d00000005000000080676657468305f746f5f627269646765006e7230000000000000000000000000006772653000000000000000000000000076657468315f746f5f626f6e64000000aaaaaaaaaaaa000000000000aaaaaaaaaaaa00000000000000007000000070000000a80000006172707265706c790000000000000000000000000000000000000000000000001000000000000000aaaaaaaaaaaa0000feffffff0000000009000000000000000000697064647030000000000000000000006272696467655f736c6176655f3100000000000000000000000000000000000067726530000000000000000000000000ffffffffffff0000000000000000000000000000000000000000e0000000180100005001000072617465657374000000000000a3000000000000000000000000000000000000480000000000000064756d6d79300000000000000000000073797a5f74756e0000000ab941773a25a4462a99832900000000000000000000200000000000000000000000000000000000000000000000736e6174000000000000000000000000000000000000000000000000000000001000000000000000aaaaaaaaaaaa000000000000000000006d61726b0000000000000000000000000000000000000000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000002000000feffffff01000000110000000000000000006272696467655f736c6176655f3100000000000000000000000000749638e0006c6f00000000000000000000000000000080616d300000000000000000000000aaaaaaaaaa00000000000000aaaaaaaaaaaa0000000000000000a00000000801000040010000636f6e6e6c6162656c000000000000000000000000000000000000000000000008000000000000000000000000000000434c4153534946590000000000000000000000000000000000ff07000000000008000000000000000000000000000000736e617400000000000000000000000000000000000000000001000000000000100000000000000000000000000000000000000000000000736e6174000000000000000000000000000000000000000000000000000000001000000000001400aaaaaaaaaabb00"/968]}, 0x440)

[ 3331.890223] syz-executor.5 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=0
04:13:38 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}, 0x1, 0x1a0ffffffff}, 0x0)

[ 3331.933098] syz-executor.5 cpuset=syz5 mems_allowed=0-1
[ 3331.950968] CPU: 0 PID: 24766 Comm: syz-executor.5 Not tainted 4.19.66 #40
[ 3331.958003] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3331.958010] Call Trace:
[ 3331.958034]  dump_stack+0x172/0x1f0
[ 3331.958056]  dump_header+0x15e/0xa55
[ 3331.958073]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
04:13:38 executing program 0:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x5000008912, &(0x7f0000001600)="11dca50d5e0bcfe47bf070")
r1 = memfd_create(&(0x7f0000001fc1)='\x00\xac=\x9d\xd2\xdb\xe6\xbf\xb4\b\xedcJ\x8e\x84\xd4N\x12\xdf\xc5\xd0\x8b\x11+\x86T\x16\xa3\xb3\xae0\x9f9?\xefo\xa4k\x012>\xa1\x9c\x86x\x1c\x9f\x84\x195\xde\x97_\t~\xf3Y\x12\"p^\xc1\x0f', 0x4)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x4, 0x11, r1, 0x0)
syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x9, &(0x7f0000001640)=[{&(0x7f0000000080)="b51f3ced6e8e10f4114933b61ee608c69830407547029a6ad520a66953b0320047c4be80dd0f4f9275677c2914485e83fa6f187e6c1d74452660760e11f5ca437208e6254450355e8d6fce935462139969cf427d4f16e94a6dfc8d68948e5725871b798e37339c051ad60b92577d96d408b0fd6719dc5a1f6f476b69faa8df30135ae1d454f5644ab1817d5cf59366d0c4bd3712df1b1aa02b07f8c664765b9edf1b653002eb8f90a532f6fc13ee0599a7dec9320048a9abe06bca9b43aad6459f", 0xc1, 0x7f}, {&(0x7f0000000180)="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", 0xfa, 0x1}, {&(0x7f0000000280)="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", 0x1000, 0x2}, {&(0x7f0000001280)="5baa8684d94dba941ad1eb087a9e083b149a4bf77e478b3a4abbb7a01e10b8c5748a654b1251d38a1a2cb6493f9a9644f8a5dc09f6650d7eb7b530e13223e703ab84e2ec47534e0ff8b629963f8f59b355a8401f7b0dfbdf1d2ef6d4afa8f55592ca0264d5a37aa84551bbfd26dacb10e61d2e025676ad5977caa3213a9cc82448b0161b74333e4c70e61317aacd", 0x8e, 0xffffffffffff8000}, {&(0x7f0000001340)="a22650af22bae2afd47c16626ef4b08cf4f729871a2af6f9ed82ed308cb8f32de12d889634107692aad1665b843ebda6b6c20c8b3bab448da017a4948b087b34d464c2d76d6304583e5aba5302df6e8bbcbf287ddda4bdeb2c1c97453623a216eb589dd4171f05cc04c9a476183610d8cb7eeea93c8327d36c4579", 0x7b, 0x8000}, {&(0x7f00000013c0)="3bb55f7d1ad0d80600dfcac4d6f46f64c428428b25b669cc5360b268c7f032d2b744622d8069c55dc3ede4b112148f5c903deba4312e27e46092dde58a48a41396b20cf0f2a66dc035bd06154fcad6bfc65682ae4c36cbc93f49678a4246f38692285cd8541392420fbbe1f7257a690b6ba46c29a46280d27fe53444e8bfb8e0d34885581214358a91098c7fe75558cf30319a414ae37fec074be8d59b7b1c4855d485a930c46a1028e9260669a1e6e844b3b92bd72df765a99b61", 0xbb, 0x8}, {&(0x7f0000002000)="4bc7526fcc22ddc3c6722dfe028a28565f63c81f74cdde2b3cb785b195c98ad7c914499b701d440a1bae157310dff0afa3f5c597488675ad5b6fe148cf5715a0b5080ebb5bd0e94e14842fba0284efda77c148b73373300ba55994127ca65f4b7f42f54b4456bb19d0c33660a212363db5cbab9d1aa12f2e6a96449474262261cb474eb7b301321b27f8b775511fb19fee218a3e9deb08c1f850d1076bf4d07f1cf639b181dd1b13d382b6f8903221286c547d311c88a71c3a98ac555c9c2f52a818ae874fc726cdf42dfa1255f76f2dfcdb005333b1978ce9a9addd2a077725862c0b4c48549081f42e265778422320e46cc75ec6c087d6439dd00dc221850dd702dced496b98e7e7d1ac86a35c42b6e262f37762ede5523f69987dae24440a0634dfde82e3c28eb830afae38aff381d0b79737ccfdd63838fddc9d0945f066414dc72bf3cdc432531131eed40b025a2e561fb350e6d96483e9e9f2926fe7f333b51c030b35529f966218bc8f5a4b1d36ab5f8c907a795e30bb1bd335b9323c0aba944f1332d83f063514323db1a94a35378cc86ceda592232d4944318cd4111c08f163459ecbd385cf44406c2f1d130b41ada27dd43ecd7b9b72e9ca47778356edbe438edf768ccd4cad3cb2ecd91af7da47d66caf5a03b37f759f25ecaa7c1def826d13696e9ea23874849df15efad4d363d716889df80b36741ade0b6a7ff9397f59a1d57c68ce68183a182dc6f2367c655cc0c950cd2bd090646777a5c80ef5762901f3f772d126bff14cdf55de4c50175fcb892fab6354accbf78d83792b017b0148f5e7fc3ea19ec2864ef8aa92187abe919c6925f8c79de3639fd24e2180c6ecd52daaa0d6b0e7eb7dbbc64757fbd591d0e9618e571c13ad851a3215317f47d0aad584950d452f2cb32569d532cf51ddd689e034afe87de48a52515f5344f2e799553cba1753e74bc920674cd265c024d675a9702c1ae1c1e7cc7b9c55008df1f939ee0e90b2fb15fb01852c4f018ad8e5bd0ee02212e02162d44ea4614591fad79ecb82fc6bf5c6bed78b989da82d1f591c2a67ee7340e0796e717af00d85e4b5319b717ac22f044d0033d7d4766a9ce248f2b6017bbe74d647806f0ae504b424e79745fa26e2e65cd6a4a1a40f48aada9980e01b7f04e9f8c404dc0b589d60b35b0b24d98aac250e1aae67e5f26042c2cfcb2a990eae61e40b5bd0ac6e06c4292a8350f7a54e413fa655b5b115f729dabb7fe90a6f2e960fc1c5cc7b37d9587492771abf06cb4b5c799b03ccc9b613cd800dbd92e9e33871a38caa22f9fb45ab9bbc3446e0d752ef8dac7fb673f742ce73babfa300467abab1149a02ee68cb5a29153fd245d6711c33e9b148b58d1d6c73981fc9ac8530cf2e3d8fe7e4519e0bbefd151537451dd30c1f84dced0efde87d30eeaf45b0265393e8a7a18e0b72bd24efb03633b4ac0f96817cbc9eaf02b9f3fe170cedabf94cc48489c592baf87b59d5c002aeb77061b062774951bb70647eea4bc470c508d20753c290267d5c13493722199003a1db56bed9af6e2fb3e95154175b4ea58b30799aa7a0654c01183f389a93b149c78eaafd924d11cbc78d79f7af21870ab5b8e46e63aa273ef91cd12d5110c9607a7565a0121c9396a5e2a43edb6e6cd1c2d9e0f3c60448cbfe09b57c4b5e31ac69866a4e1ec39db78ce114c1b5fbe4c43bf1c1dbceff7c60cd70791391708becc33580f86b95d78038b4bcb86c5be6f35c8b4e481b308f8538f3f109a564f9d839563803705e39c12727ebf2acfd931bd070246b73c8cfd5a7532437474197907947badfbb0c61b3e1e867951cca18f59c788b32d77d498fa93ca8018fc90802a7fbd1f1d38b506b9fb68a39f8d2e3d01a45af54c3bdda4c930e2f01e7b6b93783e05e9ff16abe46d6783eb1269559707d104cd1afe63453e4e584c2ceda8a53f28b64516f1e0b012f4a0af5391551261f0e0f19077751c6efae25bff2d5046d668c5d861273f2d219929cb248d014b3593f7a42ab6ab9f34a01edc917661a91e0dd8848d9b9658a8eced5df165a0d929074e23bfb8dca61e0b66465b85a492503e146778ce3f7a53a88ef621e009e21fc84fb4c74a36f30f4cb2cd67772263250d6265115e4e7a353b800ae9b8f47314adce3e326695a7e6cc3e420398dd5e50b5d1ca422e7c011a41a0ee4da4888114a2a5b54e1aa742d0e0bfea66761a18911cf613c7a8c0b67fb1dd4c7cb3b4f39d2d53960d8b7dcee775db49f4f2f1800a326653431b1cbd834103e1db02c66e08b17c9054180753104fb68efe75949067f1391c88d4d96370cd8e49bcfbc86849fb70fee1601d9037d8820caf8e8ccc187d07186625933c12a6e997084639a0c406ddf1f1639f04ee663cabfccd8d4b58fb0fd53f11a996ddc9b550524650ba5c1597730e93e0566a3cd066f73c8a3d4213a7274880d5891ef5aae14863f64fedde850aa21b422f0c20bb54172e761199661250d690739151299090844e344e80c30c9ed565dafe6ac08354b0dcd3bb1b8b52b02a6c320e65f8184991b1d5210d7cd39eba39e478e811d2d9f5465354b46cb23c7eab92aade2cac36a014e54fd155f187c6d0a11435aec267a2cc414888f0ad9a9bf117904166250619ce34be871c892d8fd0087722c5947865f48bcdf2745f68412a334571a6b9084b9ff4ee67e0a466846d6dd3f74b5d97365d7bf2d7f70a8e379666d78ba07c1189ddbb8e607372434443ca5c6cf596f80263e9a1eed9e0dd089d57fc7c72414f054264852c5db81ad39266d7e52615e24dfaeb9fe3126abe64ef43f35b1adc34084c5eec3e330537aebd9d34840141aa1e98aadcb8a3b6e631d14873b835fbefe12879bba5811a4d17722fb8316ff62216e5f7524c69478a3a6bce83eb481e84ca61a5fcb269bf0268f7125019cc4e63cf3654255f21d44c6ce9b44811671804ba0f38731d04117976a5ae91f790ea03adc2880a4d43bb12d6154ad65fc5a9bc20974f65e6572edff12198fe6c7fa838aef72c956458e6cb4c0be112b8d3a3d22cfe759070a839ad82e87d042621811f8e55a895fb5df47c1f5513ed85c497ca5afb4109103b9d1819a5554e4d66ea61148b6dc5c0d6c6b55e61015dad70e7720ac8d1e2535b6a44e51ff0683c22f13fb499e2cc86557a40ffbcf5d795636fd2ee0653358b54014c1e828f8bcbdd178bb285086769354b7b5d41e9bfeb6d9859e048497ee386a5a859c0e626d9e4d1e8ad7e73c2a6b566495eb118fd71f6b0586877a05377e3ec461e1ac238b0bbbf05b1449ee8005980f7833e802155b4bd86d7c5763203e42c8667bf08b068dcbb3f333010c1e93f54f819ea46ffcb98317e51e20118cd49e29088a103b596d31a6a88f4425af13907494c33300ee674c939fa74182a0237f790f52074c9348bada928804339fd22d4a85925934b20c268213463a589ebfce5cb4cb079498c583c3a86ac33ca09bdd62919214596b4727cf43f4949e4d249f4469556d8341331e95d768696c466b2c3ab6f2855720ee53b3cdfb9884aad3acc0eae6d80fd22f30aa62059f93b2c95d238d2755a0b2c47fe91697e0378eadb889fbf279e56b572559abdc9fa2858d463be45a1bd52a92b33d72b120390206ed039dbb5890e2397d8fe4354078365d2925135621e1d438cefb7420030cd2b15913fb520730422a76ecc2f82a22ee5cada5e57a022c0e654cc9c57acfbc642f37c6c6a3992885fc1ba486459345d7214d41cfc4724ef0db557e4cc2ef0f4b4b03b60405e9349cb34e898704ea9774bd674547ab97896205c8067a860f3503e1eac4b5df7c78adc1ad605f3cc7df2dda71fbbd09796c90f36145cc1c6121a11389dd75aa22fa2165cab1beb5bdeae4db905304276798107c714164bfc17077c90604693dc3c7ba39004b992884f73a8a1b6eb53c24b16c1babd659161630976c9adebee27c3977206a9032cc733d44fa190d700c0854bc79cf460638fbc5d73b31958ce4619f9759a5af8711dde99f5aaafcff6d19d2e61936ab704a68992d7771eb0d3b4edd9ea5b18a23c5a7799f27680fe71aed05e61caf14f0468f185b58b63241f3dd6fcb5c83d7a1acb6fa28ba93ccb2d8337147f101a22b004bcbc416e5af237be7fd5aabccb19296b16f15e45a7ceaed08fe90e88bbb05df680bd5b686cdc038369d162db8bb3a7c922dc8f9306b62594e783130d9937f804d53b4cb037986ce45d3d9c29a09d51142113532871da0a8aa11626df96959ff385d0e6355a0a60c73fbe0cb5604c969f26142a4148b97c37276d4e0bc1492d38123b708e6cf39bcd0bd77efde54401c53b7cc74ce2c71d23ce7809ff0ae84c66ac161e43f8263dd8f4987db0ea6ae6fa541300476e887113b828eea0c73aa1f9587bc4b1a95e2d77ceb0117c398b10fde1b628b9bff1263dc00a21d8fc72104fd352757b0640161ff585d0c765bf090e815a6a1949b8d5dc907017e99f688c1e6b90015be31880a6816aac580e6d86c798128ee3bf906445dbc3629a640d196a284216ff755cff11d4a2906d44db330015667825c6b48c365450362f77e350a39f75c00c0f70ffc82d4744dd55fd813c52575010dd33ef91d35ae2f41e7ccc4218d5c38e88c238adc47c4b0f6816d4396ac1b76a99d4b3d95d500a9d2d18ad99ef6432d69ca6a133c203781401b5059b2aefd2804a3d9b32861b0d834ab71a23ef5ca555243d694cd5d4d4b50af6342b14f9df13744aacb769fc6f91c73666fdf1d0b3709e0264ad9f5bb8f36a69b2f17cf11d8b9cfd10789e807aded1cafc8407587fd6a5ae18f9d54210cadc29495414230416520700ab5bcd22c527c94eb55c050d737207feefd6060a72d210765aa8514ab12bd9ea2dd4f2fe071f0304005a7f99ad949355422fb62e8b3ca06790f42ab897ede6fbcf60467d81ac59343495daf1eb59e5f253330a18739992bec0561b1f0cd72cf436dcac575f0016023de8a3b5bb1304f26f777e07ae0d47d7d343771b6b5d3792b886c2f506bfc60d54e6c63a1436ad581dbac03b9650d4d1d0767ef7399cc23b98c6d511115c09b9dad667901a28a711e8601244be10abdb3b373275273f2ec81a52fca47b4a9af9ca0bfb2f291de501dc6576b1cfde6dc58d122c120c2a0a399c0add577a3c8791c52cfd8f8a8f38ca2c400d7e5022e39037f0cea5629db2c1d771ef312bb3289ff56a2266fc4c9fe00533d97e1d301ec392d86c4c6c0be32ba708b4b6d1ad8419ded67d12e41f5951a8ede66f27922000f5c68329599ebac1255c419f1b0d5cf04af379a5bee803f6f155311dd330b557c58efff43b942fc282c35af3b7dc15a11a606777021557d3859178f455bc86ddaa506787754b774ace22ea087bbb26a200155a6680c84c49776b173049e1e2c622cb6efc00d8c2d3ac6df0efb389a1786146467af6ba8c8a68d00bb2670eed361c3226887d4e0848e5335316632adcede4110ac10de967dc8c96adfc1c822ed4648bc355b8fdc1be6f2c7003ded88bf7b4e14502bea2db4dfb9f82f1692f3222ccb50f8dc9b81a6b40475d80c9173d178f849623c9a006ffa7bc56944c11e753a4ef3945eb36e9474a01a36b4553970cb5738bdcea6e7090baf2b1a8113b608596dff3f8bfe12fc1e03958c540f29eb4085e3659cef7a7b4a6677d1c7b4446a1146df78007c5f8af42be780645ac7f6ab3ca9c736643830f9898ddcdc5c85270497bab1892ebff85a8788f800368c0972819fa151c08a0c96", 0x1000, 0x8}, {&(0x7f0000001480)="7963addf24477c41bb9bdd8a8dc9316276bfdbd4a45e6db1616b6866489463871ce8c65434223aeb35705276", 0x2c, 0x2}, {&(0x7f00000014c0)="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", 0xff, 0x6}], 0x50, &(0x7f0000001880)=ANY=[@ANYBLOB="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"])

04:13:38 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

[ 3331.958089]  ? ___ratelimit+0x60/0x595
[ 3331.958104]  ? do_raw_spin_unlock+0x57/0x270
[ 3331.958123]  oom_kill_process.cold+0x10/0x6ef
[ 3331.958145]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 3331.958159]  ? task_will_free_mem+0x139/0x6e0
[ 3331.958182]  out_of_memory+0x936/0x12d0
[ 3331.958198]  ? lock_downgrade+0x810/0x810
[ 3331.958217]  ? oom_killer_disable+0x280/0x280
[ 3331.958233]  ? find_held_lock+0x35/0x130
[ 3331.958259]  mem_cgroup_out_of_memory+0x1d2/0x240
04:13:38 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

[ 3331.958274]  ? memcg_event_wake+0x230/0x230
[ 3331.958294]  ? do_raw_spin_unlock+0x57/0x270
[ 3331.958309]  ? _raw_spin_unlock+0x2d/0x50
[ 3331.958327]  try_charge+0x1028/0x15b0
[ 3331.958341]  ? find_held_lock+0x35/0x130
[ 3331.958364]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 3331.958387]  ? kasan_check_read+0x11/0x20
[ 3331.958408]  ? get_mem_cgroup_from_mm+0x156/0x320
[ 3331.973969]  mem_cgroup_try_charge+0x259/0x6b0
[ 3331.973991]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 3331.974008]  wp_page_copy+0x430/0x16a0
[ 3331.974033]  ? pmd_pfn+0x1d0/0x1d0
[ 3331.974051]  ? kasan_check_read+0x11/0x20
[ 3331.974066]  ? do_raw_spin_unlock+0x57/0x270
[ 3331.974083]  do_wp_page+0x57d/0x10b0
[ 3331.974103]  ? finish_mkwrite_fault+0x4f0/0x4f0
[ 3331.974118]  ? kasan_check_write+0x14/0x20
[ 3331.974132]  ? do_raw_spin_lock+0xc8/0x240
[ 3331.974153]  __handle_mm_fault+0x2305/0x3f80
[ 3331.974175]  ? vmf_insert_mixed_mkwrite+0x90/0x90
[ 3331.974210]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 3331.974229]  handle_mm_fault+0x1b5/0x690
[ 3331.974253]  __do_page_fault+0x62a/0xe90
[ 3331.974276]  ? vmalloc_fault+0x740/0x740
04:13:39 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0xa}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

[ 3331.974293]  ? trace_hardirqs_off_caller+0x65/0x220
[ 3331.974312]  ? trace_hardirqs_on_caller+0x6a/0x220
[ 3331.983121]  ? page_fault+0x8/0x30
[ 3331.983141]  do_page_fault+0x71/0x57d
[ 3331.983154]  ? page_fault+0x8/0x30
[ 3331.983169]  page_fault+0x1e/0x30
[ 3331.983179] RIP: 0033:0x40f9b6
[ 3331.983195] Code: 0b 66 00 49 8b 89 c8 02 00 00 49 8b 91 c0 02 00 00 48 89 4a 08 49 8b 89 c8 02 00 00 48 89 11 48 c7 05 fa 0a 66 00 00 00 00 00 <48> c7 05 d7 54 30 00 90 4e 71 00 31 d2 48 c7 05 c2 54 30 00 90 4e
[ 3331.983202] RSP: 002b:00007ffd53165458 EFLAGS: 00010246
[ 3331.983216] RAX: 00000000027d5c00 RBX: 00007ffd53165460 RCX: 0000000000a704a0
[ 3331.983226] RDX: 0000000000a704a0 RSI: 0000000000714e90 RDI: 00000000027d5c20
[ 3331.983234] RBP: 00007ffd531654a0 R08: 0000000000000001 R09: 00000000027d5940
[ 3331.983243] R10: 00000000027d5c10 R11: 0000000000000202 R12: 0000000000000001
[ 3331.983251] R13: 0000000000000000 R14: 0000000000000000 R15: 00007ffd531654f0
[ 3332.011420] Task in /syz5 killed as a result of limit of /syz5
[ 3332.229162] memory: usage 307196kB, limit 307200kB, failcnt 8413
[ 3332.238036] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3332.244973] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3332.244982] Memory cgroup stats for /syz5: cache:72KB rss:0KB rss_huge:0KB shmem:12KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:104KB inactive_file:0KB active_file:0KB unevictable:0KB
[ 3332.245094] Memory cgroup out of memory: Kill process 7843 (syz-executor.5) score 117 or sacrifice child
04:13:39 executing program 5:
r0 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000240)='/dev/dlm-control\x00', 0x40000, 0x0)
ioctl$SNDRV_TIMER_IOCTL_GINFO(r0, 0xc0f85403, &(0x7f0000000280)={{0xffffffffffffffff, 0x0, 0x5830000000000, 0x3, 0x4}, 0xf177, 0xb431, 'id0\x00', 'timer1\x00', 0x0, 0x8b4, 0x81, 0x0, 0x445})
shmat(0x0, &(0x7f0000ffc000/0x4000)=nil, 0x3000)
mbind(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x2, &(0x7f0000000000)=0xffff, 0x2, 0x0)
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0x20b, &(0x7f0000000040)=[{&(0x7f0000000540)="2e000000220005000000c187185095cf0400b0eba0b4d65c001d000051894d5d1dac00"/46, 0x2e}], 0x1}, 0x0)
r2 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000080)='/dev/qat_adf_ctl\x00', 0x200, 0x0)
ioctl$DRM_IOCTL_ADD_CTX(0xffffffffffffffff, 0xc0086420, &(0x7f00000000c0)={<r3=>0x0})
ioctl$DRM_IOCTL_GET_SAREA_CTX(r2, 0xc010641d, &(0x7f0000000200)={r3, &(0x7f0000000100)=""/74})

04:13:39 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0xc}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

04:13:39 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0xe}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

[ 3332.245159] Killed process 24766 (syz-executor.5) total-vm:72448kB, anon-rss:108kB, file-rss:34816kB, shmem-rss:0kB
[ 3332.245662] oom_reaper: reaped process 24766 (syz-executor.5), now anon-rss:0kB, file-rss:34624kB, shmem-rss:0kB
04:13:39 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0xf}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

[ 3332.363056] ip6_tunnel: ip6tnl1 xmit: Local address not yet configured!
[ 3332.420543] syz-executor.5 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=0
[ 3332.526362] audit: type=1400 audit(2000002419.420:577): avc:  denied  { map } for  pid=24793 comm="syz-executor.0" path=2F6D656D66643A202864656C6574656429 dev="hugetlbfs" ino=726827 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:hugetlbfs_t:s0 tclass=file permissive=1
[ 3332.554374] syz-executor.5 cpuset=syz5 mems_allowed=0-1
[ 3332.565212] CPU: 0 PID: 24787 Comm: syz-executor.5 Not tainted 4.19.66 #40
[ 3332.572261] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3332.581718] Call Trace:
[ 3332.584325]  dump_stack+0x172/0x1f0
[ 3332.587971]  dump_header+0x15e/0xa55
[ 3332.587990]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 3332.588008]  ? ___ratelimit+0x60/0x595
[ 3332.596823]  ? do_raw_spin_unlock+0x57/0x270
[ 3332.596845]  oom_kill_process.cold+0x10/0x6ef
[ 3332.596863]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 3332.596876]  ? task_will_free_mem+0x139/0x6e0
[ 3332.596896]  out_of_memory+0x936/0x12d0
[ 3332.596912]  ? lock_downgrade+0x810/0x810
[ 3332.596930]  ? oom_killer_disable+0x280/0x280
[ 3332.632349]  ? find_held_lock+0x35/0x130
[ 3332.636430]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 3332.641293]  ? memcg_event_wake+0x230/0x230
[ 3332.645636]  ? do_raw_spin_unlock+0x57/0x270
[ 3332.645653]  ? _raw_spin_unlock+0x2d/0x50
[ 3332.645670]  try_charge+0x1028/0x15b0
[ 3332.645692]  ? find_held_lock+0x35/0x130
[ 3332.645712]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 3332.645733]  ? kasan_check_read+0x11/0x20
[ 3332.645753]  ? get_mem_cgroup_from_mm+0x156/0x320
[ 3332.645770]  mem_cgroup_try_charge+0x259/0x6b0
[ 3332.645790]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 3332.645808]  wp_page_copy+0x430/0x16a0
[ 3332.645830]  ? pmd_pfn+0x1d0/0x1d0
[ 3332.645847]  ? kasan_check_read+0x11/0x20
[ 3332.645861]  ? do_raw_spin_unlock+0x57/0x270
[ 3332.645877]  do_wp_page+0x57d/0x10b0
[ 3332.654444]  ? finish_mkwrite_fault+0x4f0/0x4f0
[ 3332.654459]  ? kasan_check_write+0x14/0x20
[ 3332.654472]  ? do_raw_spin_lock+0xc8/0x240
[ 3332.654493]  __handle_mm_fault+0x2305/0x3f80
[ 3332.654513]  ? vmf_insert_mixed_mkwrite+0x90/0x90
[ 3332.654544]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 3332.654562]  handle_mm_fault+0x1b5/0x690
[ 3332.654582]  __do_page_fault+0x62a/0xe90
[ 3332.654604]  ? vmalloc_fault+0x740/0x740
[ 3332.654624]  ? trace_hardirqs_off_caller+0x65/0x220
[ 3332.752387]  ? trace_hardirqs_on_caller+0x6a/0x220
[ 3332.757323]  ? page_fault+0x8/0x30
[ 3332.760860]  do_page_fault+0x71/0x57d
[ 3332.764667]  ? page_fault+0x8/0x30
[ 3332.768227]  page_fault+0x1e/0x30
[ 3332.771678] RIP: 0033:0x47187e
[ 3332.774860] Code: ff 90 66 2e 0f 1f 84 00 00 00 00 00 55 48 89 e5 41 57 41 56 41 55 41 54 53 48 81 ec 28 05 00 00 48 c7 c0 d4 ff ff ff 64 8b 00 <89> 85 5c fb ff ff 8b 87 c0 00 00 00 85 c0 0f 85 ee 00 00 00 c7 87
[ 3332.793765] RSP: 002b:00007ffd53164d00 EFLAGS: 00010206
[ 3332.799129] RAX: 0000000000000006 RBX: 00007ffd53165260 RCX: 0000000000000000
[ 3332.806657] RDX: 00007ffd531653d8 RSI: 00000000004bef6c RDI: 00007ffd53165260
[ 3332.813933] RBP: 00007ffd53165250 R08: 0000000000000000 R09: 00007ffd531653d8
[ 3332.821353] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffd53165530
[ 3332.828640] R13: 00000000004bef6c R14: 00007ffd531653d8 R15: 0000000000000001
[ 3332.837146] Task in /syz5 killed as a result of limit of /syz5
[ 3332.843337] memory: usage 307200kB, limit 307200kB, failcnt 8434
[ 3332.849595] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3332.856458] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
04:13:39 executing program 2:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x0, &(0x7f0000000140)="11dca50d5e")
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$unix(0x1, 0x2, 0x0)
bind$unix(r1, &(0x7f00000006c0)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
connect$unix(r1, &(0x7f0000000080)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
sendmmsg(r1, &(0x7f0000002dc0), 0x307017fdb7a66cb, 0x0)
r2 = socket(0x0, 0x0, 0x0)
getsockopt$netrom_NETROM_IDLE(r2, 0x103, 0x7, &(0x7f0000000000)=0x9, &(0x7f0000000040)=0x4)
recvmmsg(0xffffffffffffffff, &(0x7f0000007140)=[{{&(0x7f0000001340)=@nl=@unspec, 0x80, 0x0}}], 0x1, 0x0, 0x0)

04:13:39 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x10}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

04:13:39 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"/968]}, 0x440)

04:13:39 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}, 0x1, 0x40030000000000}, 0x0)

04:13:39 executing program 0:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x3, 0x6)
r1 = dup(r0)
socketpair$unix(0x1, 0x200000000005, 0x0, &(0x7f0000000280)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$sock_bt_cmtp_CMTPGETCONNINFO(r1, 0x800443d3, &(0x7f00000000c0)={{0x9, 0xc6d, 0x1, 0x0, 0x4, 0x5}, 0x5, 0x4, 0x80000000})
ioctl$EVIOCGKEYCODE(r1, 0x80084504, &(0x7f0000000000)=""/180)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$sock_bt_hidp_HIDPCONNADD(r1, 0x400448c8, 0x0)

[ 3332.862783] Memory cgroup stats for /syz5: cache:72KB rss:132KB rss_huge:0KB shmem:12KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:108KB inactive_file:0KB active_file:0KB unevictable:0KB
[ 3332.884339] Memory cgroup out of memory: Kill process 7843 (syz-executor.5) score 117 or sacrifice child
[ 3332.894176] Killed process 24787 (syz-executor.5) total-vm:72448kB, anon-rss:108kB, file-rss:34816kB, shmem-rss:0kB
04:13:39 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}, 0x1, 0xf0ffffffffffff}, 0x0)

04:13:39 executing program 5:
r0 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000240)='/dev/dlm-control\x00', 0x40000, 0x0)
ioctl$SNDRV_TIMER_IOCTL_GINFO(r0, 0xc0f85403, &(0x7f0000000280)={{0xffffffffffffffff, 0x0, 0x5830000000000, 0x3, 0x4}, 0xf177, 0xb431, 'id0\x00', 'timer1\x00', 0x0, 0x8b4, 0x81, 0x0, 0x445})
shmat(0x0, &(0x7f0000ffc000/0x4000)=nil, 0x3000)
mbind(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x2, &(0x7f0000000000)=0xffff, 0x2, 0x0)
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0x20b, &(0x7f0000000040)=[{&(0x7f0000000540)="2e000000220005000000c187185095cf0400b0eba0b4d65c001e000051894d5d1dac00"/46, 0x2e}], 0x1}, 0x0)
r2 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000080)='/dev/qat_adf_ctl\x00', 0x200, 0x0)
ioctl$DRM_IOCTL_ADD_CTX(0xffffffffffffffff, 0xc0086420, &(0x7f00000000c0)={<r3=>0x0})
ioctl$DRM_IOCTL_GET_SAREA_CTX(r2, 0xc010641d, &(0x7f0000000200)={r3, &(0x7f0000000100)=""/74})

04:13:39 executing program 0:
r0 = perf_event_open(&(0x7f00000001c0)={0x0, 0x70, 0x2000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$eventfd(0xffffffffffffffff, &(0x7f00000000c0)=0x100000001, 0x8)
r1 = dup3(r0, r0, 0x2)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(0xffffffffffffffff, 0x10e, 0x1, 0x0, 0x0)
ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, &(0x7f0000000680))
ioctl$DMA_BUF_IOCTL_SYNC(r1, 0x40086200, &(0x7f0000000300))
r2 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)={0x2, 0x7, 0x0, 0x9, 0x2}, 0x10}}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000000c0)=0x81)
r3 = creat(0x0, 0x4)
connect$rxrpc(r3, &(0x7f0000000180)=@in6={0x21, 0x3, 0x2, 0x1c, {0xa, 0x4e20, 0x100, @rand_addr="a1948297c0351dae5166b78207fcb3a2", 0x10000}}, 0x24)
prctl$PR_GET_SPECULATION_CTRL(0x34, 0x0, 0x4)
ioctl$EVIOCGBITSW(r1, 0x80404525, &(0x7f0000000140))
r4 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r5 = socket$inet6(0xa, 0x3, 0x6)
shmget$private(0x0, 0x1000, 0x10, &(0x7f0000ffe000/0x1000)=nil)
setsockopt$inet6_IPV6_XFRM_POLICY(r5, 0x29, 0x23, &(0x7f0000000380)={{{@in6, @in6=@local, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@loopback, 0x0, 0x33}, 0x0, @in6=@local, 0x0, 0x0, 0x0, 0x6}}, 0xe8)
connect$inet6(r5, &(0x7f0000000200)={0xa, 0x0, 0x0, @local, 0x4}, 0x1c)
sendmmsg(r5, &(0x7f0000007e00), 0x400000000000058, 0x2000)
getsockopt$inet_IP_XFRM_POLICY(r5, 0x0, 0x11, &(0x7f00000006c0)={{{@in6=@ipv4={[], [], @loopback}, @in=@broadcast, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r6=>0x0}}, {{@in6=@loopback}, 0x0, @in6=@mcast1}}, &(0x7f00000002c0)=0xe8)
recvfrom$packet(r1, &(0x7f0000000500)=""/235, 0xeb, 0x2, &(0x7f0000000600)={0x11, 0x1e, r6, 0x1, 0x0, 0x6, @broadcast}, 0x14)
getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, &(0x7f0000003100)={{{@in6=@mcast2, @in6=@dev}}, {{@in6=@local}, 0x0, @in6=@mcast2}}, &(0x7f0000003200)=0xe8)
personality(0x2000000)
ioctl$KDDELIO(r3, 0x4b35, 0x8)
fgetxattr(r4, &(0x7f0000000240)=@known='trusted.overlay.upper\x00', &(0x7f00000007c0)=""/216, 0xd8)
getsockname$packet(r1, &(0x7f0000004cc0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000004d00)=0x14)

04:13:39 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="00000000004000000000000000000000000000000000000000000000000000000000000000000000ffffffff020000001dffffff1f000000080676657468305f746f5f627269646765006e7230000000000000000000000000006772653000000000000000000000000076657468315f746f5f626f6e64000000aaaaaaaaaaaa000000000000aaaaaaaaaaaa00000000000000007000000070000000a80000006172707265706c790000000000000000000000000000000000000000000000001000000000000000aaaaaaaaaaaa0000feffffff0000000009000000000000000000697064647030000000000000000000006272696467655f736c6176655f3100000000000000000000000000000000000067726530000000000000000000000000ffffffffffff0000000000000000000000000000000000000000e0000000180100005001000072617465657374000000000000a3000000000000000000000000000000000000480000000000000064756d6d79300000000000000000000073797a5f74756e0000000ab941773a25a4462a99832900000000000000000000200000000000000000000000000000000000000000000000736e6174000000000000000000000000000000000000000000000000000000001000000000000000aaaaaaaaaaaa000000000000000000006d61726b0000000000000000000000000000000000000000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000002000000feffffff01000000110000000000000000006272696467655f736c6176655f3100000000000000000000000000749638e0006c6f00000000000000000000000000000080616d300000000000000000000000aaaaaaaaaa00000000000000aaaaaaaaaaaa0000000000000000a00000000801000040010000636f6e6e6c6162656c000000000000000000000000000000000000000000000008000000000000000000000000000000434c4153534946590000000000000000000000000000000000ff07000000000008000000000000000000000000000000736e617400000000000000000000000000000000000000000001000000000000100000000000000000000000000000000000000000000000736e6174000000000000000000000000000000000000000000000000000000001000000000001400aaaaaaaaaabb00"/968]}, 0x440)

04:13:39 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x60}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

04:13:40 executing program 2:
r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = socket$netlink(0x10, 0x3, 0xc)
r2 = socket$netlink(0x10, 0x3, 0xc)
writev(r2, &(0x7f0000fb5ff0)=[{&(0x7f0000fb4000)="1f", 0x1}], 0x1)
r3 = dup2(r1, r2)
bind$inet(0xffffffffffffffff, &(0x7f00001edff0)={0x2, 0x10000004e20, @multicast1}, 0x10)
write$binfmt_elf32(r0, &(0x7f0000000040)={{0x7f, 0x45, 0x4c, 0x46, 0x3f, 0x8, 0xff, 0xaf, 0xffffffff, 0x2, 0x3, 0x7, 0x29b, 0x38, 0x1ab, 0x2, 0x1, 0x20, 0x2, 0x7, 0x7, 0x17ceff0c}, [{0x4, 0x3ff, 0x4, 0x4, 0xbbf, 0x3, 0x5, 0x100000000}, {0x60000000, 0xfffffffffffffbff, 0x100000000, 0x3, 0xa5, 0x401, 0x3b70, 0x4}], "b96fd7207d40f45e2d8197c072f3f923b959c7e0b7d42ee0a5ce00a8cf0c5f268c74577379756c79e0f6bc2402946278f80bb27af96583be1ef236517eadac5ea00487a85c65c0fe1762becb747a7a2c78adf5a90abe63e23134f256bf4b570474f0a25cdfc77508de478aeb9553a170fe6e56ba1cdca4840ece0880a21012b0a0df12bf954b4ada8608b67c5738ee4c4ed4c922e94a1753900fc55c8d1ba2d013a227a9502bb100d63035aa069a23c961e8ee41fc0d870062f128856a8eb9eec343f2cc3875a7304f0622edf736d513", [[], [], [], [], [], []]}, 0x748)
ioctl$DRM_IOCTL_ADD_CTX(r3, 0xc0086420, &(0x7f0000000000))

[ 3333.174171] syz-executor.5 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=0
[ 3333.226507] syz-executor.5 cpuset=syz5 mems_allowed=0-1
[ 3333.231948] CPU: 0 PID: 24819 Comm: syz-executor.5 Not tainted 4.19.66 #40
[ 3333.238973] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3333.248354] Call Trace:
[ 3333.250969]  dump_stack+0x172/0x1f0
[ 3333.254621]  dump_header+0x15e/0xa55
[ 3333.258357]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 3333.263487]  ? ___ratelimit+0x60/0x595
[ 3333.267403]  ? do_raw_spin_unlock+0x57/0x270
[ 3333.271843]  oom_kill_process.cold+0x10/0x6ef
[ 3333.276383]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 3333.281945]  ? task_will_free_mem+0x139/0x6e0
[ 3333.286479]  out_of_memory+0x936/0x12d0
[ 3333.290473]  ? lock_downgrade+0x810/0x810
[ 3333.294644]  ? oom_killer_disable+0x280/0x280
[ 3333.299162]  ? find_held_lock+0x35/0x130
[ 3333.303256]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 3333.308109]  ? memcg_event_wake+0x230/0x230
[ 3333.312450]  ? do_raw_spin_unlock+0x57/0x270
[ 3333.316874]  ? _raw_spin_unlock+0x2d/0x50
[ 3333.321039]  try_charge+0x1028/0x15b0
04:13:40 executing program 2:
bpf$MAP_CREATE(0x0, &(0x7f0000000200)={0x5, 0x800000007, 0x7fff, 0x8000000001}, 0x2c)
r0 = bpf$MAP_CREATE(0x2, &(0x7f0000003000)={0x3, 0x0, 0x400000077fffb, 0x0, 0x820000, 0x0}, 0x2c)
mmap(&(0x7f0000e00000/0x200000)=nil, 0x200000, 0x0, 0x8011, r0, 0x0)
r1 = openat$full(0xffffffffffffff9c, &(0x7f0000000000)='/dev/full\x00', 0x80000, 0x0)
r2 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000080)='IPVS\x00')
sendmsg$IPVS_CMD_GET_DAEMON(r1, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x44, r2, 0x300, 0x70bd28, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x7}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x2e}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0xbb}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x6}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x101}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0xf7}]}, 0x44}, 0x1, 0x0, 0x0, 0xc000}, 0x4004840)

04:13:40 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}, 0x1, 0x100000000000000}, 0x0)

[ 3333.324853]  ? find_held_lock+0x35/0x130
[ 3333.328943]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 3333.333802]  ? kasan_check_read+0x11/0x20
[ 3333.337975]  ? get_mem_cgroup_from_mm+0x156/0x320
[ 3333.342839]  mem_cgroup_try_charge+0x259/0x6b0
[ 3333.347439]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 3333.352421]  wp_page_copy+0x430/0x16a0
[ 3333.356333]  ? pmd_pfn+0x1d0/0x1d0
[ 3333.359892]  ? kasan_check_read+0x11/0x20
[ 3333.364049]  ? do_raw_spin_unlock+0x57/0x270
[ 3333.364067]  do_wp_page+0x57d/0x10b0
[ 3333.364085]  ? finish_mkwrite_fault+0x4f0/0x4f0
[ 3333.364099]  ? kasan_check_write+0x14/0x20
[ 3333.364112]  ? do_raw_spin_lock+0xc8/0x240
[ 3333.364130]  __handle_mm_fault+0x2305/0x3f80
[ 3333.364149]  ? vmf_insert_mixed_mkwrite+0x90/0x90
[ 3333.364180]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 3333.389936]  handle_mm_fault+0x1b5/0x690
[ 3333.389959]  __do_page_fault+0x62a/0xe90
[ 3333.389983]  ? vmalloc_fault+0x740/0x740
[ 3333.411705]  ? trace_hardirqs_off_caller+0x65/0x220
[ 3333.416913]  ? trace_hardirqs_on_caller+0x6a/0x220
[ 3333.421860]  ? page_fault+0x8/0x30
[ 3333.425423]  do_page_fault+0x71/0x57d
[ 3333.429598]  ? page_fault+0x8/0x30
[ 3333.433154]  page_fault+0x1e/0x30
[ 3333.436620] RIP: 0033:0x47187e
[ 3333.439830] Code: ff 90 66 2e 0f 1f 84 00 00 00 00 00 55 48 89 e5 41 57 41 56 41 55 41 54 53 48 81 ec 28 05 00 00 48 c7 c0 d4 ff ff ff 64 8b 00 <89> 85 5c fb ff ff 8b 87 c0 00 00 00 85 c0 0f 85 ee 00 00 00 c7 87
[ 3333.458837] RSP: 002b:00007ffd53164d00 EFLAGS: 00010206
[ 3333.464228] RAX: 0000000000000006 RBX: 00007ffd53165260 RCX: 0000000000000000
04:13:40 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}, 0x1, 0x200000000000000}, 0x0)

04:13:40 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"/968]}, 0x440)

[ 3333.471539] RDX: 00007ffd531653d8 RSI: 00000000004bef6c RDI: 00007ffd53165260
[ 3333.478822] RBP: 00007ffd53165250 R08: 0000000000000000 R09: 00007ffd531653d8
[ 3333.486105] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffd53165530
[ 3333.493392] R13: 00000000004bef6c R14: 00007ffd531653d8 R15: 0000000000000001
[ 3333.528668] Task in /syz5 killed as a result of limit of /syz5
[ 3333.550580] memory: usage 307200kB, limit 307200kB, failcnt 8474
[ 3333.581581] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3333.621594] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
04:13:40 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0xf0}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

04:13:40 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}, 0x1, 0x300000000000000}, 0x0)

[ 3333.648217] Memory cgroup stats for /syz5: cache:72KB rss:132KB rss_huge:0KB shmem:12KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:108KB inactive_file:0KB active_file:0KB unevictable:0KB
04:13:40 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"/968]}, 0x440)

[ 3333.775157] Memory cgroup out of memory: Kill process 7843 (syz-executor.5) score 117 or sacrifice child
[ 3333.819236] Killed process 24819 (syz-executor.5) total-vm:72448kB, anon-rss:108kB, file-rss:34816kB, shmem-rss:0kB
[ 3333.910124] oom_reaper: reaped process 24819 (syz-executor.5), now anon-rss:0kB, file-rss:34432kB, shmem-rss:0kB
04:13:40 executing program 5:
r0 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000240)='/dev/dlm-control\x00', 0x40000, 0x0)
ioctl$SNDRV_TIMER_IOCTL_GINFO(r0, 0xc0f85403, &(0x7f0000000280)={{0xffffffffffffffff, 0x0, 0x5830000000000, 0x3, 0x4}, 0xf177, 0xb431, 'id0\x00', 'timer1\x00', 0x0, 0x8b4, 0x81, 0x0, 0x445})
shmat(0x0, &(0x7f0000ffc000/0x4000)=nil, 0x3000)
mbind(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x2, &(0x7f0000000000)=0xffff, 0x2, 0x0)
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0x20b, &(0x7f0000000040)=[{&(0x7f0000000540)="2e000000220005000000c187185095cf0400b0eba0b4d65c0021000051894d5d1dac00"/46, 0x2e}], 0x1}, 0x0)
r2 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000080)='/dev/qat_adf_ctl\x00', 0x200, 0x0)
ioctl$DRM_IOCTL_ADD_CTX(0xffffffffffffffff, 0xc0086420, &(0x7f00000000c0)={<r3=>0x0})
ioctl$DRM_IOCTL_GET_SAREA_CTX(r2, 0xc010641d, &(0x7f0000000200)={r3, &(0x7f0000000100)=""/74})

[ 3334.090968] syz-executor.5 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=0
[ 3334.102155] syz-executor.5 cpuset=syz5 mems_allowed=0-1
[ 3334.107656] CPU: 1 PID: 24864 Comm: syz-executor.5 Not tainted 4.19.66 #40
[ 3334.114679] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3334.124043] Call Trace:
[ 3334.126644]  dump_stack+0x172/0x1f0
[ 3334.130287]  dump_header+0x15e/0xa55
[ 3334.134018]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 3334.139142]  ? ___ratelimit+0x60/0x595
[ 3334.143048]  ? do_raw_spin_unlock+0x57/0x270
[ 3334.147482]  oom_kill_process.cold+0x10/0x6ef
[ 3334.152003]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 3334.157558]  ? task_will_free_mem+0x139/0x6e0
[ 3334.162080]  out_of_memory+0x936/0x12d0
[ 3334.166082]  ? lock_downgrade+0x810/0x810
[ 3334.170247]  ? oom_killer_disable+0x280/0x280
[ 3334.174754]  ? find_held_lock+0x35/0x130
[ 3334.179316]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 3334.184183]  ? memcg_event_wake+0x230/0x230
[ 3334.184206]  ? do_raw_spin_unlock+0x57/0x270
[ 3334.184221]  ? _raw_spin_unlock+0x2d/0x50
[ 3334.184238]  try_charge+0x1028/0x15b0
[ 3334.197109]  ? find_held_lock+0x35/0x130
[ 3334.197139]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 3334.209846]  ? kasan_check_read+0x11/0x20
[ 3334.214017]  ? get_mem_cgroup_from_mm+0x156/0x320
[ 3334.218882]  mem_cgroup_try_charge+0x259/0x6b0
[ 3334.223492]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 3334.228439]  wp_page_copy+0x430/0x16a0
[ 3334.232364]  ? pmd_pfn+0x1d0/0x1d0
[ 3334.235927]  ? kasan_check_read+0x11/0x20
[ 3334.240118]  ? do_raw_spin_unlock+0x57/0x270
[ 3334.244547]  do_wp_page+0x57d/0x10b0
[ 3334.248279]  ? finish_mkwrite_fault+0x4f0/0x4f0
[ 3334.252962]  ? kasan_check_write+0x14/0x20
[ 3334.257213]  ? do_raw_spin_lock+0xc8/0x240
[ 3334.261475]  __handle_mm_fault+0x2305/0x3f80
[ 3334.265898]  ? vmf_insert_mixed_mkwrite+0x90/0x90
[ 3334.270769]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 3334.275453]  handle_mm_fault+0x1b5/0x690
[ 3334.279566]  __do_page_fault+0x62a/0xe90
[ 3334.283651]  ? vmalloc_fault+0x740/0x740
[ 3334.287727]  ? trace_hardirqs_off_caller+0x65/0x220
[ 3334.292774]  ? trace_hardirqs_on_caller+0x6a/0x220
[ 3334.297708]  ? page_fault+0x8/0x30
[ 3334.297730]  do_page_fault+0x71/0x57d
[ 3334.297746]  ? page_fault+0x8/0x30
[ 3334.305091]  page_fault+0x1e/0x30
[ 3334.305103] RIP: 0033:0x47187e
[ 3334.305118] Code: ff 90 66 2e 0f 1f 84 00 00 00 00 00 55 48 89 e5 41 57 41 56 41 55 41 54 53 48 81 ec 28 05 00 00 48 c7 c0 d4 ff ff ff 64 8b 00 <89> 85 5c fb ff ff 8b 87 c0 00 00 00 85 c0 0f 85 ee 00 00 00 c7 87
[ 3334.305125] RSP: 002b:00007ffd53164d00 EFLAGS: 00010206
04:13:41 executing program 0:
r0 = socket(0x400140000000015, 0x800, 0x5)
getsockopt(r0, 0x80000000000114, 0x100002717, 0x0, &(0x7f0000000100))

04:13:41 executing program 2:
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vhci\x00', 0xa0084)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
close(r0)

04:13:41 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x1a0}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

04:13:41 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}, 0x1, 0x400000000000000}, 0x0)

04:13:41 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"/968]}, 0x440)

04:13:41 executing program 0:
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
sendmmsg$inet_sctp(r0, &(0x7f000093eee8)=[{&(0x7f0000000180)=@in={0x2, 0x0, @local={0xac, 0x14, 0xffffffffffffffff}}, 0x10, 0x0, 0x0, &(0x7f0000000100)=[@sndrcv={0x24}], 0x30}], 0x1, 0x0)
r1 = syz_open_dev$amidi(&(0x7f0000000000)='/dev/amidi#\x00', 0x0, 0x208800)
r2 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000080)='TIPCv2\x00')
sendmsg$TIPC_NL_BEARER_GET(r1, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x5f58150d65c11694}, 0xc, &(0x7f00000000c0)={&(0x7f00000001c0)={0x260, r2, 0x800, 0x70bd29, 0x25dfdbfd, {}, [@TIPC_NLA_LINK={0x80, 0x4, [@TIPC_NLA_LINK_PROP={0x2c, 0x7, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1a}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xc4}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x80}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x8}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x80000001}]}, @TIPC_NLA_LINK_PROP={0x3c, 0x7, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x8}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xc}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x18}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xfffffffffffffffa}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x18}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x3}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xed}]}, @TIPC_NLA_LINK_PROP={0x14, 0x7, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x12}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xc}]}]}, @TIPC_NLA_SOCK={0x24, 0x2, [@TIPC_NLA_SOCK_REF={0x8, 0x2, 0x2}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0xf7}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x200}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x1}]}, @TIPC_NLA_SOCK={0x8, 0x2, [@TIPC_NLA_SOCK_HAS_PUBL={0x4}]}, @TIPC_NLA_LINK={0x1c, 0x4, [@TIPC_NLA_LINK_NAME={0xc, 0x1, 'syz0\x00'}, @TIPC_NLA_LINK_PROP={0xc, 0x7, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x6}]}]}, @TIPC_NLA_SOCK={0x28, 0x2, [@TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x6}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x8}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0xf5fb}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x200}]}, @TIPC_NLA_NODE={0xc, 0x6, [@TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x7fffffff}]}, @TIPC_NLA_LINK={0x8c, 0x4, [@TIPC_NLA_LINK_PROP={0x2c, 0x7, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x11}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xffff}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x8000}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1d}]}, @TIPC_NLA_LINK_PROP={0x14, 0x7, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x2}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xf}]}, @TIPC_NLA_LINK_NAME={0xc, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_NAME={0xc, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_PROP={0xc, 0x7, [@TIPC_NLA_PROP_TOL={0x8}]}, @TIPC_NLA_LINK_NAME={0xc, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_NAME={0xc, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_NAME={0xc, 0x1, 'syz1\x00'}]}, @TIPC_NLA_BEARER={0x70, 0x1, [@TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x265}, @TIPC_NLA_BEARER_NAME={0x10, 0x1, @udp='udp:syz0\x00'}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x611e}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x40000}, @TIPC_NLA_BEARER_UDP_OPTS={0x44, 0x4, {{0x20, 0x1, @in6={0xa, 0x4e20, 0x3, @local, 0x5}}, {0x20, 0x2, @in6={0xa, 0x4e20, 0x1, @dev={0xfe, 0x80, [], 0x14}, 0x5}}}}]}, @TIPC_NLA_LINK={0x50, 0x4, [@TIPC_NLA_LINK_PROP={0x4c, 0x7, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x10000}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x8b34}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1f}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7fffffff}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x9b1b}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x61e9}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xfff}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x18}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xe}]}]}, @TIPC_NLA_MON={0x4}]}, 0x260}, 0x1, 0x0, 0x0, 0x48c1}, 0x4)

04:13:41 executing program 0:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
close(r0)
r1 = socket(0x840000000002, 0x3, 0x1)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000080)='ip6_vti0\x00 \x00', 0x10)
connect$inet(r0, &(0x7f0000000200)={0x2, 0x0, @initdev}, 0x10)
setsockopt$inet_sctp6_SCTP_AUTOCLOSE(r1, 0x84, 0x4, &(0x7f0000000000)=0x17, 0x4)
write$FUSE_ATTR(r0, &(0x7f0000000140)={0x78}, 0x78)

04:13:41 executing program 0:
r0 = syz_open_dev$sndctrl(&(0x7f00000000c0)='/dev/snd/controlC#\x00', 0x0, 0x0)
ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000000100)=<r1=>0x0)
r2 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000140)='/dev/dlm-monitor\x00', 0x101000, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x70, 0x80000001, 0x75e, 0x6, 0x2, 0x0, 0x62b51604, 0x8000, 0x0, 0xffffffff, 0x5, 0x8001, 0x3f, 0x400, 0x9, 0x7, 0x4, 0x1, 0x9, 0x800, 0x20, 0x9, 0x800, 0x8, 0x9, 0x9, 0xffff, 0x2, 0x20, 0x5, 0xa0000000, 0x7, 0x5, 0x20, 0xffffffffffffffff, 0x8, 0x3, 0x0, 0x8, 0x5, @perf_bp={&(0x7f0000000000), 0x7}, 0x55562c7b9343bb85, 0x5, 0xffffffffffffffc1, 0x0, 0x5, 0x1}, r1, 0x3, r2, 0x2)
perf_event_open(&(0x7f0000001000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8ce, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$SNDRV_CTL_IOCTL_PVERSION(r0, 0xc4c85513, &(0x7f0000001000))

[ 3334.305139] RAX: 0000000000000006 RBX: 00007ffd53165260 RCX: 0000000000000000
[ 3334.305152] RDX: 00007ffd531653d8 RSI: 00000000004bef6c RDI: 00007ffd53165260
[ 3334.354198] RBP: 00007ffd53165250 R08: 0000000000000000 R09: 00007ffd531653d8
[ 3334.361493] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffd53165530
[ 3334.368775] R13: 00000000004bef6c R14: 00007ffd531653d8 R15: 0000000000000001
[ 3334.383308] Task in /syz5 killed as a result of limit of /syz5
04:13:41 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x26e}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

[ 3334.425802] memory: usage 307200kB, limit 307200kB, failcnt 8495
[ 3334.446863] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
04:13:41 executing program 2:
r0 = syz_open_dev$usb(&(0x7f0000000180)='/dev/bus/usb/00#/00#\x00', 0x6, 0x5)
ioctl$FS_IOC_FSGETXATTR(r0, 0x41045508, &(0x7f00000001c0))

[ 3334.478699] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3334.506669] Memory cgroup stats for /syz5: cache:72KB rss:132KB rss_huge:0KB shmem:12KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:108KB inactive_file:0KB active_file:0KB unevictable:0KB
04:13:41 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"/968]}, 0x440)

[ 3334.541773] Memory cgroup out of memory: Kill process 7843 (syz-executor.5) score 117 or sacrifice child
[ 3334.554364] Killed process 24864 (syz-executor.5) total-vm:72448kB, anon-rss:108kB, file-rss:34816kB, shmem-rss:0kB
[ 3334.611377] oom_reaper: reaped process 24864 (syz-executor.5), now anon-rss:0kB, file-rss:34816kB, shmem-rss:0kB
04:13:41 executing program 5:
r0 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000240)='/dev/dlm-control\x00', 0x40000, 0x0)
ioctl$SNDRV_TIMER_IOCTL_GINFO(r0, 0xc0f85403, &(0x7f0000000280)={{0xffffffffffffffff, 0x0, 0x5830000000000, 0x3, 0x4}, 0xf177, 0xb431, 'id0\x00', 'timer1\x00', 0x0, 0x8b4, 0x81, 0x0, 0x445})
shmat(0x0, &(0x7f0000ffc000/0x4000)=nil, 0x3000)
mbind(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x2, &(0x7f0000000000)=0xffff, 0x2, 0x0)
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0x20b, &(0x7f0000000040)=[{&(0x7f0000000540)="2e000000220005000000c187185095cf0400b0eba0b4d65c0022000051894d5d1dac00"/46, 0x2e}], 0x1}, 0x0)
r2 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000080)='/dev/qat_adf_ctl\x00', 0x200, 0x0)
ioctl$DRM_IOCTL_ADD_CTX(0xffffffffffffffff, 0xc0086420, &(0x7f00000000c0)={<r3=>0x0})
ioctl$DRM_IOCTL_GET_SAREA_CTX(r2, 0xc010641d, &(0x7f0000000200)={r3, &(0x7f0000000100)=""/74})

04:13:41 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}, 0x1, 0x600000000000000}, 0x0)

04:13:41 executing program 0:
socket(0x2, 0x0, 0xfffffffffffffffb)
prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff)
r0 = socket$inet(0x2, 0x200000002, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000400)=@broute={'broute\x00', 0x20, 0x2, 0x330, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000580], 0x0, 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="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"]}, 0x3ef)
syz_genetlink_get_family_id$ipvs(0x0)
sendmsg$IPVS_CMD_NEW_DAEMON(0xffffffffffffffff, 0x0, 0x20040040)
fcntl$F_GET_RW_HINT(0xffffffffffffffff, 0x40b, 0x0)

04:13:41 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x300}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

04:13:41 executing program 2:
mremap(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0x1000, 0x7, &(0x7f0000ffb000/0x1000)=nil)
openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x600000, 0x0)

04:13:41 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"/968]}, 0x440)

[ 3334.788358] syz-executor.5 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=0
04:13:41 executing program 2:
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000040)=@framed={{0xffffffb4, 0x6cb3210000000000, 0x0, 0x0, 0x0, 0xffffff9f}, [@ldst={0x2, 0x0, 0x3, 0x1c10a1}]}, &(0x7f0000003ff6)='G\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000080), 0x10}, 0x70)

04:13:41 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x308}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

04:13:41 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}, 0x1, 0xa00000000000000}, 0x0)

04:13:41 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"/968]}, 0x440)

[ 3334.893383] syz-executor.5 cpuset=syz5 mems_allowed=0-1
[ 3334.943881] CPU: 0 PID: 24909 Comm: syz-executor.5 Not tainted 4.19.66 #40
[ 3334.950931] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3334.960294] Call Trace:
[ 3334.962908]  dump_stack+0x172/0x1f0
[ 3334.966566]  dump_header+0x15e/0xa55
[ 3334.970296]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 3334.975418]  ? ___ratelimit+0x60/0x595
[ 3334.979326]  ? do_raw_spin_unlock+0x57/0x270
[ 3334.983755]  oom_kill_process.cold+0x10/0x6ef
[ 3334.988274]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 3334.993830]  ? task_will_free_mem+0x139/0x6e0
[ 3334.998350]  out_of_memory+0x936/0x12d0
[ 3335.002341]  ? lock_downgrade+0x810/0x810
[ 3335.006516]  ? oom_killer_disable+0x280/0x280
[ 3335.011204]  ? find_held_lock+0x35/0x130
[ 3335.015296]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 3335.020152]  ? memcg_event_wake+0x230/0x230
[ 3335.024499]  ? do_raw_spin_unlock+0x57/0x270
[ 3335.028924]  ? _raw_spin_unlock+0x2d/0x50
[ 3335.033123]  try_charge+0x1028/0x15b0
[ 3335.036935]  ? find_held_lock+0x35/0x130
[ 3335.041020]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 3335.045880]  ? kasan_check_read+0x11/0x20
[ 3335.050052]  ? get_mem_cgroup_from_mm+0x156/0x320
[ 3335.054909]  mem_cgroup_try_charge+0x259/0x6b0
[ 3335.059507]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 3335.064454]  wp_page_copy+0x430/0x16a0
[ 3335.068367]  ? pmd_pfn+0x1d0/0x1d0
[ 3335.068392]  ? kasan_check_read+0x11/0x20
[ 3335.076076]  ? do_raw_spin_unlock+0x57/0x270
[ 3335.076093]  do_wp_page+0x57d/0x10b0
[ 3335.076110]  ? finish_mkwrite_fault+0x4f0/0x4f0
[ 3335.076125]  ? kasan_check_write+0x14/0x20
[ 3335.076137]  ? do_raw_spin_lock+0xc8/0x240
[ 3335.076157]  __handle_mm_fault+0x2305/0x3f80
[ 3335.076175]  ? vmf_insert_mixed_mkwrite+0x90/0x90
[ 3335.076212]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 3335.111402]  handle_mm_fault+0x1b5/0x690
[ 3335.115484]  __do_page_fault+0x62a/0xe90
[ 3335.119560]  ? vmalloc_fault+0x740/0x740
[ 3335.123638]  ? trace_hardirqs_off_caller+0x65/0x220
[ 3335.123652]  ? trace_hardirqs_on_caller+0x6a/0x220
[ 3335.123666]  ? page_fault+0x8/0x30
[ 3335.123692]  do_page_fault+0x71/0x57d
[ 3335.123705]  ? page_fault+0x8/0x30
04:13:41 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x500}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

04:13:41 executing program 2:
r0 = syz_open_dev$sndpcmp(&(0x7f0000000000)='/dev/snd/pcmC#D#p\x00', 0x48fe, 0x4000)
ioctl$sock_inet_tcp_SIOCOUTQNSD(r0, 0x894b, &(0x7f0000000040))
r1 = socket$inet(0x10, 0x6, 0x7)
sendmsg(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000080)="24000000220007031dfffd946f610500000000000543000000000000421ba3a20400ff7e", 0x24}], 0x1}, 0x0)
write$P9_RWRITE(r0, &(0x7f00000000c0)={0xb, 0x77, 0x2, 0x100000000}, 0xb)

[ 3335.123719]  page_fault+0x1e/0x30
[ 3335.123735] RIP: 0033:0x47187e
[ 3335.148056] Code: ff 90 66 2e 0f 1f 84 00 00 00 00 00 55 48 89 e5 41 57 41 56 41 55 41 54 53 48 81 ec 28 05 00 00 48 c7 c0 d4 ff ff ff 64 8b 00 <89> 85 5c fb ff ff 8b 87 c0 00 00 00 85 c0 0f 85 ee 00 00 00 c7 87
[ 3335.148066] RSP: 002b:00007ffd53164d00 EFLAGS: 00010206
[ 3335.148079] RAX: 0000000000000006 RBX: 00007ffd53165260 RCX: 0000000000000000
[ 3335.148088] RDX: 00007ffd531653d8 RSI: 00000000004bef6c RDI: 00007ffd53165260
[ 3335.148101] RBP: 00007ffd53165250 R08: 0000000000000000 R09: 00007ffd531653d8
[ 3335.197385] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffd53165530
[ 3335.204669] R13: 00000000004bef6c R14: 00007ffd531653d8 R15: 0000000000000001
[ 3335.242850] Task in /syz5 killed as a result of limit of /syz5
[ 3335.252200] memory: usage 307200kB, limit 307200kB, failcnt 8530
[ 3335.300152] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3335.329811] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
04:13:42 executing program 5:
r0 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000240)='/dev/dlm-control\x00', 0x40000, 0x0)
ioctl$SNDRV_TIMER_IOCTL_GINFO(r0, 0xc0f85403, &(0x7f0000000280)={{0xffffffffffffffff, 0x0, 0x5830000000000, 0x3, 0x4}, 0xf177, 0xb431, 'id0\x00', 'timer1\x00', 0x0, 0x8b4, 0x81, 0x0, 0x445})
shmat(0x0, &(0x7f0000ffc000/0x4000)=nil, 0x3000)
mbind(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x2, &(0x7f0000000000)=0xffff, 0x2, 0x0)
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0x20b, &(0x7f0000000040)=[{&(0x7f0000000540)="2e000000220005000000c187185095cf0400b0eba0b4d65c0023000051894d5d1dac00"/46, 0x2e}], 0x1}, 0x0)
r2 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000080)='/dev/qat_adf_ctl\x00', 0x200, 0x0)
ioctl$DRM_IOCTL_ADD_CTX(0xffffffffffffffff, 0xc0086420, &(0x7f00000000c0)={<r3=>0x0})
ioctl$DRM_IOCTL_GET_SAREA_CTX(r2, 0xc010641d, &(0x7f0000000200)={r3, &(0x7f0000000100)=""/74})

04:13:42 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}, 0x1, 0xc00000000000000}, 0x0)

04:13:42 executing program 0:
r0 = syz_open_dev$vbi(&(0x7f0000000100)='/dev/vbi#\x00', 0x2, 0x2)
setsockopt$inet_mreqsrc(r0, 0x0, 0x26, &(0x7f0000000140)={@local, @loopback, @loopback}, 0xc)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
connect$inet(r1, &(0x7f0000000080)={0x2, 0x0, @local}, 0x10)
setsockopt$inet_int(r1, 0x0, 0x4, 0x0, 0x0)
sendto$inet(r1, 0x0, 0x0, 0x0, 0x0, 0x0)
setsockopt$IP_VS_SO_SET_TIMEOUT(r1, 0x0, 0x48a, &(0x7f00000000c0)={0x93, 0x5, 0xffffffff80000000}, 0xc)
fsetxattr$trusted_overlay_upper(r2, &(0x7f0000000040)='trusted.overlay.upper\x00', &(0x7f0000000180)=ANY=[@ANYBLOB="00fb8304065612d6e17b237f0fe6fc56aa4584fc6314d852c364cda1fc31502fe45cbc8da28f51b7e348e1795bd53c445c489ce88625f0230b4a93aa02700bcae7fc26486278a75be6495dd324c289e73722f92c6458d68e91e1e8dad7d9db682e2022ec51bb697fe2a4d45200eb77ecb1e135f87703a285c957c4828613658caa4ae9fa92024662a50f3d07dbb6eb0753a847f9ba6d5a27673817c5197cc39d7120574cc62d7fec590dafee2598"], 0x83, 0x3)

04:13:42 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="00000000004000000000000000000000000000000000000000000000000000000000000000000000ffffffff020000001d00000000030000080676657468305f746f5f627269646765006e7230000000000000000000000000006772653000000000000000000000000076657468315f746f5f626f6e64000000aaaaaaaaaaaa000000000000aaaaaaaaaaaa00000000000000007000000070000000a80000006172707265706c790000000000000000000000000000000000000000000000001000000000000000aaaaaaaaaaaa0000feffffff0000000009000000000000000000697064647030000000000000000000006272696467655f736c6176655f3100000000000000000000000000000000000067726530000000000000000000000000ffffffffffff0000000000000000000000000000000000000000e0000000180100005001000072617465657374000000000000a3000000000000000000000000000000000000480000000000000064756d6d79300000000000000000000073797a5f74756e0000000ab941773a25a4462a99832900000000000000000000200000000000000000000000000000000000000000000000736e6174000000000000000000000000000000000000000000000000000000001000000000000000aaaaaaaaaaaa000000000000000000006d61726b0000000000000000000000000000000000000000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000002000000feffffff01000000110000000000000000006272696467655f736c6176655f3100000000000000000000000000749638e0006c6f00000000000000000000000000000080616d300000000000000000000000aaaaaaaaaa00000000000000aaaaaaaaaaaa0000000000000000a00000000801000040010000636f6e6e6c6162656c000000000000000000000000000000000000000000000008000000000000000000000000000000434c4153534946590000000000000000000000000000000000ff07000000000008000000000000000000000000000000736e617400000000000000000000000000000000000000000001000000000000100000000000000000000000000000000000000000000000736e6174000000000000000000000000000000000000000000000000000000001000000000001400aaaaaaaaaabb00"/968]}, 0x440)

04:13:42 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x600}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

04:13:42 executing program 2:
ioctl$ifreq_SIOCGIFINDEX_team(0xffffffffffffffff, 0x8933, &(0x7f0000000200)={'team0\x00', <r0=>0x0})
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0xe, 0x0, &(0x7f0000001fd8)=ANY=[], &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0xc3, &(0x7f0000000100)=""/195, 0x0, 0x6, [], r0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x70)

[ 3335.342234] Memory cgroup stats for /syz5: cache:72KB rss:132KB rss_huge:0KB shmem:12KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:108KB inactive_file:0KB active_file:0KB unevictable:0KB
[ 3335.369290] Memory cgroup out of memory: Kill process 7843 (syz-executor.5) score 117 or sacrifice child
[ 3335.379260] Killed process 24909 (syz-executor.5) total-vm:72448kB, anon-rss:108kB, file-rss:34816kB, shmem-rss:0kB
04:13:42 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}, 0x1, 0xe00000000000000}, 0x0)

04:13:42 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"/968]}, 0x440)

04:13:42 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x700}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

[ 3335.500842] syz-executor.5 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=0
04:13:42 executing program 0:
r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x250880, 0x0)
r1 = perf_event_open(&(0x7f00000000c0)={0x4, 0x70, 0x174, 0x6, 0x8, 0x2, 0x0, 0x9, 0x4000, 0x2, 0x5, 0x8, 0x8, 0x2, 0x81, 0x4, 0x3, 0x3, 0x0, 0x228, 0xf5c, 0x6, 0x2, 0x8, 0x2, 0x0, 0x0, 0x3, 0x3, 0x5, 0x3, 0x2, 0x0, 0x9, 0x6, 0x8, 0x7269, 0x0, 0x0, 0x6, 0x0, @perf_bp={&(0x7f0000000000), 0x9}, 0x8008, 0x6, 0x8, 0x8, 0x1d, 0x5, 0x2}, 0xffffffffffffffff, 0x6, r0, 0x9)
readahead(r1, 0x3f, 0x101)
r2 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000080)='/dev/qat_adf_ctl\x00', 0x0, 0x0)
ioctl$VHOST_SET_VRING_BUSYLOOP_TIMEOUT(r2, 0x40096101, 0x0)
r3 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ppp\x00', 0x101002, 0x0)
ioctl$EVIOCGPROP(r3, 0xc004743e, &(0x7f0000000540)=""/246)
ioctl$PPPIOCSMAXCID(r3, 0x40047451, &(0x7f00000000c0)=0x937b)
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x365f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
preadv(0xffffffffffffffff, &(0x7f0000000380), 0x0, 0x0)
openat$ppp(0xffffffffffffff9c, 0x0, 0x400006, 0x0)
syz_open_procfs(0x0, 0x0)
clone(0x100, 0x0, 0xfffffffffffffffe, &(0x7f0000000400), 0xffffffffffffffff)
perf_event_open(&(0x7f0000000300)={0x0, 0x70, 0x2, 0x1, 0x45, 0x8, 0x0, 0x1ff, 0x100, 0x2, 0x3, 0x3, 0x3, 0x1ff, 0x20, 0x400, 0x5, 0xc48, 0x100000001, 0x1, 0x3, 0x76292e6c, 0x7, 0x9, 0x1ff, 0x20, 0x3, 0x0, 0xfffffffffffffffb, 0x77, 0x2, 0x200, 0x7fffffff, 0x3ff, 0x100000000, 0xf80, 0x1, 0x40, 0x0, 0x4, 0x5, @perf_bp={&(0x7f00000002c0), 0xb}, 0x200, 0xfffffffffffffffa, 0x0, 0x0, 0xd40, 0x10001, 0x3}, 0x0, 0x1, r1, 0x9)
openat$selinux_policy(0xffffffffffffff9c, 0x0, 0x0, 0x0)
rt_sigtimedwait(&(0x7f00000005c0), 0x0, &(0x7f0000000200)={0x0, 0x1c9c380}, 0x8)
r4 = getpid()
rt_tgsigqueueinfo(r4, r4, 0x16, &(0x7f0000000100))
syz_open_dev$video4linux(&(0x7f0000000240)='/dev/v4l-subdev#\x00', 0x75bf, 0x20000)
prctl$PR_CAP_AMBIENT(0x2f, 0x0, 0x0)
ptrace(0x10, r4)
ptrace$pokeuser(0x6, r4, 0x388, 0xffffffffffffffff)
timer_create(0x0, &(0x7f0000000280)={0x0, 0x0, 0x0, @thr={0x0, 0x0}}, 0x0)
ioctl$PPPIOCSFLAGS1(r3, 0x40047459, &(0x7f0000000180)=0x17642c1)
ptrace(0x4207, r4)

04:13:42 executing program 2:
r0 = syz_open_dev$vcsa(&(0x7f00000000c0)='/dev/vcsa#\x00', 0x1, 0x0)
ioctl(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mmap(&(0x7f00000f0000/0x4000)=nil, 0x4000, 0x0, 0x31, 0xffffffffffffffff, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x5c831, 0xffffffffffffffff, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
getxattr(0x0, &(0x7f0000000180)=@random={'trusted.', '/dev/vcsa#\x00'}, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
getsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, 0x0, 0x0)
getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, 0x0, 0x0)
getegid()
ioctl$KVM_TRANSLATE(r3, 0xc018ae85, &(0x7f0000000000)={0x2, 0x2, 0xfc8, 0x3, 0x4})
sendmsg$inet6(0xffffffffffffffff, &(0x7f0000000800)={&(0x7f0000000040)={0xa, 0x0, 0x6, @rand_addr="60495b3d5ce81049569066aab6d98a18", 0x1000}, 0x1c, &(0x7f0000000380)=[{&(0x7f0000000100)="d442976e0330d2cd39556edbb2a37d94e6c74b4d599ad978b508ffc2abc97a6ba58c0e133872d76188eab9aebed535d8536871fbf0191c0fdc9f050db0ae0f65", 0x40}, {&(0x7f00000001c0)="05e54e389872772f9ee4d63e20b4be35744c681a92132cda54998492026f662c87bb88e9c0b54243d313d2f79e88bcd9c050af88219084a03dc6da7294a8a2bbce71167c72bc4dc7a9137737f4", 0x4d}, {&(0x7f0000000240)}, {&(0x7f0000000340)="eeb029f2546b7f", 0x7}], 0x4, &(0x7f0000000540)=[@pktinfo={{0x24, 0x29, 0x32, {@mcast2}}}, @hopopts_2292={{0x150, 0x29, 0x36, {0x89, 0x26, [], [@calipso={0x7, 0x38, {0x7, 0xc, 0x6, 0x207, [0x0, 0x9, 0x0, 0x9, 0x0, 0x0]}}, @generic={0x0, 0x9d, "ba8a8008225aa85180063f2da53d8ced55a9abe419094eb7db9053147fba0053e9bb91cb5024b8fd3a5fcfda6f040c9015469fb9aaa6579dfac9e189115858c0224d8d5de4f11c83c11b193853280738322afcfac228b1696dea53dff2a378e6bf54d0af7fd455830958ab25f62893f0b6d48b77b520b9acbc6a4ef1b24a533b87b350c9448c1332220cbdeaee71cec775fc921259c19c6eff282dbee8"}, @jumbo={0xc2, 0x4, 0x1b72c0c9}, @pad1, @calipso={0x7, 0x8, {0x0, 0x0, 0x0, 0x5}}, @generic={0x9, 0x32, "9e1d9935a6417bc80d095aadf4d290a07465478981055cbaf254c7c37f7cd805e2c224bfad577972ce5e7527179155b18879"}, @hao={0xc9, 0x10, @loopback}]}}}, @dstopts={{0x38, 0x29, 0x37, {0x3a, 0x3, [], [@pad1, @ra={0x5, 0x2, 0x5}, @calipso={0x7, 0x10, {0x7f, 0x2, 0x0, 0x6, [0x8]}}]}}}], 0x1b0}, 0x20000000)
ioctl$BLKALIGNOFF(r0, 0x127a, &(0x7f0000000140))
setsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000cfc000/0x18000)=nil, 0x0, 0x0, 0x1d000080, 0x0, 0x0)
fcntl$setstatus(0xffffffffffffffff, 0x4, 0x2000)

[ 3335.623602] syz-executor.5 cpuset=syz5 mems_allowed=0-1
[ 3335.636368] CPU: 0 PID: 24948 Comm: syz-executor.5 Not tainted 4.19.66 #40
[ 3335.643408] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3335.652770] Call Trace:
[ 3335.655376]  dump_stack+0x172/0x1f0
[ 3335.659025]  dump_header+0x15e/0xa55
[ 3335.662764]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 3335.667882]  ? ___ratelimit+0x60/0x595
[ 3335.671779]  ? do_raw_spin_unlock+0x57/0x270
[ 3335.676208]  oom_kill_process.cold+0x10/0x6ef
[ 3335.680726]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 3335.686283]  ? task_will_free_mem+0x139/0x6e0
[ 3335.690808]  out_of_memory+0x936/0x12d0
[ 3335.694806]  ? lock_downgrade+0x810/0x810
[ 3335.698971]  ? oom_killer_disable+0x280/0x280
[ 3335.703477]  ? find_held_lock+0x35/0x130
[ 3335.707564]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 3335.712424]  ? memcg_event_wake+0x230/0x230
[ 3335.716768]  ? do_raw_spin_unlock+0x57/0x270
[ 3335.721191]  ? _raw_spin_unlock+0x2d/0x50
[ 3335.725361]  try_charge+0x1028/0x15b0
[ 3335.729188]  ? find_held_lock+0x35/0x130
[ 3335.729211]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 3335.729234]  ? kasan_check_read+0x11/0x20
[ 3335.729256]  ? get_mem_cgroup_from_mm+0x156/0x320
[ 3335.729275]  mem_cgroup_try_charge+0x259/0x6b0
[ 3335.729295]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 3335.729314]  wp_page_copy+0x430/0x16a0
[ 3335.729337]  ? pmd_pfn+0x1d0/0x1d0
[ 3335.729355]  ? kasan_check_read+0x11/0x20
[ 3335.729370]  ? do_raw_spin_unlock+0x57/0x270
[ 3335.729388]  do_wp_page+0x57d/0x10b0
[ 3335.729408]  ? finish_mkwrite_fault+0x4f0/0x4f0
[ 3335.729423]  ? kasan_check_write+0x14/0x20
[ 3335.729437]  ? do_raw_spin_lock+0xc8/0x240
[ 3335.729457]  __handle_mm_fault+0x2305/0x3f80
[ 3335.794102]  ? vmf_insert_mixed_mkwrite+0x90/0x90
[ 3335.798983]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 3335.803669]  handle_mm_fault+0x1b5/0x690
[ 3335.807753]  __do_page_fault+0x62a/0xe90
[ 3335.811828]  ? vmalloc_fault+0x740/0x740
[ 3335.815900]  ? trace_hardirqs_off_caller+0x65/0x220
[ 3335.820925]  ? trace_hardirqs_on_caller+0x6a/0x220
[ 3335.825864]  ? page_fault+0x8/0x30
[ 3335.829426]  do_page_fault+0x71/0x57d
[ 3335.833239]  ? page_fault+0x8/0x30
[ 3335.836795]  page_fault+0x1e/0x30
[ 3335.840255] RIP: 0033:0x40f9b6
[ 3335.843455] Code: 0b 66 00 49 8b 89 c8 02 00 00 49 8b 91 c0 02 00 00 48 89 4a 08 49 8b 89 c8 02 00 00 48 89 11 48 c7 05 fa 0a 66 00 00 00 00 00 <48> c7 05 d7 54 30 00 90 4e 71 00 31 d2 48 c7 05 c2 54 30 00 90 4e
[ 3335.862364] RSP: 002b:00007ffd53165458 EFLAGS: 00010246
04:13:42 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"/968]}, 0x440)

[ 3335.867738] RAX: 00000000027d5c00 RBX: 00007ffd53165460 RCX: 0000000000a704a0
[ 3335.875010] RDX: 0000000000a704a0 RSI: 0000000000714e90 RDI: 00000000027d5c20
[ 3335.882283] RBP: 00007ffd531654a0 R08: 0000000000000001 R09: 00000000027d5940
[ 3335.889560] R10: 00000000027d5c10 R11: 0000000000000202 R12: 0000000000000001
[ 3335.896860] R13: 0000000000000000 R14: 0000000000000000 R15: 00007ffd531654f0
[ 3335.964869] QAT: failed to copy from user cfg_data.
[ 3336.007843] Task in /syz5 killed as a result of limit of /syz5
[ 3336.014399] memory: usage 307200kB, limit 307200kB, failcnt 8560
[ 3336.025148] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3336.032169] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3336.051760] Memory cgroup stats for /syz5: cache:72KB rss:132KB rss_huge:0KB shmem:12KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:100KB inactive_file:0KB active_file:0KB unevictable:0KB
[ 3336.086222] QAT: failed to copy from user cfg_data.
[ 3336.139516] Memory cgroup out of memory: Kill process 7843 (syz-executor.5) score 117 or sacrifice child
[ 3336.160004] Killed process 24948 (syz-executor.5) total-vm:72448kB, anon-rss:108kB, file-rss:34816kB, shmem-rss:0kB
[ 3336.181672] oom_reaper: reaped process 24948 (syz-executor.5), now anon-rss:0kB, file-rss:34624kB, shmem-rss:0kB
[ 3336.209342] syz-executor.5 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=0
[ 3336.227670] syz-executor.5 cpuset=syz5 mems_allowed=0-1
[ 3336.235287] CPU: 0 PID: 7843 Comm: syz-executor.5 Not tainted 4.19.66 #40
[ 3336.242239] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3336.251626] Call Trace:
[ 3336.254226]  dump_stack+0x172/0x1f0
[ 3336.257844]  dump_header+0x15e/0xa55
[ 3336.261551]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 3336.266648]  ? ___ratelimit+0x60/0x595
[ 3336.270524]  ? do_raw_spin_unlock+0x57/0x270
[ 3336.275030]  oom_kill_process.cold+0x10/0x6ef
[ 3336.279532]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 3336.285068]  ? task_will_free_mem+0x139/0x6e0
[ 3336.289556]  out_of_memory+0x936/0x12d0
[ 3336.293526]  ? oom_killer_disable+0x280/0x280
[ 3336.298008]  ? find_held_lock+0x35/0x130
[ 3336.302063]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 3336.306900]  ? memcg_event_wake+0x230/0x230
[ 3336.311212]  ? do_raw_spin_unlock+0x57/0x270
[ 3336.315700]  ? _raw_spin_unlock+0x2d/0x50
[ 3336.319833]  try_charge+0xd25/0x15b0
[ 3336.323533]  ? find_held_lock+0x35/0x130
[ 3336.327582]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 3336.332431]  ? kasan_check_read+0x11/0x20
[ 3336.336573]  ? get_mem_cgroup_from_mm+0x156/0x320
[ 3336.341406]  mem_cgroup_try_charge+0x259/0x6b0
[ 3336.346002]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 3336.350924]  wp_page_copy+0x430/0x16a0
[ 3336.354802]  ? pmd_pfn+0x1d0/0x1d0
[ 3336.358330]  ? kasan_check_read+0x11/0x20
[ 3336.362465]  ? do_raw_spin_unlock+0x57/0x270
[ 3336.366874]  do_wp_page+0x57d/0x10b0
[ 3336.370576]  ? finish_mkwrite_fault+0x4f0/0x4f0
[ 3336.375337]  ? kasan_check_write+0x14/0x20
[ 3336.379559]  ? do_raw_spin_lock+0xc8/0x240
[ 3336.383784]  __handle_mm_fault+0x2305/0x3f80
[ 3336.388273]  ? vmf_insert_mixed_mkwrite+0x90/0x90
[ 3336.393113]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 3336.397774]  handle_mm_fault+0x1b5/0x690
[ 3336.401829]  __do_page_fault+0x62a/0xe90
[ 3336.405884]  ? blkg_prfill_rwstat_field_recursive+0x100/0x100
[ 3336.411758]  ? vmalloc_fault+0x740/0x740
[ 3336.415819]  ? trace_hardirqs_off_caller+0x65/0x220
[ 3336.420823]  ? trace_hardirqs_on_caller+0x6a/0x220
[ 3336.425745]  ? page_fault+0x8/0x30
[ 3336.429277]  do_page_fault+0x71/0x57d
[ 3336.433102]  ? page_fault+0x8/0x30
[ 3336.436633]  page_fault+0x1e/0x30
[ 3336.440068] RIP: 0033:0x457f5a
[ 3336.443248] Code: 48 85 db 74 b6 41 bc ca 00 00 00 eb 0c 0f 1f 00 48 8b 5b 08 48 85 db 74 a2 48 8b 3b 48 8b 47 10 48 85 c0 74 05 ff d0 48 8b 3b <f0> ff 4f 28 0f 94 c0 84 c0 74 db 8b 47 2c 85 c0 74 d4 45 31 d2 ba
[ 3336.462142] RSP: 002b:00007ffd53165460 EFLAGS: 00010246
[ 3336.467494] RAX: 0000000000000000 RBX: 00007ffd53165460 RCX: 0000000000457dfa
[ 3336.474772] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000a74fc8
[ 3336.482030] RBP: 00007ffd531654a0 R08: 0000000000000001 R09: 00000000027d5940
[ 3336.489308] R10: 00000000027d5c10 R11: 0000000000000246 R12: 00000000000000ca
[ 3336.496654] R13: 000000000000369d R14: 0000000000000000 R15: 00007ffd531654f0
[ 3336.506768] Task in /syz5 killed as a result of limit of /syz5
[ 3336.513086] memory: usage 307000kB, limit 307200kB, failcnt 8560
[ 3336.519263] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3336.526145] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3336.532294] Memory cgroup stats for /syz5: cache:72KB rss:132KB rss_huge:0KB shmem:12KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:80KB inactive_file:0KB active_file:0KB unevictable:0KB
[ 3336.552870] Memory cgroup out of memory: Kill process 7843 (syz-executor.5) score 117 or sacrifice child
[ 3336.564245] Killed process 7843 (syz-executor.5) total-vm:72448kB, anon-rss:108kB, file-rss:35776kB, shmem-rss:0kB
[ 3336.576714] oom_reaper: reaped process 7843 (syz-executor.5), now anon-rss:0kB, file-rss:34880kB, shmem-rss:0kB
04:13:43 executing program 5:
r0 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000240)='/dev/dlm-control\x00', 0x40000, 0x0)
ioctl$SNDRV_TIMER_IOCTL_GINFO(r0, 0xc0f85403, &(0x7f0000000280)={{0xffffffffffffffff, 0x0, 0x5830000000000, 0x3, 0x4}, 0xf177, 0xb431, 'id0\x00', 'timer1\x00', 0x0, 0x8b4, 0x81, 0x0, 0x445})
shmat(0x0, &(0x7f0000ffc000/0x4000)=nil, 0x3000)
mbind(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x2, &(0x7f0000000000)=0xffff, 0x2, 0x0)
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0x20b, &(0x7f0000000040)=[{&(0x7f0000000540)="2e000000220005000000c187185095cf0400b0eba0b4d65c0024000051894d5d1dac00"/46, 0x2e}], 0x1}, 0x0)
r2 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000080)='/dev/qat_adf_ctl\x00', 0x200, 0x0)
ioctl$DRM_IOCTL_ADD_CTX(0xffffffffffffffff, 0xc0086420, &(0x7f00000000c0)={<r3=>0x0})
ioctl$DRM_IOCTL_GET_SAREA_CTX(r2, 0xc010641d, &(0x7f0000000200)={r3, &(0x7f0000000100)=""/74})

04:13:43 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x803}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

04:13:43 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="00000000004000000000000000000000000000000000000000000000000000000000000000000000ffffffff020000001d00000601000000080676657468305f746f5f627269646765006e7230000000000000000000000000006772653000000000000000000000000076657468315f746f5f626f6e64000000aaaaaaaaaaaa000000000000aaaaaaaaaaaa00000000000000007000000070000000a80000006172707265706c790000000000000000000000000000000000000000000000001000000000000000aaaaaaaaaaaa0000feffffff0000000009000000000000000000697064647030000000000000000000006272696467655f736c6176655f3100000000000000000000000000000000000067726530000000000000000000000000ffffffffffff0000000000000000000000000000000000000000e0000000180100005001000072617465657374000000000000a3000000000000000000000000000000000000480000000000000064756d6d79300000000000000000000073797a5f74756e0000000ab941773a25a4462a99832900000000000000000000200000000000000000000000000000000000000000000000736e6174000000000000000000000000000000000000000000000000000000001000000000000000aaaaaaaaaaaa000000000000000000006d61726b0000000000000000000000000000000000000000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000002000000feffffff01000000110000000000000000006272696467655f736c6176655f3100000000000000000000000000749638e0006c6f00000000000000000000000000000080616d300000000000000000000000aaaaaaaaaa00000000000000aaaaaaaaaaaa0000000000000000a00000000801000040010000636f6e6e6c6162656c000000000000000000000000000000000000000000000008000000000000000000000000000000434c4153534946590000000000000000000000000000000000ff07000000000008000000000000000000000000000000736e617400000000000000000000000000000000000000000001000000000000100000000000000000000000000000000000000000000000736e6174000000000000000000000000000000000000000000000000000000001000000000001400aaaaaaaaaabb00"/968]}, 0x440)

04:13:43 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}, 0x1, 0xf00000000000000}, 0x0)

04:13:43 executing program 0:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = creat(&(0x7f0000000040)='./file1\x00', 0x0)
fallocate(r0, 0x0, 0x2000000, 0x3)
getuid()
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000080), &(0x7f00000000c0)=0xc)
geteuid()
getsockopt$inet6_IPV6_IPSEC_POLICY(r0, 0x29, 0x22, &(0x7f0000000100)={{{@in6=@mcast2, @in=@initdev}}, {{@in6=@remote}, 0x0, @in=@multicast2}}, &(0x7f0000000200)=0xe8)
getresuid(&(0x7f0000000240), &(0x7f0000000280), &(0x7f00000002c0))
lstat(&(0x7f0000000440)='.\x00', &(0x7f0000000480))
getegid()
getgid()
getegid()
exit_group(0x9)
fsetxattr$system_posix_acl(r0, 0x0, 0x0, 0x0, 0xd2615e6c61ec94)
fallocate(r0, 0x8, 0x0, 0x8000)

04:13:43 executing program 2:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000080)={0x26, 'hash\x00', 0x0, 0x0, 'cmac(camellia-generic)\x00'}, 0x58)
socket$alg(0x26, 0x5, 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000040)="8eff7f0000000000000000554f09817ba8e47dc459943ae8579c18474d02b529", 0x20)

04:13:43 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0xa00}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

04:13:43 executing program 2:
sendmsg$tipc(0xffffffffffffffff, 0x0, 0x0)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$nl_netfilter(r1, &(0x7f0000000580)={0x0, 0x0, 0x0}, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000300)='/dev/kvm\x00', 0x9f7e, 0x0)
getsockopt$inet_sctp6_SCTP_ASSOCINFO(r0, 0x84, 0x22, 0x0, &(0x7f0000000140))
pwritev(r0, &(0x7f00000006c0)=[{&(0x7f0000000180)="933e63625d4047d17bf3ee85ae86837f39ef519e28cac4367d750a829595", 0x1e}, {&(0x7f0000000340)="b375e2662cfd70bf8035b91f251b1f8c684f7ca609b03154a9328d956a79ebd4d0dd9bd1fe62decbaa1f3cf41c023953eee892c3fc980a3e01117496f551569edd2b5580273889f4fc0f", 0x4a}, {&(0x7f00000003c0)="b42b6bbbffd44b400d80c5d24986bf8b0d3296023db87dc11cc726753fbcb698fbd8b76574bacd5b4d42d9467832875c3e61f4d41c4b790efe4aa8d2965401fdb5c87110952d991054bc4b56a182cd2835ed51daea826b503895e4b58d229a635647c5693ebd23284bbfda2afccc3a2b2cda6565b46ba4752ffadb5683cdc4e9a5dd72e787e8a46c591706764a01f9b64eda0750fd12a12a2e", 0x99}, {&(0x7f0000000480)="6948911d13eb97c9938874e0e37fadd5f3d9633aad5ee1f535e6bacea872b3b00deff8a59f47483ce94a35e1594acf5fcb62c26d52ae0d64d3942b0541acaa45f3af4c5eb2ad42783a896f23ad708542e0210cbbebd6a7d74704df274d0f5414e786e1d049dd7f2e2b1c2d17b0fc4c93904ce0758526dc6952d8abf09ba30ba63baf34b7563a308326fc055fec161223fdd2974df02a24b8db5e83a185fe16e3f7bee8ab4099e694f827e49523094dae412a0575ab9fc9d7e6ac970afe39294358c45c69142fa830176b51c626929b294b444c93719789c350d9e778429d1d6f2ca803b89366", 0xe6}, {&(0x7f00000005c0)="348f28fb4f561d5e4f9e10f87ce40f93a0f2f5fb9944756812c76f0dce568735079875474bd1c79e88ccf5749da98084b9a6e3636af4d61dcfed6d0504420d2024a40019786188f4cffef689098f7fc533f9e6e1598e76d47b2f2b3846d0e734dbca102224c293607f0d3d7d46eca6da97c9b6f4286373c78fa8903b24c5f97670cea45ecb845e967c1b44f09391f51092492a886f7c814cb072fc95118e2be5f8e25c21ef4c3d33d11aaea22a0a0e1ef8fa673eb8c13160f1ef998744190d4a9e5b1cacc40027578db33a02df7611e9784e1c1e18055d13b8c4b9a1175bc8ab31eda58bc30b73ca174f699b", 0xec}], 0x5, 0x0)
fcntl$setownex(0xffffffffffffffff, 0xf, 0x0)
socket$inet6_sctp(0xa, 0x5, 0x84)
ioctl$PPPIOCSCOMPRESS(0xffffffffffffffff, 0x4010744d)
clone(0x800000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(0xffffffffffffffff, 0xc08c5332, 0x0)
r2 = perf_event_open(&(0x7f00000000c0)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000040)={<r3=>0x0, r2, 0x0, 0x9, &(0x7f0000000000)='/dev/kvm\x00'}, 0x30)
syz_open_procfs(r3, &(0x7f0000000080)='fdinfo\x00')
r4 = inotify_init1(0x0)
fcntl$setown(r4, 0x8, 0xffffffffffffffff)
process_vm_readv(0x0, &(0x7f0000000240)=[{&(0x7f0000000280)=""/61, 0x144}], 0x1, &(0x7f0000002540)=[{&(0x7f00000001c0)=""/63, 0x3f}], 0x1, 0x8000000000000000)
r5 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r5, 0x1000008912, &(0x7f00000002c0))

04:13:43 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}, 0x1, 0x1000000000000000}, 0x0)

04:13:43 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"/968]}, 0x440)

04:13:43 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0xc00}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

04:13:44 executing program 2:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="11dca50d5e0bcfe47bf070")
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f0000000000)={0x26, 'aead\x00', 0x0, 0x0, 'aegis128-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/net/tun\x00', 0x100, 0x0)
ioctl$FS_IOC_FIEMAP(r2, 0xc020660b, &(0x7f0000000200)={0x0, 0x9, 0x1, 0x6, 0x2, [{0xab, 0x6, 0x200}, {0x9, 0x7f, 0xff, 0x0, 0x0, 0x2404}]})
r3 = accept$alg(r1, 0x0, 0x0)
sendmsg$alg(r3, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000180)=[@assoc={0x18, 0x117, 0x4, 0xd4e5}, @op={0x18, 0x117, 0x3, 0x1}], 0x30}, 0x0)
write$binfmt_script(r3, &(0x7f0000000600)=ANY=[], 0xfec8)
recvmmsg(r3, &(0x7f0000007e00)=[{{&(0x7f0000001240)=@alg, 0x80, &(0x7f0000004700)=[{&(0x7f00000012c0)=""/167, 0x8}, {&(0x7f00000023c0)=""/49, 0x200023f1}, {&(0x7f0000003580)=""/4096, 0x1000}], 0x3, &(0x7f0000004780)=""/245, 0xf5}}], 0x30, 0x0, &(0x7f0000008000)={0x0, 0x989680})
r4 = openat$snapshot(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/snapshot\x00', 0x240000, 0x0)
ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f0000000100)=<r5=>0x0)
ioctl$TIOCSPGRP(r4, 0x5410, &(0x7f0000000140)=r5)

04:13:44 executing program 5:
r0 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000240)='/dev/dlm-control\x00', 0x40000, 0x0)
ioctl$SNDRV_TIMER_IOCTL_GINFO(r0, 0xc0f85403, &(0x7f0000000280)={{0xffffffffffffffff, 0x0, 0x5830000000000, 0x3, 0x4}, 0xf177, 0xb431, 'id0\x00', 'timer1\x00', 0x0, 0x8b4, 0x81, 0x0, 0x445})
shmat(0x0, &(0x7f0000ffc000/0x4000)=nil, 0x3000)
mbind(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x2, &(0x7f0000000000)=0xffff, 0x2, 0x0)
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0x20b, &(0x7f0000000040)=[{&(0x7f0000000540)="2e000000220005000000c187185095cf0400b0eba0b4d65c0025000051894d5d1dac00"/46, 0x2e}], 0x1}, 0x0)
r2 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000080)='/dev/qat_adf_ctl\x00', 0x200, 0x0)
ioctl$DRM_IOCTL_ADD_CTX(0xffffffffffffffff, 0xc0086420, &(0x7f00000000c0)={<r3=>0x0})
ioctl$DRM_IOCTL_GET_SAREA_CTX(r2, 0xc010641d, &(0x7f0000000200)={r3, &(0x7f0000000100)=""/74})

04:13:44 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}, 0x1, 0x3f00000000000000}, 0x0)

04:13:44 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0xe00}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

04:13:44 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"/968]}, 0x440)

04:13:44 executing program 0:
r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/pfkey\x00', 0x501080, 0x0)
ioctl$EVIOCGBITKEY(r0, 0x80404521, &(0x7f0000000040)=""/131)
r1 = socket(0x1e, 0x1, 0x0)
openat$selinux_commit_pending_bools(0xffffffffffffff9c, &(0x7f0000000500)='/selinux/commit_pending_bools\x00', 0x1, 0x0)
r2 = getpid()
getsockopt$inet_sctp_SCTP_SOCKOPT_PEELOFF(r1, 0x84, 0x66, &(0x7f0000000300)={<r3=>0x0, 0x4}, &(0x7f00000001c0)=0xf8)
ioctl$SIOCX25SSUBSCRIP(r1, 0x89e1, &(0x7f00000003c0)={'nlmon0\x00', 0x4, 0x7})
getsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(r1, 0x84, 0x1f, &(0x7f0000000200)={r3, @in6={{0xa, 0x4e24, 0x9, @empty, 0x7f}}, 0xd32a, 0x7}, &(0x7f00000002c0)=0x90)
timer_create(0x0, &(0x7f0000000100)={0x0, 0x11, 0x1, @tid=r2}, &(0x7f0000000140))
write$P9_RSYMLINK(r0, &(0x7f0000000180)={0x14, 0x11, 0x2, {0x0, 0x3}}, 0x14)
recvmmsg(r1, &(0x7f0000002a40)=[{{0x0, 0x0, &(0x7f00000013c0)=[{&(0x7f0000000340)=""/86, 0x56}], 0x1}}], 0x1, 0x0, 0x0)

04:13:44 executing program 2:
bpf$PROG_LOAD(0x5, &(0x7f00000012c0)={0x7, 0x3, &(0x7f0000000040)=ANY=[@ANYBLOB="0089d322e9000013000000000000"], &(0x7f0000000240)='GPL\n\x83\xff\x13\x0f_\xb0\x0e][dCT\xb6\xe2wp\xc5\xa6$\x1e\x8d\xef\xd6S>*\xe1\x06\xbee\\lRcI!l0\xbb\x1f\x80\xfbE\x0e\xc0\xd5\xbe', 0x1, 0x99, &(0x7f0000000180)=""/153}, 0x48)
ioctl$sock_kcm_SIOCKCMCLONE(0xffffffffffffffff, 0x89e2, &(0x7f0000000080)={<r0=>0xffffffffffffffff})
connect$tipc(r0, &(0x7f00000000c0)=@name={0x1e, 0x2, 0x3, {{0x42, 0x4}, 0x2}}, 0x10)

04:13:44 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}, 0x1, 0x4000000000000000}, 0x0)

04:13:44 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0xf00}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

04:13:44 executing program 2:
r0 = gettid()
get_robust_list(r0, &(0x7f0000000100)=&(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)}}, &(0x7f0000000140)=0x18)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x8, 0xe, &(0x7f0000000480)=ANY=[@ANYBLOB="b7000000a5517f5fbfa30000000000001503000028feffff720af0fff8ffffff71a4f0ff00000000b706000000000001dd400300000000003406000001ed000071105400000000006c640000000000007b1300fe00000000850000002e000000b7000000000000009500000000000000023bc065b7a379d179fc9e88af69912435f1b6a693172e61917adef6ee1c8a2b4f8ef1e50beca090f32050e436fe275daf51efd601b6bf01c8e8b1b5e4fef3bef7054815ae98743d1ace4c46631256dd19aed0d600c095199fe3ff3128e599b0eaebbdbd7359a48f5b0afc646cb7796001b1470d1259965a7239456d12cc8d46e5512bb7"], &(0x7f00000001c0)='\x00\xf1)\r*\xbbzL\x8e7\x9e\xaa\xb3y\xb9\xfa!\xad!\xb4\xd4\x94\xa0\x86\xcf\x12#\xb4\xd3n$\x85\x06k\xb2\xf9\xd5\"\xfe\x86 \b\x7f\xe8\x8a\xcf\x89\x9b\xbaR]\xf5{J\x84\x15\xf9)\xf3\xc8\xd5`\xe6\xe6\x9eI\x02\xce\x1fI\xa8w\xc3#\xba\xf5\xe9\xea>\xc7\xab2,\xa0\x84t\xce\x04Tf\xc5\xfe`\'\x9b\xe2MH%\x93\x028\xcb\x0f\xdb\x16\xe2l\x80\xe6\xcd\xceW\x01SS-o`X\xf6\xa4\xc1|\xbe\xc4\xf0\xac1zp\xc9\x89\xef.\xa4\x91\xb4\xf3('}, 0x48)

04:13:44 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}, 0x1, 0x6000000000000000}, 0x0)

04:13:44 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"/968]}, 0x440)

04:13:44 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x4)
writev(r0, &(0x7f000072eff0)=[{&(0x7f0000000100)="480000001500257f09004b01fcfc8c860a0600000017e006000a2b61d2a1f25b15147344d739b3f9f600e30900000000000000000000ffff5bf109000000ed5e0000008e0d861500", 0x48}], 0x10000000000003c7)

[ 3339.243641] IPVS: ftp: loaded support on port[0] = 21
[ 3339.394412] chnl_net:caif_netlink_parms(): no params data found
[ 3339.521453] bridge0: port 1(bridge_slave_0) entered blocking state
[ 3339.528074] bridge0: port 1(bridge_slave_0) entered disabled state
[ 3339.536527] device bridge_slave_0 entered promiscuous mode
[ 3339.544589] bridge0: port 2(bridge_slave_1) entered blocking state
[ 3339.551088] bridge0: port 2(bridge_slave_1) entered disabled state
[ 3339.559283] device bridge_slave_1 entered promiscuous mode
[ 3339.638021] bond0: Enslaving bond_slave_0 as an active interface with an up link
[ 3339.649371] bond0: Enslaving bond_slave_1 as an active interface with an up link
[ 3339.715566] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready
[ 3339.728816] team0: Port device team_slave_0 added
[ 3339.735087] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready
[ 3339.743814] team0: Port device team_slave_1 added
[ 3339.749463] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready
[ 3339.757944] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready
[ 3339.857115] device hsr_slave_0 entered promiscuous mode
[ 3339.913811] device hsr_slave_1 entered promiscuous mode
[ 3339.974014] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready
[ 3339.981819] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready
[ 3340.056248] bridge0: port 2(bridge_slave_1) entered blocking state
[ 3340.062627] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 3340.069329] bridge0: port 1(bridge_slave_0) entered blocking state
[ 3340.075800] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 3340.172087] IPv6: ADDRCONF(NETDEV_UP): bond0: link is not ready
[ 3340.180174] 8021q: adding VLAN 0 to HW filter on device bond0
[ 3340.228305] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[ 3340.238495] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 3340.248990] bridge0: port 1(bridge_slave_0) entered disabled state
[ 3340.256481] bridge0: port 2(bridge_slave_1) entered disabled state
[ 3340.264614] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
[ 3340.280809] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready
[ 3340.287420] 8021q: adding VLAN 0 to HW filter on device team0
[ 3340.353653] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 3340.361739] bridge0: port 1(bridge_slave_0) entered blocking state
[ 3340.368259] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 3340.381544] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[ 3340.389018] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 3340.399061] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 3340.408809] bridge0: port 2(bridge_slave_1) entered blocking state
[ 3340.415220] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 3340.467689] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready
[ 3340.475045] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 3340.539898] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready
[ 3340.547388] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 3340.559601] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready
[ 3340.568508] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 3340.578159] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 3340.587155] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 3340.649698] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready
[ 3340.657482] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 3340.666698] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 3340.677964] IPv6: ADDRCONF(NETDEV_UP): veth0_to_hsr: link is not ready
[ 3340.686797] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 3340.695428] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 3340.759185] IPv6: ADDRCONF(NETDEV_UP): veth1_to_hsr: link is not ready
[ 3340.766947] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 3340.775752] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 3340.787116] IPv6: ADDRCONF(NETDEV_UP): hsr0: link is not ready
[ 3340.794858] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 3340.859385] IPv6: ADDRCONF(NETDEV_UP): vxcan1: link is not ready
[ 3340.872425] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 3341.005586] netlink: 26 bytes leftover after parsing attributes in process `syz-executor.5'.
[ 3341.054339] QAT: Invalid ioctl
[ 3341.850030] syz-executor.5 invoked oom-killer: gfp_mask=0x7080c0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), nodemask=(null), order=3, oom_score_adj=1000
[ 3341.863464] syz-executor.5 cpuset=syz5 mems_allowed=0-1
[ 3341.868852] CPU: 0 PID: 25250 Comm: syz-executor.5 Not tainted 4.19.66 #40
[ 3341.875859] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3341.885218] Call Trace:
[ 3341.887814]  dump_stack+0x172/0x1f0
[ 3341.891438]  dump_header+0x15e/0xa55
[ 3341.895176]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 3341.900311]  ? ___ratelimit+0x60/0x595
[ 3341.904191]  ? do_raw_spin_unlock+0x57/0x270
[ 3341.908594]  oom_kill_process.cold+0x10/0x6ef
[ 3341.913104]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 3341.918656]  ? task_will_free_mem+0x139/0x6e0
[ 3341.923157]  ? find_held_lock+0x35/0x130
[ 3341.927220]  out_of_memory+0x936/0x12d0
[ 3341.931186]  ? lock_downgrade+0x810/0x810
[ 3341.935340]  ? oom_killer_disable+0x280/0x280
[ 3341.939834]  ? find_held_lock+0x35/0x130
[ 3341.943914]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 3341.948755]  ? memcg_event_wake+0x230/0x230
[ 3341.953089]  ? do_raw_spin_unlock+0x57/0x270
[ 3341.957510]  ? _raw_spin_unlock+0x2d/0x50
[ 3341.961732]  try_charge+0x1028/0x15b0
[ 3341.965540]  ? find_held_lock+0x35/0x130
[ 3341.969595]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 3341.974439]  ? get_mem_cgroup_from_mm+0x139/0x320
[ 3341.979300]  ? find_held_lock+0x35/0x130
[ 3341.983363]  ? get_mem_cgroup_from_mm+0x139/0x320
[ 3341.988230]  memcg_kmem_charge_memcg+0x7c/0x130
[ 3341.992924]  ? memcg_kmem_put_cache+0xb0/0xb0
[ 3341.997442]  ? get_mem_cgroup_from_mm+0x156/0x320
[ 3342.002288]  memcg_kmem_charge+0x136/0x370
[ 3342.006513]  __alloc_pages_nodemask+0x3c3/0x750
[ 3342.011220]  ? __alloc_pages_slowpath+0x2870/0x2870
[ 3342.016250]  ? lockdep_hardirqs_on+0x415/0x5d0
[ 3342.020848]  ? trace_hardirqs_on+0x67/0x220
[ 3342.025222]  ? kasan_check_read+0x11/0x20
[ 3342.029376]  copy_process.part.0+0x3e0/0x7a30
[ 3342.033875]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 3342.038993]  ? delayacct_end+0x5c/0x100
[ 3342.042974]  ? __delayacct_freepages_end+0xe0/0x140
[ 3342.047992]  ? __lock_acquire+0x6ee/0x49c0
[ 3342.052223]  ? __cleanup_sighand+0x70/0x70
[ 3342.056646]  ? mark_held_locks+0x100/0x100
[ 3342.060912]  _do_fork+0x257/0xfd0
[ 3342.064392]  ? fork_idle+0x1d0/0x1d0
[ 3342.068111]  ? blkg_prfill_rwstat_field_recursive+0x100/0x100
[ 3342.073997]  ? kasan_check_read+0x11/0x20
[ 3342.078160]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 3342.082944]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 3342.087724]  ? do_syscall_64+0x26/0x620
[ 3342.091698]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 3342.097083]  ? do_syscall_64+0x26/0x620
[ 3342.101068]  __x64_sys_clone+0xbf/0x150
[ 3342.105043]  do_syscall_64+0xfd/0x620
[ 3342.108855]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 3342.114060] RIP: 0033:0x45c1f9
[ 3342.117261] Code: ff 48 85 f6 0f 84 27 8e fb ff 48 83 ee 10 48 89 4e 08 48 89 3e 48 89 d7 4c 89 c2 4d 89 c8 4c 8b 54 24 08 b8 38 00 00 00 0f 05 <48> 85 c0 0f 8c fe 8d fb ff 74 01 c3 31 ed 48 f7 c7 00 00 01 00 75
[ 3342.136176] RSP: 002b:00007ffe59696ad8 EFLAGS: 00000202 ORIG_RAX: 0000000000000038
[ 3342.143898] RAX: ffffffffffffffda RBX: 00007fb5456d1700 RCX: 000000000045c1f9
[ 3342.151196] RDX: 00007fb5456d19d0 RSI: 00007fb5456d0db0 RDI: 00000000003d0f00
[ 3342.158487] RBP: 00007ffe59696cf0 R08: 00007fb5456d1700 R09: 00007fb5456d1700
[ 3342.165777] R10: 00007fb5456d19d0 R11: 0000000000000202 R12: 0000000000000000
[ 3342.173054] R13: 00007ffe59696b8f R14: 00007fb5456d19c0 R15: 000000000075c07c
[ 3342.182780] Task in /syz5 killed as a result of limit of /syz5
[ 3342.188808] memory: usage 307172kB, limit 307200kB, failcnt 8571
[ 3342.212928] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3342.219799] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3342.228887] Memory cgroup stats for /syz5: cache:72KB rss:132KB rss_huge:0KB shmem:12KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:136KB inactive_file:0KB active_file:0KB unevictable:0KB
[ 3342.249859] Memory cgroup out of memory: Kill process 25250 (syz-executor.5) score 1103 or sacrifice child
[ 3342.261399] Killed process 25250 (syz-executor.5) total-vm:72848kB, anon-rss:92kB, file-rss:34816kB, shmem-rss:0kB
[ 3342.279295] oom_reaper: reaped process 25250 (syz-executor.5), now anon-rss:0kB, file-rss:33856kB, shmem-rss:0kB
[ 3342.297668] netlink: 26 bytes leftover after parsing attributes in process `syz-executor.5'.
04:13:50 executing program 5:
r0 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000240)='/dev/dlm-control\x00', 0x40000, 0x0)
ioctl$SNDRV_TIMER_IOCTL_GINFO(r0, 0xc0f85403, &(0x7f0000000280)={{0xffffffffffffffff, 0x0, 0x5830000000000, 0x3, 0x4}, 0xf177, 0xb431, 'id0\x00', 'timer1\x00', 0x0, 0x8b4, 0x81, 0x0, 0x445})
shmat(0x0, &(0x7f0000ffc000/0x4000)=nil, 0x3000)
mbind(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x2, &(0x7f0000000000)=0xffff, 0x2, 0x0)
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0x20b, &(0x7f0000000040)=[{&(0x7f0000000540)="2e000000220005000000c187185095cf0400b0eba0b4d65c0026000051894d5d1dac00"/46, 0x2e}], 0x1}, 0x0)
r2 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000080)='/dev/qat_adf_ctl\x00', 0x200, 0x0)
ioctl$DRM_IOCTL_ADD_CTX(0xffffffffffffffff, 0xc0086420, &(0x7f00000000c0)={<r3=>0x0})
ioctl$DRM_IOCTL_GET_SAREA_CTX(r2, 0xc010641d, &(0x7f0000000200)={r3, &(0x7f0000000100)=""/74})

04:13:50 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x3f00}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

04:13:50 executing program 2:
r0 = getpid()
r1 = syz_open_dev$sndseq(&(0x7f0000000140)='/dev/snd/seq\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000140)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = fcntl$dupfd(r3, 0x0, r2)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0xff)
read(r1, &(0x7f0000000180)=""/28, 0x1c)
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r1, 0x4040534e, &(0x7f0000000080)={0x200000000bd, @time})
ioctl$SNDRV_SEQ_IOCTL_RUNNING_MODE(r1, 0xc0105303, &(0x7f0000000000))
timer_create(0x0, &(0x7f0000000100)={0x0, 0x12, 0x0, @thr={&(0x7f0000000300)="a92b00d8e7ae385efc17810da22d1690ff186bab96aaf32e49e07d81aea157218848976a4722fecfa6a3cc2d59e1eef41a84a07005ad7d4fcd728fe0d75c02bfbb33d1fedb548b5f45db001c33d8d1fc6697c052631777d5f8f4a2417326d437af81db8948ab549f502c0590c0ab5b677d63a7544ca336cb5cbac6fd58c12520248fc0aec299a6108e80dd0c562b08ed952352132d34f3c9b11fb70b84b85a5e9bec425d38ec3f3e3f4c5cc7ccd5924b4d45b440a9b4a8e712bed2959339d632db182a781b26", &(0x7f0000000400)="5a302b3a1f833158ef789a70624c85abc41bb894ae392c54fb03cda3c3133b550b7b8aaa3d8b222048cb6094bff9beae12478b7ddd614510d03a37c232fbfde9ff362893d2dfce2475b05f6e64c97c4f90a8761e347640186e95ecf8471cefc35a6ea966a683b3437795d59e193dac71d1aeda4c51dc5533d246d2d1f69d17d7128c9d2b76b71f6c7f34f9566908c56225511105ac27ee1b7e9d1d661bdb3076104f6beca41379c3738d4e5460fabd3bfa5feb7955d9caf4ca6a823a4d807e3785b7c47c76f65adb40735650769ee7"}}, &(0x7f00000001c0))
timer_settime(0x0, 0x0, &(0x7f00000002c0)={{}, {0x0, 0x1c9c380}}, 0x0)
tkill(r0, 0x1000000000013)

04:13:50 executing program 0:
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = dup3(r1, r0, 0x0)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
mmap(&(0x7f0000000000/0x95c000)=nil, 0x95c000, 0x1, 0x4031, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0xf)
getsockopt$inet_sctp_SCTP_GET_PEER_ADDR_INFO(r2, 0x84, 0xf, &(0x7f0000000000)={<r3=>0x0, @in6={{0xa, 0x4e21, 0xfffffffffffff000, @initdev={0xfe, 0x88, [], 0x0, 0x0}, 0x8000}}, 0xf2, 0x4, 0x4, 0x94300000, 0x7}, &(0x7f0000000100)=0x98)
getsockopt$inet_sctp_SCTP_STREAM_SCHEDULER(r2, 0x84, 0x7b, &(0x7f0000000140)={r3, 0x9}, &(0x7f0000000180)=0x8)
syz_genetlink_get_family_id$tipc2(&(0x7f00000002c0)='TIPCv2\x00')

04:13:50 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}, 0x1, 0x6558000000000000}, 0x0)

04:13:50 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"/968]}, 0x440)

[ 3344.145596] syz-executor.5 invoked oom-killer: gfp_mask=0x7080c0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), nodemask=(null), order=3, oom_score_adj=1000
[ 3344.171122] syz-executor.5 cpuset=syz5 mems_allowed=0-1
[ 3344.178046] CPU: 1 PID: 25261 Comm: syz-executor.5 Not tainted 4.19.66 #40
[ 3344.185075] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
04:13:51 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x4000}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

[ 3344.194436] Call Trace:
[ 3344.197039]  dump_stack+0x172/0x1f0
[ 3344.200697]  dump_header+0x15e/0xa55
[ 3344.204442]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 3344.209581]  ? ___ratelimit+0x60/0x595
[ 3344.213479]  ? do_raw_spin_unlock+0x57/0x270
[ 3344.217990]  oom_kill_process.cold+0x10/0x6ef
[ 3344.222507]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 3344.228068]  ? task_will_free_mem+0x139/0x6e0
[ 3344.232583]  ? find_held_lock+0x35/0x130
[ 3344.236670]  out_of_memory+0x936/0x12d0
[ 3344.240676]  ? lock_downgrade+0x810/0x810
[ 3344.244930]  ? oom_killer_disable+0x280/0x280
[ 3344.249441]  ? find_held_lock+0x35/0x130
[ 3344.253532]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 3344.258389]  ? memcg_event_wake+0x230/0x230
[ 3344.262730]  ? do_raw_spin_unlock+0x57/0x270
[ 3344.267160]  ? _raw_spin_unlock+0x2d/0x50
[ 3344.271325]  try_charge+0x1028/0x15b0
[ 3344.275143]  ? find_held_lock+0x35/0x130
[ 3344.279243]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 3344.284098]  ? get_mem_cgroup_from_mm+0x139/0x320
[ 3344.288952]  ? find_held_lock+0x35/0x130
04:13:51 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x5865}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

[ 3344.293035]  ? get_mem_cgroup_from_mm+0x139/0x320
[ 3344.297913]  memcg_kmem_charge_memcg+0x7c/0x130
[ 3344.302600]  ? memcg_kmem_put_cache+0xb0/0xb0
[ 3344.307117]  ? get_mem_cgroup_from_mm+0x156/0x320
[ 3344.312010]  memcg_kmem_charge+0x136/0x370
[ 3344.316265]  __alloc_pages_nodemask+0x3c3/0x750
[ 3344.320948]  ? __alloc_pages_slowpath+0x2870/0x2870
[ 3344.325989]  ? lockdep_hardirqs_on+0x415/0x5d0
[ 3344.330587]  ? trace_hardirqs_on+0x67/0x220
[ 3344.334920]  ? kasan_check_read+0x11/0x20
[ 3344.339089]  copy_process.part.0+0x3e0/0x7a30
04:13:51 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x6000}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

[ 3344.343608]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 3344.348726]  ? delayacct_end+0x5c/0x100
[ 3344.352716]  ? __delayacct_freepages_end+0xe0/0x140
[ 3344.357759]  ? __lock_acquire+0x6ee/0x49c0
[ 3344.362014]  ? __cleanup_sighand+0x70/0x70
[ 3344.366265]  ? mark_held_locks+0x100/0x100
[ 3344.370529]  _do_fork+0x257/0xfd0
[ 3344.374012]  ? fork_idle+0x1d0/0x1d0
[ 3344.377744]  ? blkg_prfill_rwstat_field_recursive+0x100/0x100
[ 3344.383648]  ? kasan_check_read+0x11/0x20
[ 3344.387810]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 3344.392581]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 3344.397346]  ? do_syscall_64+0x26/0x620
[ 3344.401330]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 3344.406704]  ? do_syscall_64+0x26/0x620
[ 3344.410686]  __x64_sys_clone+0xbf/0x150
[ 3344.414678]  do_syscall_64+0xfd/0x620
[ 3344.418490]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 3344.423683] RIP: 0033:0x45c1f9
[ 3344.426885] Code: ff 48 85 f6 0f 84 27 8e fb ff 48 83 ee 10 48 89 4e 08 48 89 3e 48 89 d7 4c 89 c2 4d 89 c8 4c 8b 54 24 08 b8 38 00 00 00 0f 05 <48> 85 c0 0f 8c fe 8d fb ff 74 01 c3 31 ed 48 f7 c7 00 00 01 00 75
04:13:51 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x6558}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

04:13:51 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"/968]}, 0x440)

04:13:51 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}, 0x1, 0x8100000000000000}, 0x0)

[ 3344.445795] RSP: 002b:00007ffe59696ad8 EFLAGS: 00000202 ORIG_RAX: 0000000000000038
[ 3344.453520] RAX: ffffffffffffffda RBX: 00007fb545713700 RCX: 000000000045c1f9
[ 3344.460792] RDX: 00007fb5457139d0 RSI: 00007fb545712db0 RDI: 00000000003d0f00
[ 3344.468066] RBP: 00007ffe59696cf0 R08: 00007fb545713700 R09: 00007fb545713700
[ 3344.475344] R10: 00007fb5457139d0 R11: 0000000000000202 R12: 0000000000000000
[ 3344.482622] R13: 00007ffe59696b8f R14: 00007fb5457139c0 R15: 000000000075bf2c
[ 3344.527299] Task in /syz5 killed as a result of limit of /syz5
[ 3344.561557] memory: usage 307128kB, limit 307200kB, failcnt 8636
[ 3344.588675] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3344.614655] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3344.631796] Memory cgroup stats for /syz5: cache:72KB rss:0KB rss_huge:0KB shmem:12KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:104KB inactive_file:0KB active_file:0KB unevictable:0KB
04:13:51 executing program 5:
r0 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000240)='/dev/dlm-control\x00', 0x40000, 0x0)
ioctl$SNDRV_TIMER_IOCTL_GINFO(r0, 0xc0f85403, &(0x7f0000000280)={{0xffffffffffffffff, 0x0, 0x5830000000000, 0x3, 0x4}, 0xf177, 0xb431, 'id0\x00', 'timer1\x00', 0x0, 0x8b4, 0x81, 0x0, 0x445})
shmat(0x0, &(0x7f0000ffc000/0x4000)=nil, 0x3000)
mbind(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x2, &(0x7f0000000000)=0xffff, 0x2, 0x0)
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0x20b, &(0x7f0000000040)=[{&(0x7f0000000540)="2e000000220005000000c187185095cf0400b0eba0b4d65c0027000051894d5d1dac00"/46, 0x2e}], 0x1}, 0x0)
r2 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000080)='/dev/qat_adf_ctl\x00', 0x200, 0x0)
ioctl$DRM_IOCTL_ADD_CTX(0xffffffffffffffff, 0xc0086420, &(0x7f00000000c0)={<r3=>0x0})
ioctl$DRM_IOCTL_GET_SAREA_CTX(r2, 0xc010641d, &(0x7f0000000200)={r3, &(0x7f0000000100)=""/74})

04:13:51 executing program 0:
r0 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x5, 0x0, 0x0, 0x0, 0x0, 0x1, 0x3e, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, r0, 0x0)
mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x11, r1, 0x0)
ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, r1)
r2 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r2, 0x1000008912, &(0x7f0000000000)="11dca5055e0bcfe47bf070")
r3 = gettid()
syz_open_procfs(r3, &(0x7f0000272000))

[ 3344.685592] Memory cgroup out of memory: Kill process 25261 (syz-executor.5) score 1103 or sacrifice child
[ 3344.696617] Killed process 25261 (syz-executor.5) total-vm:72580kB, anon-rss:96kB, file-rss:34816kB, shmem-rss:0kB
[ 3344.709336] oom_reaper: reaped process 25261 (syz-executor.5), now anon-rss:0kB, file-rss:33856kB, shmem-rss:0kB
[ 3344.788989] syz-executor.5 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 3344.800479] syz-executor.5 cpuset=syz5 mems_allowed=0-1
[ 3344.812851] CPU: 1 PID: 25294 Comm: syz-executor.5 Not tainted 4.19.66 #40
[ 3344.819887] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3344.829272] Call Trace:
[ 3344.831904]  dump_stack+0x172/0x1f0
[ 3344.835557]  dump_header+0x15e/0xa55
[ 3344.839287]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 3344.844412]  ? ___ratelimit+0x60/0x595
[ 3344.848307]  ? do_raw_spin_unlock+0x57/0x270
[ 3344.852737]  oom_kill_process.cold+0x10/0x6ef
[ 3344.857240]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 3344.862884]  ? task_will_free_mem+0x139/0x6e0
[ 3344.867383]  out_of_memory+0x936/0x12d0
[ 3344.871365]  ? lock_downgrade+0x810/0x810
[ 3344.875521]  ? oom_killer_disable+0x280/0x280
[ 3344.880039]  ? find_held_lock+0x35/0x130
[ 3344.884127]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 3344.888978]  ? memcg_event_wake+0x230/0x230
[ 3344.893596]  ? do_raw_spin_unlock+0x57/0x270
[ 3344.898007]  ? _raw_spin_unlock+0x2d/0x50
[ 3344.902223]  try_charge+0x1028/0x15b0
[ 3344.906138]  ? find_held_lock+0x35/0x130
[ 3344.910272]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 3344.915142]  ? kasan_check_read+0x11/0x20
[ 3344.919315]  ? get_mem_cgroup_from_mm+0x156/0x320
[ 3344.924183]  mem_cgroup_try_charge+0x259/0x6b0
[ 3344.928781]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 3344.933740]  wp_page_copy+0x430/0x16a0
[ 3344.937654]  ? pmd_pfn+0x1d0/0x1d0
[ 3344.941245]  ? kasan_check_read+0x11/0x20
[ 3344.945397]  ? do_raw_spin_unlock+0x57/0x270
[ 3344.949820]  do_wp_page+0x57d/0x10b0
[ 3344.953552]  ? lock_acquire+0x16f/0x3f0
[ 3344.957620]  ? finish_mkwrite_fault+0x4f0/0x4f0
[ 3344.962383]  ? kasan_check_write+0x14/0x20
[ 3344.966623]  ? do_raw_spin_lock+0xc8/0x240
[ 3344.970877]  __handle_mm_fault+0x2305/0x3f80
[ 3344.975293]  ? vmf_insert_mixed_mkwrite+0x90/0x90
[ 3344.980164]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 3344.984894]  handle_mm_fault+0x1b5/0x690
04:13:51 executing program 2:
r0 = socket$inet6(0xa, 0x3, 0x6)
r1 = syz_open_procfs(0x0, &(0x7f0000000080)='net/dev_mcast\x00')
connect(r0, &(0x7f0000000000)=@un=@file={0x0, './file0\x00'}, 0x80)
sendfile(r0, r1, &(0x7f00000000c0)=0x13ee, 0x6)

04:13:51 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}, 0x1, 0x88a8ffff00000000}, 0x0)

04:13:51 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"/968]}, 0x440)

04:13:51 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x6e02}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

04:13:51 executing program 0:
pipe2(&(0x7f0000000040)={<r0=>0xffffffffffffffff}, 0x4000)
setsockopt$inet6_udp_encap(r0, 0x11, 0x64, &(0x7f0000000140)=0x4, 0x4)
syz_mount_image$gfs2(&(0x7f0000000000)='gfs2\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)=ANY=[@ANYBLOB="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"])

[ 3344.988963]  __do_page_fault+0x62a/0xe90
[ 3344.993032]  ? vmalloc_fault+0x740/0x740
[ 3344.997102]  ? trace_hardirqs_off_caller+0x65/0x220
[ 3345.002107]  ? trace_hardirqs_on_caller+0x6a/0x220
[ 3345.007030]  ? page_fault+0x8/0x30
[ 3345.010651]  do_page_fault+0x71/0x57d
[ 3345.014462]  ? page_fault+0x8/0x30
[ 3345.018015]  page_fault+0x1e/0x30
[ 3345.021477] RIP: 0033:0x40e9c8
[ 3345.024679] Code: 8b 34 c6 4a 8d 04 2e 48 3d ff ff ff 7e 0f 86 77 ff ff ff bf 35 ee 4b 00 31 c0 e8 63 33 ff ff 31 ff e8 ac 2f ff ff 0f 1f 40 00 <89> 3c b5 00 00 73 00 eb b6 31 ed 0f 1f 44 00 00 80 3d 9e 1a 66 00
[ 3345.043778] RSP: 002b:00007ffe59696b40 EFLAGS: 00010246
[ 3345.049428] RAX: 000000002a8522ee RBX: 000000007af22c35 RCX: 0000001b2e720000
[ 3345.056738] RDX: 0000000000000000 RSI: 00000000000002ee RDI: ffffffff2a8522ee
[ 3345.064040] RBP: 000000000000000c R08: 000000002a8522ee R09: 000000002a8522f2
[ 3345.064049] R10: 00007ffe59696ce0 R11: 0000000000000246 R12: 000000000075bfa8
[ 3345.064057] R13: 0000000080000000 R14: 00007fb547714008 R15: 000000000000000c
04:13:52 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x8100}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

04:13:52 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"/968]}, 0x440)

[ 3345.132572] gfs2: invalid mount option: statfsû_percent=0x0000000000000000
04:13:52 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}, 0x1, 0x9effffff00000000}, 0x0)

04:13:52 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
prctl$PR_MCE_KILL(0x21, 0x0, 0x3)
r1 = openat$full(0xffffffffffffff9c, &(0x7f0000000080)='/dev/full\x00', 0x8000, 0x0)
mq_notify(r1, &(0x7f0000000240)={0x0, 0xf, 0x4, @thr={&(0x7f0000000100)="ae553d614a6c571ba78fc705dde333f33f1c3c2607862933c759492510f492fd0c43c69bc25bddd471522fa1610827b9cd674af34f943b6f30b79d4ef1c7658e207f36b28ead3f4fabdcd6e4c22b33ee67cbbad42d208ca856fb63793b445c20571ce91822ec6b26d3aa0e7769a22fb6492ed4aac6fdce92b760aefd85eb4a1d7cf95a405896c870b5c184b0d4be461b54aded4f7a7f61ec90e3f3cc1010b33aeb7a5dea786b9a02c885b034df9e5e6d1f17cb91cab9d9fdabe46d6fd8ba57b40091ff3127a52beab8c086ccac1c3153518bf56a465dd062a5fa8231492342f4d2ef8ffd14b93de2a1e443baec16", &(0x7f0000000200)="f69ac4f087704095bbddf81b50e2f1"}})
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)=@ipv6_newroute={0x30, 0x18, 0x311, 0x0, 0x0, {}, [@RTA_GATEWAY={0x14, 0x5, @loopback}]}, 0x30}}, 0x0)

[ 3345.227030] gfs2: can't parse mount arguments
[ 3345.239341] Task in /syz5 killed as a result of limit of /syz5
[ 3345.254550] memory: usage 307200kB, limit 307200kB, failcnt 8670
[ 3345.292317] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3345.311778] gfs2: invalid mount option: statfsû_percent=0x0000000000000000
04:13:52 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0xf000}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

[ 3345.340524] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3345.347029] gfs2: can't parse mount arguments
[ 3345.364514] Memory cgroup stats for /syz5: cache:72KB rss:0KB rss_huge:0KB shmem:12KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:140KB inactive_file:0KB active_file:0KB unevictable:0KB
[ 3345.489007] Memory cgroup out of memory: Kill process 25294 (syz-executor.5) score 1103 or sacrifice child
[ 3345.518265] Killed process 25294 (syz-executor.5) total-vm:72580kB, anon-rss:96kB, file-rss:34816kB, shmem-rss:0kB
04:13:52 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"/968]}, 0x440)

04:13:52 executing program 5:
r0 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000240)='/dev/dlm-control\x00', 0x40000, 0x0)
ioctl$SNDRV_TIMER_IOCTL_GINFO(r0, 0xc0f85403, &(0x7f0000000280)={{0xffffffffffffffff, 0x0, 0x5830000000000, 0x3, 0x4}, 0xf177, 0xb431, 'id0\x00', 'timer1\x00', 0x0, 0x8b4, 0x81, 0x0, 0x445})
shmat(0x0, &(0x7f0000ffc000/0x4000)=nil, 0x3000)
mbind(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x2, &(0x7f0000000000)=0xffff, 0x2, 0x0)
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0x20b, &(0x7f0000000040)=[{&(0x7f0000000540)="2e000000220005000000c187185095cf0400b0eba0b4d65c0028000051894d5d1dac00"/46, 0x2e}], 0x1}, 0x0)
r2 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000080)='/dev/qat_adf_ctl\x00', 0x200, 0x0)
ioctl$DRM_IOCTL_ADD_CTX(0xffffffffffffffff, 0xc0086420, &(0x7f00000000c0)={<r3=>0x0})
ioctl$DRM_IOCTL_GET_SAREA_CTX(r2, 0xc010641d, &(0x7f0000000200)={r3, &(0x7f0000000100)=""/74})

04:13:52 executing program 0:
pipe(&(0x7f0000000080)={<r0=>0xffffffffffffffff})
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_INFO(r0, 0x40bc5311, &(0x7f00000000c0)={0x20, 0x2, 'client1\x00', 0x808981e5a40b6258, "b7fdd492a9ac584e", "7fded637e5e1e634dbe19a2b4cc1b05af2d392d58db23080592f2e1ced815b39", 0x3, 0x101})
syz_mount_image$msdos(&(0x7f0000000000)='msdos\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x8203, &(0x7f0000000d00)=ANY=[@ANYBLOB='dos1xfloppy,nodots'])

04:13:52 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0xfeff}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

04:13:52 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}, 0x1, 0xcb45000000000000}, 0x0)

04:13:52 executing program 2:
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0)
write$RDMA_USER_CM_CMD_BIND(r0, &(0x7f00000001c0)={0x14, 0x88, 0xfa00, {0xffffffffffffffff, 0x30, 0x2, @ib={0x2, 0x0, 0x0, {"3b6e89044f4f9f558df999a8dd4eb979"}}}}, 0x3cf)

[ 3345.534551] oom_reaper: reaped process 25294 (syz-executor.5), now anon-rss:0kB, file-rss:33856kB, shmem-rss:0kB
04:13:52 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}, 0x1, 0xf0ffffff00000000}, 0x0)

04:13:52 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0xff0f}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

04:13:52 executing program 0:
vmsplice(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f0000000200)}], 0x1, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000440)='/dev/kvm\x00', 0x0, 0x0)
ioctl$FICLONE(r0, 0x40049409, r0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
sendmsg$IPVS_CMD_GET_DEST(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000240)=ANY=[@ANYBLOB="14bc42000000000000000000000800000900de56b5000000005c5300000008000800010000000800051b080003000800050f01"], 0x1}}, 0x0)
utimensat(0xffffffffffffffff, &(0x7f0000000180)='./file0\x00', 0x0, 0x0)
sendmsg$IPVS_CMD_GET_DEST(0xffffffffffffffff, &(0x7f0000001080)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000080)=ANY=[@ANYBLOB="04462019d9476a254653359a2ce14dd662484414ad1928197fcbf557b8624d66f4a745417864272b2620d206f64b3a9baa6564ce9910b9d938e1797a96b99998e9d5701f03533542580cbc6a483d22470dd2f5d8e4387e15a8e35537e7b0b141a4e370eaf014bfeda41474c80186dd55ae6f67d15373c9ad70dca52c4806f13919adfeb817193d3ae90b8a44bc0881b0234e95ab0a000000000000000000"], 0x1}}, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/ubi_ctrl\x00', 0x40040, 0x0)
ioctl$EVIOCGABS20(r3, 0x80184560, &(0x7f0000000480)=""/158)
inotify_init()
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text64={0x40, &(0x7f00000002c0)="b8010000000f01c166b8e2000f00d8b9800000c00f3235004000000f304a0fc75f20c44379608d00000100f22e0f01ca67440ff6143f66ba4000b846c95182ef0f01cf400f01df", 0x47}], 0xaaaaaaaaaaaace6, 0x0, 0x0, 0xeb)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x1000, &(0x7f0000010000/0x1000)=nil})
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
ioctl$KVM_GET_DIRTY_LOG(r2, 0x4010ae42, &(0x7f0000000000)={0x20ceb6c851a69349, 0x0, &(0x7f0000005000/0x4000)=nil})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

04:13:52 executing program 2:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$sock_int(r0, 0x1, 0x1d, &(0x7f00000001c0), 0x4)
r1 = syz_open_dev$vbi(&(0x7f0000000000)='/dev/vbi#\x00', 0x1, 0x2)
setsockopt$bt_l2cap_L2CAP_CONNINFO(r1, 0x6, 0x2, &(0x7f0000000040)={0xd38, 0x8, 0x0, 0x3}, 0x6)
ioctl$SIOCAX25OPTRT(r1, 0x89e7, &(0x7f0000000080)={@netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, 0x2, 0x56})

04:13:52 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"/968]}, 0x440)

[ 3345.744074] syz-executor.5 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 3345.824283] syz-executor.5 cpuset=syz5 mems_allowed=0-1
[ 3345.865489] CPU: 1 PID: 25341 Comm: syz-executor.5 Not tainted 4.19.66 #40
[ 3345.872545] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3345.881906] Call Trace:
[ 3345.884515]  dump_stack+0x172/0x1f0
[ 3345.888166]  dump_header+0x15e/0xa55
[ 3345.891907]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 3345.897036]  ? ___ratelimit+0x60/0x595
[ 3345.900934]  ? do_raw_spin_unlock+0x57/0x270
[ 3345.905365]  oom_kill_process.cold+0x10/0x6ef
[ 3345.909882]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 3345.915434]  ? task_will_free_mem+0x139/0x6e0
[ 3345.919953]  out_of_memory+0x936/0x12d0
[ 3345.923948]  ? lock_downgrade+0x810/0x810
[ 3345.928114]  ? oom_killer_disable+0x280/0x280
[ 3345.932629]  ? find_held_lock+0x35/0x130
[ 3345.936721]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 3345.941667]  ? memcg_event_wake+0x230/0x230
[ 3345.946021]  ? do_raw_spin_unlock+0x57/0x270
[ 3345.950451]  ? _raw_spin_unlock+0x2d/0x50
[ 3345.954619]  try_charge+0x1028/0x15b0
[ 3345.958429]  ? find_held_lock+0x35/0x130
04:13:52 executing program 2:
r0 = socket$inet6(0xa, 0x5, 0x0)
setsockopt$inet_sctp6_SCTP_ASSOCINFO(r0, 0x84, 0x1, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x14)
bind$inet6(r0, &(0x7f00002aafe4)={0xa, 0x4e23, 0x0, @empty}, 0x1c)
listen(r0, 0x1d7)
r1 = socket$inet_sctp(0x2, 0x801, 0x84)
getsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f0000000240)={{{@in=@empty, @in6=@local, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r2=>0x0}}, {{@in6=@mcast1}, 0x0, @in6=@dev}}, &(0x7f0000000040)=0xe8)
sendmsg(r1, &(0x7f0000000000)={&(0x7f0000000100)=@xdp={0x2c, 0x4, r2, 0xa}, 0x249, &(0x7f00000000c0)=[{&(0x7f0000000200)='#', 0x1}], 0x1, 0x0, 0x2be, 0x9000000}, 0x10002)

[ 3345.962507]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 3345.967370]  ? kasan_check_read+0x11/0x20
[ 3345.971545]  ? get_mem_cgroup_from_mm+0x156/0x320
[ 3345.976407]  mem_cgroup_try_charge+0x259/0x6b0
[ 3345.981006]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 3345.985952]  wp_page_copy+0x430/0x16a0
[ 3345.989857]  ? pmd_pfn+0x1d0/0x1d0
[ 3345.993424]  ? kasan_check_read+0x11/0x20
[ 3345.997587]  ? do_raw_spin_unlock+0x57/0x270
[ 3346.002005]  do_wp_page+0x57d/0x10b0
[ 3346.005731]  ? lock_acquire+0x16f/0x3f0
[ 3346.009719]  ? finish_mkwrite_fault+0x4f0/0x4f0
[ 3346.014404]  ? kasan_check_write+0x14/0x20
[ 3346.018649]  ? do_raw_spin_lock+0xc8/0x240
[ 3346.022896]  __handle_mm_fault+0x2305/0x3f80
[ 3346.022918]  ? vmf_insert_mixed_mkwrite+0x90/0x90
[ 3346.022952]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 3346.022971]  handle_mm_fault+0x1b5/0x690
[ 3346.022996]  __do_page_fault+0x62a/0xe90
[ 3346.032249]  ? vmalloc_fault+0x740/0x740
[ 3346.049071]  ? trace_hardirqs_off_caller+0x65/0x220
[ 3346.054099]  ? trace_hardirqs_on_caller+0x6a/0x220
[ 3346.059037]  ? page_fault+0x8/0x30
[ 3346.062598]  do_page_fault+0x71/0x57d
[ 3346.066498]  ? page_fault+0x8/0x30
[ 3346.071376]  page_fault+0x1e/0x30
[ 3346.074837] RIP: 0033:0x40e9c8
[ 3346.078037] Code: 8b 34 c6 4a 8d 04 2e 48 3d ff ff ff 7e 0f 86 77 ff ff ff bf 35 ee 4b 00 31 c0 e8 63 33 ff ff 31 ff e8 ac 2f ff ff 0f 1f 40 00 <89> 3c b5 00 00 73 00 eb b6 31 ed 0f 1f 44 00 00 80 3d 9e 1a 66 00
[ 3346.096958] RSP: 002b:00007ffe59696b40 EFLAGS: 00010246
[ 3346.102332] RAX: 000000009cbb6923 RBX: 0000000062090bed RCX: 0000001b2e720000
[ 3346.109605] RDX: 0000000000000000 RSI: 0000000000000923 RDI: ffffffff9cbb6923
[ 3346.116880] RBP: 0000000000000008 R08: 000000009cbb6923 R09: 000000009cbb6927
[ 3346.124325] R10: 00007ffe59696ce0 R11: 0000000000000246 R12: 000000000075bfa8
[ 3346.131647] R13: 0000000080000000 R14: 00007fb547714008 R15: 0000000000000008
04:13:53 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}, 0x1, 0xffffff7f00000000}, 0x0)

[ 3346.262142] Task in /syz5 killed as a result of limit of /syz5
[ 3346.281905] memory: usage 307200kB, limit 307200kB, failcnt 8699
[ 3346.289777] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3346.297032] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3346.312122] Memory cgroup stats for /syz5: cache:72KB rss:0KB rss_huge:0KB shmem:12KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:136KB inactive_file:0KB active_file:0KB unevictable:0KB
[ 3346.348036] Memory cgroup out of memory: Kill process 25341 (syz-executor.5) score 1103 or sacrifice child
04:13:53 executing program 5:
r0 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000240)='/dev/dlm-control\x00', 0x40000, 0x0)
ioctl$SNDRV_TIMER_IOCTL_GINFO(r0, 0xc0f85403, &(0x7f0000000280)={{0xffffffffffffffff, 0x0, 0x5830000000000, 0x3, 0x4}, 0xf177, 0xb431, 'id0\x00', 'timer1\x00', 0x0, 0x8b4, 0x81, 0x0, 0x445})
shmat(0x0, &(0x7f0000ffc000/0x4000)=nil, 0x3000)
mbind(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x2, &(0x7f0000000000)=0xffff, 0x2, 0x0)
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0x20b, &(0x7f0000000040)=[{&(0x7f0000000540)="2e000000220005000000c187185095cf0400b0eba0b4d65c0029000051894d5d1dac00"/46, 0x2e}], 0x1}, 0x0)
r2 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000080)='/dev/qat_adf_ctl\x00', 0x200, 0x0)
ioctl$DRM_IOCTL_ADD_CTX(0xffffffffffffffff, 0xc0086420, &(0x7f00000000c0)={<r3=>0x0})
ioctl$DRM_IOCTL_GET_SAREA_CTX(r2, 0xc010641d, &(0x7f0000000200)={r3, &(0x7f0000000100)=""/74})

04:13:53 executing program 2:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f00000000c0)="11dca50d5e0bcfe47bf070")
creat(&(0x7f0000000080)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080)='rpc_pipefs\x00', 0x0, 0x0)

04:13:53 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0xfffe}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

04:13:53 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}, 0x1, 0xffffffff00000000}, 0x0)

04:13:53 executing program 0:
madvise(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0xf)

04:13:53 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"/968]}, 0x440)

[ 3346.369736] Killed process 25341 (syz-executor.5) total-vm:72580kB, anon-rss:96kB, file-rss:34816kB, shmem-rss:0kB
[ 3346.405283] oom_reaper: reaped process 25341 (syz-executor.5), now anon-rss:0kB, file-rss:33856kB, shmem-rss:0kB
04:13:53 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}, 0x1, 0xffffffffa0010000}, 0x0)

04:13:53 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"/968]}, 0x440)

04:13:53 executing program 0:
r0 = creat(&(0x7f0000000000)='./file0\x00', 0x163)
ioctl$sock_proto_private(r0, 0x89e3, &(0x7f0000000100)="af5247917d2a714311ace9f4f119fe953682eb7ff47584b543652129199638137c5c1a6028c3ffed9599dad8a10aa576d16f5ddc8c08ba9e8da2d8ca78f0e912e0c0620f74c2edff26e17fc21181907296b029d3088e0610128d7cf8c19cb83ee4138908d0d247903ac71848a79d0237d45212b4426f3d4d53abd2187d413fe963b54a5a20b99333726474ce034c9842385f2ef6ce13849741e09a3a09b36951c372ac34278ab33225e6eae409b0538f6f8fba84fde40c26bdb0042abaef95d751955280446e2eab4057532573d1f4c6f6f1260e")
r1 = socket$tipc(0x1e, 0x0, 0x0)
setsockopt$TIPC_GROUP_JOIN(r1, 0x10f, 0x87, &(0x7f00000000c0)={0x41, 0x0, 0x3}, 0x265)
getsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r0, 0x84, 0x1f, &(0x7f0000000200)={<r2=>0x0, @in6={{0xa, 0x4e21, 0x99d, @loopback, 0x5}}, 0xfff, 0x5}, &(0x7f0000000080)=0x90)
getsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r0, 0x84, 0x13, &(0x7f00000002c0)={r2, 0x6}, &(0x7f0000000300)=0x8)
r3 = socket$tipc(0x1e, 0x5, 0x0)
getsockopt$TIPC_GROUP_JOIN(r1, 0x10f, 0x87, &(0x7f0000000340), &(0x7f0000000380)=0x4)
setsockopt$TIPC_GROUP_JOIN(r3, 0x10f, 0x87, &(0x7f0000000040)={0x41}, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)

04:13:53 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x34000}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

04:13:53 executing program 2:
r0 = openat$selinux_status(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/status\x00', 0x0, 0x0)
ioctl$sock_proto_private(r0, 0x89ec, &(0x7f0000000040)="8e6075fa527c9f5d447eacc7f2d6c5bb3d179dbd26e29b2f23f9b47d1773289490f03786d1e40998c73e79c406f614a0f4aa10b5d1cf13c5d37a4429dfc6e473505109704838b31abf2df19b39b808f8")
ioctl$sock_inet_SIOCGIFPFLAGS(r0, 0x8935, &(0x7f0000000100)={'hwsim0\x00', 0xffff})
r1 = socket(0x10, 0x802, 0x0)
write(r1, &(0x7f00000000c0)="24000000210025f0075c0165ff0ffc0e020000000010000002e1100c08000a0003000000", 0x24)

[ 3346.583857] syz-executor.5 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 3346.697652] syz-executor.5 cpuset=syz5 mems_allowed=0-1
[ 3346.717232] CPU: 0 PID: 25498 Comm: syz-executor.5 Not tainted 4.19.66 #40
[ 3346.724266] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3346.733622] Call Trace:
[ 3346.736240]  dump_stack+0x172/0x1f0
[ 3346.739883]  dump_header+0x15e/0xa55
[ 3346.739903]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 3346.739923]  ? ___ratelimit+0x60/0x595
[ 3346.748735]  ? do_raw_spin_unlock+0x57/0x270
[ 3346.748758]  oom_kill_process.cold+0x10/0x6ef
[ 3346.748783]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 3346.767136]  ? task_will_free_mem+0x139/0x6e0
[ 3346.771659]  out_of_memory+0x936/0x12d0
[ 3346.777152]  ? lock_downgrade+0x810/0x810
[ 3346.781321]  ? oom_killer_disable+0x280/0x280
[ 3346.781338]  ? find_held_lock+0x35/0x130
[ 3346.781366]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 3346.795156]  ? memcg_event_wake+0x230/0x230
[ 3346.799509]  ? do_raw_spin_unlock+0x57/0x270
[ 3346.803950]  ? _raw_spin_unlock+0x2d/0x50
[ 3346.808118]  try_charge+0x1028/0x15b0
[ 3346.811937]  ? find_held_lock+0x35/0x130
[ 3346.816017]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 3346.816041]  ? kasan_check_read+0x11/0x20
[ 3346.816064]  ? get_mem_cgroup_from_mm+0x156/0x320
[ 3346.816082]  mem_cgroup_try_charge+0x259/0x6b0
[ 3346.834575]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 3346.839523]  wp_page_copy+0x430/0x16a0
[ 3346.843433]  ? pmd_pfn+0x1d0/0x1d0
[ 3346.846989]  ? kasan_check_read+0x11/0x20
[ 3346.851150]  ? do_raw_spin_unlock+0x57/0x270
[ 3346.855581]  do_wp_page+0x57d/0x10b0
[ 3346.859309]  ? lock_acquire+0x16f/0x3f0
[ 3346.863295]  ? finish_mkwrite_fault+0x4f0/0x4f0
[ 3346.867983]  ? kasan_check_write+0x14/0x20
[ 3346.872232]  ? do_raw_spin_lock+0xc8/0x240
[ 3346.876489]  __handle_mm_fault+0x2305/0x3f80
[ 3346.880921]  ? vmf_insert_mixed_mkwrite+0x90/0x90
[ 3346.885886]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 3346.885906]  handle_mm_fault+0x1b5/0x690
[ 3346.885926]  __do_page_fault+0x62a/0xe90
04:13:53 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}, 0x1, 0xfffffffffffff000}, 0x0)

[ 3346.894737]  ? vmalloc_fault+0x740/0x740
[ 3346.894758]  ? trace_hardirqs_off_caller+0x65/0x220
[ 3346.907874]  ? trace_hardirqs_on_caller+0x6a/0x220
[ 3346.912832]  ? page_fault+0x8/0x30
[ 3346.916393]  do_page_fault+0x71/0x57d
[ 3346.920207]  ? page_fault+0x8/0x30
[ 3346.923767]  page_fault+0x1e/0x30
[ 3346.927229] RIP: 0033:0x40e9c8
[ 3346.930441] Code: 8b 34 c6 4a 8d 04 2e 48 3d ff ff ff 7e 0f 86 77 ff ff ff bf 35 ee 4b 00 31 c0 e8 63 33 ff ff 31 ff e8 ac 2f ff ff 0f 1f 40 00 <89> 3c b5 00 00 73 00 eb b6 31 ed 0f 1f 44 00 00 80 3d 9e 1a 66 00
[ 3346.949351] RSP: 002b:00007ffe59696b40 EFLAGS: 00010246
[ 3346.954725] RAX: 000000006324b081 RBX: 000000000ceef18a RCX: 0000001b2e720000
[ 3346.962000] RDX: 0000000000000000 RSI: 0000000000001081 RDI: ffffffff6324b081
[ 3346.969277] RBP: 0000000000000003 R08: 000000006324b081 R09: 000000006324b085
[ 3346.976552] R10: 00007ffe59696ce0 R11: 0000000000000246 R12: 000000000075bfa8
[ 3346.983809] R13: 0000000080000000 R14: 00007fb547714008 R15: 0000000000000003
[ 3346.993686] Task in /syz5 killed as a result of limit of /syz5
[ 3346.999809] memory: usage 307200kB, limit 307200kB, failcnt 8731
[ 3347.021400] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3347.034830] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3347.054320] Memory cgroup stats for /syz5: cache:72KB rss:128KB rss_huge:0KB shmem:12KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:124KB inactive_file:0KB active_file:0KB unevictable:0KB
[ 3347.075238] Memory cgroup out of memory: Kill process 25498 (syz-executor.5) score 1103 or sacrifice child
[ 3347.085201] Killed process 25498 (syz-executor.5) total-vm:72580kB, anon-rss:96kB, file-rss:34816kB, shmem-rss:0kB
04:13:54 executing program 5:
r0 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000240)='/dev/dlm-control\x00', 0x40000, 0x0)
ioctl$SNDRV_TIMER_IOCTL_GINFO(r0, 0xc0f85403, &(0x7f0000000280)={{0xffffffffffffffff, 0x0, 0x5830000000000, 0x3, 0x4}, 0xf177, 0xb431, 'id0\x00', 'timer1\x00', 0x0, 0x8b4, 0x81, 0x0, 0x445})
shmat(0x0, &(0x7f0000ffc000/0x4000)=nil, 0x3000)
mbind(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x2, &(0x7f0000000000)=0xffff, 0x2, 0x0)
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0x20b, &(0x7f0000000040)=[{&(0x7f0000000540)="2e000000220005000000c187185095cf0400b0eba0b4d65c002a000051894d5d1dac00"/46, 0x2e}], 0x1}, 0x0)
r2 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000080)='/dev/qat_adf_ctl\x00', 0x200, 0x0)
ioctl$DRM_IOCTL_ADD_CTX(0xffffffffffffffff, 0xc0086420, &(0x7f00000000c0)={<r3=>0x0})
ioctl$DRM_IOCTL_GET_SAREA_CTX(r2, 0xc010641d, &(0x7f0000000200)={r3, &(0x7f0000000100)=""/74})

04:13:54 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"/968]}, 0x440)

04:13:54 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}, 0x1, 0x0, 0x2}, 0x0)

04:13:54 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x40000}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

04:13:54 executing program 0:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
r1 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/autofs\x00', 0x240542, 0x0)
setsockopt$sock_attach_bpf(r0, 0x1, 0x32, &(0x7f0000000040)=r1, 0x4)
ioctl$TIOCOUTQ(r1, 0x5411, &(0x7f00000004c0))
ioctl$sock_bt_bnep_BNEPCONNADD(r1, 0x400442c8, &(0x7f0000000080)=ANY=[@ANYRES32=r0, @ANYBLOB="060000000200fca5d1186a8d4cf432daa5c7b5dd30a30c3faf29a2d83edc7463c3ad0b6c9c488e2c4a96bbead307ed43bceeee60423d99f8a266dd24dc7195ac82a0f8247c7bb774aee560bb68ec79c84aeb4a588a20b99adf12ce9e721fc9fa5fad0a3631e51dfe21565157d6d32e8daa5702f686116a4250395b886be62963de692fd975771a3fbcbae07a7dcee11402d420778f31ed5aaeb4077b6358863f17eb2639eda592b70da0612e5af23b8dc0e54af5f3e682e85f037806023e4067e3165dcbf0"])
socketpair(0x8000200000001e, 0x5, 0x0, &(0x7f000000dff8)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$PPPIOCSMRU(r2, 0x40047452, &(0x7f0000000200)=0xfe8d)
ioctl$TUNGETFILTER(r1, 0x801054db, &(0x7f0000000180)=""/103)
getsockopt$inet_sctp_SCTP_GET_PEER_ADDR_INFO(r2, 0x84, 0xf, &(0x7f0000000280)={<r4=>0x0, @in={{0x2, 0x4e24, @local}}, 0x2, 0x3, 0x6, 0x1000, 0x6}, &(0x7f0000000340)=0x98)
setsockopt$inet_sctp_SCTP_SET_PEER_PRIMARY_ADDR(r2, 0x84, 0x5, &(0x7f0000000380)={r4, @in={{0x2, 0x4e24, @broadcast}}}, 0x84)
ioctl$TUNGETFEATURES(0xffffffffffffffff, 0x800454cf, 0x0)
sendmmsg$alg(r3, &(0x7f0000236fc8)=[{0x8000000, 0x0, 0x0, 0x0, &(0x7f00001e1e78)}], 0x1, 0xf0ff7f)

04:13:54 executing program 2:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000440)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r1 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000080)={&(0x7f0000000480)=ANY=[@ANYBLOB="9feb0100010040000000000068000000680000000800000003000000070000000000000e05000000010000000400000003000084030000000300000005000000ff0000000500000005000000008000000f0000000400000002000000000000000000000a010000000c00000000000001000000000500010400002e30302e6100"], &(0x7f00000002c0)=""/245, 0x88, 0xf5, 0x1}, 0x20)
ioctl$FITRIM(r1, 0xc0185879, &(0x7f0000000000)={0xafdffcb, 0x7, 0x5})

[ 3347.097326] oom_reaper: reaped process 25498 (syz-executor.5), now anon-rss:0kB, file-rss:33856kB, shmem-rss:0kB
04:13:54 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x400300}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

04:13:54 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"/968]}, 0x440)

04:13:54 executing program 2:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000074, 0x25d)
bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10)
r1 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dlm-monitor\x00', 0x0, 0x0)
ioctl$RTC_SET_TIME(r1, 0x4024700a, &(0x7f0000000080)={0x35, 0x1d, 0x0, 0x8, 0x8, 0xd60, 0x5, 0x10d, 0xffffffffffffffff})
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000480)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000000)='bbr\x00', 0x3)
sendmmsg$inet(r0, &(0x7f0000000b40)=[{{0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000000100)="8c2fb08f70aca1f2e24e7dc4636db1607852800ad7239bfbb123065f680fcd8bd0da6e13b662424ccd67943bc81a1d56defee801abbb295542689614ad3cf075062ecc8fff703998f05b4a75cd21c51a0cdf5c1d22ec6c88b2f328c35d2284ce37375165fc7b892d9211b9f2b8d60d65de6a11b376b8379dea0e24d9d54997f9b0c35fdbb691b6a85b1dd235877eaf2c6b56cdebc12feefdd198891969cc07ec80aa29bcc95a", 0xa6}, {0x0}], 0x2}}], 0x1, 0x0)
sendto$inet(r0, &(0x7f00000012c0)="0c268a927f1f6588b967481241ba7860f46ef65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03059bcecc7a95c25a3a07e758044ab4ea6f7ae55d88fecf9221a7511bf746bec66ba", 0xfe6a, 0x4, 0x0, 0x27)

04:13:54 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}, 0x1, 0x0, 0x3}, 0x0)

[ 3347.342045] syz-executor.5 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
04:13:54 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"/968]}, 0x440)

04:13:54 executing program 0:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0xde8000000000, &(0x7f0000000180)="11dca50d5e0bcfe47bf07091939eab81a6460aec96ec523b5bbe630acd8ffbd05bf7662a027211d5a5100ecf3f78bb5d681c1eb63e723a027d6017b5f2ad87eb0af76647b07b22468838022cce322446599166dab50b24c2e10acb76abe64474584926469db2661e016d6b7b42eb7cdc6afe344a3eef11e0b589d21917e1c3b065af705520c34a7a104b8bb842c267a4d9c91a600bb8cfcaa360538b83cc271fd27273cd41ec338fd81d83f4ef304b3c050ff892ab00"/210)
fanotify_init(0x68, 0x0)

[ 3347.420849] syz-executor.5 cpuset=syz5 mems_allowed=0-1
[ 3347.444014] CPU: 0 PID: 25637 Comm: syz-executor.5 Not tainted 4.19.66 #40
[ 3347.451062] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3347.460514] Call Trace:
[ 3347.463121]  dump_stack+0x172/0x1f0
[ 3347.466777]  dump_header+0x15e/0xa55
[ 3347.470512]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 3347.475630]  ? ___ratelimit+0x60/0x595
[ 3347.479520]  ? do_raw_spin_unlock+0x57/0x270
[ 3347.483935]  oom_kill_process.cold+0x10/0x6ef
[ 3347.488529]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 3347.494072]  ? task_will_free_mem+0x139/0x6e0
[ 3347.498606]  out_of_memory+0x936/0x12d0
[ 3347.502603]  ? lock_downgrade+0x810/0x810
[ 3347.506767]  ? oom_killer_disable+0x280/0x280
[ 3347.511263]  ? find_held_lock+0x35/0x130
[ 3347.515343]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 3347.520212]  ? memcg_event_wake+0x230/0x230
[ 3347.524551]  ? do_raw_spin_unlock+0x57/0x270
[ 3347.528973]  ? _raw_spin_unlock+0x2d/0x50
[ 3347.533125]  try_charge+0x1028/0x15b0
[ 3347.536930]  ? find_held_lock+0x35/0x130
[ 3347.541000]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 3347.545856]  ? kasan_check_read+0x11/0x20
[ 3347.550020]  ? get_mem_cgroup_from_mm+0x156/0x320
[ 3347.554887]  mem_cgroup_try_charge+0x259/0x6b0
[ 3347.559483]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 3347.564446]  wp_page_copy+0x430/0x16a0
[ 3347.568344]  ? pmd_pfn+0x1d0/0x1d0
[ 3347.571896]  ? kasan_check_read+0x11/0x20
[ 3347.576048]  ? do_raw_spin_unlock+0x57/0x270
[ 3347.580466]  do_wp_page+0x57d/0x10b0
[ 3347.584184]  ? lock_acquire+0x16f/0x3f0
[ 3347.588161]  ? finish_mkwrite_fault+0x4f0/0x4f0
[ 3347.592837]  ? kasan_check_write+0x14/0x20
[ 3347.597164]  ? do_raw_spin_lock+0xc8/0x240
[ 3347.601409]  __handle_mm_fault+0x2305/0x3f80
[ 3347.605830]  ? vmf_insert_mixed_mkwrite+0x90/0x90
[ 3347.610700]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 3347.615377]  handle_mm_fault+0x1b5/0x690
[ 3347.619446]  __do_page_fault+0x62a/0xe90
[ 3347.623519]  ? vmalloc_fault+0x740/0x740
[ 3347.627589]  ? trace_hardirqs_off_caller+0x65/0x220
[ 3347.632606]  ? trace_hardirqs_on_caller+0x6a/0x220
[ 3347.637556]  ? page_fault+0x8/0x30
[ 3347.641106]  do_page_fault+0x71/0x57d
[ 3347.644940]  ? page_fault+0x8/0x30
[ 3347.648483]  page_fault+0x1e/0x30
[ 3347.651938] RIP: 0033:0x40e9c8
[ 3347.655130] Code: 8b 34 c6 4a 8d 04 2e 48 3d ff ff ff 7e 0f 86 77 ff ff ff bf 35 ee 4b 00 31 c0 e8 63 33 ff ff 31 ff e8 ac 2f ff ff 0f 1f 40 00 <89> 3c b5 00 00 73 00 eb b6 31 ed 0f 1f 44 00 00 80 3d 9e 1a 66 00
[ 3347.674036] RSP: 002b:00007ffe59696b40 EFLAGS: 00010246
[ 3347.679412] RAX: 000000006324b081 RBX: 000000000ceef18a RCX: 0000001b2e720000
[ 3347.686689] RDX: 0000000000000000 RSI: 0000000000001081 RDI: ffffffff6324b081
[ 3347.693959] RBP: 0000000000000003 R08: 000000006324b081 R09: 000000006324b085
[ 3347.701232] R10: 00007ffe59696ce0 R11: 0000000000000246 R12: 000000000075bfa8
[ 3347.708501] R13: 0000000080000000 R14: 00007fb547714008 R15: 0000000000000003
[ 3347.793101] Task in /syz5 killed as a result of limit of /syz5
[ 3347.799302] memory: usage 307200kB, limit 307200kB, failcnt 8762
[ 3347.832847] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3347.840149] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3347.861057] Memory cgroup stats for /syz5: cache:72KB rss:128KB rss_huge:0KB shmem:12KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:124KB inactive_file:0KB active_file:0KB unevictable:0KB
[ 3347.883366] Memory cgroup out of memory: Kill process 25637 (syz-executor.5) score 1103 or sacrifice child
04:13:54 executing program 5:
r0 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000240)='/dev/dlm-control\x00', 0x40000, 0x0)
ioctl$SNDRV_TIMER_IOCTL_GINFO(r0, 0xc0f85403, &(0x7f0000000280)={{0xffffffffffffffff, 0x0, 0x5830000000000, 0x3, 0x4}, 0xf177, 0xb431, 'id0\x00', 'timer1\x00', 0x0, 0x8b4, 0x81, 0x0, 0x445})
shmat(0x0, &(0x7f0000ffc000/0x4000)=nil, 0x3000)
mbind(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x2, &(0x7f0000000000)=0xffff, 0x2, 0x0)
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0x20b, &(0x7f0000000040)=[{&(0x7f0000000540)="2e000000220005000000c187185095cf0400b0eba0b4d65c002b000051894d5d1dac00"/46, 0x2e}], 0x1}, 0x0)
r2 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000080)='/dev/qat_adf_ctl\x00', 0x200, 0x0)
ioctl$DRM_IOCTL_ADD_CTX(0xffffffffffffffff, 0xc0086420, &(0x7f00000000c0)={<r3=>0x0})
ioctl$DRM_IOCTL_GET_SAREA_CTX(r2, 0xc010641d, &(0x7f0000000200)={r3, &(0x7f0000000100)=""/74})

04:13:54 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0xf0ffff}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

04:13:54 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}, 0x1, 0x0, 0x4}, 0x0)

04:13:54 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"/968]}, 0x440)

04:13:54 executing program 0:
r0 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000080)='/dev/qat_adf_ctl\x00', 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0xef03db649fd37db, 0x0, 0xfffffffffffffe63)
connect$inet6(0xffffffffffffffff, 0x0, 0x0)
mount$bpf(0x20000000, &(0x7f00000000c0)='./file0\x00', 0x0, 0x2001001, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
shmget(0xffffffffffffffff, 0x4000, 0x401, &(0x7f0000004000/0x4000)=nil)
r1 = open(0x0, 0x0, 0x0)
r2 = socket$inet(0x2, 0x200000002, 0x0)
bind$inet(r2, &(0x7f0000000040)={0x2, 0x4e21, @multicast1}, 0x10)
getsockopt$inet6_mreq(r1, 0x29, 0x15, &(0x7f0000000100)={@initdev, <r3=>0x0}, &(0x7f0000000180)=0x14)
ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f00000001c0)={'vcan0\x00', r3})
syz_emit_ethernet(0x2a, &(0x7f00000000c0)={@link_local, @dev, [], {@ipv4={0x800, {{0x5, 0x4, 0x0, 0x0, 0x1c, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @multicast1}, @udp={0x0, 0x4e21, 0x8}}}}}, 0x0)
pivot_root(&(0x7f0000000140)='./file0\x00', 0x0)
openat$fuse(0xffffffffffffff9c, &(0x7f0000000140)='/dev/fuse\x00', 0x2, 0x0)
setsockopt$inet_sctp_SCTP_HMAC_IDENT(r2, 0x84, 0x16, &(0x7f0000000000)=ANY=[@ANYBLOB="0900000001010010020001010300"], 0x16)

[ 3347.897734] Killed process 25637 (syz-executor.5) total-vm:72580kB, anon-rss:96kB, file-rss:34816kB, shmem-rss:0kB
[ 3347.910489] oom_reaper: reaped process 25637 (syz-executor.5), now anon-rss:0kB, file-rss:34820kB, shmem-rss:0kB
04:13:54 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"/968]}, 0x440)

04:13:54 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

04:13:55 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}, 0x1, 0x0, 0x6}, 0x0)

[ 3348.084603] syz-executor.5 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 3348.148738] syz-executor.5 cpuset=syz5 mems_allowed=0-1
[ 3348.165446] CPU: 1 PID: 25671 Comm: syz-executor.5 Not tainted 4.19.66 #40
[ 3348.172490] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3348.172501] Call Trace:
[ 3348.184474]  dump_stack+0x172/0x1f0
[ 3348.188127]  dump_header+0x15e/0xa55
[ 3348.191857]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 3348.196973]  ? ___ratelimit+0x60/0x595
[ 3348.200876]  ? do_raw_spin_unlock+0x57/0x270
[ 3348.205305]  oom_kill_process.cold+0x10/0x6ef
[ 3348.205325]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 3348.205339]  ? task_will_free_mem+0x139/0x6e0
[ 3348.205360]  out_of_memory+0x936/0x12d0
[ 3348.205375]  ? lock_downgrade+0x810/0x810
[ 3348.205392]  ? oom_killer_disable+0x280/0x280
[ 3348.205406]  ? find_held_lock+0x35/0x130
[ 3348.205433]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 3348.205451]  ? memcg_event_wake+0x230/0x230
[ 3348.215493]  ? do_raw_spin_unlock+0x57/0x270
[ 3348.215509]  ? _raw_spin_unlock+0x2d/0x50
[ 3348.215525]  try_charge+0x1028/0x15b0
[ 3348.215539]  ? find_held_lock+0x35/0x130
[ 3348.215559]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 3348.215581]  ? kasan_check_read+0x11/0x20
[ 3348.215602]  ? get_mem_cgroup_from_mm+0x156/0x320
[ 3348.215620]  mem_cgroup_try_charge+0x259/0x6b0
[ 3348.215639]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 3348.215660]  wp_page_copy+0x430/0x16a0
[ 3348.215682]  ? pmd_pfn+0x1d0/0x1d0
[ 3348.215698]  ? kasan_check_read+0x11/0x20
[ 3348.215711]  ? do_raw_spin_unlock+0x57/0x270
[ 3348.215728]  do_wp_page+0x57d/0x10b0
[ 3348.233233]  ? lock_acquire+0x16f/0x3f0
[ 3348.233251]  ? finish_mkwrite_fault+0x4f0/0x4f0
[ 3348.233267]  ? kasan_check_write+0x14/0x20
[ 3348.233281]  ? do_raw_spin_lock+0xc8/0x240
[ 3348.233300]  __handle_mm_fault+0x2305/0x3f80
[ 3348.233320]  ? vmf_insert_mixed_mkwrite+0x90/0x90
[ 3348.233353]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 3348.233371]  handle_mm_fault+0x1b5/0x690
[ 3348.233392]  __do_page_fault+0x62a/0xe90
[ 3348.233427]  ? vmalloc_fault+0x740/0x740
[ 3348.242410]  ? trace_hardirqs_off_caller+0x65/0x220
[ 3348.272077]  ? trace_hardirqs_on_caller+0x6a/0x220
[ 3348.272094]  ? page_fault+0x8/0x30
[ 3348.272112]  do_page_fault+0x71/0x57d
[ 3348.272124]  ? page_fault+0x8/0x30
[ 3348.272135]  page_fault+0x1e/0x30
[ 3348.272144] RIP: 0033:0x40e9c8
[ 3348.272157] Code: 8b 34 c6 4a 8d 04 2e 48 3d ff ff ff 7e 0f 86 77 ff ff ff bf 35 ee 4b 00 31 c0 e8 63 33 ff ff 31 ff e8 ac 2f ff ff 0f 1f 40 00 <89> 3c b5 00 00 73 00 eb b6 31 ed 0f 1f 44 00 00 80 3d 9e 1a 66 00
[ 3348.272162] RSP: 002b:00007ffe59696b40 EFLAGS: 00010246
[ 3348.272172] RAX: 0000000081709699 RBX: 000000002e0faf48 RCX: 0000001b2e720000
[ 3348.272186] RDX: 0000000000000000 RSI: 0000000000001699 RDI: ffffffff81709699
[ 3348.272193] RBP: 0000000000000000 R08: 0000000081709699 R09: 000000008170969d
[ 3348.272200] R10: 00007ffe59696ce0 R11: 0000000000000246 R12: 000000000075bfa8
[ 3348.272206] R13: 0000000080000000 R14: 00007fb547714008 R15: 0000000000000000
[ 3348.272227]  ? trace_hardirqs_off_caller+0x19/0x220
[ 3348.404260] Task in 
04:13:55 executing program 2:
setxattr$system_posix_acl(&(0x7f0000000040)='.\x00', &(0x7f00000001c0)='system.posix_acl_default\x00', &(0x7f00000005c0)=ANY=[@ANYBLOB="02000000010000000000000002000000", @ANYRES32=0x0, @ANYBLOB="0400000000bc9b0008000000", @ANYRES32=0x0, @ANYBLOB="10000000000000002000000000000000"], 0x34, 0x0)
ioctl$sock_ifreq(0xffffffffffffffff, 0x894a, &(0x7f00000003c0)={'bond_slave_1\x00', @ifru_addrs=@hci={0x1f, <r0=>0x0, 0x3}})
r1 = openat$null(0xffffffffffffff9c, &(0x7f0000000400)='/dev/null\x00', 0x204000, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x15, 0x9, &(0x7f0000000080)=@framed={{0x18, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0xfffffffffffffffc}, [@exit, @ldst={0x1, 0x2, 0x0, 0xb, 0xb, 0x100, 0xffffffffffffffff}, @initr0={0x18, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x3f}, @ldst={0x0, 0x0, 0x0, 0x1, 0x9, 0xfffffffffffffff8, 0xfffffffffffffffc}, @jmp={0x5, 0x6, 0x3, 0x9, 0x7, 0xfffffffffffffffe, 0xfffffffffffffff5}]}, &(0x7f0000000100)='GPL\x00', 0x86, 0x0, 0x0, 0x41000, 0x5, [], r0, 0x9, r1, 0x8, &(0x7f0000000440)={0x4, 0x2}, 0x8, 0x10, &(0x7f0000000480)={0x0, 0x10, 0xfffffffffffffffe, 0x10000}, 0x10}, 0x70)
fsetxattr$trusted_overlay_upper(r1, &(0x7f0000000140)='trusted.overlay.upper\x00', &(0x7f0000000880)={0x0, 0xfb, 0x1015, 0x2, 0xffffffffffffff80, "4309b9a7cd1e7475d6bdefbe9ed51c12", "00431520b23dfd1219895b659e99f121e8021c6c4df82699f9f338fdf98375e34ae735f0ba95c7a0fc0238190ec6215fd4b7f440a2b8e53e86c24906c7faa99eafbd76442307e6622c913affb72477a84f16728f371f242079a600410f226bcd37325a0e9e7bd1212ca87024dda5c18e0f7ef815993edb668c97c202a1aee1c9fc1832bd000389a8535415497eb4fdcca39540f8f22f46a4523aaf7ba60206c95c9df67e1a2b2c8889d1e892f5d4f43e34f26376f2f26e759183ad703bdaa1d7f8dee8732ca0b5b5caf8b20bee90f5fd94a87ffa18c6e8c46ab7f1b15631e298aced511c870fb9c93b1e44e29506b39bed547609f248a9959dc125b7c246e79e1c118aa8558201db8cc4997b99da18cc32f32964312b0ea5f686e000f0f46e3db8dd449c8580126a5e62de74a902afbcf102fe287b4836cb4e7efa28af05c95862a091e8bc4f508e95fe2ebba4a97d66e22288e871f0574adbad6fb858e3504058e168ec02c5857fe708891ca1108fc89c4da8123c26a1671beb7fbadda3f91158601d24757815a76e73851927dcd0560bc2367eb13ee5be31e6f8f44b1f2189560e80d2838e679249f130df9dd0b9ab287faf360e5e07c90488daabf57bdea7df25dca5d2ccb821f13bee1b2873a1575b35cbf9e4a536b1c0d31b58574730a71e47d4cbfffa9ce7497ff4c9d4ab46484ef22593cc0f53bccd011062baa9cd0c4c68e29e1768ce201ad371ff95ebc694b236625387e1df050c440e07d7e9e5298f18619f20558b2187c401c184c96fc341ceeec4251a090364e42845ae5b59e85c3e8830a4c36263d755085c9cf20f820030bf065d930d404c33d34acdf34c7ea9f7433a256e0371d436120d514a043942754db6e5295f7f731f06839f16f3d9b0d23d63a703c69e6a53048d81ff02cdc84da1c0dd5bb79c6ab7794d14d17a7f148107598698a1114f6be5af19c2c870a0c89eb8f1a7aee13949323f01099df1dd828e4eb1df80347174adb850b709ed25d73a76e3ae3344b8b43e90ca0a3c9e6f8ef2cbfd6e4d8906d61d9a0c5414d43d5e40c6fb469fef21f9fb9acbdb74a2e545713fbff897dd8db5940537afe802ffb0dfd59086de60a4c844acd937c3be729baa8ef33c96a9fdbf50fd98cde779d10f127965091af5d9797657f267621bb192ea76d3dfe44521a8c7bd4b62f7463cd2477b794e59ff25fc0ccaa284912b938ad814885f6e9904e6af6d25e5c07f71d35c75663414faf7b5370301bf87bd168712d236f794bde25193af864fd3e5dcaefab9abddcf151c657bb4934a58656e5a355d102ee94c9a98721ef791375ca29c6a784adee27cbfbf243e936a02215109b5a07e762796e9c366d45090d1393e8694ca7453479b1ff02f8a5b49c8624e43fcb0eff955a1b83ece656c9a614760a50ca40ae32c7f6fffcb68b92dde6ae2be31c35563d9e8e151d9986a85869d21957b7f9ec7c19b66676189801556c727dc55b2a149a8d09b93e36d1f7b8e1ff43e948f3329ee577d1917a744c97405c1a5da127402f06475cd424a0338b0b10dd626b785279bb246320b8267196f43af1f705fe4476f73d397fca2b668184462f5dd60f668657ade12ee86560a0f5097d2737ccbf1559cbef876bccd7083c98b054b38ed40fbf8a20a96420adf372f2364df9f7d0d41a66a25c118a6a2cc58962d6093f01d6e367f6ee34012440fe154e6d790e74e4fb7b2d2cc768998a445969fbf9bc9ddf69ab5f04606ea436a810c7bea3cce3bf1b1ef247eb08a5e1790afef03da0ba695c059318ce236e71a75c967ff933cabf57cea55aee42a829e7e338076226b034412321391daa108766420afe32d5e1ffb33101320b1418a037c9f62523960d48e6184d923ae775c1afeade70a92fd81b2f52d9bb424fc599db264016cd55913f2125e70680d2677db95f67e16e5b01d042968da3743314f1b6ef48ff401e5c3a7133c1744d6da7a278bdf0d84d19d8c1263392e1086543e83e05faa4cd986e5e72f1534506924308c345b767b1f17d2851da169c7e2a4022574026be058eed60d66a376f0649c38ce60e26f41e9f25fb7721c2edb0826d2c381b5b05b3dc4fb48466ce9d5ce351055bbcca871f6935d9bd8eb499fcc55be29472f0734951a9d500e176bd812fbe2c485eae44c1308f4f23058cc5083746e44bd1133e04a711f27b43b0f93414f2da3f087e921f59993992ed598e8e16b7342b4ebb47a5781a5ba1b23409e7bfb09ec52bf9b124132b67647a0533f9048d9a47aa4ba8c14762a0022f4f8046d52dac37f7095c4c13832fcd3643709d293ad15fc2a72fdb5ad72b96a91c964b8598717434a4941954b8e9343a62084645269991cca749cb7fa8be38f7c51d5554fc94345863abcc1dc764a5dfc587f53a2d4e19a0b812e0146b384cc50adeb2ffc1345d49373cac49f5e4ae0fe9f19a7ccb57d3056c0cf375158d995850ab5321235225a53292d262f1a98073fe3a5a23fb9dae0c018e05f368f553de2828baaab8dee4cac0ea6b2a35b44ba34d8837fb4c73a5ab34b773d31772a719e3c0c62c8835098a3e9c4c798c0d6da8608851cd9f472398f4784ead28f2d4f1e1c9fd225d6f44e2fd5f148937357aa3fa2f028da139a9b41c3751de7c776cf792c357677634e6ee2a34dc9bf6ba6eb77a2dd2ef0f059f700e7b830c57d442ee7f612abda091135ac0ea05cd4a9a5c97eb17ba5425c04b6a59c82a26adaef181ccacefcc06c674703d4079a39ad80112b3075d1aeed7ba846f31015d4ce89a8cd6466a5cb7d69d8192167de1e4bddeda787f01c7f188139638774b087477187f84276f322f4415d3eda916cc463bb13c49691097196168204a002b30c1749ad3b8f4dc9d3cced35573c38f831bcacf7a6aa6530acd101f0b78c669588b1c2e731243c20b883281dc9f5346a9ce8ea47a07a4432348b040649fe2689c2e00743c45cd7bb2d2eaf3fe2013d18486e671998bde9f4914e1e2455646b0be6e4816e1517b4ec0a9e9985808ed77e12d9f7cf9cc9b0a9e4bb2060a1c3eebfe8e720e2fa0ae42d5c93e0e0e022dc52c35eab1ac7cfd87e1e1dbdfde9266521018fc4c8091c2d76af2faec352b7deb559e1218f6b5c5b17d665e70b0190e87dc439d074092f9ec8ac726cec3e0bb44848d1a1ede0d737f953e07a944a16d61450d7b66eb60b4049a4965bcc83a51dc03e1b8a18a77da6c85cbc100bd1da918cf7a8f3386599ebe1d2b4db9dbcc161de2a56744606bbe3ef9eb466f8b7853d7facb689fca492d96243f2a69463825106f3d292c0874bcc09d535b47ede992d85c3767d6f5255ad576757e65830762456a35be746276aff1774070f7058c36074a79eab4a9c246894817f9bca33fc160f662a9eb647999769b345f94cd0f7cc08f53d4b960ba82b782d3554c349668a8680bfc2a7eb8027be21cfcc7028650dafe1f1aec93666a2fd54136bedd2da6ff995593a046bfa44078a49caf087c8d5c57dcfb19abca1d2d37a24d3caaf4f59a8e96b254717e75e8eb8056a6dd3f63b79c58cff89e3f2821202651526a2eb73abbdf5a1342031b183a6a84d01690648889a2e33a7e3767a6634c40314dfd975cb3a78b91e69db6b9ace4d5d2190ccd736adb3ff42aa6c61af6c088c7f1a1f635bca89a3308494af587ac52c091bd832d84d65598a02fd3feefe1792f2586f05f1e97e8a4106e35e1eee7ddaebf93229306eed0823d67434d2e3623d66ac90bc9231549552f402541566826f535699929fc02912d0db84ba4fecdc63c341046269f0df84eb1150da6004323c9dc270ef4d6787028703c33b55edd00eaf71657d551d490a47871f5b334c7337c0523ee655dd17c7501c1fe64ea523ce4a7f5e47e79f759f4d636c4bb68f9a85758d9d0f4190094e2052fb14ba2299e64a90b048fed871a7c658bb70a12fbf62ff4d080d753a82beaa514da860b2556ca0b947bba169bcbe9f033f8d50cc1bd005a4c8573a050aedc34e07a3170d3a399b2c45151f074fa0df19e266b490e79cd796f134b43381f75a3cc4de53efd692b0af389871f4d87e0107a8c69baa0e2264cceafbfd99dcb6efdbf2c430d3c91a97ad5a115487e2330fdeba63d287495bf4ece9106849ba503ae4cd6497080c17d3d5a8a0857252e9991ca78e9084a05a415c6e8a25df6e4fd640bea841b8ea8b6c14e7c692a84fce29f102daaf5dfc416773d2d924f4c993a76befb4ddb3e83d6abd694d4c807ccd0fe9b3889a949f709f424c663c25ea0babf58fe578ece45ecedb17248f0053b13aa079ba3589ee090eb09d5f2aef873ade2dfbb9c5b49aad35dabd02a2ce748629a5955532aa7d45f3688e0c38711a567a41d51207759fe67f55fd7040a62a5104aaac965b1d77a80d9268bfdbac07d883d29cf46819a60e3fc3099cf1a9d4b6188cee4784fc3cd8fbb6f7c133a028806177810ffa60ae23023d42b5367653fb1fca478c927e30ebab648490be078725dd7c4069d0da14c975134f45daf1edebd5cf9426df5d341632ab0880eeebccdcec975b968ca71792b3b0626073a469b055ba9fdd96bf93d6849e3e17357fb172a49d26d5be129a63edf82f650a78891b88a9bf051b60233b94044f080d75934da893a4027476f762b2a3a5b5571ca9d61dfccff0e9aa2881203fca648b1703dab4fedbcfa706989e7a732df37d74facec1fe882e0538eb5bff73c013dfb996c4a2488ce4fb5679c7c552b076acae1068bae68c8ca2a2fa14731d643f014af54aa400bf66b8f403c238bddb67974c54cd313f433d23287ca65c48d07ed774687f0765344ffad969dd914272982aef5ec883a104d1db1630b4c8ca947cba40631749276d5f9acdb8cc18f079a4980da7673fbfe2f4fab877eb5f674803785ce947289aade816b5efe4c56b437975c769cde4945df7419bca7b5f9eac60fa505a598c487ecfb05fda2a83dfb0929f17b3c0515e01f85c086d8f4fd70897aec5c9c400560e570d2777f6103ca5d57a605f2c695021348715d138bf212eca95c56c8017dca411a9d436949507065d0ddae52ccbb7d98b2ca447ff114d4d52e74608a239b1b365e2ed76561968c00d935c86a5ae55d126799ac7180a11b8ec9b97b9bb5d4acc04788601c9f08a41f44054fb2fea1dbaf4f0a7fe1172d61d05571f8732fb2cf808f1bed5b180194a724d4cfa92249dbb67f9771f5c461f4fab094545d80959b40c477afcb009c63bd523e59268c2f6bec97c1176c55e80af55519fe62b39dbb44b0ea0c6b6af680339ad4c1201d316e231e4528dea9bbd2c771a9d47cb4466a45857f0beccb9a253e2d64e4c7a23d3d4104ee14b858e076f6f99263d913c92c8d2d370d1e3a39f1ce3899bb09f93947cedb4413da9a118bd93c0463d4bc4c4e6addb9fa884e92181a26eff76c23ab6b93ad13caaba33d31f3bddbe4d8acaf18c979dc60735f840b257cb7161904cf8b6cec505280a5a6871ce8326a92f385258469d70fc79bcafc71009456dd7b72d3ab5afa1072108bbefcd0b432eb02dc6ed62fb884678859fc99a7a51ed4931845afe41dd1ad524412c292be3119cdbb081b6be723fe5aef696fb591aad00bf95e656af418f6fcd6d053d20182f3668815d77be7fd3af8339e747a2a56d176b7c19d7738a4622ff7fe7dbae15cb19670865dc0b4e301f2d0e5557667865cb6c49377f6e88a487974e1e0e223a6595a291326fde06ad637608ac087d418d7c511e86c28a4a5c304aeba3953f72e3d839407c92a3a4260315"}, 0x1015, 0x1)
mkdir(&(0x7f0000000180)='./file0\x00', 0x0)
mkdir(&(0x7f0000000000)='./file1\x00', 0x0)
lsetxattr$system_posix_acl(&(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='system.posix_acl_access\x00', &(0x7f0000000840), 0x24, 0x0)

04:13:55 executing program 0:
r0 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000080)='/dev/qat_adf_ctl\x00', 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0xef03db649fd37db, 0x0, 0xfffffffffffffe63)
connect$inet6(0xffffffffffffffff, 0x0, 0x0)
mount$bpf(0x20000000, &(0x7f00000000c0)='./file0\x00', 0x0, 0x2001001, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
shmget(0xffffffffffffffff, 0x4000, 0x401, &(0x7f0000004000/0x4000)=nil)
r1 = open(0x0, 0x0, 0x0)
r2 = socket$inet(0x2, 0x200000002, 0x0)
bind$inet(r2, &(0x7f0000000040)={0x2, 0x4e21, @multicast1}, 0x10)
getsockopt$inet6_mreq(r1, 0x29, 0x15, &(0x7f0000000100)={@initdev, <r3=>0x0}, &(0x7f0000000180)=0x14)
ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f00000001c0)={'vcan0\x00', r3})
syz_emit_ethernet(0x2a, &(0x7f00000000c0)={@link_local, @dev, [], {@ipv4={0x800, {{0x5, 0x4, 0x0, 0x0, 0x1c, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @multicast1}, @udp={0x0, 0x4e21, 0x8}}}}}, 0x0)
pivot_root(&(0x7f0000000140)='./file0\x00', 0x0)
openat$fuse(0xffffffffffffff9c, &(0x7f0000000140)='/dev/fuse\x00', 0x2, 0x0)
setsockopt$inet_sctp_SCTP_HMAC_IDENT(r2, 0x84, 0x16, &(0x7f0000000000)=ANY=[@ANYBLOB="0900000001010010020001010300"], 0x16)

04:13:55 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

04:13:55 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}, 0x1, 0x0, 0xa}, 0x0)

[ 3348.476747] /syz5 killed as a result of limit of /syz5
[ 3348.489667] memory: usage 307168kB, limit 307200kB, failcnt 8783
[ 3348.533337] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3348.568481] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3348.588572] Memory cgroup stats for /syz5: cache:72KB rss:128KB rss_huge:0KB shmem:12KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:112KB inactive_file:0KB active_file:0KB unevictable:0KB
[ 3348.629059] Memory cgroup out of memory: Kill process 25671 (syz-executor.5) score 1103 or sacrifice child
[ 3348.646010] Killed process 25671 (syz-executor.5) total-vm:72580kB, anon-rss:96kB, file-rss:34816kB, shmem-rss:0kB
[ 3348.703496] oom_reaper: reaped process 25671 (syz-executor.5), now anon-rss:0kB, file-rss:33856kB, shmem-rss:0kB
04:13:55 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"/968]}, 0x440)

04:13:55 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x3000000}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

04:13:55 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}, 0x1, 0x0, 0xc}, 0x0)

04:13:55 executing program 2:
r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_open_dev$usbmon(&(0x7f0000000100)='/dev/usbmon#\x00', 0x5, 0x440400)
ioctl$UI_ABS_SETUP(r1, 0x401c5504, &(0x7f0000000140)={0x2, {0x9, 0x3, 0x5, 0x200, 0x3}})
mmap(&(0x7f0000ff0000/0xd000)=nil, 0xd000, 0x2000010, 0x2010, r1, 0x16)
getsockopt$inet_sctp6_SCTP_DEFAULT_SNDINFO(r1, 0x84, 0x22, &(0x7f0000000180)={0x1, 0x443bd3bc4b6a503, 0x3, 0x7fff, <r2=>0x0}, &(0x7f00000001c0)=0x10)
setsockopt$inet_sctp_SCTP_MAXSEG(r1, 0x84, 0xd, &(0x7f0000000200)=@assoc_id=r2, 0x4)
r3 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x0, 0x0)
r4 = dup2(r3, r0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='\x00', r4}, 0x10)
preadv(r3, &(0x7f0000000040)=[{&(0x7f0000000400)=""/4096, 0x8d5af}], 0x100000000000004a, 0x0)

04:13:55 executing program 0:
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
getsockopt$inet6_mtu(r0, 0x29, 0x17, &(0x7f0000001500), &(0x7f00000015c0)=0xffffffffffffff66)
setsockopt$inet6_int(r0, 0x29, 0xcf, &(0x7f00000000c0), 0x4)
r1 = openat$selinux_checkreqprot(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/checkreqprot\x00', 0x10000, 0x0)
sendmsg$kcm(r1, &(0x7f00000014c0)={0x0, 0x0, &(0x7f00000013c0)=[{&(0x7f0000000040)="628aac474d90fdf4db0bcf1e", 0xc}, {&(0x7f0000000100)="31ac0dbcdcef729b441d4b864bbf38fb8ab897c10742c721c3c2540e17bf729fc625ad98d5346bbd40089be97a5cc54c39081e62ecb645cd1558377d3a9ba2ca122fa65730046896b856f2de8450810f0dfa8eddc99ca062801e7867f2e83ae1c9c80aab9252c790e1de599ecfa6af9aacf24b683db77feca741b013927be5a0c99509f49399bd1301a4f5050160a28d543701", 0x93}, {&(0x7f00000001c0)="2e930918516d6666229ad27ca05641ed2f95c4cfe2c17b728b0239d93329876ce2f7a8685d9819cef2dc5f28215a188a228a20033146ac523a20d1c25b3e69ff2578c1558e1e38facd1be7aaadb5bf6181101ca7eccc0de55b34aad137f321de4d83b4355672c227e52ce11e4240361967a8dfb88c", 0x75}, {&(0x7f0000000240)="7d48567c261d0867a7b55dac71d60911e757de5d9101b25255c770511b0c5ae191e413936699cc650d894135f7cb35b662d545cbb31814d3d97dd1136e161ee445a72b28503ce37f0ee43a921f0d3e8f0951d9b05a870315999636db2403872ef8611eecf3c27d09f6af5a19435a6fdee0ee5e8120954697a347b54cc5feb08e3b93091520a2a4d602b98e68498e", 0x8e}, {&(0x7f0000000300)="9cda2e61f5718ca16fc1b319e2ea43ff81e9516a69a095e39e206c3417e62e7af410026c278284ac7bce82c1c8dcbde745dad0c4e8d69af828d4a45e4bde4e1085c7d2f50c09f23caecf5e60fedba8cbd8aa684689d686e6d83680ba423959e0c22dd27a8153e01f7c40030bb91cd74757a4bed6b6adce8ce2ee1a6e7863efe41d5d0cad2317b3f6d8fd225205c970ed6d42b21227", 0x95}, {&(0x7f00000003c0)="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", 0x1000}, {&(0x7f0000000080)="08a4b6cb8e24cc6eab918a099507efd39be49d0d7509d4d70d1c5205be4e2517f6578ed7dfd880e7656b9b74c2d2797e134919ac", 0x34}], 0x7, &(0x7f0000001440)=[{0x68, 0x3a, 0x8, "a940b634c69bfdf47d6c68e9e28a1593d1d4e0e2ca03f926b1e06ce9dc6efe86f97b6ae3c257bb01ae0fa4cbb8dff4de939d22d2cbfdead3c844d13fc385f532680fda735cfe91b7aebb76f9c5e2e385053aa7"}], 0x68}, 0x800)

04:13:55 executing program 5:
r0 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000240)='/dev/dlm-control\x00', 0x40000, 0x0)
ioctl$SNDRV_TIMER_IOCTL_GINFO(r0, 0xc0f85403, &(0x7f0000000280)={{0xffffffffffffffff, 0x0, 0x5830000000000, 0x3, 0x4}, 0xf177, 0xb431, 'id0\x00', 'timer1\x00', 0x0, 0x8b4, 0x81, 0x0, 0x445})
shmat(0x0, &(0x7f0000ffc000/0x4000)=nil, 0x3000)
mbind(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x2, &(0x7f0000000000)=0xffff, 0x2, 0x0)
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0x20b, &(0x7f0000000040)=[{&(0x7f0000000540)="2e000000220005000000c187185095cf0400b0eba0b4d65c002c000051894d5d1dac00"/46, 0x2e}], 0x1}, 0x0)
r2 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000080)='/dev/qat_adf_ctl\x00', 0x200, 0x0)
ioctl$DRM_IOCTL_ADD_CTX(0xffffffffffffffff, 0xc0086420, &(0x7f00000000c0)={<r3=>0x0})
ioctl$DRM_IOCTL_GET_SAREA_CTX(r2, 0xc010641d, &(0x7f0000000200)={r3, &(0x7f0000000100)=""/74})

04:13:55 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

04:13:55 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"/968]}, 0x440)

04:13:55 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}, 0x1, 0x0, 0xe}, 0x0)

04:13:55 executing program 0:
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r1 = socket$inet6(0xa, 0x5, 0x0)
r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$ARPT_SO_SET_ADD_COUNTERS(r2, 0x0, 0x61, &(0x7f0000000080)={'filter\x00', 0x4}, 0x68)
setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX_OLD(r1, 0x84, 0x6b, &(0x7f000055bfe4)=[@in6={0xa, 0x0, 0x0, @loopback}], 0x1c)
setsockopt$inet_sctp6_SCTP_AUTO_ASCONF(r1, 0x84, 0x1e, &(0x7f0000000180)=0x2, 0x4)
close(r1)

04:13:55 executing program 2:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000040)='/dev/btrfs-control\x00', 0x80000, 0x0)
setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f0000000080)=[@mss, @window={0x3, 0x5, 0x8}, @window={0x3, 0xf30, 0x4}, @timestamp, @sack_perm], 0x5)
unlinkat(r0, &(0x7f0000000180)='./file0\x00', 0x200)
syz_mount_image$ceph(0x0, &(0x7f0000000140)='./file0\x00', 0x0, 0x0, 0x0, 0x2010, 0x0)
getsockopt$EBT_SO_GET_INIT_ENTRIES(r0, 0x0, 0x83, &(0x7f0000000240)={'broute\x00', 0x0, 0x3, 0x15, [], 0x3, &(0x7f00000001c0)=[{}, {}, {}], &(0x7f0000000200)=""/21}, &(0x7f00000002c0)=0x78)
ioctl$IMGETVERSION(r0, 0x80044942, &(0x7f00000000c0))
connect$x25(r0, &(0x7f0000000100)={0x9, @remote={[], 0x2}}, 0xfffffffffffffeb4)
openat$mixer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mixer\x00', 0x10000, 0x0)

04:13:55 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x5000000}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

[ 3349.011604] netlink: 26 bytes leftover after parsing attributes in process `syz-executor.5'.
[ 3349.066738] syz-executor.5 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
[ 3349.130289] syz-executor.5 cpuset=syz5 mems_allowed=0-1
[ 3349.164791] CPU: 0 PID: 25810 Comm: syz-executor.5 Not tainted 4.19.66 #40
04:13:56 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x6000000}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

[ 3349.171856] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3349.182329] Call Trace:
[ 3349.184939]  dump_stack+0x172/0x1f0
[ 3349.188589]  dump_header+0x15e/0xa55
[ 3349.192328]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 3349.197453]  ? ___ratelimit+0x60/0x595
[ 3349.201361]  ? do_raw_spin_unlock+0x57/0x270
[ 3349.205790]  oom_kill_process.cold+0x10/0x6ef
[ 3349.205814]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 3349.205834]  ? task_will_free_mem+0x139/0x6e0
[ 3349.215873]  out_of_memory+0x936/0x12d0
[ 3349.215891]  ? lock_downgrade+0x810/0x810
[ 3349.215910]  ? oom_killer_disable+0x280/0x280
[ 3349.215925]  ? find_held_lock+0x35/0x130
[ 3349.215954]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 3349.215972]  ? memcg_event_wake+0x230/0x230
[ 3349.215995]  ? do_raw_spin_unlock+0x57/0x270
[ 3349.216012]  ? _raw_spin_unlock+0x2d/0x50
[ 3349.237265]  try_charge+0x1028/0x15b0
[ 3349.237284]  ? find_held_lock+0x35/0x130
[ 3349.237309]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 3349.237337]  ? kasan_check_read+0x11/0x20
[ 3349.246509]  ? get_mem_cgroup_from_mm+0x156/0x320
[ 3349.246530]  mem_cgroup_try_charge+0x259/0x6b0
[ 3349.246554]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 3349.246576]  __handle_mm_fault+0x1e50/0x3f80
[ 3349.290611]  ? vmf_insert_mixed_mkwrite+0x90/0x90
[ 3349.295456]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 3349.300118]  handle_mm_fault+0x1b5/0x690
[ 3349.304179]  __do_page_fault+0x62a/0xe90
[ 3349.308236]  ? vmalloc_fault+0x740/0x740
[ 3349.312287]  ? trace_hardirqs_off_caller+0x65/0x220
[ 3349.317290]  ? trace_hardirqs_on_caller+0x6a/0x220
[ 3349.322210]  ? page_fault+0x8/0x30
[ 3349.325741]  do_page_fault+0x71/0x57d
[ 3349.329531]  ? page_fault+0x8/0x30
[ 3349.333058]  page_fault+0x1e/0x30
[ 3349.336499] RIP: 0033:0x41116f
[ 3349.339732] Code: 0f 84 c8 02 00 00 48 83 bd 78 ff ff ff 00 0f 84 f9 04 00 00 48 8b 95 68 ff ff ff 44 89 95 38 ff ff ff 4c 8d ac 10 00 f7 ff ff <49> 89 85 90 06 00 00 49 8d 85 10 03 00 00 49 89 95 98 06 00 00 41
[ 3349.358714] RSP: 002b:00007ffe59696b20 EFLAGS: 00010206
[ 3349.364087] RAX: 00007fb5456d2000 RBX: 0000000000020000 RCX: 000000000045987a
[ 3349.371360] RDX: 0000000000021000 RSI: 0000000000021000 RDI: 0000000000000000
04:13:56 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}, 0x1, 0x0, 0xf}, 0x0)

04:13:56 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="00000000004000000000000000000000000000000000000000000000000000000000000000000000ffffffff020000001d00000001000600080676657468305f746f5f627269646765006e7230000000000000000000000000006772653000000000000000000000000076657468315f746f5f626f6e64000000aaaaaaaaaaaa000000000000aaaaaaaaaaaa00000000000000007000000070000000a80000006172707265706c790000000000000000000000000000000000000000000000001000000000000000aaaaaaaaaaaa0000feffffff0000000009000000000000000000697064647030000000000000000000006272696467655f736c6176655f3100000000000000000000000000000000000067726530000000000000000000000000ffffffffffff0000000000000000000000000000000000000000e0000000180100005001000072617465657374000000000000a3000000000000000000000000000000000000480000000000000064756d6d79300000000000000000000073797a5f74756e0000000ab941773a25a4462a99832900000000000000000000200000000000000000000000000000000000000000000000736e6174000000000000000000000000000000000000000000000000000000001000000000000000aaaaaaaaaaaa000000000000000000006d61726b0000000000000000000000000000000000000000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000002000000feffffff01000000110000000000000000006272696467655f736c6176655f3100000000000000000000000000749638e0006c6f00000000000000000000000000000080616d300000000000000000000000aaaaaaaaaa00000000000000aaaaaaaaaaaa0000000000000000a00000000801000040010000636f6e6e6c6162656c000000000000000000000000000000000000000000000008000000000000000000000000000000434c4153534946590000000000000000000000000000000000ff07000000000008000000000000000000000000000000736e617400000000000000000000000000000000000000000001000000000000100000000000000000000000000000000000000000000000736e6174000000000000000000000000000000000000000000000000000000001000000000001400aaaaaaaaaabb00"/968]}, 0x440)

[ 3349.378878] RBP: 00007ffe59696c00 R08: ffffffffffffffff R09: 0000000000000000
[ 3349.386141] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffe59696cf0
[ 3349.393397] R13: 00007fb5456f2700 R14: 0000000000000001 R15: 000000000075bfd4
[ 3349.410545] Task in /syz5 killed as a result of limit of /syz5
[ 3349.417746] memory: usage 307200kB, limit 307200kB, failcnt 8813
[ 3349.425339] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3349.444727] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3349.450888] Memory cgroup stats for /syz5: cache:72KB rss:128KB rss_huge:0KB shmem:12KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:148KB inactive_file:0KB active_file:0KB unevictable:0KB
04:13:56 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x5000000}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

04:13:56 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="00000000004000000000000000000000000000000000000000000000000000000000000000000000ffffffff020000001d00000001000006080676657468305f746f5f627269646765006e7230000000000000000000000000006772653000000000000000000000000076657468315f746f5f626f6e64000000aaaaaaaaaaaa000000000000aaaaaaaaaaaa00000000000000007000000070000000a80000006172707265706c790000000000000000000000000000000000000000000000001000000000000000aaaaaaaaaaaa0000feffffff0000000009000000000000000000697064647030000000000000000000006272696467655f736c6176655f3100000000000000000000000000000000000067726530000000000000000000000000ffffffffffff0000000000000000000000000000000000000000e0000000180100005001000072617465657374000000000000a3000000000000000000000000000000000000480000000000000064756d6d79300000000000000000000073797a5f74756e0000000ab941773a25a4462a99832900000000000000000000200000000000000000000000000000000000000000000000736e6174000000000000000000000000000000000000000000000000000000001000000000000000aaaaaaaaaaaa000000000000000000006d61726b0000000000000000000000000000000000000000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000002000000feffffff01000000110000000000000000006272696467655f736c6176655f3100000000000000000000000000749638e0006c6f00000000000000000000000000000080616d300000000000000000000000aaaaaaaaaa00000000000000aaaaaaaaaaaa0000000000000000a00000000801000040010000636f6e6e6c6162656c000000000000000000000000000000000000000000000008000000000000000000000000000000434c4153534946590000000000000000000000000000000000ff07000000000008000000000000000000000000000000736e617400000000000000000000000000000000000000000001000000000000100000000000000000000000000000000000000000000000736e6174000000000000000000000000000000000000000000000000000000001000000000001400aaaaaaaaaabb00"/968]}, 0x440)

[ 3349.603073] Memory cgroup out of memory: Kill process 25810 (syz-executor.5) score 1103 or sacrifice child
[ 3349.627360] Killed process 25810 (syz-executor.5) total-vm:72712kB, anon-rss:96kB, file-rss:34816kB, shmem-rss:0kB
[ 3349.639060] oom_reaper: reaped process 25810 (syz-executor.5), now anon-rss:0kB, file-rss:33856kB, shmem-rss:0kB
04:13:58 executing program 5:
r0 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000240)='/dev/dlm-control\x00', 0x40000, 0x0)
ioctl$SNDRV_TIMER_IOCTL_GINFO(r0, 0xc0f85403, &(0x7f0000000280)={{0xffffffffffffffff, 0x0, 0x5830000000000, 0x3, 0x4}, 0xf177, 0xb431, 'id0\x00', 'timer1\x00', 0x0, 0x8b4, 0x81, 0x0, 0x445})
shmat(0x0, &(0x7f0000ffc000/0x4000)=nil, 0x3000)
mbind(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x2, &(0x7f0000000000)=0xffff, 0x2, 0x0)
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0x20b, &(0x7f0000000040)=[{&(0x7f0000000540)="2e000000220005000000c187185095cf0400b0eba0b4d65c002d000051894d5d1dac00"/46, 0x2e}], 0x1}, 0x0)
r2 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000080)='/dev/qat_adf_ctl\x00', 0x200, 0x0)
ioctl$DRM_IOCTL_ADD_CTX(0xffffffffffffffff, 0xc0086420, &(0x7f00000000c0)={<r3=>0x0})
ioctl$DRM_IOCTL_GET_SAREA_CTX(r2, 0xc010641d, &(0x7f0000000200)={r3, &(0x7f0000000100)=""/74})

04:13:58 executing program 2:
prctl$PR_SET_UNALIGN(0x6, 0x3)
r0 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer\x00', 0x800, 0x0)
read$alg(r0, &(0x7f00000000c0)=""/132, 0x84)

04:13:58 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}, 0x1, 0x0, 0x10}, 0x0)

04:13:58 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="00000000004000000000000000000000000000000000000000000000000000000000000000000000ffffffff020000001d000000010000ff080676657468305f746f5f627269646765006e7230000000000000000000000000006772653000000000000000000000000076657468315f746f5f626f6e64000000aaaaaaaaaaaa000000000000aaaaaaaaaaaa00000000000000007000000070000000a80000006172707265706c790000000000000000000000000000000000000000000000001000000000000000aaaaaaaaaaaa0000feffffff0000000009000000000000000000697064647030000000000000000000006272696467655f736c6176655f3100000000000000000000000000000000000067726530000000000000000000000000ffffffffffff0000000000000000000000000000000000000000e0000000180100005001000072617465657374000000000000a3000000000000000000000000000000000000480000000000000064756d6d79300000000000000000000073797a5f74756e0000000ab941773a25a4462a99832900000000000000000000200000000000000000000000000000000000000000000000736e6174000000000000000000000000000000000000000000000000000000001000000000000000aaaaaaaaaaaa000000000000000000006d61726b0000000000000000000000000000000000000000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000002000000feffffff01000000110000000000000000006272696467655f736c6176655f3100000000000000000000000000749638e0006c6f00000000000000000000000000000080616d300000000000000000000000aaaaaaaaaa00000000000000aaaaaaaaaaaa0000000000000000a00000000801000040010000636f6e6e6c6162656c000000000000000000000000000000000000000000000008000000000000000000000000000000434c4153534946590000000000000000000000000000000000ff07000000000008000000000000000000000000000000736e617400000000000000000000000000000000000000000001000000000000100000000000000000000000000000000000000000000000736e6174000000000000000000000000000000000000000000000000000000001000000000001400aaaaaaaaaabb00"/968]}, 0x440)

04:13:58 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x7000000}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

04:13:58 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x5000000}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

04:13:58 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}, 0x1, 0x0, 0x60}, 0x0)

[ 3351.708595] syz-executor.5 invoked oom-killer: gfp_mask=0x7080c0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), nodemask=(null), order=3, oom_score_adj=1000
04:13:58 executing program 2:
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = memfd_create(&(0x7f0000000140)='+\x8b\x8a\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x3)
write$binfmt_misc(r1, &(0x7f0000000c40)=ANY=[@ANYRES32], 0xfffffffffffffdbc)
sendfile(r0, r1, &(0x7f0000000000), 0xffff)
fcntl$addseals(r1, 0x409, 0x18)
fsetxattr$system_posix_acl(r1, &(0x7f0000000180)='system.posix_acl_access\x02', 0x0, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
dup3(r0, r1, 0x0)

04:13:58 executing program 0:
creat(&(0x7f0000000040)='./bus\x00', 0x0)
setxattr$security_selinux(&(0x7f0000000000)='./bus\x00', &(0x7f0000000100)='security.selinux\x00', 0x0, 0x2, 0x0)

04:13:58 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x8030000}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

04:13:58 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"/968]}, 0x440)

[ 3351.775255] syz-executor.5 cpuset=syz5 mems_allowed=0-1
[ 3351.804116] CPU: 1 PID: 25873 Comm: syz-executor.5 Not tainted 4.19.66 #40
[ 3351.811169] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3351.820546] Call Trace:
[ 3351.823157]  dump_stack+0x172/0x1f0
[ 3351.826809]  dump_header+0x15e/0xa55
[ 3351.830544]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 3351.835660]  ? ___ratelimit+0x60/0x595
[ 3351.839567]  ? do_raw_spin_unlock+0x57/0x270
[ 3351.843995]  oom_kill_process.cold+0x10/0x6ef
[ 3351.848514]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 3351.854065]  ? task_will_free_mem+0x139/0x6e0
[ 3351.858576]  ? find_held_lock+0x35/0x130
[ 3351.862656]  out_of_memory+0x936/0x12d0
[ 3351.866653]  ? lock_downgrade+0x810/0x810
[ 3351.870817]  ? oom_killer_disable+0x280/0x280
[ 3351.875328]  ? find_held_lock+0x35/0x130
[ 3351.879441]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 3351.884309]  ? memcg_event_wake+0x230/0x230
[ 3351.888685]  ? do_raw_spin_unlock+0x57/0x270
[ 3351.893115]  ? _raw_spin_unlock+0x2d/0x50
[ 3351.897292]  try_charge+0x1028/0x15b0
[ 3351.901107]  ? find_held_lock+0x35/0x130
[ 3351.905272]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 3351.910496]  ? get_mem_cgroup_from_mm+0x139/0x320
[ 3351.915355]  ? find_held_lock+0x35/0x130
[ 3351.919434]  ? get_mem_cgroup_from_mm+0x139/0x320
[ 3351.924304]  memcg_kmem_charge_memcg+0x7c/0x130
[ 3351.928991]  ? memcg_kmem_put_cache+0xb0/0xb0
[ 3351.933502]  ? get_mem_cgroup_from_mm+0x156/0x320
[ 3351.938366]  memcg_kmem_charge+0x136/0x370
[ 3351.942620]  __alloc_pages_nodemask+0x3c3/0x750
[ 3351.947307]  ? __alloc_pages_slowpath+0x2870/0x2870
[ 3351.947327]  ? lockdep_hardirqs_on+0x415/0x5d0
[ 3351.947347]  ? trace_hardirqs_on+0x67/0x220
[ 3351.956946]  ? kasan_check_read+0x11/0x20
[ 3351.956968]  copy_process.part.0+0x3e0/0x7a30
[ 3351.956986]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 3351.957004]  ? delayacct_end+0x5c/0x100
[ 3351.957025]  ? __delayacct_freepages_end+0xe0/0x140
[ 3351.957042]  ? __lock_acquire+0x6ee/0x49c0
[ 3351.957067]  ? __cleanup_sighand+0x70/0x70
[ 3351.957083]  ? mark_held_locks+0x100/0x100
[ 3351.996796]  _do_fork+0x257/0xfd0
[ 3352.000274]  ? fork_idle+0x1d0/0x1d0
[ 3352.004009]  ? blkg_prfill_rwstat_field_recursive+0x100/0x100
[ 3352.009910]  ? kasan_check_read+0x11/0x20
[ 3352.014079]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 3352.018851]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 3352.023624]  ? do_syscall_64+0x26/0x620
[ 3352.027613]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 3352.032982]  ? do_syscall_64+0x26/0x620
[ 3352.036977]  __x64_sys_clone+0xbf/0x150
[ 3352.040971]  do_syscall_64+0xfd/0x620
[ 3352.044798]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 3352.049999] RIP: 0033:0x45c1f9
[ 3352.053197] Code: ff 48 85 f6 0f 84 27 8e fb ff 48 83 ee 10 48 89 4e 08 48 89 3e 48 89 d7 4c 89 c2 4d 89 c8 4c 8b 54 24 08 b8 38 00 00 00 0f 05 <48> 85 c0 0f 8c fe 8d fb ff 74 01 c3 31 ed 48 f7 c7 00 00 01 00 75
04:13:58 executing program 0:
r0 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r0, &(0x7f00000004c0), 0x10)
r1 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x6, 0x402040)
ioctl$TCSETAF(r1, 0x5408, &(0x7f0000000040)={0x20, 0x9, 0x5, 0x5, 0x4, 0x9, 0x2, 0x8, 0x5, 0x9})
connect$can_bcm(r0, &(0x7f0000002580), 0x10)

[ 3352.053205] RSP: 002b:00007ffe59696ad8 EFLAGS: 00000202 ORIG_RAX: 0000000000000038
[ 3352.053220] RAX: ffffffffffffffda RBX: 00007fb545713700 RCX: 000000000045c1f9
[ 3352.053228] RDX: 00007fb5457139d0 RSI: 00007fb545712db0 RDI: 00000000003d0f00
[ 3352.053237] RBP: 00007ffe59696cf0 R08: 00007fb545713700 R09: 00007fb545713700
[ 3352.053245] R10: 00007fb5457139d0 R11: 0000000000000202 R12: 0000000000000000
[ 3352.053252] R13: 00007ffe59696b8f R14: 00007fb5457139c0 R15: 000000000075bf2c
[ 3352.169928] Task in /syz5 killed as a result of limit of /syz5
[ 3352.176129] memory: usage 307200kB, limit 307200kB, failcnt 8863
[ 3352.182299] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3352.190314] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
04:13:59 executing program 5:
r0 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000240)='/dev/dlm-control\x00', 0x40000, 0x0)
ioctl$SNDRV_TIMER_IOCTL_GINFO(r0, 0xc0f85403, &(0x7f0000000280)={{0xffffffffffffffff, 0x0, 0x5830000000000, 0x3, 0x4}, 0xf177, 0xb431, 'id0\x00', 'timer1\x00', 0x0, 0x8b4, 0x81, 0x0, 0x445})
shmat(0x0, &(0x7f0000ffc000/0x4000)=nil, 0x3000)
mbind(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x2, &(0x7f0000000000)=0xffff, 0x2, 0x0)
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0x20b, &(0x7f0000000040)=[{&(0x7f0000000540)="2e000000220005000000c187185095cf0400b0eba0b4d65c002e000051894d5d1dac00"/46, 0x2e}], 0x1}, 0x0)
r2 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000080)='/dev/qat_adf_ctl\x00', 0x200, 0x0)
ioctl$DRM_IOCTL_ADD_CTX(0xffffffffffffffff, 0xc0086420, &(0x7f00000000c0)={<r3=>0x0})
ioctl$DRM_IOCTL_GET_SAREA_CTX(r2, 0xc010641d, &(0x7f0000000200)={r3, &(0x7f0000000100)=""/74})

04:13:59 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"/968]}, 0x440)

04:13:59 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}, 0x1, 0x0, 0xf0}, 0x0)

04:13:59 executing program 2:
mkdir(&(0x7f0000000100)='./file0\x00', 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz1\x00', 0x1ff)
mount$fuse(0x20000000, &(0x7f0000000140)='./file0\x00', 0x0, 0x1004, 0x0)
r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000200)='/dev/zero\x00', 0x8200, 0x0)
getsockopt$inet_sctp6_SCTP_ADAPTATION_LAYER(r0, 0x84, 0x7, &(0x7f0000000240), &(0x7f0000000280)=0x4)
mount$overlay(0x400000, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)='overlay\x00', 0x0, &(0x7f0000000800)=ANY=[@ANYBLOB="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"])
r1 = open(&(0x7f0000000500)='./file0\x00', 0x0, 0x0)
r2 = openat$cgroup_procs(r1, &(0x7f00000004c0)='cgroup.procs\x00', 0x48, 0x0)
ioctl$FS_IOC_GETFSMAP(r2, 0xc0c0583b, 0x0)

04:13:59 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0xa000000}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

[ 3352.212236] Memory cgroup stats for /syz5: cache:72KB rss:128KB rss_huge:0KB shmem:12KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:104KB inactive_file:0KB active_file:0KB unevictable:0KB
[ 3352.232588] Memory cgroup out of memory: Kill process 25873 (syz-executor.5) score 1103 or sacrifice child
[ 3352.242523] Killed process 25873 (syz-executor.5) total-vm:72580kB, anon-rss:96kB, file-rss:34816kB, shmem-rss:0kB
04:13:59 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="00000000004000000000000000000000000000000000000000000000000000000000000000000000ffffffff020000001d00000001000006080676657468305f746f5f627269646765006e7230000000000000000000000000006772653000000000000000000000000076657468315f746f5f626f6e64000000aaaaaaaaaaaa000000000000aaaaaaaaaaaa00000000000000007000000070000000a80000006172707265706c790000000000000000000000000000000000000000000000001000000000000000aaaaaaaaaaaa0000feffffff0000000009000000000000000000697064647030000000000000000000006272696467655f736c6176655f3100000000000000000000000000000000000067726530000000000000000000000000ffffffffffff0000000000000000000000000000000000000000e0000000180100005001000072617465657374000000000000a3000000000000000000000000000000000000480000000000000064756d6d79300000000000000000000073797a5f74756e0000000ab941773a25a4462a99832900000000000000000000200000000000000000000000000000000000000000000000736e6174000000000000000000000000000000000000000000000000000000001000000000000000aaaaaaaaaaaa000000000000000000006d61726b0000000000000000000000000000000000000000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000002000000feffffff01000000110000000000000000006272696467655f736c6176655f3100000000000000000000000000749638e0006c6f00000000000000000000000000000080616d300000000000000000000000aaaaaaaaaa00000000000000aaaaaaaaaaaa0000000000000000a00000000801000040010000636f6e6e6c6162656c000000000000000000000000000000000000000000000008000000000000000000000000000000434c4153534946590000000000000000000000000000000000ff07000000000008000000000000000000000000000000736e617400000000000000000000000000000000000000000001000000000000100000000000000000000000000000000000000000000000736e6174000000000000000000000000000000000000000000000000000000001000000000001400aaaaaaaaaabb00"/968]}, 0x440)

[ 3352.295875] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
04:13:59 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}, 0x1, 0x0, 0x1a0}, 0x0)

[ 3352.370698] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
04:13:59 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0xc000000}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

[ 3352.415570] syz-executor.5 invoked oom-killer: gfp_mask=0x6000c0(GFP_KERNEL), nodemask=(null), order=0, oom_score_adj=1000
04:13:59 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@nat={'nat\x00', 0x19, 0x3, 0x3c8, [0x20000100, 0x0, 0x0, 0x20000328, 0x20000358], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"/968]}, 0x440)

04:13:59 executing program 2:
perf_event_open(&(0x7f0000000000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = add_key$user(&(0x7f0000000080)='user\x00', &(0x7f00000000c0)={'syz', 0x1}, &(0x7f0000000100), 0x0, 0xfffffffffffffff8)
keyctl$KEYCTL_PKEY_ENCRYPT(0x19, &(0x7f0000000140)={r0, 0x5c, 0xb7}, &(0x7f0000000180)={'enc=', 'oaep', ' hash=', {'tgr128-generic\x00'}}, &(0x7f0000000200)="b149395aa6dce24b6a1280a5ae71d2b4804dd448e0879eb992b1c706e5a917a1ba850296a677491a1d5f9453db41456d1805c156d7477c21a20c734238ec0f8207a301d340b66a7182fac1b88dfd12dfbac176486abcc740d4122345", &(0x7f0000000280)=""/183)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff})
ioctl$DRM_IOCTL_GET_CAP(r1, 0xc010640c, &(0x7f0000000340)={0x7, 0xffffffffffffffff})
request_key(&(0x7f000000aff5)='asymmetric\x00', &(0x7f0000001ffb)={'\x00\x00\a', 0xffffffffffffffff, 0x4c00000000006800}, &(0x7f0000001fee)='R\x10rist\xe3cusgrVid:D%', 0x0)

04:13:59 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000d00)={0x0, 0xfffffc76, &(0x7f00000000c0)={&(0x7f0000000d40)=@newlink={0x30, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0xe000000}, [@IFLA_LINKINFO={0x10, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0x4, 0x5}}}]}, 0x30}}, 0x0)

[ 3352.520419] syz-executor.5 cpuset=syz5 mems_allowed=0-1
[ 3352.532393] CPU: 1 PID: 25907 Comm: syz-executor.5 Not tainted 4.19.66 #40
[ 3352.539462] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3352.548825] Call Trace:
[ 3352.551442]  dump_stack+0x172/0x1f0
[ 3352.555095]  dump_header+0x15e/0xa55
[ 3352.558832]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 3352.564042]  ? ___ratelimit+0x60/0x595
[ 3352.567951]  ? do_raw_spin_unlock+0x57/0x270
[ 3352.572388]  oom_kill_process.cold+0x10/0x6ef
[ 3352.577080]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 3352.582632]  ? task_will_free_mem+0x139/0x6e0
[ 3352.587149]  out_of_memory+0x936/0x12d0
[ 3352.591144]  ? lock_downgrade+0x810/0x810
[ 3352.595315]  ? oom_killer_disable+0x280/0x280
[ 3352.599819]  ? find_held_lock+0x35/0x130
[ 3352.603912]  mem_cgroup_out_of_memory+0x1d2/0x240
[ 3352.608793]  ? memcg_event_wake+0x230/0x230
[ 3352.608816]  ? do_raw_spin_unlock+0x57/0x270
[ 3352.608838]  ? _raw_spin_unlock+0x2d/0x50
[ 3352.617566]  try_charge+0x1028/0x15b0
[ 3352.625520]  ? find_held_lock+0x35/0x130
[ 3352.629592]  ? mem_cgroup_oom_trylock+0x1a0/0x1a0
[ 3352.634431]  ? kasan_check_read+0x11/0x20
[ 3352.638589]  ? get_mem_cgroup_from_mm+0x156/0x320
[ 3352.643439]  mem_cgroup_try_charge+0x259/0x6b0
[ 3352.648013]  mem_cgroup_try_charge_delay+0x1f/0xa0
[ 3352.652937]  __handle_mm_fault+0x1e50/0x3f80
[ 3352.657342]  ? vmf_insert_mixed_mkwrite+0x90/0x90
[ 3352.662321]  ? count_memcg_event_mm+0x2b1/0x4d0
[ 3352.666990]  handle_mm_fault+0x1b5/0x690
[ 3352.671045]  __do_page_fault+0x62a/0xe90
[ 3352.675194]  ? vmalloc_fault+0x740/0x740
[ 3352.679263]  ? trace_hardirqs_off_caller+0x65/0x220
[ 3352.684282]  ? trace_hardirqs_on_caller+0x6a/0x220
[ 3352.689216]  ? page_fault+0x8/0x30
[ 3352.692752]  do_page_fault+0x71/0x57d
[ 3352.696541]  ? page_fault+0x8/0x30
[ 3352.700072]  page_fault+0x1e/0x30
[ 3352.703514] RIP: 0033:0x41116f
[ 3352.706696] Code: 0f 84 c8 02 00 00 48 83 bd 78 ff ff ff 00 0f 84 f9 04 00 00 48 8b 95 68 ff ff ff 44 89 95 38 ff ff ff 4c 8d ac 10 00 f7 ff ff <49> 89 85 90 06 00 00 49 8d 85 10 03 00 00 49 89 95 98 06 00 00 41
[ 3352.725674] RSP: 002b:00007ffe59696b20 EFLAGS: 00010206
[ 3352.731037] RAX: 00007fb5456f3000 RBX: 0000000000020000 RCX: 000000000045987a
[ 3352.738321] RDX: 0000000000021000 RSI: 0000000000021000 RDI: 0000000000000000
[ 3352.745629] RBP: 00007ffe59696c00 R08: ffffffffffffffff R09: 0000000000000000
[ 3352.752886] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffe59696cf0
[ 3352.760151] R13: 00007fb545713700 R14: 0000000000000000 R15: 000000000075bf2c
[ 3352.777188] Task in /syz5 killed as a result of limit of /syz5
[ 3352.783884] memory: usage 307200kB, limit 307200kB, failcnt 8893
[ 3352.790050] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3352.799213] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3352.806425] Memory cgroup stats for /syz5: cache:72KB rss:128KB rss_huge:0KB shmem:12KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:0KB active_anon:92KB inactive_file:0KB active_file:0KB unevictable:0KB
[ 3352.826852] Memory cgroup out of memory: Kill process 25907 (syz-executor.5) score 1103 or sacrifice child
[ 3352.837428] Killed process 25907 (syz-executor.5) total-vm:72580kB, anon-rss:96kB, file-rss:34816kB, shmem-rss:0kB
[ 3352.849044] oom_reaper: reaped process 25907 (syz-executor.5), now anon-rss:0kB, file-rss:33856kB, shmem-rss:0kB
[ 3414.282841] ip6_tunnel: ip6tnl2 xmit: Local address not yet configured!
[ 3499.413072] INFO: task syz-executor.0:25890 blocked for more than 140 seconds.
[ 3499.420523]       Not tainted 4.19.66 #40
[ 3499.425377] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 3499.426263] kobject: 'phy2717' (00000000efaae51c): kobject_uevent_env
[ 3499.437816] syz-executor.0  D29496 25890  23348 0x00000004
[ 3499.440442] kobject: 'phy2717' (00000000efaae51c): fill_kobj_path: path = '/devices/virtual/mac80211_hwsim/hwsim2717/ieee80211/phy2717'
[ 3499.446221] Call Trace:
[ 3499.458919] kobject: 'ieee80211' (0000000071124b06): kobject_cleanup, parent           (null)
[ 3499.465040]  __schedule+0x866/0x1dc0
[ 3499.470357] kobject: 'ieee80211' (0000000071124b06): calling ktype release
[ 3499.474979]  ? pci_mmcfg_check_reserved+0x170/0x170
[ 3499.481398] kobject: 'ieee80211': free name
[ 3499.490597] kobject: 'hwsim2717' (000000009172b86a): kobject_uevent_env
[ 3499.490863]  ? rwsem_down_write_failed+0x764/0xc30
[ 3499.498166] kobject: 'hwsim2717' (000000009172b86a): fill_kobj_path: path = '/devices/virtual/mac80211_hwsim/hwsim2717'
[ 3499.506228]  ? _raw_spin_unlock_irq+0x28/0x90
[ 3499.516462] kobject: 'hwsim2717' (000000009172b86a): kobject_uevent_env
[ 3499.518300]  ? lockdep_hardirqs_on+0x415/0x5d0
[ 3499.528674] kobject: 'hwsim2717' (000000009172b86a): fill_kobj_path: path = '/devices/virtual/mac80211_hwsim/hwsim2717'
[ 3499.529872]  schedule+0x92/0x1c0
[ 3499.542520] kobject: 'hwsim2717' (000000009172b86a): kobject_cleanup, parent           (null)
[ 3499.544517]  rwsem_down_write_failed+0x774/0xc30
[ 3499.553873] kobject: 'hwsim2717' (000000009172b86a): calling ktype release
[ 3499.561427]  ? rwsem_down_read_failed+0x3c0/0x3c0
[ 3499.565434] kobject: 'hwsim2717': free name
[ 3499.570019]  ? __debug_object_init+0x190/0xc30
[ 3499.574718] kobject: 'phy2717' (00000000efaae51c): kobject_cleanup, parent           (null)
[ 3499.582435]  ? _raw_spin_unlock_irqrestore+0x6b/0xe0
[ 3499.587946] kobject: 'phy2717' (00000000efaae51c): calling ktype release
[ 3499.596903]  call_rwsem_down_write_failed+0x17/0x30
[ 3499.599966] kobject: 'rfkill2726' (000000009405fd5f): kobject_cleanup, parent           (null)
[ 3499.605020]  ? call_rwsem_down_write_failed+0x17/0x30
[ 3499.614396] kobject: 'rfkill2726' (000000009405fd5f): calling ktype release
[ 3499.622459]  down_write+0x53/0x90
[ 3499.626551] kobject: 'rfkill2726': free name
[ 3499.629810]  ? register_netdevice_notifier+0x7e/0x630
[ 3499.634486] kobject: 'phy2717': free name
[ 3499.643069]  register_netdevice_notifier+0x7e/0x630
[ 3499.648834]  ? __lockdep_init_map+0x10c/0x5b0
[ 3499.653503]  ? __dev_close_many+0x300/0x300
[ 3499.657837]  ? __lockdep_init_map+0x10c/0x5b0
[ 3499.662518]  bcm_init+0x1a8/0x220
[ 3499.666285]  ? canbcm_pernet_init+0x90/0x90
[ 3499.670728]  can_create+0x288/0x4a0
[ 3499.674644]  __sock_create+0x3d8/0x730
[ 3499.678715]  __sys_socket+0x103/0x220
[ 3499.682659]  ? move_addr_to_kernel+0x80/0x80
[ 3499.687346]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 3499.692271]  ? do_syscall_64+0x26/0x620
[ 3499.697015]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 3499.702984]  ? do_syscall_64+0x26/0x620
[ 3499.706964]  __x64_sys_socket+0x73/0xb0
[ 3499.711051]  do_syscall_64+0xfd/0x620
[ 3499.714947]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 3499.720378] RIP: 0033:0x459829
[ 3499.724106] Code: Bad RIP value.
[ 3499.727774] RSP: 002b:00007f0e314f8c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[ 3499.735559] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000459829
[ 3499.742985] RDX: 0000000000000002 RSI: 0000000000000002 RDI: 000000000000001d
[ 3499.750256] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 3499.757734] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f0e314f96d4
[ 3499.765358] R13: 00000000004c846b R14: 00000000004defe0 R15: 00000000ffffffff
[ 3499.772767] INFO: task syz-executor.0:25892 blocked for more than 140 seconds.
[ 3499.780133]       Not tainted 4.19.66 #40
[ 3499.784399] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 3499.792742] syz-executor.0  D29496 25892  23348 0x00000004
[ 3499.798422] Call Trace:
[ 3499.801083]  __schedule+0x866/0x1dc0
[ 3499.804947]  ? pci_mmcfg_check_reserved+0x170/0x170
[ 3499.809974]  ? rwsem_down_write_failed+0x764/0xc30
[ 3499.815015]  ? _raw_spin_unlock_irq+0x28/0x90
[ 3499.819742]  ? lockdep_hardirqs_on+0x415/0x5d0
[ 3499.824447]  schedule+0x92/0x1c0
[ 3499.827957]  rwsem_down_write_failed+0x774/0xc30
[ 3499.832846]  ? rwsem_down_read_failed+0x3c0/0x3c0
[ 3499.837698]  ? __debug_object_init+0x190/0xc30
[ 3499.842365]  ? _raw_spin_unlock_irqrestore+0x6b/0xe0
[ 3499.849154]  call_rwsem_down_write_failed+0x17/0x30
[ 3499.854317]  ? call_rwsem_down_write_failed+0x17/0x30
[ 3499.859845]  down_write+0x53/0x90
[ 3499.863412]  ? register_netdevice_notifier+0x7e/0x630
[ 3499.868636]  register_netdevice_notifier+0x7e/0x630
[ 3499.873767]  ? __lockdep_init_map+0x10c/0x5b0
[ 3499.878326]  ? __dev_close_many+0x300/0x300
[ 3499.882833]  ? __lockdep_init_map+0x10c/0x5b0
[ 3499.887362]  bcm_init+0x1a8/0x220
[ 3499.890816]  ? canbcm_pernet_init+0x90/0x90
[ 3499.895205]  can_create+0x288/0x4a0
[ 3499.898853]  __sock_create+0x3d8/0x730
[ 3499.902864]  __sys_socket+0x103/0x220
[ 3499.906794]  ? move_addr_to_kernel+0x80/0x80
[ 3499.911199]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 3499.916052]  ? do_syscall_64+0x26/0x620
[ 3499.920039]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 3499.925546]  ? do_syscall_64+0x26/0x620
[ 3499.929568]  __x64_sys_socket+0x73/0xb0
[ 3499.933736]  do_syscall_64+0xfd/0x620
[ 3499.937566]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 3499.942841] RIP: 0033:0x459829
[ 3499.946059] Code: Bad RIP value.
[ 3499.949430] RSP: 002b:00007f0e314d7c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[ 3499.957288] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000459829
[ 3499.964671] RDX: 0000000000000002 RSI: 0000000000000002 RDI: 000000000000001d
[ 3499.972050] RBP: 000000000075bfc8 R08: 0000000000000000 R09: 0000000000000000
[ 3499.979446] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f0e314d86d4
[ 3499.986785] R13: 00000000004c846b R14: 00000000004defe0 R15: 00000000ffffffff
[ 3499.994158] 
[ 3499.994158] Showing all locks held in the system:
[ 3500.000581] 1 lock held by khungtaskd/1037:
[ 3500.004987]  #0: 000000001151b336 (rcu_read_lock){....}, at: debug_show_all_locks+0x5f/0x27e
[ 3500.013756] 2 locks held by getty/7785:
[ 3500.017767]  #0: 000000004cf67fd4 (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x33/0x40
[ 3500.026081]  #1: 00000000465962a0 (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x232/0x1b30
[ 3500.035172] 2 locks held by getty/7786:
[ 3500.039140]  #0: 00000000ebfdb24d (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x33/0x40
[ 3500.047662]  #1: 000000000d92fb2a (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x232/0x1b30
[ 3500.056716] 2 locks held by getty/7787:
[ 3500.060701]  #0: 00000000f8ab536a (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x33/0x40
[ 3500.070080]  #1: 000000006f948c28 (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x232/0x1b30
[ 3500.078995] 2 locks held by getty/7788:
[ 3500.083020]  #0: 0000000017c05c99 (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x33/0x40
[ 3500.091265]  #1: 0000000072ddf6e6 (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x232/0x1b30
[ 3500.100378] 2 locks held by getty/7789:
[ 3500.104539]  #0: 0000000099387532 (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x33/0x40
[ 3500.112954]  #1: 000000002de0716a (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x232/0x1b30
[ 3500.136990] 2 locks held by getty/7790:
[ 3500.140955]  #0: 000000001cca81af (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x33/0x40
[ 3500.149313]  #1: 000000000e966711 (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x232/0x1b30
[ 3500.158309] 2 locks held by getty/7791:
[ 3500.162274]  #0: 00000000348391e8 (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x33/0x40
[ 3500.170696]  #1: 000000008211f091 (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x232/0x1b30
[ 3500.179676] 5 locks held by kworker/u4:8/26219:
[ 3500.184509]  #0: 00000000ef0e89d1 ((wq_completion)"%s""netns"){+.+.}, at: process_one_work+0x87e/0x1750
[ 3500.194289]  #1: 000000001ad0b3bb (net_cleanup_work){+.+.}, at: process_one_work+0x8b4/0x1750
[ 3500.203015]  #2: 0000000004506659 (pernet_ops_rwsem){++++}, at: cleanup_net+0xae/0x960
[ 3500.211295]  #3: 000000005d965d32 (rtnl_mutex){+.+.}, at: rtnl_lock+0x17/0x20
[ 3500.218683]  #4: 000000004026a778 (rcu_preempt_state.exp_mutex){+.+.}, at: _synchronize_rcu_expedited+0x59e/0x7f0
[ 3500.229450] 2 locks held by kworker/0:4/17766:
[ 3500.234098]  #0: 000000005a77927a ((wq_completion)"rcu_gp"){+.+.}, at: process_one_work+0x87e/0x1750
[ 3500.243429]  #1: 000000005c5e74f8 ((work_completion)(&rew.rew_work)){+.+.}, at: process_one_work+0x8b4/0x1750
[ 3500.253590] 1 lock held by syz-executor.0/25890:
[ 3500.258335]  #0: 0000000004506659 (pernet_ops_rwsem){++++}, at: register_netdevice_notifier+0x7e/0x630
[ 3500.268154] 1 lock held by syz-executor.0/25892:
[ 3500.272950]  #0: 0000000004506659 (pernet_ops_rwsem){++++}, at: register_netdevice_notifier+0x7e/0x630
[ 3500.282448] 
[ 3500.284186] =============================================
[ 3500.284186] 
[ 3500.291215] NMI backtrace for cpu 1
[ 3500.294927] CPU: 1 PID: 1037 Comm: khungtaskd Not tainted 4.19.66 #40
[ 3500.301608] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3500.311020] Call Trace:
[ 3500.313610]  dump_stack+0x172/0x1f0
[ 3500.317226]  nmi_cpu_backtrace.cold+0x63/0xa4
[ 3500.321782]  ? lapic_can_unplug_cpu.cold+0x45/0x45
[ 3500.326709]  nmi_trigger_cpumask_backtrace+0x1b0/0x1f8
[ 3500.331987]  arch_trigger_cpumask_backtrace+0x14/0x20
[ 3500.337439]  watchdog+0x9df/0xee0
[ 3500.340964]  kthread+0x354/0x420
[ 3500.344326]  ? reset_hung_task_detector+0x30/0x30
[ 3500.349160]  ? kthread_cancel_delayed_work_sync+0x20/0x20
[ 3500.354692]  ret_from_fork+0x24/0x30
[ 3500.358564] Sending NMI from CPU 1 to CPUs 0:
[ 3500.363378] NMI backtrace for cpu 0
[ 3500.363383] CPU: 0 PID: 17766 Comm: kworker/0:4 Not tainted 4.19.66 #40
[ 3500.363388] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3500.363391] Workqueue: events_power_efficient gc_worker
[ 3500.363396] RIP: 0010:rcu_dynticks_curr_cpu_in_eqs+0x17/0xb0
[ 3500.363404] Code: c7 c7 c0 44 72 88 e8 e8 54 48 00 eb b6 66 0f 1f 44 00 00 55 48 89 e5 41 54 53 48 c7 c3 80 39 02 00 48 83 ec 08 e8 79 1a cc 01 <48> ba 00 00 00 00 00 fc ff df 89 c0 48 8d 3c c5 e0 1e 4e 88 48 89
[ 3500.363407] RSP: 0018:ffff88803134fc18 EFLAGS: 00000292
[ 3500.363412] RAX: 0000000000000000 RBX: 0000000000023980 RCX: ffffffff8325b5aa
[ 3500.363416] RDX: 0000000000000000 RSI: ffffffff8325b5b8 RDI: 0000000000000005
[ 3500.363420] RBP: ffff88803134fc30 R08: ffff8880559642c0 R09: 0000000000000002
[ 3500.363423] R10: ffff888055964b90 R11: 00000000860de5a1 R12: ffff88809b877a88
[ 3500.363427] R13: 0000000000010000 R14: 0000000000000200 R15: dffffc0000000000
[ 3500.363431] FS:  0000000000000000(0000) GS:ffff8880ae800000(0000) knlGS:0000000000000000
[ 3500.363434] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 3500.363437] CR2: ffffffffff600400 CR3: 0000000095372000 CR4: 00000000001406f0
[ 3500.363441] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 3500.363445] DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000600
[ 3500.363447] Call Trace:
[ 3500.363449]  rcu_is_watching+0x10/0x30
[ 3500.363451]  gc_worker+0xbb9/0xee0
[ 3500.363453]  ? init_conntrack+0x1340/0x1340
[ 3500.363456]  process_one_work+0x989/0x1750
[ 3500.363458]  ? pwq_dec_nr_in_flight+0x320/0x320
[ 3500.363461]  ? lock_acquire+0x16f/0x3f0
[ 3500.363463]  ? kasan_check_write+0x14/0x20
[ 3500.363465]  ? do_raw_spin_lock+0xc8/0x240
[ 3500.363468]  worker_thread+0x98/0xe40
[ 3500.363470]  ? trace_hardirqs_on+0x67/0x220
[ 3500.363472]  kthread+0x354/0x420
[ 3500.363475]  ? process_one_work+0x1750/0x1750
[ 3500.363478]  ? kthread_cancel_delayed_work_sync+0x20/0x20
[ 3500.363480]  ret_from_fork+0x24/0x30
[ 3500.365192] Kernel panic - not syncing: hung_task: blocked tasks
[ 3500.368831] kobject: 'batman_adv' (00000000f58e4e5e): kobject_uevent_env
[ 3500.373884] CPU: 1 PID: 1037 Comm: khungtaskd Not tainted 4.19.66 #40
[ 3500.373890] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3500.373893] Call Trace:
[ 3500.373964]  dump_stack+0x172/0x1f0
[ 3500.388988] kobject: 'batman_adv' (00000000f58e4e5e): kobject_uevent_env: filter function caused the event to drop!
[ 3500.389040]  panic+0x263/0x507
[ 3500.395568] kobject: 'batman_adv' (00000000f58e4e5e): kobject_cleanup, parent           (null)
[ 3500.414055]  ? __warn_printk+0xf3/0xf3
[ 3500.414065]  ? lapic_can_unplug_cpu.cold+0x45/0x45
[ 3500.414076]  ? ___preempt_schedule+0x16/0x18
[ 3500.414088]  ? nmi_trigger_cpumask_backtrace+0x165/0x1f8
[ 3500.414096]  ? nmi_trigger_cpumask_backtrace+0x1c1/0x1f8
[ 3500.414103]  ? nmi_trigger_cpumask_backtrace+0x1cb/0x1f8
[ 3500.414110]  ? nmi_trigger_cpumask_backtrace+0x165/0x1f8
[ 3500.414122]  watchdog+0x9f0/0xee0
[ 3500.414136]  kthread+0x354/0x420
[ 3500.414152]  ? reset_hung_task_detector+0x30/0x30
[ 3500.421239] kobject: 'batman_adv' (00000000f58e4e5e): calling ktype release
[ 3500.426785]  ? kthread_cancel_delayed_work_sync+0x20/0x20
[ 3500.426799]  ret_from_fork+0x24/0x30
[ 3500.428223] Kernel Offset: disabled
[ 3500.679575] Rebooting in 86400 seconds..